When adding a new feed and launching shadowbook, I got this error on the new feed: ["TransportError(400, u'illegal_argument_exception', u\"Can't parse [index] value [not_analyzed] for field [source], expected [true] or [false]\")"] from Elasticsearch.
Steps to Reproduce
Remove a feeds from the core/conf/feed directory
Launch Hippocampe for the first time, on a new index and launch shadowbook
Then, shutdown Hippocampe and restore the deleted feed
Launch Hippocampe and launch Shadowbook again
When shadowbook is finished, the new feed got the mentioned error
Request Type
Bug
Work Environment
Problem Description
When adding a new feed and launching shadowbook, I got this error on the new feed: ["TransportError(400, u'illegal_argument_exception', u\"Can't parse [index] value [not_analyzed] for field [source], expected [true] or [false]\")"] from Elasticsearch.
Steps to Reproduce
Possible Solutions
Looking at the Elasticsearch doc, index parameter should be True or False (false by default). https://www.elastic.co/guide/en/elasticsearch/reference/5.6/keyword.html In core/services/modules/shadowbook/objects/IndexIntel.py, index parameter for field "source" is "not_analyzed".