USER ERROR, this can be closed/deleted
Error message from aes-siem-es-loader log group. Can someone help me understand what this traceback is indicating is the issue?
~~[ERROR] KeyError: 'userIdentity.type' Traceback (most recent call last): File "/var/task/aws_lambda_powertools/metrics/provider/base.py", line 204, in decorate response = lambda_handler(event, context, *args, **kwargs) File "/var/task/aws_lambda_powertools/logging/logger.py", line 451, in decorate return lambda_handler(event, context, *args, **kwargs) File "/var/task/index.py", line 399, in decorator return func(*args, **kwargs) File "/var/task/index.py", line 466, in lambda_handler main(event, context) File "/var/task/index.py", line 478, in main process_record(record) File "/var/task/index.py", line 531, in process_record bulkloads_into_opensearch(es_entries, collected_metrics)) File "/var/task/index.py", line 283, in bulkloads_into_opensearch for data in es_entries: File "/var/task/index.py", line 219, in get_es_entries logparser(lograw, logdata, logmeta) File "/var/task/siem/__init__.py", line 566, in __call__ self.transform_to_ecs() File "/var/task/siem/__init__.py", line 788, in transform_to_ecs ecs_dict = self.get_value_and_input_into_ecs_dict(ecs_dict) File "/var/task/siem/__init__.py", line 749, in get_value_and_input_into_ecs_dict original_keys = self.logconfig[ecs_key]~~
USER ERROR, this can be closed/deleted
Error message from aes-siem-es-loader log group. Can someone help me understand what this traceback is indicating is the issue?~~
[ERROR] KeyError: 'userIdentity.type' Traceback (most recent call last): File "/var/task/aws_lambda_powertools/metrics/provider/base.py", line 204, in decorate response = lambda_handler(event, context, *args, **kwargs) File "/var/task/aws_lambda_powertools/logging/logger.py", line 451, in decorate return lambda_handler(event, context, *args, **kwargs) File "/var/task/index.py", line 399, in decorator return func(*args, **kwargs) File "/var/task/index.py", line 466, in lambda_handler main(event, context) File "/var/task/index.py", line 478, in main process_record(record) File "/var/task/index.py", line 531, in process_record bulkloads_into_opensearch(es_entries, collected_metrics)) File "/var/task/index.py", line 283, in bulkloads_into_opensearch for data in es_entries: File "/var/task/index.py", line 219, in get_es_entries logparser(lograw, logdata, logmeta) File "/var/task/siem/__init__.py", line 566, in __call__ self.transform_to_ecs() File "/var/task/siem/__init__.py", line 788, in transform_to_ecs ecs_dict = self.get_value_and_input_into_ecs_dict(ecs_dict) File "/var/task/siem/__init__.py", line 749, in get_value_and_input_into_ecs_dict original_keys = self.logconfig[ecs_key]~~