The publisher_pipeline.disable_host option is documented as:
publisher_pipeline.disable_host
By default, all events contain host.name. This option can be set to true to disable the addition of this field to all events. The default value is false.
It would be good to remove the host.name and publisher_pipeline.disable_host: true logic and documentation, and document the host.* default processor behavior.
An integration that demonstrates the effect of these settings can be generated with this script.
The
publisher_pipeline.disable_host
option is documented as:The setting is applied in
libbeat/publisher/processing/default.go
.However, with
publisher_pipeline.disable_host: true
set,host.*
fields will still be added, unless theforwarded
tag is also set.I suspect this is because there is a separate default processor to add host metadata when tags don't contain
forwarded
.The documentation above, and some logic, refers only to
host.name
, but without theforwarded
tag a range of fields will be set. For example:It would be good to remove the
host.name
andpublisher_pipeline.disable_host: true
logic and documentation, and document thehost.*
default processor behavior.An integration that demonstrates the effect of these settings can be generated with this script.