Currently, I have setup email notification from elastalert. In the email body, it prints all the details of the particular document. I want to restrict it to print only specific term and values from the match.
Asked
Active
Viewed 334 times
1 Answers
1
Please refer to this question here: Customize the information in an alert received by elastalert plugin for elasticsearch
Also from the ElastAlert documentation, you can use include: field to customize the alert message..
XOR-Manik
- 493
- 1
- 4
- 19