1. Describe your incident:
I’m using a pretty simple search, I have graylog track my API request and responses. I’m trying to look for response_content that come in with empty curly brackets.
2. Describe your environment:
- Package Version: Graylog 5.0.6+51f2df8
3. What steps have you already taken to try and solve the problem?
Here is the field that I’m trying to query:
When I click on Add to Query in that field, this gets appended to my search AND response_content:\{\}.
I’ve also tried different variations:
- Regex:
response_content:/\{\\}/ - Quotes
response_content:"{}"
None of these seem to surface any logs, removing this specific search query does generate logs. [] brackets seems to work just fine though.
4. How can the community help?
Wondering if someone might help with pointing out what I’m doing wrong, or if curly brackets are generally not well supported.
