Hi,

I need to filter my query for a specific field_value. The working query is as follow:

index=_index (field_value="value1" OR field_value="value4" OR field_value="value14") | .....


Now, I would like to retrieve those field values from a remote json file and pass it to search condition this way:

index=_index (field_value in listOfFieldValuesFromRemoteJson) | .....

Could you please help me make it work?

The json file : [{"field_value": "value1"},{"field_value": "value4"},{"field_value": "value14"}]

Best regards,
Dhiaeddine