Warning: file_get_contents(/data/phpspider/zhask/data//catemap/4/json/14.json): failed to open stream: No such file or directory in /data/phpspider/zhask/libs/function.php on line 167

Warning: Invalid argument supplied for foreach() in /data/phpspider/zhask/libs/tag.function.php on line 1116

Notice: Undefined index: in /data/phpspider/zhask/libs/function.php on line 180

Warning: array_chunk() expects parameter 1 to be array, null given in /data/phpspider/zhask/libs/function.php on line 181
Json Elasticsearch查询以获取多个属性的值_Json_<img Src="//i.stack.imgur.com/RUiNP.png" Height="16" Width="18" Alt="" Class="sponsor Tag Img">elasticsearch - Fatal编程技术网 elasticsearch,Json,elasticsearch" /> elasticsearch,Json,elasticsearch" />
Fatal编程技术网
  • json/
  • Json Elasticsearch查询以获取多个属性的值

Json Elasticsearch查询以获取多个属性的值

json

Json Elasticsearch查询以获取多个属性的值,json,elasticsearch,Json,elasticsearch,嗨,我有以下json数据: { "_index": "logs", "_type": "_doc", "_id": "122", "_version": 7, "_score": null, "_source": { "Data": { "Dis

嗨,我有以下json数据:

{
  "_index": "logs",
  "_type": "_doc",
  "_id": "122",
  "_version": 7,
  "_score": null,
  "_source": {
    "Data": {
      "DiskTotal": 62701268992,
      "DiskFree": 56609468416,
      "DiskStatus": "Normal",
      "Version": "2.0",
      "Ip": "192.168.0.106"
    },
    "Created": "2021-01-04T14:13:48.245760",
    "Device": "T1"
    "Customer": "demo1"
    
  },
  "fields": {
    "Data.UpTime": [
      "2021-01-04T14:10:05.000Z"
    ],
    "Created": [
      "2021-01-04T14:13:48.245Z"
    ]
  },
  "sort": [
    1609769628245
  ]
}
我有以下疑问:

{
  "aggs": 
  {
    "device_name": {
      "terms": {
        "field": "Device.keyword"
        
      }
    }
  }
}
现在我的回答如下:

{
  "took" : 6,
  "timed_out" : false,
  "_shards" : {
    "total" : 5,
    "successful" : 5,
    "skipped" : 0,
    "failed" : 0
  },
  "hits" : {
    "total" : {
      "value" : 325,
      "relation" : "eq"
    },
    "max_score" : null,
    "hits" : [ ]
  },
  "aggregations" : {
    "device_name" : {
      "doc_count_error_upper_bound" : 0,
      "sum_other_doc_count" : 16,
      "buckets" : [
        {
          "key" : "T8",
          "doc_count" : 74
        },
        {
          "key" : "T6",
          "doc_count" : 45
        },
        {
          "key" : "T4",
          "doc_count" : 44
        }
      ]
    }
  }
}
这是我在elasticsearch中拥有的所有设备名称,但除了设备名称之外,我还想知道它属于哪个客户,如下所示:

"buckets" : [
        {
          "key1" : "T8",
          "key2" : "Demo1",
          "doc_count" : 74
        },
        {
          "key1" : "T6",
          "key2" : "Demo1",
          "doc_count" : 45
        },
        {
          "key1" : "T4",
          "key2" : "Demo2",
          "doc_count" : 44
        }
      ]
如何修改查询以包括客户名称和设备名称。谢谢

您需要与一起使用,以实现您的用例

添加工作示例

索引数据:

{
  "Data": {
    "DiskTotal": 62701268992,
    "DiskFree": 56609468416,
    "DiskStatus": "Normal",
    "Version": "2.0",
    "Ip": "192.168.0.106"
  },
  "Created": "2021-01-04T14:13:48.245760",
  "Device": "T1",
  "Customer": "demo1"
}

{
  "aggs": {
    "device_name": {
      "terms": {
        "field": "Device.keyword"
      },
      "aggs": {
        "top_faq_hits": {
          "top_hits": {
            "_source": {
              "includes": [
                "Customer"
              ]
            },
            "size": 1
          }
        }
      }
    }
  }
}

"aggregations": {
    "device_name": {
      "doc_count_error_upper_bound": 0,
      "sum_other_doc_count": 0,
      "buckets": [
        {
          "key": "T1",          // note this
          "doc_count": 1,
          "top_faq_hits": {
            "hits": {
              "total": {
                "value": 1,
                "relation": "eq"
              },
              "max_score": 1.0,
              "hits": [
                {
                  "_index": "65567027",
                  "_type": "_doc",
                  "_id": "1",
                  "_score": 1.0,
                  "_source": {
                    "Customer": "demo1"   // note this
                  }
                }
              ]
            }
          }
        }
      ]
    }
  }
搜索查询:

{
  "Data": {
    "DiskTotal": 62701268992,
    "DiskFree": 56609468416,
    "DiskStatus": "Normal",
    "Version": "2.0",
    "Ip": "192.168.0.106"
  },
  "Created": "2021-01-04T14:13:48.245760",
  "Device": "T1",
  "Customer": "demo1"
}

{
  "aggs": {
    "device_name": {
      "terms": {
        "field": "Device.keyword"
      },
      "aggs": {
        "top_faq_hits": {
          "top_hits": {
            "_source": {
              "includes": [
                "Customer"
              ]
            },
            "size": 1
          }
        }
      }
    }
  }
}

"aggregations": {
    "device_name": {
      "doc_count_error_upper_bound": 0,
      "sum_other_doc_count": 0,
      "buckets": [
        {
          "key": "T1",          // note this
          "doc_count": 1,
          "top_faq_hits": {
            "hits": {
              "total": {
                "value": 1,
                "relation": "eq"
              },
              "max_score": 1.0,
              "hits": [
                {
                  "_index": "65567027",
                  "_type": "_doc",
                  "_id": "1",
                  "_score": 1.0,
                  "_source": {
                    "Customer": "demo1"   // note this
                  }
                }
              ]
            }
          }
        }
      ]
    }
  }
搜索结果:

{
  "Data": {
    "DiskTotal": 62701268992,
    "DiskFree": 56609468416,
    "DiskStatus": "Normal",
    "Version": "2.0",
    "Ip": "192.168.0.106"
  },
  "Created": "2021-01-04T14:13:48.245760",
  "Device": "T1",
  "Customer": "demo1"
}

{
  "aggs": {
    "device_name": {
      "terms": {
        "field": "Device.keyword"
      },
      "aggs": {
        "top_faq_hits": {
          "top_hits": {
            "_source": {
              "includes": [
                "Customer"
              ]
            },
            "size": 1
          }
        }
      }
    }
  }
}

"aggregations": {
    "device_name": {
      "doc_count_error_upper_bound": 0,
      "sum_other_doc_count": 0,
      "buckets": [
        {
          "key": "T1",          // note this
          "doc_count": 1,
          "top_faq_hits": {
            "hits": {
              "total": {
                "value": 1,
                "relation": "eq"
              },
              "max_score": 1.0,
              "hits": [
                {
                  "_index": "65567027",
                  "_type": "_doc",
                  "_id": "1",
                  "_score": 1.0,
                  "_source": {
                    "Customer": "demo1"   // note this
                  }
                }
              ]
            }
          }
        }
      ]
    }
  }
你能解释一下吗。?特别是在本次
“热门常见问题解答”点击之后
@SAndrew使用术语聚合,将为
设备
的每个唯一值创建存储桶。现在,根据您的用例,因为您希望将相应的
客户
设备
一起包括在内,所以您需要使用top hits聚合。如果请求
\u source
,则只返回文档的一部分。@如果答案帮助您解决问题,请不要忘记投票并接受答案