Different result for cardinality aggregation [6.3.0] in Python 3.6 plugin

Wietse · September 17, 2018, 9:18am

Hi

I'm trying to extract every hour the amount of unique users who logged in the past 24 hours. For this I use the cardinality aggregation with a range on the time. I use ELK 6.3.

GET logins/_search
{
  "_source": "user_id", 
  "query": {
    "range": {
      "time": {
        "gte": 1537016400.0,
        "lt": 1537102800.0
      }
    }
  },
  "aggs": {
    "unique_users": {
      "cardinality": {
        "field": "user_id"
      }
    }
  }
}

This yields me the same result every time, when I raise the precision threshold I get the same result still (254202 unique users).

However, when I execute this query using the Python API (Python 3.6), I get three different results (254202, 202847, 209580 unique users). These values alternate consistently. The correct value is among them, but I need to know which one it is of course. Am I missing something? An extra option in Python? Raising the precision threshold in Python did not help.

Any help is much appreciated.

system · October 15, 2018, 9:28am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Get number of unique values in a field Elasticsearch	3	1024	July 6, 2017
Python3 Large Query Cardinality & Query return different results Elasticsearch	5	329	December 15, 2020
Cardinality Aggregation gives wrong number? Elasticsearch	33	7314	March 7, 2019
Queries regarding precision_threshold setting in cardinality aggregation Elasticsearch	3	657	November 24, 2018
Cardinality Limitation Work Around Elasticsearch	1	129	August 24, 2023

Different result for cardinality aggregation [6.3.0] in Python 3.6 plugin

Related topics