Hi David,
I'm clueless as to how to proceed as I am not sure how'll I apply mapping
for faceting. I'll try to be more precise so that may be you can more
explicit about it. I would really appreciate it.
Suppose, I've this data.
curl -X POST "http://localhost:9200/facets_test/logs" -d '{"title" : "First
Line", "email_id": "abc@domain.com", "size": 1024}'
curl -X POST "http://localhost:9200/facets_test/logs" -d '{"title" :
"Second Line", "email_id": "def@domain.com", "size": 2048}'
curl -X POST "http://localhost:9200/facets_test/logs" -d '{"title" : "Third
Line", "email_id": "ghi@domain.com", "size": 3096}'
curl -X POST "http://localhost:9200/facets_test/logs" -d '{"title" :
"Fourth Line", "email_id": "abc@domainname.com", "size": 1024}'
curl -X POST "http://localhost:9200/facets_test/logs" -d '{"title" : "Fifth
Line", "email_id": "def@domainname.com", "size": 2048}'
curl -X POST "http://localhost:9200/facets_test/logs" -d '{"title" : "Fifth
Line", "email_id": "def@domainname.com", "size": 3096}'
I want a facet query that'll give me stats like sum of size field for each
domains (in this example domain.com and domainname.com) or perhaps as a
bonus for each email id too.
On Fri, Apr 5, 2013 at 7:33 AM, David Pilato david@pilato.fr wrote:
It's a question of mapping and analysis.
Define a mapping for faceting (multifield type is the best option) and
apply to "from" field a custom analyzer:
Elasticsearch Platform — Find real-time answers at scale | Elastic
.
Define this custom analyzer first when creating your index. I think you
should use a pattern tokenizer:
Elasticsearch Platform — Find real-time answers at scale | Elastic
And a pattern replace token filter:
Elasticsearch Platform — Find real-time answers at scale | Elastic
Have a look at
Elasticsearch Platform — Find real-time answers at scale | Elastic.
It may help you on how to define an analyzer and try it (analyze API).
My 2 cents
--
David 
Twitter : @dadoonet / @elasticsearchfr / @scrutmydocs
Le 4 avr. 2013 à 23:03, Abhijeet Rastogi abhijeet.1989@gmail.com a
écrit :
Hi all,
I'm using ES to store maillogs. In that, I'm trying to use ES to generate
statistics for ex, per domain bandwidth usage etc.
For ex, if I have a document which has fields like:
Now, there can be many email addresses like abc@domain.com. I just want
the summation of size for a particular domain. How do I accomplish that?
I had a look at statistical facet but I'm not sure how will I use it to do
per domain summation of @fields.size field.
Any help is highly appreciated. Thanks
--
Regards,
Abhijeet Rastogi (shadyabhi)
http://blog.abhijeetr.com
--
You received this message because you are subscribed to the Google Groups
"elasticsearch" group.
To unsubscribe from this group and stop receiving emails from it, send an
email to elasticsearch+unsubscribe@googlegroups.com.
For more options, visit https://groups.google.com/groups/opt_out.
--
You received this message because you are subscribed to the Google Groups
"elasticsearch" group.
To unsubscribe from this group and stop receiving emails from it, send an
email to elasticsearch+unsubscribe@googlegroups.com.
For more options, visit https://groups.google.com/groups/opt_out.
--
Regards,
Abhijeet Rastogi (shadyabhi)
http://blog.abhijeetr.com
--
You received this message because you are subscribed to the Google Groups "elasticsearch" group.
To unsubscribe from this group and stop receiving emails from it, send an email to elasticsearch+unsubscribe@googlegroups.com.
For more options, visit https://groups.google.com/groups/opt_out.
