Elasticsearch aggregate Query from logstash

ranjith · November 14, 2017, 11:46am

Hi All,

I want to aggregate an index in elasticsearch using logstash and store that aggregate result in another index.

input {
  elasticsearch {
    hosts => "http://50.254.92.204:9200" 
    user => "elastic"
    password => "changeme"	
    index => "students"
    query => '{"query" : {"constant_score" : {"filter" : {"match" : { "name" : "Vinoth" }}}},"size": 0,"aggs": {"Vinoth_avg_marks": {"avg" : { "field" : "mark" } }}}'
	size => 500 
    scroll => "5m" 
    docinfo => true
  }
}


filter {

}
output {

  stdout { codec => rubydebug } 

  elasticsearch {
    hosts => "50.254.92.204:9200" 
    user => "elastic"
    password => "changeme"	  
    index => "test" 
    document_type => "test"
    #document_id => "%{[@metadata][_id]}"
  }
}

But aggregate result is not being pushed into the test index.

Thanks in advance

ranjith · November 16, 2017, 8:55am

Hi all,

Any update on this ...
Please guide me whether this is possible in logstash or not...Or I may be missing something
Let me know as soon as possible

Topic		Replies	Views
Logstash aggregate query Logstash	2	1375	December 18, 2017
Logstash - Elastic search input plugin - Aggregation query doesn't seem to work Logstash	2	3347	April 22, 2019
Aggregate filter logstash not working when the input is elasticsearch Logstash	1	682	April 16, 2019
How to get ES aggregation data as Logstash input? Logstash	5	3692	July 6, 2017
Aggregate Index Data Daily to another Index Logstash	4	675	July 17, 2018

Elasticsearch aggregate Query from logstash

Related topics