Field Correlations In Kibana Canvas

rusty_cole · January 13, 2022, 1:08pm

Hi Guys,
I've been using the kibana canvas dashboards and so far I'm really impressed.
The only issue I have is with the correlations.
I understand that SQL JOIN is not supported.
What is the alternative? in big data and log ingestion systems, correlations ability should be basic.
I did found a way to corelate fields, with the DSL language.
But there is no DSL in canvas. so I had to run the DSL query outside elastic and ingest the results back to canvas. which seems very odd.
Am I missing something here?
Any help would be appriciated.

Thanks!

flash1293 · January 13, 2022, 1:22pm

It's not one of the languages supported by UI, but you can use the DSL in Canvas as well using the esdsl function - open the expression editor in the bottom right in canvas and edit the expression there. This is a basic example that should get you going (using logs sample data):

esdsl dsl='{ "aggs": { "exts": { "terms": { "field": "extension.keyword"} }}}' index="*sample*logs"
| table 
| render

Can you elaborate on what you mean by correlations exactly? Maybe there's another way to achieve your goal.

Topic		Replies	Views
Generate interactive dashboards for relational data Kibana	10	4287	July 6, 2017
Data correlation kibana Kibana	3	2948	December 27, 2017
How to Correlate Data? Kibana	5	7630	May 25, 2018
Correlation in ELK dashboard Kibana	4	916	February 18, 2021
Big issue on Request on Canva and kibana Kibana canvas	2	284	November 21, 2023

Field Correlations In Kibana Canvas

Related topics