Frequency of a field with python elasticsearch module

mortenb123 · September 20, 2021, 5:36pm

I need to count the frequency of a field, how can I do this?, I tried with aggs, but the module only says:

    raise HTTP_EXCEPTIONS.get(status_code, TransportError)(
elasticsearch.exceptions.RequestError: RequestError(400, 'parsing_exception', 'request does not support [aggs]')

I can count, I can search, but the 10K limit on search is way too little for a period:

I tried the following:

20210920192914.192|DEBUG|C:\dist\work\trk-fullstack-test\bin\elkq.py:265|body: {
  "_source": {
    "includes": [
      "kubernetes.container.name"
    ]
  },
  "aggs": {
    "kubernetes.container.name": {
      "test-agg-00": {
        "value_count": {
          "field": "kubernetes.container.name"
        }
      }
    }
  },
  "from": 0,
  "query": {
    "bool": {
      "filter": [
        {
          "range": {
            "@timestamp": {
              "format": "strict_date_optional_time",
              "gte": "2021-09-19T17:29:14.189Z",
              "lte": "2021-09-20T17:29:14.190Z"
            }
          }
        }
      ]
    }
  },
  "size": 10,
  "sort": [
    {
      "@timestamp": {
        "order": "desc",
        "unmapped_type": "boolean"
      }
    }
  ]
}

I see the aggs examples are rest directly, so I can test using requests directly

system · October 18, 2021, 5:37pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.