How convert this SQL query to Elasticsearch query?

psyapathy · July 18, 2019, 7:13am

Hello!

I have this SQL query:

SELECT time,targetuser, count(targetuser),ipaddress FROM `test_index` WHERE `event_id`=4444 AND `status`=`0x10`  GROUP BY ipaddress,targetuser ORDER BY TIME DESC;

How convert this SQL query to Elasticsearch query? is it possible?

dadoonet · July 18, 2019, 10:08am

You probably need to do a terms agg on ipaddress and then another inner one on targetuser and a bool query with 2 term clauses (one on event_id with a value of 4444, and another one on status with a value of "0x10") that you would put inside the must array of the bool query.

Topic		Replies	Views
MyQuery Elasticsearch elastic-stack-sql	2	500	January 26, 2020
Elastic group query for multiple fileds Elasticsearch	0	393	April 19, 2018
Sql Query to ELasticSearch query Elasticsearch	1	988	May 31, 2017
Query migration to SQL - simplify query Elasticsearch	1	432	April 2, 2019
Convert SQL query to Java Elastic Query Elasticsearch	1	2035	October 6, 2017

How convert this SQL query to Elasticsearch query?

Related topics