How to add date range to query?

Sjaak01 · July 27, 2018, 2:47am

Hi,

How can I add a range filter to the usage_offset part of this query? I want usage_current to return the last known value andusage_offset the return the last known value for 1 hour or more ago.

I tried adding range filters and range aggegrations but they all cause the query to fail.

{
  "query": {
    "match": {
      "name": "test"
    }
  },
           "aggs": {
                "usage_current": {
                    "top_hits": {
                        "sort": [
                            {
                                "@timestamp": {
                                    "order": "desc"
                                }
                            }
                        ],
                        "size" : 1
                    }
                },
                "usage_offset": {
                    "top_hits": {
                        "sort": [
                            {
                                "@timestamp": {
                                    "order": "desc"
                                }
                            }
                        ],
                        "size" : 1
                    }
                }
            }
}

system · August 24, 2018, 2:47am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.