Can't seem to get easy query to work, I assume it's due to slashes in the url:
{
"size": 100,
"query": {
"bool": {
"must": [
{ "range" : { "@timestamp" : { "gte": "01-07-2018", "lt": "31-12-2018", "format": "dd-MM-yyyy" } } },
{ "query_string": { "default_field": "url", "query": "/api/v1/users/recent" } },
{ "term": { "inner.request.method": "GET" } }
]
}
},
"sort": { "@timestamp": { "order": "desc" } }
}
Tried one single and double backslashes, keyword analyzer - doesn't seem to help
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.