Merging buckets of aggregation

Hari_Prasad · July 23, 2019, 6:07pm

I am trying to merge buckets from a parent aggregation. I am not sure if thats possible. Please help.

I have an aggregation query as below

GET log-2019.07.20/_search
{
  "size": 0,
  "aggs": {
    "buckets": {
      "date_histogram": {
        "field": "@timestamp",
        "interval": "5m",
        "format": "mm"
      }
    }
  }
}

and the output is like

.
.
.
"aggregations" : {
    "buckets" : {
      "buckets" : [
        {
          "key_as_string" : "00",
          "key" : 1563840000000,
          "doc_count" : 3535
        },
        {
          "key_as_string" : "05",
          "key" : 1563840300000,
          "doc_count" : 3556
        },
.
.
.

What I am trying to do is run a term aggregation on the key_as_string field but its always showing empty bucket.

Is there any way to combine buckets ??

Thank you

system · August 20, 2019, 6:07pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
How to merge aggregation bucket in Elasticsearch? Elasticsearch	8	1416	December 28, 2021
Where did my aggregation data go! The case of the missing bucket Elasticsearch	1	712	July 5, 2017
Empty bucket while aggregating on nested documents Elasticsearch	2	519	July 17, 2017
Aggregations - getting all buckets with term aggregations Elasticsearch	1	424	March 13, 2018
Sub Aggregating a terms Bucket Aggregation Elasticsearch	4	229	September 20, 2021

Merging buckets of aggregation

Related topics