SQL execution for filed with dot notation

Khirod_Panda · October 23, 2019, 2:11pm

Hello , I want to read output for following

SELECT * FROM "alpha-*" where APILog.req.operationName="submitOrder"

but seems it is failing for the APILog.req.operationName . Can we not use that way in SQL ? I have attached screen from kibana the way it looks.

Larry_Gregory · October 23, 2019, 2:19pm

@Khirod_Panda,

Does the command succeed if you wrap the field name in quotes?

SELECT * FROM "alpha-*" where "APILog.req.operationName"="submitOrder"

Khirod_Panda · October 23, 2019, 2:37pm

Thanks that worked.

Andrei_Stefan · October 24, 2019, 8:38am

One small correction, if I may: if submitOrder is a literal (constant), it should be surrounded by single quotes, not double ones: SELECT * FROM "alpha-*" where "APILog.req.operationName"='submitOrder'.

Topic		Replies	Views
Query "-" on fieldname problem Kibana elastic-stack-sql	2	706	December 2, 2020
Painless Script with name contain dot Kibana painless	3	1386	October 31, 2020
SQL Query not executing Elasticsearch	7	835	August 19, 2019
Error when do sql query from table name with special character Elasticsearch	2	3440	August 30, 2019
Kibana 7.4.0 and SQL Queries :: Can Index Name Have "." Character? Kibana elastic-stack-sql	3	1109	November 15, 2019

SQL execution for filed with dot notation

Related topics