Hi all,
I upgraded to latest Kibana and Elasticsearch. My earlier time based visualization fails / does not return any result even though the field event.start exists.
Has the API changed?
This is the query.
event.start:[now-1d/d TO *]
Regards,
Eric
It could be because of this.
Scripted Fields
UPDATE: As a security precaution, starting with version 4.0.0-RC1, Kibana scripted fields default to Lucene Expressions, not Groovy, as the scripting language. Since Lucene Expressions only support operations on numerical fields, the example below dealing with date math does not work in Kibana 4.0.0-RC1+ versions.
How do I enable groovy to be the default?