Timelion query spaces

ConorTier · March 30, 2018, 11:13am

Like the query asked here

Is there a way to get Timelion querys to accept spaces, I understand the query is a lucene query

The query I have in question is (which works perfectly well):

logger: SomeLogger+Monitoring AND message:"something happened when"

The Timelion expression I have is:

.es(index=indexName*,timefield=@timestamp,q=logger:SomeLogger+Monitoring AND message:"something happened when").lines(fill=2, width=3).color(red).label("Monitoring Events")

The below does not work either:

.es(index=indexName*,timefield=@timestamp,q=logger:SomeLogger+Monitoring AND message:something happened when).lines(fill=2, width=3).color(red).label("Monitoring Events")

Exception = Timelion: SyntaxError: {"type":"incompleteFunction","function":"es","location":{"min":0,"max":3},"text":".es"}

ConorTier · March 30, 2018, 11:34am

q=logger:SomeLogger+Monitoring\ AND\ message:something\ happened\ when

Will not work either

ConorTier · April 3, 2018, 7:41am

As per

Looks like you need q='message:"something happened"'

single quotes with inner quotes

system · May 1, 2018, 7:41am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Timelion wildcard query Kibana timelion	5	2435	January 5, 2018
Timelion query numbers Kibana timelion	2	507	March 27, 2019
Timelion is rejecting query string that works in dev tools Kibana timelion	7	1221	August 14, 2019
Timelion and the analyze_wildcard query parameter Kibana timelion	2	537	January 8, 2020
Timelion:Error Kibana timelion	3	1180	April 19, 2018

Timelion query spaces

Related topics