rust/greptimedb
1
0
Fork 0
mirror of https://github.com/GreptimeTeam/greptimedb.git synced 2025-12-26 08:00:01 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
bytes_trace
greptimedb/docs/benchmarks/log/query.md
Yingwen 9c1704d4cb docs: move v0.9.1 benchmark report to tsbs dir (#4598) 
* docs: move v0.9.1 benchmark report to tsbs dir

* docs: add newlines
2024-08-21 09:31:05 +00:00

3.4 KiB
Raw Permalink Blame History

Query URL and payload for Elastic Search

Count

URL: http://127.0.0.1:9200/_count

Query by timerange

URL: http://127.0.0.1:9200/_search

You can use the following payload to get the full timerange first.

{"size":0,"aggs":{"max_timestamp":{"max":{"field":"timestamp"}},"min_timestamp":{"min":{"field":"timestamp"}}}}

And then use this payload to query by timerange.

{
  "from": 0,
  "size": 1000,
  "query": {
    "range": {
      "timestamp": {
        "gte": "2024-08-16T04:30:44.000Z",
        "lte": "2024-08-16T04:51:52.000Z"
      }
    }
  }
}

Query by condition

URL: http://127.0.0.1:9200/_search

Structured payload

{
  "from": 0,
  "size": 10000,
  "query": {
    "bool": {
      "must": [
        {
          "term": {
            "user.keyword": "CrucifiX"
          }
        },
        {
          "term": {
            "method.keyword": "OPTION"
          }
        },
        {
          "term": {
            "path.keyword": "/user/booperbot124"
          }
        },
        {
          "term": {
            "http_version.keyword": "HTTP/1.1"
          }
        },
        {
          "term": {
            "status": "401"
          }
        }
      ]
    }
  }
}

Unstructured payload

{
  "from": 0,
  "size": 10000,
  "query": {
    "bool": {
      "must": [
        {
          "match_phrase": {
            "message": "CrucifiX"
          }
        },
        {
          "match_phrase": {
            "message": "OPTION"
          }
        },
        {
          "match_phrase": {
            "message": "/user/booperbot124"
          }
        },
        {
          "match_phrase": {
            "message": "HTTP/1.1"
          }
        },
        {
          "match_phrase": {
            "message": "401"
          }
        }
      ]
    }
  }
}

Query by condition and timerange

URL: http://127.0.0.1:9200/_search

Structured payload

{
  "size": 10000,
  "query": {
    "bool": {
      "must": [
        {
          "term": {
            "user.keyword": "CrucifiX"
          }
        },
        {
          "term": {
            "method.keyword": "OPTION"
          }
        },
        {
          "term": {
            "path.keyword": "/user/booperbot124"
          }
        },
        {
          "term": {
            "http_version.keyword": "HTTP/1.1"
          }
        },
        {
          "term": {
            "status": "401"
          }
        },
        {
          "range": {
            "timestamp": {
              "gte": "2024-08-19T07:03:37.383Z",
              "lte": "2024-08-19T07:24:58.883Z"
            }
          }
        }
      ]
    }
  }
}

Unstructured payload

{
  "size": 10000,
  "query": {
    "bool": {
      "must": [
        {
          "match_phrase": {
            "message": "CrucifiX"
          }
        },
        {
          "match_phrase": {
            "message": "OPTION"
          }
        },
        {
          "match_phrase": {
            "message": "/user/booperbot124"
          }
        },
        {
          "match_phrase": {
            "message": "HTTP/1.1"
          }
        },
        {
          "match_phrase": {
            "message": "401"
          }
        },
        {
          "range": {
            "timestamp": {
              "gte": "2024-08-19T05:16:17.099Z",
              "lte": "2024-08-19T05:46:02.722Z"
            }
          }
        }
      ]
    }
  }
}