Reputation: 1941
Elasticsearch Searching over large number of fields in a large index
On Elasticsearch 5.6.
We've got a requirement to implement a context free search (a simple google like search anything) feature that could operate over an index with 1000 fields. The index itself can be big (1 million docs per day).
I was looking at the query_string query with a fields as '*'. I came across this section
where it says searching over multiple fields will slow down the search and a general pattern is to have an "all like field with all the values munged and run a search on it.
While this is perfectly possible, my requirement is a bit more complex that these 1000 fields are protected by document level security by using x-pack security. Therefore if I search only for the "all like" field, I might be bringing the top result as the one for which the user actually didn't have any fields relevant to their permission settings. Somewhere there's a gap here is what I foresee. Any thoughts and possible solutions?
Upvotes: 0
Views: 267
Answers (0)
Related Questions
- How do I manage an index with more than 10,000,000 documents in Elasticsearch for fast searching?
- Alternative of too many fields in elasticsearch document
- Is ElasticSearch suited for retrieving a very large number of search records?
- How to improve index performance in Elasticsearch with too many fields?
- Elasticsearch mapping with more than 1000 fields
- Too many fields bad for elasticsearch index?
- Mapping with thousands of fields design options
- How to search through data with arbitrary amount of fields?
- How to perform searching on large amounts of data efficiently with elastichsearch apis?
- Index huge data into Elasticsearch