user2101712
Reputation: 115
How to filter aggregation results in Elasticsearch?
I have an Elasticsearch index "sessions" with two fields:
"user_id" : {
"type" : "keyword"
},
"login_at" : {
"type" : "date"
}
Every time a user logs in, a new record is created with user_id and current timestamp.
I want to list all users who have not logged in for a week. I know how to get the last login time for each user with:
GET sessions/_search
{
"size": 0,
"aggs": {
"user_aggs": {
"terms": {
"field": "user_id",
"order": {
"last_access": "asc"
}
},
"aggs": {
"last_access": {
"max": {
"field": "login_at"
}
}
}
}
}
}
The above query lists all users and their last login time.
How can I filter the "last_access" field to values that are smaller than now-7d?
Upvotes: 2
Views: 856
Answers (1)
user2101712
Reputation: 115
Ok, I was able to resolve this. Here is the query:
GET sessions/_search
{
"size": 0,
"aggs": {
"user_aggs": {
"terms": {
"field": "user_id",
"size": 1000,
"order": {
"last_access": "asc"
}
},
"aggs": {
"last_access": {
"max": {
"field": "login_at"
}
},
"users_filtered": {
"bucket_selector": {
"buckets_path": {
"key": "last_access"
},
"script": "params.key < a_timestamp"
}
}
}
}
}
}
The a_timestamp variable has to be sent from the application, but that is ok.
Upvotes: 2
Related Questions
- filtering an elasticsearch query by aggregations
- Filtering aggregation results
- How to filter the aggregation results in Kibana (elastic search)?
- ElasticSearch: aggregation filtering
- Restrict aggregation to results of filter
- ElasticSearch aggregation - filter and group by
- Elasticsearch filter in Aggregation data
- Applying filters on results of aggregation in elastic search
- Elasticsearch: how to scope aggregations to your query and filter?
- ElasticSearch Filter by Aggregation Result