Morning,
There are a lot of pages on how to query ELK stack from Python client library, however, it’s still hard to grab a useful pattern.
What I wanted is to translate some simple query in Kibana like redis.info.replication.role:master AND beat.hostname:*test AND tags:test into a useful Query DSL JSON.
It’s worth mentioning that the Python library uses this DSL. Once you have this info, things get much simpler.
Well, if you search hard enough, you will find a solution, and it should look like.
another_query_body = {
"query": {
"query_string" : {
"query": "(master) AND (*test) AND (test)",
"fields": ["redis.info.replication.role", "beat.hostname" , "tags"]
}
}
}As you probably guessed, each field maps to a query entry.
Cheers