stackoom
  简体   繁体   中英

Query from kibana in python?

 原文  2019-04-05 10:26:47       python/ python-3.x/ elasticsearch/ kibana

Question

I am starting a little script in Python to create a little GET on a query I made in Kibana. Currently, in Kibana I receive a list of IP with the counts: 在此处输入图片说明

I would like to receive this information in Python and I already try with search but I am not sure to understand.

Here is the query in Kibana: 

    GET /_search
{
  "size": 0,
  "query": {
      "range": {
        "@timestamp": {
          "gte": 1552922613804,
          "lte": 1552923513804,
          "format": "epoch_millis"
        }
      }
    },
  "aggs": {
    "2": {
      "significant_terms": {
        "field": "origin.keyword",
        "size": 300
      }
    }
  }
}

Is it possible to create the same query in python?

Thanks in advance!

2 answers

solution1
 1 ACCPTED  2019-04-05 10:36:11

Yes,just convert your query so python can understand. If you have authentication setup for elastic you will need to pass your authentication aswell. (username,password) as tuple. Add this to the requests as (auth=(username,password)) 

import json
import requests

HEADERS = {
    'Content-Type': 'application/json'
}

uri = "[insert your endpoint]"+"/_search"

query = json.dumps({
  "size": 0,
  "query": {
      "range": {
        "@timestamp": {
          "gte": 1552922613804,
          "lte": 1552923513804,
          "format": "epoch_millis"
        }
      }
    },
  "aggs": {
    "2": {
      "significant_terms": {
        "field": "origin.keyword",
        "size": 300
      }
    }
  }
})

r = requests.get(uri,headers=HEADERS, data=query).json()
print(r)

solution2
 1  2019-04-05 10:39:01

Here's how you can query ES and convert the results to CSV: 

from elasticsearch import Elasticsearch, helpers
import csv
es = Elasticsearch([“Server”])
query={"query": {"query_string" : {"query" : “(something: True)“}}}
index=[“Index”]
l=[]
with open('my.csv','w') as out:
    csv_out=csv.writer(out)
    csv_out.writerow([‘my’, ‘header’])
    for i in index:
        res=es.search(index=i,doc_type="core-config",body=query,_source_include=[“my”, “header”],size="10000")
        for indexes in res['hits']['hits']:
            l.append((indexes['_source’][‘my’],indexes['_source’][‘header’]))
        set_keyid=list(set(l))
        for lis in set_keyid:
            csv_out.writerow(lis)

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Obtaining an elasticsearch query from Kibana Convert Kibana query (create index pattern) to Python request Querying Elasticsearch Index from Python returns 0 hits but thousands from Kibana Geo Point data in ElasticSearch/Kibana from Python app Python (Jupyter) -> Vega -> Kibana? How to successfully write & run a SQL query in Python script which is built in Elasticsearch Kibana? ElasticSearch - Kibana - Not able to get Index Pattern with Python KIbana connection and ES integration using python How to Get Kibana Visualization SVG in Python Traceback error when running elasticsearch and kibana on python
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM