使用Splunk查詢json數據
[英]Query json data using Splunk
問題描述
我們在azure存儲(表和blob)中壓縮了json格式的數據我想將數據ETL到關系數據庫,以便可以選擇對數據運行sql查詢我有一個實用程序,它將數據解壓縮到json文件,I通過SSIS包到ETL從excel到sql server(在將json轉換為excel后使用pivot)是否有更簡單的方法來使用splunk獲得相同的目的? 請注意我的json架構是一個有點復雜的json示例:
{
"columns": [
{
"name": "database_name",
"values": [
"sales",
"salesr",
"sal"
],
"encd": 0,
"type": 0
},
{
"name": "machine_name",
"values": [
"ISRVMN823",
"ISRVMN825",
"ISRVMN822"
],
"encd": 0,
"type": 0
},
{
"name": "program_name",
"values": [
"SQLAgent - TSQL JobStep (Job 0x8701D9C6BFB3A146B9E6AB0602F5B4C3 : Step 1)",
"SQLAgent - TSQL JobStep (Job 0xE3521B34CED03441B971A36E8EF5210B : Step 1)",
"SQLAgent - TSQL JobStep (Job 0x4BBA5C65C5AF78469A7FE9B765BE430E : Step 1)"
],
"encd": 0,
"type": 0
}
],
"submission_time": 1483617753706,
"ds_id": "ISRVMN889",
"identity_broker": "00_yr",
"connection_name": "ISRVMN822SQL2012NY",
"table_name": "pass_unique_stat_5m",
"version": "1.0.0",
"duration": 300,
"sample_time": 1483617300000
}
我想在關系數據庫中得到以下內容:
或另一種查詢數據的方式
謝謝
1 個解決方案
解決方案1
0 2017-05-02 08:35:59
干得好 :)
您可以忽略第一部分,這只是我將數據硬編碼到搜索中
| makeresults
| eval json = "{
\"columns\": [
{
\"name\": \"database_name\",
\"values\": [
\"sales\",
\"salesr\",
\"sal\"
],
\"encd\": 0,
\"type\": 0
},
{
\"name\": \"machine_name\",
\"values\": [
\"ISRVMN823\",
\"ISRVMN825\",
\"ISRVMN822\"
],
\"encd\": 0,
\"type\": 0
},
{
\"name\": \"program_name\",
\"values\": [
\"SQLAgent - TSQL JobStep (Job 0x8701D9C6BFB3A146B9E6AB0602F5B4C3 : Step 1)\",
\"SQLAgent - TSQL JobStep (Job 0xE3521B34CED03441B971A36E8EF5210B : Step 1)\",
\"SQLAgent - TSQL JobStep (Job 0x4BBA5C65C5AF78469A7FE9B765BE430E : Step 1)\"
],
\"encd\": 0,
\"type\": 0
}
],
\"submission_time\": 1483617753706,
\"ds_id\": \"ISRVMN889\",
\"identity_broker\": \"00_yr\",
\"connection_name\": \"ISRVMN822SQL2012NY\",
\"table_name\": \"pass_unique_stat_5m\",
\"version\": \"1.0.0\",
\"duration\": 300,
\"sample_time\": 1483617300000
}"
| spath input=json path=columns{} | rename columns{} as cols | table cols
| mvexpand cols
| spath input=cols | rename values{} as values | table name values
| transpose header_field=name | fields - column
如何使用SQL查詢將JSON Web服務數據插入SQL表中?
[英]How I can insert JSON web service data into a SQL table using SQL query?
如何使用python中的游標重新構造下面的JSON數據,這是SQL查詢的結果集
[英]How to re-structure the below JSON data which is a result set of SQL query using cursors in python
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.