ElasticSearch: How to query a date field using an hours-range filter
Currently, I already know how to filter a days range from a (timestamp) date field. That\'s an easy one:
\"range\": {
\"date\": {
\"gte\": \"2015
-
You can do it with your
rangefilter to filter the correct days and then with ascriptfilter to filter the desired hours, like this:{ "query": { "filtered": { "filter": { "bool": { "must": [ { "range": { "date": { "gte": "2015-11-01", "lte": "2015-11-30" } } }, { "script": { "script": { "source": "doc.date.date.getHourOfDay() >= params.min && doc.date.date.getHourOfDay() <= params.max", "params": { "min": 8, "max": 10 } } } } ] } } } } }Note that you need to make sure to enable dynamic scripting in order for this query to work.
讨论(0) -
If I understood your question correctly then I think you have to add new field which indexes only time like
PUT your_index { "mappings": { "your_type": { "properties": { "time": { "type": "date", "format": "HH:mm:ss" } } } } }Then you can query like this
{ "query": { "bool": { "must": [ { "range": { "date": { "gte": "2015-11-01", "lte": "2015-11-30" } } }, { "range": { "time": { "gte": "08:00:00", "lte": "10:00:00" } } } ] } } }Does this help?
讨论(0) -
Here's what I once used to only get results from start of current day to 6pm:
{ "query": { "bool": { "must": [ { "query_string": { "query": "(log_message:\"My Search String\")" } }, { "range": { "@timestamp": { "time_zone": "CET", "gt": "now-24h/d", "lte": "now-24h/d+18h" } } } ] } } }the important part is "now-24h/d" which will round to midnight / begin of current day, although it is a bit tricky as it depends on whether you use gt/lt(e), see reference doc for details.
讨论(0)
加载中...
- 热议问题