Commit b164e5ea by Rashid Khan

Merge pull request #85 from rashidkpc/master

Derive Queries Panel
parents f7a1d8ef a608b809
......@@ -20,6 +20,6 @@ var config = new Settings(
kibana_index: "kibana-int",
modules: ['histogram','map','pie','table','stringquery','sort',
<div class="row-fluid">
<div class="span12">
The derive queries panel takes a query and a field, then runs a terms facet against both and generates a list of terms to query on. For example, you might want to see a histogram of the top 5 requests that return a 404. <strong>You should be careful not to select a high cardinality field</strong> as Elasticsearch must load all of these values into memory.
<div class="row-fluid">
<div class="span3">
<label class="small">Length</label>
<input type="number" style="width:80%" ng-model="panel.size" ng-change="set_refresh(true)">
<div class="span8">
<label class="small">Exclude Terms(s) (comma seperated)</label>
<input array-join type="text" style="width:90%" ng-change="set_refresh(true)" ng-model='panel.exclude'></input>
\ No newline at end of file
<kibana-panel ng-controller='derivequeries' ng-init="init()">
<span ng-show='panel.spyable' style="position:absolute;right:0px;top:0px" class='panelextra pointer'>
<i bs-modal="'partials/modal.html'" class="icon-eye-open"></i>
<div ng-show="!panel.multi">
<table class="form-horizontal">
<td width="97%" style="padding-right:20px">
<input type="text" style="width:100%" ng-model="panel.query">
<td ng-show="panel.fields.length > 0">
<select class="input-small" ng-model="panel.field" ng-options="f for f in panel.fields"></select>
<td ng-show="panel.fields.length == 0">
<input class="input-small" ng-model="panel.field" type="text"/>
<td style="margin-left:20px" width="1%">
<button style="margin-top:0px" type="submit" class="btn btn-info" ng-click="get_data()"><i class="icon-search"></i></button>
<td width="1%">
<button style="margin-top:0px" type="submit" class="btn btn-danger" ng-click="panel.query='';get_data()"><i class="icon-ban-circle"></i></button>
\ No newline at end of file
## Termsquery
Broadcasts an array of queries based on the results of a terms facet
### Parameters
* label :: The label to stick over the field
* query :: A string to use as a filter for the terms facet
* field :: the field to facet on
* size :: how many queries to generate
* fields :: a list of fields known to us
### Group Events
#### Sends
* query :: Always broadcast as an array, even in multi: false
* get_time :: Request the time object from the timepicker
#### Receives
* query :: An array of queries. This is probably needs to be fixed.
* time :: populate index and time
* fields :: A list of fields known to us
angular.module('kibana.derivequeries', [])
.controller('derivequeries', function($scope, eventBus) {
// Set and populate defaults
var _d = {
label : "Search",
query : "*",
group : "default",
field : '_type',
fields : [],
spyable : true,
size : 5,
exclude : []
$scope.init = function() {
eventBus.register($scope,'fields', function(event, fields) {
$scope.panel.fields = fields.all;
eventBus.register($scope,'time', function(event,time){set_time(time)});
eventBus.register($scope,'query', function(event, query) {
$scope.panel.query = _.isArray(query) ? query[0] : query;
// Now that we're all setup, request the time from our group
$scope.get_data = function() {
// Make sure we have everything for the request to complete
if(_.isUndefined($scope.index) || _.isUndefined($scope.time))
$scope.panel.loading = true;
var request = $scope.ejs.Request().indices($scope.index);
// Terms mode
request = request
ejs.QueryStringQuery($scope.panel.query || '*'),
var results = request.doSearch();
// Populate scope when we have results
results.then(function(results) {
$scope.panel.loading = false;
var data = [];
_.each(results.facets.query.terms, function(v) {
$scope.set_refresh = function (state) {
$scope.refresh = state;
$scope.close_edit = function() {
$scope.refresh = false;
$scope.populate_modal = function(request) {
$scope.modal = {
title: "Inspector",
body : "<h5>Last Elasticsearch Query</h5><pre>"+
'curl -XGET '+config.elasticsearch+'/'+$scope.index+"/_search?pretty -d'\n"+
function set_time(time) {
$scope.time = time;
$scope.index = _.isUndefined(time.index) ? $scope.index : time.index
$scope.send_query = function(query) {
var _query = _.isArray(query) ? query : [query]
\ No newline at end of file
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment