Skip to content

Instantly share code, notes, and snippets.

View anelson-vidscale's full-sized avatar

Alex Nelson anelson-vidscale

1 follower · 0 following
View GitHub Profile
@anelson-vidscale
anelson-vidscale / gist:5406d0b15b15adb3df47be9d180cbf51
Created January 7, 2020 00:03
Elasticsearch query
"aggs": {
"by_site": {
"terms": {
"field": "site",
"size": 500
},
"aggs": {
"by_top_hits" : {
@anelson-vidscale
anelson-vidscale / gist:ff3d0f4cbda15b41c3f1db3a49d2724b
Created December 13, 2019 17:48
"aggregations" : {
"by-key" : {
"doc_count_error_upper_bound" : 0,
"sum_other_doc_count" : 0,
"buckets" : [
{
"key" : "storage",
"doc_count" : 3,
"my-toppest" : {
"hits" : {
@anelson-vidscale
anelson-vidscale / gist:4a8762e4a921f0431db68039343980fc
Created December 13, 2019 17:47
POST /ledger/_search?size=0
{
"size" : 0,
"aggs": {
"by-key": {
"terms": { "field": "alert_key", "size": 10 },
"aggs": {
"firing-only" : { "filter": { "term": { "state": "fire" } } , "aggs": { "max-firing-only": { "max": { "field": "@timestamp" } } } },
"resolve-only" : { "filter" : { "term": { "state" : "resolve" } }, "aggs": { "max-resolve-only": { "max": { "field": "@timestamp" } } } },
"my-decorations" : { "bucket_selector": {
@anelson-vidscale
anelson-vidscale / gist:7a14fe5566974892aa39a9a2683084ae
Created December 13, 2019 17:46
Sample Alert Data
PUT /ledger/log/_bulk?refresh
{"index":{"_id":1}}
{"alert_key": "storage","severity": "critical", "@timestamp" : "2019-11-01T06:04:10.000000+00:00", "start_epoch" : 1572588250, "jira" : "OST-1", "state" : "fire"}
{"index":{"_id":2}}
{"alert_key": "cpu","severity": "high", "@timestamp" : "2019-11-01T06:04:10.000000+00:00", "start_epoch" : 1572588250, "jira" : "OST-2", "state" : "fire"}
{"index":{"_id":3}}
{"alert_key": "memory","severity": "medium", "@timestamp" : "2019-11-01T06:04:10.000000+00:00", "start_epoch" : 1572588250, "jira" : "OST-3", "state" : "fire"}
{"index":{"_id":4}}
{"alert_key": "disk","severity": "low", "@timestamp" : "2019-11-01T06:04:10.000000+00:00", "start_epoch" : 1572588250, "jira" : "OST-4", "state" : "fire"}
{"index":{"_id":5}}
@anelson-vidscale
anelson-vidscale / simple vega without height and width specified
Created November 14, 2019 19:19
{
"$schema": "https://vega.github.io/schema/vega/v3.json",
"autosize": "pad",
"signals": [
{ "name": "my_height", "value": 200 },
{ "name": "my_width", "value": 200 },
{
"name": "startAngle", "value": 0,
@anelson-vidscale
anelson-vidscale / simple vega legend
Created November 14, 2019 18:42
{
"$schema": "https://vega.github.io/schema/vega/v5.json",
"width": 200,
"height": 200,
"autosize": "none",
"signals": [
{
"name": "startAngle", "value": 0,
"bind": {"input": "range", "min": 0, "max": 6.29, "step": 0.01}
@anelson-vidscale
anelson-vidscale / gist:087b248659044811acdeedd196ad190e
Created November 13, 2019 22:15
{
"$schema": "https://vega.github.io/schema/vega/v3.json",
"width": 300,
"height": 240,
"padding": 5,
"data": [
{
"name": "table",
"values": [
@anelson-vidscale
anelson-vidscale / gist:9a6927cdd19d1b920e3bf23a91252667
Created August 8, 2019 14:27
I am now trying to help you help me by giving you the commands to create the data in elasticsearch
so that we are talking about the same thing.
DELETE alerts
POST _bulk?refresh
{ "index" : { "_index" : "alerts", "_id" : "1", "_type" : "log" } }
{ "name" : "storage_controller_failure" }
{ "index" : { "_index" : "alerts", "_id" : "2", "_type" : "log" } }
{ "name" : "storage_controller_failure" }
@anelson-vidscale
anelson-vidscale / gist:d40657bab66750e90d280067a3d7a219
Created August 7, 2019 16:28
how do I specify the name of the array of values to be buckets which is what elasticsearch returns in the results
/*
* The only difference is that the name of the array is "buckets" instead of "values"
* When the name is "values" it works.
* When the name is "buckets" it does not.
* I need to tell the "domain" to use "buckets" not "values", but I could not figure out how.
*/
{
"$schema":"https://vega.github.io/schema/vega/v3.json",
"width": 400, "height": 100,