ElasticSearch之聚合aggs

已于 2024-03-08 18:03:54 修改
阅读量1.3k 收藏 17
点赞数 10
分类专栏: ElasticSearch 文章标签: elasticsearch aggs 聚合 统计分析
于 2024-02-21 11:17:20 首次发布
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/wang0907/article/details/136207021
版权

写在前面

本文看下es的聚合相关内容。

1:什么是聚合

即,数据的统计分析。如sum,count,avg,min,max,分组等。

2:支持哪些聚合类型

2.1:bucket aggregation

对满足特定条件的文旦进行分组。如:
在这里插入图片描述

在这里插入图片描述

在这里插入图片描述
支持如下几种方式来对数据进行分桶:

1:terms 按照词项的值分桶
2:range 按照指定的数据范围分桶
3:histogram 按照直方图进行分桶,可以认为是range分桶的一种特殊情况
4:cardinality 按照terms分桶,然后计算桶的个数,这种准确来说是terms分区+metric的一种方式
  • range 分桶
    在这里插入图片描述
  • histogram 分桶
    在这里插入图片描述
  • cardinality
POST kibana_sample_data_flights/_search
{
  "size": 0,
  "aggs": {
    "天气的个数": {
      "cardinality": {
        "field": "OriginWeather"
      }
    }
  }
}

在这里插入图片描述
第一步:按照OriginWeather分成若干个桶,第二步计算桶的个数。相当于count(distinct field)

2.1:metric aggregation

数学运算。如:
在这里插入图片描述

在这里插入图片描述

在这里插入图片描述

2.3:pipeline aggregation

类似于linux命令中的管道,即在上一个agg的基础上再进行一次聚合分析。

从类型上分为两类,sibling和parent,如下:
在这里插入图片描述

2.4:matrix aggregation

对多个字段操作并提供一个结果矩阵???嘛意思???

3:实战

3.1:bucket aggregation

  • 按照飞行目的地分组:
    测试数据参考这里 。但如果你是按照专栏顺序看的,我想你本地已经有这些数据了。
GET kibana_sample_data_flights/_search
{
  "size": 0,
  "aggs": {
    "飞行目的地分组": {
      "terms": {
        "field": "DestCountry"
      }
    }
  }
}

在这里插入图片描述

  • range和histogram分组
    首先准备测试数据:
DELETE /employees
PUT /employees/
{
  "mappings" : {
      "properties" : {
        "age" : {
          "type" : "integer"
        },
        "gender" : {
          "type" : "keyword"
        },
        "job" : {
          "type" : "text",
          "fields" : {
            "keyword" : {
              "type" : "keyword",
              "ignore_above" : 50
            }
          }
        },
        "name" : {
          "type" : "keyword"
        },
        "salary" : {
          "type" : "integer"
        }
      }
    }
}

PUT /employees/_bulk
{ "index" : {  "_id" : "1" } }
{ "name" : "Emma","age":32,"job":"Product Manager","gender":"female","salary":35000 }
{ "index" : {  "_id" : "2" } }
{ "name" : "Underwood","age":41,"job":"Dev Manager","gender":"male","salary": 50000}
{ "index" : {  "_id" : "3" } }
{ "name" : "Tran","age":25,"job":"Web Designer","gender":"male","salary":18000 }
{ "index" : {  "_id" : "4" } }
{ "name" : "Rivera","age":26,"job":"Web Designer","gender":"female","salary": 22000}
{ "index" : {  "_id" : "5" } }
{ "name" : "Rose","age":25,"job":"QA","gender":"female","salary":18000 }
{ "index" : {  "_id" : "6" } }
{ "name" : "Lucy","age":31,"job":"QA","gender":"female","salary": 25000}
{ "index" : {  "_id" : "7" } }
{ "name" : "Byrd","age":27,"job":"QA","gender":"male","salary":20000 }
{ "index" : {  "_id" : "8" } }
{ "name" : "Foster","age":27,"job":"Java Programmer","gender":"male","salary": 20000}
{ "index" : {  "_id" : "9" } }
{ "name" : "Gregory","age":32,"job":"Java Programmer","gender":"male","salary":22000 }
{ "index" : {  "_id" : "10" } }
{ "name" : "Bryant","age":20,"job":"Java Programmer","gender":"male","salary": 9000}
{ "index" : {  "_id" : "11" } }
{ "name" : "Jenny","age":36,"job":"Java Programmer","gender":"female","salary":38000 }
{ "index" : {  "_id" : "12" } }
{ "name" : "Mcdonald","age":31,"job":"Java Programmer","gender":"male","salary": 32000}
{ "index" : {  "_id" : "13" } }
{ "name" : "Jonthna","age":30,"job":"Java Programmer","gender":"female","salary":30000 }
{ "index" : {  "_id" : "14" } }
{ "name" : "Marshall","age":32,"job":"Javascript Programmer","gender":"male","salary": 25000}
{ "index" : {  "_id" : "15" } }
{ "name" : "King","age":33,"job":"Java Programmer","gender":"male","salary":28000 }
{ "index" : {  "_id" : "16" } }
{ "name" : "Mccarthy","age":21,"job":"Javascript Programmer","gender":"male","salary": 16000}
{ "index" : {  "_id" : "17" } }
{ "name" : "Goodwin","age":25,"job":"Javascript Programmer","gender":"male","salary": 16000}
{ "index" : {  "_id" : "18" } }
{ "name" : "Catherine","age":29,"job":"Javascript Programmer","gender":"female","salary": 20000}
{ "index" : {  "_id" : "19" } }
{ "name" : "Boone","age":30,"job":"DBA","gender":"male","salary": 30000}
{ "index" : {  "_id" : "20" } }
{ "name" : "Kathy","age":29,"job":"DBA","gender":"female","salary": 20000}

range分组例子:

POST employees/_search
{
  "size": 0,
  "aggs": {
    "薪酬区间": {
      "range": {
        "field": "salary",
        "ranges": [
          {
            "to": 10000
          },
          {
            "from": 10000,
            "to": 20000
          },
          {
            "key": "->20000",
            "from": 20000
          }
        ]
      }
    }
  }
}

在这里插入图片描述

3.2:metric aggregation

按照飞行目的地分组后,对分组的数据取最大最小和平均值。

GET kibana_sample_data_flights/_search
{
    "size": 0,
    "aggs": {
        "飞行目的地分组": {
            "terms": {
                "field": "DestCountry"
            },
            "aggs": {
                "票价平均值": {
                    "avg": {
                        "field": "AvgTicketPrice"
                    }
                },
                "票价最大值": {
                    "max": {
                        "field": "AvgTicketPrice"
                    }
                },
                "票价最小值": {
                    "min": {
                        "field": "AvgTicketPrice"
                    }
                }
            }
        }
    }
}

在这里插入图片描述

按照飞行目的地分组后,通过stats取每个分组的统计信息(会列出min,max,avg等常用统计信息),并且对每个分组再按照天气做一次分组,并取前5条数据:

GET kibana_sample_data_flights/_search
{
    "size": 0,
    "aggs": {
        "飞行目的地分组": {
            "terms": {
                "field": "DestCountry"
            },
            "aggs": {
                "组内统计信息": {
                    "stats": {
                        "field": "AvgTicketPrice"
                    }
                },
                "weatherrr": {
                    "terms": {
                        "field": "DestWeather",
                        "size": 5
                    }
                }
            }
        }
    }
}

在这里插入图片描述
以上的例子是通过agg嵌套的方式先对数据分桶,然后再进行聚合,其实,也可以直接进行metric运行,此时查询到的数据集相当于都在一个桶中:

# 查询最远距离,最近距离DistanceKilometers
POST kibana_sample_data_flights/_search
{
  "size": 0,
  "aggs": {
    "最远距离": {
      "max": {
        "field": "DistanceKilometers"
      }
    },
    "最近距离": {
      "min": {
        "field": "DistanceKilometers"
      }
    },
    "平均距离": {
      "avg": {
        "field": "DistanceKilometers"
      }
    }
  }
}

3.3:pipeline aggregation

准备数据:

DELETE employees
PUT /employees/_bulk
{ "index" : {  "_id" : "1" } }
{ "name" : "Emma","age":32,"job":"Product Manager","gender":"female","salary":35000 }
{ "index" : {  "_id" : "2" } }
{ "name" : "Underwood","age":41,"job":"Dev Manager","gender":"male","salary": 50000}
{ "index" : {  "_id" : "3" } }
{ "name" : "Tran","age":25,"job":"Web Designer","gender":"male","salary":18000 }
{ "index" : {  "_id" : "4" } }
{ "name" : "Rivera","age":26,"job":"Web Designer","gender":"female","salary": 22000}
{ "index" : {  "_id" : "5" } }
{ "name" : "Rose","age":25,"job":"QA","gender":"female","salary":18000 }
{ "index" : {  "_id" : "6" } }
{ "name" : "Lucy","age":31,"job":"QA","gender":"female","salary": 25000}
{ "index" : {  "_id" : "7" } }
{ "name" : "Byrd","age":27,"job":"QA","gender":"male","salary":20000 }
{ "index" : {  "_id" : "8" } }
{ "name" : "Foster","age":27,"job":"Java Programmer","gender":"male","salary": 20000}
{ "index" : {  "_id" : "9" } }
{ "name" : "Gregory","age":32,"job":"Java Programmer","gender":"male","salary":22000 }
{ "index" : {  "_id" : "10" } }
{ "name" : "Bryant","age":20,"job":"Java Programmer","gender":"male","salary": 9000}
{ "index" : {  "_id" : "11" } }
{ "name" : "Jenny","age":36,"job":"Java Programmer","gender":"female","salary":38000 }
{ "index" : {  "_id" : "12" } }
{ "name" : "Mcdonald","age":31,"job":"Java Programmer","gender":"male","salary": 32000}
{ "index" : {  "_id" : "13" } }
{ "name" : "Jonthna","age":30,"job":"Java Programmer","gender":"female","salary":30000 }
{ "index" : {  "_id" : "14" } }
{ "name" : "Marshall","age":32,"job":"Javascript Programmer","gender":"male","salary": 25000}
{ "index" : {  "_id" : "15" } }
{ "name" : "King","age":33,"job":"Java Programmer","gender":"male","salary":28000 }
{ "index" : {  "_id" : "16" } }
{ "name" : "Mccarthy","age":21,"job":"Javascript Programmer","gender":"male","salary": 16000}
{ "index" : {  "_id" : "17" } }
{ "name" : "Goodwin","age":25,"job":"Javascript Programmer","gender":"male","salary": 16000}
{ "index" : {  "_id" : "18" } }
{ "name" : "Catherine","age":29,"job":"Javascript Programmer","gender":"female","salary": 20000}
{ "index" : {  "_id" : "19" } }
{ "name" : "Boone","age":30,"job":"DBA","gender":"male","salary": 30000}
{ "index" : {  "_id" : "20" } }
{ "name" : "Kathy","age":29,"job":"DBA","gender":"female","salary": 20000}

3.3.1:sibling

与要基于其计算的聚合结果是平级的关系。

  • 找出平均工资最低的工作类型
    分为3步:1:按照工作类型进行分组 2:计算出每个分组的平均工资 3:找出平均工资最低的分组(使用pipeline aggr)
POST employees/_search
{
    "size": 0,
    "aggs": {
        "jobs": {
            "terms": {
                "field": "job.keyword",
                "size": 10
            },
            "aggs": {
                "avg_salary": {
                    "avg": {
                        "field": "salary"
                    }
                }
            }
        },
        "min_salary_by_job": {
          "min_bucket": {
            "buckets_path": "jobs.avg_salary"
          }
        }
    }
}

在这里插入图片描述
类似的还有。

  • 平均工资最高的工种
POST employees/_search
{
    "size": 0,
    "aggs": {
        "jobs": {
            "terms": {
                "field": "job.keyword",
                "size": 10
            },
            "aggs": {
                "avg_salary": {
                    "avg": {
                        "field": "salary"
                    }
                }
            }
        },
        "平均工资最高的工种": {
          "max_bucket": {
            "buckets_path": "jobs.avg_salary"
          }
        }
    }
}

结果:
在这里插入图片描述

  • 每个工种平均工资的平均工资
POST employees/_search
{
    "size": 0,
    "aggs": {
        "jobs": {
            "terms": {
                "field": "job.keyword",
                "size": 10
            },
            "aggs": {
                "avg_salary": {
                    "avg": {
                        "field": "salary"
                    }
                }
            }
        },
        "每个工种平均工资的平均工资": {
          "avg_bucket": {
            "buckets_path": "jobs.avg_salary"
          }
        }
    }
}

结果:
在这里插入图片描述

  • 多值输出
POST employees/_search
{
    "size": 0,
    "aggs": {
        "jobs": {
            "terms": {
                "field": "job.keyword",
                "size": 10
            },
            "aggs": {
                "avg_salary": {
                    "avg": {
                        "field": "salary"
                    }
                }
            }
        },
        "多值输出": {
          "stats_bucket": {
            "buckets_path": "jobs.avg_salary"
          }
        }
    }
}

结果:
在这里插入图片描述

3.3.2:parent

包含在要基于其计算的聚合结果中,即上个聚合结果作为其parent。

4:聚合的作用范围

4.1:什么是聚合的作用范围以及有哪些作用范围

基于哪些文档 进行聚合操作,叫做作用范围,在我们前面的例子中,我们没有加任何的作用范围,所以是针对的所有文档。

es提供了如下几种作用范围:

1:query
2:filter
3:post filter
4:global

4.2:各种作用范围实例

准备数据:

DELETE /employees
PUT /employees/
{
  "mappings" : {
      "properties" : {
        "age" : {
          "type" : "integer"
        },
        "gender" : {
          "type" : "keyword"
        },
        "job" : {
          "type" : "text",
          "fields" : {
            "keyword" : {
              "type" : "keyword",
              "ignore_above" : 50
            }
          }
        },
        "name" : {
          "type" : "keyword"
        },
        "salary" : {
          "type" : "integer"
        }
      }
    }
}

PUT /employees/_bulk
{ "index" : {  "_id" : "1" } }
{ "name" : "Emma","age":32,"job":"Product Manager","gender":"female","salary":35000 }
{ "index" : {  "_id" : "2" } }
{ "name" : "Underwood","age":41,"job":"Dev Manager","gender":"male","salary": 50000}
{ "index" : {  "_id" : "3" } }
{ "name" : "Tran","age":25,"job":"Web Designer","gender":"male","salary":18000 }
{ "index" : {  "_id" : "4" } }
{ "name" : "Rivera","age":26,"job":"Web Designer","gender":"female","salary": 22000}
{ "index" : {  "_id" : "5" } }
{ "name" : "Rose","age":25,"job":"QA","gender":"female","salary":18000 }
{ "index" : {  "_id" : "6" } }
{ "name" : "Lucy","age":31,"job":"QA","gender":"female","salary": 25000}
{ "index" : {  "_id" : "7" } }
{ "name" : "Byrd","age":27,"job":"QA","gender":"male","salary":20000 }
{ "index" : {  "_id" : "8" } }
{ "name" : "Foster","age":27,"job":"Java Programmer","gender":"male","salary": 20000}
{ "index" : {  "_id" : "9" } }
{ "name" : "Gregory","age":32,"job":"Java Programmer","gender":"male","salary":22000 }
{ "index" : {  "_id" : "10" } }
{ "name" : "Bryant","age":20,"job":"Java Programmer","gender":"male","salary": 9000}
{ "index" : {  "_id" : "11" } }
{ "name" : "Jenny","age":36,"job":"Java Programmer","gender":"female","salary":38000 }
{ "index" : {  "_id" : "12" } }
{ "name" : "Mcdonald","age":31,"job":"Java Programmer","gender":"male","salary": 32000}
{ "index" : {  "_id" : "13" } }
{ "name" : "Jonthna","age":30,"job":"Java Programmer","gender":"female","salary":30000 }
{ "index" : {  "_id" : "14" } }
{ "name" : "Marshall","age":32,"job":"Javascript Programmer","gender":"male","salary": 25000}
{ "index" : {  "_id" : "15" } }
{ "name" : "King","age":33,"job":"Java Programmer","gender":"male","salary":28000 }
{ "index" : {  "_id" : "16" } }
{ "name" : "Mccarthy","age":21,"job":"Javascript Programmer","gender":"male","salary": 16000}
{ "index" : {  "_id" : "17" } }
{ "name" : "Goodwin","age":25,"job":"Javascript Programmer","gender":"male","salary": 16000}
{ "index" : {  "_id" : "18" } }
{ "name" : "Catherine","age":29,"job":"Javascript Programmer","gender":"female","salary": 20000}
{ "index" : {  "_id" : "19" } }
{ "name" : "Boone","age":30,"job":"DBA","gender":"male","salary": 30000}
{ "index" : {  "_id" : "20" } }
{ "name" : "Kathy","age":29,"job":"DBA","gender":"female","salary": 20000}

4.2.1:query

基于es的query搜索功能先限定agg的作用范围。

POST employees/_search
{
    "size": 0,
    "query": {
        "range": {
            "age": {
                "gte": 40
            }
        }
    },
    "aggs": {
        "员工年龄大于40工作们": {
            "terms": {
                "field": "job.keyword"
            }
        }
    }
}

在这里插入图片描述
再比如查询:

POST employees/_search
{
    "size": 0,
    "query": {
        "range": {
            "age": {
                "gte": 40
            }
        }
    },
    "aggs": {
        "员工年龄大于40工作们": {
            "terms": {
                "field": "job.keyword"
            }
        },
        "员工年龄大于40员工最低工资": {
          "min": {
            "field": "salary"
          }
        }
    }
}

在这里插入图片描述

4.2.2:filter

通过filter可以对某个聚合操作设置单独的作用范围,如下查询年龄20到30的最低工资和年龄30到40的最高工资:

POST employees/_search
{
    "size": 0,
    "aggs": {
        "20到30员工": {
            "filter": {
                "range": {
                    "age": {
                        "from": 20,
                        "to": 30
                    }
                }
            },
            "aggs": {
                "最低工资": {
                    "min": {
                        "field": "salary"
                    }
                }
            }
        },
        "30到40员工": {
            "filter": {
                "range": {
                    "age": {
                        "from": 30,
                        "to": 40
                    }
                }
            },
            "aggs": {
                "最高工资": {
                    "max": {
                        "field": "salary"
                    }
                }
            }
        }
    }
}

在这里插入图片描述

4.2.3:post filter

用于对最终显式的hits结果做过滤,比如总共有10个文档被应用于聚合,但是并不希望展示这所有的10个文档,而只是在hits中返回满足特定条件的文档。post filter就是用来表达特定条件的。

也就是说,post filter和agg聚合本身没有毛线关系,只是用来影响hits结果。我猜因为常规的query过滤会影响aggs聚合,所以增加了post filter吧!

  • 按照工作分组并获取工资高于3万的员工信息
POST employees/_search
{
    "size": 100,
    "aggs": {
        "jobs": {
            "terms": {
                "field": "job.keyword"
            }
        }
    },
    "post_filter": {
        "range": {
            "salary": {
                "gt": 30000
            }
        }
    }
}

在这里插入图片描述

4.2.4:global

默认的query方式的作用范围会影响所有的agg聚合,如果希望某个聚合不受其影响的话,则可以使用global,如:

POST employees/_search
{
    "size": 0,
    "query": {
        "range": {
            "age": {
                "gte": 40
            }
        }
    },
    "aggs": {
        "年龄大于40的jobs": {
            "terms": {
                "field": "job.keyword"
            }
        },
        "所有的": {
            "global": {},
            "aggs": {
                "所有的jobs": {
                    "terms": {
                        "field": "job.keyword"
                    }
                }
            }
        }
    }
}

在这里插入图片描述

写在后面

参考文章列表

ElasticSearch之search API

一户董
关注
专栏目录
ElasticSearch - 聚合 aggs
kucw的博客
07-23 4万+
聚合概念 ElasticSearch除了致力于搜索之外,也提供了聚合实时分析数据的功能 如果把搜索比喻为大海捞针(从海量的文档中找出符合条件的那一个),那麽聚合就是去分析大海中的针们的特性,像是 在大海里有多少针? 针的平均长度是多少? 按照针的製造商来划分,针的长度中位值是多少? 每月加入到海中的针有...
elasticsearch-PHP aggs聚合,去重,对聚合结果删除某些列
m0_37684037的博客
12-04 1188
1、根据某个字段聚合 // 聚合字段 $params['aggs']['groupByCondition']['terms'] = [ 'field' => $aggsField, 'size' => $num, 'order' ...
Elasticsearch聚合 之 Terms
06-19
Elasticsearch聚合 之 Terms
ElasticSearch 高级查询语法Query DSL 2
星空下的博客
07-04 1157
Elasticsearch除搜索以外,提供了针对ES 数据进行统计分析的功能。聚合(aggregations)可以让我们极其方便的实现对数据的统计、分析、运算。例如: 聚合的分类 Metric Aggregation:—些数学运算,可以对文档字段进行统计分析,类比Mysql中的 min(), max(), sum() 操作。 Bucket Aggregation: 一些满足特定条件的文档的集合放置到一个桶里,每一个桶关联一个key,类比Mysql中的group by操作。 Pipeline A
ElasticSearch - 聚合 aggs 详解
weixin_46742102的博客
09-29 6239
聚合概念 ElasticSearch除了致力于搜索之外,也提供了聚合实时分析数据的功能 如果把搜索比喻为大海捞针(从海量的文档中找出符合条件的那一个),那麽聚合就是去分析大海中的针们的特性,像是 在大海里有多少针? 针的平均长度是多少? 按照针的製造商来划分,针的长度中位值是多少? 每月加入到海中的针有多少? 这里面有异常的针麽? 因此透过聚合,我们可以得到一个数据的
Elasticsearch 聚合查询(aggs)
龙源IT 的博客
03-15 1万+
聚合aggregations 聚合可以让我们极其方便的实现对数据的统计、分析。例如: 什么品牌的手机最受欢迎? 这些手机的平均价格、最高价格、最低价格? 这些手机每月的销售情况如何? 实现这些统计功能的比数据库的sql要方便的多,而且查询速度非常快,可以实现实时搜索效果。 基本概念 Elasticsearch中的聚合,包含多种类型,最常用的两种,一个叫桶,一个叫度量: 桶(bucket) 桶的作用,是按照某种方式对数据进行分组,每一组数据在ES中称为一个桶,例如我们根据国籍对人划分,可以得到中国桶、
es数据聚合
CV工程师呀
02-09 2971
1.kibana实现 1.1.聚合的种类 聚合常见的有三类: 桶(Bucket)聚合:用来对文档做分组 TermAggregation:按照文档字段值分组,例如按照品牌值分组、按照国家分组 Date Histogram:按照日期阶梯分组,例如一周为一组,或者一月为一组 度量(Metric)聚合:用以计算一些值,比如:最大值、最小值、平均值等 Avg:求平均值 Max:求最大值 Min:求最小值 Stats:同时求max、min、avg、sum等 管道(pipeline)聚合:其它聚合的结
Elasticsearch AGG
Claroja
11-21 829
package elasticsearch; import org.elasticsearch.action.index.IndexResponse; import org.elasticsearch.action.search.SearchRequestBuilder; import org.elasticsearch.action.search.SearchResponse; import ...
Elasticsearch聚合(aggs)操作
我能在河边钓一整天的鱼
02-12 1346
目录 聚合 1.桶(bucket) 2.度量(metrics) 3.聚合为桶示例 4.桶内度量示例 5.嵌套桶示例 6.阶梯分桶Histogram 聚合 聚合可以让我们极其方便的实现对数据的统计、分析,实现这些统计功能的比数据库的sql要方便的多,而且查询速度非常快,可以实现实时搜索效果。下面介绍两种最常用的聚合 1.桶(bucket) ...
elasticsearch搜索引擎的常用方法(四)聚合检索aggs
Misaki_root的博客
07-08 2201
一、常用的聚合检索语句 统计news索引下的所有新闻的发布机构分别有哪些 GET news/_search { "aggs": { "publish_org": { "terms": { "field": "publish_org.keyword", "size": 10 } } }, "size": 0 } 注意: 聚合的字段不能时text类型字段 结果如下: { "took" : 32, ..
elasticsearch agg
weixin_30613727的博客
12-08 264
OK curl -XGET http://21.3.5.121:9200/ipv4geo/service/_count -d '{"query":{"match":{"srv_content":"iis"}}}' curl -XGET http://21.3.5.121:9200/ipv4geo/service/_search -d '{"aggs":{"group_yy":{"terms":{"...
ElasticSearch - 分组聚合查询 aggs
路在脚下
11-27 1632
聚合的两个概念 一 桶(Buckets) : 满足特定条件的文档的集合 1 当聚合开始被执行,每个文档会决定符合哪个桶的条件,如果匹配到,文档将放入相应的桶并接着进行聚合操作 如:当query和aggs一起存在时,会先执行query的主查询,主查询query执行完后会搜出一批结果,而这些结果才会被拿去aggs拿去做聚合 二 指标(Metrics) : 对桶内的文档进行统计计算 1 桶能让我们划分文档到有意义的集合, 但是最终我们需要的是对这...
ElasticSearch的多字段分组聚合的三种实现方式
热门推荐
IT- 研究者
03-26 1万+
ElasticSearch的多字段分组聚合的三种实现方式 一、ElasticSearch的分组聚合 官网文档地址: https://www.elastic.co/guide/en/elasticsearch/reference/current/search-aggregations-bucket-terms-aggregation.html#_multi_field_terms_aggregation 实现背景:实现类似SQL的group by功能: select team,age from a_perso
使用agg方法聚合数据
qq_44322163的博客
10-11 615
使用agg方法聚合数据
elasticsearch篇:数据聚合
最新发布
viperd的博客
03-15 2011
默认的拼音分词器会将每个汉字单独分为拼音,而我们希望的是每个词条形成一组拼音,需要对拼音分词器做个性化定制,形成自定义分词器。elasticsearch中分词器(analyzer)的组成包含三部分:character filters:在tokenizer之前对文本进行处理。例如删除字符、替换字符tokenizer:将文本按照一定的规则切割成词条(term)。例如keyword,就是不分词;还有ik_smarttokenizer filter:将tokenizer输出的词条做进一步处理。
elasticsearch多字段聚合实现方式
huan的学习记录
11-15 8937
我们知道在`sql`中是可以实现 `group by 字段a,字段b`,那么这种效果在`elasticsearch`中该如何实现呢?此处我们记录在`elasticsearch`中的3种方式来实现这个效果。
es 排序 聚合统计_Elasticsearch实用的聚合操作Aggs
weixin_36303283的博客
01-17 9449
es的aggs可以分为度量聚合和桶聚合,下面就直接实战开发中经常用到的语句。1、度量聚合:min、max、sum、avg聚合, 度量聚合接收一个输入文档集并生成至少一个统计值sum。1)sum聚合:统计不同日志类型的总数量sum(log_type)"aggs": {"sum_logtype": {"sum": {"field": "log_type"} }}2)count聚合:就是count(*)...
Elasticsearch 聚合查询(aggs)(1)
m0_63174529的博客
03-14 861
聚合为桶首先,我们按照 汽车的颜色color来划分桶“aggs” : {size: 查询条数,这里设置为0,因为我们不关心搜索到的数据,只关心聚合结果,提高效率aggs:声明这是一个聚合查询,是aggregations的缩写popular_colors:给这次聚合起一个名字,任意。terms:划分桶的方式,这里是根据词条划分field:划分桶的字段结果:桶内度量前面的例子告诉我们每个桶里面的文档数量,但是我们需要更复杂的文档度量,我们需要告诉Elasticsearch使用哪个字段。
操作es聚合操作并显示其他字段_Elasticsearch聚合分析入门
06-09
好的,让我来解答您的问题。您可以使用Elasticsearch聚合操作来聚合数据并显示其他字段。 例如,您可以使用以下查询来聚合数据并显示其他字段: ``` GET /sales/_search { "size": 0, "aggs": { "total_sales": { "sum": { "field": "sales" } }, "average_price": { "avg": { "field": "price" } }, "sales_by_region": { "terms": { "field": "region.keyword" }, "aggs": { "total_sales": { "sum": { "field": "sales" } }, "average_price": { "avg": { "field": "price" } } } } } } ``` 这个查询会聚合所有销售数据,并显示总销售额、平均价格以及按地区分组的销售数据。在每个地区组中,还会显示该地区的总销售额和平均价格。 您可以根据需要修改聚合查询来满足您的需求,并根据需要显示其他字段。希望这能对您有所帮助!
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值