使用Elasticsearch Python API时,如何返回所有分片?
我正在尝试使用elasticsearch python API对ELK设置进行搜索。似乎默认情况下,搜索仅返回索引的5个结果。我如何配置它,以便它可以返回索引中可用的所有分片? kibanna仪表板显示900 +分片,但API仅返回5.我的代码目前是:
es = Elasticsearch([{'host': 'localhost', 'port': 9200}])
data = es.search(
index='scapy'
)
脚本输出显示(顶部):
{u'_shards': {u'failed': 0, u'skipped': 0, u'successful': 5, u'total': 5},
kibanna仪表板截图:
谢谢!
2 个答案:
答案 0 :(得分:0)
可以设置可选参数大小以显示更多结果
count = es.count(index='scapy')['count']
data = es.search(index='scapy', size=count)
答案 1 :(得分:0)
你必须弄错才能理解结果, 结果
{u'_shards': {u'failed': 0, u'skipped': 0, u'successful': 5, u'total': 5}
表示索引'scapy'的数据位于5个不同的分片中,您的搜索查询得到了这5个不同分片的结果。
所以结果必须如下:
{
"took": 1651,
"timed_out": false,
"_shards": {
"total": 10,
"successful": 10,
"skipped": 0,
"failed": 0
},
"hits": {
"total": 2221327255,
"max_score": 1,
"hits": [
{
"_index": "test_index",
"_type": "logs",
"_id": "BL1E-F8BH3R02gVcxkPc",
"_score": 1,
"_source": {
"deviceType": "4",
"appVersion": "2.1.1"
}
},
{
"_index": "test_index",
"_type": "logs",
"_id": "Cr1E-F8BH3R02gVcxkPd",
"_score": 1,
"_source": {
"deviceType": "4",
"appVersion": "2.1.1"
}
},
{
"_index": "test_index",
"_type": "logs",
"_id": "Eb1E-F8BH3R02gVcxkPd",
"_score": 1,
"_source": {
"deviceType": "4",
"appVersion": "2.1.2"
}
},
{
"_index": "test_index",
"_type": "logs",
"_id": "F71E-F8BH3R02gVcxkPd",
"_score": 1,
"_source": {
"deviceType": "4",
"appVersion": "2.1.2"
}
},
{
"_index": "test_index",
"_type": "logs",
"_id": "KL1E-F8BH3R02gVcxkPd",
"_score": 1,
"_source": {
"deviceType": "4",
"appVersion": "2.1.2"
}
},
{
"_index": "test_index",
"_type": "logs",
"_id": "LL1E-F8BH3R02gVcxkPd",
"_score": 1,
"_source": {
"deviceType": "4",
"appVersion": "2.1.2"
}
},
{
"_index": "test_index",
"_type": "logs",
"_id": "NL1E-F8BH3R02gVcxkPd",
"_score": 1,
"_source": {
"deviceType": "4",
"appVersion": "2.1.2"
}
},
{
"_index": "test_index",
"_type": "logs",
"_id": "R71E-F8BH3R02gVcxkPd",
"_score": 1,
"_source": {
"deviceType": "4",
"appVersion": "2.1.2"
}
},
{
"_index": "test_index",
"_type": "logs",
"_id": "Sb1E-F8BH3R02gVcxkPd",
"_score": 1,
"_source": {
"deviceType": "4",
"appVersion": "2.1.2"
}
},
{
"_index": "test_index",
"_type": "logs",
"_id": "TL1E-F8BH3R02gVcxkPd",
"_score": 1,
"_source": {
"deviceType": "4",
"appVersion": "2.1.2"
}
}
]
}
}
hits中有10个项目,这是因为结果返回的默认大小为10,因此您可以在查询dsl中设置大小,
GET /_search
{
"from" : 0, "size" : 10,
"query" : {
"term" : { "user" : "kimchy" }
}
}
相关问题
- 所有分片都失败了
- ElasticSearch:如何禁用所有分片的分片重新分配?
- 广播到达Elasticsearch中的所有分片
- 如何使用Java返回Elasticsearch中的所有结果?
- 如何将ElasticSearch请求路由到几个分片
- 在使用Java客户端与Elasticsearch通信时,我是否需要自己管理分片?
- Elaticsearch使用99%的cpu并且所有分片都在初始化
- 使用Elasticsearch Python API时,如何返回所有分片?
- 弹性搜索search_phase_execution_exception原因:“所有分片都失败了”
- 所有分片(索引内)是否具有相同的内容?
最新问题
- 我写了这段代码,但我无法理解我的错误
- 我无法从一个代码实例的列表中删除 None 值,但我可以在另一个实例中。为什么它适用于一个细分市场而不适用于另一个细分市场?
- 是否有可能使 loadstring 不可能等于打印?卢阿
- java中的random.expovariate()
- Appscript 通过会议在 Google 日历中发送电子邮件和创建活动
- 为什么我的 Onclick 箭头功能在 React 中不起作用?
- 在此代码中是否有使用“this”的替代方法?
- 在 SQL Server 和 PostgreSQL 上查询,我如何从第一个表获得第二个表的可视化
- 每千个数字得到
- 更新了城市边界 KML 文件的来源?