Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Switch default logs template to search all fields by default #102456

Merged
merged 12 commits into from
Nov 29, 2023
Merged

Switch default logs template to search all fields by default #102456

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
12 commits
Select commit Hold shift + click to select a range
bffbc58
Switch default logs template to use
eyalkoren Nov 22, 2023
0fa80d9
Update docs/changelog/102456.yaml
eyalkoren Nov 22, 2023
c7b5c4b
Change changelog summary
eyalkoren Nov 22, 2023
da98c0a
Use exact terms in query
eyalkoren Nov 22, 2023
219d732
Assert busy for first query
eyalkoren Nov 22, 2023
e666cd8
Indentation
eyalkoren Nov 22, 2023
5753d38
Use better name for the test
eyalkoren Nov 23, 2023
f982c47
Merge remote-tracking branch 'upstream/main' into default_field-removal
eyalkoren Nov 28, 2023
b6d9736
Adding a test for customizing default_field
eyalkoren Nov 28, 2023
161d33c
Wipe @custom pipelines after test
felixbarny Nov 28, 2023
c3deacf
Removing assertBusy
eyalkoren Nov 28, 2023
ff58075
spotless
eyalkoren Nov 28, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 6 additions & 0 deletions docs/changelog/102456.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,6 @@
pr: 102456
summary: Switch logs data streams to search all fields by default
area: Data streams
type: enhancement
issues:
- 99872
111 changes: 97 additions & 14 deletions ...es/data-streams/src/javaRestTest/java/org/elasticsearch/datastreams/LogsDataStreamIT.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -12,6 +12,7 @@
import org.elasticsearch.client.ResponseException;
import org.elasticsearch.client.RestClient;
import org.junit.After;
import org.junit.Before;

import java.io.IOException;
import java.util.List;
Expand All @@ -25,16 +26,21 @@

public class LogsDataStreamIT extends DisabledSecurityDataStreamTestCase {

private RestClient client;

@Before
public void setup() throws Exception {
client = client();
waitForLogs(client);
}

@After
public void cleanUp() throws IOException {
adminClient().performRequest(new Request("DELETE", "_data_stream/*"));
}

@SuppressWarnings("unchecked")
public void testDefaultLogsSettingAndMapping() throws Exception {
RestClient client = client();
waitForLogs(client);

String dataStreamName = "logs-generic-default";
createDataStream(client, dataStreamName);
String backingIndex = getWriteBackingIndex(client, dataStreamName);
Expand Down Expand Up @@ -104,9 +110,6 @@ public void testDefaultLogsSettingAndMapping() throws Exception {

@SuppressWarnings("unchecked")
public void testCustomMapping() throws Exception {
RestClient client = client();
waitForLogs(client);

{
Request request = new Request("POST", "/_component_template/logs@custom");
request.setJsonEntity("""
Expand Down Expand Up @@ -182,9 +185,6 @@ public void testCustomMapping() throws Exception {

@SuppressWarnings("unchecked")
public void testLogsDefaultPipeline() throws Exception {
RestClient client = client();
waitForLogs(client);

{
Request request = new Request("POST", "/_component_template/logs@custom");
request.setJsonEntity("""
Expand Down Expand Up @@ -284,9 +284,6 @@ public void testLogsDefaultPipeline() throws Exception {

@SuppressWarnings("unchecked")
public void testLogsMessagePipeline() throws Exception {
RestClient client = client();
waitForLogs(client);

{
Request request = new Request("PUT", "/_ingest/pipeline/logs@custom");
request.setJsonEntity("""
Expand Down Expand Up @@ -412,8 +409,6 @@ public void testLogsMessagePipeline() throws Exception {

@SuppressWarnings("unchecked")
public void testNoSubobjects() throws Exception {
RestClient client = client();
waitForLogs(client);
{
Request request = new Request("POST", "/_component_template/logs-test-subobjects-mappings");
request.setJsonEntity("""
Expand Down Expand Up @@ -633,6 +628,94 @@ public void testNoSubobjects() throws Exception {

}

public void testAllFieldsAreSearchableByDefault() throws Exception {
final String dataStreamName = "logs-generic-default";
createDataStream(client, dataStreamName);

// index a doc with "message" field and an additional one that will be mapped to a "match_only_text" type
indexDoc(client, dataStreamName, """
{
"@timestamp": "2023-04-18",
"message": "Hello world",
"another.message": "Hi world"
}
""");

// verify that both fields are searchable when not querying specific fields
List<Object> results = searchDocs(client, dataStreamName, """
{
"query": {
"simple_query_string": {
"query": "Hello"
}
}
}
""");
assertEquals(1, results.size());

results = searchDocs(client, dataStreamName, """
{
"query": {
"simple_query_string": {
"query": "Hi"
}
}
}
""");
assertEquals(1, results.size());
}

public void testDefaultFieldCustomization() throws Exception {
Request request = new Request("POST", "/_component_template/logs@custom");
request.setJsonEntity("""
{
"template": {
"settings": {
"index": {
"query": {
"default_field": ["message"]
}
}
}
}
}
""");
assertOK(client.performRequest(request));

final String dataStreamName = "logs-generic-default";
createDataStream(client, dataStreamName);

indexDoc(client, dataStreamName, """
{
"@timestamp": "2023-04-18",
"message": "Hello world",
"another.message": "Hi world"
}
""");

List<Object> results = searchDocs(client, dataStreamName, """
{
"query": {
"simple_query_string": {
"query": "Hello"
}
}
}
""");
assertEquals(1, results.size());

results = searchDocs(client, dataStreamName, """
{
"query": {
"simple_query_string": {
"query": "Hi"
}
}
}
""");
assertEquals(0, results.size());
}

static void waitForLogs(RestClient client) throws Exception {
assertBusy(() -> {
try {
Expand Down
2 changes: 1 addition & 1 deletion test/framework/src/main/java/org/elasticsearch/test/rest/ESRestTestCase.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1926,7 +1926,7 @@ protected static boolean isXPackTemplate(String name) {
if (name.startsWith("elastic-connectors")) {
return true;
}
if (name.contains("@")) {
if (name.contains("@") && name.endsWith("@custom") == false) {
// We have a naming convention that internal component templates contain `@`. See also index-templates.asciidoc.
return true;
}
Expand Down
3 changes: 0 additions & 3 deletions x-pack/plugin/core/template-resources/src/main/resources/[email protected]
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,9 +6,6 @@
"name": "logs"
},
"codec": "best_compression",
"query": {
"default_field": ["message"]
},
"mapping": {
"ignore_malformed": true
},
Expand Down