es sql是一个X-pack组件 ,允许对es执行类似sql的查询,可以将Elasticsearch SQL理解为一个编译器,既能理解es,又能理解sql。可以通过利用es,实施大规模实时读取和处理数据。

sql和es的映射关系

SQL Elasticsearch
columns field
raw document
table index
catalog or database cluster实例
cluster cluster

先插入一些数据:

PUT /my_index/doc/_bulk

{"index":{"_id":""}}

{"name":"lily","birthday":"2000-01-01","gender":"female"}

{"index":{"_id":""}}

{"name":"kangkang","birthday":"1998-04-01","gender":"male"}

{"index":{"_id":""}}

{"name":"jane","birthday":"1995-02-07","gender":"female"}

SQL REST API

POST /_xpack/sql?format=txt

{

  "query":"select * from my_index where birthday<'1999-01-01' limit 2"

}
#  format类型有:json,yaml,smile,cbor,txt,csv,tsv
返回结果:

birthday | gender | name

------------------------+---------------+---------------

1998-04-01T00:00:00.000Z|male |kangkang

1995-02-07T00:00:00.000Z|female |jane
POST  /_xpack/sql?

{

  "query":"select * from my_index order by birthday desc",

  "fetch_size":1    # fetch_size 每页返回多少个结果

}

--------->

{

  "columns": [

    {

      "name": "birthday",

      "type": "date"

    },

    {

      "name": "gender",

      "type": "text"

    },

    {

      "name": "name",

      "type": "text"

    }

  ],

  "rows": [

    [

      "2000-01-01T00:00:00.000Z",

      "female",

      "lily"

    ]

  ],

  "cursor": "k4bwAgFz5AFEbkYxWlhKNVZHaGxia1psZEdOb0JRQUFBQUFBQUY3WEZrbGtNa3R5V2s1VVZFTnRORmd3Y21Gd2VHeERMVkVBQUFBQUFBQmUyeFpKWkRKTGNscE9WRlJEYlRSWU1ISmhjSGhzUXkxUkFBQUFBQUFBWHRnV1NXUXlTM0phVGxSVVEyMDBXREJ5WVhCNGJFTXRVUUFBQUFBQUFGN1pGa2xrTWt0eVdrNVVWRU50TkZnd2NtRndlR3hETFZFQUFBQUFBQUJlMmhaSlpESkxjbHBPVkZSRGJUUllNSEpoY0hoc1F5MVL/////DwMBZghiaXJ0aGRheQEAAWYGZ2VuZGVyAAABZgRuYW1lAAA="

}

# 该column对象只是第一页的一部分,当cursor结果中没有返回时,说明到达最后一页。

# 可以通过发回cursor字段继续下一页。在文本格式的情况下,光标作为Cursorhttp标头返回。

POST /_xpack/sql?format=json

{

  "cursor": "k4bwAgFz5AFEbkYxWlhKNVZHaGxia1psZEdOb0JRQUFBQUFBQUY3WEZrbGtNa3R5V2s1VVZFTnRORmd3Y21Gd2VHeERMVkVBQUFBQUFBQmUyeFpKWkRKTGNscE9WRlJEYlRSWU1ISmhjSGhzUXkxUkFBQUFBQUFBWHRnV1NXUXlTM0phVGxSVVEyMDBXREJ5WVhCNGJFTXRVUUFBQUFBQUFGN1pGa2xrTWt0eVdrNVVWRU50TkZnd2NtRndlR3hETFZFQUFBQUFBQUJlMmhaSlpESkxjbHBPVkZSRGJUUllNSEpoY0hoc1F5MVL/////DwMBZghiaXJ0aGRheQEAAWYGZ2VuZGVyAAABZgRuYW1lAAA="

}

#结果--------->

{

  "rows": [

    [

      "1998-04-01T00:00:00.000Z",

      "male",

      "kangkang"

    ]

  ],

  "cursor": "k4bwAgFz5AFEbkYxWlhKNVZHaGxia1psZEdOb0JRQUFBQUFBQUY3WEZrbGtNa3R5V2s1VVZFTnRORmd3Y21Gd2VHeERMVkVBQUFBQUFBQmUyeFpKWkRKTGNscE9WRlJEYlRSWU1ISmhjSGhzUXkxUkFBQUFBQUFBWHRnV1NXUXlTM0phVGxSVVEyMDBXREJ5WVhCNGJFTXRVUUFBQUFBQUFGN1pGa2xrTWt0eVdrNVVWRU50TkZnd2NtRndlR3hETFZFQUFBQUFBQUJlMmhaSlpESkxjbHBPVkZSRGJUUllNSEpoY0hoc1F5MVL/////DwMBZghiaXJ0aGRheQEAAWYGZ2VuZGVyAAABZgRuYW1lAAA="

}

## -------------再次发回cursor:

POST /_xpack/sql?format=json

{

   "cursor": "k4bwAgFz5AFEbkYxWlhKNVZHaGxia1psZEdOb0JRQUFBQUFBQUY3WEZrbGtNa3R5V2s1VVZFTnRORmd3Y21Gd2VHeERMVkVBQUFBQUFBQmUyeFpKWkRKTGNscE9WRlJEYlRSWU1ISmhjSGhzUXkxUkFBQUFBQUFBWHRnV1NXUXlTM0phVGxSVVEyMDBXREJ5WVhCNGJFTXRVUUFBQUFBQUFGN1pGa2xrTWt0eVdrNVVWRU50TkZnd2NtRndlR3hETFZFQUFBQUFBQUJlMmhaSlpESkxjbHBPVkZSRGJUUllNSEpoY0hoc1F5MVL/////DwMBZghiaXJ0aGRheQEAAWYGZ2VuZGVyAAABZgRuYW1lAAA="

}

#结果----------------》

{

  "rows": []

}

#接收到最后一页时,清空es状态,没有cursor

#要提前清理状态,可以使用 clear cursor

POST _xpack/sql/close

{

  "cursor": "k4bwAgFz5AFEbkYxWlhKNVZHaGxia1psZEdOb0JRQUFBQUFBQUY3NkZrbGtNa3R5V2s1VVZFTnRORmd3Y21Gd2VHeERMVkVBQUFBQUFBQmVfaFpKWkRKTGNscE9WRlJEYlRSWU1ISmhjSGhzUXkxUkFBQUFBQUFBWHZzV1NXUXlTM0phVGxSVVEyMDBXREJ5WVhCNGJFTXRVUUFBQUFBQUFGNzhGa2xrTWt0eVdrNVVWRU50TkZnd2NtRndlR3hETFZFQUFBQUFBQUJlX1JaSlpESkxjbHBPVkZSRGJUUllNSEpoY0hoc1F5MVL/////DwMBZghiaXJ0aGRheQEAAWYGZ2VuZGVyAAABZgRuYW1lAAA="

}

#结果——----------------->

{  "succeeded": true }

通过filter参数可以指定es的Query DSL来过滤

POST _xpack/sql?format=txt

{

  "query":"select * from my_index order by birthday desc",

  "filter":{

    "term": {

      "name": "kangkang"

    }

  },

  "fetch_size":1

}
# 除了query和cursor字段外 请求还可以包括fetch_size和time_zone
# fetch_size 每页返回多少个结果
# time_zone 日期函数和日期解析的时区,默认为utc

SQL Translate API

sql translate api接受json文档中的sql并将其转换为es查询。

POST _xpack/sql/translate

{

  "query":"select * from my_index order by birthday",

  "fetch_size":3

}

#结果----------------->

{

  "size": 3,

  "_source": {

    "includes": [

      "gender",

      "name"

    ],

    "excludes": []

  },

  "docvalue_fields": [

    "birthday"

  ],

  "sort": [

    {

      "birthday": {

        "order": "asc"

      }

    }

  ]

}

SQL CLI

可以用命令行形式,在x-pack的bin目录执行查询语句:

# ./elasticsearch-sql-cli
sql> select * from my_index where birthday<'1999-01-01';
birthday | gender | name
------------------------+---------------+---------------
1998-04-01T00:00:00.000Z|male |kangkang
1995-02-07T00:00:00.000Z|female |jane

SQL JDBC

将jdbc调用转化为es sql

SQL 语句

  • describe table

    # DESC table
    
# DESCRIBE table    

POST _xpack/sql?format=txt
    
{
    
  "query":"describe my_index"
    
}
    
---------->
    
    column     |     type
    
---------------+---------------
    
birthday       |TIMESTAMP
    
gender         |VARCHAR
    
gender.keyword |VARCHAR
    
name           |VARCHAR
    
name.keyword   |VARCHAR
  • select

    # SELECT select_expr [, ...]
    
[ FROM table_name ]
    
[ WHERE condition ]
    
[ GROUP BY grouping_element [, ...] ]
    
[ HAVING condition]
    
[ ORDER BY expression [ ASC | DESC ] [, ...] ]
    
[ LIMIT [ count ] ]
  • show columns 
    #SHOW COLUMNS [ FROM | IN ] ? table

POST _xpack/sql?format=txt
    
{
    
  "query":"show columns in my_index"
    
}

    column | type
    ---------------+---------------
    birthday |TIMESTAMP
    gender |VARCHAR
    gender.keyword |VARCHAR
    name |VARCHAR
    name.keyword |VARCHAR

  • show functions 
    #SHOW FUNCTIONS [ LIKE? pattern? ]?  

 POST _xpack/sql?format=txt
    
 {
    
   "query":"show functions like 'sum%'"
    
 }

name | type
    
---------------+---------------
    
SUM |AGGREGATE
    
SUM_OF_SQUARES |AGGREGATE 
  • show tables 
    # SHOW TABLES [ LIKE? pattern? ]?

POST _xpack/sql?format=txt
    
{
    
  "query":"show tables like 'my_index'"
    
}
    
#------------------------>
    
     name      |     type
    
---------------+---------------
    
my_index       |BASE TABLE

functions and operators

  • 比较运算符:   = , < , <= , > , >=,  不等于 <>  !=  <=> , between,is null/is not null
  • 逻辑运算符: AND ,OR ,NOT
  • 数字运算符:  +  -  *  / % 
    POST _xpack/sql?format=txt
    
{
    
  "query":"select 1+1 as x"
    
}
    
---------->
    
       x
    
---------------
    
2
  • 数学函数:  abs(绝对值), crbt(立方根),round(四舍五入).... 
    POST _xpack/sql?format=txt
    
{
    
  "query":"select abs(age) from test_index "
    
}
    
--------->
    
   ABS(age)
    
---------------
    
27
  • 时间和日期函数: year, month, week, doy, dow, hour ,minute_of_day, minute,second,extract 
    POST _xpack/sql?format=txt
    
{
    
  "query":"select year(cast('2018-07-12' as timestamp )) as year"
    
}  #从日期中提取年份
    
------->
    
     year
    
---------------
    
2018
  • 聚合:  avg , count , count(distinct) , max , min , sum  
    POST _xpack/sql/?format=txt
    
{
    
  "query":"select avg(age) as avg from test_index"
    
}

POST _xpack/sql?format=txt
    
{
    
  "query":"select count(distinct age) as count from test_index"
    
}   #不同值的个数

Elasticsearch SQL的更多相关文章

  1. 使用JDBC连接ElasticSearch6.3(ElasticSearch SQL JDBC)

    使用JDBC连接ElasticSearch6.3(ElasticSearch SQL JDBC) https://blog.csdn.net/scgaliguodong123_/article/det ...

  2. Elasticsearch SQL用法详解

    Elasticsearch SQL用法详解  mp.weixin.qq.com 本文详细介绍了不同版本中Elasticsearch SQL的使用方法,总结了实际中常用的方法和操作,并给出了几个具体例子 ...

  3. elasticsearch sql插件 2.4及以下版本配置

    github地址:https://github.com/NLPchina/elasticsearch-sql/ 方式一:github elasticsearch-sql上提供的安装方法cmd进入到本地 ...

  4. 手写一个简单的ElasticSearch SQL转换器(一)

    一.前言 之前有个需求,是使ElasticSearch支持使用SQL进行简单查询,较新版本的ES已经支持该特性(不过貌似还是实验性质的?) ,而且git上也有elasticsearch-sql 插件, ...

  5. elasticsearch sql插件配置(5.0及以上版本)

    github官方参考地址:https://github.com/NLPchina/elasticsearch-sql/ 采用 git + node 的方式,所以安装前需要先安装好node,node n ...

  6. Elasticsearch:Elasticsearch SQL介绍及实例(二)

    转载自:https://blog.csdn.net/UbuntuTouch/article/details/105699014

  7. Elasticsearch:Elasticsearch SQL介绍及实例 (一)

    转载自:https://blog.csdn.net/UbuntuTouch/article/details/105658911

  8. 搜索引擎ElasticSearch系列(四): ElasticSearch2.4.4 sql插件安装

    一:ElasticSearch sql插件简介 With this plugin you can query elasticsearch using familiar SQL syntax. You ...

  9. elasticsearch与ms sql server数据同步

    MS SQL Server Download Elasticsearch Install Elasticsearch Follow instructions on https://www.elasti ...

随机推荐

  1. Python3基础 filter+lambda 筛选出1-20之间的奇数

             Python : 3.7.0          OS : Ubuntu 18.04.1 LTS         IDE : PyCharm 2018.2.4       Conda ...

  2. Linux - PWM的驱动编写【转】

    本文转载自:https://blog.csdn.net/u012264124/article/details/77482853 比如要用到pwm1,那么首先要保证这个pwm1并没有被别的驱动程序占用. ...

  3. Windows进程的内核对象句柄表

    当一个进程被初始化时,系统要为它分配一个句柄表.该句柄表只用于内核对象 ,不用于用户对象或GDI对象. 创建内核对象 当进程初次被初始化时,它的句柄表是空的.然后,当进程中的线程调用创建内核对象的函数 ...

  4. python 之 文件I/0

    打开和关闭文件 open()函数 必须要open()内置函数打开一个文件,创建一个file对象,相关的方法才可以调用它进行读写. 语法 file object=open(file_name [,acc ...

  5. 用yarn代替cnpm,cnpm漏包有点严重

    npm 的方式  npm  install  -g  yarn   安装完成后,你可以测试下自己的版本 yarn --version 开始使用 单独安装包的方式add 不是install,后面不用加 ...

  6. Seletct2

    doc 博客: 基于Metronic的Bootstrap开发框架经验总结(3)--下拉列表Select2插件的使用 <div class="span4 channelSearch&qu ...

  7. HDU 1251 统计难题(字典树模板题)

    http://acm.hdu.edu.cn/showproblem.php?pid=1251 题意:给出一些单词,然后有多次询问,每次输出以该单词为前缀的单词的数量. 思路: 字典树入门题. #inc ...

  8. 项目Alpha冲刺--3/10

    项目Alpha冲刺--3/10 1.团队信息 团队名称:基于云的胜利冲锋队 成员信息 队员学号 队员姓名 个人博客地址 备注 221500201 孙文慈 https://www.cnblogs.com ...

  9. Codeforces Round #424 (Div. 2, rated, based on VK Cup Finals) E. Cards Sorting 树状数组

    E. Cards Sorting time limit per test 1 second memory limit per test 256 megabytes input standard inp ...

  10. 【三十二】thinkphp之连接数据库、实例化模型

    1.连接数据库 Thinlphp内置了抽象数据库访问层,把不同的数据操作封装起来.我们只需要调用公共的DB类进行操作即可.DB类会自动调用相应的数据库驱动来处理. 在应用目录/common/conf/ ...