Skip to content

[DOCS] Add parameter examples to EQL search tutorial#52953

Merged
jrodewig merged 6 commits intoelastic:masterfrom
jrodewig:docs__eql-search-examples
Mar 2, 2020
Merged

[DOCS] Add parameter examples to EQL search tutorial#52953
jrodewig merged 6 commits intoelastic:masterfrom
jrodewig:docs__eql-search-examples

Conversation

@jrodewig
Copy link
Copy Markdown
Contributor

@jrodewig jrodewig commented Feb 28, 2020

Makes the following updates to the EQL search tutorial:

  • Adds an API response to the basic tutorial
  • Adds an example using the event_type_field parm
  • Adds an example using the timestamp_fieldparm
  • Adds an example using the query parm
  • Updates example dataset to support more EQL query variety

@jrodewig jrodewig added >docs General docs changes :Analytics/EQL EQL querying labels Feb 28, 2020
@elasticmachine
Copy link
Copy Markdown
Collaborator

elasticmachine commented Feb 28, 2020

Pinging @elastic/es-search (:Search/EQL)

@elasticmachine
Copy link
Copy Markdown
Collaborator

elasticmachine commented Feb 28, 2020

Pinging @elastic/es-docs (>docs)

@jrodewig jrodewig mentioned this pull request Feb 28, 2020
Closed
35 tasks
astefan
astefan approved these changes Mar 2, 2020
View reviewed changes
Copy link
Copy Markdown
Contributor

@astefan astefan left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

docs/reference/eql/search.asciidoc
----

[discrete]
[[eql-search-filter-query-dsl]]
Copy link
Copy Markdown
Contributor

@astefan astefan Mar 2, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

fyi #52971

Copy link
Copy Markdown
Contributor Author

@jrodewig jrodewig Mar 2, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

thanks. Addressed with e195cee.

@jrodewig
Copy link
Copy Markdown
Contributor Author

jrodewig commented Mar 2, 2020

@elasticmachine update branch

@jrodewig
Copy link
Copy Markdown
Contributor Author

jrodewig commented Mar 2, 2020

@elasticmachine update branch

@jrodewig jrodewig merged commit 0622535 into elastic:master Mar 2, 2020
@jrodewig jrodewig deleted the docs__eql-search-examples branch March 2, 2020 14:30
@jrodewig jrodewig mentioned this pull request Mar 2, 2020
Merged
jrodewig added a commit that referenced this pull request Mar 2, 2020
@jrodewig
[7.x] [DOCS] Add parameter examples to EQL search tutorial (#52953)
db64029 
Makes the following updates to the EQL search tutorial:

* Adds an API response to the basic tutorial
* Adds an example using the `event_type_field` parm
* Adds an example using the `timestamp_field`parm
* Adds an example using the `query` parm
* Updates example dataset to support more EQL query variety
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@astefan astefan astefan approved these changes

@costin costin Awaiting requested review from costin

@aleksmaus aleksmaus Awaiting requested review from aleksmaus

@rw-access rw-access Awaiting requested review from rw-access

Assignees

No one assigned

Labels

:Analytics/EQL EQL querying >docs General docs changes

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@jrodewig @elasticmachine @astefan