Skip to content

[DOCS] EQL: Document sequences#56721

Merged
jrodewig merged 9 commits intoelastic:masterfrom
jrodewig:docs__eql-sequences
May 14, 2020
Merged

[DOCS] EQL: Document sequences#56721
jrodewig merged 9 commits intoelastic:masterfrom
jrodewig:docs__eql-sequences

Conversation

@jrodewig
Copy link
Copy Markdown
Contributor

@jrodewig jrodewig commented May 13, 2020

Relates to #56320

@jrodewig jrodewig added >docs General docs changes :Analytics/EQL EQL querying labels May 13, 2020
@jrodewig jrodewig requested review from costin and rw-access May 13, 2020 21:14
@elasticmachine
Copy link
Copy Markdown
Collaborator

elasticmachine commented May 13, 2020

Pinging @elastic/es-docs (>docs)

@elasticmachine elasticmachine added the Team:Docs Meta label for docs team label May 13, 2020
@elasticmachine
Copy link
Copy Markdown
Collaborator

elasticmachine commented May 13, 2020

Pinging @elastic/es-ql (:Query Languages/EQL)

@elasticmachine elasticmachine added the Team:QL (Deprecated) Meta label for query languages team label May 13, 2020
rw-access
rw-access reviewed May 13, 2020
View reviewed changes
@jrodewig @rw-access
Update docs/reference/eql/eql-search-api.asciidoc
08bea0f 
Co-authored-by: Ross Wolf <31489089+rw-access@users.noreply.github.com>
rw-access
rw-access reviewed May 13, 2020
View reviewed changes
@jrodewig @rw-access
Update docs/reference/eql/syntax.asciidoc
f22873a 
Co-authored-by: Ross Wolf <31489089+rw-access@users.noreply.github.com>
rw-access
rw-access reviewed May 13, 2020
View reviewed changes
@jrodewig @rw-access
Update docs/reference/eql/syntax.asciidoc
a5c2d70 
Co-authored-by: Ross Wolf <31489089+rw-access@users.noreply.github.com>
rw-access
rw-access reviewed May 13, 2020
View reviewed changes
docs/reference/eql/eql-search-api.asciidoc
Unique identifier for the event.
This ID is only unique within the index.

`_score`::
Copy link
Copy Markdown
Contributor

@rw-access rw-access May 13, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Question about this @costin: do we use scoring at all right now? I assumed everything was wrapped in bool/filter so we wouldn't get a scre

rw-access
rw-access reviewed May 13, 2020
View reviewed changes
rw-access
rw-access reviewed May 13, 2020
View reviewed changes
jrodewig and others added 2 commits May 13, 2020 17:43
@jrodewig @rw-access
Update docs/reference/eql/syntax.asciidoc
82c326f 
Co-authored-by: Ross Wolf <31489089+rw-access@users.noreply.github.com>
@jrodewig @rw-access
Update docs/reference/eql/syntax.asciidoc
aa174cc 
Co-authored-by: Ross Wolf <31489089+rw-access@users.noreply.github.com>
rw-access
rw-access approved these changes May 13, 2020
View reviewed changes
Copy link
Copy Markdown
Contributor

@rw-access rw-access left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this is awesome @jrodewig. i'm pumped

@jrodewig
Copy link
Copy Markdown
Contributor Author

jrodewig commented May 13, 2020

Thanks as always @rw-access.

rw-access
rw-access reviewed May 13, 2020
View reviewed changes
jrodewig and others added 2 commits May 13, 2020 17:46
@jrodewig @rw-access
Update docs/reference/eql/eql-search-api.asciidoc
f593aa6 
Co-authored-by: Ross Wolf <31489089+rw-access@users.noreply.github.com>
@jrodewig
remove redundant sentence
adbe73b
@jrodewig jrodewig merged commit 15431f2 into elastic:master May 14, 2020
@jrodewig jrodewig deleted the docs__eql-sequences branch May 14, 2020 15:01
jrodewig added a commit that referenced this pull request May 14, 2020
@jrodewig @rw-access
[7.x] [DOCS] EQL: Document sequences (#56721) (#56774)
2921747 
Co-authored-by: Ross Wolf <31489089+rw-access@users.noreply.github.com>
@jrodewig jrodewig mentioned this pull request May 14, 2020
Merged
@jrodewig
Copy link
Copy Markdown
Contributor Author

jrodewig commented May 14, 2020

Backport commits

master 15431f2
7.x 2921747

@jrodewig jrodewig mentioned this pull request May 19, 2020
Merged
jrodewig added a commit that referenced this pull request May 19, 2020
@jrodewig
[DOCS] EQL: Add sequence example to tutorial (#56965)
c13c7aa 
Adds an example using the sequence syntax to the 'Run an EQL search'
tutorial.

Supplements other examples added with #56721
jrodewig added a commit that referenced this pull request May 19, 2020
@jrodewig
[DOCS] EQL: Add sequence example to tutorial (#56965) (#56966)
771ddbf 
Adds an example using the sequence syntax to the 'Run an EQL search'
tutorial.

Supplements other examples added with #56721
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@costin costin Awaiting requested review from costin

1 more reviewer

@rw-access rw-access rw-access approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

:Analytics/EQL EQL querying >docs General docs changes Team:Docs Meta label for docs team Team:QL (Deprecated) Meta label for query languages team

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@jrodewig @elasticmachine @rw-access