-
Notifications
You must be signed in to change notification settings - Fork 1
Searching
Loggregate supports a very basic query language. Searches use the form variable = "value" and can
be combined using and and or. For example:
steamid = "[U:1:1234]" or name = "Person"
Will match log entries where the user's SteamID equals [U:1:1234] or their name matches Person. You can
also group parameters with parenthesis as needed, for example:
steamid = "[U:1:1234]" or (name = "Person" and type = "connected")
This will match entries where the users's SteamID equals [U:1:1234], or their name matches Person and the
log entry type equals connected
Loggregate includes some helpers for searching, and more advanced searching can be done on any field
that is saved in Elastic Search by using dot notation.
The following operators are supported
-
=- Equals -
!=- Not equals -
<- Less than -
<=- Less than or equal to -
>- Greater than -
>=- Greater than or equal to
Commonly used search options include
-
Performs full-text search on chat messages.
message = "Hello" -
Performs full-text search on the entire log line.
line = "VAC" -
Matches log entries by log type. Default types are below, however
additional types can be defined dynamically by message parsers.
chatconnectedmaprconvpn_detected
type = "chat" -
Matches map name when searching for map loads
map = "cs_office"
Matches log entries to a specific server, by name.
Matches log by user's SteamID, where applicable. Equivalent to who.steamid
Matches log by user's name, where applicable. Equivalent to who.name
name = "Person"