Hello,
Would appreciate any help!
I am querying Elasticsearch 7.0+ from Grafana (7.1.3)
If i run the following query:
fields.Site.keyword :“SITE_1” AND fields.Environment.keyword : “Staging” AND host.name.keyword : “SERVER_1” AND log_level.keyword : "INFO "
Then it not only returns log_level.keyword = "INFO " but other field values as well, such ERROR and WARN though their values are always zero but they are always populated, why?
See Grafana snippet:
I only asked for log_level.keyword : "INFO "
I need to know whether it is a bug or expected behaviour or I am doing something wrong.
A simple lucene query in kibana yields correct result with or without grouped over time or terms
fields.Site.keyword :“SITE_1” AND fields.Environment.keyword : “Staging” AND host.name.keyword : “SERVER_1” AND log_level.keyword : "INFO "