I have an instance of ElasticSearch with Kibana that contains a lot of user application data that I have accumulated over several years. One of the fields is the version of Java in which the user is working.
I would like to graphically display Java versions over time, so I can have an idea of โโthe advisability of upgrading to a newer version. Unfortunately, I canโt find a way to combine 1.6.0_31 , 1.6.0_32 , 1.6.0_37 , 1.6.0_51 as one 1.6 record, so the chart is almost unreadable right now.
Is there a way in Kibana for combining data, for example, a โscript fieldโ for which I could write a regular expression? For instance. simplified_java: osjv % '\d\.\d' , which defined simplified_java as part of the osjv field that matches a digit, followed by a dot, followed by a digit.
Currently, it seems that Kibana only supports numeric script fields, which makes this harder. I do not use LogStash, because in fact I do not use "logs", but rather a custom event reporting environment in my desktop application that (opt-in) reports usage statistics, so, unfortunately, I can not use any its function.
I can do it manually, but I have already imported 2G event data, and I would not want to do it again, adding a new field just for what should be computable ... :(
Is there a way to create a field based on a substring or regular expression in Kibana, or (otherwise) a way to tell ElasticSearch to transparently do the same?