topic Re: How to create a sensitive table? in Dashboards & Visualizations

How to create a sensitive table?

maayan — Sun, 17 Dec 2023 14:59:26 GMT

Hi,

i want to create sensitive table. i want to show how many errors happen in average in each time interval

i wrote the following code and it works ok:

| eval time = strptime(TimeStamp, "%Y-%m-%d %H:%M:%S.%Q")
| bin span=1d time
| stats sum(SumTotalErrors) as sumErrors by time
| eval readable_time = strftime(time, "%Y-%m-%d %H:%M:%S")

| stats avg(sumErrors)

now, i want:
1. add generic loop to calculate avg for span of 1m,2m,3m,5n,1h,...
and present all in a table. i tried to replace 1d by parameter but i haven't succeed yet.

2. give option to user to insert his desired span in dashboard and calculate the avg errors for him.

how can i do that?

Thanks ,
Maayan

Re: How to create a sensitive table?

ITWhisperer — Sun, 17 Dec 2023 18:32:46 GMT

You could try something like this

Re: How to create a sensitive table?

dtburrows3 — Sun, 17 Dec 2023 19:11:45 GMT

Nevermind @ITWhisperer beat me too it!

There is probably a couple ways of doing this but this seemed to work for me on my local

Not quite a loop but I am curious about this so I will keep trying out different things.

Output should look something like this

As for the dashboard, you can set up an input token (dropdown) to allow the user to select a span and use that token on the
| bucket span=$span$ time
then do your stats command.

Re: How to create a sensitive table?

maayan — Mon, 18 Dec 2023 08:34:43 GMT

Thanks!! works!
If you succeed to do that in loop (something like loop for i in (1h,5m,2m,1m...) ) it will be great
because the query is very long 🙂

Regarding the parameter - yes i can add drop down filter to my dashboard, i wonder if i can give the users option to insert the span number and not to provide them predefined list in the drop down filter

Re: How to create a sensitive table?

maayan — Mon, 18 Dec 2023 08:35:24 GMT

thanks! good solution like always 🙂