Hi, I want to filter the records after aggrigating it, almost similar to 'having' in sql. Here is search query:
source="rest://Data"
| eval limit = substr(CreationDate, 1,4) | where limit = 2013
| where
(projectName=="Proj-1") OR
| chart
dc(eval(case(State=="QA",ObjectID))) as "QA",
dc(eval(case(State=="Dev",ObjectID))) as "Dev"
by Owner
Here, i want to show only those owners who have a non-zero QA count.
Thanks in advance.
Arun.
