I am trying to arrange some information received in a CSV file in a table format (as per example)
The two searches I used was as follow:
Search 1
index="labour" | stats sum(Hours) as TotalHours BY Client_Name, Resource | streamstats sum(Hours) BY Client_Name, Resource | stats list(Resource) as Resource_Name, list(TotalHours) as "Per Resource", sum(TotalHours) as TotalHours by Client_Name
Result:
Client_Name Resource_Name Per Resource TotalHours
Client 3 Resource 1 8 12
Resource 5 4
Search 2
index="labour" | stats first(Tper) as Week by Hours, Client_Name, Resource | xyseries Client_Name Week Hours | addtotals
Result:
Client_Name Week25 Week26 Total
Client 3 6 6 12
Hope someone can make sense of this to assist me please.
Thanks in advance!
1 Solution
