-
Ensure that both Docker and Docker Compose are installed and Docker is running.
-
On the command line as root user, run
echo 'vm.max_map_count=262144' >> /etc/sysctl.confto increase the virtual memory available.- Run
sysctl -pto apply the changes. - Verify that the changes were applied by running
sysctl vm.max_map_count.
- Run
-
On the command line, CD to the directory where you want to install Elasticsearch and Kibana.
-
git clone [email protected]:Stackeduary/EE2022.gitto clone the repository. -
cd EE2022 -
docker-compose up -dto start the containers. -
docker-compose psto check the status of the containers.The status of both containers should be running.
Verify that the Elasticsearch instance is running by running
curl -XGET http://localhost:9200.You should see an elasticsearch JSON object with the tagline
"tagline" : "You Know, for Search". -
Open the browser and navigate to http://localhost:5601 to access the Kibana user interface.
Elasticsearch is a free and open-source, distributed, RESTful search and analytics engine. Data are stored in schema-less JSON format.
-
An index is analogous to a relational database.
-
Within indices are types, which are analogous to relational database tables.
-
Types are comprised of documents, which are analogous to rows in a relational database table.
-
Indices are created, retrieved and deleted using the HTTP methods
HEAD,GET,PUTandDELETEPOSTis not supported and will return a 405 error.
Let's begin.
curl -X POST 'localhost:9200/index_name/type_name/document_id' -d '{"field": "value"}'
Using the example on elastic.co's documentation as a guide, let's create an index called boston_sports.
curl -X PUT "localhost:9200/boston_sports?pretty"
Next, let's define an explicit mapping for the boston_sports index. But before we do that, let's ensure that the index doesn't already exist, since we'll get an error if it does.
curl -X DELETE "localhost:9200/boston_sports"
(Getting a 404 HTTP response in this situation is a good thing as it indicates that we made an unsuccessful attempt to delete an index that doesn't exist, which is what we expect.)
curl -X PUT "localhost:9200/boston_sports?pretty" -H 'Content-Type: application/json' -d'
{
"mappings": {
"properties": {
"team_name": { "type": "text" },
"sport": { "type": "text" },
"year_incorporated": { "type": "integer" },
"number_of_championships": { "type": "integer" }
}
}
}'
You may be asking why we created the boston_sports index and then immediately deleted it. That's because we have two options:
- create the index and then add data to it and allow Elasticsearch to dynamically infer the index mapping; or
- create the index and an explicit mapping in one step, then add data to the index in bulk.
These instructions follow the latter route.
curl -X PUT "localhost:9200/boston_sports/_bulk?refresh&pretty" -H 'Content-Type: application/json' -d'
{"index":{"_id":1}}
{"team_name": "New England Patriots", "sport": "football", "year_incorporated": 1959, "number_of_championships": 6}
{"index":{"_id":2}}
{"team_name": "Boston Red Sox", "sport": "baseball", "year_incorporated": 1901, "number_of_championships": 9}
{"index":{"_id":3}}
{"team_name": "Boston Bruins", "sport": "hockey", "year_incorporated": 1924, "number_of_championships": 6}
{"index":{"_id":4}}
{"team_name": "Boston Celtics", "sport": "basketball", "year_incorporated": 1946, "number_of_championships": 17}
{"index":{"_id":5}}
{"team_name": "New England Revolution", "sport": "soccer", "year_incorporated": 1996, "number_of_championships": 0}
'
Ensure that the newline character is included at the end or else you'll get a 400 HTTP response saying that the bulk request must be terminated by a newline character.
Finally, let's do the equivalent of SELECT * FROM table_name in SQL to ensure that there's actual data in the boston_sports index.
curl -X GET "localhost:9200/boston_sports/_search?pretty" -H 'Content-Type: application/json' -d'
{
"query": {
"match_all": {}
}
}
'
