| 发明名称 |
DISCOVERING FIELDS TO FILTER DATA RETURNED IN RESPONSE TO A SEARCH |
| 摘要 |
Fields may be discovered in events that are returned in response to an initial search. The events may comprise portions of raw data. Furthermore, the fields may be defined by extraction rules for extracting values from corresponding portions of raw data. The displaying of a graphical user interface (GUI) may be caused where the GUI enables a user to select or enter criteria for a subset of the discovered fields without entering a search query in a search bar. At least one criterion for at least one field from the subset of the discovered fields may be received through a portion of the GUI that does not include a search bar for entering a search query. The events returned in response to the initial search query may be caused to be filtered based on the received criterion. |
| 申请公布号 |
US2015026167(A1) |
申请公布日期 |
2015.01.22 |
| 申请号 |
US201414448937 |
申请日期 |
2014.07.31 |
| 申请人 |
Splunk Inc. |
发明人 |
Neels Alice;Vasan Sundar;Fishel Simon;Robichaud Marc |
| 分类号 |
G06F17/30;G06F3/0482;G06F3/0484 |
主分类号 |
G06F17/30 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method comprising:
discovering fields in events returned in response to an initial search query, wherein the events comprise portions of raw data, and the fields are defined by extraction rules for extracting values from corresponding portions of raw data; causing display of a graphical user interface (GUI) that enables a user to select or enter criteria for a subset of the discovered fields without entering a search query in a search bar; receiving through a portion of the GUI that does not include a search bar for entering a search query at least one criterion for at least one field from the subset of the discovered fields; and causing, by a processing device, the events returned in response to the initial search query to be filtered based on the received at least one criterion for the at least one field. |
| 地址 |
San Francisco CA US |
