Function Types and Arguments
Functions within LogScale are identified by their grouping that indicates the type of operation the function performs on the event stream. For example, Aggregate Functions combine or summarize information.
Function Types
Table: Functions Types
| Function Type | Description |
|---|---|
aggregate | Grouping, summarizing or aggregating data across events |
array | Extract, create and manipulate items embedded in arrays, or to interpret arrays, within events |
comparison | Comparing or manipulating information |
condition | Selecting or choosing expressions or execution of expressions |
data-manipulation | Manipulate or update data in fields across events |
event | Event creation, modification, or manipulation of an event or field |
filter | Filter events or field data |
format | Format field data such as dates, times or numbers |
geolocation | Lookup or identify the location |
hash | Generate or verify hashes |
join | Join events across different repositories |
math | Basic and advanced math and calulcations |
network | Network identification, extracting, or matching |
parsing | Parsing complex or embedded data such as JSON or XML |
regular-expression | Execute regular expression matches against event fields |
security | Functions for security tasks |
statistics | Statistical generation, such as minimum, maximum, average across event data |
string | String manipulation, combination or matching |
time-date | Time and date functions for extracting, calculating or comparing time and date values |
widget | Functions for creating and formatting widgets |