Concatenate Values of All Fields With Same Name in an Array
Concatenate values of all fields with same name in a flat array
Query
concatArray(server)Introduction
The concatArray() function concatenates (joins) two
or more arrays and returns a new array, containing the joined arrays.
The concatArray() method does not change the
existing arrays. For more information, see
Array Syntax.
In this example, the concatArray() function
concatenates the values of all fields with the same name into a value in
a new field.
Example incoming data might look like this:
| server[0] := "dopey" |
| server[1] := "sleepy" |
| server[2] := "doc" |
| server[3] := "happy" |
| server[4] := "sneezy" |
Step-by-Step
Starting with the source repository events.
- flowchart LR; %%{init: {"flowchart": {"defaultRenderer": "elk"}} }%% repo{{Events}} 0>Augment Data] result{{Result Set}} repo --> 0 0 --> result style 0 fill:#ff0000,stroke-width:4px,stroke:#000;logscale
concatArray(server)Concatenates the values of fields server[0], server[1] and so on and returns the results in a new array with a field named _concatArray. If no field is defined, the aggregate function always creates a field name beginning with underscore for the returned values.
Event Result set.
Summary and Results
The query is used to concatenate (join) two or more arrays into a new array. Concatenation is useful in programming and computing because it allows you to store and combine multiple pieces of data when needed.
Sample output from the incoming example data:
| email[0] | email[1] | email[2] | email[3] | email[4] | _concatArray |
|---|---|---|---|---|---|
| dopey | sleepy | doc | happy | sneezy | dopeysleepydochappysneezy |