OpenSearch stands as a versatile, scalable, open-source solution designed for diverse data exploration needs, ranging from interactive log analytics to real-time application monitoring. Despite its capabilities, OpenSearch users and administrators often encounter challenges in ensuring optimal search performance due to limited expertise or OpenSearch's current constraints in providing comprehensive data points on query executions. Common questions include:
- “What are the top queries with highest latency/CPU usages in the last 1 hour” (Identification of top queries by certain resource usages within a specific timeframe).
- “How do I associate queries to users” (Profiling users with the highest search query volumes).
- “Why my search queries are so slow” (Concerns about slow search queries).
- “Why there was a spike in my search latency chart” (Spikes in query latency).
The overarching objective of the Query Insights initiative is to address these issues by building frameworks, APIs, and dashboards, with minimal performance impact, to offer profound insights, metrics and recommendations into query executions, empowering users to better understand search query characteristics, patterns, and system behavior during query execution stages. Query Insights will facilitate enhanced detection, diagnosis, and prevention of query performance issues, ultimately improving query processing performance, user experience, and overall system resilience.
Query Insights and this plugin project was originally proposed in the OpenSearch Query Insights RFC.
To get started, install the plugin into OpenSearch with the following command:
bin/opensearch-plugin install query-insights
For information about installing plugins, see Installing plugins.
When you install the query-insights plugin, top N query monitoring is disabled by default. To enable top N query monitoring, update the dynamic settings for the desired monitoring types. These settings enable the corresponding collectors and aggregators in the running cluster. For example, to enable monitoring top N queries by latency, update the search.insights.top_queries.latency.enabled setting:
PUT _cluster/settings
{
"persistent" : {
"search.insights.top_queries.latency.enabled" : true
}
}
You can use the Insights API endpoint to obtain top N queries:
GET /_insights/top_queries
You can configure your desired exporter to export top N query data to different sinks, allowing for better monitoring and analysis of your OpenSearch queries.
A local index exporter allows you to export the top N queries to local OpenSearch indexes. To configure the local index exporter for the top N queiries by latency, send the following request:
PUT _cluster/settings
{
"persistent" : {
"search.insights.top_queries.latency.exporter.type" : "local_index",
"search.insights.top_queries.latency.exporter.config.index" : "YYYY.MM.dd"
}
}
You can refer to the official document for more detailed usage of query-insights plugin.
If you find bugs or want to request a feature, please create a new issue. For questions or to discuss how Query Insights works, please find us in the OpenSearch Slack in the #plugins channel.
The plugin can be built using Gradle:
./gradlew build
To test and debug, run the plugin with OpenSearch in debug mode:
./gradlew run --debug-jvm
The OpenSearch Project style guidelines and OpenSearch terms documents provide style standards and terminology to be observed when creating OpenSearch Project content.
- For questions or help getting started, please find us in the OpenSearch Slack in the
#pluginschannel. - For bugs or feature requests, please create a new issue.
This project has adopted the Amazon Open Source Code of Conduct. For more information see the Code of Conduct FAQ, or contact [email protected] with any additional questions or comments.
This project is licensed under the Apache v2.0 License.
Copyright OpenSearch Contributors. See NOTICE for details.