Hello. Using Graylog extensively in a project, we found that it seems impossible to sort messages returned by Graylog API by more than one field. The default value of the "sort" key is to sort by "timestamp" in a descending order. This can be overriden, and another key can be used for sorting (fileld:asc / field:desc). However, we'd like to be able to sort by two keys, e.g. "subject_name" and "log_created_at". Such sorting behaviour is readily offered by Elastic, but Graylog API seems to impose this limitation - that whenever we try to sort by more than one key, it defaults to its standard sorting (by timestamp).
To visualize better: http://prntscr.com/dg1mho The question I'd like to ask - is it possible to sort messages by more than one field when interacting with Graylog through the API ? -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/af93cadd-9b95-4b50-8c68-21165a6af40a%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
