2.数据相关4.数据平台

Elastic Search

Define Elasticsearch
  • distributed
  • JSON-based search
  • analytics engine
Features
  • Fast: BKD trees, column store
  • Scalability: 1 -> 300 nodes
  • Highly Available: detects failures
  • Elasticsearch Plus Hadoop
Concepts
  • Near RealTime: Add doc, Index first, Then search
  • Cluster: a collection of one or more nodes
  • Node: UUID is assigned to the node
  • Index
  • Type
  • Documentation
  • Shards: distributed,parallelize operations
  • Replication: high availability
Health
  • Health: yellow-one node, so not high availability
Index
1
2
3
4
5
6
7
8
curl -XPOST "http://localhost:9200/_search" -d'
{
    "query": {
        "query_string": {
            "query": "kill"
        }
    }
}'
  • POST request
  • Query DSL
    1
    2
    3
    4
    5
    6
    7
    8
    9
    10
    11
    12
    13
    14
    15
    curl -XPOST "http://localhost:9200/_search" -d'
    {
        "query": {
            "filtered": {
                "query": {
                    "query_string": {
                        "query": "drama"
                    }
                },
                "filter": {
                    "term": { "year": 1962 }
                }
            }
        }
    }
Sense
  • A chrome plugin
DEMO

Why ElasticSearch?

1. Full-text Search VS Like
  • Index
    • Like: un-indexed column, so slow
    • Full-text Search: inverted index, so fast
  • PR tradeoff
    • Like: 100% precision
    • Full-text Search: flexibility to tune down PR
  • Ranking
    • Like: no similarity
    • Full-text Search: BM25, Various Distance
  • morphological analysis
    • treating “mice” and “mouse” as the same word
2.