Log Search & Filter

Overview

Lumigo provides two types of searches for logging.

Free text search: To search for all logs containing a single term, such as "error", insert the word in the search bar. To search for a group of words, surround your search term with double quotes, such as `"fatal error".
Attribute Search: To search for a specific attribute, you either insert the attribute name, or select it from the autocomplete suggestions. To search for specific attributes, prefix the attribute to your terms, such as source: "agent_unicorn".

Search operators

Text Search Operators

Condition	Syntax	Examples
contains	key:*value	`message:error` - logs with messages that end with the string error `message:error`- logs with messages that start with the string error `message:error`- logs with messages that contain the string error
equals	key:value	`resource:wildrydes-dev-invokeLambdas` - logs originate from resources whose names precisely equal "wildrydes-dev-invokeLambdas."
negation	-key:*value	`-resource:wildrydes-dev-invokeLambdas` - logs originate from resources whose names don't equal "wildrydes-dev-invokeLambdas."
Key exists	key:*	`issue:*` - logs that contain the key`issue`
Key doesn't exist	-key:*	`-issue:*` - logs that don't contain the key `issue`

Numeric Search Operators

Condition	Syntax	Examples
Greater than	key:>value	`price:>400` - logs with price value bigger than 400
Smaller than	key:<value	`price:\<400` - logs with price value smaller than 400

Multi-condition queries

To combine multiple queries, Lumigo supports various matching operators, such as AND,OR and NOT.

📘
Note
To avoid creating ambiguous queries, use parentheses. For example: ( level:error OR level:warning ) AND resource:lambda-function

Date Filtering

Date filtering is performed exclusively via the date picker. Available options include predefined time frames, such as the last 15 minutes, and a "MAX" option to search all logs within the retention period.

The default search time frame is the last 15 minutes.

Updated 23 days ago