Pronounced like Fortress
A simple, safe, ElasticSearch query engine, allowing you or your end-users to enter arbitrary expressions without p0wning you or learning the ElasticSearch Query language.
(height <= 73 or (favorites.color == "green" and height != 73)) and firstname ~= "o.+"
There are many cases where you want a user to be able enter an arbitrary expression through a user interface or simply want to avoid ElasticSearch's powerful, but complicated query language.
Sure, you could do that with ElasticSearch's "script" filter, but I'm sure I don't have to tell you how stupid that would be. It opens up many potential security issues.
FiltrES defines a really simple expression language that should be familiar to anyone who's ever used a spreadsheet and compile it into an ElasticSearch query at runtime.
transactions <= 5 and profit > 20.5{"filtered" : {"filter" : {"bool" : {"must" : {"term" : { "tag" : "wow" }}, "must_not" : {"range" : {"age" : { "from" : 10, "to" : 20 }}}// A search filter
var expression = 'transactions <= 5 and profit > 20.5';
// Compile expression to executable function
var myQuery = filtres.compile(expression);
// Execute query
esc.search("filtres", "accounts", myQuery, function (err, accounts) {
...
});
There are only 2 types: numbers and strings. Numbers may be floating point or integers. Boolean logic is applied on the truthy value of values (e.g. any non-zero number is true, any non-empty string is true, otherwise false).
| Values | Description |
|---|---|
| 43, -1.234 | Numbers |
| "hello" | String |
| foo, a.b.c | External data variable defined by application (may be numbers or strings) |
| Comparisons | Description |
|---|---|
| x == y | Equals |
| x != y | Not equals |
| x ~= "y" | Matched to y evaluated as a RegExp |
| x ~!= "y" | Not matched to y evaluated as a RegExp |
| x < y | Less than |
| x <= y | Less than or equal to |
| x > y | Greater than |
| x >= y | Greater than or equal to |
| Boolean logic | Description |
|---|---|
| x or y | Boolean or |
| x and y | Boolean and |
| not x | Boolean not |
| ( x ) | Explicit operator precedence |
Operator precedence follows that of any sane language.
Why the name?
Because it was originally built for FILTeR EXpressions then ported to ElasticSearch (i.e. ES).
What's Jison?
Jison is bundled with FiltrES - it's a JavaScript parser generator that does the underlying hard work of understanding the expression. It's based on Flex and Bison.
License?
Tests?
What happens if the expression is malformed?
Calling filters.compile() with a malformed expression will throw an exception. You can catch that and display feedback to the user. A good UI pattern is to attempt to compile on each keystroke and continuously indicate whether the expression is valid.
And follow @abeisgreat (FiltrES) and follow @joewalnes (Filtrex)!
FAQs
A simple, safe, ElasticSearch Query compiler
The npm package filtres receives a total of 3 weekly downloads. As such, filtres popularity was classified as not popular.
We found that filtres demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Ransomware payment rates hit an all-time low in 2024 as law enforcement crackdowns, stronger defenses, and shifting policies make attacks riskier and less profitable.
Security News
require(esm) backported to Node.js 20, easing the transition to ESM-only packages and reducing complexity for developers as Node 18 nears end-of-life.
Security News
PyPI now supports iOS and Android wheels, making it easier for Python developers to distribute mobile packages.