Elasticsearch

Elasticsearch is a distributed, free and open search and analytics engine for all types of data, including textual, numerical, geospatial, structured, and unstructured.

Elasticsearch Source

Elasticsearch is a distributed, free and open search and analytics engine for all types of data, including textual, numerical, geospatial, structured, and unstructured.

If you are new to Elasticsearch, you can learn how to set up a cluster and start indexing data.

Elasticsearch uses ES|QL for querying data. ES|QL is a powerful query language that allows you to search and aggregate data in Elasticsearch.

See the official documentation for more information.

Available Tools

elasticsearch-esql Execute ES|QL queries.

Requirements

API Key

Toolbox uses an API key to authorize and authenticate when interacting with Elasticsearch.

In addition to setting the API key for your server, you need to ensure the API key has the correct permissions for the queries you intend to run. See API key management for more information on applying permissions to an API key.

Example

sources:
  my-elasticsearch-source:
    kind: "elasticsearch"
    addresses:
      - "http://localhost:9200"
    apikey: "my-api-key"

Reference

field	type	required	description
kind	string	true	Must be “elasticsearch”.
addresses	[]string	true	List of Elasticsearch hosts to connect to.
apikey	string	true	The API key to use for authentication.

Last modified November 7, 2025: chore(main): release 0.19.1 (#1901) (cd8d68d)