From 4f8262196cb631dbc29e56fd558d77efae170eec Mon Sep 17 00:00:00 2001
From: Shane Ardell <sardell@hortonworks.com>
Date: Wed, 20 Jun 2018 13:47:14 +0200
Subject: [PATCH] fix search query to use metron_alert instead of alert for
 nested queries

---
 metron-interface/metron-alerts/src/app/model/filter.ts | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/metron-interface/metron-alerts/src/app/model/filter.ts b/metron-interface/metron-alerts/src/app/model/filter.ts
index 200e33ca00..c90c7a629d 100644
--- a/metron-interface/metron-alerts/src/app/model/filter.ts
+++ b/metron-interface/metron-alerts/src/app/model/filter.ts
@@ -63,12 +63,12 @@ export class Filter {
   private createNestedQuery(field: string, value: string): string {
 
     return '(' + Utils.escapeESField(field) + ':' +  Utils.escapeESValue(value)  + ' OR ' +
-                Utils.escapeESField('alert.' + field) + ':' +  Utils.escapeESValue(value) + ')';
+                Utils.escapeESField('metron_alert.' + field) + ':' +  Utils.escapeESValue(value) + ')';
   }
 
   private createNestedQueryWithoutValueEscaping(field: string, value: string): string {
 
     return '(' + Utils.escapeESField(field) + ':' +  value  + ' OR ' +
-        Utils.escapeESField('alert.' + field) + ':' +  value + ')';
+        Utils.escapeESField('metron_alert.' + field) + ':' +  value + ')';
   }
 }