search
Knowledge BaseRelease NotesRequest Demo

경고

경고에 대한 REST API 작업

hashtag
개요

circle-info

와 같이 반환할 수 있습니다(스타일 취향에 따라). /alerts REST API 작업은 Panther 버전 1.112부터 오픈 베타로 제공되며 모든 고객이 이용할 수 있습니다. 버그 보고 및 기능 요청은 Panther 지원팀과 공유해 주세요.

이 API 작업을 사용하여 경고 을(를) Panther에서 상호작용할 수 있습니다.

API 호출 방법은 Panther REST API 사용 방법 지침을 참조하세요—포함하여 이 문서 페이지에서 직접 호출하는 방법에 대한 지침.

hashtag
필수 권한

  • 에 대해 GET 작업의 경우, API 토큰은 경고 읽기 권한을 가져야 합니다.

  • 에 대해 PATCH 작업의 경우, API 토큰은 경고 관리(Manage Alerts) 권한을 가져야 합니다.

hashtag
작업

hashtag
Get an alert

get
Authorizations
X-API-KeystringRequired
Path parameters
idstringRequired

ID of the alert

Responses
chevron-right
200

OK response.

application/json
get
/alerts/{id}

hashtag
Update the status or assignee of an alert

patch
Authorizations
X-API-KeystringRequired
Path parameters
idstringRequired

ID of the alert

Body
assigneestringOptional

The ID of the assignee for this alert

statusstring · enumOptional

The status of this Alert

Possible values:
Responses
chevron-right
200

OK response.

No content
patch
/alerts/{id}
No content

hashtag
List alerts

get
Authorizations
X-API-KeystringRequired
Query parameters
typestring · enumOptionalDefault: ALERTPossible values:
cursorstringOptional

the pagination token

limitinteger · int64 · max: 50Optional

the maximum results to return

Default: 25
created-afterstringOptional

The date and time after which the alerts were created. If empty we default to 30 days ago

Example: 1672531200
created-beforestringOptional

The date and time before which the alerts were created. If empty we default to the current time

Example: 1672531200
detection-idstringOptional

The detection ID to filter alerts by

sort-dirstring · enumOptional

The sort direction of the results

Default: descPossible values:
name-containsstringOptional

A string to search for in the alert name

log-sourcestring[]Optional

The log source of the alert

log-typestring[]Optional

The log type of the alert

resource-typestring[]Optional

The resource type of the alert

assigneestring[]Optional

The assignee of the alert. This should be a user id

event-count-mininteger · int64Optional

The minimum number of events in the alert

event-count-maxinteger · int64Optional

The maximum number of events in the alert

Responses
chevron-right
200

OK response.

application/json
get
/alerts

hashtag
Update the status or assignee of multiple alerts

patch
Authorizations
X-API-KeystringRequired
Body
assigneestringOptional

The ID of the assignee for this alert

idsstring[]Required

The IDs of the alerts to patch

statusstring · enumOptional

The status of this Alert

Possible values:
Responses
patch
/alerts
No content

hashtag
List alert events

get
Authorizations
X-API-KeystringRequired
Path parameters
idstringRequired

The alert id

Query parameters
cursorstringOptional

the pagination token

limitinteger · int64 · max: 50Optional

the maximum results to return

Default: 25
Responses
chevron-right
200

OK response.

application/json
get
/alerts/{id}/events
PreviousREST API(베타)Next경고 댓글

Last updated

Was this helpful?