Log Sources
REST API operations for log sources
Last updated
Was this helpful?
REST API operations for log sources
Last updated
Was this helpful?
The /log-sources
REST API operations are in open beta starting with Panther version 1.111, and are available to all customers. Please share any bug reports and feature requests with your Panther support team.
Use these API operations to interact with log sources in Panther. Currently, interactions with HTTP Sources are supported. (This does not include supported log sources that use HTTP as their transport mechanism.)
To call the API, see the How to use the Panther REST API instructions—including directions for how to invoke it directly from this documentation page.
For GET
operations, your API token must have the View Log Sources
permission.
For POST
, PUT
, and DELETE
operations, your API token must have the Manage Log Sources
permission.
/log-sources/http
The authentication bearer token value of the http source. Used for Bearer auth method
The authentication header key of the http source. Used for HMAC and SharedSecret auth methods
The authentication algorithm of the http source. Used for HMAC auth method
The authentication method of the http source
SharedSecret
, HMAC
, Bearer
, Basic
, None
The authentication header password of the http source. Used for Basic auth method
The authentication header secret value of the http source. Used for HMAC and SharedSecret auth methods
The authentication header username of the http source. Used for Basic auth method
The integration label (name)
The log stream type
Auto
, CloudWatchLogs
, JSON
, JsonArray
, Lines
The log types of the integration
/log-sources/http/{id}
ID of the http source to fetch
put updates an http source
/log-sources/http/{id}
ID of the http source to update
The authentication bearer token value of the http source. Used for Bearer auth method
The authentication header key of the http source. Used for HMAC and SharedSecret auth methods
The authentication algorithm of the http source. Used for HMAC auth method
The authentication method of the http source
SharedSecret
, HMAC
, Bearer
, Basic
, None
The authentication header password of the http source. Used for Basic auth method
The authentication header secret value of the http source. Used for HMAC and SharedSecret auth methods
The authentication header username of the http source. Used for Basic auth method
The integration label (name)
The log stream type
Auto
, CloudWatchLogs
, JSON
, JsonArray
, Lines
The log types of the integration
/log-sources/http/{id}
ID of the http source to delete
No body