Skip to main content

Get Search Results

Get a search's results by an account and search ID.

Basic Parameters

ParameterDescription
Account IDThe user account ID.
Search IDThe search ID.

Advanced Parameters

ParameterDescription
DetailsReturn extra details about the search. Default value is False.
LimitLimit the number of elements on the response, default value is 100.
Next TokenThe next_token from a previous request to continue paging results.
OffsetOffset within a results page.
Selected Rowslist of result rows numbers, separated by comma (e.g. "2,5,29,31,45,99,100"). The length of the list is limited by the general requirements for the size of the GET request (2048 bytes, including URL). List should be encoded. If the requested row does not belong to the already found rows then it'll not be returned.

Example Output

{
    "account_id": "10110100",
    "data_type": "logmsgs",
    "next_token": "eyJ2ZXJzaW9uIjoiMS4wIiwib2Zmc2V0IjoxfQ==",
    "offset": 42,
    "remaining": 154,
    "results": {
        "columns": [
            "time_recv",
            "message",
            "metadata",
            "pid",
            "priority",
            "ingest_id_alias"
        ],
        "metadata": {
            "time_recv": "time_recv",
            "message": "message",
            "metadata": "metadata",
            "pid": "pid",
            "priority": "priority",
            "ingest_id_alias": "ingest_id"
        },
        "records": [
            {
                "fields": {
                    "ingest_id_alias": "a91p7zsr+AE=",
                    "message": "User `john` says `hello`",
                    "metadata": [
                        {
                            "create_ts": 11664230139839977473,
                            "data": "SGkgdGhlcmUK",
                            "meta_id": "q2NUkkO8MAE=",
                            "uuid": "n6fbm+xp8AE="
                        }
                    ],
                    "pid": 6186871400498344961,
                    "priority": 50,
                    "time_recv": 1506816000
                },
                "id": {
                    "account": 134231778,
                    "aid": 5001,
                    "datatype": "logmsgs",
                    "msgid": "QU1JNAgANuIAABOJWdAwAFnQMAAAAAABAAIAHmFwcGxpY2F0aW9uL3gtYWxwYWNrZXQtbG9nbXNncwAGTE9HTVNH"
                }
            }
        ]
    },
    "search_start": 1111111111,
    "search_end": 1234567890,
    "search_status": "complete",
    "search_uuid": "C4CBB079-7C4A-4A26-908A-79BEC9EA394B",
    "status_details": "complete",
    "total_found": 1
}

Workflow Library Example

Get Search Results with Alert Logic and Send Results Via Email

Workflow LibraryPreview this Workflow on desktop