- HTTP request
- Path parameters
- Request body
- Response body
- Authorization scopes
- AuditSettingsRequestTypeEnum
- AuditSettingsResponse
- AuditSettingsRequestTypeEnum
- AuditData
- CountData
- MostActiveUsersCountData
- Try it!
Full name: projects.locations.instances.legacySoarAudit.legacyGetAuditDataV2
Gets the audit data.
HTTP request
Path parameters
| Parameters | |
|---|---|
instance |
Required. The name of the parent resource, which is the SecOps instance. Format: |
Request body
The request body contains data with the following structure:
| JSON representation |
|---|
{
"pageNumber": integer,
"usersNames": [
string
],
"apiKeys": [
string
],
"auditSettingsRequestType": enum ( |
| Fields | |
|---|---|
pageNumber |
Optional. The page number of the audit data. |
usersNames[] |
Optional. The users names to get the audit data for. |
apiKeys[] |
Optional. The api keys to get the audit data for. |
auditSettingsRequestType |
Optional. The type of the audit request. |
Response body
Response message for LegacySoarAuditService
If successful, the response body contains data with the following structure:
| JSON representation |
|---|
{
"payload": {
object ( |
| Fields | |
|---|---|
payload |
Required. The AuditSettingsResponse response. |
Authorization scopes
Requires the following OAuth scope:
https://www.googleapis.com/auth/cloud-platform
For more information, see the Authentication Overview.
AuditSettingsRequestTypeEnum
Enum that represents the type of the audit settings request.
| Enums | |
|---|---|
GROUP |
Group. |
COUNT |
Count. |
AuditSettingsResponse
Message that represents a audit settings response.
| JSON representation |
|---|
{ "auditRecords": [ { object ( |
| Fields | |
|---|---|
auditRecords[] |
Optional. Audit records. |
operationsDistribution[] |
Optional. Operations distribution. |
mostCommonOperations[] |
Optional. Most common operations. |
mostCommonResulations[] |
Optional. Most common regulations. |
mostCommonActiveUsers[] |
Optional. Most common active users. |
mostCommonBrowsers[] |
Optional. Most common browsers. |
mostCommonAddresses[] |
Optional. Most common addresses. |
totalCount |
Optional. Total count. |
pageSize |
Optional. Page size. |
pageNumber |
Optional. Page number. |
auditSettingsRequestType |
Optional. Audit settings request type. |
AuditSettingsRequestTypeEnum
Enum that represents the type of the audit settings request.
| Enums | |
|---|---|
GROUP |
Group. |
COUNT |
Count. |
AuditData
Message that represents an audit data.
| JSON representation |
|---|
{ "user": string, "userGuid": string, "module": string, "operation": string, "address": string, "browser": string, "screenSize": string, "activityItem": string, "currentActivity": string, "previousActivity": string, "source": string } |
| Fields | |
|---|---|
user |
The user name is audited. |
userGuid |
Optional. The user guid. |
module |
Optional. The module. |
operation |
Optional. The operation. |
address |
The address. |
browser |
The browser. |
screenSize |
The screen size. |
activityItem |
The activity item. |
currentActivity |
Optional. The current activity. |
previousActivity |
Optional. The previous activity. |
source |
The source. |
CountData
Message that represents a count data.
| JSON representation |
|---|
{ "name": string, "count": integer, "countLabel": string } |
| Fields | |
|---|---|
name |
The name. |
count |
Optional. The count. |
countLabel |
Optional. The count label. |
MostActiveUsersCountData
Message that represents a most active users count data.
| JSON representation |
|---|
{ "userFullName": string, "name": string, "count": integer, "countLabel": string } |
| Fields | |
|---|---|
userFullName |
The user full name. |
name |
Name of the user. |
count |
Optional. The count. |
countLabel |
Optional. The count label. |