This API is used to query the list of events.
Function
Querying the List of Events
Debugging
You can use API Explorer to debug this API.
URI
GET /v1/{project_id}/waf/event
| Parameter | Mandatory | Type | Description |
|---|---|---|---|
| project_id | Yes | String | Project ID |
| Parameter | Mandatory | Type | Description |
|---|---|---|---|
| enterprise_project_id | No | String | Enterprise project ID |
| recent | Yes | String | Log query time range |
| hosts | No | Array | Domain name ID. It can be obtained from the protected website list. |
| page | No | Integer | Page number |
| pagesize | No | Integer | Number of records per page |
Request Parameters
| Parameter | Mandatory | Type | Description |
|---|---|---|---|
| X-Auth-Token | Yes | String | User token. It can be obtained by calling the IAM API (value of X-Subject-Token in the response header). |
| Content-Type | Yes | String | Content type Default: application/json;charset=utf8 |
Response Parameters
Status code: 200
| Parameter | Type | Description |
|---|---|---|
| total | Integer | Number of attack events |
| items | Array of ListEventItems objects | Details about an attack event |
| Parameter | Type | Description |
|---|---|---|
| id | String | Event ID |
| time | Long | Count |
| policyid | String | Policy ID |
| sip | String | Source IP address |
| host | String | Domain name |
| url | String | Attacked URL |
| attack | String | Attack type XSS attacks: xss or sqli Command injection: cmdi Malicious crawlers: robot Local file inclusion: lfi Remote file inclusion: rfi Website Trojans: webshell CC attack: cc Precise protection: custom_custom IP address blacklist and whitelist: custom_whiteblackip Geolocation access control: custom_geoip Anti-tamper protection: antitamper Anti-crawler protection: anticrawler Data leakage prevention: leakage Illegal requests: illegal Other attack types: vuln |
| rule | String | ID of the matched rule |
| payload | String | Hit payload |
| action | String | Protective action |
| request_line | String | Request method and path |
| headers | headers object | Request header |
| cookie | String | Request cookie |
| status | String | Response code status |
| region | String | Region |
| host_id | String | Domain name ID |
| response_time | Long | Time to response |
| response_size | Integer | Response body size |
| response_body | String | Response body |
| Parameter | Type | Description |
|---|---|---|
| content-length | String | Request length |
| host | String | Domain name |
| content-type | String | Content type |
| user-agent | String | Proxy |
| accept | String | Type of the received content |
Status code: 400
| Parameter | Type | Description |
|---|---|---|
| error_code | String | Error code |
| error_msg | String | Error code message |
Status code: 401
| Parameter | Type | Description |
|---|---|---|
| error_code | String | Error code |
| error_msg | String | Error code message |
Status code: 500
| Parameter | Type | Description |
|---|---|---|
| error_code | String | Error code |
| error_msg | String | Error code message |
Example Requests
None
Example Responses
None
Status Codes
| Status Code | Description |
|---|---|
| 200 | ok |
| 400 | Request failed |
| 401 | Insufficient token permissions |
| 500 | Internal server error |
Error Codes
See Error Codes.
Last Article: Event Management
Next Article: This API is used to query details of an event.
Did this article solve your problem?
Thank you for your score!Your feedback would help us improve the website.