Obtaining Data Risk Policy Details

Function

This API is used to obtain details about data risk policies on the asset map. You can query the configuration, status, and statistics of a data risk policy by project ID, helping you learn the usage and effect of the data risk policy.

Calling Method

For details, see Calling APIs.

URI

POST /v2/{project_id}/data-map/data-infos/strategy-detail-list

**Table 1** Path Parameters
Parameter	Mandatory	Type	Description
project_id	Yes	String	Project ID, which is used to identify a specific project.

**Table 2** Query Parameters
Parameter	Mandatory	Type	Description
type	Yes	String	Data risk policy type, which is used to specify the type of the returned details.

Request Parameters

None

Response Parameters

Status code: 200

**Table 3** Response body parameters
Parameter	Type	Description
common_info	Array of CommonInfo objects	Recommendation policy group.

**Table 4** CommonInfo
Parameter	Type	Description
asset_name	String	Asset name.
asset_type	String	Asset type.
create_time	Long	Creation time.
id	String	Asset ID.
ins_type	String	Instance type.
is_authorized	Boolean	Whether it is authorized.
is_scaned	Boolean	Whether it is scanned.
scan_detail	ScanDetail object	Asset security scanning details.
security_strategy	SecurityStrategy object	Security policy information.
threat_analysis	ThreatAnalysis object	Threat analysis information.
vpc_id	String	VPC ID

**Table 5** ScanDetail
Parameter	Type	Description
job_id	String	Scan task ID.
last_scan_time	Long	Last scan time.
object_num	Integer	Number of scanned objects.
scan_risk	String	Scan risk severity.
scan_template_id	String	Scan template ID.
scan_template_name	String	Scan template name.
security_level_color	Integer	Security level color.
security_level_id	String	Security level ID.
security_level_name	String	Security level name.
sensitive_object_num	Integer	Number of sensitive objects.

**Table 6** SecurityStrategy
Parameter	Type	Description
ssl_enabled	String	SSL enabling status.
access_strategy	String	Access policy.
access_strategy_level	String	Access policy level.
authority_enable	Boolean	Enable permission.
authority_level	String	Permission level.
backup_and_restore	String	Backup and restoration policy.
backup_enable	Boolean	Enable backup.
backup_level	String	Backup level.
data_volume_encrypt_enable	Boolean	Enable data volume encryption.
data_volume_encrypt_level	String	Data volume encryption level.
dbss_audit_security_level	String	DBSS audit security level.
dbss_audit_status	Boolean	DBSS audit status.
disk_encrypted	String	Disk encryption status.
disk_encrypted_enable	Boolean	Enable disk encryption.
encrypt_level	String	Encryption level.
https_enable	Boolean	Enable HTTPS.
https_level	String	HTTPS level.
ik_enable	String	IK enabling status.
is_encrypt	Boolean	Encrypted or not.
obs_audit_level	String	OBS audit level.
obs_audit_status	Boolean	OBS audit status.
public_network_access	String	Public network access policy.
public_network_enable	Boolean	Enable public network access.
security_group_level	String	Security group level.
ssl_status	Boolean	SSL status.
total_risk	String	Overall risk severity level.
working_mode	String	Working mode.
working_type	String	Work type.

**Table 7** ThreatAnalysis
Parameter	Type	Description
abnormal_login_level	String	Abnormal login severity.
risky_operation_level	String	High-risk operation level.
sql_inject_level	String	SQL injection level.

Status code: 201

Created

Example Requests

None

Example Responses

None

Status Codes

Status Code	Description
200	OK
201	Created
401	Unauthorized. The user is not logged in or the token is invalid.
403	Unauthorized to access the resource.
404	The specified data risk policy or project does not exist.