Splunk Enterprise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Splunk Rest API response in JSON format

Eshwar
Engager
‎02-02-2024 09:48 AM

Hi Community,

We are in the process of sending the alerts from Splunk to another application via REST API but response of the REST API is displaying in XML format as our other application would have expect  JSON format however we tried using Postman application as well but the response is same in XML so can any one suggest  JSON response REST API to get the alert details?

Regards,

Eshwar

Labels (2)
0 Karma
Reply

Stormy
New Member
‎11-01-2024 09:56 AM

Inorder to get the response in json you want to add ?output_mode=json at the end of your rest api call url.
Or you can add it as part of the payload.

0 Karma
Reply

yallami
Explorer
‎09-06-2024 02:39 AM

Hi, did you find a solution?

0 Karma
Reply

richgalloway
SplunkTrust
SplunkTrust
‎02-02-2024 10:24 AM

Try specifying output_mode=json.  See https://docs.splunk.com/Documentation/Splunk/9.1.3/RESTUM/RESTusing#Encoding_schemes

---
If this reply helps you, Karma would be appreciated.
0 Karma
Reply

Eshwar
Engager
‎02-02-2024 07:55 PM

Hi @richgalloway ,

We had tried giving the output_mode parameter for Rest point but still we can see xml  response.

0 Karma
Reply
Get Updates on the Splunk Community!

Preparing your Splunk Environment for OpenSSL3

The Splunk platform will transition to OpenSSL version 3 in a future release. Actions are required to prepare ...

Unleash Unified Security and Observability with Splunk Cloud Platform

     Now Available on Microsoft AzureThursday, March 27, 2025  |  11AM PST / 2PM EST | Register NowStep boldly ...

Splunk AppDynamics with Cisco Secure Application

Web applications unfortunately present a target rich environment for security vulnerabilities and attacks. ...