Splunk Search
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Is it possible to call Splunk RestAPI with request in JSON?

jakubvojacek
Loves-to-Learn
‎12-03-2020 04:28 AM

Hello all,

is it possible to call Splunk RestAPI with request in JSON.

I am trying in SOAP UI software, media Type = application/json

And when request is inputed as string:
search=search index=myindex |head 5

I get valid response

But when I try request in json format
{"search": "search index=myindex |head 5"}

I get response:
{"messages": [{
"type": "FATAL",
"text": "Empty search."
}]}

Tried also following requests:
{"search": "index=myindex |head 5"}
{"search": search index=myindex |head 5}
{"body": {"search": "search index=myindex |head 5"}}

Thanks

Tags (2)
0 Karma
Reply

Dov1
Observer
‎03-09-2022 08:01 AM

Hi,

Did you found solution to your problem? 

I need the same thing, I have a system that can send only post with json.

Thanks 

0 Karma
Reply
Register for .conf25!
Get Updates on the Splunk Community!

Security Professional: Sharpen Your Defenses with These .conf25 Sessions

Sooooooooooo, guess what. .conf25 is almost here, and if you're on the Security Learning Path, this is your ...

First Steps with Splunk SOAR

Our first step was to gather a list of the playbooks we wanted and to sort them by priority.  Once this list ...

How To Build a Self-Service Observability Practice with Splunk Observability Cloud

If you’ve read our previous post on self-service observability, you already know what it is and why it ...
Top