How to search messages using REST API

jan · December 14, 2020, 8:31am

one open would be to use the relative time,

Include the streams ID you want to search in, include the query string in the query_string object and the time you want to search as relative.

The below search will return as CSV/export.

## Search via Export API
curl -X "POST" "https://graylog.ch/api/views/search/messages" \
     -H 'X-Requested-By: Mamamia' \
     -H 'Content-Type: application/json' \
     -H 'Accept: text/csv' \
     -u 'admin:password' \
     -d $'{
  "streams": [
    "5e569003c793163fea1b3373"
  ],
  "query_string": {
    "type": "elasticsearch",
    "query_string": "section:boulder"
  },
  "timerange": {
    "type": "relative",
    "range": 30000
  }
}'

Topic		Replies	Views
Searching for messages using the REST API: json vs csv Graylog Central (peer support) curl	3	2241	November 23, 2022
Searching messages from a stream via the REST API Graylog Central (peer support)	2	12483	September 12, 2017
API Search Example Graylog Central (peer support)	4	11173	March 30, 2020
Search messages API in Graylog 3.3 Development	1	1708	July 27, 2020
Query Message ID with REST API Development	5	2445	December 10, 2021

How to search messages using REST API

Related topics