Searching messages from a stream via the REST API

hezor · August 29, 2017, 10:14am

Hey,

I’m having difficulties searching messages from a stream via the REST API. Graylog is version 2.1.3.

I’m able to search using the admin user with the “Search/Absolute : Message search” API feature, but I have a need to search from a stream with a user that only has privileges to that particular stream.

I have tried the following command without success:
curl --user <streamUser>:<userPwd> -H 'Accept: application/json' -X GET "http://graylog.server.com:12900/streams/<streamID>/search?rangetype=relative&fields=message%2Csource&width=1440&highlightMessage=&relative=300&q=error"

The response will be:
{"type":"ApiError","message":"HTTP 404 Not Found"}

If I omit the -H 'Accept: application/json' parameter, curl outputs some HTML so no luck there either.

Although the same conditions return plenty of messages when performed via the Graylog web interface.

So, is there a way to get this done? If so, could you please enlighten me what is the proper format for searching stream messages via the REST API. Thanks.

jochen · August 29, 2017, 3:23pm

Stream search is simply using the universal search (e. g. /search/universal/absolute) and adds a filter (streams:<STREAM_ID>) to it.

system · September 12, 2017, 3:23pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
How to search messages using REST API Graylog Central (peer support)	8	16882	January 3, 2021
Searching for messages using the REST API: json vs csv Graylog Central (peer support) curl	3	1659	November 23, 2022
API Authorization error Graylog Central (peer support)	9	3421	December 14, 2017
Api/search/universal/relative/histogram HTTP 404 Not Found Graylog Central (peer support) pipeline-rules , documentation , curl	4	585	July 13, 2022
Graylog API message through curl not fetching data Graylog Central (peer support)	8	6242	November 5, 2018

Searching messages from a stream via the REST API

Related Topics