Contents x
    Set Rule
    • 20 Jun 2024
    • 1 Minute to read
    • Contributors
    • Print
    • Dark
      Light
    Contents

    Set Rule

    • Updated on 20 Jun 2024
    • 1 Minute to read
    • Contributors
    • Print
    • Dark
      Light
    Article summary

    Post
    /rules/{oid}

    Add a new detection and response rule to the organization.

    Security
    HTTP
    Type bearer
    Path parameters
    oid
    stringRequired

    organization id

    Query parameters
    name
    string

    unique name of the new rule

    is_replace
    string

    if the rule with this name exists, replace it, 'true' or 'false'

    is_enabled
    string

    if the rule should be enabled, 'true' or 'false'

    namespace
    string

    specific namespace to operate on, defaults to 'general'

    Body parameters
    object
    detection
    string

    detection expression of the new rule

    response
    string

    response expression of the new rule

    Responses
    200

    successful operation

    401

    Access token is missing or invalid

    Was this article helpful?
    What's Next