azure-native.securityinsights.getEntitiesGetTimeline
Explore with Pulumi AI
Timeline for an entity. Azure REST API version: 2023-06-01-preview.
Other available API versions: 2019-01-01-preview, 2021-09-01-preview, 2021-10-01-preview, 2022-01-01-preview, 2022-04-01-preview, 2022-05-01-preview, 2022-06-01-preview, 2022-07-01-preview, 2022-08-01-preview, 2022-09-01-preview, 2022-10-01-preview, 2022-11-01-preview, 2022-12-01-preview, 2023-02-01-preview, 2023-03-01-preview, 2023-04-01-preview, 2023-05-01-preview, 2023-07-01-preview, 2023-08-01-preview, 2023-09-01-preview, 2023-10-01-preview, 2023-12-01-preview, 2024-01-01-preview, 2024-04-01-preview.
Using getEntitiesGetTimeline
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getEntitiesGetTimeline(args: GetEntitiesGetTimelineArgs, opts?: InvokeOptions): Promise<GetEntitiesGetTimelineResult>
function getEntitiesGetTimelineOutput(args: GetEntitiesGetTimelineOutputArgs, opts?: InvokeOptions): Output<GetEntitiesGetTimelineResult>
def get_entities_get_timeline(end_time: Optional[str] = None,
entity_id: Optional[str] = None,
kinds: Optional[Sequence[Union[str, EntityTimelineKind]]] = None,
number_of_bucket: Optional[int] = None,
resource_group_name: Optional[str] = None,
start_time: Optional[str] = None,
workspace_name: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetEntitiesGetTimelineResult
def get_entities_get_timeline_output(end_time: Optional[pulumi.Input[str]] = None,
entity_id: Optional[pulumi.Input[str]] = None,
kinds: Optional[pulumi.Input[Sequence[pulumi.Input[Union[str, EntityTimelineKind]]]]] = None,
number_of_bucket: Optional[pulumi.Input[int]] = None,
resource_group_name: Optional[pulumi.Input[str]] = None,
start_time: Optional[pulumi.Input[str]] = None,
workspace_name: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetEntitiesGetTimelineResult]
func GetEntitiesGetTimeline(ctx *Context, args *GetEntitiesGetTimelineArgs, opts ...InvokeOption) (*GetEntitiesGetTimelineResult, error)
func GetEntitiesGetTimelineOutput(ctx *Context, args *GetEntitiesGetTimelineOutputArgs, opts ...InvokeOption) GetEntitiesGetTimelineResultOutput
> Note: This function is named GetEntitiesGetTimeline
in the Go SDK.
public static class GetEntitiesGetTimeline
{
public static Task<GetEntitiesGetTimelineResult> InvokeAsync(GetEntitiesGetTimelineArgs args, InvokeOptions? opts = null)
public static Output<GetEntitiesGetTimelineResult> Invoke(GetEntitiesGetTimelineInvokeArgs args, InvokeOptions? opts = null)
}
public static CompletableFuture<GetEntitiesGetTimelineResult> getEntitiesGetTimeline(GetEntitiesGetTimelineArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet
fn::invoke:
function: azure-native:securityinsights:getEntitiesGetTimeline
arguments:
# arguments dictionary
The following arguments are supported:
- End
Time string - The end timeline date, so the results returned are before this date.
- Entity
Id string - entity ID
- Resource
Group stringName - The name of the resource group. The name is case insensitive.
- Start
Time string - The start timeline date, so the results returned are after this date.
- Workspace
Name string - The name of the workspace.
- Kinds
List<Union<string, Pulumi.
Azure Native. Security Insights. Entity Timeline Kind>> - Array of timeline Item kinds.
- Number
Of intBucket - The number of bucket for timeline queries aggregation.
- End
Time string - The end timeline date, so the results returned are before this date.
- Entity
Id string - entity ID
- Resource
Group stringName - The name of the resource group. The name is case insensitive.
- Start
Time string - The start timeline date, so the results returned are after this date.
- Workspace
Name string - The name of the workspace.
- Kinds []string
- Array of timeline Item kinds.
- Number
Of intBucket - The number of bucket for timeline queries aggregation.
- end
Time String - The end timeline date, so the results returned are before this date.
- entity
Id String - entity ID
- resource
Group StringName - The name of the resource group. The name is case insensitive.
- start
Time String - The start timeline date, so the results returned are after this date.
- workspace
Name String - The name of the workspace.
- kinds
List<Either<String,Entity
Timeline Kind>> - Array of timeline Item kinds.
- number
Of IntegerBucket - The number of bucket for timeline queries aggregation.
- end
Time string - The end timeline date, so the results returned are before this date.
- entity
Id string - entity ID
- resource
Group stringName - The name of the resource group. The name is case insensitive.
- start
Time string - The start timeline date, so the results returned are after this date.
- workspace
Name string - The name of the workspace.
- kinds
(string | Entity
Timeline Kind)[] - Array of timeline Item kinds.
- number
Of numberBucket - The number of bucket for timeline queries aggregation.
- end_
time str - The end timeline date, so the results returned are before this date.
- entity_
id str - entity ID
- resource_
group_ strname - The name of the resource group. The name is case insensitive.
- start_
time str - The start timeline date, so the results returned are after this date.
- workspace_
name str - The name of the workspace.
- kinds
Sequence[Union[str, Entity
Timeline Kind]] - Array of timeline Item kinds.
- number_
of_ intbucket - The number of bucket for timeline queries aggregation.
- end
Time String - The end timeline date, so the results returned are before this date.
- entity
Id String - entity ID
- resource
Group StringName - The name of the resource group. The name is case insensitive.
- start
Time String - The start timeline date, so the results returned are after this date.
- workspace
Name String - The name of the workspace.
- kinds
List<String | "Activity" | "Bookmark" | "Security
Alert" | "Anomaly"> - Array of timeline Item kinds.
- number
Of NumberBucket - The number of bucket for timeline queries aggregation.
getEntitiesGetTimeline Result
The following output properties are available:
- Meta
Data Pulumi.Azure Native. Security Insights. Outputs. Timeline Results Metadata Response - The metadata from the timeline operation results.
- Value List<object>
- The timeline result values.
- Meta
Data TimelineResults Metadata Response - The metadata from the timeline operation results.
- Value []interface{}
- The timeline result values.
- meta
Data TimelineResults Metadata Response - The metadata from the timeline operation results.
- value List<Object>
- The timeline result values.
- meta
Data TimelineResults Metadata Response - The metadata from the timeline operation results.
- value
(Activity
Timeline Item Response | Anomaly Timeline Item Response | Bookmark Timeline Item Response | Security Alert Timeline Item Response)[] - The timeline result values.
- meta_
data TimelineResults Metadata Response - The metadata from the timeline operation results.
- value Sequence[Any]
- The timeline result values.
- meta
Data Property Map - The metadata from the timeline operation results.
- value List<Property Map | Property Map | Property Map | Property Map>
- The timeline result values.
Supporting Types
ActivityTimelineItemResponse
- Bucket
End stringTime UTC - The grouping bucket end time.
- Bucket
Start stringTime UTC - The grouping bucket start time.
- Content string
- The activity timeline content.
- First
Activity stringTime UTC - The time of the first activity in the grouping bucket.
- Last
Activity stringTime UTC - The time of the last activity in the grouping bucket.
- Query
Id string - The activity query id.
- Title string
- The activity timeline title.
- Bucket
End stringTime UTC - The grouping bucket end time.
- Bucket
Start stringTime UTC - The grouping bucket start time.
- Content string
- The activity timeline content.
- First
Activity stringTime UTC - The time of the first activity in the grouping bucket.
- Last
Activity stringTime UTC - The time of the last activity in the grouping bucket.
- Query
Id string - The activity query id.
- Title string
- The activity timeline title.
- bucket
End StringTime UTC - The grouping bucket end time.
- bucket
Start StringTime UTC - The grouping bucket start time.
- content String
- The activity timeline content.
- first
Activity StringTime UTC - The time of the first activity in the grouping bucket.
- last
Activity StringTime UTC - The time of the last activity in the grouping bucket.
- query
Id String - The activity query id.
- title String
- The activity timeline title.
- bucket
End stringTime UTC - The grouping bucket end time.
- bucket
Start stringTime UTC - The grouping bucket start time.
- content string
- The activity timeline content.
- first
Activity stringTime UTC - The time of the first activity in the grouping bucket.
- last
Activity stringTime UTC - The time of the last activity in the grouping bucket.
- query
Id string - The activity query id.
- title string
- The activity timeline title.
- bucket_
end_ strtime_ utc - The grouping bucket end time.
- bucket_
start_ strtime_ utc - The grouping bucket start time.
- content str
- The activity timeline content.
- first_
activity_ strtime_ utc - The time of the first activity in the grouping bucket.
- last_
activity_ strtime_ utc - The time of the last activity in the grouping bucket.
- query_
id str - The activity query id.
- title str
- The activity timeline title.
- bucket
End StringTime UTC - The grouping bucket end time.
- bucket
Start StringTime UTC - The grouping bucket start time.
- content String
- The activity timeline content.
- first
Activity StringTime UTC - The time of the first activity in the grouping bucket.
- last
Activity StringTime UTC - The time of the last activity in the grouping bucket.
- query
Id String - The activity query id.
- title String
- The activity timeline title.
AnomalyTimelineItemResponse
- Azure
Resource stringId - The anomaly azure resource id.
- Display
Name string - The anomaly name.
- End
Time stringUtc - The anomaly end time.
- Start
Time stringUtc - The anomaly start time.
- Time
Generated string - The anomaly generated time.
- Description string
- The anomaly description.
- Intent string
- The intent of the anomaly.
- Product
Name string - The anomaly product name.
- Reasons List<string>
- The reasons that cause the anomaly.
- Techniques List<string>
- The techniques of the anomaly.
- Vendor string
- The name of the anomaly vendor.
- Azure
Resource stringId - The anomaly azure resource id.
- Display
Name string - The anomaly name.
- End
Time stringUtc - The anomaly end time.
- Start
Time stringUtc - The anomaly start time.
- Time
Generated string - The anomaly generated time.
- Description string
- The anomaly description.
- Intent string
- The intent of the anomaly.
- Product
Name string - The anomaly product name.
- Reasons []string
- The reasons that cause the anomaly.
- Techniques []string
- The techniques of the anomaly.
- Vendor string
- The name of the anomaly vendor.
- azure
Resource StringId - The anomaly azure resource id.
- display
Name String - The anomaly name.
- end
Time StringUtc - The anomaly end time.
- start
Time StringUtc - The anomaly start time.
- time
Generated String - The anomaly generated time.
- description String
- The anomaly description.
- intent String
- The intent of the anomaly.
- product
Name String - The anomaly product name.
- reasons List<String>
- The reasons that cause the anomaly.
- techniques List<String>
- The techniques of the anomaly.
- vendor String
- The name of the anomaly vendor.
- azure
Resource stringId - The anomaly azure resource id.
- display
Name string - The anomaly name.
- end
Time stringUtc - The anomaly end time.
- start
Time stringUtc - The anomaly start time.
- time
Generated string - The anomaly generated time.
- description string
- The anomaly description.
- intent string
- The intent of the anomaly.
- product
Name string - The anomaly product name.
- reasons string[]
- The reasons that cause the anomaly.
- techniques string[]
- The techniques of the anomaly.
- vendor string
- The name of the anomaly vendor.
- azure_
resource_ strid - The anomaly azure resource id.
- display_
name str - The anomaly name.
- end_
time_ strutc - The anomaly end time.
- start_
time_ strutc - The anomaly start time.
- time_
generated str - The anomaly generated time.
- description str
- The anomaly description.
- intent str
- The intent of the anomaly.
- product_
name str - The anomaly product name.
- reasons Sequence[str]
- The reasons that cause the anomaly.
- techniques Sequence[str]
- The techniques of the anomaly.
- vendor str
- The name of the anomaly vendor.
- azure
Resource StringId - The anomaly azure resource id.
- display
Name String - The anomaly name.
- end
Time StringUtc - The anomaly end time.
- start
Time StringUtc - The anomaly start time.
- time
Generated String - The anomaly generated time.
- description String
- The anomaly description.
- intent String
- The intent of the anomaly.
- product
Name String - The anomaly product name.
- reasons List<String>
- The reasons that cause the anomaly.
- techniques List<String>
- The techniques of the anomaly.
- vendor String
- The name of the anomaly vendor.
BookmarkTimelineItemResponse
- Azure
Resource stringId - The bookmark azure resource id.
- Created
By Pulumi.Azure Native. Security Insights. Inputs. User Info Response - Describes a user that created the bookmark
- Display
Name string - The bookmark display name.
- End
Time stringUtc - The bookmark end time.
- Event
Time string - The bookmark event time.
- Labels List<string>
- List of labels relevant to this bookmark
- Notes string
- The notes of the bookmark
- Start
Time stringUtc - The bookmark start time.
- Azure
Resource stringId - The bookmark azure resource id.
- Created
By UserInfo Response - Describes a user that created the bookmark
- Display
Name string - The bookmark display name.
- End
Time stringUtc - The bookmark end time.
- Event
Time string - The bookmark event time.
- Labels []string
- List of labels relevant to this bookmark
- Notes string
- The notes of the bookmark
- Start
Time stringUtc - The bookmark start time.
- azure
Resource StringId - The bookmark azure resource id.
- created
By UserInfo Response - Describes a user that created the bookmark
- display
Name String - The bookmark display name.
- end
Time StringUtc - The bookmark end time.
- event
Time String - The bookmark event time.
- labels List<String>
- List of labels relevant to this bookmark
- notes String
- The notes of the bookmark
- start
Time StringUtc - The bookmark start time.
- azure
Resource stringId - The bookmark azure resource id.
- created
By UserInfo Response - Describes a user that created the bookmark
- display
Name string - The bookmark display name.
- end
Time stringUtc - The bookmark end time.
- event
Time string - The bookmark event time.
- labels string[]
- List of labels relevant to this bookmark
- notes string
- The notes of the bookmark
- start
Time stringUtc - The bookmark start time.
- azure_
resource_ strid - The bookmark azure resource id.
- created_
by UserInfo Response - Describes a user that created the bookmark
- display_
name str - The bookmark display name.
- end_
time_ strutc - The bookmark end time.
- event_
time str - The bookmark event time.
- labels Sequence[str]
- List of labels relevant to this bookmark
- notes str
- The notes of the bookmark
- start_
time_ strutc - The bookmark start time.
- azure
Resource StringId - The bookmark azure resource id.
- created
By Property Map - Describes a user that created the bookmark
- display
Name String - The bookmark display name.
- end
Time StringUtc - The bookmark end time.
- event
Time String - The bookmark event time.
- labels List<String>
- List of labels relevant to this bookmark
- notes String
- The notes of the bookmark
- start
Time StringUtc - The bookmark start time.
EntityTimelineKind
SecurityAlertTimelineItemResponse
- Alert
Type string - The name of the alert type.
- Azure
Resource stringId - The alert azure resource id.
- Display
Name string - The alert name.
- End
Time stringUtc - The alert end time.
- Intent string
- The intent of the alert.
- Severity string
- The alert severity.
- Start
Time stringUtc - The alert start time.
- Time
Generated string - The alert generated time.
- Description string
- The alert description.
- Product
Name string - The alert product name.
- Techniques List<string>
- The techniques of the alert.
- Alert
Type string - The name of the alert type.
- Azure
Resource stringId - The alert azure resource id.
- Display
Name string - The alert name.
- End
Time stringUtc - The alert end time.
- Intent string
- The intent of the alert.
- Severity string
- The alert severity.
- Start
Time stringUtc - The alert start time.
- Time
Generated string - The alert generated time.
- Description string
- The alert description.
- Product
Name string - The alert product name.
- Techniques []string
- The techniques of the alert.
- alert
Type String - The name of the alert type.
- azure
Resource StringId - The alert azure resource id.
- display
Name String - The alert name.
- end
Time StringUtc - The alert end time.
- intent String
- The intent of the alert.
- severity String
- The alert severity.
- start
Time StringUtc - The alert start time.
- time
Generated String - The alert generated time.
- description String
- The alert description.
- product
Name String - The alert product name.
- techniques List<String>
- The techniques of the alert.
- alert
Type string - The name of the alert type.
- azure
Resource stringId - The alert azure resource id.
- display
Name string - The alert name.
- end
Time stringUtc - The alert end time.
- intent string
- The intent of the alert.
- severity string
- The alert severity.
- start
Time stringUtc - The alert start time.
- time
Generated string - The alert generated time.
- description string
- The alert description.
- product
Name string - The alert product name.
- techniques string[]
- The techniques of the alert.
- alert_
type str - The name of the alert type.
- azure_
resource_ strid - The alert azure resource id.
- display_
name str - The alert name.
- end_
time_ strutc - The alert end time.
- intent str
- The intent of the alert.
- severity str
- The alert severity.
- start_
time_ strutc - The alert start time.
- time_
generated str - The alert generated time.
- description str
- The alert description.
- product_
name str - The alert product name.
- techniques Sequence[str]
- The techniques of the alert.
- alert
Type String - The name of the alert type.
- azure
Resource StringId - The alert azure resource id.
- display
Name String - The alert name.
- end
Time StringUtc - The alert end time.
- intent String
- The intent of the alert.
- severity String
- The alert severity.
- start
Time StringUtc - The alert start time.
- time
Generated String - The alert generated time.
- description String
- The alert description.
- product
Name String - The alert product name.
- techniques List<String>
- The techniques of the alert.
TimelineAggregationResponse
TimelineErrorResponse
- Error
Message string - the error message
- Kind string
- the query kind
- Query
Id string - the query id
- Error
Message string - the error message
- Kind string
- the query kind
- Query
Id string - the query id
- error
Message String - the error message
- kind String
- the query kind
- query
Id String - the query id
- error
Message string - the error message
- kind string
- the query kind
- query
Id string - the query id
- error_
message str - the error message
- kind str
- the query kind
- query_
id str - the query id
- error
Message String - the error message
- kind String
- the query kind
- query
Id String - the query id
TimelineResultsMetadataResponse
- Aggregations
List<Pulumi.
Azure Native. Security Insights. Inputs. Timeline Aggregation Response> - timeline aggregation per kind
- Total
Count int - the total items found for the timeline request
- Errors
List<Pulumi.
Azure Native. Security Insights. Inputs. Timeline Error Response> - information about the failure queries
- Aggregations
[]Timeline
Aggregation Response - timeline aggregation per kind
- Total
Count int - the total items found for the timeline request
- Errors
[]Timeline
Error Response - information about the failure queries
- aggregations
List<Timeline
Aggregation Response> - timeline aggregation per kind
- total
Count Integer - the total items found for the timeline request
- errors
List<Timeline
Error Response> - information about the failure queries
- aggregations
Timeline
Aggregation Response[] - timeline aggregation per kind
- total
Count number - the total items found for the timeline request
- errors
Timeline
Error Response[] - information about the failure queries
- aggregations
Sequence[Timeline
Aggregation Response] - timeline aggregation per kind
- total_
count int - the total items found for the timeline request
- errors
Sequence[Timeline
Error Response] - information about the failure queries
- aggregations List<Property Map>
- timeline aggregation per kind
- total
Count Number - the total items found for the timeline request
- errors List<Property Map>
- information about the failure queries
UserInfoResponse
Package Details
- Repository
- Azure Native pulumi/pulumi-azure-native
- License
- Apache-2.0