Queries that return data in the Sumo dashboard return empty array when invoked from the API
I am having issues with the queries made using the API endpoints. Even slightly elaborate queries that work in the Sumo dashboard don't return any data when invoked from the API
_collector="okd-staging" jacob exec
curl -H "Authorization: Basic ...." -X GET https://api.us2.sumologic.com/api/v1/logs/search?q=_collector=%22okd-staging%22%20jacob%20exec&from=2020-05-13T17:35:12&to=2020-05-14T17:35:12&format=json
_collector="okd-staging" jacob
curl -H "Authorization: Basic ...." -X GET https://api.us2.sumologic.com/api/v1/logs/search?q=_collector=%22okd-staging%22%20jacob%20&from=2020-05-13T02:33:15&to=2020-05-14T02:33:15&format=json
-
Hi Hardeep,
it's very hard to say what is happening here without access to your logs and account - for example you can get behaviour like this if you have RBAC roles and the key you are using has different access to the user.
I'd suggest you log a support ticket https://support.sumologic.com/hc/en-us/requests/new - unless you are able to post more of the actual event data and other information here.
Please sign in to leave a comment.
Comments
2 comments