Class: Falcon::CorrelationRules

Inherits:

Object

• Object
• Falcon::CorrelationRules

Defined in:

lib/crimson-falcon/api/correlation_rules.rb

Instance Attribute Summary

• #api_client ⇒ Object

  Returns the value of attribute api_client.

Instance Method Summary

• #aggregates_rule_versions_post_v1(ids, body, opts = {}) ⇒ ApiAggregatesResponseV1

  Get rules aggregates as specified via json in the request body.

• #aggregates_rule_versions_post_v1_with_http_info(ids, body, opts = {}) ⇒ Array<(ApiAggregatesResponseV1, Integer, Hash)>

  Get rules aggregates as specified via json in the request body.

• #combined_rules_get_v1(opts = {}) ⇒ ApiGetEntitiesRulesResponseV1

  Find all rules matching the query and filter.

• #combined_rules_get_v1_with_http_info(opts = {}) ⇒ Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>

  Find all rules matching the query and filter.

• #combined_rules_get_v2(opts = {}) ⇒ ApiGetEntitiesRulesResponseV1

  Find all rules matching the query and filter.

• #combined_rules_get_v2_with_http_info(opts = {}) ⇒ Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>

  Find all rules matching the query and filter.

• #entities_latest_rules_get_v1(rule_ids, opts = {}) ⇒ ApiGetEntitiesRulesResponseV1

  Retrieve latest rule versions by rule IDs.

• #entities_latest_rules_get_v1_with_http_info(rule_ids, opts = {}) ⇒ Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>

  Retrieve latest rule versions by rule IDs.

• #entities_rule_versions_delete_v1(ids, opts = {}) ⇒ MsaspecQueryResponse

  Delete versions by IDs.

• #entities_rule_versions_delete_v1_with_http_info(ids, opts = {}) ⇒ Array<(MsaspecQueryResponse, Integer, Hash)>

  Delete versions by IDs.

• #entities_rule_versions_export_post_v1(body, opts = {}) ⇒ ApiJobLinkResponseV1

  Export rule versions.

• #entities_rule_versions_export_post_v1_with_http_info(body, opts = {}) ⇒ Array<(ApiJobLinkResponseV1, Integer, Hash)>

  Export rule versions.

• #entities_rule_versions_import_post_v1(opts = {}) ⇒ ApiGetEntitiesRuleVersionsResponseV1

  Import rule versions.

• #entities_rule_versions_import_post_v1_with_http_info(opts = {}) ⇒ Array<(ApiGetEntitiesRuleVersionsResponseV1, Integer, Hash)>

  Import rule versions.

• #entities_rule_versions_publish_patch_v1(body, opts = {}) ⇒ ApiGetEntitiesRuleVersionsResponseV1

  Publish existing rule version.

• #entities_rule_versions_publish_patch_v1_with_http_info(body, opts = {}) ⇒ Array<(ApiGetEntitiesRuleVersionsResponseV1, Integer, Hash)>

  Publish existing rule version.

• #entities_rules_delete_v1(ids, opts = {}) ⇒ MsaspecQueryResponse

  Delete rules by IDs.

• #entities_rules_delete_v1_with_http_info(ids, opts = {}) ⇒ Array<(MsaspecQueryResponse, Integer, Hash)>

  Delete rules by IDs.

• #entities_rules_get_v1(ids, opts = {}) ⇒ ApiGetEntitiesRulesResponseV1

  Retrieve rules by IDs.

• #entities_rules_get_v1_with_http_info(ids, opts = {}) ⇒ Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>

  Retrieve rules by IDs.

• #entities_rules_get_v2(ids, opts = {}) ⇒ ApiGetEntitiesRulesResponseV1

  Retrieve rule versions by IDs.

• #entities_rules_get_v2_with_http_info(ids, opts = {}) ⇒ Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>

  Retrieve rule versions by IDs.

• #entities_rules_patch_v1(body, opts = {}) ⇒ ApiGetEntitiesRulesResponseV1

  Update rules.

• #entities_rules_patch_v1_with_http_info(body, opts = {}) ⇒ Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>

  Update rules.

• #entities_rules_post_v1(body, opts = {}) ⇒ ApiGetEntitiesRulesResponseV1

  Create rule.

• #entities_rules_post_v1_with_http_info(body, opts = {}) ⇒ Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>

  Create rule.

• #initialize(api_client = ApiClient.default) ⇒ CorrelationRules constructor

  A new instance of CorrelationRules.

• #queries_rules_get_v1(opts = {}) ⇒ MsaspecQueryResponse

  Find all rule IDs matching the query and filter.

• #queries_rules_get_v1_with_http_info(opts = {}) ⇒ Array<(MsaspecQueryResponse, Integer, Hash)>

  Find all rule IDs matching the query and filter.

• #queries_rules_get_v2(opts = {}) ⇒ MsaspecQueryResponse

  Find all rule version IDs matching the query and filter.

• #queries_rules_get_v2_with_http_info(opts = {}) ⇒ Array<(MsaspecQueryResponse, Integer, Hash)>

  Find all rule version IDs matching the query and filter.

Constructor Details

#initialize(api_client = ApiClient.default) ⇒ CorrelationRules

Returns a new instance of CorrelationRules.

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 36

def initialize(api_client = ApiClient.default)
  @api_client = api_client
end

Instance Attribute Details

#api_client ⇒ Object

Returns the value of attribute api_client.

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 34

def api_client
  @api_client
end

Instance Method Details

#aggregates_rule_versions_post_v1(ids, body, opts = {}) ⇒ ApiAggregatesResponseV1

Get rules aggregates as specified via json in the request body.

Parameters:

• ids (Array<String>) —

  The IDs

• body (Array<Object>)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :filter (String) —

  FQL query specifying the filter parameters

Returns:

• (ApiAggregatesResponseV1)

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 45

def aggregates_rule_versions_post_v1(ids, body, opts = {})
  data, _status_code, _headers = aggregates_rule_versions_post_v1_with_http_info(ids, body, opts)
  data
end

#aggregates_rule_versions_post_v1_with_http_info(ids, body, opts = {}) ⇒ Array<(ApiAggregatesResponseV1, Integer, Hash)>

Get rules aggregates as specified via json in the request body.

Parameters:

• ids (Array<String>) —

  The IDs

• body (Array<Object>)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :filter (String) —

  FQL query specifying the filter parameters

Returns:

• (Array<(ApiAggregatesResponseV1, Integer, Hash)>) —

  ApiAggregatesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 56

def aggregates_rule_versions_post_v1_with_http_info(ids, body, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: CorrelationRules.aggregates_rule_versions_post_v1 ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling CorrelationRules.aggregates_rule_versions_post_v1"
  end
  # verify the required parameter 'body' is set
  if @api_client.config.client_side_validation && body.nil?
    fail ArgumentError, "Missing the required parameter 'body' when calling CorrelationRules.aggregates_rule_versions_post_v1"
  end
  # resource path
  local_var_path = '/correlation-rules/aggregates/rule-versions/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)
  query_params[:'filter'] = opts[:'filter'] if !opts[:'filter'].nil?

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])
  # HTTP header 'Content-Type'
  content_type = @api_client.select_header_content_type(['application/json'])
  if !content_type.nil?
    header_params['Content-Type'] = content_type
  end

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body] || @api_client.object_to_http_body(body)

  # return_type
  return_type = opts[:debug_return_type] || 'ApiAggregatesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"CorrelationRules.aggregates_rule_versions_post_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:POST, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: CorrelationRules#aggregates_rule_versions_post_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#combined_rules_get_v1(opts = {}) ⇒ ApiGetEntitiesRulesResponseV1

Find all rules matching the query and filter. Supported filters: customer_id,user_id,user_uuid,status,name,created_on,last_updated_on Supported range filters: created_on,last_updated_on

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :filter (String) —

  FQL query specifying the filter parameters

• :q (String) —

  Match query criteria, which includes all the filter string fields

• :sort (String) —

  Rule property to sort on (default to ‘created_on’)

• :offset (Integer) —

  Starting index of overall result set from which to return IDs (default to 0)

• :limit (Integer) —

  Number of IDs to return (default to 100)

Returns:

• (ApiGetEntitiesRulesResponseV1)

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 123

def combined_rules_get_v1(opts = {})
  data, _status_code, _headers = combined_rules_get_v1_with_http_info(opts)
  data
end

#combined_rules_get_v1_with_http_info(opts = {}) ⇒ Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>

Find all rules matching the query and filter. Supported filters: customer_id,user_id,user_uuid,status,name,created_on,last_updated_on Supported range filters: created_on,last_updated_on

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :filter (String) —

  FQL query specifying the filter parameters

• :q (String) —

  Match query criteria, which includes all the filter string fields

• :sort (String) —

  Rule property to sort on (default to ‘created_on’)

• :offset (Integer) —

  Starting index of overall result set from which to return IDs (default to 0)

• :limit (Integer) —

  Number of IDs to return (default to 100)

Returns:

• (Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>) —

  ApiGetEntitiesRulesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 136

def combined_rules_get_v1_with_http_info(opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: CorrelationRules.combined_rules_get_v1 ...'
  end
  allowable_values = ["created_on", "created_on|desc", "last_updated_on", "last_updated_on|desc"]
  if @api_client.config.client_side_validation && opts[:'sort'] && !allowable_values.include?(opts[:'sort'])
    fail ArgumentError, "invalid value for \"sort\", must be one of #{allowable_values}"
  end
  # resource path
  local_var_path = '/correlation-rules/combined/rules/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'filter'] = opts[:'filter'] if !opts[:'filter'].nil?
  query_params[:'q'] = opts[:'q'] if !opts[:'q'].nil?
  query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?
  query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
  query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'ApiGetEntitiesRulesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"CorrelationRules.combined_rules_get_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: CorrelationRules#combined_rules_get_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#combined_rules_get_v2(opts = {}) ⇒ ApiGetEntitiesRulesResponseV1

Find all rules matching the query and filter. Supported filters: customer_id,user_id,user_uuid,status,name,created_on,last_updated_on Supported range filters: created_on,last_updated_on

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :filter (String) —

  FQL query specifying the filter parameters

• :q (String) —

  Match query criteria, which includes all the filter string fields

• :sort (String) —

  Rule property to sort on (default to ‘created_on’)

• :offset (Integer) —

  Starting index of overall result set from which to return IDs (default to 0)

• :limit (Integer) —

  Number of IDs to return (default to 100)

Returns:

• (ApiGetEntitiesRulesResponseV1)

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 197

def combined_rules_get_v2(opts = {})
  data, _status_code, _headers = combined_rules_get_v2_with_http_info(opts)
  data
end

#combined_rules_get_v2_with_http_info(opts = {}) ⇒ Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>

Find all rules matching the query and filter. Supported filters: customer_id,user_id,user_uuid,status,name,created_on,last_updated_on Supported range filters: created_on,last_updated_on

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :filter (String) —

  FQL query specifying the filter parameters

• :q (String) —

  Match query criteria, which includes all the filter string fields

• :sort (String) —

  Rule property to sort on (default to ‘created_on’)

• :offset (Integer) —

  Starting index of overall result set from which to return IDs (default to 0)

• :limit (Integer) —

  Number of IDs to return (default to 100)

Returns:

• (Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>) —

  ApiGetEntitiesRulesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 210

def combined_rules_get_v2_with_http_info(opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: CorrelationRules.combined_rules_get_v2 ...'
  end
  allowable_values = ["created_on", "created_on|desc", "last_updated_on", "last_updated_on|desc"]
  if @api_client.config.client_side_validation && opts[:'sort'] && !allowable_values.include?(opts[:'sort'])
    fail ArgumentError, "invalid value for \"sort\", must be one of #{allowable_values}"
  end
  # resource path
  local_var_path = '/correlation-rules/combined/rules/v2'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'filter'] = opts[:'filter'] if !opts[:'filter'].nil?
  query_params[:'q'] = opts[:'q'] if !opts[:'q'].nil?
  query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?
  query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
  query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'ApiGetEntitiesRulesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"CorrelationRules.combined_rules_get_v2",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: CorrelationRules#combined_rules_get_v2\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#entities_latest_rules_get_v1(rule_ids, opts = {}) ⇒ ApiGetEntitiesRulesResponseV1

Retrieve latest rule versions by rule IDs

Parameters:

• rule_ids (Array<String>) —

  The rule IDs

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (ApiGetEntitiesRulesResponseV1)

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 267

def entities_latest_rules_get_v1(rule_ids, opts = {})
  data, _status_code, _headers = entities_latest_rules_get_v1_with_http_info(rule_ids, opts)
  data
end

#entities_latest_rules_get_v1_with_http_info(rule_ids, opts = {}) ⇒ Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>

Retrieve latest rule versions by rule IDs

Parameters:

• rule_ids (Array<String>) —

  The rule IDs

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>) —

  ApiGetEntitiesRulesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 276

def entities_latest_rules_get_v1_with_http_info(rule_ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: CorrelationRules.entities_latest_rules_get_v1 ...'
  end
  # verify the required parameter 'rule_ids' is set
  if @api_client.config.client_side_validation && rule_ids.nil?
    fail ArgumentError, "Missing the required parameter 'rule_ids' when calling CorrelationRules.entities_latest_rules_get_v1"
  end
  # resource path
  local_var_path = '/correlation-rules/entities/latest-rules/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'rule_ids'] = @api_client.build_collection_param(rule_ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'ApiGetEntitiesRulesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"CorrelationRules.entities_latest_rules_get_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: CorrelationRules#entities_latest_rules_get_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#entities_rule_versions_delete_v1(ids, opts = {}) ⇒ MsaspecQueryResponse

Delete versions by IDs

Parameters:

• ids (Array<String>) —

  The IDs

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (MsaspecQueryResponse)

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 329

def entities_rule_versions_delete_v1(ids, opts = {})
  data, _status_code, _headers = entities_rule_versions_delete_v1_with_http_info(ids, opts)
  data
end

#entities_rule_versions_delete_v1_with_http_info(ids, opts = {}) ⇒ Array<(MsaspecQueryResponse, Integer, Hash)>

Delete versions by IDs

Parameters:

• ids (Array<String>) —

  The IDs

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(MsaspecQueryResponse, Integer, Hash)>) —

  MsaspecQueryResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 338

def entities_rule_versions_delete_v1_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: CorrelationRules.entities_rule_versions_delete_v1 ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling CorrelationRules.entities_rule_versions_delete_v1"
  end
  # resource path
  local_var_path = '/correlation-rules/entities/rule-versions/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'MsaspecQueryResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"CorrelationRules.entities_rule_versions_delete_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:DELETE, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: CorrelationRules#entities_rule_versions_delete_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#entities_rule_versions_export_post_v1(body, opts = {}) ⇒ ApiJobLinkResponseV1

Export rule versions

Parameters:

• body (ApiRuleVersionReportRequest)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (ApiJobLinkResponseV1)

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 391

def entities_rule_versions_export_post_v1(body, opts = {})
  data, _status_code, _headers = entities_rule_versions_export_post_v1_with_http_info(body, opts)
  data
end

#entities_rule_versions_export_post_v1_with_http_info(body, opts = {}) ⇒ Array<(ApiJobLinkResponseV1, Integer, Hash)>

Export rule versions

Parameters:

• body (ApiRuleVersionReportRequest)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(ApiJobLinkResponseV1, Integer, Hash)>) —

  ApiJobLinkResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 400

def entities_rule_versions_export_post_v1_with_http_info(body, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: CorrelationRules.entities_rule_versions_export_post_v1 ...'
  end
  # verify the required parameter 'body' is set
  if @api_client.config.client_side_validation && body.nil?
    fail ArgumentError, "Missing the required parameter 'body' when calling CorrelationRules.entities_rule_versions_export_post_v1"
  end
  # resource path
  local_var_path = '/correlation-rules/entities/rule-versions/export/v1'

  # query parameters
  query_params = opts[:query_params] || {}

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])
  # HTTP header 'Content-Type'
  content_type = @api_client.select_header_content_type(['application/json'])
  if !content_type.nil?
    header_params['Content-Type'] = content_type
  end

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body] || @api_client.object_to_http_body(body)

  # return_type
  return_type = opts[:debug_return_type] || 'ApiJobLinkResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"CorrelationRules.entities_rule_versions_export_post_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:POST, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: CorrelationRules#entities_rule_versions_export_post_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#entities_rule_versions_import_post_v1(opts = {}) ⇒ ApiGetEntitiesRuleVersionsResponseV1

Import rule versions

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (ApiGetEntitiesRuleVersionsResponseV1)

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 456

def entities_rule_versions_import_post_v1(opts = {})
  data, _status_code, _headers = entities_rule_versions_import_post_v1_with_http_info(opts)
  data
end

#entities_rule_versions_import_post_v1_with_http_info(opts = {}) ⇒ Array<(ApiGetEntitiesRuleVersionsResponseV1, Integer, Hash)>

Import rule versions

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(ApiGetEntitiesRuleVersionsResponseV1, Integer, Hash)>) —

  ApiGetEntitiesRuleVersionsResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 464

def entities_rule_versions_import_post_v1_with_http_info(opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: CorrelationRules.entities_rule_versions_import_post_v1 ...'
  end
  # resource path
  local_var_path = '/correlation-rules/entities/rule-versions/import/v1'

  # query parameters
  query_params = opts[:query_params] || {}

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'ApiGetEntitiesRuleVersionsResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"CorrelationRules.entities_rule_versions_import_post_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:POST, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: CorrelationRules#entities_rule_versions_import_post_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#entities_rule_versions_publish_patch_v1(body, opts = {}) ⇒ ApiGetEntitiesRuleVersionsResponseV1

Publish existing rule version

Parameters:

• body (ApiRuleVersionPublishRequestV1)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (ApiGetEntitiesRuleVersionsResponseV1)

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 512

def entities_rule_versions_publish_patch_v1(body, opts = {})
  data, _status_code, _headers = entities_rule_versions_publish_patch_v1_with_http_info(body, opts)
  data
end

#entities_rule_versions_publish_patch_v1_with_http_info(body, opts = {}) ⇒ Array<(ApiGetEntitiesRuleVersionsResponseV1, Integer, Hash)>

Publish existing rule version

Parameters:

• body (ApiRuleVersionPublishRequestV1)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(ApiGetEntitiesRuleVersionsResponseV1, Integer, Hash)>) —

  ApiGetEntitiesRuleVersionsResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 521

def entities_rule_versions_publish_patch_v1_with_http_info(body, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: CorrelationRules.entities_rule_versions_publish_patch_v1 ...'
  end
  # verify the required parameter 'body' is set
  if @api_client.config.client_side_validation && body.nil?
    fail ArgumentError, "Missing the required parameter 'body' when calling CorrelationRules.entities_rule_versions_publish_patch_v1"
  end
  # resource path
  local_var_path = '/correlation-rules/entities/rule-versions/publish/v1'

  # query parameters
  query_params = opts[:query_params] || {}

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])
  # HTTP header 'Content-Type'
  content_type = @api_client.select_header_content_type(['application/json'])
  if !content_type.nil?
    header_params['Content-Type'] = content_type
  end

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body] || @api_client.object_to_http_body(body)

  # return_type
  return_type = opts[:debug_return_type] || 'ApiGetEntitiesRuleVersionsResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"CorrelationRules.entities_rule_versions_publish_patch_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:PATCH, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: CorrelationRules#entities_rule_versions_publish_patch_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#entities_rules_delete_v1(ids, opts = {}) ⇒ MsaspecQueryResponse

Delete rules by IDs

Parameters:

• ids (Array<String>) —

  The IDs

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (MsaspecQueryResponse)

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 578

def entities_rules_delete_v1(ids, opts = {})
  data, _status_code, _headers = entities_rules_delete_v1_with_http_info(ids, opts)
  data
end

#entities_rules_delete_v1_with_http_info(ids, opts = {}) ⇒ Array<(MsaspecQueryResponse, Integer, Hash)>

Delete rules by IDs

Parameters:

• ids (Array<String>) —

  The IDs

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(MsaspecQueryResponse, Integer, Hash)>) —

  MsaspecQueryResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 587

def entities_rules_delete_v1_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: CorrelationRules.entities_rules_delete_v1 ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling CorrelationRules.entities_rules_delete_v1"
  end
  # resource path
  local_var_path = '/correlation-rules/entities/rules/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'MsaspecQueryResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"CorrelationRules.entities_rules_delete_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:DELETE, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: CorrelationRules#entities_rules_delete_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#entities_rules_get_v1(ids, opts = {}) ⇒ ApiGetEntitiesRulesResponseV1

Retrieve rules by IDs

Parameters:

• ids (Array<String>) —

  The IDs

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (ApiGetEntitiesRulesResponseV1)

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 640

def entities_rules_get_v1(ids, opts = {})
  data, _status_code, _headers = entities_rules_get_v1_with_http_info(ids, opts)
  data
end

#entities_rules_get_v1_with_http_info(ids, opts = {}) ⇒ Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>

Retrieve rules by IDs

Parameters:

• ids (Array<String>) —

  The IDs

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>) —

  ApiGetEntitiesRulesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 649

def entities_rules_get_v1_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: CorrelationRules.entities_rules_get_v1 ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling CorrelationRules.entities_rules_get_v1"
  end
  # resource path
  local_var_path = '/correlation-rules/entities/rules/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'ApiGetEntitiesRulesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"CorrelationRules.entities_rules_get_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: CorrelationRules#entities_rules_get_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#entities_rules_get_v2(ids, opts = {}) ⇒ ApiGetEntitiesRulesResponseV1

Retrieve rule versions by IDs

Parameters:

• ids (Array<String>) —

  The IDs

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (ApiGetEntitiesRulesResponseV1)

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 702

def entities_rules_get_v2(ids, opts = {})
  data, _status_code, _headers = entities_rules_get_v2_with_http_info(ids, opts)
  data
end

#entities_rules_get_v2_with_http_info(ids, opts = {}) ⇒ Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>

Retrieve rule versions by IDs

Parameters:

• ids (Array<String>) —

  The IDs

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>) —

  ApiGetEntitiesRulesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 711

def entities_rules_get_v2_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: CorrelationRules.entities_rules_get_v2 ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling CorrelationRules.entities_rules_get_v2"
  end
  # resource path
  local_var_path = '/correlation-rules/entities/rules/v2'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'ApiGetEntitiesRulesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"CorrelationRules.entities_rules_get_v2",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: CorrelationRules#entities_rules_get_v2\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#entities_rules_patch_v1(body, opts = {}) ⇒ ApiGetEntitiesRulesResponseV1

Update rules

Parameters:

• body (Array<ApiRulePatchRequestV1>)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (ApiGetEntitiesRulesResponseV1)

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 764

def entities_rules_patch_v1(body, opts = {})
  data, _status_code, _headers = entities_rules_patch_v1_with_http_info(body, opts)
  data
end

#entities_rules_patch_v1_with_http_info(body, opts = {}) ⇒ Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>

Update rules

Parameters:

• body (Array<ApiRulePatchRequestV1>)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>) —

  ApiGetEntitiesRulesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 773

def entities_rules_patch_v1_with_http_info(body, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: CorrelationRules.entities_rules_patch_v1 ...'
  end
  # verify the required parameter 'body' is set
  if @api_client.config.client_side_validation && body.nil?
    fail ArgumentError, "Missing the required parameter 'body' when calling CorrelationRules.entities_rules_patch_v1"
  end
  # resource path
  local_var_path = '/correlation-rules/entities/rules/v1'

  # query parameters
  query_params = opts[:query_params] || {}

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])
  # HTTP header 'Content-Type'
  content_type = @api_client.select_header_content_type(['application/json'])
  if !content_type.nil?
    header_params['Content-Type'] = content_type
  end

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body] || @api_client.object_to_http_body(body)

  # return_type
  return_type = opts[:debug_return_type] || 'ApiGetEntitiesRulesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"CorrelationRules.entities_rules_patch_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:PATCH, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: CorrelationRules#entities_rules_patch_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#entities_rules_post_v1(body, opts = {}) ⇒ ApiGetEntitiesRulesResponseV1

Create rule

Parameters:

• body (ApiRuleCreateRequestV1)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (ApiGetEntitiesRulesResponseV1)

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 830

def entities_rules_post_v1(body, opts = {})
  data, _status_code, _headers = entities_rules_post_v1_with_http_info(body, opts)
  data
end

#entities_rules_post_v1_with_http_info(body, opts = {}) ⇒ Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>

Create rule

Parameters:

• body (ApiRuleCreateRequestV1)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(ApiGetEntitiesRulesResponseV1, Integer, Hash)>) —

  ApiGetEntitiesRulesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 839

def entities_rules_post_v1_with_http_info(body, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: CorrelationRules.entities_rules_post_v1 ...'
  end
  # verify the required parameter 'body' is set
  if @api_client.config.client_side_validation && body.nil?
    fail ArgumentError, "Missing the required parameter 'body' when calling CorrelationRules.entities_rules_post_v1"
  end
  # resource path
  local_var_path = '/correlation-rules/entities/rules/v1'

  # query parameters
  query_params = opts[:query_params] || {}

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])
  # HTTP header 'Content-Type'
  content_type = @api_client.select_header_content_type(['application/json'])
  if !content_type.nil?
    header_params['Content-Type'] = content_type
  end

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body] || @api_client.object_to_http_body(body)

  # return_type
  return_type = opts[:debug_return_type] || 'ApiGetEntitiesRulesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"CorrelationRules.entities_rules_post_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:POST, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: CorrelationRules#entities_rules_post_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#queries_rules_get_v1(opts = {}) ⇒ MsaspecQueryResponse

Find all rule IDs matching the query and filter. Supported filters: customer_id,user_id,user_uuid,status,name,created_on,last_updated_on Supported range filters: created_on,last_updated_on

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :filter (String) —

  FQL query specifying the filter parameters

• :q (String) —

  Match query criteria, which includes all the filter string fields

• :sort (String) —

  Rule property to sort on (default to ‘created_on’)

• :offset (Integer) —

  Starting index of overall result set from which to return IDs (default to 0)

• :limit (Integer) —

  Number of IDs to return (default to 100)

Returns:

• (MsaspecQueryResponse)

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 900

def queries_rules_get_v1(opts = {})
  data, _status_code, _headers = queries_rules_get_v1_with_http_info(opts)
  data
end

#queries_rules_get_v1_with_http_info(opts = {}) ⇒ Array<(MsaspecQueryResponse, Integer, Hash)>

Find all rule IDs matching the query and filter. Supported filters: customer_id,user_id,user_uuid,status,name,created_on,last_updated_on Supported range filters: created_on,last_updated_on

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :filter (String) —

  FQL query specifying the filter parameters

• :q (String) —

  Match query criteria, which includes all the filter string fields

• :sort (String) —

  Rule property to sort on (default to ‘created_on’)

• :offset (Integer) —

  Starting index of overall result set from which to return IDs (default to 0)

• :limit (Integer) —

  Number of IDs to return (default to 100)

Returns:

• (Array<(MsaspecQueryResponse, Integer, Hash)>) —

  MsaspecQueryResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 913

def queries_rules_get_v1_with_http_info(opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: CorrelationRules.queries_rules_get_v1 ...'
  end
  allowable_values = ["created_on", "created_on|desc", "last_updated_on", "last_updated_on|desc"]
  if @api_client.config.client_side_validation && opts[:'sort'] && !allowable_values.include?(opts[:'sort'])
    fail ArgumentError, "invalid value for \"sort\", must be one of #{allowable_values}"
  end
  # resource path
  local_var_path = '/correlation-rules/queries/rules/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'filter'] = opts[:'filter'] if !opts[:'filter'].nil?
  query_params[:'q'] = opts[:'q'] if !opts[:'q'].nil?
  query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?
  query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
  query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'MsaspecQueryResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"CorrelationRules.queries_rules_get_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: CorrelationRules#queries_rules_get_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#queries_rules_get_v2(opts = {}) ⇒ MsaspecQueryResponse

Find all rule version IDs matching the query and filter. Supported filters: customer_id,user_id,user_uuid,status,name,created_on,last_updated_on,state,version,rule_id Supported range filters: created_on,last_updated_on

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :filter (String) —

  FQL query specifying the filter parameters

• :q (String) —

  Match query criteria, which includes all the filter string fields

• :sort (String) —

  Rule property to sort on (default to ‘created_on’)

• :offset (Integer) —

  Starting index of overall result set from which to return IDs (default to 0)

• :limit (Integer) —

  Number of IDs to return (default to 100)

Returns:

• (MsaspecQueryResponse)

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 974

def queries_rules_get_v2(opts = {})
  data, _status_code, _headers = queries_rules_get_v2_with_http_info(opts)
  data
end

#queries_rules_get_v2_with_http_info(opts = {}) ⇒ Array<(MsaspecQueryResponse, Integer, Hash)>

Find all rule version IDs matching the query and filter. Supported filters: customer_id,user_id,user_uuid,status,name,created_on,last_updated_on,state,version,rule_id Supported range filters: created_on,last_updated_on

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :filter (String) —

  FQL query specifying the filter parameters

• :q (String) —

  Match query criteria, which includes all the filter string fields

• :sort (String) —

  Rule property to sort on (default to ‘created_on’)

• :offset (Integer) —

  Starting index of overall result set from which to return IDs (default to 0)

• :limit (Integer) —

  Number of IDs to return (default to 100)

Returns:

• (Array<(MsaspecQueryResponse, Integer, Hash)>) —

  MsaspecQueryResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/correlation_rules.rb', line 987

def queries_rules_get_v2_with_http_info(opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: CorrelationRules.queries_rules_get_v2 ...'
  end
  allowable_values = ["created_on", "created_on|desc", "last_updated_on", "last_updated_on|desc"]
  if @api_client.config.client_side_validation && opts[:'sort'] && !allowable_values.include?(opts[:'sort'])
    fail ArgumentError, "invalid value for \"sort\", must be one of #{allowable_values}"
  end
  # resource path
  local_var_path = '/correlation-rules/queries/rules/v2'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'filter'] = opts[:'filter'] if !opts[:'filter'].nil?
  query_params[:'q'] = opts[:'q'] if !opts[:'q'].nil?
  query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?
  query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
  query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'MsaspecQueryResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"CorrelationRules.queries_rules_get_v2",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: CorrelationRules#queries_rules_get_v2\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end