MetaDefender Storage Security
Need Help? Contact Support
Overview
Integrations Knowledge Base MetaDefender Storage Security API Release Notes Deployment Guide Operating Troubleshooting
Search this version
DocsMetaDefender Storage SecurityMetaDefender Storage Security API
DocsMetaDefender Storage SecurityMetaDefender Storage Security API
MetaDefender Storage Security API
About this REST API
Useful links
Authentication
Account
POSTAdd an account
GETFetch all accounts
PATCHUpdate an account
DELETEDelete an account
GETFetch account by ID
GETFetch the number of accounts
Audit
GETFetch audit logs
Configuration
GETExport configuration file
POSTImport configuration file
GETenabledModules
Connector
GETconnector
Deep Cdr
POSTRevert encrypted file
External Logger
GETRetrieve external loggers
PUTUpdate external logger state
POSTAdd a new Syslog server configuration
PUTUpdate a Syslog server configuration
DELETEDelete external logger
File
PUTScan a file on demand
GETFetch processing results for a file
GETEnumerate processed files
Group
POSTAdd a group
GETFetch all groups
PATCHUpdate a group
DELETEDelete a group
GETFetch group by ID
GETFetch the number of groups
Get Health Status
GEThealth
Opswat Central Management
PUTEnroll to OCM
POSTUnEnroll to OCM
GETGet OCM configuration
GETGet managed status
POSTSet managed status
DELETEDelete managed status
Onboarding
GETFetch onboarding configuration
POSTFinish onboarding
POSTAccept Eula
Report
GETGet scans report
Scan Configuration
GETGet Scan Configurations
POSTAdd a new Scan Configuration
PATCHUpdate an existing Scan Configuration
GETGet Scan Configuration by ID
DELETEDelete a Scan Configuration
POSTSet a Scan Configuration as default
Scan
GETGet scan by ID
GETGet scan by ID with information regarding the previous and next scan
POSTStart a scan
POSTStop a scan
GETGet next scheduled scan
DELETEDelete scans
Scan Instance
GETGet Scan Instances
POSTAdd a new Scan Instance
PUTUpdate an existing Scan Instance
GETGet Scan Instance by ID
DELETEDelete a Scan Instance
POSTTest
Scan Pool
GETGet Scan Pools
POSTAdd a new Scan Pool
PUTUpdate an existing Scan Pool
GETGet Scan Pool by ID
DELETEDelete a Scan Pool
Scan Workflow Snapshot
GETGet all scan workflow snapshots by scan ID
Security Checklist
GETFetch storage security checklist
GETFetch security checklist details
PUTUpdate security checklist item
PUTVerify the security checklist for storage
PATCHEnable/Disable the security checklist
PUTEnable all security checklist items
Settings
PUTUpdate notifications configuration
GETGet notifications configuration
PATCHUpdate SMTP configuration
GETFetch SMTP configuration
POSTOnline license activation
POSTOffline license activation
GETGet license details
POSTDeactivate license
PUTUpdate retention configuration
GETFetch retention configuration
Sso
GETGet Sso Configuration
PATCHUpdate Sso Configuration
Storage
GETFetch all storages
GETFetch storage by ID
PATCHUpdate a storage
DELETEDelete a storage
GETFetch storage users
POSTAdd a storage
PATCHUpdate scan configuration
PUTAdd a scan schedule
PUTUpdate a scan schedule
GETFetch scan schedules
DELETEDelete scan schedules
GETRetrieve storage user name
User
GETFetch active users
POSTRegister a user
POSTCreate a user
POSTAuthenticate with a username and password
POSTRefresh user token
POSTLogout
PUTUpdate user role
GETFetch users
DELETEDelete a user
PUTUpdate a user
POSTRequest password reset
POSTReset user password
Webhook
POSTObject event trigger of real time processing
POSTObject event trigger of real time processing by storage client ID
Deprecated Soon To Be Removed
GETDeprecated, soon to be removed
POSTDeprecated, soon to be removed
PUTDeprecated, soon to be removed
GETDeprecated, soon to be removed
DELETEDeprecated, soon to be removed
GETDeprecated, soon to be removed
POSTDeprecated, soon to be removed
PUTDeprecated, soon to be removed
GETDeprecated, soon to be removed
DELETEDeprecated, soon to be removed
GETDeprecated, soon to be removed
GETDeprecated, soon to be removed
GETDeprecated, soon to be removed
POSTDeprecated, soon to be removed
PATCHDeprecated, soon to be removed
POSTDeprecated, soon to be removed
PATCHDeprecated, soon to be removed
POSTDeprecated, soon to be removed
PATCHDeprecated, soon to be removed
POSTDeprecated, soon to be removed
PATCHDeprecated, soon to be removed
POSTDeprecated, soon to be removed
PATCHDeprecated, soon to be removed
POSTDeprecated, soon to be removed
PATCHDeprecated, soon to be removed
POSTDeprecated, soon to be removed
PATCHDeprecated, soon to be removed
POSTDeprecated, soon to be removed
PATCHDeprecated, soon to be removed
DELETEDelete scan schedules

MetaDefender Storage Security API v1

This section of the user guide describes how you can programmatically interact with the MetaDefender Storage Security REST API. Below are some common tasks that can be done using the available REST APIs:

  • Authenticate to obtain a JSON Web Token(JWT)
  • Start or stop a process(scan)
  • Add / remove storage units

About this REST API

The exposed endpoint is located by default at http(s)://md-storage-server/api/ (for example, the authentication endpoint is available at http(s)://md-storage-server/api/user/authenticate). All requests are handled by the NGINX web server before being proxied to the backend API Gateway service.

All endpoints perform authentication and authorization checks. For these checks to succeed, a valid token should be presented in the Authorization header in the form of Bearer.

Please note that all issued tokens have a timestamp and signature associated in order to prevent long-term usage without re - authentication.The lifespan of the token is currently set to 60 minutes, meaning you will have to request a new token before it expires in order to avoid error responses.

Server
http://<MDSS_HOST>
Server Variables

Authentication

http Bearer

As mentioned earlier, all endpoints perform authentication and authorization checks. In order for these checks to succeed, a valid token should be presented in the Authorization header in the form of Bearer .

Suggested application logic

If you plan to integrate MetaDefender Storage Security in your custom application or workflow, please consider the following scenarios for successfully making REST API requests:

Scenario Possible use cases
Short-lived integration You are building or enhancing an application that requires sporadic or on-demand access to MetaDefender Storage Security REST APIs.
The application is not expected to make more than a few REST API calls per hour.
The application does not need to preserve a session.
Long-lived integration You are building or enhancing an application that requires continuous, uninterrupted, or hard to predict access to MetaDefender for Secure Storage REST APIs.
Requests are being triggered based on external factors and your application should maintain connectivity with MetaDefender Storage Security REST API.
Session preserving is necessary and authentication should happen without user-interaction.
Your application will make a significant number of REST API requests and you need increased performance
API Key integration You are building or enhancing an application that requires continuous, uninterrupted, or hard to predict access to MetaDefender for Secure Storage REST APIs.
Requests are being triggered based on external factors and your application should maintain connectivity with MetaDefender Storage Security REST API.
Authentication should happen without user-interaction.
Your application will make a significant number of REST API requests and you need increased performance.

Short-lived integration

  • Obtain a signed accessToken by calling /api/user/authenticate API

  • Use this token to call your desired REST API by providing it in the Authorization header

  • Expire the token by calling /api/user/logout

  • Repeat steps 1-3 the next time your application needs to call a REST API

Long-lived integration

  • Obtain a signed token by calling /api/user/authenticate API

  • Securely save the received accessToken and the refreshToken

  • Use the accessToken to call your desired REST API by providing it in the Authorization header

  • Add an exception handler in case you receive a 401 Unauthorized response because the JWT has expired call /api/user/refreshToken to obtain a new accessToken by providing the saved refreshToken.

    a) the accessToken expires after an hour of creation; the expiry time is represented in UTC format by the accessTokenExpiryTime value.
    b) the refreshToken expires after an hour of creation; the expiry time is represented in UTC format by the refreshTokenExpiryTime value.
    c) if the refreshToken has expired as well, obtain a signed token by calling /api/user/authenticate API

  • Use the newly issued accessToken to call your desired REST API by providing it in the Authorization header

API Key integration

  • In the MetaDefender Storage Security interface, Navigate to Settings -> Users

  • Find your user entry in the user list, click on the three dots on the right side of the entry, and then click on Generate an API Key

  • Generate the key, copy it, and store it somewhere safe

  • Use the API Key to call your desired REST API by providing it as a header with the Key: "ApiKey" and Value:

General considerations

The access token expiration date cannot be extended. By default, the access token is valid for an hour after calling /api/user/authenticate API to obtain it.The refresh token is also valid for an hour but can be extended by calling /api/user/refreshToken and it is also automatically extended with an hour with each non-GET request.

A refresh token is used to request a new access token when the current one expires without requiring re-authentication using a username and password.

The refresh token is used to forcibly expire any previously issued JWT when the refresh token expires or is removed by calling /api/user/logout.

A 3rd party application that needs persistent connectivity with MetaDefender for Secure Storage should implement a timeout mechanism to ensure that the refresh token is renewed before it expires by calling /api/user/refreshToken whenever the JWT (access token) is expired but before the refresh token expires as well.

Add an account

Auth
Request Body
objectobject
namestring
descriptionstring
storageIdsarray[string]
userInfo
objectobject
userIdstring
userNamestring
POST /api/account
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
account
objectobject
idstring
namestring
descriptionstring
storageIdsarray[string]
Response
Copy

Fetch all accounts

Auth
GET /api/account
Copy
Responses
200

Update an account

Auth
Request Body
objectobject
namestring
descriptionstring
accountIdstring
storageIdstring
userInfo
objectobject
userIdstring
userNamestring
PATCH /api/account
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
updatedAccount
objectobject
namestring
descriptionstring
storageIdsarray[string]
Response
Copy

Delete an account

Auth
Path Params
accountIdstring
DELETE /api/account/{accountId}
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
accountIdstring
Response
Copy

Fetch account by ID

Auth
Path Params
accountIdstring
GET /api/account/{accountId}
Copy
Responses
200

Fetch the number of accounts

Auth
GET /api/account/count
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
accountCount
objectobject
countint64
Response
Copy

Audit

List audit information

Fetch audit logs

Auth
Path Params
startIndexstring
countstring
Query String
logTypestring
categoryTypestring
logLevelstring
searchTextstring
GET /api/audit/{startIndex}/{count}
Copy
Responses
200
Response
Copy

Export configuration file

Auth
Query String
exportLicenseboolean
exportSmtpboolean
exportEmailNotificationsboolean
exportRetentionboolean
GET /api/configuration/export
Copy
Responses
200
filefile
Response
Copy

Import configuration file

Auth
Request Body
objectobject
ConfigurationFilefile
POST /api/configuration/import
Copy
Responses
200
Response
Copy

enabledModules

Auth
GET /api/configuration/enabledModules
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
enabledModulesarray[integer]
Response
Copy

Connector

connector

Auth
GET /api/connector
Copy
Responses
200
filefile
Response
Copy

Deep Cdr

Manage sanitized files

Revert encrypted file

Auth
Path Params
fileIdstring
POST /api/deepcdr/revert/{fileId}
Copy
Responses
200
filefile
Response
Copy

Retrieve external loggers

Auth
GET /api/externallogger
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3,0,1,2

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
entriesarray[object]
idstring
isEnabledboolean
loggerTypeinteger

Enum: 0

connectionSettings
objectobject
$typestring
Response
Copy

Update external logger state

Auth
Request Body
objectobject
idstring
isEnabledboolean
PUT /api/externallogger/status
Copy
Responses
200
filefile
Response
Copy

Add a new Syslog server configuration

Auth
Request Body
objectobject
isEnabledboolean
serverAddressstring

minLength: 1

pattern: ^(([0-9a-fA-F]{1,4}:){7,7}[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,7}:|([0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,5}(:[0-9a-fA-F]{1,4}){1,2}|([0-9a-fA-F]{1,4}:){1,4}(:[0-9a-fA-F]{1,4}){1,3}|([0-9a-fA-F]{1,4}:){1,3}(:[0-9a-fA-F]{1,4}){1,4}|([0-9a-fA-F]{1,4}:){1,2}(:[0-9a-fA-F]{1,4}){1,5}|[0-9a-fA-F]{1,4}:((:[0-9a-fA-F]{1,4}){1,6})|:((:[0-9a-fA-F]{1,4}){1,7}|:)|fe80:(:[0-9a-fA-F]{0,4}){0,4}%[0-9a-zA-Z]{1,}|::(ffff(:0{1,4}){0,1}:){0,1}((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])|([0-9a-fA-F]{1,4}:){1,4}:((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]))$|^(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)$|^(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]*[a-zA-Z0-9])\.)*([A-Za-z]|[A-Za-z][A-Za-z0-9\-]*[A-Za-z0-9])$

portint32

pattern: ^()([0-9]{1,4}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])$

loggerTypeinteger

Enum: 0

facilityinteger

Enum: 0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23

formatinteger

Enum: 0

$typestring
POST /api/externallogger/udpSyslog
Copy
Responses
200
filefile
Response
Copy

Update a Syslog server configuration

Auth
Request Body
objectobject
isEnabledboolean
serverAddressstring

minLength: 1

pattern: ^(([0-9a-fA-F]{1,4}:){7,7}[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,7}:|([0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,5}(:[0-9a-fA-F]{1,4}){1,2}|([0-9a-fA-F]{1,4}:){1,4}(:[0-9a-fA-F]{1,4}){1,3}|([0-9a-fA-F]{1,4}:){1,3}(:[0-9a-fA-F]{1,4}){1,4}|([0-9a-fA-F]{1,4}:){1,2}(:[0-9a-fA-F]{1,4}){1,5}|[0-9a-fA-F]{1,4}:((:[0-9a-fA-F]{1,4}){1,6})|:((:[0-9a-fA-F]{1,4}){1,7}|:)|fe80:(:[0-9a-fA-F]{0,4}){0,4}%[0-9a-zA-Z]{1,}|::(ffff(:0{1,4}){0,1}:){0,1}((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])|([0-9a-fA-F]{1,4}:){1,4}:((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]))$|^(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)$|^(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]*[a-zA-Z0-9])\.)*([A-Za-z]|[A-Za-z][A-Za-z0-9\-]*[A-Za-z0-9])$

portint32

pattern: ^()([0-9]{1,4}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])$

loggerTypeinteger

Enum: 0

facilityinteger

Enum: 0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23

formatinteger

Enum: 0

$typestring
idstring

minLength: 1

PUT /api/externallogger/udpSyslog
Copy
Responses
200
filefile
Response
Copy

Delete external logger

Auth
Path Params
idstring
DELETE /api/externallogger/{id}
Copy
Responses
200
filefile
Response
Copy

Scan a file on demand

This request is used to update a scanned file with passwords, in case it is an encrypted archive andit could not be scanned because the passwords to decrypt it were not provided. It can also be used withoutproviding any passwords to simply rescan a specific file from a finished scan.

Auth
Request Body
objectobject
fileIdstring
scanIdstring
storageProtocolTypeint32
passwordsarray[string]
PUT /api/file
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
Response
Copy

Fetch processing results for a file

File processing is done asynchronously and each analysis request is tracked by a file ID. Because processing a file is a potentially time-consuming operation, scheduling a file for processing and retrieving the results needs to be done using two separate API calls.

This request needs to be made multiple times until the analysis is complete. Analysis completion can be tracked using the processingState and the progress values from the response..

Auth
Path Params
fileIdstring
GET /api/file/{fileId}
Copy
Responses
200
Response
Copy

Enumerate processed files

Auth
Path Params
scanIdstring
startIndexstring
countstring
Query String
sorting_orderstring
searchstring
resultinteger

Enum: 0,1,2,3,4

startDatestring
endDatestring
scanWorkflowSnapshotIdstring
GET /api/file/{scanId}/{startIndex}/{count}
Copy
Responses
200
Response
Copy

Add a group

Auth
Request Body
objectobject
namestring
descriptionstring
storageIdsarray[string]
userInfo
objectobject
userIdstring
userNamestring
POST /api/group
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
group
objectobject
idstring
namestring
descriptionstring
storageIdsarray[string]
Response
Copy

Fetch all groups

Auth
GET /api/group
Copy
Responses
200

Update a group

Auth
Request Body
objectobject
namestring
descriptionstring
groupIdstring
userInfo
objectobject
userIdstring
userNamestring
PATCH /api/group
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
updatedGroup
objectobject
namestring
descriptionstring
storageIdsarray[string]
Response
Copy

Delete a group

Auth
Path Params
groupIdstring
DELETE /api/group/{groupId}
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
groupIdstring
Response
Copy

Fetch group by ID

Auth
Path Params
groupIdstring
GET /api/group/{groupId}
Copy
Responses
200

Fetch the number of groups

Auth
GET /api/group/count
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
groupCount
objectobject
countint64
Response
Copy

Get Health Status

API that responds with 200 OK if application is running.

health

Auth
Query String
verboseboolean
GET /api/health
Copy
Responses
200
objectobject
apiStatusstring
Response
Copy

Opswat Central Management

Manage OPSWAT Central Management integration

Enroll to OCM

Auth
Request Body
objectobject
serverApistring

minLength: 1

regCodestring

minLength: 1

instanceCustomIpstring

maxLength: 2048

minLength: 7

PUT /api/ocm
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
Response
Copy

UnEnroll to OCM

Auth
POST /api/ocm
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
versionstring
lastSupportedConfigVersionstring
Response
Copy

Get OCM configuration

Auth
GET /api/ocm
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
ocmInformation
objectobject
idstring
serverApistring
registrationCodestring
connectionStatusinteger

Enum: 0,1

enrollStatusinteger

Enum: 0,1

lastServerConnectionint64
lastConfigurationSyncint64
apiKeystring
cmVersionstring
deploymentIdstring
Response
Copy

Get managed status

Check if MDSS is managed by OCM. This is called by OCM v7.

Auth
GET /api/ocm/manage
Copy
Responses
200
filefile
Response
Copy

Set managed status

Notify that MDSS is managed. This is called by OCM v7.

Auth
Query String
forceboolean
Request Body
objectobject
serverApistring

minLength: 1

POST /api/ocm/manage
Copy
Responses
200
filefile
Response
Copy

Delete managed status

Remove MDSS from being managed. This is called by OCM v7.

Auth
DELETE /api/ocm/manage
Copy
Responses
200
filefile
Response
Copy

Fetch onboarding configuration

Auth
Query String
newConfigSetupboolean
GET /api/onboarding
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
hasUserConfiguredboolean
hasStorageConfiguredboolean
hasScanInstanceConfiguredboolean
isOnboardingDoneboolean
isEulaAgreedboolean
Response
Copy

Finish onboarding

Auth
POST /api/onboarding
Copy
Responses
200
filefile
Response
Copy

Accept Eula

Auth
POST /api/onboarding/eula
Copy
Responses
200
filefile
Response
Copy

Report

Generate reports

Get scans report

Auth
Query String
storageIdstring
namestring
scanTypesFilterarray

Enum: 0,1,2

scanStatesFilterarray

Enum: 0,1,2,3,4

startDatestring
endDatestring
sortDirectionFilter
startIndexinteger
countinteger
GET /api/report
Copy
Responses
200

Get Scan Configurations

Auth
GET /api/scanconfiguration
Copy
Responses
200

Add a new Scan Configuration

Auth
Request Body
objectobject
scanPoolIdstring
rulesarray[string]
namestring

maxLength: 30

minLength: 3

userAgentstring
failOverScanPoolIdstring
POST /api/scanconfiguration
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
scanConfigurationIdstring
Response
Copy

Update an existing Scan Configuration

Auth
Request Body
objectobject
idstring
scanPoolIdstring
rulesarray[string]
namestring

maxLength: 30

minLength: 3

userAgentstring
failOverScanPoolIdstring
failOverDisabledboolean
PATCH /api/scanconfiguration
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
Response
Copy

Get Scan Configuration by ID

Auth
Path Params
idstring
GET /api/scanconfiguration/{id}
Copy
Responses
200

Delete a Scan Configuration

Auth
Path Params
idstring
DELETE /api/scanconfiguration/{id}
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
Response
Copy

Set a Scan Configuration as default

Auth
Path Params
idstring
POST /api/scanconfiguration/setDefault/{id}
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
Response
Copy

Get scan by ID

Auth
Path Params
scanIdstring
GET /api/scan/{scanId}
Copy
Responses
200

Get scan by ID with information regarding the previous and next scan

Auth
Path Params
scanIdstring
Query String
scanTypesFilterarray

Enum: 0,1,2

scanStatesFilterarray

Enum: 0,1,2,3,4

GET /api/scan/sequence/{scanId}
Copy
Responses
200

Start a scan

Passing a value to the optional Folder parameter will scan a specific folder from the storageparameter. For the Box, OneDrive, and Sharepoint storage integrations, you should only pass the name ofthe folder you want to scan. For the other storage integrations, you should pass the absolutepath of the folder

Auth
Request Body
objectobject
storageIdstring
namestring
scanConfigurationIdstring
folderstring
POST /api/scan/start
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
scanIdstring
Response
Copy

Stop a scan

Auth
Path Params
scanIdstring
POST /api/scan/stop/{scanId}
Copy
Responses
200
filefile
Response
Copy

Get next scheduled scan

Auth
Path Params
storageIdstring
GET /api/scan/scheduled/{storageId}
Copy
Responses
200
Response
Copy

Delete scans

Auth
Path Params
storageIdstring
Request Body
arrayarray[string]
DELETE /api/scan/{storageId}
Copy
Responses
200

Get Scan Instances

Auth
Query String
scanPoolIdstring
GET /api/scaninstance
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
entriesarray[object]
idstring
scanPoolIdstring
urlstring
apiKeystring
timeoutstring
scanInstanceTypeinteger

Enum: 0,1

Response
Copy

Add a new Scan Instance

Auth
Request Body
objectobject
scanPoolIdstring
urlstring

pattern: ^((?!(^((https?):\/\/)?127(?:\.[0-9]+){0,2}\.[0-9]+(:([0-9]{1,4}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])?)?$)|(^((https?):\/\/)?\[(?:0*\:)*?:?0*1\](:([0-9]{1,4}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])?)?$)).)*$

apiKeystring
timeoutstring
scanInstanceTypeinteger

Enum: 0,1

POST /api/scaninstance
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
scanInstanceIdstring
Response
Copy

Update an existing Scan Instance

Auth
Request Body
objectobject
idstring
urlstring

pattern: ^((?!(^((https?):\/\/)?127(?:\.[0-9]+){0,2}\.[0-9]+(:([0-9]{1,4}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])?)?$)|(^((https?):\/\/)?\[(?:0*\:)*?:?0*1\](:([0-9]{1,4}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])?)?$)).)*$

apiKeystring
timeoutstring
PUT /api/scaninstance
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
Response
Copy

Get Scan Instance by ID

Auth
Path Params
idstring
GET /api/scaninstance/{id}
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
entry
objectobject
idstring
scanPoolIdstring
urlstring
apiKeystring
timeoutstring
scanInstanceTypeinteger

Enum: 0,1

Response
Copy

Delete a Scan Instance

Auth
Path Params
idstring
DELETE /api/scaninstance/{id}
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
Response
Copy

Test

Auth
Request Body
objectobject
urlstring
rulesarray[string]
apiKeystring
userAgentstring
POST /api/scaninstance/Test
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
Response
Copy

Get Scan Pools

Auth
GET /api/scanpool
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
entriesarray[object]
idstring
namestring
scanPoolTypeinteger

Enum: 0,1

isDefaultboolean
scanInstancesarray[object]
idstring
scanPoolIdstring
urlstring
apiKeystring
timeoutstring
scanInstanceTypeinteger

Enum: 0,1

Response
Copy

Add a new Scan Pool

Auth
Request Body
objectobject
namestring

maxLength: 30

minLength: 3

scanPoolTypeinteger

Enum: 0,1

POST /api/scanpool
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
scanPoolIdstring
Response
Copy

Update an existing Scan Pool

Auth
Request Body
objectobject
idstring
namestring

maxLength: 30

minLength: 3

PUT /api/scanpool
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
Response
Copy

Get Scan Pool by ID

Auth
Path Params
idstring
GET /api/scanpool/{id}
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
entry
objectobject
idstring
namestring
scanPoolTypeinteger

Enum: 0,1

isDefaultboolean
scanInstancesarray[object]
idstring
scanPoolIdstring
urlstring
apiKeystring
timeoutstring
scanInstanceTypeinteger

Enum: 0,1

Response
Copy

Delete a Scan Pool

Auth
Path Params
idstring
DELETE /api/scanpool/{id}
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
Response
Copy

Scan Workflow Snapshot

List scan workflow snapshots

Get all scan workflow snapshots by scan ID

Auth
Path Params
scanIdstring
GET /api/scanworkflowsnapshot/getAllFromScan/{scanId}
Copy
Responses
200

Fetch storage security checklist

Auth
Path Params
storageIdstring
GET /api/security-checklist/{storageId}
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3,0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
itemsarray[object]
idstring
titleinteger

Enum: 0,1,2,3,4,5,6,7

statusinteger

Enum: 0,1,2

priorityinteger

Enum: 0,1,2

isEnabledboolean
howToFixLinkstring
failureReasonstring
lastUpdateTimedate-time
scorenumber
isEnabledboolean
Response
Copy

Fetch security checklist details

Auth
Path Params
storageIdstring
GET /api/security-checklist/{storageId}/info
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3,0,1

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
scorenumber
resolvedItemsCountint32
enabledItemsCountint32
isEnabledboolean
Response
Copy

Update security checklist item

Auth
Path Params
storageIdstring
Request Body
objectobject
idstring
isEnabledboolean
PUT /api/security-checklist/{storageId}/item
Copy
Responses
200

Verify the security checklist for storage

Auth
Path Params
storageIdstring
PUT /api/security-checklist/{storageId}/verify
Copy
Responses
200

Enable/Disable the security checklist

Auth
Request Body
objectobject
storageIdstring
isEnabledboolean
PATCH /api/security-checklist
Copy
Responses
200

Enable all security checklist items

Auth
Path Params
storageIdstring
PUT /api/security-checklist/{storageId}/enable-all
Copy
Responses
200

Update notifications configuration

Auth
Request Body
PUT /api/settings/notifications
Copy
Responses
200

Get notifications configuration

Auth
GET /api/settings/notifications
Copy
Responses
200
Response
Copy

Update SMTP configuration

Auth
Request Body
objectobject
hoststring
portint32
baseUrlstring
senderAddressstring
senderNamestring

maxLength: 320

domainstring
usernamestring
passwordstring
secureSocketOption
integerinteger

Enum: 0,1,2,3,4

ignoreCertWarningsboolean
isSmtpEnabledboolean
PATCH /api/settings/smtp
Copy
Responses
200
Response
Copy

Fetch SMTP configuration

Auth
GET /api/settings/smtp
Copy
Responses
200
objectobject
hoststring
portint32
baseUrlstring
senderAddressstring
senderNamestring

maxLength: 320

domainstring
usernamestring
passwordstring
secureSocketOption
integerinteger

Enum: 0,1,2,3,4

ignoreCertWarningsboolean
isSmtpEnabledboolean
Response
Copy

Online license activation

Auth
Request Body
objectobject
keystring

minLength: 1

POST /api/settings/admin/license/activate/online
Copy
Responses
200
filefile
Response
Copy

Offline license activation

Auth
Request Body
objectobject
LicenseContentfile
POST /api/settings/admin/license/activate/offline
Copy
Responses
200
filefile
Response
Copy

Get license details

Auth
GET /api/settings/admin/license
Copy
Responses
200
filefile
Response
Copy

Deactivate license

Auth
POST /api/settings/admin/license/deactivate
Copy
Responses
200
filefile
Response
Copy

Update retention configuration

Auth
Request Body
objectobject
retentionAuditDaysint32

maximum: 50000

minimum: 10

reportRetentionobject
isEnabledboolean
retentionDaysint32

maximum: 50000

minimum: 10

PUT /api/settings/retention
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
Response
Copy

Fetch retention configuration

Auth
GET /api/settings/retention
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3,0,1

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
retentionAuditDaysint32
reportRetentionConfiguration
objectobject
isEnabledboolean
retentionDaysint32
Response
Copy

Sso

Sso Authentication and Sso configuration update

Get Sso Configuration

Auth
GET /api/sso/config
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
clientIdstring
authoritystring
baseUrlstring
isEnabledboolean
ssoTypeinteger

Enum: 0

ssoProviderinteger

Enum: 0,1,2,3

ssoConfig
objectobject
idstring
isEnabledboolean
ssoProviderinteger

Enum: 0,1,2,3

ssoTypeinteger

Enum: 0

baseUrlstring
clientIdstring
clientSecretstring
authoritystring
Response
Copy

Update Sso Configuration

Auth
Request Body
objectobject
clientIdstring

maxLength: 255

clientSecretstring

maxLength: 255

authoritystring

maxLength: 255

baseUrlstring

maxLength: 255

isEnabledboolean
ssoTypeint32
ssoProviderint32
PATCH /api/sso
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
clientIdstring
authoritystring
baseUrlstring
isEnabledboolean
ssoTypeinteger

Enum: 0

ssoProviderinteger

Enum: 0,1,2,3

ssoConfig
objectobject
idstring
isEnabledboolean
ssoProviderinteger

Enum: 0,1,2,3

ssoTypeinteger

Enum: 0

baseUrlstring
clientIdstring
clientSecretstring
authoritystring
Response
Copy

Fetch all storages

Auth
GET /api/storage/all
Copy
Responses
200

Fetch storage by ID

Auth
Path Params
storageIdstring
GET /api/storage/{storageId}
Copy
Responses
200

Update a storage

Note! The following are templates for what is expected in the Credentials, CredentialsFile and Source fields. Please provide the correct values for your storage integration instead of null/false

Alibaba Cloud storage units:
Credentials: "{"Endpoint":null,"AccessKeyId":null,"AccessKeySecret":null,"UseRamRole":false}"
Source: "{"BucketName":null,"FolderLocation":null}"

Amazon S3 / S3 Compatible storage units:
Credentials: "{"ServiceUrl":null,"AccessKeyId":null,"SecretAccessKey":null,"RegionEndpoint":null,"AssumeRoleArn":null,"UseIamRole":false}"
Source: "{"BucketName":null,"FolderLocation":null}"

Azure Blob storage units:
Credentials: "{"TenantId":null,"ClientId":null,"ClientSecret":null,"StorageAccount":null}"
Source: "{"Container":null}"

Azure Files storage units:
Credentials: "{"AccountName":null,"AccountKey":null,"ShareName":null}"
Source: "{"FolderLocation":null}"

Box storage units:
CredentialsFile: upload the credentials file
Source: "{"FolderLocation":null}"

Dell Isilon / SMB Compatible storage units:
Credentials: "{"User":null,"Password":null,"Server":null}"
Source: "{"SharePath":null}"

Google Cloud storage units:
CredentialsFile: upload the credentials file
Credentials: "{"UseAdc":false}"
Source: "{"BucketName":null,"FolderLocation":null}"

OneDrive storage units:
Credentials: "{"TenantId":null,"ClientId":null,"ClientSecret":null}"
Source: "{"Group":null}"

Auth
Path Params
storageIdstring
Request Body
objectobject
Namestring
StorageVendorTypestring
StorageProtocolTypestring
CredentialsFilefile
Credentialsstring
Sourcestring
GroupIdstring
AccountIdstring
PATCH /api/storage/{storageId}
Copy
Responses
200

Delete a storage

Auth
Path Params
storageIdstring
DELETE /api/storage/{storageId}
Copy
Responses
200
filefile
Response
Copy

Fetch storage users

Auth
Path Params
storageIdstring
Query String
filterstring
GET /api/storage/{storageId}/users
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
entriesarray[object]
idstring
fullNamestring
Response
Copy

Add a storage

Note! The following are templates for what is expected in the Credentials, CredentialsFile and Source fields. Please provide the correct values for your storage integration instead of null/false

Alibaba Cloud storage units:
Credentials: "{"Endpoint":null,"AccessKeyId":null,"AccessKeySecret":null,"UseRamRole":false}"
Source: "{"BucketName":null,"FolderLocation":null}"

Amazon S3 / S3 Compatible storage units:
Credentials: "{"ServiceUrl":null,"AccessKeyId":null,"SecretAccessKey":null,"RegionEndpoint":null,"AssumeRoleArn":null,"UseIamRole":false}"
Source: "{"BucketName":null,"FolderLocation":null}"

Azure Blob storage units:
Credentials: "{"TenantId":null,"ClientId":null,"ClientSecret":null,"StorageAccount":null}"
Source: "{"Container":null}"

Azure Files storage units:
Credentials: "{"AccountName":null,"AccountKey":null,"ShareName":null}"
Source: "{"FolderLocation":null}"

Box storage units:
CredentialsFile: upload the credentials file
Source: "{"FolderLocation":null}"

Dell Isilon / SMB Compatible storage units:
Credentials: "{"User":null,"Password":null,"Server":null}"
Source: "{"SharePath":null}"

Google Cloud storage units:
CredentialsFile: upload the credentials file
Credentials: "{"UseAdc":false}"
Source: "{"BucketName":null,"FolderLocation":null}"

OneDrive storage units:
Credentials: "{"TenantId":null,"ClientId":null,"ClientSecret":null}"
Source: "{"Group":null}"

Auth
Request Body
objectobject
Namestring
StorageVendorTypestring
StorageProtocolTypestring
CredentialsFilefile
Credentialsstring
Sourcestring
GroupIdstring
AccountIdstring
POST /api/storage
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
storageIdstring
Response
Copy

Update scan configuration

Auth
Path Params
storageIdstring
Request Body
PATCH /api/storage/{storageId}/scan_config
Responses
200
filefile
Response
Copy

Add a scan schedule

Auth
Path Params
storageIdstring
Request Body
objectobject
namestring
scanConfigurationIdstring
recurrencePattern
objectobject
typestring
hourlyRecurrence
objectobject
everyNumberOfHoursint32

maximum: 24

minimum: 1

dailyRecurrence
objectobject
everyNumberOfDaysint32

maximum: 365

minimum: 1

weeklyRecurrence
objectobject
dayOfWeekinteger

Enum: 0,1,2,3,4,5,6

monthlyRecurrence
objectobject
everyNumberOfMonthsint32

maximum: 12

minimum: 1

dayOfMonthint32
$typestring
PUT /api/storage/{storageId}/scan_schedule
Copy
Responses
200
filefile
Response
Copy

Update a scan schedule

Auth
Path Params
storageIdstring
Request Body
objectobject
namestring
scanConfigurationIdstring
recurrencePattern
objectobject
typestring
hourlyRecurrence
objectobject
everyNumberOfHoursint32

maximum: 24

minimum: 1

dailyRecurrence
objectobject
everyNumberOfDaysint32

maximum: 365

minimum: 1

weeklyRecurrence
objectobject
dayOfWeekinteger

Enum: 0,1,2,3,4,5,6

monthlyRecurrence
objectobject
everyNumberOfMonthsint32

maximum: 12

minimum: 1

dayOfMonthint32
$typestring
idstring
PUT /api/storage/scan_schedule/update/{storageId}
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
Response
Copy

Fetch scan schedules

Auth
Path Params
storageIdstring
sortDirectioninteger

Enum: 0,1

startIndexinteger
countinteger
Query String
namestring
userstring
typestring
GET /api/storage/scan_schedules/{storageId}/{sortDirection}/{startIndex}/{count}
Copy
Responses
200
Response
Copy

Delete scan schedules

Auth
Request Body
arrayarray[string]
DELETE /api/storage/scan_schedule
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3,0,1

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
areAllDeletedboolean
Response
Copy

Retrieve storage user name

Auth
Path Params
storageIdstring
userIdstring
GET /api/storage/{storageId}/{userId}
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
userNamestring
Response
Copy

Fetch active users

Auth
Path Params
startIndexstring
countstring
GET /api/user/active/{startIndex}/{count}
Copy
Responses
200
objectobject
entriesarray[object]
idstring
userNamestring
fullNamestring
emailstring
roleinteger

Enum: 0,1,2,4,5

totalCountint64
Response
Copy

Register a user

Auth
Request Body
objectobject
fullNamestring
userNamestring
passwordstring
emailstring
POST /api/user/register
Copy
Responses
200
filefile
Response
Copy

Create a user

Auth
Request Body
objectobject
fullNamestring
userNamestring
passwordstring
emailstring
roleinteger

Enum: 0,1,2,4,5

POST /api/user/create
Copy
Responses
200
filefile
Response
Copy

Authenticate with a username and password

Authenticate with a username and password to obtain a JWT token,Most of the APIs require authentication in the form of providing a JWT token. Call this API in order to receive a token but please note that it's only valid for an hour so it should be periodically refreshed.

Auth
Request Body
objectobject
userNamestring

minLength: 1

passwordstring

minLength: 1

POST /api/user/authenticate
Copy
Responses
200
Response
Copy

Refresh user token

Auth
Request Body
objectobject
accessTokenstring
refreshTokenstring
POST /api/user/refreshToken
Copy
Responses
200
filefile
Response
Copy

Logout

Auth
POST /api/user/logout
Copy
Responses
200
filefile
Response
Copy

Update user role

Auth
Request Body
objectobject
userIdstring
roleinteger

Enum: 0,1,2,4,5

PUT /api/user/role
Copy
Responses
200
Response
Copy

Fetch users

Auth
GET /api/user/requests
Copy
Responses
200
objectobject
entriesarray[object]
idstring
userNamestring
fullNamestring
emailstring
roleinteger

Enum: 0,1,2,4,5

totalCountint64
Response
Copy

Delete a user

Auth
Path Params
userIdstring
DELETE /api/user/{userId}
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3,0,1

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
user
objectobject
idstring
fullNamestring
userNamestring
passwordHashstring
passwordSaltstring
emailstring
roleinteger

Enum: 0,1,2,4,5

accountSecurity
objectobject
incrementalDelaystring
failedLoginDatedate-time
Response
Copy

Update a user

Auth
Request Body
objectobject
userIdstring
roleinteger

Enum: 0,1,2,4,5

userNamestring
fullNamestring
currentPasswordstring
newPasswordstring
emailstring
PUT /api/user
Copy
Responses
200
Response
Copy

Request password reset

Auth
Request Body
objectobject
userInputstring

minLength: 1

POST /api/user/password/reset
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3,0,1

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
Response
Copy

Reset user password

Auth
Request Body
objectobject
newPasswordstring

minLength: 12

newPasswordConfirmationstring

minLength: 12

secureTokenstring
POST /api/user/password
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
userobject
idstring
fullNamestring
userNamestring
passwordHashstring
passwordSaltstring
emailstring
roleinteger

Enum: 0,1,2,4,5

accountSecurity
objectobject
incrementalDelaystring
failedLoginDatedate-time
Response
Copy

Object event trigger of real time processing

This endpoint takes the parameters and tries to find the file in the specified storage and applies the scan configuration for the specified file

Auth
Request Body
objectobject
metadatastring

minLength: 1

storageClientIdstring

minLength: 1

POST /api/webhook/realtime
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3,0,1,2

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
correlationIdstring
400
404
Response
Copy

Object event trigger of real time processing by storage client ID

This endpoint takes the parameter and tries to find the file in the specified storage and applies the scan configuration for the specified file

Auth
Path Params
storageClientIdstring
Request Body
No request body
POST /api/webhook/realtime/{storageClientId}
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3,0,1,2

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
correlationIdstring
400
404
Response
Copy

Deprecated Soon To Be Removed

Deprecated, soon to be removedDeprecated

Fetch MetaDefender Core Pools

Auth
GET /api/corepool
Copy
Responses
200
objectobject

Deprecated

entriesarray[object]
idstring
namestring
mdCoresarray[object]
idstring
urlstring
ipstring
apiKeystring
timeoutstring
userAgentstring
workflowRulestring
displayNamestring
usedByarray[object]
namestring
storageType
objectobject
namestring
categoryTypeinteger

Enum: 0,1,2

protocolTypeinteger

Enum: 0,1,2,3,4,5,6,7,8,9

vendorTypeinteger

Enum: 0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15

Response
Copy

Deprecated, soon to be removedDeprecated

Add a new MetaDefender Core Pool

Auth
Request Body
objectobject

Deprecated

namestring

maxLength: 30

minLength: 3

POST /api/corepool
Copy
Responses
200
filefile
Response
Copy

Deprecated, soon to be removedDeprecated

Update an existing MetaDefender Core Pool

Auth
Request Body
objectobject

Deprecated

idstring

minLength: 1

namestring

maxLength: 30

minLength: 3

PUT /api/corepool
Copy
Responses
200
filefile
Response
Copy

Deprecated, soon to be removedDeprecated

Get MetaDefender Core Pool by ID

Auth
Path Params
corePoolIdstring
GET /api/corepool/{corePoolId}
Copy
Responses
200
Response
Copy

Deprecated, soon to be removedDeprecated

Delete MetaDefender Core Pool

Auth
Path Params
idstring
DELETE /api/corepool/{id}
Copy
Responses
200
filefile
Response
Copy

Deprecated, soon to be removedDeprecated

Fetch MetaDefender Core servers

Auth
Query String
corePoolIdstring
GET /api/metadefendercore
Copy
Responses
200
objectobject

Deprecated

entriesarray[object]
idstring
urlstring
ipstring
apiKeystring
timeoutstring
userAgentstring
workflowRulestring
displayNamestring
Response
Copy

Deprecated, soon to be removedDeprecated

Add a new MetaDefender Core Server

Auth
Request Body
objectobject

Deprecated

idstring
urlstring

minLength: 1

pattern: ^((?!(^((https?):\/\/)?127(?:\.[0-9]+){0,2}\.[0-9]+(:([0-9]{1,4}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])?)?$)|(^((https?):\/\/)?\[(?:0*\:)*?:?0*1\](:([0-9]{1,4}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])?)?$)).)*$

apiKeystring
timeoutstring
userAgentstring
workflowRulestring
corePoolIdstring
POST /api/metadefendercore
Copy
Responses
200
filefile
Response
Copy

Deprecated, soon to be removedDeprecated

Update MetaDefender Core server

Auth
Request Body
objectobject

Deprecated

idstring
urlstring

minLength: 1

pattern: ^((?!(^((https?):\/\/)?127(?:\.[0-9]+){0,2}\.[0-9]+(:([0-9]{1,4}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])?)?$)|(^((https?):\/\/)?\[(?:0*\:)*?:?0*1\](:([0-9]{1,4}|[1-5][0-9]{4}|6[0-4][0-9]{3}|65[0-4][0-9]{2}|655[0-2][0-9]|6553[0-5])?)?$)).)*$

apiKeystring
timeoutstring
userAgentstring
workflowRulestring
corePoolIdstring
PUT /api/metadefendercore
Copy
Responses
200
filefile
Response
Copy

Deprecated, soon to be removedDeprecated

Get MetaDefender Core server by ID

Auth
Path Params
metaDefenderIdstring
GET /api/metadefendercore/{metaDefenderId}
Copy
Responses
200
objectobject

Deprecated

idstring
urlstring
ipstring
apiKeystring
timeoutstring
userAgentstring
workflowRulestring
displayNamestring
Response
Copy

Deprecated, soon to be removedDeprecated

Delete MetaDefender Core server

Auth
Path Params
metaDefenderIdstring
DELETE /api/metadefendercore/{metaDefenderId}
Copy
Responses
200
filefile
Response
Copy

Deprecated, soon to be removedDeprecated

(Deprecated) Get an active scan by scan ID and file ID

Auth
Path Params
scanIdstring
activeFileIdstring
GET /api/scan/active/{scanId}/{activeFileId}
Copy
Responses
200

Deprecated, soon to be removedDeprecated

(Deprecated) Get Real-Time scan

Auth
Path Params
storageIdstring
GET /api/scan/realtime/{storageId}
Copy
Responses
200

Deprecated, soon to be removedDeprecated

(Deprecated) Fetch last completed scan

Auth
Path Params
storageIdstring
GET /api/scan/last_completed/{storageId}
Copy
Responses
200

Deprecated, soon to be removedDeprecated

(Deprecated - use /storage) Add an Amazon S3 storage

Auth
Request Body
objectobject
namestring

maxLength: 60

minLength: 1

groupIdstring
accountIdstring
serviceUrlstring
accessKeyIdstring
secretAccessKeystring
regionEndpointstring
bucketNamestring

minLength: 1

folderLocationstring
useIamRoleboolean
assumeRoleArnstring

pattern: ^arn:aws(-cn|-us-gov)?:iam::\d+:role/[a-zA-Z0-9_+=,.@-]+$

useClientSideEncryptionboolean
secretNamestring
storageVendorTypeinteger

Enum: 0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15

usePathStyleAddressingboolean
POST /api/storage/amazons3
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
storageIdstring
Response
Copy

Deprecated, soon to be removedDeprecated

(Deprecated - use /storage/{storageId}) Update an Amazon S3 storage

Auth
Path Params
storageIdstring
Request Body
objectobject
namestring

maxLength: 60

minLength: 1

groupIdstring
accountIdstring
serviceUrlstring
accessKeyIdstring
secretAccessKeystring
regionEndpointstring
bucketNamestring

minLength: 1

folderLocationstring
useIamRoleboolean
assumeRoleArnstring

pattern: ^arn:aws(-cn|-us-gov)?:iam::\d+:role/[a-zA-Z0-9_+=,.@-]+$

useClientSideEncryptionboolean
secretNamestring
storageVendorTypeinteger

Enum: 0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15

usePathStyleAddressingboolean
PATCH /api/storage/amazons3/{storageId}
Copy
Responses
200

Deprecated, soon to be removedDeprecated

(Deprecated - use /storage) Add an One Drive storage

Auth
Request Body
objectobject
namestring

maxLength: 60

minLength: 1

groupIdstring
accountIdstring
tenantIdstring

maxLength: 36

minLength: 36

clientIdstring

maxLength: 36

minLength: 36

clientSecretstring

maxLength: 50

minLength: 1

groupstring
POST /api/storage/onedrive
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
storageIdstring
Response
Copy

Deprecated, soon to be removedDeprecated

(Deprecated - use /storage/{storageId}) Update an One Drive storage

Auth
Path Params
storageIdstring
Request Body
objectobject
namestring

maxLength: 60

minLength: 1

groupIdstring
accountIdstring
tenantIdstring

maxLength: 36

minLength: 36

clientIdstring

maxLength: 36

minLength: 36

clientSecretstring

maxLength: 50

minLength: 1

groupstring
PATCH /api/storage/onedrive/{storageId}
Copy
Responses
200

Deprecated, soon to be removedDeprecated

(Deprecated - use /storage) Add a Box storage

Auth
Request Body
objectobject
Credentialsfile
UserNamestring
FolderPathstring
GroupNamestring
Namestring
GroupIdstring
AccountIdstring
POST /api/storage/box
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
storageIdstring
Response
Copy

Deprecated, soon to be removedDeprecated

(Deprecated - use /storage/{storageId}) Update a Box storage

Auth
Path Params
storageIdstring
Request Body
objectobject
Credentialsfile
UserNamestring
FolderPathstring
GroupNamestring
Namestring
GroupIdstring
AccountIdstring
PATCH /api/storage/box/{storageId}
Copy
Responses
200

Deprecated, soon to be removedDeprecated

(Deprecated - use /storage) Add Dell Isilon/SMB Compatibile

Auth
Request Body
objectobject
namestring

maxLength: 60

minLength: 1

groupIdstring
accountIdstring
storageVendorTypeinteger

Enum: 0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15

userstring

minLength: 1

passwordstring

minLength: 1

sharePathstring

minLength: 1

POST /api/storage/smb
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
storageIdstring
Response
Copy

Deprecated, soon to be removedDeprecated

(Deprecated - use /storage/{storageId}) Update a Dell Isilon/SMB Compatibile

Auth
Path Params
storageIdstring
Request Body
objectobject
namestring

maxLength: 60

minLength: 1

groupIdstring
accountIdstring
storageVendorTypeinteger

Enum: 0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15

userstring

minLength: 1

passwordstring

minLength: 1

sharePathstring

minLength: 1

PATCH /api/storage/smb/{storageId}
Copy
Responses
200

Deprecated, soon to be removedDeprecated

(Deprecated - use /storage) Add an Azure Blob storage

Auth
Request Body
objectobject
namestring

maxLength: 60

minLength: 1

groupIdstring
accountIdstring
tenantIdstring

maxLength: 36

minLength: 36

storageAccountstring

maxLength: 24

minLength: 3

clientIdstring

maxLength: 36

minLength: 36

clientSecretstring

maxLength: 50

minLength: 1

containerstring

maxLength: 63

minLength: 0

cloudTypestring

maxLength: 63

minLength: 0

POST /api/storage/azureblob
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
storageIdstring
Response
Copy

Deprecated, soon to be removedDeprecated

(Deprecated - use /storage/{storageId}) Update an Azure Blob storage

Auth
Path Params
storageIdstring
Request Body
objectobject
namestring

maxLength: 60

minLength: 1

groupIdstring
accountIdstring
tenantIdstring

maxLength: 36

minLength: 36

storageAccountstring

maxLength: 24

minLength: 3

clientIdstring

maxLength: 36

minLength: 36

clientSecretstring

maxLength: 50

minLength: 1

containerstring

maxLength: 63

minLength: 0

cloudTypestring

maxLength: 63

minLength: 0

PATCH /api/storage/azureblob/{storageId}
Copy
Responses
200

Deprecated, soon to be removedDeprecated

(Deprecated - use /storage) Add an Alibaba Cloud storage

Auth
Request Body
objectobject
namestring

maxLength: 60

minLength: 1

groupIdstring
accountIdstring
endpointstring

minLength: 1

accessKeyIdstring
accessKeySecretstring
bucketNamestring

minLength: 1

folderLocationstring
useRamRoleboolean
POST /api/storage/alibabacloud
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
storageIdstring
Response
Copy

Deprecated, soon to be removedDeprecated

(Deprecated - use /storage/{storageId}) Update an Alibaba Cloud storage

Auth
Path Params
storageIdstring
Request Body
objectobject
namestring

maxLength: 60

minLength: 1

groupIdstring
accountIdstring
endpointstring

minLength: 1

accessKeyIdstring
accessKeySecretstring
bucketNamestring

minLength: 1

folderLocationstring
useRamRoleboolean
PATCH /api/storage/alibabacloud/{storageId}
Copy
Responses
200

Deprecated, soon to be removedDeprecated

(Deprecated - use /storage) Add a Google Cloud storage

Auth
Request Body
objectobject
Credentialsfile
BucketNamestring
FolderLocationstring
UseAdcboolean
Namestring
GroupIdstring
AccountIdstring
POST /api/storage/googlecloud
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
storageIdstring
Response
Copy

Deprecated, soon to be removedDeprecated

(Deprecated - use /storage/{storageId}) Update a Google Cloud storage

Auth
Path Params
storageIdstring
Request Body
objectobject
Credentialsfile
BucketNamestring
FolderLocationstring
UseAdcboolean
Namestring
GroupIdstring
AccountIdstring
PATCH /api/storage/googlecloud/{storageId}
Copy
Responses
200

Deprecated, soon to be removedDeprecated

(Deprecated - use /storage) Add an Azure Files storage

Auth
Request Body
objectobject
namestring

maxLength: 60

minLength: 1

groupIdstring
accountIdstring
accountNamestring

minLength: 1

accountKeystring

minLength: 1

shareNamestring

minLength: 1

folderLocationstring
POST /api/storage/azurefiles
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
storageIdstring
Response
Copy

Deprecated, soon to be removedDeprecated

(Deprecated - use /storage/{storageId}) Update an Azure Files storage

Auth
Path Params
storageIdstring
Request Body
objectobject
namestring

maxLength: 60

minLength: 1

groupIdstring
accountIdstring
accountNamestring

minLength: 1

accountKeystring

minLength: 1

shareNamestring

minLength: 1

folderLocationstring
PATCH /api/storage/azurefiles/{storageId}
Copy
Responses
200

Delete scan schedulesDeprecated

Auth
Path Params
storageIdstring
Request Body
arrayarray[string]
DELETE /api/storage/scan_schedule/{storageId}
Copy
Responses
200
objectobject
resultinteger

Enum: 0,1,2,3,0,1

responseKeystring
responseMessagestring
responseMessageParamsobject
*string
success
RestResponseRestResponse
error
RestResponseRestResponse
areAllDeletedboolean
Response
Copy