Table of Contents |
---|
...
When beginning a new request, we always logon and store the returned cookie for future use. In addition to the cookie, if we want to create a resource (Orgs, Locations, Credentials, Discoveries, et al) we need to provide an access token. An access token is generated with every request (except logon) and any of the last 20 (by default, settable in the configuration) will be accepted. You should always aim to use the last access token issued. An example token is in the Get Device List response, below.
Updated for Open-AudIT 3.5.4 onward on 2021-11-29.
Logon
Request
Section | |||
---|---|---|---|
URL | POST | http://localhost/omk/open-audit/loginlogon | |
Headers | Accept | application/json | |
Body | Type | form-data | |
Key | username | admin | |
Key | password | password |
...
Code Block |
---|
{ "message": "Authenticated as user admin", "ok": 1 } |
...
Read Devices
Logon as above, then.
Request
Section | ||
---|---|---|
URL | GET | http://localhost/omk/open-audit/devices |
Headers | Accept | application/json |
...
Logon as above, then request list of devices (or any available endpoint) so we can use the meta → access_token in our request (see above response).
Request
Section | |||
---|---|---|---|
URL | POST | http://localhost/omk/open-audit/discoveries | |
Headers | Accept | application/json | |
Body | Type | form-data | |
Key | data | {23652075c7660006c281bf33589620dc093bdbedf8eb7ed1223449a95748 bcb3f959c14f0daf959e3de92e4213201a56bc205e31b63f35c3f9299670",name description": "My SubnetTesting Discovery - 192.168.1.0/24",type match_options":"subnet", "network_address": "http://127.0.0.1/open-audit/", "org_id": 1, "other": { "subnet": "192.169.1.0/24" } } } |
Response
...
"{\"match_dbus\":\"\",\"match_dns_fqdn\":\"\",\"match_dns_hostname\":\"\",\"match_fqdn\":\"\",\"match_hostname\":\"\",\"match_hostname_dbus\":\"\",\"match_hostname_serial\":\"\",\"match_hostname_uuid\":\"\",\"match_ip\":\"\",\"match_ip_no_data\":\"\",\"match_mac\":\"\",\"match_mac_vmware\":\"\",\"match_serial\":\"\",\"match_serial_type\":\"\",\"match_sysname\":\"\",\"match_sysname_serial\":\"\",\"match_uuid\":\"\"}", |
Response
Note, generated from a discoveries read. The actual output should be almost identical.
Code Block |
---|
{ "data": [ { "attributes": { "ad_domain": "", "ad_server": "", "cloud_id": 1, "cloud_name": "", "command_options": "", "description": "Subnet - 192.168.1.0/24", "devices_assigned_to_location": null, "devices_assigned_to_org": null, "discard": "n", "duration": "00:00:00", "edited_by": "Administrator", "edited_date": "2021-11-29 13:16:53", "id": 3, "ip_all_count": 0, "ip_audited_count": 0, "ip_discovered_count": 0, "ip_responding_count": 0, "attributesip_scanned_count": {0, "descriptionlast_finished": "Subnet 2000-01- 192.169.1.0/2401 00:00:00", "devices_assigned_to_location": nulllast_run": "2000-01-01 00:00:00", "devices_assigned_to_orgmatch_options": null, { "discard": "n", "durationmatch_dbus": "00:00:00", "edited_by "match_dns_fqdn": "Administrator", "edited_date": "2020-03-24 13:53:08",match_dns_hostname": "", "idmatch_fqdn": 5"", "ipmatch_all_counthostname": 0"", "ipmatch_auditedhostname_countdbus": 0"", "ipmatch_discoveredhostname_countserial": 0"", "ipmatch_respondinghostname_countuuid": 0"", "match_ip_scanned_count": 0,"", "last_finishedmatch_ip_no_data": "2000-01-01 00:00:00",", "lastmatch_runmac": "2000-01-01 00:00:00", "name "match_mac_vmware": "My", Testing Discovery", "networkmatch_addressserial": "http://127.0.0.1/open-audit/", "options "match_serial_type": "", "orgmatch_idsysname": 1"", "orgs.id "match_sysname_serial": 1"", "other": { "match_uuid": "" }, "nmap": { "name": "My Testing Discovery", "discovery_scan_option_idnetwork_address": "1", "excludeorg_ipid": ""1, "orgs.id": 1, "exclude_tcp_ports": "", "scan_options": "exclude_udp_ports": "", { "filteredexclude_ip": "n", "nmapexclude_tcp_ports": "0", "nmapexclude_udp_ports": "0", "pingfiltered": "y", "service_versionid": "n1", "sshnmap_tcp_ports": "22", "tcpnmap_udp_ports": "22,135,62078", "timeoutopen|filtered": "0", "timingping": "4", "udpscript_portstimeout": "161", }"service_version": "", "subnetsnmp_timeout": "192.169.1.0/24" ", }, "status"ssh_ports": "",, "system.idssh_timeout": 0,"", "systemtcp_idports": 0"", "typetimeout": "subnet" , }, "idtiming": 5"", "links": { "udp_ports": "", "self": "/omk/open-audit/discoveries/5" "wmi_timeout": "" }, "type": "discoveries" }, } ], "errorsseed_ip": [], "included": [], "links": { "firstseed_ping": null"y", "last": null, "nextseed_restrict_to_private": null"y", "prev": null, "self"seed_restrict_to_subnet": "http://localhost/omk/open-audit/discoveries"y", }, "meta": { "access_token"status": "94abae66d364697699d0a44e7cfba111c769882bf832014b2ea287623650", "action": "create", "baseurlsubnet": "http://localhost/omk/open-audit",192.168.1.0/24", "collectionsystem.id": "discoveries"0, "current": "y", "datasystem_orderid": 0, [ "discoveries.id",type": "subnet" "discoveries.name"}, "discoveries.org_id": 3, "discoveries.description",links": { "discoveries.type", "self": "discoveries.devices_assigned_to_org",http://dev.local/omk/open-audit/discoveries/3" "discoveries.devices_assigned_to_location",}, "type": "discoveries.network_address"," } ], "discoveries.system_id"included": [], "issues": [], "meta": "discoveries.options", { "access_token": "discoveries.discardef4421add7e6f2741a2830a1b0262d3b678cc33efdacdd9442d5a871f474", "discoveries.last_run"action": "read", "as_at": "discoveries.last_finished", "discoveries.duration"baseurl": "http://dev.local/omk/open-audit", "collection": "discoveries.status", "discoveries.ip_all_count", "current": "y", "discoveries.ip_responding_count",data_order": [ "discoveries.ip_scanned_count", "discoveries.ip_discovered_countid", "discoveries.ip_audited_countname", "discoveries.editedorg_byid", "discoveries.edited_datedescription", "orgsdiscoveries.idtype", "systemdiscoveries.idsubnet", "otherdiscoveries.subnetseed_ip", "other.nmap" discoveries.seed_restrict_to_subnet", ], "discoveries.seed_restrict_to_private", "debug": false, "filter": [],discoveries.seed_ping", "filtered": "discoveries.ad_domain", "format": "jsondiscoveries.ad_server", "groupby": "discoveries.devices_assigned_to_org", "header": "HTTP/1.1 201 Created", "discoveries.devices_assigned_to_location", "heading": "Discoveriesdiscoveries.network_address", "discoveries.system_id": 5,, "ids": 0,discoveries.scan_options", "include": "discoveries.match_options", "limit": 1000, "discoveries.command_options", "offset": 0,discoveries.discard", "properties": "*discoveries.last_run", "query_parameters": [], "discoveries.last_finished", "query_string": "discoveries.duration", "received_data": { "discoveries.status", "access_token": "23652075c7660006c281bf33589620dc093bdbedf8eb7ed1223449a95748discoveries.ip_all_count", "attributes": {discoveries.ip_responding_count", "discoveries.ip_scanned_count", "description": "Subnet - 192.169.1.0/24", "discoveries.ip_discovered_count", "name": "My Testing Discovery", "discoveries.ip_audited_count", "network_address": "http://127.0.0.1/open-audit/", discoveries.cloud_id", "orgdiscoveries.cloud_idname":, 1, "discoveries.edited_by", "other": "{\"subnet\":\"192.169.1.0\\/24\",\"nmap\":{\"discovery_scan_option_id\":\"1\",\"ping\":\"y\",\"service_version\":\"n\",\"filtered\":\"n\",\"timeout\":\"0\",\"timing\":\"4\",\"nmap_tcp_ports\":\"0\",\"nmap_udp_ports\":\"0\",\"tcp_ports\":\"22,135,62078\",\"udp_ports\":\"161\",\"exclude_tcp_ports\":\"\",\"exclude_udp_ports\":\"\",\"exclude_ip\":\"\",\"ssh_ports\":\"22\"}}", "discoveries.edited_date", "orgs.id", "system.id" ], "debug": false, "filter": [], "filtered": 1, "format": "json", "groupby": "", "header": "HTTP/1.1 200 OK", "heading": "Discoveries", "id": 3, "include": "", "limit": 1000, "typenmap_version": "subnet"7, "offset": 0, "properties": ".*", }, "query_parameters": [], "typequery_string": "discoveries", }"received_data": [], "request_method": "POSTGET", "requestor": "commercial", "sortserver_app_version": "4.3.0", "sub_resourceserver_platform": "Debian GNU/Linux 9 (stretch)", "sort": "", "sub_resource_id": 0"", "timestamp": "20202021-0311-2429 13:5324:0845", "timezone": "UTC +1000", "total": 01, "version": 1 } } |
...
Update Discovery
Logon as above, then.
Request
Section | |||
---|---|---|---|
URL | PATCH | http://localhost/omk/open-audit/discoveries/5 | |
Headers | Accept | application/json | |
Body | Type | x-www-form-urlencoded | |
Key | data | { |
Response
Note - generated from pre 3.5.4. Attribute outputs will be as above for 3.5.4 onward.
Code Block |
---|
{ "data": [ { "attributes": { "description": "Subnet - 192.169.1.0/24", "devices_assigned_to_location": null, "devices_assigned_to_org": null, "discard": "n", "duration": "00:00:00", "edited_by": "Administrator", "edited_date": "2020-03-24 14:13:36", "id": 5, "ip_all_count": 0, "ip_audited_count": 0, "ip_discovered_count": 0, "ip_responding_count": 0, "ip_scanned_count": 0, "last_finished": "2000-01-01 00:00:00", "last_run": "2000-01-01 00:00:00", "name": "My New Name OMK", "network_address": "http://127.0.0.1/open-audit/", "options": "", "org_id": 1, "orgs.id": 1, "other": { "nmap": { "discovery_scan_option_id": "1", "exclude_ip": "", "exclude_tcp_ports": "", "exclude_udp_ports": "", "filtered": "n", "nmap_tcp_ports": "0", "nmap_udp_ports": "0", "ping": "y", "service_version": "n", "ssh_ports": "22", "tcp_ports": "22,135,62078", "timeout": "0", "timing": "4", "udp_ports": "161" }, "subnet": "192.169.1.0/24" }, "status": "", "system.id": 0, "system_id": 0, "type": "subnet" }, "id": 5, "links": { "self": "/omk/open-audit/discoveries/5" }, "type": "discoveries" } ], "errors": [], "included": [], "links": { "first": null, "last": null, "next": null, "prev": null, "self": "http://localhost/omk/open-audit/discoveries/5" }, "meta": { "access_token": "47049142d113e4e316ae4219afdf54d6a6d034ff779a42fd5198a720da2e", "action": "update", "baseurl": "http://localhost/omk/open-audit", "collection": "discoveries", "current": "y", "data_order": [ "discoveries.id", "discoveries.name", "discoveries.org_id", "discoveries.description", "discoveries.type", "discoveries.devices_assigned_to_org", "discoveries.devices_assigned_to_location", "discoveries.network_address", "discoveries.system_id", "discoveries.options", "discoveries.discard", "discoveries.last_run", "discoveries.last_finished", "discoveries.duration", "discoveries.status", "discoveries.ip_all_count", "discoveries.ip_responding_count", "discoveries.ip_scanned_count", "discoveries.ip_discovered_count", "discoveries.ip_audited_count", "discoveries.edited_by", "discoveries.edited_date", "orgs.id", "system.id", "other.subnet", "other.nmap" ], "debug": false, "filter": [], "filtered": "", "format": "json", "groupby": "", "header": "HTTP/1.1 200 OK", "heading": "Discoveries", "id": 5, "ids": 0, "include": "", "limit": 1000, "offset": 0, "properties": "*", "query_parameters": [], "query_string": "", "received_data": { "attributes": { "id": 5, "name": "My New Name OMK" }, "id": 5, "type": "discoveries" }, "request_method": "PATCH", "requestor": "", "sort": "", "sub_resource": "", "sub_resource_id": 0, "timestamp": "2020-03-24 14:13:36", "timezone": "UTC +1000", "total": 0, "version": 1 } } |
...
Logon as above, then.
Request
Section | ||
---|---|---|
URL | DELETE | http://localhost/omk/open-audit/discoveries/5 |
Headers | Accept | application/json |
Response
Code Block |
---|
{ "meta": { "access_token": "530d34dc6304ebd361d088d7831e4ce9d276ac8a4826837bdf36e8e84c87", "action": "delete", "baseurl": "http://localhost/open-audit/", "collection": "discoveries", "current": "y", "debug": false, "filtered": "", "format": "json", "groupby": "", "header": "HTTP/1.1 200 OK", "id": 5, "ids": 0, "include": "", "limit": 1000, "offset": 0, "properties": "*", "query_string": "", "request_method": "DELETE", "requestor": "", "sort": "", "sub_resource": "", "sub_resource_id": 0, "total": 0, "timestamp": "2020-03-24 14:22:38", "timezone": "UTC +1000", "version": 1, "filter": [], "query_parameters": [], "received_data": [], "heading": "Discoveries", "data_order": [] }, "links": { "self": "http://localhost/open-audit/index.php/discoveries/5", "first": null, "last": null, "next": null, "prev": null }, "included": [], "data": [ { "type": "discoveries" } ] } |
...