Class: Falcon::Recon

Inherits:

Object

• Object
• Falcon::Recon

Defined in:

lib/crimson-falcon/api/recon.rb

Instance Attribute Summary

• #api_client ⇒ Object

  Returns the value of attribute api_client.

Instance Method Summary

• #aggregate_notifications_exposed_data_records_v1(body, opts = {}) ⇒ DomainAggregatesResponse

  Get notification exposed data record aggregates as specified via JSON in request body.

• #aggregate_notifications_exposed_data_records_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainAggregatesResponse, Integer, Hash)>

  Get notification exposed data record aggregates as specified via JSON in request body.

• #aggregate_notifications_v1(body, opts = {}) ⇒ DomainAggregatesResponse

  Get notification aggregates as specified via JSON in request body.

• #aggregate_notifications_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainAggregatesResponse, Integer, Hash)>

  Get notification aggregates as specified via JSON in request body.

• #create_actions_v1(body, opts = {}) ⇒ DomainActionEntitiesResponseV1

  Create actions for a monitoring rule.

• #create_actions_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainActionEntitiesResponseV1, Integer, Hash)>

  Create actions for a monitoring rule.

• #create_export_jobs_v1(body, opts = {}) ⇒ DomainLaunchExportJobResponseV1

  Launch asynchronous export job.

• #create_export_jobs_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainLaunchExportJobResponseV1, Integer, Hash)>

  Launch asynchronous export job.

• #create_rules_v1(body, opts = {}) ⇒ DomainRulesEntitiesResponseV1

  Create monitoring rules.

• #create_rules_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainRulesEntitiesResponseV1, Integer, Hash)>

  Create monitoring rules.

• #delete_action_v1(id, opts = {}) ⇒ DomainQueryResponse

  Delete an action from a monitoring rule based on the action ID.

• #delete_action_v1_with_http_info(id, opts = {}) ⇒ Array<(DomainQueryResponse, Integer, Hash)>

  Delete an action from a monitoring rule based on the action ID.

• #delete_export_jobs_v1(ids, opts = {}) ⇒ DomainExportJobIDResponseV1

  Delete export jobs (and their associated file(s)) based on their IDs.

• #delete_export_jobs_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainExportJobIDResponseV1, Integer, Hash)>

  Delete export jobs (and their associated file(s)) based on their IDs.

• #delete_notifications_v1(ids, opts = {}) ⇒ DomainNotificationIDResponse

  Delete notifications based on IDs.

• #delete_notifications_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainNotificationIDResponse, Integer, Hash)>

  Delete notifications based on IDs.

• #delete_rules_v1(ids, opts = {}) ⇒ DomainRuleQueryResponseV1

  Delete monitoring rules.

• #delete_rules_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainRuleQueryResponseV1, Integer, Hash)>

  Delete monitoring rules.

• #get_actions_v1(ids, opts = {}) ⇒ DomainActionEntitiesResponseV1

  Get actions based on their IDs.

• #get_actions_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainActionEntitiesResponseV1, Integer, Hash)>

  Get actions based on their IDs.

• #get_export_jobs_v1(ids, opts = {}) ⇒ DomainExportJobEntitiesResponseV1

  Get the status of export jobs based on their IDs.

• #get_export_jobs_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainExportJobEntitiesResponseV1, Integer, Hash)>

  Get the status of export jobs based on their IDs.

• #get_file_content_for_export_jobs_v1(id, opts = {}) ⇒ Array<Integer>

  Download the file associated with a job ID.

• #get_file_content_for_export_jobs_v1_with_http_info(id, opts = {}) ⇒ Array<(Array<Integer>, Integer, Hash)>

  Download the file associated with a job ID.

• #get_notifications_detailed_translated_v1(ids, opts = {}) ⇒ DomainNotificationDetailsResponseV1

  Get detailed notifications based on their IDs.

• #get_notifications_detailed_translated_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainNotificationDetailsResponseV1, Integer, Hash)>

  Get detailed notifications based on their IDs.

• #get_notifications_detailed_v1(ids, opts = {}) ⇒ DomainNotificationDetailsResponseV1

  Get detailed notifications based on their IDs.

• #get_notifications_detailed_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainNotificationDetailsResponseV1, Integer, Hash)>

  Get detailed notifications based on their IDs.

• #get_notifications_exposed_data_records_v1(ids, opts = {}) ⇒ ApiNotificationExposedDataRecordEntitiesResponseV1

  Get notifications exposed data records based on their IDs.

• #get_notifications_exposed_data_records_v1_with_http_info(ids, opts = {}) ⇒ Array<(ApiNotificationExposedDataRecordEntitiesResponseV1, Integer, Hash)>

  Get notifications exposed data records based on their IDs.

• #get_notifications_translated_v1(ids, opts = {}) ⇒ DomainNotificationEntitiesResponseV1

  Get notifications based on their IDs.

• #get_notifications_translated_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainNotificationEntitiesResponseV1, Integer, Hash)>

  Get notifications based on their IDs.

• #get_notifications_v1(ids, opts = {}) ⇒ DomainNotificationEntitiesResponseV1

  Get notifications based on their IDs.

• #get_notifications_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainNotificationEntitiesResponseV1, Integer, Hash)>

  Get notifications based on their IDs.

• #get_rules_v1(ids, opts = {}) ⇒ DomainRulesEntitiesResponseV1

  Get monitoring rules based on their IDs.

• #get_rules_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainRulesEntitiesResponseV1, Integer, Hash)>

  Get monitoring rules based on their IDs.

• #initialize(api_client = ApiClient.default) ⇒ Recon constructor

  A new instance of Recon.

• #preview_rule_v1(body, opts = {}) ⇒ DomainAggregatesResponse

  Preview rules notification count and distribution.

• #preview_rule_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainAggregatesResponse, Integer, Hash)>

  Preview rules notification count and distribution.

• #query_actions_v1(opts = {}) ⇒ DomainQueryResponse

  Query actions based on provided criteria.

• #query_actions_v1_with_http_info(opts = {}) ⇒ Array<(DomainQueryResponse, Integer, Hash)>

  Query actions based on provided criteria.

• #query_notifications_exposed_data_records_v1(opts = {}) ⇒ DomainQueryResponse

  Query notifications exposed data records based on provided criteria.

• #query_notifications_exposed_data_records_v1_with_http_info(opts = {}) ⇒ Array<(DomainQueryResponse, Integer, Hash)>

  Query notifications exposed data records based on provided criteria.

• #query_notifications_v1(opts = {}) ⇒ DomainQueryResponse

  Query notifications based on provided criteria.

• #query_notifications_v1_with_http_info(opts = {}) ⇒ Array<(DomainQueryResponse, Integer, Hash)>

  Query notifications based on provided criteria.

• #query_rules_v1(opts = {}) ⇒ DomainRuleQueryResponseV1

  Query monitoring rules based on provided criteria.

• #query_rules_v1_with_http_info(opts = {}) ⇒ Array<(DomainRuleQueryResponseV1, Integer, Hash)>

  Query monitoring rules based on provided criteria.

• #update_action_v1(body, opts = {}) ⇒ DomainActionEntitiesResponseV1

  Update an action for a monitoring rule.

• #update_action_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainActionEntitiesResponseV1, Integer, Hash)>

  Update an action for a monitoring rule.

• #update_notifications_v1(body, opts = {}) ⇒ DomainNotificationEntitiesResponseV1

  Update notification status or assignee.

• #update_notifications_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainNotificationEntitiesResponseV1, Integer, Hash)>

  Update notification status or assignee.

• #update_rules_v1(body, opts = {}) ⇒ DomainRulesEntitiesResponseV1

  Update monitoring rules.

• #update_rules_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainRulesEntitiesResponseV1, Integer, Hash)>

  Update monitoring rules.

Constructor Details

#initialize(api_client = ApiClient.default) ⇒ Recon

Returns a new instance of Recon.

# File 'lib/crimson-falcon/api/recon.rb', line 35

def initialize(api_client = ApiClient.default)
  @api_client = api_client
end

Instance Attribute Details

#api_client ⇒ Object

Returns the value of attribute api_client.

# File 'lib/crimson-falcon/api/recon.rb', line 33

def api_client
  @api_client
end

Instance Method Details

#aggregate_notifications_exposed_data_records_v1(body, opts = {}) ⇒ DomainAggregatesResponse

Get notification exposed data record aggregates as specified via JSON in request body. The valid aggregation fields are: [cid notification_id notification_group_id created_date rule.id rule.name rule.topic source_category site author file.name credential_status bot.operating_system.hardware_id bot.bot_id]

Parameters:

• body (Array<MsaAggregateQueryRequest>)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainAggregatesResponse)

# File 'lib/crimson-falcon/api/recon.rb', line 42

def aggregate_notifications_exposed_data_records_v1(body, opts = {})
  data, _status_code, _headers = aggregate_notifications_exposed_data_records_v1_with_http_info(body, opts)
  data
end

#aggregate_notifications_exposed_data_records_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainAggregatesResponse, Integer, Hash)>

Get notification exposed data record aggregates as specified via JSON in request body. The valid aggregation fields are: [cid notification_id notification_group_id created_date rule.id rule.name rule.topic source_category site author file.name credential_status bot.operating_system.hardware_id bot.bot_id]

Parameters:

• body (Array<MsaAggregateQueryRequest>)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainAggregatesResponse, Integer, Hash)>) —

  DomainAggregatesResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 51

def aggregate_notifications_exposed_data_records_v1_with_http_info(body, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.aggregate_notifications_exposed_data_records_v1 ...'
  end
  # verify the required parameter 'body' is set
  if @api_client.config.client_side_validation && body.nil?
    fail ArgumentError, "Missing the required parameter 'body' when calling Recon.aggregate_notifications_exposed_data_records_v1"
  end
  # resource path
  local_var_path = '/recon/aggregates/notifications-exposed-data-records/GET/v1'

  # query parameters
  query_params = opts[:query_params] || {}

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])
  # HTTP header 'Content-Type'
  content_type = @api_client.select_header_content_type(['application/json'])
  if !content_type.nil?
    header_params['Content-Type'] = content_type
  end

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body] || @api_client.object_to_http_body(body)

  # return_type
  return_type = opts[:debug_return_type] || 'DomainAggregatesResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.aggregate_notifications_exposed_data_records_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:POST, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#aggregate_notifications_exposed_data_records_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#aggregate_notifications_v1(body, opts = {}) ⇒ DomainAggregatesResponse

Get notification aggregates as specified via JSON in request body.

Parameters:

• body (Array<MsaAggregateQueryRequest>)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainAggregatesResponse)

# File 'lib/crimson-falcon/api/recon.rb', line 108

def aggregate_notifications_v1(body, opts = {})
  data, _status_code, _headers = aggregate_notifications_v1_with_http_info(body, opts)
  data
end

#aggregate_notifications_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainAggregatesResponse, Integer, Hash)>

Get notification aggregates as specified via JSON in request body.

Parameters:

• body (Array<MsaAggregateQueryRequest>)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainAggregatesResponse, Integer, Hash)>) —

  DomainAggregatesResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 117

def aggregate_notifications_v1_with_http_info(body, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.aggregate_notifications_v1 ...'
  end
  # verify the required parameter 'body' is set
  if @api_client.config.client_side_validation && body.nil?
    fail ArgumentError, "Missing the required parameter 'body' when calling Recon.aggregate_notifications_v1"
  end
  # resource path
  local_var_path = '/recon/aggregates/notifications/GET/v1'

  # query parameters
  query_params = opts[:query_params] || {}

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])
  # HTTP header 'Content-Type'
  content_type = @api_client.select_header_content_type(['application/json'])
  if !content_type.nil?
    header_params['Content-Type'] = content_type
  end

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body] || @api_client.object_to_http_body(body)

  # return_type
  return_type = opts[:debug_return_type] || 'DomainAggregatesResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.aggregate_notifications_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:POST, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#aggregate_notifications_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#create_actions_v1(body, opts = {}) ⇒ DomainActionEntitiesResponseV1

Create actions for a monitoring rule. Accepts a list of actions that will be attached to the monitoring rule.

Parameters:

• body (DomainRegisterActionsRequest)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainActionEntitiesResponseV1)

# File 'lib/crimson-falcon/api/recon.rb', line 174

def create_actions_v1(body, opts = {})
  data, _status_code, _headers = create_actions_v1_with_http_info(body, opts)
  data
end

#create_actions_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainActionEntitiesResponseV1, Integer, Hash)>

Create actions for a monitoring rule. Accepts a list of actions that will be attached to the monitoring rule.

Parameters:

• body (DomainRegisterActionsRequest)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainActionEntitiesResponseV1, Integer, Hash)>) —

  DomainActionEntitiesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 183

def create_actions_v1_with_http_info(body, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.create_actions_v1 ...'
  end
  # verify the required parameter 'body' is set
  if @api_client.config.client_side_validation && body.nil?
    fail ArgumentError, "Missing the required parameter 'body' when calling Recon.create_actions_v1"
  end
  # resource path
  local_var_path = '/recon/entities/actions/v1'

  # query parameters
  query_params = opts[:query_params] || {}

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])
  # HTTP header 'Content-Type'
  content_type = @api_client.select_header_content_type(['application/json'])
  if !content_type.nil?
    header_params['Content-Type'] = content_type
  end

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body] || @api_client.object_to_http_body(body)

  # return_type
  return_type = opts[:debug_return_type] || 'DomainActionEntitiesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.create_actions_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:POST, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#create_actions_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#create_export_jobs_v1(body, opts = {}) ⇒ DomainLaunchExportJobResponseV1

Launch asynchronous export job. Use the job ID to poll the status of the job using GET /entities/exports/v1.

Parameters:

• body (Array<DomainLaunchExportJobRequestV1>)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainLaunchExportJobResponseV1)

# File 'lib/crimson-falcon/api/recon.rb', line 240

def create_export_jobs_v1(body, opts = {})
  data, _status_code, _headers = create_export_jobs_v1_with_http_info(body, opts)
  data
end

#create_export_jobs_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainLaunchExportJobResponseV1, Integer, Hash)>

Launch asynchronous export job. Use the job ID to poll the status of the job using GET /entities/exports/v1.

Parameters:

• body (Array<DomainLaunchExportJobRequestV1>)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainLaunchExportJobResponseV1, Integer, Hash)>) —

  DomainLaunchExportJobResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 249

def create_export_jobs_v1_with_http_info(body, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.create_export_jobs_v1 ...'
  end
  # verify the required parameter 'body' is set
  if @api_client.config.client_side_validation && body.nil?
    fail ArgumentError, "Missing the required parameter 'body' when calling Recon.create_export_jobs_v1"
  end
  # resource path
  local_var_path = '/recon/entities/exports/v1'

  # query parameters
  query_params = opts[:query_params] || {}

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])
  # HTTP header 'Content-Type'
  content_type = @api_client.select_header_content_type(['application/json'])
  if !content_type.nil?
    header_params['Content-Type'] = content_type
  end

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body] || @api_client.object_to_http_body(body)

  # return_type
  return_type = opts[:debug_return_type] || 'DomainLaunchExportJobResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.create_export_jobs_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:POST, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#create_export_jobs_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#create_rules_v1(body, opts = {}) ⇒ DomainRulesEntitiesResponseV1

Create monitoring rules.

Parameters:

• body (Array<SadomainCreateRuleRequestV1>)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainRulesEntitiesResponseV1)

# File 'lib/crimson-falcon/api/recon.rb', line 306

def create_rules_v1(body, opts = {})
  data, _status_code, _headers = create_rules_v1_with_http_info(body, opts)
  data
end

#create_rules_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainRulesEntitiesResponseV1, Integer, Hash)>

Create monitoring rules.

Parameters:

• body (Array<SadomainCreateRuleRequestV1>)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainRulesEntitiesResponseV1, Integer, Hash)>) —

  DomainRulesEntitiesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 315

def create_rules_v1_with_http_info(body, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.create_rules_v1 ...'
  end
  # verify the required parameter 'body' is set
  if @api_client.config.client_side_validation && body.nil?
    fail ArgumentError, "Missing the required parameter 'body' when calling Recon.create_rules_v1"
  end
  # resource path
  local_var_path = '/recon/entities/rules/v1'

  # query parameters
  query_params = opts[:query_params] || {}

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])
  # HTTP header 'Content-Type'
  content_type = @api_client.select_header_content_type(['application/json'])
  if !content_type.nil?
    header_params['Content-Type'] = content_type
  end

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body] || @api_client.object_to_http_body(body)

  # return_type
  return_type = opts[:debug_return_type] || 'DomainRulesEntitiesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.create_rules_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:POST, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#create_rules_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#delete_action_v1(id, opts = {}) ⇒ DomainQueryResponse

Delete an action from a monitoring rule based on the action ID.

Parameters:

• id (String) —

  ID of the action.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainQueryResponse)

# File 'lib/crimson-falcon/api/recon.rb', line 372

def delete_action_v1(id, opts = {})
  data, _status_code, _headers = delete_action_v1_with_http_info(id, opts)
  data
end

#delete_action_v1_with_http_info(id, opts = {}) ⇒ Array<(DomainQueryResponse, Integer, Hash)>

Delete an action from a monitoring rule based on the action ID.

Parameters:

• id (String) —

  ID of the action.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainQueryResponse, Integer, Hash)>) —

  DomainQueryResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 381

def delete_action_v1_with_http_info(id, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.delete_action_v1 ...'
  end
  # verify the required parameter 'id' is set
  if @api_client.config.client_side_validation && id.nil?
    fail ArgumentError, "Missing the required parameter 'id' when calling Recon.delete_action_v1"
  end
  # resource path
  local_var_path = '/recon/entities/actions/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'id'] = id

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'DomainQueryResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.delete_action_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:DELETE, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#delete_action_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#delete_export_jobs_v1(ids, opts = {}) ⇒ DomainExportJobIDResponseV1

Delete export jobs (and their associated file(s)) based on their IDs.

Parameters:

• ids (Array<String>) —

  Export Job IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainExportJobIDResponseV1)

# File 'lib/crimson-falcon/api/recon.rb', line 434

def delete_export_jobs_v1(ids, opts = {})
  data, _status_code, _headers = delete_export_jobs_v1_with_http_info(ids, opts)
  data
end

#delete_export_jobs_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainExportJobIDResponseV1, Integer, Hash)>

Delete export jobs (and their associated file(s)) based on their IDs.

Parameters:

• ids (Array<String>) —

  Export Job IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainExportJobIDResponseV1, Integer, Hash)>) —

  DomainExportJobIDResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 443

def delete_export_jobs_v1_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.delete_export_jobs_v1 ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling Recon.delete_export_jobs_v1"
  end
  # resource path
  local_var_path = '/recon/entities/exports/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'DomainExportJobIDResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.delete_export_jobs_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:DELETE, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#delete_export_jobs_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#delete_notifications_v1(ids, opts = {}) ⇒ DomainNotificationIDResponse

Delete notifications based on IDs. Notifications cannot be recovered after they are deleted.

Parameters:

• ids (Array<String>) —

  Notifications IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainNotificationIDResponse)

# File 'lib/crimson-falcon/api/recon.rb', line 496

def delete_notifications_v1(ids, opts = {})
  data, _status_code, _headers = delete_notifications_v1_with_http_info(ids, opts)
  data
end

#delete_notifications_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainNotificationIDResponse, Integer, Hash)>

Delete notifications based on IDs. Notifications cannot be recovered after they are deleted.

Parameters:

• ids (Array<String>) —

  Notifications IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainNotificationIDResponse, Integer, Hash)>) —

  DomainNotificationIDResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 505

def delete_notifications_v1_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.delete_notifications_v1 ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling Recon.delete_notifications_v1"
  end
  # resource path
  local_var_path = '/recon/entities/notifications/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'DomainNotificationIDResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.delete_notifications_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:DELETE, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#delete_notifications_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#delete_rules_v1(ids, opts = {}) ⇒ DomainRuleQueryResponseV1

Delete monitoring rules.

Parameters:

• ids (Array<String>) —

  IDs of rules.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :notifications_deletion_requested (Boolean) —

  Whether we should delete the notifications generated by this rule or not

Returns:

• (DomainRuleQueryResponseV1)

# File 'lib/crimson-falcon/api/recon.rb', line 559

def delete_rules_v1(ids, opts = {})
  data, _status_code, _headers = delete_rules_v1_with_http_info(ids, opts)
  data
end

#delete_rules_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainRuleQueryResponseV1, Integer, Hash)>

Delete monitoring rules.

Parameters:

• ids (Array<String>) —

  IDs of rules.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :notifications_deletion_requested (Boolean) —

  Whether we should delete the notifications generated by this rule or not

Returns:

• (Array<(DomainRuleQueryResponseV1, Integer, Hash)>) —

  DomainRuleQueryResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 569

def delete_rules_v1_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.delete_rules_v1 ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling Recon.delete_rules_v1"
  end
  # resource path
  local_var_path = '/recon/entities/rules/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)
  query_params[:'notificationsDeletionRequested'] = opts[:'notifications_deletion_requested'] if !opts[:'notifications_deletion_requested'].nil?

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'DomainRuleQueryResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.delete_rules_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:DELETE, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#delete_rules_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#get_actions_v1(ids, opts = {}) ⇒ DomainActionEntitiesResponseV1

Get actions based on their IDs. IDs can be retrieved using the GET /queries/actions/v1 endpoint.

Parameters:

• ids (Array<String>) —

  Action IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainActionEntitiesResponseV1)

# File 'lib/crimson-falcon/api/recon.rb', line 623

def get_actions_v1(ids, opts = {})
  data, _status_code, _headers = get_actions_v1_with_http_info(ids, opts)
  data
end

#get_actions_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainActionEntitiesResponseV1, Integer, Hash)>

Get actions based on their IDs. IDs can be retrieved using the GET /queries/actions/v1 endpoint.

Parameters:

• ids (Array<String>) —

  Action IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainActionEntitiesResponseV1, Integer, Hash)>) —

  DomainActionEntitiesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 632

def get_actions_v1_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.get_actions_v1 ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling Recon.get_actions_v1"
  end
  # resource path
  local_var_path = '/recon/entities/actions/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'DomainActionEntitiesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.get_actions_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#get_actions_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#get_export_jobs_v1(ids, opts = {}) ⇒ DomainExportJobEntitiesResponseV1

Get the status of export jobs based on their IDs. Export jobs can be launched by calling POST /entities/exports/v1. When a job is complete, use the job ID to download the file(s) associated with it using GET entities/export-files/v1.

Parameters:

• ids (Array<String>) —

  Export Job IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainExportJobEntitiesResponseV1)

# File 'lib/crimson-falcon/api/recon.rb', line 685

def get_export_jobs_v1(ids, opts = {})
  data, _status_code, _headers = get_export_jobs_v1_with_http_info(ids, opts)
  data
end

#get_export_jobs_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainExportJobEntitiesResponseV1, Integer, Hash)>

Get the status of export jobs based on their IDs. Export jobs can be launched by calling POST /entities/exports/v1. When a job is complete, use the job ID to download the file(s) associated with it using GET entities/export-files/v1.

Parameters:

• ids (Array<String>) —

  Export Job IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainExportJobEntitiesResponseV1, Integer, Hash)>) —

  DomainExportJobEntitiesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 694

def get_export_jobs_v1_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.get_export_jobs_v1 ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling Recon.get_export_jobs_v1"
  end
  # resource path
  local_var_path = '/recon/entities/exports/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'DomainExportJobEntitiesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.get_export_jobs_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#get_export_jobs_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#get_file_content_for_export_jobs_v1(id, opts = {}) ⇒ Array<Integer>

Download the file associated with a job ID.

Parameters:

• id (String) —

  Export Job ID.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<Integer>)

# File 'lib/crimson-falcon/api/recon.rb', line 747

def get_file_content_for_export_jobs_v1(id, opts = {})
  data, _status_code, _headers = get_file_content_for_export_jobs_v1_with_http_info(id, opts)
  data
end

#get_file_content_for_export_jobs_v1_with_http_info(id, opts = {}) ⇒ Array<(Array<Integer>, Integer, Hash)>

Download the file associated with a job ID.

Parameters:

• id (String) —

  Export Job ID.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(Array<Integer>, Integer, Hash)>) —

  Array<Integer> data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 756

def get_file_content_for_export_jobs_v1_with_http_info(id, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.get_file_content_for_export_jobs_v1 ...'
  end
  # verify the required parameter 'id' is set
  if @api_client.config.client_side_validation && id.nil?
    fail ArgumentError, "Missing the required parameter 'id' when calling Recon.get_file_content_for_export_jobs_v1"
  end
  # resource path
  local_var_path = '/recon/entities/export-files/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'id'] = id

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/octet-stream', 'application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'Array<Integer>'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.get_file_content_for_export_jobs_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#get_file_content_for_export_jobs_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#get_notifications_detailed_translated_v1(ids, opts = {}) ⇒ DomainNotificationDetailsResponseV1

Get detailed notifications based on their IDs. These include the translated raw intelligence content that generated the match or part of it. Get detailed notifications based on their IDs. These include the translated raw intelligence content that generated the match or part of it. This API endpoint will return translated notification content. The only target language available is English. A single notification can be translated per request. In case the item’s content is only partial, a URL is provided under the resource’s ‘details.full_content_url’ path, but the content available at this URL will be the original one.

Parameters:

• ids (Array<String>) —

  Notification IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainNotificationDetailsResponseV1)

# File 'lib/crimson-falcon/api/recon.rb', line 810

def get_notifications_detailed_translated_v1(ids, opts = {})
  data, _status_code, _headers = get_notifications_detailed_translated_v1_with_http_info(ids, opts)
  data
end

#get_notifications_detailed_translated_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainNotificationDetailsResponseV1, Integer, Hash)>

Get detailed notifications based on their IDs. These include the translated raw intelligence content that generated the match or part of it. Get detailed notifications based on their IDs. These include the translated raw intelligence content that generated the match or part of it. This API endpoint will return translated notification content. The only target language available is English. A single notification can be translated per request. In case the item&#39;s content is only partial, a URL is provided under the resource&#39;s &#39;details.full_content_url&#39; path, but the content available at this URL will be the original one.

Parameters:

• ids (Array<String>) —

  Notification IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainNotificationDetailsResponseV1, Integer, Hash)>) —

  DomainNotificationDetailsResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 820

def get_notifications_detailed_translated_v1_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.get_notifications_detailed_translated_v1 ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling Recon.get_notifications_detailed_translated_v1"
  end
  # resource path
  local_var_path = '/recon/entities/notifications-detailed-translated/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'DomainNotificationDetailsResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.get_notifications_detailed_translated_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#get_notifications_detailed_translated_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#get_notifications_detailed_v1(ids, opts = {}) ⇒ DomainNotificationDetailsResponseV1

Get detailed notifications based on their IDs. These include the raw intelligence content that generated the match or part of it. Get detailed notifications based on their IDs. These include the raw intelligence content that generated the match or part of it. In case the content is only partial, a URL is provided under the resource’s ‘details.full_content_url’ path. When present, use this URL to retrieve the full raw text content of the item. Please note this URL has a limited TTL. To get a fresh valid one, perform a new call to this API endpoint.

Parameters:

• ids (Array<String>) —

  Notification IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainNotificationDetailsResponseV1)

# File 'lib/crimson-falcon/api/recon.rb', line 874

def get_notifications_detailed_v1(ids, opts = {})
  data, _status_code, _headers = get_notifications_detailed_v1_with_http_info(ids, opts)
  data
end

#get_notifications_detailed_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainNotificationDetailsResponseV1, Integer, Hash)>

Get detailed notifications based on their IDs. These include the raw intelligence content that generated the match or part of it. Get detailed notifications based on their IDs. These include the raw intelligence content that generated the match or part of it. In case the content is only partial, a URL is provided under the resource&#39;s &#39;details.full_content_url&#39; path. When present, use this URL to retrieve the full raw text content of the item. Please note this URL has a limited TTL. To get a fresh valid one, perform a new call to this API endpoint.

Parameters:

• ids (Array<String>) —

  Notification IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainNotificationDetailsResponseV1, Integer, Hash)>) —

  DomainNotificationDetailsResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 884

def get_notifications_detailed_v1_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.get_notifications_detailed_v1 ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling Recon.get_notifications_detailed_v1"
  end
  # resource path
  local_var_path = '/recon/entities/notifications-detailed/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'DomainNotificationDetailsResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.get_notifications_detailed_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#get_notifications_detailed_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#get_notifications_exposed_data_records_v1(ids, opts = {}) ⇒ ApiNotificationExposedDataRecordEntitiesResponseV1

Get notifications exposed data records based on their IDs. IDs can be retrieved using the GET /queries/notifications-exposed-data-records/v1 endpoint. The associate notification can be fetched using the /entities/notifications/v* endpoints

Parameters:

• ids (Array<String>) —

  Notification exposed records IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (ApiNotificationExposedDataRecordEntitiesResponseV1)

# File 'lib/crimson-falcon/api/recon.rb', line 937

def get_notifications_exposed_data_records_v1(ids, opts = {})
  data, _status_code, _headers = get_notifications_exposed_data_records_v1_with_http_info(ids, opts)
  data
end

#get_notifications_exposed_data_records_v1_with_http_info(ids, opts = {}) ⇒ Array<(ApiNotificationExposedDataRecordEntitiesResponseV1, Integer, Hash)>

Get notifications exposed data records based on their IDs. IDs can be retrieved using the GET /queries/notifications-exposed-data-records/v1 endpoint. The associate notification can be fetched using the /entities/notifications/v* endpoints

Parameters:

• ids (Array<String>) —

  Notification exposed records IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(ApiNotificationExposedDataRecordEntitiesResponseV1, Integer, Hash)>) —

  ApiNotificationExposedDataRecordEntitiesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 946

def get_notifications_exposed_data_records_v1_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.get_notifications_exposed_data_records_v1 ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling Recon.get_notifications_exposed_data_records_v1"
  end
  # resource path
  local_var_path = '/recon/entities/notifications-exposed-data-records/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'ApiNotificationExposedDataRecordEntitiesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.get_notifications_exposed_data_records_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#get_notifications_exposed_data_records_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#get_notifications_translated_v1(ids, opts = {}) ⇒ DomainNotificationEntitiesResponseV1

Get notifications based on their IDs. IDs can be retrieved using the GET /queries/notifications/v1 endpoint. This endpoint will return translated notification content. The only target language available is English.

Parameters:

• ids (Array<String>) —

  Notification IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainNotificationEntitiesResponseV1)

# File 'lib/crimson-falcon/api/recon.rb', line 999

def get_notifications_translated_v1(ids, opts = {})
  data, _status_code, _headers = get_notifications_translated_v1_with_http_info(ids, opts)
  data
end

#get_notifications_translated_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainNotificationEntitiesResponseV1, Integer, Hash)>

Get notifications based on their IDs. IDs can be retrieved using the GET /queries/notifications/v1 endpoint. This endpoint will return translated notification content. The only target language available is English.

Parameters:

• ids (Array<String>) —

  Notification IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainNotificationEntitiesResponseV1, Integer, Hash)>) —

  DomainNotificationEntitiesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 1008

def get_notifications_translated_v1_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.get_notifications_translated_v1 ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling Recon.get_notifications_translated_v1"
  end
  # resource path
  local_var_path = '/recon/entities/notifications-translated/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'DomainNotificationEntitiesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.get_notifications_translated_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#get_notifications_translated_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#get_notifications_v1(ids, opts = {}) ⇒ DomainNotificationEntitiesResponseV1

Get notifications based on their IDs. IDs can be retrieved using the GET /queries/notifications/v1 endpoint.

Parameters:

• ids (Array<String>) —

  Notification IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainNotificationEntitiesResponseV1)

# File 'lib/crimson-falcon/api/recon.rb', line 1061

def get_notifications_v1(ids, opts = {})
  data, _status_code, _headers = get_notifications_v1_with_http_info(ids, opts)
  data
end

#get_notifications_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainNotificationEntitiesResponseV1, Integer, Hash)>

Get notifications based on their IDs. IDs can be retrieved using the GET /queries/notifications/v1 endpoint.

Parameters:

• ids (Array<String>) —

  Notification IDs.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainNotificationEntitiesResponseV1, Integer, Hash)>) —

  DomainNotificationEntitiesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 1070

def get_notifications_v1_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.get_notifications_v1 ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling Recon.get_notifications_v1"
  end
  # resource path
  local_var_path = '/recon/entities/notifications/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'DomainNotificationEntitiesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.get_notifications_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#get_notifications_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#get_rules_v1(ids, opts = {}) ⇒ DomainRulesEntitiesResponseV1

Get monitoring rules based on their IDs. IDs can be retrieved using the GET /queries/rules/v1 endpoint.

Parameters:

• ids (Array<String>) —

  IDs of rules.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainRulesEntitiesResponseV1)

# File 'lib/crimson-falcon/api/recon.rb', line 1123

def get_rules_v1(ids, opts = {})
  data, _status_code, _headers = get_rules_v1_with_http_info(ids, opts)
  data
end

#get_rules_v1_with_http_info(ids, opts = {}) ⇒ Array<(DomainRulesEntitiesResponseV1, Integer, Hash)>

Get monitoring rules based on their IDs. IDs can be retrieved using the GET /queries/rules/v1 endpoint.

Parameters:

• ids (Array<String>) —

  IDs of rules.

• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainRulesEntitiesResponseV1, Integer, Hash)>) —

  DomainRulesEntitiesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 1132

def get_rules_v1_with_http_info(ids, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.get_rules_v1 ...'
  end
  # verify the required parameter 'ids' is set
  if @api_client.config.client_side_validation && ids.nil?
    fail ArgumentError, "Missing the required parameter 'ids' when calling Recon.get_rules_v1"
  end
  # resource path
  local_var_path = '/recon/entities/rules/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'ids'] = @api_client.build_collection_param(ids, :multi)

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'DomainRulesEntitiesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.get_rules_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#get_rules_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#preview_rule_v1(body, opts = {}) ⇒ DomainAggregatesResponse

Preview rules notification count and distribution. This will return aggregations on: channel, count, site.

Parameters:

• body (DomainRulePreviewRequest)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainAggregatesResponse)

# File 'lib/crimson-falcon/api/recon.rb', line 1185

def preview_rule_v1(body, opts = {})
  data, _status_code, _headers = preview_rule_v1_with_http_info(body, opts)
  data
end

#preview_rule_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainAggregatesResponse, Integer, Hash)>

Preview rules notification count and distribution. This will return aggregations on: channel, count, site.

Parameters:

• body (DomainRulePreviewRequest)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainAggregatesResponse, Integer, Hash)>) —

  DomainAggregatesResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 1194

def preview_rule_v1_with_http_info(body, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.preview_rule_v1 ...'
  end
  # verify the required parameter 'body' is set
  if @api_client.config.client_side_validation && body.nil?
    fail ArgumentError, "Missing the required parameter 'body' when calling Recon.preview_rule_v1"
  end
  # resource path
  local_var_path = '/recon/aggregates/rules-preview/GET/v1'

  # query parameters
  query_params = opts[:query_params] || {}

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])
  # HTTP header 'Content-Type'
  content_type = @api_client.select_header_content_type(['application/json'])
  if !content_type.nil?
    header_params['Content-Type'] = content_type
  end

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body] || @api_client.object_to_http_body(body)

  # return_type
  return_type = opts[:debug_return_type] || 'DomainAggregatesResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.preview_rule_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:POST, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#preview_rule_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#query_actions_v1(opts = {}) ⇒ DomainQueryResponse

Query actions based on provided criteria. Use the IDs from this response to get the action entities on GET /entities/actions/v1.

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :offset (Integer) —

  Starting index of overall result set from which to return IDs.

• :limit (Integer) —

  Number of IDs to return. Offset + limit should NOT be above 10K.

• :sort (String) —

  Possible order by fields: created_timestamp, updated_timestamp. Ex: &#39;updated_timestamp|desc&#39;.

• :filter (String) —

  FQL query to filter actions by. Possible filter properties are: [id cid user_uuid rule_id type frequency content_format trigger_matchless recipients status created_timestamp updated_timestamp]

• :q (String) —

  Free text search across all indexed fields

Returns:

• (DomainQueryResponse)

# File 'lib/crimson-falcon/api/recon.rb', line 1255

def query_actions_v1(opts = {})
  data, _status_code, _headers = query_actions_v1_with_http_info(opts)
  data
end

#query_actions_v1_with_http_info(opts = {}) ⇒ Array<(DomainQueryResponse, Integer, Hash)>

Query actions based on provided criteria. Use the IDs from this response to get the action entities on GET /entities/actions/v1.

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :offset (Integer) —

  Starting index of overall result set from which to return IDs.

• :limit (Integer) —

  Number of IDs to return. Offset + limit should NOT be above 10K.

• :sort (String) —

  Possible order by fields: created_timestamp, updated_timestamp. Ex: &#39;updated_timestamp|desc&#39;.

• :filter (String) —

  FQL query to filter actions by. Possible filter properties are: [id cid user_uuid rule_id type frequency content_format trigger_matchless recipients status created_timestamp updated_timestamp]

• :q (String) —

  Free text search across all indexed fields

Returns:

• (Array<(DomainQueryResponse, Integer, Hash)>) —

  DomainQueryResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 1268

def query_actions_v1_with_http_info(opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.query_actions_v1 ...'
  end
  if @api_client.config.client_side_validation && !opts[:'limit'].nil? && opts[:'limit'] > 500
    fail ArgumentError, 'invalid value for "opts[:"limit"]" when calling Recon.query_actions_v1, must be smaller than or equal to 500.'
  end

  if @api_client.config.client_side_validation && !opts[:'limit'].nil? && opts[:'limit'] < 1
    fail ArgumentError, 'invalid value for "opts[:"limit"]" when calling Recon.query_actions_v1, must be greater than or equal to 1.'
  end

  # resource path
  local_var_path = '/recon/queries/actions/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
  query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?
  query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?
  query_params[:'filter'] = opts[:'filter'] if !opts[:'filter'].nil?
  query_params[:'q'] = opts[:'q'] if !opts[:'q'].nil?

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'DomainQueryResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.query_actions_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#query_actions_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#query_notifications_exposed_data_records_v1(opts = {}) ⇒ DomainQueryResponse

Query notifications exposed data records based on provided criteria. Use the IDs from this response to get the notification +entities on GET /entities/notifications-exposed-data-records/v1

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :offset (Integer) —

  Starting index of overall result set from which to return ids.

• :limit (Integer) —

  Number of IDs to return. Offset + limit should NOT be above 10K.

• :sort (String) —

  Possible order by fields: created_date, updated_date. Ex: &#39;updated_date|desc&#39;.

• :filter (String) —

  FQL query to filter notifications by. Possible filter properties are: [id cid user_uuid created_date exposure_date rule.id rule.name rule.topic notification_id notification_group_id source_category site site_id author author_id user_id user_name credentials_url credentials_domain credentials_ip email domain hash_type display_name full_name user_ip phone_number company job_position file.name file.complete_data_set file.download_urls location.postal_code location.city location.state location.federal_district location.federal_admin_region location.country_code social.twitter_id social.facebook_id social.vk_id social.vk_token social.aim_id social.icq_id social.msn_id social.instagram_id social.skype_id financial.credit_card financial.bank_account financial.crypto_currency_addresses login_id credential_status _all bot.operating_system.hardware_id bot.bot_id]

• :q (String) —

  Free text search across all indexed fields.

Returns:

• (DomainQueryResponse)

# File 'lib/crimson-falcon/api/recon.rb', line 1333

def query_notifications_exposed_data_records_v1(opts = {})
  data, _status_code, _headers = query_notifications_exposed_data_records_v1_with_http_info(opts)
  data
end

#query_notifications_exposed_data_records_v1_with_http_info(opts = {}) ⇒ Array<(DomainQueryResponse, Integer, Hash)>

Query notifications exposed data records based on provided criteria. Use the IDs from this response to get the notification +entities on GET /entities/notifications-exposed-data-records/v1

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :offset (Integer) —

  Starting index of overall result set from which to return ids.

• :limit (Integer) —

  Number of IDs to return. Offset + limit should NOT be above 10K.

• :sort (String) —

  Possible order by fields: created_date, updated_date. Ex: &#39;updated_date|desc&#39;.

• :filter (String) —

  FQL query to filter notifications by. Possible filter properties are: [id cid user_uuid created_date exposure_date rule.id rule.name rule.topic notification_id notification_group_id source_category site site_id author author_id user_id user_name credentials_url credentials_domain credentials_ip email domain hash_type display_name full_name user_ip phone_number company job_position file.name file.complete_data_set file.download_urls location.postal_code location.city location.state location.federal_district location.federal_admin_region location.country_code social.twitter_id social.facebook_id social.vk_id social.vk_token social.aim_id social.icq_id social.msn_id social.instagram_id social.skype_id financial.credit_card financial.bank_account financial.crypto_currency_addresses login_id credential_status _all bot.operating_system.hardware_id bot.bot_id]

• :q (String) —

  Free text search across all indexed fields.

Returns:

• (Array<(DomainQueryResponse, Integer, Hash)>) —

  DomainQueryResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 1346

def query_notifications_exposed_data_records_v1_with_http_info(opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.query_notifications_exposed_data_records_v1 ...'
  end
  if @api_client.config.client_side_validation && !opts[:'limit'].nil? && opts[:'limit'] > 500
    fail ArgumentError, 'invalid value for "opts[:"limit"]" when calling Recon.query_notifications_exposed_data_records_v1, must be smaller than or equal to 500.'
  end

  if @api_client.config.client_side_validation && !opts[:'limit'].nil? && opts[:'limit'] < 1
    fail ArgumentError, 'invalid value for "opts[:"limit"]" when calling Recon.query_notifications_exposed_data_records_v1, must be greater than or equal to 1.'
  end

  # resource path
  local_var_path = '/recon/queries/notifications-exposed-data-records/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
  query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?
  query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?
  query_params[:'filter'] = opts[:'filter'] if !opts[:'filter'].nil?
  query_params[:'q'] = opts[:'q'] if !opts[:'q'].nil?

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'DomainQueryResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.query_notifications_exposed_data_records_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#query_notifications_exposed_data_records_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#query_notifications_v1(opts = {}) ⇒ DomainQueryResponse

Query notifications based on provided criteria. Use the IDs from this response to get the notification entities on GET /entities/notifications/v1, GET /entities/notifications-detailed/v1, GET /entities/notifications-translated/v1 or GET /entities/notifications-detailed-translated/v1.

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :offset (Integer) —

  Starting index of overall result set from which to return IDs.

• :limit (Integer) —

  Number of IDs to return. Offset + limit should NOT be above 10K.

• :sort (String) —

  Possible order by fields: &#x60;created_date&#x60;, &#x60;updated_date&#x60;. Ex: &#x60;updated_date|desc&#x60;.

• :filter (String) —

  FQL query to filter notifications by. Possible filter properties are: [id cid user_uuid status rule_id rule_name rule_topic rule_priority item_type item_site typosquatting.id typosquatting.unicode_format typosquatting.punycode_format typosquatting.parent_domain.id typosquatting.parent_domain.unicode_format typosquatting.parent_domain.punycode_format typosquatting.base_domain.id typosquatting.base_domain.unicode_format typosquatting.base_domain.punycode_format typosquatting.base_domain.is_registered typosquatting.base_domain.whois.registrar.name typosquatting.base_domain.whois.registrar.status typosquatting.base_domain.whois.registrant.email typosquatting.base_domain.whois.registrant.name typosquatting.base_domain.whois.registrant.org typosquatting.base_domain.whois.name_servers created_date updated_date assigned_to_uuid breach_summary.credential_statuses breach_summary.is_retroactively_deduped]

• :q (String) —

  Free text search across all indexed fields.

Returns:

• (DomainQueryResponse)

# File 'lib/crimson-falcon/api/recon.rb', line 1411

def query_notifications_v1(opts = {})
  data, _status_code, _headers = query_notifications_v1_with_http_info(opts)
  data
end

#query_notifications_v1_with_http_info(opts = {}) ⇒ Array<(DomainQueryResponse, Integer, Hash)>

Query notifications based on provided criteria. Use the IDs from this response to get the notification entities on GET /entities/notifications/v1, GET /entities/notifications-detailed/v1, GET /entities/notifications-translated/v1 or GET /entities/notifications-detailed-translated/v1.

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :offset (Integer) —

  Starting index of overall result set from which to return IDs.

• :limit (Integer) —

  Number of IDs to return. Offset + limit should NOT be above 10K.

• :sort (String) —

  Possible order by fields: &#x60;created_date&#x60;, &#x60;updated_date&#x60;. Ex: &#x60;updated_date|desc&#x60;.

• :filter (String) —

  FQL query to filter notifications by. Possible filter properties are: [id cid user_uuid status rule_id rule_name rule_topic rule_priority item_type item_site typosquatting.id typosquatting.unicode_format typosquatting.punycode_format typosquatting.parent_domain.id typosquatting.parent_domain.unicode_format typosquatting.parent_domain.punycode_format typosquatting.base_domain.id typosquatting.base_domain.unicode_format typosquatting.base_domain.punycode_format typosquatting.base_domain.is_registered typosquatting.base_domain.whois.registrar.name typosquatting.base_domain.whois.registrar.status typosquatting.base_domain.whois.registrant.email typosquatting.base_domain.whois.registrant.name typosquatting.base_domain.whois.registrant.org typosquatting.base_domain.whois.name_servers created_date updated_date assigned_to_uuid breach_summary.credential_statuses breach_summary.is_retroactively_deduped]

• :q (String) —

  Free text search across all indexed fields.

Returns:

• (Array<(DomainQueryResponse, Integer, Hash)>) —

  DomainQueryResponse data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 1424

def query_notifications_v1_with_http_info(opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.query_notifications_v1 ...'
  end
  if @api_client.config.client_side_validation && !opts[:'limit'].nil? && opts[:'limit'] > 500
    fail ArgumentError, 'invalid value for "opts[:"limit"]" when calling Recon.query_notifications_v1, must be smaller than or equal to 500.'
  end

  if @api_client.config.client_side_validation && !opts[:'limit'].nil? && opts[:'limit'] < 1
    fail ArgumentError, 'invalid value for "opts[:"limit"]" when calling Recon.query_notifications_v1, must be greater than or equal to 1.'
  end

  # resource path
  local_var_path = '/recon/queries/notifications/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
  query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?
  query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?
  query_params[:'filter'] = opts[:'filter'] if !opts[:'filter'].nil?
  query_params[:'q'] = opts[:'q'] if !opts[:'q'].nil?

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'DomainQueryResponse'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.query_notifications_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#query_notifications_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#query_rules_v1(opts = {}) ⇒ DomainRuleQueryResponseV1

Query monitoring rules based on provided criteria. Use the IDs from this response to fetch the rules on /entities/rules/v1.

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :offset (Integer) —

  Starting index of overall result set from which to return IDs.

• :limit (Integer) —

  Number of IDs to return. Offset + limit should NOT be above 10K.

• :sort (String) —

  Possible order by fields: created_timestamp,last_updated_timestamp,permissions,priority,template_priority,topic. Ex: &#x60;last_updated_timestamp|desc&#x60;.

• :filter (String) —

  FQL query to filter rules by. Possible filter properties are: [id cid user_uuid topic priority permissions status filter breach_monitoring_enabled substring_matching_enabled created_timestamp last_updated_timestamp].

• :q (String) —

  Free text search across all indexed fields.

• :secondary_sort (String) —

  Possible order by fields: created_timestamp,last_updated_timestamp,permissions,priority,template_priority,topic. Ex: &#x60;last_updated_timestamp|desc&#x60;.

Returns:

• (DomainRuleQueryResponseV1)

# File 'lib/crimson-falcon/api/recon.rb', line 1490

def query_rules_v1(opts = {})
  data, _status_code, _headers = query_rules_v1_with_http_info(opts)
  data
end

#query_rules_v1_with_http_info(opts = {}) ⇒ Array<(DomainRuleQueryResponseV1, Integer, Hash)>

Query monitoring rules based on provided criteria. Use the IDs from this response to fetch the rules on /entities/rules/v1.

Parameters:

• opts (Hash) (defaults to: {}) —

  the optional parameters

Options Hash (opts):

• :offset (Integer) —

  Starting index of overall result set from which to return IDs.

• :limit (Integer) —

  Number of IDs to return. Offset + limit should NOT be above 10K.

• :sort (String) —

  Possible order by fields: created_timestamp,last_updated_timestamp,permissions,priority,template_priority,topic. Ex: &#x60;last_updated_timestamp|desc&#x60;.

• :filter (String) —

  FQL query to filter rules by. Possible filter properties are: [id cid user_uuid topic priority permissions status filter breach_monitoring_enabled substring_matching_enabled created_timestamp last_updated_timestamp].

• :q (String) —

  Free text search across all indexed fields.

• :secondary_sort (String) —

  Possible order by fields: created_timestamp,last_updated_timestamp,permissions,priority,template_priority,topic. Ex: &#x60;last_updated_timestamp|desc&#x60;.

Returns:

• (Array<(DomainRuleQueryResponseV1, Integer, Hash)>) —

  DomainRuleQueryResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 1504

def query_rules_v1_with_http_info(opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.query_rules_v1 ...'
  end
  if @api_client.config.client_side_validation && !opts[:'limit'].nil? && opts[:'limit'] > 500
    fail ArgumentError, 'invalid value for "opts[:"limit"]" when calling Recon.query_rules_v1, must be smaller than or equal to 500.'
  end

  if @api_client.config.client_side_validation && !opts[:'limit'].nil? && opts[:'limit'] < 1
    fail ArgumentError, 'invalid value for "opts[:"limit"]" when calling Recon.query_rules_v1, must be greater than or equal to 1.'
  end

  # resource path
  local_var_path = '/recon/queries/rules/v1'

  # query parameters
  query_params = opts[:query_params] || {}
  query_params[:'offset'] = opts[:'offset'] if !opts[:'offset'].nil?
  query_params[:'limit'] = opts[:'limit'] if !opts[:'limit'].nil?
  query_params[:'sort'] = opts[:'sort'] if !opts[:'sort'].nil?
  query_params[:'filter'] = opts[:'filter'] if !opts[:'filter'].nil?
  query_params[:'q'] = opts[:'q'] if !opts[:'q'].nil?
  query_params[:'secondarySort'] = opts[:'secondary_sort'] if !opts[:'secondary_sort'].nil?

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body]

  # return_type
  return_type = opts[:debug_return_type] || 'DomainRuleQueryResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.query_rules_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#query_rules_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#update_action_v1(body, opts = {}) ⇒ DomainActionEntitiesResponseV1

Update an action for a monitoring rule.

Parameters:

• body (DomainUpdateActionRequest)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainActionEntitiesResponseV1)

# File 'lib/crimson-falcon/api/recon.rb', line 1566

def update_action_v1(body, opts = {})
  data, _status_code, _headers = update_action_v1_with_http_info(body, opts)
  data
end

#update_action_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainActionEntitiesResponseV1, Integer, Hash)>

Update an action for a monitoring rule.

Parameters:

• body (DomainUpdateActionRequest)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainActionEntitiesResponseV1, Integer, Hash)>) —

  DomainActionEntitiesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 1575

def update_action_v1_with_http_info(body, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.update_action_v1 ...'
  end
  # verify the required parameter 'body' is set
  if @api_client.config.client_side_validation && body.nil?
    fail ArgumentError, "Missing the required parameter 'body' when calling Recon.update_action_v1"
  end
  # resource path
  local_var_path = '/recon/entities/actions/v1'

  # query parameters
  query_params = opts[:query_params] || {}

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])
  # HTTP header 'Content-Type'
  content_type = @api_client.select_header_content_type(['application/json'])
  if !content_type.nil?
    header_params['Content-Type'] = content_type
  end

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body] || @api_client.object_to_http_body(body)

  # return_type
  return_type = opts[:debug_return_type] || 'DomainActionEntitiesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.update_action_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:PATCH, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#update_action_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#update_notifications_v1(body, opts = {}) ⇒ DomainNotificationEntitiesResponseV1

Update notification status or assignee. Accepts bulk requests

Parameters:

• body (Array<DomainUpdateNotificationRequestV1>)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainNotificationEntitiesResponseV1)

# File 'lib/crimson-falcon/api/recon.rb', line 1632

def update_notifications_v1(body, opts = {})
  data, _status_code, _headers = update_notifications_v1_with_http_info(body, opts)
  data
end

#update_notifications_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainNotificationEntitiesResponseV1, Integer, Hash)>

Update notification status or assignee. Accepts bulk requests

Parameters:

• body (Array<DomainUpdateNotificationRequestV1>)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainNotificationEntitiesResponseV1, Integer, Hash)>) —

  DomainNotificationEntitiesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 1641

def update_notifications_v1_with_http_info(body, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.update_notifications_v1 ...'
  end
  # verify the required parameter 'body' is set
  if @api_client.config.client_side_validation && body.nil?
    fail ArgumentError, "Missing the required parameter 'body' when calling Recon.update_notifications_v1"
  end
  # resource path
  local_var_path = '/recon/entities/notifications/v1'

  # query parameters
  query_params = opts[:query_params] || {}

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])
  # HTTP header 'Content-Type'
  content_type = @api_client.select_header_content_type(['application/json'])
  if !content_type.nil?
    header_params['Content-Type'] = content_type
  end

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body] || @api_client.object_to_http_body(body)

  # return_type
  return_type = opts[:debug_return_type] || 'DomainNotificationEntitiesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.update_notifications_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:PATCH, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#update_notifications_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end

#update_rules_v1(body, opts = {}) ⇒ DomainRulesEntitiesResponseV1

Update monitoring rules.

Parameters:

• body (Array<DomainUpdateRuleRequestV1>)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (DomainRulesEntitiesResponseV1)

# File 'lib/crimson-falcon/api/recon.rb', line 1698

def update_rules_v1(body, opts = {})
  data, _status_code, _headers = update_rules_v1_with_http_info(body, opts)
  data
end

#update_rules_v1_with_http_info(body, opts = {}) ⇒ Array<(DomainRulesEntitiesResponseV1, Integer, Hash)>

Update monitoring rules.

Parameters:

• body (Array<DomainUpdateRuleRequestV1>)
• opts (Hash) (defaults to: {}) —

  the optional parameters

Returns:

• (Array<(DomainRulesEntitiesResponseV1, Integer, Hash)>) —

  DomainRulesEntitiesResponseV1 data, response status code and response headers

# File 'lib/crimson-falcon/api/recon.rb', line 1707

def update_rules_v1_with_http_info(body, opts = {})
  if @api_client.config.debugging
    @api_client.config.logger.debug 'Calling API: Recon.update_rules_v1 ...'
  end
  # verify the required parameter 'body' is set
  if @api_client.config.client_side_validation && body.nil?
    fail ArgumentError, "Missing the required parameter 'body' when calling Recon.update_rules_v1"
  end
  # resource path
  local_var_path = '/recon/entities/rules/v1'

  # query parameters
  query_params = opts[:query_params] || {}

  # header parameters
  header_params = opts[:header_params] || {}
  # HTTP header 'Accept' (if needed)
  header_params['Accept'] = @api_client.select_header_accept(['application/json'])
  # HTTP header 'Content-Type'
  content_type = @api_client.select_header_content_type(['application/json'])
  if !content_type.nil?
    header_params['Content-Type'] = content_type
  end

  # form parameters
  form_params = opts[:form_params] || {}

  # http body (model)
  post_body = opts[:debug_body] || @api_client.object_to_http_body(body)

  # return_type
  return_type = opts[:debug_return_type] || 'DomainRulesEntitiesResponseV1'

  # auth_names
  auth_names = opts[:debug_auth_names] || ['oauth2']

  new_options = opts.merge(
    :operation => :"Recon.update_rules_v1",
    :header_params => header_params,
    :query_params => query_params,
    :form_params => form_params,
    :body => post_body,
    :auth_names => auth_names,
    :return_type => return_type
  )

  data, status_code, headers = @api_client.call_api(:PATCH, local_var_path, new_options)
  if @api_client.config.debugging
    @api_client.config.logger.debug "API called: Recon#update_rules_v1\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
  end
  return data, status_code, headers
end