The updateAlert() GraphQL mutation may be used to update an alert in LogScale.

For more information on alerts, see the Alerts documentation page.

Syntax

Below is the syntax for the updateAlert() mutation field:

updateAlert(input: UpdateAlert!): Alert!

Given Datatypes

For the given datatype, updateAlert(), there are several parameters that may be given. Below is a list of them along with their datatypes and a description of each:

Table: UpdateAlert

ParameterTypeRequired[a]DefaultDescription
actions[string]yes List of unique identifiers for actions to fire on query result.
descriptionstring  A description of the alert.
enabledbooleanyes A flag indicating whether the alert is enabled.
idstringyes The unique identifier of the alert.
labels[string]yes Labels attached to the alert.
namestringyes The name of the alert.
queryOwnershipTypeQueryOwnershipTypeyes The ownership of the query run by this alert. If value is User, ownership will be based on the runAsUserId field. See QueryOwnershipType.
queryStartstringyes The start of the relative time interval for the query.
queryStringstringyes The LogScale query to execute.
runAsUserIdstring  The alert will run with the permissions of the user corresponding to this id if the queryOwnershipType field is set to User. If the queryOwnershipType is set to Organization, whilst runAsUserId is set, this will result in an error. If not specified, the alert will run with the permissions of the calling user. It requires the 'ChangeTriggersToRunAsOtherUsers' permission to set this field to a user ID different from the calling user.
throttleFieldstring  The field on which to throttle.
throttleTimeMillislongyes Throttle time in milliseconds.
viewNamestringyes The name of the view of the alert.

[a] Some arguments may be required, as indicated in this column. For some fields, this column indicates that a result will always be returned for it.


Returned Datatypes

The returned datatype Alert has its own parameters. Below is a list of them along with their datatypes and a description of each:

Table: Alert

ParameterTypeRequired[a]DefaultDescription
actionsstringyes List of identifiers for actions to fire on query result.
actionsV2[Action]yes List of unique identifiers for actions to fire on query result. See Action.
allowedActions[AssetAction]yes List of allowed actions. The is a preview; it may be changed. See AssetAction.
assetTypeAssetTypeyes 

The type of asset from an enumerated list. See AssetType.

This parameter has been deprecated and will be removed in version 1.136 of LogScale.

descriptionstring  Description of alert.
displayNamestringyes Name of the alert.
enabledbooleanyes Flag indicating whether the alert is enabled.
idstringyes The identifier of the alert.
isStarredbooleanyes 

Whether the calling user has starred the alert.

This has been deprecated and is no longer in use and has no effect. It will be removed in version 1.213.

labels[string]yes Labels attached to the alert.
lastErrorstring  Last error encountered while running the alert.
lastWarnings[string]yes Last warnings encountered while running the alert.
namestringyes The name of the alert.
packagePackageInstallation  A package installation. See PackageInstallation.
packageIdVersionedPackageSpecifier  The unique identifier of the package installed, if one was used. VersionedPackageSpecifier is a scalar.
queryOwnershipQueryOwnershipyes Ownership of the query run by the alert. See QueryOwnership.
queryStartstringyes Start of the relative time interval for the query.
queryStringstringyes LogScale query to execute.
runAsUserUser  Identifier of user by which the alert is run. See User.
throttleFieldstring  Field on which to throttle alert.
throttleTimeMillislongyes Throttle time in milliseconds.
timeOfLastTriggerlong  UNIX timestamp for when the alert was last triggered.
yamlTemplatestringyes A YAML formatted string that describes the alert.

[a] Some arguments may be required, as indicated in this column. For some fields, this column indicates that a result will always be returned for it.