updateEmailAction()

Summary

An email action contains a variety of settings. You may find that you want to change some of these values, such as the subject and content of the emails to be more succinct or for more clarity. You may want to change the list of email recipients — maybe add someone or remove others. You can use the updateEmailAction() GraphQL mutation to make changes to an email action.

When you have too many changes to make, you might use deleteActionV2() to delete an email action and create a new one with the createEmailAction() mutation. To test the parameters of an email action, there is the testEmailAction() mutation, but it's not used to test an existing email action. You can add labels to actions with the addActionLabels() mutation.

Hide Query Example

Show Email Actions Query

To get a list of email actions for a repository, you could use the repository() query like so:

graphql

query {
     repository(name: "humio")
        { id, name,
          actions { id, name, 
                    ... on EmailAction { recipients } }
          }
   }

The results of this question will include the unique identifiers of the actions. You'll need that to update them.

For more information on creating email actions, see the Action Type: Email documentation page. You may also want to look at the Actions page for related information.

API Stability	`Long-Term`
Security Requirement & Control	`CreateActions` API permission

Syntax

graphql

updateEmailAction(
     input: UpdateEmailAction!
   ): EmailAction!

For the input, you'll have to give the unique identifier of the email action to change, all the email addresses of the recipients again, indicate whether to use a proxy, and the name of the respository or view associated with the action. Click on Show Query above to find the identifier. See the Input Parameters section farther down this page for more parameters and explanations.

For the results, you can get information on the action. See the Returned Values section for a list of choices.

Example

Raw

graphql

mutation {
  updateEmailAction( input:
     { viewName: "humio",
       name: "WakeUp",
       id: "abc123"
       recipients: ["bob@company.com", "ted@company.com" ],
       useProxy: false
    } 
  )
  { name }
}

Mac OS or Linux (curl)

shell

curl -v -X POST $YOUR_LOGSCALE_URL/graphql \
    -H "Authorization: Bearer $TOKEN" \
    -H "Content-Type: application/json" \
    -d @- << EOF
{"query" : "mutation {
  updateEmailAction( input:
     { viewName: \"humio\",
       name: \"WakeUp\",
       id: \"abc123\"
       recipients: [\"bob@company.com\", \"ted@company.com\" ],
       useProxy: false
    } 
  )
  { name }
}"
}
EOF

Mac OS or Linux (curl) One-line

shell

curl -v -X POST $YOUR_LOGSCALE_URL/graphql \
    -H "Authorization: Bearer $TOKEN" \
    -H "Content-Type: application/json" \
    -d @- << EOF
{"query" : "mutation {
  updateEmailAction( input:
     { viewName: \"humio\",
       name: \"WakeUp\",
       id: \"abc123\"
       recipients: [\"bob@company.com\", \"ted@company.com\" ],
       useProxy: false
    } 
  )
  { name }
}"
}
EOF

Windows Cmd and curl

shell

curl -v -X POST $YOUR_LOGSCALE_URL/graphql ^
    -H "Authorization: Bearer $TOKEN" ^
    -H "Content-Type: application/json" ^
    -d @'{"query" : "mutation { ^
  updateEmailAction( input: ^
     { viewName: \"humio\", ^
       name: \"WakeUp\", ^
       id: \"abc123\" ^
       recipients: [\"bob@company.com\", \"ted@company.com\" ], ^
       useProxy: false ^
    }  ^
  ) ^
  { name } ^
}" ^
} '

Windows Powershell and curl

powershell

curl.exe -X POST 
    -H "Authorization: Bearer $TOKEN"
    -H "Content-Type: application/json"
    -d '{"query" : "mutation {
  updateEmailAction( input:
     { viewName: \"humio\",
       name: \"WakeUp\",
       id: \"abc123\"
       recipients: [\"bob@company.com\", \"ted@company.com\" ],
       useProxy: false
    } 
  )
  { name }
}"
}'
    "$YOUR_LOGSCALE_URL/graphql"

Perl

perl

#!/usr/bin/perl

use HTTP::Request;
use LWP;

my $TOKEN = "TOKEN";

my $uri = '$YOUR_LOGSCALE_URL/graphql';

my $query = "mutation {
  updateEmailAction( input:
     { viewName: \"humio\",
       name: \"WakeUp\",
       id: \"abc123\"
       recipients: [\"bob@company.com\", \"ted@company.com\" ],
       useProxy: false
    } 
  )
  { name }
}";
$query =~ s/\n/ /g;
my $json = sprintf('{"query" : "%s"}',$query);
my $req = HTTP::Request->new("POST", $uri );

$req->header("Authorization" => "Bearer $TOKEN");
$req->header("Content-Type" => "application/json");

$req->content( $json );

my $lwp = LWP::UserAgent->new;

my $result = $lwp->request( $req );

print $result->{"_content"},"\n";

Python

python

#! /usr/local/bin/python3

import requests

url = '$YOUR_LOGSCALE_URL/graphql'
mydata = r'''{"query" : "mutation {
  updateEmailAction( input:
     { viewName: \"humio\",
       name: \"WakeUp\",
       id: \"abc123\"
       recipients: [\"bob@company.com\", \"ted@company.com\" ],
       useProxy: false
    } 
  )
  { name }
}"
}'''

resp = requests.post(url,
                     data = mydata,
                     headers = {
   "Authorization" : "Bearer $TOKEN",
   "Content-Type" : "application/json"
}
)

print(resp.text)

Node.js

javascript

const https = require('https');

const data = JSON.stringify(
    {"query" : "mutation {
  updateEmailAction( input:
     { viewName: \"humio\",
       name: \"WakeUp\",
       id: \"abc123\"
       recipients: [\"bob@company.com\", \"ted@company.com\" ],
       useProxy: false
    } 
  )
  { name }
}"
}
);


const options = {
  hostname: '$YOUR_LOGSCALE_URL',
  path: 'graphql',
  port: 443,
  method: 'POST',
  headers: {
    'Content-Type': 'application/json',
    'Content-Length': data.length,
    Authorization: 'BEARER ' + process.env.TOKEN,
    'User-Agent': 'Node',
  },
};

const req = https.request(options, (res) => {
  let data = '';
  console.log(`statusCode: ${res.statusCode}`);

  res.on('data', (d) => {
    data += d;
  });
  res.on('end', () => {
    console.log(JSON.parse(data).data);
  });
});

req.on('error', (error) => {
  console.error(error);
});

req.write(data);
req.end();

Example Responses

Success (HTTP Response Code 200 OK)

json

{
  "data": {
    "updateEmailAction": {
      "name": "WakeUp"
    }
  }
}

Input Parameters

For the input, there are several parameters that you have to give. The table indicates which are required. Click on the Show Query link above the Syntax section for an example of how to get the email action identifiers.

Table: UpdateEmailAction Input Datatype

Parameter	Type	Required	Default	Stability	Description
Some input parameters may be required, as indicated in the Required column. For return values, this indicates that you are assured a value if the field is requested for the results.
Table last updated: Mar 25, 2026
attachCsv	boolean		false	`Long-Term`	Whether the result set should be be attached as a CSV file.
bodyTemplate	string			`Long-Term`	The body of the email. This can be templated with values from the result.
id	string	yes		`Long-Term`	The unique identifier of the action.
labels	[string]			`Long-Term`	A set of labels by which to categorize the action.
name	string	yes		`Long-Term`	The name of the action.
recipients	[string]	yes		`Long-Term`	List of email addresses where to send an email.
subjectTemplate	string			`Long-Term`	Subject of the email. Can be templated with values from the result.
useProxy	boolean	yes		`Long-Term`	Defines whether the action should use the configured proxy to make web requests.
viewName	string	yes		`Long-Term`	The name of the view of the action.

Returned Values

For the results, you can get a list of allowed actions, when the action was created and modified last and by whom, and other items. Check the table below for what you can request:

Table: EmailAction Datatype

Parameter	Type	Required	Stability	Description
Some input parameters may be required, as indicated in the Required column. For return values, this indicates that you are assured a value if the field is requested for the results.
Table last updated: Sep 30, 2025
allowedActions	[AssetAction]	yes	`Short-Term`	The allowed asset actions. See AssetAction . This is a preview feature. Changes may occur.
attachCsv	boolean	yes	`Long-Term`	Whether the result set should be attached as a CSV file.
bodyTemplate	string		`Long-Term`	Body of the email. Can be templated with values from the result.
createdInfo	AssetCommitMetadata		`Long-Term`	Metadata related to the creation of the action. See AssetCommitMetadata.
displayName	string	yes	`Long-Term`	The display name of the action.
id	string	yes	`Long-Term`	The unique identifier of the action.
isAllowedToRun	boolean	yes	`Long-Term`	False if this type of action is disabled because of a security policy.
labels	[string]		`Preview`	The labels associated with the action, if any.
modifiedInfo	AssetCommitMetadata		`Long-Term`	Metadata related to the latest modification of the action. See AssetCommitMetadata.
name	string	yes	`Long-Term`	The name of the action.
package	PackageInstallation		`Long-Term`	The package which the action is part. See PackageInstallation.
packageId	VersionedPackageSpecifier		`Long-Term`	The package version. VersionedPackageSpecifier is a scalar.
recipients	[string]	yes	`Long-Term`	List of email addresses to send an email.
requiresOrganizationOwnedQueriesPermissionToEdit	boolean	yes	`Long-Term`	True if this action is used by triggers, where the query is run by the organization. If true, then the OrganizationOwnedQueries permission is required to edit the action.
resource	string	yes	`Short-Term`	The resource identifier for the action.
subjectTemplate	string		`Long-Term`	Subject of the email. Can be templated with values from the result.
useProxy	boolean	yes	`Long-Term`	Defines whether the action should use the configured proxy to make web requests.
yamlTemplate	YAML	yes	`Long-Term`	A template that can be used to recreate the action. YAML is a scalar.

Versions of this Page

GraphQL Mutations

GraphQL API

GraphQL API Stability

GraphQL Queries

GraphQL Datatypes