updateEmailAction()

API Stability	`Long-Term`

The updateEmailAction() GraphQL mutation may be used to update an email action in LogScale.

For more information on creating email actions, see the Action Type: Email documentation page. You may also want to look at the Actions page for related information.

Syntax

Below is the syntax for the updateEmailAction() mutation field:

graphql

updateEmailAction(
     input: UpdateEmailAction!
   ): EmailAction!

Below is an example of how this mutation field might be used:

Show:

graphql

mutation {
  updateEmailAction( input:
     { viewName: "humio",
       name: "WakeUp",
       id: "TnerUkLClqEQsANYk0ZYh8ZdpKvFXVHL"
       recipients: ["bob@company.com", "ted@company.com" ],
       useProxy: false
    } 
  )
  { name }
}

shell

curl -v -X POST $YOUR_LOGSCALE_URL/graphql \
    -H "Authorization: Bearer $TOKEN" \
    -H "Content-Type: application/json" \
    -d @- << EOF
{"query" : "mutation {
  updateEmailAction( input:
     { viewName: \"humio\",
       name: \"WakeUp\",
       id: \"TnerUkLClqEQsANYk0ZYh8ZdpKvFXVHL\"
       recipients: [\"bob@company.com\", \"ted@company.com\" ],
       useProxy: false
    } 
  )
  { name }
}"
}
EOF

shell

curl -v -X POST $YOUR_LOGSCALE_URL/graphql \
    -H "Authorization: Bearer $TOKEN" \
    -H "Content-Type: application/json" \
    -d @- << EOF
{"query" : "mutation {
  updateEmailAction( input:
     { viewName: \"humio\",
       name: \"WakeUp\",
       id: \"TnerUkLClqEQsANYk0ZYh8ZdpKvFXVHL\"
       recipients: [\"bob@company.com\", \"ted@company.com\" ],
       useProxy: false
    } 
  )
  { name }
}"
}
EOF

shell

curl -v -X POST $YOUR_LOGSCALE_URL/graphql ^
    -H "Authorization: Bearer $TOKEN" ^
    -H "Content-Type: application/json" ^
    -d @'{"query" : "mutation { ^
  updateEmailAction( input: ^
     { viewName: \"humio\", ^
       name: \"WakeUp\", ^
       id: \"TnerUkLClqEQsANYk0ZYh8ZdpKvFXVHL\" ^
       recipients: [\"bob@company.com\", \"ted@company.com\" ], ^
       useProxy: false ^
    }  ^
  ) ^
  { name } ^
}" ^
} '

powershell

curl.exe -X POST 
    -H "Authorization: Bearer $TOKEN"
    -H "Content-Type: application/json"
    -d '{"query" : "mutation {
  updateEmailAction( input:
     { viewName: \"humio\",
       name: \"WakeUp\",
       id: \"TnerUkLClqEQsANYk0ZYh8ZdpKvFXVHL\"
       recipients: [\"bob@company.com\", \"ted@company.com\" ],
       useProxy: false
    } 
  )
  { name }
}"
}'
    "$YOUR_LOGSCALE_URL/graphql"

perl

#!/usr/bin/perl

use HTTP::Request;
use LWP;

my $INGEST_TOKEN = "TOKEN";

my $uri = '$YOUR_LOGSCALE_URL/graphql';

my $json = '{"query" : "mutation {
  updateEmailAction( input:
     { viewName: \"humio\",
       name: \"WakeUp\",
       id: \"TnerUkLClqEQsANYk0ZYh8ZdpKvFXVHL\"
       recipients: [\"bob@company.com\", \"ted@company.com\" ],
       useProxy: false
    } 
  )
  { name }
}"
}';
my $req = HTTP::Request->new("POST", $uri );

$req->header("Authorization" => "Bearer $TOKEN");
$req->header("Content-Type" => "application/json");

$req->content( $json );

my $lwp = LWP::UserAgent->new;

my $result = $lwp->request( $req );

print $result->{"_content"},"\n";

python

#! /usr/local/bin/python3

import requests

url = '$YOUR_LOGSCALE_URL/graphql'
mydata = r'''{"query" : "mutation {
  updateEmailAction( input:
     { viewName: \"humio\",
       name: \"WakeUp\",
       id: \"TnerUkLClqEQsANYk0ZYh8ZdpKvFXVHL\"
       recipients: [\"bob@company.com\", \"ted@company.com\" ],
       useProxy: false
    } 
  )
  { name }
}"
}'''

resp = requests.post(url,
                     data = mydata,
                     headers = {
   "Authorization" : "Bearer $TOKEN",
   "Content-Type" : "application/json"
}
)

print(resp.text)

javascript

const https = require('https');

const data = JSON.stringify(
    {"query" : "mutation {
  updateEmailAction( input:
     { viewName: \"humio\",
       name: \"WakeUp\",
       id: \"TnerUkLClqEQsANYk0ZYh8ZdpKvFXVHL\"
       recipients: [\"bob@company.com\", \"ted@company.com\" ],
       useProxy: false
    } 
  )
  { name }
}"
}
);


const options = {
  hostname: '$YOUR_LOGSCALE_URL/graphql',
  path: '/graphql',
  port: 443,
  method: 'POST',
  headers: {
    'Content-Type': 'application/json',
    'Content-Length': data.length,
    Authorization: 'BEARER ' + process.env.TOKEN,
    'User-Agent': 'Node',
  },
};

const req = https.request(options, (res) => {
  let data = '';
  console.log(`statusCode: ${res.statusCode}`);

  res.on('data', (d) => {
    data += d;
  });
  res.on('end', () => {
    console.log(JSON.parse(data).data);
  });
});

req.on('error', (error) => {
  console.error(error);
});

req.write(data);
req.end();

Example Responses

Show:

json

{
  "data": {
    "updateEmailAction": {
      "name": "WakeUp"
    }
  }
}

Given Datatypes

For updateEmailAction, there are several parameters that may be given. Below is a list of them along with a description of each:

Table: UpdateEmailAction

Parameter	Type	Required	Default	Stability	Description
Some arguments may be required, as indicated in the Required column. For some fields, this column indicates that a result will always be returned for this column.
Table last updated: Mar 28, 2025
`attachCsv`	boolean		false	`Long-Term`	Whether the result set should be be attached as a CSV file.
`bodyTemplate`	string			`Long-Term`	Body of the email. Can be templated with values from the result.
`id`	string	yes		`Long-Term`	The unique identifier of the action.
`name`	string	yes		`Long-Term`	The name of the action.
`recipients`	[string]	yes		`Long-Term`	List of email addresses where to send an email.
`subjectTemplate`	string			`Long-Term`	Subject of the email. Can be templated with values from the result.
`useProxy`	boolean	yes		`Long-Term`	Defines whether the action should use the configured proxy to make web requests.
`viewName`	string	yes		`Long-Term`	The name of the view of the action.

Returned Datatypes

The returned datatype EmailAction has several parameters. Below is a list of them along with a description of each:

Table: EmailAction

Parameter	Type	Required	Stability	Description
Some arguments may be required, as indicated in the Required column. For some fields, this column indicates that a result will always be returned for this column.
Table last updated: Mar 26, 2025
`allowedActions`	[`AssetAction`]	yes	`Preview`	The allowed asset actions. See `AssetAction`. This is a preview feature. Changes may occur.
`attachCsv`	boolean	yes	`Long-Term`	Whether the result set should be attached as a CSV file.
`bodyTemplate`	string		`Long-Term`	Body of the email. Can be templated with values from the result.
`displayName`	string	yes	`Long-Term`	The display name of the action.
`id`	string	yes	`Long-Term`	The unique identifier of the action.
`isAllowedToRun`	boolean	yes	`Long-Term`	False if this type of action is disabled because of a security policy.
`name`	string	yes	`Long-Term`	The name of the action.
`package`	`PackageInstallation`		`Long-Term`	The package which the action is part. See `PackageInstallation`.
`recipients`	[string]	yes	`Long-Term`	List of email addresses to send an email.
`requiresOrganizationOwnedQueriesPermissionToEdit`	boolean	yes	`Long-Term`	True if this action is used by triggers, where the query is run by the organization. If true, then the OrganizationOwnedQueries permission is required to edit the action.
`subjectTemplate`	string		`Long-Term`	Subject of the email. Can be templated with values from the result.
`resource`	string	yes	`Short-Term`	The resource identifier for the action.
`useProxy`	boolean	yes	`Long-Term`	Defines whether the action should use the configured proxy to make web requests.
`yamlTemplate`	`yaml`	yes	`Long-Term`	A template that can be used to recreate the action.

GraphQL Mutations

GraphQL API Stability

GraphQL Queries

GraphQL Datatypes