clusterConfig()

Stability Level

Long-Term

Summary

The clusterConfig() GraphQL query will return information about a cluster configuration. Requires authentication.

Syntax

graphql

clusterConfig: ClusterConfig!

There is no input for this query. You need only specify the values you want returned, such as what's enabled and allowed. See the Returned Values section for details.

Example

Raw

graphql

query {
  clusterConfig { clusterId, 
                  isExternalManaged,
                  personalUserTokensEnabled }
}

Mac OS or Linux (curl)

shell

curl -v -X POST $YOUR_LOGSCALE_URL/graphql \
    -H "Authorization: Bearer $TOKEN" \
    -H "Content-Type: application/json" \
    -d @- << EOF
{"query" : "query {
  clusterConfig { clusterId, 
                  isExternalManaged,
                  personalUserTokensEnabled }
}"
}
EOF

Mac OS or Linux (curl) One-line

shell

curl -v -X POST $YOUR_LOGSCALE_URL/graphql \
    -H "Authorization: Bearer $TOKEN" \
    -H "Content-Type: application/json" \
    -d @- << EOF
{"query" : "query {
  clusterConfig { clusterId, 
                  isExternalManaged,
                  personalUserTokensEnabled }
}"
}
EOF

Windows Cmd and curl

shell

curl -v -X POST $YOUR_LOGSCALE_URL/graphql ^
    -H "Authorization: Bearer $TOKEN" ^
    -H "Content-Type: application/json" ^
    -d @'{"query" : "query { ^
  clusterConfig { clusterId,  ^
                  isExternalManaged, ^
                  personalUserTokensEnabled } ^
}" ^
} '

Windows Powershell and curl

powershell

curl.exe -X POST 
    -H "Authorization: Bearer $TOKEN"
    -H "Content-Type: application/json"
    -d '{"query" : "query {
  clusterConfig { clusterId, 
                  isExternalManaged,
                  personalUserTokensEnabled }
}"
}'
    "$YOUR_LOGSCALE_URL/graphql"

Perl

perl

#!/usr/bin/perl

use HTTP::Request;
use LWP;

my $TOKEN = "TOKEN";

my $uri = '$YOUR_LOGSCALE_URL/graphql';

my $query = "query {
  clusterConfig { clusterId, 
                  isExternalManaged,
                  personalUserTokensEnabled }
}";
$query =~ s/\n/ /g;
my $json = sprintf('{"query" : "%s"}',$query);
my $req = HTTP::Request->new("POST", $uri );

$req->header("Authorization" => "Bearer $TOKEN");
$req->header("Content-Type" => "application/json");

$req->content( $json );

my $lwp = LWP::UserAgent->new;

my $result = $lwp->request( $req );

print $result->{"_content"},"\n";

Python

python

#! /usr/local/bin/python3

import requests

url = '$YOUR_LOGSCALE_URL/graphql'
mydata = r'''{"query" : "query {
  clusterConfig { clusterId, 
                  isExternalManaged,
                  personalUserTokensEnabled }
}"
}'''

resp = requests.post(url,
                     data = mydata,
                     headers = {
   "Authorization" : "Bearer $TOKEN",
   "Content-Type" : "application/json"
}
)

print(resp.text)

Node.js

javascript

const https = require('https');

const data = JSON.stringify(
    {"query" : "query {
  clusterConfig { clusterId, 
                  isExternalManaged,
                  personalUserTokensEnabled }
}"
}
);


const options = {
  hostname: '$YOUR_LOGSCALE_URL',
  path: 'graphql',
  port: 443,
  method: 'POST',
  headers: {
    'Content-Type': 'application/json',
    'Content-Length': data.length,
    Authorization: 'BEARER ' + process.env.TOKEN,
    'User-Agent': 'Node',
  },
};

const req = https.request(options, (res) => {
  let data = '';
  console.log(`statusCode: ${res.statusCode}`);

  res.on('data', (d) => {
    data += d;
  });
  res.on('end', () => {
    console.log(JSON.parse(data).data);
  });
});

req.on('error', (error) => {
  console.error(error);
});

req.write(data);
req.end();

Example Responses

Success (HTTP Response Code 200 OK)

json

{
  "data": {
    "clusterConfig": {
      "clusterId": "123",
      "isExternalManaged": "false",
      "personalUserTokensEnabled": "true"
    }
  }
}

Returned Values

For the results, there are a few returned values possible. They mostly involve what's enabled and permitted. Your choices are listed below along with descriptions of each:

Table: ClusterConfig Datatype

Parameter	Type	Required	Stability	Description
Some input parameters may be required, as indicated in the Required column. For return values, this indicates that you are assured a value if the field is requested for the results.
Table last updated: Jun 23, 2026
`allowActionsNotUseProxy`	boolean	yes	`Long-Term`	Whether to allow actions not using proxy (i.e., value of `HTTP_PROXY_ALLOW_ACTIONS_NOT_USE`).
`awsRegions`	[string]	yes	`Long-Term`	A list of supported AWS regions.
`clusterId`	string	yes	`Long-Term`	The unique identifier of the cluster.
`deleteBackupAfter`	long	yes	`Long-Term`	The time in milliseconds after which a repository has been marked for deletion and will no longer be restorable.
`externalGroupSynchronization`	boolean	yes	`Short-Term`	Whether external group synchronization is enabled.
`externalPermissions`	boolean	yes	`Long-Term`	Whether there are external permissions.
`falconDataConnectorUrl`	string		`Short-Term`	The URL of the Falcon data connector.
`globalAllowListEmailActionsEnabled`	boolean	yes	`Long-Term`	Whether the global allow list email actions are enabled.
`ingestFeedAwsRoleArn`	string		`Long-Term`	Cluster AWS IAM role arn (Amazon Resource Name) used to assume role for ingest feeds.
`ingestFeedConfigurations`	`IngestFeedConfiguration`	yes	`Long-Term`	Shows the current configuration for ingest feeds. See IngestFeedConfiguration.
`isApiExplorerEnabled`	boolean	yes	`Short-Term`	Whether the API Explorer is enabled.
`isAutomaticUpdateCheckingEnabled`	boolean	yes	`Long-Term`	Whether automatic update checking enabled.
`isClusterBeingUpdated`	boolean	yes	`Short-Term`	An indication whether or not the cluster is being updated. This is based off of differences in the cluster node versions.
`isExternalManaged`	boolean	yes	`Short-Term`	Whether the account is externally managed.
`isFeatureFlagEnabled(feature: FeatureFlag!): boolean`	multiple		`Short-Term`	Returns enabled features that are likely in beta. See FeatureFlag.
`isScheduledReportEnabled`	boolean	yes	`Short-Term`	Whether the scheduled report is enabled.
`isUsingSmtp`	boolean	yes	`Long-Term`	Whether LogScale is using SMTP.
`maxCsvFileUploadSizeBytes`	long	yes	`Short-Term`	The maximum CSV (i.e., comma-separated values) file upload size in bytes.
`maxJsonFileUploadSizeBytes`	long	yes	`Short-Term`	The maximum JSON (i.e., JavaScript Object Notation) file upload size in bytes.
`minimumNodeVersion`	string	yes	`Short-Term`	The lowest detected node version in the cluster.
`personalUserTokensEnabled`	boolean	yes	`Short-Term`	Whether the personal user tokens are enabled.
`sandboxesEnabled`	boolean	yes	`Short-Term`	Whether sandbox repositories are enabled.
`scheduledSearchMaxBackfillLimit`	integer		`Long-Term`	The scheduled search maximum backfill limit (i.e., value of `SCHEDULED_SEARCH_BACKFILL_LIMIT`).
`sharedDashboardsEnabled`	boolean	yes	`Short-Term`	Whether the shared dashboards are enabled.
`version`	string	yes	`Long-Term`	The version of Falcon LogScale.

Versions of this Page

GraphQL Queries

GraphQL API

GraphQL API Stability

GraphQL Mutations

GraphQL Datatypes

clusterConfig()

Summary

Syntax

Example

Returned Values

Enter search term

GraphQL Queries

GraphQL API

GraphQL API Stability

GraphQL Mutations

GraphQL Datatypes

clusterConfig()

Summary

Related

Syntax

Example

Returned Values

Enter search term