TIDE bulk export service endpoints
The TIDE bulk data export API allows for the accessing of active threats using the TIDE API and running the TIDE bulk data export API.
- To access active threats, use tide/api/data/threats/state/ and specify a provider organization using the "profile" query string parameter.
- The TIDE bulk data export API requires an endpoint to fetch the bulk threat data and allows specifying the “rlimit” query string parameter for limiting returned records. Note: The rlimit is set to a maximum of 100 responses.
- The authorization for this process is via the gateway, and the expected response is 200 OK with a file location provided.
Request:
GET /tide/bulk-export/threats?type=<type>&rlimit=<limit> |
Headers:
AuthContext
Note: This authorization is via the gateway.
Expected response:
200 OK
{ |
The file will be internally uploaded to an S3 bucket specifically dedicated to the client, using the file-id as the object name.
Sample request:
GET 'https://csp.infoblox.com/tide/api/data/bulk-export/threats?rlimit=10&type=host' |
Sample response:
"data_stream_location": "https://csp.infoblox.com/tide/api/data/bulk-export/data-stream?file_id=ba06742e-8006-4171-89b0-29a641dc04f0" |
Note: Run the call again, this time using only the file id (ba06742e-8006-4171-89b0-29a641dc04f0)
""file_uploaded": true, |
Note: When the generated url is clicked, the file can be directly updated.
Note | ||
---|---|---|
| ||
|
Note | ||
---|---|---|
| ||
|
Endpoint to access the threat data from the uploaded file
Sample request:
GET 'https://csp.infoblox.com/tide/bulk-export/file-access/<file-id≥ |
Response from tide
{ { |
{ } |
Note: Implementing Endpoint Handlers in Tide-ng-atk-gateway and Managing Redirection for File Access.
Note | ||
---|---|---|
| ||
|