Response example for the Get Incidents API

Documentation | Support

Go to the table of contents

Go to the previous page

Go to the next page

View or print as PDF

REST APIs > Get Incidents API > Response example for the Get Incidents API

Response example for the Get Incidents API

This section shows an example of a response from this API. For more information about each parameter shown in the response, see Response output for the Get Incidents API.

"severity": "HIGH",

"action": "RELEASED",

"status": "Closed",

"email_address": test2@aaa.com

"event_id": "7728775614896485765",

"maximum_matches": 13,

"transaction_size": 2632,

"analyzed_by": "Policy Engine 1272021",

"ignored_incidents": false,

"event_time": "19/10/2021 10:12:02",

"incident_time": "19/10/2021 10:12:02",

"channel": "EMAIL",

"policies": "Credit Cards; PCI",

"partition_index": 20211019,

"destination": aaa@aaa.net,

"detected_by": "Protector on 1272021",

"details": "Automatic Email Subject with <keyword>",

"released_incident": true,

"violation_triggers": 2,

"file_name": "visa.txt - 1.09 KB"

"total_count": 1,

"total_returned": 1

If no incidents were found, the response returns a 420 error code along with a response similar to the following:

"incidents": [],

"total_count": 0,

"total_returned": 0,

"not_found_ids": [

Go to the table of contents

Go to the previous page

Go to the next page

View or print as PDF

REST APIs > Get Incidents API > Response example for the Get Incidents API

Copyright 2021 Forcepoint. All rights reserved.