SecurityEventsConfigInput - Cloud Security API

{"type":"model","meta":{"id":"/apps/pubhub/media/cloud-security-apis-in-eft/83e8a10367d157243cd1c3e478b807cb81262a3d/ac5e908c-3245-3ba5-9e49-5ab5d54d743e","info":{"title":"Cisco Secure Access Third-Party Integrations API","version":"1.0.1","description":"Create and manage the third-party applications integrated with Secure Access.\nSecure Access integrates with third-party applications, which support either REST APIs or Webhooks.","contact":{"name":"Cloud Security Developer Community"}},"security":[{"oauthFlow":[]}],"tags":[{"name":"Integrations","description":"Integration management"},{"name":"Credentials","description":"Credential management"},{"name":"Integration Types","description":"Integration types"},{"name":"Secure Access"}],"x-parser-conf":{"overview":{"markdownPath":"secure-access/reference/admin/third-party-integrations-overview.md","uri":"secure-access-api-reference-third-party-integrations-overview"}},"openapi":"3.0.3","servers":[{"url":"https://api.sse.cisco.com/{basePath}","variables":{"basePath":{"default":"admin/v2"}}}],"securitySchemes":{"oauthFlow":{"type":"oauth2","description":"The client credential flow.","flows":{"clientCredentials":{"tokenUrl":"https://api.sse.cisco.com/auth/v2/token","scopes":{"admin.integrations:write":"Update, delete third-party integrations","admin.integrations:read":"Read third-party integrations"}}}}}},"spec":{"required":["sources","targets"],"type":"object","description":"The properties used to create the security events third-party integration.","additionalProperties":false,"properties":{"connections":{"description":"The list of webhook connections. Each connection defines a webhook and delivery format.","items":{"type":"object","required":["targetId","format"],"properties":{"format":{"description":"The label that describes the format of the outbound security event.","enum":["secureaccess.events.security.splunk-hec.v1","secureaccess.events.security.cloudevents.v1"],"example":"secureaccess.events.security.cloudevents.v1","type":"string","$$ref":"#/components/schemas/format"},"targetId":{"description":"The ID of the Webhook.v1 integration that receives the security events.","example":"webhook.v1:abc123","type":"string","$$ref":"#/components/schemas/targetId"}},"example":{"format":"secureaccess.events.security.cloudevents.v1","targetId":"webhook.v1:abc123"},"$$ref":"#/components/schemas/SecurityEventsConnectionInput"},"type":"array","nullable":true},"sources":{"type":"array","items":{"type":"string","description":"The label for the event source."},"description":"The list of event sources that the system will monitor. Use `all` to monitor all available event sources.","example":["dns","web","ravpn","firewall"]},"targets":{"type":"array","items":{"type":"string","description":"The unique identifier for the webhook.v1 integration."},"description":"The list of unique identifiers for the webhook.v1 integrations.\nThese webhook.v1 integrations will receive the security events from Secure Access.\n**Note:** The list must contain at least one ID for a webhook.v1 integration.","example":["webhook.v1:abc123","webhook.v1:def456"]}},"$$ref":"#/components/schemas/SecurityEventsConfigInput","title":"SecurityEventsConfigInput"}}