Get query node destinations

GetAssessmentQueryDestinationNodes returns details about related destination nodes for an individual result, specified by source_node_id. returns source nodes.

To return results, the query must specify a related entity type and cannot use the no_relation option.

Sample request:

curl -X 'GET' \
"$BASE_URL/api/v1/assessments/queries/06799e24-cd93-4509-94bc-f00b27ed5e3c/destination_nodes?source_node_id=00upa6s0hSGtl1eGL5d5" \
-H "authorization: Bearer $VEZA_TOKEN"

Sample response:

{
  "values": [
    {
      "id": "arn:aws:s3:::cai-demo-bucket",
      "type": "S3Bucket",
      "properties": {
        "allows_acls": true,
        "aws_account_id": "973979857296",
        "block_public_access_enabled": true,
        "block_public_acls": true,
        "block_public_policy": true,
        "created_at": "2021-02-24T18:09:03Z",
        "datasource_id": "973979857296:s3",
        "default_encryption_enabled": true,
        "default_retention_mode": "DISABLED",
        "hosts_website": false,
        "ignore_public_acls": true,
        "name": "cai-demo-bucket",
        "object_lock_enabled": false,
        "object_ownership_controls": "ObjectWriter",
        "provider_id": "973979857296",
        "region": "us-east-2",
        "replication_rules_count": 0,
        "request_payer": "BucketOwner",
        "restrict_public_buckets": true,
        "server_access_logs_enabled": false
      },
      "destination_node_count": 0,
      "permissions": [
        {
          "id": "arn:aws:iam::973979857296:role/FederatedS3::eperm::973979857296/S3Bucket/9dab031e9731890b97dca09469ceaa68a23437b0",
          "type": "AwsIamEffectivePermission",
          "properties": {
            "aws_account_id": "973979857296",
            "datasource_id": "973979857296::eperm::973979857296:s3",
            "name": "Read,Metadata,NonData",
            "permissions": [
              "s3:GetAccelerateConfiguration",
              "s3:GetAnalyticsConfiguration",
              "s3:GetBucketAcl",
              "s3:GetBucketCORS",
              "s3:GetBucketLocation",
              "s3:GetBucketLogging",
              "s3:GetBucketNotification",
              "s3:GetBucketObjectLockConfiguration",
              "s3:GetBucketPolicy",
              "s3:GetBucketPolicyStatus",
              "s3:GetBucketPublicAccessBlock",
              "s3:GetBucketRequestPayment",
              "s3:GetBucketTagging",
              "s3:GetBucketVersioning",
              "s3:GetBucketWebsite",
              "s3:GetEncryptionConfiguration",
              "s3:GetInventoryConfiguration",
              "s3:GetLifecycleConfiguration",
              "s3:GetMetricsConfiguration",
              "s3:GetObject",
              "s3:GetObjectAcl",
              "s3:GetObjectLegalHold",
              "s3:GetObjectRetention",
              "s3:GetObjectTagging",
              "s3:GetObjectTorrent",
              "s3:GetObjectVersion",
              "s3:GetObjectVersionAcl",
              "s3:GetObjectVersionForReplication",
              "s3:GetObjectVersionTagging",
              "s3:GetObjectVersionTorrent",
              "s3:GetReplicationConfiguration",
              "s3:ListBucket",
              "s3:ListBucketMultipartUploads",
              "s3:ListBucketVersions",
              "s3:ListMultipartUploadParts"
            ],
            "provider_id": "973979857296"
          },
          "destination_node_count": 0,
          "permissions": [],
          "engagement_access_stats": null,
          "access_stats": null,
          "destination_node_ids": [],
          "risk_level": "NONE",
          "raw_permissions": [],
          "effective_permissions": []
        },
        {
          "id": "arn:aws:iam::973979857296:role/FederatedRedshiftAndS3::eperm::973979857296/S3Bucket/9dab031e9731890b97dca09469ceaa68a23437b0",
          "type": "AwsIamEffectivePermission",
          "properties": {
            "aws_account_id": "973979857296",
            "datasource_id": "973979857296::eperm::973979857296:s3",
            "name": "Read,Metadata,NonData",
            "permissions": [
              "s3:GetAccelerateConfiguration",
              "s3:GetAnalyticsConfiguration",
              "s3:GetBucketAcl",
              "s3:GetBucketCORS",
              "s3:GetBucketLocation",
              "s3:GetBucketLogging",
              "s3:GetBucketNotification",
              "s3:GetBucketObjectLockConfiguration",
              "s3:GetBucketPolicy",
              "s3:GetBucketPolicyStatus",
              "s3:GetBucketPublicAccessBlock",
              "s3:GetBucketRequestPayment",
              "s3:GetBucketTagging",
              "s3:GetBucketVersioning",
              "s3:GetBucketWebsite",
              "s3:GetEncryptionConfiguration",
              "s3:GetInventoryConfiguration",
              "s3:GetLifecycleConfiguration",
              "s3:GetMetricsConfiguration",
              "s3:GetObject",
              "s3:GetObjectAcl",
              "s3:GetObjectLegalHold",
              "s3:GetObjectRetention",
              "s3:GetObjectTagging",
              "s3:GetObjectTorrent",
              "s3:GetObjectVersion",
              "s3:GetObjectVersionAcl",
              "s3:GetObjectVersionForReplication",
              "s3:GetObjectVersionTagging",
              "s3:GetObjectVersionTorrent",
              "s3:GetReplicationConfiguration",
              "s3:ListBucket",
              "s3:ListBucketMultipartUploads",
              "s3:ListBucketVersions",
              "s3:ListMultipartUploadParts"
            ],
            "provider_id": "973979857296"
          },
          "destination_node_count": 0,
          "permissions": [],
          "engagement_access_stats": null,
          "access_stats": null,
          "destination_node_ids": [],
          "risk_level": "NONE",
          "raw_permissions": [],
          "effective_permissions": []
        }
      ],
      "engagement_access_stats": null,
      "access_stats": null,
      "destination_node_ids": [],
      "risk_level": "NONE",
      "raw_permissions": [
        "s3:GetAccelerateConfiguration",
        "s3:GetAnalyticsConfiguration",
        "s3:GetBucketAcl",
        "s3:GetBucketCORS",
        "s3:GetBucketLocation",
        "s3:GetBucketLogging",
        "s3:GetBucketNotification",
        "s3:GetBucketObjectLockConfiguration",
        "s3:GetBucketPolicy",
        "s3:GetBucketPolicyStatus",
        "s3:GetBucketPublicAccessBlock",
        "s3:GetBucketRequestPayment",
        "s3:GetBucketTagging",
        "s3:GetBucketVersioning",
        "s3:GetBucketWebsite",
        "s3:GetEncryptionConfiguration",
        "s3:GetInventoryConfiguration",
        "s3:GetLifecycleConfiguration",
        "s3:GetMetricsConfiguration",
        "s3:GetObject",
        "s3:GetObjectAcl",
        "s3:GetObjectLegalHold",
        "s3:GetObjectRetention",
        "s3:GetObjectTagging",
        "s3:GetObjectTorrent",
        "s3:GetObjectVersion",
        "s3:GetObjectVersionAcl",
        "s3:GetObjectVersionForReplication",
        "s3:GetObjectVersionTagging",
        "s3:GetObjectVersionTorrent",
        "s3:GetReplicationConfiguration",
        "s3:ListBucket",
        "s3:ListBucketMultipartUploads",
        "s3:ListBucketVersions",
        "s3:ListMultipartUploadParts"
      ],
      "effective_permissions": [
        "Metadata",
        "NonData",
        "Read"
      ]
    }
  ],
  "path_values": [],
  "next_page_token": "",
  "has_more": false
}

PreviousDelete a query NextGet query nodes

Last updated 1 year ago

Was this helpful?

{ "values": [ { "id": "arn:aws:s3:::cai-demo-bucket", "type": "S3Bucket", "properties": { "allows_acls": true, "aws_account_id": "973979857296", "block_public_access_enabled": true, "block_public_acls": true, "block_public_policy": true, "created_at": "2021-02-24T18:09:03Z", "datasource_id": "973979857296:s3", "default_encryption_enabled": true, "default_retention_mode": "DISABLED", "hosts_website": false, "ignore_public_acls": true, "name": "cai-demo-bucket", "object_lock_enabled": false, "object_ownership_controls": "ObjectWriter", "provider_id": "973979857296", "region": "us-east-2", "replication_rules_count": 0, "request_payer": "BucketOwner", "restrict_public_buckets": true, "server_access_logs_enabled": false }, "destination_node_count": 0, "permissions": [ { "id": "arn:aws:iam::973979857296:role/FederatedS3::eperm::973979857296/S3Bucket/9dab031e9731890b97dca09469ceaa68a23437b0", "type": "AwsIamEffectivePermission", "properties": { "aws_account_id": "973979857296", "datasource_id": "973979857296::eperm::973979857296:s3", "name": "Read,Metadata,NonData", "permissions": [ "s3:GetAccelerateConfiguration", "s3:GetAnalyticsConfiguration", "s3:GetBucketAcl", "s3:GetBucketCORS", "s3:GetBucketLocation", "s3:GetBucketLogging", "s3:GetBucketNotification", "s3:GetBucketObjectLockConfiguration", "s3:GetBucketPolicy", "s3:GetBucketPolicyStatus", "s3:GetBucketPublicAccessBlock", "s3:GetBucketRequestPayment", "s3:GetBucketTagging", "s3:GetBucketVersioning", "s3:GetBucketWebsite", "s3:GetEncryptionConfiguration", "s3:GetInventoryConfiguration", "s3:GetLifecycleConfiguration", "s3:GetMetricsConfiguration", "s3:GetObject", "s3:GetObjectAcl", "s3:GetObjectLegalHold", "s3:GetObjectRetention", "s3:GetObjectTagging", "s3:GetObjectTorrent", "s3:GetObjectVersion", "s3:GetObjectVersionAcl", "s3:GetObjectVersionForReplication", "s3:GetObjectVersionTagging", "s3:GetObjectVersionTorrent", "s3:GetReplicationConfiguration", "s3:ListBucket", "s3:ListBucketMultipartUploads", "s3:ListBucketVersions", "s3:ListMultipartUploadParts" ], "provider_id": "973979857296" }, "destination_node_count": 0, "permissions": [], "engagement_access_stats": null, "access_stats": null, "destination_node_ids": [], "risk_level": "NONE", "raw_permissions": [], "effective_permissions": [] }, { "id": "arn:aws:iam::973979857296:role/FederatedRedshiftAndS3::eperm::973979857296/S3Bucket/9dab031e9731890b97dca09469ceaa68a23437b0", "type": "AwsIamEffectivePermission", "properties": { "aws_account_id": "973979857296", "datasource_id": "973979857296::eperm::973979857296:s3", "name": "Read,Metadata,NonData", "permissions": [ "s3:GetAccelerateConfiguration", "s3:GetAnalyticsConfiguration", "s3:GetBucketAcl", "s3:GetBucketCORS", "s3:GetBucketLocation", "s3:GetBucketLogging", "s3:GetBucketNotification", "s3:GetBucketObjectLockConfiguration", "s3:GetBucketPolicy", "s3:GetBucketPolicyStatus", "s3:GetBucketPublicAccessBlock", "s3:GetBucketRequestPayment", "s3:GetBucketTagging", "s3:GetBucketVersioning", "s3:GetBucketWebsite", "s3:GetEncryptionConfiguration", "s3:GetInventoryConfiguration", "s3:GetLifecycleConfiguration", "s3:GetMetricsConfiguration", "s3:GetObject", "s3:GetObjectAcl", "s3:GetObjectLegalHold", "s3:GetObjectRetention", "s3:GetObjectTagging", "s3:GetObjectTorrent", "s3:GetObjectVersion", "s3:GetObjectVersionAcl", "s3:GetObjectVersionForReplication", "s3:GetObjectVersionTagging", "s3:GetObjectVersionTorrent", "s3:GetReplicationConfiguration", "s3:ListBucket", "s3:ListBucketMultipartUploads", "s3:ListBucketVersions", "s3:ListMultipartUploadParts" ], "provider_id": "973979857296" }, "destination_node_count": 0, "permissions": [], "engagement_access_stats": null, "access_stats": null, "destination_node_ids": [], "risk_level": "NONE", "raw_permissions": [], "effective_permissions": [] } ], "engagement_access_stats": null, "access_stats": null, "destination_node_ids": [], "risk_level": "NONE", "raw_permissions": [ "s3:GetAccelerateConfiguration", "s3:GetAnalyticsConfiguration", "s3:GetBucketAcl", "s3:GetBucketCORS", "s3:GetBucketLocation", "s3:GetBucketLogging", "s3:GetBucketNotification", "s3:GetBucketObjectLockConfiguration", "s3:GetBucketPolicy", "s3:GetBucketPolicyStatus", "s3:GetBucketPublicAccessBlock", "s3:GetBucketRequestPayment", "s3:GetBucketTagging", "s3:GetBucketVersioning", "s3:GetBucketWebsite", "s3:GetEncryptionConfiguration", "s3:GetInventoryConfiguration", "s3:GetLifecycleConfiguration", "s3:GetMetricsConfiguration", "s3:GetObject", "s3:GetObjectAcl", "s3:GetObjectLegalHold", "s3:GetObjectRetention", "s3:GetObjectTagging", "s3:GetObjectTorrent", "s3:GetObjectVersion", "s3:GetObjectVersionAcl", "s3:GetObjectVersionForReplication", "s3:GetObjectVersionTagging", "s3:GetObjectVersionTorrent", "s3:GetReplicationConfiguration", "s3:ListBucket", "s3:ListBucketMultipartUploads", "s3:ListBucketVersions", "s3:ListMultipartUploadParts" ], "effective_permissions": [ "Metadata", "NonData", "Read" ] } ], "path_values": [], "next_page_token": "", "has_more": false }

{ "values": [ { "id": "text", "type": "text", "properties": {}, "destination_node_count": 1, "permissions": [ { "id": "text", "type": "text", "properties": {}, "destination_node_count": 1, "permissions": [ "[Circular Reference]" ], "engagement_access_stats": { "engagement_score": 1, "over_provisioned_score": 1, "total_count": "text", "accessed_count": "text" }, "access_stats": { "last_used": "2025-05-29T08:42:30.913Z", "count": 1, "concrete_permissions": [ "text" ], "canonical_permissions": [ "text" ] }, "destination_node_ids": [ "text" ], "risk_level": "NONE", "raw_permissions": [ "text" ], "effective_permissions": [ "text" ], "destination_node_percentage_of_total": 1 } ], "engagement_access_stats": { "engagement_score": 1, "over_provisioned_score": 1, "total_count": "text", "accessed_count": "text" }, "access_stats": { "last_used": "2025-05-29T08:42:30.913Z", "count": 1, "concrete_permissions": [ "text" ], "canonical_permissions": [ "text" ] }, "destination_node_ids": [ "text" ], "risk_level": "NONE", "raw_permissions": [ "text" ], "effective_permissions": [ "text" ], "destination_node_percentage_of_total": 1 } ], "path_values": [ { "source": { "id": "text", "type": "text", "properties": {}, "destination_node_count": 1, "permissions": [ { "id": "text", "type": "text", "properties": {}, "destination_node_count": 1, "permissions": [ "[Circular Reference]" ], "engagement_access_stats": { "engagement_score": 1, "over_provisioned_score": 1, "total_count": "text", "accessed_count": "text" }, "access_stats": { "last_used": "2025-05-29T08:42:30.913Z", "count": 1, "concrete_permissions": [ "text" ], "canonical_permissions": [ "text" ] }, "destination_node_ids": [ "text" ], "risk_level": "NONE", "raw_permissions": [ "text" ], "effective_permissions": [ "text" ], "destination_node_percentage_of_total": 1 } ], "engagement_access_stats": { "engagement_score": 1, "over_provisioned_score": 1, "total_count": "text", "accessed_count": "text" }, "access_stats": { "last_used": "2025-05-29T08:42:30.913Z", "count": 1, "concrete_permissions": [ "text" ], "canonical_permissions": [ "text" ] }, "destination_node_ids": [ "text" ], "risk_level": "NONE", "raw_permissions": [ "text" ], "effective_permissions": [ "text" ], "destination_node_percentage_of_total": 1 }, "abstract_permissions": [ "text" ], "concrete_permissions": [ "text" ], "destination": { "id": "text", "type": "text", "properties": {}, "destination_node_count": 1, "permissions": [ { "id": "text", "type": "text", "properties": {}, "destination_node_count": 1, "permissions": [ "[Circular Reference]" ], "engagement_access_stats": { "engagement_score": 1, "over_provisioned_score": 1, "total_count": "text", "accessed_count": "text" }, "access_stats": { "last_used": "2025-05-29T08:42:30.913Z", "count": 1, "concrete_permissions": [ "text" ], "canonical_permissions": [ "text" ] }, "destination_node_ids": [ "text" ], "risk_level": "NONE", "raw_permissions": [ "text" ], "effective_permissions": [ "text" ], "destination_node_percentage_of_total": 1 } ], "engagement_access_stats": { "engagement_score": 1, "over_provisioned_score": 1, "total_count": "text", "accessed_count": "text" }, "access_stats": { "last_used": "2025-05-29T08:42:30.913Z", "count": 1, "concrete_permissions": [ "text" ], "canonical_permissions": [ "text" ] }, "destination_node_ids": [ "text" ], "risk_level": "NONE", "raw_permissions": [ "text" ], "effective_permissions": [ "text" ], "destination_node_percentage_of_total": 1 }, "path_summary_nodes": [ { "id": "text", "type": "text", "properties": {}, "destination_node_count": 1, "permissions": [ { "id": "text", "type": "text", "properties": {}, "destination_node_count": 1, "permissions": [ "[Circular Reference]" ], "engagement_access_stats": { "engagement_score": 1, "over_provisioned_score": 1, "total_count": "text", "accessed_count": "text" }, "access_stats": { "last_used": "2025-05-29T08:42:30.913Z", "count": 1, "concrete_permissions": [ "text" ], "canonical_permissions": [ "text" ] }, "destination_node_ids": [ "text" ], "risk_level": "NONE", "raw_permissions": [ "text" ], "effective_permissions": [ "text" ], "destination_node_percentage_of_total": 1 } ], "engagement_access_stats": { "engagement_score": 1, "over_provisioned_score": 1, "total_count": "text", "accessed_count": "text" }, "access_stats": { "last_used": "2025-05-29T08:42:30.913Z", "count": 1, "concrete_permissions": [ "text" ], "canonical_permissions": [ "text" ] }, "destination_node_ids": [ "text" ], "risk_level": "NONE", "raw_permissions": [ "text" ], "effective_permissions": [ "text" ], "destination_node_percentage_of_total": 1 } ], "results_truncated": true } ], "next_page_token": "text", "has_more": true }

Responses

200

A successful response.

application/json

401

Authorization information is missing or invalid.

403

Returned when the user does not have permission to access the resource.

404

Returned when the resource does not exist.

500

Server error

502

Returned when the service is temporarily unavailable.

503

Returned when the resource is temporarily unavailable.