Back to Collection Items
; This example assumes the Chilkat API to have been previously unlocked.
; See Global Unlock Sample for sample code.
$oHttp = ObjCreate("Chilkat.Http")
Local $bSuccess
; Use this online tool to generate code from sample JSON: Generate Code to Create JSON
; The following JSON is sent in the request body.
; {
; "displayName": "Microsoft Graph Search",
; "description": "This is an eDiscovery Premium search using Microsoft Graph",
; "contentQuery": "HasAttachment=true",
; "custodianSources@odata.bind": [
; "https://graph.microsoft.com/v1.0/security/cases/ediscoveryCases/{{ediscoveryCaseId}}/custodians/{{custodianId}}/userSources/{{custodianUserSource}}"
; ],
; "noncustodialSources@odata.bind": [
; "https://graph.microsoft.com/v1.0/security/cases/ediscoveryCases/{{ediscoveryCaseId}}/noncustodialdatasources/{{noncustodialDataSource}}"
; ]
; }
$oJson = ObjCreate("Chilkat.JsonObject")
$oJson.UpdateString("displayName","Microsoft Graph Search")
$oJson.UpdateString("description","This is an eDiscovery Premium search using Microsoft Graph")
$oJson.UpdateString("contentQuery","HasAttachment=true")
$oJson.UpdateString("""custodianSources@odata.bind""[0]","https://graph.microsoft.com/v1.0/security/cases/ediscoveryCases/{{ediscoveryCaseId}}/custodians/{{custodianId}}/userSources/{{custodianUserSource}}")
$oJson.UpdateString("""noncustodialSources@odata.bind""[0]","https://graph.microsoft.com/v1.0/security/cases/ediscoveryCases/{{ediscoveryCaseId}}/noncustodialdatasources/{{noncustodialDataSource}}")
; Adds the "Authorization: Bearer <access_token>" header.
$oHttp.AuthToken = "<access_token>"
Local $oResp = $oHttp.PostJson3("https://graph.microsoft.com/v1.0/security/cases/ediscoveryCases/{{ediscoveryCaseId}}/searches","application/json",$oJson)
If ($oHttp.LastMethodSuccess = False) Then
ConsoleWrite($oHttp.LastErrorText & @CRLF)
Exit
EndIf
ConsoleWrite($oResp.StatusCode & @CRLF)
ConsoleWrite($oResp.BodyStr & @CRLF)
Curl Command
curl -X POST
-H "Authorization: Bearer <access_token>"
-d '{
"displayName": "Microsoft Graph Search",
"description": "This is an eDiscovery Premium search using Microsoft Graph",
"contentQuery": "HasAttachment=true",
"custodianSources@odata.bind": [
"https://graph.microsoft.com/v1.0/security/cases/ediscoveryCases/{{ediscoveryCaseId}}/custodians/{{custodianId}}/userSources/{{custodianUserSource}}"
],
"noncustodialSources@odata.bind": [
"https://graph.microsoft.com/v1.0/security/cases/ediscoveryCases/{{ediscoveryCaseId}}/noncustodialdatasources/{{noncustodialDataSource}}"
]
}'
https://graph.microsoft.com/v1.0/security/cases/ediscoveryCases/{{ediscoveryCaseId}}/searches
Postman Collection Item JSON
{
"name": "Create searches",
"event": [
{
"listen": "test",
"script": {
"exec": [
"var json = JSON.parse(responseBody);",
"postman.setEnvironmentVariable(\"ediscoverySearchId\", json.id);"
],
"type": "text/javascript"
}
}
],
"request": {
"method": "POST",
"header": [
],
"body": {
"mode": "raw",
"raw": "{\n \"displayName\": \"Microsoft Graph Search\",\n \"description\": \"This is an eDiscovery Premium search using Microsoft Graph\",\n \"contentQuery\": \"HasAttachment=true\",\n \"custodianSources@odata.bind\": [\n \"https://graph.microsoft.com/v1.0/security/cases/ediscoveryCases/{{ediscoveryCaseId}}/custodians/{{custodianId}}/userSources/{{custodianUserSource}}\"\n ],\n \"noncustodialSources@odata.bind\": [\n \"https://graph.microsoft.com/v1.0/security/cases/ediscoveryCases/{{ediscoveryCaseId}}/noncustodialdatasources/{{noncustodialDataSource}}\"\n ]\n}",
"options": {
"raw": {
"language": "json"
}
}
},
"url": {
"raw": "https://graph.microsoft.com/v1.0/security/cases/ediscoveryCases/{{ediscoveryCaseId}}/searches",
"protocol": "https",
"host": [
"graph",
"microsoft",
"com"
],
"path": [
"v1.0",
"security",
"cases",
"ediscoveryCases",
"{{ediscoveryCaseId}}",
"searches"
]
}
},
"response": [
]
}
