Experimental

Subscribe
Download 268
Last updated Feb 18, 2026

sonar-stream-rules

Enumerate stream rules in Logpresso Sonar.

sonar-stream-rules [keywords=KEYWORD] [enabled=t|f]
keywords=KEYWORD
Optional. Search term for filtering rule names
enabled=t|f
Optional. Filter by enabled status

Output Fields

FieldTypeNameDescription
idIntegerIDStream rule ID
guidStringGUIDStream rule GUID
nameStringNameStream rule name
descriptionStringDescriptionStream rule description
priorityStringPriorityOne of LOW, MEDIUM, HIGH
enabledBooleanEnabledWhether the rule is active
msgStringMessage templateMessage template. Macro in the $field format available
schema_codeStringLog schema identifierLog schema identifier
schema_nameStringLog schema nameLog schema name
source_typeStringSource typeLOGGER or LOGGER_MODEL
logger_model_guidsListLogger model GUIDsCollection of logger model identifiers
logger_guidsListLogger GUIDsCollection of logger identifiers
queryStringQueryComplete query string assembled from commands
commandsListCommandsList of stream rule commands
category_nameStringCategory nameStream rule category name
category_guidStringCategory GUIDStream rule category GUID
ticket_repo_guidStringTicket repository GUIDTicket repository identifier
suppress_keyStringSuppress keySuppress key field. Macro in the $field format available
event_suppress_intervalIntegerEvent suppression intervalSuppression period for duplicated event in seconds
ticket_suppress_intervalIntegerTicket suppression intervalSuppression period for duplicated ticket in seconds
keep_aliveBooleanKeep aliveWhether suppression timer persists across ticket completion
ticket_assignee_namesListTicket assignee namesList of ticket assignee names
ticket_assignee_guidsListTicket assignee GUIDsList of ticket assignee GUIDs
alarm_group_guidStringAlarm group GUIDAlarm group GUID
alarm_group_nameStringAlarm group nameAlarm group name
address_group_guidStringAddress group GUIDAddress group GUID
address_fieldStringAddress fieldTarget fields to add to the address group
blacklist_expire_minuteIntegerBlacklist expirationBlacklist expiration time in minutes
field_orderListField orderEvidence file output order. Comma-separated list of field names.
employee_key_fieldStringEmployee key fieldEmployee number field. Typically using a normalized emp_key field.
auditor_guidStringAuditor GUIDAuditor identifier. If not specified, the department head is assigned as default
auditor_nameStringAuditor nameAuditor name. If not specified, the department head is assigned as default
audit_daysIntegerAudit due dateAudit due date (days)
audit_category_nameStringAudit category nameAudit category name
audit_category_guidStringAudit category GUIDAudit category GUID
user_noteStringUser noteAudit request details
user_guidStringUser GUIDCreator's user GUID
user_nameStringUser nameCreator's user name
app_codeStringApp codeApp identifier
app_built_inBooleanApp objectStream rule object included in app
createdDateCreatedDate and time of creation
updatedDateUpdatedDate and time of last modification