Thank you for your response.
The fields you are saying are actually the parameters to use while querying the API.
I'm looking for event fields explanation. For example, lets check the following event for endpoint
GET /organizations/{organizationId}/appliance/security/events:
{
"ts": "2022-02-22T13:11:34.643074Z",
"eventType": "IDS Alert",
"deviceMac": "xx:xx:xx:xx:xx:xx",
"clientMac": "xx:xx:xx:xx:xx:xx",
"srcIp": "xxx:xx:xxx:xx:1234",
"destIp": "xxx:xx:xxx:xx:5678",
"protocol": "udp/ip",
"priority": "1",
"classification": "12",
"blocked": true,
"message": "(spo_bo) Back Orifice Client Traffic detected",
"signature": "105:2:2",
"sigSource": "ips",
"ruleId": "GID/105/SID/2"
}
What I'm looking for the is definition/explanation of each field, like what is clientMac, what is classification etc..