Merge pull request #146 from PaloAltoNetworks/feature/add-account-gro…

…up-to-alerts add account group filter for alert endpoint
PaloAltoNetworks · Sep 26, 2023 · 4e7d840 · 4e7d840
2 parents 00db35f + 8e09de0
commit 4e7d840
Show file tree

Hide file tree

Showing 2 changed files with 13 additions and 3 deletions.
diff --git a/prismacloud/cli/cspm/cmd_alert.py b/prismacloud/cli/cspm/cmd_alert.py
@@ -17,6 +17,8 @@ def cli(ctx):
 @click.option("--compliance-standard", help="Compliance standard, e.g.: 'CIS v1.4.0 (AWS)'")
 @click.option("--policy-id", help="Policy ID, e.g.: '6c561dd0-e24b-4afe-b1fd-78808a45956d'")
 @click.option("--alert-rule", help="Alert rule name, e.g.: 'alertrule-1'")
+@click.option("--cloud-account", help="Cloud Account Name, e.g.: 'MyCloudAccount'")
+@click.option("--account-group", help="Account Group ID, e.g.: 'MyAccountGroup'")
 @click.option("--amount", default="1", help="Number of units selected with --unit")
 @click.option(
     "--unit", default="day", type=click.Choice(["minute", "hour", "day", "week", "month", "year"], case_sensitive=False)
@@ -25,20 +27,28 @@ def cli(ctx):
     "--status", default="open", type=click.Choice(["open", "resolved", "snoozed", "dismissed"], case_sensitive=False)
 )
 @click.option("--detailed/--no-detailed", default=False)
-def list_alerts(compliance_standard, amount, unit, status, detailed, policy_id, alert_rule):
+def list_alerts(compliance_standard, cloud_account, account_group, amount, unit, status, detailed, policy_id, alert_rule):
     """Returns a list of alerts from the Prisma Cloud platform"""
     data = {
         "alert.status": status,
         "alertRule.name": alert_rule,
         "detailed": detailed,
         "limit": "10000",
         "policy.complianceStandard": compliance_standard,
-        "policy.id": policy_id,
         "timeAmount": amount,
         "timeType": "relative",
         "timeUnit": unit,
     }
 
+    if policy_id:
+        data["policy.id"] = policy_id
+
+    if cloud_account:
+        data["cloud.account"] = cloud_account
+
+    if account_group:
+        data["account.group"] = account_group
+
     # Fetch the alerts
     alerts = pc_api.get_endpoint("alert", query_params=data, api="cspm")
 

diff --git a/prismacloud/cli/version.py b/prismacloud/cli/version.py
@@ -1 +1 @@
-version = "0.7.2"
+version = "0.7.3"