How do we get live query results via web apis ?

The

fleetctl

tool implements an example of how to do this. https://github.com/kolide/fleet/blob/master/cmd/fleetctl/query.go

thanks. Any idea if i can get these working without using the cli ?

@Saif Abulkhair the Kolide platform is built with Go Kit so most actions performed via the webgui is an API call. The Kolide “API” has not been officially documented but reading the HTTP handlers file will be helpful. I don’t have access to my homelab Kolide instance because I am at work but here are some starter curl statements and API endpoints First, you need to authenticate yourself:

curl -X POST https://<Kolide>/api/v1/kolide/login -d '{"Username": "<Kolide admin e-mail>", "Password": "<Kolide admin password>"}'

When you successfully login you should receive a JWT token which you will use for all future API requests to Kolide. Here is the Kolide login code. Next, you can use the JWT to perform API operations such as getting a list of queries: /api/v1/kolide/queries. Next, request query results using /api/v1/kolide/results/

Awesome. I wll try thhese pointers and hopefully would come back to thank you again.😁

See the

fleetctl

source I linked previously, it shows an example of how to do so in Golang