Full name: projects.locations.instances.legacy.legacySearchCustomerStats
legacy.legacySearchCustomerStats gets data collection stats about a customer, e.g., the first time data was seen from a customer, the last time, etc.
HTTP request
Path parameters
Parameters
instance
string
Required. The name of the parent resource, which is the SecOps instance this request is sent to. Format: projects/{project}/locations/{location}/instances/{instance}
Request body
The request body must be empty.
Response body
LegacySearchCustomerStatsResponse contains a given customer's data. NEXT TAG: 7
If successful, the response body contains data with the following structure:
Timestamp indicating date of oldest available data.
Uses RFC 3339, where generated output will always be Z-normalized and uses 0, 3, 6 or 9 fractional digits. Offsets other than "Z" are also accepted. Examples: "2014-10-02T15:01:23Z", "2014-10-02T15:01:23.045123456Z" or "2014-10-02T15:01:23+05:30".
Uses RFC 3339, where generated output will always be Z-normalized and uses 0, 3, 6 or 9 fractional digits. Offsets other than "Z" are also accepted. Examples: "2014-10-02T15:01:23Z", "2014-10-02T15:01:23.045123456Z" or "2014-10-02T15:01:23+05:30".
Timestamp indicating earliest start date for advanced search.
Uses RFC 3339, where generated output will always be Z-normalized and uses 0, 3, 6 or 9 fractional digits. Offsets other than "Z" are also accepted. Examples: "2014-10-02T15:01:23Z", "2014-10-02T15:01:23.045123456Z" or "2014-10-02T15:01:23+05:30".
The start time will be the cutoff date for the earliest data available in the semantic data layer. The end time will be the end time of the latest hour bucket that a customer has data for.
Uses RFC 3339, where generated output will always be Z-normalized and uses 0, 3, 6 or 9 fractional digits. Offsets other than "Z" are also accepted. Examples: "2014-10-02T15:01:23Z", "2014-10-02T15:01:23.045123456Z" or "2014-10-02T15:01:23+05:30".
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-25 UTC."],[[["\u003cp\u003eThe \u003ccode\u003elegacySearchCustomerStats\u003c/code\u003e method retrieves data collection statistics for a specific customer, such as the first and last time data was observed.\u003c/p\u003e\n"],["\u003cp\u003eThis method uses a \u003ccode\u003ePOST\u003c/code\u003e request to the endpoint \u003ccode\u003ehttps://chronicle.googleapis.com/v1alpha/{instance}/legacy:legacySearchCustomerStats\u003c/code\u003e, where \u003ccode\u003einstance\u003c/code\u003e is a required path parameter specifying the Chronicle instance.\u003c/p\u003e\n"],["\u003cp\u003eThe request body for \u003ccode\u003elegacySearchCustomerStats\u003c/code\u003e must be empty.\u003c/p\u003e\n"],["\u003cp\u003eThe response body provides details about a customer's data, including company name, timestamps for oldest and newest available data, advanced search start time, Yara-L 2 available time range, and max normalization timestamp.\u003c/p\u003e\n"],["\u003cp\u003eAccess to \u003ccode\u003elegacySearchCustomerStats\u003c/code\u003e requires the \u003ccode\u003ehttps://www.googleapis.com/auth/cloud-platform\u003c/code\u003e OAuth scope and the \u003ccode\u003echronicle.legacies.legacySearchCustomerStats\u003c/code\u003e IAM permission on the specified instance.\u003c/p\u003e\n"]]],[],null,["# Method: legacy.legacySearchCustomerStats\n\n- [HTTP request](#body.HTTP_TEMPLATE)\n- [Path parameters](#body.PATH_PARAMETERS)\n- [Request body](#body.request_body)\n- [Response body](#body.response_body)\n - [JSON representation](#body.LegacySearchCustomerStatsResponse.SCHEMA_REPRESENTATION)\n- [Authorization scopes](#body.aspect)\n- [IAM Permissions](#body.aspect_1)\n- [Try it!](#try-it)\n\n**Full name**: projects.locations.instances.legacy.legacySearchCustomerStats\n\nlegacy.legacySearchCustomerStats gets data collection stats about a customer, e.g., the first time data was seen from a customer, the last time, etc.\n\n### HTTP request\n\nChoose a location: \nafrica-south1 asia-northeast1 asia-south1 asia-southeast1 asia-southeast2 australia-southeast1 europe-west12 europe-west2 europe-west3 europe-west6 europe-west9 me-central1 me-central2 me-west1 northamerica-northeast2 southamerica-east1 us eu \n\n\u003cbr /\u003e\n\n### Path parameters\n\n### Request body\n\nThe request body must be empty.\n\n### Response body\n\nLegacySearchCustomerStatsResponse contains a given customer's data. NEXT TAG: 7\n\nIf successful, the response body contains data with the following structure:\n\n### Authorization scopes\n\nRequires the following OAuth scope:\n\n- `https://www.googleapis.com/auth/cloud-platform`\n\nFor more information, see the [Authentication Overview](/docs/authentication#authorization-gcp).\n\n### IAM Permissions\n\nRequires the following [IAM](https://cloud.google.com/iam/docs) permission on the `instance` resource:\n\n- `chronicle.legacies.legacySearchCustomerStats`\n\nFor more information, see the [IAM documentation](https://cloud.google.com/iam/docs)."]]