Home
Administration Guide
Administration, configuration, and management tasks needed for the optimal use of Seeker
Using APIs
Seeker provides a set of Web (REST) APIs that expose its basic functionality. You can use these APIs to automate various administration tasks, such as managing projects, exporting vulnerabilities or creating a diagnostic dump.

Administration Guide
Administration, configuration, and management tasks needed for the optimal use of Seeker
- System Administration
  Seeker provides a set of tools that enable administrators to configure, customize, and fine-tune various features and capabilities of the system, as well as integrate external tools.
- User Administration
  Introduces the Seeker role-based access control (RBAC) concept, and outlines the user administration tasks.
- Project Administration
  Management and configuration tasks that Seeker administrators can perform for projects.
- Maintenance
  To ensure your Seeker system's health, perform periodic maintenance tasks.
- Using APIs
  Seeker provides a set of Web (REST) APIs that expose its basic functionality. You can use these APIs to automate various administration tasks, such as managing projects, exporting vulnerabilities or creating a diagnostic dump.
  - Configure Access Tokens
    Access tokens are required for the Seeker APIs and for the authentication of Agents to the Seeker server.
  - API Scenarios
    Seeker REST APIs can be used for automation of various administration scenarios.
  - Seeker API Reference
- Appendix A. Seeker Environment Variables
  Seeker uses a number of operating system (OS) environment variables and Java Virtual Machine (JVM) properties that administrators can configure to customize and fine-tune the behavior of Seeker server and Agents.

Using APIs

Seeker provides a set of Web (REST) APIs that expose its basic functionality. You can use these APIs to automate various administration tasks, such as managing projects, exporting vulnerabilities or creating a diagnostic dump.

Prerequisites

To use the APIs, you need to obtain an access token.

In the main menu, click (Web API).
Select an existing access token from the dropdown list or click Create a new access token.

For instructions, see Configure Access Tokens.

Exploring the APIs

The page displays a Swagger-generated API reference. You can expand and explore any API and try it out interactively.

For example, to export detected vulnerabilities in a PDF report:

Expand /api/latest/reports > GET.
Click Try it out and enter some parameter values to set filters. For example:
- projectKeys: default
- minSeverity: MEDIUM
- onlySeekerVerified: true
Click Execute.
Check RESPONSES. If the response code is 200, click Download file.

A vulnerability report file named synopsys-seeker-security-report_...pdf is located in your Downloads folder. Open it to see that it matches the request parameters.

Note:

You can explore the Seeker API reference in the online version of this guide.

You can directly access the Seeker API specification file at {SEEKER_SERVER_URL}/rest/swagger.json.