GET
/
waap
/
v1
/
domains
/
{domain_id}
/
requests
/
{request_id}
/
details
Python
from gcore import Gcore

client = Gcore(
    api_key="My API Key",
)
waap_request_details = client.waap.domains.statistics.get_request_details(
    request_id="request_id",
    domain_id=1,
)
print(waap_request_details.id)
{
  "id": "96763b8fb655e9f18a2e04097b704e39-458959",
  "path": "/new_index",
  "method": "GET",
  "action": "block",
  "rule_id": "86",
  "rule_name": "SQL Injection",
  "user_agent": {
    "full_string": "Mozilla/5.0 (X11; U; Linux x86_64; en-US) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/30.1.1599.114 Safari/537.36 Puffin/4.5.0IT",
    "client": "Firefox",
    "client_version": "44.3",
    "base_browser": "Chrome",
    "base_browser_version": "47.0.2526.83",
    "os": "Android",
    "device": "Amazon Kindle Fire HDX 7",
    "device_type": "mobile",
    "cpu": "intel",
    "rendering_engine": "AppleWebKit",
    "client_type": "Custom Browser"
  },
  "network": {
    "client_ip": "116.83.107.125",
    "country": "IL",
    "organization": {
      "name": "InfoWeb(Fujitsu Ltd",
      "subnet": "116.83.0.0-116.83.127.255"
    }
  },
  "request_time": "2025-08-28T07:13:59Z",
  "reference_id": "ad07c06f19054e484974fa22e9fb6bb1",
  "content_type": "text/html; charset=UTF-8",
  "scheme": "HTTP",
  "http_status_code": 200,
  "http_version": "1.1",
  "response_time": "3",
  "request_headers": {
    "ACCEPT": "*/*",
    "ACCEPT-ENCODING": "gzip, deflate",
    "CONNECTION": "keep-alive",
    "HOST": "oih.jung.fblcloud-qa.net",
    "USER-AGENT": "Firefox/44.3",
    "X-FORWARDED-FOR": "169.54.212.219",
    "X-FORWARDED-PORT": "80",
    "X-FORWARDED-PROTO": "http"
  },
  "incident_id": "9f06152824394345",
  "request_type": "block",
  "session_request_count": "1",
  "domain": "example.com",
  "requested_domain": "example.com",
  "query_string": "q=select%20user%20from%20master..a",
  "result": "passed",
  "traffic_types": [
    "sanctioned",
    "policy_blocked"
  ],
  "pattern_matched_tags": [
    {
      "tag": "sql",
      "display_name": "SQL Injection",
      "description": "This client attempted insertion or “injection” of a SQL query via the input data from the client to the application. A successful SQL injection exploit can read sensitive data from the database, modify database data, etc.",
      "field": "uri",
      "field_name": "q",
      "pattern_name": "SQL Injection Prevention",
      "pattern_value": "select user from master..",
      "execution_phase": "access"
    }
  ],
  "common_tags": [
    {
      "tag": "injectionattack",
      "display_name": "Injection Attack",
      "description": "Multiple injection attempts were detected."
    }
  ]
}

Authorizations

Authorization
string
header
required

API key for authentication. Make sure to include the word apikey, followed by a single space and then your token. Example: apikey 1234$abcdef

Path Parameters

domain_id
integer
required

The domain ID

Required range: x > 0
request_id
string
required

The request ID

Response

Successful Response

Request's details used when displaying a single request.

id
string
required

Request ID

Examples:

"96763b8fb655e9f18a2e04097b704e39-458959"

path
string
required

Request path

Examples:

"/new_index"

method
string
required

Request method

Examples:

"GET"

action
string
required

Request action

Examples:

"block"

rule_id
string
required

ID of the triggered rule

Examples:

"86"

rule_name
string
required

Name of the triggered rule

Examples:

"SQL Injection"

user_agent
object
required

User agent

network
object
required

Network details

request_time
string<date-time>
required

The time of the request

Examples:

"2025-08-28T07:13:59Z"

reference_id
string
required

Reference ID to identify user sanction

Examples:

"ad07c06f19054e484974fa22e9fb6bb1"

content_type
string
required

Content type of request

Examples:

"text/html; charset=UTF-8"

scheme
string
required

The HTTP scheme of the request that generated an event

Examples:

"HTTP"

http_status_code
integer
required

Status code for http request

Examples:

200

http_version
string
required

HTTP version of request

Examples:

"1.1"

response_time
string
required

Time took to process all request

Examples:

"3"

request_headers
object
required

HTTP request headers

Examples:
{
  "ACCEPT": "*/*",
  "ACCEPT-ENCODING": "gzip, deflate",
  "CONNECTION": "keep-alive",
  "HOST": "oih.jung.fblcloud-qa.net",
  "USER-AGENT": "Firefox/44.3",
  "X-FORWARDED-FOR": "169.54.212.219",
  "X-FORWARDED-PORT": "80",
  "X-FORWARDED-PROTO": "http"
}
incident_id
string
required

ID of challenge that was generated

Examples:

"9f06152824394345"

request_type
string
required

The type of the request that generated an event

Examples:

"block"

session_request_count
string
required

The number requests in session

Examples:

"1"

domain
string
required

Domain name

Examples:

"example.com"

requested_domain
string
required

The real domain name

Examples:

"example.com"

query_string
string
required

The query string of the request

Examples:

"q=select%20user%20from%20master..a"

result
enum<string>
required

The result of a request

Available options:
passed,
blocked,
suppressed,
Examples:

"passed"

traffic_types
string[]
required

List of traffic types

Examples:
["sanctioned", "policy_blocked"]
pattern_matched_tags
PatternMatchedTag · object[]
required

List of shield tags

common_tags
CommonTag · object[]
required

List of common tags