Add evidence by workspace id

Add evidence

Securitybearer
Request
path Parameters
workspaceId
required
number

The Workspace ID associated to the Account

Request Body schema:
required
name
required
string <= 191 characters

Document name

description
string or null <= 30000 characters

Library document description

renewalDate
required
string

Library document renewal date

renewalScheduleType
required
string

Library Document renewal schedule type

Enum: "ONE_MONTH" "TWO_MONTHS" "THREE_MONTHS" "SIX_MONTHS" "ONE_YEAR" "CUSTOM" "NONE"
file
string <binary>

Accepted file extensions: .pdf, .docx, .odt, .xlsx, .ods, .pptx, .odp, .gif, .jpeg, .jpg, .png

base64File
object

External evidence in Base64 format. Example: {"base64String":"data:image/jpeg;base64,/9j/4AAQSkZJRgABAQEAYABg","filename":"excellent-filename"}

source
required
string

The type of evidence

Enum: "URL" "S3_FILE" "TICKET_PROVIDER" "NONE"
url
string or null <= 768 characters

The url to the evidence

filedAt
required
string

The date in which the evidence was originally filed/created

ownerId
required
number

Owner id

controlIds
Array of numbers or null

List of control IDs

ticketUrl
string

Ticket provider url

Responses
201

Record created!

400

Malformed data and/or validation errors

401

Invalid Authorization

403

You are not allowed to perform this action

413

The file was too large to upload

500

Internal server error

503

Third party system was unavailable

default

Response Code: 412

You must accept the Drata terms and conditions to use the API

post/workspaces/{workspaceId}/evidence-library
Request samples
No sample
Response samples
application/json
{
  • "id": 1,
  • "name": "Security training",
  • "description": "Security Training completed evidence test",
  • "implementationGuidance": "Example of architectural diagram www.drata/arch-diagram-example.com",
  • "createdAt": "2020-07-06 12:00:00.000000",
  • "updatedAt": "2020-07-06 12:00:00.000000",
  • "user": {},
  • "controls": [
    • {
      • "id": "123",
      • "name": "Databases Monitored and Alarmed",
      • "code": "DCF-1002",
      • "description": "Drata has implemented tools to monitor Drata's databases and notify appropriate personnel of any events or incidents based on predetermined criteria. Incidents are escalated per policy.",
      • "question": "Does the organization implement tools to monitor its databases and notify appropriate personnel of incidents based on predetermined criteria?",
      • "activity": "1. Ensure tools are implemented to monitor databases 2. Ensure notifications based on specific criteria are sent to the appropriate personnel 3. Escalate incidents appropriately",
      • "slug": "databases-monitored-and-alarmed",
      • "archivedAt": "2020-07-06 12:00:00.000000"
      }
    ],
  • "renewalSchema": {
    • "renewalDate": "2020-07-06",
    • "renewalScheduleType": "ONE_YEAR"
    },
  • "isExpired": false,
  • "versions": []
}