GraphQL API Overview
NetBox provides a read-only GraphQL API to complement its REST API. This API is powered by the Graphene library and Graphene-Django.
Queries
GraphQL enables the client to specify an arbitrary nested list of fields to include in the response. All queries are made to the root /graphql
API endpoint. For example, to return the circuit ID and provider name of each circuit with an active status, you can issue a request such as the following:
curl -H "Authorization: Token $TOKEN" \
-H "Content-Type: application/json" \
-H "Accept: application/json" \
http://netbox/graphql/ \
--data '{"query": "query {circuit_list(status:\"active\") {cid provider {name}}}"}'
The response will include the requested data formatted as JSON:
{
"data": {
"circuits": [
{
"cid": "1002840283",
"provider": {
"name": "CenturyLink"
}
},
{
"cid": "1002840457",
"provider": {
"name": "CenturyLink"
}
}
]
}
}
Note
It's recommended to pass the return data through a JSON parser such as jq
for better readability.
NetBox provides both a singular and plural query field for each object type:
$OBJECT
: Returns a single object. Must specify the object's unique ID as(id: 123)
.$OBJECT_list
: Returns a list of objects, optionally filtered by given parameters.
For example, query device(id:123)
to fetch a specific device (identified by its unique ID), and query device_list
(with an optional set of filters) to fetch all devices.
For more detail on constructing GraphQL queries, see the Graphene documentation.
Filtering
The GraphQL API employs the same filtering logic as the UI and REST API. Filters can be specified as key-value pairs within parentheses immediately following the query name. For example, the following will return only sites within the North Carolina region with a status of active:
{"query": "query {site_list(region:\"north-carolina\", status:\"active\") {name}}"}
Authentication
NetBox's GraphQL API uses the same API authentication tokens as its REST API. Authentication tokens are included with requests by attaching an Authorization
HTTP header in the following form:
Authorization: Token $TOKEN
Disabling the GraphQL API
If not needed, the GraphQL API can be disabled by setting the GRAPHQL_ENABLED
configuration parameter to False and restarting NetBox.