Data source API

If you are running Grafana Enterprise and have Fine-grained access control enabled, for some endpoints you would need to have relevant permissions. Refer to specific resources to understand what permissions are required.

Get all data sources

GET /api/datasources

Required permissions

See note in the introduction for an explanation.

ActionScope
datasources:readdatasources:*

Examples

Example Request:

  1. GET /api/datasources HTTP/1.1
  2. Accept: application/json
  3. Content-Type: application/json
  4. Authorization: Bearer eyJrIjoiT0tTcG1pUlY2RnVKZTFVaDFsNFZXdE9ZWmNrMkZYbk

Example Response:

  1. HTTP/1.1 200
  2. Content-Type: application/json
  4. [
  5.    {
  6.      "id": 1,
  7.      "orgId": 1,
  8.      "uid": "H8joYFVGz"
  9.      "name": "datasource_elastic",
  10.      "type": "elasticsearch",
  11.      "typeLogoUrl": "public/app/plugins/datasource/elasticsearch/img/elasticsearch.svg",
  12.      "access": "proxy",
  13.      "url": "http://mydatasource.com",
  14.      "password": "",
  15.      "user": "",
  16.      "database": "grafana-dash",
  17.      "basicAuth": false,
  18.      "isDefault": false,
  19.      "jsonData": {
  20.          "esVersion": 5,
  21.          "logLevelField": "",
  22.          "logMessageField": "",
  23.          "maxConcurrentShardRequests": 256,
  24.          "timeField": "@timestamp"
  25.      },
  26.      "readOnly": false
  27.    }
  28. ]

Get a single data source by Id

GET /api/datasources/:datasourceId

Required permissions

See note in the introduction for an explanation.

ActionScope
datasources:readdatasources:
datasources:id:
datasources:id:1 (single data source)

Examples

Example Request:

  1. GET /api/datasources/1 HTTP/1.1
  2. Accept: application/json
  3. Content-Type: application/json
  4. Authorization: Bearer eyJrIjoiT0tTcG1pUlY2RnVKZTFVaDFsNFZXdE9ZWmNrMkZYbk

Example Response:

  1. HTTP/1.1 200
  2. Content-Type: application/json
  4. {
  5.   "id": 1,
  6.   "uid": "kLtEtcRGk",
  7.   "orgId": 1,
  8.   "name": "test_datasource",
  9.   "type": "graphite",
  10.   "typeLogoUrl": "",
  11.   "access": "proxy",
  12.   "url": "http://mydatasource.com",
  13.   "password": "",
  14.   "user": "",
  15.   "database": "",
  16.   "basicAuth": false,
  17.   "basicAuthUser": "",
  18.   "basicAuthPassword": "",
  19.   "withCredentials": false,
  20.   "isDefault": false,
  21.   "jsonData": {
  22.     "graphiteType": "default",
  23.     "graphiteVersion": "1.1"
  24.   },
  25.   "secureJsonFields": {},
  26.   "version": 1,
  27.   "readOnly": false
  28. }

Get a single data source by UID

GET /api/datasources/uid/:uid

Required permissions

See note in the introduction for an explanation.

ActionScope
datasources:readdatasources:
datasources:uid:
datasources:uid:kLtEtcRGk (single data source)

Examples

Example request:

  1. GET /api/datasources/uid/kLtEtcRGk HTTP/1.1
  2. Accept: application/json
  3. Content-Type: application/json
  4. Authorization: Bearer eyJrIjoiT0tTcG1pUlY2RnVKZTFVaDFsNFZXdE9ZWmNrMkZYbk

Example Response:

  1. HTTP/1.1 200
  2. Content-Type: application/json
  4. {
  5.   "id": 1,
  6.   "uid": "kLtEtcRGk",
  7.   "orgId": 1,
  8.   "name": "test_datasource",
  9.   "type": "graphite",
  10.   "typeLogoUrl": "",
  11.   "access": "proxy",
  12.   "url": "http://mydatasource.com",
  13.   "password": "",
  14.   "user": "",
  15.   "database": "",
  16.   "basicAuth": false,
  17.   "basicAuthUser": "",
  18.   "basicAuthPassword": "",
  19.   "withCredentials": false,
  20.   "isDefault": false,
  21.   "jsonData": {
  22.     "graphiteType": "default",
  23.     "graphiteVersion": "1.1"
  24.   },
  25.   "secureJsonFields": {},
  26.   "version": 1,
  27.   "readOnly": false
  28. }

Get a single data source by Name

GET /api/datasources/name/:name

Required permissions

See note in the introduction for an explanation.

ActionScope
datasources:readdatasources:
datasources:name:
datasources:name:test_datasource (single data source)

Examples

Example Request:

  1. GET /api/datasources/name/test_datasource HTTP/1.1
  2. Accept: application/json
  3. Content-Type: application/json
  4. Authorization: Bearer eyJrIjoiT0tTcG1pUlY2RnVKZTFVaDFsNFZXdE9ZWmNrMkZYbk

Example Response:

  1. HTTP/1.1 200
  2. Content-Type: application/json
  4. {
  5.   "id": 1,
  6.   "uid": "kLtEtcRGk",
  7.   "orgId": 1,
  8.   "name": "test_datasource",
  9.   "type": "graphite",
  10.   "typeLogoUrl": "",
  11.   "access": "proxy",
  12.   "url": "http://mydatasource.com",
  13.   "password": "",
  14.   "user": "",
  15.   "database": "",
  16.   "basicAuth": false,
  17.   "basicAuthUser": "",
  18.   "basicAuthPassword": "",
  19.   "withCredentials": false,
  20.   "isDefault": false,
  21.   "jsonData": {
  22.     "graphiteType": "default",
  23.     "graphiteVersion": "1.1"
  24.   },
  25.   "secureJsonFields": {},
  26.   "version": 1,
  27.   "readOnly": false
  28. }

Get data source Id by Name

GET /api/datasources/id/:name

Required permissions

See note in the introduction for an explanation.

ActionScope
datasources.id:readdatasources:
datasources:name:
datasources:name:test_datasource (single data source)

Examples

Example Request:

  1. GET /api/datasources/id/test_datasource HTTP/1.1
  2. Accept: application/json
  3. Content-Type: application/json
  4. Authorization: Bearer eyJrIjoiT0tTcG1pUlY2RnVKZTFVaDFsNFZXdE9ZWmNrMkZYbk

Example Response:

  1. HTTP/1.1 200
  2. Content-Type: application/json
  4. {
  5.   "id":1
  6. }

Create a data source

POST /api/datasources

Required permissions

See note in the introduction for an explanation.

ActionScope
datasources:createn/a

Examples

Example Graphite Request:

  1. POST /api/datasources HTTP/1.1
  2. Accept: application/json
  3. Content-Type: application/json
  4. Authorization: Bearer eyJrIjoiT0tTcG1pUlY2RnVKZTFVaDFsNFZXdE9ZWmNrMkZYbk
  6. {
  7.   "name":"test_datasource",
  8.   "type":"graphite",
  9.   "url":"http://mydatasource.com",
  10.   "access":"proxy",
  11.   "basicAuth":false
  12. }

Example Graphite Response:

  1. HTTP/1.1 200
  2. Content-Type: application/json
  4. {
  5.   "datasource": {
  6.     "id": 1,
  7.     "orgId": 1,
  8.     "name": "test_datasource",
  9.     "type": "graphite",
  10.     "typeLogoUrl": "",
  11.     "access": "proxy",
  12.     "url": "http://mydatasource.com",
  13.     "password": "",
  14.     "user": "",
  15.     "database": "",
  16.     "basicAuth": false,
  17.     "basicAuthUser": "",
  18.     "basicAuthPassword": "",
  19.     "withCredentials": false,
  20.     "isDefault": false,
  21.     "jsonData": {},
  22.     "secureJsonFields": {},
  23.     "version": 1,
  24.     "readOnly": false
  25.   },
  26.   "id": 1,
  27.   "message": "Datasource added",
  28.   "name": "test_datasource"
  29. }

Note: By defining password and basicAuthPassword under secureJsonData Grafana encrypts them securely as an encrypted blob in the database. The response then lists the encrypted fields under secureJsonFields.

Example Graphite Request with basic auth enabled:

  1. POST /api/datasources HTTP/1.1
  2. Accept: application/json
  3. Content-Type: application/json
  4. Authorization: Bearer eyJrIjoiT0tTcG1pUlY2RnVKZTFVaDFsNFZXdE9ZWmNrMkZYbk
  6. {
  7.   "name": "test_datasource",
  8.   "type": "graphite",
  9.   "url": "http://mydatasource.com",
  10.   "access": "proxy",
  11.   "basicAuth": true,
  12.   "basicAuthUser": "basicuser",
  13.   "secureJsonData": {
  14.     "basicAuthPassword": "basicpassword"
  15.   }
  16. }

Example Response with basic auth enabled:

  1. HTTP/1.1 200
  2. Content-Type: application/json
  4. {
  5.   "datasource": {
  6.     "id": 1,
  7.     "orgId": 1,
  8.     "name": "test_datasource",
  9.     "type": "graphite",
  10.     "typeLogoUrl": "",
  11.     "access": "proxy",
  12.     "url": "http://mydatasource.com",
  13.     "password": "",
  14.     "user": "",
  15.     "database": "",
  16.     "basicAuth": true,
  17.     "basicAuthUser": "basicuser",
  18.     "basicAuthPassword": "",
  19.     "withCredentials": false,
  20.     "isDefault": false,
  21.     "jsonData": {},
  22.     "secureJsonFields": {
  23.       "basicAuthPassword": true
  24.     },
  25.     "version": 1,
  26.     "readOnly": false
  27.   },
  28.   "id": 102,
  29.   "message": "Datasource added",
  30.   "name": "test_datasource"
  31. }

Example CloudWatch Request:

  1. POST /api/datasources HTTP/1.1
  2. Accept: application/json
  3. Content-Type: application/json
  4. Authorization: Bearer eyJrIjoiT0tTcG1pUlY2RnVKZTFVaDFsNFZXdE9ZWmNrMkZYbk
  6. {
  7.   "name": "test_datasource",
  8.   "type": "cloudwatch",
  9.   "url": "http://monitoring.us-west-1.amazonaws.com",
  10.   "access": "proxy",
  11.   "jsonData": {
  12.     "authType": "keys",
  13.     "defaultRegion": "us-west-1"
  14.   },
  15.   "secureJsonData": {
  16.     "accessKey": "Ol4pIDpeKSA6XikgOl4p",
  17.     "secretKey": "dGVzdCBrZXkgYmxlYXNlIGRvbid0IHN0ZWFs"
  18.   }
  19. }

Update an existing data source

PUT /api/datasources/:datasourceId

Required permissions

See note in the introduction for an explanation.

ActionScope
datasources:writedatasources:
datasources:id:
datasources:id:1 (single data source)

Examples

Example Request:

  1. PUT /api/datasources/1 HTTP/1.1
  2. Accept: application/json
  3. Content-Type: application/json
  4. Authorization: Bearer eyJrIjoiT0tTcG1pUlY2RnVKZTFVaDFsNFZXdE9ZWmNrMkZYbk
  6. {
  7.   "id":1,
  8.   "orgId":1,
  9.   "name":"test_datasource",
  10.   "type":"graphite",
  11.   "access":"proxy",
  12.   "url":"http://mydatasource.com",
  13.   "password":"",
  14.   "user":"",
  15.   "database":"",
  16.   "basicAuth":true,
  17.   "basicAuthUser":"basicuser",
  18.   "secureJsonData": {
  19.     "basicAuthPassword": "basicpassword"
  20.   },
  21.   "isDefault":false,
  22.   "jsonData":null
  23. }

Example Response:

  1. HTTP/1.1 200
  2. Content-Type: application/json
  4. {
  5.   "datasource": {
  6.     "id": 1,
  7.     "orgId": 1,
  8.     "name": "test_datasource",
  9.     "type": "graphite",
  10.     "typeLogoUrl": "",
  11.     "access": "proxy",
  12.     "url": "http://mydatasource.com",
  13.     "password": "",
  14.     "user": "",
  15.     "database": "",
  16.     "basicAuth": true,
  17.     "basicAuthUser": "basicuser",
  18.     "basicAuthPassword": "",
  19.     "withCredentials": false,
  20.     "isDefault": false,
  21.     "jsonData": {},
  22.     "secureJsonFields": {
  23.       "basicAuthPassword": true
  24.     },
  25.     "version": 1,
  26.     "readOnly": false
  27.   },
  28.   "id": 102,
  29.   "message": "Datasource updated",
  30.   "name": "test_datasource"
  31. }

Note: Similar to creating a data source, password and basicAuthPassword should be defined under secureJsonData in order to be stored securely as an encrypted blob in the database. Then, the encrypted fields are listed under secureJsonFields section in the response.

Delete an existing data source by id

DELETE /api/datasources/:datasourceId

Required permissions

See note in the introduction for an explanation.

ActionScope
datasources:deletedatasources:
datasources:id:
datasources:id:1 (single data source)

Examples

Example Request:

  1. DELETE /api/datasources/1 HTTP/1.1
  2. Accept: application/json
  3. Content-Type: application/json
  4. Authorization: Bearer eyJrIjoiT0tTcG1pUlY2RnVKZTFVaDFsNFZXdE9ZWmNrMkZYbk

Example Response:

  1. HTTP/1.1 200
  2. Content-Type: application/json
  4. {"message":"Data source deleted"}

Delete an existing data source by UID

DELETE /api/datasources/uid/:uid

Required permissions

See note in the introduction for an explanation.

ActionScope
datasources:deletedatasources:
datasources:uid:
datasources:uid:kLtEtcRGk (single data source)

Examples

Example request:

  1. DELETE /api/datasources/uid/kLtEtcRGk HTTP/1.1
  2. Accept: application/json
  3. Content-Type: application/json
  4. Authorization: Bearer eyJrIjoiT0tTcG1pUlY2RnVKZTFVaDFsNFZXdE9ZWmNrMkZYbk

Example response:

  1. HTTP/1.1 200
  2. Content-Type: application/json
  4. {
  5.     "message": "Data source deleted",
  6.     "id": 1
  7. }

Delete an existing data source by name

DELETE /api/datasources/name/:datasourceName

Required permissions

See note in the introduction for an explanation.

ActionScope
datasources:deletedatasources:
datasources:name:
datasources:name:test_datasource (single data source)

Examples

Example Request:

  1. DELETE /api/datasources/name/test_datasource HTTP/1.1
  2. Accept: application/json
  3. Content-Type: application/json
  4. Authorization: Bearer eyJrIjoiT0tTcG1pUlY2RnVKZTFVaDFsNFZXdE9ZWmNrMkZYbk

Example Response:

  1. HTTP/1.1 200
  2. Content-Type: application/json
  4. {
  5.   "message":"Data source deleted",
  6.   "id": 1
  7. }

Data source proxy calls

GET /api/datasources/proxy/:datasourceId/*

Proxies all calls to the actual data source.

Query a data source

Queries a data source having a backend implementation.

POST /api/ds/query

Note: Grafana’s built-in data sources usually have a backend implementation.

Example request for the Test data source:

  1. POST /api/ds/query HTTP/1.1
  2. Accept: application/json
  3. Content-Type: application/json
  5. {
  6.    "queries":[
  7.       {
  8.          "refId":"A",
  9.          "scenarioId":"csv_metric_values",
  10.          "datasource":{
  11.             "uid":"PD8C576611E62080A"
  12.          },
  13.          "format": "table"
  14.          "maxDataPoints":1848,
  15.          "intervalMs":200,
  16.          "stringInput":"1,20,90,30,5,0",
  17.       }
  18.    ],
  19.    "from":"now-5m",
  20.    "to":"now"
  21. }

JSON Body schema:

  • from/to – Specifies the time range for the queries. The time can be either epoch timestamps in milliseconds or relative using Grafana time units. For example, now-5m.
  • queries – Specifies one or more queries. Must contain at least 1.
  • queries.datasource.uid – Specifies the UID of data source to be queried. Each query in the request must have a unique datasource.
  • queries.refId – Specifies an identifier of the query. Defaults to “A”.
  • queries.format – Specifies the format the data should be returned in. Valid options are time_series or table depending on the data source.
  • queries.maxDataPoints - Species the maximum amount of data points that a dashboard panel can render. Defaults to 100.
  • queries.intervalMs - Specifies the time series time interval in milliseconds. Defaults to 1000.

In addition, specific properties of each data source should be added in a request (for example queries.stringInput as shown in the request above). To better understand how to form a query for a certain data source, use the Developer Tools in your browser of choice and inspect the HTTP requests being made to /api/ds/query.

Example Test data source time series query response:

  1. {
  2.   "results": {
  3.     "A": {
  4.       "frames": [
  5.         {
  6.           "schema": {
  7.             "refId": "A",
  8.             "fields": [
  9.               {
  10.                 "name": "time",
  11.                 "type": "time",
  12.                 "typeInfo": {
  13.                   "frame": "time.Time"
  14.                 }
  15.               },
  16.               {
  17.                 "name": "A-series",
  18.                 "type": "number",
  19.                 "typeInfo": {
  20.                   "frame": "int64",
  21.                   "nullable": true
  22.                 }
  23.               }
  24.             ]
  25.           },
  26.           "data": {
  27.             "values": [
  28.               [1644488152084, 1644488212084, 1644488272084, 1644488332084, 1644488392084, 1644488452084],
  29.               [1, 20, 90, 30, 5, 0]
  30.             ]
  31.           }
  32.         }
  33.       ]
  34.     }
  35.   }
  36. }

Status codes

CodeDescription
200All data source queries returned a successful response.
400Bad request due to invalid JSON, missing content type, missing or invalid fields, etc. Or one or more data source queries were unsuccessful. Refer to the body for more details.
403Access denied.
404Either the data source or plugin required to fulfil the request could not be found.
500Unexpected error. Refer to the body and/or server logs for more details.

Deprecated resources

The following resources have been deprecated. They will be removed in a future release.

Query a data source by ID

Warning: This API is deprecated since Grafana v8.5.0 and will be removed in a future release. Refer to the new data source query API.

Queries a data source having a backend implementation.

POST /api/tsdb/query

Note: Grafana’s built-in data sources usually have a backend implementation.

Example Request:

  1. POST /api/tsdb/query HTTP/1.1
  2. Accept: application/json
  3. Content-Type: application/json
  5. {
  6.   "from": "1420066800000",
  7.   "to": "1575845999999",
  8.   "queries": [
  9.     {
  10.       "refId": "A",
  11.       "intervalMs": 86400000,
  12.       "maxDataPoints": 1092,
  13.       "datasourceId": 86,
  14.       "rawSql": "SELECT 1 as valueOne, 2 as valueTwo",
  15.       "format": "table"
  16.     }
  17.   ]
  18. }

JSON Body schema:

  • from/to – Specifies the time range for the queries. The time can be either epoch timestamps in milliseconds or relative using Grafana time units. For example, now-5m.
  • queries.refId – Specifies an identifier of the query. Defaults to “A”.
  • queries.format – Specifies the format the data should be returned in. Valid options are time_series or table depending on the data source.
  • queries.datasourceId – Specifies the data source to be queried. Each query in the request must have a unique datasourceId.
  • queries.maxDataPoints - Species the maximum amount of data points that a dashboard panel can render. Defaults to 100.
  • queries.intervalMs - Specifies the time series time interval in milliseconds. Defaults to 1000.

In addition, specific properties of each data source should be added in a request. To better understand how to form a query for a certain data source, use the Developer Tools in your browser of choice and inspect the HTTP requests being made to /api/tsdb/query.

Example request for the MySQL data source:

  1. POST /api/tsdb/query HTTP/1.1
  2. Accept: application/json
  3. Content-Type: application/json
  5. {
  6.   "from": "1420066800000",
  7.   "to": "1575845999999",
  8.   "queries": [
  9.     {
  10.       "refId": "A",
  11.       "intervalMs": 86400000,
  12.       "maxDataPoints": 1092,
  13.       "datasourceId": 86,
  14.       "rawSql": "SELECT\n  time,\n  sum(opened) AS \"Opened\",\n  sum(closed) AS \"Closed\"\nFROM\n  issues_activity\nWHERE\n  $__unixEpochFilter(time) AND\n  period = 'm' AND\n  repo IN('grafana/grafana') AND\n  opened_by IN('Contributor','Grafana Labs')\nGROUP BY 1\nORDER BY 1\n",
  15.       "format": "time_series"
  16.     }
  17.   ]
  18. }

Example MySQL time series query response:

  1. HTTP/1.1 200
  2. Content-Type: application/json
  4. {
  5.   "results": {
  6.     "A": {
  7.       "refId": "A",
  8.       "meta": {
  9.         "rowCount": 0,
  10.         "sql": "SELECT\n  time,\n  sum(opened) AS \"Opened\",\n  sum(closed) AS \"Closed\"\nFROM\n  issues_activity\nWHERE\n  time >= 1420066800 AND time <= 1575845999 AND\n  period = 'm' AND\n  repo IN('grafana/grafana') AND\n  opened_by IN('Contributor','Grafana Labs')\nGROUP BY 1\nORDER BY 1\n"
  11.       },
  12.       "series": [
  13.         {
  14.           "name": "Opened",
  15.           "points": [
  16.             [
  17.               109,
  18.               1420070400000
  19.             ],
  20.             [
  21.               122,
  22.               1422748800000
  23.             ]
  24.           ]
  25.         },
  26.         {
  27.           "name": "Closed",
  28.           "points": [
  29.             [
  30.               89,
  31.               1420070400000
  32.             ]
  33.           ]
  34.         }
  35.       ]
  36.     }
  37.   }
  38. }