Adding manage datasets and api page + updates

Author: Maddy-Cloudflare

src/content/docs/log-explorer/api.mdx

@@ -0,0 +1,89 @@
+---
+pcx_content_type: reference
+title: Log Explorer API
+sidebar:
+  order: 5
+---
+
+Log searches are available via the [API](https://developers.cloudflare.com/log-explorer/). 
+
+Log Explorer exposes a query endpoint that uses familiar SQL syntax for querying your logs generated with Cloudflare's network.
+
+For example, to find an HTTP request with a specific [Ray ID](/fundamentals/reference/cloudflare-ray-id/), you can perform the following SQL query:
+
+```bash
+curl https://api.cloudflare.com/client/v4/zones/{zone_id}/logs/explorer/query/sql \
+--header "Authorization: Bearer <API_TOKEN>" \
+--url-query query="SELECT clientRequestScheme, clientRequestHost, clientRequestMethod, edgeResponseStatus, clientRequestUserAgent FROM http_requests WHERE RayID = '806c30a3cec56817' LIMIT 1"
+```
+
+Which returns the following HTTP request details:
+
+```json
+{
+	"result": [
+		{
+			"clientrequestscheme": "https",
+			"clientrequesthost": "example.com",
+			"clientrequestmethod": "GET",
+			"clientrequestuseragent": "curl/7.88.1",
+			"edgeresponsestatus": 200
+		}
+	],
+	"success": true,
+	"errors": [],
+	"messages": []
+}
+```
+
+A example to find Cloudflare Access requests with selected columns from a specific timeframe, you can perform the following SQL query:
+
+```bash
+curl https://api.cloudflare.com/client/v4/account/{account_id}/logs/explorer/query/sql \
+--header "Authorization: Bearer <API_TOKEN>" \
+--url-query query="SELECT CreatedAt, AppDomain, AppUUID, Action, Allowed, Country, RayID, Email, IPAddress, UserUID FROM access_requests WHERE Date >= '2025-02-06' AND Date <= '2025-02-06' AND CreatedAt >= '2025-02-06T12:28:39Z' AND CreatedAt <= '2025-02-06T12:58:39Z'"
+```
+
+Which returns the following request details:
+
+```json
+{
+	"result": [
+		{
+			"createdat": "2025-01-14T18:17:55Z",
+			"appdomain": "example.com",
+			"appuuid": "a66b4ab0-ccdf-4d60-a6d0-54a59a827d92",
+			"action": "login",
+			"allowed": true,
+			"country": "us",
+			"rayid": "90fbb07c0b316957",
+			"email": "[email protected]",
+			"ipaddress": "1.2.3.4",
+			"useruid": "52859e81-711e-4de0-8b31-283336060e79"
+		}
+	],
+	"success": true,
+	"errors": [],
+	"messages": []
+}
+```
+
+## Authentication
+
+Log Search is available to users with the following permissions:
+
+- **Logs Edit**: users with Logs Edit permissions can enable datasets.
+- **Logs Read**: users with Logs Read permissions can run queries via the UI or API.
+
+Note that these permissions exist at the account and zone level and you need the appropriate permission level for the datasets you wish to query.
+
+Authentication with the API can be done via an authentication header or API token. Append your API call with either of the following additional parameters.
+
+- **Authentication header**
+
+  - `X-Auth-Email` - the Cloudflare account email address associated with the domain
+  - `X-Auth-Key` - the Cloudflare API key
+
+- **API token**
+
+  - `Authorization: Bearer <API_TOKEN>` To create an appropriately scoped API token, refer to [Create API token](/fundamentals/api/get-started/create-token/) documentation. Copy and paste the token into the authorization parameter for your API call.

src/content/docs/log-explorer/custom-dashboards.mdx

@@ -7,14 +7,15 @@ sidebar:
 
 Custom dashboards allow you to create tailored dashboards to monitor application security, performance, and usage. You can create monitors for ongoing monitoring of a previous incident, use them to identify indicators of suspicious activity, and access templates to help you get started.
 
-Dashboards provide a visual interface that displays key metrics and analytics, helping you monitor and analyze data efficiently. Different dashboards serve different purposes. For example, a security dashboard tracks attack attempts and threats, a performance dashboard monitors API latency and uptime, and a usage dashboard analyzes traffic patterns and user behavior.
-
-Different metrics serve distinct roles in providing insights into your application's performance. For example, total HTTP requests offers an overview of traffic volume, while average response time helps assess application speed. Additionally, usage metrics such as traffic patterns and user behavior provide insight into how users interact with your application. These metrics together enable you to spot trends, identify problems, and make informed, data-driven decisions.
-
 :::note
-Custom dashboards is currently available to customers participating in the Log Explorer beta. To begin using custom dashboards, you will first need to request access to [Log Explorer](/logs/log-explorer/).
+Enterprise customers can create up to 100 dashboards.
+Customers on Pro and Business plans can create up to 5 dashboards.
 :::
 
+Dashboards provide a visual interface that displays key metrics and analytics, helping you monitor and analyze data efficiently. Different dashboards serve different purposes. For example, a security dashboard tracks attack attempts and threats, a performance dashboard monitors API latency and uptime, and a usage dashboard analyzes traffic patterns and user behavior.
+
+Different metrics serve distinct roles in providing insights into your application's performance. For example, total HTTP requests offer an overview of traffic volume, while average response time helps assess application speed. Additionally, usage metrics such as traffic patterns and user behavior provide insight into how users interact with your application. These metrics together enable you to spot trends, identify problems, and make informed, data-driven decisions.
+
 ## Create a new dashboard
 
 To create a new dashboard:

src/content/docs/log-explorer/index.mdx

@@ -17,17 +17,25 @@ With Log Explorer, you can monitor security and performance issues with custom d
 
 ## Features
 
-<Feature header="Log Search">
+<Feature header="Log Search" href="/log-explorer/log-search/">
 Search logs enable you to store and explore your Cloudflare logs directly within the Cloudflare dashboard or API.
 </Feature>
 
-<Feature header="Custom dashboards">
+<Feature header="Custom dashboards" href="/log-explorer/custom-dashboards/">
 Custom dashboards enable you to design customized views for tracking application security, performance, and usage metrics.
 </Feature>
 
+<Feature header="Manage datasets" href="/log-explorer/manage-datasets/">
+Manage the data you want to store within Log Explorer. 
+</Feature>
+
+<Feature header="API" href= "/log-explorer/api/">
+Manage configuration and perform queries via the API.
+</Feature>
+
 ## Related products
 
-<RelatedProduct header="Logs" href="/logs/" product="logs">
+<RelatedProduct header="Logpush" href="/logs/" product="logs">
 Detailed logs that contain metadata generated by Cloudflare products helpful for debugging, identifying configuration adjustments, and creating analytics. 
 </RelatedProduct>
 

src/content/docs/log-explorer/log-search.mdx

@@ -11,101 +11,14 @@ Log Explorer enables you to store and explore your Cloudflare logs directly with
 
 ## Supported datasets
 
-Log Explorer is available at the account and zone level. At the zone level, datasets currently available are:
+Log Explorer currently supports:
 
 - [HTTP requests](/logs/reference/log-fields/zone/http_requests/) (`FROM http_requests`)
 - [Firewall events](/logs/reference/log-fields/zone/firewall_events/) (`FROM firewall_events`)
 
-At the account level, the datasets available are:
-
-<Render file="log-explorer-account-datasets" product="logs" />
-
-## Authentication
-
-Log Search is available to users with the following permissions:
-
-- **Logs Edit**: users with Logs Edit permissions can enable datasets.
-- **Logs Read**: users with Logs Read permissions can run queries via the UI or API.
-
-Note that these permissions exist at the account and zone level and you need the appropriate permission level for the datasets you wish to query.
-
-Authentication with the API can be done via an authentication header or API token. Append your API call with either of the following additional parameters.
-
-- **Authentication header**
-
-  - `X-Auth-Email` - the Cloudflare account email address associated with the domain
-  - `X-Auth-Key` - the Cloudflare API key
-
-- **API token**
-
-  - `Authorization: Bearer <API_TOKEN>` To create an appropriately scoped API token, refer to [Create API token](/fundamentals/api/get-started/create-token/) documentation. Copy and paste the token into the authorization parameter for your API call.
-
-## Enable Log Explorer
-
-In order for Log Explorer to begin storing logs, you need to enable the desired datasets. You can do this via the dashboard or the API.
-
-<Tabs syncKey="dashPlusAPI"> <TabItem label="Dashboard">
-
-1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login) and select your account or domain (also known).
-2. Go to **Log Explorer** > **Manage datasets**.
-3. Select **Add dataset** to select the datasets you want to query. 
-4. Choose a dataset and then a zone. Then, select **Add**. You can always return to this page to enable more datasets or manage your existing ones.
-
-:::note
-It may take a few minutes for the logs to become available for querying.
-:::
-
-</TabItem> <TabItem label="API">
-
-Use the Log Explorer API to enable Log Explorer for each dataset you wish to store. It may take a few minutes after a log stream is enabled before you can view the logs.
-
-The following curl command is an example for enabling the zone-level dataset `http_requests`, as well as the expected response when the command succeeds.
-
-```bash
-curl https://api.cloudflare.com/client/v4/zones/{zone_id}/logs/explorer/datasets \
---header "Authorization: Bearer <API_TOKEN>" \
---header "Content-Type: application/json" \
---data '{
-  "dataset": "http_requests"
-}'
-```
-
-```json
-{
-  "result": {
-    "dataset": "http_requests",
-    "object_type": "zone",
-    "object_id": "<ZONE ID>",
-    "created_at": "2025-06-03T14:33:16Z",
-    "updated_at": "2025-06-03T14:33:16Z",
-    "dataset_id": "01973635f7e273a1964a02f4d4502499",
-    "enabled": true
-  },
-  "success": true,
-  "errors": [],
-  "messages": []
-}
-```
-
-If you would like to enable an account-level dataset, replace `zones/{zone_id}` with `accounts/{account_id}` in the curl command. For example:
-
-```bash
-curl https://api.cloudflare.com/client/v4/accounts/{account_id}/logs/explorer/datasets \
---header "Authorization: Bearer <API_TOKEN>" \
---header "Content-Type: application/json" \
---data '{
-  "dataset": "access_requests"
-}'
-```
-
-</TabItem> </Tabs>
-
 ## Use Log Explorer
 
-Filtering and viewing your logs is available via the Cloudflare Dashboard or via query API.
-
-<Tabs syncKey="dashPlusAPI"> <TabItem label="Dashboard">
-
+You can filter and view your logs via the Cloudflare dashboard or the API.
 
 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login) and select your account.
 2. Go to  **Log Explorer** > **Log Search**.
@@ -117,88 +30,70 @@ Filtering and viewing your logs is available via the Cloudflare Dashboard or via
 8. Select **Run query** when you are done. The results are displayed below within the **Query results** section.
 
 :::note
-
 You can also access the Log Explorer dashboard directly from the [Security Analytics dashboard](/waf/analytics/security-analytics/#logs). When doing so, the filters you applied in Security Analytics will automatically carry over to your query in Log Explorer.
-
 :::
 
-</TabItem> <TabItem label="API">
-
-Log Explorer exposes a query endpoint that uses a familiar SQL syntax for querying your logs generated with Cloudflare's network.
-
-For example, to find an HTTP request with a specific [Ray ID](/fundamentals/reference/cloudflare-ray-id/), you can perform the following SQL query:
-
-```bash
-curl https://api.cloudflare.com/client/v4/zones/{zone_id}/logs/explorer/query/sql \
---header "Authorization: Bearer <API_TOKEN>" \
---url-query query="SELECT clientRequestScheme, clientRequestHost, clientRequestMethod, edgeResponseStatus, clientRequestUserAgent FROM http_requests WHERE RayID = '806c30a3cec56817' LIMIT 1"
-```
-
-Which returns the following HTTP request details:
-
-```json
-{
-	"result": [
-		{
-			"clientrequestscheme": "https",
-			"clientrequesthost": "example.com",
-			"clientrequestmethod": "GET",
-			"clientrequestuseragent": "curl/7.88.1",
-			"edgeresponsestatus": 200
-		}
-	],
-	"success": true,
-	"errors": [],
-	"messages": []
-}
+For example, to find an HTTP request with a specific [Ray ID](/fundamentals/reference/cloudflare-ray-id/), go to **Custom SQL**, and enter the following SQL query:
+
+```sql
+	SELECT 
+		clientRequestScheme, 
+		clientRequestHost, 
+		clientRequestMethod, 
+		edgeResponseStatus, 
+		clientRequestUserAgent 
+	FROM http_requests 
+	WHERE RayID = '806c30a3cec56817' 
+	LIMIT 1
 ```
 
-For another example using an account-level dataset, to find Cloudflare Access requests with selected columns from a specific timeframe, you can perform the following SQL query:
-
-```bash
-curl https://api.cloudflare.com/client/v4/account/{account_id}/logs/explorer/query/sql \
---header "Authorization: Bearer <API_TOKEN>" \
---url-query query="SELECT CreatedAt, AppDomain, AppUUID, Action, Allowed, Country, RayID, Email, IPAddress, UserUID FROM access_requests WHERE Date >= '2025-02-06' AND Date <= '2025-02-06' AND CreatedAt >= '2025-02-06T12:28:39Z' AND CreatedAt <= '2025-02-06T12:58:39Z'"
-```
-
-Which returns the following request details:
-
-```json
-{
-	"result": [
-		{
-			"createdat": "2025-01-14T18:17:55Z",
-			"appdomain": "example.com",
-			"appuuid": "a66b4ab0-ccdf-4d60-a6d0-54a59a827d92",
-			"action": "login",
-			"allowed": true,
-			"country": "us",
-			"rayid": "90fbb07c0b316957",
-			"email": "[email protected]",
-			"ipaddress": "1.2.3.4",
-			"useruid": "52859e81-711e-4de0-8b31-283336060e79"
-		}
-	],
-	"success": true,
-	"errors": [],
-	"messages": []
-}
+Another example to find Cloudflare Access requests with selected columns from a specific timeframe, you can perform the following SQL query:
+
+```sql
+	SELECT 
+  		CreatedAt, 
+		AppDomain, 
+		AppUUID, 
+		Action, 
+		Allowed, 
+		Country, 
+		RayID, 
+		Email, 
+		IPAddress, 
+		UserUID 
+	FROM access_requests 
+	WHERE Date >= '2025-02-06' AND Date <= '2025-02-06' AND CreatedAt >= '2025-02-06T12:28:39Z' AND CreatedAt <= '2025-02-06T12:58:39Z'
 ```
 
-</TabItem> </Tabs>
-
 ### Save queries
 
 After selecting all the fields for your query, you can save it by selecting **Save query**. Provide a name and description to help identify it later. To view your saved and recent queries, select **Queries** — they will appear in a side panel where you can insert a new query, or delete any query.
 
 ## Optimize your queries
 
-All the tables supported by Log Explorer contain a special column called `date`, which helps to narrow down the amount of data that is scanned to respond to your query, resulting in faster query response times. The value of `date` must be in the form of `YYYY-MM-DD`. For example, to query logs that occurred on October 12, 2023, add the following to your `WHERE` clause: `date = '2023-10-12'`. The column supports the standard operators of `<`, `>`, and `=`:
+All the tables supported by Log Explorer contain a special column called `date`, which helps to narrow down the amount of data that is scanned to respond to your query, resulting in faster query response times. The value of `date` must be in the form of `YYYY-MM-DD`. For example, to query logs that occurred on October 12, 2023, add the following to your `WHERE` clause: `date = '2023-10-12'`. The column supports the standard operators of `<`, `>`, and `=`.
 
-```bash
-curl https://api.cloudflare.com/client/v4/zones/{zone_id}/logs/explorer/query/sql \
---header "Authorization: Bearer <API_TOKEN>" \
---url-query query="SELECT clientRequestMethod, clientRequestPath, clientRequestProtocol FROM http_requests WHERE date = '2023-10-12' LIMIT 500"
+1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/login) and select your account.
+2. Go to  **Log Explorer** > **Log Search** > **Custom SQL**.
+3. Enter the following SQL query:
+
+```sql
+	SELECT 
+		clientip, 
+		clientrequesthost, 
+		clientrequestmethod, 
+		clientrequesturi, 
+		edgeendtimestamp, 
+		edgeresponsestatus, 
+		originresponsestatus, 
+		edgestarttimestamp, 
+		rayid, 
+		clientcountry, 
+		clientrequestpath, date
+	FROM 
+		http_requests
+	WHERE 
+		date = '2023-10-12' LIMIT 500
 ```
 
 ### Additional query optimization tips