> ## Documentation Index > Fetch the complete documentation index at: https://axiom.co/docs/llms.txt > Use this file to discover all available pages before exploring further. # parse_urlquery > This page explains how to use the parse_urlquery function in APL. The `parse_urlquery` function parses a URL query string and returns a dynamic object containing the query parameters as key-value pairs. Use this function to extract and analyze query parameters from URLs in logs, API requests, or web traffic data. ## For users of other query languages If you come from other query languages, this section explains how to adjust your existing queries to achieve the same results in APL. In Splunk SPL, you use `rex` or URL parsing to extract query parameters. APL's `parse_urlquery` provides structured query string parsing. ```sql Splunk example theme={null} | rex field=url "\\?(?.*)" | eval params=split(query_string, "&") ``` ```kusto APL equivalent theme={null} ['sample-http-logs'] | extend params = parse_urlquery(uri) ``` In ANSI SQL, query string parsing requires complex string manipulation. APL's `parse_urlquery` provides native parsing. ```sql SQL example theme={null} SELECT SUBSTRING(url, POSITION('?' IN url) + 1) AS query_string FROM logs; ``` ```kusto APL equivalent theme={null} ['sample-http-logs'] | extend params = parse_urlquery(uri) ``` ## Usage ### Syntax ```kusto theme={null} parse_urlquery(query_string) ``` ### Parameters | Name | Type | Required | Description | | ------------- | ------ | -------- | -------------------------------------------------------------- | | query\_string | string | Yes | A URL query string (with or without the leading '?') to parse. | ### Returns Returns a dynamic object containing the query parameters as key-value pairs. ## Use case examples Extract and analyze query parameters from API requests to understand search patterns and filter usage. **Query** ```kusto theme={null} ['sample-http-logs'] | extend parameters = parse_urlquery('page=1&limitation=50&sort=date') | extend page = toint(parameters.page) | extend limitation = toint(parameters.limitation) | extend sort = tostring(parameters.sort) | summarize request_count = count() by page, limitation, sort | sort by request_count desc | limit 10 ``` [Run in Playground](https://play.axiom.co/axiom-play-qf1k/query?initForm=%7B%22apl%22%3A%22%5B'sample-http-logs'%5D%20%7C%20extend%20parameters%20%3D%20parse_urlquery\('page%3D1%26limitation%3D50%26sort%3Ddate'\)%20%7C%20extend%20page%20%3D%20toint\(parameters.page\)%20%7C%20extend%20limitation%20%3D%20toint\(parameters.limitation\)%20%7C%20extend%20sort%20%3D%20tostring\(parameters.sort\)%20%7C%20summarize%20request_count%20%3D%20count\(\)%20by%20page%2C%20limitation%2C%20sort%20%7C%20sort%20by%20request_count%20desc%20%7C%20limit%2010%22%7D) **Output** | page | limit | sort | request\_count | | ---- | ----- | ---- | -------------- | | 1 | 50 | date | 8765 | This query parses query parameters from API requests to analyze pagination and sorting preferences. Extract query parameters from HTTP spans to analyze API query patterns. **Query** ```kusto theme={null} ['otel-demo-traces'] | extend query_string = '?user_id=12345&action=checkout¤cy=USD' | extend params = parse_urlquery(query_string) | extend user_id = tostring(params.user_id) | extend action = tostring(params.action) | extend currency = tostring(params.currency) | summarize span_count = count() by action, currency | sort by span_count desc | limit 10 ``` [Run in Playground](https://play.axiom.co/axiom-play-qf1k/query?initForm=%7B%22apl%22%3A%22%5B%27otel-demo-traces%27%5D%20%7C%20extend%20query_string%20%3D%20%27%3Fuser_id%3D12345%26action%3Dcheckout%26currency%3DUSD%27%20%7C%20extend%20params%20%3D%20parse_urlquery\(query_string\)%20%7C%20extend%20user_id%20%3D%20tostring\(params.user_id\)%20%7C%20extend%20action%20%3D%20tostring\(params.action\)%20%7C%20extend%20currency%20%3D%20tostring\(params.currency\)%20%7C%20summarize%20span_count%20%3D%20count\(\)%20by%20action%2C%20currency%20%7C%20sort%20by%20span_count%20desc%20%7C%20limit%2010%22%7D) **Output** | action | currency | span\_count | | -------- | -------- | ----------- | | checkout | USD | 8765 | This query extracts query parameters from span data to analyze user actions and currency usage patterns in a distributed system. Detect potential SQL injection or XSS attacks by analyzing suspicious query parameters. **Query** ```kusto theme={null} ['sample-http-logs'] | extend query_params = parse_urlquery('search=