Audit Logs API
Transyt maintains a comprehensive audit log of all administrative actions. This is designed to support SOC 2 compliance requirements.
List Audit Logs
Section titled “List Audit Logs”GET /admin/audit-logsQuery Parameters:
| Parameter | Type | Description |
|---|---|---|
actor | string | Filter by the actor who performed the action |
action | string | Filter by action type |
ip_address | string | Filter by source IP address |
since | datetime | Logs created after this time (ISO 8601) |
limit | integer | Max results (default: 100, max: 1000) |
Example:
curl "https://ingest.transyt.com/admin/audit-logs?action=account.create&limit=50" \ -H "X-Admin-Token: YOUR_ADMIN_TOKEN"Audit Log Statistics
Section titled “Audit Log Statistics”GET /admin/audit-logs/statsReturns aggregated statistics about audit log entries.
Example:
curl https://ingest.transyt.com/admin/audit-logs/stats \ -H "X-Admin-Token: YOUR_ADMIN_TOKEN"Purge Old Logs
Section titled “Purge Old Logs”Delete audit logs older than a specified number of days:
DELETE /admin/audit-logsQuery Parameters:
| Parameter | Type | Description |
|---|---|---|
older_than_days | integer | Delete logs older than this many days (minimum: 7, default: 90) |
Example:
curl -X DELETE "https://ingest.transyt.com/admin/audit-logs?older_than_days=90" \ -H "X-Admin-Token: YOUR_ADMIN_TOKEN"What Gets Logged
Section titled “What Gets Logged”All API actions are logged with:
- Actor — Who performed the action (identified by token or IP)
- Action — What was done (e.g.,
account.create,event.replay) - IP Address — Source IP of the request
- Timestamp — When the action occurred
- Details — Additional context about the action