Skip to main content

Audit Logs

Track all activity in your Ozura Vault projects for compliance and monitoring.

Overview

Audit logs record:
  • Token creation and deletion
  • Detokenization requests
  • Proxy transactions
  • Authentication events
  • Settings changes
  • Project management actions

Endpoint

GET /audit-logs

Authentication

Requires JWT token.

Quick Start

curl -X GET "https://pci-vault-hrhwdgc4akhse3bs.eastus-01.azurewebsites.net/audit-logs" \
  -H "Authorization: Bearer YOUR_JWT_TOKEN"

Response

{
  "success": true,
  "data": {
    "logs": [
      {
        "id": "log_abc123",
        "event_type": "TOKEN_CREATION",
        "action": "TOKENIZE",
        "resource_type": "TOKEN",
        "resource_id": "tok_xyz789",
        "user_id": "usr_def456",
        "app_id": "app_ghi789",
        "timestamp": "2024-01-15T10:30:00Z",
        "ip_address": "203.0.113.50",
        "details": {
          "token_type": "card",
          "masked_number": "411111******1111"
        }
      }
    ],
    "pagination": {
      "page": 1,
      "limit": 50,
      "total": 1250
    }
  }
}

Log Entry Fields

FieldDescription
idUnique log entry ID
event_typeType of event (see Event Types)
actionSpecific action taken
resource_typeType of resource affected
resource_idID of affected resource
user_idUser who performed action (if applicable)
app_idApplication used (if applicable)
timestampWhen the event occurred
ip_addressSource IP address
detailsAdditional event-specific data

Sections

Use Cases

Compliance Audits

Demonstrate PCI compliance with complete activity history.

Security Monitoring

Detect unusual patterns:
  • Multiple failed login attempts
  • High detokenization volume
  • Access from unexpected IPs

Debugging

Trace issues through the system:
  • Failed transactions
  • Token not found errors
  • Permission issues

Retention

Audit logs are retained for 2 years by default.

Next Steps