Get
/api/v1/abac/audit
- Lists ABAC audit events.
- Returns a paginated audit log of ABAC-related actions (attribute changes, room attribute changes/removals, and ABAC actions), filterable by time range (start, end) and optional actor, with optional sorting.
- Requires ABAC and Auditing licenses.
Header parameters
X-Auth-Token
stringRequired
The authToken of the authenticated user.
ExampleRScctEHSmLGZGywfIhWyRpyofhKOiMoUIpimhvheU3f
X-User-Id
stringRequired
The userId of the authenticated user.
ExamplerbAXPnMktTFbNpwtJ
Query parameters
start
string
start of time range (defaults to epoch if omitted)
end
string
end of time range (defaults to now if omitted)
actor
string
Filter by actor fields
offset
number
Pagination offset (default 0)
count
number
Page size (default 25)
sort
string
Sorting, typically { "ts": -1 } or { "ts": 1 }
Responses
200
OK
Success
{
"success": true,
"events": [
{
"_id": "EVENT_ID",
"t": "abac.object.attribute.changed",
"ts": "2026-01-30T12:34:56.789Z",
"actor": {
"_id": "USER_ID",
"username": "admin",
"name": "Admin"
},
"data": {}
}
],
"offset": 0,
"count": 25,
"total": 1
}object
success
boolean
events
Array of object
object
_id
string
t
string
ts
string
actor
object
_id
string
username
string
name
string
data
object
offset
integer
count
integer
total
integer
400
Bad Request
Invalid query
{
"success": false,
"error": "error-invalid-query-parameters"
}object
success
boolean
error
string
401
Unauthorized
Unauthorized login attempt
{
"success": false,
"error": "error-unauthorized"
}object
success
boolean
error
string
403
Forbidden
No "abac-management"
{
"success": false,
"error": "error-not-authorized"
}object
success
boolean
error
string