API ReferenceAudit

Get Audit Summary

Aggregated event counts grouped by action for a time range.

Endpoint

GET /v1/audit/events:summary

Base URL: https://<Domain id="api"/>

Authentication: Bearer token with audit:read scope.

Returns per-action counts for the specified range. Useful for dashboards that compare activity week-over-week.

Query Parameters

Parameter	Type	Required	Description
`start_time`	RFC 3339	Yes	Range start
`end_time`	RFC 3339	Yes	Range end
`organization_id`	string	No	Scope to one org

Example

Response (200 OK)

{
  "buckets": [
    { "action": "session.login",          "count": 12019, "failure_count": 464 },
    { "action": "user.password.changed",  "count": 284,   "failure_count": 12 },
    { "action": "oauth.client.created",   "count":

Export Audit Events

Bulk export audit events as CSV or JSONL and receive a signed download URL.

Analytics

Aggregated login, signup, MFA adoption, and method-breakdown metrics for your tenant.

Get Audit Summary

Endpoint

Query Parameters

Example

Response (200 OK)

On this page