Altostrat Studio is here — the AI-native network operations IDE for engineers running production. Terminal, diagrams, runbooks, and Copilot in one workspace. Get started →
Getting Started
Platform & Identity
Device Management & Orchestration
Automation & AI
Network Services & Connectivity
Security & Threat Management
Monitoring & Analytics
Core Services & Utilities
curl --request GET \
--url https://v1.api.altostrat.io/audit-logs \
--header 'Authorization: Bearer <token>'{
"data": [
{
"log_id": "log_2zqrA8B3C4d5E6f7g8h9I0jKlMn",
"organization_id": "org_xWl6uERh4pBpJxhA",
"workspace_id": "ws_sz4e50hmqKgjxwiYsK",
"user_id": "auth0|9b6efd7459f548c8bb542fe81568791f",
"name": "Jane Doe",
"email": "jane.doe@altostrat.io",
"session_id": "sess_a1b2c3d4e5f6a7b8",
"event_time": "2025-10-29T12:26:01.123Z",
"method": "PUT",
"endpoint": "/api/v1/projects/proj_A7Bkj29s/settings",
"status_code": 200,
"status_code_type": "2xx",
"ip_address": "188.45.21.109",
"user_agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36",
"frontend_page": "/projects/proj_A7Bkj29s/settings/general",
"request_payload": {
"name": "My Awesome Updated Project",
"visibility": "private"
},
"response_payload": {
"status": "success",
"message": "Project settings updated successfully."
},
"request_id": "req_abc123xyz789-test-01",
"ttl": 1766862361
}
],
"pagination": {
"count": 25,
"limit": 25,
"cursor": "eyJQSyI6eyJTIjoiT1JH...In0sInNrIjp7IlMiOiJMT0cj...In19",
"has_more": true
},
"filters": {
"start_date": "2025-10-01",
"http_verb": "PUT",
"limit": 25
},
"query_info": {
"scanned_count": 150,
"query_time_seconds": 0.082
},
"warnings": [
"Results may be incomplete when using search_term due to query limitations. Use more specific, indexed filters for comprehensive results."
],
"context": {
"requesting_user_id": "auth0|5a4b3c2d1e0f9g8h7i6j5k4l",
"requesting_workspace_id": "ws_abc123def456ghi789",
"organization_id": "org_xWl6uERh4pBpJxhA",
"timestamp": "2025-10-29T14:05:12.345Z"
}
}List audit log events
Retrieve a list of audit log events for your organization. This endpoint supports powerful filtering and pagination to help you find specific events for security, compliance, or debugging purposes.
Results are returned in reverse chronological order (most recent first) by default.
curl --request GET \
--url https://v1.api.altostrat.io/audit-logs \
--header 'Authorization: Bearer <token>'{
"data": [
{
"log_id": "log_2zqrA8B3C4d5E6f7g8h9I0jKlMn",
"organization_id": "org_xWl6uERh4pBpJxhA",
"workspace_id": "ws_sz4e50hmqKgjxwiYsK",
"user_id": "auth0|9b6efd7459f548c8bb542fe81568791f",
"name": "Jane Doe",
"email": "jane.doe@altostrat.io",
"session_id": "sess_a1b2c3d4e5f6a7b8",
"event_time": "2025-10-29T12:26:01.123Z",
"method": "PUT",
"endpoint": "/api/v1/projects/proj_A7Bkj29s/settings",
"status_code": 200,
"status_code_type": "2xx",
"ip_address": "188.45.21.109",
"user_agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36",
"frontend_page": "/projects/proj_A7Bkj29s/settings/general",
"request_payload": {
"name": "My Awesome Updated Project",
"visibility": "private"
},
"response_payload": {
"status": "success",
"message": "Project settings updated successfully."
},
"request_id": "req_abc123xyz789-test-01",
"ttl": 1766862361
}
],
"pagination": {
"count": 25,
"limit": 25,
"cursor": "eyJQSyI6eyJTIjoiT1JH...In0sInNrIjp7IlMiOiJMT0cj...In19",
"has_more": true
},
"filters": {
"start_date": "2025-10-01",
"http_verb": "PUT",
"limit": 25
},
"query_info": {
"scanned_count": 150,
"query_time_seconds": 0.082
},
"warnings": [
"Results may be incomplete when using search_term due to query limitations. Use more specific, indexed filters for comprehensive results."
],
"context": {
"requesting_user_id": "auth0|5a4b3c2d1e0f9g8h7i6j5k4l",
"requesting_workspace_id": "ws_abc123def456ghi789",
"organization_id": "org_xWl6uERh4pBpJxhA",
"timestamp": "2025-10-29T14:05:12.345Z"
}
}Documentation Index
Fetch the complete documentation index at: https://altostrat.io/docs/llms.txt
Use this file to discover all available pages before exploring further.
Authorizations
Bearer authentication header of the form Bearer <token>, where <token> is your auth token.
Query Parameters
The start date for the query range, inclusive. Format: YYYY-MM-DD.
"2025-10-01"
The end date for the query range, inclusive. Must be on or after start_date. Format: YYYY-MM-DD.
"2025-10-31"
Filter events to a specific user by their unique identifier.
"auth0|9b6efd7459f548c8bb542fe81568791f"
Filter events to a specific workspace by its unique identifier.
"ws_sz4e50hmqKgjxwiYsK"
Filter by HTTP method (e.g., POST, DELETE). To exclude a method, prefix it with an exclamation mark (e.g., !GET).
"POST"
Filter by a specific HTTP status code.
100 <= x <= 599404
Filter by the API endpoint path. This is a prefix search (e.g., /api/v1/users will match /api/v1/users/usr_123).
"/api/v1/projects"
A free-text search term. This will search across fields like endpoint, user name, email, IP address, and request/response payloads. Note: Using search_term may be less performant than indexed filters.
"user login failed"
Filter events originating from a specific IP address.
"198.51.100.14"
An opaque string that identifies the starting point for the next page of results. Get this value from the pagination.cursor field of a previous response.
"eyJQSyI6eyJTIjoiT1JH...In0sInNrIjp7IlMiOiJMT0cj...In19"
A limit on the number of objects to be returned, between 1 and 100. The default is 25.
1 <= x <= 10050
The order in which to sort the results. desc for most recent first, asc for oldest first.
asc, desc "desc"
Response
A paginated list of audit log events matching the query.
Show child attributes
Show child attributes
Show child attributes
Show child attributes
The filters that were applied to this query.
{
"start_date": "2025-10-01",
"http_verb": "PUT",
"limit": 25
}Metadata about the query execution.
Show child attributes
Show child attributes
A list of warnings about the query, such as when using potentially incomplete filters.
[
"Results may be incomplete when using search_term due to query limitations. Use more specific, indexed filters for comprehensive results."
]Contextual information about the API request itself.
Show child attributes
Show child attributes
Was this page helpful?