A set of API endpoints provides enterprise customers audit capabilities to support their GRC policies. Utilizing the audit log API endpoints, the Organization Owner can request the following information for a specific duration from their organization users.
Note: Only the last 30 days worth of logs are available for retrieval.
Add authentication log
endpoint
Logs to track user log in and log out, and denied log in activities.
"data": [
{
"time": "2021-08-01T00:00:00Z",
"actor": "email@example.com",
"action": "Logged In|Logged Out",
"ip_address": "192.168.10.1",
"reason": "Authentication Denied"
}
Add authorization logs
endpoint
Logs to track user provisioning, de-provisioning, and role assignment and change activities for an organization and a program.
"data": [
{
"time": "2021-08-01T00:00:00Z",
"actor": "email@example.com -> user that actions permission change",
"object": "email-2@example.com -> User that receives permission change",
"action": "Added|Removed",
"attribute": "org-owner|admin|analyst|viewer",
"resource": "Organization: Redama LLC|Program: Redama VDP"
}
Add disclosure request
endpoint
A set of API endpoints allows an Organization Owner to request the details from a set of submissions that have Disclosure Requests. This helps the organization automate the workflow and respond faster to Disclosure Requests.
"data": [
{
"status": "approved|denied|requested",
"disclosure_level": "limited|full",
"created_at": "2021-08-01T00:00:00Z",
"responded_at": "2021-08-01T00:00:00Z",
"approved_by_id": "email-2@example.com",
"submission_id": "01f98d72-cb21-4a61-8515-70ecc76e3881"
}
}