Audit Log Fields
| Field | Description | Example |
|---|---|---|
| Audit Type | There are three audit types: create, update, and delete | update |
| Entity Name | See list below for details | AccessApproval |
| Old Entity | A JSON object of the entity prior to the update | See below |
| New Entity | A JSON object of the entity post-update | See below |
| Diff | A JSON object of the type of changes that were made to the old entity to make it the new entity. | See below |
| Create On | The creation date of this log entry. | 2021-03-19T21:04:15.000Z |
| The email of the user making these changes. | my@email.com |
List of Entity Names
The types of entities:
- AccessApproval
- AccessRequest
- ApprovalWorkflow
- ApprovalWorkflowApproverGroup
- Client
- ClientIdentityProvider
- GroupRole
- IdentityProvider
- RolePermission
- User
- UserGroup
Sample “Old Entity” Field
This is the original Client object. The callback URLs all have port numbers 5000, 5001 or 3001.
{
"id": 7364,
"clientId": "auth-cli-native-second",
"name": "Auth CLI Native Second",
"description": "",
"clientUri": "",
"config": {
"adGroups": [],
"scripts": {
"checkAuthorization": ""
},
"restrictAccess": {
"byEmail": {
"blacklist": [],
"whitelist": []
},
"byIdentityProvider": []
},
"grantTypes": [
"authorization_code"
],
"responseTypes": [
"code"
],
"callbackUrls": [
"http://localhost:5000",
"http://localhost:5001/parameter1/parameter2",
"http://localhost:5001/parameter3/parameter4",
"http://localhost:5001/parameter5/parameter6",
"https://local.mylocal.org:3001/oauth/callback",
"http://localhost:5001"
],
"postLogoutRedirectUris": [
"http://localhost:5000"
],
"tokenEndpointAuthMethod": "client_secret_post",
"logout": {
"frontchannelLogout": {
"enabled": false
},
"showLogoutPrompt": true
},
"featureToggles": {
"enableLegacyApplicationCompatibility": false
}
},
"loginEventSettings": null,
"metadata": {},
"tenantId": 1,
"type": "native",
"createdOn": "2021-03-19T21:04:15.000Z",
"activeX509CertificateFingerprint": "",
"lastClientSecretUpdate": "2021-03-19T21:04:15.000Z",
"clientSecretExpirationHasBeenNotified": false,
"notifyExpirationBeforeSeconds": 2592000,
"secretLifetimeInSeconds": null,
"lastClientSecretExpirationNotifiedDate": null
}
Sample “New Entity” Field
This new entity contains an additional callback URL “https://local.mylocal.org:8080/oauth/callback” with port number 8080.
{
"id": 7364,
"clientId": "auth-cli-native-second",
"name": "Auth CLI Native Second",
"description": "",
"clientUri": "",
"config": {
"adGroups": [],
"scripts": {
"checkAuthorization": ""
},
"restrictAccess": {
"byEmail": {
"blacklist": [],
"whitelist": []
},
"byIdentityProvider": []
},
"grantTypes": [
"authorization_code"
],
"responseTypes": [
"code"
],
"callbackUrls": [
"http://localhost:5000",
"http://localhost:5001/parameter1/parameter2",
"http://localhost:5001/parameter3/parameter4",
"http://localhost:5001/parameter5/parameter6",
"https://local.mylocal.org:3001/oauth/callback",
"http://localhost:5001",
"https://local.mylocal.org:8080/oauth/callback"
],
"postLogoutRedirectUris": [
"http://localhost:5000"
],
"tokenEndpointAuthMethod": "client_secret_post",
"logout": {
"frontchannelLogout": {
"enabled": false
},
"showLogoutPrompt": true
},
"featureToggles": {
"enableLegacyApplicationCompatibility": false
}
},
"loginEventSettings": null,
"metadata": {},
"tenantId": 1,
"type": "native",
"createdOn": "2021-03-19T21:04:15.000Z",
"activeX509CertificateFingerprint": "",
"lastClientSecretUpdate": "2021-03-19T21:04:15.000Z",
"clientSecretExpirationHasBeenNotified": false,
"notifyExpirationBeforeSeconds": 2592000,
"secretLifetimeInSeconds": null,
"lastClientSecretExpirationNotifiedDate": null
}
Sample “Diff” Field
This diff object shows the new callback URL that was added to the original Client object.
{
"config": {
"callbackUrls": {
"added": [
"https://local.mylocal.org:8080/oauth/callback"
]
}
}
}