AuditEvents

Endpointhttps://api.kontorion.eu/v1

List audit events

GET

https://api.kontorion.eu/v1

/audit-events

Returns a paginated, filtered audit log for the calling organization. Replaces the old per-entity state-transition feed: every domain event lands in audit_events, with state.transitioned as one event_type among many. Default page size is 25, max 100.

List audit events › query Parameters

limit

integer

Page size (default 25, max 100)

cursor

string

Pagination cursor

entity_type

string

Filter by entity type (e.g. customer, invoice, subscription)

entity_id

string

Filter by entity UUID

event_type

string[] · explode: true

Filter by event type. Repeatable (?event_type=a&event_type=b) or comma-separated (?event_type=a,b).

actor_type

string

actor_user_id

string

Filter by acting user id

occurred_after

string

Filter by occurred_at >= timestamp (RFC3339)

occurred_before

string

Filter by occurred_at <= timestamp (RFC3339)

List audit events › Responses

Paginated list with data and pagination envelope

object[]

object

actor_email

string

actor_key_id

string

actor_key_prefix

string

actor_label

string

actor_name

string

actor_picture

string

actor_type

string

Legacy flat actor fields — duplicated from Actor so FE consumers that still read actor_email / actor_type keep working through Phase 1. Removed in Phase 5 once the renderer-registry rewrite (Phase 2) migrates them onto the nested actor object.

actor_user_id

string

causation_id

string

correlation_id

string

Cascade chain. correlation_id ties together every event in one top-level operation; causation_id points at the immediate parent. Both nil for legacy rows and standalone operations.

customer_id

string

diff

integer[]

domain

string

Catalog metadata. Denormed onto every response so the FE renderer registry doesn't have to ship a parallel descriptor table. When the EventType is unregistered (legacy / forward-compat) these are omitted and the FE falls back to a generic row.

entity

string

entity_id

string

entity_type

string

Subject — the entity the event is "about", plus parent refs the recorder denormalised so the parent-scoped Audit tab surfaces it.

event_type

string

EventType is the canonical wire name (e.g. "subscription.phase.added").

id

string

occurred_at

string

organization_id

string

payload

integer[]

plan_id

string

product_id

string

request_id

string

severity

string

subscription_id

string

summary

string

Content. Summary is the human one-liner shown verbatim in the table; Payload is event-type-specific JSON the per-event renderer parses; Diff is the typed change-set jsonb for mutation events.

trace_id

string

verb

string

visibility

string

GET/audit-events

curl --request GET \
  --url https://api.kontorion.eu/v1/audit-events

shell

Example Responses

{
  "key": [
    {
      "actor": {
        "email": "email",
        "key_id": "key_id",
        "key_prefix": "key_prefix",
        "label": "label",
        "name": "name",
        "picture": "picture",
        "type": "type",
        "user_id": "user_id"
      },
      "actor_email": "actor_email",
      "actor_key_id": "actor_key_id",
      "actor_key_prefix": "actor_key_prefix",
      "actor_label": "actor_label",
      "actor_name": "actor_name",
      "actor_picture": "actor_picture",
      "actor_type": "actor_type",
      "actor_user_id": "actor_user_id",
      "causation_id": "causation_id",
      "correlation_id": "correlation_id",
      "customer_id": "customer_id",
      "diff": [
        0
      ],
      "domain": "domain",
      "entity": "entity",
      "entity_id": "entity_id",
      "entity_type": "entity_type",
      "event_type": "event_type",
      "id": "id",
      "occurred_at": "occurred_at",
      "organization_id": "organization_id",
      "payload": [
        0
      ],
      "plan_id": "plan_id",
      "product_id": "product_id",
      "request_id": "request_id",
      "severity": "severity",
      "subscription_id": "subscription_id",
      "summary": "summary",
      "trace_id": "trace_id",
      "verb": "verb",
      "visibility": "visibility"
    }
  ]
}

json

application/json

List customer audit events

GET

https://api.kontorion.eu/v1

/customers/{id}/audit-events

Returns the customer-facing audit feed for one customer. Only rows whose payload was opted in via CustomerVisiblePayload are returned - internal columns (actor metadata, request/trace, raw internal payload) are stripped at the repository layer. Default page size is 25, max 100.

List customer audit events › path Parameters

id

string · required

Customer UUID

List customer audit events › query Parameters

limit

integer

Page size (default 25, max 100)

cursor

string

Pagination cursor

event_type

string

Filter by event type

occurred_after

string

Filter by occurred_at >= timestamp (RFC3339)

occurred_before

string

Filter by occurred_at <= timestamp (RFC3339)

List customer audit events › Responses

Paginated list with data and pagination envelope

object[]

domain

string

entity

string

entity_id

string

entity_type

string

event_type

string

id

string

occurred_at

string

payload

integer[]

verb

string

Approval Workflows AuditRetention

List audit events

GET

https://api.kontorion.eu/v1

/audit-events

List audit events › query Parameters

limit

integer

Page size (default 25, max 100)

cursor

string

Pagination cursor

entity_type

string

Filter by entity type (e.g. customer, invoice, subscription)

entity_id

string

Filter by entity UUID

event_type

string[] · explode: true

Filter by event type. Repeatable (?event_type=a&event_type=b) or comma-separated (?event_type=a,b).

actor_type

string

actor_user_id

string

Filter by acting user id

occurred_after

string

Filter by occurred_at >= timestamp (RFC3339)

occurred_before

string

Filter by occurred_at <= timestamp (RFC3339)

List audit events › Responses

Paginated list with data and pagination envelope

object[]

object

actor_email

string

actor_key_id

string

actor_key_prefix

string

actor_label

string

actor_name

string

actor_picture

string

actor_type

string

actor_user_id

string

causation_id

string

correlation_id

string

Cascade chain. correlation_id ties together every event in one top-level operation; causation_id points at the immediate parent. Both nil for legacy rows and standalone operations.

customer_id

string

diff

integer[]

domain

string

entity

string

entity_id

string

entity_type

string

Subject — the entity the event is "about", plus parent refs the recorder denormalised so the parent-scoped Audit tab surfaces it.

event_type

string

EventType is the canonical wire name (e.g. "subscription.phase.added").

id

string

occurred_at

string

organization_id

string

payload

integer[]

plan_id

string

product_id

string

request_id

string

severity

string

subscription_id

string

summary

string

Content. Summary is the human one-liner shown verbatim in the table; Payload is event-type-specific JSON the per-event renderer parses; Diff is the typed change-set jsonb for mutation events.

trace_id

string

verb

string

visibility

string

List customer audit events

GET

https://api.kontorion.eu/v1

/customers/{id}/audit-events

List customer audit events › path Parameters

id

string · required

Customer UUID

List customer audit events › query Parameters

limit

integer

Page size (default 25, max 100)

cursor

string

Pagination cursor

event_type

string

Filter by event type

occurred_after

string

Filter by occurred_at >= timestamp (RFC3339)

occurred_before

string

Filter by occurred_at <= timestamp (RFC3339)

List customer audit events › Responses

Paginated list with data and pagination envelope

object[]

domain

string

entity

string

entity_id

string

entity_type

string

event_type

string

id

string

occurred_at

string

payload

integer[]

verb

string