Retrieve Audit Log
GET/v1/audit_logs/:id
Retrieve a single audit log entry by its UUID. For active
entries, metadata.subject_changes carries the before / after
values of the changed attributes (sensitive fields filtered).
Required permission: audit_logs_read.
Request
Path Parameters
Audit log UUID.
Responses
- 200
- 401
- 403
- 404
The audit log entry.
- application/json
- Schema
- Example (from schema)
Schema
A 36-character UUIDv7 identifier.
Possible values: [AcquirerUser, MerchantUser, StaffUser, ApiKey, AcquirerApiKey]
performer
object
nullable
Brief view of the acting user / API key (id, email when applicable).
A 36-character UUIDv7 identifier.
Possible values: [Acquirer, Merchant, null]
organization
object
nullable
Brief view of the owning organization.
A 36-character UUIDv7 identifier.
Model name of the resource acted upon.
A 36-character UUIDv7 identifier.
A 36-character UUIDv7 identifier.
Controller action name.
Possible values: [active, passive]
Request context — request_path, request_payload,
user_agent, ip_info, and for active entries
subject_changes (before / after values, sensitive fields
filtered).
ISO 8601 UTC timestamp with time zone designator.
{
"id": "0191f5a7-3d99-7f81-b7ec-962a5f5fdd7c",
"performer_type": "AcquirerUser",
"performer": {
"id": "0191f5a7-3d99-7f81-b7ec-962a5f5fdd7c",
"email": "string"
},
"organization_type": "Acquirer",
"organization": {
"id": "0191f5a7-3d99-7f81-b7ec-962a5f5fdd7c",
"name": "string",
"merchant_id": "string"
},
"subject_type": "Order",
"subject_id": "0191f5a7-3d99-7f81-b7ec-962a5f5fdd7c",
"login_session_id": "0191f5a7-3d99-7f81-b7ec-962a5f5fdd7c",
"action": "create",
"action_type": "active",
"description": "AcquirerApiKey:0191… performed create action on Merchant:0192…",
"metadata": {},
"created_at": "2025-01-15T14:30:00Z"
}
Authentication failed.
- application/json
- Schema
- Example (from schema)
Schema
{
"message": "Missing authentication information"
}
The API key lacks the required permission.
- application/json
- Schema
- Example (from schema)
Schema
{
"message": "Unauthorized"
}
The referenced resource does not exist or belongs to another acquirer.
- application/json
- Schema
- Example (from schema)
Schema
{
"message": "The Order you are looking for was not found."
}