Fetches audit history based on query parameters

GET /audit

Fetches audit history and parses based on query parameters

Request

Query Parameters

actionType ActionType

Possible values: [created, updated, deleted]

The type of action to search for.

OrganisationIdQueryParameter OrganisationId

Possible values: non-empty and <= 40 characters, Value must match regular expression ^[^<>]*$

The organisation ID

resourceType ResourceType

Possible values: [apiResource, apiDiscoveryEndpoint, authorisationServer, authorisationServerCertification, certificationManager, contact, organisation, organisationCertificate, organisationAdmin, organisationAuthorityClaim, organisationAuthorityClaimAuthorisations, organisationAuthorityDomainClaim, organisationAuthorityDomainClaimUser, organisationTermsAndConditions, softwareStatement, softwareStatementAuthorityRoleClaim, softwareStatementCertificate, softwareStatementCertification, referenceAuthorisationDomain, referenceAuthorisationDomainRole, referenceAuthorisationDomainRoleMetadata, referenceAuthority, referenceAuthorityAuthorisationDomain, referenceTermsAndConditions, superUser]

The type of resource to search for.

Example: apiResource

resourceId string

The ID of the specific resource we want to parse by.

performedBy string

The user email you want to parse by. This will be performed for createdBy and updatedBy based on the revision type

startDate date-time

Optional start of date range to constrain the set of results returned. This will restrict the clients returned to those whose metadata was most recently modified after the specified startDate. The date must be supplied in RFC3339 format. If not supplied, the startDate used will be the epoch.

Example: 2022-05-12T23:20:50Z

endDate date-time

Optional end of date range to constrain the set of results returned. This will restrict the clients returned to those whose metadata was most recently modified before the specified sendDate. The date must be supplied in RFC3339 format. If not supplied, the endDate used will be the current date and time.

Example: 2022-05-15T23:20:50Z

page integer

The page number to return of the result set

size integer

The size of the pages to return

sort string

The field name to sort

Header Parameters

x-fapi-auth-date string

Possible values: Value must match regular expression ^(Mon|Tue|Wed|Thu|Fri|Sat|Sun), \d{2} (Jan|Feb|Mar|Apr|May|Jun|Jul|Aug|Sep|Oct|Nov|Dec) \d{4} \d{2}:\d{2}:\d{2} (GMT|UTC)$

The time when the PSU last logged in with the TPP. All dates in the HTTP headers are represented as RFC 7231 Full Dates. An example is below: Sun, 10 Sep 2017 19:43:31 UTC

x-fapi-customer-ip-address string

The PSU's IP address if the PSU is currently logged in with the TPP.

x-fapi-interaction-id string

An RFC4122 UID used as a correlation id.

x-customer-user-agent string

Indicates the user-agent that the PSU is using.

Responses

Audit history in paginated form

Response Headers

x-fapi-interaction-id
string

application/json

Schema
Example (from schema)

Schema

items

object[]

Array [

anyOf

OrganisationAuthorityClaimDetailsAudit
SoftwareStatementAudit

ResourceType ResourceType (string)

EntryType ActionType (string)

Possible values: [created, updated, deleted]

PerformedBy string

The user who performed the action

Timestamp date

When the action was performed

EntryId integer

The unique ID of the action

OrganisationId OrganisationId (string)

Possible values: non-empty and <= 40 characters, Value must match regular expression ^[^<>]*$

Unique ID associated with the organisation

OrganisationAuthorityClaimId OrganisationAuthorityClaimId (string)

Possible values: non-empty and <= 40 characters, Value must match regular expression ^[^<>]*$

Unique ID associated with the authority claims

AuthorityId AuthorityId (string)

Possible values: non-empty and <= 40 characters, Value must match regular expression ^[^<>]*$

Unique ID associated with the Authorisation reference schema

Status StatusEnum (string)

Possible values: [Active, Inactive]

Default value: Active

Current status of this resource

AuthorisationDomain string

Possible values: <= 30 characters, Value must match regular expression ^[^<>]*$

Authorisation Domain for the authority

Role AuthorisationDomainRoleName (string)

Possible values: non-empty and <= 60 characters, Value must match regular expression ^[^<>]*$

The authorisation domain role name

RegistrationId string

Possible values: <= 40 characters, Value must match regular expression ^[^<>]*$

Registration ID for the organisation

UniqueTechnicalIdenifier string[]deprecated

Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$

Legacy and will eventually be removed - please use UniqueTechnicalIdentifiers instead

UniqueTechnicalIdentifiers UniqueTechnicalIdentifier (string)[]

Possible values: <= 16

ResourceType ResourceType (string)

EntryType ActionType (string)

Possible values: [created, updated, deleted]

PerformedBy string

The user who performed the action

Timestamp date

When the action was performed

EntryId integer

The unique ID of the action

Status string

Possible values: [Active, Suspended, Inactive]

Default value: Active

Is this software statement Active/Suspended/Inactive

ClientId ClientId (string)

Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$

Software Statement client Id

ClientName ClientName (string)

Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$

Software Statement client name

Description string

Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$

Software Statement description

Environment string

Possible values: <= 40 characters, Value must match regular expression ^[^<>]*$

The additional check for software statement, this field can avoid

OrganisationId OrganisationId (string)

Possible values: non-empty and <= 40 characters, Value must match regular expression ^[^<>]*$

Unique ID associated with the organisation

SoftwareStatementId SoftwareStatementId (string)

Possible values: <= 40 characters, Value must match regular expression ^[^<>]*$

Unique Software Statement Id

Mode string

Possible values: <= 8 characters, [Live, Test]

Default value: Live

Software Statement mode

RtsClientCreated boolean

Client created flag

OnBehalfOf string

Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$

A reference to fourth party organisation resource on the RTS Directory if the registering Org is acting on behalf of another

PolicyUri uri

Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*

A compliant URI string that points to a human-readable privacy policy document

ClientUri uri

Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*

The Software Statement client compliant URI

LogoUri uri

Possible values: Value must match regular expression ^(http://|https://).*.(svg|png|jpg|jpeg)$|(data:image/[a-zA-Z0-9;+=-]+,[A-Za-z0-9+/]*={0,2})$

A compliant URI

RedirectUri uri[]

Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*

PostLogoutRedirectUris uri[]

Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*

ApiWebhookUri uri[]

Possible values: <= 255 characters, Value must match regular expression ^(https:\/\/[^\s/?#]+(?:\/[^\s\/?#]+)*)$

TermsOfServiceUri uri

Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*

The Software Statement terms of service compliant URI

NotificationWebhook uri

Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*

A compliant URI

NotificationWebhookStatus NotificationWebhookStatusEnum (string)

Possible values: [Pending, Confirmed, Deactivated]

Default value: Pending

Version SoftwareVersion (number)deprecated

Possible values: <= 40 characters

Software Statement version as provided by the organisation's software team

Locked boolean

Flag shows if assertion has been generated on the software statement - will be set to true when assertion is generated

UpdateFailed boolean

Flag shows if software statement is in failed update state

UpdateFailedReason string

Possible values: Value must match regular expression ^[^<>]*$

Error message describing why the update failed

AdditionalSoftwareMetadata AdditionalSoftwareMetadata (string)

Possible values: <= 255 characters, Value must match regular expression ^[^<>]*$

Extra metadata defined by the org admins to be loaded into the software statement and made avaiable during introspection

OpenidFederationEnabled OpenidFederationEnabled (boolean)

Is this software statement enabled for federation

OpenidFederationEntityManagementType OpenidFederationEntityManagementType (string)

Possible values: [openid_entity_federation_managed, openid_entity_self_managed]

The type of federation management that applies to this software statement

RequireSignedRequestObject RequireSignedRequestObject (boolean)

Default value: true

Require a signed request object. If this is set to false, the client will not be FAPI compliant

IdTokenSignedResponseAlgorithm IdTokenSignedResponseAlgorithm (string)

Possible values: [PS256, RS256]

Default value: PS256

Signing algorithm that a client expects the server to return an id_token with. Must be PS256

TokenEndpointAuthMethod TokenEndpointAuthMethod (string)

Possible values: non-empty and <= 60 characters, [private_key_jwt, tls_client_auth, client_secret_basic]

Default value: private_key_jwt

Token endpoint authentication method

OriginUri uri[]

Possible values: <= 255 characters, Value must match regular expression ^https:\/\/(?:[a-zA-Z0-9-]+\.)+[a-zA-Z]+(?::\d+)?(?:\/[a-zA-Z0-9-._~!$&'()*+,;=:@\/?%]*)?(?:\?[a-zA-Z0-9-._~!$&'()*+,;=:@\/?%]*)?(?:#[a-zA-Z0-9-._~!$&'()*+,;=:@\/?%]*)?$|(^android:apk-key-hash:[a-zA-Z0-9-]+)|(^ios:bundle-id:[a-zA-Z][-a-zA-Z0-9]*\.([a-zA-Z][-a-zA-Z0-9]*\.?)+)$

TlsClientCertificateBoundAccessTokens TlsClientCertificateBoundAccessTokens (boolean)

Default value: true

Are the tokens issued for this client bound to a client tls certificate

RelatedAuthorisationServer uuidnullable

ID of the Authorisation Server that is connected to this Software Statement

HomepageUri uri

Possible values: <= 255 characters, Value must match regular expression ^(http://|https://).*

The URI for the website with details about the application and its services

]

totalPages integer

totalSize integer

pageable

object

number integer

Page number

sort

object

sorted boolean

orderBy

object[]

Array [

property string

Name of the property used for sorting

direction string

Possible values: [ASC, DESC]

Direction of sort, i.e. ascending or descending

ignoreCase boolean

Was the case ignored

ascending boolean

Whether ascending

]

size integer

Size of the page

offset integer

Offset

sorted boolean

Is the page sorted

unpaged boolean

Is this an unpaged response

numberOfElements integer

size integer

offset integer

empty boolean

pageNumber integer

{
  "items": [
    {},
    {}
  ],
  "totalPages": 0,
  "totalSize": 0,
  "pageable": {
    "number": 0,
    "sort": {
      "sorted": true,
      "orderBy": [
        {
          "property": "createdAt",
          "direction": "ASC",
          "ignoreCase": true,
          "ascending": true
        }
      ]
    },
    "size": 0,
    "offset": 0,
    "sorted": true,
    "unpaged": true
  },
  "numberOfElements": 0,
  "size": 0,
  "offset": 0,
  "empty": true,
  "pageNumber": 0
}

Bad Request

Response Headers

x-fapi-interaction-id
string

application/json

Schema
Example (from schema)

Schema

errors string[]

Validation Error messages

{
  "errors": [
    "string"
  ]
}

Not found

Response Headers

x-fapi-interaction-id
string

application/json

Schema
Example (from schema)

Schema

errors string[]

Validation Error messages

{
  "errors": [
    "string"
  ]
}

Request is not yet implemented

Response Headers

x-fapi-interaction-id
string

application/json

Schema
Example (from schema)

Schema

errors string[]

Validation Error messages

{
  "errors": [
    "string"
  ]
}

Fetches audit history based on query parameters

/audit

Request​

Query Parameters

Header Parameters

Responses​

Request

Responses