List audit logs

get/api/v2/auditlog

Query Parameters

  • allTokensboolean
    Whether to include all tokens
  • dateGtestring
    Date greater than or equal to
  • dateLtstring
    Date less than or equal to
  • enterpriseIdstring
    The enterprise ID to filter by
    Example: 59cd72485007a239fb00282ed480da1f
    Pattern: ^[0-9a-f]{32}$
  • includeV1boolean
    Whether to include v1 audit logs
  • limitstring<number>
    Limit the number of results
  • prevIdstring
    The ID of the previous audit log
  • typestring or array
    The types of audit log to filter by
  • userIdstring
    The user ID to filter by
  • walletIdstring
    The wallet ID to filter by
  • sharedPolicyRuleIdstring
    The shared policy rule ID to filter by
  • vaspIdstring
    The VASPs ID to filter by

200 Response

logs array[object] required
The audit logs
id string required
Example: 59cd72485007a239fb00282ed480da1f
Match pattern: ^[0-9a-f]{32}$
type string required
Allowed values: createTransaction approveTransaction rejectTransaction bitgoSigned addPolicy addPolicyServicePolicy addPolicyServiceSettlement changePolicy changePolicyServicePolicy removePolicy removePolicyServicePolicy approvePolicy approvePolicyServicePolicy approvePolicyServiceSettlement rejectPolicy rejectPolicyServicePolicy rejectPolicyServiceSettlement policyUpdated policyServicePolicyUpdated updatePolicyMutability freezeUser adminFreezeUser addUser removeUser shareUser shareUserAccept shareUserCancel shareUserDecline approveUser rejectUser userSignup userLogin userFailedLogin oAuthAuthorize userSourceVerified userSettingsChange userPasswordChange userPasswordReset user2FARemove user2FAAdd adminUnblockUserEmail adminUpdateUserActive adminResetUserOTP adminSetFeatureFlagsForUser adminAllowCoinForUser adminModifyRateLimit createWallet removeWallet freezeWallet unfreezeWallet deleteWallet undeleteWallet renameWallet redeployWallet updateWalletV1 updateWalletType fixWalletType addWalletUser removeWalletUser initializeWallet updateWalletCoinSpecific adminAddCustomNodeForWallet deleteCustomNodeForWallet recoverNonKRSWallet cloneCustodialWallet addWalletFlag deleteWalletFlag updateWalletFlag addWebhook adminAddWebhook removeWebhook getWebhookSecret createWebhookSecret updateNotificationSettings labelAddress unlabelAddress updateComment createSendLabel updateSendLabel deleteSendLabel updateTag updateApprovalsRequired createEnterprise starterSignupCreateEnterprise institutionalSignupCreateEnterprise updateEnterpriseUser approveEnterpriseUser rejectEnterpriseUser freezeEnterprise adminRenameEnterprise adminDeleteEnterprisePricingTypes adminUpdateEnterpriseExternalContract createAccessToken modifyAccessToken deleteAccessToken adminUpdateAccessToken createBankAccount updateBankAccount adminUpdateBankAccount removeBankAccount walletPasswordReset createPasswordReset deletePasswordReset adminUpdatePasswordReset adminAddCustomNode deleteCustomNode removeVideoId externalWithdrawalDetected adminUpdateKycState updateKycState updateEnterprise approveOrganizationUser rejectOrganizationUser bulkCreateOfcWallet upsertRecoveryCodes viewRecoveryCodes createReset2FA verifyReset2FA completeReset2FA retrofitToMPCv2 verifyLivenessCheck adminInternalTokenCreate adminInternalUnverifiedEmailStateReset routedTransactionCreate routedTransactionUpdate routedTransactionRead routedTransactionNoop transactionRouteCreate transactionRouteSignature transactionRouteDeactivate bitgoAdminRolesUpdate bitgoAdminRolesDelete resetWebhookNotifications makeUnspentReservation removeUnspentReservation createCustodialKey deleteCustodialKey createNonceAccounts validateReorg adminCreateQuery adminUpdateQuery adminRunQuery activateMultisigSafeMode activateMultisigSafeModeMultiple updatePricingPlan addPricingPlan createBillingTask handleLightningRPC addUserSignatureShare removeUserSignatureShare updateWalletSendQ fixMissingEnterpriseIdsOnTransactions fixSendAccountingOnTransfers syncMigratedKeys fixDuplicateWalletTxs fixMissingWalletTxs updateSendQTx releaseTxHold createVASP mergeVASP updateVASP cosignRecoveryTransaction cosignTokenRecovery flushTokenBalances flushCoinBalances adminRedeployAddress getUndeployedForwarders changeNonceForTx setNonceForWallet changeGasPriceForTx makeEmptyTransaction initializeAddress updateSendQItem removeSendQItem postAdminEvent adminCreateProduct adminUpdateProduct adminMergeDuplicateAddresses backfillEnterpriseCoinSpecific approveGeneric rejectGeneric updateServicesAgreement claimTransactionByVasp rejectTransactionByVasp freezeKey
ip string <ipv4>
The client IP that caused the AuditLog entry to be written
Example: 127.0.0.1
user string
The user that caused the AuditLog entry to be written
Example: 59cd72485007a239fb00282ed480da1f
Match pattern: ^[0-9a-f]{32}$
requestId string
walletId string
Example: 59cd72485007a239fb00282ed480da1f
Match pattern: ^[0-9a-f]{32}$
enterpriseId string
Example: 59cd72485007a239fb00282ed480da1f
Match pattern: ^[0-9a-f]{32}$
organizationId string
Example: 59cd72485007a239fb00282ed480da1f
Match pattern: ^[0-9a-f]{32}$
coin string
A cryptocurrency symbol or token ticker symbol
Example: btc
data
date string <date-time>
coin string
A cryptocurrency symbol or token ticker symbol
Example: btc
nextBatchPrevId string
When a result set is truncated, this field returns the id of the last object in the previous batch. To get the next batch of results, pass this value via the 'prevId' query parameter.
Example: 59cd72485007a239fb00282ed480da1f