List audit records
Lists audit evidence records with optional filters by actor, action type, and time window. Cursor-based pagination — pass the nextCursor from a previous response to continue. The cursor is opaque and MUST NOT be parsed by clients.
Authorizations
JWT bearer token issued by the identity provider.
Query Parameters
Filter by principal that emitted the action.
"550e8400-e29b-41d4-a716-446655440000"
Filter by canonical audit action type (e.g. CERTIFICATE_ROTATED).
"CERTIFICATE_ROTATED"
Inclusive lower bound (RFC3339 timestamp or YYYY-MM-DD).
"2026-06-14T12:00:00Z"
Inclusive upper bound (RFC3339 timestamp or YYYY-MM-DD).
"2026-06-14T12:00:00Z"
Opaque pagination token from a previous response.
Items per page (default 20, max 100).
1 <= x <= 10020
Response
OK
Request-scoped correlation identifier echoing X-Request-ID, for pivoting from response to trace.
"req-7a3f9c2e"
Audit records for the current page.
Effective page size applied to this response.
20
Opaque cursor for the next page; absent when this is the last page. Do not parse.
Opaque cursor for the previous page; reserved for future bidirectional cursoring, absent today. Do not parse.

