> ## Documentation Index > Fetch the complete documentation index at: https://docs.lerian.studio/llms.txt > Use this file to discover all available pages before exploring further. # Verify Audit Event Hash Chain > Use this endpoint to verify the integrity of the audit event hash chain up to a specific event. Detects tampering attempts. Designed for SOX/GLBA compliance. ## OpenAPI ````yaml /en/openapi/v3-current/tracer.yaml get /v1/audit-events/{id}/verify openapi: 3.1.0 info: title: Tracer API description: >- Complete API reference for Tracer services including transaction validation, rules management, spending limits, and audit events for SOX/GLBA compliance. version: 1.0.0 servers: - url: https://tracer.lerian.io security: [] tags: - name: Health API description: >- Health check endpoints for liveness and readiness probes. These endpoints do not require authentication. - name: Validations API description: >- Transaction validation endpoints. Performance target is under 80ms (p99). Validations are not idempotent. - name: Rules API description: >- Validation rule management endpoints. Rules use CEL (Common Expression Language) expressions. - name: Limits API description: >- Spending limit management endpoints. Limits control transaction amounts by scope and period. - name: Audit Events API description: >- Audit trail endpoints for SOX/GLBA compliance. All validation decisions and configuration changes are recorded. paths: /v1/audit-events/{id}/verify: get: tags: - Audit Events API summary: Verify Audit Event Hash Chain description: >- Use this endpoint to verify the integrity of the audit event hash chain up to a specific event. Detects tampering attempts. Designed for SOX/GLBA compliance. operationId: verifyAuditEvent parameters: - $ref: '#/components/parameters/AuditEventId' - $ref: '#/components/parameters/ContentType' - $ref: '#/components/parameters/XApiKey' - $ref: '#/components/parameters/XRequestId' responses: '200': description: >- Indicates that the hash chain verification was completed successfully. content: application/json: schema: $ref: '#/components/schemas/HashChainVerificationResult' example: isValid: true totalChecked: 1234 message: Hash chain integrity verified successfully '400': description: '' content: application/json: schema: $ref: '#/components/schemas/ErrorFormat' examples: Error0007: $ref: '#/components/examples/Error0007' '401': description: Unauthorized content: application/json: schema: $ref: '#/components/schemas/ErrorFormat' examples: Error0010: $ref: '#/components/examples/Error0010' Error0011: $ref: '#/components/examples/Error0011' '404': description: '' content: application/json: schema: $ref: '#/components/schemas/ErrorFormat' examples: Error0140: $ref: '#/components/examples/Error0140' '500': description: Internal Server Error content: application/json: schema: $ref: '#/components/schemas/ErrorFormat' examples: Error0004: $ref: '#/components/examples/Error0004' security: [] components: parameters: AuditEventId: name: id in: path description: >- The unique identifier of the audit event that you want to retrieve or verify. required: true example: 019c96a0-10d2-7134-ba5f-664142ee7052 schema: type: string format: uuid ContentType: name: Content-Type in: header description: The type of media of the resource. Must be `application/json`. required: true example: application/json schema: type: string XApiKey: name: X-API-Key in: header description: >- The API Key for authentication. **This header is required for all endpoints except health checks**. required: true schema: type: string XRequestId: name: X-Request-Id in: header description: A unique identifier used to trace and track each request. required: false example: 019c96a0-10ce-75fc-a273-dc799079a99c schema: type: string format: uuid schemas: HashChainVerificationResult: type: object description: Result of hash chain integrity verification. properties: isValid: type: boolean description: Whether the hash chain is intact. totalChecked: type: integer description: Number of events verified in the chain. firstInvalidId: type: integer description: ID of first invalid event (only present if isValid is false). message: type: string description: Human-readable verification result. ErrorFormat: type: object description: The response message error. required: - code - title - message properties: code: type: string description: A unique, stable identifier for the error. title: type: string description: A brief summary of the issue. message: type: string description: Detailed guidance for resolving the error. fields: type: object additionalProperties: true description: Additional information about the fields that caused the error. examples: Error0007: summary: Invalid Path Parameter value: code: TRC-0007 title: Invalid Path Parameter message: >- The provided ID is not a valid UUID format. Please verify the ID and try again. Error0010: summary: API Key Missing value: code: TRC-0010 title: API Key Missing message: >- A valid API Key must be provided in the X-API-Key header. Please include your API Key and try again. Error0011: summary: Invalid API Key value: code: TRC-0011 title: Invalid API Key message: >- The provided API Key is invalid or expired. Please provide a valid API Key and try again. Error0140: summary: Audit Event Not Found value: code: TRC-0140 title: Audit Event Not Found message: >- The requested audit event does not exist. Please verify the event ID and try again. Error0004: summary: Internal Server Error value: code: TRC-0004 title: Internal Server Error message: >- An unexpected error occurred. Please try again later or contact support if the issue persists. ````