This document describes Flipt’s auditing capabilities.
version
: the version of the audit event structure.type
: the type of the entity being acted upon (flag, variant, constraint, etc.)action
: the action taken upon the entity (created, deleted, updated, etc.)metadata
: extra information related to the audit event as a whole. The actor
field will always be present containing some identity information of the source which initiated the audit eventpayload
: the actual payload used to interact with the Flipt
server for certain auditable eventstimestamp
: the time the event was createdstatus
: the status of the event (success, denied, etc.)json
or console
depending on configuration. The default output is to STDOUT, however, the log sink can also be output to a file.
noun:verb
. You can also specify a wild card for either the noun or the verb. For instance *:created
corresponds to all created
events for every entity. Furthermore, flag:*
corresponds to all flag
events, and *:*
corresponds to every single event.
Examples of configuring events include:
status
field. The status field will be set to success
if the authorization check passed, and denied
if the check failed. This information can be used to determine if an unauthorized user attempted to perform an action.