List activity for an end user.
GET
/api/admin/users/{id}/activity-log
Code sample: Shell / cURL
curl --request GET \ --url https://auth.example.com/api/admin/users/example/activity-log \ --header 'Authorization: Bearer <token>'List audit activity for a single user using hot audit storage when configured.
Authorizations
Section titled “Authorizations ”Parameters
Section titled “ Parameters ”Path Parameters
Section titled “Path Parameters ” id
required
string
Header Parameters
Section titled “Header Parameters ” X-Tenant-Id
string
Tenant selector for multi-tenant admin requests.
Query Parameters
Section titled “Query Parameters ” limit
integer
cursor
string
action
string
from
string
to
string
Responses
Section titled “ Responses ”User activity log response.
Media type application/json
object
data
required
Array<object>
object
id
required
string
action
required
string
details
required
object | null
timestamp
required
Unix timestamp in milliseconds.
integer format: int64
ip_address
required
string | null
user_agent
required
string | null
key
additional properties
pagination
required
object
has_more
required
boolean
next_cursor
string
key
additional properties
key
additional properties
Example
{ "data": [ { "id": "audit_123", "action": "auth.login", "details": { "result": "success", "client_id": "web-app", "session_id": "sess_123", "request_id": "req_123" }, "timestamp": 1770000000000, "ip_address": "203.0.113.10", "user_agent": "Mozilla/5.0" } ], "pagination": { "has_more": false }}Error response.
Media type application/json
object
error
string
message
string
error_description
string
key
additional properties
Example generated
{ "error": "example", "message": "example", "error_description": "example"}