Skip to main content

Log Record Structure

Log records that are generated by CZERTAINLY platform are structured and contain information about the event that occurred. Log records can be generated by different modules and components of the platform in JSON format.

Structure of log records is defined by Log Record JSON Schema.

Log structure

The log record structure is defined by the following properties:

PropertyTypeRequiredDescription
versionStringYesVersion of log structure JSON schema
auditedBooleanYesFlag marking log record as audit log, representing user triggered action
moduleEnumYesModule where event occurred. Represents part or resource of system related to event.
actorObjectYesAffiliated party or platform component that triggered operation/event
sourceObjectNoContains request source information like IP address, agent, etc.
resourceObjectYesInformation about resource that is subject of log event
affiliatedResourceObjectNoInformation about affiliated resource that acts in event and is related to subject resource (e.g. push certificate to location)
operationEnumYesOperation that is being logged
operationResultEnumYesOperation result which is either success or failed
messageStringNoFree form text message to provide additional information, e.g. error message for failed operation result
operationDataObjectNoStructured data based on operation, list of possible properties defined in schema
additionalDataMapNoAdditional key-paired data that can contain debug information or data specific to operation logged

Module

Module represents part or resource of system related to event. Module can be one of the following:

ModuleShort description
approvalsModule for managing approvals and approval requests
authAuthentication and authorization module, containing also operations for users and roles resources
certificatesCertificates management and operations including RA profiles and authorities
complianceModule for compliance operations and checks
coreModule containing core functionality including connectors, credentials and attributes
discoveryModule for discovery of different resources
entitiesModule for entities and locations management
keysCryptographic keys management and operations including tokens and token profiles
protocolsProtocols management and operations including protocol profiles
schedulerModule for scheduling operations
workflowsModule for workflows management and operations

Actor

Actor object represents party or platform component that triggered operation/event.

Actor object contains following properties:

PropertyTypeRequiredDescription
typeStringYesType of actor, can be user, connector, protocol, etc.
authMethodStringYesAuthentication method used by actor, can be certificate, token, etc.
uuidStringNoIdentification of actor, usually UUID of object representing actor type
nameStringNoAssociated name with actor based on type. For example, username, protocol name, connector name

Source

Source object contains information about request source.

Source object contains following properties:

PropertyTypeRequiredDescription
methodStringYesHTTP method of request
pathStringYesHTTP request path
contentTypeStringNoContent type of request
ipAddressStringNoIP address of request source
userAgentStringNoUser agent of request source

Resource

Resource object contains information about resource that is subject of log event. It is applicable for both resource and affiliatedResource, if any.

Resource object contains following properties:

PropertyTypeRequiredDescription
typeEnumYesType of the resource
uuidsListNoList of associated UUIDs for the resource, possible more values due to bulk operations
namesListNoList of resource names, possible more values due to bulk operations
Name and UUID

UUIDs and names lists items on same index correspond to each other.