Moonborn — API · admin
Search audit_log entries by org + filter (incident response)
Cursor-paginated audit log search for incident response. Filter by org, action, resourceType, actorUserId, time range. Results ordered by occurred_at DESC. Use beforeOccurredAtMs as cursor for next page. Limit max 500 per call.
GET/v1/admin/audit/searchscope · Bearer (API key or session JWT)
Query parameters
| Field | Type | Description |
|---|---|---|
| orgIdreq | string | |
| action | string | |
| resourceType | string | |
| actorUserId | string | |
| fromMs | string | |
| toMs | string | |
| limit | string | |
| beforeOccurredAtMs | string | |
| path | string |
Responses
200OK
403Forbidden — platform admin only
Body
| Field | Type | Description |
|---|---|---|
| errorreq | object | |
| error.codereq | string | |
| error.messagereq | string |
Examples
cURL
curl -X GET https://api.moonborn.co/v1/admin/audit/search \ -H "Authorization: Bearer $MOONBORN_API_KEY"
TypeScript
import Moonborn from '@moonborn/sdk';
const client = new Moonborn({ apiKey: process.env.MOONBORN_API_KEY });
const result = await client.admin.adminSearchAuditLog();Python
import os from moonborn import Moonborn client = Moonborn(api_key=os.environ["MOONBORN_API_KEY"]) result = client.admin.admin_search_audit_log()