Running an advanced audit query | SkyVault Documentation

You are here

You can use or edit this advanced audit query example.

This type of query URL makes use of a data path within the audit application. This allows entries to be found that match specific audited values. By default, query values are treated as case-sensitive string types, but it is possible to specify the type to query against.

Generate some audit data.
Connect to SkyVault Content Services.

Attempt a failed login as joe.

$ curl -u admin:password "http://localhost:8080/alfresco/service/api/audit/query/AuditExampleLogin1/auditexamplelogin1/login/error/user?verbose=true&value=joe"
{
   "count":1,
   "entries": 
   [
      {
         "id":101,
         "application":AuditExampleLogin1,
         "user":null,
         "time":"2010-09-20T15:13:57.947+01:00",
         "values":
         {
                     "\/auditexamplelogin1\/login\/error\/user":"joe"
         }
         
      }
   ]
}

$ curl -u admin:password "http://localhost:8080/alfresco/service/api/audit/query/AuditExampleLogin1/auditexamplelogin1/login/error/user?verbose=true&value=JOE"
{
   "count":0,
   "entries": 
   [
   ]
}

© 2017 TBS-LLC. All Rights Reserved. Follow @twitter