ixp
latest
false
  • Overview
    • Introduction
    • Extracting data from unstructured documents
    • Building and deploying models
    • Quotas
  • Model building
  • Model validation
  • Model deployment
  • API
    • API audit events
  • Frequently asked questions
UiPath logo, featuring letters U and I in white

Unstructured and complex documents user guide

Last updated Dec 16, 2025

API audit events

Querying audit events

You can query audit events to retrieve a detailed record of user and system actions within the platform.

Note: You must have assigned the IXP Audit Log Viewer role.

/api/v1/audit_events/query

Bash

curl -X POST 'https://<my_api_endpoint>/api/v1/audit_events/query' \
    -H "Authorization: Bearer $REINFER_TOKEN" \
    -H "Content-Type: application/json" \
    -d '{
  "filter": {
    "timestamp": {
      "maximum": "2021-07-10T00:00:00Z",
      "minimum": "2021-06-10T00:00:00Z"
    }
  }
}'
curl -X POST 'https://<my_api_endpoint>/api/v1/audit_events/query' \
    -H "Authorization: Bearer $REINFER_TOKEN" \
    -H "Content-Type: application/json" \
    -d '{
  "filter": {
    "timestamp": {
      "maximum": "2021-07-10T00:00:00Z",
      "minimum": "2021-06-10T00:00:00Z"
    }
  }
}'

Node

const request = require("request");

request.post(
  {
    url: "https://<my_api_endpoint>/api/v1/audit_events/query",
    headers: {
      Authorization: "Bearer " + process.env.REINFER_TOKEN,
    },
    json: true,
    body: {
      filter: {
        timestamp: {
          maximum: "2021-07-10T00:00:00Z",
          minimum: "2021-06-10T00:00:00Z",
        },
      },
    },
  },
  function (error, response, json) {
    // digest response
    console.log(JSON.stringify(json, null, 2));
  }
);const request = require("request");

request.post(
  {
    url: "https://<my_api_endpoint>/api/v1/audit_events/query",
    headers: {
      Authorization: "Bearer " + process.env.REINFER_TOKEN,
    },
    json: true,
    body: {
      filter: {
        timestamp: {
          maximum: "2021-07-10T00:00:00Z",
          minimum: "2021-06-10T00:00:00Z",
        },
      },
    },
  },
  function (error, response, json) {
    // digest response
    console.log(JSON.stringify(json, null, 2));
  }
);

Python

import json
import os

import requests

response = requests.post(
    "https://<my_api_endpoint>/api/v1/audit_events/query",
    headers={"Authorization": "Bearer " + os.environ["REINFER_TOKEN"]},
    json={
        "filter": {
            "timestamp": {
                "minimum": "2021-06-10T00:00:00Z",
                "maximum": "2021-07-10T00:00:00Z",
            }
        }
    },
)

print(json.dumps(response.json(), indent=2, sort_keys=True))
import json
import os

import requests

response = requests.post(
    "https://<my_api_endpoint>/api/v1/audit_events/query",
    headers={"Authorization": "Bearer " + os.environ["REINFER_TOKEN"]},
    json={
        "filter": {
            "timestamp": {
                "minimum": "2021-06-10T00:00:00Z",
                "maximum": "2021-07-10T00:00:00Z",
            }
        }
    },
)

print(json.dumps(response.json(), indent=2, sort_keys=True))

Response

{
  "audit_events": [
    {
      "actor_user_id": "e2148a6625225593",
      "dataset_ids": ["1fe230edc85ffc1a"],
      "event_id": "2555880060c23eb5",
      "event_type": "get_datasets",
      "project_ids": ["ce3c61dcf210f425", "274400867ab17af9"],
      "tenant_ids": ["c59b6e209da438a8"],
      "timestamp": "2021-06-10T16:32:53Z"
    }
  ],
  "continuation": "2555880060c23eb5",
  "datasets": [
    {
      "id": "1fe230edc85ffc1a",
      "name": "collateral-sharing",
      "project_id": "ce3c61dcf210f425",
      "title": "Collateral Sharing"
    },
    {
      "id": "274400867ab17af9",
      "name": "Customer-Feedback",
      "project_id": "ce3c61dcf210f425",
      "title": "Customer Feedback"
    }
  ],
  "projects": [
    {
      "id": "ce3c61dcf210f425",
      "name": "bank-collateral",
      "tenant_id": "c59b6e209da438a8"
    }
  ],
  "status": "ok",
  "tenants": [
    {
      "id": "c59b6e209da438a8",
      "name": "acme"
    }
  ],
  "users": [
    {
      "display_name": "Alice",
      "email": "[email protected]",
      "id": "e2148a6625225593",
      "tenant_id": "c59b6e209da438a8",
      "username": "alice"
    }
  ]
}{
  "audit_events": [
    {
      "actor_user_id": "e2148a6625225593",
      "dataset_ids": ["1fe230edc85ffc1a"],
      "event_id": "2555880060c23eb5",
      "event_type": "get_datasets",
      "project_ids": ["ce3c61dcf210f425", "274400867ab17af9"],
      "tenant_ids": ["c59b6e209da438a8"],
      "timestamp": "2021-06-10T16:32:53Z"
    }
  ],
  "continuation": "2555880060c23eb5",
  "datasets": [
    {
      "id": "1fe230edc85ffc1a",
      "name": "collateral-sharing",
      "project_id": "ce3c61dcf210f425",
      "title": "Collateral Sharing"
    },
    {
      "id": "274400867ab17af9",
      "name": "Customer-Feedback",
      "project_id": "ce3c61dcf210f425",
      "title": "Customer Feedback"
    }
  ],
  "projects": [
    {
      "id": "ce3c61dcf210f425",
      "name": "bank-collateral",
      "tenant_id": "c59b6e209da438a8"
    }
  ],
  "status": "ok",
  "tenants": [
    {
      "id": "c59b6e209da438a8",
      "name": "acme"
    }
  ],
  "users": [
    {
      "display_name": "Alice",
      "email": "[email protected]",
      "id": "e2148a6625225593",
      "tenant_id": "c59b6e209da438a8",
      "username": "alice"
    }
  ]
}

An audit event is a record of an action a user takes in the IXP platform. Example auditable events include:

  • A user logging in.
  • A user changing their password.
  • A user changing the permissions of another user.
NameTypeRequiredDescription
continuationstringnoIf a previous query returned a continuation in the response, another page of events is available. Set the returned continuation value here to fetch the next page.
limitnumbernoThe number of audit events to return per page. Defaults to 128.
filterfilternoA filter that specifies which audit events to return.
filter has the following format:
NameTypeRequiredDescription
timestampTimestampFilternoA filter that specifies what time range to return events in.
TimestampFilter has the following format:
NameTypeRequiredDescription
minimumstringnoAn ISO-8601 timestamp. If provided, it only returns an audit event after or including this timestamp.
maximumstringnoAn ISO-8601 timestamp. If provided, it only returns an audit event before this timestamp.

Audit event types

This section contains all audit event types that apply to Unstructured and Complex Documents.

Project management

Event typeDescription
ucd_project_createdAn Unstructured and Complex Documents project is created.
ucd_project_deletedAn Unstructured and Complex Documents project is deleted.

Model management

Event typeDescription
model_version_publishedA model is published.
model_version_unpublishedA model tag is updated.
model_tag_deletedA published model is deleted.

Dataset management

Event typeDescription
get_datasetsDatasets are retrieved.
get_datasets_by_ownerDatasets are retrieved by owner.
get_datasetA specific dataset is retrieved.
export_datasetA dataset is exported.

User management

Event typeDescription
create_userA new user is created.
delete_userA user is deleted.
get_usersUser information is retrieved.
update_userUser information is modified.

Authentication and security

Event typeDescription
login_successSuccessful user login.
authentication_failed_passwordFailed login due to wrong password.
authentication_failed_totpFailed login due to wrong TOTP code.
login_failed_ip_addressFailed login due to IP address restrictions.
revoke_api_tokensAPI tokens are revoked.
revoke_login_tokensLogin tokens are revoked.
revoke_current_login_tokenThe current session token is revoked.
replace_api_tokenAPI token is replaced.
authentication_failed_totp_lockoutFailed login due to TOTP lockout.

Password reset

Event typeDescription
send_password_reset_successSuccessful password reset email sent.
send_password_reset_failed_ip_addressIP blocked password reset.
verify_password_reset_successSuccessful password reset verification.
verify_password_reset_failed_ip_addressIP blocked password reset verification.
change_password_successSuccessful password change.
change_password_failed_totpPassword change failed due to TOTP.
change_password_failed_ip_addressIP blocked password change.
verify_password_reset_failed_signatureInvalid password reset signature.
verify_password_reset_failed_timestampExpired password reset link.
change_password_failed_current_passwordWrong current password provided.

Comment query

Event typeDescription
comment_query_textText-based comment queries.
comment_query_sampleSample comment queries.
comment_query_learningLearning-related comment queries.
comment_query_any_label_ascLabel-based queries in ascending order.
comment_query_recentRecent comments queries.
comment_query_by_labelQueries filtered by specific labels.
comment_query_diagnosticDiagnostic comment queries.
comment_query_label_propertyLabel property queries.
comment_query_attachment_textAttachment text queries.

Annotations

Event typeDescription
get_annotationsAnnotations are retrieved.
update_annotationAn annotation is modified.

Quota management

Event typeDescription
quota_setA quota is set.
quota_resetA quota is reset.
quotas_getQuotas are retrieved.

System and administration

Event typeDescription
audit_event_queryAudit events are queried directly.
  • Querying audit events
  • Audit event types

Was this page helpful?

Support and Services
Get The Help You Need
UiPath Academy
Learning RPA - Automation Courses
UiPath Forum
UiPath Community Forum
Uipath Logo
Trust and Security
Terms of Use
Privacy Policy
Cookies Policy
© 2005-2025 UiPath. All rights reserved.