Permit.io · Capability

Permit.io API — Audit Logs

Permit.io API — Audit Logs. 2 operations. Lead operation: List Audit Logs. Self-contained Naftiko capability covering one Permit Io business surface.

Run with Naftiko Permit IoAudit Logs

What You Can Do

GET
Listauditlogs — List Audit Logs
/v1/v2/pdps/{proj-id}/{env-id}/audit-logs
GET
Getdetailedauditlog — Get detailed audit log
/v1/v2/pdps/{proj-id}/{env-id}/audit-logs/{log-id}

MCP Tools

list-audit-logs

List Audit Logs

read-only idempotent
get-detailed-audit-log

Get detailed audit log

read-only idempotent

Capability Spec

permit-io-audit-logs.yaml Raw ↑ 
naftiko: 1.0.0-alpha2
info:
  label: Permit.io API — Audit Logs
  description: 'Permit.io API — Audit Logs. 2 operations. Lead operation: List Audit Logs. Self-contained Naftiko capability
    covering one Permit Io business surface.'
  tags:
  - Permit Io
  - Audit Logs
  created: '2026-05-19'
  modified: '2026-05-19'
binds:
- namespace: env
  keys:
    PERMIT_IO_API_KEY: PERMIT_IO_API_KEY
capability:
  consumes:
  - type: http
    namespace: permit-io-audit-logs
    baseUri: ''
    description: Permit.io API — Audit Logs business capability. Self-contained, no shared references.
    resources:
    - name: v2-pdps-proj_id-env_id-audit_logs
      path: /v2/pdps/{proj_id}/{env_id}/audit_logs
      operations:
      - name: listauditlogs
        method: GET
        description: List Audit Logs
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: proj_id
          in: path
          type: string
          description: 'Either the unique id of the project, or the URL-friendly key of the project (i.e: the "slug").'
          required: true
        - name: env_id
          in: path
          type: string
          description: 'Either the unique id of the environment, or the URL-friendly key of the environment (i.e: the "slug").'
          required: true
        - name: pdp_id
          in: query
          type: string
          description: Filter by pdp config id
        - name: users
          in: query
          type: array
          description: List of user keys or emails to filter by
        - name: decision
          in: query
          type: boolean
          description: Filter by decision result
        - name: resources
          in: query
          type: array
          description: Filter by resources
        - name: tenant
          in: query
          type: string
          description: Filter by tenant
        - name: action
          in: query
          type: string
          description: Filter by action
        - name: timestamp_from
          in: query
          type: integer
          description: Filter by timestamp from
        - name: timestamp_to
          in: query
          type: integer
          description: Filter by timestamp to
        - name: sort_by
          in: query
          type: string
          description: Sort by column
        - name: query
          in: query
          type: string
          description: Filter by the type of query that generated the audit log.<br />'check' - permit/root, permit/check,
            permit/bulk<br />'get_user_permissions' - permit/user_permis
        - name: page
          in: query
          type: integer
          description: Page number of the results to fetch, starting at 1.
        - name: per_page
          in: query
          type: integer
          description: The number of results per page (max 100).
    - name: v2-pdps-proj_id-env_id-audit_logs-log_id
      path: /v2/pdps/{proj_id}/{env_id}/audit_logs/{log_id}
      operations:
      - name: getdetailedauditlog
        method: GET
        description: Get detailed audit log
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: log_id
          in: path
          type: string
          description: The unique id of the audit log
          required: true
        - name: proj_id
          in: path
          type: string
          description: 'Either the unique id of the project, or the URL-friendly key of the project (i.e: the "slug").'
          required: true
        - name: env_id
          in: path
          type: string
          description: 'Either the unique id of the environment, or the URL-friendly key of the environment (i.e: the "slug").'
          required: true
    authentication:
      type: bearer
      token: '{{env.PERMIT_IO_API_KEY}}'
  exposes:
  - type: rest
    namespace: permit-io-audit-logs-rest
    port: 8080
    description: REST adapter for Permit.io API — Audit Logs. One Spectral-compliant resource per consumed operation, prefixed
      with /v1.
    resources:
    - path: /v1/v2/pdps/{proj-id}/{env-id}/audit-logs
      name: v2-pdps-proj-id-env-id-audit-logs
      description: REST surface for v2-pdps-proj_id-env_id-audit_logs.
      operations:
      - method: GET
        name: listauditlogs
        description: List Audit Logs
        call: permit-io-audit-logs.listauditlogs
        with:
          proj_id: rest.proj_id
          env_id: rest.env_id
          pdp_id: rest.pdp_id
          users: rest.users
          decision: rest.decision
          resources: rest.resources
          tenant: rest.tenant
          action: rest.action
          timestamp_from: rest.timestamp_from
          timestamp_to: rest.timestamp_to
          sort_by: rest.sort_by
          query: rest.query
          page: rest.page
          per_page: rest.per_page
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/v2/pdps/{proj-id}/{env-id}/audit-logs/{log-id}
      name: v2-pdps-proj-id-env-id-audit-logs-log-id
      description: REST surface for v2-pdps-proj_id-env_id-audit_logs-log_id.
      operations:
      - method: GET
        name: getdetailedauditlog
        description: Get detailed audit log
        call: permit-io-audit-logs.getdetailedauditlog
        with:
          log_id: rest.log_id
          proj_id: rest.proj_id
          env_id: rest.env_id
        outputParameters:
        - type: object
          mapping: $.
  - type: mcp
    namespace: permit-io-audit-logs-mcp
    port: 9090
    transport: http
    description: MCP adapter for Permit.io API — Audit Logs. One tool per consumed operation, routed inline through this capability's
      consumes block.
    tools:
    - name: list-audit-logs
      description: List Audit Logs
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: permit-io-audit-logs.listauditlogs
      with:
        proj_id: tools.proj_id
        env_id: tools.env_id
        pdp_id: tools.pdp_id
        users: tools.users
        decision: tools.decision
        resources: tools.resources
        tenant: tools.tenant
        action: tools.action
        timestamp_from: tools.timestamp_from
        timestamp_to: tools.timestamp_to
        sort_by: tools.sort_by
        query: tools.query
        page: tools.page
        per_page: tools.per_page
      outputParameters:
      - type: object
        mapping: $.
    - name: get-detailed-audit-log
      description: Get detailed audit log
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: permit-io-audit-logs.getdetailedauditlog
      with:
        log_id: tools.log_id
        proj_id: tools.proj_id
        env_id: tools.env_id
      outputParameters:
      - type: object
        mapping: $.