workos-php/lib/Service/AuditLogs.php at 34799d2c9160a57b08bd0e0b0e7efdbdc5398423 · workos/workos-php · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
<?php

declare(strict_types=1);

// This file is auto-generated by oagen. Do not edit.

namespace WorkOS\Service;

use WorkOS\Resource\AuditLogActionJson;
use WorkOS\Resource\AuditLogEventCreateResponse;
use WorkOS\Resource\AuditLogExportJson;
use WorkOS\Resource\AuditLogSchemaJson;
use WorkOS\Resource\AuditLogsRetentionJson;

class AuditLogs
{
    public function __construct(
        private readonly \WorkOS\HttpClient $client,
    ) {
    }

    /**
     * Get Retention
     *
     * Get the configured event retention period for the given Organization.
     * @param string $id Unique identifier of the Organization.
     * @return \WorkOS\Resource\AuditLogsRetentionJson
     * @throws \WorkOS\Exception\WorkOSException
     */
    public function getOrganizationAuditLogsRetention(
        string $id,
        ?\WorkOS\RequestOptions $options = null,
    ): \WorkOS\Resource\AuditLogsRetentionJson {
        $response = $this->client->request(
            method: 'GET',
            path: "organizations/{$id}/audit_logs_retention",
            options: $options,
        );
        return AuditLogsRetentionJson::fromArray($response);
    }

    /**
     * Set Retention
     *
     * Set the event retention period for the given Organization.
     * @param string $id Unique identifier of the Organization.
     * @param int $retentionPeriodInDays The number of days Audit Log events will be retained. Valid values are `30` and `365`.
     * @return \WorkOS\Resource\AuditLogsRetentionJson
     * @throws \WorkOS\Exception\WorkOSException
     */
    public function updateOrganizationAuditLogsRetention(
        string $id,
        int $retentionPeriodInDays,
        ?\WorkOS\RequestOptions $options = null,
    ): \WorkOS\Resource\AuditLogsRetentionJson {
        $body = [
            'retention_period_in_days' => $retentionPeriodInDays,
        ];
        $response = $this->client->request(
            method: 'PUT',
            path: "organizations/{$id}/audit_logs_retention",
            body: $body,
            options: $options,
        );
        return AuditLogsRetentionJson::fromArray($response);
    }

    /**
     * List Actions
     *
     * Get a list of all Audit Log actions in the current environment.
     * @param string|null $before An object ID that defines your place in the list. When the ID is not present, you are at the end of the list.
     * @param string|null $after An object ID that defines your place in the list. When the ID is not present, you are at the end of the list.
     * @param int|null $limit Upper limit on the number of objects to return, between `1` and `100`. Defaults to 10.
     * @param \WorkOS\Resource\EventsOrder|null $order Order the results by the creation time. Defaults to "desc".
     * @return \WorkOS\PaginatedResponse<\WorkOS\Resource\AuditLogActionJson>
     * @throws \WorkOS\Exception\WorkOSException
     */
    public function listActions(
        ?string $before = null,
        ?string $after = null,
        ?int $limit = null,
        ?\WorkOS\Resource\EventsOrder $order = null,
        ?\WorkOS\RequestOptions $options = null,
    ): \WorkOS\PaginatedResponse {
        $query = array_filter([
            'before' => $before,
            'after' => $after,
            'limit' => $limit,
            'order' => $order?->value,
        ], fn ($v) => $v !== null);
        return $this->client->requestPage(
            method: 'GET',
            path: 'audit_logs/actions',
            query: $query,
            modelClass: AuditLogActionJson::class,
            options: $options,
        );
    }

    /**
     * List Schemas
     *
     * Get a list of all schemas for the Audit Logs action identified by `:name`.
     * @param string $actionName The name of the Audit Log action.
     * @param string|null $before An object ID that defines your place in the list. When the ID is not present, you are at the end of the list.
     * @param string|null $after An object ID that defines your place in the list. When the ID is not present, you are at the end of the list.
     * @param int|null $limit Upper limit on the number of objects to return, between `1` and `100`. Defaults to 10.
     * @param \WorkOS\Resource\EventsOrder|null $order Order the results by the creation time. Defaults to "desc".
     * @return \WorkOS\PaginatedResponse<\WorkOS\Resource\AuditLogSchemaJson>
     * @throws \WorkOS\Exception\WorkOSException
     */
    public function listActionSchemas(
        string $actionName,
        ?string $before = null,
        ?string $after = null,
        ?int $limit = null,
        ?\WorkOS\Resource\EventsOrder $order = null,
        ?\WorkOS\RequestOptions $options = null,
    ): \WorkOS\PaginatedResponse {
        $query = array_filter([
            'before' => $before,
            'after' => $after,
            'limit' => $limit,
            'order' => $order?->value,
        ], fn ($v) => $v !== null);
        return $this->client->requestPage(
            method: 'GET',
            path: "audit_logs/actions/{$actionName}/schemas",
            query: $query,
            modelClass: AuditLogSchemaJson::class,
            options: $options,
        );
    }

    /**
     * Create Schema
     *
     * Creates a new Audit Log schema used to validate the payload of incoming Audit Log Events. If the `action` does not exist, it will also be created.
     * @param string $actionName The name of the Audit Log action.
     * @param \WorkOS\Resource\AuditLogSchemaActor|null $actor The metadata schema for the actor.
     * @param array<\WorkOS\Resource\AuditLogSchemaTarget> $targets The list of targets for the schema.
     * @param array<string, mixed>|null $metadata Optional JSON schema for event metadata.
     * @return \WorkOS\Resource\AuditLogSchemaJson
     * @throws \WorkOS\Exception\WorkOSException
     */
    public function createSchema(
        string $actionName,
        array $targets,
        ?\WorkOS\Resource\AuditLogSchemaActor $actor = null,
        ?array $metadata = null,
        ?\WorkOS\RequestOptions $options = null,
    ): \WorkOS\Resource\AuditLogSchemaJson {
        $body = array_filter([
            'actor' => $actor,
            'targets' => $targets,
            'metadata' => $metadata,
        ], fn ($v) => $v !== null);
        $response = $this->client->request(
            method: 'POST',
            path: "audit_logs/actions/{$actionName}/schemas",
            body: $body,
            options: $options,
        );
        return AuditLogSchemaJson::fromArray($response);
    }

    /**
     * Create Event
     *
     * Create an Audit Log Event.
     *
     * This API supports idempotency which guarantees that performing the same operation multiple times will have the same result as if the operation were performed only once. This is handy in situations where you may need to retry a request due to a failure or prevent accidental duplicate requests from creating more than one resource.
     *
     * To achieve idempotency, you can add `Idempotency-Key` request header to a Create Event request with a unique string as the value. Each subsequent request matching this unique string will return the same response. We suggest using [v4 UUIDs](https://en.wikipedia.org/wiki/Universally_unique_identifier) for idempotency keys to avoid collisions.
     *
     * Idempotency keys expire after 24 hours. The API will generate a new response if you submit a request with an expired key.
     * @param string $organizationId The unique ID of the Organization.
     * @param \WorkOS\Resource\AuditLogEvent $event The audit log event to create.
     * @return \WorkOS\Resource\AuditLogEventCreateResponse
     * @throws \WorkOS\Exception\WorkOSException
     */
    public function createEvent(
        string $organizationId,
        \WorkOS\Resource\AuditLogEvent $event,
        ?\WorkOS\RequestOptions $options = null,
    ): \WorkOS\Resource\AuditLogEventCreateResponse {
        $body = [
            'organization_id' => $organizationId,
            'event' => $event,
        ];
        $response = $this->client->request(
            method: 'POST',
            path: 'audit_logs/events',
            body: $body,
            options: $options,
        );
        return AuditLogEventCreateResponse::fromArray($response);
    }

    /**
     * Create Export
     *
     * Create an Audit Log Export. Exports are scoped to a single organization within a specified date range.
     * @param string $organizationId The unique ID of the Organization.
     * @param string $rangeStart ISO-8601 value for start of the export range.
     * @param string $rangeEnd ISO-8601 value for end of the export range.
     * @param array<string>|null $actions List of actions to filter against.
     * @param array<string>|null $actors (deprecated) Deprecated. Use `actor_names` instead.
     * @param array<string>|null $actorNames List of actor names to filter against.
     * @param array<string>|null $actorIds List of actor IDs to filter against.
     * @param array<string>|null $targets List of target types to filter against.
     * @return \WorkOS\Resource\AuditLogExportJson
     * @throws \WorkOS\Exception\WorkOSException
     */
    public function createExport(
        string $organizationId,
        string $rangeStart,
        string $rangeEnd,
        ?array $actions = null,
        ?array $actors = null,
        ?array $actorNames = null,
        ?array $actorIds = null,
        ?array $targets = null,
        ?\WorkOS\RequestOptions $options = null,
    ): \WorkOS\Resource\AuditLogExportJson {
        $body = array_filter([
            'organization_id' => $organizationId,
            'range_start' => $rangeStart,
            'range_end' => $rangeEnd,
            'actions' => $actions,
            'actors' => $actors,
            'actor_names' => $actorNames,
            'actor_ids' => $actorIds,
            'targets' => $targets,
        ], fn ($v) => $v !== null);
        $response = $this->client->request(
            method: 'POST',
            path: 'audit_logs/exports',
            body: $body,
            options: $options,
        );
        return AuditLogExportJson::fromArray($response);
    }

    /**
     * Get Export
     *
     * Get an Audit Log Export. The URL will expire after 10 minutes. If the export is needed again at a later time, refetching the export will regenerate the URL.
     * @param string $auditLogExportId The unique ID of the Audit Log Export.
     * @return \WorkOS\Resource\AuditLogExportJson
     * @throws \WorkOS\Exception\WorkOSException
     */
    public function getExport(
        string $auditLogExportId,
        ?\WorkOS\RequestOptions $options = null,
    ): \WorkOS\Resource\AuditLogExportJson {
        $response = $this->client->request(
            method: 'GET',
            path: "audit_logs/exports/{$auditLogExportId}",
            options: $options,
        );
        return AuditLogExportJson::fromArray($response);
    }
}