Ctrl K

Get System Log Events

Published 4 days ago

Query the Okta System Log within a time window, with optional filter, free-text query, and sort order.

Script okta Verified

Use in Windmill

The script

Submitted by hugo989 Typescript (fetch-only)

Verified 5 days ago

All edits

Permalink

//native

/**
 * Get System Log Events
 * Query the Okta System Log. Bound the window with `since` / `until` (ISO 8601, e.g. 2026-06-01T00:00:00Z), narrow with a `filter` expression or free-text `q`, and order with `sort_order` (ASCENDING is the default). `limit` defaults to 100 (max 1000); page with the `after` cursor from the previous response's Link header.
 */
export async function main(
  auth: RT.Okta,
  since: string | undefined,
  until: string | undefined,
  filter: string | undefined,
  q: string | undefined,
  sort_order: "ASCENDING" | "DESCENDING" | undefined,
  limit: number | undefined,
  after: string | undefined
) {
  const url = new URL(`${auth.org_url}/api/v1/logs`)
  if (since !== undefined && since !== "")
    url.searchParams.append("since", since)
  if (until !== undefined && until !== "")
    url.searchParams.append("until", until)
  if (filter !== undefined && filter !== "")
    url.searchParams.append("filter", filter)
  if (q !== undefined && q !== "") url.searchParams.append("q", q)
  if (sort_order !== undefined) url.searchParams.append("sortOrder", sort_order)
  if (limit !== undefined) url.searchParams.append("limit", String(limit))
  if (after !== undefined && after !== "")
    url.searchParams.append("after", after)

  const response = await fetch(url, {
    method: "GET",
    headers: {
      Authorization: `SSWS ${auth.token}`,
      Accept: "application/json",
    },
  })

  if (!response.ok) {
    throw new Error(`${response.status} ${await response.text()}`)
  }

  return await response.json()
}


`1`	`//native`
`2`
`3`	`/**`
`4`	`* Get System Log Events`
`5`	* Query the Okta System Log. Bound the window with `since` / `until` (ISO 8601, e.g. 2026-06-01T00:00:00Z), narrow with a `filter` expression or free-text `q`, and order with `sort_order` (ASCENDING is the default). `limit` defaults to 100 (max 1000); page with the `after` cursor from the previous response's Link header.
`6`	`*/`
`7`	`export async function main(`
`8`	`auth: RT.Okta,`
`9`	`since: string \| undefined,`
`10`	`until: string \| undefined,`
`11`	`filter: string \| undefined,`
`12`	`q: string \| undefined,`
`13`	`sort_order: "ASCENDING" \| "DESCENDING" \| undefined,`
`14`	`limit: number \| undefined,`
`15`	`after: string \| undefined`
`16`	`) {`
`17`	const url = new URL(`${auth.org_url}/api/v1/logs`)
`18`	`if (since !== undefined && since !== "")`
`19`	`url.searchParams.append("since", since)`
`20`	`if (until !== undefined && until !== "")`
`21`	`url.searchParams.append("until", until)`
`22`	`if (filter !== undefined && filter !== "")`
`23`	`url.searchParams.append("filter", filter)`
`24`	`if (q !== undefined && q !== "") url.searchParams.append("q", q)`
`25`	`if (sort_order !== undefined) url.searchParams.append("sortOrder", sort_order)`
`26`	`if (limit !== undefined) url.searchParams.append("limit", String(limit))`
`27`	`if (after !== undefined && after !== "")`
`28`	`url.searchParams.append("after", after)`
`29`
`30`	`const response = await fetch(url, {`
`31`	`method: "GET",`
`32`	`headers: {`
`33`	Authorization: `SSWS ${auth.token}`,
`34`	`Accept: "application/json",`
`35`	`},`
`36`	`})`
`37`
`38`	`if (!response.ok) {`
`39`	throw new Error(`${response.status} ${await response.text()}`)
`40`	`}`
`41`
`42`	`return await response.json()`
`43`	`}`
`44`