Audit Log Event dataspace.query
The query engine received a request to execute a query
This audit log type records operations for the following features:
| Field Name | Type | Value | Availability | Description |
|---|---|---|---|---|
| accessScoped | Boolean | Â | (added in 1.188) | Whether query is access scoped |
| actor | ActorType | Â | Â | Actor, as defined in Actor Structure |
| authPrefix | String | Â | Â | Authentication prefix |
| cidFilter | Option[Seq[String]] | Â | Â | CID Filter |
| customKey | Option[Map[String | Â | (added in 1.236) | Custom key for query |
| dataspaceId | Option[String] | Â | Â | ID of the repository |
| federationId | Option[String] | Â | Â | Federation ID |
| query | QueryInput | Â | Â | Query string |
| queryId | AnyQueryId | Â | (added in 1.197) |
ID of query regardless of success, failure, or cancellation.
Corresponds to externalQueryId in
Query
in humio-activity.
|
| queryParserMetrics | Option[QueryParserMetrics.JsonFormat] | Â | Â | Metrics for the query parser |
| repoId | String | Â | Â | ID of the repository |
| repoName | String | Â | Â | Name of the repository |
| sensitive | Boolean | Â | Â | Whether the audited event is marked sensitive |
| String]]) | Â | Â | (added in 1.236) | The query string |
| timestamp | ZonedDateTime | Â | Â | Timestamp of the audited event |