Audit
Audit query — /api/v1/admin/audit (authenticated)
Section titled “Audit query — /api/v1/admin/audit (authenticated)”| Method · Route | Purpose | Source |
|---|---|---|
GET /query · /query/detail | Query audit events | AdminAuditEndpoints.cs:39 |
GET /sessions | Member sessions | :41 |
GET /stats · /stats/quick | Dashboard stats | :42 |
GET /stats/forensic | Forensic query by email (scope to an app group) | :44 |
GET /verify/{logId} | Verify a single sealed record | :46 |
GET /presign | Presigned URL for archived logs | :38 |
POST /heartbeat | Active-time heartbeat | :45 |
Integrity violations — /api/v1/admin/integrity (authenticated)
Section titled “Integrity violations — /api/v1/admin/integrity (authenticated)”| Method · Route | Purpose | Source |
|---|---|---|
POST /restore/{entityType}/{entityId} | Restore a record to its sealed baseline | IntegrityEndpoints.cs:246 |
POST /resolve/{entityType}/{entityId} | Resolve a violation as false-positive (append-only; the original tampering_detected record is preserved) | :415 |