Skip to main content

AuthorizationEventDTO

An individual Aembit Access Authorization Event

meta object

Metadata DTO for an individual Aembit Access Authorization Event

clientIPstringnullable

Remote Client IP Address of the Access Authorization Request

timestampdate-time

Timestamp of the Access Authorization Request

eventTypestringnullable

Event Type of the Access Authorization Request

eventIduuid

Unique ID of the Access Authorization Event

resourceSetIduuid

Resource Set ID of the Access Authorization Event

contextIduuid

Context ID of the Access Authorization Events for a single Access Authorization Request

directiveIduuid

Directive ID of the Access Authorization Event (if available)

severitystringnullable

Severity of the Access Authorization Event (e.g. Info, Warning, Error)

outcome object

Outcome of an individual Aembit Access Authorization Event

resultstringnullable

Result of an individual Aembit Access Authorization Event

reasonstringnullable

Reason for the Result of an individual Aembit Access Authorization Event

clientRequest object
versionstringrequired

Possible values: non-empty

network objectrequired
sourceIPstringrequired

Possible values: non-empty

sourcePortint32required
transportProtocolstringrequired

Possible values: non-empty

proxyPortint32required
targetHoststringnullable
targetPortint32
environment object
network object
sourceIPstringnullable
host object
hostnamestringnullable
process object
namestringnullable
userNamestringnullable
aembit object
clientIdstringnullable
aws object
accountIdstringnullable
instanceIdstringnullable
ecs object
taskFamilystringnullable
lambda object
arnstringnullable
gcp object
serviceAccountstringnullable
azure object
vmIdstringnullable
subscriptionIdstringnullable
kubernetes object
namespacestringnullable
podNamestringnullable
serviceAccountNamestringnullable
gitlab object
namespacePathstringnullable
projectPathstringnullable
refPathstringnullable
subjectstringnullable
github object
repositorystringnullable
subjectstringnullable
terraform object
workspaceIdstringnullable
clientWorkload object

Access Entity Result of an Aembit Access Authorization Event

iduuid

Access Entity ID

namestringnullable

Access Entity Name

resultstringnullable

Access Entity processing Result for this Access Authorization Event

matchesstring[]nullable

List of matched Access Entity Identifiers

serverWorkload object

Access Entity Result of an Aembit Access Authorization Event

iduuid

Access Entity ID

namestringnullable

Access Entity Name

resultstringnullable

Access Entity processing Result for this Access Authorization Event

matchesstring[]nullable

List of matched Access Entity Identifiers

accessPolicy object

Access Entity Result of an Aembit Access Authorization Event

iduuid

Access Entity ID

namestringnullable

Access Entity Name

resultstringnullable

Access Entity processing Result for this Access Authorization Event

matchesstring[]nullable

List of matched Access Entity Identifiers

trustProviders object[]nullable

Trust Provider information for an individual Aembit Access Authorization Event

  • Array [
    • iduuid

    Access Entity ID

    namestringnullable

    Access Entity Name

    resultstringnullable

    Access Entity processing Result for this Access Authorization Event

    matchesstring[]nullable

    List of matched Access Entity Identifiers

    reasonstringnullable
    attributestringnullable
    expectedValuestringnullable
    actualValuestringnullable
  • ]
    • accessConditions object[]nullable

    Access Condition information for an individual Aembit Access Authorization Event

  • Array [
    • iduuid

    Access Entity ID

    namestringnullable

    Access Entity Name

    resultstringnullable

    Access Entity processing Result for this Access Authorization Event

    matchesstring[]nullable

    List of matched Access Entity Identifiers

    reasonstringnullable
    attributestringnullable
    expectedValuestringnullable
    actualValuestringnullable
  • ]
    • credentialProvider object

    Individual Credential Provider Result of an Aembit Access Authorization Event

    iduuid

    Access Entity ID

    namestringnullable

    Access Entity Name

    resultstringnullable

    Access Entity processing Result for this Access Authorization Event

    matchesstring[]nullable

    List of matched Access Entity Identifiers

    typestringnullable

    Credential Provider Type

    reasonstringnullable

    Credential Provider Failure Reason

    AuthorizationEventDTO
    {
      "meta": {
        "clientIP": "string",
        "timestamp": "2024-07-29T15:51:28.071Z",
        "eventType": "string",
        "eventId": "3fa85f64-5717-4562-b3fc-2c963f66afa6",
        "resourceSetId": "3fa85f64-5717-4562-b3fc-2c963f66afa6",
        "contextId": "3fa85f64-5717-4562-b3fc-2c963f66afa6",
        "directiveId": "3fa85f64-5717-4562-b3fc-2c963f66afa6",
        "severity": "string"
      },
      "outcome": {
        "result": "string",
        "reason": "string"
      },
      "clientRequest": {
        "version": "string",
        "network": {
          "sourceIP": "string",
          "sourcePort": 0,
          "transportProtocol": "string",
          "proxyPort": 0,
          "targetHost": "string",
          "targetPort": 0
        }
      },
      "environment": {
        "network": {
          "sourceIP": "string"
        },
        "host": {
          "hostname": "string"
        },
        "process": {
          "name": "string",
          "userName": "string"
        },
        "aembit": {
          "clientId": "string"
        },
        "aws": {
          "accountId": "string",
          "instanceId": "string",
          "ecs": {
            "taskFamily": "string"
          },
          "lambda": {
            "arn": "string"
          }
        },
        "gcp": {
          "serviceAccount": "string"
        },
        "azure": {
          "vmId": "string",
          "subscriptionId": "string"
        },
        "kubernetes": {
          "namespace": "string",
          "podName": "string",
          "serviceAccountName": "string"
        },
        "gitlab": {
          "namespacePath": "string",
          "projectPath": "string",
          "refPath": "string",
          "subject": "string"
        },
        "github": {
          "repository": "string",
          "subject": "string"
        },
        "terraform": {
          "workspaceId": "string"
        }
      },
      "clientWorkload": {
        "id": "3fa85f64-5717-4562-b3fc-2c963f66afa6",
        "name": "string",
        "result": "string",
        "matches": [
          "string"
        ]
      },
      "serverWorkload": {
        "id": "3fa85f64-5717-4562-b3fc-2c963f66afa6",
        "name": "string",
        "result": "string",
        "matches": [
          "string"
        ]
      },
      "accessPolicy": {
        "id": "3fa85f64-5717-4562-b3fc-2c963f66afa6",
        "name": "string",
        "result": "string",
        "matches": [
          "string"
        ]
      },
      "trustProviders": [
        {
          "id": "3fa85f64-5717-4562-b3fc-2c963f66afa6",
          "name": "string",
          "result": "string",
          "matches": [
            "string"
          ],
          "reason": "string",
          "attribute": "string",
          "expectedValue": "string",
          "actualValue": "string"
        }
      ],
      "accessConditions": [
        {
          "id": "3fa85f64-5717-4562-b3fc-2c963f66afa6",
          "name": "string",
          "result": "string",
          "matches": [
            "string"
          ],
          "reason": "string",
          "attribute": "string",
          "expectedValue": "string",
          "actualValue": "string"
        }
      ],
      "credentialProvider": {
        "id": "3fa85f64-5717-4562-b3fc-2c963f66afa6",
        "name": "string",
        "result": "string",
        "matches": [
          "string"
        ],
        "type": "string",
        "reason": "string"
      }
    }