> ## Documentation Index > Fetch the complete documentation index at: https://docs.leadlex.com/llms.txt > Use this file to discover all available pages before exploring further. # List Audit Logs > Retrieve the workspace audit trail for compliance and security investigations (admin-only) Returns a paginated, filterable log of every write action performed in the workspace — API calls, user actions, and automations. Essential for SOC 2, ISO 27001, and internal forensics. This endpoint requires an **admin API key**. Standard API keys receive a `403 insufficient_permissions` response. ## Request ### Query Parameters Page number for pagination Entries per page (max: 200) Filter by action: `create`, `update`, `delete`, `login`, `api_access` Filter by the UUID of the acting user (human user only — API keys are filtered separately) Filter by resource type: `contacts`, `companies`, `deals`, `tasks`, `notes`, `lists`, `campaigns`, `webhooks`, `api_keys`, `users` Only entries on or after this ISO 8601 date/timestamp Only entries on or before this ISO 8601 date/timestamp ### Headers ``` Authorization: Bearer wbk_your_admin_key_here ``` Audit logs are retained for **365 days** and are immutable once written. ## Response Array of audit log entries, newest first. Log entry UUID ISO 8601 timestamp of the action Acting principal User UUID (null for API-key actions) Email address or `api-key:` identifier `user`, `api_key`, or `system` Action performed: `create`, `update`, `delete`, `login`, `api_access` Resource name (e.g., `contacts`) UUID of the affected resource Action-specific metadata (HTTP method, path, request ID, diff, etc.) Client IP address (IPv4 or IPv6) Client user-agent string Current page number Entries per page Total log entries matching the filter ```bash cURL theme={null} curl "https://data.leadlex.com/functions/v1/api-gateway/v1/audit-logs?action=delete&from_date=2026-04-01&per_page=100" \ -H "Authorization: Bearer wbk_your_admin_key_here" ``` ```python Python theme={null} import requests ADMIN_KEY = "wbk_your_admin_key_here" BASE_URL = "https://data.leadlex.com/functions/v1/api-gateway" response = requests.get( f"{BASE_URL}/v1/audit-logs", headers={"Authorization": f"Bearer {ADMIN_KEY}"}, params={ "action": "delete", "from_date": "2026-04-01", "per_page": 100, }, ) logs = response.json()["data"]["logs"] for log in logs: print(f"{log['timestamp']} {log['user']['email']} {log['action']} {log['resource_type']}/{log['resource_id']}") ``` ```javascript JavaScript theme={null} const response = await fetch( 'https://data.leadlex.com/functions/v1/api-gateway/v1/audit-logs?action=delete&from_date=2026-04-01&per_page=100', { headers: { 'Authorization': 'Bearer wbk_your_admin_key_here' } } ); const { data, meta } = await response.json(); console.log(`Showing ${data.logs.length} of ${meta.total} entries`); ``` ### Example Response ```json theme={null} { "data": { "logs": [ { "id": "log_a1b2c3d4-e5f6-7890-abcd-ef1234567890", "timestamp": "2026-04-17T14:23:05Z", "user": { "id": null, "email": "api-key:wbk_abc12345", "type": "api_key" }, "action": "delete", "resource_type": "contacts", "resource_id": "123e4567-e89b-12d3-a456-426614174000", "details": { "method": "DELETE", "path": "/v1/contacts/123e4567-e89b-12d3-a456-426614174000", "request_id": "req_9f8e7d6c5b4a", "status_code": 200 }, "ip_address": "203.0.113.45", "user_agent": "MyApp/1.0 (python-requests/2.31)" } ] }, "meta": { "page": 1, "per_page": 100, "total": 1247 } } ``` ## Errors | Status | Code | Description | | ------ | -------------------- | ---------------------------------------------- | | 401 | `invalid_key` | Invalid or expired API key | | 403 | `admin_key_required` | This endpoint requires an admin-scoped API key | | 400 | `invalid_date_range` | `from_date` is after `to_date` | | 429 | `rate_limited` | Rate limit exceeded |