npm - @lssm/module.audit-trail - Versions diffs - 0.0.0-canary-20251206160926 - Mend

@lssm/module.audit-trail 0.0.0-canary-20251206160926

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (112) hide show

package/README.md ADDED Viewed

@@ -0,0 +1,110 @@
+# @lssm/module.audit-trail
+Audit trail module for tracking and querying system events in ContractSpec applications.
+## Purpose
+Provides a complete audit logging solution that captures, stores, and queries audit events. Integrates with the event bus to automatically capture domain events and exposes a query API for compliance and debugging.
+## Features
+- **Event Capture**: Automatic capture of events from the event bus
+- **Persistent Storage**: Multiple storage adapters (Prisma, append-only log)
+- **Rich Querying**: Filter by actor, target, organization, time range
+- **Retention Policies**: Configurable retention and archival
+- **Export**: Export audit logs for compliance reporting
+## Installation
+```bash
+bun add @lssm/module.audit-trail
+```
+## Usage
+### Entity Specs (for schema generation)
+```typescript
+import { auditTrailSchemaContribution } from '@lssm/module.audit-trail/entities';
+// Use in schema composition
+const config = {
+  modules: [auditTrailSchemaContribution],
+};
+```
+### Set Up Audit Capture
+```typescript
+import { createAuditCapture, PrismaAuditStorage } from '@lssm/module.audit-trail';
+import { prisma } from './db';
+// Create storage adapter
+const storage = new PrismaAuditStorage(prisma);
+// Create audit capture (connects to event bus)
+const auditCapture = createAuditCapture({
+  bus: eventBus,
+  storage,
+  filters: {
+    // Only audit events with audit:true tag or from specific domains
+    domains: ['identity', 'billing', 'security'],
+  },
+});
+// Start capturing
+auditCapture.start();
+```
+### Query Audit Logs
+```typescript
+import { AuditLogService } from '@lssm/module.audit-trail';
+const service = new AuditLogService(storage);
+// Query by actor
+const userActions = await service.query({
+  actorId: 'user-123',
+  from: new Date('2024-01-01'),
+  to: new Date(),
+  limit: 100,
+});
+// Query by target
+const resourceChanges = await service.query({
+  targetId: 'project-456',
+  eventName: 'project.*',
+});
+// Export for compliance
+const report = await service.export({
+  orgId: 'org-789',
+  from: new Date('2024-01-01'),
+  to: new Date('2024-12-31'),
+  format: 'csv',
+});
+```
+## Entity Overview
+| Entity | Description |
+|--------|-------------|
+| AuditLog | Main audit log entry |
+| AuditLogArchive | Archived logs for retention |
+## Retention
+Configure retention policies:
+```typescript
+const retention = new RetentionPolicy({
+  // Keep detailed logs for 90 days
+  hotRetentionDays: 90,
+  // Archive for 7 years (compliance)
+  archiveRetentionDays: 2555,
+  // Run cleanup daily at 3 AM
+  cleanupSchedule: '0 3 * * *',
+});
+```

package/dist/contracts/index.d.ts ADDED Viewed

@@ -0,0 +1,582 @@
+import * as _lssm_lib_schema0 from "@lssm/lib.schema";
+import * as _lssm_lib_contracts0 from "@lssm/lib.contracts";
+//#region src/contracts/index.d.ts
+declare const AuditLogModel: _lssm_lib_schema0.SchemaModel<{
+  id: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: false;
+  };
+  eventName: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: false;
+  };
+  eventVersion: {
+    type: _lssm_lib_schema0.FieldType<number, number>;
+    isOptional: false;
+  };
+  payload: {
+    type: _lssm_lib_schema0.FieldType<Record<string, unknown>, Record<string, unknown>>;
+    isOptional: false;
+  };
+  actorId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  actorType: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  actorEmail: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  targetId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  targetType: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  orgId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  traceId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  clientIp: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  occurredAt: {
+    type: _lssm_lib_schema0.FieldType<Date, string>;
+    isOptional: false;
+  };
+  recordedAt: {
+    type: _lssm_lib_schema0.FieldType<Date, string>;
+    isOptional: false;
+  };
+}>;
+declare const AuditQueryInputModel: _lssm_lib_schema0.SchemaModel<{
+  eventName: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  actorId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  targetId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  targetType: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  orgId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  traceId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  from: {
+    type: _lssm_lib_schema0.FieldType<Date, string>;
+    isOptional: true;
+  };
+  to: {
+    type: _lssm_lib_schema0.FieldType<Date, string>;
+    isOptional: true;
+  };
+  limit: {
+    type: _lssm_lib_schema0.FieldType<number, number>;
+    isOptional: true;
+    defaultValue: number;
+  };
+  offset: {
+    type: _lssm_lib_schema0.FieldType<number, number>;
+    isOptional: true;
+    defaultValue: number;
+  };
+}>;
+declare const AuditQueryOutputModel: _lssm_lib_schema0.SchemaModel<{
+  logs: {
+    type: _lssm_lib_schema0.SchemaModel<{
+      id: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: false;
+      };
+      eventName: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: false;
+      };
+      eventVersion: {
+        type: _lssm_lib_schema0.FieldType<number, number>;
+        isOptional: false;
+      };
+      payload: {
+        type: _lssm_lib_schema0.FieldType<Record<string, unknown>, Record<string, unknown>>;
+        isOptional: false;
+      };
+      actorId: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      actorType: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      actorEmail: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      targetId: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      targetType: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      orgId: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      traceId: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      clientIp: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      occurredAt: {
+        type: _lssm_lib_schema0.FieldType<Date, string>;
+        isOptional: false;
+      };
+      recordedAt: {
+        type: _lssm_lib_schema0.FieldType<Date, string>;
+        isOptional: false;
+      };
+    }>;
+    isArray: true;
+    isOptional: false;
+  };
+  total: {
+    type: _lssm_lib_schema0.FieldType<number, number>;
+    isOptional: false;
+  };
+  hasMore: {
+    type: _lssm_lib_schema0.FieldType<boolean, boolean>;
+    isOptional: false;
+  };
+}>;
+declare const ExportFormatEnum: _lssm_lib_schema0.EnumType<[string, string, string]>;
+declare const AuditExportInputModel: _lssm_lib_schema0.SchemaModel<{
+  orgId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: false;
+  };
+  from: {
+    type: _lssm_lib_schema0.FieldType<Date, string>;
+    isOptional: false;
+  };
+  to: {
+    type: _lssm_lib_schema0.FieldType<Date, string>;
+    isOptional: false;
+  };
+  format: {
+    type: _lssm_lib_schema0.EnumType<[string, string, string]>;
+    isOptional: true;
+    defaultValue: string;
+  };
+  eventNames: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isArray: true;
+    isOptional: true;
+  };
+}>;
+declare const ExportStatusEnum: _lssm_lib_schema0.EnumType<[string, string, string, string]>;
+declare const AuditExportOutputModel: _lssm_lib_schema0.SchemaModel<{
+  exportId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: false;
+  };
+  status: {
+    type: _lssm_lib_schema0.EnumType<[string, string, string, string]>;
+    isOptional: false;
+  };
+  downloadUrl: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+}>;
+declare const AuditStatsInputModel: _lssm_lib_schema0.SchemaModel<{
+  orgId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  from: {
+    type: _lssm_lib_schema0.FieldType<Date, string>;
+    isOptional: true;
+  };
+  to: {
+    type: _lssm_lib_schema0.FieldType<Date, string>;
+    isOptional: true;
+  };
+}>;
+declare const AuditStatsOutputModel: _lssm_lib_schema0.SchemaModel<{
+  totalLogs: {
+    type: _lssm_lib_schema0.FieldType<number, number>;
+    isOptional: false;
+  };
+  uniqueActors: {
+    type: _lssm_lib_schema0.FieldType<number, number>;
+    isOptional: false;
+  };
+  uniqueTargets: {
+    type: _lssm_lib_schema0.FieldType<number, number>;
+    isOptional: false;
+  };
+  eventCounts: {
+    type: _lssm_lib_schema0.FieldType<Record<string, unknown>, Record<string, unknown>>;
+    isOptional: false;
+  };
+}>;
+/**
+ * Query audit logs.
+ */
+declare const QueryAuditLogsContract: _lssm_lib_contracts0.ContractSpec<_lssm_lib_schema0.SchemaModel<{
+  eventName: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  actorId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  targetId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  targetType: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  orgId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  traceId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  from: {
+    type: _lssm_lib_schema0.FieldType<Date, string>;
+    isOptional: true;
+  };
+  to: {
+    type: _lssm_lib_schema0.FieldType<Date, string>;
+    isOptional: true;
+  };
+  limit: {
+    type: _lssm_lib_schema0.FieldType<number, number>;
+    isOptional: true;
+    defaultValue: number;
+  };
+  offset: {
+    type: _lssm_lib_schema0.FieldType<number, number>;
+    isOptional: true;
+    defaultValue: number;
+  };
+}>, _lssm_lib_schema0.SchemaModel<{
+  logs: {
+    type: _lssm_lib_schema0.SchemaModel<{
+      id: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: false;
+      };
+      eventName: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: false;
+      };
+      eventVersion: {
+        type: _lssm_lib_schema0.FieldType<number, number>;
+        isOptional: false;
+      };
+      payload: {
+        type: _lssm_lib_schema0.FieldType<Record<string, unknown>, Record<string, unknown>>;
+        isOptional: false;
+      };
+      actorId: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      actorType: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      actorEmail: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      targetId: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      targetType: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      orgId: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      traceId: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      clientIp: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      occurredAt: {
+        type: _lssm_lib_schema0.FieldType<Date, string>;
+        isOptional: false;
+      };
+      recordedAt: {
+        type: _lssm_lib_schema0.FieldType<Date, string>;
+        isOptional: false;
+      };
+    }>;
+    isArray: true;
+    isOptional: false;
+  };
+  total: {
+    type: _lssm_lib_schema0.FieldType<number, number>;
+    isOptional: false;
+  };
+  hasMore: {
+    type: _lssm_lib_schema0.FieldType<boolean, boolean>;
+    isOptional: false;
+  };
+}>, undefined>;
+/**
+ * Get audit log by ID.
+ */
+declare const GetAuditLogContract: _lssm_lib_contracts0.ContractSpec<_lssm_lib_schema0.SchemaModel<{
+  logId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: false;
+  };
+}>, _lssm_lib_schema0.SchemaModel<{
+  id: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: false;
+  };
+  eventName: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: false;
+  };
+  eventVersion: {
+    type: _lssm_lib_schema0.FieldType<number, number>;
+    isOptional: false;
+  };
+  payload: {
+    type: _lssm_lib_schema0.FieldType<Record<string, unknown>, Record<string, unknown>>;
+    isOptional: false;
+  };
+  actorId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  actorType: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  actorEmail: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  targetId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  targetType: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  orgId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  traceId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  clientIp: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  occurredAt: {
+    type: _lssm_lib_schema0.FieldType<Date, string>;
+    isOptional: false;
+  };
+  recordedAt: {
+    type: _lssm_lib_schema0.FieldType<Date, string>;
+    isOptional: false;
+  };
+}>, undefined>;
+/**
+ * Get audit logs by trace ID.
+ */
+declare const GetAuditTraceContract: _lssm_lib_contracts0.ContractSpec<_lssm_lib_schema0.SchemaModel<{
+  traceId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: false;
+  };
+}>, _lssm_lib_schema0.SchemaModel<{
+  logs: {
+    type: _lssm_lib_schema0.SchemaModel<{
+      id: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: false;
+      };
+      eventName: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: false;
+      };
+      eventVersion: {
+        type: _lssm_lib_schema0.FieldType<number, number>;
+        isOptional: false;
+      };
+      payload: {
+        type: _lssm_lib_schema0.FieldType<Record<string, unknown>, Record<string, unknown>>;
+        isOptional: false;
+      };
+      actorId: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      actorType: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      actorEmail: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      targetId: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      targetType: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      orgId: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      traceId: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      clientIp: {
+        type: _lssm_lib_schema0.FieldType<string, string>;
+        isOptional: true;
+      };
+      occurredAt: {
+        type: _lssm_lib_schema0.FieldType<Date, string>;
+        isOptional: false;
+      };
+      recordedAt: {
+        type: _lssm_lib_schema0.FieldType<Date, string>;
+        isOptional: false;
+      };
+    }>;
+    isArray: true;
+    isOptional: false;
+  };
+}>, undefined>;
+/**
+ * Export audit logs.
+ */
+declare const ExportAuditLogsContract: _lssm_lib_contracts0.ContractSpec<_lssm_lib_schema0.SchemaModel<{
+  orgId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: false;
+  };
+  from: {
+    type: _lssm_lib_schema0.FieldType<Date, string>;
+    isOptional: false;
+  };
+  to: {
+    type: _lssm_lib_schema0.FieldType<Date, string>;
+    isOptional: false;
+  };
+  format: {
+    type: _lssm_lib_schema0.EnumType<[string, string, string]>;
+    isOptional: true;
+    defaultValue: string;
+  };
+  eventNames: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isArray: true;
+    isOptional: true;
+  };
+}>, _lssm_lib_schema0.SchemaModel<{
+  exportId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: false;
+  };
+  status: {
+    type: _lssm_lib_schema0.EnumType<[string, string, string, string]>;
+    isOptional: false;
+  };
+  downloadUrl: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+}>, undefined>;
+/**
+ * Get audit statistics.
+ */
+declare const GetAuditStatsContract: _lssm_lib_contracts0.ContractSpec<_lssm_lib_schema0.SchemaModel<{
+  orgId: {
+    type: _lssm_lib_schema0.FieldType<string, string>;
+    isOptional: true;
+  };
+  from: {
+    type: _lssm_lib_schema0.FieldType<Date, string>;
+    isOptional: true;
+  };
+  to: {
+    type: _lssm_lib_schema0.FieldType<Date, string>;
+    isOptional: true;
+  };
+}>, _lssm_lib_schema0.SchemaModel<{
+  totalLogs: {
+    type: _lssm_lib_schema0.FieldType<number, number>;
+    isOptional: false;
+  };
+  uniqueActors: {
+    type: _lssm_lib_schema0.FieldType<number, number>;
+    isOptional: false;
+  };
+  uniqueTargets: {
+    type: _lssm_lib_schema0.FieldType<number, number>;
+    isOptional: false;
+  };
+  eventCounts: {
+    type: _lssm_lib_schema0.FieldType<Record<string, unknown>, Record<string, unknown>>;
+    isOptional: false;
+  };
+}>, undefined>;
+//#endregion
+export { AuditExportInputModel, AuditExportOutputModel, AuditLogModel, AuditQueryInputModel, AuditQueryOutputModel, AuditStatsInputModel, AuditStatsOutputModel, ExportAuditLogsContract, ExportFormatEnum, ExportStatusEnum, GetAuditLogContract, GetAuditStatsContract, GetAuditTraceContract, QueryAuditLogsContract };

package/dist/contracts/index.js ADDED Viewed

@@ -0,0 +1 @@

+ import{r as e}from"../libs/schema/dist/EnumType.js";import{l as t}from"../libs/schema/dist/ScalarTypeEnum.js";import"../libs/schema/dist/index.js";import{n}from"../libs/contracts/dist/schema/dist/SchemaModel.js";import{n as r,t as i}from"../libs/contracts/dist/spec.js";import"../libs/contracts/dist/index.js";const a=[`platform.audit-trail`],o=n({name:`AuditLog`,description:`Detailed audit log entry`,fields:{id:{type:t.String_unsecure(),isOptional:!1},eventName:{type:t.String_unsecure(),isOptional:!1},eventVersion:{type:t.Int_unsecure(),isOptional:!1},payload:{type:t.JSONObject(),isOptional:!1},actorId:{type:t.String_unsecure(),isOptional:!0},actorType:{type:t.String_unsecure(),isOptional:!0},actorEmail:{type:t.EmailAddress(),isOptional:!0},targetId:{type:t.String_unsecure(),isOptional:!0},targetType:{type:t.String_unsecure(),isOptional:!0},orgId:{type:t.String_unsecure(),isOptional:!0},traceId:{type:t.String_unsecure(),isOptional:!0},clientIp:{type:t.String_unsecure(),isOptional:!0},occurredAt:{type:t.DateTime(),isOptional:!1},recordedAt:{type:t.DateTime(),isOptional:!1}}}),s=n({name:`AuditQueryInput`,description:`Input for querying audit logs`,fields:{eventName:{type:t.String_unsecure(),isOptional:!0},actorId:{type:t.String_unsecure(),isOptional:!0},targetId:{type:t.String_unsecure(),isOptional:!0},targetType:{type:t.String_unsecure(),isOptional:!0},orgId:{type:t.String_unsecure(),isOptional:!0},traceId:{type:t.String_unsecure(),isOptional:!0},from:{type:t.DateTime(),isOptional:!0},to:{type:t.DateTime(),isOptional:!0},limit:{type:t.Int_unsecure(),isOptional:!0,defaultValue:100},offset:{type:t.Int_unsecure(),isOptional:!0,defaultValue:0}}}),c=n({name:`AuditQueryOutput`,description:`Output from querying audit logs`,fields:{logs:{type:o,isArray:!0,isOptional:!1},total:{type:t.Int_unsecure(),isOptional:!1},hasMore:{type:t.Boolean(),isOptional:!1}}}),l=e(`ExportFormat`,[`json`,`csv`,`parquet`]),u=n({name:`AuditExportInput`,description:`Input for exporting audit logs`,fields:{orgId:{type:t.String_unsecure(),isOptional:!1},from:{type:t.DateTime(),isOptional:!1},to:{type:t.DateTime(),isOptional:!1},format:{type:l,isOptional:!0,defaultValue:`json`},eventNames:{type:t.String_unsecure(),isArray:!0,isOptional:!0}}}),d=e(`ExportStatus`,[`pending`,`processing`,`completed`,`failed`]),f=n({name:`AuditExportOutput`,description:`Output from initiating an audit export`,fields:{exportId:{type:t.String_unsecure(),isOptional:!1},status:{type:d,isOptional:!1},downloadUrl:{type:t.URL(),isOptional:!0}}}),p=n({name:`AuditStatsInput`,description:`Input for getting audit statistics`,fields:{orgId:{type:t.String_unsecure(),isOptional:!0},from:{type:t.DateTime(),isOptional:!0},to:{type:t.DateTime(),isOptional:!0}}}),m=n({name:`AuditStatsOutput`,description:`Audit log statistics`,fields:{totalLogs:{type:t.Int_unsecure(),isOptional:!1},uniqueActors:{type:t.Int_unsecure(),isOptional:!1},uniqueTargets:{type:t.Int_unsecure(),isOptional:!1},eventCounts:{type:t.JSONObject(),isOptional:!1}}}),h=r({meta:{name:`audit.logs.query`,version:1,stability:`stable`,owners:[...a],tags:[`audit`,`logs`,`query`],description:`Query audit logs with filters.`,goal:`Enable searching and filtering of audit history.`,context:`Admin dashboard, compliance reporting, debugging.`},io:{input:s,output:c},policy:{auth:`admin`}}),g=r({meta:{name:`audit.logs.get`,version:1,stability:`stable`,owners:[...a],tags:[`audit`,`logs`,`get`],description:`Get a specific audit log by ID.`,goal:`View detailed audit log entry.`,context:`Log detail view.`},io:{input:n({name:`GetAuditLogInput`,fields:{logId:{type:t.String_unsecure(),isOptional:!1}}}),output:o},policy:{auth:`admin`}}),_=r({meta:{name:`audit.trace.get`,version:1,stability:`stable`,owners:[...a],tags:[`audit`,`trace`,`get`],description:`Get all audit logs for a trace.`,goal:`View complete request trace for debugging.`,context:`Request tracing, debugging.`},io:{input:n({name:`GetAuditTraceInput`,fields:{traceId:{type:t.String_unsecure(),isOptional:!1}}}),output:n({name:`GetAuditTraceOutput`,fields:{logs:{type:o,isArray:!0,isOptional:!1}}})},policy:{auth:`admin`}}),v=i({meta:{name:`audit.logs.export`,version:1,stability:`stable`,owners:[...a],tags:[`audit`,`logs`,`export`],description:`Export audit logs for compliance reporting.`,goal:`Generate audit reports for compliance.`,context:`Compliance reporting, external audits.`},io:{input:u,output:f},policy:{auth:`admin`}}),y=r({meta:{name:`audit.stats`,version:1,stability:`stable`,owners:[...a],tags:[`audit`,`stats`],description:`Get audit log statistics.`,goal:`Monitor audit activity levels.`,context:`Admin dashboard, monitoring.`},io:{input:p,output:m},policy:{auth:`admin`}});export{u as AuditExportInputModel,f as AuditExportOutputModel,o as AuditLogModel,s as AuditQueryInputModel,c as AuditQueryOutputModel,p as AuditStatsInputModel,m as AuditStatsOutputModel,v as ExportAuditLogsContract,l as ExportFormatEnum,d as ExportStatusEnum,g as GetAuditLogContract,y as GetAuditStatsContract,_ as GetAuditTraceContract,h as QueryAuditLogsContract};