Graphorin API reference v0.5.0
Graphorin API reference / @graphorin/security / / AuthAuditEvent
Interface: AuthAuditEvent
Defined in: packages/security/src/auth/audit-emitter.ts:45
One auth audit event. The payload never carries the raw token or the pepper — only the token id / metadata safe to log.
Stable
Properties
| Property | Modifier | Type | Description | Defined in |
|---|---|---|---|---|
action | readonly | AuthAuditAction | - | packages/security/src/auth/audit-emitter.ts:46 |
actor? | readonly | AuthAuditActor | - | packages/security/src/auth/audit-emitter.ts:51 |
decision | readonly | AuthAuditDecision | - | packages/security/src/auth/audit-emitter.ts:47 |
metadata? | readonly | Readonly<Record<string, unknown>> | Bounded, secret-free context (scopes, ip, reason). | packages/security/src/auth/audit-emitter.ts:53 |
target | readonly | string | Token id (token:*) or the failure subject (auth:denied:*). | packages/security/src/auth/audit-emitter.ts:50 |
ts | readonly | number | - | packages/security/src/auth/audit-emitter.ts:48 |