Networking Auditable Event Methods on Confluent Cloud

Auditable event methods for networking include the actions, or operations, on Confluent Cloud networking solutions that generate auditable event messages.

Go directly to the following sections:

Network

The following actions, or operations, on a Confluent Cloud network generate auditable event messages. For more information about Confluent Cloud networks, see Manage Networking on Confluent Cloud.

Method name Action triggering an audit log event message
CreateNetwork A request to create a Confluent Cloud network.
DeleteNetwork A request to remove a Confluent Cloud network.
GetNetwork A request to get the details of a Confluent Cloud network.
GetNetworks A request to get a list of the Confluent Cloud networks.
UpdateNetwork A request to update the details of a Confluent Cloud network.

CreateNetwork

The CreateNetwork event is generated by a request to create a Confluent Cloud network.

Examples

SUCCESS
{
   "datacontenttype":"application/json",
   "data":{
      "serviceName":"crn://confluent.cloud/",
      "methodName":"CreateNetwork",
      "cloudResources":[
         {
            "scope":{
               "resources":[
                  {
                     "type":"ORGANIZATION",
                     "resourceId":"424c3c58-93de-414f-bb87-a6131f477f66"
                  },
                  {
                     "type":"ENVIRONMENT",
                     "resourceId":"env-223r92"
                  }
               ]
            },
            "resource":{
               "type":"NETWORK",
               "resourceId":"n-gok0y6"
            }
         }
      ],
      "authenticationInfo":{
         "exposure":"CUSTOMER",
         "principal":{
            "email":"someone@example.com",
            "confluentUser":{
               "resourceId":"u-doopwd"
            }
         },
         "result":"SUCCESS"
      },
      "requestMetadata":{
         "requestId":[
            "83797a6d2b0a8d3af0006c6f2b7f878b"
         ],
         "clientAddress":[
            {
               "ip":"1.2.3.4"
            }
         ]
      },
      "request":{
         "accessType":"MODIFICATION",
         "data":{
            "spec":{
               "connection_types":[
                  "PRIVATELINK"
               ],
               "display_name":"display-name",
               "environment":{
                  "id":"env-223r92"
               },
               "region":"centralus",
               "zones":[

               ],
               "cloud":"AZURE"
            }
         }
      },
      "result":{
         "status":"SUCCESS",
         "data":{
            "status":{
               "phase":"PROVISIONING",
               "supported_connection_types":[
                  "PRIVATE_LINK"
               ],
               "zonal_subdomains":{

               },
               "cloud":{
                  "vnet":"",
                  "kind":"networking.v1.AzureNetwork",
                  "private_link_service_aliases":{

                  },
                  "subscription":"731fd59e-3b05-4357-919a-5b3410abc153"
               },
               "dns_domain":""
            },
            "api_version":"networking/v1",
            "id":"n-gok0y6",
            "kind":"Network",
            "metadata":{
               "created_at":"2022-04-21T17:23:46.898902Z",
               "resource_name":"crn://confluent.cloud/organization=424c3c58-93de-414f-bb87-a6131f477f66/environment=env-223r92/network=n-gok0y6",
               "self":"https://api.confluent.cloud/networking/v1/networks/n-gok0y6?environment=env-223r92",
               "updated_at":"2022-04-21T17:23:46.898902Z"
            },
            "spec":{
               "region":"centralus",
               "zones":[
                  "1",
                  "2",
                  "3"
               ],
               "cidr":"10.1.0.0/16",
               "cloud":"AZURE",
               "connection_types":[
                  "PRIVATELINK"
               ],
               "display_name":"display-name",
               "environment":{
                  "resource_name":"crn://confluent.cloud/organization=424c3c58-93de-414f-bb87-a6131f477f66/environment=env-223r92",
                  "api_version":"org/v2",
                  "id":"env-223r92",
                  "kind":"Environment",
                  "related":"https://api.confluent.cloud/v2/environments/env-223r92"
               }
            }
         }
      }
   },
   "subject":"crn://confluent.cloud/organization=424c3c58-93de-414f-bb87-a6131f477f66/environment=env-223r92/network=n-gok0y6",
   "specversion":"1.0",
   "id":"23ae10b0-bc8c-4c85-8703-6a7b309cd8f8",
   "source":"crn://confluent.cloud/",
   "time":"2022-04-21T17:23:46.903Z",
   "type":"io.confluent.cloud/request"
}
FAILURE – An internal error occurred during network creation.
{
   "specversion":"1.0",
   "id":"aaaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee",
   "source":"crn://confluent.cloud/",
   "type":"io.confluent.cloud/request",
   "subject":"crn://confluent.cloud/organization=customer2/environment=env-1",
   "datacontenttype":"application/json",
   "data":{
      "service_name":"crn://confluent.cloud/",
      "method_name":"CreateNetwork",
      "cloud_resources":[
         {
            "scope":{
               "resources":[
                  {
                     "type":"ORGANIZATION",
                     "resource_id":"customer2"
                  }
               ]
            },
            "resource":{
               "type":"ENVIRONMENT",
               "resource_id":"env-1"
            }
         }
      ],
      "authentication_info":{
         "exposure":"CUSTOMER",
         "principal":{
            "confluentUser":{
               "resource_id":"u-2"
            }
         },
         "result":"SUCCESS"
      },
      "request_metadata":{
         "request_id":[
            "01020304050607080102040810204080"
         ],
         "client_address":[
            {
               "ip":"1.2.3.4"
            }
         ]
      },
      "request":{
         "access_type":"MODIFICATION",
         "data":{
            "spec":{
               "cidr":"10.1.0.0/16",
               "cloud":"AWS",
               "connection_types":[
                  "TRANSITGATEWAY"
               ],
               "display_name":"display-name",
               "environment":{
                  "id":"env-1"
               },
               "region":"us-west-2",
               "zones":[
                  "usw2-az1",
                  "usw2-az2",
                  "usw2-az3"
               ]
            }
         }
      },
      "result":{
         "status":"FAILURE",
         "data":{
            "errors":[
               {
                  "id":"01020304050607080102040810204080",
                  "status":"500"
               }
            ]
         }
      }
   }
}

DeleteNetwork

The DeleteNetwork event is generated by a request to remove a Confluent Cloud network.

Examples

SUCCESS
{
    "datacontenttype": "application/json",
    "data": {
      "serviceName": "crn://confluent.cloud/",
      "methodName": "DeleteNetwork",
      "cloudResources": [
        {
          "scope": {
            "resources": [
              {
                "type": "ORGANIZATION",
                "resourceId": "424c3c58-93de-414f-bb87-a6131f477f66"
              },
              {
                "type": "ENVIRONMENT",
                "resourceId": "env-223r92"
              }
            ]
          },
          "resource": {
            "type": "NETWORK",
            "resourceId": "n-gjeznp"
          }
        }
      ],
      "authenticationInfo": {
        "exposure": "CUSTOMER",
        "principal": {
          "email": "someone@example.com",
          "confluentUser": {
            "resourceId": "u-doopwd"
          }
        },
        "result": "SUCCESS"
      },
      "requestMetadata": {
        "requestId": [
          "7c46d1ecabe44da0d92c980687466156"
        ],
        "clientAddress": [
          {
            "ip": "1.2.3.4"
          }
        ]
      },
      "request": {
        "accessType": "MODIFICATION",
        "data": {
          "id": "n-gjeznp",
          "environment": "env-223r92"
        }
      },
      "result": {
        "status": "SUCCESS"
      }
    },
    "subject": "crn://confluent.cloud/organization=424c3c58-93de-414f-bb87-a6131f477f66/environment=env-223r92/network=n-gjeznp",
    "specversion": "1.0",
    "id": "78dc845a-a6f9-4df5-8615-4be54b77faf9",
    "source": "crn://confluent.cloud/",
    "time": "2022-04-21T17:27:15.556Z",
    "type": "io.confluent.cloud/request"
  }
FAILURE - "Network deletion not allowed due to existing dependencies."
{
 "datacontenttype": "application/json",
 "id": "fc0f727d-899a-4a22-ad8b-a866871a9d37",
 "time": "2021-01-01T12:34:56.789Z",
 "type":"io.confluent.cloud/request",
 "source": "crn://confluent.cloud/kafka=lkc-a1b2c",
 "subject": "crn://confluent.cloud/kafka=lkc-a2b2c",
 "specversion": "1.0"
 "data": {
    "serviceName": "crn://confluent.cloud/",
    "methodName": "DeleteNetwork",
    "cloudResources": [
      {
        "scope": {
          "resources": [
            {
              "type": "ORGANIZATION",
              "resourceId": "c54edd1d-30f2-4914-a93d-bdb4798ae750"
            },
            {
              "type": "ENVIRONMENT",
              "resourceId": "a-20142"
            }
          ]
        },
        "resource": {
          "type": "NETWORK",
          "resourceId": "n-ogz57g"
        }
      }
    ],
    "authenticationInfo": {
      "exposure": "CUSTOMER",
      "principal": {
        "email": "someone@example.com",
        "confluentUser": {
          "resourceId": "u-e80104"
        }
      },
      "result": "SUCCESS"
    },
    "requestMetadata": {
      "requestId": [
        "ea6ec637be9facc78ad0d1639441d3ce"
      ],
      "clientAddress": [
        {
          "ip": "1.2.3.4"
        }
      ]
    },
    "request": {
      "accessType": "MODIFICATION",
      "data": {
        "id": "n-ogz57g",
        "environment": "a-20142"
      }
    },
    "result": {
      "status": "FAILURE",
      "data": {
        "errors": [
          {
            "id": "ea6ec637be9facc78ad0d1639441d3ce",
            "status": "409",
            "detail": "Network deletion not allowed due to existing dependencies.",
            "source": {}
          }
        ]
      }
    }
  }
 }

GetNetwork

The GetNetwork event is generated by a request to get the details of a Confluent Cloud network.

Examples

SUCCESS
{
    "datacontenttype": "application/json",
    "data": {
      "serviceName": "crn://confluent.cloud/",
      "methodName": "GetNetwork",
      "cloudResources": [
        {
          "scope": {
            "resources": [
              {
                "type": "ORGANIZATION",
                "resourceId": "424c3c58-93de-414f-bb87-a6131f477f66"
              },
              {
                "type": "ENVIRONMENT",
                "resourceId": "env-223r92"
              }
            ]
          },
          "resource": {
            "type": "NETWORK",
            "resourceId": "n-gz8wyg"
          }
        }
      ],
      "authenticationInfo": {
        "exposure": "CUSTOMER",
        "principal": {
          "email": "someone@example.com",
          "confluentUser": {
            "resourceId": "u-doopwd"
          }
        },
        "result": "SUCCESS"
      },
      "requestMetadata": {
        "requestId": [
          "3e736d0a3e5e085e7ef99ddad5c13a10"
        ],
        "clientAddress": [
          {
            "ip": "1.2.3.4"
          }
        ]
      },
      "request": {
        "accessType": "READ_ONLY",
        "data": {
          "id": "n-gz8wyg",
          "environment": "env-223r92"
        }
      },
      "result": {
        "status": "SUCCESS",
        "data": {
          "api_version": "networking/v1",
          "id": "n-gz8wyg",
          "kind": "Network",
          "metadata": {
            "created_at": "2022-04-21T05:32:02.223204Z",
            "resource_name": "crn://confluent.cloud/organization=424c3c58-93de-414f-bb87-a6131f477f66/environment=env-223r92/network=n-gz8wyg",
            "self": "https://api.confluent.cloud/networking/v1/networks/n-gz8wyg?environment=env-223r92",
            "updated_at": "2022-04-21T05:32:02.766852Z"
          },
          "spec": {
            "zones": [
              "1",
              "2",
              "3"
            ],
            "cidr": "10.1.0.0/16",
            "cloud": "AZURE",
            "connection_types": [
              "PRIVATELINK"
            ],
            "display_name": "network_azure_PRIVATELINK",
            "environment": {
              "api_version": "org/v2",
              "id": "env-223r92",
              "kind": "Environment",
              "related": "https://api.confluent.cloud/v2/environments/env-223r92",
              "resource_name": "crn://confluent.cloud/organization=424c3c58-93de-414f-bb87-a6131f477f66/environment=env-223r92"
            },
            "region": "centralus"
          },
          "status": {
            "cloud": {
              "kind": "networking.v1.AzureNetwork",
              "private_link_service_aliases": {},
              "subscription": "731fd59e-3b05-4357-919a-5b3410abc153",
              "vnet": ""
            },
            "dns_domain": "",
            "phase": "PROVISIONING",
            "supported_connection_types": [
              "PRIVATE_LINK"
            ],
            "zonal_subdomains": {}
          }
        }
      }
    },
    "subject": "crn://confluent.cloud/organization=424c3c58-93de-414f-bb87-a6131f477f66/environment=env-223r92/network=n-gz8wyg",
    "specversion": "1.0",
    "id": "fcb10b4c-765f-4f2a-a336-31fd54ece03b",
    "source": "crn://confluent.cloud/",
    "time": "2022-04-21T05:39:07.840Z",
    "type": "io.confluent.cloud/request"
  }

GetNetworks

The GetNetworks event is generated by a request to get a list of the Confluent Cloud networks in the organization.

Examples

SUCCESS
{
   "datacontenttype":"application/json",
   "data":{
      "serviceName":"crn://confluent.cloud/",
      "methodName":"GetNetworks",
      "cloudResources":[
         {
            "scope":{
               "resources":[
                  {
                     "type":"ORGANIZATION",
                     "resourceId":"424c3c58-93de-414f-bb87-a6131f477f66"
                  }
               ]
            },
            "resource":{
               "type":"ENVIRONMENT",
               "resourceId":"env-223r92"
            }
         }
      ],
      "authenticationInfo":{
         "exposure":"CUSTOMER",
         "principal":{
            "email":"someone@example.com",
            "confluentUser":{
               "resourceId":"u-doopwd"
            }
         },
         "result":"SUCCESS"
      },
      "requestMetadata":{
         "requestId":[
            "66b5882906e46079070e77160006a2db"
         ],
         "clientAddress":[
            {
               "ip":"1.2.3.4"
            }
         ]
      },
      "request":{
         "accessType":"READ_ONLY",
         "data":{
            "environment":"env-223r92",
            "deactivated":{

            },
            "page":{
               "size":1000
            }
         }
      },
      "result":{
         "status":"SUCCESS"
      }
   },
   "subject":"crn://confluent.cloud/organization=424c3c58-93de-414f-bb87-a6131f477f66/environment=env-223r92",
   "specversion":"1.0",
   "id":"4eb99b3d-d91d-41f8-902f-3848b30fe2c7",
   "source":"crn://confluent.cloud/",
   "time":"2022-04-21T17:47:25.014Z",
   "type":"io.confluent.cloud/request"
}

UpdateNetwork

The UpdateNetwork event is generated by a request to update the details of a Confluent Cloud network.

Examples

SUCCESS
{
    "datacontenttype": "application/json",
    "data": {
      "serviceName": "crn://confluent.cloud/",
      "methodName": "UpdateNetwork",
      "cloudResources": [
        {
          "scope": {
            "resources": [
              {
                "type": "ORGANIZATION",
                "resourceId": "3de5f6ab-96b9-431d-a3a1-5719db30f247"
              },
              {
                "type": "ENVIRONMENT",
                "resourceId": "env-gkpqyr"
              }
            ]
          },
          "resource": {
            "type": "NETWORK",
            "resourceId": "n-69mxmg"
          }
        }
      ],
      "authenticationInfo": {
        "exposure": "CUSTOMER",
        "principal": {
          "email": "someone@example.com",
          "confluentUser": {
            "resourceId": "u-yggjp7"
          }
        },
        "result": "SUCCESS"
      },
      "requestMetadata": {
        "requestId": [
          "a14e20a571ae898d8a3129886389d93f"
        ],
        "clientAddress": [
          {
            "ip": "1.2.3.4"
          }
        ]
      },
      "request": {
        "accessType": "MODIFICATION",
        "data": {
          "spec": {
            "display_name": "seattle-network"
          }
        }
      },
      "result": {
        "status": "SUCCESS",
        "data": {
          "spec": {
            "cidr": "10.1.0.0/16",
            "cloud": "AWS",
            "connection_types": [
              "PRIVATELINK"
            ],
            "display_name": "seattle-network",
            "environment": {
              "api_version": "org/v2",
              "id": "env-gkpqyr",
              "kind": "Environment",
              "related": "https://api.confluent.cloud/v2/environments/env-gkpqyr",
              "resource_name": "crn://confluent.cloud/organization=3de5f6ab-96b9-431d-a3a1-5719db30f247/environment=env-gkpqyr"
            },
            "region": "us-east-2",
            "zones": [
              "use2-az1",
              "use2-az2",
              "use2-az3"
            ]
          },
          "status": {
            "dns_domain": "69mxmg.us-east-2.aws.confluent.cloud",
            "phase": "READY",
            "supported_connection_types": [
              "PRIVATE_LINK"
            ],
            "zonal_subdomains": {
              "use2-az1": "use2-az1.69mxmg.us-east-2.aws.confluent.cloud",
              "use2-az2": "use2-az2.69mxmg.us-east-2.aws.confluent.cloud",
              "use2-az3": "use2-az3.69mxmg.us-east-2.aws.confluent.cloud"
            },
            "cloud": {
              "account": "123456789",
              "kind": "networking.v1.AwsNetwork",
              "private_link_endpoint_service": "com.amazonaws.vpce.us-east-2.vpce-svc-0c9fb7e9893e3badc",
              "vpc": "vpc-0867b103058e24193"
            }
          },
          "api_version": "networking/v1",
          "id": "n-69mxmg",
          "kind": "Network",
          "metadata": {
            "created_at": "2022-04-18T19:31:30.13997Z",
            "resource_name": "crn://confluent.cloud/organization=3de5f6ab-96b9-431d-a3a1-5719db30f247/environment=env-gkpqyr/network=n-69mxmg",
            "self": "https://api.confluent.cloud/networking/v1/networks/n-69mxmg?environment=env-gkpqyr",
            "updated_at": "2022-04-21T00:36:55.996833Z"
          }
        }
      }
    },
    "subject": "crn://confluent.cloud/organization=3de5f6ab-96b9-431d-a3a1-5719db30f247/environment=env-gkpqyr/network=n-69mxmg",
    "specversion": "1.0",
    "id": "a06d04a1-6f18-45cc-b0ab-9d7fd54a5182",
    "source": "crn://confluent.cloud/",
    "time": "2022-04-21T00:36:56.004Z",
    "type": "io.confluent.cloud/request"
  }

Peering connection

The following actions, or operations, on a VPC/VNet peering connection generate auditable event messages. For details about peering connections in Confluent Cloud, see Use VPC Peering Connections with Confluent Cloud on AWS.

Method name Action triggering an audit log event message
CreatePeering A request to create a peering connection.
DeletePeering A request to remove a peering connection.
GetPeering A request to get the details of a peering connection.
GetPeerings A request to get a list of the peering connections.
UpdatePeering A request to update the details of a peering connection.

CreatePeering

The CreatePeering event is generated by a request to create a VPC or VNet peering connection.

Examples

SUCCESS
{
    "specversion": "1.0",
    "id": "aaaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee",
    "source": "crn://confluent.cloud/",
    "type": "io.confluent.cloud/request",
    "subject": "crn://confluent.cloud/organization=customer2/environment=env-1/network=n-1/peering=peer-1",
    "datacontenttype": "application/json",
    "data": {
      "service_name": "crn://confluent.cloud/",
      "method_name": "CreatePeering",
      "cloud_resources": [
        {
          "scope": {
            "resources": [
              {
                "type": "ORGANIZATION",
                "resource_id": "customer2"
              },
              {
                "type": "ENVIRONMENT",
                "resource_id": "env-1"
              },
              {
                "type": "NETWORK",
                "resource_id": "n-1"
              }
            ]
          },
          "resource": {
            "type": "PEERING",
            "resource_id": "peer-1"
          }
        }
      ],
      "authentication_info": {
        "exposure": "CUSTOMER",
        "principal": {
          "confluentUser": {
            "resource_id": "u-2"
          }
        },
        "result": "SUCCESS"
      },
      "request_metadata": {
        "request_id": [
          "01020304050607080102040810204080"
        ],
        "client_address": [
          {
            "ip": "1.2.3.4"
          }
        ]
      },
      "request": {
        "access_type": "MODIFICATION",
        "data": {
          "spec": {
            "cloud": {
              "account": "123456789",
              "customer_region": "us-east-1",
              "routes": [
                "10.1.1.0/27",
                "10.1.2.0/27"
              ],
              "vpc": "vpc-12345"
            },
            "display_name": "seattle-network",
            "environment": {
              "id": "env-1"
            },
            "network": {
              "id": "n-1"
            }
          }
        }
      },
      "result": {
        "status": "SUCCESS",
        "data": {
          "api_version": "networking/v1",
          "id": "peer-1",
          "kind": "Peering",
          "metadata": {
            "resource_name": "crn://foo.bar.com/organization=customer2/environment=env-1/network=n-1/peering=peer-1",
            "self": "https://api.foo.bar.com/networking/v1/peerings/peer-1?environment=env-1"
          },
          "spec": {
            "cloud": {
              "account": "123456789",
              "customer_region": "us-east-1",
              "kind": "networking.v1.AwsPeering",
              "routes": [
                "10.1.1.0/27",
                "10.1.2.0/27"
              ],
              "vpc": "vpc-12345"
            },
            "display_name": "seatte-network",
            "environment": {
              "api_version": "org/v2",
              "id": "env-1",
              "kind": "Environment",
              "related": "https://api.foo.bar.com/v2/environments/env-1",
              "resource_name": "crn://foo.bar.com/organization=customer2/environment=env-1"
            },
            "network": {
              "api_version": "networking/v1",
              "id": "n-1",
              "kind": "Network",
              "related": "https://api.foo.bar.com/networking/v1/networks/n-1?environment=env-1",
              "resource_name": "crn://foo.bar.com/organization=customer2/environment=env-1/network=n-1"
            }
          },
          "status": {
            "phase": "UNKNOWN"
          }
        }
      }
    }
  }

DeletePeering

The DeletePeering event is generated by a request to remove a VPC or VNet peering connection.

Examples

SUCCESS
{
    "specversion": "1.0",
    "id": "aaaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee",
    "source": "crn://confluent.cloud/",
    "type": "io.confluent.cloud/request",
    "subject": "crn://confluent.cloud/organization=customer2/environment=env-1/peering=peer-1",
    "datacontenttype": "application/json",
    "data": {
      "service_name": "crn://confluent.cloud/",
      "method_name": "DeletePeering",
      "cloud_resources": [
        {
          "scope": {
            "resources": [
              {
                "type": "ORGANIZATION",
                "resource_id": "customer2"
              },
              {
                "type": "ENVIRONMENT",
                "resource_id": "env-1"
              }
            ]
          },
          "resource": {
            "type": "PEERING",
            "resource_id": "peer-1"
          }
        }
      ],
      "authentication_info": {
        "exposure": "CUSTOMER",
        "principal": {
          "confluentUser": {
            "resource_id": "u-2"
          }
        },
        "result": "SUCCESS"
      },
      "request_metadata": {
        "request_id": [
          "01020304050607080102040810204080"
        ],
        "client_address": [
          {
            "ip": "1.2.3.4"
          }
        ]
      },
      "request": {
        "access_type": "MODIFICATION",
        "data": {
          "environment": "env-1",
          "id": "peer-1"
        }
      },
      "result": {
        "status": "SUCCESS"
      }
    }
  }

GetPeering

The GetPeering event is generated by a request to get the details of a VPC or VNet peering connection.

Examples

SUCCESS
{
    "specversion": "1.0",
    "id": "aaaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee",
    "source": "crn://confluent.cloud/",
    "type": "io.confluent.cloud/request",
    "subject": "crn://confluent.cloud/organization=customer2/environment=env-1/network=n-1/peering=peer-1",
    "datacontenttype": "application/json",
    "data": {
      "service_name": "crn://confluent.cloud/",
      "method_name": "GetPeering",
      "cloud_resources": [
        {
          "scope": {
            "resources": [
              {
                "type": "ORGANIZATION",
                "resource_id": "customer2"
              },
              {
                "type": "ENVIRONMENT",
                "resource_id": "env-1"
              },
              {
                "type": "NETWORK",
                "resource_id": "n-1"
              }
            ]
          },
          "resource": {
            "type": "PEERING",
            "resource_id": "peer-1"
          }
        }
      ],
      "authentication_info": {
        "exposure": "CUSTOMER",
        "principal": {
          "confluentUser": {
            "resource_id": "u-2"
          }
        },
        "result": "SUCCESS"
      },
      "request_metadata": {
        "request_id": [
          "01020304050607080102040810204080"
        ],
        "client_address": [
          {
            "ip": "1.2.3.4"
          }
        ]
      },
      "request": {
        "access_type": "READ_ONLY",
        "data": {
          "environment": "env-1",
          "id": "peer-1"
        }
      },
      "result": {
        "status": "SUCCESS",
        "data": {
          "api_version": "networking/v1",
          "id": "peer-1",
          "kind": "Peering",
          "metadata": {
            "resource_name": "crn://foo.bar.com/organization=customer2/environment=env-1/network=n-1/peering=peer-1",
            "self": "https://api.foo.bar.com/networking/v1/peerings/peer-1?environment=env-1"
          },
          "spec": {
            "cloud": {
              "account": "123456789",
              "customer_region": "us-east-1",
              "kind": "networking.v1.AwsPeering",
              "routes": [
                "10.1.1.0/27",
                "10.1.2.0/27"
              ],
              "vpc": "vpc-12345"
            },
            "display_name": "display-name",
            "environment": {
              "api_version": "org/v2",
              "id": "env-1",
              "kind": "Environment",
              "related": "https://api.foo.bar.com/v2/environments/env-1",
              "resource_name": "crn://foo.bar.com/organization=customer2/environment=env-1"
            },
            "network": {
              "api_version": "networking/v1",
              "id": "n-1",
              "kind": "Network",
              "related": "https://api.foo.bar.com/networking/v1/networks/n-1?environment=env-1",
              "resource_name": "crn://foo.bar.com/organization=customer2/environment=env-1/network=n-1"
            }
          },
          "status": {
            "phase": "UNKNOWN"
          }
        }
      }
    }
  }

GetPeerings

The GetPeerings event is generated by a request to get a list of the peering connections in the organization.

Examples

SUCCESS
{
    "datacontenttype": "application/json",
    "data": {
      "serviceName": "crn://confluent.cloud/",
      "methodName": "GetPeerings",
      "cloudResources": [
        {
          "scope": {
            "resources": [
              {
                "type": "ORGANIZATION",
                "resourceId": "424c3c58-93de-414f-bb87-a6131f477f66"
              }
            ]
          },
          "resource": {
            "type": "ENVIRONMENT",
            "resourceId": "env-223r92"
          }
        }
      ],
      "authenticationInfo": {
        "exposure": "CUSTOMER",
        "principal": {
          "email": "someone@example.com",
          "confluentUser": {
            "resourceId": "u-doopwd"
          }
        },
        "result": "SUCCESS"
      },
      "requestMetadata": {
        "requestId": [
          "cd538a073b8a3aec372d08a3b274fe54"
        ],
        "clientAddress": [
          {
            "ip": "1.2.3.4"
          }
        ]
      },
      "request": {
        "accessType": "READ_ONLY",
        "data": {
          "environment": "env-223r92",
          "page": {
            "size": 1000
          }
        }
      },
      "result": {
        "status": "SUCCESS"
      }
    },
    "subject": "crn://confluent.cloud/organization=424c3c58-93de-414f-bb87-a6131f477f66/environment=env-223r92",
    "specversion": "1.0",
    "id": "51e75ace-ecae-47fe-9b20-cc659c4a0815",
    "source": "crn://confluent.cloud/",
    "time": "2022-04-21T16:27:29.412Z",
    "type": "io.confluent.cloud/request"
  }

UpdatePeering

The UpdatePeering event is generated by a request to update the details of a VPC or VNet peering connection.

Examples

SUCCESS
{
    "datacontenttype": "application/json",
    "data": {
      "serviceName": "crn://confluent.cloud/",
      "methodName": "UpdatePeering",
      "cloudResources": [
        {
          "scope": {
            "resources": [
              {
                "type": "ORGANIZATION",
                "resourceId": "3de5f6ab-96b9-431d-a3a1-5719db30f247"
              },
              {
                "type": "ENVIRONMENT",
                "resourceId": "env-xm636q"
              },
              {
                "type": "NETWORK",
                "resourceId": "n-gezz7g"
              }
            ]
          },
          "resource": {
            "type": "PEERING",
            "resourceId": "peer-gjelop"
          }
        }
      ],
      "authenticationInfo": {
        "exposure": "CUSTOMER",
        "principal": {
          "email": "someone@example.com",
          "confluentUser": {
            "resourceId": "u-yggjp7"
          }
        },
        "result": "SUCCESS"
      },
      "requestMetadata": {
        "requestId": [
          "8d72c5a30e289b959c2ed291931d5b81"
        ],
        "clientAddress": [
          {
            "ip": "1.2.3.4"
          }
        ]
      },
      "request": {
        "accessType": "MODIFICATION",
        "data": {
          "spec": {
            "display_name": "display-name"
          }
        }
      },
      "result": {
        "status": "SUCCESS",
        "data": {
          "status": {
            "phase": "READY"
          },
          "api_version": "networking/v1",
          "id": "peer-gjelop",
          "kind": "Peering",
          "metadata": {
            "created_at": "2022-04-06T15:49:42.290053Z",
            "resource_name": "crn://confluent.cloud/organization=3de5f6ab-96b9-431d-a3a1-5719db30f247/environment=env-xm636q/network=n-gezz7g/peering=peer-gjelop",
            "self": "https://api.confluent.cloud/networking/v1/peerings/peer-gjelop?environment=env-xm636q",
            "updated_at": "2022-04-21T22:21:06.955371Z"
          },
          "spec": {
            "cloud": {
              "account": "123456789",
              "customer_region": "us-west-2",
              "kind": "networking.v1.AwsPeering",
              "routes": [
                "10.2.0.0/16"
              ],
              "vpc": "vpc-038b46121a8cff887"
            },
            "display_name": "display-name",
            "environment": {
              "api_version": "org/v2",
              "id": "env-xm636q",
              "kind": "Environment",
              "related": "https://api.confluent.cloud/v2/environments/env-xm636q",
              "resource_name": "crn://confluent.cloud/organization=3de5f6ab-96b9-431d-a3a1-5719db30f247/environment=env-xm636q"
            },
            "network": {
              "api_version": "networking/v1",
              "id": "n-gezz7g",
              "kind": "Network",
              "related": "https://api.confluent.cloud/networking/v1/networks/n-gezz7g?environment=env-xm636q",
              "resource_name": "crn://confluent.cloud/organization=3de5f6ab-96b9-431d-a3a1-5719db30f247/environment=env-xm636q/network=n-gezz7g"
            }
          }
        }
      }
    },
    "subject": "crn://confluent.cloud/organization=3de5f6ab-96b9-431d-a3a1-5719db30f247/environment=env-xm636q/network=n-gezz7g/peering=peer-gjelop",
    "specversion": "1.0",
    "id": "11782d45-91ce-49fa-953a-451b38c7d8e4",
    "source": "crn://confluent.cloud/",
    "time": "2022-04-21T22:21:06.963Z",
    "type": "io.confluent.cloud/request"
  }
FAILURE – "The peering peer-gjelopnope was not found."
{
   "datacontenttype":"application/json",
   "data":{
      "serviceName":"crn://confluent.cloud/",
      "methodName":"UpdatePeering",
      "cloudResources":[
         {
            "scope":{
               "resources":[
                  {
                     "type":"ORGANIZATION",
                     "resourceId":"3de5f6ab-96b9-431d-a3a1-5719db30f247"
                  },
                  {
                     "type":"ENVIRONMENT",
                     "resourceId":"env-xm636q"
                  }
               ]
            },
            "resource":{
               "type":"PEERING",
               "resourceId":"peer-gjelopnope"
            }
         }
      ],
      "authenticationInfo":{
         "exposure":"CUSTOMER",
         "principal":{
            "email":"someone@example.com",
            "confluentUser":{
               "resourceId":"u-yggjp7"
            }
         },
         "result":"SUCCESS"
      },
      "requestMetadata":{
         "requestId":[
            "6940b5a7bcdecbd9a511c2f7c2312ffa"
         ],
         "clientAddress":[
            {
               "ip":"1.2.3.4"
            }
         ]
      },
      "request":{
         "accessType":"MODIFICATION",
         "data":{
            "spec":{
               "display_name":"display-name"
            }
         }
      },
      "result":{
         "status":"FAILURE",
         "data":{
            "errors":[
               {
                  "status":"404",
                  "detail":"The peering peer-gjelopnope was not found.",
                  "source":{

                  },
                  "id":"6940b5a7bcdecbd9a511c2f7c2312ffa"
               }
            ]
         }
      }
   },
   "subject":"crn://confluent.cloud/organization=3de5f6ab-96b9-431d-a3a1-5719db30f247/environment=env-xm636q/peering=peer-gjelopnope",
   "specversion":"1.0",
   "id":"98f65828-0c0e-42cc-a05f-ef66c9d35161",
   "source":"crn://confluent.cloud/",
   "time":"2022-04-21T22:22:42.625Z",
   "type":"io.confluent.cloud/request"
}

Transit gateway attachment

The following actions, or operations, on a transit gateway attachment (AWS Transit Gateway) generate auditable event messages. For details about transit gateways in Confluent Cloud, see Use AWS Transit Gateway on Confluent Cloud.

Method name Action triggering an audit log event message
GetTransitGatewayAttachment A request to get the details of a transit gateway attachment.
GetTransitGatewayAttachments A request to get a list of the transit gateway attachments.

GetTransitGatewayAttachment

The GetTransitGatewayAttachment event is generated by a request to get the details of a transit gateway attachment.

Examples

SUCCESS
{
    "datacontenttype": "application/json",
    "data": {
      "serviceName": "crn://confluent.cloud/",
      "methodName": "GetTransitGatewayAttachments",
      "cloudResources": [
        {
          "scope": {
            "resources": [
              {
                "type": "ORGANIZATION",
                "resourceId": "b1385ebd-73c2-418d-a821-5e5cd4409ade"
              }
            ]
          },
          "resource": {
            "type": "ENVIRONMENT",
            "resourceId": "env-gnygwm"
          }
        }
      ],
      "authenticationInfo": {
        "exposure": "CUSTOMER",
        "principal": {
          "email": "someone@example.com",
          "confluentUser": {
            "resourceId": "u-m890kq"
          }
        },
        "result": "SUCCESS"
      },
      "requestMetadata": {
        "requestId": [
          "5df94be7ff14a920226b8a34c9f178f9"
        ],
        "clientAddress": [
          {
            "ip": "1.2.3.4"
          }
        ]
      },
      "request": {
        "accessType": "READ_ONLY",
        "data": {
          "environment": "env-gnygwm",
          "page": {
            "size": 1000
          }
        }
      },
      "result": {
        "status": "SUCCESS"
      }
    },
    "subject": "crn://confluent.cloud/organization=b1385ebd-73c2-418d-a821-5e5cd4409ade/environment=env-gnygwm",
    "specversion": "1.0",
    "id": "c8f2601d-a935-40ec-9b33-d11070d820fa",
    "source": "crn://confluent.cloud/",
    "time": "2022-04-21T17:47:26.533Z",
    "type": "io.confluent.cloud/request"
  }

GetTransitGatewayAttachments

The GetTransitGatewayAttachments event is generated by a request to get a list of the transit gateway attachments in the organization.

Examples

SUCCESS
{
    "datacontenttype": "application/json",
    "data": {
      "serviceName": "crn://confluent.cloud/",
      "methodName": "GetTransitGatewayAttachments",
      "cloudResources": [
        {
          "scope": {
            "resources": [
              {
                "type": "ORGANIZATION",
                "resourceId": "b1385ebd-73c2-418d-a821-5e5cd4409ade"
              }
            ]
          },
          "resource": {
            "type": "ENVIRONMENT",
            "resourceId": "env-gnygwm"
          }
        }
      ],
      "authenticationInfo": {
        "exposure": "CUSTOMER",
        "principal": {
          "email": "someone@example.com",
          "confluentUser": {
            "resourceId": "u-m890kq"
          }
        },
        "result": "SUCCESS"
      },
      "requestMetadata": {
        "requestId": [
          "5df94be7ff14a920226b8a34c9f178f9"
        ],
        "clientAddress": [
          {
            "ip": "1.2.3.4"
          }
        ]
      },
      "request": {
        "accessType": "READ_ONLY",
        "data": {
          "environment": "env-gnygwm",
          "page": {
            "size": 1000
          }
        }
      },
      "result": {
        "status": "SUCCESS"
      }
    },
    "subject": "crn://confluent.cloud/organization=b1385ebd-73c2-418d-a821-5e5cd4409ade/environment=env-gnygwm",
    "specversion": "1.0",
    "id": "c8f2601d-a935-40ec-9b33-d11070d820fa",
    "source": "crn://confluent.cloud/",
    "time": "2022-04-21T17:47:26.533Z",
    "type": "io.confluent.cloud/request"
  }

DNS forwarder

The following actions, or operations, on a DNS forwarder generate auditable event messages. For more information about DNS forwarders, see Manage Networking on Confluent Cloud.

Method name Action triggering an audit log event message
CreateDnsForwarder A request to create a DNS forwarder.
DeleteDnsForwarder A request to remove a DNS forwarder.
GetDnsForwarder A request to get the details of a DNS forwarder.
ListDnsForwarders A request to get a list of the DNS forwarders.
UpdateDnsForwarder A request to update the details of a DNS forwarder.

CreateDnsForwarder

The CreateDnsForwarder event is generated by a request to create a DNS forwarder.

Examples

SUCCESS
{
    "datacontenttype": "application/json",
    "data": {
        "serviceName": "crn://confluent.cloud/",
        "methodName": "CreateDnsForwarder",
        "cloudResources": [
            {
                "scope": {
                    "resources": [
                        {
                            "type": "ORGANIZATION",
                            "resourceId": "94b47aa0-ed3a-44da-9460-6cec0c710e84"
                        }
                    ]
                },
                "resource": {
                    "type": "ENVIRONMENT",
                    "resourceId": "env-cy9oovo"
                }
            }
        ],
        "authenticationInfo": {
            "principal": {
                "email": "someone@example.com",
                "confluentUser": {
                    "resourceId": "u-c2gjoz2"
                }
            },
            "result": "SUCCESS",
            "identity": "crn://confluent.cloud/organization=94b47aa0-ed3a-44da-9460-6cec0c710e84/identity-provider=Confluent/identity=u-c2gjoz2"
        },
        "requestMetadata": {
            "requestId": [
                "a25989c5a28a9154f4a59ec1ab8e7415"
            ],
            "clientAddress": [
                {
                    "ip": "1.2.3.4"
                }
            ]
        },
        "request": {
            "accessType": "MODIFICATION",
            "data": {
                "spec": {
                    "config": {
                        "dns_server_ips": [
                            "10.30.1.1"
                        ],
                        "kind": "ForwardViaIp"
                    },
                    "display_name": "test-dnsf",
                    "domains": [
                        "example.com"
                    ],
                    "environment": {
                        "environment": "string",
                        "id": "env-cy9oovo"
                    },
                    "gateway": {
                        "environment": "string",
                        "id": "gw-c1wpzq6"
                    }
                }
            }
        },
        "result": {
            "status": "SUCCESS"
        },
        "resourceName": "crn://confluent.cloud/organization=94b47aa0-ed3a-44da-9460-6cec0c710e84/environment=env-cy9oovo"
    },
    "subject": "crn://confluent.cloud/organization=94b47aa0-ed3a-44da-9460-6cec0c710e84/environment=env-cy9oovo",
    "specversion": "1.0",
    "id": "f78fb1ef-c60b-4df1-9c56-e204121d81e0",
    "source": "crn://confluent.cloud/",
    "time": "2024-02-02T09:10:19.900310327Z",
    "type": "io.confluent.cloud/request"
}

DeleteDnsForwarder

The DeleteDnsForwarder event is generated by a request to remove a DNS forwarder.

Examples

SUCCESS
{
    "datacontenttype": "application/json",
    "data": {
        "serviceName": "crn://confluent.cloud/",
        "methodName": "DeleteDnsForwarder",
        "cloudResources": [
            {
                "scope": {
                    "resources": [
                        {
                            "type": "ORGANIZATION",
                            "resourceId": "94b47aa0-ed3a-44da-9460-6cec0c710e84"
                        },
                        {
                            "type": "ENVIRONMENT",
                            "resourceId": "env-cm5kkwq"
                        }
                    ]
                },
                "resource": {
                    "type": "DNS_FORWARDER",
                    "resourceId": "dnsf-cyrv4lr"
                }
            }
        ],
        "authenticationInfo": {
            "principal": {
                "email": "someone@example.com",
                "confluentUser": {
                    "resourceId": "u-qzdo92"
                }
            },
            "result": "SUCCESS",
            "identity": "crn://confluent.cloud/organization=94b47aa0-ed3a-44da-9460-6cec0c710e84/identity-provider=Confluent/identity=u-qzdo92"
        },
        "requestMetadata": {
            "requestId": [
                "b6ab7a61867048db1c791449b38dd3d2"
            ],
            "clientAddress": [
                {
                    "ip": "1.2.3.4"
                }
            ]
        },
        "request": {
            "accessType": "MODIFICATION",
            "data": {
                "environment": "env-cm5kkwq",
                "id": "dnsf-cyrv4lr"
            }
        },
        "result": {
            "status": "SUCCESS"
        },
        "resourceName": "crn://confluent.cloud/organization=94b47aa0-ed3a-44da-9460-6cec0c710e84/environment=env-cm5kkwq/dns-forwarder=dnsf-cyrv4lr"
    },
    "subject": "crn://confluent.cloud/organization=94b47aa0-ed3a-44da-9460-6cec0c710e84/environment=env-cm5kkwq/dns-forwarder=dnsf-cyrv4lr",
    "specversion": "1.0",
    "id": "755a0446-d7d9-44fd-9a36-ec458971abcd",
    "source": "crn://confluent.cloud/",
    "time": "2024-02-06T17:21:56.769460171Z",
    "type": "io.confluent.cloud/request"
}

GetDnsForwarder

The GetDnsForwarder event is generated by a request to get the details of a DNS forwarder.

Examples

SUCCESS
{
    "datacontenttype": "application/json",
    "data": {
        "serviceName": "crn://confluent.cloud/",
        "methodName": "GetDnsForwarder",
        "cloudResources": [
            {
                "scope": {
                    "resources": [
                        {
                            "type": "ORGANIZATION",
                            "resourceId": "94b47aa0-ed3a-44da-9460-6cec0c710e84"
                        },
                        {
                            "type": "ENVIRONMENT",
                            "resourceId": "env-cn5yx86"
                        }
                    ]
                },
                "resource": {
                    "type": "DNS_FORWARDER",
                    "resourceId": "dnsf-clrwejr"
                }
            }
        ],
        "authenticationInfo": {
            "principal": {
                "email": "someone@example.com",
                "confluentUser": {
                    "resourceId": "u-zw0dm7"
                }
            },
            "result": "SUCCESS",
            "identity": "crn://confluent.cloud/organization=94b47aa0-ed3a-44da-9460-6cec0c710e84/identity-provider=Confluent/identity=u-zw0dm7"
        },
        "requestMetadata": {
            "requestId": [
                "d0866e090752ebdbb891b3d2025249cc"
            ],
            "clientAddress": [
                {
                    "ip": "1.2.3.4"
                }
            ]
        },
        "request": {
            "accessType": "READ_ONLY",
            "data": {
                "id": "dnsf-clrwejr",
                "environment": "env-cn5yx86"
            }
        },
        "result": {
            "status": "SUCCESS"
        },
        "resourceName": "crn://confluent.cloud/organization=94b47aa0-ed3a-44da-9460-6cec0c710e84/environment=env-cn5yx86/dns-forwarder=dnsf-clrwejr"
    },
    "subject": "crn://confluent.cloud/organization=94b47aa0-ed3a-44da-9460-6cec0c710e84/environment=env-cn5yx86/dns-forwarder=dnsf-clrwejr",
    "specversion": "1.0",
    "id": "ca960f56-7acc-4909-959b-68e4eab99548",
    "source": "crn://confluent.cloud/",
    "time": "2024-02-06T17:35:11.637703135Z",
    "type": "io.confluent.cloud/request"
}

ListDnsForwarders

The ListDnsForwarders event is generated by a request to get a list of the DNS forwarders.

Examples

SUCCESS
{
    "datacontenttype": "application/json",
    "data": {
        "serviceName": "crn://confluent.cloud/",
        "methodName": "ListDnsForwarders",
        "cloudResources": [
            {
                "scope": {
                    "resources": [
                        {
                            "type": "ORGANIZATION",
                            "resourceId": "94b47aa0-ed3a-44da-9460-6cec0c710e84"
                        }
                    ]
                },
                "resource": {
                    "type": "ENVIRONMENT",
                    "resourceId": "env-cy9oovo"
                }
            }
        ],
        "authenticationInfo": {
            "principal": {
                "email": "someone@example.com",
                "confluentUser": {
                    "resourceId": "u-8kdgp5"
                }
            },
            "result": "SUCCESS",
            "identity": "crn://confluent.cloud/organization=94b47aa0-ed3a-44da-9460-6cec0c710e84/identity-provider=Confluent/identity=u-8kdgp5"
        },
        "requestMetadata": {
            "requestId": [
                "1d71c97b54547d853b286846a02ff5fd"
            ],
            "clientAddress": [
                {
                    "ip": "1.2.3.4"
                }
            ]
        },
        "request": {
            "accessType": "READ_ONLY",
            "data": {
                "deactivated": false,
                "page": {},
                "environment": "env-cy9oovo"
            }
        },
        "result": {
            "status": "SUCCESS"
        },
        "resourceName": "crn://confluent.cloud/organization=94b47aa0-ed3a-44da-9460-6cec0c710e84/environment=env-cy9oovo"
    },
    "subject": "crn://confluent.cloud/organization=94b47aa0-ed3a-44da-9460-6cec0c710e84/environment=env-cy9oovo",
    "specversion": "1.0",
    "id": "0e457e9e-3549-4b68-b878-c503df0f24d7",
    "source": "crn://confluent.cloud/",
    "time": "2024-02-06T07:11:44.177027361Z",
    "type": "io.confluent.cloud/request"
}

UpdateDnsForwarder

The UpdateDnsForwarder event is generated by a request to update the details of a DNS forwarder.

Examples

SUCCESS
{
    "datacontenttype": "application/json",
    "data": {
        "serviceName": "crn://confluent.cloud/",
        "methodName": "UpdateDnsForwarder",
        "cloudResources": [
            {
                "scope": {
                    "resources": [
                        {
                            "type": "ORGANIZATION",
                            "resourceId": "94b47aa0-ed3a-44da-9460-6cec0c710e84"
                        },
                        {
                            "type": "ENVIRONMENT",
                            "resourceId": "env-cn5yx86"
                        }
                    ]
                },
                "resource": {
                    "type": "DNS_FORWARDER",
                    "resourceId": "dnsf-cyrzqdr"
                }
            }
        ],
        "authenticationInfo": {
            "principal": {
                "email": "someone@example.com",
                "confluentUser": {
                    "resourceId": "u-8kdgp5"
                }
            },
            "result": "SUCCESS",
            "identity": "crn://confluent.cloud/organization=94b47aa0-ed3a-44da-9460-6cec0c710e84/identity-provider=Confluent/identity=u-8kdgp5"
        },
        "requestMetadata": {
            "requestId": [
                "71efa3035a7da8db57f839a55859d25e"
            ],
            "clientAddress": [
                {
                    "ip": "1.2.3.4"
                }
            ]
        },
        "request": {
            "accessType": "MODIFICATION",
            "data": {
                "spec": {
                    "display_name": "test-dnsf"
                }
            }
        },
        "result": {
            "status": "SUCCESS"
        },
        "resourceName": "crn://confluent.cloud/organization=94b47aa0-ed3a-44da-9460-6cec0c710e84/environment=env-cn5yx86/dns-forwarder=dnsf-cyrzqdr"
    },
    "subject": "crn://confluent.cloud/organization=94b47aa0-ed3a-44da-9460-6cec0c710e84/environment=env-cn5yx86/dns-forwarder=dnsf-cyrzqdr",
    "specversion": "1.0",
    "id": "40960684-28c5-4818-a83b-28a782f2ae8e",
    "source": "crn://confluent.cloud/",
    "time": "2024-02-06T23:15:30.077530186Z",
    "type": "io.confluent.cloud/request"
}