Seven Layer
Vault API

Audit & listing

Hash-chained audit trail and listing seals.

GET /v1/audit/:id

Returns the append-only, hash-chained audit trail for a seal: every seal, status check, approval, and release, in order. Each entry commits to the hash of the previous one, so reordering, inserting, or deleting an entry breaks the chain and is detectable.

curl http://localhost:3300/v1/audit/b9f1c3e2-…

Returns 404 Not Found for an unknown sealed_id.

Use the trail to prove, after the fact, exactly who did what and when — without having to trust that the log was not edited.

GET /v1/list

Lists all seals known to the service (identifiers, conditions, and state). Useful for dashboards and reconciliation.

curl http://localhost:3300/v1/list

The audit chain is tamper-evident, not tamper-proof: an attacker can destroy the log, but cannot silently alter it. Persist and replicate it accordingly.

On this page