Vault API
Audit & listing
Hash-chained audit trail and listing seals.
GET /v1/audit/:id
Returns the append-only, hash-chained audit trail for a seal: every seal, status check, approval, and release, in order. Each entry commits to the hash of the previous one, so reordering, inserting, or deleting an entry breaks the chain and is detectable.
curl http://localhost:3300/v1/audit/b9f1c3e2-…Returns 404 Not Found for an unknown sealed_id.
Use the trail to prove, after the fact, exactly who did what and when — without having to trust that the log was not edited.
GET /v1/list
Lists all seals known to the service (identifiers, conditions, and state). Useful for dashboards and reconciliation.
curl http://localhost:3300/v1/listThe audit chain is tamper-evident, not tamper-proof: an attacker can destroy the log, but cannot silently alter it. Persist and replicate it accordingly.