search
Release Notes

Lifecycle Events

List, inspect, and export granular lifecycle management events recording changes to identities and entities

Lifecycle management events are the granular outcome records produced by workflow actions. Each event records a single change (or attempted change) to an entity in a target system—such as creating an identity, adding a group membership, resetting a password, or disabling an account.

These APIs correspond to the Events tab on the Activity Log page in the Veza UI.

Event APIs help you:

  • Audit every individual change made by lifecycle management

  • Track success and failure of entity-level operations

  • Filter events by type, identity, datasource, or time range

  • Export event history for compliance reporting

hashtag
Endpoints

Method
Endpoint
Description

GET

List Events

Retrieve a paginated list of lifecycle management events

GET

Get Event

Retrieve a single event by ID

POST

Export Events

Export events to a downloadable file

hashtag
Key Concepts

hashtag
Event Types

The event_type field classifies what happened:

Value
Description

NONE

No event type specified

CREATE_IDENTITY

New identity created in target system

SYNC_IDENTITY

Existing identity attributes synchronized

ADD_RELATIONSHIP

Group/role membership added

REMOVE_RELATIONSHIP

Group/role membership removed

CREATE_EMAIL

Email address created for identity

CHANGE_PASSWORD

Identity password changed

DELETE_IDENTITY

Identity deleted from target system

DISABLE_IDENTITY

Identity disabled in target system

WRITE_BACK_EMAIL

Email written back to HRIS system

ACCESS_REQUEST_COMPLETE

Access request completed

CUSTOM_ACTION

Custom action executed

ACTION_FAILED

Action failed during execution

WORKFLOW_TASK_FAILED

Workflow task failed

EXTRACTION_EVENT_FAILED

Extraction event failed

CREATE_ENTITLEMENT

Entitlement (role/group) created

CREATE_GUEST_ACCOUNT

Guest account created

RENAME_ENTITLEMENT

Entitlement renamed

CREATE_ACCESS_REVIEW

Access review campaign created

RESET_PASSWORD

Identity password reset

CREATE_ACCESS_REVIEW_QUEUED

Access review creation queued

SAFETY_LIMIT_REACHED

Safety limit threshold reached

SYNC_ENTITLEMENT

Entitlement synchronized

INVALID_IDENTITIES_DETECTED

Invalid identities detected in source

INVALID_IDENTITY

Single invalid identity detected

IDENTITY_METADATA_EDIT

Identity metadata manually edited

hashtag
Lifecycle Event Source

Value
Description

POLICY

Event produced by an LCM Policy workflow

ACCESS_PLAN

Event produced by an Access Plan

hashtag
List Events

hashtag
Endpoint

hashtag
Description

Retrieve a paginated list of lifecycle management events. Supports SCIM-style filtering, ordering, and pagination. Events are ordered by timestamp descending by default.

hashtag
Filterable Fields

Field
Operators
Description

timestamp

gt, ge, lt, le

Event timestamp

event_type

eq

Type of event

success

eq

Whether the event succeeded

identity_entity_type

eq, co

Identity entity type (case-insensitive)

identity_entity_id

eq, co

Identity entity ID (case-insensitive)

identity_entity_name

eq, co

Identity entity name (case-insensitive)

identity_id

eq

Identity ID

data_source_id

eq

Target datasource ID

provider_id

eq

Provider ID

entity_type

eq, co

Target entity type (case-insensitive)

entity_id

eq, co

Target entity ID (case-insensitive)

entity_name

eq, co

Target entity name (case-insensitive)

policy_task

eq

Parent workflow task ID

extraction_event

eq

Extraction event ID

job_id

eq

Parent job ID

event_source

eq

Source (POLICY or ACCESS_PLAN)

event_source_id

eq

Source ID

workflow_name

eq, co

Workflow name

policy_name

eq

Policy name

datasource_name

eq

Datasource name

relationship_entity_type

eq, co

Relationship entity type (case-insensitive)

relationship_entity_id

eq, co

Relationship entity ID (case-insensitive)

relationship_entity_name

eq, co

Relationship entity name (case-insensitive)

relationship_assigned_to_entity_type

eq, co

Assigned-to relationship entity type (case-insensitive)

relationship_assigned_to_entity_id

eq, co

Assigned-to relationship entity ID (case-insensitive)

relationship_assigned_to_entity_name

eq, co

Assigned-to relationship entity name (case-insensitive)

id

eq

Event ID

hashtag
API Reference

hashtag
List Lifecycle Management Events

get

Retrieve a paginated list of lifecycle management events. Events are the granular outcome records produced by workflow actions—each represents a single change (or attempted change) to an entity in a target system, such as creating an identity, adding a group membership, or disabling an account. Corresponds to the "Events" tab in the Activity Log UI.

Authorizations
AuthorizationstringRequired

Veza API key for authentication. Generate keys in Administration > API Keys.

Query parameters
filterstringOptional

SCIM-style filter expression. Filterable fields: timestamp (gt, ge, lt, le), identity_entity_type (eq, co — case-insensitive), identity_entity_id (eq, co — case-insensitive), identity_entity_name (eq, co — case-insensitive), data_source_id (eq), provider_id (eq), entity_type (eq, co — case-insensitive), entity_id (eq, co — case-insensitive), entity_name (eq, co — case-insensitive), event_type (eq), success (eq), extraction_event (eq), policy_task (eq), relationship_entity_type (eq, co — case-insensitive), relationship_entity_id (eq, co — case-insensitive), relationship_entity_name (eq, co — case-insensitive), job_id (eq), event_source (eq), event_source_id (eq), relationship_assigned_to_entity_type (eq, co — case-insensitive), relationship_assigned_to_entity_id (eq, co — case-insensitive), relationship_assigned_to_entity_name (eq, co — case-insensitive), id (eq), identity_id (eq), workflow_name (eq, co), policy_name (eq), datasource_name (eq). Example: event_type eq "CREATE_IDENTITY" and success eq true.

order_bystringOptional
page_sizeinteger · int32Optional
page_tokenstringOptional
Responses
chevron-right
200

OK

application/json
next_page_tokenstringOptional
get
/api/private/lifecycle_management/events

hashtag
Request Examples

List failed events since a specific date:

List identity creation events:

hashtag
Get Event

hashtag
Endpoint

hashtag
Description

Retrieve a single lifecycle management event by its unique ID. Returns the full event record including entity details, relationship information, and success/failure status.

hashtag
API Reference

hashtag
Get Lifecycle Management Event

get

Retrieve a single lifecycle management event by its unique ID. Returns the full Event object including the event type, success status, identity and entity details, relationship information, and source metadata.

Authorizations
AuthorizationstringRequired

Veza API key for authentication. Generate keys in Administration > API Keys.

Path parameters
idstringRequired
Responses
chevron-right
200

OK

application/json
get
/api/private/lifecycle_management/events/{id}

hashtag
Request Example

hashtag
Export Events

hashtag
Endpoint

hashtag
Description

Export lifecycle management events matching a filter to a downloadable CSV file. The request body wraps the same filter and ordering parameters used by the List endpoint.

hashtag
API Reference

hashtag
Export Lifecycle Management Events

post

Export lifecycle management events to a downloadable file. Accepts the same filter and ordering parameters as the List Events endpoint. Returns an export job reference that can be polled for completion.

Authorizations
AuthorizationstringRequired

Veza API key for authentication. Generate keys in Administration > API Keys.

Query parameters
formatinteger · enumOptional
Body
filterstringOptional
page_sizeinteger · int32Optional
page_tokenstringOptional
Responses
chevron-right
200

OK

application/json
idstringOptional
post
/api/private/lifecycle_management/events:export

hashtag
Request Example

hashtag
Authentication

All Event API requests require authentication. See API Authentication for details.

hashtag
Related Documentation

PreviousIntegration JobsNextSCIM Provisioning

Last updated

Was this helpful?