System Endpoints¶

There are some resources available for getting or setting system information and configuration. You can set the Usage Reporting configuration for the server, retrieve the Server Audit Logs, or perform a Direct Backup.

Usage Report Preview¶

(introduced: version 1.3)

An Administrator of Central may opt in to sending periodic reports summarizing usage. Configuration of this reporting is described here. For added transparency, the API provides a preview of the reported metrics.

Getting the Usage Report preview¶

GET /v1/analytics/preview

An Administrator can use this endpoint to preview the metrics being sent. The preview is computed on the fly and represents what the report would look like if sent at that time. This endpoint does not directly submit the Usage Report; that is handled internally as a scheduled Central task.

Server Audit Logs¶

(introduced: version 0.6)

Many actions on ODK Central will automatically log an event to the Server Audit Log. Creating a new Form, for instance, will log a form.create event, with information about the Actor who performed the action, and sometimes some additional details specific to the event.

Any time an audit action is logged, the request headers are checked. If X-Action-Notes are provided anywhere, those notes will be logged into the audit entries as well. Note that some requests generate multiple audit entries; in these cases, the note will be attached to every entry logged.

Server Audit Logs entries are created for the following actions:

user.create when a new User is created.
user.update when User information is updated, like email or password.
user.assignment.create when a User is assigned to a Server Role.
user.assignment.delete when a User is unassigned from a Server Role.
user.session.create when a User logs in.
user.delete when a User is deleted.
project.create when a new Project is created.
project.update when top-level Project information is updated, like its name.
project.delete when a Project is deleted.
form.create when a new Form is created.
form.update when top-level Form information is updated, like its name or state.
form.update.draft.set when a Draft Form definition is set.
form.update.draft.delete when a Draft Form definition is deleted.
form.update.publish when a Draft Form is published to the Form.
form.attachment.update when a Form Attachment binary is set or cleared.
form.submissions.export when a Form's Submissions are exported to CSV.
form.delete when a Form is deleted.
form.restore when a Form that was deleted is restored.
form.purge when a Form is permanently purged.
field_key.create when a new App User is created.
field_key.assignment.create when an App User is assigned to a Server Role.
field_key.assignment.delete when an App User is unassigned from a Server Role.
field_key.session.end when an App User's access is revoked.
field_key.delete when an App User is deleted.
public_link.create when a new Public Link is created.
public_link.assignment.create when a Public Link is assigned to a Server Role.
public_link.assignment.delete when a Public Link is unassigned from a Server Role.
public_link.session.end when a Public Link's access is revoked.
public_link.delete when a Public Link is deleted.
submission.create when a new Submission is created.
submission.update when a Submission's metadata is updated.
submission.update.version when a Submission XML data is updated.
submission.attachment.update when a Submission Attachment binary is set or cleared, but only via the REST API. Attachments created alongside the submission over the OpenRosa /submission API (including submissions from Collect) do not generate audit log entries.
submission.delete when a Submission is soft-deleted.
submission.purge when soft-deleted Submissions are purged.
submission.restore when a Submission is restored.
submission.reprocess when an Entity Submission is held in a processing backlog and then removed.
dataset.create when a Dataset is created.
dataset.update when a Dataset is updated.
dataset.update.publish when a Dataset is published.
entity.create when an Entity is created.
entity.error when there is an error processing a Submission to create or update an Entity.
entity.update.version when an Entity is updated.
entity.update.resolve when an Entity conflict is resolved.
entity.delete when an Entity is deleted.
config.set when a system configuration is set.
analytics when a Usage Report is attempted.
blobs.s3.upload when blobs are moved from the database to external storage.
blobs.s3.failed-to-pending when blobs that failed to upload are reset to the pending state to be retried.
Deprecated: backup when a backup operation is attempted for Google Drive backups.

Getting Audit Log Entries¶

GET /v1/audits

This resource allows access to those log entries, with some paging and filtering options. These are provided by querystring parameters: action allows filtering by the action types listed above, start and end allow filtering by log timestamp (see below), and limit and offset control paging. If no paging parameters are given, the server will attempt to return every audit log entry that it has.

The start and end parameters work based on exact timestamps, given in ISO 8601 format. It is possible to provide just a datestring (eg 2000-01-01), in which case midnight will be inferred. But this value alone leaves the timezone unspecified. When no timezone is given, the server's local time will be used: the standard Docker deployment will always set server local time to UTC, but installations may have been customized, and there is no guarantee the UTC default hasn't been overridden.

For this reason, we recommend always setting a timezone when querying based on start and end: either by appending a z to indicate UTC (eg 2000-01-01z) or by explicitly specifying a timezone per ISO 8601 (eg 2000-01-01+08). The same applies for full timestamps (eg 2000-01-01T12:12:12z, 2000-01-01T12:12:12+08).

start may be given without end, and vice versa, in which case the timestamp filter will only be bounded on the specified side. They are both inclusive (>= and <=, respectively).

This endpoint supports retrieving extended metadata; provide a header X-Extended-Metadata: true to additionally expand the actorId into full actor details, and acteeId into full actee details. The actor will always be an Actor, but the actee may be an Actor, a Project, a Form, or some other type of object depending on the type of action.

Direct Backup¶

(introduced: version 1.1)

ODK Central offers an HTTP endpoint that will immediately perform a backup on the system database and send that encrypted backup as the response. To use it, POST with an encryption passphrase.

Note that performing the backup takes a great deal of time, during which the request will be held open. As a result, the endpoint will trickle junk data every five seconds while that processing is occurring to prevent the request from timing out. Depending on how much data you have, it can take many minutes for the data stream to speed up to a full transfer rate.

Using an Encryption Passphrase¶

POST /v1/backup

Use the POST verb to start a direct download ad-hoc backup. You will want to supply a passphrase with your chosen encryption passphrase. It is possible to omit this, in which case the backup will still be encrypted, but it will decrypt given an empty passphrase.

Please see the section notes above about the long-running nature of this endpoint.

Did this page help you?

Selecting an option will open a 1-question survey

👍 Yes 👎 No

System Endpoints¶

Usage Reporting Configuration¶

Getting the current configuration¶

Setting a new configuration¶

Unsetting the current configuration¶