Fields that can be used for filtering:
action
authentication.static_key_credential.id
authentication.subject.service_account_id
authentication.subject.tenant_user_id
authentication.token_credential.masked_token
project_region.name
resource.hierarchy.id
resource.hierarchy.name
resource.metadata.id
resource.metadata.name
resource.metadata.type
service.name
type
status.
Returns results with a timestamp lower than this value.
--parent-id (string) [required]
Identifier of the parent resource to which the resource belongs.
--resource-version (int64)
Version of the resource for safe concurrent modifications and consistent reads.
Positive and monotonically increases on each resource spec change (but not on each change of the
resource’s container(s) or status).
Service allows zero value or current.
--async (bool)
If set, returns operation id. Otherwise, waits for the operation to complete and returns its resource.
Input file. For ‘update’ commands automatically set —full=true.
-c, --config (string)
Provide path to config file.
--debug (bool)
Enable debug logs.
--color (bool)
Enable colored output.
--no-browser (bool)
Do not open browser automatically on auth.
--insecure (bool)
Disable transport security.
--auth-timeout (duration: 2h30m10s)
Set the timeout for the request including authentication process, default is 15m0s.
--per-retry-timeout (duration: 2h30m10s)
Set the timeout for each retry attempt, default is 20s.
--retries (uint)
Set the number of retry attempts, 1 is disable retries, default is 3.
--timeout (duration: 2h30m10s)
Set the timeout for the main request, default is 1m0s.
--no-check-update (bool)
Suppress check for updates.
Show Input argument JSON Schema
Full
CopyPaste Friendly
{ "metadata": { // Metadata associated with the new export. "id": string, // [identifier] // Identifier for the resource, unique for its resource type. "labels": { // [map] // Labels associated with the resource. string: string }, "name": string, // Human readable name for the resource. "parent_id": string, // [required] // Identifier of the parent resource to which the resource belongs. "resource_version": int64 // Version of the resource for safe concurrent modifications and consistent reads. // Positive and monotonically increases on each resource spec change (but *not* on each change of the // resource's container(s) or status). // Service allows zero value or current. }, "spec": { // Specification for the new export. "nebius_object_storage": { // An object storage bucket that will be used as the destination for audit logs. // You must have `storage.upload` permission for successful execution. "bucket_by_id": { "id": string // [required] // The id of the bucket in the tenant where the logs will be exported. }, "object_prefix": string // Prefix for export objects. // Default value is `auditlogs`. }, "params": { // [required] // Filter based on which audit logs must be exported. "event_type": enum( // [required] // Type of audit event to filter by. "EVENT_TYPE_UNSPECIFIED", // Unspecified event type. "CONTROL_PLANE", // Control plane events. "DATA_PLANE" // Data plane events (S3). ), "filter": string, // [sensitive] // Example: // service.name = 'iam' AND resource.hierarchy.id:'container-e0t' AND regex(resource.metadata.name, '^.*test.*$') // // Supported filters: // "=" - equals // "!=" - not equals // ":" - contains // regex - regular expression // // Fields that can be used for filtering: // action // authentication.static_key_credential.id // authentication.subject.service_account_id // authentication.subject.tenant_user_id // authentication.token_credential.masked_token // project_region.name // resource.hierarchy.id // resource.hierarchy.name // resource.metadata.id // resource.metadata.name // resource.metadata.type // service.name // type // status. "from": "1970-01-31T02:30:59Z", // [required] [google.protobuf.Timestamp] // Returns results with a timestamp greater than or equal to this value. "to": "1970-01-31T02:30:59Z" // [required] [google.protobuf.Timestamp] // Returns results with a timestamp lower than this value. } }}
