Events

All the events displayed in this document work in a similar manner. In case of a failure, the event will display the reason of said failure. This behavior is also valid for warning-status events.

BOOTSTRAP

Bootstrap events relate to the initial setup of the Stream platform.

  • BOOTSTRAP-ADMINISTRATOR-ACCOUNT
    This event is triggered when installing Stream, it corresponds to the creation of the administrator local identity on Stream.

  • BOOTSTRAP-ADMINISTRATOR-PRINCIPAL
    This event is triggered when installing Stream, it corresponds to the creation of a link between the administrator account and its rights.

  • BOOTSTRAP-LOCAL-IDENTITY-PROVIDER
    This event is triggered when installing Stream, it corresponds to the creation of a provider of type Local so that the administrator can connect after startup.

  • BOOTSTRAP-SYSTEM-CONFIGURATION
    This event is triggered when installing Stream, it corresponds to the creation of internal configuration elements such as the CRON internal monitor.

CA

  • CA-CRL-GEN
    This event occurs on a CRL Generation request on a CA.

  • CA-CRL-UPLOAD
    This event occurs when a CRL is being uploaded on a CA.

  • CA-CSR
    This event occurs when a CSR generation is requested on a CA. This is commonly part of the CA issuing process.

  • CA-ENHANCE
    This event occurs when a legacy CA is being enhanced to a PQC-ready CA.

  • CA-ISSUE
    This event occurs when a CA is being issued.

  • CA-KRL-GEN
    This event occurs on a KRL Generation request on a CA.

  • CA-MIGRATE
    This event occurs when an external CA is being migrated to a managed CA.

  • CA-REVOKE
    This event occurs on a CA revocation attempt.

CONF

CONF events are triggered when users interact with configuration elements. This includes certificate templates, notification triggers, Certification Authorities…​

  • CONF-ADD
    This event is triggered when a user tries to add a configuration element.

  • CONF-DELETE
    This event is triggered when a user tries to delete a configuration element.

  • CONF-UPDATE
    This event occurs when a user tries to modify a configuration element.

CRL

  • CRL-GEN
    This event occurs on a CRL generation attempt, either requested by application processes or the user.

  • CRL-GET
    This event occurs on a CRL retrieval attempt from a CRLDP. These are attempted by the application.

  • CRL-SYNC
    This event is triggered when a failure occurs on a CRL Synchronization.

  • CRL-UPLOAD
    This event occurs when a user tries to upload a new CRL on a CA.

EVENT COMPLIANCE

  • INVALID-SEAL-PENDING-EVENT
    This event occurs when a pending event has an invalid seal (indicating data corruption in the pending events collection).

  • UNSEALED-PENDING-EVENT
    This event occurs when a pending event has no seal (indicating data corruption in the pending events collection).

INTERNAL MONITOR

  • INTERNAL-MONITOR-INIT
    This event occurs when a bad initialization of the internal monitor happens. It is a failure case, happening for instance when it is not configured

  • INTERNAL-MONITOR-RUN
    This event occurs when the internal monitor completes successfully.

KRL

  • KRL-GEN
    This event occurs on a KRL generation attempt, either requested by application processes or the user.

  • KRL-SYNC
    This event is triggered when a failure occurs on a KRL Synchronization.

LICENSE

  • LICENSE-EXPIRED
    This event occurs when the license has expired.

  • LICENSE-INVALID
    This event occurs when the license contains no entitled modules.

  • LICENSE-MODULE-NOT-ENTITLED
    This event occurs when the requested module is not entitled on the license.

LIFECYCLE

  • LIFECYCLE-ENROLL
    This event is triggered when an enrollment request for an end-entity certificate is received. The event specifies all the requested certificate fields, as well as CA, keystore and template information. In case of success, the issued certificate PEM is specified. In case of failure, the reason of the failure is specified (e.g.: "Unauthorized DN element").

  • LIFECYCLE-REVOKE
    This event occurs when a user tries to revoke a certificate. Note that no event is triggered when a certificate expires.

OCSP

  • OCSP-CSR
    This event is triggered when issuing a CSR for an OCSP Signer.

SECURITY

  • BOOTSTRAP-ADMINISTRATOR
    This event is triggered when installing Stream, it corresponds to the creation of the initial administrator account (replaced by BOOTSTRAP-ADMINISTRATOR-PRINCIPAL & BOOTSTRAP-ADMINISTRATOR-ACCOUNT).

Deprecated since version 2.0.0

  • SEC-AUTHENTICATION
    This event is triggered when a user tries to connect. The identifier (local, OpenID, X509 DN, …​) is specified whether it is a failure or a success.

ACCOUNT

  • SEC-ACCOUNT-ADD
    This event occurs when an account is created (replaced by authorizations & local accounts).

Deprecated since version 2.0.0

  • SEC-ACCOUNT-DELETE
    This event occurs when an account is deleted (replaced by authorizations & local accounts).

Deprecated since version 2.0.0

  • SEC-ACCOUNT-UPDATE
    This event occurs when an account is updated (replaced by authorizations & local accounts).

Deprecated since version 2.0.0

AUTHORIZATION

These events relate to the Security>Access Management>Authorizations tab under configuration.

  • SEC-AUTHORIZATION-ADD
    This event is triggered when a user tries to create a an authorization object.

  • SEC-AUTHORIZATION-DELETE
    This event is triggered when a user tries to delete an authorization object.

  • SEC-AUTHORIZATION-UPDATE
    This event is triggered when a user tries to modify elements inside an authorization object. The event specifies the modified fields.

CREDENTIALS

These events relate to the Security>Credentials tab under configuration.

  • SEC-CREDENTIAL-ADD
    This event occurs when a user tries creating new credentials.

  • SEC-CREDENTIAL-DELETE
    This event occurs when a user tries deleting credentials.

  • SEC-CREDENTIAL-UPDATE
    This event occurs when a user tries updating credentials.

IDENTITY

These events relate to the Security>Access Management>Identity tab under configuration.

  • SEC-IDENTITY-PROVIDER-ADD
    This event occurs when a user tries creating an identity provider profile.

  • SEC-IDENTITY-PROVIDER-DELETE
    This event occurs when a user tries deleting an identity provider profile.

  • SEC-IDENTITY-PROVIDER-UPDATE
    This event occurs when a user tries modifying an identity provider profile. The modified fields are specified in the event.

LOCAL IDENTITY

These events relate to the Security>Access Management>Local accounts tab under configuration.

  • SEC-LOCAL-IDENTITY-ADD
    This event is triggered when a user tries creating a local account.

  • SEC-LOCAL-IDENTITY-DELETE
    This event is triggered when a user tries to delete a local account.

  • SEC-LOCAL-IDENTITY-RESET
    This event is triggered when executing the reset password workflow.

  • SEC-LOCAL-IDENTITY-UPDATE
    This event is triggered when a user tries modifying a local account. The modified fields are specified. Updating the password falls in this event.

ROLE

These events relate to the Security>Access Management>Roles tab under configuration.

  • SEC-ROLE-ADD
    This event is triggered when a user tries to create a new role.

  • SEC-ROLE-DELETE
    This event is triggered when a user tries to delete a role.

  • SEC-ROLE-UPDATE
    This event is triggered when a user tries to modify a role. The modified fields are specified in the event.

SERVICE

  • SERVICE-START
    This event is triggered when the Stream service is started.

  • SERVICE-STOP
    This event is triggered when the Stream service is manually stopped.

TIMESTAMPING

  • TSA-CSR
    This event is triggered when issuing a CSR for a Timestamping Signer.

TRIGGER

  • CRL-EXTERNAL-STORAGE
    This event is triggered when a CRL External Storage runs (replaced by TRIGGER-RUN).

Deprecated since version 2.0.0

  • TRIGGER-RUN
    This event occurs when a trigger (External CRL/KRL Storage, Notification) runs.