AI
AI Studio
App item associations
Archives
Authorization
Box Doc Gen
Box Doc Gen templates
Box Hub Collaborations
Box Hub Items
Box Hubs
Box Sign requests
Box Sign templates
Classifications
Classifications on files
Classifications on folders
Collaborations
Collaborations (List)
Collections
Comments
Device pinners
Domain restrictions (User exemptions)
Domain restrictions for collaborations
Downloads
Email aliases
Enterprise Configurations
Events
- Resources
- Endpoints
  - GET
    List user and enterprise events
  - OPTS
    Get events long poll endpoint
External Users
File requests
File version legal holds
File version retentions
File versions
Files
Folder Locks
Folders
Group memberships
Groups
Integration mappings
Invites
Legal hold policies
Legal hold policy assignments
Metadata cascade policies
Metadata instances (Files)
Metadata instances (Folders)
Metadata templates
Recent items
Retention policies
Retention policy assignments
Search
Session termination
Shared links (App Items)
Shared links (Files)
Shared links (Folders)
Shared links (Web Links)
Shield information barrier reports
Shield information barrier segment members
Shield information barrier segment restrictions
Shield information barrier segments
Shield information barriers
Shield lists
Skills
Standard and Zones Storage Policies
Standard and Zones Storage Policy Assignments
Task assignments
Tasks
Terms of service
Terms of service user statuses
Transfer folders
Trashed files
Trashed folders
Trashed items
Trashed web links
Uploads
Uploads (Chunked)
User avatars
Users
Watermarks (Files)
Watermarks (Folders)
Web links
Webhooks
Workflows
Zip Downloads
Resources

Latest version

List user and enterprise events

get

https://api.box.com/2.0

/events

This endpoint is in the version 2024.0. No changes are required to continue using it. For more details, see Box API versioning.

Returns up to a year of past events for a given user or for the entire enterprise.

By default this returns events for the authenticated user. To retrieve events for the entire enterprise, set the stream_type to admin_logs_streaming for live monitoring of new events, or admin_logs for querying across historical events. The user making the API call will need to have admin privileges, and the application will need to have the scope manage enterprise properties checked.

Related Guides

Request

authorizationbearer [ACCESS_TOKEN]

content-typeapplication/json

Query Parameters

created_after string (date-time)in queryoptional

example2012-12-12T10:53:43-08:00

The lower bound date and time to return events for. This can only be used when requesting the events with a stream_type of admin_logs. For any other stream_type this value will be ignored.

created_before string (date-time)in queryoptional

example2013-12-12T10:53:43-08:00

The upper bound date and time to return events for. This can only be used when requesting the events with a stream_type of admin_logs. For any other stream_type this value will be ignored.

event_type string arrayin queryoptional

exampleACCESS_GRANTED

A comma-separated list of events to filter by. This can only be used when requesting the events with a stream_type of admin_logs or adming_logs_streaming. For any other stream_type this value will be ignored.

limit integer (int64)in queryoptional

example50

default100

max500

Limits the number of events returned.

Note: Sometimes, the events less than the limit requested can be returned even when there may be more events remaining. This is primarily done in the case where a number of events have already been retrieved and these retrieved events are returned rather than delaying for an unknown amount of time to see if there are any more results.

stream_position stringin queryoptional

example1348790499819

The location in the event stream to start receiving events from.

now will return an empty list events and the latest stream position for initialization.
0 or null will return all events.

stream_type stringin queryoptional

exampleall

default"all"

Defines the type of events that are returned

all returns everything for a user and is the default
changes returns events that may cause file tree changes such as file updates or collaborations.
sync is similar to changes but only applies to synced folders
admin_logs returns all events for an entire enterprise and requires the user making the API call to have admin permissions. This stream type is for programmatically pulling from a 1 year history of events across all users within the enterprise and within a created_after and created_before time frame. The complete history of events will be returned in chronological order based on the event time, but latency will be much higher than admin_logs_streaming.
admin_logs_streaming returns all events for an entire enterprise and requires the user making the API call to have admin permissions. This stream type is for polling for recent events across all users within the enterprise. Latency will be much lower than admin_logs, but events will not be returned in chronological order and may contain duplicates.

Value is one of all,changes,sync,admin_logs,admin_logs_streaming

Response

200application/jsonEvents

Returns a list of event objects.

Events objects are returned in pages, with each page (chunk) including a list of event objects. The response includes a chunk_size parameter indicating how many events were returned in this chunk, as well as the next stream_position that can be queried.

defaultapplication/jsonClient error

An unexpected client error.

get

List user and enterprise events

You can now try out some of our APIs live, right here in the documentation.

Request Example

Learn more about Box SDK versioning strategy.

cURL

curl -i -X GET "https://api.box.com/2.0/events" \
     -H "authorization: Bearer <ACCESS_TOKEN>"

Node/TypeScript v10

await client.events.getEvents();

Python v10

client.events.get_events()

.NET v10

await client.Events.GetEventsAsync();

Swift v10

try await client.events.getEvents()

Java v10

client.getEvents().getEvents()

Java v5

EventStream stream = new EventStream(api);
stream.addListener(new EventListener() {
  public void onEvent(BoxEvent event) {
      // Handle the event.
    }
});
stream.start();

Python v4

stream_position = 0
events = client.events().get_events(stream_position=stream_position)
stream_position = events['next_stream_position']
for event in events['entries']:
    print(f'Got {event.event_type} event that occurred at {event.created_at}')

.NET v6

BoxEventCollection<BoxEnterpriseEvent> events = await client.EventsManager.UserEventsAsync();

Node v4

client.events.get({stream_position: '1408838928446360'}, callback);

Response Example

{
  "chunk_size": 2,
  "entries": [
    {
      "additional_details": {
        "key": "value"
      },
      "created_at": "2022-12-12T10:53:43-08:00",
      "created_by": {
        "id": "11446498",
        "type": "user",
        "login": "ceo@example.com",
        "name": "Aaron Levie"
      },
      "event_id": "f82c3ba03e41f7e8a7608363cc6c0390183c3f83",
      "event_type": "FILE_MARKED_MALICIOUS",
      "recorded_at": "2022-12-12T10:54:43-08:00",
      "session_id": "70090280850c8d2a1933c1",
      "source": {
        "id": "11446498",
        "type": "user",
        "login": "ceo@example.com",
        "name": "Aaron Levie",
        "address": "900 Jefferson Ave, Redwood City, CA 94063",
        "avatar_url": "https://www.box.com/api/avatar/large/181216415",
        "created_at": "2012-12-12T10:53:43-08:00",
        "job_title": "CEO",
        "language": "en",
        "max_upload_size": 2147483648,
        "modified_at": "2012-12-12T10:53:43-08:00",
        "notification_email": {
          "email": "notifications@example.com",
          "is_confirmed": true
        },
        "phone": "6509241374",
        "space_amount": 11345156112,
        "space_used": 1237009912,
        "status": "active",
        "timezone": "Africa/Bujumbura"
      },
      "type": "event"
    }
  ],
  "next_stream_position": 1152922976252290800
}

Resources

Endpoints

List user and enterprise events

Related Guides

Query Parameters