Ramp · Arazzo Workflow

Ramp Audit Event Target Lookup

Version 1.0.0

List audit events and the user directory to resolve the actor behind each event.

1 workflow 1 source API 1 provider
View Spec View on GitHub FinanceSpend ManagementCorporate CardsExpense ManagementAccounts PayableBill PayAccountingReimbursementsArazzoWorkflows

Provider

ramp

Workflows

audit-event-target-lookup
List audit events and users so event actors can be resolved to people.
Lists audit events and then the user directory so each event's actor_user_id can be matched to a named user.
2 steps inputs: accessToken outputs: events, users
1
listAuditEvents
listAuditEvents
List the organization's audit events and capture each event's type, actor, target, and timestamp.
2
listUsers
listUsers
List the organization's users so each audit event's actor_user_id can be resolved to a named user.

Source API Descriptions

openapi
rampApi https://raw.githubusercontent.com/api-evangelist/ramp/refs/heads/main/openapi/ramp-developer-api-openapi.yml

Arazzo Workflow Specification

ramp-audit-event-target-lookup-workflow.yml Raw ↑ 
arazzo: 1.0.1
info:
  title: Ramp Audit Event Target Lookup
  summary: List audit events and the user directory to resolve the actor behind each event.
  description: >-
    Turns raw audit events into something a reviewer can read. The workflow
    lists audit events, then lists users so a caller can resolve each event's
    actor_user_id against the user directory and attribute the action to a
    named person. This is the supported read path for audit attribution, since
    the Ramp Developer API exposes no get-user by id. Every step spells out its
    request inline so the flow can be read and executed without opening the
    underlying OpenAPI description.
  version: 1.0.0
sourceDescriptions:
- name: rampApi
  url: ../openapi/ramp-developer-api-openapi.yml
  type: openapi
workflows:
- workflowId: audit-event-target-lookup
  summary: List audit events and users so event actors can be resolved to people.
  description: >-
    Lists audit events and then the user directory so each event's
    actor_user_id can be matched to a named user.
  inputs:
    type: object
    properties:
      accessToken:
        type: string
        description: OAuth2 client-credentials bearer token with audit:read and users:read scopes.
  steps:
  - stepId: listAuditEvents
    description: >-
      List the organization's audit events and capture each event's type,
      actor, target, and timestamp.
    operationId: listAuditEvents
    parameters:
    - name: Authorization
      in: header
      value: Bearer $inputs.accessToken
    successCriteria:
    - condition: $statusCode == 200
    outputs:
      events: $response.body#/data
  - stepId: listUsers
    description: >-
      List the organization's users so each audit event's actor_user_id can be
      resolved to a named user.
    operationId: listUsers
    parameters:
    - name: Authorization
      in: header
      value: Bearer $inputs.accessToken
    successCriteria:
    - condition: $statusCode == 200
    outputs:
      users: $response.body#/data
  outputs:
    events: $steps.listAuditEvents.outputs.events
    users: $steps.listUsers.outputs.users