naftiko: 1.0.0-alpha2 info: label: Workday Security Workday Audit and Compliance API — Audit Logs description: 'Workday Security Workday Audit and Compliance API — Audit Logs. 2 operations. Lead operation: Workday Security List audit log entries. Self-contained Naftiko capability covering one Workday Security business surface.' tags: - Workday Security - Audit Logs created: '2026-05-19' modified: '2026-05-19' binds: - namespace: env keys: WORKDAY_SECURITY_API_KEY: WORKDAY_SECURITY_API_KEY capability: consumes: - type: http namespace: audit-audit-logs baseUri: https://{host}/ccx/api/v1/{tenant} description: Workday Security Workday Audit and Compliance API — Audit Logs business capability. Self-contained, no shared references. resources: - name: auditLogs path: /auditLogs operations: - name: listauditlogs method: GET description: Workday Security List audit log entries outputRawFormat: json outputParameters: - name: result type: object value: $. inputParameters: - name: fromDateTime in: query type: string description: Start of the date range for filtering audit log entries - name: toDateTime in: query type: string description: End of the date range for filtering audit log entries - name: eventType in: query type: string description: Filter by the type of audit event - name: actor in: query type: string description: Filter by the account that performed the audited action - name: target in: query type: string description: Filter by the target resource or object of the audited action - name: auditLogs-auditLogId path: /auditLogs/{auditLogId} operations: - name: getauditlogentry method: GET description: Workday Security Get a specific audit log entry outputRawFormat: json outputParameters: - name: result type: object value: $. inputParameters: - name: auditLogId in: path type: string description: Unique identifier of the audit log entry required: true authentication: type: bearer token: '{{env.WORKDAY_SECURITY_API_KEY}}' exposes: - type: rest namespace: audit-audit-logs-rest port: 8080 description: REST adapter for Workday Security Workday Audit and Compliance API — Audit Logs. One Spectral-compliant resource per consumed operation, prefixed with /v1. resources: - path: /v1/auditlogs name: auditlogs description: REST surface for auditLogs. operations: - method: GET name: listauditlogs description: Workday Security List audit log entries call: audit-audit-logs.listauditlogs with: fromDateTime: rest.fromDateTime toDateTime: rest.toDateTime eventType: rest.eventType actor: rest.actor target: rest.target outputParameters: - type: object mapping: $. - path: /v1/auditlogs/{auditlogid} name: auditlogs-auditlogid description: REST surface for auditLogs-auditLogId. operations: - method: GET name: getauditlogentry description: Workday Security Get a specific audit log entry call: audit-audit-logs.getauditlogentry with: auditLogId: rest.auditLogId outputParameters: - type: object mapping: $. - type: mcp namespace: audit-audit-logs-mcp port: 9090 transport: http description: MCP adapter for Workday Security Workday Audit and Compliance API — Audit Logs. One tool per consumed operation, routed inline through this capability's consumes block. tools: - name: workday-security-list-audit-log description: Workday Security List audit log entries hints: readOnly: true destructive: false idempotent: true call: audit-audit-logs.listauditlogs with: fromDateTime: tools.fromDateTime toDateTime: tools.toDateTime eventType: tools.eventType actor: tools.actor target: tools.target outputParameters: - type: object mapping: $. - name: workday-security-get-specific-audit description: Workday Security Get a specific audit log entry hints: readOnly: true destructive: false idempotent: true call: audit-audit-logs.getauditlogentry with: auditLogId: tools.auditLogId outputParameters: - type: object mapping: $.