- A new or improved feature is ready for public beta testing
- A beta feature moves into production
- A planned feature is added, changed, or removed from the roadmap
Planned features
| Feature area | Plan | Phase/Status | Additional information |
|---|---|---|---|
| Audit events | Create new v3 endpoint for audit events, based on updated audit logging model. | Public beta | Beta endpoint available for testing: GET /api/v3/auditevents. |
| Audit log | Rename Activity Log to Audit Log and update to use new audit logging model. | Public beta | Learn more about the beta audit log. |
| Item usages | Add item usage events to the beta. | Coming soon | |
| Sign-in attempts | Add sign-in attempt events to the beta. | Coming soon |
Beta changelog
This section includes information about additive and breaking changes made to the v3 Events API throughout the beta, starting from the public beta release.2026-06-25
Summary:- The v3 audit events endpoint has been aligned with the API Enhancement Proposal (AEP) design standards. This update includes changes to continuous polling, renames several pagination parameters, flattens the response envelope, replaces the event timestamp with separate creation and ingestion times, and standardizes the error response. You’ll need to update your client to adapt polling behavior and to consume the new field names and response shape.
- Specification file: 1Password Events API beta specification (3.0.0)
-
Pagination:
- Breaking The response no longer includes a
next_page_tokenwhen there are no more results to return. Previously, the API always returned a token, including on the final page of a response and when no events were available. Polling integrations that replayed the most recent token to check for new events must now track theinsert_timeof the last received event and use it as thestart_timeon subsequent requests. Learn more about pagination and continuous polling in the beta API. - Breaking The
start_timequery parameter is now exclusive (previously inclusive). Only events with aninsert_timestrictly greater thanstart_timeare returned. - Breaking Removed the
has_more: falseflag. The end of results is now signaled by the absence ofnext_page_tokenin the response. - Breaking The
start_timeandend_timequery parameters now filter oninsert_time. - Breaking Renamed the
page_sizequery parameter tomax_page_sizein accordance with AEP-158. If the parameter is omitted or set to0, the server default of100will be used. The endpoint accepts any positive value, but returns no more than1000events per page. - Breaking Renamed the
next_page_tokenquery parameter topage_token. The response field is still callednext_page_token.
- Breaking The response no longer includes a
-
Response shapes:
- Breaking Flattened the successful response envelope, and
audit_eventsandnext_page_tokenare now top-level fields. The previousdataandmetawrappers are no longer used. - Breaking Standardized the error response on the AEP-193 error shape:
{ "type": "...", "message": "..." }. Replaces the previous nestedErrorResponse/Error.Messagestructure.
- Breaking Flattened the successful response envelope, and
-
Date and time of events:
- Breaking Removed the
timestampfield on each audit event. Replaced with the newcreate_timeandinsert_timefields. - Breaking New required
create_timefield on each audit event. RFC 3339 timestamp indicating when the event occurred. - Breaking New required
insert_timefield on each audit event. RFC 3339 timestamp indicating when the event was received and stored by 1Password.
- Breaking Removed the
-
Event states:
- Additive New
diffelement on audit events that represent a change. Returns aDiffobject withtype,new_value, andold_valuefields.
- Additive New
-
Other changes:
- Breaking Renamed the
userAgentfield touser_agentin theContextobject in accordance with AEP-140 , which mandates lower_snake_case for JSON field names. - Breaking Renamed the
regionfield toregion_codein accordance with AEP-143. Uses Unicode CLDR region codes , for example:CA,DE, andUS. - Breaking New required
nameproperty on theDeviceobject. - Additive New optional
correlation_idfield on theAuditEventobject for audit events that originated from the same bulk action.
- Breaking Renamed the
2026-01-13
Summary:- Public release of the Events API v3 beta. We’ve launched the v3 beta of the 1Password Events API. The beta introduces a new audit logging model that provides a more comprehensive view of the actions being performed in a 1Password account.
- Specification file: 1Password Events API specification (3.0.0)
- A new v3 audit events beta endpoint:
/api/v3/auditevents. This endpoint can return structured audit event data starting from December 1, 2025. Audit event data includes information about who performed an action, what was affected, and context about where and how the action occurred. - A new
GETHTTP method for audit events. - Cursor-based pagination with query parameters for
page_size,start_time,end_time, andnext_page_token. - A new beta audit log to monitor events that happen on your team from your 1Password.com account.