> ## Documentation Index > Fetch the complete documentation index at: https://www.c1.ai/docs/llms.txt > Use this file to discover all available pages before exploring further. # Search > Search performs a full-text search across received SSF events with optional filters for stream, event type, outcome, and matched user. ## OpenAPI ````yaml https://spec.speakeasy.com/conductor-one/conductorone/my-source-with-code-samples post /api/v1/search/ssf-receiver-events openapi: 3.1.0 info: description: The C1 API is a HTTP API for managing C1 resources. title: C1 API version: 0.1.0-alpha servers: - description: The C1 API server for the current tenant. url: https://{tenantDomain}.conductor.one variables: tenantDomain: default: example description: The domain of the tenant to use for this request. security: - bearerAuth: [] oauth: [] paths: /api/v1/search/ssf-receiver-events: post: tags: - SSF Receiver summary: Search description: >- Search performs a full-text search across received SSF events with optional filters for stream, event type, outcome, and matched user. operationId: c1.api.ssf_receiver.v1.SSFReceiverEventSearchService.Search requestBody: content: application/json: schema: $ref: >- #/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverEventSearchServiceSearchRequest responses: '200': content: application/json: schema: $ref: >- #/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverEventSearchServiceSearchResponse description: >- SSFReceiverEventSearchServiceSearchResponse contains the matching events and a pagination token. x-codeSamples: - lang: go label: Search source: "package main\n\nimport(\n\t\"context\"\n\t\"github.com/conductorone/conductorone-sdk-go/pkg/models/shared\"\n\tconductoronesdkgo \"github.com/conductorone/conductorone-sdk-go\"\n\t\"log\"\n)\n\nfunc main() {\n ctx := context.Background()\n\n s := conductoronesdkgo.New(\n conductoronesdkgo.WithSecurity(shared.Security{\n BearerAuth: \"\",\n Oauth: \"\",\n }),\n )\n\n res, err := s.SSFReceiverEventSearch.Search(ctx, nil)\n if err != nil {\n log.Fatal(err)\n }\n if res.SSFReceiverEventSearchServiceSearchResponse != nil {\n // handle response\n }\n}" - lang: typescript label: Typescript (SDK) source: >- import { ConductoroneSDKTypescript } from "conductorone-sdk-typescript"; const conductoroneSDKTypescript = new ConductoroneSDKTypescript({ security: { bearerAuth: "", oauth: "", }, }); async function run() { const result = await conductoroneSDKTypescript.ssfReceiverEventSearch.search(); console.log(result); } run(); components: schemas: c1.api.ssf_receiver.v1.SSFReceiverEventSearchServiceSearchRequest: description: >- SSFReceiverEventSearchServiceSearchRequest carries the search query and optional filters for narrowing results. properties: eventType: description: >- Restricts results to events matching this wire event type URI. Optional. readOnly: false type: string matchedUserId: description: >- Restricts results to events matched to this ConductorOne user ID. Optional. readOnly: false type: string outcome: description: Restricts results to events with this processing outcome. Optional. enum: - SSF_EVENT_OUTCOME_UNSPECIFIED - SSF_EVENT_OUTCOME_SESSIONS_REVOKED - SSF_EVENT_OUTCOME_LOGGED - SSF_EVENT_OUTCOME_PRINCIPAL_NOT_FOUND - SSF_EVENT_OUTCOME_VERIFIED - SSF_EVENT_OUTCOME_STREAM_STATUS_UPDATED - SSF_EVENT_OUTCOME_UNRECOGNIZED - SSF_EVENT_OUTCOME_ERROR readOnly: false type: string x-speakeasy-unknown-values: allow pageSize: description: Maximum number of events to return per page. format: int32 readOnly: false type: integer pageToken: description: >- Token from a previous SearchResponse to fetch the next page of results. readOnly: false type: string query: description: Full-text search query matched against event fields. readOnly: false type: string streamId: description: Restricts results to events from this SSF receiver stream. Optional. readOnly: false type: string title: Ssf Receiver Event Search Service Search Request type: object x-speakeasy-name-override: SSFReceiverEventSearchServiceSearchRequest c1.api.ssf_receiver.v1.SSFReceiverEventSearchServiceSearchResponse: description: >- SSFReceiverEventSearchServiceSearchResponse contains the matching events and a pagination token. properties: list: description: The SSF events matching the search criteria. items: $ref: '#/components/schemas/c1.api.ssf_receiver.v1.SSFReceiverEvent' nullable: true readOnly: false type: array nextPageToken: description: >- Token to retrieve the next page. Empty when there are no more results. readOnly: false type: string title: Ssf Receiver Event Search Service Search Response type: object x-speakeasy-name-override: SSFReceiverEventSearchServiceSearchResponse c1.api.ssf_receiver.v1.SSFReceiverEvent: description: SSFReceiverEvent shows both wire-level data and C1 canonical outcome. properties: canonicalType: description: |- C1 canonical outcome (what C1 understood and did). The normalized event type after mapping from the wire event type. enum: - SSF_CANONICAL_EVENT_TYPE_UNSPECIFIED - SSF_CANONICAL_EVENT_TYPE_UNRECOGNIZED - SSF_CANONICAL_EVENT_TYPE_SESSION_REVOKED - SSF_CANONICAL_EVENT_TYPE_CREDENTIAL_CHANGED - SSF_CANONICAL_EVENT_TYPE_TOKEN_CLAIMS_CHANGED - SSF_CANONICAL_EVENT_TYPE_ASSURANCE_LEVEL_CHANGED - SSF_CANONICAL_EVENT_TYPE_DEVICE_COMPLIANCE_CHANGED - SSF_CANONICAL_EVENT_TYPE_RISK_LEVEL_CHANGED - SSF_CANONICAL_EVENT_TYPE_SESSION_ESTABLISHED - SSF_CANONICAL_EVENT_TYPE_SESSION_PRESENTED - SSF_CANONICAL_EVENT_TYPE_ACCOUNT_DISABLED - SSF_CANONICAL_EVENT_TYPE_ACCOUNT_ENABLED - SSF_CANONICAL_EVENT_TYPE_ACCOUNT_PURGED - SSF_CANONICAL_EVENT_TYPE_CREDENTIAL_COMPROMISE - SSF_CANONICAL_EVENT_TYPE_RECOVERY_ACTIVATED - SSF_CANONICAL_EVENT_TYPE_IDENTIFIER_CHANGED - SSF_CANONICAL_EVENT_TYPE_VERIFICATION - SSF_CANONICAL_EVENT_TYPE_STREAM_UPDATED readOnly: false type: string x-speakeasy-unknown-values: allow id: description: The unique identifier of this event. readOnly: false type: string matchMethod: description: How the upstream subject was resolved to a ConductorOne user. enum: - SSF_SUBJECT_MATCH_METHOD_UNSPECIFIED - SSF_SUBJECT_MATCH_METHOD_IDP_USER - SSF_SUBJECT_MATCH_METHOD_EMAIL - SSF_SUBJECT_MATCH_METHOD_NOT_FOUND - SSF_SUBJECT_MATCH_METHOD_NOT_APPLICABLE readOnly: false type: string x-speakeasy-unknown-values: allow matchedUserId: description: >- The ConductorOne user ID that the event subject was resolved to, if any. readOnly: false type: string outcome: description: The action ConductorOne took in response to this event. enum: - SSF_EVENT_OUTCOME_UNSPECIFIED - SSF_EVENT_OUTCOME_SESSIONS_REVOKED - SSF_EVENT_OUTCOME_LOGGED - SSF_EVENT_OUTCOME_PRINCIPAL_NOT_FOUND - SSF_EVENT_OUTCOME_VERIFIED - SSF_EVENT_OUTCOME_STREAM_STATUS_UPDATED - SSF_EVENT_OUTCOME_UNRECOGNIZED - SSF_EVENT_OUTCOME_ERROR readOnly: false type: string x-speakeasy-unknown-values: allow outcomeDetail: description: >- Human-readable details about the outcome (e.g., error message or revocation summary). readOnly: false type: string receivedAt: format: date-time readOnly: false type: string sessionsRevoked: description: Number of sessions that were revoked as a result of this event. format: int32 readOnly: false type: integer setJti: description: |- Wire-level data (what the transmitter sent). The SET (Security Event Token) JWT ID claim, uniquely identifying the token. readOnly: false type: string streamId: description: The SSF receiver stream that received this event. readOnly: false type: string wireEventProfile: description: The event profile URI from the SET, if present. readOnly: false type: string wireEventType: description: >- The raw event type URI from the SET (e.g., "https://schemas.openid.net/secevent/caep/event-type/session-revoked"). readOnly: false type: string wireInitiatingEntity: description: The entity that initiated the event, as reported by the transmitter. readOnly: false type: string wireReasonAdmin: description: >- The admin-facing reason string from the SET, if provided by the transmitter. readOnly: false type: string wireSubjectFormat: description: >- The subject identifier format from the SET (e.g., "email", "iss_sub"). readOnly: false type: string wireSubjectIdentifier: description: The raw subject identifier value from the SET. readOnly: false type: string title: Ssf Receiver Event type: object x-speakeasy-name-override: SSFReceiverEvent securitySchemes: bearerAuth: scheme: bearer type: http oauth: description: >- This API uses OAuth2 with the Client Credential flow. Client Credentials must be sent in the BODY, not the headers. For an example of how to implement this, refer to the [c1TokenSource.Token()](https://github.com/ConductorOne/conductorone-sdk-go/blob/3375fe7c0126d17e7ec4e711693dee7b791023aa/token_source.go#L101-L187) function. flows: clientCredentials: scopes: {} tokenUrl: /auth/v1/token type: oauth2 ````