ArangoDB v3.13 is under development and not released yet. This documentation is not final and potentially incomplete.

HTTP interface for server logs

Server events and errors are logged depending on the defined log levels for the available log topics

Whether events are logged to a file, syslog, or only an attached terminal depends on the log startup options.

See Log levels for a detailed description of the FATAL, ERROR, and other levels of log messages.

The permissions required to use the /_admin/log* endpoints depends on the setting of the --log.api-enabled startup option.

Get the global server logs

GET /_admin/log/entries

Returns fatal, error, warning or info log messages from the server’s global log. The result is a JSON object with the following properties:

total: the total amount of log entries before pagination
messages: an array with log messages that matched the criteria

This API can be turned off via the startup option --log.api-enabled. In case the API is disabled, all requests will be responded to with HTTP 403. If the API is enabled, accessing it requires admin privileges, or even superuser privileges, depending on the value of the --log.api-enabled startup option.

Path Parameters

Query Parameters

upto (default: "info")
Returns all log entries up to log level upto. Note that upto must be:
- fatal or 0
- error or 1
- warning or 2
- info or 3
- debug or 4
- trace or 5
level string
Returns all log entries of log level level. Note that the query parameters upto and level are mutually exclusive.
start number (default: 0)
Returns all log entries such that their log entry identifier (id value) is greater or equal to start.
size number
Restricts the result to at most size log entries.
offset number (default: 0)
Starts to return log entries skipping the first offset log entries. offset and size can be used for pagination.
search string
Only return the log entries containing the text specified in search.
sort string (default: "asc")
Sort the log entries either ascending (if sort is asc) or descending (if sort is desc) according to their id values. Note that the id imposes a chronological order.
serverId string
Returns all log entries of the specified server. All other query parameters remain valid. If no serverId is given, the asked server will reply. This parameter is only meaningful on Coordinators.

HTTP Headers

Responses

200 OK
is returned if the request is valid.
400 Bad Request
is returned if invalid values are specified for upto or level.
403 Forbidden
is returned if there are insufficient privileges to access the logs.

Get the global server logs (deprecated)

GET /_admin/log

This endpoint should no longer be used. It is deprecated from version 3.8.0 on. Use /_admin/log/entries instead, which provides the same data in a more intuitive and easier to process format.

Returns fatal, error, warning or info log messages from the server’s global log. The result is a JSON object with the attributes described below.

Path Parameters

Query Parameters

upto (default: "info")
Returns all log entries up to log level upto. Note that upto must be:
- fatal or 0
- error or 1
- warning or 2
- info or 3
- debug or 4
- trace or 5
level string
Returns all log entries of log level level. Note that the query parameters upto and level are mutually exclusive.
start number (default: 0)
Returns all log entries such that their log entry identifier (lid value) is greater or equal to start.
size number
Restricts the result to at most size log entries.
offset number (default: 0)
Starts to return log entries skipping the first offset log entries. offset and size can be used for pagination.
search string
Only return the log entries containing the text specified in search.
sort string (default: "asc")
Sort the log entries either ascending (if sort is asc) or descending (if sort is desc) according to their lid values. Note that the lid imposes a chronological order.
serverId string
Returns all log entries of the specified server. All other query parameters remain valid. If no serverId is given, the asked server will reply. This parameter is only meaningful on Coordinators.

HTTP Headers

Responses

200 OK
- level* string
  A list of the log levels for all log entries.
- lid* array of strings
  a list of log entry identifiers. Each log message is uniquely identified by its @LIT{lid} and the identifiers are in ascending order.
- text* string
  a list of the texts of all log entries
- timestamp* array of strings
  a list of the timestamps as seconds since 1970-01-01 for all log entries.
- topic* string
  a list of the topics of all log entries
- totalAmount* integer
  the total amount of log entries before pagination.
400 Bad Request
is returned if invalid values are specified for upto or level.
403 Forbidden
is returned if there are insufficient privileges to access the logs.

Get the server log levels

GET /_admin/log/level

Returns the server’s current log level settings. The result is a JSON object with the log topics being the object keys, and the log levels being the object values.

Path Parameters

Query Parameters

serverId string
Forwards the request to the specified server.

withAppenders boolean (default: false)

Set this option to true to return the individual log level settings of all log outputs (appenders) as well as the global settings.

The response structure is as follows:

{
  "global": {
    "agency": "INFO",
    "agencycomm": "INFO",
    "agencystore": "WARNING",
    ...
  },
  "appenders": {
    "-": {
      "agency": "INFO",
      "agencycomm": "INFO",
      "agencystore": "WARNING",
      ...
    },
    "file:///path/to/file": {
      "agency": "INFO",
      "agencycomm": "INFO",
      "agencystore": "WARNING",
      ...
    },
    ...
  }
}

HTTP Headers

Responses

200 OK
is returned if the request is valid
403 Forbidden
is returned if there are insufficient privileges to read log levels.

Set the server log levels

PUT /_admin/log/level

Modifies and returns the server’s current log level settings. The request body must be a JSON string with a log level or a JSON object with the log topics being the object keys and the log levels being the object values.

If only a JSON string is specified as input, the log level is adjusted for the “general” log topic only. If a JSON object is specified as input, the log levels will be set only for the log topic mentioned in the input object, but preserved for every other log topic. To set the log level for all log levels to a specific value, it is possible to hand in the special pseudo log topic “all”.

The result is a JSON object with all available log topics being the object keys, and the adjusted log levels being the object values.

Possible log levels are:

FATAL - Only critical errors are logged after which the arangod process terminates.
ERROR - Only errors are logged. You should investigate and fix errors as they may harm your production.
WARNING - Errors and warnings are logged. Warnings may be serious application-wise and can indicate issues that might lead to errors later on.
INFO - Errors, warnings, and general information is logged.
DEBUG - Outputs debug messages used in the development of ArangoDB in addition to the above.
TRACE - Logs detailed tracing of operations in addition to the above. This can flood the log. Don’t use this log level in production.

Path Parameters

Query Parameters

serverId string
Forwards the request to the specified server.

withAppenders boolean (default: false)

Set this option to true to set individual log level settings for log outputs (appenders). The request and response structure is as follows:

{
  "global": {
    "agency": "INFO",
    "agencycomm": "INFO",
    "agencystore": "WARNING",
    ...
  },
  "appenders": {
    "-": {
      "agency": "INFO",
      "agencycomm": "INFO",
      "agencystore": "WARNING",
      ...
    },
    "file:///path/to/file": {
      "agency": "INFO",
      "agencycomm": "INFO",
      "agencystore": "WARNING",
      ...
    },
    ...
  }
}

Changing the global settings affects all outputs and is the same as setting a log level with this option turned off.

HTTP Headers

Request Body application/json object

agency string
Agents use this log topic to inform about any activity including the RAFT consensus gossip.
agencycomm string
DB-Servers and Coordinators log the requests they send to the Agency.
agencystore string
Optional verbose logging of Agency write operations.
all string
Pseudo-topic to address all log topics.
aql string
Logs information about the AQL query optimization and execution. DB-Servers and Coordinators log the cluster-internal communication around AQL queries. It also reports the AQL memory limit on startup.
arangosearch string
Logs information related to ArangoSearch including Analyzers, the column cache, and the commit and consolidation threads.
audit-authentication string
Controls whether events such as successful logins and missing or wrong credentials are written to the audit log.
audit-authorization string
Controls whether events such as users trying to access databases without the necessary permissions are written to the audit log.
audit-collection string
Controls whether events about collections creation, truncation, and deletion are written to the audit log.
audit-database string
Controls whether events about database creation and deletion are written to the audit log.
audit-document string
Controls whether document read and write events are written to the audit log.
audit-hotbackup string
Controls whether the Hot Backup creation, restore, and delete events are written to the audit log.
audit-service string
Controls whether the start and stop events of the audit service are written to the audit log.
audit-view string
Controls whether events about View creation and deletion are written to the audit log.
authentication string
Logs events related to authentication, for example, when a JWT secret is generated or a token is validated against a secret.
authorization string
Logs when a user has insufficient permissions for a request.
backup string
Logs events related to Hot Backup.
bench string
Logs events related to benchmarking with arangobench.
cache string
Logs events related to caching documents and index entries as well as the cache configuration on startup.
cluster string
Logs information related to the cluster-internal communication as well as cluster operations. This includes changes to the state and readiness of DB-Servers and connectivity checks on Coordinators.
communication string
Logs lower-level network connection and communication events.
config string
Logs information related to the startup options and server configuration.
crash string
Logs information about a fatal error including a backtrace before the process terminates.
deprecation string
Warns about deprecated features and the usage of options that will not be allowed or have no effect in a future version.
development string
This log topic is reserved for the development of ArangoDB.
dump string
Logs events related to dumping data with arangodump.
engines string
Logs various information related to ArangoDB’s use of the RocksDB storage engine, like the initialization and file operations.
RocksDB’s internal log messages are passed through using the rocksdb log topic.
flush string
Logs events related to flushing data from memory to disk.
general string
Logs all messages of general interest and that don’t fit under any of the other log topics. For example, it reports the ArangoDB version and the detected operating system and memory on startup.
graphs string
Logs information related to graph operations including graph traversal and path search tracing.
heartbeat string
Logs everything related to the cluster heartbeat for monitoring the intra-connectivity.
httpclient string
Logs the activity of the HTTP request subsystem that is used in replication, client tools, and V8.
libiresearch string
Logs the internal log messages of IResearch, the underlying library of ArangoSearch.
license string
Logs events related to the license management like the expiration of a license.
maintenance string
Logs the operations of the cluster maintenance including shard locking and collection creation.
memory string
Logs the memory configuration on startup and reports problems with memory alignment and operating system settings.
queries string
Logs slow queries as well as internal details about the execution of AQL queries at low log levels.
replication string
Logs information related to the data replication within a cluster.
requests string
Logs the handling of internal and external requests and can include IP addresses, endpoints, and HTTP headers and bodies when using low log levels.
It overlaps with the network communication log topic.
restore string
This log topic is only used by arangorestore.
rocksdb string
Logs RocksDB’s internal log messages as well RocksDB background errors.
Information related to ArangoDB’s use of the RocksDB storage engine uses the engines log topic.
security string
Logs the security configuration for V8.
ssl string
Logs information related to the in-transit encryption of network communication using SSL/TLS.
startup string
Logs information related to the startup and shutdown of a server process as well as anything related to upgrading the database directory.
statistics string
Logs events related to processing server statistics. This is independent of server metrics.
supervision string
Logs information related to the Agency’s cluster supervision.
syscall string
Logs events related to calling operating system functions. It reports problems related to file descriptors and the server process monitoring.
threads string
Logs information related to the use of operating system threads and the threading configuration of ArangoDB.
trx string
Logs information about transaction management.
ttl string
Logs the activity of the background thread for time-to-live (TTL) indexes.
v8 string
Logs various information related to ArangoDB’s use of the V8 JavaScript engine, like the initialization as well as entering and exiting contexts.
validation string
Logs when the schema validation fails for a document.
views string
Logs certain events related to ArangoSearch Views.

Responses

200 OK
is returned if the request is valid
400 Bad Request
is returned when the request body contains invalid JSON.
403 Forbidden
is returned if there are insufficient privileges to adjust log levels.
405 Method Not Allowed
is returned when an invalid HTTP method is used.

Reset the server log levels

Introduced in: v3.12.1

DELETE /_admin/log/level

Revert the server’s log level settings to the values they had at startup, as determined by the startup options specified on the command-line, a configuration file, and the factory defaults.

The result is a JSON object with the log topics being the object keys, and the log levels being the object values.

Path Parameters

Query Parameters

serverId string
Forwards the request to the specified server.

HTTP Headers

Responses

200 OK
The log levels have been reset successfully.
403 Forbidden
You have insufficient privileges to reset the log levels.

Get the structured log settings

GET /_admin/log/structured

Returns the server’s current structured log settings. The result is a JSON object with the log parameters being the object keys, and true or false being the object values, meaning the parameters are either enabled or disabled.

Responses

200 OK
is returned if the request is valid
403 Forbidden
is returned if there are insufficient privileges to read structured log parameters.
405 Method Not Allowed
is returned when an invalid HTTP method is used.

Set the structured log settings

PUT /_admin/log/structured

Modifies and returns the server’s current structured log settings. The request body must be a JSON object with the structured log parameters being the object keys and true or false object values, for either enabling or disabling the parameters.

The result is a JSON object with all available structured log parameters being the object keys, and true or false being the object values, meaning the parameter in the object key is either enabled or disabled.

Request Body application/json object

database boolean
One of the possible log parameters.
url boolean
One of the possible log parameters.
username boolean
One of the possible log parameters.

Responses

200 OK
is returned if the request is valid
403 Forbidden
is returned if there are insufficient privileges to adjust log levels.
405 Method Not Allowed
is returned when an invalid HTTP method is used.

Get recent API calls

GET /_db/{database-name}/_admin/server/api-calls

Get a list of the most recent requests with a timestamp and the endpoint. In cluster deployments, the list contains only those requests that were submitted to the Coordinator you call this endpoint on. This feature is for debugging purposes.

You can control how much memory is used to record API calls with the --server.api-recording-memory-limit startup option.

You can disable this and the /_admin/server/aql-queries endpoint with the --log.recording-api-enabled startup option.

Whether API calls are recorded is independently controlled by the --server.api-call-recording startup option. The endpoint returns an empty list of calls if turned off.

Path Parameters

database-name* string
The name of a database. Which database you use doesn’t matter as long as the user account you authenticate with has at least read access to this database and administrate access to the _system database. If --log.recording-api-enabled is set to jwt, you need to use a superuser token to access the endpoint.

Query Parameters

HTTP Headers

Responses

200 OK
Returns the recorded API calls.
- code* integer
  The HTTP response status code.
- error* boolean
  A flag indicating that no error occurred.
- result* object
  The request result.
  calls* array of objects
  A list of the recent API calls. Empty if API call recording is disabled.
  database string
  The database name.
  path string
  The HTTP request path excluding the database prefix (/_db/<database-name>).
  requestType string
  Possible values: "GET", "PATCH", "PUT", "DELETE", "HEAD"
  The HTTP request method.
  timeStamp string
  The date and time of the request in ISO 8601 format.
401 Unauthorized
The user account has insufficient permissions for the selected database.
- code* integer
  The HTTP response status code.
- error* boolean
  A flag indicating that an error occurred.
- errorMessage* string
  A descriptive error message.
- errorNum* integer
  The ArangoDB error number for the error that occurred.
403 Forbidden
The recording API has been disabled.
- code* integer
  The HTTP response status code.
- error* boolean
  A flag indicating that an error occurred.
- errorMessage* string
  A descriptive error message.
- errorNum* integer
  The ArangoDB error number for the error that occurred.
501 Not Implemented
The method has not been called on a Coordinator or single server.
- code* integer
  The HTTP response status code.
- error* boolean
  A flag indicating that an error occurred.
- errorMessage* string
  A descriptive error message.
- errorNum* integer
  The ArangoDB error number for the error that occurred.

curl --header 'accept: application/json' --dump - http://localhost:8529/_admin/server/api-calls

Show output

HTTP/1.1 200 OK
X-Arango-Queue-Time-Seconds: 0.000000
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Expires: 0
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0, max-age=0, s-maxage=0
Content-Security-Policy: frame-ancestors 'self'; form-action 'self';
X-Content-Type-Options: nosniff
Server: ArangoDB
Connection: Keep-Alive
Content-Type: application/json; charset=utf-8
Content-Length: 257

{
  "error": false,
  "code": 200,
  "result": {
    "calls": [
      {
        "timeStamp": "2025-06-11T14:41:53Z",
        "requestType": "GET",
        "path": "/_admin/server/api-calls",
        "database": "_system"
      },
      {
        "timeStamp": "2025-06-11T14:41:51Z",
        "requestType": "GET",
        "path": "/_api/version",
        "database": "myDB"
      }
    ]
  }
}

Get recent AQL queries

GET /_db/{database-name}/_admin/server/aql-queries

Get a list of the most recent AQL queries with a timestamp and information about the submitted query. In cluster deployments, the list contains only those queries that were submitted to the Coordinator you call this endpoint on. This feature is for debugging purposes.

You can control how much memory is used to record AQL queries with the --server.aql-recording-memory-limit startup option.

You can disable this and the /_admin/server/api-calls endpoint with the --log.recording-api-enabled startup option.

Whether AQL queries are recorded is independently controlled by the --server.aql-query-recording startup option. The endpoint returns an empty list of queries if turned off.

Path Parameters

database-name* string
The name of a database. Which database you use doesn’t matter as long as the user account you authenticate with has at least read access to this database and administrate access to the _system database. If --log.recording-api-enabled is set to jwt, you need to use a superuser token to access the endpoint.

Query Parameters

HTTP Headers

Responses

200 OK
Returns the recorded AQL queries.
- code* integer
  The HTTP response status code.
- error* boolean
  A flag indicating that no error occurred.
- result* object
  The request result.
  queries* array of objects
  A list of the recent AQL queries. Empty if AQL query recording is disabled.
  bindVars object
  Key/value pairs representing the bind variables.
  database string
  The database name.
  query string
  The AQL query.
  timeStamp string
  The date and time of the request in ISO 8601 format.
401 Unauthorized
The user account has insufficient permissions for the selected database.
- code* integer
  The HTTP response status code.
- error* boolean
  A flag indicating that an error occurred.
- errorMessage* string
  A descriptive error message.
- errorNum* integer
  ArangoDB error number for the error that occurred.
403 Forbidden
The recording API has been disabled.
- code* integer
  The HTTP response status code.
- error* boolean
  A flag indicating that an error occurred.
- errorMessage* string
  A descriptive error message.
- errorNum* integer
  ArangoDB error number for the error that occurred.
501 Not Implemented
The method has not been called on a Coordinator or single server.
- code* integer
  The HTTP response status code.
- error* boolean
  A flag indicating that an error occurred.
- errorMessage* string
  A descriptive error message.
- errorNum* integer
  ArangoDB error number for the error that occurred.

curl --header 'accept: application/json' --dump - http://localhost:8529/_admin/server/aql-queries

Show output

HTTP/1.1 200 OK
X-Arango-Queue-Time-Seconds: 0.000000
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Expires: 0
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0, max-age=0, s-maxage=0
Content-Security-Policy: frame-ancestors 'self'; form-action 'self';
X-Content-Type-Options: nosniff
Server: ArangoDB
Connection: Keep-Alive
Content-Type: application/json; charset=utf-8
Content-Length: 353

{
  "error": false,
  "code": 200,
  "result": {
    "queries": [
      {
        "timeStamp": "2025-07-02T16:33:32Z",
        "query": "FOR s in @@collection FILTER s.time < @start RETURN s._key",
        "database": "_system",
        "bindVars": {
          "@collection": "_statistics",
          "start": 1751470412.3836362
        }
      },
      {
        "timeStamp": "2025-07-02T16:26:01Z",
        "query": "FOR doc IN coll RETURN doc",
        "database": "_system",
        "bindVars": {}
      }
    ]
  }
}