# /alerts/activity/{fingerprint} - Per-alert audit timeline

**GET /alerts/activity/{fingerprint}**

Returns the audit timeline for the alert identified by `fingerprint`, most recent
first. Events are written transparently as silences are created, updated, or
removed via the `/api/alerts/silences` and `/api/systems/:id/alerts/silences` endpoints.

Operator notes are stored as the silence `comment` (Alertmanager native), so a
note edit appears here as a `silence_updated` event whose `details` payload
includes the new comment.

Requires `read:systems` permission.



## Servers
- Backend API server (port 8080): https://api.your-domain.com/api (Backend API server (port 8080))
- Collect API server (port 8081): https://collect.your-domain.com/api (Collect API server (port 8081))


## Authentication methods
- Bearer auth


## Parameters

### Path parameters
- **fingerprint** (string)
  Alertmanager fingerprint of the alert (hex hash of its labels).
  Stable across re-firings of the same alert.

### Query parameters
- **limit** (integer)
  Max events to return. Default 100, max 500.
- **organization_id** (string)
  Tenant the alert belongs to. Required for non-Customer roles.


## Responses
### 200
Activity timeline

#### Body: application/json (object)
- **code** (integer)

- **message** (string)

- **data** (object)


### 400
Bad request - validation error

#### Body: application/json (object)
- **code** (integer)
  HTTP error code
- **message** (string)
  Error message
- **data** (object)


### 401
Unauthorized - invalid or missing token

#### Body: application/json (object)
- **code** (integer)

- **message** (string)

- **data** (object | null)


### 403
Forbidden - insufficient permissions

#### Body: application/json (object)
- **code** (integer)

- **message** (string)

- **data** (object | null)



[Powered by Bump.sh](https://bump.sh)