Event Type

Event Type	Description
AUTHREQID_TO_TOKEN	It's an administrative event query that retrieves an item.
CLIENT_DELETE	This event is activated when a client's configuration is removed from the realm.
CLIENT_INFO	This event takes place when a request for client information is made.
CLIENT_INITIATED_ACCOUNT_LINKING	It's initiated when a client starts linking an external account.
CLIENT_LOGIN	It is triggered when a client logs in successfully.
CLIENT_REGISTER	It occurs when a new client is added to the realm.
CLIENT_UPDATE	It happens when a client's settings are modified.
CODE_TO_TOKEN	It occurs when an authorization code is converted into an access token in the OAuth2 process.
CUSTOM_REQUIRED_ACTION	It is triggered by custom actions specified by the administrator.
DELETE_ACCOUNT	It occurs when a user removes their own account.
EXECUTE_ACTIONS	It is triggered when specific actions (like verifying an email) are performed for a user.
EXECUTE_ACTION_TOKEN	It happens when an action token (such as for password reset) is used.
FEDERATED_IDENTITY_LINK	It occurs when a federated identity is attached to a Keycloak account.
GRANT_CONSENT	It occurs when a user provides consent to a client.
IDNETITY_PROVIDER_FIRST_LOGIN	It occurs when a user logs in for the first time using an identity provider.
IDENTITY_PROVIDER_LINK_ACCOUNT	It happens when a user connects their account with an identity provider.
IDENTITY_PROVIDER_LOGIN	It is triggered when a user logs in via an identity provider.
IDENTITY_PROVIDER_POST_LOGIN	It occurs following a successful login with an identity provider.
IDENTITY_PROVIDER_RESPONSE	It occurs when a response is received from an identity provider.
IDNETITY_PROVIDER_RETRIEVE_TOKEN	It occurs when a token is obtained from an identity provider.
IMPERSONATE	It is triggered when an administrator impersonates a user.
INTROSPECT_TOKEN	It is triggered when a request is made to inspect a token.
INVALID_SIGNATURE	It occurs when a token or request has an invalid signature.
LOGIN	It happens when a user logs in successfully.
LOGOUT	It happens when a user logs out.
OAUTH2_DEVICE_AUTH	It is triggered during the OAuth2 device authorization process.
OAUTH2_DEVICE_CODE_TO_TOKEN	It happens when a device code is exchanged for a token.
OAUTH2_DEVICE_VERIFY_USER_CODE	It happens when a user code is confirmed in the OAuth2 device flow.
PERMISSION_TOKEN	It occurs when a permission token is created.
PUSHED_AUTHORIZATION_REQUEST	It happens when an authorization request is pushed to the server.
REFRESH_TOKEN	It occurs when a refresh token is used to get a new access token.
REGISTER	It occurs when a new user account is created.
REGISTER_NODE	It is triggered when a new cluster node is added.
REMOVE_FEDERATED_IDENTITY	It occurs when a federated identity is unlinked from a user account.
REMOVE_TOTP	It occurs when a user removes their TOTP configuration.
RESET_PASSWORD	It occurs when a user starts the password reset process.
RESTART_AUTHENTICATION	It is triggered when the authentication flow is restarted.
REVOKE_GRANT	It occurs when a user's consent to a client is revoked.
SEND_IDENTITY_PROVIDER_LINK	It occurs when a link is sent to connect an identity provider account.
SEND_RESET_PASSWORD	It occurs when a password reset email is sent.
SEND_VERIFY_EMAIL	It occurs when an email verification link is sent.
TOKEN_EXCHANGE	It occurs when tokens are exchanged via the token exchange endpoint.
UNREGISTER_CODE	It occurs when an OAuth2 device code is unregistered.
UPDATE_CONSENT	It occurs when a user's consent is modified.
UPDATE_EMAIL	It occurs when a user changes their email address.
UPDATE_PASSWORD	It occurs when a user updates their password.
UPDATE_PROFILE	It occurs when a user updates their profile details.
UPDATE_TOTP	It occurs when a user updates their TOTP settings.
USER_INFO_REQUEST	It occurs when a request is made to the user info endpoint.
VALIDATE_ACCESS_TOKEN	It occurs when an access token is validated.
VERIFY_EMAIL	It occurs when a user confirms their email address.
VERIFY_PROFILE	It occurs when a user verifies their profile information.

All the events listed above have corresponding error events as mentioned below

Event Type	Description
AUTHREQID_TO_TOKEN_ERROR	It happens when there's a problem exchanging an auth_req_id for a token in the OAuth2 Device Authorization Grant flow.
CLIENT_DELETE_ERROR	It occurs when there's a problem deleting a client's configuration.
CLIENT_INFO_ERROR	It happens when an error arises while requesting client information.
CLIENT_INITIATED_ACCOUNT_LINKING_ERROR	It is triggered when there's an issue with linking an external account initiated by a client.
CLIENT_LOGIN_ERROR	It is fired when there's an error during a client's login attempt.
CLIENT_REGISTER_ERROR	It is triggered when an error occurs during the registration process of a new client.
CLIENT_UPDATE_ERROR	It occurs when there's an error updating a client's configuration.
CODE_TO_TOKEN_ERROR	It happens when there's a problem exchanging an authorization code for an access token.
CUSTOM_REQUIRED_ACTION_ERROR	It is triggered by errors in executing custom required actions set by the administrator.
DELETE_ACCOUNT_ERROR	It occurs when there's an error deleting a user's account.
EXECUTE_ACTIONS_ERROR	It occurs when there's an error executing actions for a user.
EXECUTE_ACTION_TOKEN_ERROR	It is triggered when there's an error executing an action token.
FEDERATED_IDENTITY_LINK_ERROR	It occurs when there's an error linking a federated identity to a Keycloak account.
GRANT_CONSENT_ERROR	It happens when there's an error while granting consent to a client.
IDNETITY_PROVIDER_FIRST_LOGIN_ERROR	It occurs when there's an error during a user's first login using an identity provider.
IDENTITY_PROVIDER_LINK_ACCOUNT_ERROR	It is triggered when there's an error linking an account with an identity provider.
IDENTITY_PROVIDER_LOGIN_ERROR	It occurs when there's an error during login using an identity provider.
IDENTITY_PROVIDER_POST_LOGIN_ERROR	It occurs when there's an error after a successful identity provider login.
IDENTITY_PROVIDER_RESPONSE_ERROR	It occurs when there's an error processing the response from an identity provider.
IDNETITY_PROVIDER_RETRIEVE_TOKEN_ERROR	It occurs when there's an error retrieving a token from an identity provider.
IMPERSONATE_ERROR	It is triggered when there's an error during admin impersonation of a user.
INTROSPECT_TOKEN_ERROR	It occurs when there's an error during a token introspection request.
INVALID_SIGNATURE_ERROR	It occurs when a token or request has an invalid signature.
LOGIN_ERROR	It occurs when there's an error during a user's login attempt.
LOGOUT_ERROR	It occurs when there's an error during a user's logout attempt.
OAUTH2_DEVICE_AUTH_ERROR	It is triggered during an error in the OAuth2 device authorization flow.
OAUTH2_DEVICE_CODE_TO_TOKEN_ERROR	It occurs when there's an error exchanging a device code for a token.
OAUTH2_DEVICE_VERIFY_USER_CODE_ERROR	It occurs when there's an error verifying a user code in the OAuth2 device flow.
PERMISSION_TOKEN_ERROR	It occurs when there's an error issuing a permission token.
PUSHED_AUTHORIZATION_REQUEST_ERROR	It occurs when there's an error in the pushed authorization request process.
REFRESH_TOKEN_ERROR	It occurs when there's an error using a refresh token to obtain a new access token.
REGISTER_ERROR	It occurs when there's an error during user registration.
REGISTER_NODE_ERROR	It is triggered when there's an error registering a new cluster node.
REMOVE_FEDERATED_IDENTITY_ERROR	It occurs when there's an error removing a federated identity from a user account.
REMOVE_TOTP_ERROR	It happens when there's an error removing a user's TOTP configuration.
RESET_PASSWORD_ERROR	It happens when there's an error during the password reset process.
RESTART_AUTHENTICATION_ERROR	It occurs when there's an error restarting the authentication flow.
REVOKE_GRANT_ERROR	It happens when there's an error revoking a user's consent grant.
SEND_IDENTITY_PROVIDER_LINK_ERROR	It occurs when there's an error sending a link to connect an identity provider account.
SEND_RESET_PASSWORD_ERROR	It happens when there's an error sending a reset password email to a user.
SEND_VERIFY_EMAIL_ERROR	It occurs when there's an error sending an email verification link to a user.
TOKEN_EXCHANGE_ERROR	It occurs when there's an error during the token exchange process.
UNREGISTER_CODE_ERROR	It happens when there's an error unregistering an OAuth2 device code.
UPDATE_CONSENT_ERROR	It occurs when there's an error updating a user's consent.
UPDATE_EMAIL_ERROR	It happens when there's an error updating a user's email address.
UPDATE_PASSWORD_ERROR	It occurs when there's an error updating a user's password.
UPDATE_PROFILE_ERROR	It occurs when there's an error updating a user's profile information.
UPDATE_TOTP_ERROR	It occurs when there's an error updating a user's TOTP configuration.
USER_INFO_REQUEST_ERROR	It occurs when there's an error making a request to the user info endpoint.
VALIDATE_ACCESS_TOKEN_ERROR	It happens when there's an error validating an access token.
VERIFY_EMAIL_ERROR	It happens when there's an error during the email verification process.
VERIFY_PROFILE_ERROR	It happens when there's an error during the profile verification process.