# Audit S3 APIs

S3 API calls can generate JSON events that webhook target applications can receive as a stream of events and for auditing and analysis purposes. Webhook applications like Splunk must be configured to accept the events stream and provide it with an authentication token.

Enabling an audit webhook comes instead of the `BucketLogging` S3 APIs. The purpose of the audit logs is to indicate the nature of traffic.

{% hint style="info" %}
If the WEKA cluster disconnects from the webhook application or the S3 clusters' internal events buffer fills up, events are thrown away. It is recommended to monitor the external webhook target application's availability.
{% endhint %}

**Related topics**

[configure-audit-webhook-using-the-gui](https://docs.weka.io/4.2/additional-protocols/s3/audit-s3-apis/configure-audit-webhook-using-the-gui "mention")

[audit-s3-apis](https://docs.weka.io/4.2/additional-protocols/s3/audit-s3-apis/audit-s3-apis "mention")

[audit-s3-apis-1](https://docs.weka.io/4.2/additional-protocols/s3/audit-s3-apis/audit-s3-apis-1 "mention")