Managing Audit Log

The audit log provides an audit trail of actions that were performed by users and API keys.

📘

Note:

By default, users with Admin and Owner roles only can see the organization audit log. To make it available for other users, the org.logs, org.memberships:read and groups:admin scopes should be granted. If it's not - a user will be able to see only personal actions.

A user with granted permission is able to see all actions of all organization’s users and API keys of all types: user, project, and organization.

The following filter options are available to configure:

• Date - the time period in which the events occurred.
• Event ID - the ID of the action.
• Object name - The name of the object that the action was taken on.
• Object ID - The ID of the object that the action was taken on.
• Object type - The type of the object that the action was taken on.
• Action - The action that was performed.
• Scope - The scope of the action, can be either the organization itself or a specific project.
• IP - The IP of the actor who took the action.
• Actor user - Filter for actions taken by specific users (or their user API keys).
• Actor project API key - Filter for actions taken by specific project API keys.
• Actor organization API key - Filter for actions taken by specific organization API keys.

Actions performed by deleted accounts are also marked in the audit log as "deleted users".

You can take the following actions on an action record:

1. Copy event ID - Copy the event ID of a specific action record to the clipboard.
2. Copy object ID - Copy the object ID that an action was taken on to the clipboard.