|
1 | 1 | # Audit Logs Feature |
2 | 2 |
|
3 | | -Audit Log feature provides the overview of the Logs of different features of Lowcoder. Admin can see the activity of the Members and developers. There are a lot of Events that can be monitored in Audit Logs. Also, Admin can apply different filters to have more precise list of the Logs. |
| 3 | +Audit-Logs are essential for teams that require **security visibility**, **compliance readiness**, and **operational accountability** — especially when managing multiple environments (e.g., Development, Staging, Production). |
| 4 | + |
| 5 | +Audit Logs provide a **detailed record** of everything that Users do in your Lowcoder environment. They help you: |
| 6 | + |
| 7 | +* **Trace Lowcoder App Developer behavior** for security monitoring |
| 8 | +* **Meet compliance standards** (e.g., SOC2, ISO27001) |
| 9 | +* **Investigate changes or issues** with full contextual data |
| 10 | +* **Understand how apps and resources are being managed** |
4 | 11 |
|
5 | 12 | <figure><img src="../../../.gitbook/assets/frame_generic_light (22).png" alt=""><figcaption></figcaption></figure> |
6 | 13 |
|
7 | 14 | <figure><img src="../../../.gitbook/assets/frame_generic_light (1) (4).png" alt=""><figcaption></figcaption></figure> |
8 | 15 |
|
9 | | -### ❓ What Is It? |
| 16 | +### Tracked Events |
10 | 17 |
|
11 | | -Track user actions, capturing: |
| 18 | +Lowcoder logs all critical operations, including authentication, app interactions, resource management, and system-level actions. |
12 | 19 |
|
13 | | -* 👤 Who did what |
14 | | -* 🕒 When it happened |
15 | | -* 📋 What changed (before/after view) |
| 20 | +#### 🔐 User Sessions |
16 | 21 |
|
17 | | -### 🛠️ Why You Need It |
| 22 | +* Sign in |
| 23 | +* Logout |
18 | 24 |
|
19 | | -* 📜 Regulatory compliance |
20 | | -* 🔎 Debugging history |
21 | | -* 👮 Accountability |
| 25 | +#### 🧩 App Operations |
22 | 26 |
|
23 | | -**Event Types :**  |
| 27 | +* View app |
| 28 | +* Create new app |
| 29 | +* Update app |
| 30 | +* Delete app |
| 31 | +* Move app to folder |
| 32 | +* Move app to Trash |
| 33 | +* Restore app |
24 | 34 |
|
25 | | -Following are the Event types that are curretnly being Logged in the Audit Logs :  |
| 35 | +#### 📁 Folder Operations |
26 | 36 |
|
27 | | -1. User Login and Logout |
28 | | -2. CRUD operations on an Application |
29 | | -3. Move Application |
30 | | -4. Recycle & Restore an Application |
31 | | -5. Application Publishing |
32 | | -6. Application Version Update |
33 | | -7. Application Permission Change |
34 | | -8. Application Sharing Change |
35 | | -9. CRUD operations on a Folder |
36 | | -10. CRUD operations on Members ( Adding or Removing a Group Member ) |
37 | | -11. CRUD operations on Data Source |
38 | | -12. Grant Data Source Permissions |
39 | | -13. CRUD operations on Library Query |
40 | | -14. API Call event |
41 | | -15. Server Startup |
42 | | -16. View Server Info |
| 37 | +* Create new folder |
| 38 | +* Update folder |
| 39 | +* Delete folder |
43 | 40 |
|
44 | | -**Filter Options :**  |
| 41 | +#### 📊 Data Query Activity |
45 | 42 |
|
46 | | -On Audit Logs, we have different filters present to filter out events as per the Admin's requirments. Events can be filtered out based on the following filter options :  |
| 43 | +* Execute data query |
47 | 44 |
|
48 | | -1. Start and End date |
49 | | -2. Event Type |
50 | | -3. Environment ID |
51 | | -4. Organization ID |
52 | | -5. User ID |
53 | | -6. App ID |
| 45 | +#### 👥 User Group Management |
54 | 46 |
|
55 | | -**Event Details Page :**  |
| 47 | +* Create user group |
| 48 | +* Update user group |
| 49 | +* Delete user group |
| 50 | +* Add group member |
| 51 | +* Remove group member |
| 52 | +* Update member role |
| 53 | +* Leave user group |
56 | 54 |
|
57 | | -Each Event has an Event details page, which include all the information about the Event, User's location and device/OS/Browser information.  |
| 55 | +#### 🛠️ Platform/System |
| 56 | + |
| 57 | +* Server startup |
| 58 | + |
| 59 | +#### 🌐 Data Source Management |
| 60 | + |
| 61 | +* Create data source |
| 62 | +* Update data source |
| 63 | +* Delete data source |
| 64 | +* Grant permission |
| 65 | +* Update permission |
| 66 | +* Delete permission |
| 67 | + |
| 68 | +#### 🧱 Library Queries |
| 69 | + |
| 70 | +* Create library query |
| 71 | +* Update library query |
| 72 | +* Delete library query |
| 73 | +* Publish library query |
| 74 | + |
| 75 | +### What Data Is Logged? |
| 76 | + |
| 77 | +Each audit entry records the **who**, **what**, **when**, **where**, and **how** of the event. |
| 78 | + |
| 79 | +#### 📌 Metadata Collected: |
| 80 | + |
| 81 | +| Field | Description | |
| 82 | +| ------------------------------------ | --------------------------------------------------------- | |
| 83 | +| **Event ID** | Unique ID for the log entry | |
| 84 | +| **Event Time** | Timestamp of the action | |
| 85 | +| **Event Type** | Type of action (from the list above) | |
| 86 | +| **User ID** | Identifier of the acting user | |
| 87 | +| **Organization ID** | Context in which the action took place | |
| 88 | +| **Application ID** | Related app (if applicable) | |
| 89 | +| **Details** | Description of what was changed (e.g., old and new names) | |
| 90 | +| **Geolocation** | Location data derived from IP | |
| 91 | +| **User Agent Data** | Full client fingerprint, including: | |
| 92 | +| → Name, Device Class, Brand | | |
| 93 | +| → OS name and version | | |
| 94 | +| → Browser engine and version | | |
| 95 | +| → Webview container info (if mobile) | | |
| 96 | + |
| 97 | +This ensures **maximum traceability** and **complete accountability**. |
| 98 | + |
| 99 | +### Multi-Environment Support |
| 100 | + |
| 101 | +When running multiple Lowcoder environments via the Enterprise “Staging” setup, all audit logs are **centralized** — enabling you to: |
| 102 | + |
| 103 | +* View logs **across environments** |
| 104 | +* Compare activity **between Dev, Staging, and Prod** |
| 105 | +* Maintain a **single pane of glass** for security audits |
| 106 | + |
| 107 | +### Exploring Audit Logs in the UI |
| 108 | + |
| 109 | +Lowcoder Enterprise offers a **dedicated Audit Log UI**, where administrators can: |
| 110 | + |
| 111 | +* Use filters to drill down by: |
| 112 | + * **Environment** |
| 113 | + * **Workspace** |
| 114 | + * **User** |
| 115 | + * **Apps** |
| 116 | + * **Event Type** |
| 117 | + * **Time range** |
| 118 | +* View a **bar chart** for quick visual overview of activity volume |
| 119 | +* Inspect a **detailed table** of events |
| 120 | +* **Expand any row** to see the full event payload, including: |
| 121 | + * Metadata |
| 122 | + * Device + browser info |
| 123 | + * Action-specific details |
| 124 | + |
| 125 | +This gives you a **high-resolution view** of every interaction. |
58 | 126 |
|
59 | 127 | <figure><img src="../../../.gitbook/assets/frame_generic_light (5) (1).png" alt=""><figcaption></figcaption></figure> |
60 | 128 |
|
| 129 | +**Event Details Page :**  |
| 130 | + |
| 131 | +Each Event has an Event details page, which include all the information about the Event, User's location and device/OS/Browser information.  |
| 132 | + |
61 | 133 | <figure><img src="../../../.gitbook/assets/frame_generic_light (6).png" alt=""><figcaption></figcaption></figure> |
0 commit comments