Audit Logs
LogCraft automatically records every authenticated interaction with the platform as an audit log entry. Audit logs are read-only and cannot be modified or deleted by any user.
Only users with the Admin global role can access audit logs.
What is captured
Each audit log entry records:
| Field | Description |
|---|---|
| Timestamp | Date and time of the request. |
| User | Full name of the authenticated user who performed the action. |
| Workspace | The workspace targeted by the request, if applicable. |
| Source IP | IP address of the client. |
| HTTP method | The operation performed (GET, POST, PUT, DELETE). |
| URI path | The endpoint accessed. |
| Status code | The HTTP response status returned by the server. |
| Duration | Time taken to process the request. |
| User agent | The client software or browser that issued the request. |
Viewing audit logs
- Open Global Settings > Audit Logs.
- Browse or filter the log entries.
Entries are displayed in reverse chronological order.
Retention
Audit log entries are retained for 365 days. Entries older than 365 days are automatically removed.
Data preservation
Audit logs are designed to survive the deletion of the entities they reference:
- When a user is deleted, audit entries authored by that user are kept.
- When a workspace is deleted, audit entries referencing that workspace are kept.
This ensures traceability is maintained even after users or workspaces are removed from the system.
Permissions
Viewing audit logs requires the audit:read permission, granted exclusively to the Admin global role. See Permissions for details.