Audit
The audit log records every mutation in the Auth service. Every create, update, and delete operation is tracked with the actor, the affected object, and a timestamp.
What Is Logged
| Field | Purpose |
|---|---|
| Operation | The type of change: create, update, or delete |
| Object type | What kind of resource was affected |
| Object ID | The specific resource that changed |
| Actor | The user or client that performed the operation |
| Owner | The organization that owns the affected resource |
| Timestamp | When the operation occurred |
Use Cases
| Scenario | How audit helps |
|---|---|
| Security review | Identify who changed permissions and when |
| Compliance | Demonstrate access control changes over time |
| Debugging | Trace when and why a resource was modified |
Scope
The audit log covers all core resources: users, claims, organizations, locations, apps, providers, and activations. Every mutation passes through the audit system regardless of whether it was triggered by a user, a client, or an internal process.