Audit Log

The audit log is a record of events and changes. Users and other systems using ProcessMaker IDP create logs based on these events. Audit logs typically document a sequence of activities or a specific activity. They vary significantly between ProcessMaker IDP services.

Audit logs are a valuable resource for admins and auditors who want to examine suspicious activity on a network or diagnose and troubleshoot issues. These logs can provide administrators with invaluable insight into what behavior is normal and what behavior is not.

Audit Log Filters

You can apply one or more filters to display only the data that interests you. To clear a filter, click the trashcan icon next to the filter box.

Filter Category	Description
Application Name	Filter on different services such as: - Gateway (Events triggered by a user or REST API user) - Datastore (Entity events triggered by a user or service) - GraphQL (admin operations in the User Interface or read events on entities)
Auth Action	Filter on authentication events such as LOGIN, LOGOUT, or FAILURE.
Entity ID	Filter on a specific ENTITY instance by using a UUID (e.g., cea965d4-96a7-45a5-88ae-587fed7179c2).
Entity Name	Filter on all ENTITY OPERATIONS for a specific ENTITY (e.g., FILE or FOLDER).
Entity Operation	Filter on specific entity-related operations: CREATE, UPDATE, and DELETE.
GraphQL Operation	Filter on specific admin operations such as Process Mapping, Reindex, and Train.
Request Method	Filter on actions such as downloading a file in the User Interface or REST operations.
Type	Filter on specific actions such as PROXY REQUESTS for the gateway.
User	Filter on a specific user or system user.
Start Date	Select a start date to filter events after this start date. If a start date is selected, an end date must be entered.
End Date	Select an end date to filter events before this end date. If no start and end date are entered, the audit log is limited to 1 year.