Audit Logs

The Audit Logs section provides a complete record of all gateway activity for security monitoring and compliance.

Viewing Logs

Navigate to Audit Logs in the sidebar to see the activity log:

Column	Description
Timestamp	When the event occurred
User	Who performed the action
Action	What was done
Resource	What was affected
Status	Success or failure
IP Address	Origin of the request

Filtering Logs

Use the filter panel to narrow results:

Search

Filter by user, resource, or action text.

Action Type

Authentication
Convox API
User Management
Token Management

Status

Success
Failed
Blocked

Resource Type

App
Rack
Env
Secret
Process
System
API Token
User
Auth
Admin

Date Range

Last 15 minutes, 1 hour, 24 hours, 7 days, 30 days
Custom range

Log Details

Click any log entry to see full details:

{
  "timestamp": "2024-01-15T14:30:00.123Z",
  "user_email": "alice@example.com",
  "action_type": "convox",
  "action": "deploy.create",
  "resource_type": "app",
  "resource": "myapp",
  "status": "success",
  "http_status": 200,
  "response_time_ms": 1250,
  "ip_address": "192.168.1.100",
  "user_agent": "rack-gateway-cli/1.2.0",
  "event_count": 1
}

Exporting Logs

Apply desired filters
Click Export
Download the CSV file

Compliance Features

Tamper Detection

Logs include cryptographic chain hashes. Any tampering is detectable:

Chain verification: ✓ Valid
Entries: 1,234,567
First entry: 2024-01-01T00:00:00Z
Last entry: 2024-01-15T14:30:00Z

Retention

Logs are retained according to your configuration:

Default: 400 days (SOC 2 compliance)
Financial: 7 years (SOX/FINRA)

WORM Anchors

If configured, hourly anchors are written to S3 Object Lock storage for immutability.

Real-Time Monitoring

For live monitoring:

Set filter to “Last 5 minutes”
Enable Auto-refresh
Watch for new entries

Compliance Documentation - Compliance features
Monitoring - Operational monitoring