AdministrationAuthentication and security

Viewing audit logs

Enterprise

Enterprise-tier organizations with single-tenant environments can request the ability for admins to view audit logs for their environment. Audit logs track different types of member activities, including account management, API usage, and deployment operations.

The audit logs feature is in private preview, with some limitations. Audit log categories are based on the Instabase platform and some categories have no corresponding functionality in AI Hub. You might see audit log categories with unfamiliar names or empty results.

Viewing and downloading audit logs

Before you begin

Connect with Instabase Support to request the required access permissions. When enabled, admins can access audit logs from the settings page or via API, using the audit endpoint.

  1. In the header, click the initials icon and select Settings.

  2. Select the Members tab.

  3. Click Manage and select View audit logs. The audit logs page opens.

When viewing audit logs, use the Filter by options to filter results by date and user, and use the Log dropdown to select audit log categories. Use the Number of results field to adjust how many results are loaded by default.

To download the audit logs displayed, click the download iconIcon of downwards arrow in front of a cloud. and select a format (.csv or .json).

Adjust the Number of results value or click Load more to download more results at a time.

Audit log categories

Audit logs are organized into categories based on the type of activity being tracked. All audit logs include a timestamp of the operation, the IP address where the request originated, and, if applicable, the workspace where the operation occurred. Identifiers, such as email addresses or user IDs, can represent either the user who initiated the task or the user upon which the task was performed, depending on the category. Commonly referenced categories are described in the following table.

If using the audit endpoint to retrieve audit log data, the Log type column shows the corresponding log_type parameter value to use in your API request.

Several audit logs use v2 tagging for events after release 25.34. For earlier events, select the non-V2 category in the UI or omit _v2 from the log_type parameter.
Log typeDescription
Account V2 (account_v2)User account creation. Account deletion isn’t recorded.
API V2 (api_v2)API calls to the public AI Hub API. Information logged includes the endpoint, query string, HTTP method, HTTP status, authentication method, and other details.

This category might include logs of API requests to endpoints not included in the public API, such as endpoints underlying the AI Hub platform.
App deployment run V2 (app_deployment_run_v2)Deployment run activities including creating new deployment runs, resuming paused runs, and deleting runs.
App deployments V2 (app_deployment_v2)Deployment management activities, including deployment creation, updates, and deletion.
App V2 (app_v2)Automation app management activities, including app creation, updates, and deletion.
Data source V2 (datasource_v2)Data connection activities, including adding, updating, and removing data connections.
Login V2 (login_v2)Login events. The user’s authentication method is recorded in a secondary log.
OAuth2 V2 (oauth2_v2)OAuth token management activities, including creating, refreshing, and deleting tokens.
Organization V2 (org_v2)Organization role changes. Being granted the admin role is logged as receiving the org:write permission.
Org secrets V2 (org_secrets_v2)Organization secret management, including secret creation, updates, and deletion. Includes detailed change tracking.
Permissions V2 (perms_v2)Permission management activities, including granting membership and assigning roles at the organization, workspace, or group level.
Projects V2 (projects_v2)Automation project activities, including creating, updating, deleting, copying, and moving projects.
Review V2 ( review_v2)Human review activities, including changing fields and classifications, updating record mappings, and re-running extraction.
Workspace V2 (workspace_v2)Workspace management activities, including creating and deleting workspaces.
Was this page helpful?