idp.global/app
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
app/stories/organization-owner/ORG-007-audit-logs.md
T
jkunz 014fb3080a add stories
2025-11-30 15:01:28 +00:00

1.0 KiB
Raw Permalink Blame History

View Organization Audit Logs

ID: ORG-007 Priority: Medium Status: Planned

User Story

As an organization owner, I want to view audit logs for my organization so that I can track security-relevant events and meet compliance requirements.

Acceptance Criteria

  • Log all security-relevant events (logins, role changes, member changes)
  • Searchable audit log interface
  • Filter by event type, user, date range
  • Each entry shows: timestamp, actor, action, target, IP address
  • Immutable logs (cannot be deleted or modified)
  • Export logs for compliance (CSV, JSON)
  • Retention policy configuration (90 days default)
  • Real-time event streaming option

Technical Notes

  • Create AuditLog collection with write-only access pattern
  • Index for efficient querying
  • Consider separate database/collection for audit data
  • Comply with SOC 2 / ISO 27001 logging requirements
  • Webhook option for SIEM integration

Related TODOs

  • New feature - compliance and security requirement
Reference in New Issue View Git Blame Copy Permalink