Audit Log Overview
Audit Log gives your organization a complete, tamper-proof record of every action taken in Orderful — who did what, and when. It is designed to support security reviews, incident investigations, and Tier-1 support troubleshooting.
Who has access
Audit Log is available to Organization Admins. Read-only access is available to all roles.
What event does the Audit Log track
Audit Log captures user and system actions on the following resources:
| Resource | Actions | |
|---|---|---|
| Transaction | Created, Validation Status Changed, Delivery Status Changed, Acknowledgment Status Changed, Deleted, Reprocessed, Resent | |
| Delivery | Created, Sent, Delivered, Failed | |
| Attachment | Created | |
| Relationship | Created, Updated, Status Changed, Deleted | |
| Rule | Created, Updated, Deleted |
Orderful plans on supporting new resources and actions in future releases.
What each log entry contains
Every entry in the Audit Log includes:
| Field | Description |
|---|---|
| Timestamp | Date and time of the action |
| User details | User names and email, "System" for automated actions, "API" for API requests |
| Resource | The specific object affected (e.g., a transaction, relationship, or rule) |
| Context | The main parent and related resources of the affected resource. For example, a Delivery or Attachment entry shows its parent Transaction as context; a Transaction entry shows its Relationship |
| Action | The type of event that occurred (e.g., created, updated, deleted) |
| Details | Human-friendly description of the log, with additional details. |
Immutability
Audit Log records are append-only. No entry can be edited or deleted. This ensures logs can be relied upon as trustworthy evidence during compliance reviews and incident investigations.
Updated 8 days ago