View and Filter Administrative Audit Trail
The Admin Audit Log Screen presents an immutable, read-only record of all administrative actions. Each entry shows the actor (user who performed the action), timestamp, action type (role assignment, deactivation, settings change, etc.), and the affected entity. Organization Administrators see only audit entries within their organizational scope. Global Administrators see the full cross-organization audit trail. The log supports filtering by date range, action type, and actor to support targeted investigation. Since records are written server-side by the Admin Audit Edge Function, the log cannot be tampered with by any client-side operation.
User Story
Acceptance Criteria
- Given I am an Organization Administrator, when I open the Audit Log, then I see only entries for actions performed within my organizational scope
- Given I am a Global Administrator, when I open the Audit Log, then I see audit entries across all organizations
- Given the audit log is displayed, when I filter by date range, then only entries within that range are shown
- Given the audit log is displayed, when I filter by action type (e.g., 'role_assigned'), then only matching entries are shown
- Given the audit log is displayed, when I filter by actor, then only entries where that user performed the action are shown
- Given an audit record was written by the edge function, when I view it in the log, then it cannot be edited or deleted from any interface
Business Value
Audit trails are a compliance requirement for organizations managing sensitive personal data under GDPR. Without a queryable audit log, investigating incidents or responding to regulatory inquiries requires manual database analysis, which is slow and error-prone. An accessible, filterable audit UI enables administrators to self-serve compliance investigations and reduces the support burden on Norse Digital Products during audits.