FEATURES

Audit logs

Immutable audit trail of tenant mutations.

Overview

Immutable audit trail of tenant mutations.

Who should use this

Compliance and security teams.

Core concepts

Each mutation writes actorUserId, action, resourceType, resourceId.

Setup

GET /audit with limit query param.

Required entitlement

audit_log_export on enterprise plans for export jobs.

Required permissions

audit.view

REST API

GET /tenants/{tenantId}/audit?limit=100

SDK (@startupcore/api-client)

startupCore.audit.list(tenantId).

React components

<AuditLogTable logs={...} />.

Security notes

Audit logs may contain emails — protect exports.

Troubleshooting

Empty — ensure handler calls writeAuditEvent.