Docs
Open in panel → /app · activity
Activity (Audit)
audit_events(workspace_id, user_id, action, meta, created_at) is the
source of truth for “who did what” — across onboarding, domain/IP ops,
sends, credits, members, and billing.
Endpoints
GET /v1/panel/audit?limit=50 (viewer+) returns the latest events scoped
to the calling workspace.
Tracked actions
action |
When emitted |
|---|---|
domain.create, domain.verify, domain.verify.partial |
Domain lifecycle |
node.register, node.provision |
Node lifecycle |
ip.create, ip.publish |
IP lifecycle |
apply_policy |
Job inserts + audit on success |
member.invite, member.accept |
Membership lifecycle |
credits.grant |
Admin grant from POST /v1/panel/credits/grant |
onboarding.skip, onboarding.complete |
Wizard |
send.commit, send.void |
Credit lifecycle (added when runSend succeeds/fails) |
Retention
Default 90 days. Operators can extend via per-workspace cron (pg_cron) when
SOC requires — Release B.
Related
- docs/build/members.md — who can do what.
- docs/build/credits.md — credit-lifecycle audit.
Last verified: Sat Jul 11 2026 17:00:00 GMT-0700 (Pacific Daylight Time). Cross-link maintained byscripts/check-docs-drift.sh (M54).