Skip to main content
Version: Next

Audit Logs

Administrators can view authentication, permission-change, resource-change, and system-action events on the Audit Logs page, filter or search for specific events, and export them to CSV. This meets audit trail requirements under the Personal Information Protection Act and public-sector software delivery standards (1–2 years for access records, 3 years for permission history).

Admin only

This menu appears only for accounts that have the nufi-admin role.

Prerequisites

  • NuFi must be installed and the dashboard accessible.
  • You must be logged in as an account granted the nufi-admin role.

Audit log list

In the left sidebar, click Admin > Audit Logs.

Admin audit log list

No.Description
Category filter (Auth / Resource / System, etc.)
Action filter (LOGIN / CREATE / UPDATE / DELETE, etc.)
Resource type filter (npudeploy / user / session, etc.)
Keyword search by resource name or username
Export up to 100,000 entries to CSV based on current filter conditions

Log table columns

ColumnDescription
TIMESTAMPWhen the event occurred
USERThe user who triggered the event
ACTIONThe performed action (e.g., CREATE, DELETE, LOGIN)
CATEGORYEvent classification (AUTH, RESOURCE, SYSTEM, etc.)
RESOURCE TYPEThe type of resource the event targets
RESOURCE NAMEThe name of the resource the event targets
IPThe originating IP address of the request

Up to 50 logs are shown per page.

Viewing audit logs

To view audit logs, follow these steps.

  1. In the left sidebar, click Admin > Audit Logs.
  2. Select the conditions you want from the filter bar.
    • Period: Select the date range
    • Category: Select the event classification
    • Action: Select the action type
    • Resource type: Select the target resource type
    • Keyword: Search by resource name or username
  3. Filter conditions are automatically synced to URL query params. Sharing the URL reproduces the same filter state.
  4. Click a row to open the detail Sheet on the right.

Summary bar

The summary bar at the top of the page shows overall statistics at a glance.

ItemDescription
Total eventsTotal number of audit log entries
Events todayEvents that occurred today
Login failuresLogin failure count over the last 30 days
Category countNumber of distinct event categories recorded

Click the expand button on the right of the summary bar to expand the daily activity line chart and per-category donut chart for a visual view of trends.

Event detail

Click a row in the log table to open a Sheet on the right. The Sheet shows the following details.

ItemDescription
IDUnique event ID
Request IDRequest tracking ID
TimestampWhen the event occurred
User ID / UsernameIdentifier of the user who triggered the event
IP / User AgentOriginating IP address and client info
Action / CategoryPerformed action and category badge
Status codeHTTP status code of the request
Resource Type / Resource ID / Resource NameTarget resource info
Project IDThe project identifier the event belongs to
DetailAdditional context (error messages, request parameters, etc.)
Before / AfterResource state JSON before and after the change. Shown only for events that produced a change.

The before/after JSON is shown side-by-side in two columns so you can quickly compare changes.

CSV Export

Download audit logs as a CSV file based on the current filter conditions.

  1. Set the filter conditions as desired.
  2. Click the CSV Export button.
  3. Up to 100,000 entries are downloaded in a streaming manner.
note
  • The file is saved as UTF-8 with BOM, so Korean characters display correctly in Excel.
  • Formula injection prevention is applied.

Retention policy

Log typeDefault retentionEnvironment variable
General logs (auth, resource, system)1 yearAUDIT_RETENTION_GENERAL_DAYS
Permission logs (grant/revoke)3 yearsAUDIT_RETENTION_PERMISSION_DAYS

Logs past the retention period are removed by a periodic auto-delete batch. The retention period can be adjusted via environment variables.