Workspace audit logs

The Audit Logs feature in NocoDB provides a comprehensive, time-stamped record of user activity across your workspace. It enables workspace owners to monitor key actions, ensuring transparency, traceability, and accountability.

Accessing audit logs

Only workspace owners can access audit logs.

To view them:

1. Navigate to Team & Settings from the left minibar.
2. Select the Audits tab.

Audit log details

Each entry includes:

• User: Name (if set) and email of the user who performed the action
• Timestamp: Time of the event (e.g., “35s ago”, “1h ago”)
• Base: Name and ID of the base involved
• Event: Type of action performed (e.g., Field Create, Table Delete)
• IP Address: IP of the user who performed the action
• Device Info: Operating system and browser used

Click a log entry to expand it and view additional metadata, including the full event payload in JSON format.

Logged events

NocoDB audit logs cover a wide range of system events, including:

User Actions

• Sign Up, Sign In, Sign Out, Invite, Email Verify, Profile Update
• Password: Change, Reset, Forgot

Workspace

• Create, Update, Delete, Rename
• Member: Invite, Update, Remove

Base

• Create, Update, Delete, Rename, Duplicate
• Member: Invite, Update, Remove

Table

• Create, Update, Delete, Rename, Duplicate

Field

• Create, Update, Rename, Delete

View

• Create, Update, Delete, Rename, Duplicate
• Filter: Create, Update, Delete
• Sort: Create, Update, Delete

Webhook

• Create, Update, Delete
• Filter: Create, Update, Delete

Source

• Create, Update, Delete, Rename

Shared View

• Create, Update, Delete

API Tokens

• Create, Delete

Integration

• Create, Update, Delete

Snapshots

• Create, Delete, Restore

Org Users (Self-hosted only)

• Invite, Resend Invite

Filtering logs

Use the toolbar at the top of the Audits tab to filter logs by:

• User
• Base
• Event Type
• Time Range

This helps you quickly locate relevant actions or investigate specific activities.