Audit Logs

Track workspace activity with audit logs for compliance, security review, and troubleshooting.

Audit logs record all significant actions in your Demoship workspace, providing an immutable trail for security review and compliance.

Accessing audit logs

Go to Settings > Security > Audit Logs. The log displays events in reverse chronological order.

Logged events

Audit logs capture events across four categories:

Authentication

• User login (SSO and password)
• Failed login attempts
• Password resets
• API key creation and revocation

Team management

• Member invited, joined, or removed
• Role changes
• SSO configuration changes
• SCIM provisioning events

Demo activity

• Demo created, edited, or deleted
• Demo published or unpublished
• Share link created or revoked
• Access settings changed (password, expiration)

Integrations

• Integration connected or disconnected
• Credentials updated
• Sync errors

Filtering

Filter audit logs by:

• Date range -- Select a start and end date
• Actor -- Filter by the team member who performed the action
• Event type -- Filter by category or specific event
• Resource -- Filter by the demo, integration, or team member affected

Export

Export audit logs for compliance reporting:

1. Apply your desired filters.
2. Click Export.
3. Choose JSON or CSV format.

Exports include all event metadata: timestamp, actor, action, resource, IP address, and user agent.

Retention policy

Events older than your retention period are automatically purged and cannot be recovered.

Compliance use cases

Audit logs support common compliance requirements:

• SOC 2 -- Demonstrate access controls and change management
• GDPR -- Track data access and deletion events
• HIPAA -- Monitor who accessed what and when
• Internal audits -- Review team activity for security investigations

Note: Audit logs are available on Pro plans and above. Enterprise plans include unlimited retention and SIEM forwarding via webhook.