Audit Log
The account audit log records every user-initiated action that affects your account's configuration or security. Use it to review recent changes, detect unexpected activity, or satisfy compliance requirements.
Viewing the audit log
- Go to Settings → Audit Log (
/app/settings/account/audit-log). - The page lists the most recent entries in reverse chronological order — newest first.
Each entry shows:
| Field | Description |
|---|---|
| Timestamp | When the action occurred (UTC). |
| Action | A human-readable description of what happened. |
| Details | Key identifiers related to the action (e.g. webhook name). |
| IP address | The client IP from which the action was made. |
Audited actions
The following actions are recorded:
| Action | Trigger |
|---|---|
| Password changed | Changing your password via UI or API. |
| Account deleted | Initiating account deletion. |
| Two-factor auth enabled | Successfully enabling TOTP 2FA. |
| Two-factor auth disabled | Disabling TOTP 2FA. |
| Backup codes regenerated | Regenerating 2FA backup codes. |
| API token created | Creating a new API token. |
| API token revoked | Revoking (deleting) an API token. |
| Webhook created | Creating a new webhook. |
| Webhook updated | Updating webhook settings, activating, or deactivating. |
| Webhook deleted | Deleting a webhook. |
| Webhook secret rotated | Rotating the webhook signing secret. |
| Domain claimed | Adding a custom domain. |
| Domain verified | Completing DNS verification for a domain. |
| Domain deleted | Removing a custom domain. |
| SMTP policy created | Creating an SMTP security policy. |
| SMTP policy updated | Updating an SMTP security policy. |
| SMTP policy deleted | Deleting an SMTP security policy. |
Retrieving audit logs via the API
The audit log is also available through the REST API:
GET /api/v1/accounts/me/audit-log
Accepts an optional limit query parameter (1–200, default 50).
curl -H "Authorization: Bearer $TOKEN" \
"https://your-conduit.example.com/api/v1/accounts/me/audit-log?limit=100"
Each entry in the response has the shape:
{
"id": "al_01HX...",
"action": "webhook.created",
"metadata": { "id": "wh_01HX...", "name": "My Webhook" },
"ip": "203.0.113.42",
"created_at": "2025-01-15T10:30:00Z"
}
See Using the API for authentication details.
Retention
Audit log entries are retained for 180 days and then automatically deleted. See the Privacy Policy for details on what data is stored and for how long.