Reading entries#
The Activity Log shows what has happened on your server, and you reach it from the Activity tab in the panel. Each row starts with a small avatar for the person who took the action, then their username, then the event name. When someone has no profile picture set, the avatar falls back to the first letter of their username instead. Below that sits the IP address the action came from and how long ago it happened. The newest events show first, and a count next to the Events heading tells you how many are on the page.
When an action has no user behind it, the entry shows System as the actor instead of a username. That is the panel's way of saying the action ran on its own, so do not read it as a real account. An API badge can also appear on the right of an entry, and it means the action was made with an API key rather than from the panel. See API credentials for where those keys come from.
The event name itself is a link. Click it and the list filters down to that one kind of event, which is a quick way to see every time the same thing happened. To match an action back to a person, check your users and permissions list.
Filtering and search#
Filters are hidden until you ask for them. Press the Filters button at the top of the page, or press Ctrl/Cmd+F, to open and close the filter panel. A small dot sits on the Filters button whenever a filter is active, so you can tell at a glance that the list is being narrowed.
The panel gives you three ways to cut down the list:
- Search matches against the event name, the IP address, the username, and the event's stored details, so a single term can find an action even when you only remember part of it.
- Event Type limits the list to one kind of action. The dropdown is built from the events on the page, so the choices change with what you are looking at.
- Time Range keeps only entries inside a window. The choices are the last hour, the last 24 hours, the last 7 days, the last 30 days, or all time.
When any of these are set, a Clear All Filters button appears so you can drop everything at once and go back to the full list. If a filter leaves nothing to show, the list reads No Matching Activity and offers buttons to clear or adjust the filters, so an empty result is easy to tell apart from a server that simply has no history yet.
Event metadata#
Some entries carry more detail than fits on one line, like the values that changed or the request that triggered the action. Those entries show a small code icon button on the right. Click it to open the Event Metadata dialog, which shows the details under a Formatted View heading and again under Raw JSON. The Copy JSON button copies the raw JSON to your clipboard and briefly reads Copied! so you know it worked.
Entries with only a little extra context skip the dialog and show their details inline at the end of the row instead, written as a short key: value summary, so not every entry has a button to open.
Exporting to CSV#
Press the Export button, or press Ctrl/Cmd+E, to download the events as a CSV file. The file is named server-activity-log-YYYY-MM-DD.csv with the current date, and it has one column each for the timestamp, the event, the actor, the IP address, and the event's properties. Actions with no user behind them are written as System in the actor column. The button is greyed out when there is nothing to export.
Paging through history#
Only one page of events loads at a time, with page controls at the bottom of the list. Step through the pages to reach older activity. Because search, filtering, and export all work on the page in front of you, move to the page that holds the events you want before you filter or export.