Audit Logs

Audit logs are an essential component of any system that stores sensitive data. They help in monitoring user activity, recording actions such as login attempts, changing user accounts, updating records, any message added to the record, notification pushed to the record, request sent and accessing sensitive data. This document provides an overview of audit logs, their importance, and best practices for their implementation.

The basic events logging available in Odoo are:

• Login attempts: Recording successful and failed login which helps in monitoring user access to the system.

• Changes to user accounts: Tracking the changes made to user accounts which helps in maintaining the integrity of user profiles and detecting unauthorized modifications.

• Access to sensitive data: Recording access to sensitive data which ensures that only authorized users can access confidential information.

Advanced audit logging

WORK IN PROGRESS

System needs to log all events of importance for auditing purposes. These logs should be available for a long period of time (as per policy) and it should be possible to retrieve them on demand.

• Level 1 : Basic timestamp, user on created and last updated (P1)

• Level 2 : Detailed logging of each and every action

Design

It is proposed that MOSIP's Auditmanager service is used for auditin