Skip to content

The audit trail search (System Activity)

The audit trail search ("System Activity", /audit) is the admin-facing tool for exploring the full audit log — every recorded request, including plain page-views. Where the activity feed is a curated stream of meaningful changes, this is the raw log with charts, facet filters, and a per-entry drill-down.

Both read the same audit data (daily search indices of logged requests); this view just doesn't hide views or noise.

What it shows

  • A volume chart over the selected period (bucketed by minute, hour, or day depending on the range).
  • A results table of audit entries — who did what, to which entity, when, from which IP, and whether it errored.
  • Facets you can click to drill in: by action (audit title), by user, by company, by company type, and by log type (view / save / edit / delete).

Filtering

  • Date range — from/to, or a "recent" quick range.
  • Out of hours only and Errors only toggles.
  • Free-text search over actor, action, and entity name.
  • Clicking any facet value narrows the results to it.

The detail view

Opening an entry shows the actor (name, job title, company, avatar) and a type-specific rendering of what was audited — there are tailored detail panels per entity type (deals, companies, contacts, documents, rebates, spend/turnover, blog, branch, calendar, comment, site). So a "Download Agreement PDF" entry renders differently from a "Save Company" one, showing the relevant fields for that action.

Who can use it and what it exposes

The "System Activity" menu entry is not role-gated — any logged-in user sees it — and the search is scoped only by site, with no per-record permission filter. So it surfaces audit activity for all of the site's records, regardless of what the viewer can otherwise access.

Note that internal ebiz-role staff are not logged, so they don't appear in the results as actors.

Why does the search look incomplete or noisy

  • It includes page-views (unlike the activity feed) — filter by log type to focus on changes.
  • A staff member's actions are missingebiz-role users aren't logged.
  • Counts differ from the feed — the feed excludes views and some noise; this search doesn't.

What the audit search is not

  • Not the activity feed — that is the curated, change-focused stream (and the embeddable per-record panel).
  • Not the suspicious-activity monitor — that runs on the same data but is an automated flagging job configured in site settings.
  • Not a permission boundary — it shows site-wide audit data regardless of record permissions.