Audit Log Detail
Clicking the arrow (›) at the end of any row on the Audit Logs page opens the Audit Log Entry panel. This panel gives you the full context of a single recorded event — who performed the action, when, against which resource, and what the outcome was.
Summary Tab
The Summary tab presents the event in a structured, human-readable layout. It is the default view when you open an entry.
| Field | Description |
|---|---|
| Event ID | A unique numeric identifier for this specific log entry. You can use this ID when referencing an event in a support request or internal incident report. |
| Category | The functional area the event belongs to, such as Backup, Auth, or Repository. This matches the category badge shown on the list page. |
| Action | The specific action that was recorded, such as Backup Failed or Logged In. |
| Actor | The user who performed the action. Displays a dash (—) when the event was triggered by the system or a scheduled process rather than a human user. |
| Description | A plain-language explanation of what happened, including the name of the affected resource — for example, the repository name for a backup event or the username for an auth event. |
| Timestamp | The exact UTC date and time the event was recorded, accompanied by a relative label such as 1 day ago. |
| Details | All additional context for the event. The fields present here vary depending on the event category and action type. |
Full JSON Tab
The Full JSON tab shows the complete raw record exactly as it is stored in GitSec's audit log system. This view is useful when you need to copy the full payload for programmatic processing, forward it to a SIEM tool, or inspect fields that are not surfaced individually in the Summary tab.