[{"data":1,"prerenderedAt":408},["ShallowReactive",2],{"content-\u002Fchangelog\u002F2026-04-24-audit-logs":3},{"id":4,"title":5,"author":6,"beta":7,"body":8,"categories":6,"category":384,"categoryType":385,"date":386,"description":387,"extension":388,"isBlog":7,"isChangelog":389,"meta":390,"navigation":389,"path":403,"rawbody":404,"seo":405,"stem":406,"thumbnail":6,"__hash__":407},"content\u002Fchangelog\u002F2026-04-24-audit-logs.md","Audit Logs",null,false,{"type":9,"value":10,"toc":375},"minimark",[11,15,25,28,33,59,63,66,168,172,175,320,324,330,333,337,340,350,361,365],[12,13,5],"h1",{"id":14},"audit-logs",[16,17,18],"blockquote",{},[19,20,21],"p",{},[22,23,24],"em",{},"Published on April 24, 2026.",[19,26,27],{},"You can now see a history of actions that happen inside your instance, who did it, how, and from where.",[29,30,32],"h2",{"id":31},"tldr","TL;DR",[34,35,36,40,47,50,53,56],"ul",{},[37,38,39],"li",{},"Audit trail for actions on your instance",[37,41,42,43],{},"Dashboard UI under ",[44,45,46],"strong",{},"Settings → Audit logs",[37,48,49],{},"API endpoints for programmatic access",[37,51,52],{},"Tracks actor identity, passkey usage, IP address, country, user agent, and metadata",[37,54,55],{},"Distinguishes between dashboard (user) and API key actions",[37,57,58],{},"Filterable by feature, operation, actor type, user ID, API key ID, and entity ID",[29,60,62],{"id":61},"whats-logged","What's logged",[19,64,65],{},"Create, update, and delete operations across the platform are recorded:",[34,67,68,74,80,85,91,97,103,108,113,119,124,129,134,140,146,151,157,163],{},[37,69,70,73],{},[44,71,72],{},"Customers"," - create, update, delete",[37,75,76,79],{},[44,77,78],{},"Bank accounts"," - create, delete",[37,81,82,79],{},[44,83,84],{},"Blockchain wallets",[37,86,87,90],{},[44,88,89],{},"Blockchain operations"," - asset trustlines, USDB minting, Solana delegation",[37,92,93,96],{},[44,94,95],{},"Offramp wallets"," - create",[37,98,99,102],{},[44,100,101],{},"Virtual accounts"," - create, update",[37,104,105,79],{},[44,106,107],{},"Wallets",[37,109,110,96],{},[44,111,112],{},"Payins",[37,114,115,118],{},[44,116,117],{},"Payouts"," - create, update (document submission)",[37,120,121,96],{},[44,122,123],{},"Transfers",[37,125,126,96],{},[44,127,128],{},"Customer limit increases",[37,130,131,79],{},[44,132,133],{},"API keys",[37,135,136,139],{},[44,137,138],{},"Team members"," - update role, remove",[37,141,142,145],{},[44,143,144],{},"Invites"," - create, accept, delete",[37,147,148,79],{},[44,149,150],{},"Partner fees",[37,152,153,156],{},[44,154,155],{},"Billing"," - update details, pay invoice, collect fees, portal session",[37,158,159,162],{},[44,160,161],{},"Onboarding"," - every step from business details to completion",[37,164,165,79],{},[44,166,167],{},"Webhook endpoints",[29,169,171],{"id":170},"what-each-log-captures","What each log captures",[19,173,174],{},"Every audit log entry includes:",[176,177,178,191],"table",{},[179,180,181],"thead",{},[182,183,184,188],"tr",{},[185,186,187],"th",{},"Field",[185,189,190],{},"Description",[192,193,194,205,223,233,251,270,280,290,300,310],"tbody",{},[182,195,196,202],{},[197,198,199],"td",{},[44,200,201],{},"Actor",[197,203,204],{},"The user or API key that performed the action",[182,206,207,212],{},[197,208,209],{},[44,210,211],{},"Actor type",[197,213,214,218,219,222],{},[215,216,217],"code",{},"user"," (dashboard) or ",[215,220,221],{},"api_key"," (programmatic)",[182,224,225,230],{},[197,226,227],{},[44,228,229],{},"Passkey",[197,231,232],{},"Whether the action was verified with a passkey",[182,234,235,240],{},[197,236,237],{},[44,238,239],{},"Feature",[197,241,242,243,246,247,250],{},"The area of the platform (e.g. ",[215,244,245],{},"bank_account",", ",[215,248,249],{},"payout",")",[182,252,253,258],{},[197,254,255],{},[44,256,257],{},"Operation",[197,259,260,246,263,266,267],{},[215,261,262],{},"create",[215,264,265],{},"update",", or ",[215,268,269],{},"delete",[182,271,272,277],{},[197,273,274],{},[44,275,276],{},"Entity",[197,278,279],{},"The type and ID of the affected resource",[182,281,282,287],{},[197,283,284],{},[44,285,286],{},"IP address",[197,288,289],{},"Origin IP of the request",[182,291,292,297],{},[197,293,294],{},[44,295,296],{},"Country",[197,298,299],{},"Country derived from the request",[182,301,302,307],{},[197,303,304],{},[44,305,306],{},"User agent",[197,308,309],{},"Browser or SDK making the request",[182,311,312,317],{},[197,313,314],{},[44,315,316],{},"Metadata",[197,318,319],{},"Additional context specific to the action",[29,321,323],{"id":322},"dashboard","Dashboard",[19,325,326,327,329],{},"Navigate to ",[44,328,46],{}," to browse your instance's activity. Click any entry to open the detail pane with the full breakdown: actor info, request metadata, and action-specific context.",[19,331,332],{},"Use the filters to narrow down by feature, operation, actor type, user ID, API key ID, or entity ID.",[29,334,336],{"id":335},"api","API",[19,338,339],{},"Two new endpoints are available:",[341,342,347],"pre",{"className":343,"code":345,"language":346},[344],"language-text","GET \u002Fv1\u002Finstances\u002F{instance_id}\u002Faudit-logs\nGET \u002Fv1\u002Finstances\u002F{instance_id}\u002Faudit-logs\u002F{id}\n","text",[215,348,345],{"__ignoreMap":349},"",[19,351,352,353,356,357,360],{},"The list endpoint returns a paginated list of audit logs for your instance. It supports cursor-based pagination and the same filters available in the dashboard, plus date range filtering with ",[215,354,355],{},"start_date"," and ",[215,358,359],{},"end_date",". The detail endpoint returns a single audit log entry by ID.",[29,362,364],{"id":363},"permissions","Permissions",[19,366,367,368,356,371,374],{},"Only ",[44,369,370],{},"owner",[44,372,373],{},"admin"," roles can view audit logs.",{"title":349,"searchDepth":376,"depth":376,"links":377},2,[378,379,380,381,382,383],{"id":31,"depth":376,"text":32},{"id":61,"depth":376,"text":62},{"id":170,"depth":376,"text":171},{"id":322,"depth":376,"text":323},{"id":335,"depth":376,"text":336},{"id":363,"depth":376,"text":364},"New Feature","feature","2026-04-24","Track actions across your instance with audit logs. See who did what, when, from where, and whether a passkey was used, from the dashboard or the API.","md",true,{"excerpt":391},{"type":9,"value":392},[393,395,401],[12,394,5],{"id":14},[16,396,397],{},[19,398,399],{},[22,400,24],{},[19,402,27],{},"\u002Fchangelog\u002F2026-04-24-audit-logs","---\ntitle: Audit Logs\ndescription: Track actions across your instance with audit logs. See who did what, when, from where, and whether a passkey was used, from the dashboard or the API.\ndate: 2026-04-24\ncategory: New Feature\ncategoryType: feature\nisChangelog: true\n---\n\n# Audit Logs\n\n> _Published on April 24, 2026._\n\nYou can now see a history of actions that happen inside your instance, who did it, how, and from where.\n\n\u003C!--more-->\n\n## TL;DR\n\n- Audit trail for actions on your instance\n- Dashboard UI under **Settings → Audit logs**\n- API endpoints for programmatic access\n- Tracks actor identity, passkey usage, IP address, country, user agent, and metadata\n- Distinguishes between dashboard (user) and API key actions\n- Filterable by feature, operation, actor type, user ID, API key ID, and entity ID\n\n## What's logged\n\nCreate, update, and delete operations across the platform are recorded:\n\n- **Customers** - create, update, delete\n- **Bank accounts** - create, delete\n- **Blockchain wallets** - create, delete\n- **Blockchain operations** - asset trustlines, USDB minting, Solana delegation\n- **Offramp wallets** - create\n- **Virtual accounts** - create, update\n- **Wallets** - create, delete\n- **Payins** - create\n- **Payouts** - create, update (document submission)\n- **Transfers** - create\n- **Customer limit increases** - create\n- **API keys** - create, delete\n- **Team members** - update role, remove\n- **Invites** - create, accept, delete\n- **Partner fees** - create, delete\n- **Billing** - update details, pay invoice, collect fees, portal session\n- **Onboarding** - every step from business details to completion\n- **Webhook endpoints** - create, delete\n\n## What each log captures\n\nEvery audit log entry includes:\n\n| Field | Description |\n|-------|-------------|\n| **Actor** | The user or API key that performed the action |\n| **Actor type** | `user` (dashboard) or `api_key` (programmatic) |\n| **Passkey** | Whether the action was verified with a passkey |\n| **Feature** | The area of the platform (e.g. `bank_account`, `payout`) |\n| **Operation** | `create`, `update`, or `delete` |\n| **Entity** | The type and ID of the affected resource |\n| **IP address** | Origin IP of the request |\n| **Country** | Country derived from the request |\n| **User agent** | Browser or SDK making the request |\n| **Metadata** | Additional context specific to the action |\n\n## Dashboard\n\nNavigate to **Settings → Audit logs** to browse your instance's activity. Click any entry to open the detail pane with the full breakdown: actor info, request metadata, and action-specific context.\n\nUse the filters to narrow down by feature, operation, actor type, user ID, API key ID, or entity ID.\n\n## API\n\nTwo new endpoints are available:\n\n```\nGET \u002Fv1\u002Finstances\u002F{instance_id}\u002Faudit-logs\nGET \u002Fv1\u002Finstances\u002F{instance_id}\u002Faudit-logs\u002F{id}\n```\n\nThe list endpoint returns a paginated list of audit logs for your instance. It supports cursor-based pagination and the same filters available in the dashboard, plus date range filtering with `start_date` and `end_date`. The detail endpoint returns a single audit log entry by ID.\n\n## Permissions\n\nOnly **owner** and **admin** roles can view audit logs.\n",{"title":5,"description":387},"changelog\u002F2026-04-24-audit-logs","b_3zBJpkm2YOYJSCtXmqXLjgm7NkKUtEG0OgYTLGfHc",1777013179180]