Audit Log

The Audit Log records every administrative action taken across your organisation: members added, schedules edited, devices deleted, subscriptions changed, and more. It exists so you have a clear who-did-what-when trail when something looks off, and it’s the system of record for compliance reviews.

Getting there

Click Audit Log in the left sidebar (history icon). The page is only visible to users with the ADMIN role.

What you’ll see

The page header reads Activity Log with the subtitle Detailed log of all actions and events. Below it is a grid of every audit entry for your organisation, sorted from newest to oldest. Each row has five columns:

• User: avatar, name, and email of the admin who performed the action. “System Action” appears when the change came from an automated job (e.g. the nightly holiday import).
• Entity: the category of thing that changed (Users, Devices, Shifts, Organisations, etc.) with a matching icon.
• Operation: a colour-coded badge:
  • Green: CREATE actions
  • Amber: UPDATE actions
  • Red: DELETE and RESET actions
  • Grey: anything else
• Details: a truncated monospace preview of the JSON new-values payload, with a small icon button to expand the full record.
• Timestamp: the exact date/time plus a “X minutes ago” caption.

Common tasks

See exactly what changed in a record

Click the small expand icon (or the truncated text) in the Details column. A dialog opens with:

• Old Values (when present): the JSON state before the change.
• New Values: the JSON state after the change, plus a BY: <username> badge.

Both payloads are pretty-printed monospace. UUID values are replaced with -- to keep the display readable.

Find every change to one entity type

Scan the Entity column for the icon (user, tablet for devices, calendar for shifts, building for organisations). The grid doesn’t currently have a filter UI. Sort or search via your browser’s find-in-page for a specific name or email.

Confirm a destructive action really happened

Look for the red badge in the Operation column. Click the row’s expand icon to see the deleted record’s old values.

What gets logged

TimePally writes an audit entry on every CREATE, UPDATE, and DELETE against core entities, including:

• Members (user profiles): add, edit, soft-delete, hard-delete, face reset
• Devices: register, set master, reactivate, delete
• Locations: add, rename, delete
• Schedules and shifts: add, edit, delete, pattern/override changes
• Time-off types, leave records, holidays
• Configurations: attendance rules, report schedule changes, webhook config
• Subscription lifecycle: purchases, upgrades, downgrades, cancellations
• Administrators: invites, email updates, deletions

Service-level CRUD operations write to the log automatically. You don’t need to do anything to “turn on” auditing.

Tips

• The System Action label in the User column means no human did this: it’s typically the scheduled holiday import or a Paystack callback firing.
• UUIDs in the Details payloads are scrubbed to -- on display so you can’t accidentally leak internal identifiers; they remain intact in the underlying database.
• For the very latest events, refresh the page (browser reload): the grid doesn’t auto-poll.

Related

• Members: most write operations here generate audit entries
• Administrators: who shows up as the “User” on each row
• Configurations: settings changes appear here
• Subscription: billing and plan changes are audited