Advanced Logging with Event Log - HL Vanilla Community
<main> <article class="userContent"> <p>Your <strong>Higher Logic Vanilla</strong> (<strong>Vanilla</strong>) community has additional <em>event logging</em> for auditing purposes.</p><p>📝 <strong>NOTE</strong>: Event logging is available only with our <em>Corporate</em>, <em>Enterprise</em>, and <em>Enterprise Plus</em> plans and is <em>not enabled by default</em>.</p><h2 data-id="event-logs-page">Event Logs page</h2><p>The event activity described in this article is available on the <strong>Event Logs</strong> page in the Dashboard (<strong>Settings > Technical > Event Log</strong>).</p><div class="embedExternal embedImage display-large float-none"> <div class="embedExternal-content"> <a class="embedImage-link" href="https://us.v-cdn.net/6030677/uploads/DU56CSLBD27E/event-logs-page.png" rel="nofollow noreferrer noopener ugc" target="_blank"> <img class="embedImage-img" src="https://us.v-cdn.net/6030677/uploads/DU56CSLBD27E/event-logs-page.png" alt="Event Logs page.png" height="428" width="1021" loading="lazy" data-display-size="large" data-float="none"></img></a> </div> </div> <p>The list of events can be filtered by <em>date range</em>, <em>event name</em>, and <em>severity</em>, and sorted chronologically.</p><ul><li>Click <strong>Filter</strong> to apply your filter to the list.</li><li>Click <strong>Reset</strong> to restore the original, full list of events.</li></ul><h2 data-id="authentication-permissions">Authentication & Permissions</h2><ul><li><strong>signin_failure</strong> - a failure to authenticate a user during sign-in.</li><li><strong>password_reset_request</strong> - a user has requested a password reset.</li><li><strong>password_reset_failure</strong> - the password reset request failed to send or the password reset form does not pass validation.</li><li><strong>password_reset</strong> - password has been changed in response to a reset request.</li><li><strong>password_change</strong> - user password has been successfully changed.</li><li><strong>password_change_failure</strong> - user failed to change their password.</li><li><strong>session_start</strong> - user authenticated.</li><li><strong>session_end</strong> - user signed-out.</li><li><strong>security_denied</strong> - user denied access because they lack the relevant permission(s).</li><li><strong>csrf_failure</strong> - user attempted a request that may have been triggered by a CSRF attack.</li></ul><h2 data-id="privileged-actions">Privileged Actions</h2><ul><li><strong>theme_changed</strong> - a new site theme has been set.</li><li><strong>addon_enabled</strong> - an addon has been enabled.</li><li><strong>addon_disabled</strong> - an addon has been disabled.</li><li><strong>role_add</strong> - a user has been granted a new role.</li><li><strong>role_remove</strong> - a role has been revoked from a user.</li><li><strong>security_access</strong> - a user has accessed a path open only to admins or moderators.</li><li><strong>security_denied</strong> - a user was denied access to a path.</li></ul><h2 data-id="requests-and-responses">Requests and Responses</h2><ul><li><strong>http_request</strong> - an HTTP request has been sent from the application.</li><li><strong>http_response</strong> - an HTTP response has been received from a request made by the application.</li><li><strong>http_response_error</strong> - an error was encountered in response to an HTTP request sent from the application.</li></ul><h2 data-id="developers">Developers</h2><p>Some messages may convey no useful information to an end user, and are sent to aid in software development and troubleshooting. These events can generally be ignored.</p><ul><li><strong>analytics_menu</strong> - generated by the Advanced Analytics addon.</li><li><strong>jsconnect_success</strong> - jsconnect data passed validation.</li><li><strong>jsconnect_error</strong> - a failure to authenticate a jsconnect request (for a variety of possible reasons).</li><li><strong>sso_logging</strong> - information about OAuth2 SSO events</li><li><strong>jwt_logging</strong> - JSON Web Token events.</li><li><strong>saml_authrequest_sent</strong> - the SAML request sent to IDP.</li><li><strong>saml_response_received</strong> - the SAML response from IDP.</li><li><strong>saml_response_invalid</strong> - information about errors in the SAML response.</li><li><strong>saml_profile</strong> - the user information extracted from the SAML response.</li></ul><h2 data-id="severities">Severities</h2><ul><li><strong>Emergency </strong>- system is unusable.</li><li><strong>Alert</strong> - action must be taken immediately.</li><li><strong>Error</strong> - errors not requiring immediate attention.</li><li><strong>Warning</strong> - exceptional occurrences not otherwise defined as errors.</li><li><strong>Notice</strong> - normal but significant condition.</li><li><strong>Informational</strong> - interesting events.</li><li><strong>Debug</strong> - debug-level messages.</li></ul><h2 data-id="json-and-xml">JSON and XML</h2><p>You can generate JSON and XML versions of the Event Logs page.</p><ol><li>Scroll to the shaded section at the bottom of the page, as shown below.</li><li>Click one of the options to open the report (or right-click to open in a new window or tab).</li></ol><div class="embedExternal embedImage display-large float-none"> <div class="embedExternal-content"> <a class="embedImage-link" href="https://us.v-cdn.net/6030677/uploads/BZJYE2RMQD8Y/json-xml-options.png" rel="nofollow noreferrer noopener ugc" target="_blank"> <img class="embedImage-img" src="https://us.v-cdn.net/6030677/uploads/BZJYE2RMQD8Y/json-xml-options.png" alt="JSON_XML options.png" height="113" width="587" loading="lazy" data-display-size="large" data-float="none"></img></a> </div> </div> <p><br></p> </article> </main>