[be] audit logs

[HyuOniichan]

Audit Logs

Audit logging is a practice where every user action (such as delete, restore, or modify) is recorded in a separate audit log collection or table. This is useful for:

Debugging: Identify why certain data was deleted or restored.
Accountability: Determine which user performed an action and when.
Regulatory Compliance: Some laws (e.g., HIPAA for healthcare) require records of data changes.
Example Audit Log Schema:

{
  _id: "log12345",
  action: "delete",          // Action type: delete, restore, etc.
  user_id: "user123",        // Who performed the action
  resource_id: "course123",  // The affected resource
  timestamp: "2024-12-13T10:00:00Z",
  metadata: {                // Additional details
    course_title: "Course Example"
  }
}

Audit Example in Practice:
When a course is soft-deleted, an audit log entry is created:

// On delete action:
await AuditLog.create({
  action: "delete",
  user_id: currentUser.id,
  resource_id: courseId,
  timestamp: new Date(),
  metadata: { course_title: "Course Example" },
});

(Explore this knowledge by chance when playing with ChatGpt 😃 )