User Logs

When working with users you can see logs relating to the following events:

1. Logins
2. Failed Logins
3. Blocked Users
4. Active Sessions

Viewing Login logs

To view these logs, please keep in mind the log Login Logs must be enabled. This isn't available on all plans, please see your plan details to ensure its something available in your tier.

Once we've verified the log logins is enabled. navigate to Settings > User Settings and Login Logs.

Common Issues and Feedback with User and Record Logs

1. Missing Information in User Login Logs

If you notice that details like the browser, platform, screen width/height, and IP address are missing from the user login logs, ensure that the Log Host Information setting is enabled. You can do this by navigating to:

• Settings > User Settings
• Enable Log Host Information

This setting ensures that extra login details such as the browser, platform, screen dimensions, and IP address are captured. If this feature is unclear, consider adding a tooltip for clarity.

Viewing Active Sessions

Active sessions show you who is currently logged into your app in real-time. This feature allows you to monitor and manage user sessions actively, providing enhanced security and oversight.

Accessing Active Sessions

To view active sessions, navigate to Settings > User Settings and click on the Active Sessions tab. Note that this feature may not be available on all plans - please check your plan details to ensure it's included in your tier.

What Information is Displayed

The active sessions view displays the following information for each logged-in user:

• Session Start: When the user initially logged in
• Last Active: The most recent time the user was active in your app
• Email: The user's email address
• Name: The user's name
• Status: The current status of the session (Active, Terminated, etc.)
• Action: Available actions you can take on the session (such as forcing a logout)

Session Tracking Duration

Sessions are tracked for up to 13 hours from creation. After this time, sessions that haven't been marked as expired will no longer appear in the active sessions list. This helps keep the view focused on genuinely active users.

Actions You Can Take

From the active sessions view, you can perform the following actions:

• Force Logout: Click the "Logout" button next to any user to immediately terminate their session. This will force the user to log out of your app, which is useful in situations where:
  • You need to enforce password changes immediately
  • A user's account may have been compromised
  • You're performing maintenance and need to clear all active sessions
  • A user is having issues and needs to re-authenticate

Common Use Cases

Monitoring active sessions is valuable for several scenarios:

• Security Monitoring: Identify unauthorized access or unusual login patterns
• Session Management: Ensure users are logging out properly and not leaving sessions open indefinitely
• Troubleshooting: Help users who are experiencing issues by forcing them to re-authenticate
• Compliance: Track who has access to your app at any given time for audit purposes
• Capacity Planning: Monitor peak usage times and concurrent user counts

Active Sessions vs Login Logs

It's important to understand the difference between Active Sessions and Login Logs:

• Active Sessions show only users who currently have an active session (logged in within the last 13 hours and not logged out)
• Login Logs show historical login and logout events, including past sessions that are no longer active

Use Active Sessions to see who's logged in right now, and use Login Logs to review historical access patterns and troubleshoot past authentication issues.