The Efecte administrator can enable a logging for data card views from the template editor:

Following actions will be logged, when “Log data card views” is enabled:

• Reading the list view
• Reading the list view in the Administration side
  o    Viewing the single data card
• Viewing the single data card in Administration side
  o    Exporting data cards to Excel file
• Logging of data card views of the template is enabled or disabled

Following actions are not logged:

• Tooltip quick view reference towards logged template’s data card
• Automatically opened references
• None of the graphical reports
• WebAPI queries or any kinds of integrations
• Any data output from in the Scheduled tasks side, like ReportExportTask
• Related searches (magnifying glass)
• Direct link to data card edit mode
• Exporting data cards to XML –file in the Administration side

Logging is started when a user views or edits the data card. Only one entry is logged, if the user repeatedly views the data card without leaving the page.

The log-file can be found from the Maintenance tab under: “Data card access log”

Format of the log file

This chapter includes technical information related to log-file contents.

Log’s format is following:

\w+\|INFO\|(\d{4})-(\d{2})-(\d{2}) (\d{2}):(\d{2}):(\d{2})\|\w+\|(\.|\d)+|\sType:\s(List view|Data card|Setting update|Configuration Export),\sTemplate:.+,\s(Entity|Entities|Value):(\s.+(\s\(id:\s\d+\))*;)+\n

Log4j pattern is following:

%c{1}|%p|{yyyy-MM-dd HH:mm:ss}|%X{ipaddress}|%X{userUid}| Type: %X{type}, Template: %X{template}, %m%n

Example output to the log-file of data card list view:

DataCardViewLogService|INFO|2017-08-28 15:22:00|10.1.3.100|user1| Type: List view, Template: Security Incident (191134) (code: security_incident), Entities: Brute force attack on user account (id: 200702); CRSF attack possibility in employee survey (id: 200724); Email phishing attempt (id: 200746);

Example output to log-file of single data card view:

DataCardViewLogService|INFO|2017-08-28 15:22:04|10.1.3.100|user1| Type: Data card, Template: Security Incident (191134) (code: security_incident), Entity: Brute force attack on user account (id: 200702);

The following content is in the log

• Type (list report or view mode of the data card)
• Timestamp
• User
• Accessing IP address (IP address might also come from the proxy or from the EIM-solution)
• Template
• Viewed data card name
• Data card ID (unique value)
• Information when setting is disabled on the template base