Session Audit Logger
Component Detail
Infrastructure
low complexity
backend
0
Dependencies
0
Dependents
4
Entities
0
Integrations
Description
Infrastructure component that writes a structured audit log entry whenever an admin-initiated session revocation occurs, ensuring every forced sign-out is traceable in the organization's audit trail. Delegates to the shared Audit Log Service.
session-audit-logger
Sources & reasoning
Audit logging of revocations is an explicit requirement tied to GDPR compliance and the Global Admin time-bounded access model. Encapsulating it as a dedicated infrastructure component keeps the revocation service focused and makes the audit trail contract easy to test in isolation.
No source references — this artifact was included based on reasoning alone (see above).
Responsibilities
- Emit audit events for individual and bulk session revocations
- Include actor (admin ID), target (user ID, session IDs), tenant, and timestamp in each event
- Ensure Global Admin support-access revocations are also captured per tenant audit trail
Interfaces
logRevocation(event: SessionRevocationAuditEvent): void
logBulkRevocation(event: BulkRevocationAuditEvent): void
Related Data Entities (4)
Data entities managed by this component