2021-01-12 22:32:07 +00:00
---
title: Events
---
Events are authentik's built-in logging system. Whenever any of the following actions occur, an event is created:
2022-05-09 19:22:41 +00:00
- A user logs in/logs out (including the source, if available)
- A user fails to login
- A user sets their password
2021-01-12 22:32:07 +00:00
2022-05-09 19:22:41 +00:00
- A user views a token
2021-01-12 22:32:07 +00:00
2022-05-09 19:22:41 +00:00
- An invitation is used
2021-01-12 22:32:07 +00:00
2022-05-09 19:22:41 +00:00
- A user object is written to during a flow
2021-01-12 22:32:07 +00:00
2022-05-09 19:22:41 +00:00
- A user authorizes an application
- A user links a source to their account
2021-01-12 22:32:07 +00:00
2022-05-09 19:22:41 +00:00
- A user starts/ends impersonation, including the user that was impersonated
2021-01-12 22:32:07 +00:00
2022-05-09 19:22:41 +00:00
- A policy is executed (when a policy has "Execution Logging" enabled)
- A policy or property mapping causes an exception
2021-01-12 22:32:07 +00:00
2022-05-09 19:22:41 +00:00
- A configuration error occurs, for example during the authorization of an application
2021-01-12 22:32:07 +00:00
2022-05-09 19:22:41 +00:00
- Any objects is created/updated/deleted
2021-01-12 22:32:07 +00:00
2022-05-09 19:22:41 +00:00
- An update is available
2021-01-12 22:32:07 +00:00
Certain information is stripped from events, to ensure no passwords or other credentials are saved in the log.
If you want to forward these events to another application, simply forward the log output of all authentik containers. Every event creation is logged there.
