Operations

System Logs

Backend and platform log sources feeding the operations view.

Log sources

Auth events
Sign-in, sign-out and token issuance from auth.cargo.ac.
Streaming
Admin actions
Mutations on this console captured in audit_log.
Streaming
Server function logs
Runtime output from TanStack server functions.
On demand
Spoke events
Telemetry forwarded by registered applications.
Phase telemetry

Hardening status

RLS default-deny
Every identity table enforces row-level security.
Enforced
Service role server-only
Service key confined to *.server.ts modules.
Enforced
Audit logging
Administrative mutations recorded immutably.
Active
Leaked-password (HIBP)
Breach screening on the auth project.
Review
Admin MFA
Multi-factor enforcement for admin roles.
Recommended

Live server logs are available through the platform's log surface; this page summarizes sources and the standing hardening posture from the plan.