Collect Audit / Login events

Hello !

I know the GraphQL API can be used to retrieve events on products and more, but I would like to know if it can also be used to retrieve events about who logged-in, if there were failed attempts etc…

This would be really useful from an audit perspective to monitor anomalous logins, impossible travel scenarios, credential stuffing, brute forcing and more.

Thanks in advance !

Hi Thalion,

There is an events query - but I don’t think it will get you info like what staff member logged in/ number of attempts, etc.

Hello Liam !

Yeah that’s the one I’m already aware of, but it does not look like it will fulfill all my needs.
Do you happen to know if Shopify plan on making audit logs available through an API of some sort in the future ? This would definitely be useful for SIEM and SOC integration.

Thanks !

Nothing to share right now Thalion - but I do expect to see developments in this area.

1 Like