I know the GraphQL API can be used to retrieve events on products and more, but I would like to know if it can also be used to retrieve events about who logged-in, if there were failed attempts etc…
This would be really useful from an audit perspective to monitor anomalous logins, impossible travel scenarios, credential stuffing, brute forcing and more.
Yeah that’s the one I’m already aware of, but it does not look like it will fulfill all my needs.
Do you happen to know if Shopify plan on making audit logs available through an API of some sort in the future ? This would definitely be useful for SIEM and SOC integration.