Deploy the application
Set up the Workspace File Audit App to query and export audit data. The app is available from the Domino GitHub repository and requires the Domino Standard Environment (DSE).-
Go to Projects > New Project, then select Import from Git and enter the repository URL:
- Complete the project creation and open the project.
- Go to Deployments > Apps & Agents > Publish > App.
-
Configure the deployment:
- Name and Description (example: “Workspace File Audit Query Tool”).
-
App file:
start.sh - Environment: Latest DSE
- Hardware Tier: Select based on your organization’s tier names and resource needs
- Select Enable deep linking and query parameters then click Publish.
- Wait for the app status to show Running, then select Open.
Filter and view events
Filter audit events by date range, event type, user, project, or file path.
- In the Workspace File Audit App, select a Date Range (recommended: 90 days or less; maximum: 1 year).
- Select filters for Event, Username, Project Name, or File path.
- Select Submit.
- Events Over Time chart: Total event counts across your timeframe
- Events Details table: Individual events with timestamp, user, event type, and file path
Export events
Export system events from the UI or API for compliance reporting, security investigations, or long-term archival.- Filter events to the desired results.
- Select Download Parquet or Download CSV.
- Save the file locally.
Access events via API
Use the Workspace File Audit Trail API: to programmatically access Workspace File Access events:- Authenticate with standard Domino API credentials
- Filter by time range, user, event type, or resource
- Export data for external reporting or archival
Access events in object storage
Domino stores processed events as Parquet files. Query them directly with cloud tools or analytics engines like DuckDB. Domino Cloud and DCLSDomino stores audit events in Domino-hosted object storage within a single-tenant, fully managed environment. Domino manages storage infrastructure and access controls. Request credentials from Domino for authorized access.
Customize the Workspace File Audit App
Clone the official repository to create a custom version for your organization. This lets you extend functionality, apply internal branding, or control rollout timing.- Clone the repository to your organization’s Git account.
- Create a Git-based project in Domino pointing to your cloned repository.
- Deploy your custom version.
Next steps
- Workspace File Access events: How Domino captures file-level operations in workspaces
- Monitoring and alerting: Set up Grafana alerts for audit pipeline failures
- Workspace File Audit Trail API: Query and export workspace file access events