# Log Streaming It is possible to enable the streaming of workflow logs to an external endpoint. This means you could use a system such as Datadog, Sentry, Redshift, New Relic or Kibana in order to display statistics in a meaningful dashboard > **Info:** This feature is available with the following packages:- Team (as an optional add-on) > - Enterprise ## Introduction The workflow logs described in the previous page in this section are a powerful tool to enable seeing the context of current & past runs for a given workflow. This can be vital in providing key insights into the health of given workflows. It is also possible to enable the streaming of workflow logs information to an external endpoint. This means you could use a system such as Datadog, Sentry, Redshift, New Relic or Kibana in order to conduct further analysis and display statistics in a meaningful dashboard, as is offered by these services. This opens up all sorts of possibilities in terms of what you can do with filtering and visualizing your logs, to help identify patterns of success and failure, time taken and processing efficiency, across workflows and individual connectors (both third-party service and core/helpers), as illustrated by the following example dashboard: The following shows an example of a graphic dashboard you could render with filters of log data: ![datadog-example-graphs](https://tray.ai/documentation/images/platform/enterprise-core/logs-debugging/log-streaming/15656c55-16e73635_datadog-example-graphs.png) And the following shows an example Datadog dashboard with a basic list of events and specific columns: ![datadog-dashboard-1](https://tray.ai/documentation/images/platform/enterprise-core/logs-debugging/log-streaming/15656c55-d50578ad_datadog-dashboard-1.png) And an individual event: ![datadog2](https://tray.ai/documentation/images/platform/enterprise-core/logs-debugging/log-streaming/15656c55-2125ed27_datadog2.png) ## Log event types There are three main log event types in Tray: * [Execution](#the-execution-event-type) * [Step](#the-step-event-type) * [Audit](#the-audit-event-type) > **Info:** Data payloads are subject to change with subsequent releases ## The 'Execution' event type An **Execution** event gives the details on the status of a **workflow run**. A key piece of info here being `eventType` which can be: `created | started | retrying | failed | created_failed | manually_retried | successful | terminated` ### Execution payload format The execution log payload format is: ```json { "header": \{ "payloadSize": 773, "version": 1 \}, "logType": "execution_event", "eventType": "", "created": "", "executionCreated": "", "executionId": "", "workflowId": "", "organizationId": "", // fields present in case of error "errorMessage": "", "errorStepName": "", "errorStepTitle": "", "errorId": "", "errorType": "" } ``` ### Execution example payload And the following screenshot shows an example execution log payload: ![execution-payload-example](https://tray.ai/documentation/images/platform/enterprise-core/logs-debugging/log-streaming/15656c55-fb32960c_execution-payload-example.png) ### Execution payload format (including Solution Instances) For Enterprise package customers using the Embedded bundle to build integrations for multiple End Users, the Execution event (which gives details on the status of a workflow run) includes `solutionId`, `solutionInstanceId` and `sourceWorkflowId`: ```json { "header": \{ "payloadSize": 773, "version": 1 \}, "logType": "execution_event", "eventType": "", "created": "", "executionCreated": "", "executionId": "", "workflowId": "", "organizationId": "", // embedded only "solutionId": "", "solutionInstanceId": "", "sourceWorkflowId": "", // fields present in case of error "errorMessage": "", "errorStepName": "", "errorStepTitle": "", "errorId": "", "errorType": "" } ``` ## The 'Step' event type A **Step** event gives details about the status of a specific step in a workflow. A key piece of info here being `stepState` which can be `running | failure | success` It can be of **logType** 'input' or 'output' (as explained in the [Intro to Logs and Debugging](https://tray.ai/documentation/platform/troubleshooting/logs-and-debugging/)) ### Step payload format The standard step payload format is: ```json { "header": \{ "payloadSize": 773, "version": 1 \}, "logType": "", "created": "", "executionCreated": "", "executionId": "", "workflowId": "", "organizationId": "", "stepName": "", "stepState": "", "connectorName": "", "connectorVersion": "", "operation": "", "executionStepUuid": "", "correlationId": "", // if enabled "data": "", // fields present in case of error "errorMessage": "", "errorId": "", "errorType": "" } ``` ### Step payload example And the following screenshot shows an example step log **step\_input** payload: ![step-payload-example](https://tray.ai/documentation/images/platform/enterprise-core/logs-debugging/log-streaming/15656c55-aecd0af8_step-payload-example.png) And a **step\_output** payload: ![step-payload-exaple-output](https://tray.ai/documentation/images/platform/enterprise-core/logs-debugging/log-streaming/15656c55-f161ac5a_step-payload-exaple-output.png) ### Enhanced error alerting payloads Note that it is possible to turn on enhanced payloads for your error handling workflows. This will mean that payloads coming through to your workflows using the [Alerting Trigger](https://tray.ai/documentation/connectors/triggers/alerting-trigger) will contain more detailed information on workflow errors, as they will have parsed the information directly from the third-party service which returned the error. Please see our [Error Handling documentation](https://tray.ai/documentation/platform/troubleshooting/error-handling/#the-stop-workflow-default-option) for full details. ## The 'Audit' event type Audit events inside of Tray are a powerful tool to be able to see the user and system generated actions performed on Workflows, Users and Authentications. Context given from these events can be vital to providing key insights into the usage of the Tray platform and also to provide a historical trail of user or system actioned events that took place in the Tray platform. This allows customers to run their own real time analysis using the tooling of their choice and also have a copy of the logs for batch analysis later and also monitor the usage of the platform for auditing purposes. ### Audit payload format Each audit event has slightly different details, but the following is a sample format. ```json { "eventType": "string", "details": \{"stepName": "string", "workflowId": ""\}, "organizationId": "", "timestamp": "", "impersonatedBy": \{"userId": "string", "email": "string"\}, "calledBy": \{"userId": "string", "email": "string"\} } ``` ### Audit payload example And the following screenshot shows an example audit log payload: ![audit-payload-example](https://tray.ai/documentation/images/platform/enterprise-core/logs-debugging/log-streaming/15656c55-ae4c54d9_audit-payload-example.png) Please see the appendix below for a table which gives a list of all the Audit events available. ### Audit payload example (including Solution Instances) For Enterprise customers with the Embedded bundle, there are several Embedded-specific Audit event types. These are `solutionInstanceWorkflowCreated`, `solutionInstanceWorkflowUpdated` and `solutionInstanceWorkflowDeleted` The following screenshot shows an example log for `solutionInstanceWorkflowCreated`: ![instance-created-datadog](https://tray.ai/documentation/images/platform/enterprise-core/logs-debugging/log-streaming/5wVPQN0FJ7Z1NNYlxpfx9f_instance-created-datadog.png) ## Saving filters in your dashboard The external service you are streaming your logs to will likely have the ability to filter data according to your needs. There are obviously huge possibilities in terms of what filtering can be done. But some ways in which you might wish to filter are: * By **connectorName** so you can have a dashboard which shows all information on how Salesforce connectors are running across all your workflows * By **stepState = retrying** to get a view on all **step** events which are currently retrying * By **eventType = failed** to monitor failing workflows ## Setting up log streaming To enable log streaming, open a support ticket from the app and select **Log Streaming**. The relevant setup information will then be requested. Once set up you can validate that your service is receiving the correct log types. > **Info:** For whitelisting purposes, Tray will be sending logs from the following IPs:- **52.8.7.130** > - **18.144.153.142** ## Questions & Feedback In order to improve this feature, we'd like to hear from your experience in using Logs Streaming. To do so, navigate to the "Product Feedback" section of your Tray dashboard and mention **'Logs Streaming'** in your message. ## Appendix - Table of Audit log event types | Category | Name | | ----------------------- | --------------------------------- | | Authentication | AuthenticationCreated | | Authentication | AuthenticationUpdated | | Authentication | AuthenticationDeleted | | Authentication | AuthenticationRefreshFailed | | Authentication | AuthenticationRefreshSuccessful | | Authentication | AuthenticationCreationFailed | | Authentication | AuthenticationSharingChanged | | Authentication | AuthenticationUsed | | Authentication/Workflow | ServiceChanged | | Authentication/Workflow | ServiceCreated | | Organization | OrganizationUserInvited | | Organization | OrganizationDetailsUpdated | | Organization | OrganizationSettingsUpdated | | User | UserInternalRoleChanged | | User | 2FALoginFailed | | User | 2FADisabled | | User | 2FAEnabled | | User | UserLoginSucceeded | | User | UserLoginFailed | | User | UserDeleted | | User | UserOrganizationRoleChanged | | Workflow | WorkflowUpdated | | Workflow | WorkflowCreated | | Workflow | WorkflowDeleted | | Workflow | WorkflowViewed | | Workflow | WorkflowTagsUpdated | | Workflow | WorkflowDisabled | | Workflow | WorkflowStepTitleUpdated | | Workflow | WorkflowStepSettingsUpdated | | Workflow | WorkflowStepOperationUpdated | | Workflow | WorkflowStepAuthenticationSet | | Workflow | WorkflowAlertingWorkflowSet | | Workflow | WorkflowStepMoved | | Workflow | WorkflowStepDescriptionRemoved | | Workflow | WorkflowDescriptionRemoved | | Workflow | WorkflowStepDeleted | | Workflow | WorkflowVersionRolledBack | | Workflow | WorkflowEnabled | | Workflow | WorkflowStepCreated | | Workflow | WorkflowStepAuthenticationRemoved | | Workflow | WorkflowStepDescriptionSet | | Workflow | WorkflowCloned | | Workflow | WorkflowDescriptionSet | | Workflow | WorkflowAlertingWorkflowRemoved | | Workflow | WorkflowNameUpdated | | Workflow | WorkflowDebugLogViewed | | Workflow | WorkflowDetachedFromProject | | Solution Instance | solutionInstanceWorkflowCreated | | Solution Instance | solutionInstanceWorkflowUpdated | | Solution Instance | solutionInstanceWorkflowDeleted | | Agent Gateway | McpUserAccessGranted | | Agent Gateway | McpUserAccessRevoked | | Agent Gateway | McpServerNameUpdated | | Agent Gateway | McpServerEnabled | | Agent Gateway | McpServerDisabled | | Agent Gateway | McpConnectorConfigurationCreated | | Agent Gateway | McpConnectorConfigurationUpdated | | Agent Gateway | McpConnectorConfigurationDeleted | | Agent Gateway | McpWorkflowConfigurationCreated | | Agent Gateway | McpWorkflowConfigurationUpdated | | Agent Gateway | McpWorkflowConfigurationDeleted | | Agent Gateway | DynamicAuthCreated | | Agent Gateway | DynamicAuthRemoved |