Audit Logs

Concepts

Designs, folders, and assets Teams, groups, and users Canva Apps and Integrations

Actions reference

Apps Audit logs Brands Content Designs Exports Folders Groups Organizations Permissions and settings Teams Users Websites

Users

Create a user

An actor triggers this event when they create (or provision) a new Canva user, including when an individual creates a Canva user account by visiting a team invitation link.

The reason field contains the reason the user was created. For example, they accepted a team invitation or they were provisioned by a SCIM provider.

typestring

Default value: CREATE_USER

Available values: The only valid value is CREATE_USER.

display_namestring

Optional

The user's display name. This is used to represent the user with text in a UI.

first_namestring

Optional

The user's first name.

last_namestring

Optional

The user's last name.

emailstring

Optional

The user's email address.

email_verifiedboolean

Optional

Whether the user's email address has been verified.

phone_numberstring

Optional

The user's phone number.

country_codestring

Optional

The user's country code, shown on user's public profile page.

localestring

Optional

The supported locale for the user.

managing_entityManagingEntity

Optional

The entity that manages the user.

A managing entity that is a team.

typestring

Default value: TEAM

Available values: The only valid value is TEAM.

teamAuditLogTeam

A Canva team.

idstring

The team ID.

display_namestring

Optional

The display name of the team.

For privacy reasons, this field is redacted for brands outside of your organization. Rarely, it may be unavailable for technical reasons.

A managing entity that is an organization.

typestring

Default value: ORGANIZATION

Available values: The only valid value is ORGANIZATION.

organizationAuditLogOrganization

A Canva organization.

idstring

The organization ID.

display_namestring

Optional

The display name of the organization.

For privacy reasons, this field is redacted for organizations other than your organization. Rarely, it may be unavailable for technical reasons.

saml_accountsSamlAccount[]

Optional

SAML accounts for the user.

idp_issuerstring

A unique identifier for the SAML identity provider.

name_idstring

The unique identifier for the user, within the scope of idp_issuer. This value is often an email address.

oauth_accountsOauthAccount[]

Optional

OAuth accounts for the user.

platformstring

The OAuth platform.

external_user_idstring

The account ID for the user on the external platform.

totp_mfa_enabledboolean

Optional

Whether TOTP MFA (Time-based One-Time Password Multi-Factor Authentication) is enabled for the user.

sms_mfa_enabledboolean

Optional

Whether SMS MFA (SMS-based Multi-Factor Authentication) is enabled for the user.

reasonTeamMembershipChangeReason

Optional

The reason for the change.

An invitation to join team was accepted

typestring

Default value: INVITATION_ACCEPTED

Available values: The only valid value is INVITATION_ACCEPTED.

inviterAuditLogUser

Optional

A Canva user.

idstring

The user ID.

display_namestring

Optional

The display name of the user.

For privacy reasons, this field is redacted for users outside of your organization. Rarely, it may also be unavailable for technical reasons.

emailstring

Optional

The email address of the user.

For privacy reasons, this field is redacted for users outside of your organization. Rarely, it may also be unavailable for technical reasons.

The change was permitted by your Team discovery and settings⁠(opens in a new tab or window).

typestring

Default value: JOIN_POLICY_ALLOWED

Available values: The only valid value is JOIN_POLICY_ALLOWED.

A user request to join your team was approved.

typestring

Default value: REQUEST_TO_JOIN_APPROVED

Available values: The only valid value is REQUEST_TO_JOIN_APPROVED.

The change was made through your team's configured SCIM Identity Provider⁠(opens in a new tab or window).

typestring

Default value: SCIM

Available values: The only valid value is SCIM.

SAML Just-In-Time provisioning. This event can be triggered by events like a user linking their Canva account with your SSO provider⁠(opens in a new tab or window) or when you set up Single Sign-On (SSO)⁠(opens in a new tab or window) for your team.

typestring

Default value: SAML_JIT_PROVISIONING

Available values: The only valid value is SAML_JIT_PROVISIONING.

Example

{
  "id": ...,
  "timestamp": ...,
  "actor": ...,
  "target": ...,
  "action": {
    "type": "CREATE_USER",
    "display_name": "Jane Doe",
    "first_name": "Jane",
    "last_name": "Doe",
    "email": "[email protected]",
    "email_verified": true,
    "phone_number": 1234567890,
    "country_code": 65,
    "locale": "en-AU",
    "managing_entity": {
      "team": {
        "id": "BXeFatjDhdR",
        "display_name": "Acme Team"
      },
      "type": "TEAM"
    },
    "saml_accounts": [
      {
        "idp_issuer": "http://www.exampleidp.com/abcdefgh12345",
        "name_id": "[email protected]"
      }
    ],
    "oauth_accounts": [
      {
        "platform": "EXAMPLE_OAUTH_PLATFORM",
        "external_user_id": "3371C5F5-9577-444D-B788-8F4B2CC461A7"
      }
    ],
    "totp_mfa_enabled": true,
    "sms_mfa_enabled": true,
    "reason": {
      "type": "INVITATION_ACCEPTED",
      "inviter": {
        "id": "UXoqDbwwSbQ",
        "display_name": "Jane Doe",
        "email": "[email protected]"
      }
    }
  },
  "outcome": ...,
  "context": ...
}

JSON

Update a user's details

An actor triggers this event when they update a user's account details. This includes when a user updates their own account details.

We only log the user properties that the actor requested changes for. The changed fields are listed in the changed_fields array.

Some changed fields, such as PASSWORD, might be in the changed_fields array but won't have a property included in the log.

If the user was updated as part of the login process, the actor might be set to ANONYMOUS.

typestring

Default value: UPDATE_USER

Available values: The only valid value is UPDATE_USER.

changed_fieldsstring[]

Optional

Fields requested to be changed in this update.

Available values:

PASSWORD: The user's password.
DISPLAY_NAME: The user's display name.
FIRST_NAME: The user's first name.
LAST_NAME: The user's last name.
EMAIL: The user's email address.
EMAIL_VERIFIED: Whether the user's email address has been verified.
PHONE_NUMBER: The user's phone number.
CITY: The user's city.
COUNTRY_CODE: The user's country code.
LOCALE: The user's locale.
MANAGING_ENTITY: The entity that manages the user.
SAML_ACCOUNTS: SAML accounts.
OAUTH_ACCOUNTS: OAUTH accounts.
TOTP_MFA_ENABLED: Whether TOTP MFA (Time-based One-Time Password Multi-Factor Authentication) is enabled for the user.
SMS_MFA_ENABLED: Whether SMS MFA (SMS-based Multi-Factor Authentication) is enabled for the user.
PASSKEYS: The user's passkeys.

display_namestring

Optional

The user's display name. This is used to represent the user with text in a UI.

first_namestring

Optional

The user's first name.

last_namestring

Optional

The user's last name.

emailstring

Optional

The user's email address.

email_verifiedboolean

Optional

Whether the user's email address has been verified.

phone_numberstring

Optional

The user's phone number.

country_codestring

Optional

The user's country code, shown on user's public profile page.

localestring

Optional

The supported locale for the user.

managing_entityManagingEntity

Optional

The entity that manages the user.

A managing entity that is a team.

typestring

Default value: TEAM

Available values: The only valid value is TEAM.

teamAuditLogTeam

A Canva team.

idstring

The team ID.

display_namestring

Optional

The display name of the team.

For privacy reasons, this field is redacted for brands outside of your organization. Rarely, it may be unavailable for technical reasons.

A managing entity that is an organization.

typestring

Default value: ORGANIZATION

Available values: The only valid value is ORGANIZATION.

organizationAuditLogOrganization

A Canva organization.

idstring

The organization ID.

display_namestring

Optional

The display name of the organization.

For privacy reasons, this field is redacted for organizations other than your organization. Rarely, it may be unavailable for technical reasons.

saml_accountsSamlAccount[]

Optional

SAML accounts for the user.

idp_issuerstring

A unique identifier for the SAML identity provider.

name_idstring

The unique identifier for the user, within the scope of idp_issuer. This value is often an email address.

oauth_accountsOauthAccount[]

Optional

OAuth accounts for the user.

platformstring

The OAuth platform.

external_user_idstring

The account ID for the user on the external platform.

totp_mfa_enabledboolean

Optional

Whether TOTP MFA (Time-based One-Time Password Multi-Factor Authentication) is enabled for the user.

sms_mfa_enabledboolean

Optional

Whether SMS MFA (SMS-based Multi-Factor Authentication) is enabled for the user.

passkeysPasskey[]

Optional

Passkeys for the user.

idstring

The passkey ID.

reasonUpdateUserChangeReason

Optional

Why the user's details changed.

The user's password was reset and their identity was verified using a link in an email.

typestring

Default value: PASSWORD_RESET_WITH_LINK

Available values: The only valid value is PASSWORD_RESET_WITH_LINK.

emailstring

Optional

The email address used for verification when resetting the password.

The user's password was reset and their identity was verified using a code the user received via SMS.

typestring

Default value: PASSWORD_RESET_WITH_SMS_CODE

Available values: The only valid value is PASSWORD_RESET_WITH_SMS_CODE.

phone_numberstring

Optional

The phone number used for verification when resetting the password.

The user's password was reset and their identity was verified using an email code.

typestring

Default value: PASSWORD_RESET_WITH_EMAIL_CODE

Available values: The only valid value is PASSWORD_RESET_WITH_EMAIL_CODE.

emailstring

Optional

The email address used for verification when resetting the password.

Example

{
  "id": ...,
  "timestamp": ...,
  "actor": ...,
  "target": ...,
  "action": {
    "type": "UPDATE_USER",
    "changed_fields": [
      "PASSWORD",
      "DISPLAY_NAME",
      "FIRST_NAME",
      "LAST_NAME",
      "EMAIL",
      "EMAIL_VERIFIED",
      "PHONE_NUMBER",
      "CITY",
      "COUNTRY_CODE",
      "LOCALE",
      "MANAGING_ENTITY",
      "SAML_ACCOUNTS",
      "OAUTH_ACCOUNTS",
      "TOTP_MFA_ENABLED",
      "SMS_MFA_ENABLED",
      "PASSKEYS"
    ],
    "display_name": "Jane Doe",
    "first_name": "Jane",
    "last_name": "Doe",
    "email": "[email protected]",
    "email_verified": true,
    "phone_number": 1234567890,
    "country_code": 65,
    "locale": "en-AU",
    "managing_entity": {
      "team": {
        "id": "BXeFatjDhdR",
        "display_name": "Acme Team"
      },
      "type": "TEAM"
    },
    "saml_accounts": [
      {
        "idp_issuer": "http://www.exampleidp.com/abcdefgh12345",
        "name_id": "[email protected]"
      }
    ],
    "oauth_accounts": [
      {
        "platform": "EXAMPLE_OAUTH_PLATFORM",
        "external_user_id": "3371C5F5-9577-444D-B788-8F4B2CC461A7"
      }
    ],
    "totp_mfa_enabled": true,
    "sms_mfa_enabled": true,
    "passkeys": [
      {
        "id": "00320131-4957-4EBD-9569-FDED5F0A4F2D"
      }
    ],
    "reason": {
      "type": "PASSWORD_RESET_WITH_LINK",
      "email": "[email protected]"
    }
  },
  "outcome": ...,
  "context": ...
}

JSON

Delete a user

An actor triggers this event when they delete a user's account. This includes when a user deletes their own account.

typestring

Default value: DELETE_USER

Available values: The only valid value is DELETE_USER.

Example

{
  "id": ...,
  "timestamp": ...,
  "actor": ...,
  "target": ...,
  "action": {
    "type": "DELETE_USER"
  },
  "outcome": ...,
  "context": ...
}

JSON

Cancel the deletion of a user

An actor triggers this event when they cancel or undo the deletion of a user's account. This includes when a user cancels the deletion of their own account.

typestring

Default value: UNDELETE_USER

Available values: The only valid value is UNDELETE_USER.

Example

{
  "id": ...,
  "timestamp": ...,
  "actor": ...,
  "target": ...,
  "action": {
    "type": "UNDELETE_USER"
  },
  "outcome": ...,
  "context": ...
}

JSON

Create multi-factor authentication (MFA) backup codes

An actor triggers this event when they generate multi-factor authentication (MFA) backup codes for their account. For details on generating MFA backup codes, see Canva Help: Setting up Multi-Factor Authentication (MFA) — Generate backup codes⁠(opens in a new tab or window).

typestring

Default value: CREATE_MFA_BACKUP_CODES

Available values: The only valid value is CREATE_MFA_BACKUP_CODES.

Example

{
  "id": ...,
  "timestamp": ...,
  "actor": ...,
  "target": ...,
  "action": {
    "type": "CREATE_MFA_BACKUP_CODES"
  },
  "outcome": ...,
  "context": ...
}

JSON

Log in

An actor triggers this event when they log into Canva.

The actor will be USER if the login is successful. If the login is unsuccessful, the actor will be ANONYMOUS.

typestring

Default value: LOGIN

Available values: The only valid value is LOGIN.

login_typestring

Optional

The general type of user login being attempted.

Available values:

PASSWORD: User login with credentials, such as email address, user ID, phone number, and password.
ONE_TIME_PASSWORD: User login with a temporary code delivered to the user's email address or phone.
MULTI_FACTOR_AUTHENTICATION: User login with multi-factor authentication.
OAUTH: User login with a social account or other third-party provider.
SAML: User login with single sign-on for a specific email domain.
PASSKEY: User login with a passkey (such as a security key).
OTHER: Other types of user login.
LEARNING_TOOLS_INTEROPERABILITY: User login for education users from a Learning Management System.

oauth_platformstring

Optional

The OAuth platform used for login. Only set if the login_type is OAUTH.

Available values:

APPLE
ATLASSIAN
CLEVER
DROPBOX
FACEBOOK
GITHUB
GOOGLE
INSTAGRAM
KAKAO
LARK
LINE
LINKEDIN
MAILCHIMP
MICROSOFT
NAVER
PINTEREST
QQ
SLACK
TRELLO
TUMBLR
TURKEY_EDU
TWITTER
WECHAT
WEIBO
YAHOO_JAPAN

Example

{
  "id": ...,
  "timestamp": ...,
  "actor": ...,
  "target": ...,
  "action": {
    "type": "LOGIN",
    "login_type": "PASSWORD",
    "oauth_platform": "APPLE"
  },
  "outcome": ...,
  "context": ...
}

JSON

Log out

An actor triggers this event when they log out of Canva.

typestring

Default value: LOGOUT

Available values: The only valid value is LOGOUT.

all_usersboolean

Optional

Whether the actor has requested that all users on the device are logged out. If false, only the current user is logged out.

all_sessionsboolean

Optional

Whether the actor has requested that all sessions across all devices are logged out. If false, only the current session is logged out.

Example

{
  "id": ...,
  "timestamp": ...,
  "actor": ...,
  "target": ...,
  "action": {
    "type": "LOGOUT",
    "all_users": false,
    "all_sessions": true
  },
  "outcome": ...,
  "context": ...
}

JSON