Luggage Marketplace · SCR-31

Admin Panel

📊Dashboard 👥User Management 🆔KYC Review 🏪Listing Mgmt 💳Booking & Payments 🆘Disputes 💰Financial Controls 📋Audit Logs ⚙️Platform Config

Audit Logs

Read-only · Append-only · Cannot be deleted · Used for compliance, fraud investigation, and dispute evidence · SRS §8.7

① Action Log

② Booking Lifecycle

③ Session Trace

Action Log — FR-77 · All actor types · Colour-coded by role

Timestamp

Session ID

Actor

Action Type

Entity

Details

Jun 2 10:01

SES-89ABC21

Admin #A-01

KYC_APPROVED

USR-00521

203.xx.xx

Host Rajesh Kumar KYC approved · Listing creation unlocked

Jun 2 09:47

SES-78DEF12

Admin #A-01

CONFIG_CHANGED

Platform

203.xx.xx

commission_platform_pct: 40 → 35

Jun 2 09:14

SES-67GHI45

Admin #A-01

USER_FLAGGED

USR-00482

203.xx.xx

Priya Mehta flagged — unusual booking pattern

Jun 7 18:15

SES-56JKL78

Host PM

CHECKIN_COMPLETED

LSM-A4B7

49.xx.xx

Drop-off verified · OTP matched · Status → Checked-in

Jun 4 15:21

SES-45MNO90

Guest RS

BOOKING_CREATED

LSM-A4B7

202.xx.xx

Booking LSM-2026-A4B7C9D2 created · ₹1,011 · 2 Regular + 1 Small

Jun 2 00:00

SES-SYSTEM

System

PAYOUT_INITIATED

PAY-2026-05

—

Monthly payout batch #PAY-2026-05 initiated · 28 hosts · ₹3,12,400

Append-only table · Admin cannot delete entries · SRS §8.7 FR-77; §7.11 FR-48

📅 Booking Lifecycle Tab — FR-78

Enter Booking ID to trace full lifecycle

CHECKOUT_COMPLETED · Jun 7, 6:22 PM
Actor: Host PM · SES-56JKL78 · status → Completed

CHECKIN_COMPLETED · Jun 5, 10:08 AM
Actor: Host PM · SES-44PQR22 · status → Checked-in

BOOKING_CONFIRMED · Jun 4, 3:22 PM
Actor: System (Instant Booking) · SES-SYSTEM

PAYMENT_SUCCESS · Jun 4, 3:21 PM
Actor: Guest RS · SES-45MNO90 · gatewayRef: rz_pay_9K2X

BOOKING_CREATED · Jun 4, 3:21 PM
Actor: Guest RS · SES-45MNO90 · ₹1,011

Covers all FR-17 booking states · SRS §8.7 FR-78; §7.5 FR-17

🔍 Session Trace Tab — FR-79

Enter Session ID to trace all actions within session

Session SES-89ABC21 · Admin #A-01 · Jun 2, 10:01–10:14 AM

10:01 AM

KYC_APPROVED

USR-00521

10:04 AM

LISTING_APPROVED

LST-00142

10:14 AM

SESSION_END

—

FR-79: every transaction tagged by session ID · Used for fraud investigation and VAPT audit trail · SRS §8.7 FR-79; §8.4 FR-68

🗄️ Log Retention Policy Annotation

Retention period: Per FR-72 data retention policy (configured in SCR-39)

Deletion: Admin cannot delete individual log entries — table is append-only by design. Automated retention-policy job handles scheduled expiry.

Access: Read-only for all admin roles. Export to CSV available for compliance, legal requests, VAPT evidence, and financial reconciliation.

Scope: Covers Admin actions (FR-77) + Booking lifecycle events (FR-78) + Session-tagged transactions (FR-79).

SRS §8.5 FR-72; §8.7 FR-77; FR-78; FR-79

📊 Export Filtered Audit Log

Export the current filtered result set as CSV. Used for compliance reporting, legal requests, VAPT evidence, and financial reconciliation.

SRS §8.7 FR-77; FR-78; FR-79

Wireframe Annotations — SCR-31 · Audit Logs

Persona: Admin (Compliance / Audit Role) — Using logs for fraud investigation, compliance reporting, and dispute evidence. Logs are read-only and cannot be deleted by any admin — append-only by architectural design. SRS §8.7 FR-77; FR-78; FR-79

Action Log Tab — Filterable table covering all FR-77 actor types. Columns: Timestamp / Session ID / Actor (role + user ID) / Action Type (colour-coded) / Entity Type / Entity ID / IP Address / Details. Colour-coded by actor role: Admin (red) / Host (amber) / Guest (blue) / System (grey). SRS §8.7 FR-77; §7.11 FR-48

Booking Lifecycle Tab — Input: Booking ID. Output: full event timeline from booking creation to completion. Each event: state change / actor / timestamp / session ID. Covers all FR-17 booking states. Satisfies FR-78 booking lifecycle log requirement. SRS §8.7 FR-78; §7.5 FR-17; §9.1 FR-84

Session Trace Tab — Input: Session ID. Output: all actions performed within that session in sequence with timestamps. FR-79: every transaction tagged by session ID. Used for fraud investigation and VAPT audit trail evidence. SRS §8.7 FR-79; §8.4 FR-68

Filter Panel — Multi-filter: Actor Role / Actor User ID / Action Type / Date Range / Entity Type (Booking/User/Listing/Payment/Config) / Session ID. All filters combinable. Results update the export set. SRS §8.7 FR-48

Export Audit Logs — Export current filtered result set as CSV. Used for compliance reporting, legal requests, VAPT evidence, and financial reconciliation. No sensitive data stripped — full log exported. SRS §8.7 FR-77; FR-78; FR-79

Log Retention Policy Annotation — Audit logs retained per FR-72 data retention policy (configured in SCR-39). Admin cannot delete individual entries — table is append-only. Automated retention-policy job handles scheduled expiry. SRS §8.5 FR-72; §8.7 FR-77