- If the baseline is audited in the audit trail, the deletion would appear in the Audit Trail tab of the project. The audit record would include who deleted the record and when.
- If the baseline is not audited in the audit trail, we can determine if the baseline deletion occurred in the UI by reviewing the app-access logs. The app-access logs will include an entry similar to:
220.127.116.11|[21/Sep/2018:11:10:03 -0400]|POST /niku/nu?uitk.vxml.form=1&action=projmgr.baselineRevisionDeleteAction&id=5016004&spaceID=mainnav.work&uitk.navigation.location=Modal&uitk.navigation.parent.location=Modal&uitk.navigation.last.workspace.action=projmgr.baselineRevisionList HTTP/1.1|200|2792|1110|5376041__BBA0A9AE-5E27-4A32-AFB5-9DD55267FFAD
Based on this log entry, the only way to determine who the user is who performed this action would be to compare the session ID at the end of this entry with the records in the CMN_SESSIONS table. However, this session would only be available in the CMN_SESSIONS table if that user session is still active.
If the baseline is not audited in the audit trail, and it was not deleted via the UI, it will not appear in the app-access logs.