Improve access to operational logs

Is your feature request related to a problem? Please describe.

When operating a Decidim instance, administrators frequently struggle to understand why user login or signup attempts fail. This is particularly challenging with OAuth2/OIDC authentication, where detailed error information is not visible to administrators.

Describe the solution you'd like

Introduce an admin or system-level dashboard where operators can access operational information related to authentication, including:

• OAuth2/OIDC login failure logs

• Standard signup and login error logs

• Key failure details such as:

  • reason for failure

  • data received by the system, excluding passwords

This dashboard would significantly improve debugging, incident response, and support for users.

Describe alternatives you've considered

• Manually checking server logs, which is inaccessible to most administrators.

• Relying on external infrastructure (reverse proxies, log collectors), which adds operational complexity.

• Exporting raw database records, which is unsafe and inconvenient.

Additional context

Many institutions using Decidim depend on external identity providers. Without insight into authentication failures, administrators cannot effectively support onboarding or troubleshoot issues.

Could this issue impact on users private data?

Potentially yes, depending on the design. If implemented carefully (excluding sensitive data, never storing passwords, and restricting access to privileged admins) the feature can remain compliant with privacy requirements.