Description

• Extend audit events to include fullscopes[] andallow_list[] for API key create, update, delete, and usage events.
• Where feasible, include the “effective scope set” used during a request in security/audit logs for forensics.

Key files/areas

• enterprise/audit/table.go (add new fields if needed).
• Emit fields from token handlers and request middleware.
• Docs: updatedocs/admin/security/audit-logs.md tables.

Acceptance criteria

• Audit events appear with the new fields; docs reflect the changes.
• Tests validating audit entries for create/update use-cases.