The user has been granted contribute permission to Audit log list. Then the user creates an item which triggers Nintex workflow to create audit log item.
The workflow initiator/the user above has been granted Read Write No delete permission on the Audit log list but the workflow keeps failing at creating the item, complaining about access denied.
HTTP Forbidden to https://..../site/_api/web/lists(guid'xxxxxxxxx') - Audit log list
Access denied. You do not have permission to perform this action or access this resource.
The workflow initiator permission is granted through AD group in a SharePoint group.
Checking permission shows the workflow initiator has read write no delete permission