diff --git a/app/controllers/cms/translate/access_logs_controller.rb b/app/controllers/cms/translate/access_logs_controller.rb
new file mode 100644
index 00000000000..85cb515633b
--- /dev/null
+++ b/app/controllers/cms/translate/access_logs_controller.rb
@@ -0,0 +1,34 @@
+class Cms::Translate::AccessLogsController < ApplicationController
+  include Cms::BaseFilter
+  include Cms::CrudFilter
+
+  model Translate::AccessLog
+  navi_view "cms/translate/main/navi"
+
+  public
+
+  def download
+    @item = Translate::DownloadParam.new
+    @item.save_term = '1.day'
+    return if request.get? || request.head?
+
+    @item.attributes = params.require(:item).permit(:encoding, :save_term)
+    if @item.invalid?
+      render
+      return
+    end
+
+    cond = { site_id: @cur_site.id }
+    items = @model.where(cond)
+    @item.save_term_in_time.try do |from|
+      items = items.gte(created: from)
+    end
+    items = items.reorder(created: 1)
+
+    enumerable = items.enum_csv(cur_site: @cur_site, encoding: @item.encoding)
+    filename = "translate_access_logs_#{Time.zone.now.to_i}.csv"
+
+    response.status = 200
+    send_enum enumerable, type: enumerable.content_type, filename: filename
+  end
+end
diff --git a/app/controllers/concerns/translate/public_filter.rb b/app/controllers/concerns/translate/public_filter.rb
index a6621b2c687..159d31fad64 100644
--- a/app/controllers/concerns/translate/public_filter.rb
+++ b/app/controllers/concerns/translate/public_filter.rb
@@ -11,8 +11,21 @@ def set_request_path_with_translate
     return if !@cur_site.translate_enabled?
     return if @cur_main_path !~ /^#{@cur_site.translate_location}\/.+?\//
 
+    deny_message = nil
     if browser.bot?
-      Rails.logger.info("translate denied due to a bot access: #{request.user_agent}")
+      deny_message = "bot access: #{request.user_agent}"
+    end
+    if @cur_site.translate_deny_no_refererr? && request.referer.blank?
+      deny_message = "no referer access"
+    end
+    Translate::AccessLog.create_log!(@cur_site, request) do |item|
+      item.path = request_path
+      item.remote_addr = remote_addr
+      item.deny_message = deny_message
+    end
+
+    if deny_message.present?
+      Rails.logger.info("translate denied due to a #{deny_message}")
       return
     end
 
diff --git a/app/jobs/translate/access_log/purge_job.rb b/app/jobs/translate/access_log/purge_job.rb
new file mode 100644
index 00000000000..9088dce0620
--- /dev/null
+++ b/app/jobs/translate/access_log/purge_job.rb
@@ -0,0 +1,21 @@
+class Translate::AccessLog::PurgeJob < Cms::ApplicationJob
+
+  DEFAULT_THRESHOLD_DAYS = 60
+
+  before_perform :set_items
+
+  def model
+    Translate::AccessLog
+  end
+
+  def perform
+    count = @items.destroy_all
+    Rails.logger.info "#{I18n.l(@threshold.to_date)}以前の#{model.model_name.human}を#{count}件削除しました。"
+  end
+
+  def set_items
+    @threshold = Time.zone.now - (site.translate_access_log_threshold || DEFAULT_THRESHOLD_DAYS).days
+    @items = model.site(site).lt(created: @threshold)
+    @items
+  end
+end
diff --git a/app/models/concerns/ss/addon/translate/site_setting.rb b/app/models/concerns/ss/addon/translate/site_setting.rb
index 62b87d299a3..4818a4dbf6a 100644
--- a/app/models/concerns/ss/addon/translate/site_setting.rb
+++ b/app/models/concerns/ss/addon/translate/site_setting.rb
@@ -33,6 +33,10 @@ module Translate::SiteSetting
       field :translate_google_api_request_count, type: Integer, default: 0
       field :translate_google_api_request_word_count, type: Integer, default: 0
 
+      # access log
+      field :translate_referer_restriction, type: String, default: "disabled"
+      field :translate_access_log_threshold, type: Integer, default: 60
+
       permit_params :translate_state
       permit_params :translate_source_id
       permit_params translate_target_ids: []
@@ -53,6 +57,9 @@ module Translate::SiteSetting
       permit_params :translate_google_api_request_count
       permit_params :translate_google_api_request_word_count
 
+      permit_params :translate_referer_restriction
+      permit_params :translate_access_log_threshold
+
       validates :translate_api, presence: true, if: -> { translate_enabled? }
       validate :validate_translate_source, if: -> { translate_api.present? }
       validate :validate_translate_targets, if: -> { translate_api.present? }
@@ -122,6 +129,17 @@ def translate_url
       ::File.join(url, translate_location, "/")
     end
 
+    def translate_referer_restriction_options
+      [
+        [I18n.t("translate.options.referer_restriction.disabled"), "disabled"],
+        [I18n.t("translate.options.referer_restriction.enabled"), "enabled"],
+      ]
+    end
+
+    def translate_deny_no_refererr?
+      translate_referer_restriction == "enabled"
+    end
+
     def find_translate_target(code)
       translate_targets.select { |item| item.code == code }.first
     end
diff --git a/app/models/translate/access_log.rb b/app/models/translate/access_log.rb
new file mode 100644
index 00000000000..b5fe352af9a
--- /dev/null
+++ b/app/models/translate/access_log.rb
@@ -0,0 +1,62 @@
+class Translate::AccessLog
+  include SS::Document
+  include SS::Reference::Site
+  include Cms::SitePermission
+
+  set_permission_name "cms_tools", :use
+
+  store_in_repl_master
+  index({ created: -1 })
+
+  field :path, type: String
+  field :remote_addr, type: String
+  field :user_agent, type: String
+  field :referer, type: String
+  field :deny_message, type: String
+
+  validates :path, presence: true
+
+  default_scope ->{ order_by(created: -1) }
+
+  def bot?
+    return false if user_agent.blank?
+    Browser.new(user_agent).bot?
+  end
+
+  class << self
+    def create_log!(site, request)
+      item = self.new
+      item.cur_site = site
+      item.path = request.path
+      item.user_agent = request.user_agent
+      item.remote_addr = request.remote_addr
+      item.referer = request.referer
+      yield item if block_given?
+      item.save!
+      item
+    end
+
+    def search(params = {})
+      criteria = self.where({})
+      return criteria if params.blank?
+
+      if params[:keyword].present?
+        criteria = criteria.keyword_in params[:keyword], :path
+      end
+      criteria
+    end
+
+    def enum_csv(options)
+      exporter = SS::Csv.draw(:export, context: self) do |drawer|
+        drawer.column :created
+        drawer.column :path
+        drawer.column :user_agent
+        drawer.column :remote_addr
+        drawer.column :referer
+        drawer.column :deny_message
+      end
+
+      exporter.enum(all, options)
+    end
+  end
+end
diff --git a/app/models/translate/download_param.rb b/app/models/translate/download_param.rb
new file mode 100644
index 00000000000..4c8e80f2fba
--- /dev/null
+++ b/app/models/translate/download_param.rb
@@ -0,0 +1,25 @@
+class Translate::DownloadParam
+  include ActiveModel::Model
+  include ActiveModel::Attributes
+
+  attr_accessor :cur_site, :cur_user
+
+  attribute :encoding, :string
+  attribute :save_term, :string
+
+  validates :encoding, presence: true, inclusion: { in: %w(Shift_JIS UTF-8), allow_blank: true }
+  validates :save_term, inclusion: { in: %w(1.day 1.month 1.year), allow_blank: true }
+
+  def save_term_options
+    %w(1.day 1.month 1.year).map do |v|
+      [ I18n.t("ss.options.duration.#{v.sub(".", "_")}"), v ]
+    end
+  end
+
+  def save_term_in_time(now = nil)
+    return if save_term.blank?
+
+    now ||= Time.zone.now
+    now - SS::Duration.parse(save_term)
+  end
+end
diff --git a/app/views/cms/translate/access_logs/_menu.html.erb b/app/views/cms/translate/access_logs/_menu.html.erb
new file mode 100644
index 00000000000..86685207bff
--- /dev/null
+++ b/app/views/cms/translate/access_logs/_menu.html.erb
@@ -0,0 +1,12 @@
+<nav class="nav-menu">
+  <% if params[:action] =~ /index/ %>
+    <% if @model.allowed?(:read, @cur_user, site: @cur_site, node: @cur_node) %>
+      <% download_url = url_for(action: :download_all) rescue (url_for(action: :download) rescue nil) %>
+      <% if download_url %>
+        <%= link_to(t('ss.links.download'), download_url, class: :download) %>
+      <% end %>
+    <% end %>
+  <% else %>
+    <%= link_to t('ss.links.back_to_index'), { action: :index }, class: "back-to-index" %>
+  <% end %>
+</nav>
diff --git a/app/views/cms/translate/access_logs/_show.html.erb b/app/views/cms/translate/access_logs/_show.html.erb
new file mode 100644
index 00000000000..dc5c9e03e16
--- /dev/null
+++ b/app/views/cms/translate/access_logs/_show.html.erb
@@ -0,0 +1,16 @@
+<dl class="see">
+  <dt><%= @model.t :path %></dt>
+  <dd><%= @item.path %></dd>
+
+  <dt><%= @model.t :remote_addr %></dt>
+  <dd><%= @item.remote_addr %></dd>
+
+  <dt><%= @model.t :user_agent %></dt>
+  <dd><%= @item.user_agent %></dd>
+
+  <dt><%= @model.t :referer %></dt>
+  <dd><%= @item.referer %></dd>
+
+  <dt><%= @model.t :deny_message %></dt>
+  <dd><%= @item.deny_message %></dd>
+</dl>
diff --git a/app/views/cms/translate/access_logs/download.html.erb b/app/views/cms/translate/access_logs/download.html.erb
new file mode 100644
index 00000000000..f176f1a8c22
--- /dev/null
+++ b/app/views/cms/translate/access_logs/download.html.erb
@@ -0,0 +1,27 @@
+<%= form_for :item, url: { action: :download }, html: { method: :post } do |f| %>
+  <%= error_messages_for :item %>
+
+  <section class="main-box">
+    <header><h2><%= t "ss.download" %></h2></header>
+
+    <dl class="see">
+      <dt><%= t('ss.encoding') %></dt>
+      <dd>
+        <% %w(UTF-8 Shift_JIS).each do |encoding| %>
+          <label>
+            <%= radio_button_tag "#{f.object_name}[encoding]", encoding, encoding == 'UTF-8', {id: nil} %>
+            <%= t("ss.options.csv_encoding.#{encoding}") %>
+          </label>
+        <% end %>
+      </dd>
+
+      <dt><%= @item.class.human_attribute_name :save_term %></dt>
+      <dd><%= f.select :save_term, @item.save_term_options, include_blank: t("history.options.duration.all_save") %></dd>
+    </dl>
+  </section>
+
+  <footer class="send">
+    <%= f.submit t("ss.download"), class: :save %>
+    <%= f.button t("ss.buttons.cancel"), type: :reset, class: 'btn-default', onclick: "location.href='#{url_for(action: :index)}'; return false;" %>
+  </footer>
+<% end %>
diff --git a/app/views/cms/translate/access_logs/index.html.erb b/app/views/cms/translate/access_logs/index.html.erb
new file mode 100644
index 00000000000..3e8b8e1e603
--- /dev/null
+++ b/app/views/cms/translate/access_logs/index.html.erb
@@ -0,0 +1,37 @@
+<div class="index">
+  <div class="list-head">
+    <%= render template: "_search" %>
+  </div>
+
+  <ul class="list-items">
+    <% @items.each do |item| %>
+    <li class="list-item">
+      <nav class="tap-menu">
+        <%= link_to t('ss.links.show'), action: :show, id: item if item.allowed?(:read, @cur_user, site: @cur_site) %>
+      </nav>
+
+      <div class="info">
+        <span class="title">
+          <%= link_to item.path, { action: :show, id: item } %>
+        </span>
+
+        <div class="meta">
+          <span class="datetime"><%= ss_time_tag item.created %></span>
+          <span class="label"><%= @model.t :remote_addr %></span>
+          <span class="remote_addr"><%= item.remote_addr %></span>
+          <span class="label"><%= @model.t :user_agent %></span>
+          <span class="user_agent"><%= item.user_agent %></span>
+          <span class="label"><%= @model.t :referer %></span>
+          <span class="referer"><%= item.referer %></span>
+          <% if item.deny_message.present? %>
+            <span class="label"><%= @model.t :deny_message %></span>
+            <span class="deny-message" style="color: #b90000;"><%= item.deny_message %></span>
+          <% end %>
+        </div>
+      </div>
+    </li>
+    <% end %>
+  </ul>
+</div>
+
+<%= paginate @items if @items.try(:current_page) %>
diff --git a/app/views/cms/translate/main/_navi.html.erb b/app/views/cms/translate/main/_navi.html.erb
index db583ab9ad8..5addbf9d7d2 100644
--- a/app/views/cms/translate/main/_navi.html.erb
+++ b/app/views/cms/translate/main/_navi.html.erb
@@ -3,6 +3,7 @@
   <h3><%= link_to t("translate.text_cache"), cms_translate_text_caches_path %></h3>
   <h3><%= link_to t("translate.site_setting"), cms_translate_site_setting_path %></h3>
   <h3><%= link_to t("translate.lang"), cms_translate_langs_path %></h3>
+  <h3><%= link_to t("translate.access_log"), cms_translate_access_logs_path %></h3>
 </nav>
 
 <%= render partial: "cms/main/conf_navi" %>
diff --git a/app/views/cms/translate/site_settings/_form_access_restriction.html.erb b/app/views/cms/translate/site_settings/_form_access_restriction.html.erb
new file mode 100644
index 00000000000..95d904895ff
--- /dev/null
+++ b/app/views/cms/translate/site_settings/_form_access_restriction.html.erb
@@ -0,0 +1,10 @@
+<dl class="mod-request-word-limit see">
+  <dt><%= @model.t :translate_referer_restriction %><%= @model.tt :translate_referer_restriction %></dt>
+  <dd><%= f.select :translate_referer_restriction, @item.translate_referer_restriction_options %></dd>
+
+  <dt><%= @model.t :translate_access_log_threshold %><%= @model.tt :translate_access_log_threshold %></dt>
+  <dd>
+    <%= f.number_field :translate_access_log_threshold, min: 0 %>
+    <%= t("datetime.prompts.day") %>
+  </dd>
+</dl>
diff --git a/app/views/cms/translate/site_settings/_show_access_restriction.html.erb b/app/views/cms/translate/site_settings/_show_access_restriction.html.erb
new file mode 100644
index 00000000000..d2447db3c18
--- /dev/null
+++ b/app/views/cms/translate/site_settings/_show_access_restriction.html.erb
@@ -0,0 +1,7 @@
+<dl class="mod-request-word-limit see">
+  <dt><%= @model.t :translate_referer_restriction %></dt>
+  <dd><%= @item.label :translate_referer_restriction %></dd>
+
+  <dt><%= @model.t :translate_access_log_threshold %></dt>
+  <dd><%= @item.translate_access_log_threshold %></dd>
+</dl>
diff --git a/app/views/cms/translate/site_settings/edit.html.erb b/app/views/cms/translate/site_settings/edit.html.erb
index d7cb8bb2956..9f56df8a9b3 100644
--- a/app/views/cms/translate/site_settings/edit.html.erb
+++ b/app/views/cms/translate/site_settings/edit.html.erb
@@ -39,6 +39,18 @@
     <% end %>
   </div>
 
+  <div class="addon-views">
+    <%
+      addon_options = {}
+      addon_options[:id] = "addon-basic"
+      addon_options[:head] = I18n.t("translate.views.api_access_restriction")
+    %>
+    <% buf = render template: "_form_access_restriction", locals: { f: f, addon: addon_options } %>
+    <%= render "ss/crud/addon", addon: addon_options do %>
+      <%= buf %>
+    <% end %>
+  </div>
+
   <footer class="send ss-sticky ss-sticky-bottom">
     <% if @crud_buttons %>
       <% @crud_buttons.call f %>
diff --git a/app/views/cms/translate/site_settings/show.html.erb b/app/views/cms/translate/site_settings/show.html.erb
index 8c3d4101af9..a35b2b738bf 100644
--- a/app/views/cms/translate/site_settings/show.html.erb
+++ b/app/views/cms/translate/site_settings/show.html.erb
@@ -33,3 +33,15 @@
     <%= buf %>
   <% end %>
 </div>
+
+<div class="addon-views">
+  <%
+    addon_options = {}
+    addon_options[:id] = "addon-basic"
+    addon_options[:head] = I18n.t("translate.views.api_access_restriction")
+  %>
+  <% buf = render template: "_show_access_restriction", locals: { addon: addon_options } %>
+  <%= render "ss/crud/addon", addon: addon_options do %>
+    <%= buf %>
+  <% end %>
+</div>
diff --git a/config/locales/ss/ja.yml b/config/locales/ss/ja.yml
index 1958da98df1..3d04e3942e8 100644
--- a/config/locales/ss/ja.yml
+++ b/config/locales/ss/ja.yml
@@ -999,6 +999,8 @@ ja:
         translate_google_api_request_word_count: APIリクエスト文字数
         translate_api_request_word_limit: 文字数上限
         translate_api_limit_exceeded_html: 制限超過時の表示HTML
+        translate_referer_restriction: リファラーによる制限
+        translate_access_log_threshold: 履歴保持期間
       ss/addon/source_cleaner/site_setting:
         source_cleaner_unwrap_tag_state: 不要なタグの削除
         source_cleaner_remove_tag_state: 空のタグの削除
diff --git a/config/locales/translate/ja.yml b/config/locales/translate/ja.yml
index 8fe68998c62..c2494228922 100644
--- a/config/locales/translate/ja.yml
+++ b/config/locales/translate/ja.yml
@@ -4,13 +4,15 @@ ja:
     text_cache: 翻訳テキスト
     site_setting: 設定
     lang: 言語
+    access_log: アクセス履歴
     update_state: ステータス
     ignore_character: '0123456789-'
     views:
       show_original: 原文を表示
       select_lang: 言語を選択
       api: API
-      api_request_word_limit: APIリクエスト文字数制限
+      api_request_word_limit: 文字数制限
+      api_access_restriction: アクセス履歴と制限
     labels:
       translate_tool: 言語翻訳
 
@@ -18,6 +20,9 @@ ja:
       update_state:
         auto: 自動登録
         manually: 手動登録
+      referer_restriction:
+        disabled: 制限無し
+        enabled: リファラーがない場合はアクセス不可
 
     notice:
       not_set_api: "翻訳APIが設定されていません。"
@@ -60,6 +65,21 @@ ja:
         google_translation_code: "Google API"
         accept_languages: "Accept-Language"
         in_file: ファイル
+      translate/access_log:
+        name: 名称
+        path: パス
+        remote_addr: IPアドレス
+        user_agent: ユーザーエージェント
+        referer: リファラー
+        deny_message: アクセス制限
+
+  activemodel:
+    models:
+      translate/download_param: ダウンロードパラメーター
+    attributes:
+      translate/download_param:
+        encoding: 文字コード
+        save_term: 保存期間
 
   tooltip:
     ss/addon/translate/site_setting:
@@ -76,6 +96,11 @@ ja:
         - 翻訳時にAPIリクエスト文字数が設定した上限を超える場合、翻訳を停止してエラーを表示します。
       translate_api_limit_exceeded_html:
         - リクエスト文字数超過時に表示するHTMLを設定します。
+      translate_referer_restriction:
+        - リファラーによる制限を設定します。
+      translate_access_log_threshold:
+        - アクセス履歴の保存期間を設定します。
+
     translate/text_cache:
       original_text:
         - 翻訳前テキストを入力します。
@@ -98,3 +123,7 @@ ja:
         - Google Translation APIの言語コードを入力します。
       accept_languages:
         - Accept-Language の言語コードを入力します。
+
+  job:
+    models:
+      translate/access_log/purge_job: 自動翻訳アクセス履歴削除
diff --git a/config/routes/cms/routes_end.rb b/config/routes/cms/routes_end.rb
index e4f284c92e9..2b4133d42e7 100644
--- a/config/routes/cms/routes_end.rb
+++ b/config/routes/cms/routes_end.rb
@@ -189,6 +189,10 @@
       get "/" => redirect { |p, req| "#{req.path}/text_caches" }, as: :main
       resources :text_caches, concerns: :deletion
       resources :langs, concerns: [:deletion, :download, :import]
+      resources :access_logs, only: [:index, :show] do
+        get :download, on: :collection
+        post :download, on: :collection
+      end
       resource :site_setting
     end
 
diff --git a/lib/tasks/ss/daily.rake b/lib/tasks/ss/daily.rake
index 83f7b74267a..ecb034d77c1 100644
--- a/lib/tasks/ss/daily.rake
+++ b/lib/tasks/ss/daily.rake
@@ -40,6 +40,9 @@ namespace :ss do
       # history_logの削除
       ::Tasks::SS.invoke_task("history:history_log:purge")
 
+      # translate_access_logの削除
+      ::Tasks::SS.invoke_task("translate:access_log:purge")
+
       # 期限の切れた公開ページのお知らせ
       ::Tasks::SS.invoke_task("cms:expiration_notices")
 
diff --git a/lib/tasks/translate/access_log.rake b/lib/tasks/translate/access_log.rake
new file mode 100644
index 00000000000..285c9cd308d
--- /dev/null
+++ b/lib/tasks/translate/access_log.rake
@@ -0,0 +1,14 @@
+namespace :translate do
+  namespace :access_log do
+    task purge: :environment do
+      sites = Cms::Site.all
+      sites = site.where(host: ENV['site']) if ENV['site'].present?
+
+      puts "delete translate access logs"
+      ::Rails.application.eager_load!
+      sites.each do |site|
+        Translate::AccessLog::PurgeJob.bind(site_id: site).perform_now
+      end
+    end
+  end
+end
diff --git a/spec/factories/translate/access_log.rb b/spec/factories/translate/access_log.rb
new file mode 100644
index 00000000000..70622a14f1d
--- /dev/null
+++ b/spec/factories/translate/access_log.rb
@@ -0,0 +1,8 @@
+FactoryBot.define do
+  factory :translate_access_log, class: Translate::AccessLog, traits: [:translate_lang] do
+    cur_site { cms_site }
+    path { unique_id }
+    remote_addr { "10.0.0.#{rand(0..255)}" }
+    user_agent { "ua-#{unique_id}" }
+  end
+end
diff --git a/spec/features/cms/translate/access_logs_spec.rb b/spec/features/cms/translate/access_logs_spec.rb
new file mode 100644
index 00000000000..7f4630e9050
--- /dev/null
+++ b/spec/features/cms/translate/access_logs_spec.rb
@@ -0,0 +1,96 @@
+require 'spec_helper'
+
+describe "cms_translate_access_logs", type: :feature, dbscope: :example, js: true do
+  let(:site) { cms_site }
+  let(:index_path) { cms_translate_access_logs_path site.id }
+  let(:download_path) { download_cms_translate_access_logs_path site.id }
+
+  let!(:item1) { create :translate_access_log }
+  let!(:item2) do
+    Timecop.travel(1.days.before) do
+      create :translate_access_log
+    end
+  end
+  let!(:item3) do
+    Timecop.travel(60.days.before) do
+      create :translate_access_log
+    end
+  end
+  let!(:item4) do
+    Timecop.travel(1.years.before) do
+      create :translate_access_log
+    end
+  end
+
+  context "basic crud" do
+    before { login_cms_user }
+
+    it "#index" do
+      visit index_path
+      within ".list-items" do
+        expect(page).to have_link item1.path
+        expect(page).to have_link item2.path
+        expect(page).to have_link item3.path
+        expect(page).to have_link item4.path
+      end
+    end
+  end
+
+  context "download" do
+    before { login_cms_user }
+
+    it "#download" do
+      visit download_path
+      click_on I18n.t("ss.links.download")
+      wait_for_download
+
+      SS::Csv.open(downloads.first) do |csv|
+        csv_table = csv.read
+        expect(csv_table.length).to eq 1
+        expect(csv_table[0]["#{Translate::AccessLog.t(:path)}"]).to eq item1.path
+      end
+    end
+
+    it "#download" do
+      visit download_path
+      select I18n.t("ss.options.duration.1_day"), from: "item[save_term]"
+      click_on I18n.t("ss.links.download")
+      wait_for_download
+
+      SS::Csv.open(downloads.first) do |csv|
+        csv_table = csv.read
+        expect(csv_table.length).to eq 1
+        expect(csv_table[0]["#{Translate::AccessLog.t(:path)}"]).to eq item1.path
+      end
+    end
+
+    it "#download" do
+      visit download_path
+      select I18n.t("ss.options.duration.1_month"), from: "item[save_term]"
+      click_on I18n.t("ss.links.download")
+      wait_for_download
+
+      SS::Csv.open(downloads.first) do |csv|
+        csv_table = csv.read
+        expect(csv_table.length).to eq 2
+        expect(csv_table[0]["#{Translate::AccessLog.t(:path)}"]).to eq item2.path
+        expect(csv_table[1]["#{Translate::AccessLog.t(:path)}"]).to eq item1.path
+      end
+    end
+
+    it "#download" do
+      visit download_path
+      select I18n.t("ss.options.duration.1_year"), from: "item[save_term]"
+      click_on I18n.t("ss.links.download")
+      wait_for_download
+
+      SS::Csv.open(downloads.first) do |csv|
+        csv_table = csv.read
+        expect(csv_table.length).to eq 3
+        expect(csv_table[0]["#{Translate::AccessLog.t(:path)}"]).to eq item3.path
+        expect(csv_table[1]["#{Translate::AccessLog.t(:path)}"]).to eq item2.path
+        expect(csv_table[2]["#{Translate::AccessLog.t(:path)}"]).to eq item1.path
+      end
+    end
+  end
+end
diff --git a/spec/features/translate/no_referer_spec.rb b/spec/features/translate/no_referer_spec.rb
new file mode 100644
index 00000000000..dc4f6c5d72c
--- /dev/null
+++ b/spec/features/translate/no_referer_spec.rb
@@ -0,0 +1,81 @@
+require 'spec_helper'
+
+describe "translate/public_filter", type: :feature, dbscope: :example, js: true, translate: true do
+  let(:site) { cms_site }
+
+  let!(:lang_ja) { create :translate_lang_ja }
+  let!(:lang_en) { create :translate_lang_en }
+  let(:text) { unique_id }
+
+  let(:page_html) do
+    html = []
+    html << "<h2>#{text}</h2>"
+    html.join("\n")
+  end
+
+  let(:layout) { create_cms_layout part }
+  let(:node) { create :article_node_page, cur_site: site, layout_id: layout.id }
+  let(:item) { create :article_page, cur_site: site, cur_node: node, layout_id: layout.id, html: page_html }
+  let!(:part) { create :translate_part_tool, cur_site: site, filename: "tool", ajax_view: "enabled" }
+
+  context "with google" do
+    before do
+      @net_connect_allowed = WebMock.net_connect_allowed?
+      WebMock.disable_net_connect!(allow_localhost: true)
+      WebMock.reset!
+
+      install_google_stubs
+
+      site.translate_state = "enabled"
+      site.translate_source = lang_ja
+      site.translate_target_ids = [lang_en.id]
+
+      site.translate_api = "google_translation"
+      site.translate_google_api_project_id = "shirasagi-dev"
+      "#{Rails.root}/spec/fixtures/translate/gcp_credential.json".tap do |path|
+        site.translate_google_api_credential_file = tmp_ss_file(contents: path)
+      end
+
+      site.save!
+
+      ::FileUtils.rm_f(item.path)
+    end
+
+    after do
+      WebMock.reset!
+      WebMock.allow_net_connect! if @net_connect_allowed
+    end
+
+    context "usual case" do
+      it do
+        visit item.full_url
+        select lang_en.name, from: "translate-tool-1"
+        wait_for_ajax
+        expect(page).to have_css("article.body", text: "[en:#{text}]")
+
+        # access with no referer
+        visit current_path
+        wait_for_ajax
+        expect(page).to have_css("article.body", text: "[en:#{text}]")
+      end
+    end
+
+    context "deny no referer" do
+      before do
+        site.translate_referer_restriction = "enabled"
+        site.update!
+      end
+
+      it do
+        visit item.full_url
+        select lang_en.name, from: "translate-tool-1"
+        wait_for_ajax
+        expect(page).to have_css("article.body", text: "[en:#{text}]")
+
+        # access with no referer
+        visit current_path
+        expect(page).to have_no_css("article.body", text: "[en:#{text}]")
+      end
+    end
+  end
+end
diff --git a/spec/jobs/translate/access_log/purge_job_spec.rb b/spec/jobs/translate/access_log/purge_job_spec.rb
new file mode 100644
index 00000000000..e1663863b41
--- /dev/null
+++ b/spec/jobs/translate/access_log/purge_job_spec.rb
@@ -0,0 +1,81 @@
+require 'spec_helper'
+
+describe Translate::AccessLog::PurgeJob, dbscope: :example do
+  let(:site) { cms_site }
+  let(:now) { Time.zone.now.beginning_of_minute }
+
+  describe '#perform' do
+    it do
+      create(:translate_access_log)
+      create(:translate_access_log)
+
+      expect { described_class.bind(site_id: site).perform_now }.to change { Translate::AccessLog.count }.by(0)
+
+      expect(Job::Log.count).to eq 1
+      Job::Log.first.tap do |log|
+        expect(log.logs).to include(/INFO -- : .* Started Job/)
+        expect(log.logs).to include(/INFO -- : .* Completed Job/)
+      end
+    end
+
+    it do
+      create(:translate_access_log)
+      Timecop.travel(59.days.before) do
+        create(:translate_access_log)
+      end
+
+      expect { described_class.bind(site_id: site).perform_now }.to change { Translate::AccessLog.count }.by(0)
+
+      expect(Job::Log.count).to eq 1
+      Job::Log.first.tap do |log|
+        expect(log.logs).to include(/INFO -- : .* Started Job/)
+        expect(log.logs).to include(/INFO -- : .* Completed Job/)
+      end
+    end
+
+    it do
+      create(:translate_access_log)
+      Timecop.travel(60.days.before) do
+        create(:translate_access_log)
+      end
+
+      expect { described_class.bind(site_id: site).perform_now }.to change { Translate::AccessLog.count }.by(-1)
+
+      expect(Job::Log.count).to eq 1
+      Job::Log.first.tap do |log|
+        expect(log.logs).to include(/INFO -- : .* Started Job/)
+        expect(log.logs).to include(/INFO -- : .* Completed Job/)
+      end
+    end
+
+    it do
+      create(:translate_access_log)
+      Timecop.travel(61.days.before) do
+        create(:translate_access_log)
+      end
+
+      expect { described_class.bind(site_id: site).perform_now }.to change { Translate::AccessLog.count }.by(-1)
+
+      expect(Job::Log.count).to eq 1
+      Job::Log.first.tap do |log|
+        expect(log.logs).to include(/INFO -- : .* Started Job/)
+        expect(log.logs).to include(/INFO -- : .* Completed Job/)
+      end
+    end
+
+    it do
+      create(:translate_access_log)
+      Timecop.travel(1.years.before) do
+        create(:translate_access_log)
+      end
+
+      expect { described_class.bind(site_id: site).perform_now }.to change { Translate::AccessLog.count }.by(-1)
+
+      expect(Job::Log.count).to eq 1
+      Job::Log.first.tap do |log|
+        expect(log.logs).to include(/INFO -- : .* Started Job/)
+        expect(log.logs).to include(/INFO -- : .* Completed Job/)
+      end
+    end
+  end
+end