modified: web/blueprints/group_admin.py

modified: web/templates/admin/audit_log.html new file: web/templates/group_admin/player_delete_confirm.html modified: web/templates/panel/player_detail.html
2026-04-15 12:42:37 +02:00
parent 52674fee29
commit aa0544a4a5
4 changed files with 266 additions and 2 deletions
--- a/web/templates/panel/player_detail.html
+++ b/web/templates/panel/player_detail.html
@@ -140,4 +140,30 @@
 <a href="{{ url_for('panel.players') }}" class="btn btn-outline-secondary">
    <i class="bi bi-arrow-left me-1"></i>Back to Overview
 </a>
+
+{% if is_admin and not session.get('is_site_admin') %}
+<div class="card border-warning mt-4">
+    <div class="card-header bg-warning bg-opacity-10 text-warning fw-semibold">
+        <i class="bi bi-shield-lock me-2"></i>GDPR Actions
+    </div>
+    <div class="card-body d-flex flex-wrap gap-3 align-items-center">
+        <div>
+            <a href="{{ url_for('group_admin.player_export', uuid=player.uuid) }}"
+               class="btn btn-outline-info">
+                <i class="bi bi-download me-1"></i>Export Data (Art. 20 GDPR)
+            </a>
+            <div class="form-text text-muted mt-1">Download all logged data as ZIP (group admins &amp; owners)</div>
+        </div>
+        {% if session.get('role') == 'group_owner' %}
+        <div>
+            <a href="{{ url_for('group_admin.player_delete', uuid=player.uuid) }}"
+               class="btn btn-outline-danger">
+                <i class="bi bi-trash3 me-1"></i>Delete All Data (Art. 17 GDPR)
+            </a>
+            <div class="form-text text-danger mt-1">Permanently erase all player data (owner only)</div>
+        </div>
+        {% endif %}
+    </div>
+</div>
+{% endif %}
 {% endblock %}