modified: web/app.py

modified: web/blueprints/auth.py modified: web/blueprints/site_admin.py modified: web/config.py modified: web/panel_db.py modified: web/templates/admin/audit_log.html modified: web/templates/admin/dashboard.html new file: web/templates/auth/consent.html
2026-04-15 11:05:21 +02:00
parent 179a0e1042
commit bdf83bd275
8 changed files with 333 additions and 2 deletions
--- a/web/templates/admin/dashboard.html
+++ b/web/templates/admin/dashboard.html
@@ -129,4 +129,112 @@
        </div>
    </div>
 </div>
+
+<!-- ── Recent Audit Activity ──────────────────────────────── -->
+<div class="row g-3 mt-1">
+    <div class="col-12">
+        <div class="card border-secondary">
+            <div class="card-header d-flex justify-content-between align-items-center">
+                <span><i class="bi bi-journal-text me-2"></i>Recent Audit Activity</span>
+                <div class="d-flex gap-2 align-items-center">
+                    {% if retention_days > 0 %}
+                    <span class="badge bg-secondary small">
+                        <i class="bi bi-clock-history me-1"></i>Retention: {{ retention_days }}d
+                    </span>
+                    {% endif %}
+                    <a href="{{ url_for('site_admin.audit_log') }}" class="btn btn-sm btn-outline-secondary">
+                        <i class="bi bi-arrow-right-circle me-1"></i>Full log
+                    </a>
+                </div>
+            </div>
+            <div class="card-body p-0">
+                <table class="table table-dark table-hover table-sm align-middle mb-0">
+                    <thead class="table-secondary text-dark">
+                        <tr>
+                            <th style="width:155px">Timestamp (UTC)</th>
+                            <th style="width:130px">Actor</th>
+                            <th style="width:180px">Action</th>
+                            <th style="width:120px">Group</th>
+                            <th>Details</th>
+                            <th style="width:110px">IP Address</th>
+                        </tr>
+                    </thead>
+                    <tbody>
+                        {% for row in recent_audit %}
+                        {% set action_class = {
+                            'user.login':                'badge bg-success',
+                            'user.login_failed':         'badge bg-danger',
+                            'user.password_changed':     'badge bg-warning text-dark',
+                            'session.logout':            'badge bg-secondary',
+                            'admin.login':               'badge bg-warning text-dark',
+                            'admin.login_failed':        'badge bg-danger',
+                            'admin.view_users':          'badge bg-dark border border-secondary',
+                            'admin.view_user':           'badge bg-dark border border-secondary',
+                            'admin.view_group':          'badge bg-dark border border-secondary',
+                            'admin.view_group_members':  'badge bg-dark border border-secondary',
+                            'admin.view_audit_log':      'badge bg-dark border border-secondary',
+                            'invite.created':            'badge bg-primary',
+                            'invite.accepted':           'badge bg-success',
+                            'invite.revoked':            'badge bg-secondary',
+                            'invite.resent':             'badge bg-info text-dark',
+                            'member.added':              'badge bg-primary',
+                            'member.removed':            'badge bg-danger',
+                            'member.role_changed':       'badge bg-warning text-dark',
+                            'group.created':             'badge bg-success',
+                            'group.updated':             'badge bg-secondary',
+                            'group.deleted':             'badge bg-danger',
+                            'db.credentials_changed':    'badge bg-warning text-dark',
+                            'db.credentials_deleted':    'badge bg-danger',
+                            'user.updated':              'badge bg-secondary',
+                            'user.deleted':              'badge bg-danger',
+                            'mail.settings_saved':       'badge bg-info text-dark',
+                            'mail.settings_deleted':     'badge bg-danger',
+                            'consent.given':             'badge bg-success',
+                            'consent.declined':          'badge bg-warning text-dark',
+                            'audit.purged':              'badge bg-danger',
+                        } %}
+                        <tr>
+                            <td class="text-muted small">{{ row.created_at | fmt_dt }}</td>
+                            <td>
+                                {% if row.actor_username %}
+                                <span class="text-info">{{ row.actor_username }}</span>
+                                {% else %}
+                                <span class="text-muted">—</span>
+                                {% endif %}
+                            </td>
+                            <td>
+                                <span class="{{ action_class.get(row.action, 'badge bg-secondary') }} font-monospace" style="font-size:.75em">
+                                    {{ row.action }}
+                                </span>
+                            </td>
+                            <td class="small">
+                                {% if row.group_name %}
+                                <span class="badge bg-dark border border-secondary">{{ row.group_name }}</span>
+                                {% else %}
+                                <span class="text-muted">—</span>
+                                {% endif %}
+                            </td>
+                            <td class="small text-muted font-monospace">
+                                {% if row.details %}
+                                    {% set d = row.details if row.details is mapping else {} %}
+                                    {% for k, v in d.items() %}
+                                    <span class="me-2"><strong>{{ k }}:</strong> {{ v }}</span>
+                                    {% endfor %}
+                                {% else %}—{% endif %}
+                            </td>
+                            <td class="text-muted small font-monospace">{{ row.ip_address or '—' }}</td>
+                        </tr>
+                        {% else %}
+                        <tr>
+                            <td colspan="6" class="text-center text-muted py-3">
+                                <i class="bi bi-journal-x me-2"></i>No audit events yet.
+                            </td>
+                        </tr>
+                        {% endfor %}
+                    </tbody>
+                </table>
+            </div>
+        </div>
+    </div>
+</div>
 {% endblock %}