Enhance Admin Dashboard and Task Management Features

Makefile

@@ -5,7 +5,7 @@ DC_DB := docker compose -f $(COMPOSE_DB)
 DC_ALL := docker compose -f $(COMPOSE_DB) -f $(COMPOSE_BACKEND)
 
 .PHONY: db-up db-down db-inspect db-logs db-reset
-.PHONY: backend-build backend-up backend-down backend-logs
+.PHONY: backend-build backend-up backend-down backend-logs backend-rebuild
 .PHONY: up down reset
 
 # Database
@@ -38,6 +38,11 @@ backend-down:
 backend-logs:
 	$(DC_ALL) logs -f backend
 
+backend-rebuild:
+	$(DC_ALL) down
+	$(DC_ALL) build backend
+	$(DC_ALL) up -d --wait
+
 # Combined
 up:
 	$(DC_ALL) up -d --wait

backend/migrations/versions/93a1f8b3c4d5_add_audit_logs_and_system_settings.py

@@ -0,0 +1,105 @@
+"""Add audit logs and system settings
+
+Revision ID: 93a1f8b3c4d5
+Revises: e2f4g5h6i7j8
+Create Date: 2026-05-07 00:39:00.000000
+
+"""
+from alembic import op
+import sqlalchemy as sa
+import json
+from datetime import datetime, timezone
+
+# revision identifiers, used by Alembic.
+revision = '93a1f8b3c4d5'
+down_revision = 'e2f4g5h6i7j8'
+branch_labels = None
+depends_on = None
+
+def upgrade():
+    # ### commands auto generated by Alembic - please adjust! ###
+    op.create_table('audit_logs',
+        sa.Column('id', sa.Integer(), nullable=False),
+        sa.Column('actor_user_id', sa.Integer(), nullable=True),
+        sa.Column('actor_role', sa.String(length=20), nullable=True),
+        sa.Column('action', sa.String(length=100), nullable=False),
+        sa.Column('resource_type', sa.String(length=50), nullable=True),
+        sa.Column('resource_id', sa.String(length=50), nullable=True),
+        sa.Column('ip', sa.String(length=45), nullable=True),
+        sa.Column('user_agent', sa.String(length=255), nullable=True),
+        sa.Column('metadata_info', sa.JSON(), nullable=True),
+        sa.Column('created_at', sa.DateTime(), nullable=True),
+        sa.ForeignKeyConstraint(['actor_user_id'], ['users.id'], ),
+        sa.PrimaryKeyConstraint('id')
+    )
+    op.create_index('idx_audit_logs_actor_time', 'audit_logs', ['actor_user_id', 'created_at'], unique=False)
+    op.create_index('idx_audit_logs_action', 'audit_logs', ['action'], unique=False)
+    op.create_index('idx_audit_logs_resource', 'audit_logs', ['resource_type'], unique=False)
+
+    system_settings_table = op.create_table('system_settings',
+        sa.Column('key', sa.String(length=100), nullable=False),
+        sa.Column('value', sa.JSON(), nullable=False),
+        sa.Column('updated_by', sa.Integer(), nullable=True),
+        sa.Column('updated_at', sa.DateTime(), nullable=True),
+        sa.ForeignKeyConstraint(['updated_by'], ['users.id'], ),
+        sa.PrimaryKeyConstraint('key')
+    )
+
+    bind = op.get_bind()
+    if bind.dialect.name == 'postgresql':
+        op.create_check_constraint(
+            'check_valid_role',
+            'users',
+            "role IN ('developer', 'team_lead', 'admin')"
+        )
+
+    # Seed default system settings
+    op.bulk_insert(
+        system_settings_table,
+        [
+            {
+                'key': 'app_name',
+                'value': 'DevSync',
+                'updated_at': datetime.now(timezone.utc)
+            },
+            {
+                'key': 'allow_registration',
+                'value': True,
+                'updated_at': datetime.now(timezone.utc)
+            },
+            {
+                'key': 'default_user_role',
+                'value': 'developer',
+                'updated_at': datetime.now(timezone.utc)
+            },
+            {
+                'key': 'github_integration_enabled',
+                'value': True,
+                'updated_at': datetime.now(timezone.utc)
+            },
+            {
+                'key': 'notification_settings',
+                'value': {
+                    'email_notifications': True,
+                    'task_assignments': True,
+                    'project_updates': True
+                },
+                'updated_at': datetime.now(timezone.utc)
+            }
+        ]
+    )
+    # ### end Alembic commands ###
+
+def downgrade():
+    # ### commands auto generated by Alembic - please adjust! ###
+    bind = op.get_bind()
+    if bind.dialect.name == 'postgresql':
+        op.drop_constraint('check_valid_role', 'users', type_='check')
+
+    op.drop_table('system_settings')
+
+    op.drop_index('idx_audit_logs_resource', table_name='audit_logs')
+    op.drop_index('idx_audit_logs_action', table_name='audit_logs')
+    op.drop_index('idx_audit_logs_actor_time', table_name='audit_logs')
+    op.drop_table('audit_logs')
+    # ### end Alembic commands ###

backend/migrations/versions/e2f4g5h6i7j8_add_reports_table.py

@@ -0,0 +1,46 @@
+"""Add reports table for storing generated reports
+
+Revision ID: e2f4g5h6i7j8
+Revises: 3c8d9e2f1a4b
+Create Date: 2026-05-06 15:30:00.000000
+
+"""
+from alembic import op
+import sqlalchemy as sa
+
+
+# revision identifiers, used by Alembic.
+revision = 'e2f4g5h6i7j8'
+down_revision = '3c8d9e2f1a4b'
+branch_labels = None
+depends_on = None
+
+
+def upgrade():
+    # ### commands auto generated by Alembic - please adjust! ###
+    op.create_table('reports',
+    sa.Column('id', sa.Integer(), nullable=False),
+    sa.Column('user_id', sa.Integer(), nullable=False),
+    sa.Column('report_type', sa.String(length=50), nullable=False),
+    sa.Column('date_range', sa.String(length=50), nullable=False),
+    sa.Column('summary', sa.JSON(), nullable=False),
+    sa.Column('details', sa.JSON(), nullable=False),
+    sa.Column('generated_at', sa.DateTime(), nullable=True),
+    sa.ForeignKeyConstraint(['user_id'], ['users.id'], ),
+    sa.PrimaryKeyConstraint('id')
+    )
+    op.create_index('idx_reports_generated_at', 'reports', ['generated_at'], unique=False)
+    op.create_index('idx_reports_type', 'reports', ['report_type'], unique=False)
+    op.create_index('idx_reports_user_generated', 'reports', ['user_id', 'generated_at'], unique=False)
+    op.create_index('idx_reports_user_id', 'reports', ['user_id'], unique=False)
+    # ### end Alembic commands ###
+
+
+def downgrade():
+    # ### commands auto generated by Alembic - please adjust! ###
+    op.drop_index('idx_reports_user_id', table_name='reports')
+    op.drop_index('idx_reports_user_generated', table_name='reports')
+    op.drop_index('idx_reports_type', table_name='reports')
+    op.drop_index('idx_reports_generated_at', table_name='reports')
+    op.drop_table('reports')
+    # ### end Alembic commands ###

backend/src/api/__init__.py

@@ -17,6 +17,11 @@
 notifications_routes.register_routes(api_bp)
 dashboard_routes.register_routes(api_bp)
 admin_routes.register_routes(api_bp)
+from .routes import report_routes
+from .routes import audit_routes
+
+report_routes.register_routes(api_bp)
+audit_routes.register_routes(api_bp)
 github_routes.register_routes(api_bp)  # Add GitHub routes
 
 def init_app(app):

backend/src/api/controllers/admin_controller.py

@@ -4,6 +4,8 @@
 from ...db.models import db, User, Project, Task
 from ..validators.admin_validator import validate_system_settings, validate_user_role_update
 from ...auth.rbac import Role
+from flask_jwt_extended import get_jwt_identity
+from ...services import audit_service, settings_service
 
 
 def _safe_query_all(model):
@@ -53,20 +55,7 @@ def get_system_stats():
 
 def get_system_settings():
     """Controller function to get system settings"""
-    # This would typically retrieve settings from a database
-    # For now, return placeholder settings
-    settings = {
-        'app_name': 'DevSync',
-        'allow_registration': True,
-        'default_user_role': Role.DEVELOPER.value,
-        'github_integration_enabled': True,
-        'notification_settings': {
-            'email_notifications': True,
-            'task_assignments': True,
-            'project_updates': True
-        }
-    }
-
+    settings = settings_service.get_settings()
     return jsonify({'settings': settings})
 
 def update_system_settings():
@@ -78,8 +67,16 @@ def update_system_settings():
     if validation_result:
         return validation_result
 
-    # This would typically update settings in a database
-    # For now, just return success response
+    current_user = get_jwt_identity()
+    user_id = current_user.get('user_id') if isinstance(current_user, dict) else current_user
+
+    settings_service.update_settings(data, user_id)
+
+    audit_service.record(
+        action='settings_updated',
+        resource_type='settings',
+        metadata={'settings_updated': list(data.keys())}
+    )
 
     return jsonify({
         'message': 'System settings updated successfully',
@@ -100,9 +97,17 @@ def update_user_role(user_id):
         return validation_result
 
     # Update user role
+    old_role = user.role
     user.role = data['role']
     db.session.commit()
 
+    audit_service.record(
+        action='user_role_changed',
+        resource_type='user',
+        resource_id=user.id,
+        metadata={'old_role': old_role, 'new_role': user.role}
+    )
+
     return jsonify({
         'message': 'User role updated successfully',
         'user': {

backend/src/api/controllers/audit_controller.py

@@ -0,0 +1,82 @@
+"""Audit Log Controller"""
+
+from flask import request, jsonify
+from ...db.models import AuditLog, User
+
+
+def _build_actor_name_map(logs):
+    actor_ids = {log.actor_user_id for log in logs if getattr(log, 'actor_user_id', None) is not None}
+    if not actor_ids:
+        return {}
+
+    users = User.query.filter(User.id.in_(actor_ids)).all()
+    return {user.id: user.name for user in users}
+
+
+def _serialize_audit_log(log, actor_name_map=None):
+    actor_name_map = actor_name_map or {}
+    actor_user_id = log.actor_user_id
+
+    return {
+        'id': log.id,
+        'actor_user_id': actor_user_id,
+        'actor_name': actor_name_map.get(actor_user_id),
+        'actor_role': log.actor_role,
+        'action': log.action,
+        'resource_type': log.resource_type,
+        'resource_id': log.resource_id,
+        'ip': log.ip,
+        'user_agent': log.user_agent,
+        'metadata': log.metadata_info,
+        'created_at': log.created_at.isoformat() if log.created_at else None
+    }
+
+def get_audit_logs():
+    """Get paginated and filtered audit logs"""
+    action = request.args.get('action')
+    actor_id = request.args.get('actor')
+    from_date = request.args.get('from')
+    to_date = request.args.get('to')
+
+    page = request.args.get('page', 1, type=int)
+    per_page = request.args.get('per_page', 50, type=int)
+
+    query = AuditLog.query
+
+    if action:
+        query = query.filter(AuditLog.action.ilike(f'%{action}%'))
+    if actor_id:
+        query = query.filter_by(actor_user_id=actor_id)
+    if from_date:
+        query = query.filter(AuditLog.created_at >= from_date)
+    if to_date:
+        query = query.filter(AuditLog.created_at <= to_date)
+
+    pagination = query.order_by(AuditLog.created_at.desc()).paginate(
+        page=page, per_page=per_page, error_out=False
+    )
+
+    actor_name_map = _build_actor_name_map(pagination.items)
+    logs_data = [_serialize_audit_log(log, actor_name_map) for log in pagination.items]
+
+    return jsonify({
+        'logs': logs_data,
+        'total': pagination.total,
+        'pages': pagination.pages,
+        'current_page': page
+    })
+
+def get_audit_log_by_id(log_id):
+    """Get a specific audit log"""
+    log = AuditLog.query.get_or_404(log_id)
+    actor_name = None
+
+    if log.actor_user_id is not None:
+        actor = User.query.get(log.actor_user_id)
+        actor_name = actor.name if actor else None
+
+    return jsonify({
+        'log': {
+            **_serialize_audit_log(log, {log.actor_user_id: actor_name} if actor_name else {}),
+        }
+    })

backend/src/api/controllers/comments_controller.py

@@ -1,10 +1,23 @@
 # Comment controller - business logic
 
+import logging
 from flask import request, jsonify
 from flask_jwt_extended import get_jwt_identity, get_jwt
 from ...db.models import db, Comment, Task, User  # Changed to relative import
 from ...auth.rbac import Role  # Changed to relative import
 from ..validators.comment_validator import validate_comment_data  # Changed to relative import
+from ...services.notification_service import NotificationService
+
+logger = logging.getLogger(__name__)
+
+
+def _run_notification(callback, *args, **kwargs):
+    """Create notifications without making the primary comment mutation fail."""
+    try:
+        callback(*args, **kwargs)
+    except Exception:
+        db.session.rollback()
+        logger.exception("Failed to create comment notification")
 
 def get_task_comments(task_id):
     """Controller function to get all comments for a task"""
@@ -57,6 +70,24 @@ def add_comment(task_id):
 
     db.session.add(new_comment)
     db.session.commit()
+
+    mentioned_user_ids = data.get('mentioned_user_ids') or data.get('mentioned_users') or []
+    recipient_user_ids = {
+        getattr(task, 'assigned_to', None),
+        getattr(task, 'created_by', None),
+    }
+    recipient_user_ids.discard(None)
+
+    _run_notification(
+        NotificationService.comment_added_notification,
+        task_id,
+        getattr(task, 'title', f'Task {task_id}'),
+        getattr(task, 'project_id', None),
+        new_comment.id,
+        user_id,
+        mentioned_user_ids,
+        recipient_user_ids
+    )
 
     # Get user info for response
     user = User.query.get(user_id)