Skip to content

Instance admin feature #673

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Draft
seb-kw wants to merge 5 commits into
base: main
Choose a base branch
from
Draft

Instance admin feature #673

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
ae11208
Starts adding a instance admin feature
seb-kw Mar 2, 2026
a150ab2
Adds further mocked components to instance dashboard
seb-kw Mar 4, 2026
7c8073f
Continues with instance admin implementation
seb-kw Mar 6, 2026
9355c5c
Merge branch 'main' into feature/instance-admin
seb-kw Mar 22, 2026
3a4bf36
Syncs with main
seb-kw Mar 22, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
209 changes: 104 additions & 105 deletions package-lock.json
View file
Open in desktop

Large diffs are not rendered by default.

1 change: 1 addition & 0 deletions package.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,6 +15,7 @@
"@headlessui/react": "^2.2.9",
"@heroicons/react": "^2.2.0",
"@hookform/resolvers": "^5.2.2",
"@ltonetwork/http-message-signatures": "^0.1.12",
"@mdxeditor/editor": "^3.52.4",
"@ory/elements-react": "^1.1.0",
"@ory/nextjs": "^1.0.0-rc.1",
Expand Down
19 changes: 19 additions & 0 deletions src/app/admin/layout.tsx
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,19 @@
// Copyright 2026 L3montree GmbH and the DevGuard Contributors.
// SPDX-License-Identifier: AGPL-3.0-or-later

import React from "react";
import RootHeader from "@/components/common/RootHeader";
import { InstanceAdminProvider } from "@/context/InstanceAdminContext";

export default function AdminLayout({
children,
}: {
children: React.ReactNode;
}) {
return (
<InstanceAdminProvider>
<RootHeader />
<div className="pt-[112px]">{children}</div>
</InstanceAdminProvider>
);
}
204 changes: 204 additions & 0 deletions src/app/admin/page.tsx
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,204 @@
// Copyright 2026 L3montree GmbH and the DevGuard Contributors.
// SPDX-License-Identifier: AGPL-3.0-or-later

"use client";

import { useInstanceAdmin } from "@/context/InstanceAdminContext";
import { adminBrowserApiClient } from "@/services/adminApi";
import { useCallback, useEffect, useRef, useState } from "react";
import { toast } from "sonner";
import { Button } from "@/components/ui/button";
import {
Card,
CardContent,
CardDescription,
CardHeader,
CardTitle,
} from "@/components/ui/card";
import {
Field,
FieldDescription,
FieldGroup,
FieldLabel,
} from "@/components/ui/field";
import { Input } from "@/components/ui/input";
import InstanceDashboard, {
type InstanceDashboardHandle,
} from "@/components/admin/InstanceDashboard";
import InstanceTechnicalInfo, {
type InstanceTechnicalInfoHandle,
} from "@/components/admin/InstanceTechnicalInfo";
import AdminTools from "@/components/admin/AdminTools";
import Section from "@/components/common/Section";
import { ArrowPathIcon } from "@heroicons/react/20/solid";

export default function InstanceAdminPage() {
const { isAuthenticated, authenticate, logout, getPrivateKey } =
useInstanceAdmin();
const [keyInput, setKeyInput] = useState("");
const [verifying, setVerifying] = useState(false);
const [mounted, setMounted] = useState(false);
const techInfoRef = useRef<InstanceTechnicalInfoHandle>(null);
const dashboardRef = useRef<InstanceDashboardHandle>(null);

useEffect(() => {
setMounted(true);
}, []);

const handleAuthenticate = useCallback(async () => {
const trimmedKey = keyInput.trim();
if (!trimmedKey) {
toast.error("Please enter your private key.");
return;
}

if (!/^[0-9a-fA-F]+$/.test(trimmedKey)) {
toast.error("Invalid key format. The private key must be hex-encoded.");
return;
}

setVerifying(true);
try {
const resp = await adminBrowserApiClient("/admin", trimmedKey);

if (resp.ok) {
authenticate(trimmedKey);
setKeyInput("");
toast.success("Authenticated as instance admin.");
} else if (resp.status === 401 || resp.status === 403) {
toast.error(
"Authentication failed. The private key does not match the instance's admin public key.",
);
} else {
toast.error(`Unexpected response from server: ${resp.status}`);
}
} catch (err) {
toast.error("Failed to verify key. Is the API reachable?");
} finally {
setVerifying(false);
}
}, [keyInput, authenticate]);

const handleLogout = useCallback(() => {
logout();
toast.success("Admin session ended. Private key removed from session.");
}, [logout]);

if (!mounted) return null;

if (!isAuthenticated) {
return (
<div className="flex min-h-[calc(100vh-112px)] flex-col items-center justify-center px-6">
<div className="flex w-full max-w-md flex-col gap-6">
<Card>
<CardHeader>
<CardTitle>Instance Administration</CardTitle>
<CardDescription>
Authenticate with your ECDSA P-256 private key to access
instance admin features.
</CardDescription>
</CardHeader>
<CardContent>
<form
onSubmit={(e) => {
e.preventDefault();
handleAuthenticate();
}}
>
<FieldGroup>
<Field>
<FieldLabel htmlFor="admin-key">
Private Key (hex)
</FieldLabel>
<Input
id="admin-key"
type="password"
variant="onCard"
placeholder="Enter your hex-encoded private key..."
value={keyInput}
onChange={(e) => setKeyInput(e.target.value)}
autoComplete="off"
required
/>
<FieldDescription>
The key is stored in session storage and cleared when you
close the tab. It is never sent to the server — it signs
requests locally.
</FieldDescription>
</Field>
<Field>
<Button
type="submit"
disabled={verifying || !keyInput.trim()}
>
{verifying ? "Verifying..." : "Authenticate"}
</Button>
</Field>
</FieldGroup>
</form>
</CardContent>
</Card>
</div>
</div>
);
}

return (
<div className="mx-auto max-w-screen-xl px-6 pb-8 pt-6 lg:px-8">
<div className="mb-6 flex flex-row items-center justify-between">
<div>
<h1 className="text-2xl font-bold">Instance Administration</h1>
<p className="text-sm text-muted-foreground">
Manage this DevGuard instance.
</p>
</div>
<Button variant="destructive" onClick={handleLogout}>
End Admin Session
</Button>
</div>
<Section
title="Admin Tools"
description="Instance management actions and utilities."
forceVertical
>
<AdminTools />
</Section>

<Section
title="Instance Technical Info"
description="Build version, runtime details, and database status."
forceVertical
Button={
<Button
variant="outline"
size="sm"
onClick={() => techInfoRef.current?.refresh()}
>
<ArrowPathIcon className="mr-1.5 h-3.5 w-3.5" />
Refresh
</Button>
}
>
<InstanceTechnicalInfo ref={techInfoRef} />
</Section>

<Section
title="Instance Usage Statistics"
description="Overview of users, organisations, projects, and security posture across the instance."
forceVertical
Button={
<Button
variant="outline"
size="sm"
onClick={() => dashboardRef.current?.refresh()}
>
<ArrowPathIcon className="mr-1.5 h-3.5 w-3.5" />
Refresh
</Button>
}
>
<InstanceDashboard ref={dashboardRef} />
</Section>
</div>
);
}
20 changes: 20 additions & 0 deletions src/components/admin/AdminTools.tsx
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,20 @@
// Copyright 2026 L3montree GmbH and the DevGuard Contributors.
// SPDX-License-Identifier: AGPL-3.0-or-later

"use client";

import ExternalOrgAdminCard from "@/components/admin/ExternalOrgAdminCard";
import InstanceSettingsCard from "@/components/admin/InstanceSettingsCard";
import TriggerDaemonsCard from "@/components/admin/TriggerDaemonsCard";

export default function AdminTools() {
return (
<div className="flex flex-col gap-4">
<ExternalOrgAdminCard />
<div className="grid grid-cols-1 gap-4 xl:grid-cols-2">
<InstanceSettingsCard />
<TriggerDaemonsCard />
</div>
</div>
);
}
Loading
Loading