tars/access-manager
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
7 commits 3 branches 0 tags 18 MiB
Commit graph

6 commits

Author SHA1 Message Date
TARS
2f60e99efc 🐛 fix: dashboard bugs — graceful degradation, dbPath config, auth expiry detection 
- fetchWithTimeout now rejects non-2xx HTTP status codes

- normalizeStats takes system object, reads dbPath from config

- Inventory special-cased (no longer syncs GitHub)

- dashboard.html detects HTML/auth redirect and shows reload link

- dashboard-systems.json: add dbPath for all UseCaseGen apps
 2026-04-25 19:44:43 -07:00
Scott Felten
350483c26c chore: remove temp dashboard test endpoints; deploy to deployed-not-tested state 2026-04-26 00:52:31 +00:00
Scott Felten
5e000f2aa3 fix: query UseCaseGen DBs for real user counts in dashboard 2026-04-26 00:12:49 +00:00
TARS
1044b1fe60 feat: unified admin dashboard + service registry cleanup 2026-04-25 23:57:04 +00:00
TARS
7dfb0eab66 feat: RBAC Admin UI + internal permissions API + auth session enhancements 
- admin-ui/: React + Tailwind SPA at /app/ (Dashboard, Users, Roles, Services, Audit)
- rbac-routes.js: POST /api/internal/permissions/user (service-to-service, no auth)
- server.js: /api/whoami endpoint for admin SPA auth via nginx X-Email
- server.js: /auth/session now checks X-Email fallback for Google SSO users
- server.js: SPA catch-all for /app/* routes
- server.js: Trusted IP auth now sets X-Auth-Request-Email response header
- public/index.html: Added Admin Panel link
- 3 ecosystem users registered (Rolf, Victoria, Zaid)
 2026-04-17 00:59:31 +00:00
TARS
0b0871ffea feat: Access Manager v3 — RBAC engine, SQLite, permission system 
- SQLite database with full schema: users, roles, permissions,
  role_permissions, user_roles, services, audit_log
- RBAC engine with wildcard permission resolution (*.*.*)
- Automatic v2→v3 migration from JSON files
- 5 default roles: super_admin, admin, editor, user, viewer
- Feature registration for APP, GGL, FDX (119 permissions)
- 8 services seeded
- Full API: roles CRUD, permission check, user-role assignment,
  feature registration, audit log, stats
- Backward compatible with existing auth flows
 2026-04-16 00:57:27 +00:00