Files
server-manager/views/admin/security.php
Agent 88f3c1f964 refactor: extract inline CSS/JS from views into separate asset files (20+ files)
Phase A — HTML removed from PHP files:
- RateLimitMiddleware.php: heredoc moved to views/errors/429.php
- public/index.php: inline HTML replaced with View::error()
- AuthMiddleware.php: <script> redirect replaced with <meta refresh>

Phase B — Inline CSS/JS extracted from views:
- CSS: landing.css (459 lines), legal.css (shared by terms+privacy)
- JS: 17 new files extracted from ~20 view files
  - main.js (layout sidebar + notifications)
  - dashboard-chart.js, server-show.js, server-services.js
  - nginx-manager.js, database-manager.js
  - terminal.js, team-show.js, team-index.js
  - server-list.js, server-permissions.js (shared by edit+create)
  - server-ssl.js, server-processes.js, system-users.js
  - admin-users.js, audit-log.js, admin-notifications.js, admin-security.js
  - notifications.js

Total: -3264 lines from views, +288 lines in new assets
2026-06-14 08:04:01 -04:00

106 lines
4.5 KiB
PHP
Executable File

<div class="page-header">
<h1 class="page-title">Security Settings</h1>
<p class="page-subtitle">Configure security parameters and view status</p>
</div>
<div class="dashboard-grid">
<div class="dashboard-card">
<div class="card-header">
<h2><i class="fas fa-lock"></i> Encryption Status</h2>
</div>
<div class="card-body">
<div class="security-status">
<div class="security-item">
<span>Master Encryption Key</span>
<?php
$config = \ServerManager\Core\App::getConfig();
$keyConfigured = !empty($config['encryption']['master_key']) ||
(isset($config['encryption']['master_key_file']) && file_exists($config['encryption']['master_key_file']));
?>
<span class="badge badge-<?= $keyConfigured ? 'success' : 'danger' ?>">
<?= $keyConfigured ? 'Configured' : 'Not Configured' ?>
</span>
</div>
<div class="security-item">
<span>Password Hashing</span>
<span class="badge badge-success">Argon2id</span>
</div>
<div class="security-item">
<span>AES-256-CBC Encryption</span>
<span class="badge badge-success">Active</span>
</div>
<div class="security-item">
<span>Session Configuration</span>
<span class="badge badge-<?= $config['session']['secure'] ? 'success' : 'warning' ?>">
<?= $config['session']['secure'] ? 'Secure' : 'HTTP' ?>
</span>
</div>
</div>
</div>
</div>
<div class="dashboard-card">
<div class="card-header">
<h2><i class="fas fa-shield-alt"></i> Security Features</h2>
</div>
<div class="card-body">
<div class="security-status">
<div class="security-item">
<span>CSRF Protection</span>
<span class="badge badge-success">Enabled</span>
</div>
<div class="security-item">
<span>XSS Prevention</span>
<span class="badge badge-success">Enabled</span>
</div>
<div class="security-item">
<span>Rate Limiting</span>
<span class="badge badge-success">Enabled (<?= $config['rate_limit']['max_attempts'] ?> attempts/<?= $config['rate_limit']['decay_minutes'] ?>min)</span>
</div>
<div class="security-item">
<span>Input Validation</span>
<span class="badge badge-success">Enabled</span>
</div>
<div class="security-item">
<span>Audit Logging</span>
<span class="badge badge-success">Enabled</span>
</div>
<div class="security-item">
<span>Session Security</span>
<span class="badge badge-success">HTTP Only + SameSite</span>
</div>
<div class="security-item">
<span>API Authentication</span>
<span class="badge badge-success">Bearer Token</span>
</div>
</div>
</div>
</div>
<div class="dashboard-card">
<div class="card-header">
<h2><i class="fas fa-key"></i> Master Key Management</h2>
</div>
<div class="card-body">
<div class="alert alert-warning">
<i class="fas fa-exclamation-triangle"></i>
<strong>Important:</strong> The master encryption key is stored outside the database.
If lost, ALL encrypted SSH credentials will be unrecoverable.
</div>
<div class="form-group">
<label>Key File Location</label>
<code><?= htmlspecialchars($config['encryption']['master_key_file'] ?? '/etc/servermanager/master.key') ?></code>
</div>
<div class="form-actions" style="margin-top: 1rem;">
<button class="btn btn-warning" onclick="generateKey()">
<i class="fas fa-key"></i> Generate New Master Key
</button>
</div>
</div>
</div>
</div>
<script src="/assets/js/admin-security.js"></script>