v0.7.0: Phase 1 — Authentication, Persistence & Settings Page

- New settings.json persistence layer (internal/settings/settings.go) - Atomic write (tmp + rename), thread-safe with sync.RWMutex - Stores password hash overrides and DB validation cache - Auto-creates on first save, graceful handling if missing - Auth improvements - Password resolution priority: settings.json > controller.yaml > none - Session duration extended to 7 days (was 24h) - ?next= redirect after session expiry (returns to original page) - Flash messages on login page (used after password change) - Conditional logout link (hidden when auth disabled) - Session invalidation on password change - New Settings page (/settings) - Read-only system config display (customer, domain, git, backup, monitoring) - Password change form with validation (min 8 chars, match check) - Sidebar "Beállítások" item pinned to bottom above version - DB validation persistence - Validation results saved to settings.json after each dump - Cached data survives container restarts Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-16 17:26:59 +01:00
parent 0be1f2e547
commit 4053245be8
10 changed files with 514 additions and 25 deletions
@@ -19,9 +19,12 @@
            <li><a href="/backups" class="{{if eq .Page "backups"}}active{{end}}">Biztonsági mentés</a></li>
            <li><a href="/monitoring" class="{{if eq .Page "monitoring"}}active{{end}}">Rendszermonitor</a></li>
        </ul>
-        <div class="sidebar-footer">
-            <span class="version">v{{.Version}}</span>
-            <a href="/logout" class="logout-link">Kijelentkezés ↗</a>
+        <div class="sidebar-bottom">
+            <a href="/settings" class="sidebar-settings-link {{if eq .Page "settings"}}active{{end}}">⚙ Beállítások</a>
+            <div class="sidebar-footer">
+                <span class="version">v{{.Version}}</span>
+                {{if .AuthEnabled}}<a href="/logout" class="logout-link">Kijelentkezés ↗</a>{{end}}
+            </div>
        </div>
    </nav>
    <main class="content">
@@ -11,8 +11,10 @@
    <div class="login-card">
        <img src="/static/felhom-logo.svg" alt="Felhom.eu" class="login-logo">
        <p class="login-subtitle">{{.CustomerName}}</p>
+        {{if .Flash}}<div class="alert alert-info">{{.Flash}}</div>{{end}}
        {{if .Error}}<div class="alert alert-error">{{.Error}}</div>{{end}}
        <form method="POST" action="/login">
+            <input type="hidden" name="next" id="next-field" value="">
            <div class="form-group">
                <label for="password">Jelszó</label>
                <input type="password" id="password" name="password" required autofocus
@@ -23,6 +25,15 @@
        <p class="login-footer">Felhom — Otthoni szerver kezelés<br>
        <a href="https://felhom.eu" target="_blank">felhom.eu</a></p>
    </div>
+    <script>
+    (function() {
+        var params = new URLSearchParams(window.location.search);
+        var next = params.get('next');
+        if (next) {
+            document.getElementById('next-field').value = next;
+        }
+    })();
+    </script>
 </body>
 </html>
 {{end}}
@@ -0,0 +1,97 @@
+{{define "settings"}}
+{{template "layout_start" .}}
+
+<div class="page-header">
+    <h2>Beállítások</h2>
+</div>
+
+<!-- Section A: System Configuration (read-only) -->
+<div class="settings-card">
+    <h3>Rendszer konfiguráció</h3>
+    <p class="settings-card-desc">Az üzemeltető által beállított értékek. Módosításhoz kérd az üzemeltetőt.</p>
+    <div class="settings-grid">
+        <div class="settings-row">
+            <span class="settings-label">Ügyfél azonosító</span>
+            <span class="settings-value mono">{{.CustomerID}}</span>
+        </div>
+        <div class="settings-row">
+            <span class="settings-label">Ügyfél neve</span>
+            <span class="settings-value">{{.CustomerName}}</span>
+        </div>
+        <div class="settings-row">
+            <span class="settings-label">Domain</span>
+            <span class="settings-value mono">{{.CustomerDomain}}</span>
+        </div>
+        {{if .GitRepoURL}}
+        <div class="settings-row">
+            <span class="settings-label">Alkalmazás sablon forrás</span>
+            <span class="settings-value mono settings-value-truncate">{{.GitRepoURL}}</span>
+        </div>
+        {{end}}
+        <div class="settings-row">
+            <span class="settings-label">Sablon szinkronizálás</span>
+            <span class="settings-value mono">{{.GitSyncInterval}}</span>
+        </div>
+        <div class="settings-row">
+            <span class="settings-label">Biztonsági mentés</span>
+            <span class="settings-value">{{if .BackupEnabled}}<span class="state-text-green">✅ Aktív</span>{{else}}<span class="state-text-red">❌ Inaktív</span>{{end}}</span>
+        </div>
+        {{if .BackupEnabled}}
+        <div class="settings-row">
+            <span class="settings-label">Mentés ütemezés</span>
+            <span class="settings-value mono">{{.DBDumpSchedule}} / {{.ResticSchedule}}</span>
+        </div>
+        {{end}}
+        <div class="settings-row">
+            <span class="settings-label">Monitoring</span>
+            <span class="settings-value">{{if .MonitoringEnabled}}<span class="state-text-green">✅ Aktív</span>{{else}}<span class="state-text-red">❌ Inaktív</span>{{end}}</span>
+        </div>
+        {{if .MonitoringEnabled}}
+        <div class="settings-row">
+            <span class="settings-label">Healthchecks URL</span>
+            <span class="settings-value mono settings-value-truncate">{{if .HealthchecksBase}}{{.HealthchecksBase}}{{else}}–{{end}}</span>
+        </div>
+        {{end}}
+        <div class="settings-row">
+            <span class="settings-label">Hub jelentés</span>
+            <span class="settings-value">{{if .HubEnabled}}<span class="state-text-green">✅ Aktív</span>{{else}}–{{end}}</span>
+        </div>
+        <div class="settings-row">
+            <span class="settings-label">Controller verzió</span>
+            <span class="settings-value mono">v{{.Version}}</span>
+        </div>
+    </div>
+</div>
+
+<!-- Section B: Password Change -->
+<div class="settings-card">
+    <h3>Jelszó módosítás</h3>
+    {{if .AuthEnabled}}
+        {{if .PasswordError}}<div class="alert alert-error">{{.PasswordError}}</div>{{end}}
+        <form method="POST" action="/settings/password">
+            <div class="form-group">
+                <label for="current_password">Jelenlegi jelszó</label>
+                <input type="password" id="current_password" name="current_password" required
+                       placeholder="Adja meg a jelenlegi jelszavát" class="form-control">
+            </div>
+            <div class="form-group">
+                <label for="new_password">Új jelszó</label>
+                <input type="password" id="new_password" name="new_password" required minlength="8"
+                       placeholder="Legalább 8 karakter" class="form-control">
+            </div>
+            <div class="form-group">
+                <label for="confirm_password">Új jelszó megerősítése</label>
+                <input type="password" id="confirm_password" name="confirm_password" required minlength="8"
+                       placeholder="Jelszó mégegyszer" class="form-control">
+            </div>
+            <button type="submit" class="btn btn-primary">Jelszó módosítása</button>
+        </form>
+    {{else}}
+        <div class="alert alert-info">
+            A jelszavas védelem nincs beállítva. Kérd az üzemeltetőt a beállításhoz.
+        </div>
+    {{end}}
+</div>
+
+{{template "layout_end" .}}
+{{end}}
@@ -1611,6 +1611,82 @@ a.stat-card:hover {
    font-family: 'JetBrains Mono', monospace;
 }

+/* --- Settings page --- */
+.settings-card {
+    background: var(--bg-card);
+    border-radius: var(--radius);
+    padding: 1.5rem;
+    border: 1px solid var(--border-color);
+    margin-bottom: 1.5rem;
+}
+.settings-card h3 {
+    margin-bottom: .5rem;
+}
+.settings-card-desc {
+    color: var(--text-secondary);
+    font-size: .85rem;
+    margin-bottom: 1rem;
+}
+.settings-grid {
+    display: flex;
+    flex-direction: column;
+}
+.settings-row {
+    display: flex;
+    justify-content: space-between;
+    align-items: center;
+    padding: .5rem .75rem;
+    border-bottom: 1px solid rgba(48, 54, 61, 0.3);
+    font-size: .9rem;
+    gap: 1rem;
+}
+.settings-row:last-child { border-bottom: none; }
+.settings-label {
+    color: var(--text-secondary);
+    font-weight: 500;
+    white-space: nowrap;
+    flex-shrink: 0;
+}
+.settings-value {
+    color: var(--text-primary);
+    text-align: right;
+    word-break: break-word;
+}
+.settings-value.mono {
+    font-family: 'JetBrains Mono', monospace;
+    font-size: .85rem;
+}
+.settings-value-truncate {
+    max-width: 400px;
+    overflow: hidden;
+    text-overflow: ellipsis;
+    white-space: nowrap;
+}
+
+/* Sidebar bottom section */
+.sidebar-bottom {
+    margin-top: auto;
+    border-top: 1px solid var(--border-color);
+}
+.sidebar-settings-link {
+    display: block;
+    padding: .75rem 1.5rem;
+    color: var(--text-secondary);
+    text-decoration: none;
+    font-size: .95rem;
+    font-weight: 500;
+    transition: color 0.2s ease, background 0.2s ease;
+}
+.sidebar-settings-link:hover {
+    color: var(--accent-light);
+    background: rgba(0, 136, 204, 0.08);
+}
+.sidebar-settings-link.active {
+    color: var(--accent-light);
+    background: rgba(0, 136, 204, 0.12);
+    border-left: 3px solid var(--accent-blue);
+}
+
 /* Responsive */
@media(max-width: 768px) {
    .sidebar { width: 100%; height: auto; position: relative; border-right: none; border-bottom: 1px solid var(--border-color); }