Web dashboard for managing alden-bot and groups.
- Web Interface: Provides an interactive Hono-powered web server for bot administration.
- Authentication: Secure OTP-based login and session management for dashboard access.
- Group Tracking: Automatically tracks known groups and manages group linking configurations.
- Plugin Management: View and manage loaded plugins dynamically through the web UI.
- Live Feed: Real-time Server-Sent Events (SSE) feed of bot activity and messages.
- Ops Panel: BotAdmin-only update check/apply, restart, and log tail controls.
- Bot Configuration: View core settings without editing live runtime state.
| Command | Aliases | Permission | Description |
|---|---|---|---|
/dashboard |
/dash |
dashboard.access |
Generates a secure OTP link to log into the web dashboard. |
Settings are automatically generated in data/plugins/Dashboard/config.json:
{
"port": 3000,
"host": "0.0.0.0",
"publicUrl": "",
"secureCookies": false,
"trustProxy": false,
"sessionTTL": 604800000,
"otpTTL": 300000,
"maxSessions": 50,
"feedBufferSize": 100,
"logTailLines": 200
}port/host: Web server binding settings.publicUrl: URL sent in/dashboardOTP messages. Empty uses localhost.secureCookies: AddsSecureto dashboard cookies.trustProxy: Allows secure cookie detection fromX-Forwarded-Proto.sessionTTL: How long a dashboard session remains valid (in ms).otpTTL: Expiration time for the login link generated by/dashboard(in ms).maxSessions: Maximum number of active dashboard sessions allowed.feedBufferSize: Number of recent messages retained for the live dashboard feed.logTailLines: Number of log lines shown on the Ops page.
dashboard.access- Default level0(Everyone). Allows generating an OTP link.dashboard.admin- Default level3(Admin). Required to view and modify sensitive dashboard panels (e.g., config, plugins, permissions).
Dashboard OTP login is only usable by BotAdmins, Zalo group owners, real group deputies, and alden-bot virtual deputies. Group-scoped users only see groups they can manage.