Add a server-rendered admin dashboard#96
Merged
Merged
Conversation
A Jinja2 + htmx console for the platform operator, served by Flask under
/admin and kept separate from the main SPA. It can browse organizations,
users, filings, exports, and tasks across all accounts; impersonate a user
("login as") with an in-app banner and one-click return; reset passwords
(temporary or by email); toggle verified/disabled; grant or revoke platform
admin; and delete users or organizations with typed confirmation. Every
action is recorded in an audit log.
The admin panel uses its own session, distinct from the app's, and is
guarded by a platform-admin check with CSRF protection, short-lived
impersonation tokens, a strict Content-Security-Policy, and anti-clickjacking
headers. Authentication endpoints are rate-limited. Also adds a distinct
platform-admin role with a reversible disabled flag, fixes password reset and
email verification under PyJWT 2.10+, verifies database migrations in CI, and
adds a boot smoke test that starts the real image and health-checks it.
This was referenced Jun 10, 2026
Closed
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Adding an admin dashboard for the app to make it easier to provide support and troubleshoot issues with partners. The primary feature is letting an admin "login-as" a user to see what issues they're seeing, as well as perform basic account management like password resets or changing the org a user is part of. This is intended as a starting point, and we can add further admin features in the future as needed.