beskar 0.0.2 → 0.1.0

data/app/views/layouts/beskar/application.html.erb

@@ -1,17 +1,659 @@
 <!DOCTYPE html>
-<html>
+<html lang="en">
 <head>
-  <title>Beskar</title>
+  <title>Beskar Security Dashboard</title>
+  <meta charset="utf-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1">
   <%= csrf_meta_tags %>
   <%= csp_meta_tag %>
 
-  <%= yield :head %>
+  <!-- Embedded Styles (No external dependencies) -->
+  <style>
+    :root {
+      --primary: #635BFF;
+      --primary-dark: #5243CC;
+      --danger: #E91E63;
+      --warning: #FF9800;
+      --success: #4CAF50;
+      --neutral: #6B7280;
+      --sidebar-width: 240px;
+      --header-height: 60px;
+    }
+
+    * {
+      margin: 0;
+      padding: 0;
+      box-sizing: border-box;
+    }
+
+    body {
+      font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, "Helvetica Neue", Arial, sans-serif;
+      font-size: 14px;
+      line-height: 1.5;
+      color: #1A1F36;
+      background: #F6F9FC;
+    }
+
+    .dashboard-container {
+      display: flex;
+      min-height: 100vh;
+    }
+
+    /* Sidebar */
+    .sidebar {
+      width: var(--sidebar-width);
+      background: white;
+      border-right: 1px solid #E3E8EE;
+      position: fixed;
+      height: 100vh;
+      overflow-y: auto;
+      z-index: 100;
+    }
+
+    .sidebar-header {
+      padding: 1.5rem;
+      border-bottom: 1px solid #E3E8EE;
+    }
+
+    .sidebar-logo {
+      display: flex;
+      align-items: center;
+      gap: 0.75rem;
+      text-decoration: none;
+      color: #1A1F36;
+    }
+
+    .sidebar-logo-icon {
+      width: 32px;
+      height: 32px;
+      background: var(--primary);
+      border-radius: 8px;
+      display: flex;
+      align-items: center;
+      justify-content: center;
+      color: white;
+      font-weight: bold;
+      font-size: 18px;
+    }
+
+    .sidebar-logo-text {
+      font-size: 18px;
+      font-weight: 600;
+      letter-spacing: -0.02em;
+    }
+
+    .sidebar-nav {
+      padding: 1rem 0;
+    }
+
+    .nav-section {
+      padding: 0.5rem 1rem;
+      margin-bottom: 0.25rem;
+    }
+
+    .nav-section-title {
+      font-size: 11px;
+      font-weight: 600;
+      text-transform: uppercase;
+      letter-spacing: 0.05em;
+      color: #8792A2;
+      margin-bottom: 0.5rem;
+    }
+
+    .nav-link {
+      display: flex;
+      align-items: center;
+      gap: 0.75rem;
+      padding: 0.625rem 1rem;
+      text-decoration: none;
+      color: #697386;
+      border-radius: 6px;
+      transition: all 0.15s ease;
+      margin-bottom: 0.125rem;
+    }
+
+    .nav-link:hover {
+      background: #F7FAFC;
+      color: #1A1F36;
+    }
+
+    .nav-link.active {
+      background: #F7F6FF;
+      color: var(--primary);
+      font-weight: 500;
+    }
+
+    .nav-icon {
+      width: 18px;
+      height: 18px;
+      opacity: 0.8;
+    }
+
+    /* Main Content */
+    .main-content {
+      flex: 1;
+      margin-left: var(--sidebar-width);
+      display: flex;
+      flex-direction: column;
+    }
+
+    /* Header */
+    .header {
+      height: var(--header-height);
+      background: white;
+      border-bottom: 1px solid #E3E8EE;
+      display: flex;
+      align-items: center;
+      justify-content: space-between;
+      padding: 0 2rem;
+      position: sticky;
+      top: 0;
+      z-index: 50;
+    }
+
+    .header-title {
+      font-size: 20px;
+      font-weight: 600;
+      color: #1A1F36;
+    }
+
+    .header-actions {
+      display: flex;
+      align-items: center;
+      gap: 1rem;
+    }
+
+    /* Content Area */
+    .content {
+      flex: 1;
+      padding: 2rem;
+      max-width: 1400px;
+      width: 100%;
+      margin: 0 auto;
+    }
+
+    /* Cards */
+    .card {
+      background: white;
+      border-radius: 8px;
+      box-shadow: 0 1px 3px rgba(0,0,0,0.1);
+      margin-bottom: 1.5rem;
+      overflow: hidden;
+    }
+
+    .card-header {
+      padding: 1.25rem 1.5rem;
+      border-bottom: 1px solid #E3E8EE;
+      background: #FAFBFC;
+    }
+
+    .card-title {
+      font-size: 16px;
+      font-weight: 600;
+      color: #1A1F36;
+      margin: 0;
+    }
+
+    .card-subtitle {
+      font-size: 13px;
+      color: #697386;
+      margin-top: 0.25rem;
+    }
+
+    .card-body {
+      padding: 1.5rem;
+    }
+
+    /* Buttons */
+    .btn {
+      display: inline-flex;
+      align-items: center;
+      justify-content: center;
+      padding: 0.5rem 1rem;
+      font-size: 14px;
+      font-weight: 500;
+      border-radius: 6px;
+      border: none;
+      cursor: pointer;
+      text-decoration: none;
+      transition: all 0.15s ease;
+      gap: 0.5rem;
+      line-height: 1.5;
+    }
+
+    .btn-primary {
+      background: var(--primary);
+      color: white;
+    }
+
+    .btn-primary:hover {
+      background: var(--primary-dark);
+    }
+
+    .btn-secondary {
+      background: white;
+      color: #697386;
+      border: 1px solid #E3E8EE;
+    }
+
+    .btn-secondary:hover {
+      background: #F7FAFC;
+      border-color: #D1D9E0;
+    }
+
+    .btn-danger {
+      background: var(--danger);
+      color: white;
+    }
+
+    .btn-danger:hover {
+      background: #D81B60;
+    }
+
+    .btn-sm {
+      padding: 0.375rem 0.75rem;
+      font-size: 13px;
+    }
+
+    /* Badges */
+    .badge {
+      display: inline-flex;
+      align-items: center;
+      padding: 0.25rem 0.625rem;
+      font-size: 11px;
+      font-weight: 600;
+      text-transform: uppercase;
+      letter-spacing: 0.025em;
+      border-radius: 9999px;
+    }
+
+    .badge-success {
+      background: #E6F6E6;
+      color: #2E7D32;
+    }
+
+    .badge-warning {
+      background: #FFF3E0;
+      color: #E65100;
+    }
+
+    .badge-danger {
+      background: #FCE4EC;
+      color: #C2185B;
+    }
+
+    .badge-critical {
+      background: #E91E63;
+      color: white;
+    }
+
+    .badge-neutral {
+      background: #F4F5F7;
+      color: #697386;
+    }
+
+    /* Tables */
+    .table-container {
+      overflow-x: auto;
+    }
+
+    table {
+      width: 100%;
+      border-collapse: collapse;
+    }
+
+    thead {
+      background: #FAFBFC;
+      border-top: 1px solid #E3E8EE;
+      border-bottom: 1px solid #E3E8EE;
+    }
+
+    th {
+      padding: 0.75rem 1rem;
+      text-align: left;
+      font-size: 12px;
+      font-weight: 600;
+      text-transform: uppercase;
+      letter-spacing: 0.025em;
+      color: #697386;
+    }
+
+    td {
+      padding: 1rem;
+      border-bottom: 1px solid #E3E8EE;
+      color: #1A1F36;
+      font-size: 14px;
+    }
 
-  <%= stylesheet_link_tag    "beskar/application", media: "all" %>
+    tbody tr:hover {
+      background: #FAFBFC;
+    }
+
+    /* Stats Grid */
+    .stats-grid {
+      display: grid;
+      grid-template-columns: repeat(auto-fit, minmax(200px, 1fr));
+      gap: 1.5rem;
+      margin-bottom: 2rem;
+    }
+
+    .stat-card {
+      background: white;
+      border-radius: 8px;
+      padding: 1.5rem;
+      box-shadow: 0 1px 3px rgba(0,0,0,0.1);
+    }
+
+    .stat-label {
+      font-size: 12px;
+      font-weight: 600;
+      text-transform: uppercase;
+      letter-spacing: 0.025em;
+      color: #697386;
+      margin-bottom: 0.5rem;
+    }
+
+    .stat-value {
+      font-size: 28px;
+      font-weight: 600;
+      color: #1A1F36;
+      line-height: 1;
+    }
+
+    .stat-change {
+      font-size: 12px;
+      margin-top: 0.5rem;
+      color: #697386;
+    }
+
+    /* Forms */
+    .form-group {
+      margin-bottom: 1.25rem;
+    }
+
+    label {
+      display: block;
+      font-size: 13px;
+      font-weight: 500;
+      color: #1A1F36;
+      margin-bottom: 0.375rem;
+    }
+
+    input[type="text"],
+    input[type="email"],
+    input[type="password"],
+    input[type="number"],
+    input[type="date"],
+    select,
+    textarea {
+      width: 100%;
+      padding: 0.5rem 0.75rem;
+      font-size: 14px;
+      border: 1px solid #E3E8EE;
+      border-radius: 6px;
+      background: white;
+      transition: border-color 0.15s ease;
+    }
+
+    input:focus,
+    select:focus,
+    textarea:focus {
+      outline: none;
+      border-color: var(--primary);
+      box-shadow: 0 0 0 3px rgba(99, 91, 255, 0.1);
+    }
+
+    /* Alerts */
+    .alert {
+      padding: 0.75rem 1rem;
+      border-radius: 6px;
+      margin-bottom: 1rem;
+      font-size: 14px;
+    }
+
+    .alert-info {
+      background: #E3F2FD;
+      color: #1565C0;
+      border: 1px solid #90CAF9;
+    }
+
+    .alert-success {
+      background: #E8F5E9;
+      color: #2E7D32;
+      border: 1px solid #81C784;
+    }
+
+    .alert-warning {
+      background: #FFF3E0;
+      color: #E65100;
+      border: 1px solid #FFB74D;
+    }
+
+    .alert-danger {
+      background: #FFEBEE;
+      color: #C62828;
+      border: 1px solid #EF5350;
+    }
+
+    /* Pagination */
+    .pagination {
+      display: flex;
+      align-items: center;
+      justify-content: center;
+      gap: 0.25rem;
+      margin-top: 2rem;
+    }
+
+    .pagination-link {
+      display: inline-flex;
+      align-items: center;
+      justify-content: center;
+      min-width: 32px;
+      height: 32px;
+      padding: 0 0.75rem;
+      font-size: 13px;
+      font-weight: 500;
+      color: #697386;
+      text-decoration: none;
+      border-radius: 6px;
+      transition: all 0.15s ease;
+    }
+
+    .pagination-link:hover {
+      background: #F7FAFC;
+      color: #1A1F36;
+    }
+
+    .pagination-link.active {
+      background: var(--primary);
+      color: white;
+    }
+
+    .pagination-link.disabled {
+      opacity: 0.5;
+      cursor: not-allowed;
+    }
+
+    /* Responsive */
+    @media (max-width: 768px) {
+      .sidebar {
+        transform: translateX(-100%);
+      }
+
+      .main-content {
+        margin-left: 0;
+      }
+
+      .stats-grid {
+        grid-template-columns: 1fr;
+      }
+    }
+  </style>
+
+  <%= yield :head %>
 </head>
 <body>
+  <div class="dashboard-container">
+    <!-- Sidebar -->
+    <aside class="sidebar">
+      <div class="sidebar-header">
+        <%= link_to root_path, class: "sidebar-logo" do %>
+          <div class="sidebar-logo-icon">B</div>
+          <div class="sidebar-logo-text">Beskar</div>
+        <% end %>
+      </div>
+
+      <nav class="sidebar-nav">
+        <div class="nav-section">
+          <div class="nav-section-title">Overview</div>
+          <%= link_to dashboard_path, class: "nav-link #{controller_name == 'dashboard' ? 'active' : ''}" do %>
+            <svg class="nav-icon" fill="none" stroke="currentColor" viewBox="0 0 24 24">
+              <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M3 12l2-2m0 0l7-7 7 7M5 10v10a1 1 0 001 1h3m10-11l2 2m-2-2v10a1 1 0 01-1 1h-3m-6 0a1 1 0 001-1v-4a1 1 0 011-1h2a1 1 0 011 1v4a1 1 0 001 1m-6 0h6"></path>
+            </svg>
+            Dashboard
+          <% end %>
+        </div>
+
+        <div class="nav-section">
+          <div class="nav-section-title">Security</div>
+          <%= link_to security_events_path, class: "nav-link #{controller_name == 'security_events' ? 'active' : ''}" do %>
+            <svg class="nav-icon" fill="none" stroke="currentColor" viewBox="0 0 24 24">
+              <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z"></path>
+            </svg>
+            Security Events
+          <% end %>
+
+          <%= link_to banned_ips_path, class: "nav-link #{controller_name == 'banned_ips' ? 'active' : ''}" do %>
+            <svg class="nav-icon" fill="none" stroke="currentColor" viewBox="0 0 24 24">
+              <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M18.364 18.364A9 9 0 005.636 5.636m12.728 12.728A9 9 0 015.636 5.636m12.728 12.728L5.636 5.636"></path>
+            </svg>
+            Banned IPs
+          <% end %>
+        </div>
+
+        <div class="nav-section">
+          <div class="nav-section-title">Configuration</div>
+          <% if Beskar.configuration.monitor_only? %>
+            <div style="padding: 0.5rem 1rem;">
+              <div class="badge badge-warning" style="width: 100%; justify-content: center;">
+                Monitor Only Mode
+              </div>
+            </div>
+          <% end %>
+        </div>
+      </nav>
+    </aside>
+
+    <!-- Main Content -->
+    <main class="main-content">
+      <!-- Header -->
+      <header class="header">
+        <h1 class="header-title"><%= yield :page_title %></h1>
+
+        <div class="header-actions">
+          <%= yield :header_actions %>
+
+          <div style="display: flex; align-items: center; gap: 0.5rem; padding-left: 1rem; border-left: 1px solid #E3E8EE;">
+            <svg width="16" height="16" fill="currentColor" viewBox="0 0 24 24" style="color: #697386;">
+              <path d="M12 2C6.48 2 2 6.48 2 12s4.48 10 10 10 10-4.48 10-10S17.52 2 12 2zm-2 15l-5-5 1.41-1.41L10 14.17l7.59-7.59L19 8l-9 9z"></path>
+            </svg>
+            <span style="font-size: 13px; color: #697386;">Protected by Beskar</span>
+          </div>
+        </div>
+      </header>
+
+      <!-- Content -->
+      <div class="content">
+        <% if notice.present? %>
+          <div class="alert alert-success">
+            <%= notice %>
+          </div>
+        <% end %>
+
+        <% if alert.present? %>
+          <div class="alert alert-danger">
+            <%= alert %>
+          </div>
+        <% end %>
+
+        <%= yield %>
+      </div>
+    </main>
+  </div>
+
+  <%= javascript_tag nonce: true do %>
+    // Add active state to current nav link
+    document.addEventListener('DOMContentLoaded', function() {
+      // Handle nav link clicks
+      document.querySelectorAll('.nav-link').forEach(link => {
+        if (link.href === window.location.href) {
+          link.classList.add('active');
+        }
+      });
+
+      // Auto-dismiss alerts after 5 seconds
+      setTimeout(() => {
+        document.querySelectorAll('.alert').forEach(alert => {
+          alert.style.transition = 'opacity 0.5s';
+          alert.style.opacity = '0';
+          setTimeout(() => alert.remove(), 500);
+        });
+      }, 5000);
+
+      // Handle data-turbo-method links (Rails UJS replacement)
+      document.addEventListener('click', function(e) {
+        const link = e.target.closest('a[data-turbo-method]');
+        if (!link) return;
+
+        e.preventDefault();
+
+        const method = link.dataset.turboMethod || link.dataset['turbo-method'];
+        const confirm = link.dataset.turboConfirm || link.dataset['turbo-confirm'];
+
+        if (confirm && !window.confirm(confirm)) {
+          return;
+        }
+
+        const form = document.createElement('form');
+        form.method = 'POST';
+        form.action = link.href;
+        form.style.display = 'none';
+
+        // Add CSRF token
+        const csrfToken = document.querySelector('meta[name="csrf-token"]').content;
+        const csrfParam = document.querySelector('meta[name="csrf-param"]').content;
+
+        if (csrfToken && csrfParam) {
+          const input = document.createElement('input');
+          input.type = 'hidden';
+          input.name = csrfParam;
+          input.value = csrfToken;
+          form.appendChild(input);
+        }
+
+        // Add method override for DELETE, PUT, PATCH
+        if (method && method.toLowerCase() !== 'post') {
+          const methodInput = document.createElement('input');
+          methodInput.type = 'hidden';
+          methodInput.name = '_method';
+          methodInput.value = method;
+          form.appendChild(methodInput);
+        }
 
-<%= yield %>
+        // Add any URL parameters as form inputs
+        const url = new URL(link.href);
+        url.searchParams.forEach((value, key) => {
+          const input = document.createElement('input');
+          input.type = 'hidden';
+          input.name = key;
+          input.value = value;
+          form.appendChild(input);
+        });
 
+        document.body.appendChild(form);
+        form.submit();
+      });
+    });
+  <% end %>
 </body>
 </html>

data/config/routes.rb

@@ -1,2 +1,43 @@
 Beskar::Engine.routes.draw do
+  # Root route - dashboard
+  root to: 'dashboard#index'
+
+  # Dashboard
+  get 'dashboard', to: 'dashboard#index', as: :dashboard
+
+  # Security Events
+  resources :security_events, only: [:index, :show] do
+    collection do
+      get 'export'
+    end
+  end
+
+  # Banned IPs
+  resources :banned_ips do
+    member do
+      post 'extend'
+    end
+
+    collection do
+      post 'bulk_action'
+      get 'export'
+    end
+  end
+
+  # API endpoints (optional, for future AJAX calls)
+  namespace :api do
+    namespace :v1 do
+      resources :security_events, only: [:index, :show] do
+        collection do
+          get 'stats'
+        end
+      end
+
+      resources :banned_ips, only: [:index, :show, :create, :destroy] do
+        member do
+          post 'extend'
+        end
+      end
+    end
+  end
 end