// static/js/admin.js — Admin panel module (ES6) // Admin-only: users, endpoints, MCP, RAG, embeddings, tokens, webhooks, features import uiModule from './ui.js'; import settingsModule from './settings.js'; import { providerLogo, providerLogoFromUrl } from './providers.js'; import { sortModelObjects } from './modelSort.js'; import { PROVIDER_DEVICE_FLOWS, formatDeviceFlowError, runProviderDeviceFlow } from './providerDeviceFlow.js'; let initialized = false; let modalEl = null; // When the user adds an endpoint, store its id so the next render of // the endpoints list can flash a glow on that row. Cleared once the // animation fires. let _recentlyAddedEpId = null; let _authPolicy = { password_min_length: 8, reserved_usernames: [] }; function el(id) { return document.getElementById(id); } function esc(s) { return uiModule.esc(s); } /* ═══════════════════════════════════════════ USERS TAB ═══════════════════════════════════════════ */ const PRIV_LABELS = { can_use_agent: 'Agent mode', can_use_browser: 'Browser automation', can_use_bash: 'Shell / Python / Files', can_use_documents: 'Document editor', can_use_research: 'Deep research', can_generate_images: 'Image generation', can_manage_memory: 'Memory & skills', }; async function loadUsers() { const list = el('adm-userList'); try { const res = await fetch('/api/auth/users', { credentials: 'same-origin' }); if (res.status === 401 || res.status === 403) { list.innerHTML = '

Access denied

'; return; } const data = await res.json(); if (!data.users || data.users.length === 0) { list.innerHTML = '

No users found

'; return; } list.innerHTML = ''; data.users.forEach(u => { const row = document.createElement('div'); row.className = 'admin-user-row'; // Header: name + badges + delete const header = document.createElement('div'); header.style.cssText = 'display:flex;align-items:center;justify-content:space-between;cursor:pointer;padding:4px 0;'; const initial = u.username.charAt(0).toUpperCase(); header.innerHTML = `

${esc(initial)}

${esc(u.username)} ${u.is_admin ? 'ADMIN' : 'Click to manage privileges'}

${u.is_admin ? '' : ``} ${u.is_admin ? '' : ''}

`; row.appendChild(header); // Privileges panel (hidden by default, not for admins) if (!u.is_admin) { const privPanel = document.createElement('div'); privPanel.className = 'admin-priv-panel hidden'; privPanel.style.cssText = 'padding:8px 0 4px;border-top:1px solid var(--border);margin-top:8px;'; // Boolean toggles let html = '

Features

'; for (const [key, label] of Object.entries(PRIV_LABELS)) { const checked = u.privileges && u.privileges[key] ? 'checked' : ''; html += `

${label}

`; } // Rate limit html += '

Limits

'; const maxMsg = (u.privileges && u.privileges.max_messages_per_day) || 0; html += `

Daily message limit

0 = no limit

`; // Allowed models — checkbox list const allowedModels = Array.isArray(u.privileges && u.privileges.allowed_models) ? u.privileges.allowed_models : []; const allowedSet = new Set(allowedModels); const modelsRestricted = !!(u.privileges && u.privileges.allowed_models_restricted); const blockAllModels = !!(u.privileges && u.privileges.block_all_models); html += `

Allowed models

All None

${blockAllModels ? 'No models allowed' : (!modelsRestricted ? 'All models allowed (no restrictions)' : (allowedSet.size === 0 ? 'No models allowed' : allowedSet.size + ' model(s) allowed'))}

Loading models...

`; privPanel.innerHTML = html; row.appendChild(privPanel); // Toggle panel visibility + rotate chevron + load models let _modelsLoaded = false; header.addEventListener('click', (e) => { if (e.target.closest('.admin-btn-delete, [data-adm-rename-user], [data-adm-toggle-admin]')) return; privPanel.classList.toggle('hidden'); const chevron = header.querySelector('.admin-user-chevron'); if (chevron) { const isOpen = !privPanel.classList.contains('hidden'); chevron.style.transform = isOpen ? 'rotate(180deg)' : ''; chevron.style.opacity = isOpen ? '0.7' : '0.3'; } // Load models list on first expand if (!_modelsLoaded && !privPanel.classList.contains('hidden')) { _modelsLoaded = true; _loadModelsForUser(u.username, allowedSet, modelsRestricted, blockAllModels, privPanel); } }); // Wire privilege changes (boolean + number inputs, not model checkboxes) privPanel.querySelectorAll('[data-priv]').forEach(input => { const handler = async () => { const username = input.dataset.user; const key = input.dataset.priv; let value; if (input.type === 'checkbox') value = input.checked; else if (input.type === 'number') value = parseInt(input.value) || 0; else value = input.value; try { await fetch(`/api/auth/users/${encodeURIComponent(username)}/privileges`, { method: 'PUT', credentials: 'same-origin', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify({ [key]: value }), }); } catch (e) { uiModule.showError('Failed to update privilege'); } }; if (input.type === 'checkbox') input.addEventListener('change', handler); else input.addEventListener('change', handler); }); } // Rename button const renameBtn = row.querySelector('[data-adm-rename-user]'); if (renameBtn) { renameBtn.addEventListener('click', async (e) => { e.stopPropagation(); const oldUsername = renameBtn.dataset.admRenameUser; const next = await uiModule.styledPrompt(`Rename "${oldUsername}"`, { defaultValue: oldUsername, placeholder: 'New username', confirmText: 'Rename', }); const username = (next || '').trim(); if (!username || username === oldUsername) return; try { const res = await fetch(`/api/auth/users/${encodeURIComponent(oldUsername)}/rename`, { method: 'PUT', credentials: 'same-origin', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify({ username }), }); const data = await res.json().catch(() => ({})); if (!res.ok) { uiModule.showError(data.detail || 'Failed to rename user'); return; } if (data.renamed_self) { window.location.reload(); return; } loadUsers(); } catch (err) { uiModule.showError('Failed to rename user'); } }); } // Delete button const delBtn = row.querySelector('[data-adm-del-user]'); if (delBtn) { delBtn.addEventListener('click', async (e) => { e.stopPropagation(); const username = delBtn.dataset.admDelUser; if (!await uiModule.styledConfirm(`Remove user "${username}"?`, { confirmText: 'Remove', danger: true })) return; const res = await fetch('/api/auth/users', { method: 'DELETE', credentials: 'same-origin', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify({ username }) }); if (res.ok) loadUsers(); else uiModule.showError('Failed to delete user'); }); } // Promote / demote (admin toggle) — present on every row const adminToggleBtn = row.querySelector('[data-adm-toggle-admin]'); if (adminToggleBtn) { adminToggleBtn.addEventListener('click', async (e) => { e.stopPropagation(); const username = adminToggleBtn.dataset.admToggleAdmin; const makeAdmin = adminToggleBtn.dataset.makeAdmin === '1'; const confirmMsg = makeAdmin ? `Grant admin rights to "${username}"? They'll get full access to all settings and users — including the power to demote or remove other admins (you included).` : `Revoke admin rights from "${username}"? They'll lose access to the admin panel.`; if (!await uiModule.styledConfirm(confirmMsg, { confirmText: makeAdmin ? 'Make admin' : 'Revoke admin', danger: !makeAdmin })) return; adminToggleBtn.disabled = true; try { const res = await fetch(`/api/auth/users/${encodeURIComponent(username)}/admin`, { method: 'PUT', credentials: 'same-origin', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify({ is_admin: makeAdmin }), }); const data = await res.json().catch(() => ({})); if (!res.ok) { uiModule.showError(data.detail || 'Failed to change admin status'); adminToggleBtn.disabled = false; return; } // Demoting yourself drops your own admin access — reload into the // normal-user view (mirrors the rename-self reload above). if (data.self) { window.location.reload(); return; } loadUsers(); } catch (err) { uiModule.showError('Failed to change admin status'); adminToggleBtn.disabled = false; } }); } list.appendChild(row); }); } catch (e) { list.innerHTML = '

Failed to load users

'; } } async function _loadModelsForUser(username, allowedSet, modelsRestricted, blockAllModels, privPanel) { const listEl = privPanel.querySelector(`.priv-models-list[data-user="${username}"]`); if (!listEl) return; try { // Use /api/model-endpoints rather than /api/models — the latter is // backed by `cached_models`, so endpoints that haven't been probed yet // (e.g. a freshly-added cloud API like DeepSeek) simply don't show up // until some other endpoint happens to trigger a cache refresh. The // endpoints listing always reflects every configured endpoint. const res = await fetch('/api/model-endpoints', { credentials: 'same-origin' }); const data = await res.json(); const allModels = []; (Array.isArray(data) ? data : []).forEach(ep => { if (!ep.online) return; (ep.models || []).forEach(mid => { allModels.push({ mid, epName: ep.name || '', display: mid.split('/').pop() }); }); }); if (!allModels.length) { listEl.innerHTML = 'No models available'; return; } let restricted = modelsRestricted; let blockAll = blockAllModels; listEl.innerHTML = sortModelObjects(allModels).map(m => { const checked = !blockAll && (!restricted || allowedSet.has(m.mid)) ? 'checked' : ''; return ` ${esc(m.display)} ${esc(m.epName)} `; }).join(''); // Save on change function _saveModels() { const checked = []; listEl.querySelectorAll('.priv-model-cb').forEach(cb => { if (cb.checked) checked.push(cb.dataset.mid); }); // Three distinct states the backend must be able to tell apart: // - all checked -> no restriction (allowed_models: [], block_all_models: false) // - none checked -> block everything (allowed_models: [], block_all_models: true) // - some checked -> allowlist (allowed_models: checked, block_all_models: false) let value, hintText; if (checked.length === allModels.length) { restricted = false; blockAll = false; value = []; hintText = 'All models allowed (no restrictions)'; } else if (checked.length === 0) { restricted = true; blockAll = true; value = []; hintText = 'No models allowed'; } else { restricted = true; blockAll = false; value = checked; hintText = value.length + ' model(s) allowed'; } const hint = privPanel.querySelector('.priv-models-list[data-user]')?.previousElementSibling?.querySelector('div[style*="opacity"]'); if (hint) hint.textContent = hintText; fetch(`/api/auth/users/${encodeURIComponent(username)}/privileges`, { method: 'PUT', credentials: 'same-origin', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify({ allowed_models: value, allowed_models_restricted: restricted, block_all_models: blockAll }), }).catch(() => {}); } listEl.querySelectorAll('.priv-model-cb').forEach(cb => cb.addEventListener('change', _saveModels)); // All / None buttons privPanel.querySelector(`.priv-models-all[data-user="${username}"]`)?.addEventListener('click', (e) => { e.preventDefault(); listEl.querySelectorAll('.priv-model-cb').forEach(cb => cb.checked = true); _saveModels(); }); privPanel.querySelector(`.priv-models-none[data-user="${username}"]`)?.addEventListener('click', (e) => { e.preventDefault(); listEl.querySelectorAll('.priv-model-cb').forEach(cb => cb.checked = false); _saveModels(); }); } catch (e) { listEl.innerHTML = 'Failed to load models'; } } function initSignupToggle() { const toggle = el('adm-signupToggle'); fetch('/api/auth/status', { credentials: 'same-origin' }) .then(r => r.json()) .then(d => { toggle.checked = !!d.signup_enabled; }) .catch(e => console.warn('Auth status fetch failed:', e)); toggle.addEventListener('change', async () => { try { const res = await fetch('/api/auth/signup-toggle', { method: 'POST', credentials: 'same-origin' }); const data = await res.json(); toggle.checked = data.signup_enabled; } catch (e) { toggle.checked = !toggle.checked; } }); } function initAddUser() { fetch('/api/auth/policy', { credentials: 'same-origin' }) .then(r => r.ok ? r.json() : null) .then(policy => { if (!policy) return; _authPolicy = policy; const admPw = el('adm-newPassword'); if (admPw) admPw.placeholder = `Password (min ${policy.password_min_length})`; }) .catch(() => {}); el('adm-addBtn').addEventListener('click', async () => { const msg = el('adm-addMsg'); msg.textContent = ''; msg.className = ''; const username = el('adm-newUsername').value.trim(); const password = el('adm-newPassword').value; const is_admin = el('adm-newIsAdmin').checked; if (!username) { msg.textContent = 'Username required'; msg.className = 'admin-error'; return; } if (password.length < _authPolicy.password_min_length) { msg.textContent = `Password must be at least ${_authPolicy.password_min_length} characters`; msg.className = 'admin-error'; return; } if (_authPolicy.reserved_usernames.includes(username.toLowerCase())) { msg.textContent = 'This username is reserved'; msg.className = 'admin-error'; return; } el('adm-addBtn').disabled = true; try { const res = await fetch('/api/auth/users', { method: 'POST', credentials: 'same-origin', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify({ username, password, is_admin }) }); const data = await res.json(); if (res.ok) { msg.textContent = 'User created'; msg.className = 'admin-success'; el('adm-newUsername').value = ''; el('adm-newPassword').value = ''; el('adm-newIsAdmin').checked = false; loadUsers(); } else { msg.textContent = data.detail || 'Failed'; msg.className = 'admin-error'; } } catch (e) { msg.textContent = 'Request failed'; msg.className = 'admin-error'; } el('adm-addBtn').disabled = false; }); } /* ═══════════════════════════════════════════ SERVICES TAB — Endpoints ═══════════════════════════════════════════ */ function _isLocalEndpoint(url) { if (!url) return false; try { const u = new URL(url); const h = u.hostname.toLowerCase(); if (h === 'localhost' || h === '127.0.0.1' || h === '0.0.0.0') return true; if (h.endsWith('.local')) return true; if (/^10\./.test(h)) return true; if (/^192\.168\./.test(h)) return true; if (/^172\.(1[6-9]|2[0-9]|3[01])\./.test(h)) return true; // Tailscale CGNAT range (100.64.0.0/10 → 100.64.x–100.127.x). Servers // found via "Scan for Servers" come back as tailnet IPs, which are still // your own machines, so group them under Local rather than API. if (/^100\.(6[4-9]|[7-9]\d|1[01]\d|12[0-7])\./.test(h)) return true; // Single-label hostnames are LAN by convention. if (!h.includes('.')) return true; return false; } catch { return false; } } async function _refreshAfterEndpointChange(deletedEndpointId) { try { const sm = window.sessionModule; const pending = sm && sm.getPendingChat ? sm.getPendingChat() : null; if (deletedEndpointId && pending && String(pending.endpointId || '') === String(deletedEndpointId)) { if (sm.setPendingChat) sm.setPendingChat(null); } } catch (_) {} try { if (window.modelsModule && window.modelsModule.refreshModels) { await window.modelsModule.refreshModels(true); } } catch (_) {} try { window.dispatchEvent(new CustomEvent('ge:model-endpoints-updated', { detail: { deletedEndpointId: deletedEndpointId || null } })); } catch (_) {} try { if (window.sessionModule && window.sessionModule.updateModelPicker) { window.sessionModule.updateModelPicker(); } } catch (_) {} } async function _selectAddedModelInChat(endpoint) { const modelId = endpoint && Array.isArray(endpoint.models) ? endpoint.models[0] : ''; if (!modelId) return; try { if (window.modelsModule && window.modelsModule.refreshModels) { await window.modelsModule.refreshModels(true); } } catch (_) {} try { document.dispatchEvent(new CustomEvent('odysseus:auto-select-model', { detail: { endpointId: endpoint.id || '', endpointName: endpoint.name || '', modelId, url: endpoint.base_url || '', } })); } catch (_) {} } async function loadEndpoints() { const listLocal = el('adm-epList-local'); const listApi = el('adm-epList-api'); // Fallback to the legacy single list if the split containers don't exist // (older HTML or third-party embedding). const listLegacy = el('adm-epList'); // Refresh model picker so new endpoints show up in chat if (window.modelsModule && window.modelsModule.refreshModels) { window.modelsModule.refreshModels(); setTimeout(() => { if (window.sessionModule && window.sessionModule.updateModelPicker) { window.sessionModule.updateModelPicker(); } }, 1500); } if (settingsModule && typeof settingsModule.refreshAiModelEndpoints === 'function') { settingsModule.refreshAiModelEndpoints(); } try { const res = await fetch('/api/model-endpoints', { credentials: 'same-origin' }); // Treat a non-OK response (e.g. 401/403 for non-admins, or backend // returning an error envelope) the same as "no endpoints yet": show the // empty state, not "Failed to load". The user just installed the app — // there's literally nothing to load, so the error read as broken UI. let data = []; if (res.ok) { try { data = await res.json(); } catch { data = []; } } if (!Array.isArray(data) || data.length === 0) { const empty = '

None

'; if (listLocal) listLocal.innerHTML = empty; if (listApi) listApi.innerHTML = '

None

'; if (listLegacy) listLegacy.innerHTML = empty; return; } const rowHtml = data.map(ep => { const visibleCount = ep.models.length; const totalCount = visibleCount + (ep.hidden_count || 0); // `ep.models` is the *visible* set — when every model is hidden it's // empty, but we still need to render the expand panel so the user can // un-hide them. Gate on the total instead. const hasModels = ep.online && totalCount > 0; const statusBadge = ep.status === 'empty' ? 'no models' : ep.online ? `${visibleCount}/${totalCount} models enabled` : 'offline'; const justAddedClass = (_recentlyAddedEpId && String(ep.id) === _recentlyAddedEpId) ? ' adm-ep-just-added' : ''; const category = ep.category || (_isLocalEndpoint(ep.base_url) ? 'local' : 'api'); const kindLabel = ep.endpoint_kind && ep.endpoint_kind !== 'auto' ? ep.endpoint_kind.toUpperCase() : ''; const keyLabel = ep.has_key ? (ep.api_key_fingerprint ? ` (key ${esc(ep.api_key_fingerprint)})` : ' (key set)') : ''; return `

${providerLogoFromUrl(ep.base_url) || ''} ${esc(ep.name)} ${ep.model_type === 'image' ? 'Image' : ''} ${kindLabel ? `${esc(kindLabel)}` : ''} ${statusBadge} ${ep.is_enabled ? '' : 'disabled'} ${hasModels ? `Click to manage models` : ''}

${hasModels ? '' : ''}

${esc(ep.base_url)}${category === 'local' ? `` : ''}${keyLabel}

${hasModels ? `` : ''}

`; }); // Partition rows into Local vs API for the split sections. // Subsections without any rows are hidden entirely (heading + all) // so empty groups don't take up vertical real estate. const _renderInto = (container, indices) => { if (!container) return; const section = container.closest('.adm-ep-section'); if (!indices.length) { if (section) section.style.display = 'none'; container.innerHTML = ''; return; } if (section) section.style.display = ''; container.innerHTML = indices.map(i => rowHtml[i]).join(''); }; const localIdx = [], apiIdx = []; data.forEach((ep, i) => ((ep.category || (_isLocalEndpoint(ep.base_url) ? 'local' : 'api')) === 'local' ? localIdx : apiIdx).push(i)); // Sort each section: enabled endpoints first, disabled at the bottom. // Preserve original order within each group via stable sort. const _sortByEnabled = (a, b) => Number(!!data[b].is_enabled) - Number(!!data[a].is_enabled); localIdx.sort(_sortByEnabled); apiIdx.sort(_sortByEnabled); _renderInto(listLocal, localIdx); _renderInto(listApi, apiIdx); if (listLegacy) listLegacy.innerHTML = rowHtml.join(''); // Iterate matching nodes across both containers. const queryAll = (sel) => { const out = []; [listLocal, listApi, listLegacy].forEach(c => { if (c) c.querySelectorAll(sel).forEach(n => out.push(n)); }); return out; }; queryAll('[data-adm-toggle-ep]').forEach(btn => { btn.addEventListener('click', async (e) => { e.stopPropagation(); await fetch(`/api/model-endpoints/${btn.dataset.admToggleEp}`, { method: 'PATCH' }); loadEndpoints(); }); }); queryAll('[data-adm-copy-url]').forEach(btn => { btn.addEventListener('click', (e) => { e.stopPropagation(); const url = btn.dataset.admCopyUrl || ''; if (!url) return; uiModule.copyToClipboard(url).then(() => { // Brief icon swap to a checkmark so the user gets feedback that // the copy actually happened. Reverts after ~1.4s. const prev = btn.innerHTML; btn.innerHTML = ''; btn.style.opacity = '1'; setTimeout(() => { btn.innerHTML = prev; btn.style.opacity = ''; }, 1400); }).catch(() => {}); }); }); queryAll('[data-adm-del-ep]').forEach(btn => { btn.addEventListener('click', async (e) => { e.stopPropagation(); var epId = btn.dataset.admDelEp; var isOffline = btn.dataset.admEpOnline === '0'; // Offline endpoints are already broken — skip the confirm dialog // entirely and delete immediately. The optimistic UI removal makes // the action feel instant. if (!isOffline) { var deps = []; try { var depRes = await fetch('/api/model-endpoints/' + epId + '/dependents', { credentials: 'same-origin' }); var depData = await depRes.json(); deps = depData.dependents || []; } catch (e) { /* proceed without warning */ } var msg = 'Delete this endpoint?'; if (deps.length) { msg += '\n\nThe following settings use this endpoint and will be reset:\n— ' + deps.join('\n— '); } if (!await uiModule.styledConfirm(msg, { confirmText: 'Delete', danger: true })) return; } // Optimistic: remove from UI immediately const row = btn.closest('[data-adm-ep-id]'); if (row) row.remove(); fetch('/api/model-endpoints/' + epId, { method: 'DELETE' }) .then(() => _refreshAfterEndpointChange(epId)) .then(() => loadEndpoints()) .catch(() => loadEndpoints()); }); }); // Clear the just-added marker now that the row has been rendered // with the animation class — keeps the glow from re-firing on every // subsequent loadEndpoints() call (e.g. when toggling a model). if (_recentlyAddedEpId) _recentlyAddedEpId = null; // Models expand/collapse (click anywhere on card) queryAll('[data-adm-ep-id]').forEach(row => { const header = row.querySelector('[data-adm-ep-header]'); if (!header) return; let _modelsLoaded = false; row.style.cursor = 'pointer'; row.addEventListener('click', async (e) => { // Don't let interactions inside the expanded panel re-fire the // expand/collapse handler — the search box was getting closed // because clicking it bubbled up to here. if (e.target.closest('.admin-btn-sm, .admin-btn-delete, .mcp-tools-list, .mcp-tools-header, .mcp-tools-search, input, label')) return; const epId = header.dataset.admEpHeader; const panel = row.querySelector(`[data-adm-ep-models-panel="${epId}"]`); if (!panel) return; panel.classList.toggle('hidden'); const chevron = row.querySelector('.admin-user-chevron'); const isOpen = !panel.classList.contains('hidden'); if (chevron) { chevron.style.transform = isOpen ? 'rotate(180deg)' : ''; chevron.style.opacity = isOpen ? '0.7' : '0.3'; } if (!_modelsLoaded && isOpen) { _modelsLoaded = true; // Our shared whirlpool spinner (consistent with the rest of the app). panel.innerHTML = ''; let _modelsSpin = null; const _ld = document.createElement('span'); _ld.style.cssText = 'opacity:0.55;font-size:11px;display:inline-flex;align-items:center;gap:8px;'; _ld.appendChild(document.createTextNode('Loading models…')); try { const _sp = (await import('./spinner.js')).default; _modelsSpin = _sp.createWhirlpool(14); _modelsSpin.element.style.cssText = 'width:14px;height:14px;margin:0;display:inline-block;'; _ld.appendChild(_modelsSpin.element); } catch (_) {} panel.appendChild(_ld); const _stopSpin = () => { try { _modelsSpin && _modelsSpin.stop(); } catch (_) {} }; const _loadingHtml = (label) => `${esc(label)}`; const renderModels = (models, warning = '') => { const sortedModels = sortModelObjects(models); const warningHtml = warning ? `

${esc(warning)}

` : ''; const attachRefresh = () => { panel.querySelector(`[data-ep-refresh-models="${epId}"]`)?.addEventListener('click', async (e) => { e.preventDefault(); panel.innerHTML = _loadingHtml('Refreshing models...'); try { const res = await fetch(`/api/model-endpoints/${epId}/models?refresh=true&refresh_timeout=60`, { credentials: 'same-origin' }); const refreshWarning = res.headers.get('X-Model-Refresh-Warning') || ''; if (!res.ok) throw new Error(`HTTP ${res.status}`); const refreshedModels = await res.json(); renderModels(refreshedModels, refreshWarning); if (refreshWarning && uiModule?.showToast) uiModule.showToast(refreshWarning, 6000); } catch (_) { renderModels(sortedModels, 'Model refresh failed; kept cached models.'); } }); }; if (!sortedModels.length) { panel.innerHTML = `

Models 0/0 enabled Refresh

${warningHtml}No models`; attachRefresh(); return; } const hiddenSet = new Set(sortedModels.filter(m => m.is_hidden).map(m => m.id)); const showSearch = sortedModels.length >= 8; panel.innerHTML = `

Models ${sortedModels.length - hiddenSet.size}/${sortedModels.length} enabled Refresh All None

${warningHtml}${showSearch ? `` : ''}

` + sortedModels.map(m => ` ${esc(m.display)} ` ).join('') + '

'; const filterRows = (q) => { const needle = q.trim().toLowerCase(); panel.querySelectorAll('[data-ep-model-row]').forEach(row => { row.style.display = (!needle || row.dataset.search.includes(needle)) ? '' : 'none'; }); }; attachRefresh(); panel.querySelector(`[data-ep-search="${epId}"]`)?.addEventListener('input', (e) => filterRows(e.target.value)); panel.querySelector(`[data-ep-select-all="${epId}"]`)?.addEventListener('click', (e) => { e.preventDefault(); panel.querySelectorAll('[data-ep-model-row]').forEach(row => { if (row.style.display !== 'none') row.querySelector('input[type=checkbox]').checked = true; }); _saveEpModelState(epId, panel); }); panel.querySelector(`[data-ep-select-none="${epId}"]`)?.addEventListener('click', (e) => { e.preventDefault(); panel.querySelectorAll('[data-ep-model-row]').forEach(row => { if (row.style.display !== 'none') row.querySelector('input[type=checkbox]').checked = false; }); _saveEpModelState(epId, panel); }); panel.querySelectorAll('input[type=checkbox]').forEach(cb => { cb.addEventListener('change', () => _saveEpModelState(epId, panel)); }); }; try { const res = await fetch(`/api/model-endpoints/${epId}/models`, { credentials: 'same-origin' }); if (!res.ok) throw new Error(`HTTP ${res.status}`); const models = await res.json(); _stopSpin(); renderModels(models); } catch (e) { _stopSpin(); panel.innerHTML = 'Failed to load models'; } } }); }); } catch (e) { const err = '

Failed to load

'; [listLocal, listApi, listLegacy].forEach(c => { if (c) c.innerHTML = err; }); } } async function _saveEpModelState(epId, panel) { const hidden = []; panel.querySelectorAll('input[type=checkbox]').forEach(cb => { if (!cb.checked) hidden.push(cb.dataset.epModelId); }); const total = panel.querySelectorAll('input[type=checkbox]').length; try { await fetch(`/api/model-endpoints/${epId}/models`, { method: 'PATCH', headers: { 'Content-Type': 'application/json' }, credentials: 'same-origin', body: JSON.stringify({ hidden }), }); const countLabel = panel.querySelector('.mcp-tools-count'); if (countLabel) countLabel.textContent = `${total - hidden.length}/${total} enabled`; const row = panel.closest('[data-adm-ep-id]'); if (row) { const badge = row.querySelector('.admin-badge'); if (badge && !badge.classList.contains('admin-badge-off')) badge.textContent = `${total - hidden.length}/${total} models enabled`; } if (settingsModule && typeof settingsModule.refreshAiModelEndpoints === 'function') { settingsModule.refreshAiModelEndpoints(); } } catch (e) { /* silent */ } } function initEndpointForm() { const provider = el('adm-epProvider'); const urlInput = el('adm-epUrl'); const kindSel = el('adm-epKind'); // Custom provider picker — mirrors the (now hidden) '; } list.innerHTML = html; // Prevent toggle clicks from expanding/collapsing list.querySelectorAll('.admin-tool-cat-right').forEach(span => { span.addEventListener('click', e => e.stopPropagation()); }); // Wire category expand/collapse list.querySelectorAll('[data-tool-cat]').forEach(header => { header.addEventListener('click', () => { const body = el(header.dataset.toolCat); if (!body) return; body.classList.toggle('hidden'); const chevron = header.querySelector('.admin-tool-cat-chevron'); const isOpen = !body.classList.contains('hidden'); if (chevron) { chevron.style.transform = isOpen ? 'rotate(180deg)' : ''; chevron.style.opacity = isOpen ? '0.7' : '0.3'; } }); }); // Helper: save disabled tools + update counters async function _saveToolState() { const allChecks = list.querySelectorAll('input[data-tool-id]'); const disabled = []; allChecks.forEach(c => { if (!c.checked) disabled.push(c.dataset.toolId); }); await fetch('/api/tools', { method: 'POST', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify({ disabled }), credentials: 'same-origin', }); } function _updateCatCounter(catEl) { if (!catEl) return; const catChecks = catEl.querySelectorAll('input[data-tool-id]'); const catEnabled = Array.from(catChecks).filter(c => c.checked).length; const counter = catEl.querySelector('.admin-tool-cat-count'); if (counter) counter.textContent = catEnabled + '/' + catChecks.length; const catToggle = catEl.querySelector('input[data-tool-cat-toggle]'); if (catToggle) catToggle.checked = (catEnabled === catChecks.length); } // Wire individual tool toggles list.querySelectorAll('input[data-tool-id]').forEach(chk => { chk.addEventListener('change', async () => { await _saveToolState(); _updateCatCounter(chk.closest('.admin-tool-category')); }); }); // Wire category-level toggle (enable/disable all in category) list.querySelectorAll('input[data-tool-cat-toggle]').forEach(chk => { chk.addEventListener('change', async () => { const catEl = chk.closest('.admin-tool-category'); if (!catEl) return; const checked = chk.checked; catEl.querySelectorAll('input[data-tool-id]').forEach(c => { c.checked = checked; }); await _saveToolState(); _updateCatCounter(catEl); }); }); } catch (e) { console.error('Failed to load tools:', e); list.innerHTML = '

Failed to load tools

'; } } async function loadMcpServers() { const list = el('adm-mcpList'); if (!list) return; // MCP section not visible / not yet rendered try { const res = await fetch('/api/mcp/servers', { credentials: 'same-origin' }); const servers = await res.json(); if (!servers.length) { list.innerHTML = '

No MCP servers configured

'; return; } list.innerHTML = servers.map(s => { const statusColor = s.needs_oauth ? '#e5a33a' : s.status === 'connected' ? 'var(--fg)' : s.status === 'error' ? 'var(--red)' : 'color-mix(in srgb, var(--fg) 50%, transparent)'; const toolInfo = s.status === 'connected' ? `${s.enabled_tool_count}/${s.tool_count} tools enabled` : ''; const statusText = s.needs_oauth ? 'Needs authorization' : s.status === 'connected' ? `Connected (${toolInfo})` : s.status === 'error' ? `Error: ${s.error || 'unknown'}` : 'Disconnected'; const hasTools = s.status === 'connected' && s.tool_count > 0; return `

${esc(s.name)} ${statusText} ${hasTools ? `Click to manage tools` : ''}

${s.needs_oauth ? `Authorize` : ''} ${hasTools ? '' : ''}

${hasTools ? `` : ''}

`; }).join(''); list.querySelectorAll('[data-adm-mcp-reconnect]').forEach(btn => { btn.addEventListener('click', async () => { const msg = el('adm-mcpMsg'); msg.textContent = 'Reconnecting...'; msg.className = ''; try { const res = await fetch(`/api/mcp/servers/${btn.dataset.admMcpReconnect}/reconnect`, { method: 'POST', credentials: 'same-origin' }); const data = await res.json(); msg.textContent = data.connected ? `Reconnected (${data.tool_count} tools)` : `Failed: ${data.error || 'unknown'}`; msg.className = data.connected ? 'admin-success' : 'admin-error'; loadMcpServers(); } catch (e) { msg.textContent = 'Failed: ' + e.message; msg.className = 'admin-error'; } }); }); list.querySelectorAll('[data-adm-mcp-toggle]').forEach(btn => { btn.addEventListener('click', async () => { const fd = new FormData(); fd.append('is_enabled', btn.dataset.admMcpEnable); await fetch(`/api/mcp/servers/${btn.dataset.admMcpToggle}`, { method: 'PATCH', body: fd, credentials: 'same-origin' }); loadMcpServers(); }); }); list.querySelectorAll('[data-adm-mcp-delete]').forEach(btn => { btn.addEventListener('click', async () => { if (!await uiModule.styledConfirm('Delete this MCP server?', { confirmText: 'Delete', danger: true })) return; await fetch(`/api/mcp/servers/${btn.dataset.admMcpDelete}`, { method: 'DELETE', credentials: 'same-origin' }); loadMcpServers(); }); }); // Tools expand/collapse (click anywhere on card) list.querySelectorAll('[data-adm-mcp-id]').forEach(row => { const header = row.querySelector('[data-adm-mcp-header]'); if (!header) return; let _toolsLoaded = false; row.style.cursor = 'pointer'; row.addEventListener('click', async (e) => { if (e.target.closest('.admin-btn-sm, .admin-btn-delete, a, .mcp-tools-list, .mcp-tools-header')) return; const sid = header.dataset.admMcpHeader; const panel = row.querySelector(`[data-adm-mcp-tools-panel="${sid}"]`); if (!panel) return; panel.classList.toggle('hidden'); const chevron = row.querySelector('.admin-user-chevron'); const isOpen = !panel.classList.contains('hidden'); if (chevron) { chevron.style.transform = isOpen ? 'rotate(180deg)' : ''; chevron.style.opacity = isOpen ? '0.7' : '0.3'; } if (!_toolsLoaded && isOpen) { _toolsLoaded = true; panel.innerHTML = 'Loading tools...'; try { const res = await fetch(`/api/mcp/servers/${sid}/tools`, { credentials: 'same-origin' }); const tools = await res.json(); if (!tools.length) { panel.innerHTML = 'No tools'; return; } const disabled = new Set(tools.filter(t => t.is_disabled).map(t => t.name)); panel.innerHTML = `

Tools ${tools.length - disabled.size}/${tools.length} enabled All None

` + tools.map(t => ` ${esc(t.name)} — ${esc((t.description || '').slice(0, 80))} ` ).join('') + '

'; panel.querySelector(`[data-mcp-select-all="${sid}"]`)?.addEventListener('click', (e) => { e.preventDefault(); panel.querySelectorAll('input[type=checkbox]').forEach(cb => cb.checked = true); _saveMcpToolState(sid, panel); }); panel.querySelector(`[data-mcp-select-none="${sid}"]`)?.addEventListener('click', (e) => { e.preventDefault(); panel.querySelectorAll('input[type=checkbox]').forEach(cb => cb.checked = false); _saveMcpToolState(sid, panel); }); panel.querySelectorAll('input[type=checkbox]').forEach(cb => { cb.addEventListener('change', () => _saveMcpToolState(sid, panel)); }); } catch (e) { panel.innerHTML = 'Failed to load tools'; } } }); }); } catch (e) { if (list) list.innerHTML = '

Failed to load MCP servers

'; } } async function _saveMcpToolState(serverId, panel) { const disabled = []; panel.querySelectorAll('input[type=checkbox]').forEach(cb => { if (!cb.checked) disabled.push(cb.dataset.mcpToolName); }); const total = panel.querySelectorAll('input[type=checkbox]').length; try { await fetch(`/api/mcp/servers/${serverId}/tools`, { method: 'PATCH', headers: { 'Content-Type': 'application/json' }, credentials: 'same-origin', body: JSON.stringify({ disabled }), }); // Update the count label in the panel const countLabel = panel.querySelector('.mcp-tools-count'); if (countLabel) countLabel.textContent = `${total - disabled.length}/${total} enabled`; // Update badge in the server row const row = panel.closest('[data-adm-mcp-id]'); if (row) { const badge = row.querySelector('.admin-badge'); if (badge) badge.textContent = `Connected (${total - disabled.length}/${total} tools enabled)`; } } catch (e) { /* silent */ } } function initMcpForm() { const cmdEl = el('adm-mcpCommand'); if (!cmdEl) return; // MCP form not present in this build — nothing to wire const transportSel = el('adm-mcpTransport'); const sseRow = el('adm-mcpSseRow'); const envRow = el('adm-mcpEnvRow'); const envFieldsWrap = el('adm-mcpEnvFields'); const helpBox = el('adm-mcpHelp'); const cmdRow = cmdEl.parentElement; let _activeHelp = null; let _envKeys = []; // track which env keys have dedicated fields let _activeOauthFile = null; // preset oauthFile config (for Google servers) let _activeOauth = null; // preset OAuth flow config (provider, scopes, etc.) function _clearEnvFields() { envFieldsWrap.innerHTML = ''; _envKeys = []; envRow.style.display = 'none'; el('adm-mcpEnv').value = ''; _activeOauth = null; } function _buildEnvFields(envObj, help, preset) { _clearEnvFields(); const keys = Object.keys(envObj); if (!keys.length) return; _envKeys = keys; // Provider dropdown (e.g. for Email IMAP/SMTP) if (preset?.providerDropdown) { const pd = preset.providerDropdown; const row = document.createElement('div'); row.className = 'admin-model-form-row'; row.style.cssText = 'gap:6px;align-items:center;'; const label = document.createElement('span'); label.style.cssText = 'font-size:11px;opacity:0.55;min-width:0;white-space:nowrap;'; label.textContent = pd.label || 'Provider'; const select = document.createElement('select'); select.style.cssText = 'flex:1;padding:6px 8px;border-radius:6px;border:1px solid var(--border);background:var(--bg-secondary);color:var(--text-primary);font-size:12px;'; pd.options.forEach((opt, i) => { const o = document.createElement('option'); o.value = i; o.textContent = opt.name; select.appendChild(o); }); select.addEventListener('change', () => { const opt = pd.options[parseInt(select.value)]; for (const [envKey, field] of Object.entries(pd.targets)) { const inp = envFieldsWrap.querySelector(`.mcp-env-input[data-env-key="${envKey}"]`); if (inp) inp.value = opt[field] || ''; } }); row.appendChild(label); row.appendChild(select); envFieldsWrap.appendChild(row); // Auto-fill with first provider after inputs are created setTimeout(() => { const first = pd.options[0]; for (const [envKey, field] of Object.entries(pd.targets)) { const inp = envFieldsWrap.querySelector(`.mcp-env-input[data-env-key="${envKey}"]`); if (inp && !inp.value) inp.value = first[field] || ''; } }, 0); } for (const key of keys) { const row = document.createElement('div'); row.className = 'admin-model-form-row'; row.style.cssText = 'gap:6px;align-items:center;'; const label = document.createElement('span'); label.style.cssText = 'font-size:11px;opacity:0.55;min-width:0;white-space:nowrap;'; label.textContent = key.replace(/_/g, ' ').replace(/\b\w/g, c => c.toUpperCase()); const input = document.createElement('input'); input.type = key.toLowerCase().includes('secret') || key.toLowerCase().includes('token') || key.toLowerCase().includes('key') || key.toLowerCase().includes('password') ? 'password' : 'text'; input.placeholder = key; input.dataset.envKey = key; input.className = 'mcp-env-input'; input.style.cssText = 'flex:1;'; if (envObj[key]) input.value = envObj[key]; row.appendChild(label); row.appendChild(input); envFieldsWrap.appendChild(row); } // Help toggle link if (help) { _activeHelp = help; const helpLink = document.createElement('a'); helpLink.textContent = 'How do I get these?'; helpLink.href = '#'; helpLink.style.cssText = 'font-size:10.5px;opacity:0.5;margin-top:2px;display:inline-block;'; helpLink.addEventListener('click', (e) => { e.preventDefault(); helpBox.style.display = helpBox.style.display === 'none' ? '' : 'none'; }); envFieldsWrap.appendChild(helpLink); helpBox.textContent = help; helpBox.style.display = 'none'; } else { _activeHelp = null; helpBox.style.display = 'none'; } } // Collect env from either dedicated fields or raw JSON fallback function _collectEnv() { if (_envKeys.length) { const obj = {}; envFieldsWrap.querySelectorAll('.mcp-env-input').forEach(inp => { if (inp.value.trim()) obj[inp.dataset.envKey] = inp.value.trim(); }); return JSON.stringify(obj); } return el('adm-mcpEnv').value.trim() || '{}'; } transportSel.addEventListener('change', () => { const isSse = transportSel.value === 'sse'; sseRow.style.display = isSse ? '' : 'none'; cmdRow.style.display = isSse ? 'none' : ''; if (isSse) { _clearEnvFields(); helpBox.style.display = 'none'; } }); // Preset catalog const presetSel = el('adm-mcpPreset'); if (presetSel) { MCP_PRESETS.forEach((p, i) => { const opt = document.createElement('option'); opt.value = i; opt.textContent = p.name + (Object.keys(p.env).length ? ' (requires keys)' : ''); presetSel.appendChild(opt); }); presetSel.addEventListener('change', () => { if (presetSel.value === '') return; const p = MCP_PRESETS[parseInt(presetSel.value)]; el('adm-mcpName').value = p.name.toLowerCase().replace(/\s+/g, '-'); transportSel.value = 'stdio'; el('adm-mcpCommand').value = p.command; el('adm-mcpArgs').value = JSON.stringify(p.args); sseRow.style.display = 'none'; cmdRow.style.display = ''; _buildEnvFields(p.env, p.help || null, p); _activeOauthFile = p.oauthFile || null; _activeOauth = p.oauth || null; presetSel.value = ''; // Focus first env field if keys are needed const firstInput = envFieldsWrap.querySelector('.mcp-env-input'); if (firstInput) firstInput.focus(); else el('adm-mcpAddBtn').focus(); }); } el('adm-mcpAddBtn').addEventListener('click', async () => { const name = el('adm-mcpName').value.trim(); const transport = transportSel.value; const command = el('adm-mcpCommand').value.trim(); const args = el('adm-mcpArgs').value.trim() || '[]'; const env = _collectEnv(); const url = el('adm-mcpUrl').value.trim(); const msg = el('adm-mcpMsg'); if (!name) { msg.textContent = 'Name is required'; msg.className = 'admin-error'; return; } if (transport === 'stdio' && !command) { msg.textContent = 'Command is required for stdio'; msg.className = 'admin-error'; return; } if (transport === 'sse' && !url) { msg.textContent = 'URL is required for SSE'; msg.className = 'admin-error'; return; } try { JSON.parse(env); } catch { msg.textContent = 'Env must be valid JSON'; msg.className = 'admin-error'; return; } const fd = new FormData(); fd.append('name', name); fd.append('transport', transport); fd.append('command', command); fd.append('args', args); fd.append('env', env); fd.append('url', url); // If preset has oauthFile config, send credentials for file generation if (_activeOauthFile) { const envObj = JSON.parse(env); fd.append('oauth_file', JSON.stringify({ dir: _activeOauthFile.dir, filename: _activeOauthFile.filename, client_id: envObj.GOOGLE_CLIENT_ID || '', client_secret: envObj.GOOGLE_CLIENT_SECRET || '', })); } // If preset has OAuth flow config, send it so the server can handle authorization if (_activeOauth) { fd.append('oauth_config', JSON.stringify(_activeOauth)); } msg.textContent = 'Adding...'; msg.className = ''; try { const res = await fetch('/api/mcp/servers', { method: 'POST', body: fd, credentials: 'same-origin' }); const data = await res.json(); if (data.needs_oauth) { msg.innerHTML = `Added ${esc(name)} — Authorize with Google to connect`; msg.className = 'admin-success'; } else if (data.connected) { msg.textContent = `Added ${name} (${data.tool_count} tools discovered)`; msg.className = 'admin-success'; } else { msg.textContent = `Added but connection failed: ${data.error || 'unknown'}`; msg.className = 'admin-error'; } el('adm-mcpName').value = ''; el('adm-mcpCommand').value = ''; el('adm-mcpArgs').value = ''; el('adm-mcpUrl').value = ''; _clearEnvFields(); helpBox.style.display = 'none'; _activeHelp = null; _activeOauthFile = null; _activeOauth = null; loadMcpServers(); } catch (e) { msg.textContent = 'Failed: ' + e.message; msg.className = 'admin-error'; } }); } /* ── Embedding model ── No settings UI: the embedding model (RAG, semantic memory, tool selection) is fixed infrastructure that ships with the app, and swapping it would invalidate every existing vector. Configure via the FASTEMBED_MODEL / EMBEDDING_URL env vars if you really need to override it. */ /* ── RAG ── */ async function loadRag() { try { const res = await fetch('/api/personal'); const data = await res.json(); const dirList = el('adm-ragDirList'); const dirs = data.directories || []; if (dirs.length === 0) { dirList.innerHTML = '

No directories indexed

'; } else { dirList.innerHTML = dirs.map(d => `

${esc(d)}

`).join(''); dirList.querySelectorAll('[data-adm-rag-dir]').forEach(btn => { btn.addEventListener('click', async () => { if (!await uiModule.styledConfirm(`Remove directory "${btn.dataset.admRagDir}" from RAG?`, { confirmText: 'Remove', danger: true })) return; btn.disabled = true; btn.textContent = '...'; try { const res = await fetch('/api/personal/remove_directory?directory=' + encodeURIComponent(btn.dataset.admRagDir), { method: 'DELETE' }); if (res.ok) { ragMsg('Directory removed'); loadRag(); } else { const e = await res.json(); ragMsg(e.detail || 'Failed', true); } } catch (e) { ragMsg('Error: ' + e.message, true); } }); }); } const fileList = el('adm-ragFileList'); const files = data.files || []; if (files.length === 0) { fileList.innerHTML = '

No files indexed

'; } else { fileList.innerHTML = files.map(f => { const size = f.size ? (f.size > 1024 ? (f.size / 1024).toFixed(1) + ' KB' : f.size + ' B') : ''; return `

${esc(f.name)}${size}

`; }).join(''); fileList.querySelectorAll('[data-adm-rag-file]').forEach(btn => { btn.addEventListener('click', async () => { if (!await uiModule.styledConfirm(`Delete "${btn.dataset.admRagFile}" from RAG?`, { confirmText: 'Delete', danger: true })) return; btn.disabled = true; btn.textContent = '...'; try { const res = await fetch('/api/personal/file?filepath=' + encodeURIComponent(btn.dataset.admRagFile), { method: 'DELETE' }); if (res.ok) { ragMsg('File removed'); loadRag(); } else { const e = await res.json(); ragMsg(e.detail || 'Failed', true); } } catch (e) { ragMsg('Error: ' + e.message, true); } }); }); } } catch (e) { el('adm-ragDirList').innerHTML = '

Failed to load

'; el('adm-ragFileList').innerHTML = ''; } } let _ragMsgTimer = null; function ragMsg(text, isError, persist) { const s = el('adm-ragStatus'); s.textContent = text; s.style.color = isError ? 'var(--red)' : 'var(--fg)'; if (_ragMsgTimer) { clearTimeout(_ragMsgTimer); _ragMsgTimer = null; } if (text && !persist) _ragMsgTimer = setTimeout(() => { s.textContent = ''; }, 5000); } async function ragUpload(files) { if (!files || files.length === 0) return; ragMsg('Uploading ' + files.length + ' file(s)...', false, true); const fd = new FormData(); for (const f of files) fd.append('files', f); try { const res = await fetch('/api/personal/upload', { method: 'POST', body: fd }); const data = await res.json(); if (data.success) { ragMsg(`Uploaded ${data.uploaded.length} file(s), ${data.indexed_count} chunks indexed`); loadRag(); } else ragMsg(data.detail || 'Upload failed', true); } catch (e) { ragMsg('Upload error: ' + e.message, true); } } function initRag() { const dropZone = el('adm-ragDropZone'); const fileInput = el('adm-ragFileInput'); dropZone.addEventListener('click', () => fileInput.click()); fileInput.addEventListener('change', () => ragUpload(fileInput.files)); dropZone.addEventListener('dragover', e => { e.preventDefault(); dropZone.classList.add('dragover'); }); dropZone.addEventListener('dragleave', () => dropZone.classList.remove('dragover')); dropZone.addEventListener('drop', e => { e.preventDefault(); dropZone.classList.remove('dragover'); ragUpload(e.dataTransfer.files); }); el('adm-ragAddDirBtn').addEventListener('click', async () => { const dir = el('adm-ragDirInput').value.trim(); if (!dir) return; const btn = el('adm-ragAddDirBtn'); btn.disabled = true; btn.textContent = 'Indexing...'; try { const res = await fetch('/api/personal/add_directory', { method: 'POST', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify({ directory: dir }) }); const data = await res.json(); if (data.success) { ragMsg(`Indexed ${data.indexed_count} chunks from directory`); el('adm-ragDirInput').value = ''; loadRag(); } else ragMsg(data.detail || data.message || 'Failed', true); } catch (e) { ragMsg('Error: ' + e.message, true); } btn.disabled = false; btn.textContent = 'Add Directory'; }); el('adm-ragReloadBtn').addEventListener('click', async () => { const btn = el('adm-ragReloadBtn'); btn.disabled = true; btn.textContent = 'Reloading...'; try { const res = await fetch('/api/personal/reload', { method: 'POST' }); const data = await res.json(); ragMsg(`Index reloaded: ${data.count} documents`); loadRag(); } catch (e) { ragMsg('Reload failed: ' + e.message, true); } btn.disabled = false; btn.textContent = 'Reload Index'; }); } /* ═══════════════════════════════════════════ SYSTEM TAB — Tokens ═══════════════════════════════════════════ */ // Catalog mirrors the one in settings.js integration form. Keep keys in // sync with the backend scope allowlist. const _TOKEN_SCOPES = [ { key: 'todos:read', label: 'Todos read', detail: 'Read notes and checklists' }, { key: 'todos:write', label: 'Todos write', detail: 'Create, update, delete, and toggle todo items' }, { key: 'documents:read', label: 'Documents read', detail: 'Read documents when a document API is enabled' }, { key: 'documents:write', label: 'Documents write', detail: 'Create and update draft documents' }, { key: 'email:read', label: 'Email read', detail: 'Read email when an email API is enabled' }, { key: 'email:draft', label: 'Email draft', detail: 'Create email reply drafts without sending' }, { key: 'email:send', label: 'Email send', detail: 'Send email directly' }, { key: 'calendar:read', label: 'Calendar read', detail: 'Read calendar events when enabled' }, { key: 'calendar:write', label: 'Calendar write', detail: 'Create and update calendar events' }, { key: 'memory:read', label: 'Memory read', detail: 'Read memory when enabled' }, { key: 'memory:write', label: 'Memory write', detail: 'Write memory when enabled' }, { key: 'cookbook:read', label: 'Cookbook read', detail: 'List cookbook tasks + tail their tmux output' }, { key: 'cookbook:launch', label: 'Cookbook launch', detail: 'Launch and stop cookbook serve tasks' }, ]; function _renderTokenScopeRows(t) { const have = new Set(t.scopes || []); return _TOKEN_SCOPES.map(s => { const action = (s.key.split(':')[1] || '').toLowerCase(); const pill = action === 'read' ? 'background:rgba(150,150,150,0.18);color:var(--fg-muted,#888);' : 'background:color-mix(in srgb, var(--accent, var(--red)) 18%, transparent);color:var(--accent, var(--red));'; const tool = s.label.replace(/\s+(read|write|draft|send|launch)$/i, ''); return ` ${esc(tool)} ${esc(action)} ${esc(s.detail)} `; }).join(''); } async function loadTokens() { const list = el('adm-tokenList'); if (!list) return; try { const res = await fetch('/api/tokens', { credentials: 'same-origin' }); const tokens = await res.json(); if (!tokens.length) { list.innerHTML = '

No API tokens

'; return; } list.innerHTML = tokens.map(t => `

${esc(t.token_prefix)}... ${t.owner ? `Owner: ${esc(t.owner)}` : ''} ${t.last_used_at ? `Last used: ${new Date(t.last_used_at).toLocaleDateString()}` : 'Never used'}

`).join(''); // Revoke list.querySelectorAll('[data-adm-del-token]').forEach(btn => { btn.addEventListener('click', async () => { if (!await uiModule.styledConfirm('Revoke this API token? External integrations using it will stop working.', { confirmText: 'Revoke', danger: true })) return; await fetch(`/api/tokens/${btn.dataset.admDelToken}`, { method: 'DELETE', credentials: 'same-origin' }); loadTokens(); // Codex / Claude integration cards on the Integrations panel are // backed by these tokens — let them re-render so the deleted token // disappears there too. try { window.dispatchEvent(new CustomEvent('odysseus-integrations-changed')); } catch (_) {} }); }); // Toggle permissions panel list.querySelectorAll('[data-adm-tok-toggle]').forEach(btn => { btn.addEventListener('click', () => { const panel = list.querySelector(`[data-adm-tok-perm="${btn.dataset.admTokToggle}"]`); if (!panel) return; panel.style.display = panel.style.display === 'none' ? '' : 'none'; }); }); // Rename list.querySelectorAll('.adm-tok-rename').forEach(input => { const original = input.value; const commit = async () => { const name = (input.value || '').trim(); if (!name || name === original) return; try { const r = await fetch(`/api/tokens/${input.dataset.tokenId}`, { method: 'PATCH', credentials: 'same-origin', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify({ name }), }); if (!r.ok) throw new Error('Save failed'); loadTokens(); } catch (_) { input.value = original; } }; input.addEventListener('blur', commit); input.addEventListener('keydown', e => { if (e.key === 'Enter') { e.preventDefault(); input.blur(); } }); }); // Scope toggle change → PATCH the whole scopes array for this token. list.querySelectorAll('.adm-tok-scope').forEach(cb => { cb.addEventListener('change', async () => { const tokenId = cb.dataset.tokenId; const panel = list.querySelector(`[data-adm-tok-perm="${tokenId}"]`); const msg = list.querySelector(`.adm-tok-scope-msg[data-token-id="${tokenId}"]`); const scopes = Array.from(panel.querySelectorAll('.adm-tok-scope:checked')).map(input => input.dataset.scope); try { const r = await fetch(`/api/tokens/${tokenId}`, { method: 'PATCH', credentials: 'same-origin', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify({ scopes }), }); const d = await r.json().catch(() => ({})); if (!r.ok) throw new Error(d.detail || 'Failed'); if (msg) { msg.textContent = 'Saved'; msg.style.color = 'var(--green, #50fa7b)'; setTimeout(() => { msg.textContent = ''; }, 1200); } } catch (err) { cb.checked = !cb.checked; if (msg) { msg.textContent = (err && err.message) || 'Failed'; msg.style.color = 'var(--red)'; } } }); }); } catch (e) { list.innerHTML = '

Failed to load tokens

'; } } function initTokenForm() { const addBtn = el('adm-tokenAddBtn'); if (!addBtn || addBtn.dataset.bound) return; addBtn.dataset.bound = '1'; addBtn.addEventListener('click', async () => { const msg = el('adm-tokenMsg'); const reveal = el('adm-tokenReveal'); msg.textContent = ''; msg.className = ''; reveal.style.display = 'none'; const name = el('adm-tokenName').value.trim(); if (!name) { msg.textContent = 'Token name is required'; msg.className = 'admin-error'; return; } const fd = new FormData(); fd.append('name', name); const scopes = (el('adm-tokenScopes')?.value || '').trim(); if (scopes) fd.append('scopes', scopes); try { const res = await fetch('/api/tokens', { method: 'POST', body: fd, credentials: 'same-origin' }); const data = await res.json(); if (res.ok) { el('adm-tokenValue').textContent = data.token; reveal.style.display = ''; el('adm-tokenName').value = ''; if (el('adm-tokenScopes')) el('adm-tokenScopes').value = ''; loadTokens(); } else { msg.textContent = data.detail || 'Failed'; msg.className = 'admin-error'; } } catch (e) { msg.textContent = 'Request failed'; msg.className = 'admin-error'; } }); const TOKEN_COPY_ICON = ''; const TOKEN_CHECK_ICON = ''; el('adm-tokenCopyBtn').addEventListener('click', () => { const val = el('adm-tokenValue').textContent; const btn = el('adm-tokenCopyBtn'); navigator.clipboard.writeText(val).then(() => { btn.innerHTML = TOKEN_CHECK_ICON; btn.style.color = 'var(--accent, var(--red))'; btn.style.opacity = '1'; setTimeout(() => { btn.innerHTML = TOKEN_COPY_ICON; btn.style.color = ''; btn.style.opacity = '0.7'; }, 1600); }); }); } /* ── Webhooks ── */ async function loadWebhooks() { const list = el('adm-whList'); try { const res = await fetch('/api/webhooks', { credentials: 'same-origin' }); const hooks = await res.json(); if (!hooks.length) { list.innerHTML = '

No webhooks configured

'; return; } list.innerHTML = hooks.map(w => { const events = (w.events || []).map(e => `${esc(e)}`).join(' '); const statusBadge = w.last_status_code ? `${w.last_status_code}` : ''; const lastTriggered = w.last_triggered_at ? new Date(w.last_triggered_at).toLocaleString() : 'Never'; const errorText = w.last_error ? `

Error: ${esc(w.last_error.substring(0, 80))}

` : ''; return `

${esc(w.name)} ${w.is_active ? '' : 'disabled'} ${w.has_secret ? 'signed' : ''}

${esc(w.url)}

${events}

Last: ${lastTriggered} ${statusBadge}

${errorText}

`; }).join(''); list.querySelectorAll('[data-adm-wh-test]').forEach(btn => { btn.addEventListener('click', async () => { const msg = el('adm-whMsg'); msg.textContent = 'Sending test...'; msg.className = ''; try { const res = await fetch(`/api/webhooks/${btn.dataset.admWhTest}/test`, { method: 'POST', credentials: 'same-origin' }); msg.textContent = res.ok ? 'Test sent!' : 'Test failed'; msg.className = res.ok ? 'admin-success' : 'admin-error'; setTimeout(() => loadWebhooks(), 1000); } catch (e) { msg.textContent = 'Failed: ' + e.message; msg.className = 'admin-error'; } }); }); list.querySelectorAll('[data-adm-wh-toggle]').forEach(btn => { btn.addEventListener('click', async () => { await fetch(`/api/webhooks/${btn.dataset.admWhToggle}`, { method: 'PATCH', credentials: 'same-origin' }); loadWebhooks(); }); }); list.querySelectorAll('[data-adm-wh-delete]').forEach(btn => { btn.addEventListener('click', async () => { if (!await uiModule.styledConfirm('Delete this webhook?', { confirmText: 'Delete', danger: true })) return; await fetch(`/api/webhooks/${btn.dataset.admWhDelete}`, { method: 'DELETE', credentials: 'same-origin' }); loadWebhooks(); }); }); } catch (e) { list.innerHTML = '

Failed to load webhooks

'; } } function initWebhookForm() { el('adm-whAddBtn').addEventListener('click', async () => { const msg = el('adm-whMsg'); msg.textContent = ''; msg.className = ''; const name = el('adm-whName').value.trim(); const url = el('adm-whUrl').value.trim(); const secret = el('adm-whSecret').value.trim(); const events = Array.from(modalEl.querySelectorAll('.adm-wh-event:checked')).map(e => e.value).join(','); if (!name) { msg.textContent = 'Name is required'; msg.className = 'admin-error'; return; } if (!url) { msg.textContent = 'URL is required'; msg.className = 'admin-error'; return; } if (!events) { msg.textContent = 'Select at least one event'; msg.className = 'admin-error'; return; } const fd = new FormData(); fd.append('name', name); fd.append('url', url); fd.append('secret', secret); fd.append('events', events); try { const res = await fetch('/api/webhooks', { method: 'POST', body: fd, credentials: 'same-origin' }); if (res.ok) { msg.textContent = 'Webhook added'; msg.className = 'admin-success'; el('adm-whName').value = ''; el('adm-whUrl').value = ''; el('adm-whSecret').value = ''; loadWebhooks(); } else { const d = await res.json(); msg.textContent = d.detail || 'Failed'; msg.className = 'admin-error'; } } catch (e) { msg.textContent = 'Failed: ' + e.message; msg.className = 'admin-error'; } }); } /* ── Features ── */ const featureLabels = { web_search: 'Web Search', deep_research: 'Deep Research', memory: 'Memory', document_editor: 'Document Editor', rag: 'RAG Knowledge Base', sensitive_filter: 'Sensitive Info Filter', gallery: 'Gallery' }; async function loadFeatures() { const container = el('adm-featureToggles'); try { const res = await fetch('/api/auth/features', { credentials: 'same-origin' }); const features = await res.json(); container.innerHTML = Object.entries(featureLabels).map(([key, label]) => `

${label}

`).join(''); container.querySelectorAll('input[data-adm-feature]').forEach(toggle => { toggle.addEventListener('change', async () => { const body = {}; body[toggle.dataset.admFeature] = toggle.checked; await fetch('/api/auth/features', { method: 'POST', credentials: 'same-origin', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify(body) }); }); }); } catch (e) { container.innerHTML = '

Failed to load features

'; } } /* ── CalDAV Config ── */ function initCalDAV() { const urlIn = el('caldav-url'); const userIn = el('caldav-user'); const passIn = el('caldav-pass'); const saveBtn = el('caldav-save-btn'); const testBtn = el('caldav-test-btn'); const status = el('caldav-status'); if (!urlIn || !saveBtn) return; // Load current config fetch(`${API_BASE}/api/calendar/config`, { credentials: 'same-origin' }) .then(r => r.json()).then(d => { urlIn.value = d.caldav_url || ''; userIn.value = d.caldav_username || ''; passIn.value = d.caldav_password || ''; }).catch(() => {}); saveBtn.addEventListener('click', async () => { status.textContent = 'Saving...'; try { const res = await fetch(`${API_BASE}/api/calendar/config`, { method: 'POST', credentials: 'same-origin', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify({ caldav_url: urlIn.value, caldav_username: userIn.value, caldav_password: passIn.value }), }); const d = await res.json(); status.textContent = d.ok ? 'Saved' : 'Error'; status.style.color = d.ok ? 'var(--green)' : 'var(--red)'; } catch (e) { status.textContent = 'Error'; status.style.color = 'var(--red)'; } setTimeout(() => { status.textContent = ''; status.style.color = ''; }, 3000); }); testBtn.addEventListener('click', async () => { status.textContent = 'Testing...'; try { // Save first await fetch(`${API_BASE}/api/calendar/config`, { method: 'POST', credentials: 'same-origin', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify({ caldav_url: urlIn.value, caldav_username: userIn.value, caldav_password: passIn.value }), }); const res = await fetch(`${API_BASE}/api/calendar/test`, { method: 'POST', credentials: 'same-origin' }); const d = await res.json(); status.textContent = d.ok ? `Connected (${d.calendars} calendars)` : `Failed: ${d.error}`; status.style.color = d.ok ? 'var(--green)' : 'var(--red)'; } catch (e) { status.textContent = 'Error'; status.style.color = 'var(--red)'; } setTimeout(() => { status.textContent = ''; status.style.color = ''; }, 5000); }); } /* ── Data Backup (export/import) ── */ function initBackup() { el('adm-exportDataBtn').addEventListener('click', async () => { const btn = el('adm-exportDataBtn'); const msg = el('adm-backupMsg'); btn.disabled = true; btn.textContent = 'Exporting...'; msg.textContent = ''; try { const res = await fetch('/api/export', { credentials: 'same-origin' }); if (!res.ok) throw new Error('Export failed'); const blob = await res.blob(); const disposition = res.headers.get('Content-Disposition') || ''; const match = disposition.match(/filename=(.+)/); const filename = match ? match[1] : 'odysseus_backup.json'; const a = document.createElement('a'); a.href = URL.createObjectURL(blob); a.download = filename; a.click(); URL.revokeObjectURL(a.href); msg.textContent = 'Export downloaded.'; msg.className = 'admin-success'; } catch (e) { msg.textContent = 'Export failed: ' + e.message; msg.className = 'admin-error'; } btn.disabled = false; btn.textContent = 'Export Data'; }); const fileInput = el('adm-importFile'); el('adm-importDataBtn').addEventListener('click', () => { fileInput.value = ''; fileInput.click(); }); fileInput.addEventListener('change', async () => { const file = fileInput.files[0]; if (!file) return; const msg = el('adm-backupMsg'); const btn = el('adm-importDataBtn'); btn.disabled = true; btn.textContent = 'Importing...'; msg.textContent = ''; try { const text = (await file.text()).replace(/^\uFEFF/, '').trim(); let data; try { data = JSON.parse(text); } catch (e) { throw new Error('Invalid backup file: ' + e.message); } const res = await fetch('/api/import', { method: 'POST', credentials: 'same-origin', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify(data), }); const result = await res.json().catch(() => null); if (!result) { throw new Error(`Import failed: server returned ${res.status}`); } if (res.ok && result.ok) { msg.textContent = result.message || 'Import successful.'; msg.className = 'admin-success'; } else { msg.textContent = result.message || result.detail || 'Import failed'; msg.className = 'admin-error'; } } catch (e) { msg.textContent = 'Import failed: ' + e.message; msg.className = 'admin-error'; } btn.disabled = false; btn.textContent = 'Import Data'; }); } /* ── Danger Zone ── */ function initDangerZone() { // Per-category Danger Zone wipes. Each button declares its target // via data-wipe-kind; one delegated handler handles double-confirm, // POSTs to /api/admin/wipe/{kind}, and writes the result. const _LABELS = { chats: 'chats', memory: 'memory entries', skills: 'skills', notes: 'notes', tasks: 'tasks', documents: 'documents', gallery: 'gallery images', calendar: 'calendar items', }; const _wipeMsg = el('adm-wipeMsg'); modalEl.querySelectorAll('[data-wipe-kind]').forEach(btn => { btn.addEventListener('click', async () => { const kind = btn.dataset.wipeKind; const isAll = kind === '__all__'; const label = isAll ? 'data across every category' : (_LABELS[kind] || kind); if (!await uiModule.styledConfirm(`Delete ALL ${label}? This cannot be undone.`, { confirmText: 'Delete', danger: true })) return; if (!await uiModule.styledConfirm(`Really delete every one of your ${label}?`, { confirmText: isAll ? 'Yes, delete everything' : 'Yes, delete everything', danger: true })) return; btn.disabled = true; const prevHtml = btn.innerHTML; btn.innerHTML = isAll ? 'Deleting all…' : 'Deleting…'; if (_wipeMsg) { _wipeMsg.textContent = ''; _wipeMsg.className = ''; } try { if (isAll) { // Iterate every known category. Failures in one shouldn't stop // the rest — record per-category counts and surface a summary. const kinds = Object.keys(_LABELS); const results = []; for (const k of kinds) { try { const r = await fetch(`/api/admin/wipe/${k}`, { method: 'DELETE', credentials: 'same-origin' }); const d = await r.json().catch(() => ({})); results.push({ k, ok: r.ok, count: d.count ?? 0, error: r.ok ? null : (d.detail || 'failed') }); } catch (e) { results.push({ k, ok: false, count: 0, error: e.message }); } } const okCount = results.filter(r => r.ok).length; const total = results.reduce((n, r) => n + (r.ok ? r.count : 0), 0); const fails = results.filter(r => !r.ok).map(r => r.k); if (_wipeMsg) { if (!fails.length) { _wipeMsg.textContent = `Deleted ${total} items across all ${okCount} categories.`; _wipeMsg.className = 'admin-success'; } else { _wipeMsg.textContent = `Deleted ${total} items; failed: ${fails.join(', ')}.`; _wipeMsg.className = 'admin-error'; } } } else { const res = await fetch(`/api/admin/wipe/${kind}`, { method: 'DELETE', credentials: 'same-origin' }); const data = await res.json().catch(() => ({})); if (res.ok) { if (_wipeMsg) { _wipeMsg.textContent = `Deleted ${data.count ?? 0} ${label}.`; _wipeMsg.className = 'admin-success'; } } else { if (_wipeMsg) { _wipeMsg.textContent = data.detail || 'Failed'; _wipeMsg.className = 'admin-error'; } } } } catch (e) { if (_wipeMsg) { _wipeMsg.textContent = 'Request failed: ' + e.message; _wipeMsg.className = 'admin-error'; } } btn.disabled = false; btn.innerHTML = prevHtml; }); }); } /* ═══════════════════════════════════════════ TERMINAL LOGS VIEWER ═══════════════════════════════════════════ */ let logsPollInterval = null; let isLogsPolling = false; let cachedLogs = []; let logsAbortController = null; function renderLogs(isAutoPoll = false) { const consoleContainer = el('log-console-container'); const levelSelect = el('log-level-select'); const searchInput = el('log-search-input'); if (!consoleContainer) return; const levelFilter = levelSelect ? levelSelect.value : 'ALL'; const searchQuery = searchInput ? searchInput.value.trim().toLowerCase() : ''; let logs = cachedLogs; // Filter by level locally if (levelFilter !== 'ALL') { logs = logs.filter(line => line.includes(` - ${levelFilter} - `)); } // Filter by search query locally if (searchQuery) { logs = logs.filter(line => line.toLowerCase().includes(searchQuery)); } if (logs.length === 0) { consoleContainer.innerHTML = '

No logs found matching current filters.

'; return; } // Preserve scroll position if user is reading previous logs const atBottom = consoleContainer.scrollHeight - consoleContainer.scrollTop - consoleContainer.clientHeight < 40; consoleContainer.innerHTML = logs.map(line => { let levelClass = 'log-line-default'; if (line.includes(' - INFO - ')) { levelClass = 'log-line-info'; } else if (line.includes(' - WARNING - ')) { levelClass = 'log-line-warning'; } else if (line.includes(' - ERROR - ') || line.includes(' - CRITICAL - ')) { levelClass = 'log-line-error'; } else if (line.includes(' - DEBUG - ')) { levelClass = 'log-line-debug'; } // XSS safe escape const escaped = line .replace(/&/g, '&') .replace(//g, '>') .replace(/"/g, '"') .replace(/'/g, '''); return `

${escaped}

`; }).join(''); if (!isAutoPoll || atBottom) { consoleContainer.scrollTop = consoleContainer.scrollHeight; } } async function loadLogs(isAutoPoll = false) { const consoleContainer = el('log-console-container'); const limitSelect = el('log-limit-select'); if (!consoleContainer) return; const limit = limitSelect ? limitSelect.value : 200; if (logsAbortController) { logsAbortController.abort(); } logsAbortController = new AbortController(); const { signal } = logsAbortController; try { const res = await fetch(`/api/diagnostics/logs?limit=${limit}`, { credentials: 'same-origin', signal }); if (!res.ok) { if (!isAutoPoll) { consoleContainer.innerHTML = ''; const errDiv = document.createElement('div'); errDiv.style.color = 'var(--red)'; errDiv.style.fontWeight = '600'; errDiv.textContent = `Failed to load logs: HTTP ${res.status}`; consoleContainer.appendChild(errDiv); } return; } const data = await res.json(); if (data.status !== 'success' || !data.logs) { if (!isAutoPoll) { consoleContainer.innerHTML = ''; const errDiv = document.createElement('div'); errDiv.style.color = 'var(--red)'; errDiv.style.fontWeight = '600'; errDiv.textContent = 'Failed to parse logs data'; consoleContainer.appendChild(errDiv); } return; } cachedLogs = data.logs; renderLogs(isAutoPoll); } catch (err) { if (err.name === 'AbortError') { return; // Silently ignore deliberate abort } if (!isAutoPoll) { consoleContainer.innerHTML = ''; const errDiv = document.createElement('div'); errDiv.style.color = 'var(--red)'; errDiv.style.fontWeight = '600'; errDiv.textContent = `Error retrieving logs: ${err.message}`; consoleContainer.appendChild(errDiv); } } finally { if (logsAbortController?.signal === signal) { logsAbortController = null; } } } function startLogsPolling() { if (isLogsPolling) return; isLogsPolling = true; const toggle = el('log-auto-refresh-toggle'); if (toggle) toggle.checked = true; logsPollInterval = setInterval(() => { const modal = el('settings-modal'); const systemPanel = el('settings-modal')?.querySelector('[data-settings-panel="system"]'); // Safe self-cleanup if modal or panel is hidden/closed if (!modal || modal.classList.contains('hidden') || !systemPanel || systemPanel.classList.contains('hidden')) { stopLogsPolling(); return; } loadLogs(true); }, 3000); } function stopLogsPolling() { if (!isLogsPolling) return; isLogsPolling = false; if (logsPollInterval) { clearInterval(logsPollInterval); logsPollInterval = null; } const toggle = el('log-auto-refresh-toggle'); if (toggle) toggle.checked = false; } function initLogsView() { const refreshBtn = el('log-refresh-btn'); const levelSelect = el('log-level-select'); const limitSelect = el('log-limit-select'); const searchInput = el('log-search-input'); const autoRefreshToggle = el('log-auto-refresh-toggle'); if (refreshBtn) refreshBtn.addEventListener('click', () => loadLogs(false)); if (levelSelect) levelSelect.addEventListener('change', () => renderLogs(false)); if (limitSelect) limitSelect.addEventListener('change', () => loadLogs(false)); if (searchInput) searchInput.addEventListener('input', () => renderLogs(false)); if (autoRefreshToggle) { autoRefreshToggle.addEventListener('change', (e) => { if (e.target.checked) { startLogsPolling(); } else { stopLogsPolling(); } }); } // Initial fetch on view loading loadLogs(false); } /* ═══════════════════════════════════════════ INIT & REFRESH ═══════════════════════════════════════════ */ function initAll() { modalEl = el('settings-modal'); const inits = [ initSignupToggle, initAddUser, initEndpointForm, initMcpForm, initCalDAV, initBackup, initDangerZone, initTokenForm, initLogsView, () => settingsModule.initIntegrations() ]; for (const fn of inits) { try { fn(); } catch (e) { console.error('Admin init error in', fn.name || 'anonymous', e); } } initialized = true; refreshAll(); } function refreshAll() { loadUsers(); loadEndpoints(); loadBuiltinTools(); loadMcpServers(); loadTokens(); loadLogs(false); } /* ═══════════════════════════════════════════ PUBLIC API ═══════════════════════════════════════════ */ export function _initData() { if (!initialized) initAll(); else refreshAll(); } export function open(tab) { _initData(); settingsModule.open(tab || 'services'); } export function close() { stopLogsPolling(); settingsModule.close(); } const adminModule = { open, close, _initData, get _initialized() { return initialized; } }; export default adminModule;