From 17eba9370a969d429505500aedb370821703514c Mon Sep 17 00:00:00 2001
From: Bernd Storath <999999bst@gmail.com>
Date: Wed, 11 Sep 2024 15:47:54 +0200
Subject: [PATCH 01/16] improve gh actions

---
 .github/workflows/codeql.yml         | 30 ++++++++++++++--------------
 .github/workflows/deploy-nightly.yml |  5 ++++-
 .github/workflows/deploy.yml         | 11 ++++++----
 .github/workflows/stale.yml          |  7 +++----
 4 files changed, 29 insertions(+), 24 deletions(-)

diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 31d962d0..191c33e2 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -2,9 +2,9 @@ name: "CodeQL"
 
 on:
   push:
-    branches: [ "master" ]
+    branches: ["master"]
   pull_request:
-    branches: [ "master" ]
+    branches: ["master"]
   schedule:
     - cron: "15 0 * * *"
 
@@ -21,21 +21,21 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        language: [ 'javascript-typescript' ]
+        language: ["javascript-typescript"]
 
     steps:
-    - name: Checkout repository
-      uses: actions/checkout@v4
+      - name: Checkout repository
+        uses: actions/checkout@v4
 
-    - name: Initialize CodeQL
-      uses: github/codeql-action/init@v3
-      with:
-        languages: ${{ matrix.language }}
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v3
+        with:
+          languages: ${{ matrix.language }}
 
-    - name: Autobuild
-      uses: github/codeql-action/autobuild@v3
+      - name: Autobuild
+        uses: github/codeql-action/autobuild@v3
 
-    - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@v3
-      with:
-        category: "/language:${{matrix.language}}"
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v3
+        with:
+          category: "/language:${{matrix.language}}"
diff --git a/.github/workflows/deploy-nightly.yml b/.github/workflows/deploy-nightly.yml
index 88404be3..03a75bba 100644
--- a/.github/workflows/deploy-nightly.yml
+++ b/.github/workflows/deploy-nightly.yml
@@ -54,4 +54,7 @@ jobs:
           git config --global user.name 'Docs Deploy Bot'
           git config --global user.email 'docs.deploy@users.noreply.github.com'
       - name: Build Docs Website
-        run: mike deploy --push nightly
+        run: |
+          cd docs
+          git fetch origin gh-pages --depth=1
+          mike deploy --push --update-aliases nightly
diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml
index aea89c16..321c72e1 100644
--- a/.github/workflows/deploy.yml
+++ b/.github/workflows/deploy.yml
@@ -3,8 +3,8 @@ name: Build & Publish Latest
 on:
   workflow_dispatch:
   push:
-    branches:
-      - master
+    tags:
+      - "v*"
 
 jobs:
   deploy:
@@ -27,7 +27,7 @@ jobs:
 
       - name: Docker meta
         id: meta
-        uses: docker/metadata-action@v3
+        uses: docker/metadata-action@v5
         with:
           images: |
             ghcr.io/wg-easy/wg-easy
@@ -67,4 +67,7 @@ jobs:
           git config --global user.name 'Docs Deploy Bot'
           git config --global user.email 'docs.deploy@users.noreply.github.com'
       - name: Build Docs Website
-        run: mike deploy --push --update-aliases ${{ github.ref_name }} latest
+        run: |
+          cd docs
+          git fetch origin gh-pages --depth=1
+          mike deploy --push --update-aliases ${{ github.ref_name }} latest
diff --git a/.github/workflows/stale.yml b/.github/workflows/stale.yml
index 868fa296..17af45a9 100644
--- a/.github/workflows/stale.yml
+++ b/.github/workflows/stale.yml
@@ -8,11 +8,10 @@ name: Mark stale issues and pull requests
 on:
   workflow_dispatch:
   schedule:
-  - cron: '*/5 * * * *'
+    - cron: "*/5 * * * *"
 
 jobs:
   stale:
-
     runs-on: ubuntu-latest
     if: github.repository_owner == 'wg-easy'
     permissions:
@@ -20,8 +19,8 @@ jobs:
       pull-requests: write
 
     steps:
-    - uses: actions/stale@v9
-      with:
+      - uses: actions/stale@v9
+        with:
           days-before-issue-stale: 30
           days-before-issue-close: 14
           stale-issue-label: "stale"

From cde22fc6cb67d82c2036a43caf037b0458699e2d Mon Sep 17 00:00:00 2001
From: tetuaoro <65575727+tetuaoro@users.noreply.github.com>
Date: Wed, 11 Sep 2024 16:04:27 +0200
Subject: [PATCH 02/16] Setup UI (#1392)

* update: setup ui page

* rebase

* remove script addition
---
 src/app/layouts/Header.vue |  2 +-
 src/app/pages/setup.vue    | 51 ++++++++++++++++++++++++++++----------
 src/locales/en.json        | 11 ++++++++
 src/locales/fr.json        | 11 ++++++++
 4 files changed, 61 insertions(+), 14 deletions(-)

diff --git a/src/app/layouts/Header.vue b/src/app/layouts/Header.vue
index 3ea58a0d..ccca6357 100644
--- a/src/app/layouts/Header.vue
+++ b/src/app/layouts/Header.vue
@@ -8,7 +8,7 @@
       "
     >
       <h1
-        v-if="!isLoginPage"
+        v-if="isLoginPage"
         class="text-4xl dark:text-neutral-200 font-medium flex-grow self-start mb-4"
       >
         <img
diff --git a/src/app/pages/setup.vue b/src/app/pages/setup.vue
index 8ca091c7..03162e0a 100644
--- a/src/app/pages/setup.vue
+++ b/src/app/pages/setup.vue
@@ -1,5 +1,5 @@
 <template>
-  <main>
+  <main class="container mx-auto px-4">
     <h1
       class="text-4xl font-medium my-16 text-gray-700 dark:text-neutral-200 text-center"
     >
@@ -7,40 +7,59 @@
       <span class="align-middle">WireGuard</span>
     </h1>
     <div
-      class="shadow rounded-md bg-white dark:bg-neutral-700 mx-auto w-96 p-5 overflow-hidden mt-10 text-gray-700 dark:text-neutral-200"
+      class="flex flex-col items-center lg:w-[60%] mx-auto shadow rounded-md bg-white dark:bg-neutral-700 p-5 overflow-hidden mt-10 text-gray-700 dark:text-neutral-200"
     >
-      <h2>Welcome to your first setup of wg-easy !</h2>
-      <p>Please first enter an admin username and a strong password.</p>
-      <form @submit="newAccount">
+      <h2
+        class="mt-8 mb-16 text-3xl font-medium text-gray-700 dark:text-neutral-200"
+      >
+        {{ $t('setup.welcome') }}
+      </h2>
+      <p class="text-lg p-8">{{ $t('setup.msg') }}</p>
+      <form class="mb-8" @submit="newAccount">
         <div>
-          <label for="username">Username</label>
+          <label for="username" class="inline-block py-2">{{
+            $t('username')
+          }}</label>
           <input
             id="username"
             v-model="username"
             type="text"
             name="username"
             autocomplete="username"
+            :placeholder="$t('setup.usernamePlaceholder')"
             class="px-3 py-2 text-sm dark:bg-neutral-700 text-gray-500 dark:text-gray-500 mb-5 border-2 border-gray-100 dark:border-neutral-800 rounded-lg w-full focus:border-red-800 dark:focus:border-red-800 dark:placeholder:text-neutral-400 outline-none"
+            required="true"
           />
+          <small v-if="errorCU" class="text-danger">{{
+            $t('setup.usernameCondition')
+          }}</small>
         </div>
         <div>
-          <label for="password">New Password</label>
+          <label for="password" class="inline-block py-2">{{
+            $t('setup.newPassword')
+          }}</label>
           <input
             id="password"
             v-model="password"
             type="password"
             name="password"
             autocomplete="new-password"
+            :placeholder="$t('setup.passwordPlaceholder')"
             class="px-3 py-2 text-sm dark:bg-neutral-700 text-gray-500 dark:text-gray-500 mb-5 border-2 border-gray-100 dark:border-neutral-800 rounded-lg w-full focus:border-red-800 dark:focus:border-red-800 dark:placeholder:text-neutral-400 outline-none"
+            required="true"
           />
+          <small v-if="errorPWD" class="text-danger">{{
+            $t('setup.passwordCondition')
+          }}</small>
         </div>
         <div>
-          <label for="accept">I accept the condition</label>
-          <input id="accept" type="checkbox" name="accept" />
+          <label for="accept" class="inline-block my-4 mr-4">{{
+            $t('setup.accept')
+          }}</label>
+          <input id="accept" type="checkbox" name="accept" required="true" />
         </div>
-        <input
+        <button
           type="submit"
-          value="Save"
           :class="[
             {
               'bg-red-800 dark:bg-red-800 hover:bg-red-700 dark:hover:bg-red-700 transition cursor-pointer':
@@ -48,9 +67,11 @@
               'bg-gray-200 dark:bg-neutral-800 cursor-not-allowed':
                 !password && !username,
             },
-            'w-full rounded shadow py-2 text-sm text-white dark:text-white',
+            'w-max px-4 rounded shadow py-2 text-sm text-white dark:text-white',
           ]"
-        />
+        >
+          {{ $t('setup.submitBtn') }}
+        </button>
       </form>
     </div>
   </main>
@@ -61,6 +82,9 @@ const username = ref<null | string>(null);
 const password = ref<null | string>(null);
 const authStore = useAuthStore();
 
+const errorCU = ref(false);
+const errorPWD = ref(false);
+
 async function newAccount(e: Event) {
   e.preventDefault();
 
@@ -74,6 +98,7 @@ async function newAccount(e: Event) {
   } catch (error) {
     if (error instanceof Error) {
       // TODO: replace alert with actual ui error message
+      // TODO: also use errorCU & errorPWD to show prompt error
       alert(error.message || error.toString());
     }
   }
diff --git a/src/locales/en.json b/src/locales/en.json
index 77cae6ff..ff9f3612 100644
--- a/src/locales/en.json
+++ b/src/locales/en.json
@@ -1,4 +1,15 @@
 {
+  "setup": {
+    "welcome": "Welcome to your first setup of wg-easy !",
+    "msg": "Please first enter an admin username and a strong secure password. This information will be used to log in to your administration panel.",
+    "newPassword": "New Password",
+    "accept": "I accept the condition",
+    "submitBtn": "Create admin account",
+    "usernameCondition": "The username must contain at least 8 characters.",
+    "passwordCondition": "The password must contain at least 12 characters, including 1 uppercase letter, 1 lowercase letter, 1 digit, and 1 special character.",
+    "usernamePlaceholder": "Administrator",
+    "passwordPlaceholder": "Strong password"
+  },
   "name": "Name",
   "username": "Username",
   "password": "Password",
diff --git a/src/locales/fr.json b/src/locales/fr.json
index 747a7aac..444595c3 100644
--- a/src/locales/fr.json
+++ b/src/locales/fr.json
@@ -1,4 +1,15 @@
 {
+  "setup": {
+    "welcome": "Bienvenue à la page de configuration de votre wg-easy !",
+    "msg": "Veuillez renseigner votre nom d'utilisateur et votre mot de passe. Ces informations seront utilisées pour vous connecter à votre page d'administration.",
+    "newPassword": "Nouveau mot de passe",
+    "accept": "J'accepte les conditions d'utilisation",
+    "submitBtn": "Créer un nouveau compte",
+    "usernameCondition": "Le nom d'utilisateur doit contenir au moins 8 caractères.",
+    "passwordCondition": "Le mot de passe doit contenir au moins 12 caractères dont 1 majuscule, 1 minuscule, 1 chiffre et 1 caractère spécial.",
+    "usernamePlaceholder": "Administrateur",
+    "passwordPlaceholder": "Mot de passe sapau"
+  },
   "name": "Nom",
   "password": "Mot de passe",
   "signIn": "Se Connecter",

From d758216f55ca86c3c1fab7d6bd85ebaafdf72ea7 Mon Sep 17 00:00:00 2001
From: Bernd Storath <999999bst@gmail.com>
Date: Wed, 11 Sep 2024 07:36:13 +0200
Subject: [PATCH 03/16] add admin panel

---
 src/app/layouts/Header.vue     |  2 +-
 src/app/pages/admin/index.vue  |  5 +++++
 src/app/stores/auth.ts         | 14 ++++----------
 src/app/utils/api.ts           |  3 +--
 src/server/api/session.get.ts  | 19 ++++++++++++++++---
 src/server/api/session.post.ts |  3 +--
 src/server/middleware/auth.ts  | 22 ++++++++++++++++++++--
 src/server/utils/session.ts    |  2 +-
 8 files changed, 49 insertions(+), 21 deletions(-)
 create mode 100644 src/app/pages/admin/index.vue

diff --git a/src/app/layouts/Header.vue b/src/app/layouts/Header.vue
index ccca6357..d1e5827b 100644
--- a/src/app/layouts/Header.vue
+++ b/src/app/layouts/Header.vue
@@ -52,7 +52,7 @@
           />
         </label>
         <span
-          v-if="authStore.requiresPassword && !isLoginPage"
+          v-if="!isLoginPage"
           class="text-sm text-gray-400 dark:text-neutral-400 cursor-pointer hover:underline"
           @click="logout"
         >
diff --git a/src/app/pages/admin/index.vue b/src/app/pages/admin/index.vue
new file mode 100644
index 00000000..041fe622
--- /dev/null
+++ b/src/app/pages/admin/index.vue
@@ -0,0 +1,5 @@
+<template>
+  <div>Admin Area</div>
+</template>
+
+<script setup lang="ts"></script>
diff --git a/src/app/stores/auth.ts b/src/app/stores/auth.ts
index 403cb542..e9bf3a31 100644
--- a/src/app/stores/auth.ts
+++ b/src/app/stores/auth.ts
@@ -1,6 +1,4 @@
 export const useAuthStore = defineStore('Auth', () => {
-  const requiresPassword = ref<boolean>(true);
-
   /**
    * @throws if unsuccessful
    */
@@ -13,8 +11,7 @@ export const useAuthStore = defineStore('Auth', () => {
    * @throws if unsuccessful
    */
   async function login(username: string, password: string, remember: boolean) {
-    const response = await api.createSession({ username, password, remember });
-    requiresPassword.value = response.requiresPassword;
+    await api.createSession({ username, password, remember });
     return true as const;
   }
 
@@ -26,13 +23,10 @@ export const useAuthStore = defineStore('Auth', () => {
     return response.success;
   }
 
-  /**
-   * @throws if unsuccessful
-   */
   async function update() {
-    const session = await api.getSession();
-    requiresPassword.value = session.requiresPassword;
+    // store role etc
+    await api.getSession();
   }
 
-  return { requiresPassword, login, logout, update, signup };
+  return { login, logout, update, signup };
 });
diff --git a/src/app/utils/api.ts b/src/app/utils/api.ts
index fcfa99a1..feb21bc7 100644
--- a/src/app/utils/api.ts
+++ b/src/app/utils/api.ts
@@ -12,8 +12,7 @@ class API {
   }
 
   async getSession() {
-    // TODO?: use useFetch
-    return $fetch('/api/session', {
+    return useFetch('/api/session', {
       method: 'get',
     });
   }
diff --git a/src/server/api/session.get.ts b/src/server/api/session.get.ts
index 9aa91658..7a97cc73 100644
--- a/src/server/api/session.get.ts
+++ b/src/server/api/session.get.ts
@@ -1,9 +1,22 @@
 export default defineEventHandler(async (event) => {
   const session = await useWGSession(event);
-  const authenticated = session.data.authenticated;
+
+  if (!session.data.userId) {
+    throw createError({
+      statusCode: 401,
+      statusMessage: 'Not logged in',
+    });
+  }
+  const user = await Database.user.findById(session.data.userId);
+  if (!user) {
+    throw createError({
+      statusCode: 404,
+      statusMessage: 'Not found in Database',
+    });
+  }
 
   return {
-    requiresPassword: true,
-    authenticated,
+    role: user.role,
+    username: user.username,
   };
 });
diff --git a/src/server/api/session.post.ts b/src/server/api/session.post.ts
index ea9e1a36..a15c9675 100644
--- a/src/server/api/session.post.ts
+++ b/src/server/api/session.post.ts
@@ -34,12 +34,11 @@ export default defineEventHandler(async (event) => {
     };
   }
 
-  const session = await useSession(event, {
+  const session = await useSession<WGSession>(event, {
     ...system.sessionConfig,
   });
 
   const data = await session.update({
-    authenticated: true,
     userId: user.id,
   });
 
diff --git a/src/server/middleware/auth.ts b/src/server/middleware/auth.ts
index ce90ece2..fe37d19b 100644
--- a/src/server/middleware/auth.ts
+++ b/src/server/middleware/auth.ts
@@ -1,14 +1,32 @@
 export default defineEventHandler(async (event) => {
   const url = getRequestURL(event);
   const session = await useWGSession(event);
+
   if (url.pathname === '/login') {
-    if (session.data.authenticated) {
+    if (session.data.userId) {
       return sendRedirect(event, '/', 302);
     }
   }
+
   if (url.pathname === '/') {
-    if (!session.data.authenticated) {
+    if (!session.data.userId) {
       return sendRedirect(event, '/login', 302);
     }
   }
+
+  if (url.pathname === '/admin') {
+    if (!session.data.userId) {
+      return sendRedirect(event, '/login', 302);
+    }
+    const user = await Database.user.findById(session.data.userId);
+    if (!user) {
+      return sendRedirect(event, '/login', 302);
+    }
+    if (!user.enabled || user.role !== 'ADMIN') {
+      throw createError({
+        statusCode: 403,
+        statusMessage: 'Not allowed to access Admin Panel',
+      });
+    }
+  }
 });
diff --git a/src/server/utils/session.ts b/src/server/utils/session.ts
index bb7e4aa0..bb0ec9c8 100644
--- a/src/server/utils/session.ts
+++ b/src/server/utils/session.ts
@@ -1,7 +1,7 @@
 import type { H3Event } from 'h3';
 
 export type WGSession = {
-  authenticated: boolean;
+  userId: string;
 };
 
 export async function useWGSession(event: H3Event) {

From 6ecc3bb1e7a2b3a8f8517a6f6161f21c87980ea3 Mon Sep 17 00:00:00 2001
From: Bernd Storath <999999bst@gmail.com>
Date: Wed, 11 Sep 2024 08:17:35 +0200
Subject: [PATCH 04/16] basic user menu and admin page

---
 src/app/components/ui/UserMenu.vue | 90 ++++++++++++++++++++++++++++++
 src/app/layouts/Header.vue         | 23 +-------
 src/app/pages/admin/index.vue      |  5 +-
 src/app/pages/index.vue            |  2 +
 src/app/stores/auth.ts             | 11 +++-
 src/server/api/session.get.ts      |  1 +
 src/server/middleware/session.ts   |  4 +-
 7 files changed, 109 insertions(+), 27 deletions(-)
 create mode 100644 src/app/components/ui/UserMenu.vue

diff --git a/src/app/components/ui/UserMenu.vue b/src/app/components/ui/UserMenu.vue
new file mode 100644
index 00000000..debecc0a
--- /dev/null
+++ b/src/app/components/ui/UserMenu.vue
@@ -0,0 +1,90 @@
+<template>
+  <button
+    class="flex items-center pe-1 font-medium text-sm text-gray-400 rounded-full hover:text-red-800 dark:hover:text-red-800 md:me-0 focus:ring-4 focus:ring-gray-100 dark:focus:ring-gray-700 dark:text-neutral-400"
+    type="button"
+    @click.prevent="toggleMenu"
+  >
+    <IconsAvatar class="w-8 h-8 me-2 rounded-full" />
+    {{ authStore.userData?.name }}
+    <svg
+      class="w-2.5 h-2.5 ms-3"
+      aria-hidden="true"
+      xmlns="http://www.w3.org/2000/svg"
+      fill="none"
+      viewBox="0 0 10 6"
+    >
+      <path
+        stroke="currentColor"
+        stroke-linecap="round"
+        stroke-linejoin="round"
+        stroke-width="2"
+        d="m1 1 4 4 4-4"
+      />
+    </svg>
+  </button>
+
+  <!-- Dropdown menu -->
+  <div
+    v-show="menuOpen"
+    class="z-10 bg-white divide-y divide-gray-100 rounded-lg shadow w-44 dark:bg-neutral-700 dark:divide-neutral-800"
+  >
+    <div class="px-4 py-3 text-sm text-gray-900 dark:text-white">
+      <div class="truncate">{{ authStore.userData?.name }}</div>
+      <div class="truncate">@{{ authStore.userData?.username }}</div>
+    </div>
+    <ul class="py-2 text-sm text-gray-700 dark:text-gray-200">
+      <li>
+        <NuxtLink
+          to="/"
+          class="block px-4 py-2 hover:bg-gray-100 dark:hover:bg-gray-600 dark:hover:text-white"
+          @click="closeMenu"
+        >
+          Clients
+        </NuxtLink>
+      </li>
+      <li v-if="authStore.userData?.role === 'ADMIN'">
+        <NuxtLink
+          to="/admin"
+          class="block px-4 py-2 hover:bg-gray-100 dark:hover:bg-gray-600 dark:hover:text-white"
+          @click="closeMenu"
+        >
+          Admin Panel
+        </NuxtLink>
+      </li>
+    </ul>
+    <div class="py-2">
+      <button
+        class="flex items-center gap-2 w-full px-4 py-2 text-sm text-gray-700 hover:bg-gray-100 dark:hover:bg-gray-600 dark:text-gray-200 dark:hover:text-white"
+        @click.prevent="logout"
+      >
+        <IconsLogout class="h-5" />
+        {{ $t('logout') }}
+      </button>
+    </div>
+  </div>
+</template>
+
+<script setup lang="ts">
+const authStore = useAuthStore();
+const menuOpen = ref(false);
+
+function toggleMenu() {
+  menuOpen.value = !menuOpen.value;
+}
+
+function closeMenu() {
+  menuOpen.value = false;
+}
+
+async function logout() {
+  try {
+    await authStore.logout();
+    navigateTo('/login');
+  } catch (err) {
+    if (err instanceof Error) {
+      // TODO: better ui
+      alert(err.message || err.toString());
+    }
+  }
+}
+</script>
diff --git a/src/app/layouts/Header.vue b/src/app/layouts/Header.vue
index d1e5827b..50625aad 100644
--- a/src/app/layouts/Header.vue
+++ b/src/app/layouts/Header.vue
@@ -51,14 +51,7 @@
             class="w-5 h-5 peer fill-gray-400 peer-checked:fill-gray-600 dark:fill-neutral-600 peer-checked:dark:fill-neutral-400 group-hover:dark:fill-neutral-500 transition"
           />
         </label>
-        <span
-          v-if="!isLoginPage"
-          class="text-sm text-gray-400 dark:text-neutral-400 cursor-pointer hover:underline"
-          @click="logout"
-        >
-          {{ $t('logout') }}
-          <IconsLogout class="h-3 inline" />
-        </span>
+        <UiUserMenu v-if="!isLoginPage" />
       </div>
     </div>
     <div class="text-sm text-gray-400 dark:text-neutral-400 mb-5" />
@@ -86,7 +79,6 @@
 </template>
 
 <script setup lang="ts">
-const authStore = useAuthStore();
 const globalStore = useGlobalStore();
 const route = useRoute();
 
@@ -108,17 +100,4 @@ function toggleTheme() {
 function toggleCharts() {
   setItem('uiShowCharts', uiShowCharts.value ? '1' : '0');
 }
-
-async function logout(e: Event) {
-  e.preventDefault();
-  try {
-    await authStore.logout();
-    navigateTo('/login');
-  } catch (err) {
-    if (err instanceof Error) {
-      // TODO: better ui
-      alert(err.message || err.toString());
-    }
-  }
-}
 </script>
diff --git a/src/app/pages/admin/index.vue b/src/app/pages/admin/index.vue
index 041fe622..3cbcfd8a 100644
--- a/src/app/pages/admin/index.vue
+++ b/src/app/pages/admin/index.vue
@@ -2,4 +2,7 @@
   <div>Admin Area</div>
 </template>
 
-<script setup lang="ts"></script>
+<script setup lang="ts">
+const authStore = useAuthStore();
+authStore.update();
+</script>
diff --git a/src/app/pages/index.vue b/src/app/pages/index.vue
index 3f8ef5e2..ca079a0e 100644
--- a/src/app/pages/index.vue
+++ b/src/app/pages/index.vue
@@ -54,6 +54,8 @@ const intervalId = ref<NodeJS.Timeout | null>(null);
 clientsStore.refresh();
 
 onMounted(() => {
+  // to avoid console spam
+  return;
   // TODO?: replace with websocket or similar
   intervalId.value = setInterval(() => {
     clientsStore
diff --git a/src/app/stores/auth.ts b/src/app/stores/auth.ts
index e9bf3a31..ad359c0b 100644
--- a/src/app/stores/auth.ts
+++ b/src/app/stores/auth.ts
@@ -1,4 +1,10 @@
 export const useAuthStore = defineStore('Auth', () => {
+  const userData = ref<null | {
+    name: string;
+    username: string;
+    role: string;
+  }>();
+
   /**
    * @throws if unsuccessful
    */
@@ -25,8 +31,9 @@ export const useAuthStore = defineStore('Auth', () => {
 
   async function update() {
     // store role etc
-    await api.getSession();
+    const { data: response } = await api.getSession();
+    userData.value = response.value;
   }
 
-  return { login, logout, update, signup };
+  return { userData, login, logout, update, signup };
 });
diff --git a/src/server/api/session.get.ts b/src/server/api/session.get.ts
index 7a97cc73..9f559c08 100644
--- a/src/server/api/session.get.ts
+++ b/src/server/api/session.get.ts
@@ -18,5 +18,6 @@ export default defineEventHandler(async (event) => {
   return {
     role: user.role,
     username: user.username,
+    name: user.name,
   };
 });
diff --git a/src/server/middleware/session.ts b/src/server/middleware/session.ts
index 3611aaae..5a8c063c 100644
--- a/src/server/middleware/session.ts
+++ b/src/server/middleware/session.ts
@@ -12,8 +12,8 @@ export default defineEventHandler(async (event) => {
   }
   const system = await Database.system.get();
 
-  const session = await getSession(event, system.sessionConfig);
-  if (session.id && session.data.authenticated) {
+  const session = await getSession<WGSession>(event, system.sessionConfig);
+  if (session.id && session.data.userId) {
     return;
   }
 

From 2db9133a1482cf8c913fbeef8ebd13f700dd95c1 Mon Sep 17 00:00:00 2001
From: Bernd Storath <999999bst@gmail.com>
Date: Wed, 11 Sep 2024 08:41:06 +0200
Subject: [PATCH 05/16] make usable admin panel

---
 src/app/pages/admin.vue         | 51 +++++++++++++++++++++++++++++++++
 src/app/pages/admin/clients.vue | 34 ++++++++++++++++++++++
 src/app/pages/admin/index.vue   |  7 ++---
 src/app/pages/admin/server.vue  | 34 ++++++++++++++++++++++
 src/app/pages/admin/user.vue    | 34 ++++++++++++++++++++++
 src/server/middleware/auth.ts   |  2 +-
 6 files changed, 156 insertions(+), 6 deletions(-)
 create mode 100644 src/app/pages/admin.vue
 create mode 100644 src/app/pages/admin/clients.vue
 create mode 100644 src/app/pages/admin/server.vue
 create mode 100644 src/app/pages/admin/user.vue

diff --git a/src/app/pages/admin.vue b/src/app/pages/admin.vue
new file mode 100644
index 00000000..0ac27a88
--- /dev/null
+++ b/src/app/pages/admin.vue
@@ -0,0 +1,51 @@
+<template>
+  <div class="min-h-screen">
+    <div class="container mx-auto p-4">
+      <div class="flex">
+        <!-- Sidebar -->
+        <div class="w-64 bg-white dark:bg-neutral-700 rounded-lg p-4 mr-4">
+          <h2 class="text-xl font-bold dark:text-neutral-200 mb-4">
+            Admin Panel
+          </h2>
+          <ul class="space-y-2">
+            <li
+              v-for="(item, index) in menuItems"
+              :key="index"
+              :class="{ 'bg-gray-700': activeMenuItem?.id === item.id }"
+              class="font-medium dark:text-neutral-200 p-2 rounded cursor-pointer hover:bg-red-800 transition-colors duration-200"
+              @click="router.push(`/admin/${item.id}`)"
+            >
+              {{ item.name }}
+            </li>
+          </ul>
+        </div>
+
+        <!-- Main Content -->
+        <div
+          class="flex-1 bg-white dark:text-neutral-200 dark:bg-neutral-700 rounded-lg p-6"
+        >
+          <h1 class="text-3xl font-bold mb-6">{{ activeMenuItem?.name }}</h1>
+          <NuxtPage />
+        </div>
+      </div>
+    </div>
+  </div>
+</template>
+
+<script setup lang="ts">
+const authStore = useAuthStore();
+authStore.update();
+
+const router = useRouter();
+const route = useRoute();
+
+const menuItems = [
+  { id: 'user', name: 'User' },
+  { id: 'clients', name: 'Clients' },
+  { id: 'server', name: 'Server' },
+];
+
+const activeMenuItem = computed(() => {
+  return menuItems.find((item) => route.path === `/admin/${item.id}`);
+});
+</script>
diff --git a/src/app/pages/admin/clients.vue b/src/app/pages/admin/clients.vue
new file mode 100644
index 00000000..53a4b11b
--- /dev/null
+++ b/src/app/pages/admin/clients.vue
@@ -0,0 +1,34 @@
+<template>
+  <div class="space-y-6">
+    <div class="flex items-center space-x-4">
+      <img src="/logo.png" alt="User Avatar" class="w-20 h-20 rounded-full" />
+      <div>
+        <h3 class="text-xl font-semibold">John Doe</h3>
+        <p class="text-gray-400">john.doe@example.com</p>
+      </div>
+    </div>
+    <div class="space-y-4">
+      <div>
+        <label class="block text-sm font-medium mb-1">Username</label>
+        <input
+          v-model="username"
+          type="text"
+          class="w-full bg-gray-800 rounded p-2 text-white"
+        />
+      </div>
+      <div>
+        <label class="block text-sm font-medium mb-1">Email</label>
+        <input
+          v-model="email"
+          type="email"
+          class="w-full bg-gray-800 rounded p-2 text-white"
+        />
+      </div>
+    </div>
+  </div>
+</template>
+
+<script setup lang="ts">
+const username = ref();
+const email = ref();
+</script>
diff --git a/src/app/pages/admin/index.vue b/src/app/pages/admin/index.vue
index 3cbcfd8a..d4a40441 100644
--- a/src/app/pages/admin/index.vue
+++ b/src/app/pages/admin/index.vue
@@ -1,8 +1,5 @@
 <template>
-  <div>Admin Area</div>
+  <div class="space-y-6">This is a test</div>
 </template>
 
-<script setup lang="ts">
-const authStore = useAuthStore();
-authStore.update();
-</script>
+<script setup lang="ts"></script>
diff --git a/src/app/pages/admin/server.vue b/src/app/pages/admin/server.vue
new file mode 100644
index 00000000..53a4b11b
--- /dev/null
+++ b/src/app/pages/admin/server.vue
@@ -0,0 +1,34 @@
+<template>
+  <div class="space-y-6">
+    <div class="flex items-center space-x-4">
+      <img src="/logo.png" alt="User Avatar" class="w-20 h-20 rounded-full" />
+      <div>
+        <h3 class="text-xl font-semibold">John Doe</h3>
+        <p class="text-gray-400">john.doe@example.com</p>
+      </div>
+    </div>
+    <div class="space-y-4">
+      <div>
+        <label class="block text-sm font-medium mb-1">Username</label>
+        <input
+          v-model="username"
+          type="text"
+          class="w-full bg-gray-800 rounded p-2 text-white"
+        />
+      </div>
+      <div>
+        <label class="block text-sm font-medium mb-1">Email</label>
+        <input
+          v-model="email"
+          type="email"
+          class="w-full bg-gray-800 rounded p-2 text-white"
+        />
+      </div>
+    </div>
+  </div>
+</template>
+
+<script setup lang="ts">
+const username = ref();
+const email = ref();
+</script>
diff --git a/src/app/pages/admin/user.vue b/src/app/pages/admin/user.vue
new file mode 100644
index 00000000..53a4b11b
--- /dev/null
+++ b/src/app/pages/admin/user.vue
@@ -0,0 +1,34 @@
+<template>
+  <div class="space-y-6">
+    <div class="flex items-center space-x-4">
+      <img src="/logo.png" alt="User Avatar" class="w-20 h-20 rounded-full" />
+      <div>
+        <h3 class="text-xl font-semibold">John Doe</h3>
+        <p class="text-gray-400">john.doe@example.com</p>
+      </div>
+    </div>
+    <div class="space-y-4">
+      <div>
+        <label class="block text-sm font-medium mb-1">Username</label>
+        <input
+          v-model="username"
+          type="text"
+          class="w-full bg-gray-800 rounded p-2 text-white"
+        />
+      </div>
+      <div>
+        <label class="block text-sm font-medium mb-1">Email</label>
+        <input
+          v-model="email"
+          type="email"
+          class="w-full bg-gray-800 rounded p-2 text-white"
+        />
+      </div>
+    </div>
+  </div>
+</template>
+
+<script setup lang="ts">
+const username = ref();
+const email = ref();
+</script>
diff --git a/src/server/middleware/auth.ts b/src/server/middleware/auth.ts
index fe37d19b..7ab156f0 100644
--- a/src/server/middleware/auth.ts
+++ b/src/server/middleware/auth.ts
@@ -14,7 +14,7 @@ export default defineEventHandler(async (event) => {
     }
   }
 
-  if (url.pathname === '/admin') {
+  if (url.pathname.startsWith('/admin')) {
     if (!session.data.userId) {
       return sendRedirect(event, '/login', 302);
     }

From 64b4fe1f401a462f2c242ddb38433e50e9eb7961 Mon Sep 17 00:00:00 2001
From: Bernd Storath <999999bst@gmail.com>
Date: Wed, 11 Sep 2024 12:44:20 +0200
Subject: [PATCH 06/16] add radix vue, improve ui

---
 src/app/components/ui/UserMenu.vue | 134 ++++++++++++++---------------
 src/app/layouts/Header.vue         |  22 ++---
 src/app/pages/admin.vue            |  33 +++----
 src/app/pages/admin/clients.vue    |  34 --------
 src/app/pages/admin/features.vue   |  63 ++++++++++++++
 src/app/pages/admin/index.vue      |   9 +-
 src/app/pages/admin/server.vue     |  34 --------
 src/app/pages/admin/user.vue       |  34 --------
 src/nuxt.config.ts                 |   1 +
 src/package.json                   |   1 +
 src/pnpm-lock.yaml                 | 134 +++++++++++++++++++++++++++++
 11 files changed, 301 insertions(+), 198 deletions(-)
 delete mode 100644 src/app/pages/admin/clients.vue
 create mode 100644 src/app/pages/admin/features.vue
 delete mode 100644 src/app/pages/admin/server.vue
 delete mode 100644 src/app/pages/admin/user.vue

diff --git a/src/app/components/ui/UserMenu.vue b/src/app/components/ui/UserMenu.vue
index debecc0a..43d79190 100644
--- a/src/app/components/ui/UserMenu.vue
+++ b/src/app/components/ui/UserMenu.vue
@@ -1,80 +1,70 @@
 <template>
-  <button
-    class="flex items-center pe-1 font-medium text-sm text-gray-400 rounded-full hover:text-red-800 dark:hover:text-red-800 md:me-0 focus:ring-4 focus:ring-gray-100 dark:focus:ring-gray-700 dark:text-neutral-400"
-    type="button"
-    @click.prevent="toggleMenu"
-  >
-    <IconsAvatar class="w-8 h-8 me-2 rounded-full" />
-    {{ authStore.userData?.name }}
-    <svg
-      class="w-2.5 h-2.5 ms-3"
-      aria-hidden="true"
-      xmlns="http://www.w3.org/2000/svg"
-      fill="none"
-      viewBox="0 0 10 6"
-    >
-      <path
-        stroke="currentColor"
-        stroke-linecap="round"
-        stroke-linejoin="round"
-        stroke-width="2"
-        d="m1 1 4 4 4-4"
-      />
-    </svg>
-  </button>
-
-  <!-- Dropdown menu -->
-  <div
-    v-show="menuOpen"
-    class="z-10 bg-white divide-y divide-gray-100 rounded-lg shadow w-44 dark:bg-neutral-700 dark:divide-neutral-800"
-  >
-    <div class="px-4 py-3 text-sm text-gray-900 dark:text-white">
-      <div class="truncate">{{ authStore.userData?.name }}</div>
-      <div class="truncate">@{{ authStore.userData?.username }}</div>
-    </div>
-    <ul class="py-2 text-sm text-gray-700 dark:text-gray-200">
-      <li>
-        <NuxtLink
-          to="/"
-          class="block px-4 py-2 hover:bg-gray-100 dark:hover:bg-gray-600 dark:hover:text-white"
-          @click="closeMenu"
-        >
-          Clients
-        </NuxtLink>
-      </li>
-      <li v-if="authStore.userData?.role === 'ADMIN'">
-        <NuxtLink
-          to="/admin"
-          class="block px-4 py-2 hover:bg-gray-100 dark:hover:bg-gray-600 dark:hover:text-white"
-          @click="closeMenu"
-        >
-          Admin Panel
-        </NuxtLink>
-      </li>
-    </ul>
-    <div class="py-2">
+  <DropdownMenuRoot v-model:open="toggleState">
+    <DropdownMenuTrigger>
       <button
-        class="flex items-center gap-2 w-full px-4 py-2 text-sm text-gray-700 hover:bg-gray-100 dark:hover:bg-gray-600 dark:text-gray-200 dark:hover:text-white"
-        @click.prevent="logout"
+        class="flex items-center pe-1 font-medium text-sm text-gray-400 rounded-full hover:text-red-800 dark:hover:text-red-800 md:me-0 focus:ring-4 focus:ring-gray-100 dark:focus:ring-gray-700 dark:text-neutral-400"
+        type="button"
       >
-        <IconsLogout class="h-5" />
-        {{ $t('logout') }}
+        <AvatarRoot
+          class="inline-flex h-8 w-8 select-none items-center justify-center overflow-hidden rounded-full align-middle mr-2"
+        >
+          <AvatarFallback
+            class="text-grass11 leading-1 flex h-full w-full items-center justify-center bg-white text-[15px] font-medium"
+            :delay-ms="600"
+          >
+            {{ fallbackName }}
+          </AvatarFallback>
+        </AvatarRoot>
+        {{ authStore.userData?.name }}
       </button>
-    </div>
-  </div>
+    </DropdownMenuTrigger>
+
+    <DropdownMenuPortal>
+      <DropdownMenuContent
+        :side-offset="5"
+        class="z-10 bg-white divide-y divide-gray-100 rounded-lg shadow w-44 dark:bg-neutral-700 dark:divide-neutral-800 text-gray-700 dark:text-gray-200"
+      >
+        <DropdownMenuItem>
+          <div class="truncate">{{ authStore.userData?.name }}</div>
+          <div class="truncate">@{{ authStore.userData?.username }}</div>
+        </DropdownMenuItem>
+        <DropdownMenuItem>
+          <NuxtLink
+            to="/"
+            class="block px-4 py-2 hover:bg-gray-100 dark:hover:bg-gray-600 dark:hover:text-white"
+          >
+            Clients
+          </NuxtLink>
+        </DropdownMenuItem>
+        <DropdownMenuItem v-if="authStore.userData?.role === 'ADMIN'">
+          <NuxtLink
+            to="/admin"
+            class="block px-4 py-2 hover:bg-gray-100 dark:hover:bg-gray-600 dark:hover:text-white"
+          >
+            Admin Panel
+          </NuxtLink>
+        </DropdownMenuItem>
+        <DropdownMenuItem>
+          <button
+            class="flex items-center gap-2 w-full px-4 py-2 text-sm text-gray-700 hover:bg-gray-100 dark:hover:bg-gray-600 dark:text-gray-200 dark:hover:text-white"
+            @click.prevent="logout"
+          >
+            <IconsLogout class="h-5" />
+            {{ $t('logout') }}
+          </button>
+        </DropdownMenuItem>
+      </DropdownMenuContent>
+    </DropdownMenuPortal>
+  </DropdownMenuRoot>
 </template>
 
 <script setup lang="ts">
 const authStore = useAuthStore();
-const menuOpen = ref(false);
+const toggleState = ref(false);
 
-function toggleMenu() {
-  menuOpen.value = !menuOpen.value;
-}
-
-function closeMenu() {
-  menuOpen.value = false;
-}
+watchEffect(() => {
+  console.log(toggleState);
+});
 
 async function logout() {
   try {
@@ -87,4 +77,12 @@ async function logout() {
     }
   }
 }
+
+const fallbackName = computed(() => {
+  return authStore.userData?.name
+    .split(' ')
+    .map((word) => word.charAt(0).toUpperCase())
+    .slice(0, 2)
+    .join('');
+});
 </script>
diff --git a/src/app/layouts/Header.vue b/src/app/layouts/Header.vue
index 50625aad..7c9b03a4 100644
--- a/src/app/layouts/Header.vue
+++ b/src/app/layouts/Header.vue
@@ -7,16 +7,18 @@
           : 'flex flex-col-reverse xxs:flex-row flex-auto items-center gap-3'
       "
     >
-      <h1
-        v-if="isLoginPage"
-        class="text-4xl dark:text-neutral-200 font-medium flex-grow self-start mb-4"
-      >
-        <img
-          src="/logo.png"
-          width="32"
-          class="inline align-middle dark:bg mr-2"
-        /><span class="align-middle">WireGuard</span>
-      </h1>
+      <NuxtLink to="/" class="flex-grow self-start mb-4">
+        <h1
+          v-if="isLoginPage"
+          class="text-4xl dark:text-neutral-200 font-medium"
+        >
+          <img
+            src="/logo.png"
+            width="32"
+            class="inline align-middle dark:bg mr-2"
+          /><span class="align-middle">WireGuard</span>
+        </h1>
+      </NuxtLink>
       <div class="flex items-center grow-0 gap-3 self-end xxs:self-center">
         <!-- Dark / light theme -->
         <button
diff --git a/src/app/pages/admin.vue b/src/app/pages/admin.vue
index 0ac27a88..08178943 100644
--- a/src/app/pages/admin.vue
+++ b/src/app/pages/admin.vue
@@ -1,26 +1,28 @@
 <template>
-  <div class="min-h-screen">
+  <div>
     <div class="container mx-auto p-4">
       <div class="flex">
-        <!-- Sidebar -->
         <div class="w-64 bg-white dark:bg-neutral-700 rounded-lg p-4 mr-4">
-          <h2 class="text-xl font-bold dark:text-neutral-200 mb-4">
-            Admin Panel
-          </h2>
-          <ul class="space-y-2">
-            <li
+          <NuxtLink to="/admin">
+            <h2 class="text-xl font-bold dark:text-neutral-200 mb-4">
+              Admin Panel
+            </h2>
+          </NuxtLink>
+          <div class="space-y-2 flex flex-col">
+            <NuxtLink
               v-for="(item, index) in menuItems"
               :key="index"
-              :class="{ 'bg-gray-700': activeMenuItem?.id === item.id }"
-              class="font-medium dark:text-neutral-200 p-2 rounded cursor-pointer hover:bg-red-800 transition-colors duration-200"
-              @click="router.push(`/admin/${item.id}`)"
+              :to="`/admin/${item.id}`"
             >
-              {{ item.name }}
-            </li>
-          </ul>
+              <BaseButton
+                class="font-medium dark:text-neutral-200 p-2 rounded cursor-pointer hover:bg-red-800 transition-colors duration-200 w-full"
+              >
+                {{ item.name }}
+              </BaseButton>
+            </NuxtLink>
+          </div>
         </div>
 
-        <!-- Main Content -->
         <div
           class="flex-1 bg-white dark:text-neutral-200 dark:bg-neutral-700 rounded-lg p-6"
         >
@@ -36,12 +38,11 @@
 const authStore = useAuthStore();
 authStore.update();
 
-const router = useRouter();
 const route = useRoute();
 
 const menuItems = [
+  { id: 'features', name: 'Features' },
   { id: 'user', name: 'User' },
-  { id: 'clients', name: 'Clients' },
   { id: 'server', name: 'Server' },
 ];
 
diff --git a/src/app/pages/admin/clients.vue b/src/app/pages/admin/clients.vue
deleted file mode 100644
index 53a4b11b..00000000
--- a/src/app/pages/admin/clients.vue
+++ /dev/null
@@ -1,34 +0,0 @@
-<template>
-  <div class="space-y-6">
-    <div class="flex items-center space-x-4">
-      <img src="/logo.png" alt="User Avatar" class="w-20 h-20 rounded-full" />
-      <div>
-        <h3 class="text-xl font-semibold">John Doe</h3>
-        <p class="text-gray-400">john.doe@example.com</p>
-      </div>
-    </div>
-    <div class="space-y-4">
-      <div>
-        <label class="block text-sm font-medium mb-1">Username</label>
-        <input
-          v-model="username"
-          type="text"
-          class="w-full bg-gray-800 rounded p-2 text-white"
-        />
-      </div>
-      <div>
-        <label class="block text-sm font-medium mb-1">Email</label>
-        <input
-          v-model="email"
-          type="email"
-          class="w-full bg-gray-800 rounded p-2 text-white"
-        />
-      </div>
-    </div>
-  </div>
-</template>
-
-<script setup lang="ts">
-const username = ref();
-const email = ref();
-</script>
diff --git a/src/app/pages/admin/features.vue b/src/app/pages/admin/features.vue
new file mode 100644
index 00000000..69a85f9b
--- /dev/null
+++ b/src/app/pages/admin/features.vue
@@ -0,0 +1,63 @@
+<template>
+  <div class="flex flex-col">
+    <div v-for="feature in featuresData" :key="feature.name" class="space-y-2">
+      <div class="flex items-center justify-between">
+        <div>
+          <h3 class="text-lg font-medium text-gray-900 dark:text-neutral-200">
+            {{ feature.name }}
+          </h3>
+          <p class="text-sm text-gray-500 dark:text-neutral-300">
+            {{ feature.description }}
+          </p>
+        </div>
+        <SwitchRoot
+          :checked="feature.enabled"
+          class="relative inline-flex h-6 w-11 items-center rounded-full transition-colors focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-red-800"
+          :class="feature.enabled ? 'bg-red-800' : 'bg-gray-200'"
+          @update:checked="toggleFeature(feature)"
+        >
+          <SwitchThumb
+            class="inline-block h-4 w-4 transform rounded-full bg-white transition-transform"
+            :class="feature.enabled ? 'translate-x-6' : 'translate-x-1'"
+          />
+        </SwitchRoot>
+      </div>
+    </div>
+    <BaseButton class="self-end">Save</BaseButton>
+  </div>
+</template>
+
+<script setup lang="ts">
+const globalStore = useGlobalStore();
+
+const featuresData = ref([
+  {
+    name: 'Traffic Stats',
+    description: 'Show more detailed Statistics about Client Traffic',
+    enabled: globalStore.features.trafficStats.enabled,
+  },
+  {
+    name: 'Sort Clients',
+    description: 'Be able to sort Clients by Name',
+    enabled: globalStore.features.sortClients.enabled,
+  },
+  {
+    name: 'One Time Links',
+    description: 'Be able to generate One Time Link to download Config',
+    enabled: globalStore.features.oneTimeLinks.enabled,
+  },
+  {
+    name: 'Client Expiration',
+    description: 'Be able to set Date when Client will be disabled',
+    enabled: globalStore.features.clientExpiration.enabled,
+  },
+]);
+
+function toggleFeature(feature: (typeof featuresData)['value'][number]) {
+  const feat = featuresData.value.find((v) => v.name === feature.name);
+  if (!feat) {
+    return;
+  }
+  feat.enabled = !feat.enabled;
+}
+</script>
diff --git a/src/app/pages/admin/index.vue b/src/app/pages/admin/index.vue
index d4a40441..cc9ba8be 100644
--- a/src/app/pages/admin/index.vue
+++ b/src/app/pages/admin/index.vue
@@ -1,5 +1,10 @@
 <template>
-  <div class="space-y-6">This is a test</div>
+  <div>
+    This is the Admin Panel. Your are running wg-easy
+    {{ globalStore.currentRelease }}
+  </div>
 </template>
 
-<script setup lang="ts"></script>
+<script setup lang="ts">
+const globalStore = useGlobalStore();
+</script>
diff --git a/src/app/pages/admin/server.vue b/src/app/pages/admin/server.vue
deleted file mode 100644
index 53a4b11b..00000000
--- a/src/app/pages/admin/server.vue
+++ /dev/null
@@ -1,34 +0,0 @@
-<template>
-  <div class="space-y-6">
-    <div class="flex items-center space-x-4">
-      <img src="/logo.png" alt="User Avatar" class="w-20 h-20 rounded-full" />
-      <div>
-        <h3 class="text-xl font-semibold">John Doe</h3>
-        <p class="text-gray-400">john.doe@example.com</p>
-      </div>
-    </div>
-    <div class="space-y-4">
-      <div>
-        <label class="block text-sm font-medium mb-1">Username</label>
-        <input
-          v-model="username"
-          type="text"
-          class="w-full bg-gray-800 rounded p-2 text-white"
-        />
-      </div>
-      <div>
-        <label class="block text-sm font-medium mb-1">Email</label>
-        <input
-          v-model="email"
-          type="email"
-          class="w-full bg-gray-800 rounded p-2 text-white"
-        />
-      </div>
-    </div>
-  </div>
-</template>
-
-<script setup lang="ts">
-const username = ref();
-const email = ref();
-</script>
diff --git a/src/app/pages/admin/user.vue b/src/app/pages/admin/user.vue
deleted file mode 100644
index 53a4b11b..00000000
--- a/src/app/pages/admin/user.vue
+++ /dev/null
@@ -1,34 +0,0 @@
-<template>
-  <div class="space-y-6">
-    <div class="flex items-center space-x-4">
-      <img src="/logo.png" alt="User Avatar" class="w-20 h-20 rounded-full" />
-      <div>
-        <h3 class="text-xl font-semibold">John Doe</h3>
-        <p class="text-gray-400">john.doe@example.com</p>
-      </div>
-    </div>
-    <div class="space-y-4">
-      <div>
-        <label class="block text-sm font-medium mb-1">Username</label>
-        <input
-          v-model="username"
-          type="text"
-          class="w-full bg-gray-800 rounded p-2 text-white"
-        />
-      </div>
-      <div>
-        <label class="block text-sm font-medium mb-1">Email</label>
-        <input
-          v-model="email"
-          type="email"
-          class="w-full bg-gray-800 rounded p-2 text-white"
-        />
-      </div>
-    </div>
-  </div>
-</template>
-
-<script setup lang="ts">
-const username = ref();
-const email = ref();
-</script>
diff --git a/src/nuxt.config.ts b/src/nuxt.config.ts
index df563b77..2b300d41 100644
--- a/src/nuxt.config.ts
+++ b/src/nuxt.config.ts
@@ -10,6 +10,7 @@ export default defineNuxtConfig({
     '@nuxtjs/tailwindcss',
     '@pinia/nuxt',
     '@eschricht/nuxt-color-mode',
+    'radix-vue/nuxt',
   ],
   colorMode: {
     preference: 'system',
diff --git a/src/package.json b/src/package.json
index 26d3af41..75cf2696 100644
--- a/src/package.json
+++ b/src/package.json
@@ -34,6 +34,7 @@
     "nuxt": "^3.13.0",
     "pinia": "^2.2.2",
     "qrcode": "^1.5.4",
+    "radix-vue": "^1.9.5",
     "semver": "^7.6.3",
     "tailwindcss": "^3.4.10",
     "timeago.js": "^4.0.2",
diff --git a/src/pnpm-lock.yaml b/src/pnpm-lock.yaml
index 2cd028b4..0f00e7d8 100644
--- a/src/pnpm-lock.yaml
+++ b/src/pnpm-lock.yaml
@@ -62,6 +62,9 @@ importers:
       qrcode:
         specifier: ^1.5.4
         version: 1.5.4
+      radix-vue:
+        specifier: ^1.9.5
+        version: 1.9.5(vue@3.4.38(typescript@5.5.4))
       semver:
         specifier: ^7.6.3
         version: 7.6.3
@@ -751,6 +754,18 @@ packages:
     resolution: {integrity: sha512-vBZP4NlzfOlerQTnba4aqZoMhE/a9HY7HRqoOPaETQcSQuWEIyZMHGfVu6w9wGtGK5fED5qRs2DteVCjOH60sA==}
     engines: {node: '>=14'}
 
+  '@floating-ui/core@1.6.7':
+    resolution: {integrity: sha512-yDzVT/Lm101nQ5TCVeK65LtdN7Tj4Qpr9RTXJ2vPFLqtLxwOrpoxAHAJI8J3yYWUc40J0BDBheaitK5SJmno2g==}
+
+  '@floating-ui/dom@1.6.10':
+    resolution: {integrity: sha512-fskgCFv8J8OamCmyun8MfjB1Olfn+uZKjOKZ0vhYF3gRmEUXcGOjxWL8bBr7i4kIuPZ2KD2S3EUIOxnjC8kl2A==}
+
+  '@floating-ui/utils@0.2.7':
+    resolution: {integrity: sha512-X8R8Oj771YRl/w+c1HqAC1szL8zWQRwFvgDwT129k9ACdBoud/+/rX9V0qiMl6LWUdP9voC2nDVZYPMQQsb6eA==}
+
+  '@floating-ui/vue@1.1.4':
+    resolution: {integrity: sha512-ammH7T3vyCx7pmm9OF19Wc42zrGnUw0QvLoidgypWsCLJMtGXEwY7paYIHO+K+oLC3mbWpzIHzeTVienYenlNg==}
+
   '@humanwhocodes/module-importer@1.0.1':
     resolution: {integrity: sha512-bxveV4V8v5Yb4ncFTT3rPSgZBOpCkjfK0y4oVVVJwIuDVBRMDXrPyXRL988i5ap9m9bnyEEjWfm5WkBmtffLfA==}
     engines: {node: '>=12.22'}
@@ -759,6 +774,12 @@ packages:
     resolution: {integrity: sha512-d2CGZR2o7fS6sWB7DG/3a95bGKQyHMACZ5aW8qGkkqQpUoZV6C0X7Pc7l4ZNMZkfNBf4VWNe9E1jRsf0G146Ew==}
     engines: {node: '>=18.18'}
 
+  '@internationalized/date@3.5.5':
+    resolution: {integrity: sha512-H+CfYvOZ0LTJeeLOqm19E3uj/4YjrmOFtBufDHPfvtI80hFAMqtrp7oCACpe4Cil5l8S0Qu/9dYfZc/5lY8WQQ==}
+
+  '@internationalized/number@3.5.3':
+    resolution: {integrity: sha512-rd1wA3ebzlp0Mehj5YTuTI50AQEx80gWFyHcQu+u91/5NgdwBecO8BH6ipPfE+lmQ9d63vpB3H9SHoIUiupllw==}
+
   '@intlify/bundle-utils@7.5.1':
     resolution: {integrity: sha512-UovJl10oBIlmYEcWw+VIHdKY5Uv5sdPG0b/b6bOYxGLln3UwB75+2dlc0F3Fsa0RhoznQ5Rp589/BZpABpE4Xw==}
     engines: {node: '>= 14.16'}
@@ -1209,11 +1230,22 @@ packages:
     peerDependencies:
       eslint: '>=8.40.0'
 
+  '@swc/helpers@0.5.13':
+    resolution: {integrity: sha512-UoKGxQ3r5kYI9dALKJapMmuK+1zWM/H17Z1+iwnNmzcJRnfFuevZs375TA5rW31pu4BS4NoSy1fRsexDXfWn5w==}
+
   '@tailwindcss/forms@0.5.9':
     resolution: {integrity: sha512-tM4XVr2+UVTxXJzey9Twx48c1gcxFStqn1pQz0tRsX8o3DvxhN5oY5pvyAbUx7VTaZxpej4Zzvc6h+1RJBzpIg==}
     peerDependencies:
       tailwindcss: '>=3.0.0 || >= 3.0.0-alpha.1 || >= 4.0.0-alpha.20'
 
+  '@tanstack/virtual-core@3.10.7':
+    resolution: {integrity: sha512-ND5dfsU0n9F4gROzwNNDJmg6y8n9pI8YWxtgbfJ5UcNn7Hx+MxEXtXcQ189tS7sh8pmCObgz2qSiyRKTZxT4dg==}
+
+  '@tanstack/vue-virtual@3.10.7':
+    resolution: {integrity: sha512-OSK1fkvz4GaBhF80KVmBsJZoMI9ncVaUU//pI8OqTdBnepw467zcuF2Y+Ia1VC0CPYfUEALyS8n4Ar0RI/7ASg==}
+    peerDependencies:
+      vue: ^2.7.0 || ^3.0.0
+
   '@trysound/sax@0.2.0':
     resolution: {integrity: sha512-L7z9BgrNEcYyUYtF+HaEfiS5ebkh9jXqbszz7pC0hRBPaatV0XjSD3+eHrpqFemQfgwiFF0QPIarnIihIDn7OA==}
     engines: {node: '>=10.13.0'}
@@ -1251,6 +1283,9 @@ packages:
   '@types/semver@7.5.8':
     resolution: {integrity: sha512-I8EUhyrgfLrcTkzV3TSsGyl1tSuPrEDzr0yd5m90UgNxQkyDXULk3b6MlQqTCpZpNtWe1K0hzclnZkTcLBe2UQ==}
 
+  '@types/web-bluetooth@0.0.20':
+    resolution: {integrity: sha512-g9gZnnXVq7gM7v3tJCWV/qw7w+KeOlSHAhgF9RytFyifW6AF61hdT2ucrYhPq9hLs5JIryeupHV3qGk95dH9ow==}
+
   '@typescript-eslint/eslint-plugin@8.4.0':
     resolution: {integrity: sha512-rg8LGdv7ri3oAlenMACk9e+AR4wUV0yrrG+XKsGKOK0EVgeEDqurkXMPILG2836fW4ibokTB5v4b6Z9+GYQDEw==}
     engines: {node: ^18.18.0 || ^20.9.0 || >=21.1.0}
@@ -1430,6 +1465,15 @@ packages:
   '@vue/shared@3.4.38':
     resolution: {integrity: sha512-q0xCiLkuWWQLzVrecPb0RMsNWyxICOjPrcrwxTUEHb1fsnvni4dcuyG7RT/Ie7VPTvnjzIaWzRMUBsrqNj/hhw==}
 
+  '@vueuse/core@10.11.1':
+    resolution: {integrity: sha512-guoy26JQktXPcz+0n3GukWIy/JDNKti9v6VEMu6kV2sYBsWuGiTU8OWdg+ADfUbHg3/3DlqySDe7JmdHrktiww==}
+
+  '@vueuse/metadata@10.11.1':
+    resolution: {integrity: sha512-IGa5FXd003Ug1qAZmyE8wF3sJ81xGLSqTqtQ6jaVfkeZ4i5kS2mwQF61yhVqojRnenVew5PldLyRgvdl4YYuSw==}
+
+  '@vueuse/shared@10.11.1':
+    resolution: {integrity: sha512-LHpC8711VFZlDaYUXEBbFBCQ7GS3dVU9mjOhhMhXP6txTV4EhYQg/KGnQuvt/sPAtoUKq7VVUnL6mVtFoL42sA==}
+
   '@yr/monotone-cubic-spline@1.0.3':
     resolution: {integrity: sha512-FQXkOta0XBSUPHndIKON2Y9JeQz5ZeMqLYZVVK93FliNBFm7LNMIZmY6FrMEB9XPcDbE2bekMbZD6kzDkxwYjA==}
 
@@ -1534,6 +1578,10 @@ packages:
   argparse@2.0.1:
     resolution: {integrity: sha512-8+9WqebbFzpX9OR+Wa6O29asIogeRMzcGtAINdpMHHyAg10f05aSFVBbcEqGf/PXw1EjAZ+q2/bEBg3DvurK3Q==}
 
+  aria-hidden@1.2.4:
+    resolution: {integrity: sha512-y+CcFFwelSXpLZk/7fMB2mUbGtX9lKycf1MWJ7CaTIERyitVlyQx6C+sxcROU2BAJ24OiZyK+8wj2i8AlBoS3A==}
+    engines: {node: '>=10'}
+
   ast-kit@1.1.0:
     resolution: {integrity: sha512-RlNqd4u6c/rJ5R+tN/ZTtyNrH8X0NHCvyt6gD8RHa3JjzxxHWoyaU0Ujk3Zjbh7IZqrYl1Sxm6XzZifmVxXxHQ==}
     engines: {node: '>=16.14.0'}
@@ -3553,6 +3601,11 @@ packages:
   queue-tick@1.0.1:
     resolution: {integrity: sha512-kJt5qhMxoszgU/62PLP1CJytzd2NKetjSRnyuj31fDd3Rlcz3fzlFdFLD1SItunPwyqEOkca6GbV612BWfaBag==}
 
+  radix-vue@1.9.5:
+    resolution: {integrity: sha512-vtCq+WDAZj5BQtJiChGf/oC7w3y7jaod3agcntgph7fD6aqdcghLZYcUWdgT/XNJs2bEsk+3cjK3ONPRNeFcuQ==}
+    peerDependencies:
+      vue: '>= 3.2.0'
+
   radix3@1.1.2:
     resolution: {integrity: sha512-b484I/7b8rDEdSDKckSSBA8knMpcdsXudlE/LNL639wFoHKwLbEkQFZHWEYwDC0wa0FKUcCY+GAF73Z7wxNVFA==}
 
@@ -4992,10 +5045,38 @@ snapshots:
 
   '@fastify/busboy@2.1.1': {}
 
+  '@floating-ui/core@1.6.7':
+    dependencies:
+      '@floating-ui/utils': 0.2.7
+
+  '@floating-ui/dom@1.6.10':
+    dependencies:
+      '@floating-ui/core': 1.6.7
+      '@floating-ui/utils': 0.2.7
+
+  '@floating-ui/utils@0.2.7': {}
+
+  '@floating-ui/vue@1.1.4(vue@3.4.38(typescript@5.5.4))':
+    dependencies:
+      '@floating-ui/dom': 1.6.10
+      '@floating-ui/utils': 0.2.7
+      vue-demi: 0.14.10(vue@3.4.38(typescript@5.5.4))
+    transitivePeerDependencies:
+      - '@vue/composition-api'
+      - vue
+
   '@humanwhocodes/module-importer@1.0.1': {}
 
   '@humanwhocodes/retry@0.3.0': {}
 
+  '@internationalized/date@3.5.5':
+    dependencies:
+      '@swc/helpers': 0.5.13
+
+  '@internationalized/number@3.5.3':
+    dependencies:
+      '@swc/helpers': 0.5.13
+
   '@intlify/bundle-utils@7.5.1(vue-i18n@9.14.0(vue@3.4.38(typescript@5.5.4)))':
     dependencies:
       '@intlify/message-compiler': 9.14.0
@@ -5658,11 +5739,22 @@ snapshots:
       - supports-color
       - typescript
 
+  '@swc/helpers@0.5.13':
+    dependencies:
+      tslib: 2.7.0
+
   '@tailwindcss/forms@0.5.9(tailwindcss@3.4.10)':
     dependencies:
       mini-svg-data-uri: 1.4.4
       tailwindcss: 3.4.10
 
+  '@tanstack/virtual-core@3.10.7': {}
+
+  '@tanstack/vue-virtual@3.10.7(vue@3.4.38(typescript@5.5.4))':
+    dependencies:
+      '@tanstack/virtual-core': 3.10.7
+      vue: 3.4.38(typescript@5.5.4)
+
   '@trysound/sax@0.2.0': {}
 
   '@types/debug@4.1.12':
@@ -5698,6 +5790,8 @@ snapshots:
 
   '@types/semver@7.5.8': {}
 
+  '@types/web-bluetooth@0.0.20': {}
+
   '@typescript-eslint/eslint-plugin@8.4.0(@typescript-eslint/parser@8.4.0(eslint@9.9.1(jiti@1.21.6))(typescript@5.5.4))(eslint@9.9.1(jiti@1.21.6))(typescript@5.5.4)':
     dependencies:
       '@eslint-community/regexpp': 4.11.0
@@ -5992,6 +6086,25 @@ snapshots:
 
   '@vue/shared@3.4.38': {}
 
+  '@vueuse/core@10.11.1(vue@3.4.38(typescript@5.5.4))':
+    dependencies:
+      '@types/web-bluetooth': 0.0.20
+      '@vueuse/metadata': 10.11.1
+      '@vueuse/shared': 10.11.1(vue@3.4.38(typescript@5.5.4))
+      vue-demi: 0.14.10(vue@3.4.38(typescript@5.5.4))
+    transitivePeerDependencies:
+      - '@vue/composition-api'
+      - vue
+
+  '@vueuse/metadata@10.11.1': {}
+
+  '@vueuse/shared@10.11.1(vue@3.4.38(typescript@5.5.4))':
+    dependencies:
+      vue-demi: 0.14.10(vue@3.4.38(typescript@5.5.4))
+    transitivePeerDependencies:
+      - '@vue/composition-api'
+      - vue
+
   '@yr/monotone-cubic-spline@1.0.3': {}
 
   abbrev@1.1.1: {}
@@ -6104,6 +6217,10 @@ snapshots:
 
   argparse@2.0.1: {}
 
+  aria-hidden@1.2.4:
+    dependencies:
+      tslib: 2.7.0
+
   ast-kit@1.1.0:
     dependencies:
       '@babel/parser': 7.25.6
@@ -8309,6 +8426,23 @@ snapshots:
 
   queue-tick@1.0.1: {}
 
+  radix-vue@1.9.5(vue@3.4.38(typescript@5.5.4)):
+    dependencies:
+      '@floating-ui/dom': 1.6.10
+      '@floating-ui/vue': 1.1.4(vue@3.4.38(typescript@5.5.4))
+      '@internationalized/date': 3.5.5
+      '@internationalized/number': 3.5.3
+      '@tanstack/vue-virtual': 3.10.7(vue@3.4.38(typescript@5.5.4))
+      '@vueuse/core': 10.11.1(vue@3.4.38(typescript@5.5.4))
+      '@vueuse/shared': 10.11.1(vue@3.4.38(typescript@5.5.4))
+      aria-hidden: 1.2.4
+      defu: 6.1.4
+      fast-deep-equal: 3.1.3
+      nanoid: 5.0.7
+      vue: 3.4.38(typescript@5.5.4)
+    transitivePeerDependencies:
+      - '@vue/composition-api'
+
   radix3@1.1.2: {}
 
   randombytes@2.1.0:

From cdd7299eab3699a796c8fb987c6fb83cd795e677 Mon Sep 17 00:00:00 2001
From: Bernd Storath <999999bst@gmail.com>
Date: Thu, 12 Sep 2024 09:03:16 +0200
Subject: [PATCH 07/16] fix features, add toast

---
 src/app/app.vue                              |  7 ++-
 src/app/components/ui/Toast.vue              | 37 +++++++++++++++
 src/app/layouts/Header.vue                   | 14 ++++--
 src/app/pages/admin/features.vue             | 49 ++++++++++++++------
 src/app/utils/api.ts                         |  7 +++
 src/app/utils/math.ts                        |  1 +
 src/server/api/features.post.ts              |  8 ++++
 src/server/middleware/setup.ts               |  2 +
 src/server/utils/types.ts                    | 36 ++++++++++----
 src/services/database/lowdb.ts               | 17 ++++++-
 src/services/database/repositories/system.ts | 13 +++++-
 11 files changed, 161 insertions(+), 30 deletions(-)
 create mode 100644 src/app/components/ui/Toast.vue
 create mode 100644 src/server/api/features.post.ts

diff --git a/src/app/app.vue b/src/app/app.vue
index 636ca56d..ef2841fa 100644
--- a/src/app/app.vue
+++ b/src/app/app.vue
@@ -1,7 +1,12 @@
 <template>
   <NuxtLayout>
     <NuxtLayout name="header" />
-    <NuxtPage />
+    <ToastProvider>
+      <NuxtPage />
+      <ToastViewport
+        class="[--viewport-padding:_25px] fixed bottom-0 right-0 flex flex-col p-[var(--viewport-padding)] gap-[10px] w-[390px] max-w-[100vw] m-0 list-none z-[2147483647] outline-none"
+      />
+    </ToastProvider>
     <NuxtLayout name="footer" />
   </NuxtLayout>
 </template>
diff --git a/src/app/components/ui/Toast.vue b/src/app/components/ui/Toast.vue
new file mode 100644
index 00000000..d5a3721f
--- /dev/null
+++ b/src/app/components/ui/Toast.vue
@@ -0,0 +1,37 @@
+<script setup lang="ts">
+import {
+  ToastAction,
+  ToastClose,
+  ToastDescription,
+  ToastRoot,
+  ToastTitle,
+} from 'radix-vue';
+
+defineProps<{
+  title: string;
+  content: string;
+}>();
+</script>
+
+<template>
+  <ToastRoot
+    class="bg-white rounded-md shadow-[hsl(206_22%_7%_/_35%)_0px_10px_38px_-10px,_hsl(206_22%_7%_/_20%)_0px_10px_20px_-15px] p-[15px] grid [grid-template-areas:_'title_action'_'description_action'] grid-cols-[auto_max-content] gap-x-[15px] items-center data-[state=open]:animate-slideIn data-[state=closed]:animate-hide data-[swipe=move]:translate-x-[var(--radix-toast-swipe-move-x)] data-[swipe=cancel]:translate-x-0 data-[swipe=cancel]:transition-[transform_200ms_ease-out] data-[swipe=end]:animate-swipeOut"
+  >
+    <ToastTitle
+      v-if="title"
+      class="[grid-area:_title] mb-[5px] font-medium text-slate12 text-[15px]"
+    >
+      {{ title }}
+    </ToastTitle>
+    <ToastDescription
+      class="[grid-area:_description] m-0 text-slate11 text-[13px] leading-[1.3]"
+      >{{ content }}</ToastDescription
+    >
+    <ToastAction as-child alt-text="toast" class="[grid-area:_action]">
+      <slot />
+    </ToastAction>
+    <ToastClose aria-label="Close">
+      <span aria-hidden>×</span>
+    </ToastClose>
+  </ToastRoot>
+</template>
diff --git a/src/app/layouts/Header.vue b/src/app/layouts/Header.vue
index 7c9b03a4..1cf31451 100644
--- a/src/app/layouts/Header.vue
+++ b/src/app/layouts/Header.vue
@@ -2,14 +2,14 @@
   <header class="container mx-auto max-w-3xl px-3 md:px-0 mt-4 xs:mt-6">
     <div
       :class="
-        isLoginPage
+        hasOwnLogo
           ? 'flex justify-end'
           : 'flex flex-col-reverse xxs:flex-row flex-auto items-center gap-3'
       "
     >
       <NuxtLink to="/" class="flex-grow self-start mb-4">
         <h1
-          v-if="isLoginPage"
+          v-if="!hasOwnLogo"
           class="text-4xl dark:text-neutral-200 font-medium"
         >
           <img
@@ -53,7 +53,7 @@
             class="w-5 h-5 peer fill-gray-400 peer-checked:fill-gray-600 dark:fill-neutral-600 peer-checked:dark:fill-neutral-400 group-hover:dark:fill-neutral-500 transition"
           />
         </label>
-        <UiUserMenu v-if="!isLoginPage" />
+        <UiUserMenu v-if="loggedIn" />
       </div>
     </div>
     <div class="text-sm text-gray-400 dark:text-neutral-400 mb-5" />
@@ -84,7 +84,13 @@
 const globalStore = useGlobalStore();
 const route = useRoute();
 
-const isLoginPage = computed(() => route.path == '/login');
+const hasOwnLogo = computed(
+  () => route.path === '/login' || route.path === '/setup'
+);
+
+const loggedIn = computed(
+  () => route.path !== '/login' && route.path !== '/setup'
+);
 
 const theme = useTheme();
 const uiShowCharts = ref(getItem('uiShowCharts') === '1');
diff --git a/src/app/pages/admin/features.vue b/src/app/pages/admin/features.vue
index 69a85f9b..f84e5f2e 100644
--- a/src/app/pages/admin/features.vue
+++ b/src/app/pages/admin/features.vue
@@ -1,6 +1,6 @@
 <template>
   <div class="flex flex-col">
-    <div v-for="feature in featuresData" :key="feature.name" class="space-y-2">
+    <div v-for="(feature, key) in featuresData" :key="key" class="space-y-2">
       <div class="flex items-center justify-between">
         <div>
           <h3 class="text-lg font-medium text-gray-900 dark:text-neutral-200">
@@ -14,7 +14,7 @@
           :checked="feature.enabled"
           class="relative inline-flex h-6 w-11 items-center rounded-full transition-colors focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-red-800"
           :class="feature.enabled ? 'bg-red-800' : 'bg-gray-200'"
-          @update:checked="toggleFeature(feature)"
+          @update:checked="toggleFeature(key)"
         >
           <SwitchThumb
             class="inline-block h-4 w-4 transform rounded-full bg-white transition-transform"
@@ -23,41 +23,60 @@
         </SwitchRoot>
       </div>
     </div>
-    <BaseButton class="self-end">Save</BaseButton>
+    <BaseButton class="self-end" @click="submit">Save</BaseButton>
+    <UiToast
+      v-model:open="open"
+      title="Saved successfully"
+      content="Features saved successfully"
+    />
   </div>
 </template>
 
 <script setup lang="ts">
+import type { UiToast } from '#build/components';
+
 const globalStore = useGlobalStore();
+const open = ref(false);
 
-const featuresData = ref([
-  {
-    name: 'Traffic Stats',
-    description: 'Show more detailed Statistics about Client Traffic',
-    enabled: globalStore.features.trafficStats.enabled,
-  },
-  {
+type ExtendedFeatures = {
+  [K in keyof Omit<(typeof globalStore)['features'], 'trafficStats'>]: {
+    name: string;
+    description: string;
+    enabled: boolean;
+  };
+};
+
+const featuresData = ref({
+  sortClients: {
     name: 'Sort Clients',
     description: 'Be able to sort Clients by Name',
     enabled: globalStore.features.sortClients.enabled,
   },
-  {
+  oneTimeLinks: {
     name: 'One Time Links',
     description: 'Be able to generate One Time Link to download Config',
     enabled: globalStore.features.oneTimeLinks.enabled,
   },
-  {
+  clientExpiration: {
     name: 'Client Expiration',
     description: 'Be able to set Date when Client will be disabled',
     enabled: globalStore.features.clientExpiration.enabled,
   },
-]);
+} satisfies ExtendedFeatures);
 
-function toggleFeature(feature: (typeof featuresData)['value'][number]) {
-  const feat = featuresData.value.find((v) => v.name === feature.name);
+function toggleFeature(key: keyof ExtendedFeatures) {
+  const feat = featuresData.value[key];
   if (!feat) {
     return;
   }
   feat.enabled = !feat.enabled;
 }
+
+async function submit() {
+  const response = await api.updateFeatures(featuresData.value);
+  if (response.success) {
+    open.value = true;
+  }
+  globalStore.fetchFeatures();
+}
 </script>
diff --git a/src/app/utils/api.ts b/src/app/utils/api.ts
index feb21bc7..4994caa5 100644
--- a/src/app/utils/api.ts
+++ b/src/app/utils/api.ts
@@ -145,6 +145,13 @@ class API {
       method: 'get',
     });
   }
+
+  async updateFeatures(features: Record<string, { enabled: boolean }>) {
+    return $fetch('/api/features', {
+      method: 'post',
+      body: { features },
+    });
+  }
 }
 
 type WGClientReturn = Awaited<
diff --git a/src/app/utils/math.ts b/src/app/utils/math.ts
index d43ac1b5..9592e333 100644
--- a/src/app/utils/math.ts
+++ b/src/app/utils/math.ts
@@ -21,6 +21,7 @@ export function bytes(
 }
 
 export function dateTime(value: Date) {
+  // TODO: results in mismatch because of different locales
   return new Intl.DateTimeFormat(undefined, {
     year: 'numeric',
     month: 'short',
diff --git a/src/server/api/features.post.ts b/src/server/api/features.post.ts
new file mode 100644
index 00000000..f87119aa
--- /dev/null
+++ b/src/server/api/features.post.ts
@@ -0,0 +1,8 @@
+export default defineEventHandler(async (event) => {
+  const { features } = await readValidatedBody(
+    event,
+    validateZod(featuresType)
+  );
+  await Database.system.updateFeatures(features);
+  return { success: true };
+});
diff --git a/src/server/middleware/setup.ts b/src/server/middleware/setup.ts
index 6c28988d..cb115a37 100644
--- a/src/server/middleware/setup.ts
+++ b/src/server/middleware/setup.ts
@@ -2,6 +2,8 @@
 export default defineEventHandler(async (event) => {
   const url = getRequestURL(event);
 
+  // TODO: redirect to login page if already set up
+
   if (
     url.pathname === '/setup' ||
     url.pathname === '/api/account/setup' ||
diff --git a/src/server/utils/types.ts b/src/server/utils/types.ts
index 8e701f92..2d3568e6 100644
--- a/src/server/utils/types.ts
+++ b/src/server/utils/types.ts
@@ -58,6 +58,19 @@ const oneTimeLink = z
   .min(1, 'oneTimeLink must be at least 1 Character')
   .pipe(safeStringRefine);
 
+const features = z.record(
+  z.string({ message: 'key must be a valid object' }),
+  z.object(
+    {
+      enabled: z.boolean({ message: 'enabled must be a valid boolean' }),
+    },
+    { message: 'value must be a valid object' }
+  ),
+  { message: 'features must be a valid record' }
+);
+
+const objectMessage = 'Body must be a valid object';
+
 export const clientIdType = z.object(
   {
     clientId: id,
@@ -69,28 +82,28 @@ export const address4Type = z.object(
   {
     address4: address4,
   },
-  { message: 'Body must be a valid object' }
+  { message: objectMessage }
 );
 
 export const nameType = z.object(
   {
     name: name,
   },
-  { message: 'Body must be a valid object' }
+  { message: objectMessage }
 );
 
 export const expireDateType = z.object(
   {
     expireDate: expireDate,
   },
-  { message: 'Body must be a valid object' }
+  { message: objectMessage }
 );
 
 export const oneTimeLinkType = z.object(
   {
     oneTimeLink: oneTimeLink,
   },
-  { message: 'Body must be a valid object' }
+  { message: objectMessage }
 );
 
 export const createType = z.object(
@@ -98,14 +111,14 @@ export const createType = z.object(
     name: name,
     expireDate: expireDate,
   },
-  { message: 'Body must be a valid object' }
+  { message: objectMessage }
 );
 
 export const fileType = z.object(
   {
     file: file,
   },
-  { message: 'Body must be a valid object' }
+  { message: objectMessage }
 );
 
 export const credentialsType = z.object(
@@ -114,7 +127,7 @@ export const credentialsType = z.object(
     password: password,
     remember: remember,
   },
-  { message: 'Body must be a valid object' }
+  { message: objectMessage }
 );
 
 export const passwordType = z.object(
@@ -122,7 +135,14 @@ export const passwordType = z.object(
     username: username,
     password: password,
   },
-  { message: 'Body must be a valid object' }
+  { message: objectMessage }
+);
+
+export const featuresType = z.object(
+  {
+    features: features,
+  },
+  { message: objectMessage }
 );
 
 export function validateZod<T>(schema: ZodSchema<T>) {
diff --git a/src/services/database/lowdb.ts b/src/services/database/lowdb.ts
index 5645795f..76bc6ab9 100644
--- a/src/services/database/lowdb.ts
+++ b/src/services/database/lowdb.ts
@@ -18,7 +18,11 @@ import {
   type NewClient,
   type OneTimeLink,
 } from './repositories/client';
-import { SystemRepository } from './repositories/system';
+import {
+  Features,
+  SystemRepository,
+  type Feature,
+} from './repositories/system';
 
 const DEBUG = debug('LowDB');
 
@@ -37,6 +41,17 @@ export class LowDBSystem extends SystemRepository {
     }
     return system;
   }
+
+  async updateFeatures(features: Record<string, Feature>) {
+    DEBUG('Update Features');
+    this.#db.update((v) => {
+      for (const key in features) {
+        if (Features.includes(key as Features)) {
+          v.system[key as Features].enabled = features[key]!.enabled;
+        }
+      }
+    });
+  }
 }
 
 export class LowDBUser extends UserRepository {
diff --git a/src/services/database/repositories/system.ts b/src/services/database/repositories/system.ts
index cf9c8aab..45c74213 100644
--- a/src/services/database/repositories/system.ts
+++ b/src/services/database/repositories/system.ts
@@ -65,16 +65,25 @@ export type System = {
   wgConfigPort: number;
 
   iptables: IpTables;
+
   trafficStats: TrafficStats;
+  prometheus: Prometheus;
 
   clientExpiration: Feature;
   oneTimeLinks: Feature;
   sortClients: Feature;
 
-  prometheus: Prometheus;
   sessionConfig: SessionConfig;
 };
 
+export const Features = [
+  'clientExpiration',
+  'oneTimeLinks',
+  'sortClients',
+] as const;
+
+export type Features = (typeof Features)[number];
+
 /**
  * Interface for system-related database operations.
  * This interface provides methods for retrieving system configuration data
@@ -85,4 +94,6 @@ export abstract class SystemRepository {
    * Retrieves the system configuration data from the database.
    */
   abstract get(): Promise<System>;
+
+  abstract updateFeatures(features: Record<string, Feature>): Promise<void>;
 }

From 3a435a3ded73b507ba7928cb0d7d4a8aa3c522d6 Mon Sep 17 00:00:00 2001
From: Bernd Storath <999999bst@gmail.com>
Date: Thu, 12 Sep 2024 15:49:45 +0200
Subject: [PATCH 08/16] rewrite middleware logic, support basic auth

---
 CHANGELOG.md                                |  9 +++
 README.md                                   |  5 +-
 src/app/components/ui/UserMenu.vue          |  8 +++
 src/app/pages/admin.vue                     |  4 +-
 src/app/pages/admin/features.vue            |  2 -
 src/app/pages/me.vue                        |  8 +++
 src/app/utils/api.ts                        |  2 +-
 src/server/api/{ => admin}/features.post.ts |  0
 src/server/middleware/auth.ts               | 18 +++--
 src/server/middleware/session.ts            | 79 ++++++++++++++++-----
 src/server/middleware/setup.ts              | 20 ++++--
 src/server/utils/session.ts                 |  6 +-
 src/services/database/migrations/1.ts       |  2 +-
 13 files changed, 120 insertions(+), 43 deletions(-)
 create mode 100644 src/app/pages/me.vue
 rename src/server/api/{ => admin}/features.post.ts (100%)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index e842e6bc..d4b50efa 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -14,6 +14,15 @@ This update is an entire rewrite to make it even easier to set up your own VPN.
 
 - Almost all Environment variables removed
 - New and Improved UI
+- API Basic Authentication
+- Added Docs
+- Incrementing Version -> Semantic Versioning
+- CIDR Support
+- IPv6 Support
+- Changed API Structure
+- Changed Database Structure
+- Deprecated Dockerless Installations
+- Added Docker Volume Mount
 
 ## Minor Changes
 
diff --git a/README.md b/README.md
index 421fdda5..f89b57b7 100644
--- a/README.md
+++ b/README.md
@@ -62,6 +62,8 @@ And log in again.
 
 ### 2. Run WireGuard Easy
 
+<!-- TODO: prioritize docker compose over docker run -->
+
 To setup the IPv6 Network, simply run once:
 
 ```bash
@@ -82,6 +84,7 @@ To automatically install & run wg-easy, simply run:
   --ip6 fdcc:ad94:bacf:61a3::2a \
   --ip 10.42.42.42 \
   -v ~/.wg-easy:/etc/wireguard \
+  -v /lib/modules:/lib/modules:ro \
   -p 51820:51820/udp \
   -p 51821:51821/tcp \
   --cap-add NET_ADMIN \
@@ -97,7 +100,7 @@ To automatically install & run wg-easy, simply run:
 
 The Web UI will now be available on `http://0.0.0.0:51821`.
 
-The Prometheus metrics will now be available on `http://0.0.0.0:51821/metrics`. Grafana dashboard [21733](https://grafana.com/grafana/dashboards/21733-wireguard/)
+The Prometheus metrics will now be available on `http://0.0.0.0:51821/api/metrics`. Grafana dashboard [21733](https://grafana.com/grafana/dashboards/21733-wireguard/)
 
 > 💡 Your configuration files will be saved in `~/.wg-easy`
 
diff --git a/src/app/components/ui/UserMenu.vue b/src/app/components/ui/UserMenu.vue
index 43d79190..fff240ae 100644
--- a/src/app/components/ui/UserMenu.vue
+++ b/src/app/components/ui/UserMenu.vue
@@ -36,6 +36,14 @@
             Clients
           </NuxtLink>
         </DropdownMenuItem>
+        <DropdownMenuItem>
+          <NuxtLink
+            to="/me"
+            class="block px-4 py-2 hover:bg-gray-100 dark:hover:bg-gray-600 dark:hover:text-white"
+          >
+            Account
+          </NuxtLink>
+        </DropdownMenuItem>
         <DropdownMenuItem v-if="authStore.userData?.role === 'ADMIN'">
           <NuxtLink
             to="/admin"
diff --git a/src/app/pages/admin.vue b/src/app/pages/admin.vue
index 08178943..e9429d14 100644
--- a/src/app/pages/admin.vue
+++ b/src/app/pages/admin.vue
@@ -42,8 +42,8 @@ const route = useRoute();
 
 const menuItems = [
   { id: 'features', name: 'Features' },
-  { id: 'user', name: 'User' },
-  { id: 'server', name: 'Server' },
+  { id: 'statistics', name: 'Statistics' },
+  { id: 'metrics', name: 'Metrics' },
 ];
 
 const activeMenuItem = computed(() => {
diff --git a/src/app/pages/admin/features.vue b/src/app/pages/admin/features.vue
index f84e5f2e..1593356c 100644
--- a/src/app/pages/admin/features.vue
+++ b/src/app/pages/admin/features.vue
@@ -33,8 +33,6 @@
 </template>
 
 <script setup lang="ts">
-import type { UiToast } from '#build/components';
-
 const globalStore = useGlobalStore();
 const open = ref(false);
 
diff --git a/src/app/pages/me.vue b/src/app/pages/me.vue
new file mode 100644
index 00000000..2e41e632
--- /dev/null
+++ b/src/app/pages/me.vue
@@ -0,0 +1,8 @@
+<template>
+  <main>
+    <p>Change Username:</p>
+    <p>Change Name:</p>
+    <p>Change E-Mail:</p>
+    <p>Change Password:</p>
+  </main>
+</template>
diff --git a/src/app/utils/api.ts b/src/app/utils/api.ts
index 4994caa5..b816e0c3 100644
--- a/src/app/utils/api.ts
+++ b/src/app/utils/api.ts
@@ -147,7 +147,7 @@ class API {
   }
 
   async updateFeatures(features: Record<string, { enabled: boolean }>) {
-    return $fetch('/api/features', {
+    return $fetch('/api/admin/features', {
       method: 'post',
       body: { features },
     });
diff --git a/src/server/api/features.post.ts b/src/server/api/admin/features.post.ts
similarity index 100%
rename from src/server/api/features.post.ts
rename to src/server/api/admin/features.post.ts
diff --git a/src/server/middleware/auth.ts b/src/server/middleware/auth.ts
index 7ab156f0..5277a51e 100644
--- a/src/server/middleware/auth.ts
+++ b/src/server/middleware/auth.ts
@@ -2,22 +2,26 @@ export default defineEventHandler(async (event) => {
   const url = getRequestURL(event);
   const session = await useWGSession(event);
 
+  // Api handled by session, Setup handled with setup middleware
+  if (url.pathname.startsWith('/api/') || url.pathname.startsWith('/setup')) {
+    return;
+  }
+
   if (url.pathname === '/login') {
     if (session.data.userId) {
       return sendRedirect(event, '/', 302);
     }
+    return;
   }
 
-  if (url.pathname === '/') {
-    if (!session.data.userId) {
-      return sendRedirect(event, '/login', 302);
-    }
+  // Require auth for every page other than Login
+  // TODO: investigate /__nuxt_error (error page when unauthenticated)
+  if (!session.data.userId) {
+    console.log(url.pathname);
+    return sendRedirect(event, '/login', 302);
   }
 
   if (url.pathname.startsWith('/admin')) {
-    if (!session.data.userId) {
-      return sendRedirect(event, '/login', 302);
-    }
     const user = await Database.user.findById(session.data.userId);
     if (!user) {
       return sendRedirect(event, '/login', 302);
diff --git a/src/server/middleware/session.ts b/src/server/middleware/session.ts
index 5a8c063c..587dbb91 100644
--- a/src/server/middleware/session.ts
+++ b/src/server/middleware/session.ts
@@ -1,5 +1,9 @@
+import type { User } from '~~/services/database/repositories/user';
+
 export default defineEventHandler(async (event) => {
   const url = getRequestURL(event);
+  // If one method of a route is public, every method is public!
+  // Handle api routes
   if (
     !url.pathname.startsWith('/api/') ||
     url.pathname === '/api/account/setup' ||
@@ -13,36 +17,73 @@ export default defineEventHandler(async (event) => {
   const system = await Database.system.get();
 
   const session = await getSession<WGSession>(event, system.sessionConfig);
-  if (session.id && session.data.userId) {
-    return;
-  }
-
   const authorization = getHeader(event, 'Authorization');
-  if (url.pathname.startsWith('/api/') && authorization) {
+
+  let user: User | undefined = undefined;
+  if (session.data.userId) {
+    // Handle if authenticating using Session
+    user = await Database.user.findById(session.data.userId);
+  } else if (authorization) {
+    // Handle if authenticating using Header
+    const [method, value] = authorization.split(' ');
+    // Support Basic Authentication
+    // TODO: support personal access token or similar
+    if (method !== 'Basic' || !value) {
+      throw createError({
+        statusCode: 401,
+        statusMessage: 'Session failed',
+      });
+    }
+
+    const basicValue = Buffer.from(value, 'base64').toString('utf-8');
+
+    // Split by first ":"
+    const index = basicValue.indexOf(':');
+    const username = basicValue.substring(0, index);
+    const password = basicValue.substring(index + 1);
+
+    if (!username || !password) {
+      throw createError({
+        statusCode: 401,
+        statusMessage: 'Session failed',
+      });
+    }
+
     const users = await Database.user.findAll();
-    const user = users.find((user) => user.id == session.data.userId);
-    if (!user)
+    const foundUser = users.find((v) => v.username === username);
+
+    if (!foundUser) {
       throw createError({
         statusCode: 401,
         statusMessage: 'Session failed',
       });
+    }
+
+    const userHashPassword = foundUser.password;
+    const passwordValid = await isPasswordValid(password, userHashPassword);
 
-    const userHashPassword = user.password;
-    const passwordValid = await isPasswordValid(
-      authorization,
-      userHashPassword
-    );
-    if (passwordValid) {
-      return;
+    if (!passwordValid) {
+      throw createError({
+        statusCode: 401,
+        statusMessage: 'Incorrect Password',
+      });
     }
+    user = foundUser;
+  }
+
+  if (!user) {
     throw createError({
       statusCode: 401,
-      statusMessage: 'Incorrect Password',
+      statusMessage: 'Not logged in',
     });
   }
 
-  throw createError({
-    statusCode: 401,
-    statusMessage: 'Not logged in',
-  });
+  if (url.pathname.startsWith('/api/admin')) {
+    if (user.role !== 'ADMIN') {
+      throw createError({
+        statusCode: 403,
+        statusMessage: 'Missing Permissions',
+      });
+    }
+  }
 });
diff --git a/src/server/middleware/setup.ts b/src/server/middleware/setup.ts
index cb115a37..32d3278d 100644
--- a/src/server/middleware/setup.ts
+++ b/src/server/middleware/setup.ts
@@ -2,24 +2,30 @@
 export default defineEventHandler(async (event) => {
   const url = getRequestURL(event);
 
-  // TODO: redirect to login page if already set up
-
-  if (
-    url.pathname === '/setup' ||
-    url.pathname === '/api/account/setup' ||
-    url.pathname === '/api/features'
-  ) {
+  // User can't be logged in, and public routes can be accessed whenever
+  if (url.pathname.startsWith('/api/')) {
     return;
   }
 
   const users = await Database.user.findAll();
   if (users.length === 0) {
+    // If not setup
+    if (url.pathname.startsWith('/setup')) {
+      return;
+    }
     if (url.pathname.startsWith('/api/')) {
       throw createError({
         statusCode: 400,
         statusMessage: 'Invalid State',
       });
     }
+    console.log(url.pathname);
     return sendRedirect(event, '/setup', 302);
+  } else {
+    // If already set up
+    if (!url.pathname.startsWith('/setup')) {
+      return;
+    }
+    return sendRedirect(event, '/login', 302);
   }
 });
diff --git a/src/server/utils/session.ts b/src/server/utils/session.ts
index bb0ec9c8..1058f9cc 100644
--- a/src/server/utils/session.ts
+++ b/src/server/utils/session.ts
@@ -1,10 +1,10 @@
 import type { H3Event } from 'h3';
 
-export type WGSession = {
+export type WGSession = Partial<{
   userId: string;
-};
+}>;
 
 export async function useWGSession(event: H3Event) {
   const system = await Database.system.get();
-  return useSession<Partial<WGSession>>(event, system.sessionConfig);
+  return useSession<WGSession>(event, system.sessionConfig);
 }
diff --git a/src/services/database/migrations/1.ts b/src/services/database/migrations/1.ts
index 39a9c6c2..cd72fd3b 100644
--- a/src/services/database/migrations/1.ts
+++ b/src/services/database/migrations/1.ts
@@ -62,6 +62,7 @@ export async function run1(db: Low<Database>) {
         password: null,
       },
       sessionConfig: {
+        // TODO: be able to invalidate all sessions
         password: getRandomHex(256),
         name: 'wg-easy',
         cookie: {},
@@ -71,7 +72,6 @@ export async function run1(db: Low<Database>) {
     clients: {},
   };
 
-  // TODO: properly check if ipv6 support
   database.system.iptables.PostUp =
     `iptables -t nat -A POSTROUTING -s ${database.system.userConfig.address4Range} -o ${database.system.wgDevice} -j MASQUERADE;
 iptables -A INPUT -p udp -m udp --dport ${database.system.wgPort} -j ACCEPT;

From d4c0bc21e6342b604f20d2973733f180fc058d70 Mon Sep 17 00:00:00 2001
From: Bernd Storath <999999bst@gmail.com>
Date: Thu, 12 Sep 2024 15:54:07 +0200
Subject: [PATCH 09/16] add todo marker

---
 src/app/pages/index.vue | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/app/pages/index.vue b/src/app/pages/index.vue
index ca079a0e..1510109b 100644
--- a/src/app/pages/index.vue
+++ b/src/app/pages/index.vue
@@ -54,7 +54,7 @@ const intervalId = ref<NodeJS.Timeout | null>(null);
 clientsStore.refresh();
 
 onMounted(() => {
-  // to avoid console spam
+  // TODO: remove (to avoid console spam)
   return;
   // TODO?: replace with websocket or similar
   intervalId.value = setInterval(() => {

From 3506173b993d021aecf07137243b66790963e794 Mon Sep 17 00:00:00 2001
From: Bernd Storath <999999bst@gmail.com>
Date: Thu, 12 Sep 2024 16:08:08 +0200
Subject: [PATCH 10/16] active tailwind forms

---
 src/tailwind.config.ts | 9 ++-------
 1 file changed, 2 insertions(+), 7 deletions(-)

diff --git a/src/tailwind.config.ts b/src/tailwind.config.ts
index 4f722326..3b41208f 100644
--- a/src/tailwind.config.ts
+++ b/src/tailwind.config.ts
@@ -1,6 +1,6 @@
 import type { Config } from 'tailwindcss';
 import type { PluginAPI } from 'tailwindcss/types/config';
-// import { red } from 'tailwindcss/colors.js';
+import tailwindForms from '@tailwindcss/forms';
 
 export default {
   darkMode: 'selector',
@@ -15,12 +15,6 @@ export default {
       xl: '1280px',
       '2xl': '1536px',
     },
-    extend: {
-      colors: {
-        // DEFAULT: red[800],
-        // primary: red[800],
-      },
-    },
   },
   plugins: [
     function addDisabledClass({ addUtilities }: PluginAPI) {
@@ -32,5 +26,6 @@ export default {
       };
       addUtilities(newUtilities);
     },
+    tailwindForms,
   ],
 } satisfies Config;

From a153d846f03c35bfac080624522e616eb0fee56b Mon Sep 17 00:00:00 2001
From: Bernd Storath <999999bst@gmail.com>
Date: Thu, 12 Sep 2024 16:09:14 +0200
Subject: [PATCH 11/16] remove some console.logs

---
 src/app/components/ui/UserMenu.vue | 4 ----
 src/server/middleware/auth.ts      | 1 -
 src/server/middleware/setup.ts     | 1 -
 3 files changed, 6 deletions(-)

diff --git a/src/app/components/ui/UserMenu.vue b/src/app/components/ui/UserMenu.vue
index fff240ae..8b368ea1 100644
--- a/src/app/components/ui/UserMenu.vue
+++ b/src/app/components/ui/UserMenu.vue
@@ -70,10 +70,6 @@
 const authStore = useAuthStore();
 const toggleState = ref(false);
 
-watchEffect(() => {
-  console.log(toggleState);
-});
-
 async function logout() {
   try {
     await authStore.logout();
diff --git a/src/server/middleware/auth.ts b/src/server/middleware/auth.ts
index 5277a51e..e711afb1 100644
--- a/src/server/middleware/auth.ts
+++ b/src/server/middleware/auth.ts
@@ -17,7 +17,6 @@ export default defineEventHandler(async (event) => {
   // Require auth for every page other than Login
   // TODO: investigate /__nuxt_error (error page when unauthenticated)
   if (!session.data.userId) {
-    console.log(url.pathname);
     return sendRedirect(event, '/login', 302);
   }
 
diff --git a/src/server/middleware/setup.ts b/src/server/middleware/setup.ts
index 32d3278d..5377895f 100644
--- a/src/server/middleware/setup.ts
+++ b/src/server/middleware/setup.ts
@@ -19,7 +19,6 @@ export default defineEventHandler(async (event) => {
         statusMessage: 'Invalid State',
       });
     }
-    console.log(url.pathname);
     return sendRedirect(event, '/setup', 302);
   } else {
     // If already set up

From 4454a0451b951d1e44626b2f0be74812b94b8d48 Mon Sep 17 00:00:00 2001
From: Bernd Storath <999999bst@gmail.com>
Date: Fri, 13 Sep 2024 11:04:03 +0200
Subject: [PATCH 12/16] check if user is enabled

frontend doesn't handle this state yet, nothing will work as api routes will fail
---
 src/server/middleware/auth.ts    | 2 +-
 src/server/middleware/session.ts | 7 +++++++
 2 files changed, 8 insertions(+), 1 deletion(-)

diff --git a/src/server/middleware/auth.ts b/src/server/middleware/auth.ts
index e711afb1..2b987b4a 100644
--- a/src/server/middleware/auth.ts
+++ b/src/server/middleware/auth.ts
@@ -25,7 +25,7 @@ export default defineEventHandler(async (event) => {
     if (!user) {
       return sendRedirect(event, '/login', 302);
     }
-    if (!user.enabled || user.role !== 'ADMIN') {
+    if (user.role !== 'ADMIN') {
       throw createError({
         statusCode: 403,
         statusMessage: 'Not allowed to access Admin Panel',
diff --git a/src/server/middleware/session.ts b/src/server/middleware/session.ts
index 587dbb91..a03e0a96 100644
--- a/src/server/middleware/session.ts
+++ b/src/server/middleware/session.ts
@@ -78,6 +78,13 @@ export default defineEventHandler(async (event) => {
     });
   }
 
+  if (!user.enabled) {
+    throw createError({
+      statusCode: 403,
+      statusMessage: 'Account is disabled',
+    });
+  }
+
   if (url.pathname.startsWith('/api/admin')) {
     if (user.role !== 'ADMIN') {
       throw createError({

From e5e50ac28f6d0017b57e6650315bd90a575fa1d4 Mon Sep 17 00:00:00 2001
From: Bernd Storath <999999bst@gmail.com>
Date: Fri, 13 Sep 2024 11:18:54 +0200
Subject: [PATCH 13/16] add email to user, basic account page

---
 src/app/pages/me.vue                       | 54 ++++++++++++++++++++--
 src/app/stores/auth.ts                     |  1 +
 src/server/api/session.get.ts              |  1 +
 src/services/database/lowdb.ts             |  1 +
 src/services/database/repositories/user.ts |  1 +
 5 files changed, 54 insertions(+), 4 deletions(-)

diff --git a/src/app/pages/me.vue b/src/app/pages/me.vue
index 2e41e632..dc49f7d4 100644
--- a/src/app/pages/me.vue
+++ b/src/app/pages/me.vue
@@ -1,8 +1,54 @@
 <template>
   <main>
-    <p>Change Username:</p>
-    <p>Change Name:</p>
-    <p>Change E-Mail:</p>
-    <p>Change Password:</p>
+    <div class="container mx-auto max-w-3xl px-3 md:px-0">
+      <div
+        class="shadow-md rounded-lg bg-white dark:bg-neutral-700 overflow-hidden"
+      >
+        <div
+          class="flex flex-row flex-auto items-center p-3 px-5 border-b-2 border-gray-100 dark:border-neutral-600"
+        >
+          <div class="flex-grow">
+            <p class="text-2xl font-medium dark:text-neutral-200">Account</p>
+          </div>
+        </div>
+        <div class="space-y-2">
+          <div class="flex flex-wrap items-center gap-[15px] px-5">
+            <Label class="font-semibold dark:text-neutral-200" for="username">
+              Username
+            </Label>
+            <input id="username" v-model.trim="username" type="text" />
+          </div>
+          <div class="flex flex-wrap items-center gap-[15px] px-5">
+            <Label class="font-semibold dark:text-neutral-200" for="name">
+              Name
+            </Label>
+            <input id="name" v-model.trim="name" type="text" />
+          </div>
+          <div class="flex flex-wrap items-center gap-[15px] px-5">
+            <Label class="font-semibold dark:text-neutral-200" for="name">
+              E-Mail
+            </Label>
+            <input id="name" v-model.trim="email" type="text" />
+          </div>
+          <BaseButton class="self-end" @click="openPasswordModal">
+            Change Password
+          </BaseButton>
+          <BaseButton class="self-end" @click="submit">Save</BaseButton>
+        </div>
+      </div>
+    </div>
   </main>
 </template>
+
+<script setup lang="ts">
+const authStore = useAuthStore();
+authStore.update();
+
+const username = ref(authStore.userData?.username);
+const name = ref(authStore.userData?.name);
+const email = ref(authStore.userData?.email);
+
+function submit() {}
+
+function openPasswordModal() {}
+</script>
diff --git a/src/app/stores/auth.ts b/src/app/stores/auth.ts
index ad359c0b..1f282b03 100644
--- a/src/app/stores/auth.ts
+++ b/src/app/stores/auth.ts
@@ -3,6 +3,7 @@ export const useAuthStore = defineStore('Auth', () => {
     name: string;
     username: string;
     role: string;
+    email: string | null;
   }>();
 
   /**
diff --git a/src/server/api/session.get.ts b/src/server/api/session.get.ts
index 9f559c08..dee40f88 100644
--- a/src/server/api/session.get.ts
+++ b/src/server/api/session.get.ts
@@ -19,5 +19,6 @@ export default defineEventHandler(async (event) => {
     role: user.role,
     username: user.username,
     name: user.name,
+    email: user.email,
   };
 });
diff --git a/src/services/database/lowdb.ts b/src/services/database/lowdb.ts
index 76bc6ab9..99b002c1 100644
--- a/src/services/database/lowdb.ts
+++ b/src/services/database/lowdb.ts
@@ -92,6 +92,7 @@ export class LowDBUser extends UserRepository {
       id: crypto.randomUUID(),
       password: hash,
       username,
+      email: null,
       name: 'Administrator',
       role: isUserEmpty ? 'ADMIN' : 'CLIENT',
       enabled: true,
diff --git a/src/services/database/repositories/user.ts b/src/services/database/repositories/user.ts
index c09285e0..1bad8a28 100644
--- a/src/services/database/repositories/user.ts
+++ b/src/services/database/repositories/user.ts
@@ -17,6 +17,7 @@ export type User = {
   username: string;
   password: string;
   name: string;
+  email: string | null;
   /** ISO String */
   createdAt: string;
   /** ISO String */

From b011b80765977125b6183cd9650f7c73173f9236 Mon Sep 17 00:00:00 2001
From: Bernd Storath <999999bst@gmail.com>
Date: Fri, 13 Sep 2024 12:43:53 +0200
Subject: [PATCH 14/16] better group database

---
 src/server/api/lang.get.ts                   |  2 +-
 src/server/api/session.post.ts               |  2 +-
 src/server/utils/wgHelper.ts                 |  6 +--
 src/services/database/migrations/1.ts        | 45 +++++++++++---------
 src/services/database/repositories/system.ts | 28 ++++++------
 5 files changed, 47 insertions(+), 36 deletions(-)

diff --git a/src/server/api/lang.get.ts b/src/server/api/lang.get.ts
index d16ac483..a42620de 100644
--- a/src/server/api/lang.get.ts
+++ b/src/server/api/lang.get.ts
@@ -1,5 +1,5 @@
 export default defineEventHandler(async (event) => {
   setHeader(event, 'Content-Type', 'application/json');
   const system = await Database.system.get();
-  return system.lang;
+  return system.general.lang;
 });
diff --git a/src/server/api/session.post.ts b/src/server/api/session.post.ts
index a15c9675..6c76ef2d 100644
--- a/src/server/api/session.post.ts
+++ b/src/server/api/session.post.ts
@@ -30,7 +30,7 @@ export default defineEventHandler(async (event) => {
   if (remember) {
     conf.cookie = {
       ...(system.sessionConfig.cookie ?? {}),
-      maxAge: system.sessionTimeout,
+      maxAge: system.general.sessionTimeout,
     };
   }
 
diff --git a/src/server/utils/wgHelper.ts b/src/server/utils/wgHelper.ts
index 2ec9eb57..7c0c0ff5 100644
--- a/src/server/utils/wgHelper.ts
+++ b/src/server/utils/wgHelper.ts
@@ -28,8 +28,8 @@ AllowedIPs = ${allowedIps.join(', ')}`;
 [Interface]
 PrivateKey = ${system.interface.privateKey}
 Address = ${system.interface.address4}/${cidr4Block}, ${system.interface.address6}/${cidr6Block}
-ListenPort = ${system.wgPort}
-MTU = ${system.userConfig.serverMtu}
+ListenPort = ${system.interface.port}
+MTU = ${system.interface.mtu}
 PreUp = ${system.iptables.PreUp}
 PostUp = ${system.iptables.PostUp}
 PreDown = ${system.iptables.PreDown}
@@ -51,7 +51,7 @@ PublicKey = ${system.interface.publicKey}
 PresharedKey = ${client.preSharedKey}
 AllowedIPs = ${client.allowedIPs.join(', ')}
 PersistentKeepalive = ${client.persistentKeepalive}
-Endpoint = ${system.wgHost}:${system.wgConfigPort}`;
+Endpoint = ${system.userConfig.host}:${system.userConfig.port}`;
   },
 
   generatePrivateKey: () => {
diff --git a/src/services/database/migrations/1.ts b/src/services/database/migrations/1.ts
index cd72fd3b..2828b4b0 100644
--- a/src/services/database/migrations/1.ts
+++ b/src/services/database/migrations/1.ts
@@ -16,28 +16,33 @@ export async function run1(db: Low<Database>) {
   const database: Database = {
     migrations: [],
     system: {
+      // Config to configure Server
       interface: {
         privateKey: privateKey,
         publicKey: publicKey,
         address4: stringifyIp({ number: cidr4.start + 1n, version: 4 }),
         address6: stringifyIp({ number: cidr6.start + 1n, version: 6 }),
+        mtu: 1420,
+        port: 51820,
+        device: 'eth0',
+      },
+      general: {
+        sessionTimeout: 3600, // 1 hour
+        lang: 'en',
       },
-      sessionTimeout: 3600, // 1 hour
-      lang: 'en',
+      // Config to configure Peer & Client Config
       userConfig: {
         mtu: 1420,
-        serverMtu: 1420,
         persistentKeepalive: 0,
         address4Range: address4Range,
         address6Range: address6Range,
         defaultDns: ['1.1.1.1', '2606:4700:4700::1111'],
         allowedIps: ['0.0.0.0/0', '::/0'],
+        // TODO: host has to be configured when onboarding
+        host: '',
+        port: 51820,
       },
-      wgDevice: 'eth0',
-      // TODO: wgHost has to be configured when onboarding
-      wgHost: '',
-      wgPort: 51820,
-      wgConfigPort: 51820,
+      // Config to configure Firewall
       iptables: {
         PreUp: '',
         PostUp: '',
@@ -57,9 +62,11 @@ export async function run1(db: Low<Database>) {
       sortClients: {
         enabled: false,
       },
-      prometheus: {
-        enabled: false,
-        password: null,
+      metrics: {
+        prometheus: {
+          enabled: false,
+          password: null,
+        },
       },
       sessionConfig: {
         // TODO: be able to invalidate all sessions
@@ -73,24 +80,24 @@ export async function run1(db: Low<Database>) {
   };
 
   database.system.iptables.PostUp =
-    `iptables -t nat -A POSTROUTING -s ${database.system.userConfig.address4Range} -o ${database.system.wgDevice} -j MASQUERADE;
-iptables -A INPUT -p udp -m udp --dport ${database.system.wgPort} -j ACCEPT;
+    `iptables -t nat -A POSTROUTING -s ${database.system.userConfig.address4Range} -o ${database.system.interface.device} -j MASQUERADE;
+iptables -A INPUT -p udp -m udp --dport ${database.system.interface.port} -j ACCEPT;
 iptables -A FORWARD -i wg0 -j ACCEPT;
 iptables -A FORWARD -o wg0 -j ACCEPT;
-ip6tables -t nat -A POSTROUTING -s ${database.system.userConfig.address6Range} -o ${database.system.wgDevice} -j MASQUERADE;
-ip6tables -A INPUT -p udp -m udp --dport ${database.system.wgPort} -j ACCEPT;
+ip6tables -t nat -A POSTROUTING -s ${database.system.userConfig.address6Range} -o ${database.system.interface.device} -j MASQUERADE;
+ip6tables -A INPUT -p udp -m udp --dport ${database.system.interface.port} -j ACCEPT;
 ip6tables -A FORWARD -i wg0 -j ACCEPT;
 ip6tables -A FORWARD -o wg0 -j ACCEPT;`
       .split('\n')
       .join(' ');
 
   database.system.iptables.PostDown =
-    `iptables -t nat -D POSTROUTING -s ${database.system.userConfig.address4Range} -o ${database.system.wgDevice} -j MASQUERADE;
-iptables -D INPUT -p udp -m udp --dport ${database.system.wgPort} -j ACCEPT;
+    `iptables -t nat -D POSTROUTING -s ${database.system.userConfig.address4Range} -o ${database.system.interface.device} -j MASQUERADE;
+iptables -D INPUT -p udp -m udp --dport ${database.system.interface.port} -j ACCEPT;
 iptables -D FORWARD -i wg0 -j ACCEPT;
 iptables -D FORWARD -o wg0 -j ACCEPT;
-ip6tables -t nat -D POSTROUTING -s ${database.system.userConfig.address6Range} -o ${database.system.wgDevice} -j MASQUERADE;
-ip6tables -D INPUT -p udp -m udp --dport ${database.system.wgPort} -j ACCEPT;
+ip6tables -t nat -D POSTROUTING -s ${database.system.userConfig.address6Range} -o ${database.system.interface.device} -j MASQUERADE;
+ip6tables -D INPUT -p udp -m udp --dport ${database.system.interface.port} -j ACCEPT;
 ip6tables -D FORWARD -i wg0 -j ACCEPT;
 ip6tables -D FORWARD -o wg0 -j ACCEPT;`
       .split('\n')
diff --git a/src/services/database/repositories/system.ts b/src/services/database/repositories/system.ts
index 45c74213..7bbe4bdd 100644
--- a/src/services/database/repositories/system.ts
+++ b/src/services/database/repositories/system.ts
@@ -14,16 +14,20 @@ export type WGInterface = {
   publicKey: string;
   address4: string;
   address6: string;
+  mtu: number;
+  port: number;
+  device: string;
 };
 
 export type WGConfig = {
   mtu: number;
-  serverMtu: number;
   persistentKeepalive: number;
   address4Range: string;
   address6Range: string;
   defaultDns: string[];
   allowedIps: string[];
+  host: string;
+  port: number;
 };
 
 export enum ChartType {
@@ -47,27 +51,27 @@ export type Feature = {
   enabled: boolean;
 };
 
+export type Metrics = {
+  prometheus: Prometheus;
+};
+
+export type General = {
+  sessionTimeout: number;
+  lang: Lang;
+};
+
 /**
  * Representing the WireGuard network configuration data structure of a computer interface system.
  */
 export type System = {
   interface: WGInterface;
-
-  // maxAge
-  sessionTimeout: number;
-  lang: Lang;
-
+  general: General;
   userConfig: WGConfig;
 
-  wgDevice: string;
-  wgHost: string;
-  wgPort: number;
-  wgConfigPort: number;
-
   iptables: IpTables;
 
   trafficStats: TrafficStats;
-  prometheus: Prometheus;
+  metrics: Metrics;
 
   clientExpiration: Feature;
   oneTimeLinks: Feature;

From 8d0477944dc8ea7c2bb3f201805e81739c46ee72 Mon Sep 17 00:00:00 2001
From: Bernd Storath <999999bst@gmail.com>
Date: Fri, 13 Sep 2024 13:02:14 +0200
Subject: [PATCH 15/16] group even more

---
 src/app/app.vue                               |  1 +
 src/app/components/Client/Charts.vue          | 16 ++++----
 src/app/components/Client/Client.vue          |  4 +-
 src/app/components/Client/LastSeen.vue        |  2 +-
 src/app/layouts/Header.vue                    |  2 +-
 src/app/stores/global.ts                      | 33 +++++++++++++----
 src/app/utils/api.ts                          | 18 ---------
 src/server/api/cnf/[oneTimeLink].ts           |  2 +-
 src/server/api/features.get.ts                |  7 +---
 src/server/api/statistics.get.ts              |  4 ++
 .../[clientId]/generateOneTimeLink.post.ts    |  2 +-
 src/server/utils/WireGuard.ts                 |  4 +-
 src/services/database/lowdb.ts                |  8 ++--
 src/services/database/migrations/1.ts         | 30 ++++++++-------
 src/services/database/repositories/system.ts  | 37 +++++++++++--------
 15 files changed, 89 insertions(+), 81 deletions(-)
 create mode 100644 src/server/api/statistics.get.ts

diff --git a/src/app/app.vue b/src/app/app.vue
index ef2841fa..0ad77a48 100644
--- a/src/app/app.vue
+++ b/src/app/app.vue
@@ -16,6 +16,7 @@ const globalStore = useGlobalStore();
 globalStore.fetchFeatures();
 globalStore.fetchRelease();
 globalStore.setLanguage();
+globalStore.fetchStatistics();
 useHead({
   bodyAttrs: {
     class: 'bg-gray-50 dark:bg-neutral-800',
diff --git a/src/app/components/Client/Charts.vue b/src/app/components/Client/Charts.vue
index 1b64bdf7..f542be45 100644
--- a/src/app/components/Client/Charts.vue
+++ b/src/app/components/Client/Charts.vue
@@ -1,13 +1,13 @@
 <template>
   <div
-    v-if="globalStore.features.trafficStats.type"
-    :class="`absolute z-0 bottom-0 left-0 right-0 h-6 ${globalStore.features.trafficStats.type === 1 && 'line-chart'}`"
+    v-if="globalStore.statistics.chartType"
+    :class="`absolute z-0 bottom-0 left-0 right-0 h-6 ${globalStore.statistics.chartType === 1 && 'line-chart'}`"
   >
     <UiChart :options="chartOptionsTX" :series="client.transferTxSeries" />
   </div>
   <div
-    v-if="globalStore.features.trafficStats.type"
-    :class="`absolute z-0 top-0 left-0 right-0 h-6 ${globalStore.features.trafficStats.type === 1 && 'line-chart'}`"
+    v-if="globalStore.statistics.chartType"
+    :class="`absolute z-0 top-0 left-0 right-0 h-6 ${globalStore.statistics.chartType === 1 && 'line-chart'}`"
   >
     <UiChart
       :options="chartOptionsRX"
@@ -33,9 +33,9 @@ const chartOptionsTX = computed(() => {
     colors: [CHART_COLORS.tx[theme.value]],
   };
   opts.chart.type =
-    UI_CHART_TYPES[globalStore.features.trafficStats.type]?.type || undefined;
+    UI_CHART_TYPES[globalStore.statistics.chartType]?.type || undefined;
   opts.stroke.width =
-    UI_CHART_TYPES[globalStore.features.trafficStats.type]?.strokeWidth ?? 0;
+    UI_CHART_TYPES[globalStore.statistics.chartType]?.strokeWidth ?? 0;
   return opts;
 });
 
@@ -45,9 +45,9 @@ const chartOptionsRX = computed(() => {
     colors: [CHART_COLORS.rx[theme.value]],
   };
   opts.chart.type =
-    UI_CHART_TYPES[globalStore.features.trafficStats.type]?.type || undefined;
+    UI_CHART_TYPES[globalStore.statistics.chartType]?.type || undefined;
   opts.stroke.width =
-    UI_CHART_TYPES[globalStore.features.trafficStats.type]?.strokeWidth ?? 0;
+    UI_CHART_TYPES[globalStore.statistics.chartType]?.strokeWidth ?? 0;
   return opts;
 });
 
diff --git a/src/app/components/Client/Client.vue b/src/app/components/Client/Client.vue
index c1a9295e..b5cecb7c 100644
--- a/src/app/components/Client/Client.vue
+++ b/src/app/components/Client/Client.vue
@@ -14,7 +14,7 @@
           >
             <ClientAddress4 :client="client" />
             <ClientInlineTransfer
-              v-if="!globalStore.features.trafficStats.enabled"
+              v-if="!globalStore.statistics.enabled"
               :client="client"
             />
             <ClientLastSeen :client="client" />
@@ -25,7 +25,7 @@
 
         <!-- Info -->
         <div
-          v-if="globalStore.features.trafficStats.enabled"
+          v-if="globalStore.statistics.enabled"
           class="flex gap-2 items-center shrink-0 text-gray-400 dark:text-neutral-400 text-xs mt-px justify-end"
         >
           <ClientTransfer :client="client" />
diff --git a/src/app/components/Client/LastSeen.vue b/src/app/components/Client/LastSeen.vue
index 50a00c93..d0293092 100644
--- a/src/app/components/Client/LastSeen.vue
+++ b/src/app/components/Client/LastSeen.vue
@@ -4,7 +4,7 @@
     class="text-gray-400 dark:text-neutral-500 whitespace-nowrap"
     :title="$t('lastSeen') + dateTime(new Date(client.latestHandshakeAt))"
   >
-    {{ !globalStore.features.trafficStats.enabled ? ' · ' : ''
+    {{ !globalStore.statistics.enabled ? ' · ' : ''
     }}{{ timeago(new Date(client.latestHandshakeAt)) }}
   </span>
 </template>
diff --git a/src/app/layouts/Header.vue b/src/app/layouts/Header.vue
index 1cf31451..30335870 100644
--- a/src/app/layouts/Header.vue
+++ b/src/app/layouts/Header.vue
@@ -38,7 +38,7 @@
         </button>
         <!-- Show / hide charts -->
         <label
-          v-if="globalStore.features.trafficStats.type > 0"
+          v-if="globalStore.statistics.chartType > 0"
           class="inline-flex items-center justify-center cursor-pointer w-8 h-8 rounded-full bg-gray-200 hover:bg-gray-300 dark:bg-neutral-700 dark:hover:bg-neutral-600 whitespace-nowrap transition group"
           :title="$t('toggleCharts')"
         >
diff --git a/src/app/stores/global.ts b/src/app/stores/global.ts
index 7dc21848..9339e119 100644
--- a/src/app/stores/global.ts
+++ b/src/app/stores/global.ts
@@ -8,10 +8,6 @@ export const useGlobalStore = defineStore('Global', () => {
   );
   const updateAvailable = ref(false);
   const features = ref({
-    trafficStats: {
-      enabled: false,
-      type: 0,
-    },
     sortClients: {
       enabled: false,
     },
@@ -22,12 +18,18 @@ export const useGlobalStore = defineStore('Global', () => {
       enabled: false,
     },
   });
+  const statistics = ref({
+    enabled: false,
+    chartType: 0,
+  });
   const sortClient = ref(true); // Sort clients by name, true = asc, false = desc
 
   const { availableLocales, locale } = useI18n();
 
   async function setLanguage() {
-    const { data: lang } = await api.getLang();
+    const { data: lang } = await useFetch('/api/lang', {
+      method: 'get',
+    });
     if (
       lang.value !== getItem('lang') &&
       availableLocales.includes(lang.value!)
@@ -38,7 +40,9 @@ export const useGlobalStore = defineStore('Global', () => {
   }
 
   async function fetchRelease() {
-    const { data: release } = await api.getRelease();
+    const { data: release } = await useFetch('/api/release', {
+      method: 'get',
+    });
 
     if (!release.value) {
       return;
@@ -50,14 +54,25 @@ export const useGlobalStore = defineStore('Global', () => {
   }
 
   async function fetchFeatures() {
-    const { data: apiFeatures } = await api.getFeatures();
+    const { data: apiFeatures } = await useFetch('/api/features', {
+      method: 'get',
+    });
     if (apiFeatures.value) {
       features.value = apiFeatures.value;
     }
   }
 
+  async function fetchStatistics() {
+    const { data: apiStatistics } = await useFetch('/api/statistics', {
+      method: 'get',
+    });
+    if (apiStatistics.value) {
+      statistics.value = apiStatistics.value;
+    }
+  }
+
   const updateCharts = computed(() => {
-    return features.value.trafficStats.type > 0 && uiShowCharts.value;
+    return statistics.value.chartType > 0 && uiShowCharts.value;
   });
 
   return {
@@ -68,8 +83,10 @@ export const useGlobalStore = defineStore('Global', () => {
     currentRelease,
     latestRelease,
     updateAvailable,
+    statistics,
     fetchRelease,
     fetchFeatures,
     setLanguage,
+    fetchStatistics,
   };
 });
diff --git a/src/app/utils/api.ts b/src/app/utils/api.ts
index b816e0c3..72350bea 100644
--- a/src/app/utils/api.ts
+++ b/src/app/utils/api.ts
@@ -1,16 +1,4 @@
 class API {
-  async getRelease() {
-    return useFetch('/api/release', {
-      method: 'get',
-    });
-  }
-
-  async getLang() {
-    return useFetch('/api/lang', {
-      method: 'get',
-    });
-  }
-
   async getSession() {
     return useFetch('/api/session', {
       method: 'get',
@@ -140,12 +128,6 @@ class API {
     });
   }
 
-  async getFeatures() {
-    return useFetch('/api/features', {
-      method: 'get',
-    });
-  }
-
   async updateFeatures(features: Record<string, { enabled: boolean }>) {
     return $fetch('/api/admin/features', {
       method: 'post',
diff --git a/src/server/api/cnf/[oneTimeLink].ts b/src/server/api/cnf/[oneTimeLink].ts
index 64d39c32..b09719b0 100644
--- a/src/server/api/cnf/[oneTimeLink].ts
+++ b/src/server/api/cnf/[oneTimeLink].ts
@@ -1,6 +1,6 @@
 export default defineEventHandler(async (event) => {
   const system = await Database.system.get();
-  if (!system.oneTimeLinks.enabled) {
+  if (!system.features.oneTimeLinks.enabled) {
     throw createError({
       statusCode: 404,
       statusMessage: 'Invalid state',
diff --git a/src/server/api/features.get.ts b/src/server/api/features.get.ts
index 0016e2bf..ef20118d 100644
--- a/src/server/api/features.get.ts
+++ b/src/server/api/features.get.ts
@@ -1,9 +1,4 @@
 export default defineEventHandler(async () => {
   const system = await Database.system.get();
-  return {
-    trafficStats: system.trafficStats,
-    sortClients: system.sortClients,
-    clientExpiration: system.clientExpiration,
-    oneTimeLinks: system.oneTimeLinks,
-  };
+  return system.features;
 });
diff --git a/src/server/api/statistics.get.ts b/src/server/api/statistics.get.ts
new file mode 100644
index 00000000..487f5e6a
--- /dev/null
+++ b/src/server/api/statistics.get.ts
@@ -0,0 +1,4 @@
+export default defineEventHandler(async () => {
+  const system = await Database.system.get();
+  return system.statistics;
+});
diff --git a/src/server/api/wireguard/client/[clientId]/generateOneTimeLink.post.ts b/src/server/api/wireguard/client/[clientId]/generateOneTimeLink.post.ts
index 221874e4..d827ef54 100644
--- a/src/server/api/wireguard/client/[clientId]/generateOneTimeLink.post.ts
+++ b/src/server/api/wireguard/client/[clientId]/generateOneTimeLink.post.ts
@@ -1,6 +1,6 @@
 export default defineEventHandler(async (event) => {
   const system = await Database.system.get();
-  if (!system.oneTimeLinks.enabled) {
+  if (!system.features.oneTimeLinks.enabled) {
     throw createError({
       status: 404,
       message: 'Invalid state',
diff --git a/src/server/utils/WireGuard.ts b/src/server/utils/WireGuard.ts
index cd8da359..02fc5f2d 100644
--- a/src/server/utils/WireGuard.ts
+++ b/src/server/utils/WireGuard.ts
@@ -318,7 +318,7 @@ class WireGuard {
     const clients = await Database.client.findAll();
     const system = await Database.system.get();
     // Expires Feature
-    if (system.clientExpiration.enabled) {
+    if (system.features.clientExpiration.enabled) {
       for (const client of Object.values(clients)) {
         if (client.enabled !== true) continue;
         if (
@@ -331,7 +331,7 @@ class WireGuard {
       }
     }
     // One Time Link Feature
-    if (system.oneTimeLinks.enabled) {
+    if (system.features.oneTimeLinks.enabled) {
       for (const client of Object.values(clients)) {
         if (
           client.oneTimeLink !== null &&
diff --git a/src/services/database/lowdb.ts b/src/services/database/lowdb.ts
index 99b002c1..d4018bd6 100644
--- a/src/services/database/lowdb.ts
+++ b/src/services/database/lowdb.ts
@@ -19,9 +19,10 @@ import {
   type OneTimeLink,
 } from './repositories/client';
 import {
-  Features,
+  AvailableFeatures,
   SystemRepository,
   type Feature,
+  type Features,
 } from './repositories/system';
 
 const DEBUG = debug('LowDB');
@@ -46,8 +47,9 @@ export class LowDBSystem extends SystemRepository {
     DEBUG('Update Features');
     this.#db.update((v) => {
       for (const key in features) {
-        if (Features.includes(key as Features)) {
-          v.system[key as Features].enabled = features[key]!.enabled;
+        if (AvailableFeatures.includes(key as keyof Features)) {
+          v.system.features[key as keyof Features].enabled =
+            features[key]!.enabled;
         }
       }
     });
diff --git a/src/services/database/migrations/1.ts b/src/services/database/migrations/1.ts
index 2828b4b0..20575cdc 100644
--- a/src/services/database/migrations/1.ts
+++ b/src/services/database/migrations/1.ts
@@ -16,6 +16,10 @@ export async function run1(db: Low<Database>) {
   const database: Database = {
     migrations: [],
     system: {
+      general: {
+        sessionTimeout: 3600, // 1 hour
+        lang: 'en',
+      },
       // Config to configure Server
       interface: {
         privateKey: privateKey,
@@ -26,10 +30,6 @@ export async function run1(db: Low<Database>) {
         port: 51820,
         device: 'eth0',
       },
-      general: {
-        sessionTimeout: 3600, // 1 hour
-        lang: 'en',
-      },
       // Config to configure Peer & Client Config
       userConfig: {
         mtu: 1420,
@@ -49,18 +49,20 @@ export async function run1(db: Low<Database>) {
         PreDown: '',
         PostDown: '',
       },
-      trafficStats: {
-        enabled: false,
-        type: ChartType.None,
-      },
-      clientExpiration: {
-        enabled: false,
-      },
-      oneTimeLinks: {
-        enabled: false,
+      features: {
+        clientExpiration: {
+          enabled: false,
+        },
+        oneTimeLinks: {
+          enabled: false,
+        },
+        sortClients: {
+          enabled: false,
+        },
       },
-      sortClients: {
+      statistics: {
         enabled: false,
+        chartType: ChartType.None,
       },
       metrics: {
         prometheus: {
diff --git a/src/services/database/repositories/system.ts b/src/services/database/repositories/system.ts
index 7bbe4bdd..474808a2 100644
--- a/src/services/database/repositories/system.ts
+++ b/src/services/database/repositories/system.ts
@@ -37,9 +37,9 @@ export enum ChartType {
   Bar = 3,
 }
 
-export type TrafficStats = {
+export type Statistics = {
   enabled: boolean;
-  type: ChartType;
+  chartType: ChartType;
 };
 
 export type Prometheus = {
@@ -60,34 +60,39 @@ export type General = {
   lang: Lang;
 };
 
+export type Features = {
+  clientExpiration: Feature;
+  oneTimeLinks: Feature;
+  sortClients: Feature;
+};
+
+export const AvailableFeatures: (keyof Features)[] = [
+  'clientExpiration',
+  'oneTimeLinks',
+  'sortClients',
+] as const;
+
 /**
  * Representing the WireGuard network configuration data structure of a computer interface system.
  */
 export type System = {
-  interface: WGInterface;
   general: General;
+
+  interface: WGInterface;
+
   userConfig: WGConfig;
 
   iptables: IpTables;
 
-  trafficStats: TrafficStats;
-  metrics: Metrics;
+  features: Features;
 
-  clientExpiration: Feature;
-  oneTimeLinks: Feature;
-  sortClients: Feature;
+  statistics: Statistics;
+
+  metrics: Metrics;
 
   sessionConfig: SessionConfig;
 };
 
-export const Features = [
-  'clientExpiration',
-  'oneTimeLinks',
-  'sortClients',
-] as const;
-
-export type Features = (typeof Features)[number];
-
 /**
  * Interface for system-related database operations.
  * This interface provides methods for retrieving system configuration data

From 7a6f7db4d3560f29fb8246b7e6471dfa73edcb30 Mon Sep 17 00:00:00 2001
From: Bernd Storath <999999bst@gmail.com>
Date: Fri, 13 Sep 2024 14:48:49 +0200
Subject: [PATCH 16/16] basic statistics page

---
 src/app/pages/admin/features.vue             |   7 +-
 src/app/pages/admin/statistics.vue           | 115 +++++++++++++++++++
 src/app/utils/api.ts                         |   7 --
 src/server/api/admin/statistics.post.ts      |   8 ++
 src/server/utils/types.ts                    |  17 ++-
 src/services/database/lowdb.ts               |  15 +++
 src/services/database/repositories/system.ts |   1 +
 7 files changed, 160 insertions(+), 10 deletions(-)
 create mode 100644 src/app/pages/admin/statistics.vue
 create mode 100644 src/server/api/admin/statistics.post.ts

diff --git a/src/app/pages/admin/features.vue b/src/app/pages/admin/features.vue
index 1593356c..88cac238 100644
--- a/src/app/pages/admin/features.vue
+++ b/src/app/pages/admin/features.vue
@@ -37,7 +37,7 @@ const globalStore = useGlobalStore();
 const open = ref(false);
 
 type ExtendedFeatures = {
-  [K in keyof Omit<(typeof globalStore)['features'], 'trafficStats'>]: {
+  [K in keyof (typeof globalStore)['features']]: {
     name: string;
     description: string;
     enabled: boolean;
@@ -71,7 +71,10 @@ function toggleFeature(key: keyof ExtendedFeatures) {
 }
 
 async function submit() {
-  const response = await api.updateFeatures(featuresData.value);
+  const response = await $fetch('/api/admin/features', {
+    method: 'post',
+    body: { features: featuresData.value },
+  });
   if (response.success) {
     open.value = true;
   }
diff --git a/src/app/pages/admin/statistics.vue b/src/app/pages/admin/statistics.vue
new file mode 100644
index 00000000..0f4a828e
--- /dev/null
+++ b/src/app/pages/admin/statistics.vue
@@ -0,0 +1,115 @@
+<template>
+  <div class="flex flex-col">
+    <div class="flex items-center justify-between">
+      <div>
+        <h3 class="text-lg font-medium text-gray-900 dark:text-neutral-200">
+          Traffic Stats
+        </h3>
+        <p class="text-sm text-gray-500 dark:text-neutral-300">
+          Show more concise Stats about Traffic Usage
+        </p>
+      </div>
+      <SwitchRoot
+        v-model:checked="enabled"
+        class="relative inline-flex h-6 w-11 items-center rounded-full transition-colors focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-red-800"
+        :class="enabled ? 'bg-red-800' : 'bg-gray-200'"
+      >
+        <SwitchThumb
+          class="inline-block h-4 w-4 transform rounded-full bg-white transition-transform"
+          :class="enabled ? 'translate-x-6' : 'translate-x-1'"
+        />
+      </SwitchRoot>
+    </div>
+    <div class="flex items-center justify-between">
+      <div>
+        <h3 class="text-lg font-medium text-gray-900 dark:text-neutral-200">
+          Chart Type
+        </h3>
+        <p class="text-sm text-gray-500 dark:text-neutral-300">
+          Select Type of Chart you want to show
+        </p>
+      </div>
+      <SelectRoot v-model="chartType">
+        <SelectTrigger
+          class="inline-flex min-w-[160px] items-center justify-between rounded px-[15px] text-[13px] leading-none h-[35px] gap-[5px] bg-white text-grass11 shadow-[0_2px_10px] shadow-black/10 hover:bg-mauve3 focus:shadow-[0_0_0_2px] focus:shadow-black data-[placeholder]:text-green9 outline-none"
+          aria-label="Customize options"
+        >
+          <SelectValue placeholder="Select a fruit..." />
+          <IconsArrowDown class="h-3.5 w-3.5" />
+        </SelectTrigger>
+
+        <SelectPortal>
+          <SelectContent
+            class="min-w-[160px] bg-white rounded shadow-[0px_10px_38px_-10px_rgba(22,_23,_24,_0.35),_0px_10px_20px_-15px_rgba(22,_23,_24,_0.2)] will-change-[opacity,transform] data-[side=top]:animate-slideDownAndFade data-[side=right]:animate-slideLeftAndFade data-[side=bottom]:animate-slideUpAndFade data-[side=left]:animate-slideRightAndFade z-[100]"
+            :side-offset="5"
+          >
+            <SelectScrollUpButton
+              class="flex items-center justify-center h-[25px] bg-white text-violet11 cursor-default"
+            >
+              <IconsArrowUp />
+            </SelectScrollUpButton>
+            <SelectViewport class="p-[5px]">
+              <SelectItem
+                v-for="(option, index) in options"
+                :key="index"
+                class="text-[13px] leading-none text-grass11 rounded-[3px] flex items-center h-[25px] pr-[35px] pl-[25px] relative select-none data-[disabled]:text-mauve8 data-[disabled]:pointer-events-none data-[highlighted]:outline-none data-[highlighted]:bg-green9 data-[highlighted]:text-green1"
+                :value="option"
+              >
+                <SelectItemText>
+                  {{ option }}
+                </SelectItemText>
+              </SelectItem>
+            </SelectViewport>
+            <SelectScrollDownButton
+              class="flex items-center justify-center h-[25px] bg-white text-violet11 cursor-default"
+            >
+              <IconsArrowDown />
+            </SelectScrollDownButton>
+          </SelectContent>
+        </SelectPortal>
+      </SelectRoot>
+    </div>
+    <BaseButton class="self-end" @click="submit">Save</BaseButton>
+    <UiToast
+      v-model:open="open"
+      title="Saved successfully"
+      content="Statistics saved successfully"
+    />
+  </div>
+</template>
+
+<script setup lang="ts">
+const globalStore = useGlobalStore();
+const open = ref(false);
+const enabled = ref(globalStore.statistics.enabled);
+const options: Record<number, string> = {
+  0: 'None',
+  1: 'Line',
+  2: 'Area',
+  3: 'Bar',
+};
+const stringToIndex = Object.entries(options).reduce(
+  (obj, [k, v]) => {
+    obj[v] = Number.parseInt(k);
+    return obj;
+  },
+  {} as Record<string, number>
+);
+const chartType = ref(options[globalStore.statistics.chartType]);
+
+async function submit() {
+  const response = await $fetch('/api/admin/statistics', {
+    method: 'post',
+    body: {
+      statistics: {
+        enabled: enabled.value,
+        chartType: stringToIndex[chartType.value!],
+      },
+    },
+  });
+  if (response.success) {
+    open.value = true;
+  }
+  globalStore.fetchStatistics();
+}
+</script>
diff --git a/src/app/utils/api.ts b/src/app/utils/api.ts
index 72350bea..7ef85a89 100644
--- a/src/app/utils/api.ts
+++ b/src/app/utils/api.ts
@@ -127,13 +127,6 @@ class API {
       body: { username, password },
     });
   }
-
-  async updateFeatures(features: Record<string, { enabled: boolean }>) {
-    return $fetch('/api/admin/features', {
-      method: 'post',
-      body: { features },
-    });
-  }
 }
 
 type WGClientReturn = Awaited<
diff --git a/src/server/api/admin/statistics.post.ts b/src/server/api/admin/statistics.post.ts
new file mode 100644
index 00000000..5865580e
--- /dev/null
+++ b/src/server/api/admin/statistics.post.ts
@@ -0,0 +1,8 @@
+export default defineEventHandler(async (event) => {
+  const { statistics } = await readValidatedBody(
+    event,
+    validateZod(statisticsType)
+  );
+  await Database.system.updateStatistics(statistics);
+  return { success: true };
+});
diff --git a/src/server/utils/types.ts b/src/server/utils/types.ts
index 2d3568e6..3e1697de 100644
--- a/src/server/utils/types.ts
+++ b/src/server/utils/types.ts
@@ -59,7 +59,7 @@ const oneTimeLink = z
   .pipe(safeStringRefine);
 
 const features = z.record(
-  z.string({ message: 'key must be a valid object' }),
+  z.string({ message: 'key must be a valid string' }),
   z.object(
     {
       enabled: z.boolean({ message: 'enabled must be a valid boolean' }),
@@ -69,6 +69,14 @@ const features = z.record(
   { message: 'features must be a valid record' }
 );
 
+const statistics = z.object(
+  {
+    enabled: z.boolean({ message: 'enabled must be a valid boolean' }),
+    chartType: z.number({ message: 'chartType must be a valid number' }),
+  },
+  { message: 'statistics must be a valid object' }
+);
+
 const objectMessage = 'Body must be a valid object';
 
 export const clientIdType = z.object(
@@ -145,6 +153,13 @@ export const featuresType = z.object(
   { message: objectMessage }
 );
 
+export const statisticsType = z.object(
+  {
+    statistics: statistics,
+  },
+  { message: objectMessage }
+);
+
 export function validateZod<T>(schema: ZodSchema<T>) {
   return async (data: unknown) => {
     try {
diff --git a/src/services/database/lowdb.ts b/src/services/database/lowdb.ts
index d4018bd6..762dcff2 100644
--- a/src/services/database/lowdb.ts
+++ b/src/services/database/lowdb.ts
@@ -20,9 +20,11 @@ import {
 } from './repositories/client';
 import {
   AvailableFeatures,
+  ChartType,
   SystemRepository,
   type Feature,
   type Features,
+  type Statistics,
 } from './repositories/system';
 
 const DEBUG = debug('LowDB');
@@ -54,6 +56,19 @@ export class LowDBSystem extends SystemRepository {
       }
     });
   }
+
+  async updateStatistics(statistics: Statistics) {
+    DEBUG('Update Statistics');
+    this.#db.update((v) => {
+      v.system.statistics.enabled = statistics.enabled;
+      if (
+        statistics.chartType >= ChartType.None &&
+        statistics.chartType <= ChartType.Bar
+      ) {
+        v.system.statistics.chartType = statistics.chartType;
+      }
+    });
+  }
 }
 
 export class LowDBUser extends UserRepository {
diff --git a/src/services/database/repositories/system.ts b/src/services/database/repositories/system.ts
index 474808a2..2a82d0eb 100644
--- a/src/services/database/repositories/system.ts
+++ b/src/services/database/repositories/system.ts
@@ -105,4 +105,5 @@ export abstract class SystemRepository {
   abstract get(): Promise<System>;
 
   abstract updateFeatures(features: Record<string, Feature>): Promise<void>;
+  abstract updateStatistics(statistics: Statistics): Promise<void>;
 }