secubox-openwrt/luci-app-crowdsec-dashboard/README.md

# 🛡️ LuCI CrowdSec Dashboard

**Version:** 1.0.0  
**Last Updated:** 2025-12-28  
**Status:** Active


A modern, responsive, and dynamic dashboard for monitoring CrowdSec security on OpenWrt routers.

![License](https://img.shields.io/badge/license-Apache--2.0-blue)
![OpenWrt](https://img.shields.io/badge/OpenWrt-21.02%2B-blue)
![CrowdSec](https://img.shields.io/badge/CrowdSec-1.4%2B-green)

<p align="center">
  <img src="screenshots/overview.png" alt="Dashboard Overview" width="800">
</p>

## ✨ Features

- **Real-time Overview** - Monitor active bans, alerts, and bouncer status at a glance
- **Decision Management** - View, search, filter, and manage IP bans directly from the interface
- **Alert History** - Browse and analyze security alerts with detailed event information
- **Metrics Dashboard** - Comprehensive view of CrowdSec engine metrics, parsers, and scenarios
- **Responsive Design** - Works perfectly on desktop, tablet, and mobile devices
- **Auto-refresh** - Data updates automatically every 30-60 seconds
- **Dark Theme** - Industrial cybersecurity aesthetic optimized for low-light environments

## 📦 Installation

### From OpenWrt Package Repository (Recommended)

```bash
opkg update
opkg install luci-app-crowdsec-dashboard
```

### Manual Installation

1. Download the latest release from the [Releases](https://github.com/YOUR_USERNAME/luci-app-crowdsec-dashboard/releases) page

2. Transfer to your OpenWrt device:
```bash
scp luci-app-crowdsec-dashboard_*.ipk root@router:/tmp/
```

3. Install the package:
```bash
opkg install /tmp/luci-app-crowdsec-dashboard_*.ipk
```

4. Restart uhttpd:
```bash
/etc/init.d/uhttpd restart
/etc/init.d/rpcd restart
```

### Building from Source

1. Clone into your OpenWrt build environment:
```bash
cd ~/openwrt/feeds/luci/applications/
git clone https://github.com/YOUR_USERNAME/luci-app-crowdsec-dashboard.git
```

2. Update feeds and select the package:
```bash
cd ~/openwrt
./scripts/feeds update -a
./scripts/feeds install -a
make menuconfig
# Navigate to LuCI → Applications → luci-app-crowdsec-dashboard
```

3. Build:
```bash
make package/luci-app-crowdsec-dashboard/compile V=s
```

## 🔧 Requirements

- OpenWrt 21.02 or later
- CrowdSec Security Engine installed and running
- CrowdSec Firewall Bouncer (recommended)
- LuCI web interface

### Recommended CrowdSec packages:
```bash
opkg install crowdsec crowdsec-firewall-bouncer
```

## 📱 Screenshots

### Overview Dashboard
Real-time stats, top scenarios, and countries visualization.

### Decisions Manager
Full-featured table with search, sort, bulk actions, and manual ban capability.

### Alert History
Chronological view of all security events with filtering options.

### Metrics View
Detailed engine metrics, bouncer status, and hub components.

## 🏗️ Architecture

```
luci-app-crowdsec-dashboard/
├── Makefile                          # OpenWrt build instructions
├── htdocs/
│   └── luci-static/resources/
│       ├── crowdsec-dashboard/
│       │   ├── api.js               # RPC API module
│       │   └── dashboard.css        # Cybersecurity theme styles
│       └── view/crowdsec-dashboard/
│           ├── overview.js          # Main dashboard view
│           ├── decisions.js         # Decisions management
│           ├── alerts.js            # Alerts history
│           └── metrics.js           # Metrics display
├── root/
│   ├── usr/libexec/rpcd/
│   │   └── crowdsec                 # RPCD backend (shell script)
│   └── usr/share/
│       ├── luci/menu.d/             # Menu configuration
│       └── rpcd/acl.d/              # ACL permissions
└── po/                              # Translations
```

## 🔌 API Endpoints

The dashboard uses ubus RPC calls through the `crowdsec` RPCD module:

| Method | Description |
|--------|-------------|
| `decisions` | Get all active decisions |
| `alerts` | Get alert history with limit |
| `metrics` | Get Prometheus metrics |
| `bouncers` | List registered bouncers |
| `machines` | List registered machines |
| `hub` | Get hub status (collections, parsers, scenarios) |
| `status` | Get service status |
| `stats` | Get aggregated dashboard statistics |
| `ban` | Add manual IP ban |
| `unban` | Remove IP ban |

## 🎨 Customization

### Changing the Theme

Edit `/htdocs/luci-static/resources/crowdsec-dashboard/dashboard.css`:

```css
:root {
    --cs-bg-primary: #0a0e14;
    --cs-accent-green: #00d4aa;
    /* ... modify colors as needed */
}
```

### Adding New Metrics

1. Add RPC method in `/root/usr/libexec/rpcd/crowdsec`
2. Declare RPC call in `/htdocs/luci-static/resources/crowdsec-dashboard/api.js`
3. Create UI component in the appropriate view file

## 🤝 Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

1. Fork the repository
2. Create your feature branch (`git checkout -b feature/AmazingFeature`)
3. Commit your changes (`git commit -m 'Add some AmazingFeature'`)
4. Push to the branch (`git push origin feature/AmazingFeature`)
5. Open a Pull Request

## 📄 License

This project is licensed under the Apache License 2.0 - see the [LICENSE](LICENSE) file for details.

## 🙏 Acknowledgments

- [CrowdSec](https://crowdsec.net/) - The open-source security engine
- [OpenWrt](https://openwrt.org/) - The freedom to make your network your own
- [LuCI](https://github.com/openwrt/luci) - OpenWrt Configuration Interface

## 📬 Contact

**Gandalf** - CyberMind.fr

- Website: [https://cybermind.fr](https://cybermind.fr)
- GitHub: [@YOUR_USERNAME](https://github.com/YOUR_USERNAME)

---

<p align="center">
  Made with ❤️ for the OpenWrt and CrowdSec communities
</p>
fix: hope modules refresh 2025-12-23 17:56:15 +00:00			`# 🛡️ LuCI CrowdSec Dashboard`

docs: Reorganize documentation structure and add architecture diagrams Major documentation improvements and restructuring for better maintainability and navigation. ## Structural Changes ### New Documentation Organization - Move all documentation to DOCS/ directory for better organization - Create DOCS/archive/ for historical documents - Move deployment scripts to secubox-tools/ directory ### Archived Documents - COMPLETION_REPORT.md → archive/ (project milestone) - MODULE-ENABLE-DISABLE-DESIGN.md → archive/ (feature implemented) - BUILD_ISSUES.md → archive/ (issues resolved) - Add archive/README.md with archiving policy and document index ## Documentation Enhancements ### Version Standardization - Add version headers to CLAUDE.md (v1.0.0) - Add version headers to BUILD_ISSUES.md (v1.0.0) - Standardize date format to YYYY-MM-DD across all docs ### Cross-References & Navigation - Add "See Also" sections to PERMISSIONS-GUIDE.md - Add "See Also" sections to VALIDATION-GUIDE.md - Link quick references to detailed guides - Improve documentation discoverability ### Architecture Diagrams (Mermaid) Add 3 professional diagrams to DEVELOPMENT-GUIDELINES.md: 1. System Architecture Diagram (§2) - Complete data flow: Browser → LuCI → RPCD → ubus → System - Color-coded components by layer - Shows JavaScript, RPC, RPCD daemon, UCI, system services 2. Deployment Workflow Diagram (§9) - Step-by-step deployment process with validation checkpoints - Error recovery paths for common issues (403, 404, -32000) - Local validation, file transfer, permission fixes, service restarts 3. Component Hierarchy Diagram (§1) - Standard page structure and CSS class relationships - Page → Header → Stats → Content → Cards → Buttons - Shows design system component organization ## New Files ### TODO-ANALYSE.md - Comprehensive documentation improvement roadmap - Tasks categorized: Immediate, Short-term, Long-term, Optional - Progress tracking with acceptance criteria - Covers testing, security, performance guides - Documentation automation plans ## Benefits ✅ Cleaner project structure (docs in DOCS/, tools in secubox-tools/) ✅ Better documentation navigation with cross-references ✅ Visual understanding through architecture diagrams ✅ Historical documents archived but accessible ✅ Standardized versioning across all documentation ✅ Clear roadmap for future documentation improvements 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com> 2025-12-28 08:47:10 +00:00			`Version: 1.0.0`
			`Last Updated: 2025-12-28`
			`Status: Active`


fix: hope modules refresh 2025-12-23 17:56:15 +00:00			`A modern, responsive, and dynamic dashboard for monitoring CrowdSec security on OpenWrt routers.`

			`![License](https://img.shields.io/badge/license-Apache--2.0-blue)`
			`![OpenWrt](https://img.shields.io/badge/OpenWrt-21.02%2B-blue)`
			`![CrowdSec](https://img.shields.io/badge/CrowdSec-1.4%2B-green)`

			`<p align="center">`
			`<img src="screenshots/overview.png" alt="Dashboard Overview" width="800">`
			`</p>`

			`## ✨ Features`

			`- Real-time Overview - Monitor active bans, alerts, and bouncer status at a glance`
			`- Decision Management - View, search, filter, and manage IP bans directly from the interface`
			`- Alert History - Browse and analyze security alerts with detailed event information`
			`- Metrics Dashboard - Comprehensive view of CrowdSec engine metrics, parsers, and scenarios`
			`- Responsive Design - Works perfectly on desktop, tablet, and mobile devices`
			`- Auto-refresh - Data updates automatically every 30-60 seconds`
			`- Dark Theme - Industrial cybersecurity aesthetic optimized for low-light environments`

			`## 📦 Installation`

			`### From OpenWrt Package Repository (Recommended)`

			```bash
			`opkg update`
			`opkg install luci-app-crowdsec-dashboard`
			```

			`### Manual Installation`

			`1. Download the latest release from the [Releases](https://github.com/YOUR_USERNAME/luci-app-crowdsec-dashboard/releases) page`

			`2. Transfer to your OpenWrt device:`
			```bash
			`scp luci-app-crowdsec-dashboard_*.ipk root@router:/tmp/`
			```

			`3. Install the package:`
			```bash
			`opkg install /tmp/luci-app-crowdsec-dashboard_*.ipk`
			```

			`4. Restart uhttpd:`
			```bash
			`/etc/init.d/uhttpd restart`
			`/etc/init.d/rpcd restart`
			```

			`### Building from Source`

			`1. Clone into your OpenWrt build environment:`
			```bash
			`cd ~/openwrt/feeds/luci/applications/`
			`git clone https://github.com/YOUR_USERNAME/luci-app-crowdsec-dashboard.git`
			```

			`2. Update feeds and select the package:`
			```bash
			`cd ~/openwrt`
			`./scripts/feeds update -a`
			`./scripts/feeds install -a`
			`make menuconfig`
			`# Navigate to LuCI → Applications → luci-app-crowdsec-dashboard`
			```

			`3. Build:`
			```bash
			`make package/luci-app-crowdsec-dashboard/compile V=s`
			```

			`## 🔧 Requirements`

			`- OpenWrt 21.02 or later`
			`- CrowdSec Security Engine installed and running`
			`- CrowdSec Firewall Bouncer (recommended)`
			`- LuCI web interface`

			`### Recommended CrowdSec packages:`
			```bash
			`opkg install crowdsec crowdsec-firewall-bouncer`
			```

			`## 📱 Screenshots`

			`### Overview Dashboard`
			`Real-time stats, top scenarios, and countries visualization.`

			`### Decisions Manager`
			`Full-featured table with search, sort, bulk actions, and manual ban capability.`

			`### Alert History`
			`Chronological view of all security events with filtering options.`

			`### Metrics View`
			`Detailed engine metrics, bouncer status, and hub components.`

			`## 🏗️ Architecture`

			```
			`luci-app-crowdsec-dashboard/`
			`├── Makefile # OpenWrt build instructions`
			`├── htdocs/`
			`│ └── luci-static/resources/`
			`│ ├── crowdsec-dashboard/`
			`│ │ ├── api.js # RPC API module`
			`│ │ └── dashboard.css # Cybersecurity theme styles`
			`│ └── view/crowdsec-dashboard/`
			`│ ├── overview.js # Main dashboard view`
			`│ ├── decisions.js # Decisions management`
			`│ ├── alerts.js # Alerts history`
			`│ └── metrics.js # Metrics display`
			`├── root/`
			`│ ├── usr/libexec/rpcd/`
			`│ │ └── crowdsec # RPCD backend (shell script)`
			`│ └── usr/share/`
			`│ ├── luci/menu.d/ # Menu configuration`
			`│ └── rpcd/acl.d/ # ACL permissions`
			`└── po/ # Translations`
			```

			`## 🔌 API Endpoints`

			The dashboard uses ubus RPC calls through the `crowdsec` RPCD module:

			`\| Method \| Description \|`
			`\|--------\|-------------\|`
			\| `decisions` \| Get all active decisions \|
			\| `alerts` \| Get alert history with limit \|
			\| `metrics` \| Get Prometheus metrics \|
			\| `bouncers` \| List registered bouncers \|
			\| `machines` \| List registered machines \|
			\| `hub` \| Get hub status (collections, parsers, scenarios) \|
			\| `status` \| Get service status \|
			\| `stats` \| Get aggregated dashboard statistics \|
			\| `ban` \| Add manual IP ban \|
			\| `unban` \| Remove IP ban \|

			`## 🎨 Customization`

			`### Changing the Theme`

			Edit `/htdocs/luci-static/resources/crowdsec-dashboard/dashboard.css`:

			```css
			`:root {`
			`--cs-bg-primary: #0a0e14;`
			`--cs-accent-green: #00d4aa;`
			`/* ... modify colors as needed */`
			`}`
			```

			`### Adding New Metrics`

			1. Add RPC method in `/root/usr/libexec/rpcd/crowdsec`
			2. Declare RPC call in `/htdocs/luci-static/resources/crowdsec-dashboard/api.js`
			`3. Create UI component in the appropriate view file`

			`## 🤝 Contributing`

			`Contributions are welcome! Please feel free to submit a Pull Request.`

			`1. Fork the repository`
			2. Create your feature branch (`git checkout -b feature/AmazingFeature`)
			3. Commit your changes (`git commit -m 'Add some AmazingFeature'`)
			4. Push to the branch (`git push origin feature/AmazingFeature`)
			`5. Open a Pull Request`

			`## 📄 License`

			`This project is licensed under the Apache License 2.0 - see the [LICENSE](LICENSE) file for details.`

			`## 🙏 Acknowledgments`

			`- [CrowdSec](https://crowdsec.net/) - The open-source security engine`
			`- [OpenWrt](https://openwrt.org/) - The freedom to make your network your own`
			`- [LuCI](https://github.com/openwrt/luci) - OpenWrt Configuration Interface`

			`## 📬 Contact`

			`Gandalf - CyberMind.fr`

			`- Website: [https://cybermind.fr](https://cybermind.fr)`
			`- GitHub: [@YOUR_USERNAME](https://github.com/YOUR_USERNAME)`

			`---`

			`<p align="center">`
			`Made with ❤️ for the OpenWrt and CrowdSec communities`
			`</p>`