| Token dashboard |
Stores the operator bearer token for the browser session. |
Uses the same auth header helper as every admin API call. |
Access protected admin views. |
| Status |
Displays running gateway configuration and health indicators. |
Reads the protected admin status endpoint. |
Confirm feature dependencies and active security settings. |
| Log Explorer |
Queries historical audit events. |
Filters SQLite-backed audit history with keyset pagination. |
Investigate decisions and build evidence for rules. |
| Live Tail |
Streams live audit events. |
Consumes the admin SSE event stream. |
Watch test traffic and immediate policy effects. |
| Traffic Inventory |
Lists discovered endpoint templates. |
Aggregates observed request events off the request hot path. |
Find endpoints needing review, ownership, or rules. |
| Traffic Detail |
Shows one endpoint's metrics, principals, history, and context. |
Combines discovery aggregate data with audit enrichment. |
Design endpoint-specific rules. |
| Rule Table |
Shows and mutates direct firewall rules. |
Uses protected policy CRUD APIs with ETag guarding. |
Review, reorder, enable, disable, and delete rules. |
| Rule Editor |
Creates or edits rules with live preview. |
Builds a candidate rule and evaluates it against historical traffic. |
Create narrow, evidence-backed policy changes. |
| Signals |
Lists deterministic anomaly signals. |
Signal detectors run from discovery aggregates and emit lifecycle events. |
Prioritize suspicious or newly discovered behavior. |
| Tokens |
Creates, revokes, and rotates service tokens. |
Stores token hashes and only returns plaintext once. |
Grant machine access with narrow scopes. |
| OpenAPI Tools |
Converts OpenAPI operations into MCP tool definitions. |
Previews/registers generated tools from an OpenAPI document. |
Expose API operations as governed MCP tools. |
| Identities |
Shows authenticated users and bots seen by the gateway. |
Persists principal observations asynchronously when enabled. |
Design identity-aware rules and investigate principal behavior. |
| Policy History |
Displays policy versions, actors, diffs, and rollback controls. |
Appends version records on every policy mutation. |
Audit and recover policy changes. |
| Shadow Review |
Aggregates would-deny results for shadow rules. |
Reads direct-rule shadow enforcement evidence from audit/discovery data. |
Promote safe restrictions without guessing. |