Security

Password and Two-Factor Authentication

• Change Password - Change your own password at any time via the profile menu. Current password must be entered for confirmation
• Enable 2FA - Set up additional security layer via Settings > Security
• Authenticator App - Google Authenticator, Authy, or any TOTP-compatible app
• Setup Process - Scan QR code with authenticator app and verify with a code
• Backup Codes - Emergency recovery codes for access when authenticator is unavailable

Security Log

Detailed log of all authentication attempts:

• Login Attempts - Every login attempt with username, IP address, and success/failure status
• Auth Type - Authentication method used (password, 2FA, SSO)
• Filter by Username - Search for specific admin login history
• Filter by IP Address - Identify suspicious IP addresses
• Date Range Filter - View attempts within a specific time period
• Statistics - Summary stats for the last 30 days (total, successful, failed)

Session Management

Manage active admin sessions:

• Active Sessions - View all currently active sessions for your account
• Device Info - Browser and device name parsed from user agent
• IP Address - IP address of each session
• Last Activity - When each session was last active
• Revoke Session - Terminate a specific session on another device
• Revoke All - Log out all other sessions except the current one

Activity Log

• Admin Actions - Chronological log of all create, update, and delete operations
• Who Changed What - Admin name, action type, and affected entity
• Timestamps - Exact date and time of every action
• Activity Chart - Visual chart of activity over the last 30 days on the dashboard