Dashboard Web Play Banker Live API

Admin Control Center

Staging shell for `admin.cardoso.uk` capabilities. Current phase exposes read-only runtime telemetry and snapshots while mutation controls remain disabled.

Staging-Only Read-Only Mode
Routing: `staging-admin.cardoso.uk` -> `website` service (`/admin.html`)
Mode: Session-gated read-only telemetry, no mutation endpoints
Safety: Existing `www/play/banker/chat` routes remain unchanged
Runtime write window closed. Actions are locked by default.

Admin Session: Checking...

Token Source: `localStorage.empire_admin_token`

Runtime Write Gate: Checking...

Content Write Gate: Checking...

Customization Write Gate: Checking...

RBAC Source: Checking...

Content Capabilities: Checking...

Runtime Capabilities: Checking...

Customization Capability: Checking...

Open Banker Login
Teams
-
Awaiting auth
Bookings
-
Awaiting auth
Tickets
-
Awaiting auth
Payments Enabled
-
Awaiting auth
RBAC Role
-
Awaiting auth
Audit Feed
-
Awaiting auth
Finance Net
-
Awaiting auth
UI Settings
-
Awaiting auth
Content Pages
-
Awaiting auth
Runtime Mode
-
Awaiting auth
Active Teams
-
Awaiting auth
[init] ready

Quick Start (5-Min Check)

Use this to prove the panel is working end-to-end without changing live data.

  1. Click Refresh Telemetry and confirm Admin Session: Verified.
  2. Check both gates show CLOSED (Default) for safe read-only mode.
  3. Click Run Proof Check and review PASS/FAIL lines in the log panel.
  4. In Event Snapshot and Team Runtime Snapshot, test filters + paging + Details.
  5. Click Clear Admin Token to confirm access blocks, then use Open Banker Login to restore.

Access

Admin session validation now gates telemetry. RBAC mutation controls remain disabled in this phase.

Status Legend

Quick reference for interpreting session/gate/capability lines.

  • RBAC Source: `admin_roles` means explicit role record was found; `legacy` means fallback allow mode is active.
  • Gate CLOSED: write actions are blocked even if capability is `YES`.
  • Gate OPEN: write actions still require capability `YES` and valid state transitions.
  • Capability YES: your role is allowed for that action when gate/state checks also pass.
  • Capability NO: action remains disabled regardless of gate state.

Events

Event/team runtime controls now expose read-only mode snapshots in staging; mutation controls stay disabled pending explicit approval gates.

Theme

Theme/content controls remain disabled here; read-only customization summary is now visible via `UI Settings` telemetry.

Awaiting auth
Customization actions locked (write window closed)

Finance

Planned bookkeeping module: revenue, expenditure, category ledgers, period summaries, and operator adjustments.

Planned features: print pack, CSV/PDF export, and shareable report links.
Awaiting auth
Report context unavailable
Awaiting auth
-

Content & Legal

Planned managed editing for public rules, privacy policy, terms, and support copy with preview + staged publish.

Guardrail: immutable change log + rollback snapshot before publish.
Awaiting auth
Content actions locked (write window closed)

Event Snapshot

Read-only list of current event context in staging.

Awaiting auth
Actions locked (write window closed)
-

Team Runtime Snapshot

Read-only list of recent team runtime states.

Awaiting auth
-