jason/unifi-access-dashboard
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add files via upload

Browse Source
This commit is contained in:
jasonMPM
2026-03-04 19:42:38 -06:00
committed by GitHub
parent e01c075427
commit 9c5206ae59
6 changed files with 641 additions and 147 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
Dockerfile
View File

@@ -7,7 +7,10 @@ RUN pip install --no-cache-dir -r requirements.txt
COPY . . COPY . .
ENV FLASK_APP=app.py FLASK_RUN_HOST=0.0.0.0 FLASK_RUN_PORT=8000 DB_PATH=/data/events.db ENV FLASK_APP=app.py \
FLASK_RUN_HOST=0.0.0.0 \
FLASK_RUN_PORT=8000 \
DB_PATH=/data/dashboard.db
EXPOSE 8000 EXPOSE 8000

225
README.md
View File

@@ -1,107 +1,186 @@
# UniFi Access Badge-In Dashboard # UniFi Access Badge-In Dashboard (V2)
A small Flask + SQLite web app that receives UniFi Access `access.door.unlock` webhooks and shows a dark, gold-accented dashboard of daily first badge-in times. A Dockerised Flask + SQLite web app that receives UniFi Access `access.door.unlock` webhooks,
resolves UUID actor IDs to real user names via the UniFi Access API,
and displays a modern dark dashboard with on-time / late status per person.
---
## Features ## Features
- Receives UniFi Access webhooks for `access.door.unlock` events and stores them in SQLite. - Receives `access.door.unlock` webhooks from either the **UniFi Access developer API** or the legacy **Alarm Manager** format.
- Modern dark UI with black background, gold accents, and on-time (green) vs late (red) status. - Resolves blank `user_name` UUIDs to real names by querying the UniFi Access REST API on a schedule (every 6 hours) and caching results in SQLite.
- Date picker and configurable "badged in by" cutoff time. - Manual **Sync Users** button in the UI triggers an immediate cache refresh.
- Dockerised for easy deployment on Unraid. - Dark theme with gold accents, green ON TIME / red LATE status chips.
- Date picker + configurable "badged in by" cutoff time.
- Fully Dockerised — single container, persisted SQLite volume.
## Repository layout ---
- `app.py` Flask application and API endpoints. ## Project layout
- `requirements.txt` Python dependencies.
- `Dockerfile` Container image definition.
- `docker-compose.yml` Example compose file (works on Unraid).
- `static/index.html` Singlepage dashboard UI.
## UniFi Access configuration ```
.
1. Ensure you have UniFi Access running (UA Ultra / UA Hub Door Mini / G3 Intercom etc.). ├── app.py # Flask application
2. In the UniFi Access web UI, open the API / developer section and create a **Webhook**:[web:24][web:25] ├── requirements.txt
- Method: `POST`. ├── Dockerfile
- URL: `http://<UNRAID-IP>:8000/unifi-access-webhook` (or behind HTTPS via reverse proxy). ├── docker-compose.yml
- Events: at least `access.door.unlock`. ├── .env.example # Copy to .env and fill in your values
3. Save and trigger a test door unlock. You should see webhook hits in the container logs and rows in `events.db`. ├── .gitignore
└── static/
## Building and running on Unraid └── index.html # Dashboard UI
### 1. Create a public GitHub repository
1. On your workstation, create a new folder and put all files from this project in it.
2. Initialize a Git repo, commit, and push to GitHub (public or private with a token):
```bash
git init
git add .
git commit -m "Initial UniFi Access dashboard"
git branch -M main
git remote add origin https://github.com/<your-user>/<your-repo>.git
git push -u origin main
``` ```
### 2. Add a new Docker template on Unraid ---
You can either use the **Docker** tab (Add Container) or deploy via the Unraid terminal. ## Step 1 — Generate a UniFi Access API token
#### Option A Using Unraid GUI 1. Open your **UniFi OS** web interface.
2. Navigate to **UniFi Access → Settings → Integrations** (or the **Developer API** section).
3. Create a new **API Key** (Bearer Token). Copy it — you will need it below.
1. Go to **Docker → Add Container**. > Use a dedicated read-only admin account to generate the token if possible.
2. Set **Name** to `unifi-access-dashboard`.
3. For **Repository**, point to your GitHub repo using the GitHub URL with the `Dockerfile` as build context if you build externally, or build the image locally first (Option B). Unraids GUI typically expects an image name on Docker Hub; easiest approach is: ---
- Build and push your image from a machine with Docker:
## Step 2 — Create your .env file
Copy `.env.example` to `.env` and fill in your values:
```bash ```bash
docker build -t <your-user>/unifi-access-dashboard:latest . cp .env.example .env
docker push <your-user>/unifi-access-dashboard:latest
``` ```
- Then in Unraid, set **Repository** to `<your-user>/unifi-access-dashboard:latest`. ```dotenv
4. Add a **Port mapping**: host `8000` → container `8000`. UNIFI_HOST=192.168.1.1 # IP of your UniFi OS controller
5. Add a **Path mapping** for persistent DB: UNIFI_API_TOKEN=YOUR_TOKEN_HERE
- Host path: `/mnt/user/appdata/unifi-access-dashboard/` TZ=America/Chicago
- Container path: `/data` DB_PATH=/data/dashboard.db
6. Add environment variable `TZ` to match your timezone (e.g., `America/Chicago`). ```
7. Apply to start the container.
#### Option B Using `docker-compose` on Unraid > **Never commit `.env` to git.** It is listed in `.gitignore`.
If you prefer to build directly on the Unraid box and pull source from GitHub: ---
1. SSH into Unraid. ## Step 3 — Register the webhook with UniFi Access
2. Clone your GitHub repo:
Run this once from any machine on the same LAN as your controller (replace placeholders):
```bash
curl -k -X POST "https://192.168.1.1:45/api1/webhooks/endpoints" \
-H "Authorization: Bearer YOUR_TOKEN_HERE" \
-H "Content-Type: application/json" \
-d '{
"name": "Dashboard Unlock Events",
"endpoint": "http://YOUR_UNRAID_IP:8000/api/unifi-access",
"events": ["access.door.unlock"],
"headers": { "X-Source": "unifi-access" }
}'
```
Verify it was registered:
```bash
curl -k -X GET "https://192.168.1.1:45/api1/webhooks/endpoints" \
-H "Authorization: Bearer YOUR_TOKEN_HERE"
```
You should see your webhook listed with a unique `id`.
> **Note:** The UniFi Access API runs on **port 45** over HTTPS with a self-signed cert.
> Always pass `-k` to curl, or `verify=False` in Python requests.
---
## Step 4 — Deploy on Unraid
### Clone from GitHub and build locally
SSH into your Unraid server:
```bash ```bash
cd /mnt/user/appdata cd /mnt/user/appdata
git clone https://github.com/<your-user>/<your-repo>.git unifi-access-dashboard git clone https://github.com/<your-user>/<your-repo>.git unifi-access-dashboard
cd unifi-access-dashboard cd unifi-access-dashboard
``` cp .env.example .env
nano .env # fill in UNIFI_HOST and UNIFI_API_TOKEN
3. (Optional) Adjust `docker-compose.yml` ports or paths.
4. Build and start:
```bash
docker compose up -d --build docker compose up -d --build
``` ```
5. The app will listen on port `8000` by default. The app is now running on **port 8000**.
### 3. Verify the app ### Unraid GUI (Docker tab — Add Container)
1. In a browser, open `http://<UNRAID-IP>:8000/`. If you prefer using the GUI after pushing an image to Docker Hub:
2. You should see the dark dashboard with date and cutoff selectors.
3. After some badge-in activity, click **Refresh** and verify that users show as **ON TIME** (green) or **LATE** (red) depending on the cutoff.
## Environment and volumes ```bash
# On your workstation:
docker build -t <your-dockerhub-user>/unifi-access-dashboard:latest .
docker push <your-dockerhub-user>/unifi-access-dashboard:latest
```
- `DB_PATH` (optional) path to the SQLite file inside the container (defaults to `/data/events.db` via Dockerfile). Then in Unraid → Docker → Add Container:
- Mount `/data` to persistent storage on Unraid so badge history survives container restarts.
## Time zones and "on time" logic | Field | Value |
|---|---|
| Name | unifi-access-dashboard |
| Repository | `<your-dockerhub-user>/unifi-access-dashboard:latest` |
| Port | Host `8000` → Container `8000` |
| Path | Host `/mnt/user/appdata/unifi-access-dashboard/data` → Container `/data` |
| Env: UNIFI_HOST | `192.168.1.x` |
| Env: UNIFI_API_TOKEN | `your-token` |
| Env: TZ | `America/Chicago` |
- Webhook timestamps are stored in UTC with a `Z` suffix. ---
- The "badged in by" cutoff is interpreted in 24hour `HH:MM` format and compared against the stored time string for that day.
- If you need strict localtime handling, you can extend `app.py` to convert UTC to your timezone before comparison.
## Step 5 — Open the dashboard
Browse to:
```
http://<UNRAID-IP>:8000/
```
- Choose a **date** and set the **"Badged in by"** cutoff time (e.g. `09:00`).
- Click **Refresh** to load the day's first badge-in per person.
- Green chip = on time. Red chip = late.
- Click **Sync Users** to immediately pull the latest user list from your UniFi Access controller.
---
## Keeping the user cache fresh
The app automatically re-syncs users from UniFi Access every **6 hours** in the background.
If you add or rename a badge holder, click **Sync Users** in the dashboard or restart the container.
---
## Troubleshooting
| Symptom | Cause | Fix |
|---|---|---|
| Names show as `Unknown (UUID…)` | Users not yet cached | Click Sync Users or wait for the 6-hour job |
| Webhook not arriving | Firewall / Docker network | Ensure port 8000 is reachable from the UniFi controller |
| `curl` returns SSL error | Self-signed cert | Add `-k` to bypass; already handled in Python |
| 404 on `/api1/users` | Firmware difference | Try `/api/v1/users`; check your Access app version |
| Duplicate events | Both Alarm Manager and API webhook active | Remove one, or they will both store rows (harmless but duplicates) |
| Container exits | `.env` missing | Ensure `.env` exists and `docker compose up` picks it up |
---
## Updating from GitHub
```bash
cd /mnt/user/appdata/unifi-access-dashboard
git pull
docker compose up -d --build
```
---
## Security notes
- The `.env` file is excluded from git via `.gitignore`.
- The UniFi API token is never exposed to the frontend.
- Mount `/data` to persistent storage so badge history survives container restarts.
- For external access, place a reverse proxy (Nginx/Traefik) with HTTPS in front.

194
app.py
View File

@@ -1,11 +1,23 @@
from flask import Flask, request, jsonify, send_from_directory from flask import Flask, request, jsonify, send_from_directory
from dotenv import load_dotenv
from apscheduler.schedulers.background import BackgroundScheduler
import sqlite3 import sqlite3
import datetime as dt import datetime as dt
import requests
import urllib3
import os import os
app = Flask(__name__) urllib3.disable_warnings(urllib3.exceptions.InsecureRequestWarning)
DB_PATH = os.environ.get("DB_PATH", "events.db") load_dotenv()
app = Flask(__name__)
DB_PATH = os.environ.get("DB_PATH", "/data/dashboard.db")
UNIFI_HOST = os.environ.get("UNIFI_HOST", "")
UNIFI_API_TOKEN = os.environ.get("UNIFI_API_TOKEN", "")
# ── Database ──────────────────────────────────────────────────────────────────
def get_db(): def get_db():
conn = sqlite3.connect(DB_PATH) conn = sqlite3.connect(DB_PATH)
@@ -16,116 +28,192 @@ def get_db():
@app.before_first_request @app.before_first_request
def init_db(): def init_db():
conn = get_db() conn = get_db()
conn.execute( conn.executescript("""
""" CREATE TABLE IF NOT EXISTS unlocks (
CREATE TABLE IF NOT EXISTS events (
id INTEGER PRIMARY KEY AUTOINCREMENT, id INTEGER PRIMARY KEY AUTOINCREMENT,
ts TEXT NOT NULL, ts TEXT NOT NULL,
event TEXT NOT NULL, event TEXT NOT NULL DEFAULT 'access.door.unlock',
door_name TEXT, door_name TEXT,
device_name TEXT, device_name TEXT,
actor_id TEXT, actor_id TEXT,
actor_name TEXT, actor_name TEXT,
resolved_name TEXT,
auth_type TEXT, auth_type TEXT,
result TEXT result TEXT
) );
"""
) CREATE TABLE IF NOT EXISTS access_users (
id TEXT PRIMARY KEY,
name TEXT,
email TEXT,
updated_at DATETIME DEFAULT CURRENT_TIMESTAMP
);
""")
# migration: add resolved_name if upgrading from V1
try:
conn.execute("ALTER TABLE unlocks ADD COLUMN resolved_name TEXT")
except Exception:
pass
conn.commit() conn.commit()
conn.close() conn.close()
@app.post("/unifi-access-webhook") # ── UniFi user cache ──────────────────────────────────────────────────────────
def sync_unifi_users():
if not UNIFI_HOST or not UNIFI_API_TOKEN:
print("[UniFi Sync] UNIFI_HOST or UNIFI_API_TOKEN not set — skipping.")
return
url = f"https://{UNIFI_HOST}:45/api1/users"
headers = {"Authorization": f"Bearer {UNIFI_API_TOKEN}"}
try:
resp = requests.get(url, headers=headers, verify=False, timeout=10)
resp.raise_for_status()
users = resp.json().get("data", [])
conn = get_db()
for user in users:
conn.execute(
"""INSERT INTO access_users (id, name, email, updated_at)
VALUES (?, ?, ?, CURRENT_TIMESTAMP)
ON CONFLICT(id) DO UPDATE SET
name=excluded.name,
email=excluded.email,
updated_at=excluded.updated_at""",
(user.get("id"), user.get("name"), user.get("email", "")),
)
conn.commit()
conn.close()
print(f"[UniFi Sync] Cached {len(users)} users.")
except Exception as e:
print(f"[UniFi Sync] Failed: {e}")
def resolve_user_name(user_id: str) -> str:
if not user_id:
return "Unknown"
conn = get_db()
row = conn.execute(
"SELECT name FROM access_users WHERE id = ?", (user_id,)
).fetchone()
conn.close()
return row["name"] if row else f"Unknown ({user_id[:8]}…)"
# ── Webhook receiver ──────────────────────────────────────────────────────────
@app.post("/api/unifi-access")
def unifi_access_webhook(): def unifi_access_webhook():
payload = request.get_json(force=True, silent=True) or {} payload = request.get_json(force=True, silent=True) or {}
event = payload.get("event")
ts = dt.datetime.utcnow().isoformat(timespec="seconds") + "Z"
# ── New developer-API webhook format ──────────────────────────────────────
if payload.get("event") == "access.door.unlock":
data = payload.get("data", {}) data = payload.get("data", {})
if event != "access.door.unlock":
return "", 204
actor = data.get("actor", {}) actor = data.get("actor", {})
location = data.get("location", {}) location = data.get("location", {})
device = data.get("device", {}) device = data.get("device", {})
obj = data.get("object", {}) obj = data.get("object", {})
ts = dt.datetime.utcnow().isoformat(timespec="seconds") + "Z" actor_id = actor.get("id", "")
actor_name = actor.get("name") or resolve_user_name(actor_id)
door_name = location.get("name")
device_name = device.get("name")
auth_type = obj.get("authentication_type")
result = obj.get("result", "Access Granted")
# ── Legacy Alarm Manager format ───────────────────────────────────────────
elif "events" in payload:
event = payload["events"][0]
actor_id = event.get("user", "")
actor_name = event.get("user_name") or resolve_user_name(actor_id)
door_name = event.get("location_name") or event.get("location", "Unknown Door")
device_name = None
auth_type = event.get("unlock_method_text", "Unknown")
result = "Access Granted"
else:
return "", 204 # unrecognised — silently ignore
conn = get_db() conn = get_db()
conn.execute( conn.execute(
""" """INSERT INTO unlocks
INSERT INTO events (ts, event, door_name, device_name, (ts, event, door_name, device_name, actor_id,
actor_id, actor_name, auth_type, result) actor_name, resolved_name, auth_type, result)
VALUES (?, ?, ?, ?, ?, ?, ?, ?) VALUES (?, 'access.door.unlock', ?, ?, ?, ?, ?, ?, ?)""",
""", (ts, door_name, device_name, actor_id, actor_name,
( actor_name, auth_type, result),
ts,
event,
location.get("name"),
device.get("name"),
actor.get("id"),
actor.get("name"),
obj.get("authentication_type"),
obj.get("result"),
),
) )
conn.commit() conn.commit()
conn.close() conn.close()
return "", 204 return "", 204
# ── Dashboard data API ────────────────────────────────────────────────────────
@app.get("/api/first-badge-status") @app.get("/api/first-badge-status")
def first_badge_status(): def first_badge_status():
date = request.args.get("date") or dt.date.today().isoformat() date = request.args.get("date") or dt.date.today().isoformat()
cutoff = request.args.get("cutoff", "09:00") # HH:MM cutoff = request.args.get("cutoff", "09:00")
start = f"{date}T00:00:00Z" start = f"{date}T00:00:00Z"
end = f"{date}T23:59:59Z" end = f"{date}T23:59:59Z"
conn = get_db() conn = get_db()
rows = conn.execute( rows = conn.execute(
""" """SELECT COALESCE(resolved_name, actor_name, actor_id) AS display_name,
SELECT actor_name, actor_id, MIN(ts) AS first_ts actor_id,
FROM events MIN(ts) AS first_ts
FROM unlocks
WHERE event = 'access.door.unlock' WHERE event = 'access.door.unlock'
AND result = 'Access Granted' AND result = 'Access Granted'
AND ts BETWEEN ? AND ? AND ts BETWEEN ? AND ?
AND actor_id IS NOT NULL AND (actor_id IS NOT NULL OR actor_name IS NOT NULL)
GROUP BY actor_id, actor_name GROUP BY actor_id
ORDER BY first_ts ORDER BY first_ts""",
""",
(start, end), (start, end),
).fetchall() ).fetchall()
conn.close() conn.close()
result = [] result = []
for r in rows: for r in rows:
first_ts = r["first_ts"] t = dt.datetime.fromisoformat(r["first_ts"].replace("Z", "+00:00"))
t = dt.datetime.fromisoformat(first_ts.replace("Z", "+00:00")) badge_time = t.strftime("%H:%M")
badge_time_str = t.strftime("%H:%M") result.append({
on_time = badge_time_str <= cutoff "actor_name": r["display_name"],
result.append(
{
"actor_name": r["actor_name"],
"actor_id": r["actor_id"], "actor_id": r["actor_id"],
"first_badge": first_ts, "first_badge": r["first_ts"],
"badge_time": badge_time_str, "badge_time": badge_time,
"on_time": on_time, "on_time": badge_time <= cutoff,
} })
)
return jsonify(result) return jsonify(result)
@app.get("/api/sync-users")
def manual_sync():
sync_unifi_users()
return jsonify({"status": "ok"})
# ── Static files ──────────────────────────────────────────────────────────────
@app.get("/") @app.get("/")
def index(): def index():
return send_from_directory("static", "index.html") return send_from_directory("static", "index.html")
@app.get("/static/<path:path>") @app.get("/static/<path:path>")
def send_static(path): def send_static(path):
return send_from_directory("static", path) return send_from_directory("static", path)
# ── Startup ───────────────────────────────────────────────────────────────────
scheduler = BackgroundScheduler()
scheduler.add_job(sync_unifi_users, "interval", hours=6)
scheduler.start()
if __name__ == "__main__": if __name__ == "__main__":
with app.app_context():
init_db()
sync_unifi_users()
app.run(host="0.0.0.0", port=int(os.environ.get("PORT", 8000))) app.run(host="0.0.0.0", port=int(os.environ.get("PORT", 8000)))

2
docker-compose.yml
View File

@@ -8,5 +8,7 @@ services:
- "8000:8000" - "8000:8000"
volumes: volumes:
- ./data:/data - ./data:/data
env_file:
- .env
environment: environment:
- TZ=America/Chicago - TZ=America/Chicago

4
requirements.txt
View File

@@ -1 +1,5 @@
flask==3.0.2 flask==3.0.2
python-dotenv==1.0.1
requests==2.31.0
apscheduler==3.10.4
urllib3==2.2.1

320
static/index.html
View File

@@ -1 +1,319 @@
<!DOCTYPE html><html><body>Replace this with full index.html from the assistant response.</body></html> <!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8" />
<title>UniFi Access Attendance</title>
<meta name="viewport" content="width=device-width, initial-scale=1.0" />
<style>
:root {
--bg: #050508;
--bg-card: #111113;
--gold: #d4af37;
--gold-soft: #b89630;
--text: #f5f5f5;
--muted: #888;
--danger: #ff4d4f;
--success: #2ecc71;
--border: #222;
}
* { box-sizing: border-box; margin: 0; padding: 0; }
body {
background: radial-gradient(circle at top, #18181c 0, #050508 55%);
color: var(--text);
font-family: system-ui, -apple-system, BlinkMacSystemFont, "Segoe UI", sans-serif;
min-height: 100vh;
display: flex;
justify-content: center;
padding: 32px 16px;
}
.app-shell {
width: 100%; max-width: 1200px;
background: rgba(5,5,8,0.96);
border-radius: 20px;
border: 1px solid rgba(212,175,55,0.3);
box-shadow: 0 32px 80px rgba(0,0,0,0.7);
padding: 24px 24px 32px;
}
header {
display: flex; justify-content: space-between;
align-items: center; margin-bottom: 20px; gap: 16px;
}
.title-block { display: flex; flex-direction: column; gap: 4px; }
h1 {
font-size: 1.6rem; letter-spacing: 0.08em;
text-transform: uppercase; color: var(--gold);
}
.subtitle { font-size: 0.9rem; color: var(--muted); }
.badge {
border-radius: 999px;
border: 1px solid rgba(212,175,55,0.5);
padding: 4px 10px; font-size: 0.75rem;
text-transform: uppercase; letter-spacing: 0.12em;
color: var(--gold-soft);
background: linear-gradient(90deg,rgba(212,175,55,0.1),rgba(212,175,55,0.02));
}
.controls {
display: flex; flex-wrap: wrap; gap: 12px;
margin-bottom: 18px; align-items: center;
justify-content: space-between;
}
.control-group { display: flex; flex-wrap: wrap; gap: 10px; align-items: center; }
label { font-size: 0.8rem; letter-spacing: 0.1em; text-transform: uppercase; color: var(--muted); }
input, select {
background: var(--bg-card); border-radius: 999px;
border: 1px solid var(--border);
padding: 8px 14px; font-size: 0.9rem; color: var(--text);
outline: none; min-width: 130px;
}
input:focus, select:focus {
border-color: var(--gold-soft);
box-shadow: 0 0 0 1px rgba(212,175,55,0.4);
}
button {
border-radius: 999px;
border: 1px solid rgba(212,175,55,0.7);
background: radial-gradient(circle at top,rgba(212,175,55,0.35),rgba(2,2,4,0.95));
color: var(--text); padding: 8px 18px;
font-size: 0.85rem; letter-spacing: 0.1em;
text-transform: uppercase; cursor: pointer;
transition: transform 0.08s, box-shadow 0.08s;
}
button:hover { transform: translateY(-1px); box-shadow: 0 8px 24px rgba(0,0,0,0.5); }
button:active { transform: translateY(1px); }
.sync-btn {
border-color: rgba(100,180,255,0.6);
background: radial-gradient(circle at top,rgba(100,180,255,0.18),rgba(2,2,4,0.95));
}
.summary-row {
display: flex; flex-wrap: wrap; gap: 12px;
margin-bottom: 16px; font-size: 0.85rem;
}
.summary-pill {
display: inline-flex; align-items: center; gap: 8px;
background: var(--bg-card); border-radius: 999px;
padding: 6px 14px; border: 1px solid var(--border);
color: var(--muted);
}
.dot { width: 9px; height: 9px; border-radius: 50%; }
.dot.on { background: var(--success); box-shadow: 0 0 10px rgba(46,204,113,0.7); }
.dot.off { background: var(--danger); box-shadow: 0 0 10px rgba(255,77,79,0.7); }
.dot.all { background: var(--gold-soft); box-shadow: 0 0 10px rgba(184,150,48,0.5); }
.table-card {
background: linear-gradient(135deg,rgba(17,17,19,0.98),rgba(8,8,10,0.98));
border-radius: 14px; border: 1px solid rgba(255,255,255,0.04);
overflow: hidden;
}
table { width: 100%; border-collapse: collapse; font-size: 0.9rem; }
thead {
background: radial-gradient(circle at top left,rgba(212,175,55,0.22),rgba(10,10,12,0.9));
}
th, td {
padding: 10px 16px; text-align: left;
border-bottom: 1px solid rgba(255,255,255,0.04);
white-space: nowrap;
}
th {
font-size: 0.78rem; text-transform: uppercase;
letter-spacing: 0.12em; color: var(--muted);
}
tbody tr:last-child td { border-bottom: none; }
tbody tr:hover { background: rgba(212,175,55,0.04); }
.name-cell { font-weight: 500; color: var(--text); }
.muted-cell { color: var(--muted); font-size: 0.82rem; }
.align-center { text-align: center; }
.status-chip {
display: inline-flex; align-items: center;
justify-content: center; min-width: 88px;
padding: 5px 12px; border-radius: 999px;
font-size: 0.78rem; font-weight: 600;
text-transform: uppercase; letter-spacing: 0.1em;
}
.status-on {
background: rgba(46,204,113,0.1); color: #c9f7dc;
border: 1px solid rgba(46,204,113,0.65);
box-shadow: 0 0 14px rgba(46,204,113,0.2);
}
.status-off {
background: rgba(255,77,79,0.1); color: #ffd6d7;
border: 1px solid rgba(255,77,79,0.75);
box-shadow: 0 0 14px rgba(255,77,79,0.2);
}
.chip-dot { width: 7px; height: 7px; border-radius: 50%; margin-right: 6px; background: currentColor; }
.empty-state {
padding: 28px 16px; text-align: center;
color: var(--muted); font-size: 0.9rem;
}
.empty-state span { color: var(--gold-soft); }
.toast {
position: fixed; bottom: 24px; right: 24px;
background: var(--bg-card); border: 1px solid rgba(212,175,55,0.5);
border-radius: 12px; padding: 12px 18px; font-size: 0.85rem;
color: var(--gold); opacity: 0; transform: translateY(12px);
transition: opacity 0.25s, transform 0.25s;
pointer-events: none; z-index: 99;
}
.toast.show { opacity: 1; transform: translateY(0); }
@media (max-width: 720px) {
header { flex-direction: column; align-items: flex-start; }
.controls { flex-direction: column; align-items: stretch; }
input, select, button { width: 100%; }
th:nth-child(3), td:nth-child(3),
th:nth-child(4), td:nth-child(4) { display: none; }
}
</style>
</head>
<body>
<div class="app-shell">
<header>
<div class="title-block">
<h1>Building Access</h1>
<div class="subtitle">Daily badge-in attendance — powered by UniFi Access</div>
</div>
<div class="badge">LIVE ATTENDANCE DASHBOARD</div>
</header>
<section class="controls">
<div class="control-group">
<label for="date">Date</label>
<input type="date" id="date" />
</div>
<div class="control-group">
<label for="cutoff">Badged in by</label>
<input type="time" id="cutoff" value="09:00" />
</div>
<div class="control-group">
<button id="refresh-btn">&#8635; Refresh</button>
<button class="sync-btn" id="sync-btn" title="Sync user list from UniFi Access API">&#8635; Sync Users</button>
</div>
</section>
<section class="summary-row">
<div class="summary-pill"><div class="dot on"></div><span id="on-time-count">0 on time</span></div>
<div class="summary-pill"><div class="dot off"></div><span id="late-count">0 late</span></div>
<div class="summary-pill"><div class="dot all"></div><span id="total-count">0 total</span></div>
</section>
<section class="table-card">
<table>
<thead>
<tr>
<th>#</th>
<th>Name</th>
<th>Badge Time</th>
<th>Actor ID</th>
<th class="align-center">Status</th>
</tr>
</thead>
<tbody id="table-body">
<tr><td colspan="5" class="empty-state">No data yet. <span>Badge into a door</span> and press Refresh.</td></tr>
</tbody>
</table>
</section>
</div>
<div class="toast" id="toast"></div>
<script>
function isoToday() {
return new Date().toISOString().slice(0, 10);
}
function showToast(msg, duration = 2800) {
const t = document.getElementById('toast');
t.textContent = msg;
t.classList.add('show');
setTimeout(() => t.classList.remove('show'), duration);
}
async function loadData() {
const date = document.getElementById('date').value || isoToday();
const cutoff = document.getElementById('cutoff').value || '09:00';
const params = new URLSearchParams({ date, cutoff });
let data = [];
try {
const res = await fetch('/api/first-badge-status?' + params.toString());
data = await res.json();
} catch (err) {
showToast('⚠ Could not load data');
return;
}
const tbody = document.getElementById('table-body');
tbody.innerHTML = '';
if (!data.length) {
tbody.innerHTML = '<tr><td colspan="5" class="empty-state">No badge-in records for this day.</td></tr>';
document.getElementById('on-time-count').textContent = '0 on time';
document.getElementById('late-count').textContent = '0 late';
document.getElementById('total-count').textContent = '0 total';
return;
}
let onTime = 0, late = 0;
data.forEach((row, i) => {
const tr = document.createElement('tr');
const numTd = document.createElement('td');
numTd.className = 'muted-cell';
numTd.textContent = i + 1;
tr.appendChild(numTd);
const nameTd = document.createElement('td');
nameTd.className = 'name-cell';
nameTd.textContent = row.actor_name || '(Unknown)';
tr.appendChild(nameTd);
const timeTd = document.createElement('td');
timeTd.textContent = row.badge_time || '';
tr.appendChild(timeTd);
const idTd = document.createElement('td');
idTd.className = 'muted-cell';
idTd.textContent = row.actor_id ? row.actor_id.slice(0, 8) + '…' : '';
tr.appendChild(idTd);
const statusTd = document.createElement('td');
statusTd.className = 'align-center';
const chip = document.createElement('div');
chip.className = 'status-chip ' + (row.on_time ? 'status-on' : 'status-off');
chip.innerHTML = '<span class="chip-dot"></span>' + (row.on_time ? 'ON TIME' : 'LATE');
statusTd.appendChild(chip);
tr.appendChild(statusTd);
tbody.appendChild(tr);
row.on_time ? onTime++ : late++;
});
document.getElementById('on-time-count').textContent = onTime + ' on time';
document.getElementById('late-count').textContent = late + ' late';
document.getElementById('total-count').textContent = (onTime + late) + ' total';
}
async function syncUsers() {
const btn = document.getElementById('sync-btn');
btn.textContent = '⏳ Syncing…';
btn.disabled = true;
try {
await fetch('/api/sync-users');
showToast('✔ User list synced from UniFi Access');
await loadData();
} catch {
showToast('⚠ Sync failed — check server logs');
} finally {
btn.textContent = '↻ Sync Users';
btn.disabled = false;
}
}
document.getElementById('refresh-btn').addEventListener('click', loadData);
document.getElementById('sync-btn').addEventListener('click', syncUsers);
window.addEventListener('load', () => {
const dateInput = document.getElementById('date');
if (!dateInput.value) dateInput.value = isoToday();
loadData();
});
</script>
</body>
</html>