@extends('layouts.admin') @section('title','Security operations') @section('heading','Security operations') @section('content')
Privacy-preserving rate-limit evidence and explicit session revocation.
| Account | Session label | Created | Last used | Revoke |
|---|---|---|---|---|
| {{ $session->tokenable?->name }} {{ $session->tokenable?->email }} · {{ $session->tokenable?->role }} | {{ $session->name }} | {{ $session->created_at?->format('d M Y H:i') }} | {{ $session->last_used_at?->format('d M Y H:i') ?: 'Never' }} | |
| No API sessions match. | ||||
| Account | Device | Platform | Last seen | Revoke |
|---|---|---|---|---|
| {{ $device->user?->name }} {{ $device->user?->email }} | {{ $device->device_name ?: 'Unnamed device' }} | {{ strtoupper($device->platform) }} | {{ $device->last_seen_at?->format('d M Y H:i') ?: 'Never' }} | |
| No active push devices. | ||||
Network and user-agent values are one-way HMAC hashes; plaintext identifiers are not retained.
| Endpoint | Account | Network fingerprint | Count | Last seen |
|---|---|---|---|---|
| {{ $event->method }} {{ $event->path }} {{ $event->route_name ?: 'unnamed route' }} | {{ $event->user?->email ?: 'Anonymous' }} | {{ substr($event->ip_hash,0,12) }}… | {{ $event->occurrences }} | {{ $event->last_seen_at->format('d M Y H:i:s') }} |
| No throttled requests in this window. | ||||