$ panelica license activate PNLC-XXXX-XXXX-XXXX

The Tools → License page has several sections:

• License Status Card — Shows your plan name, current status badge (Active, Expired, Suspended, Grace Period, Invalid), license key (masked), and expiration date. Actions: Change Key, Sync Now, Deactivate.
• Sync Status Card — Shows the last sync time, connection status, failed attempt count, and any error messages. The panel syncs with the license server at a regular interval (default every 6 hours).
• Heartbeat Monitor — An interactive chart showing the history of license sync responses. Displays success rate (%), average response time (ms), and countdown to the next heartbeat. Green markers = success, red markers = failure.
• Features Section — Collapsible list of all enabled features grouped by category. Shows a badge with the total enabled feature count.
• Resource Limits — Collapsible grid showing plan limits (e.g., max domains, max users, max databases). Unlimited values show an infinity icon.
• Server Information — Displays the server hardware fingerprint and the central server URL.

$ panelica license status       # Show current license status
$ panelica license activate KEY  # Activate a license
$ panelica license deactivate    # Release license from this server
$ panelica license features      # List available features

Navigate to Users → All Users. The page shows four statistic cards at the top: Total Users, Active Users, Suspended Users, and Resellers.

Two display modes are available:

• Tree View (default) — Hierarchical view showing who created whom. ROOT → ADMINs → RESELLERs → USERs. Expand/collapse branches.
• Table View — Traditional sortable table with columns: Username, Full Name, Email, Role, Plan, Status, System Username, Created Date.

Use the search box to filter by username, full name, or email. Filter by role (ROOT, ADMIN, RESELLER, USER).

$ panelica users create --username=johndoe --email=[email protected] --password=SecurePass123 --role=user --plan=starter

Each user row in the list has action buttons:

• Login as User — Impersonate the user to see their panel view (ROOT/ADMIN only). Opens their dashboard in a new session.
• Edit — Opens the edit form to change username, email, role, plan, IP addresses
• Suspend / Unsuspend — Temporarily disable a user (sites stay on disk but become unreachable). Toggle button changes based on current status.
• Delete — Remove the user and all associated data (domains, databases, emails). Requires confirmation.

Select multiple users with checkboxes. A selection bar appears showing the count:

• Bulk Suspend — Suspend all selected users at once
• Bulk Unsuspend — Reactivate all selected users
• Bulk Delete — Delete all selected users (requires typing confirmation text)
• Delete All Users — ROOT only. Removes every user from the server (destructive, requires typed confirmation)

Navigate to Hosting Management → Users → Page Permissions. This is a 2-panel enterprise layout for managing page-level and feature-level RBAC.

Header Controls:

Control	Description
Role Selector	Button group to switch between ADMIN, RESELLER, and USER. ROOT has full access and cannot be edited.
Search	Real-time search across page names, codes, and route paths
Reset Role	Reset permissions for the selected role to defaults (with confirmation)
Reset All	Reset all roles' permissions to defaults (with confirmation)

Left Panel — Page Navigation Tree:

Pages are organized into 10 collapsible categories:

Category	Icon	Examples
Dashboard	ri-dashboard-2-line	Dashboard
Domains	ri-global-line	Domain List, Create Domain, DNS, SSL, Subdomains, Redirects, CloudFlare
Users	ri-user-line	User List, Create User
Plans	ri-archive-line	Plan List, Create Plan
Databases	ri-database-2-line	MySQL, DB Users, Remote MySQL
Files	ri-folder-line	File Manager, FTP, Disk Usage
Backup	ri-save-line	Backup Manager, Snapshots, Schedules, Migration, Remote Storage
Tools	ri-tools-line	Panel Settings, PHP, Cron Jobs, Package Manager, Server Info
Security	ri-shield-keyhole-line	Antivirus, WAF, Firewall, AppArmor, Advisor
Monitoring	ri-line-chart-line	Panelica Monitor, Resource Usage, Processes, Logs, Bandwidth

Each category header shows a status dot: green = all pages allowed, red = all denied, yellow = mixed. Click a category to expand and see individual pages.

Each page row shows: status dot (allowed/denied), page name, and feature count badge (if the page has sub-features).

Right Panel — Permission Details:

Select a page from the left panel to see its details. The header shows the page name, route path, and a three-way access control:

State	Button	Meaning
Allow	Allow	Explicitly grant access to this page for the selected role
Deny	Deny	Explicitly deny access to this page for the selected role
Inherit	Default	Use the role's default permission (shown as a sub-badge)

All changes auto-save immediately when you click a permission button — no save button needed.

Below the page access control, the right panel shows granular feature permissions for the selected page. Features are grouped by category:

Feature Group	Icon	Example Features
General	ri-settings-3-line	view, edit, delete, suspend, unsuspend
Web Server	ri-server-line	mode switch, nginx config, apache config, vhost edit
PHP Settings	ri-code-s-slash-line	version change, resource limits, FPM settings, INI editor
SSL	ri-lock-line	view status, HTTPS settings, Let's Encrypt, custom upload, renew
DNS	ri-earth-line	view, create, edit, delete records, import/export zones
Subdomains	ri-folder-3-line	view, create, edit, delete, suspend
ModSecurity	ri-shield-line	toggle, settings, rules, custom rules, IP blocking, headers
Cron Jobs	ri-time-line	view, create, edit, delete, execute, toggle, logs
Bulk Actions	ri-stack-line	bulk select, bulk execute, bulk enable/disable, bulk delete
Templates	ri-file-copy-line	view templates, use templates
Execution Logs	ri-file-list-3-line	view logs, filter logs

Each feature has the same Allow / Deny / Inherit three-way toggle. Additional indicators:

• Danger — Dangerous operations (delete, bulk actions, root-level, system-level). Restricted to ROOT by default.
• Pro — Features that require a specific hosting plan to be available.

Feature Bulk Actions (per page):

• Allow All — Grant access to all features on the selected page
• Deny All — Deny access to all features on the selected page
• Reset to Defaults — Revert all features to their default permissions

Stats Footer: At the bottom, a summary bar shows: total pages, total features, implemented features, and the currently selected role.

Panelica provides predefined plan templates to get started quickly:

Navigate to Hosting Management → Domains to see all domains on the server. The page title shows All Domains with the total count.

Table columns:

Controls:

• Search — Real-time search box that filters domains by name
• Show per page — Choose 10, 20, 30, 50, or 100 results per page (default: 30)
• Sort — Click column headers (Domain, Disk Usage, Bandwidth) to toggle sort direction
• Add Domain button — Opens the domain creation form

Action buttons per domain:

You can change a domain's PHP version or web server mode directly from the domain list without opening the edit page:

The same inline dropdown is available for the Web Server column, letting you switch between Nginx + Apache (reverse proxy) and Nginx Only modes instantly.

ROOT users see a checkbox column on the left side of the table. Select multiple domains using the checkboxes (or the "select all" checkbox in the header), then use the red action bar that appears at the top:

• Delete Selected — Permanently removes all selected domains
• Clear Selection — Deselects all domains

# CLI equivalent
$ panelica domains create --domain=example.com --user=johndoe --php=8.3 --ssl=auto

# Domain directory layout
/home/username/example.com/
├── public_html/        # Document root (web accessible)
├── logs/               # Access and error logs
├── tmp/                # PHP temp directory
├── .system/            # System configs (vhost, PHP pool, etc.)
│   └── conf/
│       ├── nginx.conf
│       ├── apache.conf
│       └── php-fpm.conf
└── backup/             # Domain backups

Click on any domain row or the Edit Settings () button to open the domain edit page. The edit page has 7 tabs:

Tab	Icon	Description
General		Domain info, maintenance mode, cron jobs, quick actions
Web Server		Nginx/Apache mode, custom configs, vhost editors
PHP Settings		PHP version, resource limits, FPM pool, php.ini editor
SSL		Certificate status, HTTPS settings, Let's Encrypt, custom cert
DNS		DNS zone records (A, AAAA, CNAME, MX, TXT, NS)
Subdomains		Subdomain list, create, redirect
Security		ModSecurity WAF, rule sets, IP blocking, headers (Apache mode only)

General Tab

Domain Information:

Field	Description
IP Address	Assign a server IP to the domain (dropdown selector)
Document Root	Web root path (must be within user home directory)

Maintenance Mode: Toggle maintenance mode on/off. When enabled, visitors see a maintenance page. Status shown as Maintenance or Live.

Domain Cron Jobs: View, create, edit, and delete cron jobs associated with this domain. Shows plan-based limits. Each job displays command, schedule, and execution logs.

Quick Actions:

• Visit Site — Open the domain in a new browser tab
• Clear Cache — Clear Nginx/Apache cache for this domain
• Restart Services — Restart PHP-FPM and web server for this domain
• Suspend Domain — Temporarily disable the domain
• Delete Domain — Permanently remove with confirmation modal

Web Server Tab

Web Server Mode: Switch between two modes:

Mode	Description
Nginx Only	Faster performance, serves all content directly via Nginx
Nginx + Apache	Nginx as reverse proxy, Apache as backend. Required for ModSecurity WAF and .htaccess support

Nginx Custom Configuration: Add custom Nginx directives (e.g., rewrite rules, proxy settings) via a code editor. Saved as nginx_custom.conf.

Apache Custom Configuration: Add custom Apache directives (only visible in Nginx + Apache mode). Saved as apache_custom.conf.

Vhost Editors (ROOT only): View and edit the raw Nginx vhost and Apache vhost configuration files directly. Changes take effect after save.

PHP Settings Tab

PHP Version Selector: Choose from available PHP versions (e.g., 8.1, 8.2, 8.3, 8.4). The PHP-FPM pool is recreated automatically. A View phpinfo.php button opens the PHP info page.

Resource Limits:

Setting	Description
Max Execution Time	Maximum script execution time in seconds
Memory Limit	Maximum memory per PHP process (MB/GB)
Upload Max Size	Maximum upload file size (MB/GB)
Post Max Size	Maximum POST data size (MB/GB)

PHP-FPM Pool Settings:

Setting	Description
Pool Name	Pool identifier (read-only)
Min Spare Servers	Minimum idle worker processes
Max Spare Servers	Maximum idle worker processes
Max Children	Maximum concurrent PHP processes
Request Terminate Timeout	Timeout in seconds to kill a slow request

PHP.ini Editor: Add custom PHP directives in key-value format. Directives are applied to this domain's PHP-FPM pool only.

SSL Tab

Certificate Status: Shows current certificate information — issuer (Let's Encrypt / Custom / Self-Signed), issued date, expiry date, days remaining, subject, and SANs (Subject Alternative Names).

HTTPS Settings:

Setting	Description
Force HTTPS	Redirect all HTTP requests to HTTPS
HSTS Enabled	Enable HTTP Strict Transport Security header
HSTS Max Age	HSTS cache duration in seconds
Auto Renew	Automatically renew certificate before expiry

Let's Encrypt: Renew or Reissue the certificate with one click. Shows expiry countdown.

Custom Certificate Upload: Upload your own certificate, private key, and CA bundle files.

DNS Tab

Manage DNS zone records for this domain. Records table columns:

Column	Description
Type	A AAAA CNAME MX TXT NS
Name	Record name (@ for root domain)
Content	Record value (IP address, hostname, text)
TTL	Time to live in seconds (default: 3600)
Priority	Priority value (MX records only)
Status	Active / Disabled
Actions	Edit, Delete

Click Add Record to create a new DNS record. Select the record type, enter the name, content, TTL, and priority (for MX).

Subdomains Tab

Manage subdomains within the edit domain page. Each subdomain shows: full name, document root, status, and creation date.

Create Subdomain: Enter the subdomain name (prefix), optionally specify a document root or redirect URL. The full path is calculated automatically (e.g., /home/user/example.com/subdomain/).

Actions: Edit (redirect URL), Visit (open in browser), Suspend/Activate, Delete.

Security Tab (Apache Mode Only)

ModSecurity WAF: Enable or disable the Web Application Firewall for this domain. When enabled:

Setting	Description
Mode	DetectionOnly (log only) or On (active protection — blocks attacks)
Paranoia Level	Level 1 (low) to Level 4 (high) — higher levels catch more but may cause false positives
Inbound Threshold	Anomaly score threshold for incoming requests (1-100)
Outbound Threshold	Anomaly score threshold for outgoing responses (1-100)
Audit Log	Enable domain-specific audit logging

Rule Sets: Toggle individual security rule sets on/off:

• OWASP Core Rule Set (CRS) — 150 rules, core web attack protection
• SQL Injection Protection — 42 rules
• XSS Protection — 38 rules
• WordPress Security Rules — 28 rules
• File Upload Restrictions — 15 rules
• Directory Traversal Protection — 12 rules

Custom Rules: Add custom ModSecurity rules in the code editor (expert users only). Syntax errors can break web access.

IP Access Control: Block specific IP addresses from accessing this domain. Add IPs one by one; each blocked IP appears as a badge with a remove button.

HTTP Security Headers:

Header	Value	Description
X-Frame-Options	DENY / SAMEORIGIN	Prevents clickjacking attacks
X-Content-Type-Options	nosniff	Prevents MIME type sniffing
X-XSS-Protection	1; mode=block	Browser XSS filter
HSTS	Toggle	HTTP Strict Transport Security

Navigate to Hosting Management → Subdomains. The page uses a two-panel layout:

• Left panel (25%) — Domain list with search. Click a domain to select it. A badge shows the subdomain count for each domain.
• Right panel (75%) — Subdomain management area for the selected domain.

Use the search box at the top of the left panel to filter domains by name. The domain count is shown below the search box. A refresh button in the panel header reloads the domain list.

After selecting a domain, the right panel displays a table with the following columns:

A summary footer shows the total number of subdomains, active count, and SSL-enabled count.

Click the Create button in the right panel toolbar. A modal dialog opens with the following fields:

$ panelica subdomains create --domain=example.com --subdomain=blog

Navigate to Hosting Management → DNS. The page uses a two-panel layout:

• Left panel (25%) — Searchable domain list. Click a domain to load its DNS zone.
• Right panel (75%) — DNS record table with search, inline editing, and an Add Record drawer.

The zone header shows the zone name and provides Validate and Reload action buttons.

The record table displays all DNS records for the selected domain with these columns:

A search bar above the table filters records by name, type, or value in real-time.

Click the Add Record button to open a slide-in form from the right side. Fill in the fields:

$ panelica dns list --domain=example.com
$ panelica dns add --domain=example.com --type=A --name=@ --value=1.2.3.4 --ttl=3600
$ panelica dns delete --domain=example.com --id=5

Below the Add Record form, Panelica provides quick templates that pre-fill common configurations:

Click a template button to auto-fill the form, then adjust the value field and submit.

Navigate to Hosting Management → SSL Certificates. The page uses a two-panel layout:

• Left panel (25%) — Searchable domain list. Each domain shows an SSL status indicator (green badge with provider name if enabled, grey if disabled).
• Right panel (75%) — SSL certificate details, HTTPS settings, and upload/renew actions for the selected domain.

After selecting a domain, the right panel shows the certificate status card with:

• Certificate validity — Valid/Invalid indicator
• Issuer — Certificate authority name (e.g., Let's Encrypt, Self-Signed)
• Expiry date — When the certificate expires
• Days until expiry — Color-coded countdown (green = safe, yellow = expiring soon, red = expired)
• SAN list — Subject Alternative Names covered by the certificate
• Provider — Let's Encrypt, Self-Signed, or Custom

For domains with an existing Let's Encrypt certificate, the panel shows a status section with two action buttons:

• Renew Certificate — Renews the current certificate before it expires
• Reissue Certificate — Requests a fresh certificate (useful if domain names changed)

$ panelica ssl issue --domain=example.com
$ panelica ssl renew --domain=example.com
$ panelica ssl status --domain=example.com

To upload your own certificate, use the upload form in the right panel:

Click Upload to install the certificate. Panelica validates the certificate and key match before applying.

Below the certificate details, configure HTTPS behavior with these toggles:

Navigate to Hosting Management → Redirects. The page uses a two-panel layout:

• Left panel (25%) — Searchable domain list. Each domain shows a badge with the total and active redirect counts.
• Right panel (75%) — Redirect table and management for the selected domain.

After selecting a domain, the right panel shows all configured redirects in a table:

Click the Add Redirect button to open a modal dialog with these fields:

The same modal is used for editing existing redirects — click the Edit button in the Actions column to modify a redirect.

$ panelica redirects create --domain=example.com --source=/old-page --target=https://example.com/new-page --type=301
$ panelica redirects list --domain=example.com
$ panelica redirects delete --domain=example.com --id=5

Navigate to Tools → PHP Settings. The page shows four statistics cards at the top:

Below the cards, a control bar lets you change the default PHP version from a dropdown and access the Bulk Change button. The main content area has three tabs: PHP Versions, Extensions, and Configuration.

The PHP Versions tab shows a table for each installed version with these columns:

Action buttons per version:

• PHPInfo — Opens /tools/phpinfo/{version}/ in a new tab showing full PHP configuration
• Edit Configuration — Opens a modal with Form Editor and Text Editor modes to modify php.ini settings
• Manage Extensions — Switches to the Extensions tab with this version pre-selected
• Reload FPM — Gracefully reloads the PHP-FPM service (no downtime)
• Restart FPM — Full restart of the PHP-FPM service

Select a PHP version from the dropdown to view and manage its extensions. The extensions table shows:

To install a new extension not in the list, click the Install Extension button. This opens a terminal interface where you can install extensions via PECL.

$ panelica php extensions --version=8.3
$ panelica php install-extension --version=8.3 --extension=redis

Select a PHP version to view and edit its server-wide php.ini configuration. The page shows 4 key settings at a glance (memory_limit, max_execution_time, upload_max_filesize, post_max_size) and the total settings count with last-modified date.

Click Edit Configuration to open the config editor modal with two modes:

• Form Editor — Each modifiable setting is shown as a labeled input field with its current value and category badge
• Text Editor — Full text editor with monospace font for advanced editing. Non-modifiable settings are ignored.

Click the Bulk Change button in the control bar to migrate multiple domains between PHP versions at once:

$ panelica php switch --domain=example.com --version=8.4

# Per-user PHP-FPM structure
/opt/panelica/etc/php-fpm-users/{username}/
├── php-fpm.conf               # Main config
└── pool.d/
    ├── {username}_{domain1}.conf  # Pool for domain1
    └── {username}_{domain2}.conf  # Pool for domain2

# Each pool runs as the system user
# Socket: /opt/panelica/var/run/php-{version}-{username}_{domain}.sock

# Default disabled functions (per-domain pool)
exec, passthru, shell_exec, system, proc_open, popen,
curl_exec, curl_multi_exec, parse_ini_file, show_source

Navigate to Databases → MySQL Databases. The page displays four statistics cards at the top:

Below the cards, a phpMyAdmin button opens the web-based database management tool with single sign-on (SSO). The MySQL server status and uptime are also displayed.

The main table lists all MySQL databases with these columns:

Controls: A domain filter dropdown (All Domains, System Only, or specific domains), a search box, and the Create New MySQL Database button.

Action buttons per database:

• Connection Info — Opens a wizard showing connection strings for WordPress, Laravel, Django, Node.js, and PHP PDO with copy/download options
• Backup — Creates and downloads a database backup (.sql dump)
• Optimize — Optimizes all tables in the database (reclaims unused space)
• Repair — Repairs corrupted tables in the database
• phpMyAdmin — Opens phpMyAdmin in a new tab with SSO for this database
• Delete — Permanently deletes the database (destructive confirmation required)

Click Create New MySQL Database to open the creation modal:

Charset is automatically set to utf8mb4_unicode_ci.

$ panelica db create --name=myapp --user=johndoe
$ panelica db create-user --database=johndoe_myapp --dbuser=johndoe_admin --password=SecurePass

Click the Connection Info button on any database to open the connection wizard. It generates ready-to-use configuration code for 5 frameworks:

• WordPress — wp-config.php database constants
• Laravel — .env file database variables
• Django — settings.py DATABASES dictionary
• Node.js — mysql2 connection configuration
• PHP PDO — PDO connection code

Each code block includes Copy to Clipboard and Download File buttons.

A side panel on the right shows MySQL server details: version, type, platform, uptime, socket path, port, max connections, active connections, data directory, default charset, and total database/table counts.

Navigate to Databases → Database Users. Four statistics cards are shown at the top:

The main table displays all MySQL users with a search box and user/database count badges:

Click Create MySQL User to open the creation modal:

$ panelica db create-user --dbuser=johndoe_admin --password=SecurePass123
$ panelica db list-users
$ panelica db delete-user --dbuser=johndoe_admin

Click the Manage Privileges button to open the privilege editor. Four quick-apply templates are available:

Individual privileges are organized in three categories:

• Data — SELECT, INSERT, UPDATE, DELETE
• Structure — CREATE, ALTER, DROP, INDEX, CREATE TEMPORARY TABLES, LOCK TABLES
• Administration — EXECUTE, CREATE VIEW, SHOW VIEW, CREATE ROUTINE, ALTER ROUTINE, EVENT, TRIGGER

Click the Change Password button next to a user. The modal provides an Auto-generate Strong Password button that creates a 16-character password with special characters. A password strength indicator (Weak/Medium/Strong) with a color-coded progress bar helps you assess password quality.

Navigate to Databases → Remote MySQL. Four statistics cards are shown at the top:

The main table lists all configured remote access hosts:

Click Add Host to open the creation modal:

Wildcard examples:

• 192.168.1.100 — Specific IP address
• 192.168.1.% — All IPs in a subnet
• %.example.com — All subdomains of a hostname
• % — Any host (not recommended for security)

$ panelica db remote-add --ip=203.0.113.10 --database=johndoe_myapp
$ panelica db remote-list
$ panelica db remote-remove --ip=203.0.113.10

# Remote MySQL connection
Host: your-server-ip
Port: 3306
Database: username_dbname
User: username_dbuser
Password: your-password

Navigate to Mail → Email Accounts to manage email addresses on your domains.

Creating an email account:

Click Create Account to open the creation modal with the following fields:

$ panelica email create --account=[email protected] --password=SecurePass --quota=1024

Mail client configuration: Click the Configuration button on any account to view IMAP/POP3/SMTP server settings, ports, and encryption details for setting up email clients (Outlook, Thunderbird, etc.).

Navigate to Mail → Email Forwarders to route emails from one address to multiple destinations.

Click Create Forwarder to open the creation modal:

$ panelica email forwarder create --source=[email protected] --dest=[email protected] --keep-copy
$ panelica email forwarder list
$ panelica email forwarder delete --id=5

Navigate to Mail → Autoresponders to set up automatic out-of-office or vacation replies.

Click Create Autoresponder to configure:

$ panelica email autoresponder create --account=[email protected] --subject="Out of Office" --message="I am currently away."
$ panelica email autoresponder list

Configure spam protection at Mail → Spam Filters:

• Account Settings — Enable/disable spam filtering per account with adjustable threshold (1-10 score)
• Blacklist — Block specific emails, domains, or wildcard patterns (e.g., *@spam-domain.com)
• Whitelist — Always allow emails from trusted senders/domains

Threshold guide: 1-3 = Aggressive, 4-5 = Balanced (recommended), 6-8 = Lenient, 9+ = Very lenient.

$ panelica email spam blacklist-add --pattern=*@spam-domain.com
$ panelica email spam whitelist-add --pattern=[email protected]
$ panelica email spam set-threshold --account=[email protected] --score=5

Create distribution lists at Mail → Mailing Lists:

$ panelica email mailing-list create --name=team --domain=example.com
$ panelica email mailing-list add-member --list=[email protected] --email=[email protected]
$ panelica email mailing-list list

View and verify email routing configuration at Mail → Email Routing:

• MX Records tab — Shows all MX records across domains with priority and host. Use the Verify button to check DNS propagation via Google DNS.
• Forwarders tab — Quick overview of all active email forwarders

Navigate to Security → Firewall Rules. Panelica uses UFW with iptables fallback. Four statistics cards at the top:

Card	Description
Total Rules	Total firewall rules with active count badge
Firewall Status	Firewall type (UFW/iptables) and current status
Direction Split	Inbound vs. Outbound rule counts
Active Status	Active vs. Inactive rules with a progress bar

The main table shows all firewall rules (all columns sortable):

Column	Description
Description	Rule description with creator username
Direction	Inbound or Outbound
Protocol	TCP, UDP, ICMP, or ANY
Source IP	Source address or CIDR (e.g., 0.0.0.0/0)
Destination IP	Destination address or CIDR
Port	Port number or * for all ports
Action	Allow, Deny, or Reject
Status	Active or Inactive
Actions	Enable/Disable toggle, Delete

Click Add New Rule to open the creation modal:

Field	Type	Options	Default
Direction	Select	Inbound, Outbound	Inbound
Protocol	Select	TCP, UDP, ICMP, Any	TCP
Action	Select	Allow, Deny, Reject	Allow
Port	Number	1–65535 (empty = all)	—
Source IP/CIDR	Text	IP or CIDR notation	—
Destination IP/CIDR	Text	IP or CIDR notation	—
Description	Textarea	Free text	—

One-click buttons to quickly create common firewall rules:

• Block All Incoming Traffic — Blocks all inbound traffic (requires confirmation)
• Allow SSH (22) — Opens SSH port
• Allow HTTP/HTTPS (80/443) — Opens web server ports
• Allow MySQL (3306) — Opens MySQL port
• Allow FTP (21) — Opens FTP port

Navigate to Security → IP Blocking. Summary cards at the top show: Total Blocked IPs (permanent count badge), Whitelist Count, Temporary/Auto Blocks, and Today’s Activity. Quick action buttons: Block IP, Add to Whitelist, Bulk Import, Export List, and Refresh. The page has 6 tabs.

All manually and automatically blocked IP addresses. Search field filters by IP or reason. Pagination at 10 items per page.

Column	Description
IP Address	Single IP or CIDR notation (e.g., 192.168.1.0/24)
Reason	Block reason (spam, bruteforce, malicious, ddos, suspicious, policy, manual)
Block Type	Automatic or Manual
Blocked Date	Localized timestamp
Expires At	Date if temporary, Permanent badge if permanent
Location	Country flag + location name
Actions	Unblock button

Block IP Modal:

Field	Type	Description
IP Address *	Text	IPv4 address or CIDR to block (inline validation)
Block Reason *	Select	7 options: spam, bruteforce, malicious, ddos, suspicious, policy, manual
Block Type *	Select	Permanent or Temporary
Duration Hours	Number	Duration for temporary blocks (min 1, disabled if permanent)
Notes	Textarea	Optional additional information

Preset Block Rules (collapsible section with 8 one-click presets):

Preset	Duration	Description
SSH Brute Force	24 hours	SSH brute force attacks
FTP Attack	12 hours	FTP service attacks
Panel Attack	1 hour	Panel login attacks
SMTP Spam	Permanent	Mail server spam
DDoS Attack	Permanent	DDoS attacks
SQL Injection	Permanent	SQL injection attempts
XSS Attack	24 hours	XSS attacks
Port Scanning	12 hours	Port scanning activity

Click a preset, enter the IP address in the prefilled modal, and confirm to block.

Bulk Import: Open the Import modal, paste IP addresses (one per line), the system shows a “Total IPs detected” counter, then click Import to block all.

Trusted IPs that can never be blocked. Essential to prevent locking yourself out. Supports CIDR notation.

Column	Description
IP Address	IP or CIDR, highlighted in green
Description	User-provided description
Added Date	Localized timestamp
Added By	Username who added the entry
Actions	Delete button

Add Whitelist Modal: IP Address (text, required, IPv4/CIDR validation) and Description (text, required). Use cases: office IPs, your own IP, trusted API services, monitoring services.

Time-limited blocks with automatic expiration countdown.

Column	Description
IP Address	Blocked IP
Remaining Time	Human-readable countdown badge (e.g., “2h 30m”)
Reason	Block reason text
Actions	Remove (early release) button

Temporary blocks are automatically removed when the countdown expires. Click Remove to unblock early.

Failed SSH and panel login attempts with quick block/whitelist actions.

Column	Description
IP Address	Bold/semibold text
Username	Attempted login username
Last Attempt	Localized timestamp
Total Attempts	Color-coded badge: 1–4, 5–9, 10+
Country	Flag icon + country name
User Agent	Browser/client info (truncated)
Actions	Block (danger) and Whitelist (success) buttons

Rows with 5+ attempts are highlighted with a red background. Click Block to immediately add the IP to the blocked list, or Whitelist to mark it as trusted.

Summary cards at the top: Active Jails, Total Banned, Current Failed, and All Time Banned. Action buttons: Sync fail2ban to database and Refresh.

Each jail is shown as an expandable card with the jail name, status badge (Enabled / Disabled), and quick stats (currently banned, currently failed, total banned). Click to expand and see 3 sub-tabs:

Sub-tab: Banned IPs — Shows all currently banned IPs as tag badges. Click the × on a badge to unban a specific IP.

Sub-tab: Config

Setting	Type	Description
Ban Time	Number (seconds)	How long an IP stays banned. Shows human-readable format (e.g., “1d 2h”). Min: 60s.
Find Time	Number (seconds)	Window for counting failed attempts. Min: 60s.
Max Retry	Number	Failed attempts before banning. Min: 1.
Log Path	Read-only	Monitored log file path (code snippet)

Click Save Config to apply or Reload Jail to restart the jail.

Sub-tab: Filter Regex

• Fail Regex — Patterns that match failed attempts. Dynamic list — add or remove regex entries. Each entry is a monospace text input.
• Ignore Regex — Patterns to exclude from fail regex. Same dynamic management.

Click Save & Reload to apply regex changes immediately.

Real-time SSH authentication logs. Filter by type: All, Failed only, or Accepted only. Scrollable table (max 600px height, sticky header).

Column	Description
Timestamp	Formatted date/time
Type	Accepted, Failed / Invalid, or Other
Username	Bold font SSH username
IP Address	Code snippet format
Port	Port number
Service	Service name (typically “ssh”)
Actions	Block button for failed/invalid entries (prefills Block IP modal with IP and reason)

Failed/invalid rows are highlighted red, accepted rows are highlighted green. Click Block on any failed entry to immediately open the Block IP modal with the IP and reason pre-filled.

$ panelica firewall list
$ panelica firewall add --direction=in --protocol=tcp --port=443 --action=allow
$ panelica firewall delete --id=5
$ panelica ipblock list
$ panelica ipblock add --ip=1.2.3.4 --reason="bruteforce" --type=permanent
$ panelica ipblock whitelist --ip=10.0.0.1
$ panelica fail2ban status
$ panelica fail2ban unban --jail=sshd --ip=1.2.3.4

Navigate to Security → ModSecurity. 4 dashboard cards: Total Blocked Attacks, Logged Events, False Positives, WAF Status ("Per Domain"). The page has 5 tabs:

Tab 1: CRS Rules

OWASP Core Rule Set management. Header shows CRS version and status badge.

Configuration Cards (2 columns):

Setting	Type	Description
Paranoia Level	Slider (1–4)	Minimum / Normal / High / Maximum sensitivity. Per-domain configuration.
Inbound Threshold	Slider (1–10)	Block requests when anomaly score exceeds this value
Outbound Threshold	Slider (1–10)	Block responses when anomaly score exceeds this value

CRS Rulesets Table:

Column	Description
Ruleset	Name and ID
Description	What the ruleset protects against
Version	Version badge
Rule Count	Number of rules in set
Status	Toggle on/off switch
Actions	View Details, Configure, Export Rules

Tab 2: Custom Rules

Create and manage custom ModSecurity rules. Add New Rule, Export Rules, Import Rules buttons at top.

Column	Description
Rule ID	Unique ID with category badge
Description	What the rule does
Pattern	Regex pattern (truncated)
Action	Block / Log / Allow / Deny badge
Severity	Critical / Error / Warning / Notice (color-coded)
Status	Toggle on/off
Last Triggered	Timestamp or "Never"
Trigger Count	How many times fired
Actions	Edit, Delete

Rule Creation Modal: Rule ID, Description, Type (SecRule/SecAction/SecDefaultAction), Pattern (regex), Action (block/log/allow/deny), Severity, and Category (custom/owasp/system).

Tab 3: Whitelist

Exclude trusted sources from WAF inspection. 4 whitelist types:

• IP — Whitelist specific IP addresses (supports bulk import)
• URL — Whitelist URL paths (useful for admin pages or API endpoints)
• User-Agent — Whitelist specific user agents (e.g., monitoring bots)
• Parameter — Whitelist form parameters to reduce false positives

Each entry includes: Type badge, Value, Description, Status toggle, Rule Exclusions count (skip specific rules for this entry), and Edit/Delete actions.

Tab 4: Logs

Filters: Search by request URI/IP/user-agent, Action dropdown (All/Blocked/Logged/Passed), Severity dropdown (All/Critical/Error/Warning/Notice), Date range picker.

Column	Description
Timestamp	Sortable date/time
Request URI	URL path (clickable for details)
Attack Type	Badge: SQLi, XSS, RFI, LFI, RCE, etc.
Source IP	Country flag + IP address
User Agent	Browser/client info (truncated)
Action	Blocked / Logged / Passed
Rule ID	ModSecurity rule link
Severity	Color-coded: Critical / Error / Warning / Notice
Country	Flag emoji
Anomaly Score	Numeric score

Expandable row details show: full request details, response info, triggered rule details, and matched attack signatures. Paginated at 50 items per page.

Attack Statistics Charts: Pie chart (attack type distribution), Time series (blocked vs logged trends), Bar chart (top attacking IPs with countries), and Geographic distribution map.

Tab 5: Configuration

Setting	Type	Default
Engine Status	On/Off toggle	On
Request Body Access	Toggle	On
Response Body Access	Toggle	Off
Debug Log Level	Dropdown (0–9)	3
Audit Log Enabled	Toggle	On
Audit Log Level	Off / On / RelevantOnly / Full	RelevantOnly
Request Body Limit	Number (bytes)	13 MB
Response Body Limit	Number (bytes)	512 KB
Anomaly Scoring	Toggle	On
Rate Limit Enabled	Toggle	Off
Rate Limit Requests	Number per window	100
Rate Limit Window	Seconds	60

Actions: Save Configuration, Reload Config (with warning), Reset to Defaults.

Navigate to Security → Antivirus. The right sidebar shows status cards: Daemon Status (live indicator), Service Status, Last Scan time/type, Threats Found, and Boot Status. The page has 5 tabs:

Tab 1: Dashboard

Scan Options (3 interactive cards):

• Quick Scan — Scans critical system areas
• Full Scan — Deep scan of all user directories
• Custom Scan — Specify a custom path. Quick-select buttons for /home, /tmp, /var/www, /opt

Real-Time Protection Toggle: Enable/disable real-time file monitoring with status display showing monitored file count and last blocked threat.

Live Scan Progress (while scanning):

Metric	Description
Files Scanned	Numeric counter
Directories Scanned	Numeric counter
Data Scanned	In MB
Threats Found	Counter (danger badge)
Errors	Error count
Worker Threads	Active threads
Scan Type & Path	Current scan info
Started At	Timestamp

Click Cancel to abort the scan at any time.

Tab 2: Scan History

Column	Description
Type	Quick / Full / Custom scan type
Started	Date and time
Duration	In minutes/seconds
Files	Total files scanned
Threats	Count of threats found
Status	Running / Completed / Failed
Actions	View Details (complete scan report with file breakdown)

Paginated at 10 items per page.

Tab 3: Quarantine

Filter by status: All / Active / Deleted / Restored.

Column	Description
File Name	Full file path
Threat	Detected malware/threat name
Severity	Critical / High / Medium / Low
Status	Quarantined / Restored / Deleted
Size	File size
Date	Quarantine date
Actions	View Content (first 500 bytes), Restore, Delete permanently

Bulk action: Dismiss All Threats. Quarantined files are stored at /opt/panelica/var/quarantine/.

Tab 4: Definitions

Virus signature database information displayed in 4 cards: Total Signatures, Main Version, Daily Version, and Bytecode Version. Shows database size progress bar, last update timestamp, and update status.

Update Frequency: Select from Real-time / Hourly / Daily / Weekly. Click Update Now to manually trigger a definitions update.

Tab 5: Settings

Scan Settings:

Setting	Type	Options
Scan Sensitivity	Dropdown	Low / Medium / High / Maximum
Action on Threat	Dropdown	Quarantine / Delete / Ignore / Report Only
Max Threads	Number (1–16)	Parallel scan workers
Max File Size	Number (MB, 1–1000)	Skip files larger than this
Scan Archives	Toggle	Scan ZIP, RAR files
Heuristic Analysis	Toggle	Detect unknown threats via behavior
Deep Scan	Toggle	Deeper analysis (slower)

Exclusions:

• File Type Exclusions — Exclude file extensions (e.g., .log). Add/remove badges.
• Directory Exclusions — Exclude directories (e.g., /opt). Add/remove badges.

Buttons: Save Settings (green) and Reset to Defaults (secondary).

Navigate to Security → Security Advisor. Four summary cards at the top:

Card	Value	Color Logic
Security Score	0–100 numeric score with status label	Good (≥80), Fair (≥60), Poor (<60)
Passed Checks	Count of passed checks	Green
Warning Checks	Count of warning checks	Yellow
Failed Checks	Count of failed checks	Red

If critical issues are found, a red alert banner appears: “X critical issues found, urgent action required.”

AppArmor Status Card (shown if AppArmor is active) displays: Protection Active (enforced profiles), Learning Mode (complain profiles), Last 24h Blocks (denied events), and Pending Suggestions with a link to manage AppArmor.

Action buttons: Refresh Checks (re-run all security checks) and View Fix History (toggle fix history section with rollback count badge).

Security checks are grouped into 8 expandable/collapsible categories. Each category header shows the category icon, title, total check count, and a badge row with failed/warning/unknown/passed counts.

Category	Icon	Checks Include
SSH	ri-terminal-box-line	SSH port, root login, password auth, empty passwords
Panel	ri-dashboard-3-line	Admin port, admin account security, panel settings
Firewall	ri-shield-line	UFW/iptables enabled, basic rules configured
Services	ri-server-line	Service hardening, unnecessary services disabled
Authentication	ri-lock-password-line	Password policies, 2FA, root account security
Database	ri-database-2-line	External access, root account, backup status
PSE (PHP Settings)	ri-shield-keyhole-line	PHP security settings, disabled functions, open_basedir
AppArmor	ri-shield-check-line	Profile enforcement, system coverage (link to AppArmor page)

Each security check within a category shows:

• Status icon — Passed, Warning, Failed, or Unknown
• Severity badge — Critical / High / Medium / Low
• Current Value — Shown in red code snippet (for warning/failed checks)
• Recommended Value — Shown in green code snippet
• Recommendation — Explanation and reasoning text

Action buttons per check (right-aligned):

• Configure — Blue button that navigates to the relevant settings page (e.g., SSH config, Profile settings, Panel settings). Available for checks like: ssh_port → SSH Configuration, root_2fa → Profile Security, panel_port → Panel Settings.
• Auto Fix — Green button for checks that can be automatically resolved
• Manual — Gray badge if the check requires manual intervention and has no navigation link

Checks marked with Auto Fix follow a safety-verified process:

Click View Fix History to expand the history section. Header shows “Total fixes: X | Rollback available: Y”.

Column	Description
Check	Check name (bold) with check_id below
Type	Category badge (ssh, firewall, panel, etc.) with color
Changes	From value (red) → To value (green) in code format
Applied	Timestamp + applied_by username
Status	Applied, Rolled Back, or Failed
Action	Rollback button (if applied and rollback is available)

Rollback Process: The confirmation dialog shows the check name, applied date, current value (will revert from), and original value (will revert to). Enter a rollback reason and confirm. After rollback, the status changes to “Rolled Back” and security checks refresh automatically.

Navigate to Security → AppArmor. Four summary cards at the top:

Card	Icon	Description	Color
Protection Active	ri-shield-check-fill	Count of enforced profiles	Green
Learning Mode	ri-shield-flash-line	Count of complain profiles	Yellow
Pending Suggestions	ri-error-warning-line	Suggestion count awaiting review	Red/Gray
Security Score	ri-bar-chart-box-line	Score out of 100	Green (≥70), Yellow (≥40), Red (<40)

The page has 3 tabs: Profiles, Events, Suggestions.

Filter controls: Search (by name, display name, or target path), Type Filter (All, php-fpm, ssh, system), Mode Filter (All, enforce, complain, disabled), and a New Profile button.

Column	Description
Profile	Mode icon (colored circle: green=enforce, yellow=complain, gray=disabled) + profile name (bold) + display name + target path (muted, truncated)
Type	Badge: PHP-FPM, SSH, System, or Custom
Mode	Dropdown selector to switch between Enforce, Complain, and Disabled. Shows loading spinner during mode change.
Status	System (built-in, locked icon) or User (custom)
Actions	Reload (reload profile from kernel) and Delete (only for non-system profiles, requires destructive confirmation)

$ panelica apparmor list
$ panelica apparmor status --profile=usr.sbin.nginx
$ panelica apparmor enforce --profile=usr.sbin.nginx
$ panelica apparmor complain --profile=usr.sbin.nginx

Click New Profile to open a 4-step wizard:

AppArmor violation events recorded in the last 24 hours. Paginated with page controls.

Column	Description
Result	DENIED (with shield icon) or LOGGED (with eye icon)
User	System username (bold, with user icon) or “–” if none
What Happened	Human-readable explanation: “{profile} tried to {action} {path}”. Actions: exec, read, write, open, create. If a dangerous resource was DENIED, a green Security Protection badge is shown. Below the explanation: {profile_name} → {operation} → {resource_path}
Time	Formatted timestamp
Actions	For DENIED events: Allow button (opens handling dialog). For LOGGED events: Acknowledge button (removes from list).

Event Handling Dialog: Shows the blocked operation details (profile, operation, resource path). Two options: Switch to Complain Mode (puts the profile in learning mode) or Acknowledge (mark as seen and remove). After switching to Complain mode, a success dialog confirms the change.

Auto-generated profile rule suggestions based on learning mode violations. Warning info box explains that suggestions are from AppArmor learning mode and should be reviewed carefully.

Column	Description
Risk	Badge with icon: Critical, High, Medium, Low
Profile	Profile name in code snippet
Operation	Badge: exec, read, write, open, mknod
Resource/Description	Resource path (code, truncated, tooltip for full path) + human-readable explanation
Count	Badge showing frequency (e.g., “5x”)
Actions	Approve (green, adds rule to profile), Reject (red, dismisses permanently), Ignore (gray, hides temporarily)

Paginated with page controls. When all suggestions are processed, an empty state with a green checkmark shows “No pending suggestions — All suggestions have been processed.”

Navigate to Files → File Manager. The page has a three-panel layout:

• Left Panel — Expandable/collapsible folder tree. Click arrows or folder names to expand. Current path highlighted in blue.
• Top Bar — Breadcrumb navigation (clickable path segments), view mode toggle, search box, filter dropdown, and action buttons.
• Main Area — File listing in Grid or List view with a storage usage bar at the top showing quota percentage.

Storage Usage Bar

The top of the page shows a progress bar indicating your disk usage against the plan quota. Colors change automatically:

Usage	Color	Meaning
0 – 70%	Green	Normal usage
70 – 90%	Orange	Approaching limit
90%+	Red	Critical — free up space soon

View Modes & Filtering

Toggle between Grid View (icon-based) and List View (table with columns) using the buttons in the top bar.

List View columns:

Column	Description
Checkbox	Multi-select for bulk operations
Icon + Filename	Color-coded icons by file type (yellow=folder, blue=archive, green=image, red=video, purple=code)
Modified Date	Last modification timestamp
File Size	Human-readable size
Owner	File owner username (visible based on role)
Actions	Dropdown menu with file operations

Filter by type: Use the filter dropdown to show only specific file types — All Files, Folders Only, Documents (txt, md, pdf, doc), Images (png, jpg, gif, svg, webp), Videos (mp4, avi, mov, mkv), Archives (zip, tar, gz, rar, 7z), or Code files (php, js, ts, html, css, json, py, go). Toggle Show Hidden Files to reveal dotfiles.

Search: Real-time search box filters files by name as you type (case-insensitive). Search history is preserved in your browser (last 10 searches).

File Operations

Toolbar buttons:

• Create Folder — Opens a modal for folder name and permissions (default 755)
• Upload Files — Opens file picker or use drag-and-drop zone. Supports multiple files with a progress bar. Total size validated against quota.
• Refresh — Reloads current directory listing
• Back / Forward / Up — Browser-like navigation history (up to 50 paths preserved)

Right-click context menu on a file/folder:

Action	Description
Open / Edit	Open file in code editor (text files) or preview (images)
Download	Download the file to your computer
Copy / Cut	Place in clipboard for pasting elsewhere
Copy Path	Copy the full file path to clipboard
Rename	Opens rename dialog with current name pre-filled
Permissions	Opens chmod dialog with Owner/Group/Other checkboxes (Read/Write/Execute) and octal notation
Compress	Create ZIP or TAR.GZ archive. Configure archive name, include subfolders, and exclude patterns.
Extract	Extract archive contents (ZIP, TAR, TAR.GZ supported). Option to extract in-place or to a new folder.
Delete	Move to trash (soft delete). Large items show a size warning.
Properties	View file details (size, type, permissions, modification date)

Right-click on empty area: Create Folder, Paste, Refresh, Select All, Invert Selection.

Built-in Code Editor

Double-click any text file to open it in the built-in code editor. Features include syntax highlighting (auto-detected by file extension), line numbers, dark/light mode support, and a file size indicator. Click Save to write changes or Cancel to discard.

Selection & Bulk Operations

Select multiple files for bulk operations:

• Single Click — Select one item
• Ctrl+Click — Toggle item in selection (add/remove)
• Shift+Click — Range select from last clicked item to current
• Lasso Select — Click and drag on empty area to draw a selection rectangle
• Header Checkbox — Select all visible items

Once multiple items are selected, you can Bulk Copy, Bulk Move, Bulk Delete, or Bulk Rename (supports find/replace patterns and regex).

Trash / Recycle Bin

Deleted files go to the Trash instead of being permanently removed. Access the Trash modal to see:

Column	Description
Item Name	Original file or folder name
Type	File or Folder
Original Path	Where the file was before deletion
Deleted Date	When it was deleted
Size	File size

Actions: Restore (recover to original location), Permanently Delete, or Empty Trash (remove all items).

Keyboard Shortcuts

Shortcut	Action
Ctrl+A	Select All
Ctrl+C	Copy
Ctrl+X	Cut
Ctrl+V	Paste
Del	Move to trash
Shift+Del	Permanent delete
F2	Rename selected item
F5	Refresh
Ctrl+F	Search / Filter
Backspace	Go to parent directory
Alt+Up	Parent directory

Role-Based Access

The file manager enforces strict directory isolation based on your role:

Role	Initial Path	Can Access
ROOT	/	Full filesystem (except /opt/panelica)
ADMIN	/home	/home and all subdirectories
RESELLER	/home	Own users' directories only
USER	/home/username	Own home directory only

Navigate to Files → FTP Accounts. The page shows 4 summary cards at the top:

Card	Shows
Total Accounts	Total FTP account count + number of active accounts
Active Sessions	Currently connected FTP sessions
Total Quota	Total quota allocated across all FTP accounts with usage percentage
SSL/TLS	Number of SSL-enabled secure connections

FTP Accounts Tab

The main tab lists all FTP accounts in a table:

Column	Description
Username	FTP username with a type badge: Main Sub Special
System User	Associated system user ID
Domain	Linked domain name or "N/A"
Directory	Home directory path (monospace)
Quota Usage	Progress bar showing X MB / Y MB with percentage
Status	Active / Suspended / Locked
SSL/TLS	Checkmark or cross icon indicating secure connection support
Last Login	Last login date/time or "Never"
Actions	Edit, Change Password, Suspend/Unsuspend, Delete, View Logs, Export

Creating an FTP Account

Click Create FTP Account button (top right) to open the dedicated creation page.

Account Actions

From the Actions dropdown on each FTP account row:

• Edit — Modify directory, quota, and SSL settings
• Change Password — Opens a prompt for a new password (minimum 8 characters)
• Suspend / Unsuspend — Toggle account access (suspended accounts cannot connect)
• Delete — Permanently remove the FTP account with confirmation dialog
• View Logs — Jump to the Transfer Logs tab filtered for this account

Active Sessions Tab

Shows all currently connected FTP sessions in real-time:

Column	Description
Username	Connected FTP user
IP Address	Client IP address
Connected At	Connection start time
Duration	How long the session has been active
Status	Active or Idle
Current Path	Directory the user is currently browsing
Bytes Transferred	Upload/download amount
Last Action	Most recent operation (upload, download, list, etc.)

Actions: Disconnect or Force Disconnect to terminate a session. Enable Auto-refresh for live updates.

Configuration Tab

Server-wide FTP configuration settings:

Setting	Default	Description
FTP Server Port	21	Main FTP listening port (1-65535)
SFTP Port	22	SFTP listening port
Enable SFTP	On	Allow SFTP connections
Enable TLS/SSL	On	Require or allow encrypted connections
SSL Certificate	Auto-select	Choose from available SSL certificates
Max Connections Per User	10	Concurrent connection limit per account
Timeout (minutes)	10	Idle session timeout
Enable Logging	On	Record FTP transfer activity
Log Level	Info	Debug / Info / Warning / Error
Allow Anonymous	Off	Allow anonymous FTP access
Passive Mode	On	Enable passive mode for NAT traversal
Passive Port Range	30000-40000	Port range for passive connections

Buttons: Save Configuration, Reset to Defaults, Test Connection.

Transfer Logs Tab

Searchable, filterable log of all FTP transfer activity:

Column	Description
Date/Time	When the action occurred
Username	FTP user that performed the action
IP Address	Client IP
Action	Upload / Download / Delete / Rename / etc.
File Path	Full path of the affected file
Size	File size (if applicable)
Status	Success or Failed
Duration	How long the transfer took

Filters: Search by username/IP/path, filter by date range, and filter by log level. Use Export button to download logs as CSV.

$ panelica ftp create --user=ftpuser --password=SecurePass --directory=/home/johndoe/example.com

Navigate to Files → Disk Usage. The page displays 4 summary cards at the top:

Card	Shows
Total Space	Total disk capacity in GB
Used Space	Currently used disk space in GB
Available Space	Free space remaining in GB
Usage Percentage	Percentage bar with color gradient (green → orange → red)

Role-Based Visibility

An info banner at the top shows your access level and what data you can see:

Role	Can See
ROOT / ADMIN	All users' disk usage across the entire server
RESELLER	Disk usage for your own sub-users only
USER	Your own disk usage only (user hierarchy section hidden)

User Disk Usage

Visible to ROOT/ADMIN/RESELLER only. This section shows per-user disk consumption in two ways:

Bar Chart (Top 10 Users): A horizontal bar chart showing the 10 largest disk consumers. Bars are color-coded — green for normal usage, red for users over quota. Hover for exact usage and quota values.

User Cards (Grid): A grid of cards (top 20 users) showing:

• User avatar with role-colored icon (ROOT=red, ADMIN=blue, RESELLER=cyan, USER=green)
• Username and role badge
• Over Quota badge if applicable
• Usage info: "X.XX GB used / Y.XX GB quota (Z%)"
• Color-coded progress bar (success/warning/danger)
• Domain count badge (e.g., "5 domains")

Cards with border highlighting indicate over-quota users.

Directory Usage

Toggle between Chart View and Table View using the buttons at the top right:

Chart View (default): A dual-axis bar chart showing the top 10 directories with size in GB (blue bars) on the left axis and file count (green bars) on the right axis. Hover for tooltips with exact values.

Table View:

Column	Description
Path	Full directory path with folder icon (monospace)
Owner	Username with colored badge
Type	Badge: user / system / application
Size	Directory size in GB (sorted largest first)
File Count	Number of files (formatted with commas)
Usage %	Percentage of total disk with progress bar

Table supports sortable columns, hover highlights, and pagination (up to 20 rows per page).

Largest Files

The Top 20 Largest Files table helps identify files consuming the most space:

Column	Description
File Name	Full file path with icon (monospace)
Size	File size in GB (sorted largest first)
Type	File extension / category badge
Owner	File owner username
Modified Date	Last modification date

Useful for identifying old log files, backups, or large media that can be cleaned up to free space.

Quota Management

Disk quotas are controlled by the user's hosting plan. When a user exceeds their quota, new file uploads and database writes are blocked until space is freed. Reseller quotas can further restrict allocations for sub-users.

$ panelica disk-usage
$ panelica disk-usage --domain=example.com
$ panelica disk-usage --user=johndoe --format=json

Navigate to Backup → Backup Manager. The page header has two action buttons: Create Backup (primary) and Restore (warning). Below are 4 summary cards:

Card	Shows
Total Backups	Total number of backups
Total Size	Combined size of all backups in GB
Completed	Number of successfully completed backups
Failed	Number of failed backups

Backups Tab

The main tab lists all existing backups:

Column	Description
Name	Backup name with badges: Encrypted Compressed
Type	Full or Incremental
Size	Backup size in GB
Source	What was backed up (e.g., "/var/www", "MySQL Databases")
Destination	Storage target (e.g., "Local Storage", "AWS S3")
Created	Creation date/time + retention period in days
Status	Completed / In Progress (with spinner) / Failed / Scheduled
Actions	Restore, Download, View Details, Clone, Verify Integrity, Delete

Creating a Backup

Click the Create Backup button to open the creation modal:

Restoring a Backup

Click the Restore button (or select Restore from a backup's actions dropdown) to open the restore modal:

Restore Location:

• Original Location — Restore files to their original paths
• Custom Location — Specify a different directory to restore into

Restore Options:

• Preserve existing permissions
• Restore to staging environment
• Create backup of current data before restoring

Schedules Tab

Configure automated backup schedules. Click Create Schedule to add a new one.

Column	Description
Name	Schedule name
Type	Full or Incremental
Frequency	Human-readable schedule (e.g., "Daily at 2:00 AM", "Weekly on Sunday")
Next Run	Scheduled date/time for next execution
Last Run	Previous execution date/time
Destinations	Multiple badges (e.g., Local S3)
Status	Active / Paused / Disabled
Actions	Play/Pause toggle, Edit, Delete

The schedule creation modal includes fields for name, frequency, backup type, destination, retention period, and options for encryption, compression, and email notifications.

Destinations Tab

Configure where backups are stored. Three destination cards are displayed in a responsive 3-column grid:

Destination	Description	Usage Display
Local Storage	Default on-server storage (hard drive icon)	Usage bar (e.g., "150 GB / 500 GB")
AWS S3	Cloud backup via Amazon S3 (cloud icon)	Usage bar (e.g., "75 GB / Unlimited")
Google Drive	Cloud backup via Google Drive (drive icon)	Usage bar (e.g., "10 GB / 15 GB")

Each card shows a connection status badge (Connected or Not Connected) and a Configure button to set up credentials and connection settings.

Settings Tab

Global backup settings:

Setting	Default	Description
Default Retention Period	30 days	How long to keep backups before auto-cleanup
Maximum Backup Size	50 GB	Maximum size for a single backup
Auto Cleanup	On	Automatically delete expired backups
Verify Integrity	On	Verify backup integrity after completion
Email Notifications	On	Send email on backup completion or failure
Encrypt All Backups	Off	Enable encryption by default for all new backups
Use Compression	On	Compress backups to reduce storage
Encryption Method	AES-256	Choose encryption algorithm: AES-256, AES-128, or Blowfish

Backup Actions

From the Actions dropdown on each backup row:

• Restore — Restore backup to original or custom location
• Download — Download backup archive to your computer
• View Details — See full backup metadata (source, size, duration, errors)
• Clone — Create a copy of the backup with a new name
• Verify Integrity — Check backup file integrity
• Delete — Permanently remove the backup with confirmation

$ panelica backup create --name="Daily Backup" --type=full --dest=local
$ panelica backup restore --id=5 --location=original
$ panelica backup destination add --type=s3 --bucket=my-backups --region=us-east-1
$ panelica backup destination test --id=3

Navigate to Backup → Snapshots. The page shows a status banner indicating the snapshot mode:

Mode	Badge	Description
Instant Mode	Instant	Btrfs filesystem detected — snapshots are instant and copy-on-write
Standard Mode	Active	Rsync-based snapshots — takes longer but works on any filesystem

Summary Cards

Card	Description
Total Snapshots	Total count with domain/server breakdown
Storage Used	Total size with compression savings percentage
Pinned Snapshots	Count of snapshots protected from auto-deletion
Free Space	Available space on the storage path

Snapshot Tabs

Filter snapshots by type using 3 tabs:

• All — All snapshots with count badge
• Domain — Domain-level snapshots only. Filter by domain using the dropdown.
• Server — Full server snapshots (ROOT/ADMIN only)

Snapshot List

Column	Description
Pin	Pinned or Auto-created indicator
Type	Server / Domain
Target	Domain name or "Full Server" + Btrfs/Rsync and +DB indicators
Description	User-provided description
Size	Snapshot size with compression ratio %
Status	Completed / Creating / Failed / Restoring
Created	Creation date and time
Duration	Time taken to create the snapshot
Actions	Restore, Pin/Unpin, Download, Delete

Creating a Snapshot

Click Domain Snapshot or Server Snapshot (ROOT/ADMIN only) to open the creation modal:

Snapshot Settings

ROOT users can configure snapshot behavior via the Settings button:

Setting	Description
Btrfs Enabled	Use Btrfs copy-on-write snapshots when available
Auto Snapshot Before Changes	Automatically create a snapshot before major operations
Auto Retention Days	Days to keep auto-created snapshots
Max Snapshots Per Domain	Maximum snapshot count per domain
Max Server Snapshots	Maximum server-level snapshot count
Compression Enabled	Compress snapshot data
Compression Algorithm	Algorithm selection for compression
Max Storage (GB)	Maximum disk space for all snapshots

Cleanup Expired: ROOT users can manually trigger cleanup of expired snapshots using the Cleanup Expired button in the action bar.

$ panelica snapshot create --type=domain --domain=example.com
$ panelica snapshot create --type=server
$ panelica snapshot list
$ panelica snapshot restore --id=12
$ panelica snapshot delete --id=12

Navigate to Backup → Activity Log. The page shows 6 summary cards at the top:

Card	Color	Description
Total Operations	Primary	All-time operation count
Successful	Green	Successfully completed operations
Failed	Red	Failed operation count
Today	Info	Operations performed today
This Week	Warning	Operations this week
Backups Created	Secondary	Total backup creation count

Filters

Filter	Options
Operation Type	All, backup_create, backup_restore, backup_delete, backup_upload, backup_download
Status	All, success, failed, partial, in_progress
Username	Search by username
Start Date	Date picker
End Date	Date picker

Action buttons: Clear Filters, Refresh, Export (ROOT/ADMIN, downloads CSV), Keep Last 300 (ROOT/ADMIN, deletes older entries), Delete All (ROOT only).

Activity Table

Column	Description
Operation	Icon + label: Create (), Restore (), Delete (), Upload (), Download ()
Info	Schedule name (if scheduled) or "Manual Backup" + username + domain count
Backup File	Filename of the backup
Storage	Local / AWS / GCS / SFTP
Size	Transferred data size
Duration	Operation duration (e.g., "2m 15s")
Date/Time	Full timestamp
Status	Success / Failed / Partial / In Progress
Actions	View Details (opens modal with full metadata, errors, warnings)

Navigate to Backup → Migration. The migrator supports three source types: Web Panels (cPanel, Plesk, etc.), SSH/SFTP, and Raw Server.

Step 1: Connect

Enter the source server credentials to establish an SSH connection:

Field	Description
Host	Source server IP address or hostname
Port	SSH port (default: 22)
Username	SSH username (typically root)
Password	SSH password or use key authentication

Once connected, the header shows: Connected to: server-ip

Step 2: Discover

The system automatically scans the source server and discovers:

Card	Description
Sites Found	Number of websites/domains detected
Databases	Number of MySQL/PostgreSQL databases found
Email Accounts	Number of email accounts detected
Total Size	Estimated total data size (e.g., "308.3 MB")

A Discovery Log panel (dark terminal-style) shows real-time scan progress. The detected panel type and version (if any) are displayed automatically.

Step 3: Configure

Review discovered items and configure migration options:

• Select Items — Choose which sites, databases, and email accounts to migrate
• User Assignment — Map source server users to Panelica users or create new ones
• Domain Configuration — Verify domain settings, PHP version, and document root
• Database Mapping — Review database names, users, and credentials
• Email Settings — Configure email account migration options

Step 4: Migrate

Click Start Migration to begin the transfer. A real-time progress panel shows:

• Overall progress bar with percentage
• Per-item status (pending, transferring, completed, failed)
• Transfer speed and estimated time remaining
• Live migration log with detailed output

Step 5: Complete

Migration results summary showing:

• Total items migrated vs. failed
• Per-item results with success/failure details
• Post-migration actions: verify sites, update DNS, test email
• Option to retry failed items

SSH Session

If the SSH session expires during discovery or migration, an alert appears with a Reconnect button to re-establish the connection. Use Cancel Migration in the header to abort the process at any time.

$ panelica migrate connect --host=199.192.25.141 --user=root
$ panelica migrate discover
$ panelica migrate start --all
$ panelica migrate status

Navigate to Backup → Remote Storage. The page has 3 tabs.

Destinations Tab

View and manage remote storage destinations:

Column	Description
Name	Destination display name
Provider	S3 / GCS / Drive / SFTP
Default	Checkmark if set as default destination
Last Sync	Last synchronization timestamp or "Never"
Status	Connected / Error
Actions	View, Edit, Test Connection, Delete

Adding a Destination

Click Add Destination to open the wizard-style form:

AWS S3 Configuration:

Field	Description
Region	AWS region (16+ options, e.g., us-east-1, eu-west-1)
Bucket	S3 bucket name
Endpoint	Custom endpoint for S3-compatible storage (optional)
Path Style	Enable for S3-compatible storage (e.g., MinIO)
Storage Class	STANDARD, STANDARD_IA, INTELLIGENT_TIERING, ONEZONE_IA, GLACIER_IR, GLACIER, DEEP_ARCHIVE
SSE Mode	Server-side encryption mode (optional)
Access Key ID	AWS access key
Secret Access Key	AWS secret key (password field)

Google Cloud Storage (GCS) Configuration:

Field	Description
Project ID	Google Cloud project identifier
Bucket	GCS bucket name
Location	30+ locations (multi-region, dual-region, single-region)
Storage Class	STANDARD, NEARLINE, COLDLINE, ARCHIVE

Google Drive Configuration: Folder ID, folder path, and prefix. Requires OAuth credentials.

SFTP Configuration:

Field	Description
Host	SFTP server address
Port	SFTP port (default: 22)
Username	SFTP username
Remote Path	Directory path on remote server (default: /)
Auth Method	Password or Private Key
Password / Key	Authentication credential (conditional)

Sync Jobs Tab

View recent synchronization activity:

Column	Description
Start Time	Sync start timestamp
Destination	Provider name
Status	Success / Failed / In Progress
Size Transferred	Total data transferred
Duration	Operation duration
Backups Count	Number of backup files synced
Actions	View Logs

Remote Backups Tab

Browse and manage backup files stored on remote destinations:

Column	Description
Filename	Backup file name
Destination	Provider name
Size	File size
Last Modified	Modification date
Exists Locally	Yes / No
Actions	Download (if not local), Delete

$ panelica remote-storage list
$ panelica remote-storage add --type=s3 --bucket=my-backups --region=eu-west-1
$ panelica remote-storage test --id=1
$ panelica remote-storage sync --id=1

Navigate to 3rd Party Applications → WP Toolkit. This feature requires the wordpress_toolkit license feature.

Installations Page

Two-column layout: Left panel shows site list with quick stats (Active/Frozen/Issues counts), Right panel shows selected site details.

Site Details Panel:

• Overview Cards (4) — WP Version, PHP Version, Security Status (Frozen/Unlocked), Installation Date
• Site Info — Site Title, Site URL (clickable), Admin User, Database, Install Path, Owner

Quick Actions (6 buttons):

Action	Description
WP Admin	One-click auto-login to WordPress dashboard (disabled if not active)
Visit Site	Open live site in new tab
Fix Permissions	Repair WordPress file/directory permissions
Freeze / Unfreeze	Toggle file immutability protection (prevents all file changes)
Change Password	Modal: new password (min 8 chars), confirm, generate strong password button
Uninstall	Destructive action with confirmation dialog

Manage Cards (4): Plugins, Themes, Security, Staging — each links to the respective sub-page.

Status types: Active Installing Maintenance Broken Updating Suspended

Install Wizard (5-Step)

Plugins Page

Two-column layout with multi-site selection on the left (checkboxes for batch operations). Right panel has 2 tabs:

Tab 1: Installed Plugins

• Stats Cards (4) — Total plugins, Active plugins, Needs Update, Must-Use plugins
• Search & Filter — Search by name, Status filter (All/Active/Inactive/Needs Update)
• Bulk Actions — Select All checkbox, then: Activate Selected, Deactivate Selected, Update Selected, Delete Selected
• Columns — Checkbox, Icon, Name, Status badge, Current Version, New Version (if update available), Actions (Activate/Deactivate, Update, Delete)
• Batch — "Update All Plugins on Selected Sites" button applies to all checked sites

Tab 2: Plugin Store

• Search — WordPress.org plugin search (debounced, min 2 chars)
• Popular Categories (8) — Security, SEO, Performance/Cache, Backup, Forms/Contact, E-Commerce, Analytics, Email/SMTP
• Results — Plugin cards with icon, name, rating (stars), download count, description, Install button (with auto-activate option)
• Multi-site Install — When multiple sites selected, batch install with success count

Themes Page

Same two-column layout as Plugins. 2 tabs:

Tab 1: Installed Themes — Stats (Total, Active, Needs Update, Parent themes), search/filter, bulk actions (Update/Delete Selected), theme grid. Only one theme can be active per site.

Tab 2: Theme Store — 8 categories (Starter, Blog, Business, Portfolio, E-Commerce, Magazine, Multipurpose, Minimal). Search and install themes from WordPress.org.

Updates Page

Unified updates dashboard for all WordPress components. Multi-site selection on the left.

• Stats Cards (5) — Total updates, WordPress Core count, Plugins count, Themes count, Translation updates count
• Search & Filter — Search by name/slug, Type filter (All/Core/Plugins/Themes/Translations)
• Table Columns — Type badge (Core/Plugin/Theme/Translation with icon), Name, Current Version, New Version, Site, Actions (Update Now — disabled if frozen)
• Batch — Select multiple updates, click "Update All on Selected Sites"

Security Page (5 Tabs)

Comprehensive WordPress security management. Multi-site selection on the left.

Tab 1: Overview — Security Score (0–100, color-coded circle: green 80+, orange 50–79, red <50). Key metrics: last scan, next scheduled, threats detected, integrity issues. Security alerts list with action buttons.

Tab 2: Scanner — Two scan types:

• Quick Scan — Core integrity, plugin integrity, suspicious files, PHP in uploads
• Full Scan — All quick checks + ClamAV malware scan

Real-time progress shows each step with status (pending/running/done/error), elapsed time, and result. Results display: core integrity status, modified files list, suspicious files with delete buttons, malware findings, and PHP files found in uploads directory.

Tab 3: Hardening — Security score bar (0–100) with checklist items:

Check	Description
User Enumeration Protection	Prevent user enumeration via REST API
Security Headers	Add HTTP security headers
File Editor Disable	Disable theme/plugin editor in WP dashboard
Hide WordPress Version	Remove WP version from headers
Directory Listing	Disable directory browsing

Each item shows status (SECURE/INSECURE/WARNING) and a toggle to enable/disable. Security Agent installation button if not yet installed.

Tab 4: Activity — Login attempt monitoring. Filter by days (7/14/30) and search by IP/username. Stats cards: Total Attempts, Failed, Successful, Blocked. Table columns: IP Address (with country), Time, Username, Event (login_failed/login_success/login_blocked/ip_blocked), Method (wp-login/xmlrpc), User Agent, Reason.

Tab 5: Users — WordPress users table: User ID, Username, Email, Role(s) (Admin/Editor/Author/Contributor/Subscriber), Registered date, Display Name. Highlights suspicious users (multiple admins, recent suspicious registrations).

Security Agent Configuration Modal:

• Login Protection — Enable toggle, Max Attempts (default: 5), Block Duration (default: 3600s), Rate Window (default: 600s)
• Rate Limiting — Enable toggle, Requests Per Minute (default: 120), Ban Duration (default: 300s)
• XML-RPC Protection — Disable XML-RPC toggle
• IP Blacklist / Whitelist — Add/remove IP addresses (supports CIDR notation)
• Country Block — Block by 2-letter country code
• Bot Whitelist (5 categories) — Search Engines (Google, Bing, 17 bots), Social Media (Facebook, Twitter, 10 bots), Uptime Monitoring (Pingdom, 9 bots), SEO & Analytics (Ahrefs, 6 bots), AI & Research (GPTBot, ClaudeBot, 8 bots). RDNS verification toggle for each category.

Backup Page (4 Tabs)

Tab 1: Backup History — Filter by site. Table: Name, Site, Type (Full/Database/Files badge), Size, Created, Duration, Status (Completed/Failed/In Progress), Contents icons, Location (Local/Cloud), Encryption (Yes/No), Actions (Download, Restore, Clone, Delete). Click for detailed modal showing WP version, PHP version, plugin/theme counts, upload folder size.

Tab 2: Create Backup — Select site, choose type (Full/Database Only/Files Only with size estimates), set options: Backup Name, Include Uploads, Compression (None/Gzip/Bzip2), Encryption, Location (Local/S3/Backblaze/Dropbox/FTP). Advanced: Exclude Patterns, Retention Days, Pre/Post Scripts. Real-time progress with estimated time.

Tab 3: Scheduled Backups — Table: Name, Site, Type, Frequency (Daily/Weekly/Monthly/Hourly badge), Time, Retention, Location, Encryption, Status toggle, Next Run, Last Run, Last Status, Actions (Edit/Delete/Run Now). Create schedule: site, frequency, time picker, timezone, type, location, retention, encryption, email notification.

Tab 4: Settings — Max Local Storage (GB), Default Retention Days, Default Compression, Auto-cleanup. Email notifications. Cloud storage integrations: AWS S3 (Access Key, Secret, Bucket, Region), Backblaze (Account ID, Key, Bucket), Dropbox (Token, Path). Each with Test Connection button.

Restore Backup Modal: Options to restore Files and/or Database, create pre-restore backup, downtime warning. Clone Site Modal: Select destination, clone name, database prefix.

Staging Page

Select a site from the left panel to manage its staging environment.

Status types: Creating... Active Syncing... Promoting... Error Deleted

When staging exists, info cards show: Staging URL, Storage Path, Database Name, Created Date, Last Synced, Last Promoted.

Actions:

• Sync Staging — Pull latest changes from live (select: Files, Database, or both)
• Visit Staging — Open staging site in new tab
• Promote to Live — Push staging to production. Requires typing "PROMOTE" to confirm. Options: Push Files/Database, Auto-backup production.
• Delete Staging — Remove staging environment (destructive confirmation)

Creating Staging: Click "Create Staging" — enter optional notes, choose Clone Files and/or Clone Database, then create. Real-time progress with status messages.

$ panelica wordpress install --domain=example.com
$ panelica wordpress list
$ panelica wordpress plugins list --site=example.com
$ panelica wordpress scan --site=example.com --type=full

Navigate to 3rd Party Applications → Docker. Summary cards: Total Containers, Running Containers, Total Images, Total Volumes, Total Networks.

Tab 1: Overview

Docker installation status and system information:

• System Info — Docker version, API version, Compose version, OS/Architecture, Kernel version, Storage driver, Root directory
• Capabilities — Memory limit support, Swap limit support
• Container Stats — Running/Paused/Stopped breakdown
• Disk Usage — Breakdown by Containers, Images, Volumes, Build Cache (in GB) + Reclaimable Space

If Docker is not installed, an Install Docker button appears with streaming installation logs. Uninstall provides granular control: remove containers (on), images (on), volumes (off), networks (on), purge data (off).

Tab 2: App Templates

One-click deployment of 50+ pre-configured applications. Search across names/descriptions, filter by category.

Categories: AI, Chat, Automation, DevTools, CMS, Web, Blog, Database, Cache, and more. Each template card shows: Logo, Name, Image tag, Description, Category badges, Memory requirements, Port count, Deploy count (popularity), and "Popular" indicator.

Deploy Modal: Container name (auto-filled), Image tag override, Port mapping customization, Environment variable overrides, Memory limit, Auto-start toggle. On success: shows Container ID, Access URL, Exposed ports, Credentials (if any).

Tab 3: Containers

Search by name/status (All/Running/Stopped/Paused).

Column	Description
Name	Container name + truncated ID
Image	Image name:tag
Status	running / stopped / paused / restarting / created
Ports	Port mappings (host:container)
Resources	CPU % and Memory usage (MB) with progress bars
Created	Timestamp
Actions	Start, Stop, Pause, Restart, Logs, Terminal, Inspect, Clone, Link Domain, Delete

Create Container Modal:

Field	Type	Description
Container Name	Text (required)	Unique container name
Image	Text (required)	Image name with autocomplete
Port Mapping	Text	host:container format (comma-separated)
Network	Select	bridge / host / none / custom
Environment	Textarea	VAR=value format
Volume Mounts	Text	host:container (bind/named)
Restart Policy	Select	no / on-failure / always / unless-stopped
Memory Limit	Number (MB)	Maximum memory
CPU Limit	Number (%)	Maximum CPU
Command	Text	Override entrypoint
Working Dir	Text	Container working directory
Hostname	Text	Container hostname
SHM Size	Number	Shared memory size
Capabilities	Text	Linux capabilities
DNS Servers	Text	Custom DNS
Extra Hosts	Text	Additional host entries

Container Terminal: Full WebSocket-based terminal (xterm.js) with dark theme, TTY support, auto-reconnect, and responsive sizing.

Domain Linking: Associate containers with domains. Auto-detects exposed ports and creates reverse proxy configuration.

Clone Container: Duplicate a container with a new name and optional auto-start.

Tab 4: Images

Stats: Total Images, In Use, Total Size (GB), Dangling images count.

Column	Description
Repository	Image repository name
Tag	Image tag badge
Image ID	SHA256 hash (truncated)
Size	Image size (MB/GB)
Created	Creation timestamp
Status	In Use / Unused badge
Actions	Run container, Delete, Inspect, Tag, Push

Pull Image Modal: Enter image name:tag, streaming progress shows layer-by-layer download status.

Tab 5: Docker Hub

Search Docker Hub for images. Results show: Name, Description, Stars, Official badge, Automated badge. One-click pull from search results with streaming progress.

Tab 6: Volumes

Stats: Total Volumes, Total Size, Used Space (%), Orphaned count.

Column	Description
Name	Volume name + creation date
Driver	Driver badge (local, etc.)
Mount Point	Filesystem path
Size / Used	With usage progress bar (green <50%, yellow <75%, red >75%)
Containers	In-use / Orphaned badge + count
Actions	Inspect, Browse, Backup, Delete (orphaned only)

Browse Modal: File explorer with breadcrumb navigation, parent directory navigation. Shows: file name, type (file/directory), size, modification time, permissions. Donut chart shows volume usage distribution.

Create Volume: Name (required), Driver (local/other), Optional bind path.

Tab 7: Networks

Stats: Total Networks, Bridge count, Connected Containers total.

Column	Description
Name	Network name
Driver	bridge / host / overlay / macvlan / none badge
Scope	local / swarm / global badge
Subnet/Gateway	IPAM configuration
Containers	Connected container count
Properties	Internal / Attachable flags
Actions	Inspect (view connected containers with IPs and MACs), Delete

Create Network: Name, Driver, Subnet (CIDR), Gateway, Internal toggle, Attachable toggle, Labels.

Docker Compose

Navigate to Docker → Compose for stack management. Stats: Total Stacks, Running, Total Services, Combined Memory.

Stacks Tab:

Column	Description
Name	Stack name
Status	running / stopped / partial / error
Services	Running / Desired count
Created / Updated	Timestamps
Version	Compose file version
Actions	View Services, Edit Compose File, Start/Stop Stack, Restart, Delete

Services Tab: Service name, Image, Status, Replicas (running/desired), Ports, Networks, Volumes, Resources, Actions (Scale, Restart, Logs, Inspect).

Compose Editor: Raw YAML editor with syntax highlighting and validation. Supports Compose version 3.7+. Deploy/Update buttons.

Registry Management

Stats: Connected Registries, Total Repositories.

Registries Tab: Table of configured registries with: Name, URL, Type (Docker Hub/Private/GCR/ECR/ACR), Authentication status, Repository count, Last sync, Status (connected / disconnected / error). Actions: Authenticate, Sync, Delete, Edit.

Repositories Tab: Name, Registry, Tags, Stars, Pulls, Size, Last Push, Visibility (public/private). Actions: Pull specific tag, Push, Delete, View Details.

Add Registry Modal: Registry type selection, URL, credentials (username/password/token), Test Connection button.

Container Logs

Real-time log viewer with controls:

• Container Filter — All Containers or specific container
• Log Level Filter — All / Error / Warning / Info / Debug
• Line Count — 50 / 100 / 200 / 500 / 1000 lines
• Search — Full-text search (regex capable)
• Auto-scroll — Toggle automatic scroll to latest
• Timestamps — Show/hide timestamp column
• Clear / Export — Clear logs or download as file

Columns: Timestamp (optional), Container (badge), Level (ERROR WARN INFO DEBUG), Message (monospace), Source (stdout/stderr).

Performance Statistics

System overview: Total CPU %, Total Memory Used/Limit, Network RX/TX (MB/s).

Charts (4 metric tabs): CPU (time-series area chart), Memory (donut by container), Network (bar chart RX/TX per container), Disk I/O (area chart read/write trends).

Per-Container Stats Table: Name, Status, CPU %, Memory (used/limit/%), Network (RX/TX MB/s), Disk (Read/Write MB/s), Process count. Real-time updates with filter for running containers only.

Docker Swarm

Orchestration management. If not initialized, shows Initialize Swarm button with worker/manager token display. Stats: Total Nodes, Managers, Workers, Running Services.

Nodes Tab:

Column	Description
Hostname	Node hostname
Role	Manager / Worker
Status	Ready / Down / Drain
Availability	Active / Pause / Drain
IP / CPU / Memory	Node resources
Containers	Running container count
Actions	Promote/Demote, Drain/Activate/Pause, Inspect, Remove

Services Tab: Name, Image, Mode (Replicated/Global badge), Replicas (running/desired, color: green=all, yellow=partial, red=failed), Status, Ports, Networks. Actions: Scale, Update Image, Restart, Logs, Delete.

Tasks Tab: Individual container instances: Task ID, Service, Node, Status (running/failed/shutdown/accepted/preparing/starting/removing), Desired State, Ports, Updated time. Actions: View Logs, Inspect, Force Update.

Join Modal: Worker join token (copyable), Manager join token, Join command: docker swarm join --token TOKEN MANAGER_IP:2377

Create Service Modal: Service name, Image, Mode (replicated/global), Replicas, Port mappings, Environment variables, Volume mounts, Restart policy, Update config (parallelism, delay), Placement constraints, Labels.

$ panelica docker create --image=nginx:latest --name=my-nginx --port=8080:80
$ panelica docker list
$ panelica docker stop --name=my-nginx
$ panelica docker compose up --file=docker-compose.yml
$ panelica docker swarm init

Panelica Monitor Dashboard

Navigate to Monitoring → Panelica Monitor for a comprehensive real-time monitoring dashboard with theme-aware widgets:

CPU Section:

• CPU Usage % gauge (0-100, color thresholds: green <50%, yellow <80%, red ≥80%)
• Load Average card (1min, 5min, 15min)
• Context Switches counter and CPU Cores display

Memory Section:

• Memory Usage % gauge with used/total GB
• Swap Usage % gauge
• Available Memory display
• Memory History line chart (last 1 hour)

Disk Section:

Column	Description
Device	Disk device name (e.g., /dev/sda1)
Mount	Mountpoint path
Total	Total capacity in GB
Used	Used space in GB
Available	Free space in GB
Usage %	Percentage gauge

Plus Disk I/O metrics: Read/Write Latency (ms), IOPS.

Network Section: In/Out throughput gauges (bytes/sec), error counter, TCP retransmits, and historical charts.

System: Running/Blocked/Total processes count, Forks per second, TCP connections, Sockets allocated/in use, UDP stats, Conntrack usage.

Panelica Services Status:

Column	Description
Service	Name with auto-detected icon (nginx, php, postgres, mysql, redis, etc.)
Status	running / stopped / starting
PID	Process ID
Uptime	Human-readable uptime (e.g., "1d 5h")
CPU %	CPU usage percentage
Memory	Memory usage in MB
Ports	Listening ports

Server Metrics

Navigate to Monitoring → Resource Usage for real-time server metrics with auto-refresh every 5 seconds.

The page shows 4 circular gauge cards at the top:

• CPU — Usage percentage with color gradient (green <50%, yellow 50-75%, orange 75-90%, red >90%) and core count
• Memory — Usage percentage with used/total GB display
• Disk — Usage percentage with used/total GB display
• Load Average — Three values (1m, 5m, 15m) color-coded relative to CPU core count

Network Traffic: Download (green) and Upload (blue) sections with bandwidth in bytes/sec and Mbps, each with a progress bar.

Service Status: Cards for each service with auto-detected icons (panelica_monitor, panelica_backend, nginx, mysql, postgresql, redis, apache) showing UP or DOWN status.

Quick Stats: Uptime, CPU Cores, Total Memory (with available), Total Disk (with available).

Toggle Auto-refresh on/off. Manual refresh button available. Last update timestamp displayed.

Service Monitor

Navigate to Monitoring → Service Monitor for managing all server services:

Column	Description
Service	Service name with auto-detected icon
Status	running / stopped / error / starting
PID	Process ID or N/A
Uptime	Duration or "-" if stopped
CPU %	CPU usage
Memory	Memory usage in MB
Ports	Listening ports
Boot	Enable/disable at boot toggle (with disable reason)
Actions	Start, Stop, Restart buttons

Disable Service: When disabling boot auto-start, a modal asks for the disable reason. The reason and timestamp are stored and displayed in the Boot column.

Bulk Actions: Start All and Restart All buttons (with confirmation modal). Auto-refresh updates status every 10 seconds.

$ panelica service status --all
$ panelica service restart --name=nginx
$ panelica service enable --name=redis

Navigate to Monitoring → Bandwidth. The page shows 4 summary cards at the top:

Card	Shows
Total Bandwidth	Total GB used for the selected month
Active Users	Number of users with bandwidth usage
Active Domains	Number of domains with traffic
Average per Domain	Calculated average MB per domain

Period Selector

A dropdown at the top lets you select from the last 12 months (format: "Month Year"). All charts and tables update when you change the period.

Charts

• Top Users by Bandwidth (left) — Horizontal bar chart showing top 10 users with MB/GB data labels (blue)
• Top Domains by Bandwidth (right) — Horizontal bar chart showing top 10 domains with MB/GB data labels (cyan)
• Domain Distribution — Pie chart showing top 5 domains with color-coded slices and legend

Users Details Table

Column	Description
User	Avatar + username + domain count
Role	Badge: ROOT / ADMIN / RESELLER / USER
Used	Bandwidth used in MB
Limit	"Unlimited" badge or formatted limit value
Usage	Color-coded progress bar + percentage (green <80%, orange 80-90%, red >90%)
Status	exceeded / critical / warning / unlimited / normal

Domains Details Table

Column	Description
Domain	Globe icon + domain name
Owner	Username of domain owner
Bandwidth Used	Formatted MB value
Share	Percentage badge showing share of total bandwidth
Distribution	Colored progress bar showing usage distribution

$ panelica bandwidth summary
$ panelica bandwidth --user=johndoe --period=month
$ panelica bandwidth --domain=example.com

Navigate to Monitoring → Statistics for a multi-tab statistics overview.

Date Range Selector

Select the time period at the top: 24 Hours, 7 Days (default), 30 Days, or 90 Days. All charts and values update accordingly.

Summary Cards

4 animated summary cards with percentage change badges:

Card	Shows	Change Indicator
Total Requests	HTTP request count with animated counter	Green up arrow or red down arrow
Bandwidth Used	Total bandwidth in GB	Percentage change badge
Unique Visitors	Unique visitor count	Percentage change badge
Avg Response Time	Average response time in seconds	Percentage change badge

Statistics Tabs

Web Traffic Tab: Area chart showing Request & Bandwidth Trend over time, Top Pages table (top 5), and Error Distribution pie chart (404, 500, 403, 502, 503 breakdown).

System Resources Tab: Line chart showing CPU %, Memory %, and Swap % over time. Plus 4 average stat cards: Average CPU, Average Memory, Average Load, and Uptime.

Database Tab: Bar chart showing Query Statistics per database engine (MySQL, PostgreSQL, MongoDB, Redis) with queries and connections. Database Sizes shown as progress bars with total allocation info.

Email Tab: 4 stat cards (Emails Sent, Delivery Rate, Open Rate, Click Rate) plus a Spam Report alert showing flagged emails.

Security Tab: 3 cards — Security Threats (Blocked IPs, Failed Logins, Brute Force counts), Malware Scanner (scanned files + threats), Firewall Status (blocked connections).

FTP Tab: Upload/Download statistics with transfer counts and total data, Connection Info card (total connections, active now, total data, average speed).

Export Options

Export statistics in multiple formats using the button group at the bottom:

• Export as PDF
• Export as Excel
• Export as CSV
• Email Report — Send report via email
• Schedule Reports — Set up recurring report delivery

$ panelica quota status
$ panelica quota status --user=johndoe
$ panelica resources list-users --sort=cpu

Navigate to Tools & Settings → Process Manager. The page shows 4 summary cards at the top:

Card	Shows
CPU Usage	Total CPU percentage with color-coded progress bar (>80% red, >60% orange, else blue)
Memory Usage	Total memory percentage with color-coded progress bar
Total Processes	Total process count + number currently running
Uptime	System uptime with load average values

Processes Tab

Filters: Search by process name/command/user/PID, filter by User dropdown, filter by Status (running, sleeping, zombie, stopped). Status summary badges show counts: Running Sleeping Zombie.

View Modes: Toggle between Flat List and Tree View (hierarchical with expand/collapse, indented levels). In tree view, Hide Kernel Threads and Expand All / Collapse All buttons appear.

Column	Description
PID	Process ID (sortable)
Name	Process name + command subtitle (monospace, truncated)
User	Username running the process
Status	Color-coded badge (success/info/warning/danger)
CPU	Progress bar + percentage (color-coded by usage)
Memory	Progress bar + MB value (color-coded by usage)
Priority	Nice value badge (color-coded)
Runtime	Process runtime duration
Actions	3 buttons: Terminate, Force Kill, Change Priority

Default sort: CPU descending. Click any sortable column header to change.

Process Actions

• Terminate (SIGTERM) — Gracefully terminate a process. Confirmation dialog shows PID, name, and user.
• Force Kill (SIGKILL) — Forcefully kill a process immediately. Confirmation dialog with warning.
• Kill All User Processes — When a user filter is active, a "Kill All" button appears. Shows count and preview of first 5 processes before confirming.
• Change Priority (Renice) — Dialog shows current priority and accepts a new value (-20 to 19). Validated before submission.

Monitoring Tab

Real-time charts and top process lists:

• CPU Usage Chart (left) — Area chart showing CPU % over time (blue)
• Memory Usage Chart (left) — Area chart showing Memory % over time (green)
• Top 5 by CPU (right) — Table with Name, CPU%, User columns
• Top 5 by Memory (right) — Table with Name, Memory MB, User columns

Auto-Refresh

Toggle auto-refresh with configurable intervals: 1s, 2s, 5s, 10s, 30s. Manual refresh button always available.

$ panelica processes list
$ panelica processes list --user=johndoe
$ panelica processes kill --pid=12345

Navigate to Monitoring → Log Management. The page has 6 tabs accessible via URL hash (#overview, #access, #errors, #system, #logrotate, #settings).

Overview Tab

Dashboard view with 4 summary cards and auto-refresh controls (Off, 30s, 60s, 5m):

Card	Shows	Details
Total Log Entries	Total count	Error count (red) and warning count (yellow) below
Error Rate	Percentage	Color-coded progress bar (red >100 errors, orange >10, green otherwise)
HTTP Requests	Total request count	2xx OK (green), 4xx (yellow), 5xx (red) breakdown
Log Disk Usage	Total log size	Category count + critical badge if oversized logs exist

Below the cards: Errors by Source (top 12 with progress bars), HTTP Overview (methods, status codes, bandwidth, top IPs), Logrotate Status (config counts, critical alerts), Last Error (most recent error entry), and Storage by Category table (category, size, file count, rotation status, usage %).

Access Logs Tab

HTTP request logs with real-time auto-refresh (Off, 5s, 10s, 30s).

Filters: Search by URL/IP, filter by Method (GET, POST, PUT, DELETE, PATCH, HEAD), filter by Status (2xx, 3xx, 4xx, 5xx), filter by Source (service).

Column	Description
Time	Timestamp in locale format
IP	Client IP address (monospace)
Method	Badge: GET POST PUT DELETE
Status	Badge: 2xx 3xx 4xx 5xx
URL	Request URL (truncated with ellipsis)
Size	Response size in KB/MB
View	Click to open detail modal

The table uses monospace font at 12px with a sticky header. Click any row to open a Request Detail modal showing: time, method, status, IP (with country), size, full URL, referer, response time, source file, user-agent, and raw log line.

Error Logs Tab

Error and warning log entries with real-time auto-refresh.

Filters: Search text, filter by Level (Critical, Error, Warning, Info, Debug, Notice), filter by Source.

Column	Description
Time	Timestamp in locale format
Level	Color-coded badge: Critical/Error (red), Warning (yellow), Info (blue), Notice (purple), Debug (gray)
Source	Service/source name
Message	Error message (truncated)
View	Click to open detail modal

Each row has a colored left border matching the severity level. Click to open a Log Entry Detail modal showing full message, details, file path with line number, and raw log.

System Logs Tab (Audit)

Panel audit log tracking all system events with auto-refresh.

Filters: Search by IP/user, filter by Event Type (26 event types including login, logout, user/domain/database/ftp/dns/email/plan/ssl/settings operations), filter by Severity (Info, Warning, Critical).

Column	Description
Time	Relative time ("Just now", "5m ago", "2h ago") or full date
Event	Color-coded icon + formatted event name (e.g., "Api User Create")
Severity	Info / Warning / Critical
User	Username or "-"
IP	Client IP (monospace)
Details	Truncated detail text
View	Click to open detail modal

Click any row to open a detail modal with full event information including JSON-formatted details (indented, scrollable).

Logrotate Tab

Manage log rotation configurations to prevent logs from consuming excessive disk space. Shows active configs, rotation schedules, and critical alerts for oversized logs (>500MB).

Settings Tab

Configure log retention, rotation frequency, compression, and notification settings for log management.

Auto-Refresh

All log tabs support auto-refresh with configurable intervals. A live countdown badge shows the next refresh time. The refresh happens silently in the background (no loading spinner if data already exists).

Navigate to Developer → API Management. This feature requires the api_access license feature. The page has 6 tabs and 4 summary cards at the top:

Card	Description
Total API Keys	Count of all keys with active key count
Total Requests (24h)	Request count in the last 24 hours
Success Rate	Percentage with progress bar
Avg Response Time	Milliseconds with Good/Slow badge

Tab 1: API Endpoints

Browse all External API endpoints organized by category in an accordion layout. Each category header shows the endpoint count.

Column	Description
Method	GET POST PUT PATCH DELETE
Endpoint	API path (e.g., /v1/accounts)
Description	What the endpoint does
Auth	HMAC-SHA256 badge
Rate Limit	Rate limit info per tier
Actions	Test button to open the API tester modal

Use the search box and category dropdown to filter. The Test Modal lets you build a request: select method, enter path, add query parameters, set headers, write request body (JSON), then click Execute to see the response with status code, response time, and formatted JSON body.

Tab 2: API Keys

Manage your API keys. The tab badge shows active key count.

Column	Description
Name	Key name + tier badge (Frontend/External)
API Key	Clickable code block (click to copy)
Status	Active / Inactive / Revoked
Permissions	First 2 scopes as badges + "+X more" tooltip
Usage	Request count + "Last: X ago"
Created	Creation date
Expires	Expiration date or "Never"
Actions	Copy, Edit, Regenerate Secret, Revoke, Delete

Creating an API Key:

Tab 3: SSH Commands

Command-line interface documentation for the External API via SSH. Shows a table of available commands with: command name (code formatted), description, category badge, and usage example. A connection example card displays the SSH connection command:

$ ssh user@server -p 2222
# Authenticate, then run commands:
> list accounts
> create domain example.com
> exit

Tab 4: Analytics

Usage statistics and monitoring:

• API Usage by Tier — Area chart showing External vs Panel API request trends over time
• Request Distribution — External API / Panel API / Success / Error request counts with progress bars
• Response Times — Average, P95, and P99 latency per API type (in ms)
• API Request Logs — Real-time audit trail table with: Endpoint, Method badge, Status code, User, IP, Date, Response Time (green = fast, yellow = slow). Click any entry to view full request/response details in a modal.

Tab 5: Quick Start Guide

Ready-to-use code examples in 6 languages: cURL, PHP, Python, Node.js, Go, and CLI. Each tab includes a copy button and covers: list accounts, create account, list domains, create domain, get/update web server config, and get server status.

Tab 6: Mobile Pairing

Connect your mobile device (iOS/Android) to manage the server remotely. This tab is available to ROOT users only and is also accessible via the QR code button in the header navbar.

Pairing Process:

Security Features:

• HMAC-SHA256 authentication per device
• Per-device API keys with unique mpk_ prefix
• AES-256 encrypted communication
• Scope-based access control — 11 categories (Domains, Server, Monitoring, Backups, Databases, Email, FTP, DNS, SSL, Actions, Files)
• Time-limited pairing codes with countdown timer and auto-expiry

Paired Devices Management:

Info	Description
Device Name	User-defined name (e.g., "My iPhone")
Platform	iOS (black icon) or Android (green icon)
Model	Device model (e.g., iPhone 15 Pro, SM-G991B)
Key Prefix	API key prefix for identification
Status	Active or Revoked
Request Count	Total API requests made
Last Used	Last activity timestamp and IP
Actions	Edit Permissions, Revoke (with reason), Delete

App Downloads: Apple App Store and Google Play Store links are displayed in the pairing section.

# stringToSign = METHOD + ENDPOINT_PATH + TIMESTAMP + REQUEST_BODY
# signature = HMAC-SHA256(stringToSign, API_SECRET)

# PHP example:
$message = "GET" . "/v1/accounts" . $timestamp . "";
$signature = hash_hmac('sha256', $message, $API_SECRET);

# Node.js example:
const signature = CryptoJS.HmacSHA256(message, apiSecret).toString();

Navigate to Domains → CloudFlare. This feature requires the cloudflare license feature.

Connecting Your Account

Zones Tab

Column	Description
Zone Name	Domain name managed by CloudFlare
Nameservers	Assigned CloudFlare nameservers
Plan Type	CloudFlare plan (Free, Pro, Business, Enterprise)
Status	Active or Pending
Account Email	Associated CloudFlare account
Actions	Manage, Sync, Disconnect

DNS Tab

Manage CloudFlare DNS records for the selected zone:

Column	Description
Record Name	DNS record name
Type	A, AAAA, CNAME, MX, TXT, SRV, etc.
Content/Target	Record value (IP, hostname, etc.)
TTL	Time-to-live (or Automatic)
Proxied	Toggle: CloudFlare proxy (orange cloud) or DNS Only
Actions	Edit, Delete

Create/edit records via modal: Record Type, Name, Content, TTL, Proxied toggle, and Priority (for MX/SRV).

Quick Actions Tab

• Purge All Cache — Clear entire CloudFlare cache
• Purge Cache by URL — Clear cache for specific URLs
• Development Mode — Bypass cache for 3 hours during development
• HTTPS Redirect — Enable/disable Always Use HTTPS
• Security Level — Set CloudFlare security level
• DDoS Protection — Toggle Under Attack Mode
• IP Whitelist — Manage whitelisted IPs

Settings Tab

Connection: Account Email, API Key (masked), verified status, Test/Reconnect/Disconnect buttons.

Zone Settings: SSL/TLS Mode, Minimum TLS Version, HSTS, Always Use HTTPS, Auto HTTPS Rewrites.

Performance: Minify (JS/CSS/HTML), Brotli Compression, Image Optimization, HTTP/2 and HTTP/3 toggles.

Navigate to Developer → Webhooks. This feature requires the api_access license feature. 4 summary cards at the top show: Total Webhooks (active count), Deliveries (24h) (failed count), Success Rate (%), and Avg Response time (ms).

The page has 4 tabs:

Tab 1: Webhooks List

Column	Description
Webhook	Name + description
Destination	Type badge with icon: Telegram Slack Discord HTTP Email
Events	Count of subscribed events
Status	Active / Inactive / Failed
Statistics	Delivery stats and success rate percentage
Actions	Edit, Test, View Logs, Regenerate Secret, Delete

Creating a Webhook

Tab 2: Available Events

Browse all 9 event categories with their available events. Each event shows: Event ID (code formatted), Description, Category badge, and a Payload Example (JSON preview).

Tab 3: Examples

Code examples in multiple languages showing how to: validate webhook signatures, parse webhook payloads, and handle retries.

Tab 4: Recent Calls

Delivery history with charts: Delivery Status Distribution (donut: Success/Failed/Pending) and Average Response Time (fastest/slowest/total). Below the charts:

Column	Description
Webhook	Name + destination type icon
Event	Event type (code formatted)
Status	Success / Failed / Pending / Retrying
Response	HTTP status code badge
Time	Response time in ms (green = fast, yellow = slow)
Date	Timestamp
Actions	Retry (failed only), View Details

The detail modal shows: full request payload (JSON), response body, status code, response time, retry count, and error message if failed.

$expected = hash_hmac('sha256', $payload, $secret);
if ($expected === $receivedSignature) { // valid }

Navigate to Tools & Settings → Cron Jobs. This feature requires the cron_jobs license feature.

Statistics Cards

Seven cards at the top of the page:

Card	Description
Domain Jobs	Total domain cron jobs with active/disabled badge counts
System Jobs	Total system cron jobs with active/disabled badge counts
Running Jobs	Jobs currently executing
Success Rate	Percentage of successful executions
Executions (24h)	Total executions in the last 24 hours

The page has 4 tabs: Domain Cron Jobs, System Cron Jobs, Templates, and Logs.

1. Domain Cron Jobs Tab

Cron jobs associated with specific domains. Status filter buttons: All, Enabled (green), Disabled (gray).

Column	Description
Task Name	Cron job name
Domain	Associated domain (clickable link)
Command	Full command to execute (code format)
Schedule	Human-readable schedule (e.g., “Every hour”)
Next Run	Countdown timer (HH:MM:SS) to next execution
Last Run	Formatted date/time of last execution
Status	Enabled or Disabled
Success Rate	Successes / total runs percentage
Actions	View Logs, Execute Now, Edit, Toggle, Delete

Bulk Actions: Select multiple jobs with checkboxes, then: Execute Multiple, Enable All, Disable All, Delete All, or Clear All Logs. Each bulk action requires feature permission.

2. System Cron Jobs Tab

Server-wide cron jobs (ROOT only). Same table structure as domain cron jobs, plus additional fields:

• Run as User — Dropdown to select the system user that will execute the command
• Priority — 1–10 priority level
• Lock — Lock icon for system-protected jobs that cannot be modified

Expanded execution statistics per job: total runs, success count, failure count, average duration (ms), and last exit code.

Creating a Cron Job

Click Add Cron Job to open the creation modal:

Job Actions

• Execute Now — Run the job immediately (shows running status)
• Edit — Modify schedule, command, and settings
• Enable / Disable — Toggle job execution
• View Logs — Opens expandable accordion with execution history per log entry: started at, duration (ms), exit code, status (success/failed), stdout (code block), stderr (code block), error message, triggered by
• Clear Logs — Remove execution log entries
• Delete — Remove the cron job

3. Templates Tab

Pre-built templates displayed as a card gallery, organized by 11 categories:

Category	Icon	Example Templates
Backup	ri-hard-drive-2-line	Database backup, file backup
Cleanup	ri-delete-bin-line	Log cleanup, temp file cleanup
Monitoring	ri-pulse-line	Health check, uptime monitor
Security	ri-shield-check-line	Malware scan, SSL renewal check
CMS	ri-wordpress-fill	WordPress cron (wp-cron.php)
Framework	ri-code-box-fill	Laravel scheduler (artisan schedule:run)
Cache	ri-refresh-line	Cache clear, OPcache reset
SEO	ri-earth-line	Sitemap generation
Database	ri-database-2-line	MySQL optimize, backup rotation
Service	ri-server-line	Service restart, queue worker
Custom	ri-tools-line	Custom shell script

Each template card shows icon, name, description, and category badge. Click Use Template to create a new cron job pre-filled with the template’s schedule, command, and timeout. Templates support placeholders: {DOMAIN}, {DOMAIN_PATH}, {PUBLIC_HTML}, {PHP_VERSION}, {USERNAME}.

4. Execution Logs Tab

Paginated history of all cron executions (50 per page). Status filter: All, Success (green), Error (red).

Column	Description
Job Name	Cron job name
Domain/Type	Domain name or “System”
Command	Executed command (code format)
Started	Start timestamp
Duration	Human-readable duration (ms/s/m)
Status	Success or Error
Exit Code	Process exit code
Triggered By	Username who triggered (manual) or “Schedule”
Actions	View details (expand), Delete

Click a row to expand and see full stdout/stderr output, error messages, and execution metadata.