User Guide¶
The AegisAI dashboard is a single-page application (SPA) built with Vite that provides day-to-day security operations for monitoring agents, managing policies, reviewing audit logs, investigating anomalies, and processing HITL approvals.
Access Requirements¶
| Role | Dashboard | Agents | Policies | Audit | Anomalies | HITL | Settings |
|---|---|---|---|---|---|---|---|
| Viewer | ✅ | ❌ | ❌ | Read | ❌ | ❌ | ✅ |
| Developer | ✅ | ✅ | Read | Read | ❌ | ❌ | ✅ |
| Security Analyst | ✅ | ❌ | Read | Read/Export | Read | Approve/Reject | ✅ |
| Admin | ✅ | ✅ | Full | Read/Export | Read | Approve/Reject | ✅ |
| Super Admin | ✅ | ✅ | Full | Full | Full | Full | ✅ |
Role-based navigation
Sidebar items are shown or hidden based on your role. If a page returns 403 Forbidden, contact your administrator to adjust your role.
Dashboard Pages¶
| Page | Route | Description |
|---|---|---|
| Dashboard | /dashboard |
KPI overview, activity chart, recent events |
| Agents | /agents |
Agent registry, semantic search, details |
| Discovery | /discovery |
Shadow AI candidates → HITL confirm |
| Policies | /policies |
Policy management and templates |
| Audit | /audit |
Audit log search and export |
| Anomalies | /anomalies |
Anomaly reports and detector status |
| HITL | /hitl |
Pending approval requests |
| Settings | /settings |
API key, theme, language |
Authentication¶
The dashboard uses two credentials stored in browser session after login:
- JWT access token — sent as
Authorization: Bearer <token>for user-authenticated endpoints - Session API key — sent as
X-API-Keyfor tenant-scoped API operations
Both are issued by POST /api/v1/auth/login and refreshed on each login.
Real-time Updates¶
The dashboard connects to the WebSocket endpoint for live notifications:
Events include policy violations, anomaly detections, HITL status changes, and system status updates. The connection indicator in the header shows platform health from GET /api/v1/status.
Internationalization¶
The UI supports English and Russian. Switch languages using the language selector in the header or sidebar. Documentation is also available in both languages.
Keyboard Navigation¶
The dashboard includes accessibility features:
- Skip link — jump to main content
- Keyboard navigation — tab through interactive elements
- Modal focus trapping — dialogs trap focus for screen readers
Common Workflows¶
Monitor Security Posture¶
- Open Dashboard for KPI summary
- Review the activity chart for unusual spikes
- Check Anomalies for ML-detected behavioral deviations
- Drill into Audit for detailed event logs
Respond to a Policy Violation¶
- A real-time toast appears when
policy.violatedfires - Navigate to Audit and filter by the agent or action
- Review the violation context and risk score
- If HITL is required, approve or reject in HITL
Manage Compliance Policies¶
- Open Policies
- Browse templates (GDPR, HIPAA, FZ-152)
- Create or edit a policy from a template
- Activate the policy and test with Policy Check (API or SDK)