a3546b4c01
- Move all credentials from hardcoded to .env with python-dotenv (add .env.example template and .gitignore) - Add CSRF token generation and validation on all state-changing requests - Replace random.choices with secrets.choice for all secure code generation - Add session cookie security headers (HttpOnly, Secure, SameSite) - Add presenter management: assign/remove presenters to breakout sessions, presenter QR scanning - Add email communications system: templates per event, custom email sending, sent email tracking - Add staff/organizer profile pages with staff code display - New DB tables: event_email_templates, sent_emails, user_communications - New DB columns: staff.reminder_count/reminder_dates, breakout_session_organizers.presenter_code - Expand English translation strings across all new features Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
22 lines
631 B
HTML
22 lines
631 B
HTML
{% extends "base.html" %}
|
|
|
|
{% block title %}{{ 'staff_dashboard'|t }} - {{ event.name }}{% endblock %}
|
|
|
|
{% block content %}
|
|
<div class="staff-dashboard">
|
|
<div class="staff-header">
|
|
<h1>{{ 'staff'|t }}: {{ event.name }}</h1>
|
|
<p>{{ 'welcome'|t }}, {{ staff_name }}</p>
|
|
</div>
|
|
|
|
<div class="staff-actions">
|
|
<a href="{{ url_for('event_scan', event_id=event.id) }}" class="btn btn-primary btn-lg"><i data-lucide="scan-line"></i> {{ 'start_qr_scanner'|t }}</a>
|
|
</div>
|
|
</div>
|
|
|
|
<script>
|
|
document.addEventListener('DOMContentLoaded', function() {
|
|
lucide.createIcons();
|
|
});
|
|
</script>
|
|
{% endblock %} |