feat(ui): enhance Admin Console with new features and deep linking

- Implemented anchor mapping for precise help links in the Admin Console, allowing users to access specific documentation sections directly.
- Added new navigation cases in the App component to support tools and settings tabs, improving user experience.
- Introduced a new admin endpoint to purge inbound faxes by provider SID, enhancing local development capabilities.
- Updated the Dashboard component to navigate to specific settings sections, streamlining access to configuration options.
- Enhanced the Diagnostics component with third-party links for Sinch integration, providing users with direct access to relevant documentation.

These changes improve the usability and functionality of the Admin Console, making it easier for users to navigate and access necessary resources.

Author: Faxbot Agent

AGENTS.md

@@ -206,6 +206,14 @@ Quick references
 - App shell: `api/admin_ui/src/App.tsx`:1
 - Electron: `api/admin_ui/electron/main.js`:1, `api/admin_ui/electron/preload.js`:1
 
+Anchor mapping for precise help links (Docs → UI)
+- The Admin Console Diagnostics and Settings consume JSON anchor maps from the docs site to deep-link directly to exact sentences.
+- Location (docs site): `${docsBase}/anchors/<provider>.json` (e.g., anchors/sinch.json).
+- Schema: a flat object `{ "topic-key": "https://.../page#anchor-id" }`.
+- Examples of topic keys we use today:
+  - Sinch: `sinch-build-access-keys-location`, `sinch-oauth-client-credentials-flow`, `sinch-regional-base-url`, `sinch-inbound-webhook-url`, `sinch-inbound-basic-auth`, `sinch-troubleshoot-auth-fail`, `sinch-troubleshoot-inbound-fail`, `sinch-register-webhook-limitations`.
+- If an anchor mapping is present, the UI will prefer it over generic links. Keep these JSON files up to date as docs evolve to avoid stale or vague tips.
+
 ### How To Add A New Screen
 
 1) Create the component

api/admin_ui/src/App.tsx

@@ -161,6 +161,22 @@ function AppContent() {
         setTabValue(5);
         setToolsTab(2);
         break;
+      case 'tools/terminal':
+        setTabValue(5);
+        setToolsTab(0);
+        break;
+      case 'tools/plugins':
+        setTabValue(5);
+        setToolsTab(3); // Plugins entry only present when enabled
+        break;
+      case 'tools/scripts':
+        setTabValue(5);
+        setToolsTab(adminConfig?.v3_plugins?.enabled ? 4 : 3);
+        break;
+      case 'tools/tunnels':
+        setTabValue(5);
+        setToolsTab(adminConfig?.v3_plugins?.enabled ? 5 : 4);
+        break;
       case 'settings/setup':
         setTabValue(4);
         setSettingsTab(0);
@@ -169,6 +185,70 @@ function AppContent() {
         setTabValue(4);
         setSettingsTab(1);
         break;
+      case 'settings/security':
+        setTabValue(4);
+        setSettingsTab(1);
+        setTimeout(() => {
+          const el = document.querySelector('#settings-security');
+          (el as any)?.scrollIntoView?.({ behavior: 'smooth' });
+        }, 150);
+        break;
+      case 'settings/phaxio':
+        setTabValue(4);
+        setSettingsTab(1);
+        setTimeout(() => {
+          const el = document.querySelector('#settings-phaxio');
+          (el as any)?.scrollIntoView?.({ behavior: 'smooth' });
+        }, 150);
+        break;
+      case 'settings/sinch':
+        setTabValue(4);
+        setSettingsTab(1);
+        setTimeout(() => {
+          const el = document.querySelector('#settings-sinch');
+          (el as any)?.scrollIntoView?.({ behavior: 'smooth' });
+        }, 150);
+        break;
+      case 'settings/sip':
+        setTabValue(4);
+        setSettingsTab(1);
+        setTimeout(() => {
+          const el = document.querySelector('#settings-sip');
+          (el as any)?.scrollIntoView?.({ behavior: 'smooth' });
+        }, 150);
+        break;
+      case 'settings/inbound':
+        setTabValue(4);
+        setSettingsTab(1);
+        setTimeout(() => {
+          const el = document.querySelector('#settings-inbound');
+          (el as any)?.scrollIntoView?.({ behavior: 'smooth' });
+        }, 150);
+        break;
+      case 'settings/storage':
+        setTabValue(4);
+        setSettingsTab(1);
+        setTimeout(() => {
+          const el = document.querySelector('#settings-storage');
+          (el as any)?.scrollIntoView?.({ behavior: 'smooth' });
+        }, 150);
+        break;
+      case 'settings/mcp':
+        setTabValue(4);
+        setSettingsTab(3);
+        break;
+      case 'jobs':
+        setTabValue(2);
+        break;
+      case 'send':
+        setTabValue(1);
+        break;
+      case 'inbound':
+        setTabValue(3);
+        break;
+      case 'dashboard':
+        setTabValue(0);
+        break;
       default:
         setTabValue(0);
     }

api/admin_ui/src/api/client.ts

@@ -227,6 +227,14 @@ export class AdminAPIClient {
     return res.json();
   }
 
+  async purgeInboundBySid(providerSid: string): Promise<{ ok: boolean; deleted_faxes: number; deleted_events: number }>{
+    const res = await this.fetch('/admin/inbound/purge-by-sid', {
+      method: 'DELETE',
+      body: JSON.stringify({ provider_sid: providerSid })
+    });
+    return res.json();
+  }
+
   async simulateInbound(opts: { backend?: string; fr?: string; to?: string; pages?: number; status?: string } = {}): Promise<{ id: string; status: string }> {
     const res = await this.fetch('/admin/inbound/simulate', {
       method: 'POST',

api/admin_ui/src/components/Dashboard.tsx

@@ -255,7 +255,7 @@ function Dashboard({ client, onNavigate }: DashboardProps) {
                   },
                   transition: 'all 0.2s ease-in-out',
                 }}
-                onClick={() => onNavigate?.(4)} // Navigate to Settings tab (index 4)
+                onClick={() => onNavigate?.('settings/security')}
               >
                 <CardContent sx={{ pb: { xs: 1, sm: 2 } }}>
                   <Typography variant="h6" component="h2" gutterBottom sx={{ fontSize: { xs: '1rem', sm: '1.25rem' } }}>
@@ -282,7 +282,7 @@ function Dashboard({ client, onNavigate }: DashboardProps) {
 
           {/* Config Overview */}
           <Grid item xs={12} md={6}>
-            <Card>
+            <Card sx={{ cursor: 'pointer' }} onClick={() => onNavigate?.('settings/settings')}>
               <CardContent>
                 <Typography variant="h6" gutterBottom>Config Overview</Typography>
                 <Grid container spacing={1}>
@@ -303,7 +303,7 @@ function Dashboard({ client, onNavigate }: DashboardProps) {
 
           {/* MCP Overview */}
           <Grid item xs={12} md={6}>
-            <Card>
+            <Card sx={{ cursor: 'pointer' }} onClick={() => onNavigate?.('settings/mcp')}>
               <CardContent>
                 <Typography variant="h6" gutterBottom>MCP Overview</Typography>
                 <Grid container spacing={1} alignItems="center">
@@ -339,7 +339,7 @@ function Dashboard({ client, onNavigate }: DashboardProps) {
           {/* Plugins (feature-gated) */}
           {cfg?.v3_plugins?.enabled && (
             <Grid item xs={12} md={6}>
-              <Card>
+              <Card sx={{ cursor: 'pointer' }} onClick={() => onNavigate?.('tools/plugins')}>
                 <CardContent>
                   <Typography variant="h6" gutterBottom>Plugins</Typography>
                   <Typography variant="body2" color="text.secondary">
@@ -355,7 +355,7 @@ function Dashboard({ client, onNavigate }: DashboardProps) {
 
           {/* SDK & Quickstart */}
           <Grid item xs={12} md={cfg?.v3_plugins?.enabled ? 6 : 12}>
-            <Card>
+            <Card sx={{ cursor: 'pointer' }} onClick={() => onNavigate?.('send')}>
               <CardContent>
                 <Typography variant="h6" gutterBottom>SDK & Quickstart</Typography>
                 <Typography variant="body2">Base URL: {window.location.origin}</Typography>
@@ -376,7 +376,7 @@ PY`}</Box>
 
           {/* Last Updated */}
           <Grid item xs={12}>
-            <Card>
+            <Card sx={{ cursor: 'pointer' }} onClick={() => onNavigate?.('tools/diagnostics')}>
               <CardContent>
                 <Typography variant="body2" color="text.secondary">
                   Last updated: {new Date(health.timestamp).toLocaleString()}

api/admin_ui/src/components/Diagnostics.tsx

@@ -66,11 +66,54 @@ function Diagnostics({ client, onNavigate, docsBase }: DiagnosticsProps) {
   const [testJobId, setTestJobId] = useState<string | null>(null);
   const [testStatus, setTestStatus] = useState<string | null>(null);
   const [expandedSections, setExpandedSections] = useState<string[]>(['summary']);
+  const [anchors, setAnchors] = useState<Record<string, string>>({});
 
   const theme = useTheme();
   const isMobile = useMediaQuery(theme.breakpoints.down('md'));
   const isSmallMobile = useMediaQuery(theme.breakpoints.down('sm'));
   const { active, registry } = useTraits();
+  const thirdParty: Record<string, string> = {
+    'sinch-build-access-keys-location': 'https://dashboard.sinch.com/settings/access-keys',
+    'sinch-oauth-client-credentials-flow': 'https://developers.sinch.com/docs/fax/api-reference/authentication/oauth/',
+    'sinch-regional-base-url': 'https://developers.sinch.com/docs/fax/api-reference/#global-url',
+    'sinch-inbound-webhook-url': 'https://developers.sinch.com/docs/fax/api-reference/fax/tag/Notifications/#incoming-fax-event-webhook',
+    'sinch-inbound-basic-auth': 'https://developers.sinch.com/docs/fax/api-reference/fax/tag/Notifications/#incoming-fax-event-webhook',
+    'sinch-register-webhook-limitations': 'https://developers.sinch.com/docs/fax/api-reference/fax/tag/Services/#create-a-service',
+    'sinch-troubleshoot-auth-fail': 'https://developers.sinch.com/docs/fax/api-reference/fax/tag/Error-Messages/#http-error-codes',
+    'sinch-troubleshoot-inbound-fail': 'https://developers.sinch.com/docs/fax/api-reference/fax/tag/Services/#create-a-service',
+    'enforce-https-phi': 'https://www.ecfr.gov/current/title-45/subtitle-A/subchapter-C/part-164/subpart-C/section-164.312',
+    'require-api-key-production': 'https://cheatsheetseries.owasp.org/cheatsheets/REST_Security_Cheat_Sheet.html#https',
+    'audit-logging-hipaa': 'https://www.ecfr.gov/current/title-45/subtitle-A/subchapter-C/part-164/subpart-C/section-164.312',
+    'phaxio-webhook-hmac': 'https://www.phaxio.com/docs/security/callbacks',
+    'phaxio-status-callback-url': 'https://www.phaxio.com/docs/api/v1/send/sendCallback',
+  };
+
+  const hrefFor = (topic: string): string | undefined => (anchors[topic] || thirdParty[topic]);
+
+  // Load anchor mapping from docs site for precise deep links
+  useEffect(() => {
+    const loadAnchors = async () => {
+      try {
+        const base = docsBase || 'https://dmontgomery40.github.io/Faxbot';
+        const topics: string[] = [ 'security', 'diagnostics', 'inbound', 'storage', 'plugins', 'mcp' ];
+        const provs = [active?.outbound, active?.inbound].filter(Boolean) as string[];
+        for (const p of provs) { if (!topics.includes(p)) topics.push(p); }
+        topics.push('all');
+        for (const t of Array.from(new Set(topics))) {
+          try {
+            const res = await fetch(`${base}/anchors/${t}.json`, { cache: 'no-store' });
+            if (res.ok) {
+              const js = await res.json();
+              setAnchors(prev => ({ ...prev, ...js }));
+            }
+          } catch { /* ignore per-scope failure */ }
+        }
+      } catch {
+        /* ignore */
+      }
+    };
+    loadAnchors();
+  }, [docsBase, active?.outbound, active?.inbound]);
 
   const runDiagnostics = async () => {
     try {
@@ -203,9 +246,9 @@ function Diagnostics({ client, onNavigate, docsBase }: DiagnosticsProps) {
     if (t.includes('phaxio')) {
       docs.push({ text: 'Phaxio Setup Guide', href: `${docsBase || 'https://dmontgomery40.github.io/Faxbot'}/backends/phaxio-setup.html` });
       docs.push({ text: 'Phaxio Console', href: 'https://console.phaxio.com' });
-      if (key === 'public_url_https' || key === 'callback_url_set') {
-        docs.push({ text: 'Webhook security requires HTTPS for PHI transmission.' });
-      }
+      const add = (topic: string, text: string) => { const href = anchors[topic] || thirdParty[topic]; if (href) docs.push({ text, href }); };
+      add('phaxio-webhook-hmac', 'Verify Phaxio inbound HMAC signatures');
+      add('phaxio-status-callback-url', 'Set status callback URL (HTTPS required)');
     }
 
     if (t.includes('sip')) {
@@ -217,16 +260,26 @@ function Diagnostics({ client, onNavigate, docsBase }: DiagnosticsProps) {
 
     if (t.includes('security')) {
       docs.push({ text: 'Security Guide', href: `${docsBase || 'https://dmontgomery40.github.io/Faxbot'}/security/` });
-      if (key === 'enforce_https') {
-        docs.push({ text: 'HIPAA requires encryption in transit. Enable ENFORCE_PUBLIC_HTTPS=true.' });
-      }
+      const addSec = (topic: string, text: string) => { const href = anchors[topic] || thirdParty[topic]; if (href) docs.push({ text, href }); };
+      addSec('enforce-https-phi', 'Enforce HTTPS for PHI (ENFORCE_PUBLIC_HTTPS)');
+      addSec('require-api-key-production', 'Require API keys (REQUIRE_API_KEY)');
+      addSec('audit-logging-hipaa', 'Enable audit logging');
     }
 
     if (t.includes('sinch')) {
       docs.push({ text: 'Faxbot: Sinch Setup', href: `${docsBase || 'https://dmontgomery40.github.io/Faxbot'}/backends/sinch-setup.html` });
       docs.push({ text: 'Sinch Fax API', href: 'https://developers.sinch.com/docs/fax/api-reference/' });
       docs.push({ text: 'OAuth 2.0 for Fax API', href: 'https://developers.sinch.com/docs/fax/api-reference/authentication/oauth/' });
       docs.push({ text: 'Sinch Customer Dashboard (Access Keys – Build)', href: 'https://dashboard.sinch.com/settings/access-keys' });
+      const add = (topic: string, text: string) => { const href = anchors[topic] || thirdParty[topic]; if (href) docs.push({ text, href }); };
+      add('sinch-build-access-keys-location', 'Where to find Sinch Fax access keys (Build)');
+      add('sinch-oauth-client-credentials-flow', 'How Faxbot mints OAuth2 access tokens');
+      add('sinch-regional-base-url', 'Regional base URL (SINCH_BASE_URL)');
+      add('sinch-inbound-webhook-url', 'Set the inbound webhook URL');
+      add('sinch-inbound-basic-auth', 'Enforce Basic auth for inbound webhooks');
+      add('sinch-troubleshoot-auth-fail', 'Troubleshooting auth failures in Diagnostics');
+      add('sinch-troubleshoot-inbound-fail', 'Troubleshooting inbound failures');
+      add('sinch-register-webhook-limitations', 'Limitations of auto “Register with Sinch”');
     }
 
     return docs;

api/admin_ui/src/components/ScriptsTests.tsx

@@ -157,6 +157,9 @@ const ScriptsTests: React.FC<Props> = ({ client, docsBase }) => {
   const [actions, setActions] = useState<Array<{ id: string; label: string }>>([]);
   const [actionOutput, setActionOutput] = useState<Record<string, string>>({});
   const [activeActionTab, setActiveActionTab] = useState<string>('');
+  const [purgeSid, setPurgeSid] = useState<string>('');
+  const [purgeResult, setPurgeResult] = useState<string>('');
+  const [purging, setPurging] = useState<boolean>(false);
 
   const theme = useTheme();
 
@@ -249,6 +252,21 @@ const ScriptsTests: React.FC<Props> = ({ client, docsBase }) => {
     } finally { setBusyInfo(false); }
   };
 
+  const runPurgeInbound = async () => {
+    setError(''); setPurging(true); setPurgeResult('');
+    try {
+      if (!purgeSid.trim()) throw new Error('Enter a provider_sid');
+      const res = await (client as any).purgeInboundBySid?.(purgeSid.trim());
+      if (res && res.ok) {
+        setPurgeResult(`Deleted faxes=${res.deleted_faxes}, events=${res.deleted_events}`);
+      } else {
+        setPurgeResult('No items deleted');
+      }
+    } catch (e: any) {
+      setError(e?.message || 'Purge failed');
+    } finally { setPurging(false); }
+  };
+
   const generateSecret = () => {
     try {
       if (window.crypto && (window.crypto as any).getRandomValues) {
@@ -529,6 +547,12 @@ const ScriptsTests: React.FC<Props> = ({ client, docsBase }) => {
                 </Button>
               </Stack>
               <ConsoleBox lines={infoLines} loading={busyInfo} />
+              <Typography variant="subtitle2" sx={{ mt: 1 }}>Database Helpers</Typography>
+              <Stack direction={{ xs: 'column', sm: 'row' }} spacing={1} alignItems={{ xs: 'stretch', sm: 'center' }}>
+                <ResponsiveTextField label="provider_sid" value={purgeSid} onChange={setPurgeSid} placeholder="fax_123 or provider-specific id" />
+                <Button variant="contained" onClick={runPurgeInbound} disabled={purging} sx={{ borderRadius: 2 }}>{purging ? 'Purging…' : 'Purge Inbound by SID'}</Button>
+                {purgeResult && <Chip size="small" color="info" variant="outlined" label={purgeResult} />}
+              </Stack>
             </Stack>
           </ResponsiveFormSection>
         </Grid>

api/admin_ui/src/components/Settings.tsx

@@ -354,6 +354,7 @@ function Settings({ client }: SettingsProps) {
           </ResponsiveFormSection>
 
           {/* Security Settings */}
+          <Box id="settings-security" />
           <ResponsiveFormSection
             title="Security Settings"
             subtitle="Configure authentication and HIPAA compliance"
@@ -451,6 +452,7 @@ function Settings({ client }: SettingsProps) {
 
           {/* Backend-Specific Configuration */}
           {active?.outbound === 'phaxio' && (
+                  <Box id="settings-phaxio" />
                   <ResponsiveSettingSection
                     title="PHAXIO Configuration"
                     subtitle="Configure your Phaxio API credentials and settings"
@@ -503,6 +505,7 @@ function Settings({ client }: SettingsProps) {
                 )}
 
                 {active?.outbound === 'sinch' && (
+                  <Box id="settings-sinch" />
                   <ResponsiveSettingSection
                     title="Sinch Fax API v3 Configuration"
                     subtitle="Outbound API uses OAuth 2.0 (Bearer). Inbound webhooks are not provider‑signed; you may enforce Basic auth on your endpoint."
@@ -648,6 +651,7 @@ function Settings({ client }: SettingsProps) {
                 )}
 
                 {active?.outbound === 'sip' && (
+                  <Box id="settings-sip" />
                   <ResponsiveSettingSection
                     title="SIP / Asterisk Configuration"
                     subtitle="Configure your Asterisk AMI connection settings"
@@ -761,6 +765,7 @@ function Settings({ client }: SettingsProps) {
           </ResponsiveFormSection>
 
           {/* Inbound Receiving */}
+          <Box id="settings-inbound" />
           <ResponsiveFormSection
             title="Inbound Receiving"
             subtitle="Configure inbound fax receiving and storage settings"
@@ -1013,6 +1018,7 @@ function Settings({ client }: SettingsProps) {
               </Card>
             </Grid>
           )}
+          <Box id="settings-storage" />
           <ResponsiveFormSection
             title="Storage Configuration"
             subtitle="Configure file storage backend and S3 settings"