Dashboard Overview

The AuroraSOC dashboard is a Next.js 15 single-page application that provides real-time visibility into your security operations. Built with shadcn/ui components, Recharts for visualization, and Zustand for state management, it offers a responsive, dark-themed interface designed for 24/7 SOC monitoring.

Main Dashboard

When you log in, the main dashboard presents a comprehensive overview:

KPI Cards

Six key performance indicators display at the top:

Critical Alerts — Red badge with count of critical-severity alerts
High Alerts — Orange badge for high-severity
Medium Alerts — Yellow badge for medium-severity
Low Alerts — Blue badge for low-severity
Open Cases — Active investigation cases
CPS Devices — Registered IoT/CPS devices with attestation status

Charts

24-Hour Alert Trend — Area chart showing alert volume over the last 24 hours
Severity Distribution — Pie chart breaking down alerts by severity

Auto-Refresh

The dashboard auto-refreshes every 15 seconds via the Zustand store, ensuring analysts always see the latest data without manual refreshing.

The sidebar organizes features into logical groups:

Group	Pages	Required Permission
Operations	Alerts, Cases, Approvals	`alerts:read`, `cases:read`
Intelligence	Threat Intel, SIEM, UEBA	`siem:read`, `agents:read`
Infrastructure	Agents, CPS/IoT, EDR, SOAR	`agents:read`, `cps:read`
System	Sites, Firmware, Settings	`sites:read`, `settings:manage`

Role-Based Navigation

Navigation items are automatically filtered based on your role's permissions. A viewer will see fewer navigation options than an admin.

Real-Time Updates

The dashboard maintains WebSocket connections for live data:

Alert Stream (/api/v1/ws/alerts) — New alerts appear instantly
Agent Thoughts (/api/v1/ws/agent-thoughts) — Live AI agent reasoning
Approval Notifications (/api/v1/ws/approvals) — Human approval requests

WebSocket connections require authentication via a query-string token parameter.

Theme and Accessibility

Dark Mode — Default theme optimized for low-light SOC environments
Responsive — Works on desktop, tablet, and mobile
RBAC-Aware — UI elements adapt to user permissions
Keyboard Navigation — All interactive elements are keyboard-accessible

Main Dashboard​

KPI Cards​

Charts​

Auto-Refresh​

Navigation Structure​

Real-Time Updates​

Theme and Accessibility​