Web Dashboard | CodePiper

Starting the Dashboard

Launch the daemon with the --web flag:

codepiper daemon --web

The dashboard is served at http://127.0.0.1:3000 by default. To use a custom port:

codepiper daemon --web --port 8080

The daemon also starts a WebSocket server on port 9999 for real-time updates (terminal streaming, live events).

On the first visit, the dashboard walks you through a three-step onboarding:

Bootstrap password. Enter the one-time password printed to the terminal when the daemon started
Set your password. Choose a permanent password (minimum 8 characters, hashed with Argon2)
Configure MFA. Scan the TOTP QR code with your authenticator app, enter the 6-digit verification code, and save your recovery codes

MFA is mandatory. After setup, every login requires your password plus a TOTP code.

The main workspace. From here you can:

View all sessions with status indicators (Running, Stopped, Crashed, Waiting)
Create new sessions with the provider, directory, billing mode, and env set options
Click into a session to open the detail view

Each session has a tabbed interface:

Terminal: Live terminal output (xterm.js), with sub-views for Tmux output, Conversation rendering, and interactive Attach mode
Git: Branch list, commit log, file diffs, stage/unstage controls
Policies: Policies applied to this session
Logs: Hook events and system events
Events: Raw event stream with filtering

The terminal sub-tab shows a “live” indicator when the session is actively streaming output.

Token usage and cost tracking across all sessions:

Analytics data is extracted from Claude Code transcripts (JSONL). Codex sessions have limited analytics (PTY output only).

Manage permission policies and review the audit log:

Policy list: Create, edit, enable/disable, and delete policies
Policy sets: Group policies for easy assignment to sessions
Audit log: Every permission decision with timestamp, session, tool, matched rule, and outcome

See Permission Policies for details on rule syntax and evaluation.

Create and run multi-session workflows:

Workflow editor: Define workflows in YAML or JSON with session steps, conditionals, parallel execution, and loops
Execution view: Watch workflow progress in real time, inspect step results
Execution history: Past runs with status and logs

Configure the daemon and manage resources:

Daemon settings: Session preservation, default policy action (ask/deny), SSH agent forwarding, terminal feature flags
Workspaces: Named scopes for organizing sessions
Environment sets: Encrypted variable bundles (AES-256-GCM) for API keys and secrets
Security: Password change, MFA management, active session list with revoke controls

The dashboard is a responsive PWA (Progressive Web App). On mobile devices:

The PWA manifest configures standalone display mode with the CodePiper icon and dark theme.

The dashboard binds to 127.0.0.1 by default. For access from other devices:

ssh -L 3000:localhost:3000 -L 9999:localhost:9999 your-server

Then open http://localhost:3000 on your local machine.

For persistent remote access, put Nginx or Caddy in front of the daemon with TLS:

# Set these environment variables for the daemon
TRUST_PROXY_HEADERS=true
FORCE_SECURE_COOKIES=true
ALLOWED_ORIGINS=https://codepiper.yourdomain.com

See Remote Access for complete configuration examples.