upload all

.gitignore

@@ -0,0 +1,29 @@
+# Dependencies
+node_modules/
+frontend/node_modules/
+
+# Build outputs
+dist/
+frontend/dist/
+backend/bin/
+
+# Database
+*.db
+*.sqlite
+*.sqlite3
+backend/spaces.db
+
+# Environment variables
+.env
+.env.local
+
+# IDE
+.vscode/
+.idea/
+*.swp
+*.swo
+
+# OS
+.DS_Store
+Thumbs.db
+

API_CHEATSHEET.md

@@ -0,0 +1,441 @@
+# Certigo Addon API Cheatsheet
+
+## Base URL
+```
+http://localhost:8080/api
+```
+
+Alle Endpunkte unterstützen CORS und akzeptieren OPTIONS-Requests für Preflight-Checks.
+
+---
+
+## System & Statistics
+
+### GET /health
+Prüft den Systemstatus des Backends.
+
+**Response:**
+```json
+{
+  "status": "ok",
+  "message": "Backend ist erreichbar",
+  "time": "2024-01-15T10:30:00Z"
+}
+```
+
+**Beispiel:**
+```bash
+curl http://localhost:8080/api/health
+```
+
+---
+
+### GET /stats
+Ruft Statistiken über die Anzahl der Spaces, FQDNs und CSRs ab.
+
+**Response:**
+```json
+{
+  "spaces": 5,
+  "fqdns": 12,
+  "csrs": 7
+}
+```
+
+**Beispiel:**
+```bash
+curl http://localhost:8080/api/stats
+```
+
+---
+
+## Spaces
+
+### GET /spaces
+Ruft alle Spaces ab.
+
+**Response:**
+```json
+[
+  {
+    "id": "550e8400-e29b-41d4-a716-446655440000",
+    "name": "Mein Space",
+    "description": "Beschreibung des Spaces",
+    "createdAt": "2024-01-15T10:30:00Z"
+  }
+]
+```
+
+**Beispiel:**
+```bash
+curl http://localhost:8080/api/spaces
+```
+
+---
+
+### POST /spaces
+Erstellt einen neuen Space.
+
+**Request Body:**
+```json
+{
+  "name": "Mein Space",
+  "description": "Beschreibung des Spaces"
+}
+```
+
+**Response:** `201 Created`
+```json
+{
+  "id": "550e8400-e29b-41d4-a716-446655440000",
+  "name": "Mein Space",
+  "description": "Beschreibung des Spaces",
+  "createdAt": "2024-01-15T10:30:00Z"
+}
+```
+
+**Beispiel:**
+```bash
+curl -X POST http://localhost:8080/api/spaces \
+  -H "Content-Type: application/json" \
+  -d '{
+    "name": "Mein Space",
+    "description": "Beschreibung des Spaces"
+  }'
+```
+
+---
+
+### DELETE /spaces/{id}
+Löscht einen Space.
+
+**Query Parameters:**
+- `deleteFqdns` (optional, boolean): Wenn `true`, werden alle FQDNs des Spaces mitgelöscht.
+
+**Response:** `200 OK`
+```json
+{
+  "message": "Space erfolgreich gelöscht"
+}
+```
+
+**Fehler:**
+- `409 Conflict`: Space enthält noch FQDNs (nur wenn `deleteFqdns` nicht `true` ist)
+
+**Beispiele:**
+```bash
+# Space ohne FQDNs löschen
+curl -X DELETE http://localhost:8080/api/spaces/550e8400-e29b-41d4-a716-446655440000
+
+# Space mit allen FQDNs löschen
+curl -X DELETE "http://localhost:8080/api/spaces/550e8400-e29b-41d4-a716-446655440000?deleteFqdns=true"
+```
+
+---
+
+### GET /spaces/{id}/fqdns/count
+Ruft die Anzahl der FQDNs für einen Space ab.
+
+**Response:**
+```json
+{
+  "count": 5
+}
+```
+
+**Beispiel:**
+```bash
+curl http://localhost:8080/api/spaces/550e8400-e29b-41d4-a716-446655440000/fqdns/count
+```
+
+---
+
+## FQDNs
+
+### GET /spaces/{id}/fqdns
+Ruft alle FQDNs für einen Space ab.
+
+**Response:**
+```json
+[
+  {
+    "id": "660e8400-e29b-41d4-a716-446655440000",
+    "spaceId": "550e8400-e29b-41d4-a716-446655440000",
+    "fqdn": "example.com",
+    "description": "Beschreibung des FQDN",
+    "createdAt": "2024-01-15T10:30:00Z"
+  }
+]
+```
+
+**Beispiel:**
+```bash
+curl http://localhost:8080/api/spaces/550e8400-e29b-41d4-a716-446655440000/fqdns
+```
+
+---
+
+### POST /spaces/{id}/fqdns
+Erstellt einen neuen FQDN innerhalb eines Spaces.
+
+**Request Body:**
+```json
+{
+  "fqdn": "example.com",
+  "description": "Beschreibung des FQDN"
+}
+```
+
+**Response:** `201 Created`
+```json
+{
+  "id": "660e8400-e29b-41d4-a716-446655440000",
+  "spaceId": "550e8400-e29b-41d4-a716-446655440000",
+  "fqdn": "example.com",
+  "description": "Beschreibung des FQDN",
+  "createdAt": "2024-01-15T10:30:00Z"
+}
+```
+
+**Fehler:**
+- `409 Conflict`: FQDN existiert bereits in diesem Space (case-insensitive)
+
+**Beispiel:**
+```bash
+curl -X POST http://localhost:8080/api/spaces/550e8400-e29b-41d4-a716-446655440000/fqdns \
+  -H "Content-Type: application/json" \
+  -d '{
+    "fqdn": "example.com",
+    "description": "Beschreibung des FQDN"
+  }'
+```
+
+---
+
+### DELETE /spaces/{id}/fqdns/{fqdnId}
+Löscht einen einzelnen FQDN.
+
+**Response:** `200 OK`
+```json
+{
+  "message": "FQDN erfolgreich gelöscht"
+}
+```
+
+**Beispiel:**
+```bash
+curl -X DELETE http://localhost:8080/api/spaces/550e8400-e29b-41d4-a716-446655440000/fqdns/660e8400-e29b-41d4-a716-446655440000
+```
+
+---
+
+### DELETE /spaces/{id}/fqdns
+Löscht alle FQDNs eines Spaces.
+
+**Response:** `200 OK`
+```json
+{
+  "message": "Alle FQDNs erfolgreich gelöscht",
+  "deletedCount": 5
+}
+```
+
+**Beispiel:**
+```bash
+curl -X DELETE http://localhost:8080/api/spaces/550e8400-e29b-41d4-a716-446655440000/fqdns
+```
+
+---
+
+### DELETE /fqdns?confirm=true
+Löscht alle FQDNs aus allen Spaces. **WICHTIG:** Erfordert `confirm=true` Query-Parameter.
+
+**Query Parameters:**
+- `confirm` (required, boolean): Muss `true` sein, um die Operation auszuführen.
+
+**Response:** `200 OK`
+```json
+{
+  "message": "Alle FQDNs erfolgreich gelöscht",
+  "deletedCount": 12
+}
+```
+
+**Beispiel:**
+```bash
+curl -X DELETE "http://localhost:8080/api/fqdns?confirm=true"
+```
+
+---
+
+## CSRs (Certificate Signing Requests)
+
+### POST /spaces/{spaceId}/fqdns/{fqdnId}/csr
+Lädt einen CSR (Certificate Signing Request) im PEM-Format hoch.
+
+**Request:** `multipart/form-data`
+- `csr` (file, required): CSR-Datei im PEM-Format (.pem oder .csr)
+- `spaceId` (string, required): ID des Spaces
+- `fqdn` (string, required): Name des FQDNs
+
+**Response:** `201 Created`
+```json
+{
+  "id": "770e8400-e29b-41d4-a716-446655440000",
+  "fqdnId": "660e8400-e29b-41d4-a716-446655440000",
+  "spaceId": "550e8400-e29b-41d4-a716-446655440000",
+  "fqdn": "example.com",
+  "csrPem": "-----BEGIN CERTIFICATE REQUEST-----\n...\n-----END CERTIFICATE REQUEST-----",
+  "subject": "CN=example.com",
+  "publicKeyAlgorithm": "RSA",
+  "signatureAlgorithm": "SHA256-RSA",
+  "keySize": 2048,
+  "dnsNames": ["example.com", "www.example.com"],
+  "emailAddresses": ["admin@example.com"],
+  "ipAddresses": ["192.168.1.1"],
+  "uris": ["https://example.com"],
+  "extensions": [
+    {
+      "id": "2.5.29.37",
+      "oid": "2.5.29.37",
+      "name": "X509v3 Extended Key Usage",
+      "critical": false,
+      "value": "301406082b0601050507030106082b06010505070302",
+      "description": "TLS Web Server Authentication\n                    TLS Web Client Authentication",
+      "purposes": ["TLS Web Server Authentication", "TLS Web Client Authentication"]
+    }
+  ],
+  "createdAt": "2024-01-15T10:30:00Z"
+}
+```
+
+**Beispiel:**
+```bash
+curl -X POST http://localhost:8080/api/spaces/550e8400-e29b-41d4-a716-446655440000/fqdns/660e8400-e29b-41d4-a716-446655440000/csr \
+  -F "csr=@/path/to/certificate.csr" \
+  -F "spaceId=550e8400-e29b-41d4-a716-446655440000" \
+  -F "fqdn=example.com"
+```
+
+---
+
+### GET /spaces/{spaceId}/fqdns/{fqdnId}/csr
+Ruft CSR(s) für einen FQDN ab.
+
+**Query Parameters:**
+- `latest` (optional, boolean): Wenn `true`, wird nur der neueste CSR zurückgegeben. Standard: alle CSRs.
+
+**Response (ohne `latest`):** `200 OK`
+```json
+[
+  {
+    "id": "770e8400-e29b-41d4-a716-446655440000",
+    "fqdnId": "660e8400-e29b-41d4-a716-446655440000",
+    "spaceId": "550e8400-e29b-41d4-a716-446655440000",
+    "fqdn": "example.com",
+    "csrPem": "-----BEGIN CERTIFICATE REQUEST-----\n...\n-----END CERTIFICATE REQUEST-----",
+    "subject": "CN=example.com",
+    "publicKeyAlgorithm": "RSA",
+    "signatureAlgorithm": "SHA256-RSA",
+    "keySize": 2048,
+    "dnsNames": ["example.com"],
+    "emailAddresses": [],
+    "ipAddresses": [],
+    "uris": [],
+    "extensions": [...],
+    "createdAt": "2024-01-15T10:30:00Z"
+  }
+]
+```
+
+**Response (mit `latest=true`):** `200 OK`
+```json
+{
+  "id": "770e8400-e29b-41d4-a716-446655440000",
+  ...
+}
+```
+
+**Beispiele:**
+```bash
+# Alle CSRs abrufen
+curl http://localhost:8080/api/spaces/550e8400-e29b-41d4-a716-446655440000/fqdns/660e8400-e29b-41d4-a716-446655440000/csr
+
+# Nur neuesten CSR abrufen
+curl "http://localhost:8080/api/spaces/550e8400-e29b-41d4-a716-446655440000/fqdns/660e8400-e29b-41d4-a716-446655440000/csr?latest=true"
+```
+
+---
+
+## Extension Details
+
+CSR Extensions werden automatisch geparst und in menschenlesbarem Format zurückgegeben:
+
+### Bekannte Extension-Namen:
+- `X509v3 Key Usage`
+- `X509v3 Subject Alternative Name`
+- `X509v3 Basic Constraints`
+- `X509v3 Extended Key Usage`
+- `X509v3 CRL Distribution Points`
+- `X509v3 Certificate Policies`
+- `X509v3 Authority Key Identifier`
+- `X509v3 Subject Key Identifier`
+
+### Extended Key Usage Werte:
+- `TLS Web Server Authentication`
+- `TLS Web Client Authentication`
+- `Code Signing`
+- `E-mail Protection`
+- `Time Stamping`
+- `OCSP Signing`
+- `IPsec End System`
+- `IPsec Tunnel`
+- `IPsec User`
+
+---
+
+## HTTP Status Codes
+
+- `200 OK`: Erfolgreiche Anfrage
+- `201 Created`: Ressource erfolgreich erstellt
+- `400 Bad Request`: Ungültige Anfrage
+- `404 Not Found`: Ressource nicht gefunden
+- `409 Conflict`: Konflikt (z.B. FQDN existiert bereits)
+- `500 Internal Server Error`: Serverfehler
+
+---
+
+## Fehlerbehandlung
+
+Bei Fehlern wird eine Fehlermeldung im Response-Body zurückgegeben:
+
+```json
+{
+  "error": "Fehlermeldung"
+}
+```
+
+Oder als Plain-Text:
+```
+Fehlermeldung
+```
+
+---
+
+## CORS
+
+Alle Endpunkte unterstützen CORS mit folgenden Headern:
+- `Access-Control-Allow-Origin: *`
+- `Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS`
+- `Access-Control-Allow-Headers: Content-Type`
+
+---
+
+## Hinweise
+
+1. **UUIDs**: Alle IDs sind UUIDs im Format `550e8400-e29b-41d4-a716-446655440000`
+2. **Timestamps**: Alle Timestamps sind im RFC3339-Format (ISO 8601)
+3. **FQDN-Validierung**: FQDNs werden case-insensitive verglichen
+4. **CSR-Format**: CSRs müssen im PEM-Format vorliegen
+5. **Cascading Deletes**: Beim Löschen eines Spaces werden alle zugehörigen FQDNs und CSRs automatisch gelöscht (ON DELETE CASCADE)
+

backend/config/providers/autodns.json

@@ -0,0 +1,7 @@
+{
+  "enabled": false,
+  "settings": {
+    "password": "test",
+    "username": "test"
+  }
+}

backend/config/providers/dummy-ca.json

@@ -0,0 +1,4 @@
+{
+  "enabled": true,
+  "settings": {}
+}

backend/config/providers/hetzner.json

@@ -0,0 +1,4 @@
+{
+  "enabled": false,
+  "settings": {}
+}

backend/go.mod

@@ -0,0 +1,9 @@
+module certigo-addon-backend
+
+go 1.21
+
+require (
+	github.com/google/uuid v1.5.0
+	github.com/gorilla/mux v1.8.1
+	github.com/mattn/go-sqlite3 v1.14.18
+)

backend/go.sum

@@ -0,0 +1,6 @@
+github.com/google/uuid v1.5.0 h1:1p67kYwdtXjb0gL0BPiP1Av9wiZPo5A8z2cWkTZ+eyU=
+github.com/google/uuid v1.5.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/gorilla/mux v1.8.1 h1:TuBL49tXwgrFYWhqrNgrUNEY92u81SPhu7sTdzQEiWY=
+github.com/gorilla/mux v1.8.1/go.mod h1:AKf9I4AEqPTmMytcMc0KkNouC66V3BtZ4qD5fmWSiMQ=
+github.com/mattn/go-sqlite3 v1.14.18 h1:JL0eqdCOq6DJVNPSvArO/bIV9/P7fbGrV00LZHc+5aI=
+github.com/mattn/go-sqlite3 v1.14.18/go.mod h1:2eHXhiwb8IkHr+BDWZGa96P6+rkvnG63S2DGjv9HUNg=

backend/openapi.yaml

@@ -0,0 +1,586 @@
+openapi: 3.0.3
+info:
+  title: Certigo Addon API
+  description: API für die Verwaltung von Spaces, FQDNs und Certificate Signing Requests (CSRs)
+  version: 1.0.0
+  contact:
+    name: Certigo Addon
+
+servers:
+  - url: http://localhost:8080/api
+    description: Local development server
+
+paths:
+  /health:
+    get:
+      summary: System Health Check
+      description: Prüft den Systemstatus des Backends
+      tags:
+        - System
+      responses:
+        '200':
+          description: System ist erreichbar
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/HealthResponse'
+  
+  /stats:
+    get:
+      summary: Statistiken abrufen
+      description: Ruft Statistiken über die Anzahl der Spaces, FQDNs und CSRs ab
+      tags:
+        - System
+      responses:
+        '200':
+          description: Statistiken erfolgreich abgerufen
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/StatsResponse'
+
+  /spaces:
+    get:
+      summary: Alle Spaces abrufen
+      description: Ruft eine Liste aller Spaces ab
+      tags:
+        - Spaces
+      responses:
+        '200':
+          description: Liste der Spaces
+          content:
+            application/json:
+              schema:
+                type: array
+                items:
+                  $ref: '#/components/schemas/Space'
+    
+    post:
+      summary: Space erstellen
+      description: Erstellt einen neuen Space
+      tags:
+        - Spaces
+      requestBody:
+        required: true
+        content:
+          application/json:
+            schema:
+              $ref: '#/components/schemas/CreateSpaceRequest'
+      responses:
+        '201':
+          description: Space erfolgreich erstellt
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Space'
+        '400':
+          description: Ungültige Anfrage
+
+  /spaces/{id}:
+    delete:
+      summary: Space löschen
+      description: Löscht einen Space. Wenn der Space FQDNs enthält, muss der Parameter deleteFqdns=true gesetzt werden.
+      tags:
+        - Spaces
+      parameters:
+        - name: id
+          in: path
+          required: true
+          schema:
+            type: string
+            format: uuid
+        - name: deleteFqdns
+          in: query
+          required: false
+          schema:
+            type: boolean
+            default: false
+          description: Wenn true, werden alle FQDNs des Spaces mitgelöscht
+      responses:
+        '200':
+          description: Space erfolgreich gelöscht
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/MessageResponse'
+        '404':
+          description: Space nicht gefunden
+        '409':
+          description: Space enthält noch FQDNs
+
+  /spaces/{id}/fqdns/count:
+    get:
+      summary: FQDN-Anzahl abrufen
+      description: Ruft die Anzahl der FQDNs für einen Space ab
+      tags:
+        - FQDNs
+      parameters:
+        - name: id
+          in: path
+          required: true
+          schema:
+            type: string
+            format: uuid
+      responses:
+        '200':
+          description: Anzahl der FQDNs
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/CountResponse'
+
+  /spaces/{id}/fqdns:
+    get:
+      summary: Alle FQDNs eines Spaces abrufen
+      description: Ruft alle FQDNs für einen Space ab
+      tags:
+        - FQDNs
+      parameters:
+        - name: id
+          in: path
+          required: true
+          schema:
+            type: string
+            format: uuid
+      responses:
+        '200':
+          description: Liste der FQDNs
+          content:
+            application/json:
+              schema:
+                type: array
+                items:
+                  $ref: '#/components/schemas/FQDN'
+        '404':
+          description: Space nicht gefunden
+    
+    post:
+      summary: FQDN erstellen
+      description: Erstellt einen neuen FQDN innerhalb eines Spaces
+      tags:
+        - FQDNs
+      parameters:
+        - name: id
+          in: path
+          required: true
+          schema:
+            type: string
+            format: uuid
+      requestBody:
+        required: true
+        content:
+          application/json:
+            schema:
+              $ref: '#/components/schemas/CreateFQDNRequest'
+      responses:
+        '201':
+          description: FQDN erfolgreich erstellt
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/FQDN'
+        '400':
+          description: Ungültige Anfrage
+        '404':
+          description: Space nicht gefunden
+        '409':
+          description: FQDN existiert bereits in diesem Space
+    
+    delete:
+      summary: Alle FQDNs eines Spaces löschen
+      description: Löscht alle FQDNs eines Spaces
+      tags:
+        - FQDNs
+      parameters:
+        - name: id
+          in: path
+          required: true
+          schema:
+            type: string
+            format: uuid
+      responses:
+        '200':
+          description: Alle FQDNs erfolgreich gelöscht
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/DeleteResponse'
+
+  /spaces/{id}/fqdns/{fqdnId}:
+    delete:
+      summary: FQDN löschen
+      description: Löscht einen einzelnen FQDN
+      tags:
+        - FQDNs
+      parameters:
+        - name: id
+          in: path
+          required: true
+          schema:
+            type: string
+            format: uuid
+        - name: fqdnId
+          in: path
+          required: true
+          schema:
+            type: string
+            format: uuid
+      responses:
+        '200':
+          description: FQDN erfolgreich gelöscht
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/MessageResponse'
+        '404':
+          description: FQDN nicht gefunden
+
+  /fqdns:
+    delete:
+      summary: Alle FQDNs global löschen
+      description: Löscht alle FQDNs aus allen Spaces. Erfordert confirm=true Query-Parameter.
+      tags:
+        - FQDNs
+      parameters:
+        - name: confirm
+          in: query
+          required: true
+          schema:
+            type: boolean
+          description: Muss true sein, um die Operation auszuführen
+      responses:
+        '200':
+          description: Alle FQDNs erfolgreich gelöscht
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/DeleteResponse'
+        '400':
+          description: Bestätigung erforderlich
+
+  /csrs:
+    delete:
+      summary: Alle CSRs global löschen
+      description: Löscht alle CSRs aus allen Spaces. Erfordert confirm=true Query-Parameter.
+      tags:
+        - CSRs
+      parameters:
+        - name: confirm
+          in: query
+          required: true
+          schema:
+            type: string
+          description: Muss "true" sein, um die Operation auszuführen
+          example: "true"
+      responses:
+        '200':
+          description: Alle CSRs erfolgreich gelöscht
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/DeleteResponse'
+        '400':
+          description: Bestätigung erforderlich
+
+  /spaces/{spaceId}/fqdns/{fqdnId}/csr:
+    post:
+      summary: CSR hochladen
+      description: Lädt einen CSR (Certificate Signing Request) im PEM-Format hoch
+      tags:
+        - CSRs
+      parameters:
+        - name: spaceId
+          in: path
+          required: true
+          schema:
+            type: string
+            format: uuid
+        - name: fqdnId
+          in: path
+          required: true
+          schema:
+            type: string
+            format: uuid
+      requestBody:
+        required: true
+        content:
+          multipart/form-data:
+            schema:
+              type: object
+              required:
+                - csr
+                - spaceId
+                - fqdn
+              properties:
+                csr:
+                  type: string
+                  format: binary
+                  description: CSR-Datei im PEM-Format
+                spaceId:
+                  type: string
+                  description: ID des Spaces
+                fqdn:
+                  type: string
+                  description: Name des FQDNs
+      responses:
+        '201':
+          description: CSR erfolgreich hochgeladen
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/CSR'
+        '400':
+          description: Ungültige Anfrage oder ungültiges CSR-Format
+        '404':
+          description: Space oder FQDN nicht gefunden
+    
+    get:
+      summary: CSR(s) abrufen
+      description: Ruft CSR(s) für einen FQDN ab. Mit latest=true wird nur der neueste CSR zurückgegeben.
+      tags:
+        - CSRs
+      parameters:
+        - name: spaceId
+          in: path
+          required: true
+          schema:
+            type: string
+            format: uuid
+        - name: fqdnId
+          in: path
+          required: true
+          schema:
+            type: string
+            format: uuid
+        - name: latest
+          in: query
+          required: false
+          schema:
+            type: boolean
+            default: false
+          description: Wenn true, wird nur der neueste CSR zurückgegeben
+      responses:
+        '200':
+          description: CSR(s) erfolgreich abgerufen
+          content:
+            application/json:
+              schema:
+                oneOf:
+                  - $ref: '#/components/schemas/CSR'
+                  - type: array
+                    items:
+                      $ref: '#/components/schemas/CSR'
+        '404':
+          description: FQDN nicht gefunden
+
+components:
+  schemas:
+    HealthResponse:
+      type: object
+      properties:
+        status:
+          type: string
+          example: "ok"
+        message:
+          type: string
+          example: "Backend ist erreichbar"
+        time:
+          type: string
+          format: date-time
+          example: "2024-01-15T10:30:00Z"
+    
+    StatsResponse:
+      type: object
+      properties:
+        spaces:
+          type: integer
+          example: 5
+        fqdns:
+          type: integer
+          example: 12
+        csrs:
+          type: integer
+          example: 7
+    
+    Space:
+      type: object
+      properties:
+        id:
+          type: string
+          format: uuid
+          example: "550e8400-e29b-41d4-a716-446655440000"
+        name:
+          type: string
+          example: "Mein Space"
+        description:
+          type: string
+          example: "Beschreibung des Spaces"
+        createdAt:
+          type: string
+          format: date-time
+          example: "2024-01-15T10:30:00Z"
+    
+    CreateSpaceRequest:
+      type: object
+      required:
+        - name
+      properties:
+        name:
+          type: string
+          example: "Mein Space"
+        description:
+          type: string
+          example: "Beschreibung des Spaces"
+    
+    FQDN:
+      type: object
+      properties:
+        id:
+          type: string
+          format: uuid
+          example: "660e8400-e29b-41d4-a716-446655440000"
+        spaceId:
+          type: string
+          format: uuid
+          example: "550e8400-e29b-41d4-a716-446655440000"
+        fqdn:
+          type: string
+          example: "example.com"
+        description:
+          type: string
+          example: "Beschreibung des FQDN"
+        createdAt:
+          type: string
+          format: date-time
+          example: "2024-01-15T10:30:00Z"
+    
+    CreateFQDNRequest:
+      type: object
+      required:
+        - fqdn
+      properties:
+        fqdn:
+          type: string
+          example: "example.com"
+        description:
+          type: string
+          example: "Beschreibung des FQDN"
+    
+    Extension:
+      type: object
+      properties:
+        id:
+          type: string
+          example: "2.5.29.37"
+        oid:
+          type: string
+          example: "2.5.29.37"
+        name:
+          type: string
+          example: "X509v3 Extended Key Usage"
+        critical:
+          type: boolean
+          example: false
+        value:
+          type: string
+          example: "301406082b0601050507030106082b06010505070302"
+        description:
+          type: string
+          example: "TLS Web Server Authentication\n                    TLS Web Client Authentication"
+        purposes:
+          type: array
+          items:
+            type: string
+          example: ["TLS Web Server Authentication", "TLS Web Client Authentication"]
+    
+    CSR:
+      type: object
+      properties:
+        id:
+          type: string
+          format: uuid
+          example: "770e8400-e29b-41d4-a716-446655440000"
+        fqdnId:
+          type: string
+          format: uuid
+          example: "660e8400-e29b-41d4-a716-446655440000"
+        spaceId:
+          type: string
+          format: uuid
+          example: "550e8400-e29b-41d4-a716-446655440000"
+        fqdn:
+          type: string
+          example: "example.com"
+        csrPem:
+          type: string
+          example: "-----BEGIN CERTIFICATE REQUEST-----\n...\n-----END CERTIFICATE REQUEST-----"
+        subject:
+          type: string
+          example: "CN=example.com"
+        publicKeyAlgorithm:
+          type: string
+          example: "RSA"
+        signatureAlgorithm:
+          type: string
+          example: "SHA256-RSA"
+        keySize:
+          type: integer
+          example: 2048
+        dnsNames:
+          type: array
+          items:
+            type: string
+          example: ["example.com", "www.example.com"]
+        emailAddresses:
+          type: array
+          items:
+            type: string
+          example: ["admin@example.com"]
+        ipAddresses:
+          type: array
+          items:
+            type: string
+          example: ["192.168.1.1"]
+        uris:
+          type: array
+          items:
+            type: string
+          example: ["https://example.com"]
+        extensions:
+          type: array
+          items:
+            $ref: '#/components/schemas/Extension'
+        createdAt:
+          type: string
+          format: date-time
+          example: "2024-01-15T10:30:00Z"
+    
+    MessageResponse:
+      type: object
+      properties:
+        message:
+          type: string
+          example: "Operation erfolgreich"
+    
+    CountResponse:
+      type: object
+      properties:
+        count:
+          type: integer
+          example: 5
+    
+    DeleteResponse:
+      type: object
+      properties:
+        message:
+          type: string
+          example: "Alle FQDNs erfolgreich gelöscht"
+        deletedCount:
+          type: integer
+          example: 5
+
+  securitySchemes:
+    {}:
+      type: http
+      scheme: none
+

backend/providers/autodns.go

@@ -0,0 +1,76 @@
+package providers
+
+import (
+	"fmt"
+	"strings"
+)
+
+// AutoDNSProvider ist der Provider für AutoDNS
+type AutoDNSProvider struct{}
+
+func NewAutoDNSProvider() *AutoDNSProvider {
+	return &AutoDNSProvider{}
+}
+
+func (p *AutoDNSProvider) GetName() string {
+	return "autodns"
+}
+
+func (p *AutoDNSProvider) GetDisplayName() string {
+	return "AutoDNS"
+}
+
+func (p *AutoDNSProvider) GetDescription() string {
+	return "AutoDNS SSL Certificate Provider"
+}
+
+func (p *AutoDNSProvider) ValidateConfig(settings map[string]interface{}) error {
+	username, ok := settings["username"].(string)
+	if !ok || strings.TrimSpace(username) == "" {
+		return fmt.Errorf("username ist erforderlich")
+	}
+	
+	password, ok := settings["password"].(string)
+	if !ok || strings.TrimSpace(password) == "" {
+		return fmt.Errorf("password ist erforderlich")
+	}
+	
+	return nil
+}
+
+func (p *AutoDNSProvider) TestConnection(settings map[string]interface{}) error {
+	// Hier würde die tatsächliche Verbindung zu AutoDNS getestet werden
+	// Für jetzt nur Validierung
+	return p.ValidateConfig(settings)
+}
+
+// GetRequiredSettings gibt die erforderlichen Einstellungen zurück
+func (p *AutoDNSProvider) GetRequiredSettings() []SettingField {
+	return []SettingField{
+		{
+			Name:        "username",
+			Label:       "Benutzername",
+			Type:        "text",
+			Required:    true,
+			Description: "AutoDNS Benutzername",
+		},
+		{
+			Name:        "password",
+			Label:       "Passwort",
+			Type:        "password",
+			Required:    true,
+			Description: "AutoDNS Passwort",
+		},
+	}
+}
+
+// SignCSR signiert einen CSR (noch nicht implementiert)
+func (p *AutoDNSProvider) SignCSR(csrPEM string, settings map[string]interface{}) (*SignCSRResult, error) {
+	return nil, fmt.Errorf("AutoDNS CSR-Signierung noch nicht implementiert")
+}
+
+// GetCertificate ruft ein Zertifikat ab (noch nicht implementiert)
+func (p *AutoDNSProvider) GetCertificate(certificateID string, settings map[string]interface{}) (string, error) {
+	return "", fmt.Errorf("AutoDNS Zertifikat-Abruf noch nicht implementiert")
+}
+

backend/providers/dummy.go

@@ -0,0 +1,205 @@
+package providers
+
+import (
+	"bytes"
+	"encoding/base64"
+	"encoding/json"
+	"fmt"
+	"io"
+	"net/http"
+	"strings"
+)
+
+// DummyCAProvider ist ein Dummy-Provider für Tests
+type DummyCAProvider struct {
+	baseURL string
+}
+
+func NewDummyCAProvider() *DummyCAProvider {
+	return &DummyCAProvider{
+		baseURL: "http://localhost:8088",
+	}
+}
+
+func (p *DummyCAProvider) GetName() string {
+	return "dummy-ca"
+}
+
+func (p *DummyCAProvider) GetDisplayName() string {
+	return "Dummy CA"
+}
+
+func (p *DummyCAProvider) GetDescription() string {
+	return "Externe Dummy CA für Tests und Entwicklung (http://localhost:8088)"
+}
+
+func (p *DummyCAProvider) ValidateConfig(settings map[string]interface{}) error {
+	// Dummy-Provider benötigt keine Konfiguration
+	return nil
+}
+
+func (p *DummyCAProvider) TestConnection(settings map[string]interface{}) error {
+	// Teste Verbindung zur externen CA über Health Check
+	url := fmt.Sprintf("%s/health", p.baseURL)
+	resp, err := http.Get(url)
+	if err != nil {
+		return fmt.Errorf("CA-Server nicht erreichbar: %v", err)
+	}
+	defer resp.Body.Close()
+
+	if resp.StatusCode != http.StatusOK {
+		return fmt.Errorf("CA-Server antwortet mit Status %d", resp.StatusCode)
+	}
+
+	// Prüfe Response Body
+	body, err := io.ReadAll(resp.Body)
+	if err != nil {
+		return fmt.Errorf("fehler beim Lesen der Health-Check-Response: %v", err)
+	}
+
+	var healthResponse struct {
+		Status string `json:"status"`
+	}
+	if err := json.Unmarshal(body, &healthResponse); err != nil {
+		return fmt.Errorf("ungültige Health-Check-Response: %v", err)
+	}
+
+	if healthResponse.Status != "ok" {
+		return fmt.Errorf("CA-Server meldet Status: %s", healthResponse.Status)
+	}
+
+	return nil
+}
+
+// GetRequiredSettings gibt die erforderlichen Einstellungen zurück
+func (p *DummyCAProvider) GetRequiredSettings() []SettingField {
+	return []SettingField{}
+}
+
+// SignCSR signiert einen CSR über die externe Dummy CA API
+func (p *DummyCAProvider) SignCSR(csrPEM string, settings map[string]interface{}) (*SignCSRResult, error) {
+	// Entferne mögliche Whitespace am Anfang/Ende
+	csrPEM = strings.TrimSpace(csrPEM)
+
+	// Base64-kodiere den CSR
+	csrB64 := base64.StdEncoding.EncodeToString([]byte(csrPEM))
+
+	// Erstelle Request Body
+	requestBody := map[string]interface{}{
+		"csr":           csrB64,
+		"action":        "sign",
+		"validity_days": 365,
+	}
+
+	// Konvertiere zu JSON
+	jsonData, err := json.Marshal(requestBody)
+	if err != nil {
+		return nil, fmt.Errorf("fehler beim Erstellen des Request-Body: %v", err)
+	}
+
+	// Erstelle HTTP Request
+	url := fmt.Sprintf("%s/csr", p.baseURL)
+	req, err := http.NewRequest("POST", url, bytes.NewBuffer(jsonData))
+	if err != nil {
+		return nil, fmt.Errorf("fehler beim Erstellen des HTTP-Requests: %v", err)
+	}
+
+	req.Header.Set("Content-Type", "application/json")
+
+	// Führe Request aus
+	client := &http.Client{}
+	resp, err := client.Do(req)
+	if err != nil {
+		return nil, fmt.Errorf("fehler beim Senden des Requests an die CA: %v", err)
+	}
+	defer resp.Body.Close()
+
+	// Lese Response Body
+	body, err := io.ReadAll(resp.Body)
+	if err != nil {
+		return nil, fmt.Errorf("fehler beim Lesen der Response: %v", err)
+	}
+
+	// Prüfe Status Code
+	if resp.StatusCode != http.StatusOK {
+		return nil, fmt.Errorf("CA-API Fehler (Status %d): %s", resp.StatusCode, string(body))
+	}
+
+	// Parse Response
+	var apiResponse struct {
+		ID          string `json:"id"`
+		Status      string `json:"status"`
+		Message     string `json:"message"`
+		Certificate string `json:"certificate"`
+		Error       string `json:"error"`
+	}
+
+	if err := json.Unmarshal(body, &apiResponse); err != nil {
+		return nil, fmt.Errorf("fehler beim Parsen der Response: %v", err)
+	}
+
+	// Prüfe auf Fehler in der Response
+	if apiResponse.Error != "" {
+		return nil, fmt.Errorf("CA-API Fehler: %s", apiResponse.Error)
+	}
+
+	// Prüfe Status
+	if apiResponse.Status != "success" {
+		return nil, fmt.Errorf("CSR-Signierung fehlgeschlagen: %s", apiResponse.Message)
+	}
+
+	// Rückgabe des Ergebnisses
+	return &SignCSRResult{
+		CertificatePEM: apiResponse.Certificate,
+		OrderID:        apiResponse.ID,
+		Status:         "issued",
+		Message:        apiResponse.Message,
+	}, nil
+}
+
+// GetCertificate ruft ein Zertifikat über die externe Dummy CA API ab
+func (p *DummyCAProvider) GetCertificate(certificateID string, settings map[string]interface{}) (string, error) {
+	if certificateID == "" {
+		return "", fmt.Errorf("zertifikat-ID ist erforderlich")
+	}
+
+	// Erstelle HTTP Request
+	url := fmt.Sprintf("%s/certificate/%s", p.baseURL, certificateID)
+	resp, err := http.Get(url)
+	if err != nil {
+		return "", fmt.Errorf("fehler beim Abrufen des Zertifikats: %v", err)
+	}
+	defer resp.Body.Close()
+
+	// Lese Response Body
+	body, err := io.ReadAll(resp.Body)
+	if err != nil {
+		return "", fmt.Errorf("fehler beim Lesen der Response: %v", err)
+	}
+
+	// Prüfe Status Code
+	if resp.StatusCode == http.StatusNotFound {
+		return "", fmt.Errorf("Zertifikat mit ID %s nicht gefunden", certificateID)
+	}
+
+	if resp.StatusCode != http.StatusOK {
+		return "", fmt.Errorf("CA-API Fehler (Status %d): %s", resp.StatusCode, string(body))
+	}
+
+	// Parse Response
+	var apiResponse struct {
+		ID          string `json:"id"`
+		Certificate string `json:"certificate"`
+		CreatedAt   string `json:"created_at"`
+	}
+
+	if err := json.Unmarshal(body, &apiResponse); err != nil {
+		return "", fmt.Errorf("fehler beim Parsen der Response: %v", err)
+	}
+
+	if apiResponse.Certificate == "" {
+		return "", fmt.Errorf("zertifikat in Response nicht gefunden")
+	}
+
+	return apiResponse.Certificate, nil
+}

backend/providers/hetzner.go

@@ -0,0 +1,63 @@
+package providers
+
+import (
+	"fmt"
+	"strings"
+)
+
+// HetznerProvider ist der Provider für Hetzner
+type HetznerProvider struct{}
+
+func NewHetznerProvider() *HetznerProvider {
+	return &HetznerProvider{}
+}
+
+func (p *HetznerProvider) GetName() string {
+	return "hetzner"
+}
+
+func (p *HetznerProvider) GetDisplayName() string {
+	return "Hetzner"
+}
+
+func (p *HetznerProvider) GetDescription() string {
+	return "Hetzner SSL Certificate Provider"
+}
+
+func (p *HetznerProvider) ValidateConfig(settings map[string]interface{}) error {
+	apiKey, ok := settings["apiKey"].(string)
+	if !ok || strings.TrimSpace(apiKey) == "" {
+		return fmt.Errorf("apiKey ist erforderlich")
+	}
+
+	return nil
+}
+
+func (p *HetznerProvider) TestConnection(settings map[string]interface{}) error {
+	// Hier würde die tatsächliche Verbindung zu Hetzner getestet werden
+	// Für jetzt nur Validierung
+	return p.ValidateConfig(settings)
+}
+
+// GetRequiredSettings gibt die erforderlichen Einstellungen zurück
+func (p *HetznerProvider) GetRequiredSettings() []SettingField {
+	return []SettingField{
+		{
+			Name:        "apiKey",
+			Label:       "API Key",
+			Type:        "password",
+			Required:    true,
+			Description: "Hetzner API Key",
+		},
+	}
+}
+
+// SignCSR signiert einen CSR (noch nicht implementiert)
+func (p *HetznerProvider) SignCSR(csrPEM string, settings map[string]interface{}) (*SignCSRResult, error) {
+	return nil, fmt.Errorf("Hetzner CSR-Signierung noch nicht implementiert")
+}
+
+// GetCertificate ruft ein Zertifikat ab (noch nicht implementiert)
+func (p *HetznerProvider) GetCertificate(certificateID string, settings map[string]interface{}) (string, error) {
+	return "", fmt.Errorf("Hetzner Zertifikat-Abruf noch nicht implementiert")
+}

backend/providers/provider.go

@@ -0,0 +1,214 @@
+package providers
+
+import (
+	"encoding/json"
+	"fmt"
+	"os"
+	"path/filepath"
+	"sync"
+)
+
+// ProviderConfig enthält die Konfiguration eines Providers
+type ProviderConfig struct {
+	Enabled  bool                   `json:"enabled"`
+	Settings map[string]interface{} `json:"settings"`
+}
+
+// SignCSRResult enthält das Ergebnis einer CSR-Signierung
+type SignCSRResult struct {
+	CertificatePEM string `json:"certificatePEM"`
+	OrderID        string `json:"orderId,omitempty"`
+	Status         string `json:"status"`
+	Message        string `json:"message,omitempty"`
+}
+
+// Provider Interface für alle SSL Certificate Provider
+type Provider interface {
+	// GetName gibt den Namen des Providers zurück
+	GetName() string
+	// GetDisplayName gibt den Anzeigenamen zurück
+	GetDisplayName() string
+	// GetDescription gibt eine Beschreibung zurück
+	GetDescription() string
+	// ValidateConfig validiert die Konfiguration
+	ValidateConfig(settings map[string]interface{}) error
+	// TestConnection testet die Verbindung zum Provider
+	TestConnection(settings map[string]interface{}) error
+	// GetRequiredSettings gibt die erforderlichen Einstellungen zurück
+	GetRequiredSettings() []SettingField
+	// SignCSR signiert einen CSR und gibt das Zertifikat zurück
+	SignCSR(csrPEM string, settings map[string]interface{}) (*SignCSRResult, error)
+	// GetCertificate ruft ein Zertifikat anhand der Zertifikat-ID ab
+	GetCertificate(certificateID string, settings map[string]interface{}) (string, error)
+}
+
+// ProviderManager verwaltet alle Provider
+type ProviderManager struct {
+	providers map[string]Provider
+	configs   map[string]*ProviderConfig
+	configDir string
+	mu        sync.RWMutex
+}
+
+var manager *ProviderManager
+var once sync.Once
+
+// GetManager gibt die Singleton-Instanz des ProviderManagers zurück
+func GetManager() *ProviderManager {
+	once.Do(func() {
+		manager = &ProviderManager{
+			providers: make(map[string]Provider),
+			configs:   make(map[string]*ProviderConfig),
+			configDir: "./config/providers",
+		}
+		manager.loadAllConfigs()
+	})
+	return manager
+}
+
+// RegisterProvider registriert einen neuen Provider
+func (pm *ProviderManager) RegisterProvider(provider Provider) {
+	pm.mu.Lock()
+	defer pm.mu.Unlock()
+	
+	providerID := pm.getProviderID(provider.GetName())
+	pm.providers[providerID] = provider
+	
+	// Lade Konfiguration falls vorhanden
+	if pm.configs[providerID] == nil {
+		pm.configs[providerID] = &ProviderConfig{
+			Enabled:  false,
+			Settings: make(map[string]interface{}),
+		}
+	}
+}
+
+// GetProvider gibt einen Provider zurück
+func (pm *ProviderManager) GetProvider(id string) (Provider, bool) {
+	pm.mu.RLock()
+	defer pm.mu.RUnlock()
+	provider, exists := pm.providers[id]
+	return provider, exists
+}
+
+// GetAllProviders gibt alle registrierten Provider zurück
+func (pm *ProviderManager) GetAllProviders() map[string]Provider {
+	pm.mu.RLock()
+	defer pm.mu.RUnlock()
+	result := make(map[string]Provider)
+	for id, provider := range pm.providers {
+		result[id] = provider
+	}
+	return result
+}
+
+// GetProviderConfig gibt die Konfiguration eines Providers zurück
+func (pm *ProviderManager) GetProviderConfig(id string) (*ProviderConfig, error) {
+	pm.mu.RLock()
+	defer pm.mu.RUnlock()
+	
+	config, exists := pm.configs[id]
+	if !exists {
+		return &ProviderConfig{
+			Enabled:  false,
+			Settings: make(map[string]interface{}),
+		}, nil
+	}
+	return config, nil
+}
+
+// UpdateProviderConfig aktualisiert die Konfiguration eines Providers
+func (pm *ProviderManager) UpdateProviderConfig(id string, config *ProviderConfig) error {
+	pm.mu.Lock()
+	defer pm.mu.Unlock()
+	
+	provider, exists := pm.providers[id]
+	if !exists {
+		return fmt.Errorf("provider %s nicht gefunden", id)
+	}
+	
+	// Validiere Konfiguration
+	if err := provider.ValidateConfig(config.Settings); err != nil {
+		return fmt.Errorf("ungültige Konfiguration: %v", err)
+	}
+	
+	pm.configs[id] = config
+	
+	// Speichere Konfiguration in Datei
+	return pm.saveConfig(id, config)
+}
+
+// SetProviderEnabled aktiviert/deaktiviert einen Provider
+func (pm *ProviderManager) SetProviderEnabled(id string, enabled bool) error {
+	pm.mu.Lock()
+	defer pm.mu.Unlock()
+	
+	if pm.configs[id] == nil {
+		pm.configs[id] = &ProviderConfig{
+			Enabled:  enabled,
+			Settings: make(map[string]interface{}),
+		}
+	} else {
+		pm.configs[id].Enabled = enabled
+	}
+	
+	return pm.saveConfig(id, pm.configs[id])
+}
+
+// getProviderID erstellt eine ID aus dem Provider-Namen
+func (pm *ProviderManager) getProviderID(name string) string {
+	return name
+}
+
+// loadAllConfigs lädt alle Konfigurationsdateien
+func (pm *ProviderManager) loadAllConfigs() {
+	// Stelle sicher, dass das Verzeichnis existiert
+	os.MkdirAll(pm.configDir, 0755)
+	
+	// Lade alle JSON-Dateien im Konfigurationsverzeichnis
+	files, err := filepath.Glob(filepath.Join(pm.configDir, "*.json"))
+	if err != nil {
+		return
+	}
+	
+	for _, file := range files {
+		id := filepath.Base(file[:len(file)-5]) // Entferne .json
+		config, err := pm.loadConfig(id)
+		if err == nil {
+			pm.configs[id] = config
+		}
+	}
+}
+
+// loadConfig lädt eine Konfigurationsdatei
+func (pm *ProviderManager) loadConfig(id string) (*ProviderConfig, error) {
+	filePath := filepath.Join(pm.configDir, id+".json")
+	
+	data, err := os.ReadFile(filePath)
+	if err != nil {
+		return nil, err
+	}
+	
+	var config ProviderConfig
+	if err := json.Unmarshal(data, &config); err != nil {
+		return nil, err
+	}
+	
+	return &config, nil
+}
+
+// saveConfig speichert eine Konfiguration in eine Datei
+func (pm *ProviderManager) saveConfig(id string, config *ProviderConfig) error {
+	// Stelle sicher, dass das Verzeichnis existiert
+	os.MkdirAll(pm.configDir, 0755)
+	
+	filePath := filepath.Join(pm.configDir, id+".json")
+	
+	data, err := json.MarshalIndent(config, "", "  ")
+	if err != nil {
+		return err
+	}
+	
+	return os.WriteFile(filePath, data, 0644)
+}
+

backend/providers/types.go

@@ -0,0 +1,22 @@
+package providers
+
+// SettingField beschreibt ein Konfigurationsfeld
+type SettingField struct {
+	Name        string `json:"name"`
+	Label       string `json:"label"`
+	Type        string `json:"type"` // text, password, number, email, url
+	Required    bool   `json:"required"`
+	Description string `json:"description"`
+	Default     string `json:"default,omitempty"`
+}
+
+// ProviderInfo enthält Informationen über einen Provider
+type ProviderInfo struct {
+	ID          string        `json:"id"`
+	Name        string        `json:"name"`
+	DisplayName string        `json:"displayName"`
+	Description string        `json:"description"`
+	Enabled     bool          `json:"enabled"`
+	Settings    []SettingField `json:"settings"`
+}
+

frontend/index.html

@@ -0,0 +1,14 @@
+<!doctype html>
+<html lang="de">
+  <head>
+    <meta charset="UTF-8" />
+    <link rel="icon" type="image/svg+xml" href="/vite.svg" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <title>Certigo Addon</title>
+  </head>
+  <body>
+    <div id="root"></div>
+    <script type="module" src="/src/main.jsx"></script>
+  </body>
+</html>
+

frontend/package.json

@@ -0,0 +1,26 @@
+{
+  "name": "certigo-addon-frontend",
+  "version": "1.0.0",
+  "private": true,
+  "type": "module",
+  "scripts": {
+    "dev": "vite",
+    "build": "vite build",
+    "preview": "vite preview"
+  },
+  "dependencies": {
+    "react": "^18.2.0",
+    "react-dom": "^18.2.0",
+    "react-router-dom": "^6.20.0"
+  },
+  "devDependencies": {
+    "@types/react": "^18.2.43",
+    "@types/react-dom": "^18.2.17",
+    "@vitejs/plugin-react": "^4.2.1",
+    "autoprefixer": "^10.4.16",
+    "postcss": "^8.4.32",
+    "tailwindcss": "^3.3.6",
+    "vite": "^5.0.8"
+  }
+}
+

frontend/postcss.config.js

@@ -0,0 +1,7 @@
+export default {
+  plugins: {
+    tailwindcss: {},
+    autoprefixer: {},
+  },
+}
+

frontend/src/App.jsx

@@ -0,0 +1,36 @@
+import { useState } from 'react'
+import { BrowserRouter as Router, Routes, Route } from 'react-router-dom'
+import Sidebar from './components/Sidebar'
+import Footer from './components/Footer'
+import Home from './pages/Home'
+import Spaces from './pages/Spaces'
+import SpaceDetail from './pages/SpaceDetail'
+import Impressum from './pages/Impressum'
+
+function App() {
+  const [sidebarOpen, setSidebarOpen] = useState(true)
+
+  return (
+    <Router>
+      <div className="flex flex-col h-screen bg-gradient-to-r from-slate-700 to-slate-900">
+        <div className="flex flex-1 overflow-hidden">
+          <Sidebar isOpen={sidebarOpen} setIsOpen={setSidebarOpen} />
+          <main className="flex-1 overflow-y-auto flex flex-col bg-gradient-to-r from-slate-700 to-slate-900">
+            <div className="flex-1">
+              <Routes>
+                <Route path="/" element={<Home />} />
+                <Route path="/spaces" element={<Spaces />} />
+                <Route path="/spaces/:id" element={<SpaceDetail />} />
+                <Route path="/impressum" element={<Impressum />} />
+              </Routes>
+            </div>
+            <Footer />
+          </main>
+        </div>
+      </div>
+    </Router>
+  )
+}
+
+export default App
+

frontend/src/components/Footer.jsx

@@ -0,0 +1,42 @@
+import { useState, useEffect } from 'react'
+
+function Footer() {
+  const [currentYear, setCurrentYear] = useState(new Date().getFullYear())
+  const [logoError, setLogoError] = useState(false)
+
+  useEffect(() => {
+    setCurrentYear(new Date().getFullYear())
+  }, [])
+
+  return (
+    <footer className="bg-slate-800 border-t border-slate-700 mt-auto">
+      <div className="max-w-20xl mx-auto px-8 py-6">
+        <div className="flex flex-col md:flex-row items-center justify-between gap-4">
+          {/* Logo */}
+          <div className="flex items-center gap-3">
+            {!logoError ? (
+              <img 
+                src="/logo.webp" 
+                alt="Certigo Addon Logo" 
+                className="h-8 w-auto"
+                onError={() => setLogoError(true)}
+              />
+            ) : (
+              <div className="h-8 w-8 bg-slate-600 rounded flex items-center justify-center text-white font-bold text-sm">
+                CA
+              </div>
+            )}
+            <span className="text-slate-300 font-semibold text-lg">Certigo Addon</span>
+          </div>
+
+          {/* Copyright */}
+          <div className="text-slate-400 text-sm">
+            © {currentYear} Certigo Addon. Alle Rechte vorbehalten.
+          </div>
+        </div>
+      </div>
+    </footer>
+  )
+}
+
+export default Footer

frontend/src/components/ProvidersSection.jsx

@@ -0,0 +1,341 @@
+import { useState, useEffect } from 'react'
+
+const ProvidersSection = () => {
+  const [providers, setProviders] = useState([])
+  const [loading, setLoading] = useState(true)
+  const [showConfigModal, setShowConfigModal] = useState(false)
+  const [selectedProvider, setSelectedProvider] = useState(null)
+  const [configValues, setConfigValues] = useState({})
+  const [testing, setTesting] = useState(false)
+  const [testResult, setTestResult] = useState(null)
+
+  useEffect(() => {
+    fetchProviders()
+  }, [])
+
+  const fetchProviders = async () => {
+    try {
+      const response = await fetch('/api/providers')
+      if (response.ok) {
+        const data = await response.json()
+        // Definiere feste Reihenfolge der Provider
+        const providerOrder = ['dummy-ca', 'autodns', 'hetzner']
+        const sortedProviders = providerOrder
+          .map(id => data.find(p => p.id === id))
+          .filter(p => p !== undefined)
+          .concat(data.filter(p => !providerOrder.includes(p.id)))
+        setProviders(sortedProviders)
+      }
+    } catch (err) {
+      console.error('Error fetching providers:', err)
+    } finally {
+      setLoading(false)
+    }
+  }
+
+  const handleToggleProvider = async (providerId, currentEnabled) => {
+    try {
+      const response = await fetch(`/api/providers/${providerId}/enabled`, {
+        method: 'PUT',
+        headers: {
+          'Content-Type': 'application/json',
+        },
+        body: JSON.stringify({ enabled: !currentEnabled }),
+      })
+
+      if (response.ok) {
+        fetchProviders()
+      } else {
+        alert('Fehler beim Ändern des Provider-Status')
+      }
+    } catch (err) {
+      console.error('Error toggling provider:', err)
+      alert('Fehler beim Ändern des Provider-Status')
+    }
+  }
+
+  const handleOpenConfig = async (provider) => {
+    setSelectedProvider(provider)
+    setTestResult(null)
+    
+    // Lade aktuelle Konfiguration
+    try {
+      const response = await fetch(`/api/providers/${provider.id}`)
+      if (response.ok) {
+        const data = await response.json()
+        // Initialisiere Config-Werte
+        const initialValues = {}
+        provider.settings.forEach(setting => {
+          if (data.config && data.config[setting.name] !== undefined) {
+            // Wenn Wert "***" ist, bedeutet das, dass es ein Passwort ist - leer lassen
+            initialValues[setting.name] = data.config[setting.name] === '***' ? '' : data.config[setting.name]
+          } else {
+            initialValues[setting.name] = setting.default || ''
+          }
+        })
+        setConfigValues(initialValues)
+      }
+    } catch (err) {
+      console.error('Error fetching provider config:', err)
+      // Initialisiere mit leeren Werten
+      const initialValues = {}
+      provider.settings.forEach(setting => {
+        initialValues[setting.name] = setting.default || ''
+      })
+      setConfigValues(initialValues)
+    }
+    
+    setShowConfigModal(true)
+  }
+
+  const handleCloseConfig = () => {
+    setShowConfigModal(false)
+    setSelectedProvider(null)
+    setConfigValues({})
+    setTestResult(null)
+  }
+
+  const handleConfigChange = (name, value) => {
+    setConfigValues({
+      ...configValues,
+      [name]: value,
+    })
+  }
+
+  const handleTestConnection = async () => {
+    if (!selectedProvider) return
+
+    setTesting(true)
+    setTestResult(null)
+
+    try {
+      const response = await fetch(`/api/providers/${selectedProvider.id}/test`, {
+        method: 'POST',
+        headers: {
+          'Content-Type': 'application/json',
+        },
+        body: JSON.stringify({ settings: configValues }),
+      })
+
+      const result = await response.json()
+      setTestResult(result)
+    } catch (err) {
+      console.error('Error testing connection:', err)
+      setTestResult({
+        success: false,
+        message: 'Fehler beim Testen der Verbindung',
+      })
+    } finally {
+      setTesting(false)
+    }
+  }
+
+  const handleSaveConfig = async () => {
+    if (!selectedProvider) return
+
+    try {
+      const response = await fetch(`/api/providers/${selectedProvider.id}/config`, {
+        method: 'PUT',
+        headers: {
+          'Content-Type': 'application/json',
+        },
+        body: JSON.stringify({ settings: configValues }),
+      })
+
+      if (response.ok) {
+        handleCloseConfig()
+        fetchProviders()
+      } else {
+        const error = await response.text()
+        alert(`Fehler beim Speichern: ${error}`)
+      }
+    } catch (err) {
+      console.error('Error saving config:', err)
+      alert('Fehler beim Speichern der Konfiguration')
+    }
+  }
+
+  if (loading) {
+    return (
+      <div className="bg-slate-800/80 backdrop-blur-sm rounded-lg shadow-xl border border-slate-600/50 p-6 transition-all duration-300">
+        <h2 className="text-2xl font-semibold text-white mb-4 transition-colors duration-300">
+          SSL Certificate Providers
+        </h2>
+        <p className="text-slate-400 transition-colors duration-300">Lade Provider...</p>
+      </div>
+    )
+  }
+
+  return (
+    <>
+      <div className="bg-slate-800/80 backdrop-blur-sm rounded-lg shadow-xl border border-slate-600/50 p-6 transition-all duration-300">
+        <h2 className="text-2xl font-semibold text-white mb-4 transition-colors duration-300">
+          SSL Certificate Providers
+        </h2>
+        <div className="space-y-3">
+          {providers.map((provider) => (
+            <div
+              key={provider.id}
+              className="bg-slate-700/50 rounded-lg p-4 border border-slate-600/50 transition-all duration-300"
+            >
+              <div className="flex items-center justify-between">
+                <div className="flex-1">
+                  <h3 className="text-lg font-semibold text-white mb-1 transition-colors duration-300">
+                    {provider.displayName}
+                  </h3>
+                  <p className="text-sm text-slate-300 mb-2 transition-colors duration-300">
+                    {provider.description}
+                  </p>
+                </div>
+                <div className="flex items-center gap-2">
+                  <button
+                    onClick={() => handleOpenConfig(provider)}
+                    className="p-2 text-slate-400 hover:text-white hover:bg-slate-700/50 rounded-lg transition-colors"
+                    title="Konfiguration"
+                    aria-label="Konfiguration"
+                  >
+                    <svg
+                      className="w-5 h-5"
+                      fill="none"
+                      strokeLinecap="round"
+                      strokeLinejoin="round"
+                      strokeWidth="2"
+                      viewBox="0 0 24 24"
+                      stroke="currentColor"
+                    >
+                      <path d="M10.325 4.317c.426-1.756 2.924-1.756 3.35 0a1.724 1.724 0 002.573 1.066c1.543-.94 3.31.826 2.37 2.37a1.724 1.724 0 001.065 2.572c1.756.426 1.756 2.924 0 3.35a1.724 1.724 0 00-1.066 2.573c.94 1.543-.826 3.31-2.37 2.37a1.724 1.724 0 00-2.572 1.065c-.426 1.756-2.924 1.756-3.35 0a1.724 1.724 0 00-2.573-1.066c-1.543.94-3.31-.826-2.37-2.37a1.724 1.724 0 00-1.065-2.572c-1.756-.426-1.756-2.924 0-3.35a1.724 1.724 0 001.066-2.573c-.94-1.543.826-3.31 2.37-2.37.996.608 2.296.07 2.572-1.065z" />
+                      <path d="M15 12a3 3 0 11-6 0 3 3 0 016 0z" />
+                    </svg>
+                  </button>
+                  <label className="relative inline-flex items-center cursor-pointer">
+                    <input
+                      type="checkbox"
+                      checked={provider.enabled}
+                      onChange={() => handleToggleProvider(provider.id, provider.enabled)}
+                      className="sr-only peer"
+                    />
+                    <div className="w-11 h-6 bg-slate-600 peer-focus:outline-none peer-focus:ring-4 peer-focus:ring-blue-800 rounded-full peer peer-checked:after:translate-x-full peer-checked:after:border-white after:content-[''] after:absolute after:top-[2px] after:left-[2px] after:bg-white after:border-gray-300 after:border after:rounded-full after:h-5 after:w-5 after:transition-all peer-checked:bg-blue-600 transition-all duration-300"></div>
+                  </label>
+                </div>
+              </div>
+            </div>
+          ))}
+        </div>
+      </div>
+
+      {/* Configuration Modal */}
+      {showConfigModal && selectedProvider && (
+        <div className="fixed inset-0 bg-black/60 backdrop-blur-sm z-50 flex items-center justify-center p-4 transition-colors duration-300">
+          <div className="bg-slate-800 rounded-xl shadow-2xl border border-slate-600/50 max-w-2xl w-full p-6 transition-all duration-300">
+            <div className="flex items-center justify-between mb-6">
+              <h3 className="text-2xl font-bold text-white transition-colors duration-300">
+                {selectedProvider.displayName} - Konfiguration
+              </h3>
+              <button
+                onClick={handleCloseConfig}
+                className="p-2 text-slate-400 hover:text-white hover:bg-slate-700/50 rounded-lg transition-colors"
+                aria-label="Schließen"
+              >
+                <svg
+                  className="w-5 h-5"
+                  fill="none"
+                  strokeLinecap="round"
+                  strokeLinejoin="round"
+                  strokeWidth="2"
+                  viewBox="0 0 24 24"
+                  stroke="currentColor"
+                >
+                  <path d="M6 18L18 6M6 6l12 12" />
+                </svg>
+              </button>
+            </div>
+
+            <div className="space-y-4 mb-6">
+              {selectedProvider.settings.length > 0 ? (
+                selectedProvider.settings.map((setting) => (
+                  <div key={setting.name}>
+                    <label className="block text-sm font-medium text-slate-200 mb-2 transition-colors duration-300">
+                      {setting.label}
+                      {setting.required && <span className="text-red-400 ml-1">*</span>}
+                    </label>
+                    {setting.description && (
+                      <p className="text-xs text-slate-400 mb-2 transition-colors duration-300">{setting.description}</p>
+                    )}
+                    {setting.type === 'password' ? (
+                      <input
+                        type="password"
+                        value={configValues[setting.name] || ''}
+                        onChange={(e) => handleConfigChange(setting.name, e.target.value)}
+                        className="w-full px-4 py-2 bg-slate-700/50 border border-slate-600 rounded-lg text-white placeholder-slate-400 focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent transition-all duration-300"
+                        placeholder={setting.label}
+                        required={setting.required}
+                      />
+                    ) : (
+                      <input
+                        type={setting.type || 'text'}
+                        value={configValues[setting.name] || ''}
+                        onChange={(e) => handleConfigChange(setting.name, e.target.value)}
+                        className="w-full px-4 py-2 bg-slate-700/50 border border-slate-600 rounded-lg text-white placeholder-slate-400 focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent transition-all duration-300"
+                        placeholder={setting.label}
+                        required={setting.required}
+                      />
+                    )}
+                  </div>
+                ))
+              ) : (
+                <p className="text-slate-300 text-center py-4 transition-colors duration-300">
+                  Dieser Provider benötigt keine Konfiguration.
+                </p>
+              )}
+            </div>
+
+            {testResult && (
+              <div
+                className={`mb-4 p-4 rounded-lg border ${
+                  testResult.success
+                    ? 'bg-green-500/20 border-green-500/50'
+                    : 'bg-red-500/20 border-red-500/50'
+                }`}
+              >
+                <p
+                  className={`text-sm ${
+                    testResult.success ? 'text-green-300' : 'text-red-300'
+                  }`}
+                >
+                  {testResult.success ? '✅' : '❌'} {testResult.message}
+                </p>
+              </div>
+            )}
+
+            <div className="flex gap-3">
+              {selectedProvider.settings.length > 0 && (
+                <button
+                  onClick={handleTestConnection}
+                  disabled={testing}
+                  className="px-4 py-2 bg-yellow-600 hover:bg-yellow-700 disabled:bg-slate-700 disabled:text-slate-500 disabled:cursor-not-allowed text-white font-semibold rounded-lg transition-all duration-200"
+                >
+                  {testing ? 'Teste...' : 'Verbindung testen'}
+                </button>
+              )}
+              <button
+                onClick={handleSaveConfig}
+                className="flex-1 px-4 py-2 bg-blue-600 hover:bg-blue-700 text-white font-semibold rounded-lg transition-all duration-200"
+              >
+                Speichern
+              </button>
+              <button
+                onClick={handleCloseConfig}
+                className="px-4 py-2 bg-slate-600 hover:bg-slate-700 text-white font-semibold rounded-lg transition-colors duration-200"
+              >
+                Abbrechen
+              </button>
+            </div>
+          </div>
+        </div>
+      )}
+    </>
+  )
+}
+
+export default ProvidersSection
+

frontend/src/components/Sidebar.jsx

@@ -0,0 +1,98 @@
+import { Link, useLocation } from 'react-router-dom'
+
+const Sidebar = ({ isOpen, setIsOpen }) => {
+  const location = useLocation()
+
+  const menuItems = [
+    { path: '/', label: 'Home', icon: '🏠' },
+    { path: '/spaces', label: 'Spaces', icon: '📁' },
+    { path: '/impressum', label: 'Impressum', icon: 'ℹ️' },
+  ]
+
+  const isActive = (path) => {
+    if (path === '/') {
+      return location.pathname === '/'
+    }
+    return location.pathname.startsWith(path)
+  }
+
+  return (
+    <>
+      {/* Overlay for mobile */}
+      {isOpen && (
+        <div
+          className="fixed inset-0 bg-black/60 backdrop-blur-sm z-40 lg:hidden transition-opacity duration-300"
+          onClick={() => setIsOpen(false)}
+        />
+      )}
+
+      {/* Sidebar */}
+      <aside
+        className={`fixed lg:static top-0 left-0 h-full z-40 transform transition-all duration-300 ease-in-out bg-slate-800/95 backdrop-blur-sm border-r border-slate-600/50 shadow-xl ${
+          isOpen ? 'w-64 translate-x-0' : 'w-16 -translate-x-0 lg:translate-x-0'
+        }`}
+      >
+        <div className="p-4 border-b border-slate-700/50 flex items-center justify-between h-16">
+          {isOpen && (
+            <h1 className="text-xl font-bold text-white whitespace-nowrap overflow-hidden">
+              Certigo Addon
+            </h1>
+          )}
+          {/* Burger Menu Button - rechts in der Sidebar */}
+          <button
+            onClick={() => setIsOpen(!isOpen)}
+            className="ml-auto p-2 rounded-lg transition-all duration-200 flex-shrink-0 bg-slate-700/50 hover:bg-slate-700 text-white"
+            aria-label="Toggle menu"
+          >
+            <div className="w-5 h-4 relative flex flex-col justify-between">
+              <span
+                className={`block h-0.5 w-full bg-white rounded-full transition-all duration-300 ${
+                  isOpen ? 'rotate-45 translate-y-1.5' : ''
+                }`}
+              />
+              <span
+                className={`block h-0.5 w-full bg-white rounded-full transition-all duration-300 ${
+                  isOpen ? 'opacity-0' : 'opacity-100'
+                }`}
+              />
+              <span
+                className={`block h-0.5 w-full bg-white rounded-full transition-all duration-300 ${
+                  isOpen ? '-rotate-45 -translate-y-1.5' : ''
+                }`}
+              />
+            </div>
+          </button>
+        </div>
+        <nav className="px-2 py-4 overflow-hidden">
+          <ul className="space-y-2">
+            {menuItems.map((item) => (
+              <li key={item.path}>
+                <Link
+                  to={item.path}
+                  className={`flex items-center px-3 py-3 rounded-lg transition-all duration-200 ${
+                    isActive(item.path)
+                      ? 'bg-slate-700 text-white font-semibold shadow-md'
+                      : 'text-slate-300 hover:bg-slate-700/50 hover:text-white'
+                  }`}
+                  title={!isOpen ? item.label : ''}
+                >
+                  <span className={`text-xl flex-shrink-0 ${isOpen ? 'mr-3' : 'mx-auto'}`}>
+                    {item.icon}
+                  </span>
+                  {isOpen && (
+                    <span className="whitespace-nowrap overflow-hidden">
+                      {item.label}
+                    </span>
+                  )}
+                </Link>
+              </li>
+            ))}
+          </ul>
+        </nav>
+      </aside>
+    </>
+  )
+}
+
+export default Sidebar
+

frontend/src/index.css

@@ -0,0 +1,57 @@
+@tailwind base;
+@tailwind components;
+@tailwind utilities;
+
+
+body {
+  margin: 0;
+  font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', 'Roboto', 'Oxygen',
+    'Ubuntu', 'Cantarell', 'Fira Sans', 'Droid Sans', 'Helvetica Neue',
+    sans-serif;
+  -webkit-font-smoothing: antialiased;
+  -moz-osx-font-smoothing: grayscale;
+}
+
+/* Checkmark Animation */
+.checkmark-animated {
+  animation: checkmarkScale 0.6s ease-in-out;
+}
+
+.circle-draw {
+  stroke-dasharray: 62.83;
+  stroke-dashoffset: 62.83;
+  animation: drawCircle 0.6s ease-in-out forwards;
+}
+
+.check-draw {
+  stroke-dasharray: 10;
+  stroke-dashoffset: 10;
+  animation: drawCheck 0.4s ease-in-out 0.3s forwards;
+}
+
+@keyframes drawCircle {
+  to {
+    stroke-dashoffset: 0;
+  }
+}
+
+@keyframes drawCheck {
+  to {
+    stroke-dashoffset: 0;
+  }
+}
+
+@keyframes checkmarkScale {
+  0% {
+    transform: scale(0);
+    opacity: 0;
+  }
+  50% {
+    transform: scale(1.1);
+  }
+  100% {
+    transform: scale(1);
+    opacity: 1;
+  }
+}
+

frontend/src/main.jsx

@@ -0,0 +1,11 @@
+import React from 'react'
+import ReactDOM from 'react-dom/client'
+import App from './App.jsx'
+import './index.css'
+
+ReactDOM.createRoot(document.getElementById('root')).render(
+  <React.StrictMode>
+    <App />
+  </React.StrictMode>,
+)
+

frontend/src/pages/Home.jsx

@@ -0,0 +1,303 @@
+import { useEffect, useState, useRef, useCallback } from 'react'
+import ProvidersSection from '../components/ProvidersSection'
+
+const Home = () => {
+  const [data, setData] = useState(null)
+  const [stats, setStats] = useState(null)
+  const [loadingStats, setLoadingStats] = useState(true)
+  const [lastUpdate, setLastUpdate] = useState(null)
+  const intervalRef = useRef(null)
+  const isMountedRef = useRef(true)
+
+  // Fetch stats function
+  const fetchStats = useCallback(async (isInitial = false) => {
+    try {
+      if (isInitial) {
+        setLoadingStats(true)
+      }
+      const response = await fetch('/api/stats')
+      if (!response.ok) {
+        throw new Error(`HTTP error! status: ${response.status}`)
+      }
+      const statsData = await response.json()
+      if (isMountedRef.current) {
+        setStats(statsData)
+        setLoadingStats(false)
+        setLastUpdate(new Date())
+      }
+    } catch (err) {
+      console.error('Error fetching stats:', err)
+      if (isMountedRef.current) {
+        setLoadingStats(false)
+      }
+    }
+  }, [])
+
+  // Fetch health function
+  const fetchHealth = useCallback(async () => {
+    try {
+      const response = await fetch('/api/health')
+      if (!response.ok) {
+        throw new Error(`HTTP error! status: ${response.status}`)
+      }
+      const healthData = await response.json()
+      if (isMountedRef.current) {
+        setData(healthData)
+      }
+    } catch (err) {
+      console.error('Error fetching health:', err)
+    }
+  }, [])
+
+  // Handle visibility change - pause polling when tab is hidden
+  useEffect(() => {
+    const handleVisibilityChange = () => {
+      if (document.hidden) {
+        // Tab is hidden, clear interval
+        if (intervalRef.current) {
+          clearInterval(intervalRef.current)
+          intervalRef.current = null
+        }
+      } else {
+        // Tab is visible, resume polling
+        if (!intervalRef.current && isMountedRef.current) {
+          // Fetch immediately when tab becomes visible
+          fetch('/api/stats')
+            .then(res => res.json())
+            .then(statsData => {
+              if (isMountedRef.current) {
+                setStats(statsData)
+                setLastUpdate(new Date())
+              }
+            })
+            .catch(err => console.error('Error fetching stats:', err))
+          
+          fetch('/api/health')
+            .then(res => res.json())
+            .then(healthData => {
+              if (isMountedRef.current) {
+                setData(healthData)
+              }
+            })
+            .catch(err => console.error('Error fetching health:', err))
+          
+          // Resume polling
+          intervalRef.current = setInterval(() => {
+            if (isMountedRef.current) {
+              fetch('/api/stats')
+                .then(res => res.json())
+                .then(statsData => {
+                  if (isMountedRef.current) {
+                    setStats(statsData)
+                    setLastUpdate(new Date())
+                  }
+                })
+                .catch(err => console.error('Error fetching stats:', err))
+              
+              fetch('/api/health')
+                .then(res => res.json())
+                .then(healthData => {
+                  if (isMountedRef.current) {
+                    setData(healthData)
+                  }
+                })
+                .catch(err => console.error('Error fetching health:', err))
+            }
+          }, 5000)
+        }
+      }
+    }
+
+    document.addEventListener('visibilitychange', handleVisibilityChange)
+    return () => {
+      document.removeEventListener('visibilitychange', handleVisibilityChange)
+    }
+  }, [])
+
+  useEffect(() => {
+    isMountedRef.current = true
+    
+    // Define fetch functions inside useEffect to avoid dependency issues
+    const fetchStatsInternal = async (isInitial = false) => {
+      try {
+        if (isInitial) {
+          setLoadingStats(true)
+        }
+        const response = await fetch('/api/stats')
+        if (!response.ok) {
+          throw new Error(`HTTP error! status: ${response.status}`)
+        }
+        const statsData = await response.json()
+        if (isMountedRef.current) {
+          setStats(statsData)
+          setLoadingStats(false)
+          setLastUpdate(new Date())
+        }
+      } catch (err) {
+        console.error('Error fetching stats:', err)
+        if (isMountedRef.current) {
+          setLoadingStats(false)
+        }
+      }
+    }
+
+    const fetchHealthInternal = async () => {
+      try {
+        const response = await fetch('/api/health')
+        if (!response.ok) {
+          throw new Error(`HTTP error! status: ${response.status}`)
+        }
+        const healthData = await response.json()
+        if (isMountedRef.current) {
+          setData(healthData)
+        }
+      } catch (err) {
+        console.error('Error fetching health:', err)
+      }
+    }
+    
+    // Initial fetch
+    fetchHealthInternal()
+    fetchStatsInternal(true) // Pass true for initial load to show loading state
+
+    // Set up polling interval (5 seconds)
+    intervalRef.current = setInterval(() => {
+      if (isMountedRef.current) {
+        fetchStatsInternal(false) // Pass false for background updates
+        fetchHealthInternal()
+      }
+    }, 5000)
+
+    // Cleanup on unmount
+    return () => {
+      isMountedRef.current = false
+      if (intervalRef.current) {
+        clearInterval(intervalRef.current)
+        intervalRef.current = null
+      }
+    }
+  }, []) // Empty dependency array - only run on mount
+
+  return (
+    <div className="p-8 min-h-full bg-gradient-to-r from-slate-700 to-slate-900">
+      <div className="max-w-10xl mx-auto">
+        <h1 className="text-4xl font-bold text-white mb-4">Willkommen</h1>
+        <p className="text-lg text-slate-200 mb-8">
+          Dies ist die Startseite der Certigo Addon Anwendung.
+        </p>
+        
+        <div className="grid grid-cols-1 lg:grid-cols-3 gap-6 mb-6">
+          {/* Stats Dashboard */}
+          <div className="bg-slate-800/80 backdrop-blur-sm rounded-lg shadow-xl border border-slate-600/50 p-6">
+            <div className="flex items-center justify-between mb-4">
+              <h2 className="text-2xl font-semibold text-white">
+                Statistiken
+              </h2>
+              {lastUpdate && (
+                <div className="flex items-center gap-2">
+                  <div className="w-2 h-2 bg-green-400 rounded-full animate-pulse"></div>
+                  <span className="text-xs text-slate-400">
+                    {new Date(lastUpdate).toLocaleTimeString('de-DE', { 
+                      hour: '2-digit', 
+                      minute: '2-digit',
+                      second: '2-digit'
+                    })}
+                  </span>
+                </div>
+              )}
+            </div>
+            {!stats && loadingStats ? (
+              <p className="text-slate-400">Lade Statistiken...</p>
+            ) : stats ? (
+              <div className="grid grid-cols-1 gap-4">
+                <div className="bg-gradient-to-br from-blue-500/20 to-blue-600/20 rounded-lg p-4 border border-blue-500/30">
+                  <div className="flex items-center justify-between">
+                    <div>
+                      <p className="text-sm text-slate-300 mb-1">Spaces</p>
+                      <p className="text-3xl font-bold text-white">{stats.spaces}</p>
+                    </div>
+                    <div className="w-12 h-12 bg-blue-500/20 rounded-full flex items-center justify-center">
+                      <svg className="w-6 h-6 text-blue-400" fill="none" stroke="currentColor" viewBox="0 0 24 24">
+                        <path strokeLinecap="round" strokeLinejoin="round" strokeWidth="2" d="M3 7v10a2 2 0 002 2h14a2 2 0 002-2V9a2 2 0 00-2-2h-6l-2-2H5a2 2 0 00-2 2z" />
+                      </svg>
+                    </div>
+                  </div>
+                </div>
+                
+                <div className="bg-gradient-to-br from-green-500/20 to-green-600/20 rounded-lg p-4 border border-green-500/30">
+                  <div className="flex items-center justify-between">
+                    <div>
+                      <p className="text-sm text-slate-300 mb-1">FQDNs</p>
+                      <p className="text-3xl font-bold text-white">{stats.fqdns}</p>
+                    </div>
+                    <div className="w-12 h-12 bg-green-500/20 rounded-full flex items-center justify-center">
+                      <svg className="w-6 h-6 text-green-400" fill="none" stroke="currentColor" viewBox="0 0 24 24">
+                        <path strokeLinecap="round" strokeLinejoin="round" strokeWidth="2" d="M21 12a9 9 0 01-9 9m9-9a9 9 0 00-9-9m9 9H3m9 9a9 9 0 01-9-9m9 9c1.657 0 3-4.03 3-9s-1.343-9-3-9m0 18c-1.657 0-3-4.03-3-9s1.343-9 3-9m-9 9a9 9 0 019-9" />
+                      </svg>
+                    </div>
+                  </div>
+                </div>
+                
+                <div className="bg-gradient-to-br from-purple-500/20 to-purple-600/20 rounded-lg p-4 border border-purple-500/30">
+                  <div className="flex items-center justify-between">
+                    <div>
+                      <p className="text-sm text-slate-300 mb-1">CSRs</p>
+                      <p className="text-3xl font-bold text-white">{stats.csrs}</p>
+                    </div>
+                    <div className="w-12 h-12 bg-purple-500/20 rounded-full flex items-center justify-center">
+                      <svg className="w-6 h-6 text-purple-400" fill="none" stroke="currentColor" viewBox="0 0 24 24">
+                        <path strokeLinecap="round" strokeLinejoin="round" strokeWidth="2" d="M9 12h6m-6 4h6m2 5H7a2 2 0 01-2-2V5a2 2 0 012-2h5.586a1 1 0 01.707.293l5.414 5.414a1 1 0 01.293.707V19a2 2 0 01-2 2z" />
+                      </svg>
+                    </div>
+                  </div>
+                </div>
+                
+                <div className="bg-gradient-to-br from-yellow-500/20 to-yellow-600/20 rounded-lg p-4 border border-yellow-500/30">
+                  <div className="flex items-center justify-between">
+                    <div>
+                      <p className="text-sm text-slate-300 mb-1">Zertifikate</p>
+                      <p className="text-3xl font-bold text-white">{stats.certificates || 0}</p>
+                    </div>
+                    <div className="w-12 h-12 bg-yellow-500/20 rounded-full flex items-center justify-center">
+                      <svg className="w-6 h-6 text-yellow-400" fill="none" stroke="currentColor" viewBox="0 0 24 24">
+                        <path strokeLinecap="round" strokeLinejoin="round" strokeWidth="2" d="M9 12l2 2 4-4m5.618-4.016A11.955 11.955 0 0112 2.944a11.955 11.955 0 01-8.618 3.04A12.02 12.02 0 003 9c0 5.591 3.824 10.29 9 11.622 5.176-1.332 9-6.03 9-11.622 0-1.042-.133-2.052-.382-3.016z" />
+                      </svg>
+                    </div>
+                  </div>
+                </div>
+              </div>
+            ) : (
+              <p className="text-slate-400">Fehler beim Laden der Statistiken</p>
+            )}
+          </div>
+
+          {/* System Status */}
+          <div className="bg-slate-800/80 backdrop-blur-sm rounded-lg shadow-xl border border-slate-600/50 p-6">
+            <h2 className="text-2xl font-semibold text-white mb-4">
+              System Status
+            </h2>
+            {data ? (
+              <div className="space-y-2">
+                <p className="text-slate-200">
+                  <span className="font-medium">Status:</span>{' '}
+                  <span className="text-green-400">{data.status}</span>
+                </p>
+                <p className="text-slate-200">
+                  <span className="font-medium">Nachricht:</span> {data.message}
+                </p>
+              </div>
+            ) : (
+              <p className="text-slate-400">Lade Daten...</p>
+            )}
+          </div>
+
+          {/* SSL Certificate Providers */}
+          <ProvidersSection />
+        </div>
+      </div>
+    </div>
+  )
+}
+
+export default Home
+

frontend/src/pages/Impressum.jsx

@@ -0,0 +1,41 @@
+const Impressum = () => {
+  return (
+    <div className="p-8 min-h-full bg-gradient-to-r from-slate-700 to-slate-900">
+      <div className="max-w-4xl mx-auto">
+        <h1 className="text-4xl font-bold text-white mb-4">Impressum</h1>
+        
+        <div className="bg-slate-800/80 backdrop-blur-sm rounded-lg shadow-xl border border-slate-600/50 p-6 space-y-6">
+          <section>
+            <h2 className="text-2xl font-semibold text-white mb-3">
+              Angaben gemäß § 5 TMG
+            </h2>
+            <p className="text-slate-200">
+              Hier können Sie Ihre rechtlichen Angaben eintragen.
+            </p>
+          </section>
+          
+          <section>
+            <h2 className="text-2xl font-semibold text-white mb-3">
+              Kontakt
+            </h2>
+            <p className="text-slate-200">
+              Kontaktinformationen können hier eingetragen werden.
+            </p>
+          </section>
+          
+          <section>
+            <h2 className="text-2xl font-semibold text-white mb-3">
+              Haftungsausschluss
+            </h2>
+            <p className="text-slate-200">
+              Haftungsausschluss-Informationen können hier eingetragen werden.
+            </p>
+          </section>
+        </div>
+      </div>
+    </div>
+  )
+}
+
+export default Impressum
+

frontend/src/pages/Spaces.jsx

@@ -0,0 +1,460 @@
+import { useState, useEffect } from 'react'
+import { useNavigate } from 'react-router-dom'
+
+const Spaces = () => {
+  const navigate = useNavigate()
+  const [spaces, setSpaces] = useState([])
+  const [showForm, setShowForm] = useState(false)
+  const [formData, setFormData] = useState({
+    name: '',
+    description: ''
+  })
+  const [loading, setLoading] = useState(false)
+  const [error, setError] = useState('')
+  const [fetchError, setFetchError] = useState('')
+  const [showDeleteModal, setShowDeleteModal] = useState(false)
+  const [spaceToDelete, setSpaceToDelete] = useState(null)
+  const [fqdnCount, setFqdnCount] = useState(0)
+  const [confirmChecked, setConfirmChecked] = useState(false)
+  const [deleteFqdnsChecked, setDeleteFqdnsChecked] = useState(false)
+  const [copiedId, setCopiedId] = useState(null)
+
+  useEffect(() => {
+    fetchSpaces()
+  }, [])
+
+  const fetchSpaces = async () => {
+    try {
+      setFetchError('')
+      const response = await fetch('/api/spaces')
+      if (response.ok) {
+        const data = await response.json()
+        // Stelle sicher, dass data ein Array ist
+        setSpaces(Array.isArray(data) ? data : [])
+      } else {
+        const errorText = `Fehler beim Abrufen der Spaces: ${response.status}`
+        console.error(errorText)
+        setFetchError(errorText)
+        setSpaces([])
+      }
+    } catch (err) {
+      const errorText = 'Fehler beim Abrufen der Spaces. Bitte stellen Sie sicher, dass das Backend läuft.'
+      console.error('Error fetching spaces:', err)
+      setFetchError(errorText)
+      setSpaces([])
+    }
+  }
+
+  const handleSubmit = async (e) => {
+    e.preventDefault()
+    setError('')
+    setLoading(true)
+
+    if (!formData.name.trim()) {
+      setError('Bitte geben Sie einen Namen ein.')
+      setLoading(false)
+      return
+    }
+
+    try {
+      const response = await fetch('/api/spaces', {
+        method: 'POST',
+        headers: {
+          'Content-Type': 'application/json',
+        },
+        body: JSON.stringify(formData),
+      })
+
+      if (response.ok) {
+        const newSpace = await response.json()
+        setSpaces([...spaces, newSpace])
+        setFormData({ name: '', description: '' })
+        setShowForm(false)
+      } else {
+        const errorData = await response.json()
+        setError(errorData.error || 'Fehler beim Erstellen des Space')
+      }
+    } catch (err) {
+      setError('Fehler beim Erstellen des Space')
+      console.error('Error creating space:', err)
+    } finally {
+      setLoading(false)
+    }
+  }
+
+  const handleChange = (e) => {
+    setFormData({
+      ...formData,
+      [e.target.name]: e.target.value
+    })
+  }
+
+  const handleDelete = async (space) => {
+    // Hole die Anzahl der FQDNs für diesen Space
+    let count = 0
+    try {
+      const countResponse = await fetch(`/api/spaces/${space.id}/fqdns/count`)
+      if (countResponse.ok) {
+        const countData = await countResponse.json()
+        count = countData.count || 0
+      }
+    } catch (err) {
+      console.error('Error fetching FQDN count:', err)
+      count = 0
+    }
+
+    // Setze State und öffne Modal erst nach dem Laden der FQDN-Anzahl
+    setFqdnCount(count)
+    setSpaceToDelete(space)
+    setConfirmChecked(false)
+    setDeleteFqdnsChecked(false)
+    setShowDeleteModal(true)
+  }
+
+  const confirmDelete = async () => {
+    if (!confirmChecked || !spaceToDelete) {
+      return
+    }
+
+    // Wenn FQDNs vorhanden sind, muss die Checkbox aktiviert sein
+    if (fqdnCount > 0 && !deleteFqdnsChecked) {
+      alert('Bitte aktivieren Sie die Checkbox, um die FQDNs mitzulöschen.')
+      return
+    }
+
+    try {
+      const url = fqdnCount > 0 && deleteFqdnsChecked
+        ? `/api/spaces/${spaceToDelete.id}?deleteFqdns=true`
+        : `/api/spaces/${spaceToDelete.id}`
+
+      const response = await fetch(url, {
+        method: 'DELETE',
+      })
+
+      if (response.ok) {
+        setSpaces(spaces.filter(space => space.id !== spaceToDelete.id))
+        setShowDeleteModal(false)
+        setSpaceToDelete(null)
+        setConfirmChecked(false)
+        setDeleteFqdnsChecked(false)
+        setFqdnCount(0)
+      } else {
+        const errorText = await response.text()
+        let errorMessage = 'Fehler beim Löschen des Space'
+        try {
+          const errorData = JSON.parse(errorText)
+          errorMessage = errorData.error || errorText
+        } catch {
+          errorMessage = errorText || errorMessage
+        }
+        alert(errorMessage)
+      }
+    } catch (err) {
+      console.error('Error deleting space:', err)
+      alert('Fehler beim Löschen des Space')
+    }
+  }
+
+  const cancelDelete = () => {
+    setShowDeleteModal(false)
+    setSpaceToDelete(null)
+    setConfirmChecked(false)
+    setDeleteFqdnsChecked(false)
+    setFqdnCount(0)
+  }
+
+  const copyToClipboard = async (id, e) => {
+    e.stopPropagation()
+    try {
+      await navigator.clipboard.writeText(id)
+      setCopiedId(id)
+      setTimeout(() => setCopiedId(null), 2000)
+    } catch (err) {
+      console.error('Fehler beim Kopieren:', err)
+    }
+  }
+
+  return (
+    <div className="p-8 min-h-full bg-gradient-to-r from-slate-700 to-slate-900">
+      <div className="max-w-4xl mx-auto">
+        <div className="flex items-center justify-between mb-8">
+          <div>
+            <h1 className="text-4xl font-bold text-white mb-2">Spaces</h1>
+            <p className="text-lg text-slate-200">
+              Verwalten Sie Ihre Spaces und Arbeitsbereiche.
+            </p>
+          </div>
+          <button
+            onClick={() => setShowForm(!showForm)}
+            className="px-6 py-3 bg-blue-600 hover:bg-blue-700 text-white font-semibold rounded-lg shadow-lg hover:shadow-xl transition-all duration-200"
+          >
+            {showForm ? 'Abbrechen' : '+ Neuer Space'}
+          </button>
+        </div>
+
+        {/* Create Space Form */}
+        {showForm && (
+          <div className="bg-slate-800/80 backdrop-blur-sm rounded-lg shadow-xl border border-slate-600/50 p-6 mb-6">
+            <h2 className="text-2xl font-semibold text-white mb-4">
+              Neuen Space erstellen
+            </h2>
+            <form onSubmit={handleSubmit} className="space-y-4">
+              <div>
+                <label htmlFor="name" className="block text-sm font-medium text-slate-200 mb-2">
+                  Name *
+                </label>
+                <input
+                  type="text"
+                  id="name"
+                  name="name"
+                  value={formData.name}
+                  onChange={handleChange}
+                  className="w-full px-4 py-2 bg-slate-700/50 border border-slate-600 rounded-lg text-white placeholder-slate-400 focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent"
+                  placeholder="Geben Sie einen Namen ein"
+                  required
+                />
+              </div>
+              <div>
+                <label htmlFor="description" className="block text-sm font-medium text-slate-200 mb-2">
+                  Beschreibung
+                </label>
+                <textarea
+                  id="description"
+                  name="description"
+                  value={formData.description}
+                  onChange={handleChange}
+                  rows="4"
+                  className="w-full px-4 py-2 bg-slate-700/50 border border-slate-600 rounded-lg text-white placeholder-slate-400 focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-transparent resize-none"
+                  placeholder="Geben Sie eine Beschreibung ein (optional)"
+                />
+              </div>
+              {error && (
+                <div className="p-3 bg-red-500/20 border border-red-500/50 rounded-lg text-red-300 text-sm">
+                  {error}
+                </div>
+              )}
+              <div className="flex gap-3">
+                <button
+                  type="submit"
+                  disabled={loading}
+                  className="px-6 py-2 bg-blue-600 hover:bg-blue-700 disabled:bg-blue-800 disabled:cursor-not-allowed text-white font-semibold rounded-lg transition-all duration-200"
+                >
+                  {loading ? 'Wird erstellt...' : 'Space erstellen'}
+                </button>
+                <button
+                  type="button"
+                  onClick={() => {
+                    setShowForm(false)
+                    setFormData({ name: '', description: '' })
+                    setError('')
+                  }}
+                  className="px-6 py-2 bg-slate-600 hover:bg-slate-700 text-white font-semibold rounded-lg transition-colors duration-200"
+                >
+                  Abbrechen
+                </button>
+              </div>
+            </form>
+          </div>
+        )}
+
+        {/* Spaces List */}
+        <div className="bg-slate-800/80 backdrop-blur-sm rounded-lg shadow-xl border border-slate-600/50 p-6">
+          <h2 className="text-2xl font-semibold text-white mb-4">
+            Ihre Spaces
+          </h2>
+          {fetchError && (
+            <div className="mb-4 p-4 bg-red-500/20 border border-red-500/50 rounded-lg">
+              <p className="text-red-300 mb-2">{fetchError}</p>
+              <button
+                onClick={fetchSpaces}
+                className="px-4 py-2 bg-red-600 hover:bg-red-700 text-white rounded-lg transition-all duration-200"
+              >
+                Erneut versuchen
+              </button>
+            </div>
+          )}
+          {!fetchError && spaces.length === 0 ? (
+            <p className="text-slate-300 text-center py-8">
+              Noch keine Spaces vorhanden. Erstellen Sie Ihren ersten Space!
+            </p>
+          ) : (
+            <div className="space-y-4">
+              {spaces.map((space) => (
+                <div
+                  key={space.id || Math.random()}
+                  className="bg-slate-700/50 rounded-lg p-4 border border-slate-600/50 hover:border-slate-500 transition-colors cursor-pointer shadow-soft"
+                  onClick={() => navigate(`/spaces/${space.id}`)}
+                >
+                  <div className="flex items-start justify-between">
+                    <div className="flex-1">
+                      <h3 className="text-xl font-semibold text-white mb-2">
+                        {space.name || 'Unbenannt'}
+                      </h3>
+                      {space.description && (
+                        <p className="text-slate-300 mb-2">{space.description}</p>
+                      )}
+                      <p className="text-xs text-slate-400">
+                        Erstellt: {space.createdAt ? new Date(space.createdAt).toLocaleString('de-DE') : 'Unbekannt'}
+                      </p>
+                      {space.id && (
+                        <p className="text-xs text-slate-500 font-mono mt-1">
+                          ID: {space.id}
+                        </p>
+                      )}
+                    </div>
+                    <div className="flex gap-2 ml-4">
+                      <button
+                        onClick={(e) => copyToClipboard(space.id, e)}
+                        className="p-2 text-blue-400 hover:text-blue-300 hover:bg-blue-500/20 rounded-lg transition-colors"
+                        title={copiedId === space.id ? 'Kopiert!' : 'ID kopieren'}
+                        aria-label="ID kopieren"
+                      >
+                        {copiedId === space.id ? (
+                          <svg
+                            className="w-5 h-5"
+                            fill="none"
+                            strokeLinecap="round"
+                            strokeLinejoin="round"
+                            strokeWidth="2"
+                            viewBox="0 0 24 24"
+                            stroke="currentColor"
+                          >
+                            <path d="M5 13l4 4L19 7" />
+                          </svg>
+                        ) : (
+                          <svg
+                            className="w-5 h-5"
+                            fill="none"
+                            strokeLinecap="round"
+                            strokeLinejoin="round"
+                            strokeWidth="2"
+                            viewBox="0 0 24 24"
+                            stroke="currentColor"
+                          >
+                            <path d="M8 16H6a2 2 0 01-2-2V6a2 2 0 012-2h8a2 2 0 012 2v2m-6 12h8a2 2 0 002-2v-8a2 2 0 00-2-2h-8a2 2 0 00-2 2v8a2 2 0 002 2z" />
+                          </svg>
+                        )}
+                      </button>
+                      <button
+                        onClick={(e) => {
+                          e.stopPropagation()
+                          handleDelete(space)
+                        }}
+                        className="p-2 text-red-400 hover:text-red-300 hover:bg-red-500/20 rounded-lg transition-colors"
+                        title="Space löschen"
+                        aria-label="Space löschen"
+                      >
+                        <svg
+                          className="w-5 h-5"
+                          fill="none"
+                          strokeLinecap="round"
+                          strokeLinejoin="round"
+                          strokeWidth="2"
+                          viewBox="0 0 24 24"
+                          stroke="currentColor"
+                        >
+                          <path d="M19 7l-.867 12.142A2 2 0 0116.138 21H7.862a2 2 0 01-1.995-1.858L5 7m5 4v6m4-6v6m1-10V4a1 1 0 00-1-1h-4a1 1 0 00-1 1v3M4 7h16" />
+                        </svg>
+                      </button>
+                    </div>
+                  </div>
+                </div>
+              ))}
+            </div>
+          )}
+        </div>
+      </div>
+
+      {/* Delete Confirmation Modal */}
+      {showDeleteModal && spaceToDelete && (
+        <div className="fixed inset-0 bg-black/60 backdrop-blur-sm z-50 flex items-center justify-center p-4">
+          <div className="bg-slate-800 rounded-xl shadow-2xl border border-slate-600/50 max-w-md w-full p-6">
+            <div className="flex items-center mb-4">
+              <div className="flex-shrink-0 w-12 h-12 bg-red-500/20 rounded-full flex items-center justify-center mr-4">
+                <svg
+                  className="w-6 h-6 text-red-400"
+                  fill="none"
+                  strokeLinecap="round"
+                  strokeLinejoin="round"
+                  strokeWidth="2"
+                  viewBox="0 0 24 24"
+                  stroke="currentColor"
+                >
+                  <path d="M12 9v2m0 4h.01m-6.938 4h13.856c1.54 0 2.502-1.667 1.732-3L13.732 4c-.77-1.333-2.694-1.333-3.464 0L3.34 16c-.77 1.333.192 3 1.732 3z" />
+                </svg>
+              </div>
+              <h3 className="text-xl font-bold text-white">
+                Space löschen
+              </h3>
+            </div>
+
+            <div className="mb-6">
+              <p className="text-slate-300 mb-4">
+                Möchten Sie den Space <span className="font-semibold text-white">{spaceToDelete.name}</span> wirklich löschen?
+              </p>
+
+              {fqdnCount > 0 ? (
+                <div className="mb-4 p-4 bg-yellow-500/20 border border-yellow-500/50 rounded-lg">
+                  <p className="text-yellow-300 text-sm mb-3">
+                    ⚠️ Dieser Space enthält <span className="font-semibold">{fqdnCount}</span> {fqdnCount === 1 ? 'FQDN' : 'FQDNs'}. 
+                    Der Space kann nur gelöscht werden, wenn Sie die FQDNs mitlöschen.
+                  </p>
+                  <label className="flex items-start cursor-pointer group">
+                    <input
+                      type="checkbox"
+                      checked={deleteFqdnsChecked}
+                      onChange={(e) => setDeleteFqdnsChecked(e.target.checked)}
+                      className="mt-1 w-5 h-5 text-red-600 bg-slate-700 border-slate-600 rounded focus:ring-2 focus:ring-red-500 focus:ring-offset-2 focus:ring-offset-slate-800 cursor-pointer"
+                    />
+                    <span className="ml-3 text-sm text-slate-300 group-hover:text-white transition-colors">
+                      Alle {fqdnCount} {fqdnCount === 1 ? 'FQDN' : 'FQDNs'} mit diesem Space löschen
+                    </span>
+                  </label>
+                </div>
+              ) : (
+                <p className="text-sm text-green-400 mb-4">
+                  ✓ Dieser Space enthält keine FQDNs und kann gelöscht werden.
+                </p>
+              )}
+
+              <p className="text-sm text-red-400 mb-4">
+                Diese Aktion kann nicht rückgängig gemacht werden.
+              </p>
+
+              <label className="flex items-start cursor-pointer group">
+                <input
+                  type="checkbox"
+                  checked={confirmChecked}
+                  onChange={(e) => setConfirmChecked(e.target.checked)}
+                  className="mt-1 w-5 h-5 text-red-600 bg-slate-700 border-slate-600 rounded focus:ring-2 focus:ring-red-500 focus:ring-offset-2 focus:ring-offset-slate-800 cursor-pointer"
+                />
+                <span className="ml-3 text-sm text-slate-300 group-hover:text-white transition-colors">
+                  Ich bestätige, dass ich diesen Space unwiderruflich löschen möchte
+                </span>
+              </label>
+            </div>
+
+            <div className="flex gap-3">
+              <button
+                onClick={confirmDelete}
+                disabled={!confirmChecked || (fqdnCount > 0 && !deleteFqdnsChecked)}
+                className="flex-1 px-4 py-2 bg-red-600 hover:bg-red-700 disabled:bg-slate-700 disabled:text-slate-500 disabled:cursor-not-allowed text-white font-semibold rounded-lg transition-all duration-200"
+              >
+                Löschen
+              </button>
+              <button
+                onClick={cancelDelete}
+                className="flex-1 px-4 py-2 bg-slate-600 hover:bg-slate-700 text-white font-semibold rounded-lg transition-colors duration-200"
+              >
+                Abbrechen
+              </button>
+            </div>
+          </div>
+        </div>
+      )}
+    </div>
+  )
+}
+
+export default Spaces
+

frontend/tailwind.config.js

@@ -0,0 +1,12 @@
+/** @type {import('tailwindcss').Config} */
+export default {
+  content: [
+    "./index.html",
+    "./src/**/*.{js,ts,jsx,tsx}",
+  ],
+  theme: {
+    extend: {},
+  },
+  plugins: [],
+}
+

frontend/vite.config.js

@@ -0,0 +1,16 @@
+import { defineConfig } from 'vite'
+import react from '@vitejs/plugin-react'
+
+export default defineConfig({
+  plugins: [react()],
+  server: {
+    port: 3000,
+    proxy: {
+      '/api': {
+        target: 'http://localhost:8080',
+        changeOrigin: true
+      }
+    }
+  }
+})
+

package-lock.json

@@ -0,0 +1,6 @@
+{
+  "name": "certigo-addon",
+  "lockfileVersion": 3,
+  "requires": true,
+  "packages": {}
+}