From 6aa5eb02d4ada1374b965e616cf7f467cb5e8bd1 Mon Sep 17 00:00:00 2001
From: Thorsten Rinne <thorsten@phpmyfaq.de>
Date: Mon, 25 Nov 2024 17:54:19 +0100
Subject: [PATCH] refactor: migrated sessions page to controller (#3257)

---
 phpmyfaq/admin/assets/src/api/statistics.js   |  42 ++++
 phpmyfaq/admin/assets/src/index.js            |   4 +
 .../admin/assets/src/statistics/sessions.js   |  40 ++-
 phpmyfaq/admin/header.php                     |   3 +-
 phpmyfaq/admin/index.php                      |   7 -
 phpmyfaq/admin/statistics.sessions.day.php    |  62 -----
 phpmyfaq/admin/statistics.sessions.php        | 112 ---------
 .../admin/statistics/sessions.day.twig        |  58 +++--
 .../templates/admin/statistics/sessions.twig  | 233 +++++++++---------
 phpmyfaq/src/admin-api-routes.php             |  16 +-
 phpmyfaq/src/admin-routes.php                 |  11 +
 .../AbstractAdministrationController.php      |   7 +-
 .../Administration/Api/SessionController.php  |   9 +-
 .../Api/StatisticsController.php              |  48 ++++
 .../StatisticsSessionsController.php          | 103 ++++++++
 .../src/phpMyFAQ/Helper/StatisticsHelper.php  |   3 +
 phpmyfaq/src/services.php                     |  14 ++
 17 files changed, 437 insertions(+), 335 deletions(-)
 delete mode 100644 phpmyfaq/admin/statistics.sessions.day.php
 delete mode 100644 phpmyfaq/admin/statistics.sessions.php
 create mode 100644 phpmyfaq/src/phpMyFAQ/Controller/Administration/StatisticsSessionsController.php

diff --git a/phpmyfaq/admin/assets/src/api/statistics.js b/phpmyfaq/admin/assets/src/api/statistics.js
index f5e3805d43..314f337426 100644
--- a/phpmyfaq/admin/assets/src/api/statistics.js
+++ b/phpmyfaq/admin/assets/src/api/statistics.js
@@ -75,3 +75,45 @@ export const clearRatings = async (csrfToken) => {
     console.error(error);
   }
 };
+export const clearVisits = async (csrfToken) => {
+  try {
+    const response = await fetch(`./api/statistics/visits/clear`, {
+      method: 'DELETE',
+      cache: 'no-cache',
+      headers: {
+        'Content-Type': 'application/json',
+      },
+      body: JSON.stringify({
+        csrfToken: csrfToken,
+      }),
+      redirect: 'follow',
+      referrerPolicy: 'no-referrer',
+    });
+
+    return await response.json();
+  } catch (error) {
+    console.error(error);
+  }
+};
+
+export const deleteSessions = async (csrfToken, month) => {
+  try {
+    const response = await fetch(`./api/statistics/sessions`, {
+      method: 'DELETE',
+      cache: 'no-cache',
+      headers: {
+        'Content-Type': 'application/json',
+      },
+      body: JSON.stringify({
+        csrfToken: csrfToken,
+        month: month,
+      }),
+      redirect: 'follow',
+      referrerPolicy: 'no-referrer',
+    });
+
+    return await response.json();
+  } catch (error) {
+    console.error(error);
+  }
+};
diff --git a/phpmyfaq/admin/assets/src/index.js b/phpmyfaq/admin/assets/src/index.js
index 611da0fd4a..41b0029dee 100644
--- a/phpmyfaq/admin/assets/src/index.js
+++ b/phpmyfaq/admin/assets/src/index.js
@@ -16,8 +16,10 @@
 import { getLatestVersion, renderVisitorCharts, renderTopTenCharts, handleVerificationModal } from './dashboard';
 import {
   handleClearRatings,
+  handleClearVisits,
   handleCreateReport,
   handleDeleteAdminLog,
+  handleDeleteSessions,
   handleSessions,
   handleStatistics,
 } from './statistics';
@@ -131,6 +133,8 @@ document.addEventListener('DOMContentLoaded', async () => {
   handleCreateReport();
   handleTruncateSearchTerms();
   handleClearRatings();
+  handleClearVisits();
+  handleDeleteSessions();
 
   // Configuration → FAQ configuration
   await handleConfiguration();
diff --git a/phpmyfaq/admin/assets/src/statistics/sessions.js b/phpmyfaq/admin/assets/src/statistics/sessions.js
index 3001d20aff..b978d51b1b 100644
--- a/phpmyfaq/admin/assets/src/statistics/sessions.js
+++ b/phpmyfaq/admin/assets/src/statistics/sessions.js
@@ -13,7 +13,8 @@
  * @since     2024-01-14
  */
 
-import { pushErrorNotification } from '../utils';
+import { pushErrorNotification, pushNotification } from '../utils';
+import { clearVisits, deleteSessions } from '../api/index.js';
 
 export const handleSessions = () => {
   const firstHour = document.getElementById('firstHour');
@@ -67,3 +68,40 @@ export const handleSessions = () => {
     });
   }
 };
+
+export const handleClearVisits = () => {
+  const buttonClearRatings = document.getElementById('pmf-admin-clear-visits');
+
+  if (buttonClearRatings) {
+    buttonClearRatings.addEventListener('click', async (event) => {
+      event.preventDefault();
+      const csrf = event.target.getAttribute('data-pmf-csrf');
+      const response = await clearVisits(csrf);
+
+      if (response.success) {
+        pushNotification(response.success);
+      } else {
+        pushErrorNotification(response.error);
+      }
+    });
+  }
+};
+
+export const handleDeleteSessions = () => {
+  const buttonClearRatings = document.getElementById('pmf-admin-delete-sessions');
+
+  if (buttonClearRatings) {
+    buttonClearRatings.addEventListener('click', async (event) => {
+      event.preventDefault();
+      const csrf = document.getElementById('pmf-csrf-token').value;
+      const month = document.getElementById('month').value;
+      const response = await deleteSessions(csrf, month);
+
+      if (response.success) {
+        pushNotification(response.success);
+      } else {
+        pushErrorNotification(response.error);
+      }
+    });
+  }
+};
diff --git a/phpmyfaq/admin/header.php b/phpmyfaq/admin/header.php
index dc6a829b53..a0491c1c22 100644
--- a/phpmyfaq/admin/header.php
+++ b/phpmyfaq/admin/header.php
@@ -112,7 +112,8 @@
 $secLevelEntries['statistics'] .= $adminHelper->addMenuEntry(
     PermissionType::STATISTICS_VIEWLOGS->value,
     'viewsessions',
-    'ad_menu_session'
+    'ad_menu_session',
+    'statistics/sessions'
 );
 $secLevelEntries['statistics'] .= $adminHelper->addMenuEntry(
     PermissionType::STATISTICS_ADMINLOG->value,
diff --git a/phpmyfaq/admin/index.php b/phpmyfaq/admin/index.php
index 9c9a5b4e2b..23f0745a80 100755
--- a/phpmyfaq/admin/index.php
+++ b/phpmyfaq/admin/index.php
@@ -318,13 +318,6 @@
             case 'adminlog':
                 require 'statistics.admin-log.php';
                 break;
-            case 'viewsessions':
-            case 'clear-visits':
-                require 'statistics.sessions.php';
-                break;
-            case 'sessionbrowse':
-                require 'statistics.sessions.day.php';
-                break;
             case 'viewsession':
                 require 'statistics.show.php';
                 break;
diff --git a/phpmyfaq/admin/statistics.sessions.day.php b/phpmyfaq/admin/statistics.sessions.day.php
deleted file mode 100644
index c7d1d5bda1..0000000000
--- a/phpmyfaq/admin/statistics.sessions.day.php
+++ /dev/null
@@ -1,62 +0,0 @@
-<?php
-
-/**
- * Sessions per day.
- *
- * This Source Code Form is subject to the terms of the Mozilla Public License,
- * v. 2.0. If a copy of the MPL was not distributed with this file, You can
- * obtain one at https://mozilla.org/MPL/2.0/.
- *
- * @package   phpMyFAQ
- * @author    Thorsten Rinne <thorsten@phpmyfaq.de>
- * @copyright 2003-2024 phpMyFAQ Team
- * @license   https://www.mozilla.org/MPL/2.0/ Mozilla Public License Version 2.0
- * @link      https://www.phpmyfaq.de
- * @since     2003-02-24
- */
-
-use phpMyFAQ\Date;
-use phpMyFAQ\Enums\PermissionType;
-use phpMyFAQ\Filter;
-use phpMyFAQ\Template\TwigWrapper;
-use phpMyFAQ\Translation;
-use phpMyFAQ\User\CurrentUser;
-use Symfony\Component\HttpFoundation\Request;
-use Twig\Extension\CoreExtension;
-
-if (!defined('IS_VALID_PHPMYFAQ')) {
-    http_response_code(400);
-    exit();
-}
-
-$faqConfig = $container->get('phpmyfaq.configuration');
-$user = CurrentUser::getCurrentUser($faqConfig);
-$request = Request::createFromGlobals();
-
-if ($user->perm->hasPermission($user->getUserId(), PermissionType::STATISTICS_VIEWLOGS->value)) {
-    $perPage = 50;
-    $day = Filter::filterVar($request->request->get('day'), FILTER_VALIDATE_INT);
-    $firstHour = strtotime('midnight', $day);
-    $lastHour = strtotime('tomorrow', $firstHour) - 1;
-
-    $session = $container->get('phpmyfaq.admin.session');
-    $sessionData = $session->getSessionsByDate($firstHour, $lastHour);
-    $date = new Date($faqConfig);
-
-    $twig = new TwigWrapper(PMF_ROOT_DIR . '/assets/templates');
-    $twig->getExtension(CoreExtension::class)->setDateFormat('Y-m-d H:i', '%d days');
-    $template = $twig->loadTemplate('@admin/statistics/sessions.day.twig');
-
-    $templateVars = [
-        'adminHeaderSessionsPerDay' => Translation::get('ad_sess_session'),
-        'currentDay' => date('Y-m-d', $day),
-        'msgIpAddress' => Translation::get('ad_sess_ip'),
-        'msgSessionDate' => Translation::get('ad_sess_s_date'),
-        'msgSession' => Translation::get('ad_sess_session'),
-        'sessionData' => $sessionData,
-    ];
-
-    echo $template->render($templateVars);
-} else {
-    require __DIR__ . '/no-permission.php';
-}
diff --git a/phpmyfaq/admin/statistics.sessions.php b/phpmyfaq/admin/statistics.sessions.php
deleted file mode 100644
index 8f8a07e4c2..0000000000
--- a/phpmyfaq/admin/statistics.sessions.php
+++ /dev/null
@@ -1,112 +0,0 @@
-<?php
-
-/**
- * The main statistics page.
- * This Source Code Form is subject to the terms of the Mozilla Public License,
- * v. 2.0. If a copy of the MPL was not distributed with this file, You can
- * obtain one at https://mozilla.org/MPL/2.0/.
- *
- * @package   phpMyFAQ
- * @author    Thorsten Rinne <thorsten@phpmyfaq.de>
- * @author    Matteo Scaramuccia <matteo@scaramuccia.com>
- * @copyright 2003-2024 phpMyFAQ Team
- * @license   https://www.mozilla.org/MPL/2.0/ Mozilla Public License Version 2.0
- * @link      https://www.phpmyfaq.de
- * @since     2003-02-24
- */
-
-use phpMyFAQ\Date;
-use phpMyFAQ\Enums\PermissionType;
-use phpMyFAQ\Filter;
-use phpMyFAQ\Helper\StatisticsHelper;
-use phpMyFAQ\Session\Token;
-use phpMyFAQ\Template\TwigWrapper;
-use phpMyFAQ\Translation;
-use phpMyFAQ\User\CurrentUser;
-use Symfony\Component\HttpFoundation\Request;
-
-if (!defined('IS_VALID_PHPMYFAQ')) {
-    http_response_code(400);
-    exit();
-}
-
-$faqConfig = $container->get('phpmyfaq.configuration');
-$user = CurrentUser::getCurrentUser($faqConfig);
-$request = Request::createFromGlobals();
-
-if ($user->perm->hasPermission($user->getUserId(), PermissionType::STATISTICS_VIEWLOGS->value)) {
-    $session = $container->get('phpmyfaq.admin.session');
-    $date = new Date($faqConfig);
-    $visits = $container->get('phpmyfaq.visits');
-    $statisticsHelper = new StatisticsHelper($session, $visits, $date);
-
-    $stats = $statisticsHelper->getTrackingFilesStatistics();
-    $visitsPerDay = $session->getNumberOfSessions();
-
-    $twig = new TwigWrapper(PMF_ROOT_DIR . '/assets/templates');
-    $template = $twig->loadTemplate('@admin/statistics/sessions.twig');
-
-    $statdelete = Filter::filterVar($request->request->get('statdelete'), FILTER_SANITIZE_SPECIAL_CHARS);
-    $month = Filter::filterVar($request->request->get('month'), FILTER_SANITIZE_SPECIAL_CHARS);
-    $csrfTokenFromPost = Filter::filterVar($request->request->get('csrf'), FILTER_SANITIZE_SPECIAL_CHARS);
-    $csrfTokenFromGet = Filter::filterVar($request->query->get('csrf'), FILTER_SANITIZE_SPECIAL_CHARS);
-
-    if (!Token::getInstance($container->get('session'))->verifyToken('sessions', $csrfTokenFromPost)) {
-        $statdelete = null;
-    }
-
-    if (!Token::getInstance($container->get('session'))->verifyToken('clear-visits', $csrfTokenFromGet)) {
-        $clearVisits = false;
-    } else {
-        $clearVisits = true;
-    }
-
-    // Delete sessions and session files
-    if ($statdelete == 'delete' && $month !== '') {
-        $hasMessage = $statisticsHelper->deleteTrackingFiles($month);
-        $message = Translation::get('ad_adminlog_delete_success');
-    }
-
-    // Reset all visits and sessions
-    if ('clear-visits' === $action && $clearVisits) {
-        $hasMessage = $statisticsHelper->clearAllVisits();
-        $message = Translation::get('ad_reset_visits_success');
-    }
-
-    $templateVars = [
-        'adminHeaderSessions' => Translation::get('ad_stat_sess'),
-        'csrfTokenClearVisits' => Token::getInstance($container->get('session'))->getTokenString('clear-visits'),
-        'msgClearVisits' => Translation::get('ad_clear_all_visits'),
-        'hasMessage' => $hasMessage ?? false,
-        'message' => $message ?? '',
-        'msgDays' => Translation::get('ad_stat_days'),
-        'numberOfDays' => $stats->numberOfDays,
-        'msgVisits' => Translation::get('ad_stat_vis'),
-        'numberOfVisits' => $visitsPerDay,
-        'msgVisitsPerDay' => Translation::get('ad_stat_vpd'),
-        'visitsPerDay' => ($stats->numberOfDays != 0) ? round(($visitsPerDay / $stats->numberOfDays), 2) : 0,
-        'msgFirstDate' =>  Translation::get('ad_stat_fien'),
-        'firstDate' =>  $statisticsHelper->getFirstTrackingDate($stats->firstDate),
-        'msgLastDate' => Translation::get('ad_stat_laen'),
-        'lastDate' => $statisticsHelper->getLastTrackingDate($stats->lastDate),
-        'msgSessionBrowse' => Translation::get('ad_stat_browse'),
-        'renderedDaySelector' => $statisticsHelper->renderDaySelector(),
-        'buttonOkay' => Translation::get('ad_stat_ok'),
-        'msgSessionManagement' => Translation::get('ad_stat_management'),
-        'csrfTokenSessions' => Token::getInstance($container->get('session'))->getTokenInput('sessions'),
-        'msgChooseMonth' => Translation::get('ad_stat_choose'),
-        'renderedMonthSelector' => $statisticsHelper->renderMonthSelector(),
-        'buttonDeleteMonth' => Translation::get('ad_stat_delete'),
-        'msgExportSessions' => Translation::get('msgExportSessions'),
-        'msgExportSessionsAsCSV' => Translation::get('msgExportSessionsAsCSV'),
-        'csrfTokenExport' => Token::getInstance($container->get('session'))->getTokenString('export-sessions'),
-        'dateToday' => date('Y-m-d'),
-        'msgExportSessionsFrom' => Translation::get('msgExportSessionsFrom'),
-        'msgExportSessionsTo' => Translation::get('msgExportSessionsTo'),
-        'datePickerMinDate' => date('Y-m-d', $stats->firstDate),
-    ];
-
-    echo $template->render($templateVars);
-} else {
-    require __DIR__ . '/no-permission.php';
-}
diff --git a/phpmyfaq/assets/templates/admin/statistics/sessions.day.twig b/phpmyfaq/assets/templates/admin/statistics/sessions.day.twig
index a7cdf80ed2..c5c7897899 100644
--- a/phpmyfaq/assets/templates/admin/statistics/sessions.day.twig
+++ b/phpmyfaq/assets/templates/admin/statistics/sessions.day.twig
@@ -1,29 +1,33 @@
-<div class="d-flex justify-content-between flex-wrap flex-md-nowrap align-items-center pt-3 pb-2 mb-3 border-bottom">
-  <h1 class="h2">
-    <i aria-hidden="true" class="bi bi-tasks"></i>
-    {{ adminHeaderSessionsPerDay }} {{ currentDay }}
-  </h1>
-</div>
+{% extends '@admin/index.twig' %}
 
-<div class="row">
-  <div class="col-lg-12">
-    <table class="table table-striped align-middle">
-      <thead>
-        <tr>
-          <th>{{ msgIpAddress }}</th>
-          <th>{{ msgSessionDate }}</th>
-          <th>{{ msgSession }}</th>
-        </tr>
-      </thead>
-      <tbody>
-      {% for sid, data in sessionData %}
-        <tr>
-          <td>{{ data.ip }}</td>
-          <td>{{ data.time | date }}</td>
-          <td><a href="?action=viewsession&id={{ sid }}">{{ sid }}</a></td>
-        </tr>
-      {% endfor %}
-      </tbody>
-    </table>
+{% block content %}
+  <div class="d-flex justify-content-between flex-wrap flex-md-nowrap align-items-center pt-3 pb-2 mb-3 border-bottom">
+    <h1 class="h2">
+      <i aria-hidden="true" class="bi bi-tasks"></i>
+      {{ adminHeaderSessionsPerDay }} {{ currentDay }}
+    </h1>
   </div>
-</div>
+
+  <div class="row">
+    <div class="col-lg-12">
+      <table class="table table-striped align-middle">
+        <thead>
+          <tr>
+            <th>{{ msgIpAddress }}</th>
+            <th>{{ msgSessionDate }}</th>
+            <th>{{ msgSession }}</th>
+          </tr>
+        </thead>
+        <tbody>
+        {% for sid, data in sessionData %}
+          <tr>
+            <td>{{ data.ip }}</td>
+            <td>{{ data.time | date }}</td>
+            <td><a href="?action=viewsession&id={{ sid }}">{{ sid }}</a></td>
+          </tr>
+        {% endfor %}
+        </tbody>
+      </table>
+    </div>
+  </div>
+{% endblock %}
diff --git a/phpmyfaq/assets/templates/admin/statistics/sessions.twig b/phpmyfaq/assets/templates/admin/statistics/sessions.twig
index 74a0897798..9339b1154e 100644
--- a/phpmyfaq/assets/templates/admin/statistics/sessions.twig
+++ b/phpmyfaq/assets/templates/admin/statistics/sessions.twig
@@ -1,134 +1,131 @@
-<div
-  class="d-flex justify-content-between flex-wrap flex-md-nowrap align-items-center pt-3 pb-2 mb-3 border-bottom">
-  <h1 class="h2">
-    <i aria-hidden="true" class="bi bi-list-ol"></i> {{ adminHeaderSessions }}
-  </h1>
-  <div class="btn-toolbar mb-2 mb-md-0">
-    <div class="btn-group mr-2">
-      <a class="btn btn-outline-danger" href="?action=clear-visits&csrf={{ csrfTokenClearVisits }}">
-        <i aria-hidden="true" class="bi bi-trash"></i> {{ msgClearVisits }}
-      </a>
+{% extends '@admin/index.twig' %}
+
+{% block content %}
+  <div
+    class="d-flex justify-content-between flex-wrap flex-md-nowrap align-items-center pt-3 pb-2 mb-3 border-bottom">
+    <h1 class="h2">
+      <i aria-hidden="true" class="bi bi-list-ol"></i> {{ adminHeaderSessions }}
+    </h1>
+    <div class="btn-toolbar mb-2 mb-md-0">
+      <div class="btn-group mr-2">
+        <button type="button" class="btn btn-outline-danger" data-pmf-csrf="{{ csrfTokenClearVisits }}"
+                id="pmf-admin-clear-visits">
+          <i aria-hidden="true" class="bi bi-trash"></i> {{ msgClearVisits }}
+        </button>
+      </div>
     </div>
   </div>
-</div>
 
-{% if hasMessage %}
-  <div class="alert alert-success" role="alert">
-    {{ message }}
+  <div class="row mb-3">
+    <div class="col-6">
+      <div class="card shadow">
+        <h5 class="card-header py-3">
+          <i aria-hidden="true" class="bi bi-list-ol"></i> {{ adminHeaderSessions }}
+        </h5>
+        <div class="card-body">
+          <table class="table table-striped align-middle">
+            <tr>
+              <th class="w-50">{{ msgDays }}</th>
+              <td class="w-50">{{ numberOfDays }}</td>
+            </tr>
+            <tr>
+              <th>{{ msgVisits }}</th>
+              <td>{{ numberOfVisits }}</td>
+            </tr>
+            <tr>
+              <th>{{ msgVisitsPerDay }}</th>
+              <td>{{ visitsPerDay }}</td>
+            </tr>
+            <tr>
+              <th>{{ msgFirstDate }}</th>
+              <td>{{ firstDate }}</td>
+            </tr>
+            <tr>
+              <th>{{ msgLastDate }}</th>
+              <td>{{ lastDate }}</td>
+            </tr>
+            <tr>
+              <th>{{ msgSessionBrowse }}</th>
+              <td class="col-lg-10">
+                <form action="./statistics/session" method="post" accept-charset="utf-8"
+                      class="row row-cols-lg-auto g-3 align-items-center">
+                  <div class="mr-2">
+                    <label for="day" class="d-none">
+                      {{ msgSessionBrowse }}
+                    </label>
+                    <select name="day" id="day" class="form-select">
+                      {{ renderedDaySelector | raw }}
+                    </select>
+                  </div>
+                  <button class="btn btn-primary" type="submit" name="statbrowse">
+                    {{ buttonOkay }}
+                  </button>
+                </form>
+              </td>
+            </tr>
+          </table>
+        </div>
+      </div>
+    </div>
+    <div class="col-6">
+      <!-- Chart has to be implemented :-) -->
+    </div>
   </div>
-{% endif %}
 
-<div class="row mb-3">
-  <div class="col-6">
-    <div class="card shadow">
-      <h5 class="card-header py-3">
-        <i aria-hidden="true" class="bi bi-list-ol"></i> {{ adminHeaderSessions }}
-      </h5>
-      <div class="card-body">
-        <table class="table table-striped align-middle">
-          <tr>
-            <th class="w-50">{{ msgDays }}</th>
-            <td class="w-50">{{ numberOfDays }}</td>
-          </tr>
-          <tr>
-            <th>{{ msgVisits }}</th>
-            <td>{{ numberOfVisits }}</td>
-          </tr>
-          <tr>
-            <th>{{ msgVisitsPerDay }}</th>
-            <td>{{ visitsPerDay }}</td>
-          </tr>
-          <tr>
-            <th>{{ msgFirstDate }}</th>
-            <td>{{ firstDate }}</td>
-          </tr>
-          <tr>
-            <th>{{ msgLastDate }}</th>
-            <td>{{ lastDate }}</td>
-          </tr>
-          <tr>
-            <th>{{ msgSessionBrowse }}</th>
-            <td class="col-lg-10">
-              <form action="?action=sessionbrowse" method="post" accept-charset="utf-8"
-                    class="row row-cols-lg-auto g-3 align-items-center">
-                <div class="mr-2">
-                  <label for="day" class="d-none">
-                    {{ msgSessionBrowse }}
-                  </label>
-                  <select name="day" id="day" class="form-select">
-                    {{ renderedDaySelector | raw }}
-                  </select>
-                </div>
-                <button class="btn btn-primary" type="submit" name="statbrowse">
-                  {{ buttonOkay }}
-                </button>
-              </form>
-            </td>
-          </tr>
-        </table>
+  <div class="row mb-3">
+    <div class="col-6">
+      <div class="card shadow">
+        <h5 class="card-header py-3">
+          <i aria-hidden="true" class="bi bi-trash"></i> {{ msgSessionManagement }}
+        </h5>
+        <div class="card-body">
+          <form class="row row-cols-lg-auto g-3 align-items-center">
+            <input type="hidden" name="statdelete" id="statdelete" value="delete">
+            {{ csrfTokenSessions | raw }}
+            <div class="col-12">
+              <label class="visually-hidden" for="month">
+                {{ msgChooseMonth }}
+              </label>
+              <select name="month" id="month" class="form-select">
+                {{ renderedMonthSelector | raw }}
+              </select>
+            </div>
+            <div class="col-12">
+              <button class="btn btn-primary" type="button" id="pmf-admin-delete-sessions">
+                {{ buttonDeleteMonth }}
+              </button>
+            </div>
+          </form>
+        </div>
       </div>
     </div>
   </div>
-  <div class="col-6">
-    <!-- Chart has to be implemented :-) -->
-  </div>
-</div>
 
-<div class="row mb-3">
-  <div class="col-6">
-    <div class="card shadow">
-      <h5 class="card-header py-3">
-        <i aria-hidden="true" class="bi bi-trash"></i> {{ msgSessionManagement }}
-      </h5>
-      <div class="card-body">
-        <form action="?action=viewsessions" method="post"
-              class="row row-cols-lg-auto g-3 align-items-center">
-          <input type="hidden" name="statdelete" value="delete">
-          {{ csrfTokenSessions | raw }}
-          <div class="col-12">
-            <label  class="visually-hidden" for="month">
-              {{ msgChooseMonth }}
-            </label>
-            <select name="month" id="month" class="form-select">
-              {{ renderedMonthSelector | raw }}
-            </select>
+  <div class="row mb-3">
+    <div class="col-6">
+      <div class="card shadow">
+        <h5 class="card-header py-3">
+          <i aria-hidden="true" class="bi bi-file-earmark-arrow-down"></i> {{ 'msgExportSessionsAsCSV' | translate }}
+        </h5>
+        <div class="card-body">
+          <form class="row">
+          <input type="hidden" id="csrf" value="{{ csrfTokenExport }}"/>
+          <label for="firstHour" class="col-1 col-form-label">{{ 'msgExportSessionsFrom' | translate }}</label>
+          <div class="col-5">
+              <input type="date" class="form-control" min="{{ datePickerMinDate }}" max="{{ dateToday }}" id="firstHour"/>
           </div>
-          <div class="col-12">
-            <button class="btn btn-primary" type="submit">
-              {{ buttonDeleteMonth }}
-            </button>
+          <label for="lastHour" class="col-1 col-form-label">{{ 'msgExportSessionsTo' | translate }}</label>
+          <div class="col-5">
+              <input type="date" class="form-control" id="lastHour" min="{{ datePickerMinDate }}" max="{{ dateToday }}"/>
+          </div>
+          <div class="mt-3 d-flex justify-content-end">
+              <button class="btn btn-primary" type="submit" id="exportSessions">
+                <i class="bi bi-file-earmark-arrow-down"></i> {{ 'msgExportSessions' | translate }}
+              </button>
           </div>
         </form>
-      </div>
-    </div>
-  </div>
-</div>
-
-<div class="row mb-3">
-  <div class="col-6">
-    <div class="card shadow">
-      <h5 class="card-header py-3">
-        <i aria-hidden="true" class="bi bi-file-earmark-arrow-down"></i> {{ msgExportSessionsAsCSV }}
-      </h5>
-      <div class="card-body">
-        <form class="row">
-        <input type="hidden" id="csrf" value="{{ csrfTokenExport }}"/>
-        <label for="firstHour" class="col-1 col-form-label">{{ msgExportSessionsFrom }}</label>
-        <div class="col-5">
-            <input type="date" class="form-control" min="{{ datePickerMinDate }}" max="{{ dateToday }}" id="firstHour"/>
-        </div>
-        <label for="lastHour" class="col-1 col-form-label">{{ msgExportSessionsTo }}</label>
-        <div class="col-5">
-            <input type="date" class="form-control" id="lastHour" min="{{ datePickerMinDate }}" max="{{ dateToday }}"/>
-        </div>
-        <div class="mt-3 d-flex justify-content-end">
-            <button class="btn btn-primary" type="submit" id="exportSessions">
-              <i class="bi bi-file-earmark-arrow-down"></i> {{ msgExportSessions }}
-            </button>
         </div>
-      </form>
       </div>
     </div>
   </div>
-</div>
-            
+{% endblock %}
diff --git a/phpmyfaq/src/admin-api-routes.php b/phpmyfaq/src/admin-api-routes.php
index 7bde6dc84e..97b11f2a0d 100644
--- a/phpmyfaq/src/admin-api-routes.php
+++ b/phpmyfaq/src/admin-api-routes.php
@@ -471,14 +471,24 @@
         'controller' => [StatisticsController::class, 'deleteAdminLog'],
         'methods' => 'DELETE'
     ],
+    'admin.api.statistics.ratings.clear' => [
+        'path' => '/statistics/ratings/clear',
+        'controller' => [StatisticsController::class, 'clearRatings'],
+        'methods' => 'DELETE'
+    ],
     'admin.api.statistics.search-terms.truncate' => [
         'path' => '/statistics/search-terms',
         'controller' => [StatisticsController::class, 'truncateSearchTerms'],
         'methods' => 'DELETE'
     ],
-    'admin.api.statistics.ratings.clear' => [
-        'path' => '/statistics/ratings/clear',
-        'controller' => [StatisticsController::class, 'clearRatings'],
+    'admin.api.statistics.sessions.truncate' => [
+        'path' => '/statistics/sessions',
+        'controller' => [StatisticsController::class, 'truncateSessions'],
+        'methods' => 'DELETE'
+    ],
+    'admin.api.statistics.visits.clear' => [
+        'path' => '/statistics/visits/clear',
+        'controller' => [StatisticsController::class, 'clearVisits'],
         'methods' => 'DELETE'
     ],
     // Forms API
diff --git a/phpmyfaq/src/admin-routes.php b/phpmyfaq/src/admin-routes.php
index 90f7b49f02..892d7bbe0a 100644
--- a/phpmyfaq/src/admin-routes.php
+++ b/phpmyfaq/src/admin-routes.php
@@ -26,6 +26,7 @@
 use phpMyFAQ\Controller\Administration\PasswordChangeController;
 use phpMyFAQ\Controller\Administration\RatingController;
 use phpMyFAQ\Controller\Administration\SessionKeepAliveController;
+use phpMyFAQ\Controller\Administration\StatisticsSessionsController;
 use phpMyFAQ\Controller\Administration\StopWordsController;
 use phpMyFAQ\Controller\Administration\SystemInformationController;
 use phpMyFAQ\Controller\Administration\UpdateController;
@@ -151,6 +152,16 @@
         'controller' => [RatingController::class, 'index'],
         'methods' => 'GET'
     ],
+    'admin.statistics.sessions' => [
+        'path' => '/statistics/sessions',
+        'controller' => [StatisticsSessionsController::class, 'index'],
+        'methods' => 'GET'
+    ],
+    'admin.statistics.session' => [
+        'path' => '/statistics/session',
+        'controller' => [StatisticsSessionsController::class, 'session'],
+        'methods' => 'POST'
+    ],
     'admin.stopwords' => [
         'path' => '/stopwords',
         'controller' => [StopwordsController::class, 'index'],
diff --git a/phpmyfaq/src/phpMyFAQ/Controller/Administration/AbstractAdministrationController.php b/phpmyfaq/src/phpMyFAQ/Controller/Administration/AbstractAdministrationController.php
index e065ecc208..a7e5e0ffa7 100644
--- a/phpmyfaq/src/phpMyFAQ/Controller/Administration/AbstractAdministrationController.php
+++ b/phpmyfaq/src/phpMyFAQ/Controller/Administration/AbstractAdministrationController.php
@@ -128,7 +128,8 @@ protected function getHeader(Request $request): array
         $secLevelEntries['statistics'] .= $adminHelper->addMenuEntry(
             PermissionType::STATISTICS_VIEWLOGS->value,
             'viewsessions',
-            'ad_menu_session'
+            'ad_menu_session',
+            'statistics/sessions'
         );
         $secLevelEntries['statistics'] .= $adminHelper->addMenuEntry(
             PermissionType::STATISTICS_ADMINLOG->value,
@@ -233,8 +234,6 @@ protected function getHeader(Request $request): array
             case 'stickyfaqs':
                 $contentPage = true;
                 break;
-            case 'viewsessions':
-            case 'sessionbrowse':
             case 'sessionsuche':
             case 'adminlog':
             case 'searchstats':
@@ -269,6 +268,8 @@ protected function getHeader(Request $request): array
                 $contentPage = true;
                 break;
             case 'admin.statistics.ratings':
+            case 'admin.statistics.sessions':
+            case 'admin.statistics.session':
                 $statisticsPage = true;
                 break;
             case 'admin.export':
diff --git a/phpmyfaq/src/phpMyFAQ/Controller/Administration/Api/SessionController.php b/phpmyfaq/src/phpMyFAQ/Controller/Administration/Api/SessionController.php
index b289d4c7a0..15e71b2987 100644
--- a/phpmyfaq/src/phpMyFAQ/Controller/Administration/Api/SessionController.php
+++ b/phpmyfaq/src/phpMyFAQ/Controller/Administration/Api/SessionController.php
@@ -55,7 +55,14 @@ public function export(Request $request): BinaryFileResponse|JsonResponse
         $file = fopen($filePath, 'w');
         if ($file) {
             foreach ($data as $row) {
-                fputcsv($file, [$row['ip'], $row['time']]);
+                fputcsv(
+                    $file,
+                    [$row['ip'],  $row['time']],
+                    ',',
+                    '"',
+                    '\\',
+                    PHP_EOL
+                );
             }
 
             fclose($file);
diff --git a/phpmyfaq/src/phpMyFAQ/Controller/Administration/Api/StatisticsController.php b/phpmyfaq/src/phpMyFAQ/Controller/Administration/Api/StatisticsController.php
index 0982fcdf4f..4bf49747d6 100644
--- a/phpmyfaq/src/phpMyFAQ/Controller/Administration/Api/StatisticsController.php
+++ b/phpmyfaq/src/phpMyFAQ/Controller/Administration/Api/StatisticsController.php
@@ -21,6 +21,7 @@
 use phpMyFAQ\Controller\AbstractController;
 use phpMyFAQ\Core\Exception;
 use phpMyFAQ\Enums\PermissionType;
+use phpMyFAQ\Filter;
 use phpMyFAQ\Session\Token;
 use phpMyFAQ\Translation;
 use Symfony\Component\HttpFoundation\JsonResponse;
@@ -52,6 +53,32 @@ public function deleteAdminLog(Request $request): JsonResponse
         return $this->json(['error' => Translation::get('ad_adminlog_delete_failure')], Response::HTTP_BAD_REQUEST);
     }
 
+
+    /**
+     * @throws Exception|JsonException
+     * @throws \Exception
+     */
+    #[Route('./admin/api/statistics/sessions', name: 'admin.api.statistics.sessions.truncate', methods: ['DELETE'])]
+    public function truncateSessions(Request $request): JsonResponse
+    {
+        $this->userHasPermission(PermissionType::STATISTICS_VIEWLOGS);
+
+        $data = json_decode($request->getContent(), false, 512, JSON_THROW_ON_ERROR);
+        if (
+            !Token::getInstance($this->container->get('session'))
+                ->verifyToken('sessions', $data->csrfToken)
+        ) {
+            return $this->json(['error' => Translation::get('msgNoPermission')], Response::HTTP_UNAUTHORIZED);
+        }
+
+        $month = Filter::filterVar($request->get('month'), FILTER_SANITIZE_SPECIAL_CHARS);
+        if ($this->container->get('phpmyfaq.helper.statistics')->deleteTrackingFiles($month)) {
+            return $this->json(['success' => Translation::get('ad_adminlog_delete_success')], Response::HTTP_OK);
+        }
+
+        return $this->json(['error' => 'Cannot delete sessions.'], Response::HTTP_BAD_REQUEST);
+    }
+
     /**
      * @throws Exception|JsonException
      * @throws \Exception
@@ -97,4 +124,25 @@ public function clearRatings(Request $request): JsonResponse
 
         return $this->json(['error' => Translation::get('msgDeleteAllVotings')], Response::HTTP_BAD_REQUEST);
     }
+
+    /**
+     * @throws \Exception
+     */
+    #[Route('./admin/api/statistics/visits/clear', name: 'admin.api.statistics.visits.clear', methods: ['DELETE'])]
+    public function clearVisits(Request $request): JsonResponse
+    {
+        $this->userHasPermission(PermissionType::STATISTICS_VIEWLOGS);
+
+        $data = json_decode($request->getContent(), false, 512, JSON_THROW_ON_ERROR);
+
+        if (!Token::getInstance($this->container->get('session'))->verifyToken('clear-visits', $data->csrfToken)) {
+            return $this->json(['error' => Translation::get('msgNoPermission')], Response::HTTP_UNAUTHORIZED);
+        }
+
+        if ($this->container->get('phpmyfaq.helper.statistics')->clearAllVisits()) {
+            return $this->json(['success' => Translation::get('ad_reset_visits_success')], Response::HTTP_OK);
+        }
+
+        return $this->json(['error' => 'Cannot clear visits.'], Response::HTTP_BAD_REQUEST);
+    }
 }
diff --git a/phpmyfaq/src/phpMyFAQ/Controller/Administration/StatisticsSessionsController.php b/phpmyfaq/src/phpMyFAQ/Controller/Administration/StatisticsSessionsController.php
new file mode 100644
index 0000000000..45f5178e76
--- /dev/null
+++ b/phpmyfaq/src/phpMyFAQ/Controller/Administration/StatisticsSessionsController.php
@@ -0,0 +1,103 @@
+<?php
+
+declare(strict_types=1);
+
+namespace phpMyFAQ\Controller\Administration;
+
+use phpMyFAQ\Core\Exception;
+use phpMyFAQ\Enums\PermissionType;
+use phpMyFAQ\Filter;
+use phpMyFAQ\Helper\StatisticsHelper;
+use phpMyFAQ\Session\Token;
+use phpMyFAQ\Translation;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\Routing\Attribute\Route;
+use Twig\Error\LoaderError;
+
+class StatisticsSessionsController extends AbstractAdministrationController
+{
+    /**
+     * @throws LoaderError
+     * @throws Exception
+     * @throws \Exception
+     */
+    #[Route('/statistics/sessions', name: 'admin.statistics.sessions', methods: ['GET'])]
+    public function index(Request $request): Response
+    {
+        $this->userHasPermission(PermissionType::STATISTICS_VIEWLOGS);
+
+        $session = $this->container->get('session');
+        $adminSession = $this->container->get('phpmyfaq.admin.session');
+        $date = $this->container->get('phpmyfaq.date');
+        $visits = $this->container->get('phpmyfaq.visits');
+        $statisticsHelper = new StatisticsHelper($adminSession, $visits, $date);
+
+        $stats = $statisticsHelper->getTrackingFilesStatistics();
+        $visitsPerDay = $adminSession->getNumberOfSessions();
+
+        return $this->render(
+            '@admin/statistics/sessions.twig',
+            [
+                ... $this->getHeader($request),
+                ... $this->getFooter(),
+                'adminHeaderSessions' => Translation::get('ad_stat_sess'),
+                'csrfTokenClearVisits' => Token::getInstance($session)->getTokenString('clear-visits'),
+                'msgClearVisits' => Translation::get('ad_clear_all_visits'),
+                'msgDays' => Translation::get('ad_stat_days'),
+                'numberOfDays' => $stats->numberOfDays,
+                'msgVisits' => Translation::get('ad_stat_vis'),
+                'numberOfVisits' => $visitsPerDay,
+                'msgVisitsPerDay' => Translation::get('ad_stat_vpd'),
+                'visitsPerDay' => ($stats->numberOfDays !== 0) ? round(($visitsPerDay / $stats->numberOfDays), 2) : 0,
+                'msgFirstDate' =>  Translation::get('ad_stat_fien'),
+                'firstDate' =>  $statisticsHelper->getFirstTrackingDate($stats->firstDate),
+                'msgLastDate' => Translation::get('ad_stat_laen'),
+                'lastDate' => $statisticsHelper->getLastTrackingDate($stats->lastDate),
+                'msgSessionBrowse' => Translation::get('ad_stat_browse'),
+                'renderedDaySelector' => $statisticsHelper->renderDaySelector(),
+                'buttonOkay' => Translation::get('ad_stat_ok'),
+                'msgSessionManagement' => Translation::get('ad_stat_management'),
+                'csrfTokenSessions' => Token::getInstance($session)->getTokenInput('sessions'),
+                'msgChooseMonth' => Translation::get('ad_stat_choose'),
+                'renderedMonthSelector' => $statisticsHelper->renderMonthSelector(),
+                'buttonDeleteMonth' => Translation::get('ad_stat_delete'),
+                'csrfTokenExport' => Token::getInstance($session)->getTokenString('export-sessions'),
+                'dateToday' => date('Y-m-d'),
+                'datePickerMinDate' => date('Y-m-d', $stats->firstDate),
+            ]
+        );
+    }
+
+    /**
+     * @throws Exception
+     * @throws LoaderError
+     * @throws \Exception
+     */
+    #[Route('/statistics/session', name: 'admin.statistics.session', methods: ['GET'])]
+    public function session(Request $request): Response
+    {
+        $this->userHasPermission(PermissionType::STATISTICS_VIEWLOGS);
+
+        $day = Filter::filterVar($request->get('day'), FILTER_VALIDATE_INT);
+        $firstHour = strtotime('midnight', $day);
+        $lastHour = strtotime('tomorrow', $firstHour) - 1;
+
+        $session = $this->container->get('phpmyfaq.admin.session');
+        $sessionData = $session->getSessionsByDate($firstHour, $lastHour);
+
+        return $this->render(
+            '@admin/statistics/sessions.day.twig',
+            [
+                ... $this->getHeader($request),
+                ... $this->getFooter(),
+                'adminHeaderSessionsPerDay' => Translation::get('ad_sess_session'),
+                'currentDay' => date('Y-m-d', $day),
+                'msgIpAddress' => Translation::get('ad_sess_ip'),
+                'msgSessionDate' => Translation::get('ad_sess_s_date'),
+                'msgSession' => Translation::get('ad_sess_session'),
+                'sessionData' => $sessionData,
+            ]
+        );
+    }
+}
diff --git a/phpmyfaq/src/phpMyFAQ/Helper/StatisticsHelper.php b/phpmyfaq/src/phpMyFAQ/Helper/StatisticsHelper.php
index d9bcc31fc0..64a642c59d 100644
--- a/phpmyfaq/src/phpMyFAQ/Helper/StatisticsHelper.php
+++ b/phpmyfaq/src/phpMyFAQ/Helper/StatisticsHelper.php
@@ -124,6 +124,8 @@ public function getAllTrackingDates(): array
 
     public function deleteTrackingFiles(string $month): bool
     {
+        return false;
+        /*
         $dir = opendir(PMF_ROOT_DIR . '/content/core/data');
         $first = PHP_INT_MAX;
         $last = 0;
@@ -148,6 +150,7 @@ public function deleteTrackingFiles(string $month): bool
         closedir($dir);
 
         return $this->session->deleteSessions($first, $last);
+        */
     }
 
     public function clearAllVisits(): bool
diff --git a/phpmyfaq/src/services.php b/phpmyfaq/src/services.php
index 0205ddb5da..57d94b2ac4 100644
--- a/phpmyfaq/src/services.php
+++ b/phpmyfaq/src/services.php
@@ -29,10 +29,12 @@
 use phpMyFAQ\Category\Permission;
 use phpMyFAQ\Configuration;
 use phpMyFAQ\Database\DatabaseHelper;
+use phpMyFAQ\Date;
 use phpMyFAQ\Faq;
 use phpMyFAQ\Faq\MetaData;
 use phpMyFAQ\Faq\Statistics;
 use phpMyFAQ\Helper\CategoryHelper;
+use phpMyFAQ\Helper\StatisticsHelper;
 use phpMyFAQ\Instance;
 use phpMyFAQ\Language;
 use phpMyFAQ\Rating;
@@ -127,6 +129,11 @@
     $services->set('phpmyfaq.configuration', Configuration::class)
         ->factory([Configuration::class, 'getConfigurationInstance']);
 
+    $services->set('phpmyfaq.date', Date::class)
+        ->args([
+            new Reference('phpmyfaq.configuration'),
+        ]);
+
     $services->set('phpmyfaq.faq', Faq::class)
         ->args([
             new Reference('phpmyfaq.configuration')
@@ -137,6 +144,13 @@
             new Reference('phpmyfaq.configuration')
         ]);
 
+    $services->set('phpmyfaq.helper.statistics', StatisticsHelper::class)
+        ->args([
+            new Reference('phpmyfaq.admin.session'),
+            new Reference('phpmyfaq.visits'),
+            new Reference('phpmyfaq.date')
+        ]);
+
     $services->set('phpmyfaq.rating', Rating::class)
         ->args([
             new Reference('phpmyfaq.configuration'),