Cloud Dashboard

Centralized security management for all your WordPress sites. The VistoShield cloud dashboard provides multi-site visibility, automated reporting, team management, and incident response — all from one EU-hosted interface.

Overview

The cloud dashboard is hosted at app.vistoshield.com and provides centralized management across all your connected WordPress sites. It replaces the need to log into each WordPress admin separately.

The dashboard communicates with your WordPress sites through the lightweight VistoShield plugin agent using HMAC-authenticated REST API calls. All data is encrypted in transit and stored in the EU (ISO 27001 certified datacenters in Germany).

Connecting Your Site

1. Create an account at app.vistoshield.com/register
2. Click Add New Site from the dashboard
3. Enter your site name and WordPress URL
4. Copy the generated API key
5. In your WordPress admin, go to VistoShield → Settings and paste the API key
6. Your site will appear in the dashboard within seconds

Site Overview

The main site view shows:

• Security Score — Overall security rating (0-100) based on scan results, configuration, and threat activity
• Threats Blocked (24h) — Number of attacks blocked in the last 24 hours across all modules
• Active Modules — How many of the 14 security modules are enabled
• Open Incidents — Active security incidents requiring attention

Module Management

From the site overview, you can enable or disable any of the 14 security modules with toggle switches. Each module shows its current status (Active/Inactive) and can be configured from its dedicated section in the sidebar.

Quick Actions

The dashboard provides one-click actions:

• Run Security Scan — Trigger a full malware and integrity scan
• Purge CDN Cache — Clear edge cache across your connected CDN
• Check Vulnerabilities — Sync vulnerability database and scan installed plugins/themes
• Force Password Reset — Reset all user passwords immediately

Multi-Site Management

With Pro or Max plans, manage multiple WordPress sites from one dashboard:

• See all sites with security scores at a glance
• Push security policies to multiple sites simultaneously
• Compare threat patterns across your portfolio
• Generate consolidated security reports

Automated Reporting

Pro and Max plans include automated security reporting:

• Weekly email summaries — Security score, threats blocked, incidents, and recommendations
• PDF export — Branded security reports for clients (Max: white-label with your logo)
• Extended history — Free: 3 days, Pro: 14 days, Max: 30 days

Team Management

Pro and Max plans support team members:

• Invite team members with role-based access
• Assign incidents to specific team members
• Set up emergency contacts for critical alerts
• Audit trail of who changed what settings

Alerts & Notifications

Configure alerts for security events:

• Free — Email alerts to admin
• Pro — Email + Slack + webhook notifications
• Max — All channels + escalation to emergency contacts

White-Label (Max)

Max plan customers can customize the dashboard branding:

• Custom brand name and logo
• Custom accent color
• Client-facing branded PDF reports
• White-label email notifications

Architecture

The cloud dashboard uses:

• Frontend — Vue 3 SPA with Vite, Pinia, Vue Router
• API — PHP 8.3 / Slim 4 REST API
• Database — MariaDB with horizontal sharding per site
• Cache — Redis 7.0
• Authentication — JWT for dashboard users, HMAC-SHA256 for agent communication
• Hosting — ISO 27001 certified EU datacenters

FAQ