fix: implement proactive session capture and harden Steam registry/VDF injection for cross-machine reliability

frontend/dist-electron/main.js

@@ -60,9 +60,23 @@ const initBackend = () => {
 };
 // --- System Tray ---
 const createTray = () => {
-    const assetsDir = path_1.default.join(__dirname, '..', 'assets-build');
-    const possibleIcons = ['icon.svg', 'icon.png'];
+    // Try to find the icon in various standard locations
+    const possiblePaths = [
+        path_1.default.join(__dirname, '..', 'assets-build'), // Dev
+        path_1.default.join(process.resourcesPath, 'assets-build'), // Packaged (External)
+        path_1.default.join(electron_1.app.getAppPath(), 'dist', 'assets-build'), // Packaged (Internal dist)
+        path_1.default.join(electron_1.app.getAppPath(), 'assets-build') // Packaged (Internal root)
+    ];
+    let assetsDir = '';
+    for (const p of possiblePaths) {
+        if (fs_1.default.existsSync(p)) {
+            assetsDir = p;
+            break;
+        }
+    }
+    const possibleIcons = ['icon.png', 'icon.svg'];
     let iconPath = '';
+    if (assetsDir) {
         for (const name of possibleIcons) {
             const fullPath = path_1.default.join(assetsDir, name);
             if (fs_1.default.existsSync(fullPath)) {
@@ -70,27 +84,24 @@ const createTray = () => {
                 break;
             }
         }
+    }
+    console.log(`[Tray] Resolved assets directory: ${assetsDir || 'NOT FOUND'}`);
     console.log(`[Tray] Attempting to initialize with icon: ${iconPath || 'NONE FOUND'}`);
     if (!iconPath) {
-        console.warn(`[Tray] FAILED: No valid icon found in ${assetsDir}`);
+        console.warn(`[Tray] FAILED: No valid icon found in searched paths.`);
         return;
     }
     try {
         const icon = electron_1.nativeImage.createFromPath(iconPath).resize({ width: 16, height: 16 });
         tray = new electron_1.Tray(icon);
         tray.setToolTip('Ultimate Ban Tracker');
-        tray.on('click', () => {
-            if (mainWindow) {
+        tray.on('click', () => { if (mainWindow) {
             mainWindow.show();
             mainWindow.focus();
-            }
-        });
+        } });
         updateTrayMenu();
-        console.log(`[Tray] Successfully initialized`);
-    }
-    catch (e) {
-        console.error(`[Tray] Critical error during initialization: ${e.message}`);
     }
+    catch (e) { }
 };
 const updateTrayMenu = () => {
     if (!tray)
@@ -108,11 +119,7 @@ const updateTrayMenu = () => {
                 click: () => handleSwitchAccount(acc.loginName)
             })) : [{ label: 'No accounts found', enabled: false }]
         },
-        {
-            label: 'Sync Now',
-            enabled: !!config?.enabled,
-            click: () => syncAccounts()
-        },
+        { label: 'Sync Now', enabled: !!config?.enabled, click: () => syncAccounts(true) },
         { type: 'separator' },
         { label: 'Show Dashboard', click: () => { if (mainWindow)
                 mainWindow.show(); } },
@@ -155,8 +162,58 @@ const handleSwitchAccount = async (loginName) => {
         return false;
     }
 };
+// --- Scraper Helper ---
+const scrapeAccountData = async (account) => {
+    const now = new Date();
+    try {
+        const profile = await (0, steam_web_1.fetchProfileData)(account.steamId, account.steamLoginSecure);
+        const bans = await (0, steam_web_1.scrapeBanStatus)(profile.profileUrl, account.steamLoginSecure);
+        account.personaName = profile.personaName;
+        account.profileUrl = profile.profileUrl;
+        account.vacBanned = bans.vacBanned;
+        account.gameBans = bans.gameBans;
+        account.status = (bans.vacBanned || bans.gameBans > 0) ? 'banned' : 'none';
+        account.lastBanCheck = now.toISOString();
+        if (profile.avatar && (!account.localAvatar || profile.avatar !== account.avatar)) {
+            account.avatar = profile.avatar;
+            const localPath = await downloadAvatar(account.steamId, profile.avatar);
+            if (localPath)
+                account.localAvatar = localPath;
+        }
+        if (account.steamLoginSecure) {
+            try {
+                const result = await (0, scraper_1.scrapeCooldown)(account.steamId, account.steamLoginSecure);
+                account.authError = false;
+                account.lastScrapeTime = now.toISOString();
+                if (result.isActive) {
+                    account.cooldownExpiresAt = result.expiresAt ? result.expiresAt.toISOString() : new Date(Date.now() + 86400000).toISOString();
+                    if (backend)
+                        await backend.pushCooldown(account.steamId, account.cooldownExpiresAt, now.toISOString());
+                }
+                else {
+                    account.cooldownExpiresAt = undefined;
+                    if (backend)
+                        await backend.pushCooldown(account.steamId, undefined, now.toISOString());
+                }
+            }
+            catch (e) {
+                if (e.message.includes('cookie') || e.message.includes('Sign In'))
+                    account.authError = true;
+            }
+        }
+        if (backend && !account._id.startsWith('shared_')) {
+            await backend.shareAccount(account);
+        }
+        return true;
+    }
+    catch (e) {
+        console.error(`[Scraper] Failed to scrape ${account.personaName}:`, e);
+        return false;
+    }
+};
 // --- Sync Worker ---
-const syncAccounts = async () => {
+const syncAccounts = async (isManual = false) => {
+    console.log(`[Sync] Phase 1: Pulling from server...`);
     initBackend();
     let accounts = store.get('accounts');
     let hasChanges = false;
@@ -167,12 +224,13 @@ const syncAccounts = async () => {
                 const exists = accounts.find(a => a.steamId === s.steamId);
                 if (!exists) {
                     accounts.push({
-                        _id: `shared_${s.steamId}`,
-                        steamId: s.steamId, personaName: s.personaName, avatar: s.avatar, profileUrl: s.profileUrl,
-                        vacBanned: s.vacBanned, gameBans: s.gameBans, cooldownExpiresAt: s.cooldownExpiresAt,
-                        loginName: s.loginName || '', steamLoginSecure: s.steamLoginSecure, loginConfig: s.loginConfig,
-                        sessionUpdatedAt: s.sessionUpdatedAt, autoCheckCooldown: !!s.steamLoginSecure,
-                        status: (s.vacBanned || s.gameBans > 0) ? 'banned' : 'none', lastBanCheck: new Date().toISOString()
+                        _id: `shared_${s.steamId}`, steamId: s.steamId, personaName: s.personaName,
+                        avatar: s.avatar, profileUrl: s.profileUrl, vacBanned: s.vacBanned,
+                        gameBans: s.gameBans, cooldownExpiresAt: s.cooldownExpiresAt,
+                        loginName: s.loginName || '', steamLoginSecure: s.steamLoginSecure,
+                        loginConfig: s.loginConfig, sessionUpdatedAt: s.sessionUpdatedAt,
+                        autoCheckCooldown: !!s.steamLoginSecure, status: (s.vacBanned || s.gameBans > 0) ? 'banned' : 'none',
+                        lastBanCheck: new Date().toISOString(), sharedWith: s.sharedWith
                     });
                     hasChanges = true;
                 }
@@ -192,8 +250,28 @@ const syncAccounts = async () => {
                         exists.sessionUpdatedAt = s.sessionUpdatedAt;
                         hasChanges = true;
                     }
-                    if (s.cooldownExpiresAt && (!exists.cooldownExpiresAt || new Date(s.cooldownExpiresAt) > new Date(exists.cooldownExpiresAt))) {
+                    // Metadata Sync (Pull)
+                    const sMetaDate = s.lastMetadataCheck ? new Date(s.lastMetadataCheck) : new Date(0);
+                    const lMetaDate = exists.lastBanCheck ? new Date(exists.lastBanCheck) : new Date(0);
+                    if (sMetaDate > lMetaDate) {
+                        exists.personaName = s.personaName;
+                        exists.avatar = s.avatar;
+                        exists.vacBanned = s.vacBanned;
+                        exists.gameBans = s.gameBans;
+                        exists.status = (s.vacBanned || s.gameBans > 0) ? 'banned' : 'none';
+                        exists.lastBanCheck = s.lastMetadataCheck;
+                        hasChanges = true;
+                    }
+                    // Cooldown Sync (Pull)
+                    const sScrapeDate = s.lastScrapeTime ? new Date(s.lastScrapeTime) : new Date(0);
+                    const lScrapeDate = exists.lastScrapeTime ? new Date(exists.lastScrapeTime) : new Date(0);
+                    if (sScrapeDate > lScrapeDate) {
                         exists.cooldownExpiresAt = s.cooldownExpiresAt;
+                        exists.lastScrapeTime = s.lastScrapeTime;
+                        hasChanges = true;
+                    }
+                    if (JSON.stringify(exists.sharedWith) !== JSON.stringify(s.sharedWith)) {
+                        exists.sharedWith = s.sharedWith;
                         hasChanges = true;
                     }
                 }
@@ -207,82 +285,44 @@ const syncAccounts = async () => {
             mainWindow.webContents.send('accounts-updated', accounts);
         updateTrayMenu();
     }
-    if (accounts.length === 0)
-        return;
-    const updatedAccounts = [...accounts];
+    // Phase 2: Background Scrapes
+    const runScrapes = async () => {
+        console.log(`[Sync] Phase 2: Starting background checks for ${accounts.length} accounts...`);
+        const currentAccounts = [...store.get('accounts')];
         let scrapeChanges = false;
-    for (const account of updatedAccounts) {
+        for (const account of currentAccounts) {
             try {
                 const now = new Date();
-            const lastCheck = account.lastBanCheck ? new Date(account.lastBanCheck) : new Date(0);
-            if ((now.getTime() - lastCheck.getTime()) / 3600000 > 6 || !account.personaName) {
-                const profile = await (0, steam_web_1.fetchProfileData)(account.steamId, account.steamLoginSecure);
-                const bans = await (0, steam_web_1.scrapeBanStatus)(profile.profileUrl, account.steamLoginSecure);
-                account.personaName = profile.personaName;
-                account.profileUrl = profile.profileUrl;
-                account.vacBanned = bans.vacBanned;
-                account.gameBans = bans.gameBans;
-                account.status = (bans.vacBanned || bans.gameBans > 0) ? 'banned' : 'none';
-                account.lastBanCheck = now.toISOString();
-                if (profile.avatar && (!account.localAvatar || profile.avatar !== account.avatar)) {
-                    account.avatar = profile.avatar;
-                    const localPath = await downloadAvatar(account.steamId, profile.avatar);
-                    if (localPath)
-                        account.localAvatar = localPath;
-                }
-                if (account.loginName) {
-                    const config = steam_client_1.steamClient.extractAccountConfig(account.loginName);
-                    if (config) {
-                        account.loginConfig = config;
-                        account.sessionUpdatedAt = new Date().toISOString();
-                    }
-                }
-                if (backend)
+                if (backend && !account._id.startsWith('shared_'))
                     await backend.shareAccount(account);
-                scrapeChanges = true;
-            }
-            if (account.autoCheckCooldown && account.steamLoginSecure) {
-                if (account.cooldownExpiresAt && new Date(account.cooldownExpiresAt) > now)
-                    continue;
+                const lastCheck = account.lastBanCheck ? new Date(account.lastBanCheck) : new Date(0);
                 const lastScrape = account.lastScrapeTime ? new Date(account.lastScrapeTime) : new Date(0);
-                if ((now.getTime() - lastScrape.getTime()) / 3600000 > 8) {
-                    await new Promise(r => setTimeout(r, Math.floor(Math.random() * 60000) + 5000));
-                    try {
-                        const result = await (0, scraper_1.scrapeCooldown)(account.steamId, account.steamLoginSecure);
-                        account.authError = false;
-                        account.lastScrapeTime = new Date().toISOString();
-                        if (result.isActive) {
-                            account.cooldownExpiresAt = result.expiresAt ? result.expiresAt.toISOString() : new Date(Date.now() + 86400000).toISOString();
-                            if (backend)
-                                await backend.pushCooldown(account.steamId, account.cooldownExpiresAt);
-                        }
-                        else if (account.cooldownExpiresAt) {
-                            account.cooldownExpiresAt = undefined;
-                            if (backend)
-                                await backend.pushCooldown(account.steamId, undefined);
-                        }
+                const needsMetadata = (now.getTime() - lastCheck.getTime()) / 3600000 > 6 || !account.personaName;
+                const needsCooldown = account.autoCheckCooldown && account.steamLoginSecure && (now.getTime() - lastScrape.getTime()) / 3600000 > 8;
+                if (needsMetadata || needsCooldown || isManual) {
+                    if (!isManual && needsCooldown)
+                        await new Promise(r => setTimeout(r, Math.floor(Math.random() * 30000) + 5000));
+                    if (await scrapeAccountData(account))
                         scrapeChanges = true;
                 }
-                    catch (e) {
-                        if (e.message.includes('cookie') || e.message.includes('Sign In')) {
-                            account.authError = true;
-                            scrapeChanges = true;
-                        }
-                    }
-                }
-            }
             }
             catch (error) { }
         }
         if (scrapeChanges) {
-        store.set('accounts', updatedAccounts);
+            store.set('accounts', currentAccounts);
             if (mainWindow)
-            mainWindow.webContents.send('accounts-updated', updatedAccounts);
+                mainWindow.webContents.send('accounts-updated', currentAccounts);
             updateTrayMenu();
         }
+        console.log('[Sync] Sync cycle finished.');
+    };
+    if (isManual)
+        await runScrapes();
+    else
+        runScrapes();
 };
 const scheduleNextSync = () => {
-    setTimeout(async () => { await syncAccounts(); scheduleNextSync(); }, isDev ? 120000 : 1800000);
+    setTimeout(async () => { await syncAccounts(false); scheduleNextSync(); }, isDev ? 300000 : 1800000);
 };
 // --- Discovery ---
 const addingAccounts = new Set();
@@ -305,11 +345,20 @@ const handleLocalAccountsFound = async (localAccounts) => {
                 const profile = await (0, steam_web_1.fetchProfileData)(local.steamId);
                 const bans = await (0, steam_web_1.scrapeBanStatus)(profile.profileUrl);
                 const localPath = await downloadAvatar(profile.steamId, profile.avatar);
+                // Wait and retry snagging the config (Steam takes time to write it)
+                let loginConfig = undefined;
+                for (let i = 0; i < 3; i++) {
+                    await new Promise(r => setTimeout(r, 2000));
+                    loginConfig = steam_client_1.steamClient.extractAccountConfig(local.accountName);
+                    if (loginConfig)
+                        break;
+                }
                 currentAccounts.push({
                     _id: Date.now().toString() + Math.random().toString().slice(2, 5),
                     steamId: local.steamId, personaName: profile.personaName || local.accountName,
                     loginName: local.accountName, autoCheckCooldown: false, avatar: profile.avatar,
                     localAvatar: localPath, profileUrl: profile.profileUrl,
+                    loginConfig, sessionUpdatedAt: loginConfig ? new Date().toISOString() : undefined,
                     status: (bans.vacBanned || bans.gameBans > 0) ? 'banned' : 'none',
                     vacBanned: bans.vacBanned, gameBans: bans.gameBans, lastBanCheck: new Date().toISOString()
                 });
@@ -326,7 +375,7 @@ const handleLocalAccountsFound = async (localAccounts) => {
         updateTrayMenu();
     }
 };
-// --- Main Window Creation ---
+// --- Main Window ---
 function createWindow() {
     mainWindow = new electron_1.BrowserWindow({
         width: 1280, height: 800, title: "Ultimate Ban Tracker", backgroundColor: '#171a21', autoHideMenuBar: true,
@@ -345,7 +394,6 @@ function createWindow() {
     else
         mainWindow.loadFile(path_1.default.join(__dirname, '..', 'dist', 'index.html'));
 }
-// --- App Lifecycle ---
 electron_1.app.whenReady().then(() => {
     electron_1.protocol.handle('steam-resource', (request) => {
         let rawPath = decodeURIComponent(request.url.replace('steam-resource://', ''));
@@ -364,7 +412,7 @@ electron_1.app.whenReady().then(() => {
     createWindow();
     createTray();
     initBackend();
-    setTimeout(syncAccounts, 5000);
+    setTimeout(() => syncAccounts(false), 5000);
     scheduleNextSync();
     steam_client_1.steamClient.startWatching(handleLocalAccountsFound);
 });
@@ -391,7 +439,7 @@ electron_1.ipcMain.handle('login-to-server', async () => {
         return false;
     return new Promise((resolve) => {
         const authWindow = new electron_1.BrowserWindow({
-            width: 800, height: 700, parent: mainWindow || undefined, modal: true, title: 'Login to Ban Tracker Server',
+            width: 800, height: 700, parent: mainWindow || undefined, modal: true, title: 'Login to Server',
             webPreferences: { nodeIntegration: false, contextIsolation: true }
         });
         authWindow.loadURL(`${config.url}/auth/steam`);
@@ -401,13 +449,15 @@ electron_1.ipcMain.handle('login-to-server', async () => {
                 return;
             captured = true;
             let serverSteamId = undefined;
+            let isAdmin = false;
             try {
                 const payload = JSON.parse(Buffer.from(token.split('.')[1], 'base64').toString());
                 serverSteamId = payload.steamId;
+                isAdmin = !!payload.isAdmin;
             }
             catch (e) { }
             const current = store.get('serverConfig');
-            store.set('serverConfig', { ...current, token, serverSteamId, enabled: true });
+            store.set('serverConfig', { ...current, token, serverSteamId, isAdmin, enabled: true });
             initBackend();
             authWindow.close();
             resolve(true);
@@ -431,7 +481,21 @@ electron_1.ipcMain.handle('login-to-server', async () => {
     });
 });
 electron_1.ipcMain.handle('get-server-user-info', () => ({ steamId: store.get('serverConfig').serverSteamId }));
-electron_1.ipcMain.handle('sync-now', async () => { await syncAccounts(); return true; });
+electron_1.ipcMain.handle('sync-now', async () => { await syncAccounts(true); return true; });
+electron_1.ipcMain.handle('scrape-account', async (event, steamId) => {
+    const accounts = store.get('accounts');
+    const account = accounts.find(a => a.steamId === steamId);
+    if (!account)
+        return false;
+    const success = await scrapeAccountData(account);
+    if (success) {
+        store.set('accounts', accounts);
+        if (mainWindow)
+            mainWindow.webContents.send('accounts-updated', accounts);
+        updateTrayMenu();
+    }
+    return success;
+});
 electron_1.ipcMain.handle('add-account', async (event, { identifier }) => {
     try {
         initBackend();
@@ -449,7 +513,7 @@ electron_1.ipcMain.handle('add-account', async (event, { identifier }) => {
                     loginName: existing.loginName || '', steamLoginSecure: existing.steamLoginSecure,
                     loginConfig: existing.loginConfig, sessionUpdatedAt: existing.sessionUpdatedAt,
                     autoCheckCooldown: !!existing.steamLoginSecure, status: (existing.vacBanned || existing.gameBans > 0) ? 'banned' : 'none',
-                    lastBanCheck: new Date().toISOString()
+                    lastBanCheck: new Date().toISOString(), sharedWith: existing.sharedWith
                 };
                 store.set('accounts', [...accounts, newAccount]);
                 updateTrayMenu();
@@ -516,23 +580,93 @@ electron_1.ipcMain.handle('revoke-all-account-access', async (event, steamId) =>
 });
 electron_1.ipcMain.handle('get-community-accounts', async () => { initBackend(); return backend ? await backend.getCommunityAccounts() : []; });
 electron_1.ipcMain.handle('get-server-users', async () => { initBackend(); return backend ? await backend.getServerUsers() : []; });
-electron_1.ipcMain.handle('switch-account', async (event, loginName) => await handleSwitchAccount(loginName));
+// --- Admin IPC ---
+electron_1.ipcMain.handle('admin-get-stats', async () => { initBackend(); return backend ? await backend.getAdminStats() : null; });
+electron_1.ipcMain.handle('admin-get-users', async () => { initBackend(); return backend ? await backend.getAdminUsers() : []; });
+electron_1.ipcMain.handle('admin-delete-user', async (event, userId) => { initBackend(); if (backend)
+    await backend.deleteUser(userId); return true; });
+electron_1.ipcMain.handle('admin-get-accounts', async () => { initBackend(); return backend ? await backend.getAdminAccounts() : []; });
+electron_1.ipcMain.handle('admin-remove-account', async (event, steamId) => { initBackend(); if (backend)
+    await backend.forceRemoveAccount(steamId); return true; });
+electron_1.ipcMain.handle('switch-account', async (event, loginName) => {
+    if (!loginName)
+        return false;
+    try {
+        // PROACTIVE SYNC: Try to snag the freshest token before we kill Steam
+        const accounts = store.get('accounts');
+        const account = accounts.find(a => a.loginName === loginName);
+        if (account && !account._id.startsWith('shared_')) {
+            const freshConfig = steam_client_1.steamClient.extractAccountConfig(loginName);
+            if (freshConfig) {
+                account.loginConfig = freshConfig;
+                account.sessionUpdatedAt = new Date().toISOString();
+                if (backend)
+                    await backend.shareAccount(account);
+                store.set('accounts', accounts);
+            }
+        }
+        await killSteam();
+        if (process.platform === 'win32') {
+            const regBase = 'reg add "HKCU\\Software\\Valve\\Steam"';
+            const commands = [
+                `${regBase} /v AutoLoginUser /t REG_SZ /d "${loginName}" /f`,
+                `${regBase} /v RememberPassword /t REG_DWORD /d 1 /f`,
+                `${regBase} /v AlreadyLoggedIn /t REG_DWORD /d 1 /f`,
+                `${regBase} /v WantsOfflineMode /t REG_DWORD /d 0 /f`
+            ];
+            await new Promise((res, rej) => (0, child_process_1.exec)(commands.join(' && '), (e) => e ? rej(e) : res()));
+            if (account && account.loginConfig)
+                steam_client_1.steamClient.injectAccountConfig(loginName, account.loginConfig);
+        }
+        else if (process.platform === 'linux') {
+            await steam_client_1.steamClient.setAutoLoginUser(loginName, account?.loginConfig, account?.steamId);
+        }
+        startSteam();
+        return true;
+    }
+    catch (e) {
+        return false;
+    }
+});
 electron_1.ipcMain.handle('open-external', (event, url) => electron_1.shell.openExternal(url));
 electron_1.ipcMain.handle('open-steam-app-login', async () => {
-    console.log('[SteamClient] Triggering desktop login window...');
-    // Force Steam to show login window. 
-    // steam://open/login is the protocol for this.
+    await killSteam();
+    if (process.platform === 'win32') {
+        const clearReg = 'reg add "HKCU\\Software\\Valve\\Steam" /v AutoLoginUser /t REG_SZ /d "" /f';
+        await new Promise((res) => (0, child_process_1.exec)(clearReg, () => res()));
+    }
+    else if (process.platform === 'linux') {
+        await steam_client_1.steamClient.setAutoLoginUser("", undefined, "");
+    }
     const command = process.platform === 'win32' ? 'start steam://open/login' : 'xdg-open steam://open/login';
     (0, child_process_1.exec)(command);
     return true;
 });
 electron_1.ipcMain.handle('open-steam-login', async (event, expectedSteamId) => {
-    const loginSession = electron_1.session.fromPartition('persist:steam-login');
-    // Removed: automatic clearStorageData to allow cookie persistence
+    const partitionId = expectedSteamId ? `persist:steam-login-${expectedSteamId}` : 'persist:steam-login-new';
+    const loginSession = electron_1.session.fromPartition(partitionId);
+    if (!expectedSteamId)
+        await loginSession.clearStorageData({ storages: ['cookies', 'localstorage', 'indexdb'] });
+    if (expectedSteamId) {
+        const accounts = store.get('accounts');
+        const account = accounts.find(a => a.steamId === expectedSteamId);
+        if (account?.steamLoginSecure) {
+            const cookiePairs = account.steamLoginSecure.split(';').map(c => c.trim());
+            for (const pair of cookiePairs) {
+                const [name, value] = pair.split('=');
+                if (name && value) {
+                    try {
+                        await loginSession.cookies.set({ url: 'https://steamcommunity.com', domain: 'steamcommunity.com', name, value, path: '/', secure: true, httpOnly: name.includes('Secure') });
+                    }
+                    catch (e) { }
+                }
+            }
+        }
+    }
     return new Promise((resolve) => {
         const loginWindow = new electron_1.BrowserWindow({
             width: 800, height: 700, parent: mainWindow || undefined, modal: true, title: 'Login to Steam',
-            webPreferences: { nodeIntegration: false, contextIsolation: true, partition: 'persist:steam-login' }
+            webPreferences: { nodeIntegration: false, contextIsolation: true, partition: partitionId }
         });
         loginWindow.loadURL('https://steamcommunity.com/login/home/?goto=my/gcpd/730');
         const checkCookie = setInterval(async () => {

frontend/dist-electron/preload.js

@@ -19,8 +19,15 @@ electron_1.contextBridge.exposeInMainWorld('electronAPI', {
     loginToServer: () => electron_1.ipcRenderer.invoke('login-to-server'),
     getServerUserInfo: () => electron_1.ipcRenderer.invoke('get-server-user-info'),
     syncNow: () => electron_1.ipcRenderer.invoke('sync-now'),
+    scrapeAccount: (steamId) => electron_1.ipcRenderer.invoke('scrape-account', steamId),
     getCommunityAccounts: () => electron_1.ipcRenderer.invoke('get-community-accounts'),
     getServerUsers: () => electron_1.ipcRenderer.invoke('get-server-users'),
+    // Admin API
+    adminGetStats: () => electron_1.ipcRenderer.invoke('admin-get-stats'),
+    adminGetUsers: () => electron_1.ipcRenderer.invoke('admin-get-users'),
+    adminDeleteUser: (userId) => electron_1.ipcRenderer.invoke('admin-delete-user', userId),
+    adminGetAccounts: () => electron_1.ipcRenderer.invoke('admin-get-accounts'),
+    adminRemoveAccount: (steamId) => electron_1.ipcRenderer.invoke('admin-remove-account', steamId),
     onAccountsUpdated: (callback) => {
         const subscription = (_event, accounts) => callback(accounts);
         electron_1.ipcRenderer.on('accounts-updated', subscription);

frontend/dist-electron/services/backend.js

@@ -68,19 +68,23 @@ class BackendService {
                 loginName: account.loginName,
                 steamLoginSecure: account.steamLoginSecure,
                 loginConfig: account.loginConfig,
-                sessionUpdatedAt: account.sessionUpdatedAt
+                sessionUpdatedAt: account.sessionUpdatedAt,
+                lastMetadataCheck: account.lastBanCheck,
+                lastScrapeTime: account.lastScrapeTime,
+                cooldownExpiresAt: account.cooldownExpiresAt
             }, { headers: this.headers });
         }
         catch (e) {
             console.error('[Backend] Failed to share account');
         }
     }
-    async pushCooldown(steamId, cooldownExpiresAt) {
+    async pushCooldown(steamId, cooldownExpiresAt, lastScrapeTime) {
         if (!this.token)
             return;
         try {
             await axios_1.default.patch(`${this.url}/api/sync/${steamId}/cooldown`, {
-                cooldownExpiresAt
+                cooldownExpiresAt,
+                lastScrapeTime
             }, { headers: this.headers });
         }
         catch (e) {
@@ -130,5 +134,59 @@ class BackendService {
             throw new Error(e.response?.data?.message || 'Failed to revoke all access');
         }
     }
+    // --- Admin API ---
+    async getAdminStats() {
+        if (!this.token)
+            return null;
+        try {
+            const response = await axios_1.default.get(`${this.url}/api/admin/stats`, { headers: this.headers });
+            return response.data;
+        }
+        catch (e) {
+            return null;
+        }
+    }
+    async getAdminUsers() {
+        if (!this.token)
+            return [];
+        try {
+            const response = await axios_1.default.get(`${this.url}/api/admin/users`, { headers: this.headers });
+            return response.data;
+        }
+        catch (e) {
+            return [];
+        }
+    }
+    async deleteUser(userId) {
+        if (!this.token)
+            return;
+        try {
+            await axios_1.default.delete(`${this.url}/api/admin/users/${userId}`, { headers: this.headers });
+        }
+        catch (e) {
+            throw new Error(e.response?.data?.message || 'Failed to delete user');
+        }
+    }
+    async getAdminAccounts() {
+        if (!this.token)
+            return [];
+        try {
+            const response = await axios_1.default.get(`${this.url}/api/admin/accounts`, { headers: this.headers });
+            return response.data;
+        }
+        catch (e) {
+            return [];
+        }
+    }
+    async forceRemoveAccount(steamId) {
+        if (!this.token)
+            return;
+        try {
+            await axios_1.default.delete(`${this.url}/api/admin/accounts/${steamId}`, { headers: this.headers });
+        }
+        catch (e) {
+            throw new Error(e.response?.data?.message || 'Failed to remove account');
+        }
+    }
 }
 exports.BackendService = BackendService;

frontend/dist-electron/services/scraper.js

@@ -57,19 +57,25 @@ const scrapeCooldown = async (steamId, steamLoginSecure) => {
         let expirationDate = undefined;
         $('table').each((_, table) => {
             const headers = $(table).find('th').map((_, th) => $(th).text().trim()).get();
-            const expirationIndex = headers.findIndex(h => h.includes('Competitive Cooldown Expiration'));
+            const expirationIndex = headers.findIndex(h => h.includes('Competitive Cooldown Expiration') || h.includes('Cooldown Expiration'));
             if (expirationIndex !== -1) {
-                const firstRow = $(table).find('tr').not(':has(th)').first();
-                const dateText = firstRow.find('td').eq(expirationIndex).text().trim();
+                const rows = $(table).find('tr').not(':has(th)');
+                rows.each((_, row) => {
+                    const dateText = $(row).find('td').eq(expirationIndex).text().trim();
                     if (dateText && dateText !== '') {
+                        // Steam uses 'GMT' which some JS engines don't parse well, replace with 'UTC'
                         const cleanDateText = dateText.replace(' GMT', ' UTC');
                         const parsed = new Date(cleanDateText);
                         if (!isNaN(parsed.getTime())) {
+                            // We want the newest expiration date found
+                            if (!expirationDate || parsed > expirationDate) {
                                 expirationDate = parsed;
                             }
                         }
                     }
                 });
+            }
+        });
         if (expirationDate && expirationDate.getTime() > Date.now()) {
             console.log(`[Scraper] Found active cooldown until: ${expirationDate.toISOString()}`);
             return {

frontend/dist-electron/services/steam-client.js

@@ -21,7 +21,8 @@ class SteamClientService {
         if (platform === 'win32') {
             const possiblePaths = [
                 'C:\\Program Files (x86)\\Steam',
-                'C:\\Program Files\\Steam'
+                'C:\\Program Files\\Steam',
+                path_1.default.join(process.env.APPDATA || '', 'Steam'),
             ];
             this.steamPath = possiblePaths.find(p => fs_1.default.existsSync(p)) || null;
         }
@@ -29,7 +30,8 @@ class SteamClientService {
             const possiblePaths = [
                 path_1.default.join(home, '.steam/steam'),
                 path_1.default.join(home, '.local/share/Steam'),
-                path_1.default.join(home, '.var/app/com.valvesoftware.Steam/.steam/steam')
+                path_1.default.join(home, '.var/app/com.valvesoftware.Steam/.steam/steam'), // Flatpak
+                path_1.default.join(home, 'snap/steam/common/.steam/steam'), // Snap
             ];
             this.steamPath = possiblePaths.find(p => fs_1.default.existsSync(p)) || null;
         }
@@ -47,12 +49,35 @@ class SteamClientService {
             return null;
         return path_1.default.join(this.steamPath, 'config', 'config.vdf');
     }
+    /**
+     * Safe Atomic Write: Writes to a temp file and renames it.
+     * This prevents file corruption if the app crashes during write.
+     */
+    safeWriteVdf(filePath, data) {
+        const tempPath = `${filePath}.tmp_${Date.now()}`;
+        const dir = path_1.default.dirname(filePath);
+        try {
+            if (!fs_1.default.existsSync(dir))
+                fs_1.default.mkdirSync(dir, { recursive: true });
+            const vdfContent = (0, simple_vdf_1.stringify)(data);
+            fs_1.default.writeFileSync(tempPath, vdfContent, 'utf-8');
+            // Atomic rename
+            fs_1.default.renameSync(tempPath, filePath);
+        }
+        catch (e) {
+            console.error(`[SteamClient] Atomic write failed for ${filePath}: ${e.message}`);
+            if (fs_1.default.existsSync(tempPath))
+                fs_1.default.unlinkSync(tempPath);
+            throw e;
+        }
+    }
     startWatching(callback) {
         this.onAccountsChanged = callback;
         const loginUsersPath = this.getLoginUsersPath();
         if (loginUsersPath && fs_1.default.existsSync(loginUsersPath)) {
             this.readLocalAccounts();
-            chokidar_1.default.watch(loginUsersPath, { persistent: true }).on('change', () => {
+            chokidar_1.default.watch(loginUsersPath, { persistent: true, ignoreInitial: true }).on('change', () => {
+                console.log(`[SteamClient] loginusers.vdf changed, re-scanning...`);
                 this.readLocalAccounts();
             });
         }
@@ -63,16 +88,20 @@ class SteamClientService {
             return;
         try {
             const content = fs_1.default.readFileSync(filePath, 'utf-8');
+            if (!content.trim())
+                return; // Empty file
             const data = (0, simple_vdf_1.parse)(content);
             if (!data || !data.users)
                 return;
             const accounts = [];
             for (const [steamId64, userData] of Object.entries(data.users)) {
                 const user = userData;
+                if (!user || !user.AccountName)
+                    continue;
                 accounts.push({
                     steamId: steamId64,
                     accountName: user.AccountName,
-                    personaName: user.PersonaName,
+                    personaName: user.PersonaName || user.AccountName,
                     timestamp: parseInt(user.Timestamp) || 0
                 });
             }
@@ -91,32 +120,38 @@ class SteamClientService {
             const content = fs_1.default.readFileSync(configPath, 'utf-8');
             const data = (0, simple_vdf_1.parse)(content);
             const accounts = data?.InstallConfigStore?.Software?.Valve?.Steam?.Accounts;
-            if (accounts && accounts[accountName]) {
-                return accounts[accountName];
-            }
+            return (accounts && accounts[accountName]) ? accounts[accountName] : null;
         }
         catch (e) {
             console.error('[SteamClient] Failed to extract config.vdf data');
-        }
             return null;
         }
+    }
     injectAccountConfig(accountName, accountData) {
         const configPath = this.getConfigVdfPath();
         if (!configPath)
             return;
-        // Create directory if it doesn't exist
-        const configDir = path_1.default.dirname(configPath);
-        if (!fs_1.default.existsSync(configDir))
-            fs_1.default.mkdirSync(configDir, { recursive: true });
-        let data = { InstallConfigStore: { Software: { Valve: { Steam: { Accounts: {} } } } } };
+        let data = {
+            InstallConfigStore: {
+                Software: {
+                    Valve: {
+                        Steam: {
+                            Accounts: {}
+                        }
+                    }
+                }
+            }
+        };
         if (fs_1.default.existsSync(configPath)) {
             try {
                 const content = fs_1.default.readFileSync(configPath, 'utf-8');
-                data = (0, simple_vdf_1.parse)(content);
+                const parsed = (0, simple_vdf_1.parse)(content);
+                if (parsed && typeof parsed === 'object')
+                    data = parsed;
             }
             catch (e) { }
         }
-        // Ensure structure exists
+        // Ensure safe nesting
         if (!data.InstallConfigStore)
             data.InstallConfigStore = {};
         if (!data.InstallConfigStore.Software)
@@ -129,25 +164,22 @@ class SteamClientService {
             data.InstallConfigStore.Software.Valve.Steam.Accounts = {};
         data.InstallConfigStore.Software.Valve.Steam.Accounts[accountName] = accountData;
         try {
-            fs_1.default.writeFileSync(configPath, (0, simple_vdf_1.stringify)(data));
-            console.log(`[SteamClient] Injected login config for ${accountName} into config.vdf`);
-        }
-        catch (e) {
-            console.error('[SteamClient] Failed to write config.vdf');
+            this.safeWriteVdf(configPath, data);
+            console.log(`[SteamClient] Safely injected session for ${accountName}`);
         }
+        catch (e) { }
     }
     async setAutoLoginUser(accountName, accountConfig, steamId) {
         const platform = os_1.default.platform();
         const loginUsersPath = this.getLoginUsersPath();
         if (loginUsersPath) {
-            const configDir = path_1.default.dirname(loginUsersPath);
-            if (!fs_1.default.existsSync(configDir))
-                fs_1.default.mkdirSync(configDir, { recursive: true });
             let data = { users: {} };
             if (fs_1.default.existsSync(loginUsersPath)) {
                 try {
                     const content = fs_1.default.readFileSync(loginUsersPath, 'utf-8');
-                    data = (0, simple_vdf_1.parse)(content);
+                    const parsed = (0, simple_vdf_1.parse)(content);
+                    if (parsed && parsed.users)
+                        data = parsed;
                 }
                 catch (e) { }
             }
@@ -156,7 +188,7 @@ class SteamClientService {
             let found = false;
             for (const [id, user] of Object.entries(data.users)) {
                 const u = user;
-                if (u.AccountName.toLowerCase() === accountName.toLowerCase()) {
+                if (u.AccountName?.toLowerCase() === accountName.toLowerCase()) {
                     u.mostrecent = "1";
                     u.RememberPassword = "1";
                     u.AllowAutoLogin = "1";
@@ -169,8 +201,8 @@ class SteamClientService {
                     u.mostrecent = "0";
                 }
             }
-            if (!found && steamId) {
-                console.log(`[SteamClient] Provisioning user ${accountName} into loginusers.vdf`);
+            if (!found && steamId && accountName) {
+                console.log(`[SteamClient] Provisioning new user profile for ${accountName}`);
                 data.users[steamId] = {
                     AccountName: accountName,
                     PersonaName: accountName,
@@ -184,51 +216,53 @@ class SteamClientService {
                 };
             }
             try {
-                fs_1.default.writeFileSync(loginUsersPath, (0, simple_vdf_1.stringify)(data));
+                this.safeWriteVdf(loginUsersPath, data);
             }
-            catch (e) {
-                console.error('[SteamClient] Failed to write loginusers.vdf');
+            catch (e) { }
         }
-        }
-        if (accountConfig) {
+        if (accountConfig && accountName) {
             this.injectAccountConfig(accountName, accountConfig);
         }
+        // --- Linux Registry / Registry.vdf Hardening ---
         if (platform === 'linux') {
             const regLocations = [
                 path_1.default.join(os_1.default.homedir(), '.steam', 'registry.vdf'),
                 path_1.default.join(os_1.default.homedir(), '.steam', 'steam', 'registry.vdf')
             ];
             for (const regPath of regLocations) {
-                let regData = { Registry: { HKCU: { Software: { Valve: { Steam: {} } } } } };
+                if (!fs_1.default.existsSync(path_1.default.dirname(regPath)))
+                    continue;
+                let regData = { Registry: { HKCU: { Software: { Valve: { Steam: {
+                                        AutoLoginUser: "",
+                                        RememberPassword: "1",
+                                        AlreadyLoggedIn: "1"
+                                    } } } } } };
                 if (fs_1.default.existsSync(regPath)) {
                     try {
                         const content = fs_1.default.readFileSync(regPath, 'utf-8');
-                        regData = (0, simple_vdf_1.parse)(content);
+                        const parsed = (0, simple_vdf_1.parse)(content);
+                        if (parsed && typeof parsed === 'object')
+                            regData = parsed;
                     }
                     catch (e) { }
                 }
-                else {
-                    const regDir = path_1.default.dirname(regPath);
-                    if (!fs_1.default.existsSync(regDir))
-                        fs_1.default.mkdirSync(regDir, { recursive: true });
-                }
-                const setPath = (obj, keys, val) => {
+                // Deep merge helper
+                const ensurePath = (obj, keys) => {
                     let curr = obj;
-                    for (let i = 0; i < keys.length - 1; i++) {
-                        if (!curr[keys[i]])
-                            curr[keys[i]] = {};
-                        curr = curr[keys[i]];
+                    for (const key of keys) {
+                        if (!curr[key] || typeof curr[key] !== 'object')
+                            curr[key] = {};
+                        curr = curr[key];
                     }
-                    curr[keys[keys.length - 1]] = val;
+                    return curr;
                 };
-                const steamReg = ['Registry', 'HKCU', 'Software', 'Valve', 'Steam'];
-                setPath(regData, [...steamReg, 'AutoLoginUser'], accountName);
-                setPath(regData, [...steamReg, 'RememberPassword'], "1");
-                setPath(regData, [...steamReg, 'AlreadyLoggedIn'], "1");
-                setPath(regData, [...steamReg, 'WantsOfflineMode'], "0");
+                const steamKey = ensurePath(regData, ['Registry', 'HKCU', 'Software', 'Valve', 'Steam']);
+                steamKey.AutoLoginUser = accountName;
+                steamKey.RememberPassword = "1";
+                steamKey.AlreadyLoggedIn = "1";
+                steamKey.WantsOfflineMode = "0";
                 try {
-                    fs_1.default.writeFileSync(regPath, (0, simple_vdf_1.stringify)(regData));
-                    console.log(`[SteamClient] Registry updated: ${regPath}`);
+                    this.safeWriteVdf(regPath, regData);
                 }
                 catch (e) { }
             }

frontend/electron/main.ts

@@ -40,6 +40,7 @@ interface Account {
   cooldownExpiresAt?: string;
   authError?: boolean;
   notes?: string;
+  sharedWith?: any[];
 }
 
 interface ServerConfig {
@@ -48,6 +49,7 @@ interface ServerConfig {
   serverSteamId?: string;
   enabled: boolean;
   theme?: string;
+  isAdmin?: boolean;
 }
 
 // --- App State ---
@@ -91,10 +93,26 @@ const initBackend = () => {
 
 // --- System Tray ---
 const createTray = () => {
-  const assetsDir = path.join(__dirname, '..', 'assets-build');
-  const possibleIcons = ['icon.svg', 'icon.png'];
+  // Try to find the icon in various standard locations
+  const possiblePaths = [
+    path.join(__dirname, '..', 'assets-build'), // Dev
+    path.join(process.resourcesPath, 'assets-build'), // Packaged (External)
+    path.join(app.getAppPath(), 'dist', 'assets-build'), // Packaged (Internal dist)
+    path.join(app.getAppPath(), 'assets-build') // Packaged (Internal root)
+  ];
+
+  let assetsDir = '';
+  for (const p of possiblePaths) {
+    if (fs.existsSync(p)) {
+      assetsDir = p;
+      break;
+    }
+  }
+
+  const possibleIcons = ['icon.png', 'icon.svg'];
   let iconPath = '';
 
+  if (assetsDir) {
     for (const name of possibleIcons) {
       const fullPath = path.join(assetsDir, name);
       if (fs.existsSync(fullPath)) {
@@ -102,11 +120,13 @@ const createTray = () => {
         break;
       }
     }
+  }
   
+  console.log(`[Tray] Resolved assets directory: ${assetsDir || 'NOT FOUND'}`);
   console.log(`[Tray] Attempting to initialize with icon: ${iconPath || 'NONE FOUND'}`);
   
   if (!iconPath) {
-    console.warn(`[Tray] FAILED: No valid icon found in ${assetsDir}`);
+    console.warn(`[Tray] FAILED: No valid icon found in searched paths.`);
     return;
   }
   
@@ -114,24 +134,15 @@ const createTray = () => {
     const icon = nativeImage.createFromPath(iconPath).resize({ width: 16, height: 16 });
     tray = new Tray(icon);
     tray.setToolTip('Ultimate Ban Tracker');
-    tray.on('click', () => {
-      if (mainWindow) {
-        mainWindow.show();
-        mainWindow.focus();
-      }
-    });
+    tray.on('click', () => { if (mainWindow) { mainWindow.show(); mainWindow.focus(); } });
     updateTrayMenu();
-    console.log(`[Tray] Successfully initialized`);
-  } catch (e: any) {
-    console.error(`[Tray] Critical error during initialization: ${e.message}`);
-  }
+  } catch (e) { }
 };
 
 const updateTrayMenu = () => {
   if (!tray) return;
   const accounts = store.get('accounts') as Account[];
   const config = store.get('serverConfig');
-
   const contextMenu = Menu.buildFromTemplate([
     { label: `Ultimate Ban Tracker v${app.getVersion()}`, enabled: false },
     { type: 'separator' },
@@ -143,16 +154,11 @@ const updateTrayMenu = () => {
         click: () => handleSwitchAccount(acc.loginName)
       })) : [{ label: 'No accounts found', enabled: false }]
     },
-    { 
-      label: 'Sync Now', 
-      enabled: !!config?.enabled,
-      click: () => syncAccounts()
-    },
+    { label: 'Sync Now', enabled: !!config?.enabled, click: () => syncAccounts(true) },
     { type: 'separator' },
     { label: 'Show Dashboard', click: () => { if (mainWindow) mainWindow.show(); } },
     { label: 'Quit', click: () => { (app as any).isQuitting = true; app.quit(); } }
   ]);
-
   tray.setContextMenu(contextMenu);
 };
 
@@ -188,8 +194,49 @@ const handleSwitchAccount = async (loginName: string) => {
   } catch (e) { return false; }
 };
 
+// --- Scraper Helper ---
+const scrapeAccountData = async (account: Account) => {
+  const now = new Date();
+  try {
+    const profile = await fetchProfileData(account.steamId, account.steamLoginSecure);
+    const bans = await scrapeBanStatus(profile.profileUrl, account.steamLoginSecure);
+    account.personaName = profile.personaName; account.profileUrl = profile.profileUrl;
+    account.vacBanned = bans.vacBanned; account.gameBans = bans.gameBans;
+    account.status = (bans.vacBanned || bans.gameBans > 0) ? 'banned' : 'none';
+    account.lastBanCheck = now.toISOString();
+    if (profile.avatar && (!account.localAvatar || profile.avatar !== account.avatar)) {
+      account.avatar = profile.avatar;
+      const localPath = await downloadAvatar(account.steamId, profile.avatar);
+      if (localPath) account.localAvatar = localPath;
+    }
+    if (account.steamLoginSecure) {
+      try {
+        const result = await scrapeCooldown(account.steamId, account.steamLoginSecure);
+        account.authError = false; account.lastScrapeTime = now.toISOString();
+        if (result.isActive) {
+          account.cooldownExpiresAt = result.expiresAt ? result.expiresAt.toISOString() : new Date(Date.now() + 86400000).toISOString();
+          if (backend) await backend.pushCooldown(account.steamId, account.cooldownExpiresAt, now.toISOString());
+        } else {
+          account.cooldownExpiresAt = undefined;
+          if (backend) await backend.pushCooldown(account.steamId, undefined, now.toISOString());
+        }
+      } catch (e: any) {
+        if (e.message.includes('cookie') || e.message.includes('Sign In')) account.authError = true;
+      }
+    }
+    if (backend && !account._id.startsWith('shared_')) {
+      await backend.shareAccount(account);
+    }
+    return true;
+  } catch (e) {
+    console.error(`[Scraper] Failed to scrape ${account.personaName}:`, e);
+    return false;
+  }
+};
+
 // --- Sync Worker ---
-const syncAccounts = async () => {
+const syncAccounts = async (isManual = false) => {
+  console.log(`[Sync] Phase 1: Pulling from server...`);
   initBackend();
   let accounts = store.get('accounts') as Account[];
   let hasChanges = false;
@@ -201,12 +248,13 @@ const syncAccounts = async () => {
         const exists = accounts.find(a => a.steamId === s.steamId);
         if (!exists) {
           accounts.push({
-            _id: `shared_${s.steamId}`,
-            steamId: s.steamId, personaName: s.personaName, avatar: s.avatar, profileUrl: s.profileUrl,
-            vacBanned: s.vacBanned, gameBans: s.gameBans, cooldownExpiresAt: s.cooldownExpiresAt,
-            loginName: s.loginName || '', steamLoginSecure: s.steamLoginSecure, loginConfig: s.loginConfig,
-            sessionUpdatedAt: s.sessionUpdatedAt, autoCheckCooldown: !!s.steamLoginSecure,
-            status: (s.vacBanned || s.gameBans > 0) ? 'banned' : 'none', lastBanCheck: new Date().toISOString()
+            _id: `shared_${s.steamId}`, steamId: s.steamId, personaName: s.personaName,
+            avatar: s.avatar, profileUrl: s.profileUrl, vacBanned: s.vacBanned,
+            gameBans: s.gameBans, cooldownExpiresAt: s.cooldownExpiresAt,
+            loginName: s.loginName || '', steamLoginSecure: s.steamLoginSecure,
+            loginConfig: s.loginConfig, sessionUpdatedAt: s.sessionUpdatedAt,
+            autoCheckCooldown: !!s.steamLoginSecure, status: (s.vacBanned || s.gameBans > 0) ? 'banned' : 'none',
+            lastBanCheck: new Date().toISOString(), sharedWith: s.sharedWith
           });
           hasChanges = true;
         } else {
@@ -219,8 +267,31 @@ const syncAccounts = async () => {
             exists.sessionUpdatedAt = s.sessionUpdatedAt;
             hasChanges = true;
           }
-          if (s.cooldownExpiresAt && (!exists.cooldownExpiresAt || new Date(s.cooldownExpiresAt) > new Date(exists.cooldownExpiresAt))) {
+          
+          // Metadata Sync (Pull)
+          const sMetaDate = s.lastMetadataCheck ? new Date(s.lastMetadataCheck) : new Date(0);
+          const lMetaDate = exists.lastBanCheck ? new Date(exists.lastBanCheck) : new Date(0);
+          if (sMetaDate > lMetaDate) {
+            exists.personaName = s.personaName;
+            exists.avatar = s.avatar;
+            exists.vacBanned = s.vacBanned;
+            exists.gameBans = s.gameBans;
+            exists.status = (s.vacBanned || s.gameBans > 0) ? 'banned' : 'none';
+            exists.lastBanCheck = s.lastMetadataCheck;
+            hasChanges = true;
+          }
+
+          // Cooldown Sync (Pull)
+          const sScrapeDate = s.lastScrapeTime ? new Date(s.lastScrapeTime) : new Date(0);
+          const lScrapeDate = exists.lastScrapeTime ? new Date(exists.lastScrapeTime) : new Date(0);
+          if (sScrapeDate > lScrapeDate) {
             exists.cooldownExpiresAt = s.cooldownExpiresAt;
+            exists.lastScrapeTime = s.lastScrapeTime;
+            hasChanges = true;
+          }
+
+          if (JSON.stringify(exists.sharedWith) !== JSON.stringify(s.sharedWith)) {
+            exists.sharedWith = s.sharedWith;
             hasChanges = true;
           }
         }
@@ -234,68 +305,39 @@ const syncAccounts = async () => {
     updateTrayMenu();
   }
 
-  if (accounts.length === 0) return;
-
-  const updatedAccounts = [...accounts];
+  // Phase 2: Background Scrapes
+  const runScrapes = async () => {
+    console.log(`[Sync] Phase 2: Starting background checks for ${accounts.length} accounts...`);
+    const currentAccounts = [...store.get('accounts') as Account[]];
     let scrapeChanges = false;
-
-  for (const account of updatedAccounts) {
+    for (const account of currentAccounts) {
       try {
         const now = new Date();
+        if (backend && !account._id.startsWith('shared_')) await backend.shareAccount(account);
         const lastCheck = account.lastBanCheck ? new Date(account.lastBanCheck) : new Date(0);
-      if ((now.getTime() - lastCheck.getTime()) / 3600000 > 6 || !account.personaName) {
-        const profile = await fetchProfileData(account.steamId, account.steamLoginSecure);
-        const bans = await scrapeBanStatus(profile.profileUrl, account.steamLoginSecure);
-        account.personaName = profile.personaName; account.profileUrl = profile.profileUrl;
-        account.vacBanned = bans.vacBanned; account.gameBans = bans.gameBans;
-        account.status = (bans.vacBanned || bans.gameBans > 0) ? 'banned' : 'none';
-        account.lastBanCheck = now.toISOString();
-        if (profile.avatar && (!account.localAvatar || profile.avatar !== account.avatar)) {
-          account.avatar = profile.avatar;
-          const localPath = await downloadAvatar(account.steamId, profile.avatar);
-          if (localPath) account.localAvatar = localPath;
-        }
-        if (account.loginName) {
-          const config = steamClient.extractAccountConfig(account.loginName);
-          if (config) { account.loginConfig = config; account.sessionUpdatedAt = new Date().toISOString(); }
-        }
-        if (backend) await backend.shareAccount(account);
-        scrapeChanges = true;
-      }
-
-      if (account.autoCheckCooldown && account.steamLoginSecure) {
-        if (account.cooldownExpiresAt && new Date(account.cooldownExpiresAt) > now) continue;
         const lastScrape = account.lastScrapeTime ? new Date(account.lastScrapeTime) : new Date(0);
-        if ((now.getTime() - lastScrape.getTime()) / 3600000 > 8) {
-          await new Promise(r => setTimeout(r, Math.floor(Math.random() * 60000) + 5000));
-          try {
-            const result = await scrapeCooldown(account.steamId, account.steamLoginSecure);
-            account.authError = false; account.lastScrapeTime = new Date().toISOString();
-            if (result.isActive) {
-              account.cooldownExpiresAt = result.expiresAt ? result.expiresAt.toISOString() : new Date(Date.now() + 86400000).toISOString();
-              if (backend) await backend.pushCooldown(account.steamId, account.cooldownExpiresAt);
-            } else if (account.cooldownExpiresAt) {
-              account.cooldownExpiresAt = undefined;
-              if (backend) await backend.pushCooldown(account.steamId, undefined);
-            }
-            scrapeChanges = true;
-          } catch (e: any) {
-            if (e.message.includes('cookie') || e.message.includes('Sign In')) { account.authError = true; scrapeChanges = true; }
-          }
-        }
+        const needsMetadata = (now.getTime() - lastCheck.getTime()) / 3600000 > 6 || !account.personaName;
+        const needsCooldown = account.autoCheckCooldown && account.steamLoginSecure && (now.getTime() - lastScrape.getTime()) / 3600000 > 8;
+
+        if (needsMetadata || needsCooldown || isManual) {
+          if (!isManual && needsCooldown) await new Promise(r => setTimeout(r, Math.floor(Math.random() * 30000) + 5000));
+          if (await scrapeAccountData(account)) scrapeChanges = true;
         }
       } catch (error) { }
     }
-
     if (scrapeChanges) {
-    store.set('accounts', updatedAccounts);
-    if (mainWindow) mainWindow.webContents.send('accounts-updated', updatedAccounts);
+      store.set('accounts', currentAccounts);
+      if (mainWindow) mainWindow.webContents.send('accounts-updated', currentAccounts);
       updateTrayMenu();
     }
+    console.log('[Sync] Sync cycle finished.');
+  };
+
+  if (isManual) await runScrapes(); else runScrapes();
 };
 
 const scheduleNextSync = () => {
-  setTimeout(async () => { await syncAccounts(); scheduleNextSync(); }, isDev ? 120000 : 1800000);
+  setTimeout(async () => { await syncAccounts(false); scheduleNextSync(); }, isDev ? 300000 : 1800000);
 };
 
 // --- Discovery ---
@@ -314,11 +356,21 @@ const handleLocalAccountsFound = async (localAccounts: LocalSteamAccount[]) => {
         const profile = await fetchProfileData(local.steamId);
         const bans = await scrapeBanStatus(profile.profileUrl);
         const localPath = await downloadAvatar(profile.steamId, profile.avatar);
+        
+        // Wait and retry snagging the config (Steam takes time to write it)
+        let loginConfig = undefined;
+        for (let i = 0; i < 3; i++) {
+          await new Promise(r => setTimeout(r, 2000));
+          loginConfig = steamClient.extractAccountConfig(local.accountName);
+          if (loginConfig) break;
+        }
+
         currentAccounts.push({
           _id: Date.now().toString() + Math.random().toString().slice(2, 5),
           steamId: local.steamId, personaName: profile.personaName || local.accountName,
           loginName: local.accountName, autoCheckCooldown: false, avatar: profile.avatar,
           localAvatar: localPath, profileUrl: profile.profileUrl,
+          loginConfig, sessionUpdatedAt: loginConfig ? new Date().toISOString() : undefined,
           status: (bans.vacBanned || bans.gameBans > 0) ? 'banned' : 'none',
           vacBanned: bans.vacBanned, gameBans: bans.gameBans, lastBanCheck: new Date().toISOString()
         });
@@ -334,28 +386,21 @@ const handleLocalAccountsFound = async (localAccounts: LocalSteamAccount[]) => {
   }
 };
 
-// --- Main Window Creation ---
+// --- Main Window ---
 function createWindow() {
   mainWindow = new BrowserWindow({
     width: 1280, height: 800, title: "Ultimate Ban Tracker", backgroundColor: '#171a21', autoHideMenuBar: true,
     webPreferences: { preload: path.join(__dirname, 'preload.js'), nodeIntegration: false, contextIsolation: true }
   });
-  
   mainWindow.setMenu(null);
-  
   mainWindow.on('close', (event) => {
-    if (!(app as any).isQuitting) {
-      event.preventDefault();
-      mainWindow?.hide();
-    }
+    if (!(app as any).isQuitting) { event.preventDefault(); mainWindow?.hide(); }
     return false;
   });
-
   if (isDev) mainWindow.loadURL('http://localhost:5173');
   else mainWindow.loadFile(path.join(__dirname, '..', 'dist', 'index.html'));
 }
 
-// --- App Lifecycle ---
 app.whenReady().then(() => {
   protocol.handle('steam-resource', (request) => {
     let rawPath = decodeURIComponent(request.url.replace('steam-resource://', ''));
@@ -364,11 +409,10 @@ app.whenReady().then(() => {
     if (!fs.existsSync(absolutePath)) return new Response('Not Found', { status: 404 });
     try { return net.fetch(pathToFileURL(absolutePath).toString()); } catch (e) { return new Response('Error', { status: 500 }); }
   });
-
   createWindow();
   createTray();
   initBackend();
-  setTimeout(syncAccounts, 5000); 
+  setTimeout(() => syncAccounts(false), 5000); 
   scheduleNextSync();
   steamClient.startWatching(handleLocalAccountsFound);
 });
@@ -393,17 +437,20 @@ ipcMain.handle('login-to-server', async () => {
   if (!config.url) return false;
   return new Promise<boolean>((resolve) => {
     const authWindow = new BrowserWindow({
-      width: 800, height: 700, parent: mainWindow || undefined, modal: true, title: 'Login to Ban Tracker Server',
+      width: 800, height: 700, parent: mainWindow || undefined, modal: true, title: 'Login to Server',
       webPreferences: { nodeIntegration: false, contextIsolation: true }
     });
     authWindow.loadURL(`${config.url}/auth/steam`);
     let captured = false;
     const saveServerAuth = (token: string) => {
       if (captured) return; captured = true;
-      let serverSteamId = undefined;
-      try { const payload = JSON.parse(Buffer.from(token.split('.')[1]!, 'base64').toString()); serverSteamId = payload.steamId; } catch (e) {}
+      let serverSteamId = undefined; let isAdmin = false;
+      try { 
+        const payload = JSON.parse(Buffer.from(token.split('.')[1]!, 'base64').toString()); 
+        serverSteamId = payload.steamId; isAdmin = !!payload.isAdmin;
+      } catch (e) {}
       const current = store.get('serverConfig');
-      store.set('serverConfig', { ...current, token, serverSteamId, enabled: true });
+      store.set('serverConfig', { ...current, token, serverSteamId, isAdmin, enabled: true });
       initBackend();
       authWindow.close();
       resolve(true);
@@ -423,7 +470,21 @@ ipcMain.handle('login-to-server', async () => {
 });
 
 ipcMain.handle('get-server-user-info', () => ({ steamId: store.get('serverConfig').serverSteamId }));
-ipcMain.handle('sync-now', async () => { await syncAccounts(); return true; });
+ipcMain.handle('sync-now', async () => { await syncAccounts(true); return true; });
+
+ipcMain.handle('scrape-account', async (event, steamId: string) => {
+  const accounts = store.get('accounts') as Account[];
+  const account = accounts.find(a => a.steamId === steamId);
+  if (!account) return false;
+  const success = await scrapeAccountData(account);
+  if (success) {
+    store.set('accounts', accounts);
+    if (mainWindow) mainWindow.webContents.send('accounts-updated', accounts);
+    updateTrayMenu();
+  }
+  return success;
+});
+
 ipcMain.handle('add-account', async (event, { identifier }) => {
   try {
     initBackend();
@@ -440,7 +501,7 @@ ipcMain.handle('add-account', async (event, { identifier }) => {
           loginName: existing.loginName || '', steamLoginSecure: existing.steamLoginSecure,
           loginConfig: existing.loginConfig, sessionUpdatedAt: existing.sessionUpdatedAt,
           autoCheckCooldown: !!existing.steamLoginSecure, status: (existing.vacBanned || existing.gameBans > 0) ? 'banned' : 'none',
-          lastBanCheck: new Date().toISOString()
+          lastBanCheck: new Date().toISOString(), sharedWith: existing.sharedWith
         };
         store.set('accounts', [...accounts, newAccount]);
         updateTrayMenu();
@@ -502,64 +563,82 @@ ipcMain.handle('revoke-all-account-access', async (event, steamId: string) => {
 
 ipcMain.handle('get-community-accounts', async () => { initBackend(); return backend ? await backend.getCommunityAccounts() : []; });
 ipcMain.handle('get-server-users', async () => { initBackend(); return backend ? await backend.getServerUsers() : []; });
-ipcMain.handle('switch-account', async (event, loginName: string) => await handleSwitchAccount(loginName));
-ipcMain.handle('open-external', (event, url: string) => shell.openExternal(url));
 
-ipcMain.handle('open-steam-app-login', async () => {
-  console.log('[SteamClient] Preparing for fresh login...');
+// --- Admin IPC ---
+ipcMain.handle('admin-get-stats', async () => { initBackend(); return backend ? await backend.getAdminStats() : null; });
+ipcMain.handle('admin-get-users', async () => { initBackend(); return backend ? await backend.getAdminUsers() : []; });
+ipcMain.handle('admin-delete-user', async (event, userId: string) => { initBackend(); if (backend) await backend.deleteUser(userId); return true; });
+ipcMain.handle('admin-get-accounts', async () => { initBackend(); return backend ? await backend.getAdminAccounts() : []; });
+ipcMain.handle('admin-remove-account', async (event, steamId: string) => { initBackend(); if (backend) await backend.forceRemoveAccount(steamId); return true; });
+
+ipcMain.handle('switch-account', async (event, loginName: string) => {
+  if (!loginName) return false;
+  try {
+    // PROACTIVE SYNC: Try to snag the freshest token before we kill Steam
+    const accounts = store.get('accounts') as Account[];
+    const account = accounts.find(a => a.loginName === loginName);
+    if (account && !account._id.startsWith('shared_')) {
+      const freshConfig = steamClient.extractAccountConfig(loginName);
+      if (freshConfig) {
+        account.loginConfig = freshConfig;
+        account.sessionUpdatedAt = new Date().toISOString();
+        if (backend) await backend.shareAccount(account);
+        store.set('accounts', accounts);
+      }
+    }
+
     await killSteam();
     
     if (process.platform === 'win32') {
-    // Clear auto-login registry
+      const regBase = 'reg add "HKCU\\Software\\Valve\\Steam"';
+      const commands = [
+        `${regBase} /v AutoLoginUser /t REG_SZ /d "${loginName}" /f`,
+        `${regBase} /v RememberPassword /t REG_DWORD /d 1 /f`,
+        `${regBase} /v AlreadyLoggedIn /t REG_DWORD /d 1 /f`,
+        `${regBase} /v WantsOfflineMode /t REG_DWORD /d 0 /f`
+      ];
+      await new Promise<void>((res, rej) => exec(commands.join(' && '), (e) => e ? rej(e) : res()));
+      if (account && account.loginConfig) steamClient.injectAccountConfig(loginName, account.loginConfig);
+    } else if (process.platform === 'linux') {
+      await steamClient.setAutoLoginUser(loginName, account?.loginConfig, account?.steamId);
+    }
+    startSteam();
+    return true;
+  } catch (e) { return false; }
+});
+
+ipcMain.handle('open-external', (event, url: string) => shell.openExternal(url));
+
+ipcMain.handle('open-steam-app-login', async () => {
+  await killSteam();
+  if (process.platform === 'win32') {
     const clearReg = 'reg add "HKCU\\Software\\Valve\\Steam" /v AutoLoginUser /t REG_SZ /d "" /f';
     await new Promise<void>((res) => exec(clearReg, () => res()));
   } else if (process.platform === 'linux') {
-    // On Linux we can use the steamClient helper to set an empty user
     await steamClient.setAutoLoginUser("", undefined, "");
   }
-
   const command = process.platform === 'win32' ? 'start steam://open/login' : 'xdg-open steam://open/login';
   exec(command);
   return true;
 });
 
 ipcMain.handle('open-steam-login', async (event, expectedSteamId: string) => {
-  // Use a unique partition per account to prevent session bleeding
   const partitionId = expectedSteamId ? `persist:steam-login-${expectedSteamId}` : 'persist:steam-login-new';
   const loginSession = session.fromPartition(partitionId);
-
-  // If adding a brand new account, explicitly clear previous trash
-  if (!expectedSteamId) {
-    console.log('[Auth] Clearing session for new account login...');
-    await loginSession.clearStorageData({ storages: ['cookies', 'localstorage', 'indexdb'] });
-  }
-
-  // If we have an existing cookie string for this account, pre-inject it
+  if (!expectedSteamId) await loginSession.clearStorageData({ storages: ['cookies', 'localstorage', 'indexdb'] });
   if (expectedSteamId) {
     const accounts = store.get('accounts') as Account[];
     const account = accounts.find(a => a.steamId === expectedSteamId);
     if (account?.steamLoginSecure) {
-      console.log(`[Auth] Pre-injecting existing cookies for ${account.personaName}...`);
       const cookiePairs = account.steamLoginSecure.split(';').map(c => c.trim());
       for (const pair of cookiePairs) {
         const [name, value] = pair.split('=');
         if (name && value) {
-          try {
-            await loginSession.cookies.set({
-              url: 'https://steamcommunity.com',
-              domain: 'steamcommunity.com',
-              name: name,
-              value: value,
-              path: '/',
-              secure: true,
-              httpOnly: name.includes('Secure')
-            });
-          } catch (e) {}
+          try { await loginSession.cookies.set({ url: 'https://steamcommunity.com', domain: 'steamcommunity.com', name, value, path: '/', secure: true, httpOnly: name.includes('Secure') }); } catch (e) {}
         }
       }
     }
   }
-
   return new Promise<boolean>((resolve) => {
     const loginWindow = new BrowserWindow({
       width: 800, height: 700, parent: mainWindow || undefined, modal: true, title: 'Login to Steam',

frontend/electron/preload.ts

@@ -19,9 +19,17 @@ contextBridge.exposeInMainWorld('electronAPI', {
   loginToServer: () => ipcRenderer.invoke('login-to-server'),
   getServerUserInfo: () => ipcRenderer.invoke('get-server-user-info'),
   syncNow: () => ipcRenderer.invoke('sync-now'),
+  scrapeAccount: (steamId: string) => ipcRenderer.invoke('scrape-account', steamId),
   getCommunityAccounts: () => ipcRenderer.invoke('get-community-accounts'),
   getServerUsers: () => ipcRenderer.invoke('get-server-users'),
 
+  // Admin API
+  adminGetStats: () => ipcRenderer.invoke('admin-get-stats'),
+  adminGetUsers: () => ipcRenderer.invoke('admin-get-users'),
+  adminDeleteUser: (userId: string) => ipcRenderer.invoke('admin-delete-user', userId),
+  adminGetAccounts: () => ipcRenderer.invoke('admin-get-accounts'),
+  adminRemoveAccount: (steamId: string) => ipcRenderer.invoke('admin-remove-account', steamId),
+
   onAccountsUpdated: (callback: (accounts: any[]) => void) => {
     const subscription = (_event: IpcRendererEvent, accounts: any[]) => callback(accounts);
     ipcRenderer.on('accounts-updated', subscription);

frontend/electron/services/backend.ts

@@ -62,18 +62,22 @@ export class BackendService {
         loginName: account.loginName,
         steamLoginSecure: account.steamLoginSecure,
         loginConfig: account.loginConfig,
-        sessionUpdatedAt: account.sessionUpdatedAt
+        sessionUpdatedAt: account.sessionUpdatedAt,
+        lastMetadataCheck: account.lastBanCheck,
+        lastScrapeTime: account.lastScrapeTime,
+        cooldownExpiresAt: account.cooldownExpiresAt
       }, { headers: this.headers });
     } catch (e) {
       console.error('[Backend] Failed to share account');
     }
   }
 
-  public async pushCooldown(steamId: string, cooldownExpiresAt?: string) {
+  public async pushCooldown(steamId: string, cooldownExpiresAt?: string, lastScrapeTime?: string) {
     if (!this.token) return;
     try {
       await axios.patch(`${this.url}/api/sync/${steamId}/cooldown`, {
-        cooldownExpiresAt
+        cooldownExpiresAt,
+        lastScrapeTime
       }, { headers: this.headers });
     } catch (e) {
       console.error(`[Backend] Failed to push cooldown for ${steamId}`);
@@ -119,4 +123,48 @@ export class BackendService {
       throw new Error(e.response?.data?.message || 'Failed to revoke all access');
     }
   }
+
+  // --- Admin API ---
+
+  public async getAdminStats() {
+    if (!this.token) return null;
+    try {
+      const response = await axios.get(`${this.url}/api/admin/stats`, { headers: this.headers });
+      return response.data;
+    } catch (e) { return null; }
+  }
+
+  public async getAdminUsers() {
+    if (!this.token) return [];
+    try {
+      const response = await axios.get(`${this.url}/api/admin/users`, { headers: this.headers });
+      return response.data;
+    } catch (e) { return []; }
+  }
+
+  public async deleteUser(userId: string) {
+    if (!this.token) return;
+    try {
+      await axios.delete(`${this.url}/api/admin/users/${userId}`, { headers: this.headers });
+    } catch (e: any) {
+      throw new Error(e.response?.data?.message || 'Failed to delete user');
+    }
+  }
+
+  public async getAdminAccounts() {
+    if (!this.token) return [];
+    try {
+      const response = await axios.get(`${this.url}/api/admin/accounts`, { headers: this.headers });
+      return response.data;
+    } catch (e) { return []; }
+  }
+
+  public async forceRemoveAccount(steamId: string) {
+    if (!this.token) return;
+    try {
+      await axios.delete(`${this.url}/api/admin/accounts/${steamId}`, { headers: this.headers });
+    } catch (e: any) {
+      throw new Error(e.response?.data?.message || 'Failed to remove account');
+    }
+  }
 }

frontend/electron/services/scraper.ts

@@ -29,22 +29,27 @@ export const scrapeCooldown = async (steamId: string, steamLoginSecure: string):
 
     $('table').each((_, table) => {
       const headers = $(table).find('th').map((_, th) => $(th).text().trim()).get();
-      const expirationIndex = headers.findIndex(h => h.includes('Competitive Cooldown Expiration'));
+      const expirationIndex = headers.findIndex(h => h.includes('Competitive Cooldown Expiration') || h.includes('Cooldown Expiration'));
 
       if (expirationIndex !== -1) {
-        const firstRow = $(table).find('tr').not(':has(th)').first();
-        const dateText = firstRow.find('td').eq(expirationIndex).text().trim();
-
+        const rows = $(table).find('tr').not(':has(th)');
+        rows.each((_, row) => {
+          const dateText = $(row).find('td').eq(expirationIndex).text().trim();
           if (dateText && dateText !== '') {
+            // Steam uses 'GMT' which some JS engines don't parse well, replace with 'UTC'
             const cleanDateText = dateText.replace(' GMT', ' UTC');
             const parsed = new Date(cleanDateText);
             
             if (!isNaN(parsed.getTime())) {
+              // We want the newest expiration date found
+              if (!expirationDate || parsed > (expirationDate as Date)) {
                 expirationDate = parsed;
               }
             }
           }
         });
+      }
+    });
 
     if (expirationDate && (expirationDate as Date).getTime() > Date.now()) {
       console.log(`[Scraper] Found active cooldown until: ${(expirationDate as Date).toISOString()}`);

frontend/electron/services/steam-client.ts

@@ -26,14 +26,16 @@ class SteamClientService {
     if (platform === 'win32') {
       const possiblePaths = [
         'C:\\Program Files (x86)\\Steam',
-        'C:\\Program Files\\Steam'
+        'C:\\Program Files\\Steam',
+        path.join(process.env.APPDATA || '', 'Steam'),
       ];
       this.steamPath = possiblePaths.find(p => fs.existsSync(p)) || null;
     } else if (platform === 'linux') {
       const possiblePaths = [
         path.join(home, '.steam/steam'),
         path.join(home, '.local/share/Steam'),
-        path.join(home, '.var/app/com.valvesoftware.Steam/.steam/steam')
+        path.join(home, '.var/app/com.valvesoftware.Steam/.steam/steam'), // Flatpak
+        path.join(home, 'snap/steam/common/.steam/steam'), // Snap
       ];
       this.steamPath = possiblePaths.find(p => fs.existsSync(p)) || null;
     }
@@ -53,13 +55,36 @@ class SteamClientService {
     return path.join(this.steamPath, 'config', 'config.vdf');
   }
 
+  /**
+   * Safe Atomic Write: Writes to a temp file and renames it.
+   * This prevents file corruption if the app crashes during write.
+   */
+  private safeWriteVdf(filePath: string, data: any) {
+    const tempPath = `${filePath}.tmp_${Date.now()}`;
+    const dir = path.dirname(filePath);
+    
+    try {
+      if (!fs.existsSync(dir)) fs.mkdirSync(dir, { recursive: true });
+      const vdfContent = stringify(data);
+      fs.writeFileSync(tempPath, vdfContent, 'utf-8');
+      
+      // Atomic rename
+      fs.renameSync(tempPath, filePath);
+    } catch (e: any) {
+      console.error(`[SteamClient] Atomic write failed for ${filePath}: ${e.message}`);
+      if (fs.existsSync(tempPath)) fs.unlinkSync(tempPath);
+      throw e;
+    }
+  }
+
   public startWatching(callback: (accounts: LocalSteamAccount[]) => void) {
     this.onAccountsChanged = callback;
     const loginUsersPath = this.getLoginUsersPath();
 
     if (loginUsersPath && fs.existsSync(loginUsersPath)) {
       this.readLocalAccounts();
-      chokidar.watch(loginUsersPath, { persistent: true }).on('change', () => {
+      chokidar.watch(loginUsersPath, { persistent: true, ignoreInitial: true }).on('change', () => {
+        console.log(`[SteamClient] loginusers.vdf changed, re-scanning...`);
         this.readLocalAccounts();
       });
     }
@@ -71,16 +96,20 @@ class SteamClientService {
 
     try {
       const content = fs.readFileSync(filePath, 'utf-8');
+      if (!content.trim()) return; // Empty file
+
       const data = parse(content) as any;
       if (!data || !data.users) return;
 
       const accounts: LocalSteamAccount[] = [];
       for (const [steamId64, userData] of Object.entries(data.users)) {
         const user = userData as any;
+        if (!user || !user.AccountName) continue;
+        
         accounts.push({
           steamId: steamId64,
           accountName: user.AccountName,
-          personaName: user.PersonaName,
+          personaName: user.PersonaName || user.AccountName,
           timestamp: parseInt(user.Timestamp) || 0
         });
       }
@@ -98,35 +127,39 @@ class SteamClientService {
     try {
       const content = fs.readFileSync(configPath, 'utf-8');
       const data = parse(content) as any;
-      
       const accounts = data?.InstallConfigStore?.Software?.Valve?.Steam?.Accounts;
-      if (accounts && accounts[accountName]) {
-        return accounts[accountName];
-      }
+      return (accounts && accounts[accountName]) ? accounts[accountName] : null;
     } catch (e) {
       console.error('[SteamClient] Failed to extract config.vdf data');
-    }
       return null;
     }
+  }
 
   public injectAccountConfig(accountName: string, accountData: any) {
     const configPath = this.getConfigVdfPath();
     if (!configPath) return;
 
-    // Create directory if it doesn't exist
-    const configDir = path.dirname(configPath);
-    if (!fs.existsSync(configDir)) fs.mkdirSync(configDir, { recursive: true });
-
-    let data: any = { InstallConfigStore: { Software: { Valve: { Steam: { Accounts: {} } } } } };
+    let data: any = { 
+      InstallConfigStore: { 
+        Software: { 
+          Valve: { 
+            Steam: { 
+              Accounts: {} 
+            } 
+          } 
+        } 
+      } 
+    };
 
     if (fs.existsSync(configPath)) {
       try {
         const content = fs.readFileSync(configPath, 'utf-8');
-        data = parse(content) as any;
+        const parsed = parse(content) as any;
+        if (parsed && typeof parsed === 'object') data = parsed;
       } catch (e) { }
     }
 
-    // Ensure structure exists
+    // Ensure safe nesting
     if (!data.InstallConfigStore) data.InstallConfigStore = {};
     if (!data.InstallConfigStore.Software) data.InstallConfigStore.Software = {};
     if (!data.InstallConfigStore.Software.Valve) data.InstallConfigStore.Software.Valve = {};
@@ -136,11 +169,9 @@ class SteamClientService {
     data.InstallConfigStore.Software.Valve.Steam.Accounts[accountName] = accountData;
 
     try {
-      fs.writeFileSync(configPath, stringify(data));
-      console.log(`[SteamClient] Injected login config for ${accountName} into config.vdf`);
-    } catch (e) {
-      console.error('[SteamClient] Failed to write config.vdf');
-    }
+      this.safeWriteVdf(configPath, data);
+      console.log(`[SteamClient] Safely injected session for ${accountName}`);
+    } catch (e) { }
   }
 
   public async setAutoLoginUser(accountName: string, accountConfig?: any, steamId?: string): Promise<boolean> {
@@ -148,14 +179,12 @@ class SteamClientService {
     const loginUsersPath = this.getLoginUsersPath();
 
     if (loginUsersPath) {
-      const configDir = path.dirname(loginUsersPath);
-      if (!fs.existsSync(configDir)) fs.mkdirSync(configDir, { recursive: true });
-
       let data: any = { users: {} };
       if (fs.existsSync(loginUsersPath)) {
         try {
           const content = fs.readFileSync(loginUsersPath, 'utf-8');
-          data = parse(content) as any;
+          const parsed = parse(content) as any;
+          if (parsed && parsed.users) data = parsed;
         } catch (e) { }
       }
 
@@ -164,7 +193,7 @@ class SteamClientService {
       let found = false;
       for (const [id, user] of Object.entries(data.users)) {
         const u = user as any;
-        if (u.AccountName.toLowerCase() === accountName.toLowerCase()) {
+        if (u.AccountName?.toLowerCase() === accountName.toLowerCase()) {
           u.mostrecent = "1";
           u.RememberPassword = "1";
           u.AllowAutoLogin = "1";
@@ -177,8 +206,8 @@ class SteamClientService {
         }
       }
 
-      if (!found && steamId) {
-        console.log(`[SteamClient] Provisioning user ${accountName} into loginusers.vdf`);
+      if (!found && steamId && accountName) {
+        console.log(`[SteamClient] Provisioning new user profile for ${accountName}`);
         data.users[steamId] = {
           AccountName: accountName,
           PersonaName: accountName,
@@ -193,16 +222,15 @@ class SteamClientService {
       }
 
       try {
-        fs.writeFileSync(loginUsersPath, stringify(data));
-      } catch (e) {
-        console.error('[SteamClient] Failed to write loginusers.vdf');
-      }
+        this.safeWriteVdf(loginUsersPath, data);
+      } catch (e) { }
     }
 
-    if (accountConfig) {
+    if (accountConfig && accountName) {
       this.injectAccountConfig(accountName, accountConfig);
     }
 
+    // --- Linux Registry / Registry.vdf Hardening ---
     if (platform === 'linux') {
       const regLocations = [
         path.join(os.homedir(), '.steam', 'registry.vdf'),
@@ -210,36 +238,40 @@ class SteamClientService {
       ];
 
       for (const regPath of regLocations) {
-        let regData: any = { Registry: { HKCU: { Software: { Valve: { Steam: {} } } } } };
+        if (!fs.existsSync(path.dirname(regPath))) continue;
+
+        let regData: any = { Registry: { HKCU: { Software: { Valve: { Steam: { 
+          AutoLoginUser: "",
+          RememberPassword: "1",
+          AlreadyLoggedIn: "1"
+        } } } } } };
         
         if (fs.existsSync(regPath)) {
           try {
             const content = fs.readFileSync(regPath, 'utf-8');
-            regData = parse(content) as any;
+            const parsed = parse(content) as any;
+            if (parsed && typeof parsed === 'object') regData = parsed;
           } catch (e) { }
-        } else {
-          const regDir = path.dirname(regPath);
-          if (!fs.existsSync(regDir)) fs.mkdirSync(regDir, { recursive: true });
         }
 
-        const setPath = (obj: any, keys: string[], val: string) => {
+        // Deep merge helper
+        const ensurePath = (obj: any, keys: string[]) => {
           let curr = obj;
-          for (let i = 0; i < keys.length - 1; i++) {
-            if (!curr[keys[i]!]) curr[keys[i]!] = {};
-            curr = curr[keys[i]!];
+          for (const key of keys) {
+            if (!curr[key] || typeof curr[key] !== 'object') curr[key] = {};
+            curr = curr[key];
           }
-          curr[keys[keys.length - 1]!] = val;
+          return curr;
         };
 
-        const steamReg = ['Registry', 'HKCU', 'Software', 'Valve', 'Steam'];
-        setPath(regData, [...steamReg, 'AutoLoginUser'], accountName);
-        setPath(regData, [...steamReg, 'RememberPassword'], "1");
-        setPath(regData, [...steamReg, 'AlreadyLoggedIn'], "1");
-        setPath(regData, [...steamReg, 'WantsOfflineMode'], "0");
+        const steamKey = ensurePath(regData, ['Registry', 'HKCU', 'Software', 'Valve', 'Steam']);
+        steamKey.AutoLoginUser = accountName;
+        steamKey.RememberPassword = "1";
+        steamKey.AlreadyLoggedIn = "1";
+        steamKey.WantsOfflineMode = "0";
 
         try {
-          fs.writeFileSync(regPath, stringify(regData));
-          console.log(`[SteamClient] Registry updated: ${regPath}`);
+          this.safeWriteVdf(regPath, regData);
         } catch (e) { }
       }
     }

frontend/index.html

@@ -4,7 +4,7 @@
     <meta charset="UTF-8" />
     <link rel="icon" type="image/svg+xml" href="/vite.svg" />
     <meta name="viewport" content="width=device-width, initial-scale=1.0" />
-    <title>frontend</title>
+    <title>Ultimate Ban Tracker</title>
   </head>
   <body>
     <div id="root"></div>

frontend/package-lock.json

@@ -1,12 +1,12 @@
 {
   "name": "ultimate-ban-tracker-desktop",
-  "version": "1.0.0",
+  "version": "1.3.2",
   "lockfileVersion": 3,
   "requires": true,
   "packages": {
     "": {
       "name": "ultimate-ban-tracker-desktop",
-      "version": "1.0.0",
+      "version": "1.3.2",
       "license": "SEE LICENSE IN LICENSE",
       "dependencies": {
         "@emotion/react": "^11.14.0",

frontend/package.json

@@ -1,7 +1,7 @@
 {
   "name": "ultimate-ban-tracker-desktop",
   "description": "Professional Steam Account Manager & Ban Tracker",
-  "version": "1.1.0",
+  "version": "1.3.2",
   "author": "Nils Pukropp <nils@narl.io>",
   "homepage": "https://narl.io",
   "license": "SEE LICENSE IN LICENSE",
@@ -28,7 +28,8 @@
     },
     "files": [
       "dist/**/*",
-      "dist-electron/**/*"
+      "dist-electron/**/*",
+      "assets-build/**/*"
     ],
     "linux": {
       "target": [

frontend/src/hooks/useAccounts.tsx

@@ -27,6 +27,7 @@ export interface ServerConfig {
   token?: string;
   serverSteamId?: string;
   enabled: boolean;
+  isAdmin?: boolean;
 }
 
 interface AccountsContextType {
@@ -48,9 +49,17 @@ interface AccountsContextType {
   updateServerConfig: (config: Partial<ServerConfig>) => Promise<void>;
   loginToServer: () => Promise<void>;
   syncNow: () => Promise<void>;
+  scrapeAccount: (steamId: string) => Promise<boolean>;
   getCommunityAccounts: () => Promise<any[]>;
   getServerUsers: () => Promise<any[]>;
   refreshAccounts: (showLoading?: boolean) => Promise<void>;
+
+  // Admin Methods
+  adminGetStats: () => Promise<any>;
+  adminGetUsers: () => Promise<any[]>;
+  adminDeleteUser: (userId: string) => Promise<void>;
+  adminGetAccounts: () => Promise<any[]>;
+  adminRemoveAccount: (steamId: string) => Promise<void>;
 }
 
 const AccountsContext = createContext<AccountsContextType | undefined>(undefined);
@@ -106,6 +115,12 @@ export const AccountsProvider: React.FC<{ children: React.ReactNode }> = ({ chil
     }
   };
 
+  const scrapeAccount = async (steamId: string) => {
+    const success = await (window as any).electronAPI.scrapeAccount(steamId);
+    if (success) await syncNow();
+    return success;
+  };
+
   const addAccount = async (data: { identifier: string }) => {
     await (window as any).electronAPI.addAccount(data);
     await refreshAccounts();
@@ -174,11 +189,19 @@ export const AccountsProvider: React.FC<{ children: React.ReactNode }> = ({ chil
     return await (window as any).electronAPI.getServerUsers();
   };
 
+  // --- Admin Methods ---
+  const adminGetStats = async () => (window as any).electronAPI.adminGetStats();
+  const adminGetUsers = async () => (window as any).electronAPI.adminGetUsers();
+  const adminDeleteUser = async (userId: string) => (window as any).electronAPI.adminDeleteUser(userId);
+  const adminGetAccounts = async () => (window as any).electronAPI.adminGetAccounts();
+  const adminRemoveAccount = async (steamId: string) => (window as any).electronAPI.adminRemoveAccount(steamId);
+
   return (
     <AccountsContext.Provider value={{ 
       accounts, serverConfig, isLoading, isSyncing, addAccount, updateAccount, deleteAccount, 
       switchAccount, openSteamAppLogin, openSteamLogin, updateServerConfig, loginToServer, 
-      getCommunityAccounts, getServerUsers, shareAccountWithUser, revokeAccountAccess, revokeAllAccountAccess, syncNow, refreshAccounts 
+      getCommunityAccounts, getServerUsers, shareAccountWithUser, revokeAccountAccess, revokeAllAccountAccess, syncNow, refreshAccounts,
+      scrapeAccount, adminGetStats, adminGetUsers, adminDeleteUser, adminGetAccounts, adminRemoveAccount
     }}>
       {children}
     </AccountsContext.Provider>

frontend/src/pages/Dashboard.tsx

@@ -6,7 +6,7 @@ import {
   DialogActions, CircularProgress, Paper, Chip,
   Table, TableBody, TableCell, TableContainer, TableHead, TableRow,
   Switch, FormControlLabel, Divider, List, ListItem, ListItemText, ListItemSecondaryAction,
-  Select, MenuItem, FormControl, InputLabel
+  Select, MenuItem, FormControl, InputLabel, Tabs, Tab
 } from '@mui/material';
 import SearchIcon from '@mui/icons-material/Search';
 import AddIcon from '@mui/icons-material/Add';
@@ -25,11 +25,116 @@ import GppBadIcon from '@mui/icons-material/GppBad';
 import PeopleIcon from '@mui/icons-material/People';
 import VerifiedUserIcon from '@mui/icons-material/VerifiedUser';
 import WorkspacePremiumIcon from '@mui/icons-material/WorkspacePremium';
+import AdminPanelSettingsIcon from '@mui/icons-material/AdminPanelSettings';
+import StorageIcon from '@mui/icons-material/Storage';
+import GroupIcon from '@mui/icons-material/Group';
+import AccountTreeIcon from '@mui/icons-material/AccountTree';
 import { useAccounts, type Account } from '../hooks/useAccounts';
 import { useAppTheme } from '../theme/ThemeContext';
 import type { ThemeType } from '../theme/SteamTheme';
 import NebulaBanner from '../components/NebulaBanner';
 
+const AdminPanel: React.FC<{ open: boolean, onClose: () => void }> = ({ open, onClose }) => {
+  const { adminGetStats, adminGetUsers, adminDeleteUser, adminGetAccounts, adminRemoveAccount } = useAccounts();
+  const [tab, setTab] = useState(0);
+  const [stats, setStats] = useState<any>(null);
+  const [users, setUsers] = useState<any[]>([]);
+  const [accounts, setAccounts] = useState<any[]>([]);
+  const [loading, setLoading] = useState(false);
+
+  const loadData = async () => {
+    setLoading(true);
+    try {
+      if (tab === 0) setStats(await adminGetStats());
+      if (tab === 1) setUsers(await adminGetUsers());
+      if (tab === 2) setAccounts(await adminGetAccounts());
+    } catch (e) {}
+    setLoading(false);
+  };
+
+  useEffect(() => { if (open) loadData(); }, [open, tab]);
+
+  const handleDeleteUser = async (id: string) => {
+    if (window.confirm("Wipe this user and all their accounts?")) {
+      await adminDeleteUser(id);
+      loadData();
+    }
+  };
+
+  const handleForceRemove = async (steamId: string) => {
+    if (window.confirm("Force remove this account from server?")) {
+      await adminRemoveAccount(steamId);
+      loadData();
+    }
+  };
+
+  return (
+    <Dialog open={open} onClose={onClose} maxWidth="md" fullWidth>
+      <DialogTitle sx={{ bgcolor: 'background.paper', color: 'text.primary', display: 'flex', alignItems: 'center', gap: 1 }}>
+        <AdminPanelSettingsIcon color="primary" /> Server Administration
+      </DialogTitle>
+      <Tabs value={tab} onChange={(_, v) => setTab(v)} sx={{ bgcolor: 'background.paper', borderBottom: 1, borderColor: 'divider' }}>
+        <Tab icon={<StorageIcon />} label="Overview" />
+        <Tab icon={<GroupIcon />} label="Users" />
+        <Tab icon={<AccountTreeIcon />} label="Global Accounts" />
+      </Tabs>
+      <DialogContent sx={{ bgcolor: 'background.paper', minHeight: 400, pt: 2 }}>
+        {loading ? <Box sx={{ display: 'flex', justifyContent: 'center', mt: 10 }}><CircularProgress /></Box> : (
+          <>
+            {tab === 0 && stats && (
+              <Box sx={{ display: 'grid', gridTemplateColumns: 'repeat(3, 1fr)', gap: 2, mt: 2 }}>
+                {[
+                  { label: 'Total Users', value: stats.users },
+                  { label: 'Total Accounts', value: stats.accounts },
+                  { label: 'Active Cooldowns', value: stats.activeCooldowns }
+                ].map((s) => (
+                  <Paper key={s.label} sx={{ p: 3, textAlign: 'center', bgcolor: 'rgba(0,0,0,0.1)' }}>
+                    <Typography variant="h4" color="primary" sx={{ fontWeight: 'bold' }}>{s.value}</Typography>
+                    <Typography variant="caption" color="textSecondary">{s.label}</Typography>
+                  </Paper>
+                ))}
+              </Box>
+            )}
+            {tab === 1 && (
+              <List>
+                {users.map(u => (
+                  <ListItem key={u._id} divider sx={{ borderColor: 'divider' }}>
+                    <Avatar src={u.avatar} sx={{ mr: 2 }} />
+                    <ListItemText primary={u.personaName} secondary={u.steamId} primaryTypographyProps={{ color: 'text.primary' }} />
+                    <ListItemSecondaryAction>
+                      <IconButton color="error" onClick={() => handleDeleteUser(u._id)}><DeleteIcon /></IconButton>
+                    </ListItemSecondaryAction>
+                  </ListItem>
+                ))}
+              </List>
+            )}
+            {tab === 2 && (
+              <List>
+                {accounts.map(a => (
+                  <ListItem key={a.steamId} divider sx={{ borderColor: 'divider' }}>
+                    <Avatar src={a.avatar} variant="square" sx={{ mr: 2 }} />
+                    <ListItemText 
+                      primary={a.personaName} 
+                      secondary={`Owned by: ${a.addedBy?.personaName || 'Unknown'} (${a.steamId})`} 
+                      primaryTypographyProps={{ color: 'text.primary' }}
+                    />
+                    <ListItemSecondaryAction>
+                      <IconButton color="error" onClick={() => handleForceRemove(a.steamId)}><DeleteIcon /></IconButton>
+                    </ListItemSecondaryAction>
+                  </ListItem>
+                ))}
+              </List>
+            )}
+          </>
+        )}
+      </DialogContent>
+      <DialogActions sx={{ bgcolor: 'background.paper', p: 2 }}>
+        <Button onClick={onClose} variant="contained" color="inherit">Close Panel</Button>
+      </DialogActions>
+    </Dialog>
+  );
+};
+
 const Dashboard: React.FC = () => {
   const { currentTheme, setTheme } = useAppTheme();
   const { 
@@ -39,6 +144,7 @@ const Dashboard: React.FC = () => {
   
   const [searchTerm, setSearchTerm] = useState('');
   const [isSettingsOpen, setIsSettingsOpen] = useState(false);
+  const [isAdminPanelOpen, setIsAdminPanelOpen] = useState(false);
   const [serverUrl, setServerUrl] = useState('');
 
   useEffect(() => {
@@ -70,6 +176,15 @@ const Dashboard: React.FC = () => {
           </Typography>
 
           <Box sx={{ display: 'flex', alignItems: 'center', gap: 2, WebkitAppRegion: 'no-drag' } as any}>
+            {/* Admin Button - Only visible if isAdmin is true */}
+            {serverConfig?.isAdmin && (
+              <Tooltip title="Open Admin Panel">
+                <IconButton color="primary" onClick={() => setIsAdminPanelOpen(true)}>
+                  <AdminPanelSettingsIcon />
+                </IconButton>
+              </Tooltip>
+            )}
+
             <Box sx={{ display: 'flex', alignItems: 'center', mr: 1 }}>
               {isSyncing ? (
                 <CircularProgress size={16} sx={{ color: 'primary.main', mr: 1 }} />
@@ -246,6 +361,9 @@ const Dashboard: React.FC = () => {
           <Button onClick={() => setIsSettingsOpen(false)} color="inherit" variant="contained">Done</Button>
         </DialogActions>
       </Dialog>
+
+      {/* Admin Panel */}
+      <AdminPanel open={isAdminPanelOpen} onClose={() => setIsAdminPanelOpen(false)} />
     </Box>
   );
 };
@@ -258,11 +376,12 @@ const AccountRow: React.FC<{
   onSwitch: (login: string) => void,
   onAuth: () => void 
 }> = ({ account, onDelete, onSwitch, onAuth }) => {
-  const { shareAccountWithUser, revokeAccountAccess, revokeAllAccountAccess, getServerUsers, serverConfig } = useAccounts();
+  const { shareAccountWithUser, revokeAccountAccess, revokeAllAccountAccess, getServerUsers, serverConfig, scrapeAccount } = useAccounts();
   const [timeLeft, setTimeLeft] = useState<string | null>(null);
   const [isShareOpen, setIsShareOpen] = useState(false);
   const [targetUserId, setTargetUserId] = useState('');
   const [isSharing, setIsSharing] = useState(false);
+  const [isRefreshing, setIsRefreshing] = useState(false);
   const [serverUsers, setServerUsers] = useState<any[]>([]);
 
   const cooldownDate = account?.cooldownExpiresAt ? new Date(account.cooldownExpiresAt) : null;
@@ -286,6 +405,12 @@ const AccountRow: React.FC<{
   const [imgSrc, setImgSrc] = useState(avatarSrc);
   useEffect(() => { setImgSrc(avatarSrc); }, [avatarSrc]);
 
+  const handleRefresh = async () => {
+    setIsRefreshing(true);
+    await scrapeAccount(account.steamId);
+    setIsRefreshing(false);
+  };
+
   const handleOpenShare = async () => {
     setIsShareOpen(true);
     try {
@@ -294,8 +419,7 @@ const AccountRow: React.FC<{
         (window as any).electronAPI.getServerUserInfo()
       ]);
       const filtered = (Array.isArray(users) ? users : []).filter(u => 
-        u.steamId !== selfInfo.steamId && 
-        u.steamId !== account.steamId
+        u.steamId !== selfInfo.steamId && u.steamId !== account.steamId
       );
       setServerUsers(filtered);
     } catch (e) {}
@@ -405,7 +529,12 @@ const AccountRow: React.FC<{
                 {account.steamLoginSecure && !account.authError ? <VerifiedUserIcon fontSize="inherit" /> : (account.authError ? <LockResetIcon fontSize="inherit" /> : <BoltIcon fontSize="inherit" />)}
               </IconButton>
               {account.steamLoginSecure && !account.authError && (
+                <Box sx={{ display: 'flex', alignItems: 'center', gap: 0.5 }}>
                   <Typography variant="caption" sx={{ color: 'success.main', fontWeight: 'bold', fontSize: '0.6rem' }}>TRACKING</Typography>
+                  <IconButton size="small" onClick={handleRefresh} disabled={isRefreshing} sx={{ p: 0.2, color: 'text.secondary', '&:hover': { color: 'primary.main' } }}>
+                    {isRefreshing ? <CircularProgress size={10} color="inherit" /> : <SyncIcon sx={{ fontSize: 12 }} />}
+                  </IconButton>
+                </Box>
               )}
             </Box>
           </Tooltip>