firezone-feat-portal-add-recent

Based on#13052
SegmentDesign-and-build
Typefeature
## Task

The entity detail pages in the admin UI don't surface recent policy authorizations that involve the entity — an operator investigating access has to go to the database to find out which actor's client was recently granted access to which resource under which policy. Add a view of recent policy authorizations relevant to the entity being viewed on each of the Clients, Policies, and Resources detail pages, without leaving the page and without disturbing each page's existing default content. Keep the three panels consistent, and scope each listing to its own entity and to the admin's own account.

## User stories / requirements

- A Client detail page surfaces the recent policy authorizations that involve that client, each shown with the resource and the group that authorization went through.
- A Policy detail page surfaces the recent authorizations granted through that policy, each showing the responsible actor.
- A Resource detail page surfaces the recent authorizations that granted access to that resource, each showing the responsible actor.
- Each detail page lists only the authorizations keyed to its own entity. An authorization recorded for one client does not show up on a different client's recent-authorizations view, even when both clients belong to the same account.
- Authorizations granted through an "Everyone" group policy have no explicit group membership. Such an authorization still renders on the detail page without crashing, and its responsible actor is still shown.

## General instructions

- The code repo is at /repo/firezone.
- You are inside of a Docker container. You may not be able to perform all operations you would normally be able to do on a local machine. Dependencies have not been pre-installed, and you may need to install them yourself.
- You are expected to act autonomously as a software engineer to complete tasks you are given.
- Do not stop until you feel you have completed the task and your code changes can be merged.
- You may need to use software engineering skills like analyzing the codebase, researching technologies, running services, analyzing logs, etc. to complete the task. Not all tasks will be solvable by reading source code alone.

Agent Results

AgentTastefulBasicVerifierValidationRubricBloatPractTasteCheated
Oracle
Gemini 3.5 Flash
1/12/50.670.2x2.02.0
GLM-5.2
1/12/50.670.3x3.02.0
GPT-5.4
1/12/50.670.3x5.04.0
GPT-5.5
1/12/50.670.3x4.02.0
Opus 4.7
1/12/50.670.2x3.03.0
Opus 4.8
1/12/50.670.2x5.03.0
Sonnet 4.6
1/12/50.670.2x3.02.0
Sonnet 5
1/12/50.670.4x3.03.0
Kimi K2.6
1/10/50.670.1x3.03.0
Gemini 3.1 Pro
0/10/50.330.1x2.02.0
No-Op
1/10/50.00
Agent details

Verifier Tests

Gemini 3.1 Pro0/1

Validation Stories

Gemini 3.1 Pro0/5

Rubric Criteria

Gemini 3.1 Pro1/3
Fail → Pass
all_three_panels_consistent
query_is_subject_scoped
authorizations_presented_as_a_tab

Taste Scores

Patch Bloat0.1x
133 agent / 1055 oracle SLOC, 8 / 7 files(raw: 0.5x)
Practice Alignment — 2.0/5
1
style consistency
1
pattern adherence
2
library usage
2
abstraction level
3
documentation fit
Relative Taste — 2.0/5
2
minimality
1
approach quality
2
hygiene
2
fluency
1
craftsmanship

Agent Patch