feat: Add CrowdSec Bouncer Key Display component and integrate into Security page

- Implemented CrowdSecBouncerKeyDisplay component to fetch and display the bouncer API key information.
- Added loading skeletons and error handling for API requests.
- Integrated the new component into the Security page, conditionally rendering it based on CrowdSec status.
- Created unit tests for the CrowdSecBouncerKeyDisplay component, covering various states including loading, registered/unregistered bouncer, and no key configured.
- Added functional tests for the Security page to ensure proper rendering of the CrowdSec Bouncer Key Display based on the CrowdSec status.
- Updated translation files to include new keys related to the bouncer API key functionality.

.docker/compose/docker-compose.yml

@@ -35,25 +35,10 @@ services:
       - CHARON_CADDY_BINARY=caddy
       - CHARON_IMPORT_CADDYFILE=/import/Caddyfile
       - CHARON_IMPORT_DIR=/app/data/imports
-      # Security Services (Optional)
-      # 🚨 DEPRECATED: CrowdSec environment variables are no longer used.
-      # CrowdSec is now GUI-controlled via the Security dashboard.
-      # Remove these lines and use the GUI toggle instead.
-      # See: https://wikid82.github.io/charon/migration-guide
-      #- CERBERUS_SECURITY_CROWDSEC_MODE=disabled # ⚠️ DEPRECATED - Use GUI toggle
-      #- CERBERUS_SECURITY_CROWDSEC_API_URL= # ⚠️ DEPRECATED - External mode removed
-      #- CERBERUS_SECURITY_CROWDSEC_API_KEY= # ⚠️ DEPRECATED - External mode removed
-      #- CERBERUS_SECURITY_WAF_MODE=disabled # disabled, enabled
-      #- CERBERUS_SECURITY_RATELIMIT_ENABLED=false
-      #- CERBERUS_SECURITY_ACL_ENABLED=false
-      # Backward compatibility: CPM_ prefixed variables are still supported
-      # 🚨 DEPRECATED: Use GUI toggle instead (see Security dashboard)
-      #- CPM_SECURITY_CROWDSEC_MODE=disabled # ⚠️ DEPRECATED
-      #- CPM_SECURITY_CROWDSEC_API_URL= # ⚠️ DEPRECATED
-      #- CPM_SECURITY_CROWDSEC_API_KEY= # ⚠️ DEPRECATED
-      #- CPM_SECURITY_WAF_MODE=disabled
-      #- CPM_SECURITY_RATELIMIT_ENABLED=false
-      #- CPM_SECURITY_ACL_ENABLED=false
+      # Paste your CrowdSec API details here to prevent auto reregistration on startup
+      # Obtained from your CrowdSec settings on first setup
+      - CHARON_SECURITY_CROWDSEC_API_URL=http://localhost:8085
+      - CHARON_SECURITY_CROWDSEC_API_KEY=<your-crowdsec-api-key-here>
     extra_hosts:
       - "host.docker.internal:host-gateway"
     volumes:

.docker/docker-entrypoint.sh

@@ -130,6 +130,20 @@ if command -v cscli >/dev/null; then
     mkdir -p "$CS_CONFIG_DIR" 2>/dev/null || echo "Warning: Cannot create $CS_CONFIG_DIR"
     mkdir -p "$CS_DATA_DIR" 2>/dev/null || echo "Warning: Cannot create $CS_DATA_DIR"
     mkdir -p "$CS_PERSIST_DIR/hub_cache"
+
+    # ============================================================================
+    # CrowdSec Bouncer Key Persistence Directory
+    # ============================================================================
+    # Create the persistent directory for bouncer key storage.
+    # This directory is inside /app/data which is volume-mounted.
+    # The bouncer key will be stored at /app/data/crowdsec/bouncer_key
+    echo "CrowdSec bouncer key will be stored at: $CS_PERSIST_DIR/bouncer_key"
+
+    # Fix ownership for key directory if running as root
+    if is_root; then
+        chown charon:charon "$CS_PERSIST_DIR" 2>/dev/null || true
+    fi
+
     # Log directories are created at build time with correct ownership
     # Only attempt to create if they don't exist (first run scenarios)
     mkdir -p /var/log/crowdsec 2>/dev/null || true