refactor(admin): split control-library, iace/mitigations, iace/components pages

Extract hooks, sub-components, and constants into colocated files to bring all three page.tsx files under the 500-LOC hard cap (225, 134, 111 LOC). Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-04-16 22:47:16 +02:00
parent 2adbacf267
commit cfd4fc347f
21 changed files with 1998 additions and 2453 deletions
--- a/admin-compliance/app/sdk/control-library/components/ControlListItem.tsx
+++ b/admin-compliance/app/sdk/control-library/components/ControlListItem.tsx
@@ -0,0 +1,74 @@
+'use client'
+
+import { ChevronRight, BookOpen, Clock } from 'lucide-react'
+import { CanonicalControl, SeverityBadge, StateBadge, LicenseRuleBadge, VerificationMethodBadge, CategoryBadge, EvidenceTypeBadge, TargetAudienceBadge, GenerationStrategyBadge, ObligationTypeBadge } from './helpers'
+
+interface ControlListItemProps {
+  ctrl: CanonicalControl
+  sortBy: string
+  prevSource: string | null
+  onClick: () => void
+}
+
+export function ControlListItem({ ctrl, sortBy, prevSource, onClick }: ControlListItemProps) {
+  const curSource = ctrl.source_citation?.source || 'Ohne Quelle'
+  const showSourceHeader = sortBy === 'source' && curSource !== prevSource
+
+  return (
+    <div key={ctrl.control_id}>
+      {showSourceHeader && (
+        <div className="flex items-center gap-2 pt-3 pb-1">
+          <div className="h-px flex-1 bg-blue-200" />
+          <span className="text-xs font-semibold text-blue-700 bg-blue-50 px-2 py-0.5 rounded whitespace-nowrap">{curSource}</span>
+          <div className="h-px flex-1 bg-blue-200" />
+        </div>
+      )}
+      <button
+        onClick={onClick}
+        className="w-full text-left bg-white border border-gray-200 rounded-lg p-4 hover:border-purple-300 hover:shadow-sm transition-all group"
+      >
+        <div className="flex items-start justify-between">
+          <div className="flex-1 min-w-0">
+            <div className="flex items-center gap-2 mb-1 flex-wrap">
+              <span className="text-xs font-mono text-purple-600 bg-purple-50 px-1.5 py-0.5 rounded">{ctrl.control_id}</span>
+              <SeverityBadge severity={ctrl.severity} />
+              <StateBadge state={ctrl.release_state} />
+              <LicenseRuleBadge rule={ctrl.license_rule} />
+              <VerificationMethodBadge method={ctrl.verification_method} />
+              <CategoryBadge category={ctrl.category} />
+              <EvidenceTypeBadge type={ctrl.evidence_type} />
+              <TargetAudienceBadge audience={ctrl.target_audience} />
+              <GenerationStrategyBadge strategy={ctrl.generation_strategy} pipelineInfo={ctrl} />
+              <ObligationTypeBadge type={ctrl.generation_metadata?.obligation_type as string} />
+              {ctrl.risk_score !== null && (
+                <span className="text-xs text-gray-400">Score: {ctrl.risk_score}</span>
+              )}
+            </div>
+            <h3 className="text-sm font-medium text-gray-900 group-hover:text-purple-700">{ctrl.title}</h3>
+            <p className="text-xs text-gray-500 mt-1 line-clamp-2">{ctrl.objective}</p>
+            <div className="flex items-center gap-2 mt-2">
+              <BookOpen className="w-3 h-3 text-green-600" />
+              <span className="text-xs text-green-700">{ctrl.open_anchors.length} Referenzen</span>
+              {ctrl.source_citation?.source && (
+                <>
+                  <span className="text-gray-300">|</span>
+                  <span className="text-xs text-blue-600">
+                    {ctrl.source_citation.source}
+                    {ctrl.source_citation.article && ` ${ctrl.source_citation.article}`}
+                    {ctrl.source_citation.paragraph && ` ${ctrl.source_citation.paragraph}`}
+                  </span>
+                </>
+              )}
+              <span className="text-gray-300">|</span>
+              <Clock className="w-3 h-3 text-gray-400" />
+              <span className="text-xs text-gray-400" title={ctrl.created_at}>
+                {ctrl.created_at ? new Date(ctrl.created_at).toLocaleDateString('de-DE', { day: '2-digit', month: '2-digit', year: '2-digit', hour: '2-digit', minute: '2-digit' }) : '–'}
+              </span>
+            </div>
+          </div>
+          <ChevronRight className="w-4 h-4 text-gray-300 group-hover:text-purple-500 flex-shrink-0 mt-1 ml-4" />
+        </div>
+      </button>
+    </div>
+  )
+}
--- a/admin-compliance/app/sdk/control-library/components/ControlsHeader.tsx
+++ b/admin-compliance/app/sdk/control-library/components/ControlsHeader.tsx
@@ -0,0 +1,232 @@
+'use client'
+
+import { Shield, Lock, ListChecks, Trash2, BarChart3, Zap, Plus, RefreshCw, Search, Filter, ArrowUpDown } from 'lucide-react'
+import { Framework } from './helpers'
+import { ControlsMeta } from './types'
+import { VERIFICATION_METHODS, CATEGORY_OPTIONS, EVIDENCE_TYPE_OPTIONS } from './helpers'
+
+interface ControlsHeaderProps {
+  frameworks: Framework[]
+  meta: ControlsMeta | null
+  reviewCount: number
+  loading: boolean
+  bulkProcessing: boolean
+  showStats: boolean
+  processedStats: Array<Record<string, unknown>>
+  searchQuery: string
+  severityFilter: string
+  domainFilter: string
+  stateFilter: string
+  hideDuplicates: boolean
+  verificationFilter: string
+  categoryFilter: string
+  evidenceTypeFilter: string
+  audienceFilter: string
+  sourceFilter: string
+  typeFilter: string
+  sortBy: string
+  onSearchChange: (v: string) => void
+  onSeverityChange: (v: string) => void
+  onDomainChange: (v: string) => void
+  onStateChange: (v: string) => void
+  onHideDuplicatesChange: (v: boolean) => void
+  onVerificationChange: (v: string) => void
+  onCategoryChange: (v: string) => void
+  onEvidenceTypeChange: (v: string) => void
+  onAudienceChange: (v: string) => void
+  onSourceChange: (v: string) => void
+  onTypeChange: (v: string) => void
+  onSortChange: (v: string) => void
+  onRefresh: () => void
+  onEnterReviewMode: () => void
+  onBulkReject: (state: string) => void
+  onToggleStats: () => void
+  onOpenGenerator: () => void
+  onCreateNew: () => void
+}
+
+export function ControlsHeader({
+  frameworks, meta, reviewCount, loading, bulkProcessing, showStats, processedStats,
+  searchQuery, severityFilter, domainFilter, stateFilter, hideDuplicates,
+  verificationFilter, categoryFilter, evidenceTypeFilter, audienceFilter, sourceFilter, typeFilter, sortBy,
+  onSearchChange, onSeverityChange, onDomainChange, onStateChange, onHideDuplicatesChange,
+  onVerificationChange, onCategoryChange, onEvidenceTypeChange, onAudienceChange, onSourceChange, onTypeChange, onSortChange,
+  onRefresh, onEnterReviewMode, onBulkReject, onToggleStats, onOpenGenerator, onCreateNew,
+}: ControlsHeaderProps) {
+  return (
+    <div className="border-b border-gray-200 bg-white px-6 py-4">
+      <div className="flex items-center justify-between mb-4">
+        <div className="flex items-center gap-3">
+          <Shield className="w-6 h-6 text-purple-600" />
+          <div>
+            <h1 className="text-lg font-semibold text-gray-900">Canonical Control Library</h1>
+            <p className="text-xs text-gray-500">{meta?.total ?? 0} Security Controls</p>
+          </div>
+        </div>
+        <div className="flex items-center gap-2">
+          {reviewCount > 0 && (
+            <>
+              <button onClick={onEnterReviewMode} className="flex items-center gap-1.5 px-3 py-2 text-sm text-white bg-yellow-600 rounded-lg hover:bg-yellow-700">
+                <ListChecks className="w-4 h-4" />
+                Review ({reviewCount})
+              </button>
+              <button onClick={() => onBulkReject('needs_review')} disabled={bulkProcessing}
+                className="flex items-center gap-1.5 px-3 py-2 text-sm text-white bg-red-600 rounded-lg hover:bg-red-700 disabled:opacity-50">
+                <Trash2 className="w-4 h-4" />
+                {bulkProcessing ? 'Wird verarbeitet...' : `Alle ${reviewCount} ablehnen`}
+              </button>
+            </>
+          )}
+          <button onClick={onToggleStats} className="flex items-center gap-1.5 px-3 py-2 text-sm text-gray-600 border border-gray-300 rounded-lg hover:bg-gray-50">
+            <BarChart3 className="w-4 h-4" />Stats
+          </button>
+          <button onClick={onOpenGenerator} className="flex items-center gap-1.5 px-3 py-2 text-sm text-white bg-amber-600 rounded-lg hover:bg-amber-700">
+            <Zap className="w-4 h-4" />Generator
+          </button>
+          <button onClick={onCreateNew} className="flex items-center gap-1.5 px-3 py-2 text-sm text-white bg-purple-600 rounded-lg hover:bg-purple-700">
+            <Plus className="w-4 h-4" />Neues Control
+          </button>
+        </div>
+      </div>
+
+      {frameworks.length > 0 && (
+        <div className="mb-4 p-3 bg-purple-50 rounded-lg">
+          <div className="flex items-center gap-2 text-xs text-purple-700">
+            <Lock className="w-3 h-3" />
+            <span className="font-medium">{frameworks[0]?.name} v{frameworks[0]?.version}</span>
+            <span className="text-purple-500">—</span>
+            <span>{frameworks[0]?.description}</span>
+          </div>
+        </div>
+      )}
+
+      <div className="space-y-3">
+        <div className="flex items-center gap-3">
+          <div className="relative flex-1">
+            <Search className="absolute left-3 top-1/2 -translate-y-1/2 w-4 h-4 text-gray-400" />
+            <input type="text" placeholder="Controls durchsuchen (ID, Titel, Objective)..." value={searchQuery}
+              onChange={e => onSearchChange(e.target.value)}
+              className="w-full pl-9 pr-4 py-2 text-sm border border-gray-300 rounded-lg focus:outline-none focus:ring-2 focus:ring-purple-500" />
+          </div>
+          <button onClick={onRefresh} className="p-2 text-gray-400 hover:text-purple-600" title="Aktualisieren">
+            <RefreshCw className={`w-4 h-4 ${loading ? 'animate-spin' : ''}`} />
+          </button>
+        </div>
+        <div className="flex items-center gap-2 flex-wrap">
+          <Filter className="w-4 h-4 text-gray-400" />
+          <select value={severityFilter} onChange={e => onSeverityChange(e.target.value)}
+            className="text-sm border border-gray-300 rounded-lg px-2 py-1.5 focus:outline-none focus:ring-2 focus:ring-purple-500">
+            <option value="">Schweregrad</option>
+            <option value="critical">Kritisch{meta?.severity_counts?.critical ? ` (${meta.severity_counts.critical})` : ''}</option>
+            <option value="high">Hoch{meta?.severity_counts?.high ? ` (${meta.severity_counts.high})` : ''}</option>
+            <option value="medium">Mittel{meta?.severity_counts?.medium ? ` (${meta.severity_counts.medium})` : ''}</option>
+            <option value="low">Niedrig{meta?.severity_counts?.low ? ` (${meta.severity_counts.low})` : ''}</option>
+          </select>
+          <select value={domainFilter} onChange={e => onDomainChange(e.target.value)}
+            className="text-sm border border-gray-300 rounded-lg px-2 py-1.5 focus:outline-none focus:ring-2 focus:ring-purple-500">
+            <option value="">Domain</option>
+            {(meta?.domains || []).map(d => <option key={d.domain} value={d.domain}>{d.domain} ({d.count})</option>)}
+          </select>
+          <select value={stateFilter} onChange={e => onStateChange(e.target.value)}
+            className="text-sm border border-gray-300 rounded-lg px-2 py-1.5 focus:outline-none focus:ring-2 focus:ring-purple-500">
+            <option value="">Status</option>
+            <option value="draft">Draft{meta?.release_state_counts?.draft ? ` (${meta.release_state_counts.draft})` : ''}</option>
+            <option value="approved">Approved{meta?.release_state_counts?.approved ? ` (${meta.release_state_counts.approved})` : ''}</option>
+            <option value="needs_review">Review noetig{meta?.release_state_counts?.needs_review ? ` (${meta.release_state_counts.needs_review})` : ''}</option>
+            <option value="too_close">Zu aehnlich{meta?.release_state_counts?.too_close ? ` (${meta.release_state_counts.too_close})` : ''}</option>
+            <option value="duplicate">Duplikat{meta?.release_state_counts?.duplicate ? ` (${meta.release_state_counts.duplicate})` : ''}</option>
+            <option value="deprecated">Deprecated{meta?.release_state_counts?.deprecated ? ` (${meta.release_state_counts.deprecated})` : ''}</option>
+          </select>
+          <label className="flex items-center gap-1.5 text-sm text-gray-600 cursor-pointer whitespace-nowrap">
+            <input type="checkbox" checked={hideDuplicates} onChange={e => onHideDuplicatesChange(e.target.checked)}
+              className="rounded border-gray-300 text-purple-600 focus:ring-purple-500" />
+            Duplikate ausblenden
+          </label>
+          <select value={verificationFilter} onChange={e => onVerificationChange(e.target.value)}
+            className="text-sm border border-gray-300 rounded-lg px-2 py-1.5 focus:outline-none focus:ring-2 focus:ring-purple-500">
+            <option value="">Nachweis</option>
+            {Object.entries(VERIFICATION_METHODS).map(([k, v]) => (
+              <option key={k} value={k}>{v.label}{meta?.verification_method_counts?.[k] ? ` (${meta.verification_method_counts[k]})` : ''}</option>
+            ))}
+            {meta?.verification_method_counts?.['__none__'] ? <option value="__none__">Ohne Nachweis ({meta.verification_method_counts['__none__']})</option> : null}
+          </select>
+          <select value={categoryFilter} onChange={e => onCategoryChange(e.target.value)}
+            className="text-sm border border-gray-300 rounded-lg px-2 py-1.5 focus:outline-none focus:ring-2 focus:ring-purple-500">
+            <option value="">Kategorie</option>
+            {CATEGORY_OPTIONS.map(c => (
+              <option key={c.value} value={c.value}>{c.label}{meta?.category_counts?.[c.value] ? ` (${meta.category_counts[c.value]})` : ''}</option>
+            ))}
+            {meta?.category_counts?.['__none__'] ? <option value="__none__">Ohne Kategorie ({meta.category_counts['__none__']})</option> : null}
+          </select>
+          <select value={evidenceTypeFilter} onChange={e => onEvidenceTypeChange(e.target.value)}
+            className="text-sm border border-gray-300 rounded-lg px-2 py-1.5 focus:outline-none focus:ring-2 focus:ring-purple-500">
+            <option value="">Nachweisart</option>
+            {EVIDENCE_TYPE_OPTIONS.map(c => (
+              <option key={c.value} value={c.value}>{c.label}{meta?.evidence_type_counts?.[c.value] ? ` (${meta.evidence_type_counts[c.value]})` : ''}</option>
+            ))}
+            {meta?.evidence_type_counts?.['__none__'] ? <option value="__none__">Ohne Nachweisart ({meta.evidence_type_counts['__none__']})</option> : null}
+          </select>
+          <select value={audienceFilter} onChange={e => onAudienceChange(e.target.value)}
+            className="text-sm border border-gray-300 rounded-lg px-2 py-1.5 focus:outline-none focus:ring-2 focus:ring-purple-500">
+            <option value="">Zielgruppe</option>
+            <option value="unternehmen">Unternehmen</option>
+            <option value="behoerden">Behoerden</option>
+            <option value="entwickler">Entwickler</option>
+            <option value="datenschutzbeauftragte">DSB</option>
+            <option value="geschaeftsfuehrung">Geschaeftsfuehrung</option>
+            <option value="it-abteilung">IT-Abteilung</option>
+            <option value="rechtsabteilung">Rechtsabteilung</option>
+            <option value="compliance-officer">Compliance Officer</option>
+            <option value="personalwesen">Personalwesen</option>
+            <option value="einkauf">Einkauf</option>
+            <option value="produktion">Produktion</option>
+            <option value="vertrieb">Vertrieb</option>
+            <option value="gesundheitswesen">Gesundheitswesen</option>
+            <option value="finanzwesen">Finanzwesen</option>
+            <option value="oeffentlicher_dienst">Oeffentl. Dienst</option>
+          </select>
+          <select value={sourceFilter} onChange={e => onSourceChange(e.target.value)}
+            className="text-sm border border-gray-300 rounded-lg px-2 py-1.5 focus:outline-none focus:ring-2 focus:ring-purple-500 max-w-[220px]">
+            <option value="">Dokumentenursprung</option>
+            {meta && <option value="__none__">Ohne Quelle ({meta.no_source_count})</option>}
+            {(meta?.sources || []).map(s => <option key={s.source} value={s.source}>{s.source} ({s.count})</option>)}
+          </select>
+          <select value={typeFilter} onChange={e => onTypeChange(e.target.value)}
+            className="text-sm border border-gray-300 rounded-lg px-2 py-1.5 focus:outline-none focus:ring-2 focus:ring-purple-500">
+            <option value="">Alle Typen</option>
+            <option value="rich">Rich Controls{meta?.type_counts ? ` (${meta.type_counts.rich})` : ''}</option>
+            <option value="atomic">Atomare Controls{meta?.type_counts ? ` (${meta.type_counts.atomic})` : ''}</option>
+            <option value="eigenentwicklung">Eigenentwicklung{meta?.type_counts ? ` (${meta.type_counts.eigenentwicklung})` : ''}</option>
+          </select>
+          <span className="text-gray-300 mx-1">|</span>
+          <ArrowUpDown className="w-4 h-4 text-gray-400" />
+          <select value={sortBy} onChange={e => onSortChange(e.target.value)}
+            className="text-sm border border-gray-300 rounded-lg px-2 py-1.5 focus:outline-none focus:ring-2 focus:ring-purple-500">
+            <option value="id">Sortierung: ID</option>
+            <option value="source">Nach Quelle</option>
+            <option value="newest">Neueste zuerst</option>
+            <option value="oldest">Aelteste zuerst</option>
+          </select>
+        </div>
+      </div>
+
+      {showStats && processedStats.length > 0 && (
+        <div className="mt-3 p-3 bg-gray-50 rounded-lg">
+          <h4 className="text-xs font-semibold text-gray-700 mb-2">Verarbeitungsfortschritt</h4>
+          <div className="grid grid-cols-3 gap-3">
+            {processedStats.map((s, i) => (
+              <div key={i} className="text-xs">
+                <span className="font-medium text-gray-700">{String(s.collection)}</span>
+                <div className="flex gap-2 mt-1 text-gray-500">
+                  <span>{String(s.processed_chunks)} verarbeitet</span>
+                  <span>{String(s.direct_adopted)} direkt</span>
+                  <span>{String(s.llm_reformed)} reformuliert</span>
+                </div>
+              </div>
+            ))}
+          </div>
+        </div>
+      )}
+    </div>
+  )
+}
--- a/admin-compliance/app/sdk/control-library/components/types.ts
+++ b/admin-compliance/app/sdk/control-library/components/types.ts
@@ -0,0 +1,38 @@
+// Shared types for control-library page
+
+export interface ControlsMeta {
+  total: number
+  domains: Array<{ domain: string; count: number }>
+  sources: Array<{ source: string; count: number }>
+  no_source_count: number
+  type_counts?: {
+    rich: number
+    atomic: number
+    eigenentwicklung: number
+  }
+  severity_counts?: Record<string, number>
+  verification_method_counts?: Record<string, number>
+  category_counts?: Record<string, number>
+  evidence_type_counts?: Record<string, number>
+  release_state_counts?: Record<string, number>
+}
+
+export interface ControlFormData {
+  title: string
+  objective: string
+  severity: string
+  domain: string
+  release_state: string
+  verification_method: string
+  category: string
+  evidence_type: string
+  target_audience: string
+  license_rule: string
+  risk_score: number | null
+  implementation_effort: number | null
+  open_anchors: Array<{ framework: string; ref: string; url: string }>
+  requirements: string[]
+  test_procedure: string[]
+  evidence: Array<{ type: string; description: string }>
+  [key: string]: unknown
+}
--- a/admin-compliance/app/sdk/control-library/components/useControlLibrary.ts
+++ b/admin-compliance/app/sdk/control-library/components/useControlLibrary.ts
@@ -0,0 +1,292 @@
+'use client'
+
+import { useState, useEffect, useCallback, useRef } from 'react'
+import { CanonicalControl, Framework, BACKEND_URL } from './helpers'
+import { ControlsMeta, ControlFormData } from './types'
+
+const PAGE_SIZE = 50
+
+export function useControlLibrary() {
+  const [frameworks, setFrameworks] = useState<Framework[]>([])
+  const [controls, setControls] = useState<CanonicalControl[]>([])
+  const [totalCount, setTotalCount] = useState(0)
+  const [meta, setMeta] = useState<ControlsMeta | null>(null)
+  const [selectedControl, setSelectedControl] = useState<CanonicalControl | null>(null)
+  const [loading, setLoading] = useState(true)
+  const [error, setError] = useState<string | null>(null)
+
+  // Filters
+  const [searchQuery, setSearchQuery] = useState('')
+  const [debouncedSearch, setDebouncedSearch] = useState('')
+  const [severityFilter, setSeverityFilter] = useState<string>('')
+  const [domainFilter, setDomainFilter] = useState<string>('')
+  const [stateFilter, setStateFilter] = useState<string>('')
+  const [verificationFilter, setVerificationFilter] = useState<string>('')
+  const [categoryFilter, setCategoryFilter] = useState<string>('')
+  const [evidenceTypeFilter, setEvidenceTypeFilter] = useState<string>('')
+  const [audienceFilter, setAudienceFilter] = useState<string>('')
+  const [sourceFilter, setSourceFilter] = useState<string>('')
+  const [typeFilter, setTypeFilter] = useState<string>('')
+  const [hideDuplicates, setHideDuplicates] = useState(true)
+  const [sortBy, setSortBy] = useState<'id' | 'newest' | 'oldest' | 'source'>('id')
+
+  // CRUD state
+  const [mode, setMode] = useState<'list' | 'detail' | 'create' | 'edit'>('list')
+  const [saving, setSaving] = useState(false)
+
+  // Generator state
+  const [showGenerator, setShowGenerator] = useState(false)
+  const [processedStats, setProcessedStats] = useState<Array<Record<string, unknown>>>([])
+  const [showStats, setShowStats] = useState(false)
+
+  // Pagination
+  const [currentPage, setCurrentPage] = useState(1)
+
+  // Review mode
+  const [reviewMode, setReviewMode] = useState(false)
+  const [reviewIndex, setReviewIndex] = useState(0)
+  const [reviewItems, setReviewItems] = useState<CanonicalControl[]>([])
+  const [reviewCount, setReviewCount] = useState(0)
+  const [reviewTab, setReviewTab] = useState<'duplicates' | 'rule3'>('duplicates')
+  const [reviewDuplicates, setReviewDuplicates] = useState<CanonicalControl[]>([])
+  const [reviewRule3, setReviewRule3] = useState<CanonicalControl[]>([])
+
+  // V1 Compare mode
+  const [compareMode, setCompareMode] = useState(false)
+  const [compareV1Control, setCompareV1Control] = useState<CanonicalControl | null>(null)
+  const [compareMatches, setCompareMatches] = useState<Array<{
+    matched_control_id: string; matched_title: string; matched_objective: string
+    matched_severity: string; matched_category: string
+    matched_source: string | null; matched_article: string | null
+    matched_source_citation: Record<string, string> | null
+    similarity_score: number; match_rank: number; match_method: string
+  }>>([])
+
+  const [bulkProcessing, setBulkProcessing] = useState(false)
+
+  // Abort controllers
+  const metaAbortRef = useRef<AbortController | null>(null)
+  const controlsAbortRef = useRef<AbortController | null>(null)
+
+  // Debounce search
+  const searchTimer = useRef<ReturnType<typeof setTimeout> | null>(null)
+  useEffect(() => {
+    if (searchTimer.current) clearTimeout(searchTimer.current)
+    searchTimer.current = setTimeout(() => setDebouncedSearch(searchQuery), 400)
+    return () => { if (searchTimer.current) clearTimeout(searchTimer.current) }
+  }, [searchQuery])
+
+  const buildParams = useCallback((extra?: Record<string, string>) => {
+    const p = new URLSearchParams()
+    if (severityFilter) p.set('severity', severityFilter)
+    if (domainFilter) p.set('domain', domainFilter)
+    if (stateFilter) p.set('release_state', stateFilter)
+    if (verificationFilter) p.set('verification_method', verificationFilter)
+    if (categoryFilter) p.set('category', categoryFilter)
+    if (evidenceTypeFilter) p.set('evidence_type', evidenceTypeFilter)
+    if (audienceFilter) p.set('target_audience', audienceFilter)
+    if (sourceFilter) p.set('source', sourceFilter)
+    if (typeFilter) p.set('control_type', typeFilter)
+    if (hideDuplicates) p.set('exclude_duplicates', 'true')
+    if (debouncedSearch) p.set('search', debouncedSearch)
+    if (extra) for (const [k, v] of Object.entries(extra)) p.set(k, v)
+    return p.toString()
+  }, [severityFilter, domainFilter, stateFilter, verificationFilter, categoryFilter, evidenceTypeFilter, audienceFilter, sourceFilter, typeFilter, hideDuplicates, debouncedSearch])
+
+  const loadFrameworks = useCallback(async () => {
+    try {
+      const res = await fetch(`${BACKEND_URL}?endpoint=frameworks`)
+      if (res.ok) setFrameworks(await res.json())
+    } catch { /* ignore */ }
+  }, [])
+
+  const loadMeta = useCallback(async () => {
+    if (metaAbortRef.current) metaAbortRef.current.abort()
+    const controller = new AbortController()
+    metaAbortRef.current = controller
+    try {
+      const qs = buildParams()
+      const res = await fetch(`${BACKEND_URL}?endpoint=controls-meta${qs ? `&${qs}` : ''}`, { signal: controller.signal })
+      if (res.ok && !controller.signal.aborted) setMeta(await res.json())
+    } catch (e) {
+      if (e instanceof DOMException && e.name === 'AbortError') return
+    }
+  }, [buildParams])
+
+  const loadControls = useCallback(async () => {
+    if (controlsAbortRef.current) controlsAbortRef.current.abort()
+    const controller = new AbortController()
+    controlsAbortRef.current = controller
+    try {
+      setLoading(true)
+      const sortField = sortBy === 'id' ? 'control_id' : sortBy === 'source' ? 'source' : 'created_at'
+      const sortOrder = sortBy === 'newest' ? 'desc' : sortBy === 'oldest' ? 'asc' : 'asc'
+      const offset = (currentPage - 1) * PAGE_SIZE
+      const qs = buildParams({ sort: sortField, order: sortOrder, limit: String(PAGE_SIZE), offset: String(offset) })
+      const countQs = buildParams()
+      const [ctrlRes, countRes] = await Promise.all([
+        fetch(`${BACKEND_URL}?endpoint=controls&${qs}`, { signal: controller.signal }),
+        fetch(`${BACKEND_URL}?endpoint=controls-count&${countQs}`, { signal: controller.signal }),
+      ])
+      if (!controller.signal.aborted) {
+        if (ctrlRes.ok) setControls(await ctrlRes.json())
+        if (countRes.ok) {
+          const data = await countRes.json()
+          setTotalCount(data.total || 0)
+        }
+      }
+    } catch (err) {
+      if (err instanceof DOMException && err.name === 'AbortError') return
+      setError(err instanceof Error ? err.message : 'Fehler beim Laden')
+    } finally {
+      if (!controller.signal.aborted) setLoading(false)
+    }
+  }, [buildParams, sortBy, currentPage])
+
+  const loadReviewCount = useCallback(async () => {
+    try {
+      const res = await fetch(`${BACKEND_URL}?endpoint=controls-count&release_state=needs_review`)
+      if (res.ok) {
+        const data = await res.json()
+        setReviewCount(data.total || 0)
+      }
+    } catch { /* ignore */ }
+  }, [])
+
+  useEffect(() => { loadFrameworks(); loadReviewCount() }, [loadFrameworks, loadReviewCount])
+  useEffect(() => { loadMeta() }, [loadMeta])
+  useEffect(() => { loadControls() }, [loadControls])
+  useEffect(() => { setCurrentPage(1) }, [severityFilter, domainFilter, stateFilter, verificationFilter, categoryFilter, evidenceTypeFilter, audienceFilter, sourceFilter, typeFilter, hideDuplicates, debouncedSearch, sortBy])
+
+  const totalPages = Math.max(1, Math.ceil(totalCount / PAGE_SIZE))
+
+  const fullReload = useCallback(async () => {
+    await Promise.all([loadControls(), loadMeta(), loadFrameworks(), loadReviewCount()])
+  }, [loadControls, loadMeta, loadFrameworks, loadReviewCount])
+
+  const handleCreate = async (data: ControlFormData) => {
+    setSaving(true)
+    try {
+      const res = await fetch(`${BACKEND_URL}?endpoint=create-control`, {
+        method: 'POST', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify(data),
+      })
+      if (!res.ok) { const err = await res.json(); alert(`Fehler: ${err.error || err.details || 'Unbekannt'}`); return }
+      await fullReload(); setMode('list')
+    } catch { alert('Netzwerkfehler') } finally { setSaving(false) }
+  }
+
+  const handleUpdate = async (data: ControlFormData) => {
+    if (!selectedControl) return
+    setSaving(true)
+    try {
+      const res = await fetch(`${BACKEND_URL}?endpoint=update-control&id=${selectedControl.control_id}`, {
+        method: 'PUT', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify(data),
+      })
+      if (!res.ok) { const err = await res.json(); alert(`Fehler: ${err.error || err.details || 'Unbekannt'}`); return }
+      await fullReload(); setSelectedControl(null); setMode('list')
+    } catch { alert('Netzwerkfehler') } finally { setSaving(false) }
+  }
+
+  const handleDelete = async (controlId: string) => {
+    if (!confirm(`Control ${controlId} wirklich loeschen?`)) return
+    try {
+      const res = await fetch(`${BACKEND_URL}?id=${controlId}`, { method: 'DELETE' })
+      if (!res.ok && res.status !== 204) { alert('Fehler beim Loeschen'); return }
+      await fullReload(); setSelectedControl(null); setMode('list')
+    } catch { alert('Netzwerkfehler') }
+  }
+
+  const handleReview = async (controlId: string, action: string) => {
+    try {
+      const res = await fetch(`${BACKEND_URL}?endpoint=review&id=${controlId}`, {
+        method: 'POST', headers: { 'Content-Type': 'application/json' }, body: JSON.stringify({ action }),
+      })
+      if (res.ok) {
+        await fullReload()
+        if (reviewMode) {
+          const remaining = reviewItems.filter(c => c.control_id !== controlId)
+          setReviewItems(remaining)
+          if (remaining.length > 0) {
+            const nextIdx = Math.min(reviewIndex, remaining.length - 1)
+            setReviewIndex(nextIdx); setSelectedControl(remaining[nextIdx])
+          } else { setReviewMode(false); setSelectedControl(null); setMode('list') }
+        } else { setSelectedControl(null); setMode('list') }
+      }
+    } catch { /* ignore */ }
+  }
+
+  const handleBulkReject = async (sourceState: string) => {
+    const count = stateFilter === sourceState ? totalCount : reviewCount
+    if (!confirm(`Alle ${count} Controls mit Status "${sourceState}" auf "deprecated" setzen? Diese Aktion kann nicht rueckgaengig gemacht werden.`)) return
+    setBulkProcessing(true)
+    try {
+      const res = await fetch(`${BACKEND_URL}?endpoint=bulk-review`, {
+        method: 'POST', headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({ release_state: sourceState, action: 'reject' }),
+      })
+      if (res.ok) { const data = await res.json(); alert(`${data.affected_count} Controls auf "deprecated" gesetzt.`); await fullReload() }
+      else { const err = await res.json(); alert(`Fehler: ${err.error || err.details || 'Unbekannt'}`) }
+    } catch { alert('Netzwerkfehler') } finally { setBulkProcessing(false) }
+  }
+
+  const loadProcessedStats = async () => {
+    try {
+      const res = await fetch(`${BACKEND_URL}?endpoint=processed-stats`)
+      if (res.ok) { const data = await res.json(); setProcessedStats(data.stats || []) }
+    } catch { /* ignore */ }
+  }
+
+  const enterReviewMode = async () => {
+    try {
+      const res = await fetch(`${BACKEND_URL}?endpoint=controls&release_state=needs_review&limit=1000`)
+      if (res.ok) {
+        const items: CanonicalControl[] = await res.json()
+        if (items.length > 0) {
+          const dupes = items.filter(c =>
+            c.generation_metadata?.similar_controls &&
+            Array.isArray(c.generation_metadata.similar_controls) &&
+            (c.generation_metadata.similar_controls as unknown[]).length > 0
+          )
+          const rule3 = items.filter(c =>
+            !c.generation_metadata?.similar_controls ||
+            !Array.isArray(c.generation_metadata.similar_controls) ||
+            (c.generation_metadata.similar_controls as unknown[]).length === 0
+          )
+          setReviewDuplicates(dupes); setReviewRule3(rule3)
+          const startTab = dupes.length > 0 ? 'duplicates' : 'rule3'
+          const startItems = startTab === 'duplicates' ? dupes : rule3
+          setReviewTab(startTab); setReviewItems(startItems); setReviewMode(true)
+          setReviewIndex(0); setSelectedControl(startItems[0]); setMode('detail')
+        }
+      }
+    } catch { /* ignore */ }
+  }
+
+  const switchReviewTab = (tab: 'duplicates' | 'rule3') => {
+    const items = tab === 'duplicates' ? reviewDuplicates : reviewRule3
+    setReviewTab(tab); setReviewItems(items); setReviewIndex(0)
+    if (items.length > 0) setSelectedControl(items[0])
+  }
+
+  return {
+    // State
+    frameworks, controls, totalCount, meta, selectedControl, setSelectedControl,
+    loading, error, searchQuery, setSearchQuery, debouncedSearch,
+    severityFilter, setSeverityFilter, domainFilter, setDomainFilter,
+    stateFilter, setStateFilter, verificationFilter, setVerificationFilter,
+    categoryFilter, setCategoryFilter, evidenceTypeFilter, setEvidenceTypeFilter,
+    audienceFilter, setAudienceFilter, sourceFilter, setSourceFilter,
+    typeFilter, setTypeFilter, hideDuplicates, setHideDuplicates,
+    sortBy, setSortBy, mode, setMode, saving,
+    showGenerator, setShowGenerator, processedStats, showStats, setShowStats,
+    currentPage, setCurrentPage, totalPages,
+    reviewMode, setReviewMode, reviewIndex, setReviewIndex,
+    reviewItems, setReviewItems, reviewCount, reviewTab, setReviewTab,
+    reviewDuplicates, reviewRule3, bulkProcessing,
+    compareMode, setCompareMode, compareV1Control, setCompareV1Control, compareMatches, setCompareMatches,
+    // Actions
+    fullReload, loadControls, loadMeta, loadFrameworks, loadReviewCount,
+    loadProcessedStats, handleCreate, handleUpdate, handleDelete,
+    handleReview, handleBulkReject, enterReviewMode, switchReviewTab,
+  }
+}