It would be nice if the web interface listed the authorized web clients and had the ability to remove access for a specific client. I view this both as a security and partially a family friendly feature. There may be remote/external devices I’ve previously authorized which I no longer want to have access. Allowing all devices that have ever been authorized to remotely access the web interface/recordings doesn’t sound the most secure.
Also, less important, would be a a log of section detailing the last access by each device (or other logging info).