panda-core 0.1.15 → 0.2.1

data/app/constraints/panda/core/admin_constraint.rb

@@ -0,0 +1,14 @@
+# frozen_string_literal: true
+
+module Panda
+  module Core
+    class AdminConstraint
+      def matches?(request)
+        return false unless request.session[:user_id].present?
+
+        user = User.find_by(id: request.session[:user_id])
+        user&.admin?
+      end
+    end
+  end
+end

data/app/controllers/panda/core/admin/dashboard_controller.rb

@@ -0,0 +1,22 @@
+# frozen_string_literal: true
+
+module Panda
+  module Core
+    module Admin
+      class DashboardController < AdminController
+        # Authentication is automatically enforced by AdminController
+
+        def show
+          # If a custom dashboard path is configured, redirect there
+          if Panda::Core.configuration.dashboard_redirect_path
+            redirect_to Panda::Core.configuration.dashboard_redirect_path
+          else
+            # This can be overridden by applications using panda-core
+            # For now, just render a basic view
+            render plain: "Welcome to Panda Admin"
+          end
+        end
+      end
+    end
+  end
+end

data/app/controllers/panda/core/admin/my_profile_controller.rb

@@ -0,0 +1,49 @@
+# frozen_string_literal: true
+
+module Panda
+  module Core
+    module Admin
+      class MyProfileController < ::Panda::Core::AdminController
+        before_action :set_initial_breadcrumb, only: %i[edit update]
+
+        # Shows the edit form for the current user's profile
+        # @type GET
+        # @return void
+        def edit
+          render :edit, locals: {user: current_user}
+        end
+
+        # Updates the current user's profile
+        # @type PATCH/PUT
+        # @return void
+        def update
+          if current_user.update(user_params)
+            flash[:success] = "Your profile has been updated successfully."
+            redirect_to edit_admin_my_profile_path
+          else
+            render :edit, locals: {user: current_user}, status: :unprocessable_entity
+          end
+        end
+
+        private
+
+        def set_initial_breadcrumb
+          add_breadcrumb "My Profile", edit_admin_my_profile_path
+        end
+
+        # Only allow a list of trusted parameters through
+        # @type private
+        # @return ActionController::StrongParameters
+        def user_params
+          # Base parameters that Core always allows
+          base_params = [:firstname, :lastname, :email, :current_theme]
+
+          # Allow additional params from configuration
+          additional_params = Core.configuration.additional_user_params || []
+
+          params.require(:user).permit(*(base_params + additional_params))
+        end
+      end
+    end
+  end
+end

data/app/controllers/panda/core/admin/sessions_controller.rb

@@ -0,0 +1,69 @@
+# frozen_string_literal: true
+
+module Panda
+  module Core
+    module Admin
+      class SessionsController < AdminController
+        # Skip authentication for login/logout actions
+        skip_before_action :authenticate_admin_user!, only: [:new, :create, :destroy, :failure]
+
+        def new
+          @providers = Core.configuration.authentication_providers.keys
+        end
+
+        def create
+          auth = request.env["omniauth.auth"]
+          provider = params[:provider]&.to_sym
+
+          unless Core.configuration.authentication_providers.key?(provider)
+            redirect_to admin_login_path, flash: {error: "Authentication provider not enabled"}
+            return
+          end
+
+          user = User.find_or_create_from_auth_hash(auth)
+
+          if user.persisted?
+            # Check if user is admin before allowing access
+            unless user.admin?
+              redirect_to admin_login_path, flash: {error: "You do not have permission to access the admin area"}
+              return
+            end
+            
+            session[:user_id] = user.id
+            Panda::Core::Current.user = user
+
+            ActiveSupport::Notifications.instrument("panda.core.user_login",
+              user: user,
+              provider: provider)
+
+            # Use configured dashboard path or default to admin_root_path
+            redirect_path = Panda::Core.configuration.dashboard_redirect_path || admin_root_path
+            redirect_to redirect_path, flash: {success: "Successfully logged in as #{user.name}"}
+          else
+            redirect_to admin_login_path, flash: {error: "Unable to create account: #{user.errors.full_messages.join(", ")}"}
+          end
+        rescue => e
+          Rails.logger.error "Authentication error: #{e.message}"
+          redirect_to admin_login_path, flash: {error: "Authentication failed: #{e.message}"}
+        end
+
+        def failure
+          message = params[:message] || "Authentication failed"
+          strategy = params[:strategy] || "unknown"
+          
+          Rails.logger.error "OmniAuth failure: strategy=#{strategy}, message=#{message}"
+          redirect_to admin_login_path, flash: {error: "Authentication failed: #{message}"}
+        end
+
+        def destroy
+          session.delete(:user_id)
+          Panda::Core::Current.user = nil
+
+          ActiveSupport::Notifications.instrument("panda.core.user_logout")
+
+          redirect_to admin_login_path, flash: {success: "Successfully logged out"}
+        end
+      end
+    end
+  end
+end

data/app/controllers/panda/core/admin_controller.rb

@@ -0,0 +1,28 @@
+# frozen_string_literal: true
+
+module Panda
+  module Core
+    class AdminController < ApplicationController
+      # Automatically require admin authentication for all admin controllers
+      before_action :authenticate_admin_user!
+      before_action :set_initial_breadcrumb
+
+      private
+
+      def set_initial_breadcrumb
+        # Use configured breadcrumb or default
+        if Core.configuration.initial_admin_breadcrumb
+          label, path = Core.configuration.initial_admin_breadcrumb.call(self)
+          add_breadcrumb label, path
+        else
+          add_breadcrumb "Admin", admin_root_path
+        end
+      end
+
+      # Legacy method for compatibility
+      def set_admin_breadcrumb
+        set_initial_breadcrumb
+      end
+    end
+  end
+end

data/app/controllers/panda/core/application_controller.rb

@@ -0,0 +1,59 @@
+# frozen_string_literal: true
+
+module Panda
+  module Core
+    class ApplicationController < ActionController::Base
+      protect_from_forgery with: :exception
+
+      before_action :set_current_request_details
+      before_action :initialize_breadcrumbs
+
+      helper_method :current_user, :user_signed_in?, :breadcrumbs
+
+      add_flash_types :success, :error, :warning, :info
+
+      private
+
+      def set_current_request_details
+        Current.request_id = request.uuid
+        Current.user_agent = request.user_agent
+        Current.ip_address = request.ip
+        Current.root = "#{request.protocol}#{request.host_with_port}"
+        Current.user = User.find_by(id: session[:user_id]) if session[:user_id]
+      end
+
+      def authenticate_user!
+        redirect_to admin_login_path unless user_signed_in?
+      end
+
+      def authenticate_admin_user!
+        if !user_signed_in?
+          redirect_to admin_login_path
+        elsif !current_user.admin?
+          redirect_to admin_login_path, flash: {error: "You are not authorized to access this page."}
+        end
+      end
+
+      def current_user
+        Current.user
+      end
+
+      def user_signed_in?
+        current_user.present?
+      end
+
+      def initialize_breadcrumbs
+        @breadcrumbs = []
+      end
+
+      def add_breadcrumb(label, path = nil)
+        @breadcrumbs ||= []
+        @breadcrumbs << Breadcrumb.new(label, path)
+      end
+
+      def breadcrumbs
+        @breadcrumbs || []
+      end
+    end
+  end
+end

data/app/helpers/panda/core/asset_helper.rb

@@ -0,0 +1,32 @@
+# frozen_string_literal: true
+
+module Panda
+  module Core
+    module AssetHelper
+      # Include Panda Core JavaScript and CSS assets
+      def panda_core_assets
+        Panda::Core::AssetLoader.asset_tags.html_safe
+      end
+
+      # Include only Core JavaScript
+      def panda_core_javascript
+        js_url = Panda::Core::AssetLoader.javascript_url
+        return "" unless js_url
+
+        if js_url.start_with?("/panda-core-assets/")
+          javascript_include_tag(js_url)
+        else
+          javascript_include_tag(js_url, type: "module")
+        end
+      end
+
+      # Include only Core CSS
+      def panda_core_stylesheet
+        css_url = Panda::Core::AssetLoader.css_url
+        return "" unless css_url
+
+        stylesheet_link_tag(css_url)
+      end
+    end
+  end
+end

data/app/javascript/panda/core/application.js

@@ -0,0 +1,9 @@
+import { Application } from "@hotwired/stimulus"
+
+const application = Application.start()
+
+// Configure Stimulus development experience
+application.debug = false
+window.Stimulus = application
+
+export { application }

data/app/javascript/panda/core/controllers/index.js

@@ -0,0 +1,20 @@
+// Import and register Core Stimulus controllers
+import { application } from "../application"
+
+import ThemeFormController from "./theme_form_controller"
+application.register("theme-form", ThemeFormController)
+
+// Import and register TailwindCSS Stimulus Components
+// These are needed for UI components like slideover, modals, alerts, etc.
+import { Alert, Autosave, ColorPreview, Dropdown, Modal, Tabs, Popover, Toggle, Slideover } from "../tailwindcss-stimulus-components"
+application.register('alert', Alert)
+application.register('autosave', Autosave)
+application.register('color-preview', ColorPreview)
+application.register('dropdown', Dropdown)
+application.register('modal', Modal)
+application.register('popover', Popover)
+application.register('slideover', Slideover)
+application.register('tabs', Tabs)
+application.register('toggle', Toggle)
+
+console.debug("[Panda Core] Registered TailwindCSS Stimulus components")

data/app/javascript/panda/core/controllers/theme_form_controller.js

@@ -0,0 +1,25 @@
+import { Controller } from "@hotwired/stimulus";
+
+// Connects to data-controller="theme-form"
+export default class extends Controller {
+  connect() {
+    // Ensure submit button is enabled on connect
+    this.enableSubmitButton();
+  }
+
+  updateTheme(event) {
+    const newTheme = event.target.value;
+    document.documentElement.dataset.theme = newTheme;
+  }
+
+  enableSubmitButton() {
+    // Find the submit button in the form and ensure it's enabled
+    const form = this.element;
+    if (form) {
+      const submitButton = form.querySelector('input[type="submit"], button[type="submit"]');
+      if (submitButton) {
+        submitButton.disabled = false;
+      }
+    }
+  }
+}

data/app/javascript/panda/core/tailwindcss-stimulus-components.js

@@ -0,0 +1,3 @@
+// tailwindcss-stimulus-components@6.1.2 downloaded from https://ga.jspm.io/npm:tailwindcss-stimulus-components@6.1.2/dist/tailwindcss-stimulus-components.module.js
+
+import{Controller as e}from"@hotwired/stimulus";var t=Object.defineProperty;var V=(e,s,a)=>s in e?t(e,s,{enumerable:!0,configurable:!0,writable:!0,value:a}):e[s]=a;var i=(e,t,s)=>V(e,typeof t!="symbol"?t+"":t,s);async function n(e,t,s={}){t?await T(e,s):await b(e,s)}async function T(e,t={}){let{transitionClasses:s,fromClasses:a,toClasses:o,toggleClass:r}=C("Enter",e,t);return v(e,{firstFrame(){e.classList.add(...s.split(" ")),e.classList.add(...a.split(" ")),e.classList.remove(...o.split(" ")),e.classList.remove(...r.split(" "))},secondFrame(){e.classList.remove(...a.split(" ")),e.classList.add(...o.split(" "))},ending(){e.classList.remove(...s.split(" "))}})}async function b(e,t={}){let{transitionClasses:s,fromClasses:a,toClasses:o,toggleClass:r}=C("Leave",e,t);return v(e,{firstFrame(){e.classList.add(...a.split(" ")),e.classList.remove(...o.split(" ")),e.classList.add(...s.split(" "))},secondFrame(){e.classList.remove(...a.split(" ")),e.classList.add(...o.split(" "))},ending(){e.classList.remove(...s.split(" ")),e.classList.add(...r.split(" "))}})}function C(e,t,s){return{transitionClasses:t.dataset[`transition${e}`]||s[e.toLowerCase()]||e.toLowerCase(),fromClasses:t.dataset[`transition${e}From`]||s[`${e.toLowerCase()}From`]||`${e.toLowerCase()}-from`,toClasses:t.dataset[`transition${e}To`]||s[`${e.toLowerCase()}To`]||`${e.toLowerCase()}-to`,toggleClass:t.dataset.toggleClass||s.toggleClass||s.toggle||"hidden"}}function L(e){e._stimulus_transition={timeout:null,interrupted:!1}}function I(e){e._stimulus_transition&&e._stimulus_transition.interrupt&&e._stimulus_transition.interrupt()}function v(e,t){e._stimulus_transition&&I(e);let s,a,o;return L(e),e._stimulus_transition.cleanup=()=>{a||t.firstFrame(),o||t.secondFrame(),t.ending(),e._stimulus_transition=null},e._stimulus_transition.interrupt=()=>{s=!0,e._stimulus_transition.timeout&&clearTimeout(e._stimulus_transition.timeout),e._stimulus_transition.cleanup()},new Promise((r=>{s||requestAnimationFrame((()=>{s||(t.firstFrame(),a=!0,requestAnimationFrame((()=>{s||(t.secondFrame(),o=!0,e._stimulus_transition&&(e._stimulus_transition.timeout=setTimeout((()=>{s||e._stimulus_transition.cleanup(),r()}),w(e))))})))}))}))}function w(e){let t=Number(getComputedStyle(e).transitionDuration.replace(/,.*/,"").replace("s",""))*1e3,s=Number(getComputedStyle(e).transitionDelay.replace(/,.*/,"").replace("s",""))*1e3;return t===0&&(t=Number(getComputedStyle(e).animationDuration.replace("s",""))*1e3),t+s}var s=class extends e{connect(){setTimeout((()=>{T(this.element)}),this.showDelayValue),this.hasDismissAfterValue&&setTimeout((()=>{this.close()}),this.dismissAfterValue)}close(){b(this.element).then((()=>{this.element.remove()}))}};i(s,"values",{dismissAfter:Number,showDelay:{type:Number,default:0}});var a=class extends e{connect(){this.timeout=null}save(){clearTimeout(this.timeout),this.timeout=setTimeout((()=>{this.statusTarget.textContent=this.submittingTextValue,this.formTarget.requestSubmit()}),this.submitDurationValue)}success(){this.setStatus(this.successTextValue)}error(){this.setStatus(this.errorTextValue)}setStatus(e){this.statusTarget.textContent=e,this.timeout=setTimeout((()=>{this.statusTarget.textContent=""}),this.statusDurationValue)}};i(a,"targets",["form","status"]),i(a,"values",{submitDuration:{type:Number,default:1e3},statusDuration:{type:Number,default:2e3},submittingText:{type:String,default:"Saving..."},successText:{type:String,default:"Saved!"},errorText:{type:String,default:"Unable to save."}});var o=class extends e{update(){this.preview=this.colorTarget.value}set preview(e){this.previewTarget.style[this.styleValue]=e;let t=this._getContrastYIQ(e);this.styleValue==="color"?this.previewTarget.style.backgroundColor=t:this.previewTarget.style.color=t}_getContrastYIQ(e){e=e.replace("#","");let t=128,s=parseInt(e.substr(0,2),16),a=parseInt(e.substr(2,2),16),o=parseInt(e.substr(4,2),16);return(s*299+a*587+o*114)/1e3>=t?"#000":"#fff"}};i(o,"targets",["preview","color"]),i(o,"values",{style:{type:String,default:"backgroundColor"}});var r=class extends e{connect(){this.boundBeforeCache=this.beforeCache.bind(this),document.addEventListener("turbo:before-cache",this.boundBeforeCache)}disconnect(){document.removeEventListener("turbo:before-cache",this.boundBeforeCache)}openValueChanged(){n(this.menuTarget,this.openValue,this.transitionOptions),this.openValue===!0&&this.hasMenuItemTarget&&this.menuItemTargets[0].focus()}show(){this.openValue=!0}close(){this.openValue=!1}hide(e){this.closeOnClickOutsideValue&&e.target.nodeType&&this.element.contains(e.target)===!1&&this.openValue&&(this.openValue=!1),this.closeOnEscapeValue&&e.key==="Escape"&&this.openValue&&(this.openValue=!1)}toggle(){this.openValue=!this.openValue}nextItem(e){e.preventDefault(),this.menuItemTargets[this.nextIndex].focus()}previousItem(e){e.preventDefault(),this.menuItemTargets[this.previousIndex].focus()}get currentItemIndex(){return this.menuItemTargets.indexOf(document.activeElement)}get nextIndex(){return Math.min(this.currentItemIndex+1,this.menuItemTargets.length-1)}get previousIndex(){return Math.max(this.currentItemIndex-1,0)}get transitionOptions(){return{enter:this.hasEnterClass?this.enterClass:"transition ease-out duration-100",enterFrom:this.hasEnterFromClass?this.enterFromClass:"transform opacity-0 scale-95",enterTo:this.hasEnterToClass?this.enterToClass:"transform opacity-100 scale-100",leave:this.hasLeaveClass?this.leaveClass:"transition ease-in duration-75",leaveFrom:this.hasLeaveFromClass?this.leaveFromClass:"transform opacity-100 scale-100",leaveTo:this.hasLeaveToClass?this.leaveToClass:"transform opacity-0 scale-95",toggleClass:this.hasToggleClass?this.toggleClass:"hidden"}}beforeCache(){this.openValue=!1,this.menuTarget.classList.add("hidden")}};i(r,"targets",["menu","button","menuItem"]),i(r,"values",{open:{type:Boolean,default:!1},closeOnEscape:{type:Boolean,default:!0},closeOnClickOutside:{type:Boolean,default:!0}}),i(r,"classes",["enter","enterFrom","enterTo","leave","leaveFrom","leaveTo","toggle"]);var l=class extends e{connect(){this.openValue&&this.open(),this.boundBeforeCache=this.beforeCache.bind(this),document.addEventListener("turbo:before-cache",this.boundBeforeCache)}disconnect(){document.removeEventListener("turbo:before-cache",this.boundBeforeCache)}open(){this.dialogTarget.showModal()}close(){this.dialogTarget.setAttribute("closing",""),Promise.all(this.dialogTarget.getAnimations().map((e=>e.finished))).then((()=>{this.dialogTarget.removeAttribute("closing"),this.dialogTarget.close()}))}backdropClose(e){e.target.nodeName=="DIALOG"&&this.close()}show(){this.dialogTarget.show()}hide(){this.close()}beforeCache(){this.close()}};i(l,"targets",["dialog"]),i(l,"values",{open:Boolean});var u=class extends e{openValueChanged(){n(this.contentTarget,this.openValue),this.shouldAutoDismiss&&this.scheduleDismissal()}show(e){this.shouldAutoDismiss&&this.scheduleDismissal(),this.openValue=!0}hide(){this.openValue=!1}toggle(){this.openValue=!this.openValue}get shouldAutoDismiss(){return this.openValue&&this.hasDismissAfterValue}scheduleDismissal(){this.hasDismissAfterValue&&(this.cancelDismissal(),this.timeoutId=setTimeout((()=>{this.hide(),this.timeoutId=void 0}),this.dismissAfterValue))}cancelDismissal(){typeof this.timeoutId=="number"&&(clearTimeout(this.timeoutId),this.timeoutId=void 0)}};i(u,"targets",["content"]),i(u,"values",{dismissAfter:Number,open:{type:Boolean,default:!1}});var h=class extends e{connect(){this.openValue&&this.open(),this.boundBeforeCache=this.beforeCache,document.addEventListener("turbo:before-cache",this.boundBeforeCache)}disconnect(){document.removeEventListener("turbo:before-cache",this.boundBeforeCache)}open(){this.dialogTarget.showModal()}close(){this.dialogTarget.setAttribute("closing",""),Promise.all(this.dialogTarget.getAnimations().map((e=>e.finished))).then((()=>{this.dialogTarget.removeAttribute("closing"),this.dialogTarget.close()}))}backdropClose(e){e.target.nodeName=="DIALOG"&&this.close()}show(){this.open()}hide(){this.close()}beforeCache(){this.close()}};i(h,"targets",["dialog"]),i(h,"values",{open:Boolean});var c=class extends e{initialize(){this.updateAnchorValue&&this.anchor&&(this.indexValue=this.tabTargets.findIndex((e=>e.id===this.anchor)))}connect(){this.showTab()}change(e){e.currentTarget.tagName==="SELECT"?this.indexValue=e.currentTarget.selectedIndex:e.currentTarget.dataset.index?this.indexValue=e.currentTarget.dataset.index:e.currentTarget.dataset.id?this.indexValue=this.tabTargets.findIndex((t=>t.id==e.currentTarget.dataset.id)):this.indexValue=this.tabTargets.indexOf(e.currentTarget)}nextTab(){this.indexValue=Math.min(this.indexValue+1,this.tabsCount-1)}previousTab(){this.indexValue=Math.max(this.indexValue-1,0)}firstTab(){this.indexValue=0}lastTab(){this.indexValue=this.tabsCount-1}indexValueChanged(){if(this.showTab(),this.dispatch("tab-change",{target:this.tabTargets[this.indexValue],detail:{activeIndex:this.indexValue}}),this.updateAnchorValue){let e=this.tabTargets[this.indexValue].id;if(this.scrollToAnchorValue)location.hash=e;else{let t=window.location.href.split("#")[0]+"#"+e;typeof Turbo<"u"?Turbo.navigator.history.replace(new URL(t)):history.replaceState({},document.title,t)}}}showTab(){this.panelTargets.forEach(((e,t)=>{let s=this.tabTargets[t];t===this.indexValue?(e.classList.remove("hidden"),s.ariaSelected="true",s.dataset.active=!0,this.hasInactiveTabClass&&s?.classList?.remove(...this.inactiveTabClasses),this.hasActiveTabClass&&s?.classList?.add(...this.activeTabClasses)):(e.classList.add("hidden"),s.ariaSelected=null,delete s.dataset.active,this.hasActiveTabClass&&s?.classList?.remove(...this.activeTabClasses),this.hasInactiveTabClass&&s?.classList?.add(...this.inactiveTabClasses))})),this.hasSelectTarget&&(this.selectTarget.selectedIndex=this.indexValue),this.scrollActiveTabIntoViewValue&&this.scrollToActiveTab()}scrollToActiveTab(){let e=this.element.querySelector("[aria-selected]");e&&e.scrollIntoView({inline:"center"})}get tabsCount(){return this.tabTargets.length}get anchor(){return document.URL.split("#").length>1?document.URL.split("#")[1]:null}};i(c,"classes",["activeTab","inactiveTab"]),i(c,"targets",["tab","panel","select"]),i(c,"values",{index:0,updateAnchor:Boolean,scrollToAnchor:Boolean,scrollActiveTabIntoView:Boolean});var d=class extends e{toggle(e){this.openValue=!this.openValue,this.animate()}toggleInput(e){this.openValue=e.target.checked,this.animate()}hide(){this.openValue=!1,this.animate()}show(){this.openValue=!0,this.animate()}animate(){this.toggleableTargets.forEach((e=>{n(e,this.openValue)}))}};i(d,"targets",["toggleable"]),i(d,"values",{open:{type:Boolean,default:!1}});export{s as Alert,a as Autosave,o as ColorPreview,r as Dropdown,l as Modal,u as Popover,h as Slideover,c as Tabs,d as Toggle,n as transition};

data/app/models/panda/core/application_record.rb

@@ -0,0 +1,9 @@
+# frozen_string_literal: true
+
+module Panda
+  module Core
+    class ApplicationRecord < ActiveRecord::Base
+      self.abstract_class = true
+    end
+  end
+end

data/app/models/panda/core/breadcrumb.rb

@@ -0,0 +1,17 @@
+# frozen_string_literal: true
+
+module Panda
+  module Core
+    class Breadcrumb
+      attr_reader :name, :path
+
+      def initialize(name, path)
+        @name = name
+        @path = path
+      end
+
+      # Alias for compatibility
+      alias_method :label, :name
+    end
+  end
+end

data/app/models/panda/core/current.rb

@@ -0,0 +1,16 @@
+# frozen_string_literal: true
+
+module Panda
+  module Core
+    class Current < ActiveSupport::CurrentAttributes
+      attribute :user, :request_id, :user_agent, :ip_address, :root, :page
+
+      resets { Time.zone = nil }
+
+      def user=(user)
+        super
+        Time.zone = user.try(:time_zone)
+      end
+    end
+  end
+end

data/app/models/panda/core/user.rb

@@ -0,0 +1,51 @@
+# frozen_string_literal: true
+
+module Panda
+  module Core
+    class User < ApplicationRecord
+      self.table_name = "panda_core_users"
+      
+      validates :email, presence: true, uniqueness: {case_sensitive: false}
+
+      before_save :downcase_email
+      
+      # Scopes
+      scope :admin, -> { where(admin: true) }
+
+      def self.find_or_create_from_auth_hash(auth_hash)
+        user = find_by(email: auth_hash.info.email.downcase)
+        return user if user
+
+        # Parse name into first and last
+        full_name = auth_hash.info.name || "Unknown User"
+        name_parts = full_name.split(" ", 2)
+        
+        create!(
+          email: auth_hash.info.email.downcase,
+          firstname: name_parts[0] || "Unknown",
+          lastname: name_parts[1] || "",
+          image_url: auth_hash.info.image,
+          admin: User.count.zero? # First user is admin
+        )
+      end
+
+      def admin?
+        admin == true
+      end
+      
+      def name
+        "#{firstname} #{lastname}".strip
+      end
+
+      def active_for_authentication?
+        true
+      end
+
+      private
+
+      def downcase_email
+        self.email = email.downcase if email.present?
+      end
+    end
+  end
+end

data/app/views/layouts/panda/core/admin.html.erb

@@ -0,0 +1,59 @@
+<!DOCTYPE html>
+<html lang="en" class="h-full bg-white">
+  <head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width,initial-scale=1">
+    <%= csrf_meta_tags %>
+    <%= csp_meta_tag %>
+    
+    <title><%= content_for(:title) || "Panda Admin" %></title>
+    
+    <%= stylesheet_link_tag "application", "data-turbo-track": "reload" %>
+    
+    <% if Rails.env.test? || ENV["CI"].present? %>
+      <!-- Load compiled Panda Core assets for test environment -->
+      <link rel="stylesheet" href="/panda-core-assets/panda-core-<%= Panda::Core::VERSION %>.css">
+      <script src="/panda-core-assets/panda-core-<%= Panda::Core::VERSION %>.js" defer></script>
+      
+      <% if defined?(Panda::CMS) %>
+        <!-- Also load Panda CMS assets if CMS is present -->
+        <link rel="stylesheet" href="/panda-cms-assets/panda-cms-<%= Panda::CMS::VERSION %>.css">
+        <script src="/panda-cms-assets/panda-cms-<%= Panda::CMS::VERSION %>.js" defer></script>
+      <% end %>
+    <% else %>
+      <%= javascript_include_tag "application", "data-turbo-track": "reload", defer: true %>
+    <% end %>
+    
+    <%= yield :admin_head_extra %>
+  </head>
+  
+  <body class="h-full">
+    <div class="flex h-full" id="panda-container">
+      <div class="absolute top-0 w-full lg:flex lg:fixed lg:inset-y-0 lg:z-50 lg:flex-col lg:w-72">
+        <div class="flex overflow-y-auto flex-col gap-y-5 px-4 pb-4 max-h-16 bg-gradient-to-br lg:max-h-full grow from-gray-900 to-gray-700">
+          <%= render "panda/core/admin/shared/sidebar" %>
+          <%= yield :admin_sidebar_extra %>
+        </div>
+      </div>
+      
+      <div class="flex flex-col flex-1 mt-16 ml-0 lg:mt-0 lg:ml-72" id="panda-inner-container">
+        <section id="panda-main" class="flex flex-row h-full">
+          <div class="flex-1 h-full" id="panda-core-primary-content">
+            <%= render "panda/core/admin/shared/breadcrumbs" if respond_to?(:breadcrumbs) %>
+            <%= render "panda/core/admin/shared/flash" %>
+            
+            <%= yield %>
+            
+            <% if content_for?(:sidebar) %>
+              <%= render "panda/core/admin/shared/slideover" do %>
+                <%= yield :sidebar %>
+              <% end %>
+            <% end %>
+          </div>
+        </section>
+        
+        <%= yield :admin_footer_extra %>
+      </div>
+    </div>
+  </body>
+</html>

data/app/views/panda/core/admin/dashboard/show.html.erb

@@ -0,0 +1,27 @@
+<div class="" data-controller="dashboard">
+  <%= render Panda::Core::Admin::ContainerComponent.new do |container| %>
+    <% container.with_heading(text: "Dashboard", level: 1) %>
+    
+    <% # Hook for dashboard widgets %>
+    <% if Panda::Core.configuration.admin_dashboard_widgets %>
+      <% widgets = Panda::Core.configuration.admin_dashboard_widgets.call(current_user) %>
+      <% if widgets && widgets.any? %>
+        <div class="grid grid-cols-1 gap-5 mt-5 sm:grid-cols-3">
+          <% widgets.each do |widget| %>
+            <%= render widget %>
+          <% end %>
+        </div>
+      <% else %>
+        <div class="mt-5 p-6 bg-white shadow rounded-lg">
+          <h2 class="text-lg font-medium text-gray-900">Welcome to Panda Core Admin</h2>
+          <p class="mt-1 text-sm text-gray-500">Configure dashboard widgets to display custom content here.</p>
+        </div>
+      <% end %>
+    <% else %>
+      <div class="mt-5 p-6 bg-white shadow rounded-lg">
+        <h2 class="text-lg font-medium text-gray-900">Welcome to Panda Core Admin</h2>
+        <p class="mt-1 text-sm text-gray-500">No dashboard widgets configured.</p>
+      </div>
+    <% end %>
+  <% end %>
+</div>

data/app/views/panda/core/admin/my_profile/edit.html.erb

@@ -0,0 +1,49 @@
+<%= render Panda::Core::Admin::ContainerComponent.new do |component| %>
+  <% component.with_heading(text: "My Profile", level: 1) %>
+
+  <%= form_with model: user,
+                url: admin_my_profile_path,
+                method: :patch,
+                local: true,
+                data: { controller: "theme-form" } do |f| %>
+    <% if user.errors.any? %>
+      <div class="mb-4 p-4 bg-red-50 border border-red-200 rounded-md">
+        <div class="text-sm text-red-600">
+          <% user.errors.full_messages.each do |message| %>
+            <p><%= message %></p>
+          <% end %>
+        </div>
+      </div>
+    <% end %>
+
+    <div class="space-y-4">
+      <div class="field">
+        <%= f.label :firstname, "First Name", class: "block text-sm font-medium text-gray-700" %>
+        <%= f.text_field :firstname, class: "mt-1 block w-full rounded-md border-gray-300 shadow-sm focus:border-indigo-500 focus:ring-indigo-500 sm:text-sm" %>
+      </div>
+
+      <div class="field">
+        <%= f.label :lastname, "Last Name", class: "block text-sm font-medium text-gray-700" %>
+        <%= f.text_field :lastname, class: "mt-1 block w-full rounded-md border-gray-300 shadow-sm focus:border-indigo-500 focus:ring-indigo-500 sm:text-sm" %>
+      </div>
+
+      <div class="field">
+        <%= f.label :email, class: "block text-sm font-medium text-gray-700" %>
+        <%= f.email_field :email, class: "mt-1 block w-full rounded-md border-gray-300 shadow-sm focus:border-indigo-500 focus:ring-indigo-500 sm:text-sm" %>
+      </div>
+
+      <div class="field">
+        <%= f.label :current_theme, "Theme", class: "block text-sm font-medium text-gray-700" %>
+        <%= f.select :current_theme,
+                     options_for_select(Panda::Core.configuration.available_themes || [["Default", "default"], ["Sky", "sky"]], user.current_theme),
+                     {},
+                     class: "mt-1 block w-full rounded-md border-gray-300 shadow-sm focus:border-indigo-500 focus:ring-indigo-500 sm:text-sm",
+                     data: { action: "change->theme-form#updateTheme" } %>
+      </div>
+    </div>
+
+    <%= f.submit "Update Profile",
+        class: "btn btn-primary mt-6",
+        data: { disable_with: "Saving..." } %>
+  <% end %>
+<% end %>

data/app/views/panda/core/admin/sessions/new.html.erb

@@ -0,0 +1,38 @@
+<div class="flex flex-col justify-center py-12 px-6 min-h-full text-center lg:px-8">
+  <div class="text-center sm:mx-auto sm:w-full sm:max-w-sm">
+    <% if Panda::Core.configuration.login_logo_path %>
+      <img src="<%= Panda::Core.configuration.login_logo_path %>" class="py-2 mx-auto w-auto h-32">
+    <% end %>
+    <h2 class="mt-10 mb-6 text-2xl font-bold text-center text-gray-900">
+      <%= Panda::Core.configuration.login_page_title || "Sign in to your account" %>
+    </h2>
+  </div>
+  <% if @providers&.any? || Panda::Core.configuration.authentication_providers.any? %>
+    <% providers = @providers || Panda::Core.configuration.authentication_providers.keys %>
+    <% providers.each do |provider| %>
+      <div class="mt-4 text-center sm:mx-auto sm:w-full sm:max-w-sm">
+        <%= form_tag "#{Panda::Core.configuration.admin_path}/auth/#{provider}", method: "post", data: {turbo: false} do %>
+          <button type="submit" id="button-sign-in-<%= provider %>" class="inline-flex gap-x-2 items-center py-2.5 px-3.5 mx-auto mb-4 bg-white rounded-md border min-w-56 border-neutral-400">
+            <% if defined?(FontAwesome) %>
+              <i class="fa-brands fa-<%= provider %> text-xl mr-1"></i>
+            <% end %>
+            Sign in with <%= provider.to_s.humanize %>
+          </button>
+        <% end %>
+      </div>
+    <% end %>
+  <% else %>
+    <div class="rounded-md bg-yellow-50 p-4 sm:mx-auto sm:w-full sm:max-w-sm">
+      <div class="flex">
+        <div class="ml-3">
+          <h3 class="text-sm font-medium text-yellow-800">
+            No authentication providers configured
+          </h3>
+          <div class="mt-2 text-sm text-yellow-700">
+            <p>Please configure at least one authentication provider in your Panda Core configuration.</p>
+          </div>
+        </div>
+      </div>
+    </div>
+  <% end %>
+</div>