RubyGems - plutonium - Versions diffs - 0.39.1 → 0.40.0 - Mend

plutonium 0.39.1 → 0.40.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (120) hide show

data/lib/generators/pu/invites/templates/invitable/invitation.html.erb.tt ADDED Viewed

@@ -0,0 +1,45 @@
+<!DOCTYPE html>
+<html>
+  <head>
+    <meta http-equiv="Content-Type" content="text/html; charset=utf-8">
+    <style>
+      .email-container {
+        font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, sans-serif;
+        max-width: 600px;
+        margin: 0 auto;
+        padding: 20px;
+      }
+      .button {
+        display: inline-block;
+        padding: 12px 24px;
+        background-color: #3b82f6;
+        color: white;
+        text-decoration: none;
+        border-radius: 6px;
+        margin: 20px 0;
+      }
+    </style>
+  </head>
+  <body>
+    <div class="email-container">
+      <h2>You've been invited to <%%= @user_invite.entity.to_label %></h2>
+      <p>Hi there,</p>
+      <p><%%= @user_invite.invited_by.email %> has invited you to join <%%= @user_invite.entity.to_label %> as a <%= model_class.titleize.downcase %>.</p>
+      <p>Click the link below to accept your invitation:</p>
+      <%%= link_to "Accept Invitation", @invitation_url, class: "button" %>
+      <p>Or copy and paste this URL into your browser:</p>
+      <p><%%= @invitation_url %></p>
+      <%% if @user_invite.expires_at.present? %>
+        <p><small>This invitation will expire on <%%= @user_invite.expires_at.strftime("%B %d, %Y at %l:%M %p") %></small></p>
+      <%% end %>
+      <p>If you didn't expect this invitation, you can safely ignore this email.</p>
+    </div>
+  </body>
+</html>

data/lib/generators/pu/invites/templates/invitable/invitation.text.erb.tt ADDED Viewed

@@ -0,0 +1,15 @@
+You've been invited to <%%= @user_invite.entity.to_label %>
+Hi there,
+<%%= @user_invite.invited_by.email %> has invited you to join <%%= @user_invite.entity.to_label %> as a <%= model_class.titleize.downcase %>.
+Click the link below to accept your invitation:
+<%%= @invitation_url %>
+<%% if @user_invite.expires_at.present? %>
+This invitation will expire on <%%= @user_invite.expires_at.strftime("%B %d, %Y at %l:%M %p") %>
+<%% end %>
+If you didn't expect this invitation, you can safely ignore this email.

data/lib/generators/pu/invites/templates/invitable/invite_user_interaction.rb.tt ADDED Viewed

@@ -0,0 +1,33 @@
+# frozen_string_literal: true
+class <%= model_class %>::InviteUserInteraction < Plutonium::Resource::Interaction
+  include Plutonium::Invites::Concerns::InviteUser
+  input :email
+  private
+  def entity
+    current_entity
+  end
+  def invitable
+    resource
+  end
+  def role
+    :<%= role %>
+  end
+<% if membership_model != "EntityUser" -%>
+  def membership_class
+    <%= membership_model %>
+  end
+<% end -%>
+<% if user_model != "User" -%>
+  def user_class
+    <%= user_model %>
+  end
+<% end -%>
+end

data/lib/generators/pu/invites/templates/packages/invites/app/controllers/invites/user_invitations_controller.rb.tt ADDED Viewed

@@ -0,0 +1,77 @@
+# frozen_string_literal: true
+module Invites
+  class UserInvitationsController < ApplicationController
+    include Plutonium::Invites::Controller
+    layout "invites/invitation"
+    private
+    def invite_class
+      Invites::UserInvite
+    end
+    def user_class
+      <%= user_model %>
+    end
+    def after_accept_path
+      "/"
+    end
+    def login_path
+<% if rodauth? -%>
+      rodauth(:<%= rodauth_config %>).login_path
+<% else -%>
+      "/login"
+<% end -%>
+    end
+    def current_user
+<% if rodauth? -%>
+      rodauth(:<%= rodauth_config %>).rails_account if rodauth(:<%= rodauth_config %>).logged_in?
+<% else -%>
+      # TODO: Implement based on your authentication system
+      nil
+<% end -%>
+    end
+<% if rodauth? -%>
+    def create_user_for_signup(email, password)
+      rodauth_instance = rodauth(:<%= rodauth_config %>)
+      password_hash = rodauth_instance.password_hash(password)
+      if email.downcase == @invite.email.downcase
+        # Email matches invitation - create verified account directly
+        <%= user_model %>.create!(
+          email: email,
+          password_hash: password_hash,
+          status: 2 # verified
+        )
+      else
+        # Different email - normal flow with verification email
+        rodauth_instance.create_account(login: email, password: password)
+        <%= user_model %>.find_by(email: email)
+      end
+    end
+    def sign_in_user(user)
+      rodauth(:<%= rodauth_config %>).account_from_login(user.email)
+      rodauth(:<%= rodauth_config %>).login("signup")
+    end
+    def rodauth(name = :<%= rodauth_config %>)
+      request.env["rodauth.#{name}"]
+    end
+<% else -%>
+    def create_user_for_signup(email, password)
+      raise NotImplementedError, "Implement create_user_for_signup based on your auth system"
+    end
+    def sign_in_user(user)
+      # Implement based on your authentication system
+    end
+<% end -%>
+  end
+end

data/lib/generators/pu/invites/templates/packages/invites/app/controllers/invites/welcome_controller.rb.tt ADDED Viewed

@@ -0,0 +1,68 @@
+# frozen_string_literal: true
+module Invites
+  class WelcomeController < ApplicationController
+    include Plutonium::Invites::PendingInviteCheck
+    layout "invites/invitation"
+<% if rodauth? -%>
+    before_action :require_authentication
+<% end -%>
+    def index
+      @invite = pending_invite
+      if @invite
+        render :pending_invitation
+      else
+        redirect_to after_welcome_path, allow_other_host: false
+      end
+    end
+    private
+    def invite_class
+      Invites::UserInvite
+    end
+    # Returns the path to redirect to after the welcome flow completes.
+    # This reads from session[:after_welcome_redirect] which should be set
+    # by the after_login hook in Rodauth.
+    def after_welcome_path
+      session.delete(:after_welcome_redirect) || default_redirect_path
+    end
+    def default_redirect_path
+      "/"
+    end
+<% if rodauth? -%>
+    def require_authentication
+      redirect_to login_path unless current_user
+    end
+    def current_user
+      rodauth(:<%= rodauth_config %>).rails_account if rodauth(:<%= rodauth_config %>).logged_in?
+    end
+    def login_path
+      rodauth(:<%= rodauth_config %>).login_path
+    end
+    def rodauth(name = :<%= rodauth_config %>)
+      request.env["rodauth.#{name}"]
+    end
+<% else -%>
+    def require_authentication
+      # TODO: Implement based on your authentication system
+      redirect_to "/login" unless current_user
+    end
+    def current_user
+      # TODO: Implement based on your authentication system
+      nil
+    end
+<% end -%>
+  end
+end

data/lib/generators/pu/invites/templates/packages/invites/app/definitions/invites/user_invite_definition.rb.tt ADDED Viewed

@@ -0,0 +1,23 @@
+# frozen_string_literal: true
+module Invites
+  class UserInviteDefinition < Invites::ResourceDefinition
+    action :resend, interaction: Invites::ResendInviteInteraction, collection_record_action: false
+    action :cancel, interaction: Invites::CancelInviteInteraction, collection_record_action: false
+    search do |scope, query|
+      scope.where("email ILIKE ?", "%#{query}%")
+    end
+    # State scopes
+    scope :pending
+    scope :accepted
+    scope :expired
+    scope :cancelled
+    # Role scopes
+<% roles.each do |role| -%>
+    scope :<%= role %>
+<% end -%>
+  end
+end

data/lib/generators/pu/invites/templates/packages/invites/app/interactions/invites/cancel_invite_interaction.rb.tt ADDED Viewed

@@ -0,0 +1,7 @@
+# frozen_string_literal: true
+module Invites
+  class CancelInviteInteraction < Plutonium::Resource::Interaction
+    include Plutonium::Invites::Concerns::CancelInvite
+  end
+end

data/lib/generators/pu/invites/templates/packages/invites/app/interactions/invites/resend_invite_interaction.rb.tt ADDED Viewed

@@ -0,0 +1,7 @@
+# frozen_string_literal: true
+module Invites
+  class ResendInviteInteraction < Invites::ResourceInteraction
+    include Plutonium::Invites::Concerns::ResendInvite
+  end
+end

data/lib/generators/pu/invites/templates/packages/invites/app/mailers/invites/user_invite_mailer.rb.tt ADDED Viewed

@@ -0,0 +1,34 @@
+# frozen_string_literal: true
+module Invites
+  class UserInviteMailer < ApplicationMailer
+    def invitation(user_invite)
+      @user_invite = user_invite
+      @invitation_url = invitation_url(token: user_invite.token)
+      mail(
+        to: user_invite.email,
+        subject: invitation_subject,
+        template_name: invitation_template_name
+      )
+    end
+    private
+    def invitation_subject
+      "You've been invited to join #{@user_invite.entity.to_label}"
+    end
+    def invitation_template_name
+      return "invitation" unless @user_invite.invitable_type.present?
+      # e.g., "TenantProfile" -> "invitation_tenant_profile"
+      template = "invitation_#{@user_invite.invitable_type.underscore}"
+      template_exists?(template) ? template : "invitation"
+    end
+    def template_exists?(name)
+      lookup_context.exists?(name, _prefixes, false, [], formats: [:html, :text])
+    end
+  end
+end

data/lib/generators/pu/invites/templates/packages/invites/app/models/invites/user_invite.rb.tt ADDED Viewed

@@ -0,0 +1,41 @@
+# frozen_string_literal: true
+module Invites
+  class UserInvite < Invites::ResourceRecord
+    include Plutonium::Invites::Concerns::InviteToken
+    enum :role, <%= roles_enum %>
+    encrypts :token, deterministic: true
+    belongs_to :<%= entity_table %>
+    belongs_to :invited_by, polymorphic: true
+    belongs_to :<%= user_table %>, optional: true
+    belongs_to :invitable, polymorphic: true, optional: true
+    validates :role, presence: true
+    # Implement required methods from InviteToken concern
+    def invitation_mailer
+      Invites::UserInviteMailer
+    end
+    def enforce_domain
+<% if enforce_domain? -%>
+      raise NotImplementedError, "#{self.class}#enforce_domain must return the domain to enforce"
+<% else -%>
+      nil
+<% end -%>
+    end
+    def create_membership_for(user)
+      <%= membership_model %>.create!(<%= entity_table %>: <%= entity_table %>, user: user, role: role)
+    end
+<% if entity_table != "entity" -%>
+    # Alias for InviteToken concern compatibility
+    alias_method :entity, :<%= entity_table %>
+<% end -%>
+  end
+end

data/lib/generators/pu/invites/templates/packages/invites/app/policies/invites/user_invite_policy.rb.tt ADDED Viewed

@@ -0,0 +1,33 @@
+# frozen_string_literal: true
+module Invites
+  class UserInvitePolicy < Invites::ResourcePolicy
+    def create?
+      false # Created via InviteUserInteraction
+    end
+    def read?
+      true
+    end
+    def cancel?
+      record.pending?
+    end
+    def resend?
+      record.pending?
+    end
+    def permitted_attributes_for_create
+      [:entity, :email, :role, :invited_by, :expires_at]
+    end
+    def permitted_attributes_for_read
+      [:entity, :email, :role, :state, :invited_by, :expires_at, :accepted_at, :<%= user_table %>]
+    end
+    def permitted_associations
+      []
+    end
+  end
+end

data/lib/generators/pu/invites/templates/packages/invites/app/views/invites/user_invitations/error.html.erb.tt ADDED Viewed

@@ -0,0 +1,24 @@
+<div class="text-center">
+  <div class="mb-4">
+    <svg class="mx-auto h-12 w-12 text-danger-500" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+      <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 8v4m0 4h.01M21 12a9 9 0 11-18 0 9 9 0 0118 0z" />
+    </svg>
+  </div>
+  <h1 class="text-lg font-bold leading-tight tracking-tight text-[var(--pu-text)] md:text-xl mb-2">
+    <%%= @error_title %>
+  </h1>
+  <p class="text-[var(--pu-text-muted)] mb-6"><%%= @error_message %></p>
+  <div class="space-y-3">
+    <%%= link_to "Go to Home", "/",
+        class: "inline-block pu-btn pu-btn-md pu-btn-primary" %>
+    <%% unless current_user %>
+      <p class="text-sm text-[var(--pu-text-subtle)] mt-4">
+        Need a new invitation? Contact your administrator.
+      </p>
+    <%% end %>
+  </div>
+</div>

data/lib/generators/pu/invites/templates/packages/invites/app/views/invites/user_invitations/landing.html.erb.tt ADDED Viewed

@@ -0,0 +1,40 @@
+<h1 class="text-lg font-bold leading-tight tracking-tight text-[var(--pu-text)] md:text-xl text-center">
+  You're Invited!
+</h1>
+<div class="mb-6 p-4 bg-[var(--pu-surface-alt)] border border-[var(--pu-border)] rounded-[var(--pu-radius-lg)]">
+  <div class="text-center">
+    <p class="text-[var(--pu-text-muted)] mb-2">You've been invited to join:</p>
+    <p class="text-xl font-bold text-primary-600 dark:text-primary-400"><%%= @invite.entity.to_label %></p>
+    <div class="mt-3 text-sm text-[var(--pu-text-muted)]">
+      <p><strong>Role:</strong> <%%= @invite.role.capitalize %></p>
+      <p><strong>Invited by:</strong> <%%= @invite.invited_by.email %></p>
+      <%% if @invite.expires_at.present? %>
+        <p><strong>Expires:</strong> <%%= @invite.expires_at.strftime("%B %d, %Y") %></p>
+      <%% end %>
+    </div>
+  </div>
+</div>
+<div class="space-y-4">
+  <div class="text-center">
+    <p class="text-[var(--pu-text-muted)] mb-4">To accept this invitation, please:</p>
+  </div>
+  <%%= link_to "Create Account", invitation_signup_path(token: params[:token]),
+      class: "w-full block pu-btn pu-btn-md pu-btn-primary text-center" %>
+  <div class="text-center">
+    <span class="text-[var(--pu-text-subtle)]">or</span>
+  </div>
+  <%%= link_to "Sign In", login_path,
+      class: "w-full block pu-btn pu-btn-md pu-btn-outline text-center" %>
+  <div class="mt-6 pt-4 border-t border-[var(--pu-border)] text-center">
+    <p class="text-xs text-[var(--pu-text-subtle)]">
+      Don't want to join? You can simply ignore this invitation.
+    </p>
+  </div>
+</div>

data/lib/generators/pu/invites/templates/packages/invites/app/views/invites/user_invitations/show.html.erb.tt ADDED Viewed

@@ -0,0 +1,39 @@
+<h1 class="text-lg font-bold leading-tight tracking-tight text-[var(--pu-text)] md:text-xl">
+  Accept Invitation
+</h1>
+<div class="mb-6 p-4 bg-[var(--pu-surface-alt)] border border-[var(--pu-border)] rounded-[var(--pu-radius-lg)]">
+  <div class="text-center">
+    <p class="text-[var(--pu-text-muted)] mb-2">You've been invited to join:</p>
+    <p class="text-xl font-semibold text-primary-600 dark:text-primary-400"><%%= @invite.entity.to_label %></p>
+  </div>
+</div>
+<div class="space-y-4">
+  <div>
+    <p class="text-[var(--pu-text-muted)] mb-2">Role:</p>
+    <p class="text-lg capitalize font-medium text-[var(--pu-text)]"><%%= @invite.role %></p>
+  </div>
+  <div>
+    <p class="text-[var(--pu-text-muted)] mb-2">Invited by:</p>
+    <p class="text-lg font-medium text-[var(--pu-text)]"><%%= @invite.invited_by.email %></p>
+  </div>
+  <%% if @invite.expires_at.present? %>
+    <div class="p-3 bg-warning-50 dark:bg-warning-900/20 border border-warning-200 dark:border-warning-800 rounded-[var(--pu-radius-md)]">
+      <p class="text-sm text-warning-800 dark:text-warning-200">
+        This invitation expires on <%%= @invite.expires_at.strftime("%B %d, %Y at %l:%M %p") %>
+      </p>
+    </div>
+  <%% end %>
+  <%%= form_with url: accept_invitation_path(token: params[:token]), method: :post, local: true do |form| %>
+    <div class="space-y-3 pt-4">
+      <%%= form.submit "Accept Invitation",
+          class: "w-full pu-btn pu-btn-md pu-btn-primary cursor-pointer" %>
+      <%%= link_to "Cancel", "/",
+          class: "w-full block pu-btn pu-btn-md pu-btn-outline text-center" %>
+    </div>
+  <%% end %>
+</div>

data/lib/generators/pu/invites/templates/packages/invites/app/views/invites/user_invitations/signup.html.erb.tt ADDED Viewed

@@ -0,0 +1,49 @@
+<div class="mb-6 p-4 bg-[var(--pu-surface-alt)] border border-[var(--pu-border)] rounded-[var(--pu-radius-lg)]">
+  <div class="text-center">
+    <p class="text-sm text-[var(--pu-text-muted)] mb-1">Joining:</p>
+    <p class="font-bold text-primary-600 dark:text-primary-400"><%%= @invite.entity.to_label %></p>
+    <p class="text-sm text-[var(--pu-text-muted)] mt-1">as <%%= @invite.role.capitalize %></p>
+  </div>
+</div>
+<h1 class="text-lg font-bold leading-tight tracking-tight text-[var(--pu-text)] md:text-xl">
+  Create Your Account
+</h1>
+<%%= form_with url: invitation_signup_path(token: @invite.token), method: :post, local: true, class: "space-y-4", data: { turbo: false } do |form| %>
+  <div>
+    <label for="email" class="pu-label">Email</label>
+    <%% if @invite.enforce_email? %>
+      <input type="email" name="email" value="<%%= @invite.email %>" disabled
+             class="pu-input cursor-not-allowed opacity-60">
+      <input type="hidden" name="email" value="<%%= @invite.email %>">
+      <p class="pu-hint">This email is required for your invitation</p>
+    <%% else %>
+      <%%= form.email_field :email, value: @invite.email, required: true,
+          placeholder: "you@example.com",
+          class: "pu-input" %>
+      <%% if (domain = @invite.enforce_domain) %>
+        <p class="pu-hint">Must be from <%%= domain %> domain</p>
+      <%% else %>
+        <p class="pu-hint">You can use a different email if needed</p>
+      <%% end %>
+    <%% end %>
+  </div>
+  <div>
+    <label for="password" class="pu-label">Password</label>
+    <%%= form.password_field :password, required: true, class: "pu-input" %>
+  </div>
+  <div>
+    <label for="password_confirmation" class="pu-label">Confirm Password</label>
+    <%%= form.password_field :password_confirmation, required: true, class: "pu-input" %>
+  </div>
+  <div class="space-y-3 pt-4">
+    <%%= form.submit "Create Account",
+        class: "w-full pu-btn pu-btn-md pu-btn-primary cursor-pointer" %>
+    <%%= link_to "Back", invitation_path(token: @invite.token),
+        class: "w-full block pu-btn pu-btn-md pu-btn-outline text-center" %>
+  </div>
+<%% end %>

data/lib/generators/pu/invites/templates/packages/invites/app/views/invites/user_invite_mailer/invitation.html.erb.tt ADDED Viewed

@@ -0,0 +1,45 @@
+<!DOCTYPE html>
+<html>
+  <head>
+    <meta http-equiv="Content-Type" content="text/html; charset=utf-8">
+    <style>
+      .email-container {
+        font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, sans-serif;
+        max-width: 600px;
+        margin: 0 auto;
+        padding: 20px;
+      }
+      .button {
+        display: inline-block;
+        padding: 12px 24px;
+        background-color: #3b82f6;
+        color: white;
+        text-decoration: none;
+        border-radius: 6px;
+        margin: 20px 0;
+      }
+    </style>
+  </head>
+  <body>
+    <div class="email-container">
+      <h2>You've been invited to <%%= @user_invite.entity.to_label %></h2>
+      <p>Hi there,</p>
+      <p><%%= @user_invite.invited_by.email %> has invited you to join <%%= @user_invite.entity.to_label %> as a <%%= @user_invite.role %>.</p>
+      <p>Click the link below to accept your invitation:</p>
+      <%%= link_to "Accept Invitation", @invitation_url, class: "button" %>
+      <p>Or copy and paste this URL into your browser:</p>
+      <p><%%= @invitation_url %></p>
+      <%% if @user_invite.expires_at.present? %>
+        <p><small>This invitation will expire on <%%= @user_invite.expires_at.strftime("%B %d, %Y at %l:%M %p") %></small></p>
+      <%% end %>
+      <p>If you didn't expect this invitation, you can safely ignore this email.</p>
+    </div>
+  </body>
+</html>

data/lib/generators/pu/invites/templates/packages/invites/app/views/invites/user_invite_mailer/invitation.text.erb.tt ADDED Viewed

@@ -0,0 +1,15 @@
+You've been invited to <%%= @user_invite.entity.to_label %>
+======================================================
+Hi there,
+<%%= @user_invite.invited_by.email %> has invited you to join <%%= @user_invite.entity.to_label %> as a <%%= @user_invite.role %>.
+Accept your invitation by visiting this link:
+<%%= @invitation_url %>
+<%% if @user_invite.expires_at.present? %>
+This invitation will expire on <%%= @user_invite.expires_at.strftime("%B %d, %Y at %l:%M %p") %>
+<%% end %>
+If you didn't expect this invitation, you can safely ignore this email.

data/lib/generators/pu/invites/templates/packages/invites/app/views/invites/welcome/pending_invitation.html.erb.tt ADDED Viewed

@@ -0,0 +1,23 @@
+<h1 class="text-lg font-bold leading-tight tracking-tight text-[var(--pu-text)] md:text-xl text-center">
+  Pending Invitation Found
+</h1>
+<div class="mb-6 p-4 bg-[var(--pu-surface-alt)] border border-[var(--pu-border)] rounded-[var(--pu-radius-lg)]">
+  <div class="text-center">
+    <p class="text-[var(--pu-text-muted)] mb-2">You have a pending invitation to join:</p>
+    <p class="text-xl font-bold text-primary-600 dark:text-primary-400"><%%= @invite.entity.to_label %></p>
+    <div class="mt-3 text-sm text-[var(--pu-text-muted)]">
+      <p><strong>Role:</strong> <%%= @invite.role.capitalize %></p>
+      <p><strong>Invited by:</strong> <%%= @invite.invited_by.email %></p>
+    </div>
+  </div>
+</div>
+<div class="space-y-4">
+  <%%= link_to "View Invitation", invitation_path(token: @invite.token),
+      class: "w-full block pu-btn pu-btn-md pu-btn-primary text-center" %>
+  <%%= link_to "Skip for Now", "/",
+      class: "w-full block pu-btn pu-btn-md pu-btn-outline text-center" %>
+</div>

data/lib/generators/pu/invites/templates/packages/invites/app/views/layouts/invites/invitation.html.erb.tt ADDED Viewed

@@ -0,0 +1,33 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>Invitation</title>
+  <meta charset="utf-8">
+  <meta name="viewport" content="width=device-width,initial-scale=1">
+  <meta name="csrf-param" content="authenticity_token" />
+  <meta name="csrf-token" content="<%%= form_authenticity_token %>" />
+  <%%= stylesheet_link_tag "application", "data-turbo-track": "reload" %>
+  <%%= javascript_importmap_tags %>
+</head>
+<body class="antialiased min-h-screen bg-[var(--pu-body)]">
+  <main class="p-4 min-h-screen flex flex-col items-center justify-center gap-2 px-6 py-8 mx-auto lg:py-0">
+    <%% if flash.any? %>
+      <%% flash.each do |type, message| %>
+        <div class="fixed z-50 top-16 inset-x-0 mx-auto flex items-center w-full max-w-md p-4 rounded-[var(--pu-radius-lg)]"
+             style="box-shadow: var(--pu-shadow-md); background: <%%= type == 'alert' ? 'var(--color-danger-50)' : 'var(--color-success-50)' %>; color: <%%= type == 'alert' ? 'var(--color-danger-600)' : 'var(--color-success-600)' %>"
+             role="alert">
+          <div class="ms-3 text-sm font-normal"><%%= message %></div>
+        </div>
+      <%% end %>
+    <%% end %>
+    <!-- Main content card -->
+    <div class="w-full sm:max-w-md bg-[var(--pu-card-bg)] border border-[var(--pu-card-border)] rounded-[var(--pu-radius-lg)]"
+         style="box-shadow: var(--pu-shadow-lg)">
+      <div class="p-6 space-y-4 md:space-y-6 sm:p-8">
+        <%%= yield %>
+      </div>
+    </div>
+  </main>
+</body>
+</html>