RubyGems - rsb-auth - Versions diffs - 0.9.1 - Mend

rsb-auth 0.9.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (94) hide show

checksums.yaml +7 -0
data/LICENSE +15 -0
data/README.md +76 -0
data/Rakefile +25 -0
data/app/controllers/concerns/rsb/auth/ensure_identity_complete.rb +72 -0
data/app/controllers/concerns/rsb/auth/rate_limitable.rb +20 -0
data/app/controllers/rsb/auth/account/login_methods_controller.rb +85 -0
data/app/controllers/rsb/auth/account/sessions_controller.rb +31 -0
data/app/controllers/rsb/auth/account_controller.rb +99 -0
data/app/controllers/rsb/auth/admin/identities_controller.rb +402 -0
data/app/controllers/rsb/auth/admin/sessions_management_controller.rb +27 -0
data/app/controllers/rsb/auth/application_controller.rb +50 -0
data/app/controllers/rsb/auth/invitations_controller.rb +31 -0
data/app/controllers/rsb/auth/password_resets_controller.rb +46 -0
data/app/controllers/rsb/auth/registrations_controller.rb +104 -0
data/app/controllers/rsb/auth/sessions_controller.rb +109 -0
data/app/controllers/rsb/auth/verifications_controller.rb +29 -0
data/app/helpers/rsb/auth/user_agent_helper.rb +22 -0
data/app/mailers/rsb/auth/application_mailer.rb +10 -0
data/app/mailers/rsb/auth/auth_mailer.rb +33 -0
data/app/models/rsb/auth/application_record.rb +10 -0
data/app/models/rsb/auth/credential/email_password.rb +9 -0
data/app/models/rsb/auth/credential/phone_password.rb +16 -0
data/app/models/rsb/auth/credential/username_password.rb +9 -0
data/app/models/rsb/auth/credential.rb +122 -0
data/app/models/rsb/auth/identity.rb +62 -0
data/app/models/rsb/auth/invitation.rb +55 -0
data/app/models/rsb/auth/password_reset_token.rb +36 -0
data/app/models/rsb/auth/session.rb +44 -0
data/app/services/rsb/auth/account_service.rb +140 -0
data/app/services/rsb/auth/authentication_service.rb +86 -0
data/app/services/rsb/auth/invitation_service.rb +53 -0
data/app/services/rsb/auth/password_reset_service.rb +48 -0
data/app/services/rsb/auth/registration_service.rb +108 -0
data/app/services/rsb/auth/session_service.rb +47 -0
data/app/services/rsb/auth/verification_service.rb +30 -0
data/app/views/layouts/rsb/auth/application.html.erb +76 -0
data/app/views/rsb/auth/account/_identity_fields.html.erb +3 -0
data/app/views/rsb/auth/account/confirm_destroy.html.erb +45 -0
data/app/views/rsb/auth/account/login_methods/show.html.erb +92 -0
data/app/views/rsb/auth/account/show.html.erb +110 -0
data/app/views/rsb/auth/admin/credentials/_email_password.html.erb +34 -0
data/app/views/rsb/auth/admin/credentials/_phone_password.html.erb +34 -0
data/app/views/rsb/auth/admin/credentials/_username_password.html.erb +34 -0
data/app/views/rsb/auth/admin/identities/index.html.erb +76 -0
data/app/views/rsb/auth/admin/identities/new.html.erb +46 -0
data/app/views/rsb/auth/admin/identities/new_credential.html.erb +45 -0
data/app/views/rsb/auth/admin/identities/show.html.erb +180 -0
data/app/views/rsb/auth/admin/sessions_management/index.html.erb +69 -0
data/app/views/rsb/auth/auth_mailer/invitation.html.erb +4 -0
data/app/views/rsb/auth/auth_mailer/password_reset.html.erb +4 -0
data/app/views/rsb/auth/auth_mailer/verification.html.erb +4 -0
data/app/views/rsb/auth/credentials/_email_password_login.html.erb +36 -0
data/app/views/rsb/auth/credentials/_email_password_signup.html.erb +45 -0
data/app/views/rsb/auth/credentials/_icon.html.erb +21 -0
data/app/views/rsb/auth/credentials/_phone_password_login.html.erb +33 -0
data/app/views/rsb/auth/credentials/_phone_password_signup.html.erb +45 -0
data/app/views/rsb/auth/credentials/_selector.html.erb +43 -0
data/app/views/rsb/auth/credentials/_username_password_login.html.erb +33 -0
data/app/views/rsb/auth/credentials/_username_password_signup.html.erb +54 -0
data/app/views/rsb/auth/invitations/show.html.erb +40 -0
data/app/views/rsb/auth/password_resets/edit.html.erb +41 -0
data/app/views/rsb/auth/password_resets/new.html.erb +27 -0
data/app/views/rsb/auth/registrations/new.html.erb +55 -0
data/app/views/rsb/auth/sessions/new.html.erb +47 -0
data/config/locales/account.en.yml +65 -0
data/config/locales/admin.en.yml +26 -0
data/config/locales/credentials.en.yml +11 -0
data/config/locales/seo.en.yml +28 -0
data/config/routes.rb +34 -0
data/db/migrate/20260208100001_create_rsb_auth_identities.rb +12 -0
data/db/migrate/20260208100002_create_rsb_auth_credentials.rb +20 -0
data/db/migrate/20260208100003_create_rsb_auth_sessions.rb +18 -0
data/db/migrate/20260208100004_create_rsb_auth_password_reset_tokens.rb +15 -0
data/db/migrate/20260208100005_add_verification_to_rsb_auth_credentials.rb +9 -0
data/db/migrate/20260208100006_create_rsb_auth_invitations.rb +19 -0
data/db/migrate/20260211100001_add_revoked_at_to_rsb_auth_credentials.rb +16 -0
data/db/migrate/20260212100001_add_deleted_at_to_rsb_auth_identities.rb +10 -0
data/db/migrate/20260214172956_add_recovery_email_to_rsb_auth_credentials.rb +8 -0
data/lib/generators/rsb/auth/install/install_generator.rb +31 -0
data/lib/generators/rsb/auth/views/views_generator.rb +197 -0
data/lib/rsb/auth/configuration.rb +59 -0
data/lib/rsb/auth/credential_conflict_error.rb +21 -0
data/lib/rsb/auth/credential_definition.rb +39 -0
data/lib/rsb/auth/credential_deprecation_bridge.rb +81 -0
data/lib/rsb/auth/credential_registry.rb +96 -0
data/lib/rsb/auth/credential_settings_registrar.rb +118 -0
data/lib/rsb/auth/engine.rb +187 -0
data/lib/rsb/auth/lifecycle_handler.rb +71 -0
data/lib/rsb/auth/settings_schema.rb +74 -0
data/lib/rsb/auth/test_helper.rb +139 -0
data/lib/rsb/auth/version.rb +9 -0
data/lib/rsb/auth.rb +49 -0
metadata +192 -0

data/app/views/rsb/auth/account/login_methods/show.html.erb ADDED Viewed

@@ -0,0 +1,92 @@
+<div class="min-h-screen flex items-center justify-center px-4 py-12">
+  <div class="max-w-md w-full space-y-8">
+    <div>
+      <h2 class="text-3xl font-extrabold text-gray-900"><%= @credential.type.demodulize.titleize %></h2>
+      <p class="mt-2 text-sm text-gray-600"><%= @credential.identifier %></p>
+      <% if @credential.recovery_email.present? %>
+        <p class="mt-1 text-sm text-gray-600">
+          <strong>Recovery email:</strong>
+          <%= @credential.recovery_email %>
+        </p>
+      <% end %>
+    </div>
+    <%# Verification status %>
+    <div class="p-4 bg-white border border-gray-200 rounded-md">
+      <h3 class="text-sm font-medium text-gray-900"><%= t("rsb.auth.account.verification_status") %></h3>
+      <div class="mt-2">
+        <% if @credential.verified? %>
+          <div class="flex items-center space-x-2">
+            <span class="inline-flex items-center px-2.5 py-0.5 rounded-full text-xs font-medium bg-green-100 text-green-800"><%= t("rsb.auth.account.verified") %></span>
+            <span class="text-xs text-gray-500">
+              <%= l(@credential.verified_at, format: :long) %>
+            </span>
+          </div>
+        <% else %>
+          <div class="flex items-center justify-between">
+            <span class="inline-flex items-center px-2.5 py-0.5 rounded-full text-xs font-medium bg-yellow-100 text-yellow-800"><%= t("rsb.auth.account.unverified") %></span>
+            <%= button_to t("rsb.auth.account.resend_verification"), resend_verification_account_login_method_path(@credential), method: :post, class: "text-sm text-indigo-600 hover:text-indigo-500" %>
+          </div>
+        <% end %>
+      </div>
+    </div>
+    <%# Change password form %>
+    <div class="border-t border-gray-200 pt-8">
+      <h3 class="text-lg font-medium text-gray-900"><%= t("rsb.auth.account.change_password_title") %></h3>
+      <% if @password_errors.present? %>
+        <div class="mt-4 rounded-md bg-red-50 p-4">
+          <div class="ml-3">
+            <div class="text-sm text-red-700">
+              <ul class="list-disc pl-5 space-y-1">
+                <% @password_errors.each do |error| %>
+                  <li><%= error %></li>
+                <% end %>
+              </ul>
+            </div>
+          </div>
+        </div>
+      <% end %>
+      <%= form_with url: password_account_login_method_path(@credential), method: :patch, class: "mt-4 space-y-4" do |f| %>
+        <div>
+          <label for="current_password" class="block text-sm font-medium text-gray-700"><%= t("rsb.auth.account.current_password") %></label>
+          <input id="current_password" name="current_password" type="password" autocomplete="current-password" required
+            class="mt-1 block w-full px-3 py-2 border border-gray-300 rounded-md shadow-sm focus:outline-none focus:ring-indigo-500 focus:border-indigo-500 sm:text-sm">
+        </div>
+        <div>
+          <label for="new_password" class="block text-sm font-medium text-gray-700"><%= t("rsb.auth.account.new_password") %></label>
+          <input id="new_password" name="new_password" type="password" autocomplete="new-password" required
+            class="mt-1 block w-full px-3 py-2 border border-gray-300 rounded-md shadow-sm focus:outline-none focus:ring-indigo-500 focus:border-indigo-500 sm:text-sm">
+        </div>
+        <div>
+          <label for="new_password_confirmation" class="block text-sm font-medium text-gray-700"><%= t("rsb.auth.account.confirm_new_password") %></label>
+          <input id="new_password_confirmation" name="new_password_confirmation" type="password" autocomplete="new-password" required
+            class="mt-1 block w-full px-3 py-2 border border-gray-300 rounded-md shadow-sm focus:outline-none focus:ring-indigo-500 focus:border-indigo-500 sm:text-sm">
+        </div>
+        <div>
+          <button type="submit" class="inline-flex justify-center py-2 px-4 border border-transparent text-sm font-medium rounded-md text-white bg-indigo-600 hover:bg-indigo-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-indigo-500">
+            <%= t("rsb.auth.account.change_password_title") %>
+          </button>
+        </div>
+      <% end %>
+    </div>
+    <%# Remove login method %>
+    <% if @can_remove %>
+      <div class="border-t border-red-200 pt-8">
+        <h3 class="text-lg font-medium text-red-600"><%= t("rsb.auth.account.remove_login_method") %></h3>
+        <p class="mt-2 text-sm text-gray-600"><%= t("rsb.auth.account.remove_login_method_warning") %></p>
+        <div class="mt-4">
+          <%= button_to t("rsb.auth.account.remove_login_method"), account_login_method_path(@credential), method: :delete, data: { turbo_confirm: t("rsb.auth.account.remove_confirm") }, class: "inline-flex items-center px-4 py-2 border border-transparent text-sm font-medium rounded-md text-white bg-red-600 hover:bg-red-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-red-500" %>
+        </div>
+      </div>
+    <% end %>
+    <%# Back link %>
+    <div class="pt-4">
+      <%= link_to t("rsb.auth.account.back_to_account"), account_path, class: "text-sm text-indigo-600 hover:text-indigo-500" %>
+    </div>
+  </div>
+</div>

data/app/views/rsb/auth/account/show.html.erb ADDED Viewed

@@ -0,0 +1,110 @@
+<div class="min-h-screen flex items-center justify-center px-4 py-12">
+  <div class="max-w-2xl w-full space-y-8">
+    <div>
+      <h2 class="text-3xl font-extrabold text-gray-900"><%= t("rsb.auth.account.title") %></h2>
+      <p class="mt-2 text-sm text-gray-600"><%= t("rsb.auth.account.subtitle") %></p>
+    </div>
+    <%# Section 1: Login Methods %>
+    <div class="border-t border-gray-200 pt-8">
+      <h3 class="text-lg font-medium text-gray-900"><%= t("rsb.auth.account.login_methods_title") %></h3>
+      <div class="mt-4 space-y-3">
+        <% @login_methods.each do |credential| %>
+          <%= link_to account_login_method_path(credential), class: "block p-4 bg-white border border-gray-200 rounded-md hover:border-indigo-300 hover:shadow-sm transition" do %>
+            <div class="flex items-center justify-between">
+              <div>
+                <p class="text-sm font-medium text-gray-900"><%= credential.identifier %></p>
+                <p class="text-xs text-gray-500"><%= credential.type.demodulize.titleize %></p>
+              </div>
+              <div class="flex items-center space-x-2">
+                <% if credential.verified? %>
+                  <span class="inline-flex items-center px-2.5 py-0.5 rounded-full text-xs font-medium bg-green-100 text-green-800"><%= t("rsb.auth.account.verified") %></span>
+                <% else %>
+                  <span class="inline-flex items-center px-2.5 py-0.5 rounded-full text-xs font-medium bg-yellow-100 text-yellow-800"><%= t("rsb.auth.account.unverified") %></span>
+                <% end %>
+                <svg class="h-5 w-5 text-gray-400" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+                  <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M9 5l7 7-7 7" />
+                </svg>
+              </div>
+            </div>
+          <% end %>
+        <% end %>
+      </div>
+    </div>
+    <%# Section 2: Profile Fields (identity fields partial) %>
+    <% if @errors.present? %>
+      <div class="rounded-md bg-red-50 p-4">
+        <div class="ml-3">
+          <h3 class="text-sm font-medium text-red-800">There were errors with your submission:</h3>
+          <div class="mt-2 text-sm text-red-700">
+            <ul class="list-disc pl-5 space-y-1">
+              <% @errors.each do |error| %>
+                <li><%= error %></li>
+              <% end %>
+            </ul>
+          </div>
+        </div>
+      </div>
+    <% end %>
+    <%= form_with model: @identity, url: account_path, method: :patch, class: "space-y-6" do |f| %>
+      <% identity_fields_html = capture { render "rsb/auth/account/identity_fields", f: f, identity: @identity } %>
+      <%= identity_fields_html %>
+      <% if f.object.errors.any? || identity_fields_html.strip.present? %>
+        <div>
+          <button type="submit" class="inline-flex justify-center py-2 px-4 border border-transparent text-sm font-medium rounded-md text-white bg-indigo-600 hover:bg-indigo-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-indigo-500">
+            <%= t("rsb.auth.account.save") %>
+          </button>
+        </div>
+      <% end %>
+    <% end %>
+    <%# Section 3: Active Sessions %>
+    <div class="border-t border-gray-200 pt-8">
+      <h3 class="text-lg font-medium text-gray-900"><%= t("rsb.auth.account.sessions_title") %></h3>
+      <div class="mt-4 space-y-3">
+        <% @sessions.each do |session| %>
+          <% ua = parse_user_agent(session.user_agent) %>
+          <div class="flex items-center justify-between p-4 bg-white border border-gray-200 rounded-md">
+            <div>
+              <p class="text-sm font-medium text-gray-900"><%= ua[:browser] %> / <%= ua[:os] %></p>
+              <p class="text-xs text-gray-500">
+                <%= session.ip_address %> &middot;
+                <% if session.last_active_at %>
+                  <%= time_ago_in_words(session.last_active_at) %> ago
+                <% end %>
+              </p>
+            </div>
+            <div>
+              <% if session == @current_session %>
+                <span class="inline-flex items-center px-2.5 py-0.5 rounded-full text-xs font-medium bg-indigo-100 text-indigo-800"><%= t("rsb.auth.account.current_session") %></span>
+              <% else %>
+                <%= button_to t("rsb.auth.account.revoke_session"), account_session_path(session), method: :delete, class: "inline-flex items-center px-3 py-1.5 border border-gray-300 text-xs font-medium rounded-md text-gray-700 bg-white hover:bg-gray-50 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-indigo-500" %>
+              <% end %>
+            </div>
+          </div>
+        <% end %>
+      </div>
+      <% if @sessions.size > 1 %>
+        <div class="mt-4">
+          <%= button_to t("rsb.auth.account.revoke_all_sessions"), destroy_all_account_sessions_path, method: :delete, class: "text-sm text-indigo-600 hover:text-indigo-500" %>
+        </div>
+      <% end %>
+    </div>
+    <%# Section 4: Delete Account (danger zone) %>
+    <% if @deletion_enabled %>
+      <div class="border-t border-red-200 pt-8">
+        <h3 class="text-lg font-medium text-red-600"><%= t("rsb.auth.account.danger_zone") %></h3>
+        <div class="mt-4 p-4 bg-red-50 border border-red-200 rounded-md">
+          <p class="text-sm text-red-700"><%= t("rsb.auth.account.delete_warning") %></p>
+          <div class="mt-4">
+            <%= link_to t("rsb.auth.account.delete_account"), confirm_destroy_account_path, class: "inline-flex items-center px-4 py-2 border border-transparent text-sm font-medium rounded-md text-white bg-red-600 hover:bg-red-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-red-500" %>
+          </div>
+        </div>
+      </div>
+    <% end %>
+  </div>
+</div>

data/app/views/rsb/auth/admin/credentials/_email_password.html.erb ADDED Viewed

@@ -0,0 +1,34 @@
+<div class="space-y-4">
+  <div>
+    <label for="identifier" class="block text-sm font-medium mb-1">Email</label>
+    <input type="email" name="identifier" id="identifier"
+           value="<%= credential&.identifier %>"
+           required
+           class="w-full px-3 py-2 border border-rsb-border rounded-rsb text-sm focus:outline-none focus:ring-2 focus:ring-rsb-primary"
+           placeholder="user@example.com">
+    <% if credential&.errors&.include?(:identifier) %>
+      <p class="mt-1 text-xs text-rsb-danger-text"><%= credential.errors[:identifier].join(", ") %></p>
+    <% end %>
+  </div>
+  <div>
+    <label for="password" class="block text-sm font-medium mb-1">Password</label>
+    <input type="password" name="password" id="password"
+           required
+           class="w-full px-3 py-2 border border-rsb-border rounded-rsb text-sm focus:outline-none focus:ring-2 focus:ring-rsb-primary"
+           placeholder="Minimum 8 characters">
+    <% if credential&.errors&.include?(:password) %>
+      <p class="mt-1 text-xs text-rsb-danger-text"><%= credential.errors[:password].join(", ") %></p>
+    <% end %>
+  </div>
+  <div>
+    <label for="password_confirmation" class="block text-sm font-medium mb-1">Confirm Password</label>
+    <input type="password" name="password_confirmation" id="password_confirmation"
+           required
+           class="w-full px-3 py-2 border border-rsb-border rounded-rsb text-sm focus:outline-none focus:ring-2 focus:ring-rsb-primary">
+    <% if credential&.errors&.include?(:password_confirmation) %>
+      <p class="mt-1 text-xs text-rsb-danger-text"><%= credential.errors[:password_confirmation].join(", ") %></p>
+    <% end %>
+  </div>
+</div>

data/app/views/rsb/auth/admin/credentials/_phone_password.html.erb ADDED Viewed

@@ -0,0 +1,34 @@
+<div class="space-y-4">
+  <div>
+    <label for="identifier" class="block text-sm font-medium mb-1">Phone Number</label>
+    <input type="tel" name="identifier" id="identifier"
+           value="<%= credential&.identifier %>"
+           required
+           class="w-full px-3 py-2 border border-rsb-border rounded-rsb text-sm focus:outline-none focus:ring-2 focus:ring-rsb-primary"
+           placeholder="+1234567890">
+    <% if credential&.errors&.include?(:identifier) %>
+      <p class="mt-1 text-xs text-rsb-danger-text"><%= credential.errors[:identifier].join(", ") %></p>
+    <% end %>
+  </div>
+  <div>
+    <label for="password" class="block text-sm font-medium mb-1">Password</label>
+    <input type="password" name="password" id="password"
+           required
+           class="w-full px-3 py-2 border border-rsb-border rounded-rsb text-sm focus:outline-none focus:ring-2 focus:ring-rsb-primary"
+           placeholder="Minimum 8 characters">
+    <% if credential&.errors&.include?(:password) %>
+      <p class="mt-1 text-xs text-rsb-danger-text"><%= credential.errors[:password].join(", ") %></p>
+    <% end %>
+  </div>
+  <div>
+    <label for="password_confirmation" class="block text-sm font-medium mb-1">Confirm Password</label>
+    <input type="password" name="password_confirmation" id="password_confirmation"
+           required
+           class="w-full px-3 py-2 border border-rsb-border rounded-rsb text-sm focus:outline-none focus:ring-2 focus:ring-rsb-primary">
+    <% if credential&.errors&.include?(:password_confirmation) %>
+      <p class="mt-1 text-xs text-rsb-danger-text"><%= credential.errors[:password_confirmation].join(", ") %></p>
+    <% end %>
+  </div>
+</div>

data/app/views/rsb/auth/admin/credentials/_username_password.html.erb ADDED Viewed

@@ -0,0 +1,34 @@
+<div class="space-y-4">
+  <div>
+    <label for="identifier" class="block text-sm font-medium mb-1">Username</label>
+    <input type="text" name="identifier" id="identifier"
+           value="<%= credential&.identifier %>"
+           required
+           class="w-full px-3 py-2 border border-rsb-border rounded-rsb text-sm focus:outline-none focus:ring-2 focus:ring-rsb-primary"
+           placeholder="3-30 characters, letters/numbers/dots">
+    <% if credential&.errors&.include?(:identifier) %>
+      <p class="mt-1 text-xs text-rsb-danger-text"><%= credential.errors[:identifier].join(", ") %></p>
+    <% end %>
+  </div>
+  <div>
+    <label for="password" class="block text-sm font-medium mb-1">Password</label>
+    <input type="password" name="password" id="password"
+           required
+           class="w-full px-3 py-2 border border-rsb-border rounded-rsb text-sm focus:outline-none focus:ring-2 focus:ring-rsb-primary"
+           placeholder="Minimum 8 characters">
+    <% if credential&.errors&.include?(:password) %>
+      <p class="mt-1 text-xs text-rsb-danger-text"><%= credential.errors[:password].join(", ") %></p>
+    <% end %>
+  </div>
+  <div>
+    <label for="password_confirmation" class="block text-sm font-medium mb-1">Confirm Password</label>
+    <input type="password" name="password_confirmation" id="password_confirmation"
+           required
+           class="w-full px-3 py-2 border border-rsb-border rounded-rsb text-sm focus:outline-none focus:ring-2 focus:ring-rsb-primary">
+    <% if credential&.errors&.include?(:password_confirmation) %>
+      <p class="mt-1 text-xs text-rsb-danger-text"><%= credential.errors[:password_confirmation].join(", ") %></p>
+    <% end %>
+  </div>
+</div>

data/app/views/rsb/auth/admin/identities/index.html.erb ADDED Viewed

@@ -0,0 +1,76 @@
+<div class="flex justify-between items-center mb-6">
+  <h1 class="text-2xl font-bold">Identities</h1>
+  <% if rsb_admin_can?("identities", "new") %>
+    <a href="/admin/identities/new"
+       class="inline-flex items-center gap-1 px-4 py-2 bg-rsb-primary text-rsb-primary-text rounded-rsb text-sm font-medium hover:bg-rsb-primary-hover transition-colors">
+      New Identity
+    </a>
+  <% end %>
+</div>
+<% if @filters.any? %>
+  <%= render rsb_admin_partial("resources/filters"),
+    filters: @filters,
+    values: @filter_values,
+    resource_key: "identities" %>
+<% end %>
+<div class="bg-rsb-card border border-rsb-border rounded-rsb-lg shadow-rsb-sm overflow-hidden">
+  <% if @identities.any? %>
+    <div class="overflow-x-auto">
+      <table class="w-full">
+        <thead>
+          <tr>
+            <th class="px-4 py-3 text-left text-xs font-semibold uppercase tracking-wider text-rsb-muted bg-rsb-bg border-b border-rsb-border">Status</th>
+            <th class="px-4 py-3 text-left text-xs font-semibold uppercase tracking-wider text-rsb-muted bg-rsb-bg border-b border-rsb-border">Primary Identifier</th>
+            <th class="px-4 py-3 text-left text-xs font-semibold uppercase tracking-wider text-rsb-muted bg-rsb-bg border-b border-rsb-border">Credentials</th>
+            <th class="px-4 py-3 text-left text-xs font-semibold uppercase tracking-wider text-rsb-muted bg-rsb-bg border-b border-rsb-border">Created</th>
+            <th class="px-4 py-3 text-right text-xs font-semibold uppercase tracking-wider text-rsb-muted bg-rsb-bg border-b border-rsb-border"></th>
+          </tr>
+        </thead>
+        <tbody>
+          <% @identities.each do |identity| %>
+            <tr class="hover:bg-rsb-bg border-b border-rsb-border last:border-b-0">
+              <td class="px-4 py-3 text-sm">
+                <% if identity.active? %>
+                  <span class="inline-block px-2.5 py-0.5 rounded-rsb bg-rsb-success-bg text-rsb-success-text text-xs font-medium">Active</span>
+                <% elsif identity.suspended? %>
+                  <span class="inline-block px-2.5 py-0.5 rounded-rsb bg-rsb-warning-bg text-rsb-warning-text text-xs font-medium">Suspended</span>
+                <% else %>
+                  <span class="inline-block px-2.5 py-0.5 rounded-rsb bg-rsb-danger-bg text-rsb-danger-text text-xs font-medium">Deactivated</span>
+                <% end %>
+              </td>
+              <td class="px-4 py-3 text-sm"><%= identity.primary_identifier || "-" %></td>
+              <td class="px-4 py-3 text-sm"><%= identity.credentials.size %></td>
+              <td class="px-4 py-3 text-sm"><%= identity.created_at.strftime("%b %d, %Y") %></td>
+              <td class="px-4 py-3 text-sm text-right">
+                <a href="/admin/identities/<%= identity.id %>"
+                   class="inline-flex items-center gap-1 px-3 py-1.5 border border-rsb-border text-rsb-text rounded-rsb text-xs font-medium hover:bg-rsb-bg transition-colors">View</a>
+              </td>
+            </tr>
+          <% end %>
+        </tbody>
+      </table>
+    </div>
+    <%# Pagination %>
+    <% query = @filter_values.any? ? @filter_values.map { |k,v| "q[#{k}]=#{ERB::Util.url_encode(v)}" }.join("&") : nil %>
+    <div class="flex justify-between items-center px-4 py-3 border-t border-rsb-border">
+      <span class="text-sm text-rsb-muted">Page <%= @current_page + 1 %></span>
+      <div class="flex gap-2">
+        <% if @current_page > 0 %>
+          <a href="/admin/identities?page=<%= @current_page - 1 %><%= "&#{query}" if query %>"
+             class="inline-flex items-center px-3 py-1.5 border border-rsb-border text-rsb-text rounded-rsb text-xs font-medium hover:bg-rsb-bg transition-colors">Previous</a>
+        <% end %>
+        <% if @identities.size == @per_page %>
+          <a href="/admin/identities?page=<%= @current_page + 1 %><%= "&#{query}" if query %>"
+             class="inline-flex items-center px-3 py-1.5 border border-rsb-border text-rsb-text rounded-rsb text-xs font-medium hover:bg-rsb-bg transition-colors">Next</a>
+        <% end %>
+      </div>
+    </div>
+  <% else %>
+    <div class="p-8 text-center">
+      <p class="text-rsb-muted text-sm">No identities found. User registrations will appear here.</p>
+    </div>
+  <% end %>
+</div>

data/app/views/rsb/auth/admin/identities/new.html.erb ADDED Viewed

@@ -0,0 +1,46 @@
+<div class="flex justify-between items-center mb-6">
+  <h1 class="text-2xl font-bold">New Identity</h1>
+  <a href="/admin/identities"
+     class="inline-flex items-center gap-1 px-4 py-2 border border-rsb-border rounded-rsb text-sm hover:bg-rsb-bg transition-colors">Back</a>
+</div>
+<div class="bg-rsb-card border border-rsb-border rounded-rsb-lg shadow-rsb-sm p-6">
+  <% if @credential_types.any? %>
+    <%# Credential Type Selector %>
+    <div class="mb-6">
+      <label class="block text-sm font-medium mb-2">Credential Type</label>
+      <div class="flex gap-2 flex-wrap">
+        <% @credential_types.each do |ctype| %>
+          <a href="/admin/identities/new?type=<%= ctype.key %>"
+             class="inline-flex items-center gap-1.5 px-3 py-1.5 border rounded-rsb text-sm font-medium transition-colors
+                    <%= ctype.key == @selected_type&.key ? 'bg-rsb-primary text-rsb-primary-text border-rsb-primary' : 'border-rsb-border text-rsb-text hover:bg-rsb-bg' %>">
+            <%= ctype.label %>
+          </a>
+        <% end %>
+      </div>
+    </div>
+    <% if @selected_type %>
+      <form action="/admin/identities" method="post">
+        <%= hidden_field_tag :authenticity_token, form_authenticity_token %>
+        <%= hidden_field_tag :credential_type, @selected_type.key %>
+        <%# Render the selected type's admin form partial %>
+        <%= render partial: @selected_type.admin_form_partial, locals: { credential: @credential } %>
+        <div class="mt-6 flex gap-2">
+          <button type="submit"
+                  class="px-4 py-2 bg-rsb-primary text-rsb-primary-text rounded-rsb text-sm font-medium hover:bg-rsb-primary-hover transition-colors">
+            Create Identity
+          </button>
+          <a href="/admin/identities"
+             class="px-4 py-2 border border-rsb-border rounded-rsb text-sm font-medium hover:bg-rsb-bg transition-colors">
+            Cancel
+          </a>
+        </div>
+      </form>
+    <% end %>
+  <% else %>
+    <p class="text-rsb-muted text-sm">No credential types with admin form support are available. Register credential types with <code>admin_form_partial</code> to enable identity creation.</p>
+  <% end %>
+</div>

data/app/views/rsb/auth/admin/identities/new_credential.html.erb ADDED Viewed

@@ -0,0 +1,45 @@
+<div class="flex justify-between items-center mb-6">
+  <h1 class="text-2xl font-bold">Add Credential — Identity #<%= @identity.id %></h1>
+  <a href="/admin/identities/<%= @identity.id %>"
+     class="inline-flex items-center gap-1 px-4 py-2 border border-rsb-border rounded-rsb text-sm hover:bg-rsb-bg transition-colors">Back</a>
+</div>
+<div class="bg-rsb-card border border-rsb-border rounded-rsb-lg shadow-rsb-sm p-6">
+  <% if @credential_types.any? %>
+    <%# Credential Type Selector %>
+    <div class="mb-6">
+      <label class="block text-sm font-medium mb-2">Credential Type</label>
+      <div class="flex gap-2 flex-wrap">
+        <% @credential_types.each do |ctype| %>
+          <a href="/admin/identities/<%= @identity.id %>/new_credential?type=<%= ctype.key %>"
+             class="inline-flex items-center gap-1.5 px-3 py-1.5 border rounded-rsb text-sm font-medium transition-colors
+                    <%= ctype.key == @selected_type&.key ? 'bg-rsb-primary text-rsb-primary-text border-rsb-primary' : 'border-rsb-border text-rsb-text hover:bg-rsb-bg' %>">
+            <%= ctype.label %>
+          </a>
+        <% end %>
+      </div>
+    </div>
+    <% if @selected_type %>
+      <form action="/admin/identities/<%= @identity.id %>/add_credential" method="post">
+        <%= hidden_field_tag :authenticity_token, form_authenticity_token %>
+        <%= hidden_field_tag :credential_type, @selected_type.key %>
+        <%= render partial: @selected_type.admin_form_partial, locals: { credential: @credential } %>
+        <div class="mt-6 flex gap-2">
+          <button type="submit"
+                  class="px-4 py-2 bg-rsb-primary text-rsb-primary-text rounded-rsb text-sm font-medium hover:bg-rsb-primary-hover transition-colors">
+            Add Credential
+          </button>
+          <a href="/admin/identities/<%= @identity.id %>"
+             class="px-4 py-2 border border-rsb-border rounded-rsb text-sm font-medium hover:bg-rsb-bg transition-colors">
+            Cancel
+          </a>
+        </div>
+      </form>
+    <% end %>
+  <% else %>
+    <p class="text-rsb-muted text-sm"><%= I18n.t("rsb.auth.admin.identities.no_available_types") %></p>
+  <% end %>
+</div>