standard_id 0.1.0

data/app/views/standard_id/web/login/show.html.erb

@@ -0,0 +1,108 @@
+<% content_for :title, "Sign In" %>
+
+<div class="flex min-h-full flex-col justify-center py-12 sm:px-6 lg:px-8">
+  <div class="sm:mx-auto sm:w-full sm:max-w-md">
+    <img src="https://tailwindcss.com/plus-assets/img/logos/mark.svg?color=indigo&shade=600" alt="Your Company" class="mx-auto h-10 w-auto dark:hidden" />
+    <img src="https://tailwindcss.com/plus-assets/img/logos/mark.svg?color=indigo&shade=500" alt="Your Company" class="mx-auto hidden h-10 w-auto dark:block" />
+    <h2 class="mt-6 text-center text-2xl/9 font-bold tracking-tight text-gray-900 dark:text-white">Sign in to your account</h2>
+  </div>
+
+  <div class="mt-10 sm:mx-auto sm:w-full sm:max-w-[480px]">
+    <div class="bg-white px-6 py-12 shadow sm:rounded-lg sm:px-12 dark:bg-gray-800/50 dark:shadow-none dark:outline dark:outline-1 dark:-outline-offset-1 dark:outline-white/10">
+
+      <% if flash[:alert].present? %>
+        <div class="mb-4 rounded-md bg-red-50 p-4 text-sm text-red-700 dark:bg-red-900/20 dark:text-red-300"><%= flash[:alert] %></div>
+      <% end %>
+      <% if flash[:notice].present? %>
+        <div class="mb-4 rounded-md bg-green-50 p-4 text-sm text-green-700 dark:bg-green-900/20 dark:text-green-300"><%= flash[:notice] %></div>
+      <% end %>
+
+      <%= form_with url: login_path, method: :post, local: true, html: { class: "space-y-6" } do |form| %>
+        <%= form.hidden_field :redirect_uri, value: @redirect_uri %>
+
+        <div>
+          <%= form.label :email, "Email address", class: "block text-sm/6 font-medium text-gray-900 dark:text-white" %>
+          <div class="mt-2">
+            <%= form.email_field "login[email]", required: true, autofocus: true, autocomplete: "email", class: "block w-full rounded-md bg-white px-3 py-1.5 text-base text-gray-900 outline outline-1 -outline-offset-1 outline-gray-300 placeholder:text-gray-400 focus:outline focus:outline-2 focus:-outline-offset-2 focus:outline-indigo-600 sm:text-sm/6 dark:bg-white/5 dark:text-white dark:outline-white/10 dark:placeholder:text-gray-500 dark:focus:outline-indigo-500" %>
+          </div>
+        </div>
+
+        <div>
+          <%= form.label :password, "Password", class: "block text-sm/6 font-medium text-gray-900 dark:text-white" %>
+          <div class="mt-2">
+            <%= form.password_field "login[password]", required: true, autocomplete: "current-password", class: "block w-full rounded-md bg-white px-3 py-1.5 text-base text-gray-900 outline outline-1 -outline-offset-1 outline-gray-300 placeholder:text-gray-400 focus:outline focus:outline-2 focus:-outline-offset-2 focus:outline-indigo-600 sm:text-sm/6 dark:bg-white/5 dark:text-white dark:outline-white/10 dark:placeholder:text-gray-500 dark:focus:outline-indigo-500" %>
+          </div>
+        </div>
+
+        <div class="flex items-center justify-between">
+          <div class="flex gap-3">
+            <div class="flex h-6 shrink-0 items-center">
+              <div class="group grid size-4 grid-cols-1">
+                <%= form.check_box "login[remember_me]", id: "remember-me", class: "col-start-1 row-start-1 appearance-none rounded border border-gray-300 bg-white checked:border-indigo-600 checked:bg-indigo-600 indeterminate:border-indigo-600 indeterminate:bg-indigo-600 focus-visible:outline focus-visible:outline-2 focus-visible:outline-offset-2 focus-visible:outline-indigo-600 disabled:border-gray-300 disabled:bg-gray-100 disabled:checked:bg-gray-100 dark:border-white/10 dark:bg-white/5 dark:checked:border-indigo-500 dark:checked:bg-indigo-500 dark:indeterminate:border-indigo-500 dark:indeterminate:bg-indigo-500 dark:focus-visible:outline-indigo-500 forced-colors:appearance-auto" %>
+                <svg viewBox="0 0 14 14" fill="none" class="pointer-events-none col-start-1 row-start-1 size-3.5 self-center justify-self-center stroke-white group-has-[:disabled]:stroke-gray-950/25 dark:group-has-[:disabled]:stroke-white/25">
+                  <path d="M3 8L6 11L11 3.5" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="opacity-0 group-has-[:checked]:opacity-100" />
+                  <path d="M3 7H11" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="opacity-0 group-has-[:indeterminate]:opacity-100" />
+                </svg>
+              </div>
+            </div>
+            <label for="remember-me" class="block text-sm/6 text-gray-900 dark:text-white">Remember me</label>
+          </div>
+
+          <div class="text-sm/6">
+            <%= link_to "Forgot password?", reset_password_start_path, class: "font-semibold text-indigo-600 hover:text-indigo-500 dark:text-indigo-400 dark:hover:text-indigo-300" %>
+          </div>
+        </div>
+
+        <div>
+          <%= form.submit "Sign in", class: "flex w-full justify-center rounded-md bg-indigo-600 px-3 py-1.5 text-sm/6 font-semibold text-white shadow-sm hover:bg-indigo-500 focus-visible:outline focus-visible:outline-2 focus-visible:outline-offset-2 focus-visible:outline-indigo-600 dark:bg-indigo-500 dark:shadow-none dark:hover:bg-indigo-400 dark:focus-visible:outline-indigo-500" %>
+        </div>
+      <% end %>
+
+      <% if StandardId.config.google_client_id.present? || StandardId.config.apple_client_id.present? %>
+        <div>
+          <div class="mt-10 flex items-center gap-x-6">
+            <div class="w-full flex-1 border-t border-gray-200 dark:border-white/10"></div>
+            <p class="text-nowrap text-sm/6 font-medium text-gray-900 dark:text-white">Or continue with</p>
+            <div class="w-full flex-1 border-t border-gray-200 dark:border-white/10"></div>
+          </div>
+
+          <div class="mt-6 grid grid-cols-2 gap-4">
+            <% if StandardId.config.google_client_id.present? %>
+              <%= form_with url: login_path, method: :post, local: true do |form| %>
+                <%= form.hidden_field :connection, value: "google-oauth2" %>
+                <%= form.hidden_field :redirect_uri, value: @redirect_uri %>
+                <button type="submit" class="flex w-full items-center justify-center gap-3 rounded-md bg-white px-3 py-2 text-sm font-semibold text-gray-900 shadow-sm ring-1 ring-inset ring-gray-300 hover:bg-gray-50 focus-visible:ring-transparent dark:bg-white/10 dark:text-white dark:shadow-none dark:ring-white/5 dark:hover:bg-white/20">
+                  <svg viewBox="0 0 24 24" aria-hidden="true" class="h-5 w-5">
+                    <path d="M12.0003 4.75C13.7703 4.75 15.3553 5.36002 16.6053 6.54998L20.0303 3.125C17.9502 1.19 15.2353 0 12.0003 0C7.31028 0 3.25527 2.69 1.28027 6.60998L5.27028 9.70498C6.21525 6.86002 8.87028 4.75 12.0003 4.75Z" fill="#EA4335" />
+                    <path d="M23.49 12.275C23.49 11.49 23.415 10.73 23.3 10H12V14.51H18.47C18.18 15.99 17.34 17.25 16.08 18.1L19.945 21.1C22.2 19.01 23.49 15.92 23.49 12.275Z" fill="#4285F4" />
+                    <path d="M5.26498 14.2949C5.02498 13.5699 4.88501 12.7999 4.88501 11.9999C4.88501 11.1999 5.01998 10.4299 5.26498 9.7049L1.275 6.60986C0.46 8.22986 0 10.0599 0 11.9999C0 13.9399 0.46 15.7699 1.28 17.3899L5.26498 14.2949Z" fill="#FBBC05" />
+                    <path d="M12.0004 24.0001C15.2404 24.0001 17.9654 22.935 19.9454 21.095L16.0804 18.095C15.0054 18.82 13.6204 19.245 12.0004 19.245C8.8704 19.245 6.21537 17.135 5.2654 14.29L1.27539 17.385C3.25539 21.31 7.3104 24.0001 12.0004 24.0001Z" fill="#34A853" />
+                  </svg>
+                  <span class="text-sm/6 font-semibold">Google</span>
+                </button>
+              <% end %>
+            <% end %>
+
+            <% if StandardId.config.apple_client_id.present? %>
+              <%= form_with url: login_path, method: :post, local: true do |form| %>
+                <%= form.hidden_field :connection, value: "apple" %>
+                <%= form.hidden_field :redirect_uri, value: @redirect_uri %>
+                <button type="submit" class="flex w-full items-center justify-center gap-3 rounded-md bg-white px-3 py-2 text-sm font-semibold text-gray-900 shadow-sm ring-1 ring-inset ring-gray-300 hover:bg-gray-50 focus-visible:ring-transparent dark:bg-white/10 dark:text-white dark:shadow-none dark:ring-white/5 dark:hover:bg-white/20">
+                  <svg viewBox="0 0 20 20" fill="currentColor" aria-hidden="true" class="size-5 fill-[#24292F] dark:fill-white">
+                    <path d="M10 0C4.477 0 0 4.484 0 10.017c0 4.425 2.865 8.18 6.839 9.504.5.092.682-.217.682-.483 0-.237-.008-.868-.013-1.703-2.782.605-3.369-1.343-3.369-1.343-.454-1.158-1.11-1.466-1.11-1.466-.908-.62.069-.608.069-.608 1.003.07 1.531 1.032 1.531 1.032.892 1.53 2.341 1.088 2.91.832.092-.647.35-1.088.636-1.338-2.22-.253-4.555-1.113-4.555-4.951 0-1.093.39-1.988 1.029-2.688-.103-.253-.446-1.272.098-2.65 0 0 .84-.27 2.75 1.026A9.564 9.564 0 0110 4.844c.85.004 1.705.115 2.504.337 1.909-1.296 2.747-1.027 2.747-1.027.546 1.379.203 2.398.1 2.651.64.7 1.028 1.595 1.028 2.688 0 3.848-2.339 4.695-4.566 4.942.359.31.678.921.678 1.856 0 1.338-.012 2.419-.012 2.747 0 .268.18.58.688.482A10.019 10.019 0 0020 10.017C20 4.484 15.522 0 10 0z" clip-rule="evenodd" fill-rule="evenodd" />
+                  </svg>
+                  <span class="text-sm/6 font-semibold">Apple</span>
+                </button>
+              <% end %>
+            <% end %>
+          </div>
+        </div>
+      <% end %>
+    </div>
+
+    <p class="mt-10 text-center text-sm/6 text-gray-500 dark:text-gray-400">
+      Not a member?
+      <%= link_to "Sign up", signup_path(redirect_uri: @redirect_uri), class: "font-semibold text-indigo-600 hover:text-indigo-500 dark:text-indigo-400 dark:hover:text-indigo-300" %>
+    </p>
+  </div>
+</div>

data/app/views/standard_id/web/reset_password/confirm/show.html.erb

@@ -0,0 +1,27 @@
+<% content_for :title, "Set New Password" %>
+
+<div class="container">
+  <h1>Set New Password</h1>
+
+  <p>Enter your new password below.</p>
+
+  <%= form_with url: reset_password_confirm_path, method: :patch, local: true do |form| %>
+    <%= form.hidden_field :token, value: params[:token] %>
+
+    <div class="form-group">
+      <%= form.label :password, "New Password" %>
+      <%= form.password_field :password, required: true, autofocus: true, minlength: 8, placeholder: "Enter new password (minimum 8 characters)" %>
+    </div>
+
+    <div class="form-group">
+      <%= form.label :password_confirmation, "Confirm New Password" %>
+      <%= form.password_field :password_confirmation, required: true, minlength: 8, placeholder: "Confirm new password" %>
+    </div>
+
+    <%= form.submit "Update Password", class: "btn" %>
+  <% end %>
+
+  <div class="text-center mt-3">
+    <%= link_to "Back to Sign In", login_path %>
+  </div>
+</div>

data/app/views/standard_id/web/reset_password/start/show.html.erb

@@ -0,0 +1,20 @@
+<% content_for :title, "Reset Password" %>
+
+<div class="container">
+  <h1>Reset Password</h1>
+
+  <p>Enter your email address and we'll send you instructions to reset your password.</p>
+
+  <%= form_with url: reset_password_start_path, method: :post, local: true do |form| %>
+    <div class="form-group">
+      <%= form.label :email, "Email Address" %>
+      <%= form.email_field :email, required: true, autofocus: true, placeholder: "Enter your email address" %>
+    </div>
+
+    <%= form.submit "Send Reset Instructions", class: "btn" %>
+  <% end %>
+
+  <div class="text-center mt-3">
+    <%= link_to "Back to Sign In", login_path %>
+  </div>
+</div>

data/app/views/standard_id/web/sessions/index.html.erb

@@ -0,0 +1,112 @@
+<% content_for :title, "Sessions" %>
+
+<div class="px-4 sm:px-6 lg:px-8">
+  <div class="sm:flex sm:items-center">
+    <div class="sm:flex-auto">
+      <h1 class="text-base font-semibold text-gray-900 dark:text-white">Active Sessions</h1>
+      <p class="mt-2 text-sm text-gray-700 dark:text-gray-300">Manage devices and browsers that are signed in to your account.</p>
+    </div>
+    <div class="mt-4 sm:ml-16 sm:mt-0 sm:flex-none">
+      <%= link_to "Back to Account", account_path, class: "block rounded-md border border-gray-300 px-3 py-2 text-center text-sm font-semibold text-gray-900 hover:bg-gray-50 dark:border-gray-600 dark:text-white dark:hover:bg-white/5" %>
+    </div>
+  </div>
+
+  <div class="mt-8 flow-root">
+    <div class="-mx-4 -my-2 overflow-x-auto sm:-mx-6 lg:-mx-8">
+      <div class="inline-block min-w-full py-2 align-middle sm:px-6 lg:px-8">
+        <% if @sessions.any? %>
+          <table class="relative min-w-full divide-y divide-gray-300 dark:divide-white/15">
+            <thead>
+              <tr>
+                <th scope="col" class="py-3.5 pl-4 pr-3 text-left text-sm font-semibold text-gray-900 sm:pl-0 dark:text-white">Session</th>
+                <th scope="col" class="px-3 py-3.5 text-left text-sm font-semibold text-gray-900 dark:text-white">Type</th>
+                <th scope="col" class="px-3 py-3.5 text-left text-sm font-semibold text-gray-900 dark:text-white">Agent</th>
+                <th scope="col" class="px-3 py-3.5 text-left text-sm font-semibold text-gray-900 dark:text-white">Last Used</th>
+                <th scope="col" class="px-3 py-3.5 text-left text-sm font-semibold text-gray-900 dark:text-white">Expires</th>
+                <th scope="col" class="px-3 py-3.5 text-left text-sm font-semibold text-gray-900 dark:text-white">Status</th>
+                <th scope="col" class="py-3.5 pl-3 pr-4 sm:pr-0">
+                  <span class="sr-only">Actions</span>
+                </th>
+              </tr>
+            </thead>
+            <tbody class="divide-y divide-gray-200 bg-white dark:divide-white/10 dark:bg-gray-900">
+              <% @sessions.each do |s| %>
+                <% is_current = (s == @current_session) %>
+                <% now = Time.current %>
+                <% expired = s.respond_to?(:expires_at) && s.expires_at.present? && s.expires_at < now %>
+                <% revoked = s.respond_to?(:revoked_at) && s.revoked_at.present? %>
+                <% active = !expired && !revoked %>
+                <% type_label = (s.type || s.class.name).demodulize.sub('Session','').presence || 'Session' %>
+                <% agent = if s.respond_to?(:user_agent) && s.user_agent.present?
+                             s.user_agent
+                           elsif s.respond_to?(:device_agent) && s.device_agent.present?
+                             s.device_agent
+                           else
+                             '—'
+                           end %>
+                <tr>
+                  <td class="whitespace-nowrap py-5 pl-4 pr-3 text-sm sm:pl-0">
+                    <div class="flex items-center">
+                      <div class="size-11 shrink-0">
+                        <div class="size-11 rounded-full bg-indigo-100 text-indigo-700 flex items-center justify-center text-xs font-semibold dark:bg-indigo-900/40 dark:text-indigo-300">ID</div>
+                      </div>
+                      <div class="ml-4">
+                        <div class="font-medium text-gray-900 dark:text-white"><%= s.id %></div>
+                        <div class="mt-1 text-gray-500 dark:text-gray-400">
+                          Created <%= l(s.created_at, format: :short) rescue s.created_at.strftime("%b %d, %Y %H:%M") %>
+                          <% if is_current %>
+                            <span class="ml-2 inline-flex items-center rounded-md bg-indigo-50 px-2 py-0.5 text-xs font-medium text-indigo-700 ring-1 ring-inset ring-indigo-600/20 dark:bg-indigo-900/30 dark:text-indigo-300 dark:ring-indigo-500/50">Current</span>
+                          <% end %>
+                        </div>
+                      </div>
+                    </div>
+                  </td>
+                  <td class="whitespace-nowrap px-3 py-5 text-sm text-gray-500 dark:text-gray-400">
+                    <div class="text-gray-900 dark:text-white"><%= type_label %></div>
+                    <% if s.respond_to?(:device_id) && s.device_id.present? %>
+                      <div class="mt-1 text-gray-500 dark:text-gray-400">Device ID: <%= s.device_id %></div>
+                    <% end %>
+                  </td>
+                  <td class="whitespace-nowrap px-3 py-5 text-sm text-gray-500 dark:text-gray-400">
+                    <div class="text-gray-900 truncate max-w-[22rem] dark:text-white"><%= agent %></div>
+                    <% if s.respond_to?(:ip_address) && s.ip_address.present? %>
+                      <div class="mt-1 text-gray-500 dark:text-gray-400">IP: <%= s.ip_address %></div>
+                    <% end %>
+                  </td>
+                  <td class="whitespace-nowrap px-3 py-5 text-sm text-gray-900 dark:text-white">
+                    <%= l(s.updated_at, format: :short) rescue s.updated_at.strftime("%b %d, %Y %H:%M") %>
+                  </td>
+                  <td class="whitespace-nowrap px-3 py-5 text-sm text-gray-900 dark:text-white">
+                    <% if s.respond_to?(:expires_at) && s.expires_at.present? %>
+                      <%= l(s.expires_at, format: :short) rescue s.expires_at.strftime("%b %d, %Y %H:%M") %>
+                    <% else %>
+                      —
+                    <% end %>
+                  </td>
+                  <td class="whitespace-nowrap px-3 py-5 text-sm text-gray-500 dark:text-gray-400">
+                    <% if revoked %>
+                      <span class="inline-flex items-center rounded-md bg-red-50 px-2 py-1 text-xs font-medium text-red-700 ring-1 ring-inset ring-red-600/20 dark:bg-red-900/30 dark:text-red-400 dark:ring-red-500/50">Revoked</span>
+                    <% elsif expired %>
+                      <span class="inline-flex items-center rounded-md bg-yellow-50 px-2 py-1 text-xs font-medium text-yellow-800 ring-1 ring-inset ring-yellow-600/20 dark:bg-yellow-900/30 dark:text-yellow-300 dark:ring-yellow-500/50">Expired</span>
+                    <% else %>
+                      <span class="inline-flex items-center rounded-md bg-green-50 px-2 py-1 text-xs font-medium text-green-700 ring-1 ring-inset ring-green-600/20 dark:bg-green-900/30 dark:text-green-400 dark:ring-green-500/50">Active</span>
+                    <% end %>
+                  </td>
+                  <td class="whitespace-nowrap py-5 pl-3 pr-4 text-right text-sm font-medium sm:pr-0">
+                    <% if !is_current && active %>
+                      <%= button_to "Revoke", session_path(s), method: :delete, data: { confirm: "Revoke this session?" }, class: "inline-flex items-center rounded-md bg-red-600 px-3 py-1.5 text-sm font-semibold text-white shadow-sm hover:bg-red-500 focus-visible:outline focus-visible:outline-2 focus-visible:outline-offset-2 focus-visible:outline-red-600 dark:bg-red-500 dark:hover:bg-red-400 dark:focus-visible:outline-red-500" %>
+                    <% elsif is_current %>
+                      <span class="text-xs text-gray-500 dark:text-gray-400">Use Sign Out to end current session</span>
+                    <% end %>
+                  </td>
+                </tr>
+              <% end %>
+            </tbody>
+          </table>
+        <% else %>
+          <div class="rounded-md p-6 text-sm text-gray-600 ring-1 ring-inset ring-gray-200 dark:text-gray-300 dark:ring-white/10">No active sessions.</div>
+        <% end %>
+      </div>
+    </div>
+  </div>
+</div>

data/app/views/standard_id/web/signup/show.html.erb

@@ -0,0 +1,96 @@
+<% content_for :title, "Sign Up" %>
+
+<div class="flex min-h-full flex-col justify-center py-12 sm:px-6 lg:px-8">
+  <div class="sm:mx-auto sm:w-full sm:max-w-md">
+    <img src="https://tailwindcss.com/plus-assets/img/logos/mark.svg?color=indigo&shade=600" alt="Your Company" class="mx-auto h-10 w-auto dark:hidden" />
+    <img src="https://tailwindcss.com/plus-assets/img/logos/mark.svg?color=indigo&shade=500" alt="Your Company" class="mx-auto hidden h-10 w-auto dark:block" />
+    <h2 class="mt-6 text-center text-2xl/9 font-bold tracking-tight text-gray-900 dark:text-white">Create your account</h2>
+  </div>
+
+  <div class="mt-10 sm:mx-auto sm:w-full sm:max-w-[480px]">
+    <div class="bg-white px-6 py-12 shadow sm:rounded-lg sm:px-12 dark:bg-gray-800/50 dark:shadow-none dark:outline dark:outline-1 dark:-outline-offset-1 dark:outline-white/10">
+
+      <% if flash[:alert].present? %>
+        <div class="mb-4 rounded-md bg-red-50 p-4 text-sm text-red-700 dark:bg-red-900/20 dark:text-red-300"><%= flash[:alert] %></div>
+      <% end %>
+      <% if flash[:notice].present? %>
+        <div class="mb-4 rounded-md bg-green-50 p-4 text-sm text-green-700 dark:bg-green-900/20 dark:text-green-300"><%= flash[:notice] %></div>
+      <% end %>
+
+      <%= form_with url: signup_path, method: :post, local: true, html: { class: "space-y-6" } do |form| %>
+        <%= form.hidden_field :redirect_uri, value: @redirect_uri %>
+
+        <div>
+          <%= form.label :email, "Email address", class: "block text-sm/6 font-medium text-gray-900 dark:text-white" %>
+          <div class="mt-2">
+            <%= form.email_field "signup[email]", required: true, autofocus: true, autocomplete: "email", class: "block w-full rounded-md bg-white px-3 py-1.5 text-base text-gray-900 outline outline-1 -outline-offset-1 outline-gray-300 placeholder:text-gray-400 focus:outline focus:outline-2 focus:-outline-offset-2 focus:outline-indigo-600 sm:text-sm/6 dark:bg-white/5 dark:text-white dark:outline-white/10 dark:placeholder:text-gray-500 dark:focus:outline-indigo-500" %>
+          </div>
+        </div>
+
+        <div>
+          <%= form.label :password, "Password", class: "block text-sm/6 font-medium text-gray-900 dark:text-white" %>
+          <div class="mt-2">
+            <%= form.password_field "signup[password]", required: true, autocomplete: "new-password", class: "block w-full rounded-md bg-white px-3 py-1.5 text-base text-gray-900 outline outline-1 -outline-offset-1 outline-gray-300 placeholder:text-gray-400 focus:outline focus:outline-2 focus:-outline-offset-2 focus:outline-indigo-600 sm:text-sm/6 dark:bg-white/5 dark:text-white dark:outline-white/10 dark:placeholder:text-gray-500 dark:focus:outline-indigo-500" %>
+          </div>
+        </div>
+
+        <div>
+          <%= form.label :password_confirmation, "Confirm Password", class: "block text-sm/6 font-medium text-gray-900 dark:text-white" %>
+          <div class="mt-2">
+            <%= form.password_field "signup[password_confirmation]", required: true, autocomplete: "new-password", class: "block w-full rounded-md bg-white px-3 py-1.5 text-base text-gray-900 outline outline-1 -outline-offset-1 outline-gray-300 placeholder:text-gray-400 focus:outline focus:outline-2 focus:-outline-offset-2 focus:outline-indigo-600 sm:text-sm/6 dark:bg-white/5 dark:text-white dark:outline-white/10 dark:placeholder:text-gray-500 dark:focus:outline-indigo-500" %>
+          </div>
+        </div>
+
+        <div>
+          <%= form.submit "Create account", class: "flex w-full justify-center rounded-md bg-indigo-600 px-3 py-1.5 text-sm/6 font-semibold text-white shadow-sm hover:bg-indigo-500 focus-visible:outline focus-visible:outline-2 focus-visible:outline-offset-2 focus-visible:outline-indigo-600 dark:bg-indigo-500 dark:shadow-none dark:hover:bg-indigo-400 dark:focus-visible:outline-indigo-500" %>
+        </div>
+      <% end %>
+
+      <% if StandardId.config.google_client_id.present? || StandardId.config.apple_client_id.present? %>
+        <div>
+          <div class="mt-10 flex items-center gap-x-6">
+            <div class="w-full flex-1 border-t border-gray-200 dark:border-white/10"></div>
+            <p class="text-nowrap text-sm/6 font-medium text-gray-900 dark:text-white">Or continue with</p>
+            <div class="w-full flex-1 border-t border-gray-200 dark:border-white/10"></div>
+          </div>
+
+          <div class="mt-6 grid grid-cols-2 gap-4">
+            <% if StandardId.config.google_client_id.present? %>
+              <%= form_with url: signup_path, method: :post, local: true do |form| %>
+                <%= form.hidden_field :connection, value: "google-oauth2" %>
+                <%= form.hidden_field :redirect_uri, value: @redirect_uri %>
+                <button type="submit" class="flex w-full items-center justify-center gap-3 rounded-md bg-white px-3 py-2 text-sm font-semibold text-gray-900 shadow-sm ring-1 ring-inset ring-gray-300 hover:bg-gray-50 focus-visible:ring-transparent dark:bg-white/10 dark:text-white dark:shadow-none dark:ring-white/5 dark:hover:bg-white/20">
+                  <svg viewBox="0 0 24 24" aria-hidden="true" class="h-5 w-5">
+                    <path d="M12.0003 4.75C13.7703 4.75 15.3553 5.36002 16.6053 6.54998L20.0303 3.125C17.9502 1.19 15.2353 0 12.0003 0C7.31028 0 3.25527 2.69 1.28027 6.60998L5.27028 9.70498C6.21525 6.86002 8.87028 4.75 12.0003 4.75Z" fill="#EA4335" />
+                    <path d="M23.49 12.275C23.49 11.49 23.415 10.73 23.3 10H12V14.51H18.47C18.18 15.99 17.34 17.25 16.08 18.1L19.945 21.1C22.2 19.01 23.49 15.92 23.49 12.275Z" fill="#4285F4" />
+                    <path d="M5.26498 14.2949C5.02498 13.5699 4.88501 12.7999 4.88501 11.9999C4.88501 11.1999 5.01998 10.4299 5.26498 9.7049L1.275 6.60986C0.46 8.22986 0 10.0599 0 11.9999C0 13.9399 0.46 15.7699 1.28 17.3899L5.26498 14.2949Z" fill="#FBBC05" />
+                    <path d="M12.0004 24.0001C15.2404 24.0001 17.9654 22.935 19.9454 21.095L16.0804 18.095C15.0054 18.82 13.6204 19.245 12.0004 19.245C8.8704 19.245 6.21537 17.135 5.2654 14.29L1.27539 17.385C3.25539 21.31 7.3104 24.0001 12.0004 24.0001Z" fill="#34A853" />
+                  </svg>
+                  <span class="text-sm/6 font-semibold">Google</span>
+                </button>
+              <% end %>
+            <% end %>
+
+            <% if StandardId.config.apple_client_id.present? %>
+              <%= form_with url: signup_path, method: :post, local: true do |form| %>
+                <%= form.hidden_field :connection, value: "apple" %>
+                <%= form.hidden_field :redirect_uri, value: @redirect_uri %>
+                <button type="submit" class="flex w-full items-center justify-center gap-3 rounded-md bg-white px-3 py-2 text-sm font-semibold text-gray-900 shadow-sm ring-1 ring-inset ring-gray-300 hover:bg-gray-50 focus-visible:ring-transparent dark:bg-white/10 dark:text-white dark:shadow-none dark:ring-white/5 dark:hover:bg-white/20">
+                  <svg viewBox="0 0 20 20" fill="currentColor" aria-hidden="true" class="size-5 fill-[#24292F] dark:fill-white">
+                    <path d="M10 0C4.477 0 0 4.484 0 10.017c0 4.425 2.865 8.18 6.839 9.504.5.092.682-.217.682-.483 0-.237-.008-.868-.013-1.703-2.782.605-3.369-1.343-3.369-1.343-.454-1.158-1.11-1.466-1.11-1.466-.908-.62.069-.608.069-.608 1.003.07 1.531 1.032 1.531 1.032.892 1.53 2.341 1.088 2.91.832.092-.647.35-1.088.636-1.338-2.22-.253-4.555-1.113-4.555-4.951 0-1.093.39-1.988 1.029-2.688-.103-.253-.446-1.272.098-2.65 0 0 .84-.27 2.75 1.026A9.564 9.564 0 0110 4.844c.85.004 1.705.115 2.504.337 1.909-1.296 2.747-1.027 2.747-1.027.546 1.379.203 2.398.1 2.651.64.7 1.028 1.595 1.028 2.688 0 3.848-2.339 4.695-4.566 4.942.359.31.678.921.678 1.856 0 1.338-.012 2.419-.012 2.747 0 .268.18.58.688.482A10.019 10.019 0 0020 10.017C20 4.484 15.522 0 10 0z" clip-rule="evenodd" fill-rule="evenodd" />
+                  </svg>
+                  <span class="text-sm/6 font-semibold">Apple</span>
+                </button>
+              <% end %>
+            <% end %>
+          </div>
+        </div>
+      <% end %>
+    </div>
+
+    <p class="mt-10 text-center text-sm/6 text-gray-500 dark:text-gray-400">
+      Already have an account?
+      <%= link_to "Sign in", login_path(redirect_uri: @redirect_uri), class: "font-semibold text-indigo-600 hover:text-indigo-500 dark:text-indigo-400 dark:hover:text-indigo-300" %>
+    </p>
+  </div>
+</div>

data/config/initializers/generators.rb

@@ -0,0 +1,9 @@
+StandardId::Engine.config.generators do |g|
+  g.test_framework :rspec,
+    fixtures: false,
+    view_specs: false,
+    helper_specs: false,
+    routing_specs: false,
+    controller_specs: false,
+    request_specs: true
+end

data/config/initializers/migration_helpers.rb

@@ -0,0 +1,32 @@
+# Monkey patch ActiveRecord::Migration to add primary_key_type and foreign_key_type methods
+module ActiveRecord
+  class Migration
+    class << self
+      def primary_and_foreign_key_types
+        config = Rails.configuration.generators
+        config.options[config.orm][:primary_key_type] || :bigint
+      end
+
+      def primary_key_type
+        primary_and_foreign_key_types
+      end
+
+      def foreign_key_type
+        primary_and_foreign_key_types
+      end
+    end
+
+    # Make these methods available as instance methods too
+    def primary_and_foreign_key_types
+      self.class.primary_and_foreign_key_types
+    end
+
+    def primary_key_type
+      self.class.primary_key_type
+    end
+
+    def foreign_key_type
+      self.class.foreign_key_type
+    end
+  end
+end

data/config/routes/api.rb

@@ -0,0 +1,24 @@
+StandardId::ApiEngine.routes.draw do
+  scope module: :api do
+    resource :authorize, only: [:show], controller: :authorization
+
+    resource :userinfo, only: [:show], controller: :userinfo
+
+    resource :passwordless, only: [], controller: :passwordless do
+      post :start
+    end
+
+    namespace :oidc do
+      resource :logout, only: [:show], controller: :logout
+    end
+
+    namespace :oauth do
+      resource :token, only: [:create]
+
+      namespace :callback do
+        get :google, to: "providers#google"
+        post :apple, to: "providers#apple"
+      end
+    end
+  end
+end

data/config/routes/web.rb

@@ -0,0 +1,26 @@
+StandardId::WebEngine.routes.draw do
+  scope module: :web do
+    # Authentication flows
+    resource :login, only: [:show, :create], controller: :login
+    resource :logout, only: [:create], controller: :logout
+    resource :signup, only: [:show, :create], controller: :signup
+
+    # Social authentication callbacks (web flow)
+    namespace :auth do
+      namespace :callback do
+        get :google, to: "providers#google"
+        post :apple, to: "providers#apple"
+      end
+    end
+
+    # Password reset
+    namespace :reset_password do
+      resource :start, only: [:show, :create], controller: :start
+      resource :confirm, only: [:show, :update], controller: :confirm
+    end
+
+    # Account management
+    resource :account, only: [:show, :edit, :update], controller: :account
+    resources :sessions, only: [:index, :destroy], controller: :sessions
+  end
+end

data/db/migrate/20250830000000_create_standard_id_client_applications.rb

@@ -0,0 +1,56 @@
+class CreateStandardIdClientApplications < ActiveRecord::Migration[7.1]
+  def change
+    create_table :standard_id_client_applications do |t|
+      # Polymorphic owner association (Account, Organization, etc.)
+      t.references :owner, null: false, polymorphic: true, index: true
+
+      # Basic client information
+      t.string :name, null: false
+      t.text :description
+
+      # OAuth client identifier
+      t.string :client_id, null: false, index: { unique: true }
+
+      # OAuth configuration
+      t.text :redirect_uris, null: false
+      t.string :scopes, default: "openid profile email"
+      t.string :grant_types, default: "authorization_code refresh_token"
+      t.string :response_types, default: "code"
+
+      # PKCE configuration
+      t.boolean :require_pkce, null: false, default: true
+      t.string :code_challenge_methods, default: "S256"
+
+      # Token configuration
+      t.integer :access_token_lifetime, default: 3600 # 1 hour in seconds
+      t.integer :refresh_token_lifetime, default: 2592000 # 30 days in seconds
+      t.integer :authorization_code_lifetime, default: 600 # 10 minutes in seconds
+
+      # Client type and security
+      t.string :client_type, null: false, default: "confidential" # confidential or public
+      t.boolean :require_consent, null: false, default: true
+
+      # Lifecycle management
+      t.boolean :active, null: false, default: true
+      t.datetime :deactivated_at
+
+      # Metadata for extensibility
+      if connection.adapter_name.downcase.include?("postgres")
+        t.jsonb :metadata, default: {}, null: false
+      else
+        t.json :metadata, default: {}, null: false
+      end
+
+      t.timestamps
+
+      # Indexes
+      t.index [:owner_type, :owner_id]
+      t.index :active
+      t.index :client_type
+    end
+
+    if connection.adapter_name.downcase.include?("postgres")
+      add_index :standard_id_clients, :metadata, using: :gin
+    end
+  end
+end

data/db/migrate/20250830171553_create_standard_id_password_credentials.rb

@@ -0,0 +1,10 @@
+class CreateStandardIdPasswordCredentials < ActiveRecord::Migration[8.0]
+  def change
+    create_table :standard_id_password_credentials, id: primary_key_type do |t|
+      t.string :login, null: false, index: { unique: true }
+      t.string :password_digest, null: false
+
+      t.timestamps
+    end
+  end
+end

data/db/migrate/20250830232800_create_standard_id_identifiers.rb

@@ -0,0 +1,17 @@
+class CreateStandardIdIdentifiers < ActiveRecord::Migration[8.0]
+  def change
+    create_table :standard_id_identifiers, id: primary_key_type do |t|
+      t.references :account, null: false, foreign_key: { to_table: StandardId.config.account_class.table_name }, index: true
+
+      t.string :type, null: false
+
+      t.string :value, null: false
+
+      t.timestamp :verified_at
+
+      t.timestamps
+    end
+
+    add_index :standard_id_identifiers, [:account_id, :type, :value], unique: true
+  end
+end

data/db/migrate/20250831075703_create_standard_id_credentials.rb

@@ -0,0 +1,10 @@
+class CreateStandardIdCredentials < ActiveRecord::Migration[8.0]
+  def change
+    create_table :standard_id_credentials, id: primary_key_type do |t|
+      t.references :identifier, null: false, foreign_key: { to_table: :standard_id_identifiers }, index: true
+      t.references :credentialable, null: false, polymorphic: true, index: true
+
+      t.timestamps
+    end
+  end
+end

data/db/migrate/20250831154635_create_standard_id_sessions.rb

@@ -0,0 +1,43 @@
+class CreateStandardIdSessions < ActiveRecord::Migration[8.0]
+  def change
+    create_table :standard_id_sessions, id: primary_key_type do |t|
+      t.references :account, null: false, foreign_key: true, index: true
+
+      # STI type column
+      t.string :type, null: false, index: true
+
+      # Base session columns
+      t.string :lookup_hash, null: false, index: { unique: true }
+      t.string :token_digest, null: false
+      t.string :ip_address
+      t.datetime :expires_at, null: false
+      t.datetime :revoked_at
+
+      if connection.adapter_name.downcase.include?("postgres")
+        t.jsonb :metadata, default: {}, null: false
+        t.index :metadata, using: :gin
+      else
+        t.json :metadata, default: {}, null: false
+      end
+
+      # BrowserSession columns
+      t.text :user_agent
+
+      # DeviceSession columns
+      t.string :device_id
+      t.text :device_agent
+      t.datetime :last_refreshed_at
+
+      # ServiceSession columns
+      t.references :owner, polymorphic: true, null: true, index: true
+      t.string :service_name
+      t.string :service_version
+
+      t.timestamps
+
+      t.index [:lookup_hash, :expires_at, :revoked_at]
+      t.index [:expires_at, :revoked_at]
+      t.index [:account_id, :type, :expires_at]
+    end
+  end
+end

data/db/migrate/20250901134520_create_standard_id_client_secret_credentials.rb

@@ -0,0 +1,20 @@
+class CreateStandardIdClientSecretCredentials < ActiveRecord::Migration[7.1]
+  def change
+    create_table :standard_id_client_secret_credentials do |t|
+      t.string :name, null: false
+
+      t.references :client_application, null: false, foreign_key: { to_table: :standard_id_client_applications }, index: true
+
+      t.string :client_id, null: false, index: true # Denormalized for performance
+      t.string :client_secret_digest, null: false
+
+      t.string :scopes
+      t.string :redirect_uris
+
+      t.boolean :active, null: false, default: true
+      t.datetime :revoked_at
+
+      t.timestamps
+    end
+  end
+end