@authagonal/login 0.1.97

package/dist/lib/utils.d.ts

@@ -0,0 +1,2 @@
+import { type ClassValue } from 'clsx';
+export declare function cn(...inputs: ClassValue[]): string;

package/dist/main.d.ts

@@ -0,0 +1,2 @@
+import './styles.css';
+import './i18n';

package/dist/pages/ConsentPage.d.ts

@@ -0,0 +1 @@
+export default function ConsentPage(): import("react/jsx-runtime").JSX.Element;

package/dist/pages/DevicePage.d.ts

@@ -0,0 +1 @@
+export default function DevicePage(): import("react/jsx-runtime").JSX.Element;

package/dist/pages/ForgotPasswordPage.d.ts

@@ -0,0 +1 @@
+export default function ForgotPasswordPage(): import("react/jsx-runtime").JSX.Element;

package/dist/pages/GrantsPage.d.ts

@@ -0,0 +1 @@
+export default function GrantsPage(): import("react/jsx-runtime").JSX.Element;

package/dist/pages/LoginPage.d.ts

@@ -0,0 +1 @@
+export default function LoginPage(): import("react/jsx-runtime").JSX.Element;

package/dist/pages/MfaChallengePage.d.ts

@@ -0,0 +1 @@
+export default function MfaChallengePage(): import("react/jsx-runtime").JSX.Element;

package/dist/pages/MfaSetupPage.d.ts

@@ -0,0 +1 @@
+export default function MfaSetupPage(): import("react/jsx-runtime").JSX.Element;

package/dist/pages/RegisterPage.d.ts

@@ -0,0 +1 @@
+export default function RegisterPage(): import("react/jsx-runtime").JSX.Element;

package/dist/pages/ResetPasswordPage.d.ts

@@ -0,0 +1 @@
+export default function ResetPasswordPage(): import("react/jsx-runtime").JSX.Element;

package/dist/types.d.ts

@@ -0,0 +1,91 @@
+export interface LoginResponse {
+    userId: string;
+    email: string;
+    name: string;
+}
+export interface ApiError {
+    error: string;
+    message?: string;
+    retryAfter?: number;
+    redirectUrl?: string;
+}
+export interface SessionResponse {
+    authenticated: boolean;
+    userId: string;
+    email: string;
+    name: string;
+}
+export interface SsoCheckResponse {
+    ssoRequired: boolean;
+    providerType?: string;
+    connectionId?: string;
+    redirectUrl?: string;
+}
+export interface ExternalProvider {
+    connectionId: string;
+    name: string;
+    loginUrl: string;
+}
+export interface ProvidersResponse {
+    providers: ExternalProvider[];
+}
+export interface PasswordPolicyRule {
+    rule: string;
+    value: number | null;
+    label: string;
+}
+export interface PasswordPolicyResponse {
+    rules: PasswordPolicyRule[];
+}
+export interface MfaLoginResponse {
+    mfaRequired?: boolean;
+    mfaSetupRequired?: boolean;
+    mfaAvailable?: boolean;
+    clientId?: string;
+    challengeId?: string;
+    setupToken?: string;
+    methods?: string[];
+    webAuthn?: PublicKeyCredentialRequestOptionsJSON;
+    userId?: string;
+    email?: string;
+    name?: string;
+}
+export type PublicKeyCredentialRequestOptionsJSON = any;
+export type PublicKeyCredentialCreationOptionsJSON = any;
+export interface MfaVerifyResponse {
+    userId: string;
+    email: string;
+    name: string;
+}
+export interface MfaStatusResponse {
+    enabled: boolean;
+    methods: MfaMethod[];
+}
+export interface MfaMethod {
+    id: string;
+    type: string;
+    name: string;
+    createdAt: string;
+    lastUsedAt: string | null;
+    isConsumed?: boolean | null;
+}
+export interface MfaTotpSetupResponse {
+    setupToken: string;
+    qrCodeDataUri: string;
+    manualKey: string;
+}
+export interface MfaRecoveryGenerateResponse {
+    codes: string[];
+}
+export interface MfaWebAuthnSetupResponse {
+    setupToken: string;
+    options: PublicKeyCredentialCreationOptionsJSON;
+}
+export interface MfaWebAuthnConfirmResponse {
+    success: boolean;
+    credentialId: string;
+}
+export interface RegisterResponse {
+    success: boolean;
+    userId: string;
+}

package/index.html

@@ -0,0 +1,13 @@
+<!doctype html>
+<html lang="en">
+  <head>
+    <meta charset="UTF-8" />
+    <link rel="icon" type="image/svg+xml" href="/favicon.svg" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <title>Sign In — Authagonal</title>
+  </head>
+  <body>
+    <div id="root"></div>
+    <script type="module" src="/src/main.tsx"></script>
+  </body>
+</html>

package/package.json

@@ -0,0 +1,65 @@
+{
+  "name": "@authagonal/login",
+  "version": "0.1.97",
+  "description": "Default login UI for Authagonal — runtime-configurable via branding.json",
+  "type": "module",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/authagonal/authagonal.git",
+    "directory": "login-app"
+  },
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js"
+    },
+    "./styles.css": "./dist/index.css"
+  },
+  "files": [
+    "dist",
+    "src",
+    "public",
+    "index.html",
+    "vite.config.ts",
+    "tsconfig.json",
+    "tsconfig.app.json"
+  ],
+  "scripts": {
+    "dev": "vite",
+    "build": "vite build && tsc -b",
+    "build:spa": "vite build --config vite.spa.config.ts",
+    "lint": "eslint .",
+    "preview": "vite preview"
+  },
+  "dependencies": {
+    "class-variance-authority": "^0.7.1",
+    "clsx": "^2.1.1",
+    "i18next": "^25.1.3",
+    "i18next-browser-languagedetector": "^8.0.6",
+    "lucide-react": "^1.7.0",
+    "react": "^19.2.4",
+    "react-dom": "^19.2.4",
+    "react-i18next": "^15.5.2",
+    "react-router-dom": "^7.13.2",
+    "tailwind-merge": "^3.5.0"
+  },
+  "devDependencies": {
+    "@eslint/js": "^9.39.4",
+    "@tailwindcss/vite": "^4.2.2",
+    "@types/node": "^24.12.0",
+    "@types/react": "^19.2.14",
+    "@types/react-dom": "^19.2.3",
+    "@vitejs/plugin-react": "^6.0.1",
+    "eslint": "^9.39.4",
+    "eslint-plugin-react-hooks": "^7.0.1",
+    "eslint-plugin-react-refresh": "^0.5.2",
+    "globals": "^17.4.0",
+    "tailwindcss": "^4.2.2",
+    "typescript": "~5.9.3",
+    "typescript-eslint": "^8.57.0",
+    "vite": "^8.0.1"
+  }
+}

package/public/branding.json

@@ -0,0 +1,8 @@
+{
+  "appName": "Authagonal",
+  "logoUrl": null,
+  "primaryColor": "#2563eb",
+  "supportEmail": null,
+  "showForgotPassword": true,
+  "customCssUrl": null
+}

package/public/favicon.svg

@@ -0,0 +1 @@
+<svg xmlns="http://www.w3.org/2000/svg" width="48" height="46" fill="none" viewBox="0 0 48 46"><path fill="#863bff" d="M25.946 44.938c-.664.845-2.021.375-2.021-.698V33.937a2.26 2.26 0 0 0-2.262-2.262H10.287c-.92 0-1.456-1.04-.92-1.788l7.48-10.471c1.07-1.497 0-3.578-1.842-3.578H1.237c-.92 0-1.456-1.04-.92-1.788L10.013.474c.214-.297.556-.474.92-.474h28.894c.92 0 1.456 1.04.92 1.788l-7.48 10.471c-1.07 1.498 0 3.579 1.842 3.579h11.377c.943 0 1.473 1.088.89 1.83L25.947 44.94z" style="fill:#863bff;fill:color(display-p3 .5252 .23 1);fill-opacity:1"/><mask id="a" width="48" height="46" x="0" y="0" maskUnits="userSpaceOnUse" style="mask-type:alpha"><path fill="#000" d="M25.842 44.938c-.664.844-2.021.375-2.021-.698V33.937a2.26 2.26 0 0 0-2.262-2.262H10.183c-.92 0-1.456-1.04-.92-1.788l7.48-10.471c1.07-1.498 0-3.579-1.842-3.579H1.133c-.92 0-1.456-1.04-.92-1.787L9.91.473c.214-.297.556-.474.92-.474h28.894c.92 0 1.456 1.04.92 1.788l-7.48 10.471c-1.07 1.498 0 3.578 1.842 3.578h11.377c.943 0 1.473 1.088.89 1.832L25.843 44.94z" style="fill:#000;fill-opacity:1"/></mask><g mask="url(#a)"><g filter="url(#b)"><ellipse cx="5.508" cy="14.704" fill="#ede6ff" rx="5.508" ry="14.704" style="fill:#ede6ff;fill:color(display-p3 .9275 .9033 1);fill-opacity:1" transform="matrix(.00324 1 1 -.00324 -4.47 31.516)"/></g><g filter="url(#c)"><ellipse cx="10.399" cy="29.851" fill="#ede6ff" rx="10.399" ry="29.851" style="fill:#ede6ff;fill:color(display-p3 .9275 .9033 1);fill-opacity:1" transform="matrix(.00324 1 1 -.00324 -39.328 7.883)"/></g><g filter="url(#d)"><ellipse cx="5.508" cy="30.487" fill="#7e14ff" rx="5.508" ry="30.487" style="fill:#7e14ff;fill:color(display-p3 .4922 .0767 1);fill-opacity:1" transform="rotate(89.814 -25.913 -14.639)scale(1 -1)"/></g><g filter="url(#e)"><ellipse cx="5.508" cy="30.599" fill="#7e14ff" rx="5.508" ry="30.599" style="fill:#7e14ff;fill:color(display-p3 .4922 .0767 1);fill-opacity:1" transform="rotate(89.814 -32.644 -3.334)scale(1 -1)"/></g><g filter="url(#f)"><ellipse cx="5.508" cy="30.599" fill="#7e14ff" rx="5.508" ry="30.599" style="fill:#7e14ff;fill:color(display-p3 .4922 .0767 1);fill-opacity:1" transform="matrix(.00324 1 1 -.00324 -34.34 30.47)"/></g><g filter="url(#g)"><ellipse cx="14.072" cy="22.078" fill="#ede6ff" rx="14.072" ry="22.078" style="fill:#ede6ff;fill:color(display-p3 .9275 .9033 1);fill-opacity:1" transform="rotate(93.35 24.506 48.493)scale(-1 1)"/></g><g filter="url(#h)"><ellipse cx="3.47" cy="21.501" fill="#7e14ff" rx="3.47" ry="21.501" style="fill:#7e14ff;fill:color(display-p3 .4922 .0767 1);fill-opacity:1" transform="rotate(89.009 28.708 47.59)scale(-1 1)"/></g><g filter="url(#i)"><ellipse cx="3.47" cy="21.501" fill="#7e14ff" rx="3.47" ry="21.501" style="fill:#7e14ff;fill:color(display-p3 .4922 .0767 1);fill-opacity:1" transform="rotate(89.009 28.708 47.59)scale(-1 1)"/></g><g filter="url(#j)"><ellipse cx=".387" cy="8.972" fill="#7e14ff" rx="4.407" ry="29.108" style="fill:#7e14ff;fill:color(display-p3 .4922 .0767 1);fill-opacity:1" transform="rotate(39.51 .387 8.972)"/></g><g filter="url(#k)"><ellipse cx="47.523" cy="-6.092" fill="#7e14ff" rx="4.407" ry="29.108" style="fill:#7e14ff;fill:color(display-p3 .4922 .0767 1);fill-opacity:1" transform="rotate(37.892 47.523 -6.092)"/></g><g filter="url(#l)"><ellipse cx="41.412" cy="6.333" fill="#47bfff" rx="5.971" ry="9.665" style="fill:#47bfff;fill:color(display-p3 .2799 .748 1);fill-opacity:1" transform="rotate(37.892 41.412 6.333)"/></g><g filter="url(#m)"><ellipse cx="-1.879" cy="38.332" fill="#7e14ff" rx="4.407" ry="29.108" style="fill:#7e14ff;fill:color(display-p3 .4922 .0767 1);fill-opacity:1" transform="rotate(37.892 -1.88 38.332)"/></g><g filter="url(#n)"><ellipse cx="-1.879" cy="38.332" fill="#7e14ff" rx="4.407" ry="29.108" style="fill:#7e14ff;fill:color(display-p3 .4922 .0767 1);fill-opacity:1" transform="rotate(37.892 -1.88 38.332)"/></g><g filter="url(#o)"><ellipse cx="35.651" cy="29.907" fill="#7e14ff" rx="4.407" ry="29.108" style="fill:#7e14ff;fill:color(display-p3 .4922 .0767 1);fill-opacity:1" transform="rotate(37.892 35.651 29.907)"/></g><g filter="url(#p)"><ellipse cx="38.418" cy="32.4" fill="#47bfff" rx="5.971" ry="15.297" style="fill:#47bfff;fill:color(display-p3 .2799 .748 1);fill-opacity:1" transform="rotate(37.892 38.418 32.4)"/></g></g><defs><filter id="b" width="60.045" height="41.654" x="-19.77" y="16.149" color-interpolation-filters="sRGB" filterUnits="userSpaceOnUse"><feFlood flood-opacity="0" result="BackgroundImageFix"/><feBlend in="SourceGraphic" in2="BackgroundImageFix" result="shape"/><feGaussianBlur result="effect1_foregroundBlur_2002_17158" stdDeviation="7.659"/></filter><filter id="c" width="90.34" height="51.437" x="-54.613" y="-7.533" color-interpolation-filters="sRGB" filterUnits="userSpaceOnUse"><feFlood flood-opacity="0" result="BackgroundImageFix"/><feBlend in="SourceGraphic" in2="BackgroundImageFix" result="shape"/><feGaussianBlur result="effect1_foregroundBlur_2002_17158" stdDeviation="7.659"/></filter><filter id="d" width="79.355" height="29.4" x="-49.64" y="2.03" color-interpolation-filters="sRGB" filterUnits="userSpaceOnUse"><feFlood flood-opacity="0" result="BackgroundImageFix"/><feBlend in="SourceGraphic" in2="BackgroundImageFix" result="shape"/><feGaussianBlur result="effect1_foregroundBlur_2002_17158" stdDeviation="4.596"/></filter><filter id="e" width="79.579" height="29.4" x="-45.045" y="20.029" color-interpolation-filters="sRGB" filterUnits="userSpaceOnUse"><feFlood flood-opacity="0" result="BackgroundImageFix"/><feBlend in="SourceGraphic" in2="BackgroundImageFix" result="shape"/><feGaussianBlur result="effect1_foregroundBlur_2002_17158" stdDeviation="4.596"/></filter><filter id="f" width="79.579" height="29.4" x="-43.513" y="21.178" color-interpolation-filters="sRGB" filterUnits="userSpaceOnUse"><feFlood flood-opacity="0" result="BackgroundImageFix"/><feBlend in="SourceGraphic" in2="BackgroundImageFix" result="shape"/><feGaussianBlur result="effect1_foregroundBlur_2002_17158" stdDeviation="4.596"/></filter><filter id="g" width="74.749" height="58.852" x="15.756" y="-17.901" color-interpolation-filters="sRGB" filterUnits="userSpaceOnUse"><feFlood flood-opacity="0" result="BackgroundImageFix"/><feBlend in="SourceGraphic" in2="BackgroundImageFix" result="shape"/><feGaussianBlur result="effect1_foregroundBlur_2002_17158" stdDeviation="7.659"/></filter><filter id="h" width="61.377" height="25.362" x="23.548" y="2.284" color-interpolation-filters="sRGB" filterUnits="userSpaceOnUse"><feFlood flood-opacity="0" result="BackgroundImageFix"/><feBlend in="SourceGraphic" in2="BackgroundImageFix" result="shape"/><feGaussianBlur result="effect1_foregroundBlur_2002_17158" stdDeviation="4.596"/></filter><filter id="i" width="61.377" height="25.362" x="23.548" y="2.284" color-interpolation-filters="sRGB" filterUnits="userSpaceOnUse"><feFlood flood-opacity="0" result="BackgroundImageFix"/><feBlend in="SourceGraphic" in2="BackgroundImageFix" result="shape"/><feGaussianBlur result="effect1_foregroundBlur_2002_17158" stdDeviation="4.596"/></filter><filter id="j" width="56.045" height="63.649" x="-27.636" y="-22.853" color-interpolation-filters="sRGB" filterUnits="userSpaceOnUse"><feFlood flood-opacity="0" result="BackgroundImageFix"/><feBlend in="SourceGraphic" in2="BackgroundImageFix" result="shape"/><feGaussianBlur result="effect1_foregroundBlur_2002_17158" stdDeviation="4.596"/></filter><filter id="k" width="54.814" height="64.646" x="20.116" y="-38.415" color-interpolation-filters="sRGB" filterUnits="userSpaceOnUse"><feFlood flood-opacity="0" result="BackgroundImageFix"/><feBlend in="SourceGraphic" in2="BackgroundImageFix" result="shape"/><feGaussianBlur result="effect1_foregroundBlur_2002_17158" stdDeviation="4.596"/></filter><filter id="l" width="33.541" height="35.313" x="24.641" y="-11.323" color-interpolation-filters="sRGB" filterUnits="userSpaceOnUse"><feFlood flood-opacity="0" result="BackgroundImageFix"/><feBlend in="SourceGraphic" in2="BackgroundImageFix" result="shape"/><feGaussianBlur result="effect1_foregroundBlur_2002_17158" stdDeviation="4.596"/></filter><filter id="m" width="54.814" height="64.646" x="-29.286" y="6.009" color-interpolation-filters="sRGB" filterUnits="userSpaceOnUse"><feFlood flood-opacity="0" result="BackgroundImageFix"/><feBlend in="SourceGraphic" in2="BackgroundImageFix" result="shape"/><feGaussianBlur result="effect1_foregroundBlur_2002_17158" stdDeviation="4.596"/></filter><filter id="n" width="54.814" height="64.646" x="-29.286" y="6.009" color-interpolation-filters="sRGB" filterUnits="userSpaceOnUse"><feFlood flood-opacity="0" result="BackgroundImageFix"/><feBlend in="SourceGraphic" in2="BackgroundImageFix" result="shape"/><feGaussianBlur result="effect1_foregroundBlur_2002_17158" stdDeviation="4.596"/></filter><filter id="o" width="54.814" height="64.646" x="8.244" y="-2.416" color-interpolation-filters="sRGB" filterUnits="userSpaceOnUse"><feFlood flood-opacity="0" result="BackgroundImageFix"/><feBlend in="SourceGraphic" in2="BackgroundImageFix" result="shape"/><feGaussianBlur result="effect1_foregroundBlur_2002_17158" stdDeviation="4.596"/></filter><filter id="p" width="39.409" height="43.623" x="18.713" y="10.588" color-interpolation-filters="sRGB" filterUnits="userSpaceOnUse"><feFlood flood-opacity="0" result="BackgroundImageFix"/><feBlend in="SourceGraphic" in2="BackgroundImageFix" result="shape"/><feGaussianBlur result="effect1_foregroundBlur_2002_17158" stdDeviation="4.596"/></filter></defs></svg>

package/public/icons.svg

@@ -0,0 +1,24 @@
+<svg xmlns="http://www.w3.org/2000/svg">
+  <symbol id="bluesky-icon" viewBox="0 0 16 17">
+    <g clip-path="url(#bluesky-clip)"><path fill="#08060d" d="M7.75 7.735c-.693-1.348-2.58-3.86-4.334-5.097-1.68-1.187-2.32-.981-2.74-.79C.188 2.065.1 2.812.1 3.251s.241 3.602.398 4.13c.52 1.744 2.367 2.333 4.07 2.145-2.495.37-4.71 1.278-1.805 4.512 3.196 3.309 4.38-.71 4.987-2.746.608 2.036 1.307 5.91 4.93 2.746 2.72-2.746.747-4.143-1.747-4.512 1.702.189 3.55-.4 4.07-2.145.156-.528.397-3.691.397-4.13s-.088-1.186-.575-1.406c-.42-.19-1.06-.395-2.741.79-1.755 1.24-3.64 3.752-4.334 5.099"/></g>
+    <defs><clipPath id="bluesky-clip"><path fill="#fff" d="M.1.85h15.3v15.3H.1z"/></clipPath></defs>
+  </symbol>
+  <symbol id="discord-icon" viewBox="0 0 20 19">
+    <path fill="#08060d" d="M16.224 3.768a14.5 14.5 0 0 0-3.67-1.153c-.158.286-.343.67-.47.976a13.5 13.5 0 0 0-4.067 0c-.128-.306-.317-.69-.476-.976A14.4 14.4 0 0 0 3.868 3.77C1.546 7.28.916 10.703 1.231 14.077a14.7 14.7 0 0 0 4.5 2.306q.545-.748.965-1.587a9.5 9.5 0 0 1-1.518-.74q.191-.14.372-.293c2.927 1.369 6.107 1.369 8.999 0q.183.152.372.294-.723.437-1.52.74.418.838.963 1.588a14.6 14.6 0 0 0 4.504-2.308c.37-3.911-.63-7.302-2.644-10.309m-9.13 8.234c-.878 0-1.599-.82-1.599-1.82 0-.998.705-1.82 1.6-1.82.894 0 1.614.82 1.599 1.82.001 1-.705 1.82-1.6 1.82m5.91 0c-.878 0-1.599-.82-1.599-1.82 0-.998.705-1.82 1.6-1.82.893 0 1.614.82 1.599 1.82 0 1-.706 1.82-1.6 1.82"/>
+  </symbol>
+  <symbol id="documentation-icon" viewBox="0 0 21 20">
+    <path fill="none" stroke="#aa3bff" stroke-linecap="round" stroke-linejoin="round" stroke-width="1.35" d="m15.5 13.333 1.533 1.322c.645.555.967.833.967 1.178s-.322.623-.967 1.179L15.5 18.333m-3.333-5-1.534 1.322c-.644.555-.966.833-.966 1.178s.322.623.966 1.179l1.534 1.321"/>
+    <path fill="none" stroke="#aa3bff" stroke-linecap="round" stroke-linejoin="round" stroke-width="1.35" d="M17.167 10.836v-4.32c0-1.41 0-2.117-.224-2.68-.359-.906-1.118-1.621-2.08-1.96-.599-.21-1.349-.21-2.848-.21-2.623 0-3.935 0-4.983.369-1.684.591-3.013 1.842-3.641 3.428C3 6.449 3 7.684 3 10.154v2.122c0 2.558 0 3.838.706 4.726q.306.383.713.671c.76.536 1.79.64 3.581.66"/>
+    <path fill="none" stroke="#aa3bff" stroke-linecap="round" stroke-linejoin="round" stroke-width="1.35" d="M3 10a2.78 2.78 0 0 1 2.778-2.778c.555 0 1.209.097 1.748-.047.48-.129.854-.503.982-.982.145-.54.048-1.194.048-1.749a2.78 2.78 0 0 1 2.777-2.777"/>
+  </symbol>
+  <symbol id="github-icon" viewBox="0 0 19 19">
+    <path fill="#08060d" fill-rule="evenodd" d="M9.356 1.85C5.05 1.85 1.57 5.356 1.57 9.694a7.84 7.84 0 0 0 5.324 7.44c.387.079.528-.168.528-.376 0-.182-.013-.805-.013-1.454-2.165.467-2.616-.935-2.616-.935-.349-.91-.864-1.143-.864-1.143-.71-.48.051-.48.051-.48.787.051 1.2.805 1.2.805.695 1.194 1.817.857 2.268.649.064-.507.27-.857.49-1.052-1.728-.182-3.545-.857-3.545-3.87 0-.857.31-1.558.8-2.104-.078-.195-.349-1 .077-2.078 0 0 .657-.208 2.14.805a7.5 7.5 0 0 1 1.946-.26c.657 0 1.328.092 1.946.26 1.483-1.013 2.14-.805 2.14-.805.426 1.078.155 1.883.078 2.078.502.546.799 1.247.799 2.104 0 3.013-1.818 3.675-3.558 3.87.284.247.528.714.528 1.454 0 1.052-.012 1.896-.012 2.156 0 .208.142.455.528.377a7.84 7.84 0 0 0 5.324-7.441c.013-4.338-3.48-7.844-7.773-7.844" clip-rule="evenodd"/>
+  </symbol>
+  <symbol id="social-icon" viewBox="0 0 20 20">
+    <path fill="none" stroke="#aa3bff" stroke-linecap="round" stroke-linejoin="round" stroke-width="1.35" d="M12.5 6.667a4.167 4.167 0 1 0-8.334 0 4.167 4.167 0 0 0 8.334 0"/>
+    <path fill="none" stroke="#aa3bff" stroke-linecap="round" stroke-linejoin="round" stroke-width="1.35" d="M2.5 16.667a5.833 5.833 0 0 1 8.75-5.053m3.837.474.513 1.035c.07.144.257.282.414.309l.93.155c.596.1.736.536.307.965l-.723.73a.64.64 0 0 0-.152.531l.207.903c.164.715-.213.991-.84.618l-.872-.52a.63.63 0 0 0-.577 0l-.872.52c-.624.373-1.003.094-.84-.618l.207-.903a.64.64 0 0 0-.152-.532l-.723-.729c-.426-.43-.289-.864.306-.964l.93-.156a.64.64 0 0 0 .412-.31l.513-1.034c.28-.562.735-.562 1.012 0"/>
+  </symbol>
+  <symbol id="x-icon" viewBox="0 0 19 19">
+    <path fill="#08060d" fill-rule="evenodd" d="M1.893 1.98c.052.072 1.245 1.769 2.653 3.77l2.892 4.114c.183.261.333.48.333.486s-.068.089-.152.183l-.522.593-.765.867-3.597 4.087c-.375.426-.734.834-.798.905a1 1 0 0 0-.118.148c0 .01.236.017.664.017h.663l.729-.83c.4-.457.796-.906.879-.999a692 692 0 0 0 1.794-2.038c.034-.037.301-.34.594-.675l.551-.624.345-.392a7 7 0 0 1 .34-.374c.006 0 .93 1.306 2.052 2.903l2.084 2.965.045.063h2.275c1.87 0 2.273-.003 2.266-.021-.008-.02-1.098-1.572-3.894-5.547-2.013-2.862-2.28-3.246-2.273-3.266.008-.019.282-.332 2.085-2.38l2-2.274 1.567-1.782c.022-.028-.016-.03-.65-.03h-.674l-.3.342a871 871 0 0 1-1.782 2.025c-.067.075-.405.458-.75.852a100 100 0 0 1-.803.91c-.148.172-.299.344-.99 1.127-.304.343-.32.358-.345.327-.015-.019-.904-1.282-1.976-2.808L6.365 1.85H1.8zm1.782.91 8.078 11.294c.772 1.08 1.413 1.973 1.425 1.984.016.017.241.02 1.05.017l1.03-.004-2.694-3.766L7.796 5.75 5.722 2.852l-1.039-.004-1.039-.004z" clip-rule="evenodd"/>
+  </symbol>
+</svg>

package/src/App.tsx

@@ -0,0 +1,32 @@
+import { BrowserRouter, Routes, Route, Navigate } from 'react-router-dom';
+import AuthLayout from './components/AuthLayout';
+import LoginPage from './pages/LoginPage';
+import RegisterPage from './pages/RegisterPage';
+import ForgotPasswordPage from './pages/ForgotPasswordPage';
+import ResetPasswordPage from './pages/ResetPasswordPage';
+import MfaChallengePage from './pages/MfaChallengePage';
+import MfaSetupPage from './pages/MfaSetupPage';
+import DevicePage from './pages/DevicePage';
+import ConsentPage from './pages/ConsentPage';
+import GrantsPage from './pages/GrantsPage';
+
+export default function App() {
+  return (
+    <BrowserRouter>
+      <AuthLayout>
+        <Routes>
+          <Route path="/login" element={<LoginPage />} />
+          <Route path="/register" element={<RegisterPage />} />
+          <Route path="/forgot-password" element={<ForgotPasswordPage />} />
+          <Route path="/reset-password" element={<ResetPasswordPage />} />
+          <Route path="/mfa-challenge" element={<MfaChallengePage />} />
+          <Route path="/mfa-setup" element={<MfaSetupPage />} />
+          <Route path="/device" element={<DevicePage />} />
+          <Route path="/consent" element={<ConsentPage />} />
+          <Route path="/grants" element={<GrantsPage />} />
+          <Route path="*" element={<Navigate to="/login" replace />} />
+        </Routes>
+      </AuthLayout>
+    </BrowserRouter>
+  );
+}

package/src/api.ts

@@ -0,0 +1,156 @@
+import type { ApiError, SessionResponse, SsoCheckResponse, ProvidersResponse, PasswordPolicyResponse, MfaLoginResponse, MfaVerifyResponse, MfaStatusResponse, MfaTotpSetupResponse, MfaRecoveryGenerateResponse, MfaWebAuthnSetupResponse, MfaWebAuthnConfirmResponse, RegisterResponse } from './types';
+
+const API_URL = import.meta.env.VITE_API_URL || '';
+
+class ApiRequestError extends Error {
+  public error: string;
+  public retryAfter?: number;
+  public redirectUrl?: string;
+
+  constructor(apiError: ApiError) {
+    super(apiError.message || apiError.error);
+    this.name = 'ApiRequestError';
+    this.error = apiError.error;
+    this.retryAfter = apiError.retryAfter;
+    this.redirectUrl = apiError.redirectUrl;
+  }
+}
+
+async function api<T>(path: string, options?: RequestInit): Promise<T> {
+  const url = `${API_URL}${path}`;
+
+  const response = await fetch(url, {
+    ...options,
+    credentials: 'include',
+    headers: {
+      'Content-Type': 'application/json',
+      ...options?.headers,
+    },
+  });
+
+  if (!response.ok) {
+    let apiError: ApiError;
+    try {
+      apiError = await response.json() as ApiError;
+    } catch {
+      apiError = { error: 'unknown_error', message: `Request failed with status ${response.status}` };
+    }
+    throw new ApiRequestError(apiError);
+  }
+
+  return response.json() as Promise<T>;
+}
+
+function setupTokenHeaders(token?: string): Record<string, string> {
+  return token ? { 'X-MFA-Setup-Token': token } : {};
+}
+
+export function login(email: string, password: string, returnUrl?: string): Promise<MfaLoginResponse> {
+  const url = returnUrl ? `/api/auth/login?returnUrl=${encodeURIComponent(returnUrl)}` : '/api/auth/login';
+  return api<MfaLoginResponse>(url, {
+    method: 'POST',
+    body: JSON.stringify({ email, password }),
+  });
+}
+
+export function register(email: string, password: string, firstName?: string, lastName?: string): Promise<RegisterResponse> {
+  return api<RegisterResponse>('/api/auth/register', {
+    method: 'POST',
+    body: JSON.stringify({ email, password, firstName, lastName }),
+  });
+}
+
+export function logout(): Promise<{ success: true }> {
+  return api<{ success: true }>('/api/auth/logout', {
+    method: 'POST',
+  });
+}
+
+export function forgotPassword(email: string): Promise<{ success: true }> {
+  return api<{ success: true }>('/api/auth/forgot-password', {
+    method: 'POST',
+    body: JSON.stringify({ email }),
+  });
+}
+
+export function resetPassword(token: string, newPassword: string): Promise<{ success: true }> {
+  return api<{ success: true }>('/api/auth/reset-password', {
+    method: 'POST',
+    body: JSON.stringify({ token, newPassword }),
+  });
+}
+
+export function getSession(): Promise<SessionResponse> {
+  return api<SessionResponse>('/api/auth/session');
+}
+
+export function ssoCheck(email: string): Promise<SsoCheckResponse> {
+  return api<SsoCheckResponse>(`/api/auth/sso-check?email=${encodeURIComponent(email)}`);
+}
+
+export function getProviders(): Promise<ProvidersResponse> {
+  return api<ProvidersResponse>('/api/auth/providers');
+}
+
+export function getPasswordPolicy(): Promise<PasswordPolicyResponse> {
+  return api<PasswordPolicyResponse>('/api/auth/password-policy');
+}
+
+export function mfaVerify(challengeId: string, method: string, code?: string, assertion?: string): Promise<MfaVerifyResponse> {
+  return api<MfaVerifyResponse>('/api/auth/mfa/verify', {
+    method: 'POST',
+    body: JSON.stringify({ challengeId, method, code, assertion }),
+  });
+}
+
+export function mfaStatus(mfaSetupToken?: string): Promise<MfaStatusResponse> {
+  return api<MfaStatusResponse>('/api/auth/mfa/status', {
+    headers: setupTokenHeaders(mfaSetupToken),
+  });
+}
+
+export function mfaTotpSetup(mfaSetupToken?: string): Promise<MfaTotpSetupResponse> {
+  return api<MfaTotpSetupResponse>('/api/auth/mfa/totp/setup', {
+    method: 'POST',
+    headers: setupTokenHeaders(mfaSetupToken),
+  });
+}
+
+export function mfaTotpConfirm(setupToken: string, code: string, mfaSetupToken?: string): Promise<{ success: true }> {
+  return api<{ success: true }>('/api/auth/mfa/totp/confirm', {
+    method: 'POST',
+    body: JSON.stringify({ setupToken, code }),
+    headers: setupTokenHeaders(mfaSetupToken),
+  });
+}
+
+export function mfaRecoveryGenerate(mfaSetupToken?: string): Promise<MfaRecoveryGenerateResponse> {
+  return api<MfaRecoveryGenerateResponse>('/api/auth/mfa/recovery/generate', {
+    method: 'POST',
+    headers: setupTokenHeaders(mfaSetupToken),
+  });
+}
+
+export function mfaWebAuthnSetup(mfaSetupToken?: string): Promise<MfaWebAuthnSetupResponse> {
+  return api<MfaWebAuthnSetupResponse>('/api/auth/mfa/webauthn/setup', {
+    method: 'POST',
+    headers: setupTokenHeaders(mfaSetupToken),
+  });
+}
+
+export function mfaWebAuthnConfirm(setupToken: string, attestationResponse: string, mfaSetupToken?: string): Promise<MfaWebAuthnConfirmResponse> {
+  return api<MfaWebAuthnConfirmResponse>('/api/auth/mfa/webauthn/confirm', {
+    method: 'POST',
+    body: JSON.stringify({ setupToken, attestationResponse }),
+    headers: setupTokenHeaders(mfaSetupToken),
+  });
+}
+
+export function mfaDeleteCredential(credentialId: string, mfaSetupToken?: string): Promise<{ success: true }> {
+  return api<{ success: true }>(`/api/auth/mfa/credentials/${credentialId}`, {
+    method: 'DELETE',
+    headers: setupTokenHeaders(mfaSetupToken),
+  });
+}
+
+export { ApiRequestError };

package/src/branding.ts

@@ -0,0 +1,55 @@
+import { createContext, useContext } from 'react';
+
+/** A localizable string — either a plain string or an object mapping language codes to strings. */
+export type LocalizedString = string | Record<string, string> | null;
+
+export interface BrandingConfig {
+  appName: string;
+  logoUrl: string | null;
+  primaryColor: string;
+  supportEmail: string | null;
+  showForgotPassword: boolean;
+  showRegistration: boolean;
+  customCssUrl: string | null;
+  welcomeTitle: LocalizedString;
+  welcomeSubtitle: LocalizedString;
+  languages: { code: string; label: string }[] | null;
+}
+
+const defaults: BrandingConfig = {
+  appName: 'Authagonal',
+  logoUrl: null,
+  primaryColor: '#2563eb',
+  supportEmail: null,
+  showForgotPassword: true,
+  showRegistration: false,
+  customCssUrl: null,
+  welcomeTitle: null,
+  welcomeSubtitle: null,
+  languages: null,
+};
+
+export async function loadBranding(): Promise<BrandingConfig> {
+  try {
+    const response = await fetch('/branding.json');
+    if (!response.ok) return defaults;
+    const json = await response.json();
+    return { ...defaults, ...json };
+  } catch {
+    return defaults;
+  }
+}
+
+export const BrandingContext = createContext<BrandingConfig>(defaults);
+
+export function useBranding(): BrandingConfig {
+  return useContext(BrandingContext);
+}
+
+/** Resolve a LocalizedString to a concrete string for the given language, or null if not set. */
+export function resolveLocalized(value: LocalizedString, language: string): string | null {
+  if (value == null) return null;
+  if (typeof value === 'string') return value;
+  // Try exact match, then base language (e.g. "en" from "en-US"), then first available
+  return value[language] ?? value[language.split('-')[0]] ?? Object.values(value)[0] ?? null;
+}

package/src/components/AuthLayout.tsx

@@ -0,0 +1,107 @@
+import { useEffect, type ReactNode } from 'react';
+import { useTranslation } from 'react-i18next';
+import { useBranding } from '../branding';
+import { useDarkMode } from '../hooks/useDarkMode';
+import { Card } from './ui/card';
+import { cn } from '@/lib/utils';
+import { Sun, Moon, Monitor } from 'lucide-react';
+
+// Ensure i18n is initialized when AuthLayout is used (including by npm consumers)
+import '../i18n';
+
+interface AuthLayoutProps {
+  children: ReactNode;
+}
+
+const ALL_LANGUAGES: { code: string; label: string }[] = [
+  { code: 'en', label: 'English' },
+  { code: 'zh-Hans', label: '中文' },
+  { code: 'de', label: 'Deutsch' },
+  { code: 'fr', label: 'Français' },
+  { code: 'es', label: 'Español' },
+  { code: 'vi', label: 'Tiếng Việt' },
+  { code: 'pt', label: 'Português' },
+  { code: 'tlh', label: 'tlhIngan' },
+];
+
+function ThemeToggle() {
+  const { theme, setTheme } = useDarkMode();
+  const themes = [
+    { value: 'light' as const, icon: Sun },
+    { value: 'system' as const, icon: Monitor },
+    { value: 'dark' as const, icon: Moon },
+  ];
+  return (
+    <div className="flex items-center justify-center gap-0.5 mt-3" data-auth="theme-toggle">
+      {themes.map(({ value, icon: Icon }) => (
+        <button
+          key={value}
+          type="button"
+          onClick={() => setTheme(value)}
+          className={cn(
+            'p-1 rounded cursor-pointer border-none bg-transparent transition-colors',
+            theme === value
+              ? 'text-gray-700 dark:text-gray-200'
+              : 'text-gray-400 dark:text-gray-500 hover:text-gray-600 dark:hover:text-gray-300'
+          )}
+          title={value}
+          aria-label={`${value} theme`}
+        >
+          <Icon className="h-3.5 w-3.5" />
+        </button>
+      ))}
+    </div>
+  );
+}
+
+export default function AuthLayout({ children }: AuthLayoutProps) {
+  const branding = useBranding();
+  const { i18n } = useTranslation();
+  useDarkMode();
+
+  useEffect(() => {
+    document.documentElement.style.setProperty('--brand-primary', branding.primaryColor);
+
+    if (branding.customCssUrl) {
+      const link = document.createElement('link');
+      link.rel = 'stylesheet';
+      link.href = branding.customCssUrl;
+      link.id = 'branding-css';
+      document.head.appendChild(link);
+      return () => { link.remove(); };
+    }
+  }, [branding]);
+
+  return (
+    <div className="min-h-screen flex items-center justify-center p-4" data-auth="page" style={{ background: 'var(--auth-bg)' }}>
+      <Card style={{ background: 'var(--auth-card-bg)', borderRadius: 'var(--auth-radius, 0.5rem)', fontFamily: 'var(--auth-font, inherit)' }}>
+        <div className="text-center mb-6" data-auth="header">
+          {branding.logoUrl ? (
+            <img src={branding.logoUrl} alt={branding.appName} className="max-h-12 max-w-full object-contain mx-auto" data-auth="logo" />
+          ) : (
+            <h1 className="text-2xl font-bold tracking-tight" data-auth="app-name" style={{ color: 'var(--auth-heading)' }}>{branding.appName}</h1>
+          )}
+        </div>
+        <div data-auth="content">{children}</div>
+        <div className="flex flex-wrap justify-center gap-1 mt-6 pt-4 border-t border-gray-200 dark:border-gray-800" data-auth="languages">
+          {(branding.languages ?? ALL_LANGUAGES).map((lang) => (
+            <button
+              key={lang.code}
+              type="button"
+              className={cn(
+                'bg-transparent border-none px-2 py-1 text-xs rounded cursor-pointer transition-colors',
+                i18n.language === lang.code || i18n.language?.startsWith(lang.code)
+                  ? 'text-primary font-semibold'
+                  : 'text-gray-400 dark:text-gray-500 hover:text-gray-700 dark:hover:text-gray-300 hover:bg-gray-100 dark:hover:bg-gray-800'
+              )}
+              onClick={() => i18n.changeLanguage(lang.code)}
+            >
+              {lang.label}
+            </button>
+          ))}
+        </div>
+        <ThemeToggle />
+      </Card>
+    </div>
+  );
+}