npm - @dudousxd/adonis-authkit-server - Versions diffs - 0.1.0 - Mend

@dudousxd/adonis-authkit-server 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (174) hide show

package/LICENSE +21 -0
package/README.md +137 -0
package/build/assets/grafana/authkit-dashboard.json +118 -0
package/build/commands/commands.json +30 -0
package/build/commands/configure.d.ts +2 -0
package/build/commands/configure.js +42 -0
package/build/commands/eject.d.ts +11 -0
package/build/commands/eject.js +96 -0
package/build/commands/main.d.ts +12 -0
package/build/commands/main.js +38 -0
package/build/commands/ui_preset.d.ts +4 -0
package/build/commands/ui_preset.js +32 -0
package/build/database/migrations/make_authkit_oidc_table.d.ts +6 -0
package/build/database/migrations/make_authkit_oidc_table.js +19 -0
package/build/host/views/account/login.edge +29 -0
package/build/host/views/account/mfa.edge +151 -0
package/build/host/views/account/tokens.edge +70 -0
package/build/host/views/admin/audit.edge +72 -0
package/build/host/views/admin/clients.edge +51 -0
package/build/host/views/admin/dashboard.edge +58 -0
package/build/host/views/admin/users.edge +76 -0
package/build/host/views/consent.edge +19 -0
package/build/host/views/forgot.edge +30 -0
package/build/host/views/login.edge +91 -0
package/build/host/views/mfa-challenge.edge +88 -0
package/build/host/views/reset.edge +29 -0
package/build/host/views/signup.edge +44 -0
package/build/host/views/verify-email.edge +16 -0
package/build/index.d.ts +42 -0
package/build/index.js +28 -0
package/build/providers/authkit_server_provider.d.ts +19 -0
package/build/providers/authkit_server_provider.js +81 -0
package/build/src/accounts/account_store.d.ts +136 -0
package/build/src/accounts/account_store.js +1 -0
package/build/src/accounts/lucid_account_store.d.ts +75 -0
package/build/src/accounts/lucid_account_store.js +396 -0
package/build/src/adapters/adapter_contract.d.ts +18 -0
package/build/src/adapters/adapter_contract.js +1 -0
package/build/src/adapters/database_adapter.d.ts +15 -0
package/build/src/adapters/database_adapter.js +63 -0
package/build/src/adapters/factory.d.ts +30 -0
package/build/src/adapters/factory.js +43 -0
package/build/src/adapters/redis_adapter.d.ts +16 -0
package/build/src/adapters/redis_adapter.js +95 -0
package/build/src/audit/audit_sink.d.ts +54 -0
package/build/src/audit/audit_sink.js +1 -0
package/build/src/audit/lucid_audit_sink.d.ts +10 -0
package/build/src/audit/lucid_audit_sink.js +60 -0
package/build/src/controllers/oidc_callback_controller.d.ts +22 -0
package/build/src/controllers/oidc_callback_controller.js +33 -0
package/build/src/define_config.d.ts +261 -0
package/build/src/define_config.js +115 -0
package/build/src/host/account_lockout.d.ts +86 -0
package/build/src/host/account_lockout.js +185 -0
package/build/src/host/augmentations.d.ts +1 -0
package/build/src/host/augmentations.js +1 -0
package/build/src/host/branding.d.ts +17 -0
package/build/src/host/branding.js +8 -0
package/build/src/host/controllers/account_mfa_controller.d.ts +30 -0
package/build/src/host/controllers/account_mfa_controller.js +157 -0
package/build/src/host/controllers/account_session_controller.d.ts +7 -0
package/build/src/host/controllers/account_session_controller.js +50 -0
package/build/src/host/controllers/account_tokens_controller.d.ts +7 -0
package/build/src/host/controllers/account_tokens_controller.js +55 -0
package/build/src/host/controllers/admin/admin_audit_controller.d.ts +10 -0
package/build/src/host/controllers/admin/admin_audit_controller.js +56 -0
package/build/src/host/controllers/admin/admin_clients_controller.d.ts +10 -0
package/build/src/host/controllers/admin/admin_clients_controller.js +24 -0
package/build/src/host/controllers/admin/admin_dashboard_controller.d.ts +10 -0
package/build/src/host/controllers/admin/admin_dashboard_controller.js +27 -0
package/build/src/host/controllers/admin/admin_users_controller.d.ts +11 -0
package/build/src/host/controllers/admin/admin_users_controller.js +53 -0
package/build/src/host/controllers/interaction_controller.d.ts +44 -0
package/build/src/host/controllers/interaction_controller.js +304 -0
package/build/src/host/controllers/pat_introspection_controller.d.ts +22 -0
package/build/src/host/controllers/pat_introspection_controller.js +46 -0
package/build/src/host/controllers/registration_controller.d.ts +18 -0
package/build/src/host/controllers/registration_controller.js +169 -0
package/build/src/host/controllers/social_controller.d.ts +8 -0
package/build/src/host/controllers/social_controller.js +82 -0
package/build/src/host/default_mailer.d.ts +39 -0
package/build/src/host/default_mailer.js +141 -0
package/build/src/host/email_templates.d.ts +35 -0
package/build/src/host/email_templates.js +66 -0
package/build/src/host/i18n.d.ts +178 -0
package/build/src/host/i18n.js +208 -0
package/build/src/host/middleware/account_auth.d.ts +7 -0
package/build/src/host/middleware/account_auth.js +11 -0
package/build/src/host/rate_limit.d.ts +32 -0
package/build/src/host/rate_limit.js +87 -0
package/build/src/host/register_auth_host.d.ts +41 -0
package/build/src/host/register_auth_host.js +133 -0
package/build/src/host/renderers/edge_renderer.d.ts +3 -0
package/build/src/host/renderers/edge_renderer.js +29 -0
package/build/src/host/renderers/inertia_renderer.d.ts +5 -0
package/build/src/host/renderers/inertia_renderer.js +26 -0
package/build/src/host/validators.d.ts +39 -0
package/build/src/host/validators.js +13 -0
package/build/src/keys/jwks_manager.d.ts +6 -0
package/build/src/keys/jwks_manager.js +11 -0
package/build/src/mixins/with_audit_log.d.ts +19 -0
package/build/src/mixins/with_audit_log.js +41 -0
package/build/src/mixins/with_auth_user.d.ts +18 -0
package/build/src/mixins/with_auth_user.js +39 -0
package/build/src/mixins/with_credentials.d.ts +20 -0
package/build/src/mixins/with_credentials.js +29 -0
package/build/src/mixins/with_mfa.d.ts +31 -0
package/build/src/mixins/with_mfa.js +39 -0
package/build/src/mixins/with_personal_access_token.d.ts +19 -0
package/build/src/mixins/with_personal_access_token.js +44 -0
package/build/src/mixins/with_provider_identity.d.ts +20 -0
package/build/src/mixins/with_provider_identity.js +32 -0
package/build/src/mixins/with_webauthn_credential.d.ts +37 -0
package/build/src/mixins/with_webauthn_credential.js +49 -0
package/build/src/observability/metrics_controller.d.ts +5 -0
package/build/src/observability/metrics_controller.js +24 -0
package/build/src/observability/metrics_service.d.ts +2 -0
package/build/src/observability/metrics_service.js +7 -0
package/build/src/observability/otel_recorder.d.ts +10 -0
package/build/src/observability/otel_recorder.js +59 -0
package/build/src/observability/wire_provider_events.d.ts +12 -0
package/build/src/observability/wire_provider_events.js +19 -0
package/build/src/pat/lucid_pat_store.d.ts +6 -0
package/build/src/pat/lucid_pat_store.js +62 -0
package/build/src/pat/pat_store.d.ts +31 -0
package/build/src/pat/pat_store.js +1 -0
package/build/src/pat/pat_tokens.d.ts +4 -0
package/build/src/pat/pat_tokens.js +9 -0
package/build/src/provider/build_provider.d.ts +8 -0
package/build/src/provider/build_provider.js +101 -0
package/build/src/provider/interaction_actions.d.ts +21 -0
package/build/src/provider/interaction_actions.js +32 -0
package/build/src/provider/oidc_service.d.ts +17 -0
package/build/src/provider/oidc_service.js +84 -0
package/build/src/provider/token_exchange.d.ts +15 -0
package/build/src/provider/token_exchange.js +72 -0
package/build/src/register_routes.d.ts +16 -0
package/build/src/register_routes.js +21 -0
package/build/stubs/config/authkit.stub +29 -0
package/build/stubs/main.d.ts +1 -0
package/build/stubs/main.js +2 -0
package/build/stubs/models/auth_user.stub +13 -0
package/build/stubs/ui/edge/views/consent.edge +13 -0
package/build/stubs/ui/edge/views/login.edge +19 -0
package/build/stubs/ui/react/components/auth_shell.tsx +67 -0
package/build/stubs/ui/react/pages/account/login.tsx +56 -0
package/build/stubs/ui/react/pages/account/mfa.tsx +132 -0
package/build/stubs/ui/react/pages/account/tokens.tsx +88 -0
package/build/stubs/ui/react/pages/consent.tsx +39 -0
package/build/stubs/ui/react/pages/forgot.tsx +44 -0
package/build/stubs/ui/react/pages/login.tsx +171 -0
package/build/stubs/ui/react/pages/mfa-challenge.tsx +72 -0
package/build/stubs/ui/react/pages/reset.tsx +58 -0
package/build/stubs/ui/react/pages/signup.tsx +78 -0
package/build/stubs/ui/react/pages/verify-email.tsx +24 -0
package/build/types.d.ts +7 -0
package/build/types.js +1 -0
package/package.json +108 -0
package/stubs/config/authkit.stub +29 -0
package/stubs/main.ts +2 -0
package/stubs/models/auth_user.stub +13 -0
package/stubs/ui/edge/views/consent.edge +13 -0
package/stubs/ui/edge/views/login.edge +19 -0
package/stubs/ui/react/components/auth_shell.tsx +67 -0
package/stubs/ui/react/pages/account/login.tsx +56 -0
package/stubs/ui/react/pages/account/mfa.tsx +132 -0
package/stubs/ui/react/pages/account/tokens.tsx +88 -0
package/stubs/ui/react/pages/consent.tsx +39 -0
package/stubs/ui/react/pages/forgot.tsx +44 -0
package/stubs/ui/react/pages/login.tsx +171 -0
package/stubs/ui/react/pages/mfa-challenge.tsx +72 -0
package/stubs/ui/react/pages/reset.tsx +58 -0
package/stubs/ui/react/pages/signup.tsx +78 -0
package/stubs/ui/react/pages/verify-email.tsx +24 -0

package/build/host/views/account/mfa.edge ADDED Viewed

@@ -0,0 +1,151 @@
+<!doctype html>
+<html lang="pt-br"><head><meta charset="utf-8"><title>{{ t('account.mfa.page_title') }}</title>
+<script src="https://cdn.tailwindcss.com"></script></head>
+<body class="min-h-screen bg-gray-100 p-4">
+  <div class="mx-auto max-w-2xl">
+    <div class="flex items-center justify-between py-6">
+      <div>
+        <div class="text-xs font-semibold uppercase tracking-widest text-gray-400">{{ t('common.brand_eyebrow') }}</div>
+        <h1 class="text-xl font-semibold text-gray-900">{{ t('account.mfa.title') }}</h1>
+      </div>
+      <form method="POST" action="/account/logout">
+        <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+        <button type="submit" class="text-sm text-gray-500 hover:underline">{{ t('account.mfa.logout') }}</button>
+      </form>
+    </div>
+    @if(error)
+      <p class="mb-4 text-sm text-red-600">{{ error }}</p>
+    @end
+    {{-- Recovery codes mostrados uma única vez após confirmar o enrollment --}}
+    @if(recoveryCodes && recoveryCodes.length > 0)
+      <div class="mb-6 rounded-lg border border-emerald-300 bg-emerald-50 p-4">
+        <p class="text-sm font-medium text-emerald-900">
+          {{ t('account.mfa.recovery_codes_notice') }}
+        </p>
+        <ul class="mt-3 grid grid-cols-2 gap-2">
+          @each(rc in recoveryCodes)
+            <li><code class="block rounded bg-white px-3 py-2 text-sm text-emerald-800 ring-1 ring-emerald-200">{{ rc }}</code></li>
+          @end
+        </ul>
+      </div>
+    @end
+    @if(enrolling)
+      <div class="rounded-xl bg-white p-6 shadow-sm ring-1 ring-black/5">
+        <p class="text-sm text-gray-600">
+          {{ t('account.mfa.enroll_intro') }}
+        </p>
+        @if(qrDataUrl)
+          <img src="{{ qrDataUrl }}" alt="{{ t('account.mfa.qr_alt') }}" class="mx-auto my-4 h-48 w-48" />
+        @end
+        @if(secret)
+          <p class="text-center text-xs text-gray-500">{{ t('account.mfa.manual_intro') }}</p>
+          <code class="mx-auto mt-1 block w-fit break-all rounded bg-gray-100 px-3 py-2 text-sm text-gray-800">{{ secret }}</code>
+        @end
+        <form method="POST" action="/account/mfa/confirm" class="mt-6">
+          <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+          <label for="code" class="mb-1 block text-sm font-medium text-gray-700">{{ t('account.mfa.confirm_code_label') }}</label>
+          <input id="code" name="code" inputmode="numeric" pattern="[0-9]*" maxlength="6" autofocus
+            class="w-full rounded-lg border border-gray-300 px-3 py-2 text-center text-lg tracking-[0.4em] outline-none focus:border-gray-900" />
+          <button type="submit" class="mt-4 w-full rounded-lg bg-gray-900 py-2.5 text-sm font-semibold text-white">
+            {{ t('account.mfa.activate') }}
+          </button>
+        </form>
+      </div>
+    @elseif(enabled)
+      <div class="rounded-xl bg-white p-6 shadow-sm ring-1 ring-black/5">
+        <p class="text-sm text-gray-700">
+          {{{ t('account.mfa.enabled_html') }}}
+        </p>
+        <form method="POST" action="/account/mfa/disable" class="mt-4">
+          <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+          <button type="submit" class="rounded-lg border border-red-300 px-4 py-2 text-sm font-semibold text-red-600 hover:bg-red-50">
+            {{ t('account.mfa.disable') }}
+          </button>
+        </form>
+      </div>
+    @else
+      <div class="rounded-xl bg-white p-6 shadow-sm ring-1 ring-black/5">
+        <p class="text-sm text-gray-700">
+          {{ t('account.mfa.disabled_intro') }}
+        </p>
+        <form method="POST" action="/account/mfa/enroll" class="mt-4">
+          <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+          <button type="submit" class="rounded-lg bg-gray-900 px-4 py-2 text-sm font-semibold text-white">
+            {{ t('account.mfa.enable') }}
+          </button>
+        </form>
+      </div>
+    @end
+    @if(passkeysSupported)
+      {{-- Passkeys / chaves de acesso (WebAuthn) — 2º fator alternativo ao TOTP. --}}
+      <div class="mt-6 rounded-xl bg-white p-6 shadow-sm ring-1 ring-black/5">
+        <h2 class="text-base font-semibold text-gray-900">{{ t('mfa.passkey.section_title') }}</h2>
+        <p class="mt-1 text-sm text-gray-600">{{ t('mfa.passkey.section_intro') }}</p>
+        @if(passkeys && passkeys.length > 0)
+          <ul class="mt-4 space-y-2">
+            @each(pk in passkeys)
+              <li class="flex items-center justify-between rounded-lg border border-gray-200 px-3 py-2">
+                <span class="text-sm text-gray-800">{{ pk.label ? pk.label : t('mfa.passkey.unnamed') }}</span>
+                <form method="POST" action="/account/mfa/passkeys/{{ pk.id }}/remove">
+                  <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+                  <button type="submit" class="text-sm text-red-600 hover:underline">{{ t('mfa.passkey.remove') }}</button>
+                </form>
+              </li>
+            @end
+          </ul>
+        @else
+          <p class="mt-4 text-sm text-gray-400">{{ t('mfa.passkey.empty') }}</p>
+        @end
+        <button type="button" id="passkey-add"
+          class="mt-4 rounded-lg border border-gray-300 px-4 py-2 text-sm font-semibold text-gray-700 hover:bg-gray-50">
+          {{ t('mfa.passkey.add') }}
+        </button>
+        <p id="passkey-error" class="mt-3 hidden text-sm text-red-600">{{ t('mfa.passkey.register_error') }}</p>
+      </div>
+    @end
+  </div>
+  @if(passkeysSupported)
+    <script type="module">
+      import { startRegistration } from 'https://cdn.jsdelivr.net/npm/@simplewebauthn/browser@13/dist/bundle/index.js'
+      const btn = document.getElementById('passkey-add')
+      const errEl = document.getElementById('passkey-error')
+      const csrf = '{{ csrfToken }}'
+      btn?.addEventListener('click', async () => {
+        errEl.classList.add('hidden')
+        btn.disabled = true
+        try {
+          // 1) Opções de registro (challenge guardado na sessão server-side).
+          const optsRes = await fetch('/account/mfa/passkeys/options', {
+            method: 'POST',
+            headers: { 'content-type': 'application/json', 'x-csrf-token': csrf },
+            body: JSON.stringify({}),
+          })
+          if (!optsRes.ok) throw new Error('options')
+          const optionsJSON = await optsRes.json()
+          // 2) Cerimônia de registro no authenticator.
+          const attResp = await startRegistration({ optionsJSON })
+          // 3) Verifica/persiste no servidor.
+          const verifyRes = await fetch('/account/mfa/passkeys/verify', {
+            method: 'POST',
+            headers: { 'content-type': 'application/json', 'x-csrf-token': csrf },
+            body: JSON.stringify({ response: attResp }),
+          })
+          if (!verifyRes.ok) throw new Error('verify')
+          // 4) Recarrega para mostrar a nova passkey.
+          window.location.reload()
+        } catch (e) {
+          errEl.classList.remove('hidden')
+          btn.disabled = false
+        }
+      })
+    </script>
+  @end
+</body></html>

package/build/host/views/account/tokens.edge ADDED Viewed

@@ -0,0 +1,70 @@
+<!doctype html>
+<html lang="pt-br"><head><meta charset="utf-8"><title>{{ t('account.tokens.page_title') }}</title>
+<script src="https://cdn.tailwindcss.com"></script></head>
+<body class="min-h-screen bg-gray-100 p-4">
+  <div class="mx-auto max-w-2xl">
+    <div class="flex items-center justify-between py-6">
+      <div>
+        <div class="text-xs font-semibold uppercase tracking-widest text-gray-400">{{ t('common.brand_eyebrow') }}</div>
+        <h1 class="text-xl font-semibold text-gray-900">{{ t('account.tokens.title') }}</h1>
+      </div>
+      <form method="POST" action="/account/logout">
+        <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+        <button type="submit" class="text-sm text-gray-500 hover:underline">{{ t('account.tokens.logout') }}</button>
+      </form>
+    </div>
+    @if(createdToken)
+      <div class="mb-6 rounded-lg border border-emerald-300 bg-emerald-50 p-4">
+        <p class="text-sm font-medium text-emerald-900">
+          {{ t('account.tokens.created_notice') }}
+        </p>
+        <code class="mt-2 block break-all rounded bg-white px-3 py-2 text-sm text-emerald-800 ring-1 ring-emerald-200">
+          {{ createdToken }}
+        </code>
+      </div>
+    @end
+    <form method="POST" action="/account/tokens"
+      class="mb-6 flex gap-2 rounded-xl bg-white p-4 shadow-sm ring-1 ring-black/5">
+      <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+      <input name="name" placeholder="{{ t('account.tokens.name_placeholder') }}"
+        class="flex-1 rounded-lg border border-gray-300 px-3 py-2 text-sm outline-none focus:border-gray-900" />
+      <button type="submit" class="rounded-lg bg-gray-900 px-4 text-sm font-semibold text-white">
+        {{ t('account.tokens.create') }}
+      </button>
+    </form>
+    <div class="overflow-hidden rounded-xl bg-white shadow-sm ring-1 ring-black/5">
+      @if(tokens.length === 0)
+        <p class="p-6 text-sm text-gray-500">{{ t('account.tokens.empty') }}</p>
+      @else
+        @each(token in tokens)
+          <div class="flex items-center justify-between border-b border-gray-100 p-4 last:border-0">
+            <div>
+              <p class="text-sm font-medium text-gray-900">{{ token.name }}</p>
+              <p class="text-xs text-gray-500">
+                {{ t('account.tokens.created_at', { date: token.createdAt }) }}
+                @if(token.lastUsedAt)
+                  {{ t('account.tokens.last_used', { date: token.lastUsedAt }) }}
+                @else
+                  {{ t('account.tokens.never_used') }}
+                @end
+              </p>
+              @if(token.scopes && token.scopes.length > 0)
+                <p class="text-xs text-gray-400">{{ t('account.tokens.scopes', { scopes: token.scopes.join(', ') }) }}</p>
+              @end
+              @if(token.audience)
+                <p class="text-xs text-gray-400">{{ t('account.tokens.audience', { audience: token.audience }) }}</p>
+              @end
+            </div>
+            <form method="POST" action="/account/tokens/{{ token.id }}/revoke">
+              <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+              <button type="submit" class="text-sm text-red-600 hover:underline">{{ t('account.tokens.revoke') }}</button>
+            </form>
+          </div>
+        @end
+      @end
+    </div>
+  </div>
+</body></html>

package/build/host/views/admin/audit.edge ADDED Viewed

@@ -0,0 +1,72 @@
+<!doctype html>
+<html lang="pt-br"><head><meta charset="utf-8"><title>{{ t('admin.audit.page_title') }}</title>
+<script src="https://cdn.tailwindcss.com"></script></head>
+<body class="min-h-screen bg-gray-100 p-4">
+  <div class="mx-auto max-w-4xl">
+    <div class="flex items-center justify-between py-6">
+      <div>
+        <div class="text-xs font-semibold uppercase tracking-widest text-gray-400">{{ t('common.brand_eyebrow') }}</div>
+        <h1 class="text-xl font-semibold text-gray-900">{{ t('admin.audit.title') }}</h1>
+      </div>
+      <form method="POST" action="/account/logout">
+        <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+        <button type="submit" class="text-sm text-gray-500 hover:underline">{{ t('admin.nav.logout') }}</button>
+      </form>
+    </div>
+    <nav class="mb-6 flex gap-4 text-sm font-medium">
+      <a href="/admin" class="text-gray-500 hover:underline">{{ t('admin.nav.dashboard') }}</a>
+      <a href="/admin/users" class="text-gray-500 hover:underline">{{ t('admin.nav.users') }}</a>
+      <a href="/admin/clients" class="text-gray-500 hover:underline">{{ t('admin.nav.clients') }}</a>
+      <a href="/admin/audit" class="text-gray-900 underline">{{ t('admin.nav.audit') }}</a>
+    </nav>
+    @if(!supported)
+      <div class="rounded-xl bg-white p-6 text-sm text-gray-500 shadow-sm ring-1 ring-black/5">
+        {{ t('admin.audit.not_supported') }}
+      </div>
+    @else
+      <form method="GET" action="/admin/audit" class="mb-6 flex gap-2">
+        <input name="type" value="{{ type }}" placeholder="{{ t('admin.audit.type_placeholder') }}"
+          class="flex-1 rounded-lg border border-gray-300 px-3 py-2 text-sm outline-none focus:border-gray-900" />
+        <input name="subject" value="{{ subject }}" placeholder="{{ t('admin.audit.subject_placeholder') }}"
+          class="flex-1 rounded-lg border border-gray-300 px-3 py-2 text-sm outline-none focus:border-gray-900" />
+        <button type="submit" class="rounded-lg bg-gray-900 px-4 text-sm font-semibold text-white">
+          {{ t('admin.audit.filter') }}
+        </button>
+      </form>
+      <div class="overflow-hidden rounded-xl bg-white shadow-sm ring-1 ring-black/5">
+        @if(events.length === 0)
+          <p class="p-6 text-sm text-gray-500">{{ t('admin.audit.empty') }}</p>
+        @else
+          @each(event in events)
+            <div class="border-b border-gray-100 p-4 last:border-0">
+              <div class="flex items-center justify-between">
+                <p class="text-sm font-medium text-gray-900">{{ event.type }}</p>
+                <p class="text-xs text-gray-400">{{ event.createdAt }}</p>
+              </div>
+              <p class="mt-1 text-xs text-gray-500">
+                {{ [event.email, event.accountId, event.clientId, event.ip].filter((v) => v).join(' · ') }}
+              </p>
+            </div>
+          @end
+        @end
+      </div>
+      @if(totalPages > 1)
+        <div class="mt-4 flex items-center justify-between text-sm text-gray-500">
+          <span>{{ t('admin.pagination.page', { page: page, total: totalPages }) }}</span>
+          <div class="flex gap-2">
+            @if(page > 1)
+              <a href="/admin/audit?type={{ type }}&subject={{ subject }}&page={{ page - 1 }}" class="rounded border border-gray-300 px-3 py-1 hover:bg-white">{{ t('admin.pagination.prev') }}</a>
+            @end
+            @if(page < totalPages)
+              <a href="/admin/audit?type={{ type }}&subject={{ subject }}&page={{ page + 1 }}" class="rounded border border-gray-300 px-3 py-1 hover:bg-white">{{ t('admin.pagination.next') }}</a>
+            @end
+          </div>
+        </div>
+      @end
+    @end
+  </div>
+</body></html>

package/build/host/views/admin/clients.edge ADDED Viewed

@@ -0,0 +1,51 @@
+<!doctype html>
+<html lang="pt-br"><head><meta charset="utf-8"><title>{{ t('admin.clients.page_title') }}</title>
+<script src="https://cdn.tailwindcss.com"></script></head>
+<body class="min-h-screen bg-gray-100 p-4">
+  <div class="mx-auto max-w-4xl">
+    <div class="flex items-center justify-between py-6">
+      <div>
+        <div class="text-xs font-semibold uppercase tracking-widest text-gray-400">{{ t('common.brand_eyebrow') }}</div>
+        <h1 class="text-xl font-semibold text-gray-900">{{ t('admin.clients.title') }}</h1>
+      </div>
+      <form method="POST" action="/account/logout">
+        <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+        <button type="submit" class="text-sm text-gray-500 hover:underline">{{ t('admin.nav.logout') }}</button>
+      </form>
+    </div>
+    <nav class="mb-6 flex gap-4 text-sm font-medium">
+      <a href="/admin" class="text-gray-500 hover:underline">{{ t('admin.nav.dashboard') }}</a>
+      <a href="/admin/users" class="text-gray-500 hover:underline">{{ t('admin.nav.users') }}</a>
+      <a href="/admin/clients" class="text-gray-900 underline">{{ t('admin.nav.clients') }}</a>
+      <a href="/admin/audit" class="text-gray-500 hover:underline">{{ t('admin.nav.audit') }}</a>
+    </nav>
+    @if(dynamicEnabled)
+      <div class="mb-6 rounded-lg border border-amber-300 bg-amber-50 p-4 text-sm text-amber-900">
+        {{ t('admin.clients.dynamic_notice') }}
+      </div>
+    @end
+    <div class="overflow-hidden rounded-xl bg-white shadow-sm ring-1 ring-black/5">
+      @if(clients.length === 0)
+        <p class="p-6 text-sm text-gray-500">{{ t('admin.clients.empty') }}</p>
+      @else
+        @each(client in clients)
+          <div class="border-b border-gray-100 p-4 last:border-0">
+            <div class="flex items-center justify-between">
+              <p class="text-sm font-medium text-gray-900">{{ client.clientId }}</p>
+              <span class="rounded-full px-2 py-0.5 text-xs {{ client.confidential ? 'bg-gray-900 text-white' : 'bg-gray-100 text-gray-600' }}">
+                {{ client.confidential ? t('admin.clients.confidential') : t('admin.clients.public') }}
+              </span>
+            </div>
+            <p class="mt-1 text-xs text-gray-500">{{ t('admin.clients.grants', { grants: client.grants.join(', ') }) }}</p>
+            @if(client.redirectUris.length > 0)
+              <p class="text-xs text-gray-400">{{ t('admin.clients.redirect_uris', { uris: client.redirectUris.join(', ') }) }}</p>
+            @end
+          </div>
+        @end
+      @end
+    </div>
+  </div>
+</body></html>

package/build/host/views/admin/dashboard.edge ADDED Viewed

@@ -0,0 +1,58 @@
+<!doctype html>
+<html lang="pt-br"><head><meta charset="utf-8"><title>{{ t('admin.dashboard.page_title') }}</title>
+<script src="https://cdn.tailwindcss.com"></script></head>
+<body class="min-h-screen bg-gray-100 p-4">
+  <div class="mx-auto max-w-4xl">
+    <div class="flex items-center justify-between py-6">
+      <div>
+        <div class="text-xs font-semibold uppercase tracking-widest text-gray-400">{{ t('common.brand_eyebrow') }}</div>
+        <h1 class="text-xl font-semibold text-gray-900">{{ t('admin.dashboard.title') }}</h1>
+      </div>
+      <form method="POST" action="/account/logout">
+        <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+        <button type="submit" class="text-sm text-gray-500 hover:underline">{{ t('admin.nav.logout') }}</button>
+      </form>
+    </div>
+    <nav class="mb-6 flex gap-4 text-sm font-medium">
+      <a href="/admin" class="text-gray-900 underline">{{ t('admin.nav.dashboard') }}</a>
+      <a href="/admin/users" class="text-gray-500 hover:underline">{{ t('admin.nav.users') }}</a>
+      <a href="/admin/clients" class="text-gray-500 hover:underline">{{ t('admin.nav.clients') }}</a>
+      <a href="/admin/audit" class="text-gray-500 hover:underline">{{ t('admin.nav.audit') }}</a>
+    </nav>
+    <div class="grid grid-cols-1 gap-4 sm:grid-cols-3">
+      <a href="/admin/users" class="rounded-xl bg-white p-5 shadow-sm ring-1 ring-black/5 hover:ring-gray-900/20">
+        <p class="text-xs uppercase tracking-wide text-gray-400">{{ t('admin.dashboard.users_count') }}</p>
+        <p class="mt-1 text-2xl font-semibold text-gray-900">{{ usersTotal }}</p>
+      </a>
+      <a href="/admin/clients" class="rounded-xl bg-white p-5 shadow-sm ring-1 ring-black/5 hover:ring-gray-900/20">
+        <p class="text-xs uppercase tracking-wide text-gray-400">{{ t('admin.dashboard.clients_count') }}</p>
+        <p class="mt-1 text-2xl font-semibold text-gray-900">{{ clientsCount }}</p>
+      </a>
+      <a href="/admin/audit" class="rounded-xl bg-white p-5 shadow-sm ring-1 ring-black/5 hover:ring-gray-900/20">
+        <p class="text-xs uppercase tracking-wide text-gray-400">{{ t('admin.dashboard.audit_count') }}</p>
+        <p class="mt-1 text-2xl font-semibold text-gray-900">{{ auditSupported ? auditTotal : '—' }}</p>
+      </a>
+    </div>
+    <h2 class="mt-8 mb-3 text-sm font-semibold uppercase tracking-wide text-gray-500">{{ t('admin.dashboard.recent_title') }}</h2>
+    <div class="overflow-hidden rounded-xl bg-white shadow-sm ring-1 ring-black/5">
+      @if(!auditSupported)
+        <p class="p-6 text-sm text-gray-500">{{ t('admin.audit.not_supported') }}</p>
+      @elseif(recentEvents.length === 0)
+        <p class="p-6 text-sm text-gray-500">{{ t('admin.audit.empty') }}</p>
+      @else
+        @each(event in recentEvents)
+          <div class="flex items-center justify-between border-b border-gray-100 p-4 last:border-0">
+            <div>
+              <p class="text-sm font-medium text-gray-900">{{ event.type }}</p>
+              <p class="text-xs text-gray-500">{{ event.email ?? event.accountId ?? '—' }}</p>
+            </div>
+            <p class="text-xs text-gray-400">{{ event.createdAt }}</p>
+          </div>
+        @end
+      @end
+    </div>
+  </div>
+</body></html>

package/build/host/views/admin/users.edge ADDED Viewed

@@ -0,0 +1,76 @@
+<!doctype html>
+<html lang="pt-br"><head><meta charset="utf-8"><title>{{ t('admin.users.page_title') }}</title>
+<script src="https://cdn.tailwindcss.com"></script></head>
+<body class="min-h-screen bg-gray-100 p-4">
+  <div class="mx-auto max-w-4xl">
+    <div class="flex items-center justify-between py-6">
+      <div>
+        <div class="text-xs font-semibold uppercase tracking-widest text-gray-400">{{ t('common.brand_eyebrow') }}</div>
+        <h1 class="text-xl font-semibold text-gray-900">{{ t('admin.users.title') }}</h1>
+      </div>
+      <form method="POST" action="/account/logout">
+        <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+        <button type="submit" class="text-sm text-gray-500 hover:underline">{{ t('admin.nav.logout') }}</button>
+      </form>
+    </div>
+    <nav class="mb-6 flex gap-4 text-sm font-medium">
+      <a href="/admin" class="text-gray-500 hover:underline">{{ t('admin.nav.dashboard') }}</a>
+      <a href="/admin/users" class="text-gray-900 underline">{{ t('admin.nav.users') }}</a>
+      <a href="/admin/clients" class="text-gray-500 hover:underline">{{ t('admin.nav.clients') }}</a>
+      <a href="/admin/audit" class="text-gray-500 hover:underline">{{ t('admin.nav.audit') }}</a>
+    </nav>
+    <form method="GET" action="/admin/users" class="mb-6 flex gap-2">
+      <input name="search" value="{{ search }}" placeholder="{{ t('admin.users.search_placeholder') }}"
+        class="flex-1 rounded-lg border border-gray-300 px-3 py-2 text-sm outline-none focus:border-gray-900" />
+      <button type="submit" class="rounded-lg bg-gray-900 px-4 text-sm font-semibold text-white">
+        {{ t('admin.users.search') }}
+      </button>
+    </form>
+    <div class="overflow-hidden rounded-xl bg-white shadow-sm ring-1 ring-black/5">
+      @if(users.length === 0)
+        <p class="p-6 text-sm text-gray-500">{{ t('admin.users.empty') }}</p>
+      @else
+        @each(user in users)
+          <div class="border-b border-gray-100 p-4 last:border-0">
+            <div class="flex items-center justify-between">
+              <div>
+                <p class="text-sm font-medium text-gray-900">{{ user.email }}</p>
+                @if(user.name)
+                  <p class="text-xs text-gray-500">{{ user.name }}</p>
+                @end
+              </div>
+            </div>
+            <form method="POST" action="/admin/users/{{ user.id }}/roles" class="mt-3 flex gap-2">
+              <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+              <input type="hidden" name="search" value="{{ search }}">
+              <input type="hidden" name="page" value="{{ page }}">
+              <input name="roles" value="{{ user.rolesText }}"
+                placeholder="{{ t('admin.users.roles_placeholder') }}"
+                class="flex-1 rounded-lg border border-gray-300 px-3 py-2 text-sm outline-none focus:border-gray-900" />
+              <button type="submit" class="rounded-lg bg-gray-900 px-4 text-sm font-semibold text-white">
+                {{ t('admin.users.save_roles') }}
+              </button>
+            </form>
+          </div>
+        @end
+      @end
+    </div>
+    @if(totalPages > 1)
+      <div class="mt-4 flex items-center justify-between text-sm text-gray-500">
+        <span>{{ t('admin.pagination.page', { page: page, total: totalPages }) }}</span>
+        <div class="flex gap-2">
+          @if(page > 1)
+            <a href="/admin/users?search={{ search }}&page={{ page - 1 }}" class="rounded border border-gray-300 px-3 py-1 hover:bg-white">{{ t('admin.pagination.prev') }}</a>
+          @end
+          @if(page < totalPages)
+            <a href="/admin/users?search={{ search }}&page={{ page + 1 }}" class="rounded border border-gray-300 px-3 py-1 hover:bg-white">{{ t('admin.pagination.next') }}</a>
+          @end
+        </div>
+      </div>
+    @end
+  </div>
+</body></html>

package/build/host/views/consent.edge ADDED Viewed

@@ -0,0 +1,19 @@
+<!doctype html>
+<html lang="pt-br"><head><meta charset="utf-8"><title>{{ t('consent.page_title') }} — {{ brand && brand.appName ? brand.appName : t('common.app_fallback') }}</title>
+<script src="https://cdn.tailwindcss.com"></script></head>
+<body class="min-h-screen flex items-center justify-center bg-gray-50">
+  <div class="w-full max-w-sm bg-white p-8 rounded-2xl shadow-xl ring-1 ring-black/5">
+    <form method="POST" action="/auth/interaction/{{ uid }}/consent">
+      <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+      <h1 class="text-xl font-semibold text-gray-900">{{ t('consent.title') }}</h1>
+      <p class="mt-2 text-sm text-gray-600">
+        {{{ t('consent.body', { app: brand && brand.appName ? brand.appName : params.client_id }) }}}
+      </p>
+      <button type="submit"
+        class="mt-6 w-full rounded-lg bg-gray-900 py-2.5 text-sm font-semibold text-white transition hover:opacity-90">
+        {{ t('consent.submit') }}
+      </button>
+    </form>
+  </div>
+</body></html>

package/build/host/views/forgot.edge ADDED Viewed

@@ -0,0 +1,30 @@
+<!doctype html>
+<html lang="pt-br"><head><meta charset="utf-8"><title>{{ t('forgot.page_title') }}</title>
+<script src="https://cdn.tailwindcss.com"></script></head>
+<body class="min-h-screen flex items-center justify-center bg-gray-50">
+  <div class="w-full max-w-sm bg-white p-8 rounded-2xl shadow-xl ring-1 ring-black/5">
+    @if(sent)
+      <h1 class="text-xl font-semibold text-gray-900">{{ t('forgot.sent_title') }}</h1>
+      <p class="mt-2 text-sm text-gray-600">
+        {{ t('forgot.sent_body') }}
+      </p>
+    @else
+      <form method="POST" action="/auth/forgot-password">
+        <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+        <h1 class="text-xl font-semibold text-gray-900">{{ t('forgot.title') }}</h1>
+        <p class="mt-1 text-sm text-gray-500">{{ t('forgot.intro') }}</p>
+        <div class="mt-6">
+          <label for="email" class="mb-1 block text-sm font-medium text-gray-700">{{ t('forgot.email_label') }}</label>
+          <input id="email" name="email" type="email" required autofocus
+            class="w-full rounded-lg border border-gray-300 px-3 py-2 text-sm outline-none transition focus:border-gray-900 focus:ring-2 focus:ring-gray-900" />
+        </div>
+        <button type="submit"
+          class="mt-6 w-full rounded-lg bg-gray-900 py-2.5 text-sm font-semibold text-white transition hover:opacity-90">
+          {{ t('forgot.submit') }}
+        </button>
+      </form>
+    @end
+  </div>
+</body></html>

package/build/host/views/login.edge ADDED Viewed

@@ -0,0 +1,91 @@
+<!doctype html>
+<html lang="pt-br"><head><meta charset="utf-8"><title>{{ t('login.page_title') }} — {{ brand && brand.appName ? brand.appName : t('common.app_fallback') }}</title>
+<script src="https://cdn.tailwindcss.com"></script></head>
+<body class="min-h-screen flex items-center justify-center bg-gray-50">
+  @if(step === 'identifier')
+    <div class="w-full max-w-sm bg-white p-8 rounded-2xl shadow-xl ring-1 ring-black/5">
+      <form method="POST" action="/auth/interaction/{{ uid }}/identifier">
+        <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+        <h1 class="text-xl font-semibold text-gray-900">{{ t('login.title') }}</h1>
+        <p class="mt-1 text-sm text-gray-500">{{ t('login.identifier_intro') }}</p>
+        @if(error)
+          <p class="mt-4 text-sm text-red-600">{{ error }}</p>
+        @end
+        <div class="mt-6">
+          <label for="email" class="mb-1 block text-sm font-medium text-gray-700">{{ t('login.email_label') }}</label>
+          <input id="email" name="email" type="email" required autofocus
+            class="w-full rounded-lg border border-gray-300 px-3 py-2 text-sm outline-none transition focus:border-gray-900 focus:ring-2 focus:ring-gray-900" />
+        </div>
+        <button type="submit"
+          class="mt-6 w-full rounded-lg bg-gray-900 py-2.5 text-sm font-semibold text-white transition hover:opacity-90">
+          {{ t('login.identifier_submit') }}
+        </button>
+        <div class="mt-4 flex justify-between text-sm text-gray-600">
+          <a href="/auth/interaction/{{ uid }}/signup" class="hover:underline">{{ t('login.create_account') }}</a>
+          <a href="/auth/forgot-password" class="hover:underline">{{ t('login.forgot_password') }}</a>
+        </div>
+      </form>
+      <div class="my-6 flex items-center gap-3 text-xs text-gray-400">
+        <span class="h-px flex-1 bg-gray-200"></span>
+        {{ t('login.divider_or') }}
+        <span class="h-px flex-1 bg-gray-200"></span>
+      </div>
+      <a href="/auth/google/redirect/{{ uid }}"
+        class="flex w-full items-center justify-center gap-2 rounded-lg border border-gray-300 bg-white py-2.5 text-sm font-medium text-gray-700 transition hover:bg-gray-50">
+        <svg class="h-4 w-4" viewBox="0 0 24 24" aria-hidden="true">
+          <path fill="#4285F4" d="M22.56 12.25c0-.78-.07-1.53-.2-2.25H12v4.26h5.92a5.06 5.06 0 0 1-2.2 3.32v2.77h3.57c2.08-1.92 3.27-4.74 3.27-8.1Z"/>
+          <path fill="#34A853" d="M12 23c2.97 0 5.46-.98 7.28-2.66l-3.57-2.77c-.98.66-2.23 1.06-3.71 1.06-2.86 0-5.29-1.93-6.16-4.53H2.18v2.84A11 11 0 0 0 12 23Z"/>
+          <path fill="#FBBC05" d="M5.84 14.1a6.6 6.6 0 0 1 0-4.2V7.06H2.18a11 11 0 0 0 0 9.88l3.66-2.84Z"/>
+          <path fill="#EA4335" d="M12 4.75c1.62 0 3.06.56 4.21 1.64l3.15-3.15C17.45 1.46 14.97.5 12 .5A11 11 0 0 0 2.18 7.06l3.66 2.84C6.71 7.3 9.14 4.75 12 4.75Z"/>
+        </svg>
+        {{ t('login.google') }}
+      </a>
+    </div>
+  @else
+    <div class="w-full max-w-sm bg-white p-8 rounded-2xl shadow-xl ring-1 ring-black/5">
+      <form method="POST" action="/auth/interaction/{{ uid }}/login">
+        <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+        @if(account && account.fullName)
+          <h1 class="text-xl font-semibold text-gray-900">{{ t('login.greeting', { name: account.fullName }) }}</h1>
+        @else
+          <h1 class="text-xl font-semibold text-gray-900">{{ t('login.title') }}</h1>
+        @end
+        <div class="mt-1 flex items-center gap-2">
+          @if(email)
+            <span class="text-sm text-gray-500">{{ email }}</span>
+          @end
+          <a href="/auth/interaction/{{ uid }}/switch" class="text-xs font-medium text-gray-900 hover:underline">
+            {{ t('login.switch_account') }}
+          </a>
+        </div>
+        @if(error)
+          <p class="mt-4 text-sm text-red-600">{{ error }}</p>
+        @end
+        <div class="mt-6">
+          <label for="password" class="mb-1 block text-sm font-medium text-gray-700">{{ t('login.password_label') }}</label>
+          <input id="password" name="password" type="password" required autofocus
+            class="w-full rounded-lg border border-gray-300 px-3 py-2 text-sm outline-none transition focus:border-gray-900 focus:ring-2 focus:ring-gray-900" />
+        </div>
+        <button type="submit"
+          class="mt-6 w-full rounded-lg bg-gray-900 py-2.5 text-sm font-semibold text-white transition hover:opacity-90">
+          {{ t('login.submit') }}
+        </button>
+        <div class="mt-4 flex justify-end text-sm text-gray-600">
+          <a href="/auth/forgot-password" class="hover:underline">{{ t('login.forgot_password') }}</a>
+        </div>
+      </form>
+    </div>
+  @end
+</body></html>