hazo_auth 4.1.0 → 4.3.0

package/dist/cli/init_users.js

@@ -0,0 +1,307 @@
+// file_description: CLI command to initialize users, roles, and permissions from configuration
+// section: imports
+import { get_hazo_connect_instance } from "../lib/hazo_connect_instance.server.js";
+import { createCrudService } from "hazo_connect/server";
+import { get_user_management_config } from "../lib/user_management_config.server.js";
+import { get_config_value } from "../lib/config/config_loader.server.js";
+import { create_app_logger } from "../lib/app_logger.js";
+// section: helpers
+/**
+ * Prints a summary of what was inserted vs what already existed
+ */
+function print_summary(summary) {
+    console.log("=".repeat(60));
+    console.log("INITIALIZATION SUMMARY");
+    console.log("=".repeat(60));
+    console.log();
+    // Permissions summary
+    console.log("Permissions:");
+    if (summary.permissions.inserted.length > 0) {
+        console.log(`  ✓ Inserted (${summary.permissions.inserted.length}):`);
+        summary.permissions.inserted.forEach((name) => console.log(`    - ${name}`));
+    }
+    if (summary.permissions.existing.length > 0) {
+        console.log(`  ⊙ Already existed (${summary.permissions.existing.length}):`);
+        summary.permissions.existing.forEach((name) => console.log(`    - ${name}`));
+    }
+    console.log();
+    // Role summary
+    console.log("Role:");
+    if (summary.role.inserted) {
+        console.log(`  ✓ Inserted: default_super_user_role (ID: ${summary.role.role_id})`);
+    }
+    if (summary.role.existing) {
+        console.log(`  ⊙ Already existed: default_super_user_role (ID: ${summary.role.role_id})`);
+    }
+    console.log();
+    // Role permissions summary
+    console.log("Role-Permission Assignments:");
+    if (summary.role_permissions.inserted > 0) {
+        console.log(`  ✓ Inserted: ${summary.role_permissions.inserted} assignment(s)`);
+    }
+    if (summary.role_permissions.existing > 0) {
+        console.log(`  ⊙ Already existed: ${summary.role_permissions.existing} assignment(s)`);
+    }
+    console.log();
+    // User role summary
+    console.log("User-Role Assignment:");
+    if (summary.user_role.inserted) {
+        console.log(`  ✓ Inserted: Super user role assigned to user`);
+    }
+    if (summary.user_role.existing) {
+        console.log(`  ⊙ Already existed: User already has super user role`);
+    }
+    console.log();
+    console.log("=".repeat(60));
+}
+// section: main_function
+/**
+ * Initializes users, roles, and permissions from configuration
+ * This function reads from hazo_auth_config.ini and sets up:
+ * 1. Permissions from [hazo_auth__user_management] application_permission_list_defaults
+ * 2. A default_super_user_role with all permissions
+ * 3. Assigns the role to user from --email parameter or [hazo_auth__initial_setup] default_super_user_email
+ */
+export async function handle_init_users(options = {}) {
+    var _a;
+    const logger = create_app_logger();
+    const summary = {
+        permissions: {
+            inserted: [],
+            existing: [],
+        },
+        role: {
+            inserted: false,
+            existing: false,
+            role_id: null,
+        },
+        role_permissions: {
+            inserted: 0,
+            existing: 0,
+        },
+        user_role: {
+            inserted: false,
+            existing: false,
+        },
+    };
+    try {
+        console.log("\n🐸 hazo_auth init-users\n");
+        console.log("Initializing users, roles, and permissions from configuration...\n");
+        // Get hazo_connect instance
+        const hazoConnect = get_hazo_connect_instance();
+        const permissions_service = createCrudService(hazoConnect, "hazo_permissions");
+        const roles_service = createCrudService(hazoConnect, "hazo_roles");
+        const role_permissions_service = createCrudService(hazoConnect, "hazo_role_permissions");
+        const users_service = createCrudService(hazoConnect, "hazo_users");
+        const user_roles_service = createCrudService(hazoConnect, "hazo_user_roles");
+        // 1. Get permissions from config
+        const config = get_user_management_config();
+        const permission_names = config.application_permission_list_defaults || [];
+        if (permission_names.length === 0) {
+            console.log("⚠ No permissions found in configuration.");
+            console.log("  Add permissions to [hazo_auth__user_management] application_permission_list_defaults\n");
+            return;
+        }
+        console.log(`Found ${permission_names.length} permission(s) in configuration:`);
+        permission_names.forEach((name) => console.log(`  - ${name}`));
+        console.log();
+        // 2. Add permissions to hazo_permissions table
+        const permission_id_map = {};
+        const now = new Date().toISOString();
+        for (const permission_name of permission_names) {
+            const trimmed_name = permission_name.trim();
+            if (!trimmed_name)
+                continue;
+            // Check if permission already exists
+            const existing_permissions = await permissions_service.findBy({
+                permission_name: trimmed_name,
+            });
+            if (Array.isArray(existing_permissions) && existing_permissions.length > 0) {
+                const existing_permission = existing_permissions[0];
+                const perm_id = existing_permission.id;
+                permission_id_map[trimmed_name] = perm_id;
+                summary.permissions.existing.push(trimmed_name);
+                console.log(`✓ Permission already exists: ${trimmed_name} (ID: ${perm_id})`);
+            }
+            else {
+                // Insert new permission
+                const new_permission = await permissions_service.insert({
+                    permission_name: trimmed_name,
+                    description: `Permission for ${trimmed_name}`,
+                    created_at: now,
+                    changed_at: now,
+                });
+                const perm_id = Array.isArray(new_permission)
+                    ? new_permission[0].id
+                    : new_permission.id;
+                permission_id_map[trimmed_name] = perm_id;
+                summary.permissions.inserted.push(trimmed_name);
+                console.log(`✓ Inserted permission: ${trimmed_name} (ID: ${perm_id})`);
+            }
+        }
+        console.log();
+        // 3. Create or get default_super_user_role
+        const role_name = "default_super_user_role";
+        const existing_roles = await roles_service.findBy({
+            role_name,
+        });
+        let role_id;
+        if (Array.isArray(existing_roles) && existing_roles.length > 0) {
+            role_id = existing_roles[0].id;
+            summary.role.existing = true;
+            summary.role.role_id = role_id;
+            console.log(`✓ Role already exists: ${role_name} (ID: ${role_id})`);
+        }
+        else {
+            const new_role = await roles_service.insert({
+                role_name,
+                created_at: now,
+                changed_at: now,
+            });
+            role_id = Array.isArray(new_role)
+                ? new_role[0].id
+                : new_role.id;
+            summary.role.inserted = true;
+            summary.role.role_id = role_id;
+            console.log(`✓ Created role: ${role_name} (ID: ${role_id})`);
+        }
+        console.log();
+        // 4. Assign all permissions to the role
+        const permission_ids = Object.values(permission_id_map);
+        for (const permission_id of permission_ids) {
+            // Check if role-permission assignment already exists
+            const existing_assignments = await role_permissions_service.findBy({
+                role_id,
+                permission_id,
+            });
+            if (Array.isArray(existing_assignments) && existing_assignments.length > 0) {
+                summary.role_permissions.existing++;
+                const perm_name = Object.keys(permission_id_map).find((key) => permission_id_map[key] === permission_id);
+                console.log(`✓ Role-permission already exists: ${role_name} -> ${perm_name}`);
+            }
+            else {
+                await role_permissions_service.insert({
+                    role_id,
+                    permission_id,
+                    created_at: now,
+                    changed_at: now,
+                });
+                summary.role_permissions.inserted++;
+                const perm_name = Object.keys(permission_id_map).find((key) => permission_id_map[key] === permission_id);
+                console.log(`✓ Assigned permission to role: ${role_name} -> ${perm_name}`);
+            }
+        }
+        console.log();
+        // 5. Get super user email from options or config
+        const super_user_email = ((_a = options.email) === null || _a === void 0 ? void 0 : _a.trim()) || get_config_value("hazo_auth__initial_setup", "default_super_user_email", "").trim();
+        if (!super_user_email) {
+            console.log("⚠ No super user email provided.");
+            console.log("  Either use --email=user@example.com parameter");
+            console.log("  Or add [hazo_auth__initial_setup] default_super_user_email to config\n");
+            print_summary(summary);
+            return;
+        }
+        if (options.email) {
+            console.log(`Using email from --email parameter: ${super_user_email}`);
+        }
+        else {
+            console.log(`Using email from config: ${super_user_email}`);
+        }
+        console.log(`Looking up user with email: ${super_user_email}`);
+        // 6. Find user by email
+        const users = await users_service.findBy({
+            email_address: super_user_email,
+        });
+        if (!Array.isArray(users) || users.length === 0) {
+            console.log(`✗ User not found with email: ${super_user_email}`);
+            console.log("  Please ensure the user exists in the database before running this script.\n");
+            print_summary(summary);
+            return;
+        }
+        const user = users[0];
+        const user_id = user.id;
+        console.log(`✓ Found user: ${super_user_email} (ID: ${user_id})`);
+        console.log();
+        // 7. Assign role to user
+        const existing_user_roles = await user_roles_service.findBy({
+            user_id,
+            role_id,
+        });
+        if (Array.isArray(existing_user_roles) && existing_user_roles.length > 0) {
+            summary.user_role.existing = true;
+            console.log(`✓ User already has role assigned: ${user_id} -> ${role_name}`);
+        }
+        else {
+            await user_roles_service.insert({
+                user_id,
+                role_id,
+                created_at: now,
+                changed_at: now,
+            });
+            summary.user_role.inserted = true;
+            console.log(`✓ Assigned role to user: ${user_id} -> ${role_name}`);
+        }
+        console.log();
+        // 8. Print summary
+        print_summary(summary);
+        logger.info("init_users_completed", {
+            filename: "init_users.ts",
+            line_number: 0,
+            summary,
+        });
+    }
+    catch (error) {
+        const error_message = error instanceof Error ? error.message : "Unknown error";
+        const error_stack = error instanceof Error ? error.stack : undefined;
+        console.error("\n✗ Error initializing users:");
+        console.error(`  ${error_message}`);
+        if (error_stack) {
+            console.error("\nStack trace:");
+            console.error(error_stack);
+        }
+        logger.error("init_users_failed", {
+            filename: "init_users.ts",
+            line_number: 0,
+            error_message,
+            error_stack,
+        });
+        process.exit(1);
+    }
+}
+// section: help
+/**
+ * Shows help for the init-users command
+ */
+export function show_init_users_help() {
+    console.log(`
+hazo_auth init-users
+
+Initialize users, roles, and permissions from configuration.
+
+This command reads from hazo_auth_config.ini and:
+  1. Creates permissions from [hazo_auth__user_management] application_permission_list_defaults
+  2. Creates a 'default_super_user_role' role
+  3. Assigns all permissions to the super user role
+  4. Finds user by email (from --email parameter or config)
+  5. Assigns the super user role to that user
+
+Options:
+  --email=<email>    Email address of the user to assign super user role
+                     (overrides [hazo_auth__initial_setup] default_super_user_email)
+  --help, -h         Show this help message
+
+Configuration required in hazo_auth_config.ini:
+
+  [hazo_auth__user_management]
+  application_permission_list_defaults = admin_user_management,admin_role_management,admin_permission_management
+
+  [hazo_auth__initial_setup]
+  default_super_user_email = admin@example.com   (optional if using --email)
+
+Note: The user must already exist in the database (registered) before running this command.
+
+Usage:
+  npx hazo_auth init-users
+  npx hazo_auth init-users --email=admin@example.com
+`);
+}

package/dist/components/layouts/forgot_password/hooks/use_forgot_password_form.d.ts

@@ -13,6 +13,8 @@ export type UseForgotPasswordFormResult = {
     isSubmitDisabled: boolean;
     isSubmitting: boolean;
     emailTouched: boolean;
+    /** True if the submitted email is for a Google-only account (no password set) */
+    isGoogleOnlyAccount: boolean;
     handleFieldChange: (fieldId: ForgotPasswordFieldId, value: string) => void;
     handleEmailBlur: () => void;
     handleSubmit: (event: React.FormEvent<HTMLFormElement>) => void;

package/dist/components/layouts/forgot_password/hooks/use_forgot_password_form.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"use_forgot_password_form.d.ts","sourceRoot":"","sources":["../../../../../src/components/layouts/forgot_password/hooks/use_forgot_password_form.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,sCAAsC,CAAC;AAC7E,OAAO,EAA6B,KAAK,qBAAqB,EAAE,MAAM,wCAAwC,CAAC;AAK/G,MAAM,MAAM,wBAAwB,GAAG,MAAM,CAAC,qBAAqB,EAAE,MAAM,CAAC,CAAC;AAC7E,MAAM,MAAM,wBAAwB,GAAG,OAAO,CAAC,MAAM,CAAC,qBAAqB,EAAE,MAAM,CAAC,CAAC,GAAG;IACtF,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB,CAAC;AAEF,MAAM,MAAM,2BAA2B,CAAC,OAAO,GAAG,OAAO,IAAI;IAC3D,UAAU,EAAE,gBAAgB,CAAC,OAAO,CAAC,CAAC;CACvC,CAAC;AAEF,MAAM,MAAM,2BAA2B,GAAG;IACxC,MAAM,EAAE,wBAAwB,CAAC;IACjC,MAAM,EAAE,wBAAwB,CAAC;IACjC,gBAAgB,EAAE,OAAO,CAAC;IAC1B,YAAY,EAAE,OAAO,CAAC;IACtB,YAAY,EAAE,OAAO,CAAC;IACtB,iBAAiB,EAAE,CAAC,OAAO,EAAE,qBAAqB,EAAE,KAAK,EAAE,MAAM,KAAK,IAAI,CAAC;IAC3E,eAAe,EAAE,MAAM,IAAI,CAAC;IAC5B,YAAY,EAAE,CAAC,KAAK,EAAE,KAAK,CAAC,SAAS,CAAC,eAAe,CAAC,KAAK,IAAI,CAAC;IAChE,YAAY,EAAE,MAAM,IAAI,CAAC;CAC1B,CAAC;AAQF,eAAO,MAAM,wBAAwB,GAAI,OAAO,EAAG,iBAEhD,2BAA2B,CAAC,OAAO,CAAC,KAAG,2BA4IzC,CAAC"}
+{"version":3,"file":"use_forgot_password_form.d.ts","sourceRoot":"","sources":["../../../../../src/components/layouts/forgot_password/hooks/use_forgot_password_form.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,sCAAsC,CAAC;AAC7E,OAAO,EAA6B,KAAK,qBAAqB,EAAE,MAAM,wCAAwC,CAAC;AAK/G,MAAM,MAAM,wBAAwB,GAAG,MAAM,CAAC,qBAAqB,EAAE,MAAM,CAAC,CAAC;AAC7E,MAAM,MAAM,wBAAwB,GAAG,OAAO,CAAC,MAAM,CAAC,qBAAqB,EAAE,MAAM,CAAC,CAAC,GAAG;IACtF,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB,CAAC;AAEF,MAAM,MAAM,2BAA2B,CAAC,OAAO,GAAG,OAAO,IAAI;IAC3D,UAAU,EAAE,gBAAgB,CAAC,OAAO,CAAC,CAAC;CACvC,CAAC;AAEF,MAAM,MAAM,2BAA2B,GAAG;IACxC,MAAM,EAAE,wBAAwB,CAAC;IACjC,MAAM,EAAE,wBAAwB,CAAC;IACjC,gBAAgB,EAAE,OAAO,CAAC;IAC1B,YAAY,EAAE,OAAO,CAAC;IACtB,YAAY,EAAE,OAAO,CAAC;IACtB,iFAAiF;IACjF,mBAAmB,EAAE,OAAO,CAAC;IAC7B,iBAAiB,EAAE,CAAC,OAAO,EAAE,qBAAqB,EAAE,KAAK,EAAE,MAAM,KAAK,IAAI,CAAC;IAC3E,eAAe,EAAE,MAAM,IAAI,CAAC;IAC5B,YAAY,EAAE,CAAC,KAAK,EAAE,KAAK,CAAC,SAAS,CAAC,eAAe,CAAC,KAAK,IAAI,CAAC;IAChE,YAAY,EAAE,MAAM,IAAI,CAAC;CAC1B,CAAC;AAQF,eAAO,MAAM,wBAAwB,GAAI,OAAO,EAAG,iBAEhD,2BAA2B,CAAC,OAAO,CAAC,KAAG,2BAqJzC,CAAC"}

package/dist/components/layouts/forgot_password/hooks/use_forgot_password_form.js

@@ -16,6 +16,7 @@ export const use_forgot_password_form = ({ dataClient, }) => {
     const [errors, setErrors] = useState({});
     const [emailTouched, setEmailTouched] = useState(false);
     const [isSubmitting, setIsSubmitting] = useState(false);
+    const [isGoogleOnlyAccount, setIsGoogleOnlyAccount] = useState(false);
     const isSubmitDisabled = useMemo(() => {
         if (isSubmitting) {
             return true;
@@ -72,6 +73,7 @@ export const use_forgot_password_form = ({ dataClient, }) => {
         }
         setIsSubmitting(true);
         setErrors({});
+        setIsGoogleOnlyAccount(false);
         try {
             const response = await fetch(`${apiBasePath}/forgot_password`, {
                 method: "POST",
@@ -86,6 +88,11 @@ export const use_forgot_password_form = ({ dataClient, }) => {
             if (!response.ok) {
                 throw new Error(data.error || "Password reset request failed");
             }
+            // Check if user is a Google-only account (no password set)
+            if (data.no_password_set) {
+                setIsGoogleOnlyAccount(true);
+                return;
+            }
             // Show success notification
             toast.success("Password reset link sent", {
                 description: "If an account with that email exists, a password reset link has been sent.",
@@ -121,6 +128,7 @@ export const use_forgot_password_form = ({ dataClient, }) => {
         isSubmitDisabled,
         isSubmitting,
         emailTouched,
+        isGoogleOnlyAccount,
         handleFieldChange,
         handleEmailBlur,
         handleSubmit,

package/dist/components/layouts/forgot_password/index.d.ts

@@ -16,6 +16,12 @@ export type ForgotPasswordLayoutProps<TClient = unknown> = {
     showReturnHomeButton?: boolean;
     returnHomeButtonLabel?: string;
     returnHomePath?: string;
+    /** Message shown when user's account is Google-only (no password set) */
+    googleOnlyAccountHeading?: string;
+    googleOnlyAccountMessage?: string;
+    googleOnlyAccountHelpText?: string;
+    mySettingsPath?: string;
+    mySettingsLabel?: string;
 };
-export default function forgot_password_layout<TClient>({ image_src, image_alt, image_background_color, field_overrides, labels, button_colors, data_client, sign_in_path, sign_in_label, alreadyLoggedInMessage, showLogoutButton, showReturnHomeButton, returnHomeButtonLabel, returnHomePath, }: ForgotPasswordLayoutProps<TClient>): import("react/jsx-runtime").JSX.Element;
+export default function forgot_password_layout<TClient>({ image_src, image_alt, image_background_color, field_overrides, labels, button_colors, data_client, sign_in_path, sign_in_label, alreadyLoggedInMessage, showLogoutButton, showReturnHomeButton, returnHomeButtonLabel, returnHomePath, googleOnlyAccountHeading, googleOnlyAccountMessage, googleOnlyAccountHelpText, mySettingsPath, mySettingsLabel, }: ForgotPasswordLayoutProps<TClient>): import("react/jsx-runtime").JSX.Element;
 //# sourceMappingURL=index.d.ts.map

package/dist/components/layouts/forgot_password/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/components/layouts/forgot_password/index.tsx"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAMlD,OAAO,EACL,KAAK,sBAAsB,EAC3B,KAAK,uBAAuB,EAC5B,KAAK,oBAAoB,EAC1B,MAAM,uCAAuC,CAAC;AAW/C,OAAO,EAAE,KAAK,gBAAgB,EAAE,MAAM,mCAAmC,CAAC;AAI1E,MAAM,MAAM,yBAAyB,CAAC,OAAO,GAAG,OAAO,IAAI;IACzD,SAAS,EAAE,MAAM,GAAG,eAAe,CAAC;IACpC,SAAS,EAAE,MAAM,CAAC;IAClB,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,eAAe,CAAC,EAAE,uBAAuB,CAAC;IAC1C,MAAM,CAAC,EAAE,oBAAoB,CAAC;IAC9B,aAAa,CAAC,EAAE,sBAAsB,CAAC;IACvC,WAAW,EAAE,gBAAgB,CAAC,OAAO,CAAC,CAAC;IACvC,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,oBAAoB,CAAC,EAAE,OAAO,CAAC;IAC/B,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB,CAAC;AASF,MAAM,CAAC,OAAO,UAAU,sBAAsB,CAAC,OAAO,EAAE,EACtD,SAAS,EACT,SAAS,EACT,sBAAkC,EAClC,eAAe,EACf,MAAM,EACN,aAAa,EACb,WAAW,EACX,YAAiC,EACjC,aAAyB,EACzB,sBAAoD,EACpD,gBAAuB,EACvB,oBAA4B,EAC5B,qBAAqC,EACrC,cAAoB,GACrB,EAAE,yBAAyB,CAAC,OAAO,CAAC,2CA+GpC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/components/layouts/forgot_password/index.tsx"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAOlD,OAAO,EACL,KAAK,sBAAsB,EAC3B,KAAK,uBAAuB,EAC5B,KAAK,oBAAoB,EAC1B,MAAM,uCAAuC,CAAC;AAW/C,OAAO,EAAE,KAAK,gBAAgB,EAAE,MAAM,mCAAmC,CAAC;AAI1E,MAAM,MAAM,yBAAyB,CAAC,OAAO,GAAG,OAAO,IAAI;IACzD,SAAS,EAAE,MAAM,GAAG,eAAe,CAAC;IACpC,SAAS,EAAE,MAAM,CAAC;IAClB,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,eAAe,CAAC,EAAE,uBAAuB,CAAC;IAC1C,MAAM,CAAC,EAAE,oBAAoB,CAAC;IAC9B,aAAa,CAAC,EAAE,sBAAsB,CAAC;IACvC,WAAW,EAAE,gBAAgB,CAAC,OAAO,CAAC,CAAC;IACvC,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,oBAAoB,CAAC,EAAE,OAAO,CAAC;IAC/B,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,yEAAyE;IACzE,wBAAwB,CAAC,EAAE,MAAM,CAAC;IAClC,wBAAwB,CAAC,EAAE,MAAM,CAAC;IAClC,yBAAyB,CAAC,EAAE,MAAM,CAAC;IACnC,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B,CAAC;AASF,MAAM,CAAC,OAAO,UAAU,sBAAsB,CAAC,OAAO,EAAE,EACtD,SAAS,EACT,SAAS,EACT,sBAAkC,EAClC,eAAe,EACf,MAAM,EACN,aAAa,EACb,WAAW,EACX,YAAiC,EACjC,aAAyB,EACzB,sBAAoD,EACpD,gBAAuB,EACvB,oBAA4B,EAC5B,qBAAqC,EACrC,cAAoB,EACpB,wBAAoD,EACpD,wBAA2G,EAC3G,yBAA0I,EAC1I,cAAyC,EACzC,eAAkC,GACnC,EAAE,yBAAyB,CAAC,OAAO,CAAC,2CAgJpC"}

package/dist/components/layouts/forgot_password/index.js

@@ -9,6 +9,7 @@ import { FormHeader } from "../shared/components/form_header";
 import { FormActionButtons } from "../shared/components/form_action_buttons";
 import { TwoColumnAuthLayout } from "../shared/components/two_column_auth_layout";
 import { AlreadyLoggedInGuard } from "../shared/components/already_logged_in_guard";
+import { GoogleSignInButton } from "../shared/components/google_sign_in_button";
 import { FORGOT_PASSWORD_FIELD_IDS, createForgotPasswordFieldDefinitions, resolveForgotPasswordButtonPalette, resolveForgotPasswordLabels, } from "./config/forgot_password_field_config";
 import { use_forgot_password_form, } from "./hooks/use_forgot_password_form";
 import Link from "next/link";
@@ -16,7 +17,7 @@ const ORDERED_FIELDS = [
     FORGOT_PASSWORD_FIELD_IDS.EMAIL,
 ];
 // section: component
-export default function forgot_password_layout({ image_src, image_alt, image_background_color = "#f1f5f9", field_overrides, labels, button_colors, data_client, sign_in_path = "/hazo_auth/login", sign_in_label = "Sign in", alreadyLoggedInMessage = "You are already logged in", showLogoutButton = true, showReturnHomeButton = false, returnHomeButtonLabel = "Return home", returnHomePath = "/", }) {
+export default function forgot_password_layout({ image_src, image_alt, image_background_color = "#f1f5f9", field_overrides, labels, button_colors, data_client, sign_in_path = "/hazo_auth/login", sign_in_label = "Sign in", alreadyLoggedInMessage = "You are already logged in", showLogoutButton = true, showReturnHomeButton = false, returnHomeButtonLabel = "Return home", returnHomePath = "/", googleOnlyAccountHeading = "Google Account Detected", googleOnlyAccountMessage = "Your account was created using Google Sign-In and doesn't have a password set.", googleOnlyAccountHelpText = "Sign in with Google, then set a password in your account settings if you'd like to use email/password login.", mySettingsPath = "/hazo_auth/my_settings", mySettingsLabel = "Go to Settings", }) {
     const fieldDefinitions = createForgotPasswordFieldDefinitions(field_overrides);
     const resolvedLabels = resolveForgotPasswordLabels(labels);
     const resolvedButtonPalette = resolveForgotPasswordButtonPalette(button_colors);
@@ -40,5 +41,9 @@ export default function forgot_password_layout({ image_src, image_alt, image_bac
             return (_jsx(FormFieldWrapper, { fieldId: fieldDefinition.id, label: fieldDefinition.label, input: inputElement, errorMessage: shouldShowError }, fieldId));
         });
     };
-    return (_jsx(AlreadyLoggedInGuard, { image_src: image_src, image_alt: image_alt, image_background_color: image_background_color, message: alreadyLoggedInMessage, showLogoutButton: showLogoutButton, showReturnHomeButton: showReturnHomeButton, returnHomeButtonLabel: returnHomeButtonLabel, returnHomePath: returnHomePath, children: _jsx(TwoColumnAuthLayout, { imageSrc: image_src, imageAlt: image_alt, imageBackgroundColor: image_background_color, formContent: _jsxs(_Fragment, { children: [_jsx(FormHeader, { heading: resolvedLabels.heading, subHeading: resolvedLabels.subHeading }), _jsxs("form", { className: "cls_forgot_password_layout_form_fields flex flex-col gap-5", onSubmit: form.handleSubmit, "aria-label": "Forgot password form", children: [renderFields(form), _jsx(FormActionButtons, { submitLabel: resolvedLabels.submitButton, cancelLabel: resolvedLabels.cancelButton, buttonPalette: resolvedButtonPalette, isSubmitDisabled: form.isSubmitDisabled, onCancel: form.handleCancel, submitAriaLabel: "Submit forgot password form", cancelAriaLabel: "Cancel forgot password form" }), form.isSubmitting && (_jsx("div", { className: "cls_forgot_password_submitting_indicator text-sm text-slate-600 text-center", children: "Sending reset link..." }))] }), _jsxs("div", { className: "cls_forgot_password_sign_in_link mt-4 text-center text-sm text-slate-600", children: ["Remember your password?", " ", _jsx(Link, { href: sign_in_path, className: "font-medium text-slate-900 hover:underline", children: sign_in_label })] })] }) }) }));
+    return (_jsx(AlreadyLoggedInGuard, { image_src: image_src, image_alt: image_alt, image_background_color: image_background_color, message: alreadyLoggedInMessage, showLogoutButton: showLogoutButton, showReturnHomeButton: showReturnHomeButton, returnHomeButtonLabel: returnHomeButtonLabel, returnHomePath: returnHomePath, children: _jsx(TwoColumnAuthLayout, { imageSrc: image_src, imageAlt: image_alt, imageBackgroundColor: image_background_color, formContent: _jsx(_Fragment, { children: form.isGoogleOnlyAccount ? (
+                /* Google-only account message */
+                _jsxs("div", { className: "cls_forgot_password_google_only flex flex-col gap-5", children: [_jsx(FormHeader, { heading: googleOnlyAccountHeading, subHeading: googleOnlyAccountMessage }), _jsx("p", { className: "cls_forgot_password_google_only_help text-sm text-slate-600", children: googleOnlyAccountHelpText }), _jsxs("div", { className: "cls_forgot_password_google_only_actions flex flex-col gap-3", children: [_jsx(GoogleSignInButton, { label: "Sign in with Google" }), _jsx(Link, { href: mySettingsPath, className: "cls_forgot_password_settings_link text-center text-sm font-medium text-slate-700 hover:text-slate-900 hover:underline", children: mySettingsLabel })] }), _jsx("div", { className: "cls_forgot_password_sign_in_link mt-2 text-center text-sm text-slate-600", children: _jsxs(Link, { href: sign_in_path, className: "font-medium text-slate-900 hover:underline", children: ["Back to ", sign_in_label] }) })] })) : (
+                /* Normal forgot password form */
+                _jsxs(_Fragment, { children: [_jsx(FormHeader, { heading: resolvedLabels.heading, subHeading: resolvedLabels.subHeading }), _jsxs("form", { className: "cls_forgot_password_layout_form_fields flex flex-col gap-5", onSubmit: form.handleSubmit, "aria-label": "Forgot password form", children: [renderFields(form), _jsx(FormActionButtons, { submitLabel: resolvedLabels.submitButton, cancelLabel: resolvedLabels.cancelButton, buttonPalette: resolvedButtonPalette, isSubmitDisabled: form.isSubmitDisabled, onCancel: form.handleCancel, submitAriaLabel: "Submit forgot password form", cancelAriaLabel: "Cancel forgot password form" }), form.isSubmitting && (_jsx("div", { className: "cls_forgot_password_submitting_indicator text-sm text-slate-600 text-center", children: "Sending reset link..." }))] }), _jsxs("div", { className: "cls_forgot_password_sign_in_link mt-4 text-center text-sm text-slate-600", children: ["Remember your password?", " ", _jsx(Link, { href: sign_in_path, className: "font-medium text-slate-900 hover:underline", children: sign_in_label })] })] })) }) }) }));
 }

package/dist/components/layouts/login/index.d.ts

@@ -1,6 +1,16 @@
 import type { StaticImageData } from "next/image";
 import { type ButtonPaletteOverrides, type LayoutFieldMapOverrides, type LayoutLabelOverrides } from "../shared/config/layout_customization";
 import { type LayoutDataClient } from "../shared/data/layout_data_client";
+export type OAuthLayoutConfig = {
+    /** Enable Google OAuth login */
+    enable_google: boolean;
+    /** Enable traditional email/password login */
+    enable_email_password: boolean;
+    /** Text displayed on the Google sign-in button */
+    google_button_text: string;
+    /** Text displayed on the divider between OAuth and email/password form */
+    oauth_divider_text: string;
+};
 export type LoginLayoutProps<TClient = unknown> = {
     image_src: string | StaticImageData;
     image_alt: string;
@@ -27,6 +37,8 @@ export type LoginLayoutProps<TClient = unknown> = {
     create_account_path?: string;
     create_account_label?: string;
     urlOnLogon?: string;
+    /** OAuth configuration */
+    oauth?: OAuthLayoutConfig;
 };
-export default function login_layout<TClient>({ image_src, image_alt, image_background_color, field_overrides, labels, button_colors, data_client, logger, redirectRoute, successMessage, alreadyLoggedInMessage, showLogoutButton, showReturnHomeButton, returnHomeButtonLabel, returnHomePath, forgot_password_path, forgot_password_label, create_account_path, create_account_label, urlOnLogon, }: LoginLayoutProps<TClient>): import("react/jsx-runtime").JSX.Element;
+export default function login_layout<TClient>({ image_src, image_alt, image_background_color, field_overrides, labels, button_colors, data_client, logger, redirectRoute, successMessage, alreadyLoggedInMessage, showLogoutButton, showReturnHomeButton, returnHomeButtonLabel, returnHomePath, forgot_password_path, forgot_password_label, create_account_path, create_account_label, urlOnLogon, oauth, }: LoginLayoutProps<TClient>): import("react/jsx-runtime").JSX.Element;
 //# sourceMappingURL=index.d.ts.map

package/dist/components/layouts/login/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/components/layouts/login/index.tsx"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AASlD,OAAO,EACL,KAAK,sBAAsB,EAC3B,KAAK,uBAAuB,EAC5B,KAAK,oBAAoB,EAC1B,MAAM,uCAAuC,CAAC;AAW/C,OAAO,EAAE,KAAK,gBAAgB,EAAE,MAAM,mCAAmC,CAAC;AAG1E,MAAM,MAAM,gBAAgB,CAAC,OAAO,GAAG,OAAO,IAAI;IAChD,SAAS,EAAE,MAAM,GAAG,eAAe,CAAC;IACpC,SAAS,EAAE,MAAM,CAAC;IAClB,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,eAAe,CAAC,EAAE,uBAAuB,CAAC;IAC1C,MAAM,CAAC,EAAE,oBAAoB,CAAC;IAC9B,aAAa,CAAC,EAAE,sBAAsB,CAAC;IACvC,WAAW,EAAE,gBAAgB,CAAC,OAAO,CAAC,CAAC;IACvC,MAAM,CAAC,EAAE;QACP,IAAI,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,IAAI,CAAC;QAChE,KAAK,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,IAAI,CAAC;QACjE,IAAI,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,IAAI,CAAC;QAChE,KAAK,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,IAAI,CAAC;KAClE,CAAC;IACF,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,oBAAoB,CAAC,EAAE,OAAO,CAAC;IAC/B,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB,CAAC;AAUF,MAAM,CAAC,OAAO,UAAU,YAAY,CAAC,OAAO,EAAE,EAC5C,SAAS,EACT,SAAS,EACT,sBAAkC,EAClC,eAAe,EACf,MAAM,EACN,aAAa,EACb,WAAW,EACX,MAAM,EACN,aAAa,EACb,cAAyC,EACzC,sBAAoD,EACpD,gBAAuB,EACvB,oBAA4B,EAC5B,qBAAqC,EACrC,cAAoB,EACpB,oBAAmD,EACnD,qBAA0C,EAC1C,mBAA2C,EAC3C,oBAAuC,EACvC,UAAU,GACX,EAAE,gBAAgB,CAAC,OAAO,CAAC,2CAiK3B"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/components/layouts/login/index.tsx"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAWlD,OAAO,EACL,KAAK,sBAAsB,EAC3B,KAAK,uBAAuB,EAC5B,KAAK,oBAAoB,EAC1B,MAAM,uCAAuC,CAAC;AAW/C,OAAO,EAAE,KAAK,gBAAgB,EAAE,MAAM,mCAAmC,CAAC;AAG1E,MAAM,MAAM,iBAAiB,GAAG;IAC9B,gCAAgC;IAChC,aAAa,EAAE,OAAO,CAAC;IACvB,8CAA8C;IAC9C,qBAAqB,EAAE,OAAO,CAAC;IAC/B,kDAAkD;IAClD,kBAAkB,EAAE,MAAM,CAAC;IAC3B,0EAA0E;IAC1E,kBAAkB,EAAE,MAAM,CAAC;CAC5B,CAAC;AAEF,MAAM,MAAM,gBAAgB,CAAC,OAAO,GAAG,OAAO,IAAI;IAChD,SAAS,EAAE,MAAM,GAAG,eAAe,CAAC;IACpC,SAAS,EAAE,MAAM,CAAC;IAClB,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,eAAe,CAAC,EAAE,uBAAuB,CAAC;IAC1C,MAAM,CAAC,EAAE,oBAAoB,CAAC;IAC9B,aAAa,CAAC,EAAE,sBAAsB,CAAC;IACvC,WAAW,EAAE,gBAAgB,CAAC,OAAO,CAAC,CAAC;IACvC,MAAM,CAAC,EAAE;QACP,IAAI,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,IAAI,CAAC;QAChE,KAAK,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,IAAI,CAAC;QACjE,IAAI,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,IAAI,CAAC;QAChE,KAAK,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,IAAI,CAAC;KAClE,CAAC;IACF,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,oBAAoB,CAAC,EAAE,OAAO,CAAC;IAC/B,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,0BAA0B;IAC1B,KAAK,CAAC,EAAE,iBAAiB,CAAC;CAC3B,CAAC;AAUF,MAAM,CAAC,OAAO,UAAU,YAAY,CAAC,OAAO,EAAE,EAC5C,SAAS,EACT,SAAS,EACT,sBAAkC,EAClC,eAAe,EACf,MAAM,EACN,aAAa,EACb,WAAW,EACX,MAAM,EACN,aAAa,EACb,cAAyC,EACzC,sBAAoD,EACpD,gBAAuB,EACvB,oBAA4B,EAC5B,qBAAqC,EACrC,cAAoB,EACpB,oBAAmD,EACnD,qBAA0C,EAC1C,mBAA2C,EAC3C,oBAAuC,EACvC,UAAU,EACV,KAAK,GACN,EAAE,gBAAgB,CAAC,OAAO,CAAC,2CAuM3B"}

package/dist/components/layouts/login/index.js

@@ -12,6 +12,8 @@ import { FormActionButtons } from "../shared/components/form_action_buttons";
 import { TwoColumnAuthLayout } from "../shared/components/two_column_auth_layout";
 import { CheckCircle } from "lucide-react";
 import { AlreadyLoggedInGuard } from "../shared/components/already_logged_in_guard";
+import { GoogleSignInButton } from "../shared/components/google_sign_in_button";
+import { OAuthDivider } from "../shared/components/oauth_divider";
 import { LOGIN_FIELD_IDS, createLoginFieldDefinitions, resolveLoginButtonPalette, resolveLoginLabels, } from "./config/login_field_config";
 import { use_login_form, } from "./hooks/use_login_form";
 const ORDERED_FIELDS = [
@@ -19,7 +21,14 @@ const ORDERED_FIELDS = [
     LOGIN_FIELD_IDS.PASSWORD,
 ];
 // section: component
-export default function login_layout({ image_src, image_alt, image_background_color = "#f1f5f9", field_overrides, labels, button_colors, data_client, logger, redirectRoute, successMessage = "Successfully logged in", alreadyLoggedInMessage = "You are already logged in", showLogoutButton = true, showReturnHomeButton = false, returnHomeButtonLabel = "Return home", returnHomePath = "/", forgot_password_path = "/hazo_auth/forgot_password", forgot_password_label = "Forgot password?", create_account_path = "/hazo_auth/register", create_account_label = "Create account", urlOnLogon, }) {
+export default function login_layout({ image_src, image_alt, image_background_color = "#f1f5f9", field_overrides, labels, button_colors, data_client, logger, redirectRoute, successMessage = "Successfully logged in", alreadyLoggedInMessage = "You are already logged in", showLogoutButton = true, showReturnHomeButton = false, returnHomeButtonLabel = "Return home", returnHomePath = "/", forgot_password_path = "/hazo_auth/forgot_password", forgot_password_label = "Forgot password?", create_account_path = "/hazo_auth/register", create_account_label = "Create account", urlOnLogon, oauth, }) {
+    // Default OAuth config: both enabled
+    const oauthConfig = oauth || {
+        enable_google: true,
+        enable_email_password: true,
+        google_button_text: "Continue with Google",
+        oauth_divider_text: "or continue with email",
+    };
     const fieldDefinitions = createLoginFieldDefinitions(field_overrides);
     const resolvedLabels = resolveLoginLabels(labels);
     const resolvedButtonPalette = resolveLoginButtonPalette(button_colors);
@@ -54,5 +63,5 @@ export default function login_layout({ image_src, image_alt, image_background_co
     if (form.isSuccess) {
         return (_jsx(TwoColumnAuthLayout, { imageSrc: image_src, imageAlt: image_alt, imageBackgroundColor: image_background_color, formContent: _jsxs(_Fragment, { children: [_jsx(FormHeader, { heading: resolvedLabels.heading, subHeading: resolvedLabels.subHeading }), _jsxs("div", { className: "cls_login_layout_success flex flex-col items-center justify-center gap-4 p-8 text-center", children: [_jsx(CheckCircle, { className: "cls_login_layout_success_icon h-16 w-16 text-green-600", "aria-hidden": "true" }), _jsx("p", { className: "cls_login_layout_success_message text-lg font-medium text-slate-900", children: successMessage })] })] }) }));
     }
-    return (_jsx(AlreadyLoggedInGuard, { image_src: image_src, image_alt: image_alt, image_background_color: image_background_color, message: alreadyLoggedInMessage, showLogoutButton: showLogoutButton, showReturnHomeButton: showReturnHomeButton, returnHomeButtonLabel: returnHomeButtonLabel, returnHomePath: returnHomePath, children: _jsx(TwoColumnAuthLayout, { imageSrc: image_src, imageAlt: image_alt, imageBackgroundColor: image_background_color, formContent: _jsxs(_Fragment, { children: [_jsx(FormHeader, { heading: resolvedLabels.heading, subHeading: resolvedLabels.subHeading }), _jsxs("form", { className: "cls_login_layout_form_fields flex flex-col gap-5", onSubmit: form.handleSubmit, "aria-label": "Login form", children: [renderFields(form), _jsx(FormActionButtons, { submitLabel: resolvedLabels.submitButton, cancelLabel: resolvedLabels.cancelButton, buttonPalette: resolvedButtonPalette, isSubmitDisabled: form.isSubmitDisabled, onCancel: form.handleCancel, submitAriaLabel: "Submit login form", cancelAriaLabel: "Cancel login form" }), _jsxs("div", { className: "cls_login_layout_support_links flex flex-col gap-1 text-sm text-muted-foreground", children: [_jsx(Link, { href: forgot_password_path, className: "cls_login_layout_forgot_password_link text-primary underline-offset-4 hover:underline", "aria-label": "Go to forgot password page", children: forgot_password_label }), _jsx(Link, { href: create_account_path, className: "cls_login_layout_create_account_link text-primary underline-offset-4 hover:underline", "aria-label": "Go to create account page", children: create_account_label })] })] })] }) }) }));
+    return (_jsx(AlreadyLoggedInGuard, { image_src: image_src, image_alt: image_alt, image_background_color: image_background_color, message: alreadyLoggedInMessage, showLogoutButton: showLogoutButton, showReturnHomeButton: showReturnHomeButton, returnHomeButtonLabel: returnHomeButtonLabel, returnHomePath: returnHomePath, children: _jsx(TwoColumnAuthLayout, { imageSrc: image_src, imageAlt: image_alt, imageBackgroundColor: image_background_color, formContent: _jsxs(_Fragment, { children: [_jsx(FormHeader, { heading: resolvedLabels.heading, subHeading: resolvedLabels.subHeading }), oauthConfig.enable_google && (_jsx("div", { className: "cls_login_layout_oauth_section", children: _jsx(GoogleSignInButton, { label: oauthConfig.google_button_text }) })), oauthConfig.enable_google && oauthConfig.enable_email_password && (_jsx(OAuthDivider, { text: oauthConfig.oauth_divider_text })), oauthConfig.enable_email_password && (_jsxs("form", { className: "cls_login_layout_form_fields flex flex-col gap-5", onSubmit: form.handleSubmit, "aria-label": "Login form", children: [renderFields(form), _jsx(FormActionButtons, { submitLabel: resolvedLabels.submitButton, cancelLabel: resolvedLabels.cancelButton, buttonPalette: resolvedButtonPalette, isSubmitDisabled: form.isSubmitDisabled, onCancel: form.handleCancel, submitAriaLabel: "Submit login form", cancelAriaLabel: "Cancel login form" }), _jsxs("div", { className: "cls_login_layout_support_links flex flex-col gap-1 text-sm text-muted-foreground", children: [_jsx(Link, { href: forgot_password_path, className: "cls_login_layout_forgot_password_link text-primary underline-offset-4 hover:underline", "aria-label": "Go to forgot password page", children: forgot_password_label }), _jsx(Link, { href: create_account_path, className: "cls_login_layout_create_account_link text-primary underline-offset-4 hover:underline", "aria-label": "Go to create account page", children: create_account_label })] })] })), !oauthConfig.enable_email_password && oauthConfig.enable_google && (_jsx("div", { className: "cls_login_layout_support_links mt-4 text-center text-sm text-muted-foreground", children: _jsx(Link, { href: create_account_path, className: "cls_login_layout_create_account_link text-primary underline-offset-4 hover:underline", "aria-label": "Go to create account page", children: create_account_label }) }))] }) }) }));
 }

package/dist/components/layouts/my_settings/components/connected_accounts_section.d.ts

@@ -0,0 +1,17 @@
+export type ConnectedAccountsSectionProps = {
+    /** Whether Google account is connected */
+    googleConnected: boolean;
+    /** User's email address (shown when Google is connected) */
+    email?: string;
+    /** Section heading */
+    heading?: string;
+    /** Loading state */
+    loading?: boolean;
+};
+/**
+ * Connected Accounts Section for My Settings
+ * Shows which OAuth providers are linked to the user's account
+ * Currently supports Google, designed for future extensibility
+ */
+export declare function ConnectedAccountsSection({ googleConnected, email, heading, loading, }: ConnectedAccountsSectionProps): import("react/jsx-runtime").JSX.Element;
+//# sourceMappingURL=connected_accounts_section.d.ts.map

package/dist/components/layouts/my_settings/components/connected_accounts_section.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"connected_accounts_section.d.ts","sourceRoot":"","sources":["../../../../../src/components/layouts/my_settings/components/connected_accounts_section.tsx"],"names":[],"mappings":"AAQA,MAAM,MAAM,6BAA6B,GAAG;IAC1C,0CAA0C;IAC1C,eAAe,EAAE,OAAO,CAAC;IACzB,4DAA4D;IAC5D,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,sBAAsB;IACtB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,oBAAoB;IACpB,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB,CAAC;AAGF;;;;GAIG;AACH,wBAAgB,wBAAwB,CAAC,EACvC,eAAe,EACf,KAAK,EACL,OAA8B,EAC9B,OAAe,GAChB,EAAE,6BAA6B,2CAkD/B"}

package/dist/components/layouts/my_settings/components/connected_accounts_section.js

@@ -0,0 +1,17 @@
+// file_description: Connected accounts section showing linked OAuth providers
+// section: client_directive
+"use client";
+import { jsx as _jsx, jsxs as _jsxs } from "react/jsx-runtime";
+// section: imports
+import { GoogleIcon } from "../../shared/components/google_icon";
+// section: component
+/**
+ * Connected Accounts Section for My Settings
+ * Shows which OAuth providers are linked to the user's account
+ * Currently supports Google, designed for future extensibility
+ */
+export function ConnectedAccountsSection({ googleConnected, email, heading = "Connected Accounts", loading = false, }) {
+    return (_jsxs("div", { className: "cls_my_settings_connected_accounts_section bg-white rounded-lg border border-[var(--hazo-border)] p-6", children: [_jsx("h2", { className: "cls_my_settings_section_heading text-lg font-semibold text-[var(--hazo-text-primary)] mb-4", children: heading }), _jsx("div", { className: "cls_connected_accounts_list flex flex-col gap-3", children: _jsxs("div", { className: "cls_connected_account_item flex items-center justify-between p-3 rounded-md border border-[var(--hazo-border)] bg-[var(--hazo-surface-muted)]", children: [_jsxs("div", { className: "cls_connected_account_info flex items-center gap-3", children: [_jsx("div", { className: "cls_connected_account_icon flex items-center justify-center w-10 h-10 rounded-full bg-white border border-[var(--hazo-border)]", children: _jsx(GoogleIcon, { width: 20, height: 20 }) }), _jsxs("div", { className: "cls_connected_account_details flex flex-col", children: [_jsx("span", { className: "cls_connected_account_name font-medium text-[var(--hazo-text-primary)]", children: "Google" }), googleConnected && email && (_jsx("span", { className: "cls_connected_account_email text-sm text-[var(--hazo-text-muted)]", children: email }))] })] }), _jsx("div", { className: "cls_connected_account_status", children: loading ? (_jsx("span", { className: "cls_connected_account_loading text-sm text-[var(--hazo-text-muted)] animate-pulse", children: "Loading..." })) : googleConnected ? (_jsxs("span", { className: "cls_connected_account_connected inline-flex items-center gap-1.5 px-2.5 py-1 rounded-full text-xs font-medium bg-green-100 text-green-700", children: [_jsx("span", { className: "cls_connected_indicator w-1.5 h-1.5 rounded-full bg-green-500" }), "Connected"] })) : (_jsxs("span", { className: "cls_connected_account_not_connected inline-flex items-center gap-1.5 px-2.5 py-1 rounded-full text-xs font-medium bg-slate-100 text-slate-600", children: [_jsx("span", { className: "cls_not_connected_indicator w-1.5 h-1.5 rounded-full bg-slate-400" }), "Not connected"] })) })] }) }), _jsx("p", { className: "cls_connected_accounts_help text-sm text-[var(--hazo-text-muted)] mt-4", children: googleConnected
+                    ? "Your Google account is linked. You can sign in using either your password or Google."
+                    : "Link your Google account to enable quick sign-in with Google." })] }));
+}

package/dist/components/layouts/my_settings/components/set_password_section.d.ts

@@ -0,0 +1,26 @@
+import type { PasswordRequirementOptions } from "../../shared/config/layout_customization";
+export type SetPasswordSectionProps = {
+    /** Password requirements for validation */
+    passwordRequirements: PasswordRequirementOptions;
+    /** Callback when password is successfully set */
+    onPasswordSet?: () => void;
+    /** Section heading */
+    heading?: string;
+    /** Description text */
+    description?: string;
+    /** New password label */
+    newPasswordLabel?: string;
+    /** Confirm password label */
+    confirmPasswordLabel?: string;
+    /** Submit button label */
+    submitButtonLabel?: string;
+    /** Loading state from parent */
+    parentLoading?: boolean;
+};
+/**
+ * Set Password Section for My Settings
+ * Allows Google-only users to set a password for email/password login
+ * Only shown when user has no password set (Google-only account)
+ */
+export declare function SetPasswordSection({ passwordRequirements, onPasswordSet, heading, description, newPasswordLabel, confirmPasswordLabel, submitButtonLabel, parentLoading, }: SetPasswordSectionProps): import("react/jsx-runtime").JSX.Element;
+//# sourceMappingURL=set_password_section.d.ts.map

package/dist/components/layouts/my_settings/components/set_password_section.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"set_password_section.d.ts","sourceRoot":"","sources":["../../../../../src/components/layouts/my_settings/components/set_password_section.tsx"],"names":[],"mappings":"AAUA,OAAO,KAAK,EAAE,0BAA0B,EAAE,MAAM,0CAA0C,CAAC;AAI3F,MAAM,MAAM,uBAAuB,GAAG;IACpC,2CAA2C;IAC3C,oBAAoB,EAAE,0BAA0B,CAAC;IACjD,iDAAiD;IACjD,aAAa,CAAC,EAAE,MAAM,IAAI,CAAC;IAC3B,sBAAsB;IACtB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,uBAAuB;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,yBAAyB;IACzB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,6BAA6B;IAC7B,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,0BAA0B;IAC1B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,gCAAgC;IAChC,aAAa,CAAC,EAAE,OAAO,CAAC;CACzB,CAAC;AAGF;;;;GAIG;AACH,wBAAgB,kBAAkB,CAAC,EACjC,oBAAoB,EACpB,aAAa,EACb,OAAwB,EACxB,WAA4G,EAC5G,gBAAiC,EACjC,oBAAyC,EACzC,iBAAkC,EAClC,aAAqB,GACtB,EAAE,uBAAuB,2CAoNzB"}