includio-cms 0.28.0 → 0.33.0

package/dist/shop/server/emailTemplateRegistry.js

@@ -0,0 +1,288 @@
+/**
+ * Shop email template registry — file-based Handlebars templates with
+ * 4-step resolution (project override → package default) and per-template
+ * CMS singleton auto-fetch. Used by `sendOrderStatusEmail` and
+ * `sendLowStockEmail` in email.ts.
+ *
+ * @internal — exported here for testing; not part of the public API.
+ */
+import fs from 'node:fs';
+import path from 'node:path';
+import { fileURLToPath } from 'node:url';
+import Handlebars from 'handlebars';
+import { getCMS } from '../../core/cms.js';
+import { resolveEntry } from '../../sveltekit/server/index.js';
+const PACKAGE_TEMPLATES_DIR = path.join(path.dirname(fileURLToPath(import.meta.url)), '..', 'templates');
+const cache = new Map();
+let helpersRegistered = false;
+const partialsRegisteredForLang = new Set();
+function isDev() {
+    return process.env.NODE_ENV !== 'production';
+}
+function registerHelpers() {
+    if (helpersRegistered)
+        return;
+    Handlebars.registerHelper('currency', (value, currency) => {
+        const num = typeof value === 'number' ? value : Number(value);
+        const cur = typeof currency === 'string' ? currency : 'PLN';
+        if (!Number.isFinite(num))
+            return '';
+        return new Intl.NumberFormat('pl-PL', {
+            style: 'currency',
+            currency: cur,
+            minimumFractionDigits: 2
+        }).format(num / 100);
+    });
+    Handlebars.registerHelper('date', (value, format) => {
+        if (value == null)
+            return '';
+        const d = value instanceof Date ? value : new Date(value);
+        if (Number.isNaN(d.getTime()))
+            return '';
+        const fmt = format === 'long' ? 'long' : 'short';
+        if (fmt === 'long') {
+            return new Intl.DateTimeFormat('pl-PL', {
+                day: 'numeric',
+                month: 'long',
+                year: 'numeric'
+            }).format(d);
+        }
+        return new Intl.DateTimeFormat('pl-PL').format(d);
+    });
+    Handlebars.registerHelper('eq', (a, b) => a === b);
+    helpersRegistered = true;
+}
+/**
+ * 4-step lookup for a single template file.
+ * Returns `null` only if every step misses (shouldn't happen for built-in
+ * templates if the package is intact).
+ */
+function resolveTemplatePath(projectDir, name, lang, fallbackLang) {
+    const candidates = [
+        { filePath: path.join(projectDir, `${name}.${lang}.html`), isOverride: true },
+        { filePath: path.join(projectDir, `${name}.html`), isOverride: true },
+        { filePath: path.join(PACKAGE_TEMPLATES_DIR, `${name}.${lang}.html`), isOverride: false },
+        { filePath: path.join(PACKAGE_TEMPLATES_DIR, `${name}.${fallbackLang}.html`), isOverride: false }
+    ];
+    for (const c of candidates) {
+        try {
+            const source = fs.readFileSync(c.filePath, 'utf8');
+            return { filePath: c.filePath, source, isOverride: c.isOverride };
+        }
+        catch {
+            // missing or unreadable, try next
+        }
+    }
+    return null;
+}
+/**
+ * Traverse Handlebars AST and collect all `cms.<slug>.*` accessor slugs.
+ * Returns the unique set so the renderer can prefetch them.
+ */
+function extractCmsSlugs(ast) {
+    const slugs = new Set();
+    const visit = (node) => {
+        if (!node || typeof node !== 'object')
+            return;
+        const type = node.type;
+        if (type === 'PathExpression') {
+            const parts = node.parts;
+            if (parts?.length >= 2 && parts[0] === 'cms') {
+                slugs.add(parts[1]);
+            }
+        }
+        // Recurse common AST child fields
+        const obj = node;
+        for (const key of [
+            'body',
+            'path',
+            'params',
+            'hash',
+            'pairs',
+            'value',
+            'program',
+            'inverse',
+            'expression'
+        ]) {
+            const child = obj[key];
+            if (Array.isArray(child)) {
+                child.forEach((c) => visit(c));
+            }
+            else if (child && typeof child === 'object') {
+                visit(child);
+            }
+        }
+    };
+    visit(ast);
+    return slugs;
+}
+/**
+ * Register all partials for a given lang from `_partials/` (project override
+ * before package default). Idempotent in prod, re-registered each call in dev
+ * to pick up file changes.
+ */
+function registerPartialsForLang(projectDir, lang, fallbackLang) {
+    const cacheKey = `${projectDir}|${lang}|${fallbackLang}`;
+    if (!isDev() && partialsRegisteredForLang.has(cacheKey))
+        return;
+    const seen = new Set();
+    const dirs = [
+        path.join(projectDir, '_partials'),
+        path.join(PACKAGE_TEMPLATES_DIR, '_partials')
+    ];
+    for (const dir of dirs) {
+        let entries;
+        try {
+            entries = fs.readdirSync(dir);
+        }
+        catch {
+            continue;
+        }
+        for (const file of entries) {
+            // Match <name>.<lang>.html first, then <name>.<fallbackLang>.html
+            const match = file.match(/^(.+)\.([^.]+)\.html$/);
+            if (!match)
+                continue;
+            const [, partialName, fileLang] = match;
+            if (fileLang !== lang && fileLang !== fallbackLang)
+                continue;
+            // Prefer requested lang over fallback, prefer project over package
+            const registryKey = `${partialName}|${fileLang}`;
+            if (seen.has(registryKey))
+                continue;
+            seen.add(registryKey);
+            // Only register one per partialName — prefer lang match
+            if (Handlebars.partials[partialName] && fileLang !== lang)
+                continue;
+            try {
+                const source = fs.readFileSync(path.join(dir, file), 'utf8');
+                Handlebars.registerPartial(partialName, source);
+            }
+            catch {
+                // skip unreadable
+            }
+        }
+    }
+    if (!isDev())
+        partialsRegisteredForLang.add(cacheKey);
+}
+function compileOrThrow(source, filePath, strict) {
+    const ast = Handlebars.parse(source);
+    const cmsSlugs = extractCmsSlugs(ast);
+    const compiled = Handlebars.compile(source, { noEscape: false, strict });
+    // Touch filePath in any thrown error context
+    void filePath;
+    return { compiled, cmsSlugs, source };
+}
+/**
+ * Fetch all required CMS singletons in parallel and shape them as
+ * `{ <slug>: entryData }` for template context.
+ */
+async function resolveCmsContext(slugs) {
+    if (slugs.size === 0)
+        return {};
+    const slugList = Array.from(slugs);
+    const entries = await Promise.all(slugList.map(async (slug) => {
+        try {
+            const entry = await resolveEntry({ collection: slug });
+            return [slug, entry?.data ?? {}];
+        }
+        catch {
+            return [slug, {}];
+        }
+    }));
+    return Object.fromEntries(entries);
+}
+/**
+ * Get a compiled template (cached in prod, re-compiled each call in dev).
+ * Falls back through the 4-step lookup. Throws if nothing is found.
+ */
+function getCompiled(name, lang, opts) {
+    const key = `${opts.projectDir}|${name}|${lang}|${opts.fallbackLang}`;
+    if (!isDev()) {
+        const hit = cache.get(key);
+        if (hit)
+            return { ...hit, isOverride: false };
+    }
+    const resolved = resolveTemplatePath(opts.projectDir, name, lang, opts.fallbackLang);
+    if (!resolved) {
+        throw new Error(`[shop] No template found for "${name}" (lang=${lang}, fallback=${opts.fallbackLang}). ` +
+            `Looked in project dir "${opts.projectDir}" and package defaults. ` +
+            `This is likely a corrupt install or a misconfigured shop.emailTemplates.dir.`);
+    }
+    const strict = opts.strict === true;
+    let entry;
+    try {
+        entry = compileOrThrow(resolved.source, resolved.filePath, strict);
+    }
+    catch (err) {
+        // If the failing file was a project override, fall back to package default.
+        console.error(`[shop] Template compile failed at ${resolved.filePath}:`, err instanceof Error ? err.message : err);
+        if (resolved.isOverride) {
+            const pkgPath = path.join(PACKAGE_TEMPLATES_DIR, `${name}.${lang}.html`);
+            const fallbackPath = path.join(PACKAGE_TEMPLATES_DIR, `${name}.${opts.fallbackLang}.html`);
+            for (const p of [pkgPath, fallbackPath]) {
+                try {
+                    const src = fs.readFileSync(p, 'utf8');
+                    entry = compileOrThrow(src, p, strict);
+                    break;
+                }
+                catch {
+                    // continue
+                }
+            }
+        }
+        if (!entry)
+            throw err;
+    }
+    if (!isDev())
+        cache.set(key, entry);
+    return { ...entry, isOverride: resolved.isOverride };
+}
+/**
+ * Public render entry — used by sendOrderStatusEmail / sendLowStockEmail.
+ * Looks up the template, prefetches required CMS singletons, renders.
+ */
+export async function renderEmailTemplate(name, lang, context, opts = {}) {
+    registerHelpers();
+    const cms = getCMS();
+    const fallbackLang = cms.languages[0] ?? 'pl';
+    const projectDir = path.resolve(opts.projectDir ?? path.join(process.cwd(), 'src/emails/shop'));
+    registerPartialsForLang(projectDir, lang, fallbackLang);
+    const entry = getCompiled(name, lang, { projectDir, fallbackLang, strict: opts.strict });
+    const cmsContext = await resolveCmsContext(entry.cmsSlugs);
+    const fullContext = { ...context, cms: cmsContext };
+    // strict/noEscape are compile-time options, already baked into entry.compiled.
+    return entry.compiled(fullContext);
+}
+/**
+ * Bootstrap-time smoke test — verify every required default template is
+ * present in the package. Called from initCMS after setShop.
+ * Lookup-only: does not compile or render, so cheap.
+ */
+export function validateBuiltinTemplates(requiredNames, defaultLang) {
+    const missing = [];
+    for (const name of requiredNames) {
+        const filePath = path.join(PACKAGE_TEMPLATES_DIR, `${name}.${defaultLang}.html`);
+        if (!fs.existsSync(filePath))
+            missing.push(filePath);
+    }
+    if (missing.length > 0) {
+        throw new Error(`[shop] Built-in email templates missing — likely a corrupt install. ` +
+            `Reinstall includio-cms. Missing:\n  ${missing.join('\n  ')}`);
+    }
+}
+/** @internal — exposed for tests */
+export const __testExports = {
+    extractCmsSlugs,
+    resolveTemplatePath,
+    PACKAGE_TEMPLATES_DIR,
+    clearCache: () => {
+        cache.clear();
+        partialsRegisteredForLang.clear();
+        // Reset Handlebars partial registry to avoid cross-test bleed.
+        for (const k of Object.keys(Handlebars.partials)) {
+            Handlebars.unregisterPartial(k);
+        }
+    }
+};

package/dist/shop/server/orders.d.ts

@@ -13,6 +13,43 @@ export declare class MixedPaymentPolicyError extends Error {
     readonly code = "MIXED_PAYMENT_POLICY";
     constructor(message?: string);
 }
+/**
+ * @public
+ * Order statuses an admin is allowed to soft-delete (hide from the admin list).
+ * Restricted to states that never carry a settled payment or an issued invoice,
+ * so hiding one can't bury accounting/audit data. Paid-or-later and `refunded`
+ * orders are never deletable. The invoice guard in `softDeleteOrder` is the
+ * second line of defence.
+ */
+export declare const DELETABLE_ORDER_STATUSES: Set<OrderStatus>;
+/** @public Pure status-level deletability check (no DB / invoice lookup). */
+export declare function isOrderDeletable(status: OrderStatus): boolean;
+export type OrderDeletionDecision = {
+    ok: true;
+} | {
+    ok: false;
+    reason: 'status' | 'invoice';
+};
+/**
+ * @public
+ * Pure decision: may this order be soft-deleted? Encodes both guards (status +
+ * existing invoice) so they're testable without a DB. `invoice` is the order's
+ * current invoice record (or null). An `issued`/`sent` invoice hard-blocks the
+ * delete; `pending`/`failed` invoices don't (no legal document was produced).
+ */
+export declare function decideOrderDeletion(status: OrderStatus, invoice: {
+    status: 'pending' | 'issued' | 'sent' | 'failed';
+} | null): OrderDeletionDecision;
+/**
+ * @public
+ * Thrown by `softDeleteOrder` when the order can't be hidden: either its status
+ * isn't in {@link DELETABLE_ORDER_STATUSES} or it already has an issued invoice.
+ */
+export declare class OrderNotDeletableError extends Error {
+    readonly reason: 'status' | 'invoice';
+    readonly code = "ORDER_NOT_DELETABLE";
+    constructor(reason: 'status' | 'invoice');
+}
 export type OrderRow = typeof shopOrdersTable.$inferSelect;
 export type OrderItemRow = typeof shopOrderItemsTable.$inferSelect;
 export type OrderStatusHistoryRow = typeof shopOrderStatusHistoryTable.$inferSelect;
@@ -87,9 +124,31 @@ export declare function getOrderItems(orderId: string): Promise<OrderItemRow[]>;
 export declare function getOrderStatusHistory(orderId: string): Promise<OrderStatusHistoryRow[]>;
 export interface ListOrdersOptions {
     status?: OrderStatus;
-    email?: string;
+    search?: string;
     limit?: number;
     offset?: number;
+    /**
+     * Soft-delete visibility. `'exclude'` (default) hides soft-deleted orders —
+     * the normal admin/customer list. `'only'` returns just the trash; `'include'`
+     * returns everything regardless of `deletedAt`.
+     */
+    deleted?: 'exclude' | 'only' | 'include';
 }
 export declare function listOrders(opts?: ListOrdersOptions): Promise<OrderRow[]>;
 export declare function countOrders(opts?: Omit<ListOrdersOptions, 'limit' | 'offset'>): Promise<number>;
+/**
+ * @public
+ * Soft-delete an order: hide it from the admin/customer list without removing
+ * the row (accounting/audit safety). Idempotent — a no-op on an already-deleted
+ * order. Guards on {@link decideOrderDeletion}: throws {@link OrderNotDeletableError}
+ * when the status isn't deletable or an issued/sent invoice exists. Releases any
+ * active stock reservation immediately so a hidden, abandoned order never locks
+ * stock waiting for the TTL.
+ */
+export declare function softDeleteOrder(orderId: string, deletedBy: string): Promise<OrderRow>;
+/**
+ * @public
+ * Restore a soft-deleted order back to the visible list. Idempotent — a no-op
+ * on an order that isn't deleted.
+ */
+export declare function restoreOrder(orderId: string): Promise<OrderRow>;

package/dist/shop/server/orders.js

@@ -1,4 +1,4 @@
-import { and, asc, desc, eq, inArray, isNull, lt, sql } from 'drizzle-orm';
+import { and, asc, desc, eq, ilike, inArray, isNotNull, isNull, lt, or, sql } from 'drizzle-orm';
 import { shopOrderItemsTable, shopOrderStatusHistoryTable, shopOrdersTable, shopProductVariantsTable, shopProductsTable, shopShippingMethodsTable, shopStockReservationsTable } from '../../db-postgres/schema/shop/index.js';
 import { getCMS } from '../../core/cms.js';
 import { getShopDb, requireShopConfig } from './db.js';
@@ -9,7 +9,7 @@ import { sendLowStockEmail, sendOrderStatusEmail } from './email.js';
 import { isPaymentMethodAllowed } from './payment-compat.js';
 import { isVariantExpired, VariantExpiredError } from '../expiry.js';
 import { resolvePaymentAmount } from './payment-policy.js';
-import { maybeIssueInvoiceForOrder } from './invoices.js';
+import { getInvoiceByOrderId, maybeIssueInvoiceForOrder } from './invoices.js';
 import { CouponError, recordCouponRedemption, releaseCouponSlot, reserveCouponSlot, validateCoupon } from './coupons.js';
 /**
  * @public
@@ -27,6 +27,55 @@ export class MixedPaymentPolicyError extends Error {
     }
 }
 const STOCK_RESERVATION_TTL_MINUTES = 30;
+/**
+ * @public
+ * Order statuses an admin is allowed to soft-delete (hide from the admin list).
+ * Restricted to states that never carry a settled payment or an issued invoice,
+ * so hiding one can't bury accounting/audit data. Paid-or-later and `refunded`
+ * orders are never deletable. The invoice guard in `softDeleteOrder` is the
+ * second line of defence.
+ */
+export const DELETABLE_ORDER_STATUSES = new Set([
+    'new',
+    'awaitingPayment',
+    'cancelled',
+    'paymentRejected'
+]);
+/** @public Pure status-level deletability check (no DB / invoice lookup). */
+export function isOrderDeletable(status) {
+    return DELETABLE_ORDER_STATUSES.has(status);
+}
+/**
+ * @public
+ * Pure decision: may this order be soft-deleted? Encodes both guards (status +
+ * existing invoice) so they're testable without a DB. `invoice` is the order's
+ * current invoice record (or null). An `issued`/`sent` invoice hard-blocks the
+ * delete; `pending`/`failed` invoices don't (no legal document was produced).
+ */
+export function decideOrderDeletion(status, invoice) {
+    if (!isOrderDeletable(status))
+        return { ok: false, reason: 'status' };
+    if (invoice && (invoice.status === 'issued' || invoice.status === 'sent')) {
+        return { ok: false, reason: 'invoice' };
+    }
+    return { ok: true };
+}
+/**
+ * @public
+ * Thrown by `softDeleteOrder` when the order can't be hidden: either its status
+ * isn't in {@link DELETABLE_ORDER_STATUSES} or it already has an issued invoice.
+ */
+export class OrderNotDeletableError extends Error {
+    reason;
+    code = 'ORDER_NOT_DELETABLE';
+    constructor(reason) {
+        super(reason === 'invoice'
+            ? 'Order has an issued invoice and cannot be deleted.'
+            : 'Order status does not allow deletion.');
+        this.reason = reason;
+        this.name = 'OrderNotDeletableError';
+    }
+}
 async function purgeExpiredReservations() {
     const db = getShopDb();
     await db
@@ -361,9 +410,18 @@ export async function updateOrderStatus(orderId, status, opts = {}) {
         })
             .where(eq(shopOrdersTable.id, orderId));
     }
+    // Auto-restore: a soft-deleted order may only sit in a deletable status. If
+    // it transitions out of that set (e.g. a late payment webhook flips a hidden
+    // `awaitingPayment` order to `paid`), un-hide it so settled orders are never
+    // buried in the trash.
+    const autoRestore = order.deletedAt != null && !isOrderDeletable(status);
     await db
         .update(shopOrdersTable)
-        .set({ status, updatedAt: new Date() })
+        .set({
+        status,
+        updatedAt: new Date(),
+        ...(autoRestore ? { deletedAt: null, deletedBy: null } : {})
+    })
         .where(eq(shopOrdersTable.id, orderId));
     await db.insert(shopOrderStatusHistoryTable).values({
         orderId,
@@ -439,6 +497,14 @@ export async function updateOrderStatus(orderId, status, opts = {}) {
     // the guard inside skips deposit orders that still owe a balance.
     if (status === 'paid')
         void maybeIssueInvoiceForOrder(orderId);
+    // User-land `onOrderPaid` hook — fires on transition INTO `paid` only
+    // (no-op when oldStatus === 'paid'). Errors swallowed so a buggy callback
+    // never blocks the webhook / status write.
+    if (order.status !== 'paid' && status === 'paid' && shop.onOrderPaid && updated) {
+        Promise.resolve(shop.onOrderPaid(updated)).catch((e) => {
+            console.error('[onOrderPaid] callback failed', e);
+        });
+    }
     return updated;
 }
 /**
@@ -533,7 +599,12 @@ export async function getOrderById(id) {
 }
 export async function getOrderByNumber(number) {
     const db = getShopDb();
-    const [row] = await db.select().from(shopOrdersTable).where(eq(shopOrdersTable.number, number));
+    // Customer-facing lookup — a soft-deleted order must not resolve on the
+    // storefront. (Admin uses getOrderById, which intentionally ignores deletedAt.)
+    const [row] = await db
+        .select()
+        .from(shopOrdersTable)
+        .where(and(eq(shopOrdersTable.number, number), isNull(shopOrdersTable.deletedAt)));
     return row ?? null;
 }
 export async function getOrderItems(orderId) {
@@ -548,16 +619,28 @@ export async function getOrderStatusHistory(orderId) {
         .where(eq(shopOrderStatusHistoryTable.orderId, orderId))
         .orderBy(asc(shopOrderStatusHistoryTable.changedAt));
 }
-export async function listOrders(opts = {}) {
-    const db = getShopDb();
+function escapeLike(value) {
+    return value.replace(/[\\%_]/g, (m) => `\\${m}`);
+}
+function buildOrderListConditions(opts) {
     const conditions = [];
+    const deleted = opts.deleted ?? 'exclude';
+    if (deleted === 'exclude')
+        conditions.push(isNull(shopOrdersTable.deletedAt));
+    else if (deleted === 'only')
+        conditions.push(isNotNull(shopOrdersTable.deletedAt));
     if (opts.status)
         conditions.push(eq(shopOrdersTable.status, opts.status));
-    if (opts.email)
-        conditions.push(eq(shopOrdersTable.customerEmail, opts.email));
-    // Exclude soft-deleted if such a column existed; none now
-    // Avoid unused import warning
-    void isNull;
+    const search = opts.search?.trim();
+    if (search) {
+        const pattern = `%${escapeLike(search)}%`;
+        conditions.push(or(ilike(shopOrdersTable.number, pattern), ilike(shopOrdersTable.customerEmail, pattern), ilike(shopOrdersTable.customerName, pattern)));
+    }
+    return conditions;
+}
+export async function listOrders(opts = {}) {
+    const db = getShopDb();
+    const conditions = buildOrderListConditions(opts);
     const where = conditions.length > 0 ? and(...conditions) : undefined;
     return db
         .select()
@@ -569,11 +652,7 @@ export async function listOrders(opts = {}) {
 }
 export async function countOrders(opts = {}) {
     const db = getShopDb();
-    const conditions = [];
-    if (opts.status)
-        conditions.push(eq(shopOrdersTable.status, opts.status));
-    if (opts.email)
-        conditions.push(eq(shopOrdersTable.customerEmail, opts.email));
+    const conditions = buildOrderListConditions(opts);
     const where = conditions.length > 0 ? and(...conditions) : undefined;
     const [row] = await db
         .select({ count: sql `count(*)::int` })
@@ -581,3 +660,53 @@ export async function countOrders(opts = {}) {
         .where(where);
     return row?.count ?? 0;
 }
+/**
+ * @public
+ * Soft-delete an order: hide it from the admin/customer list without removing
+ * the row (accounting/audit safety). Idempotent — a no-op on an already-deleted
+ * order. Guards on {@link decideOrderDeletion}: throws {@link OrderNotDeletableError}
+ * when the status isn't deletable or an issued/sent invoice exists. Releases any
+ * active stock reservation immediately so a hidden, abandoned order never locks
+ * stock waiting for the TTL.
+ */
+export async function softDeleteOrder(orderId, deletedBy) {
+    const db = getShopDb();
+    const [order] = await db.select().from(shopOrdersTable).where(eq(shopOrdersTable.id, orderId));
+    if (!order)
+        throw new Error('Order not found');
+    if (order.deletedAt)
+        return order;
+    const invoice = await getInvoiceByOrderId(orderId);
+    const decision = decideOrderDeletion(order.status, invoice);
+    if (!decision.ok)
+        throw new OrderNotDeletableError(decision.reason);
+    // Free held stock right away (no rows when the stock feature is off).
+    await db
+        .delete(shopStockReservationsTable)
+        .where(eq(shopStockReservationsTable.orderId, orderId));
+    await db
+        .update(shopOrdersTable)
+        .set({ deletedAt: new Date(), deletedBy, updatedAt: new Date() })
+        .where(eq(shopOrdersTable.id, orderId));
+    const [updated] = await db.select().from(shopOrdersTable).where(eq(shopOrdersTable.id, orderId));
+    return updated;
+}
+/**
+ * @public
+ * Restore a soft-deleted order back to the visible list. Idempotent — a no-op
+ * on an order that isn't deleted.
+ */
+export async function restoreOrder(orderId) {
+    const db = getShopDb();
+    const [order] = await db.select().from(shopOrdersTable).where(eq(shopOrdersTable.id, orderId));
+    if (!order)
+        throw new Error('Order not found');
+    if (!order.deletedAt)
+        return order;
+    await db
+        .update(shopOrdersTable)
+        .set({ deletedAt: null, deletedBy: null, updatedAt: new Date() })
+        .where(eq(shopOrdersTable.id, orderId));
+    const [updated] = await db.select().from(shopOrdersTable).where(eq(shopOrdersTable.id, orderId));
+    return updated;
+}

package/dist/shop/templates/_partials/footer.en.html

@@ -0,0 +1,4 @@
+  </div>
+  <p style="text-align:center;color:#8888A0;font-size:12px;margin-top:16px;">AriaCMS · {{order.customerEmail}}</p>
+</div>
+</body></html>

package/dist/shop/templates/_partials/footer.pl.html

@@ -0,0 +1,4 @@
+  </div>
+  <p style="text-align:center;color:#8888A0;font-size:12px;margin-top:16px;">AriaCMS · {{order.customerEmail}}</p>
+</div>
+</body></html>

package/dist/shop/templates/_partials/header.en.html

@@ -0,0 +1,4 @@
+<!doctype html>
+<html lang="en"><body style="margin:0;padding:0;font-family:-apple-system,BlinkMacSystemFont,'Segoe UI',Helvetica,Arial,sans-serif;background:#f5f5f8;color:#1a1a2e;">
+<div style="max-width:560px;margin:0 auto;padding:24px;">
+  <div style="background:#fff;border-radius:12px;padding:28px;">

package/dist/shop/templates/_partials/header.pl.html

@@ -0,0 +1,4 @@
+<!doctype html>
+<html lang="pl"><body style="margin:0;padding:0;font-family:-apple-system,BlinkMacSystemFont,'Segoe UI',Helvetica,Arial,sans-serif;background:#f5f5f8;color:#1a1a2e;">
+<div style="max-width:560px;margin:0 auto;padding:24px;">
+  <div style="background:#fff;border-radius:12px;padding:28px;">

package/dist/shop/templates/_partials/items.en.html

@@ -0,0 +1,14 @@
+<table style="width:100%;border-collapse:collapse;font-size:14px;">
+  <thead><tr style="background:#f4f2fa;"><th align="left" style="padding:8px;">Item</th><th style="padding:8px;">Qty</th><th align="right" style="padding:8px;">Total</th></tr></thead>
+  <tbody>
+    {{#each items}}
+      <tr><td style="padding:6px 8px;border-bottom:1px solid #eee;">{{name}}</td><td style="padding:6px 8px;border-bottom:1px solid #eee;text-align:center;">{{qty}}</td><td style="padding:6px 8px;border-bottom:1px solid #eee;text-align:right;">{{lineGross}}</td></tr>
+    {{/each}}
+  </tbody>
+</table>
+<div style="margin-top:16px;text-align:right;font-size:14px;line-height:1.7;">
+  <div>Shipping: <strong>{{order.shippingGross}}</strong></div>
+  {{#if order.hasDiscount}}<div>Discount ({{order.couponCode}}): <strong style="color:#5B4A9E;">−{{order.discountAmount}}</strong></div>{{/if}}
+  <div style="font-size:16px;">Total (gross): <strong style="color:#5B4A9E;">{{order.totalGross}}</strong></div>
+  <div style="color:#8888A0;font-size:12px;">net {{order.totalNet}} · VAT {{order.vatAmount}}</div>
+</div>

package/dist/shop/templates/_partials/items.pl.html

@@ -0,0 +1,14 @@
+<table style="width:100%;border-collapse:collapse;font-size:14px;">
+  <thead><tr style="background:#f4f2fa;"><th align="left" style="padding:8px;">Pozycja</th><th style="padding:8px;">Ilość</th><th align="right" style="padding:8px;">Suma</th></tr></thead>
+  <tbody>
+    {{#each items}}
+      <tr><td style="padding:6px 8px;border-bottom:1px solid #eee;">{{name}}</td><td style="padding:6px 8px;border-bottom:1px solid #eee;text-align:center;">{{qty}}</td><td style="padding:6px 8px;border-bottom:1px solid #eee;text-align:right;">{{lineGross}}</td></tr>
+    {{/each}}
+  </tbody>
+</table>
+<div style="margin-top:16px;text-align:right;font-size:14px;line-height:1.7;">
+  <div>Wysyłka: <strong>{{order.shippingGross}}</strong></div>
+  {{#if order.hasDiscount}}<div>Rabat ({{order.couponCode}}): <strong style="color:#5B4A9E;">−{{order.discountAmount}}</strong></div>{{/if}}
+  <div style="font-size:16px;">Razem (brutto): <strong style="color:#5B4A9E;">{{order.totalGross}}</strong></div>
+  <div style="color:#8888A0;font-size:12px;">netto {{order.totalNet}} · VAT {{order.vatAmount}}</div>
+</div>

package/dist/shop/templates/_partials/tracking.en.html

@@ -0,0 +1,7 @@
+{{#if tracking}}
+<div style="margin-top:20px;padding:16px;background:#F4F2FA;border-radius:10px;font-size:14px;">
+  <div style="color:#555566;margin-bottom:4px;">{{tracking.label}}</div>
+  <div style="font-family:ui-monospace,monospace;font-weight:700;word-break:break-all;">{{tracking.number}}</div>
+  {{#if tracking.url}}<a href="{{tracking.url}}" style="display:inline-block;margin-top:8px;color:#5B4A9E;font-weight:600;text-decoration:none;">{{tracking.linkLabel}}</a>{{/if}}
+</div>
+{{/if}}

package/dist/shop/templates/_partials/tracking.pl.html

@@ -0,0 +1,7 @@
+{{#if tracking}}
+<div style="margin-top:20px;padding:16px;background:#F4F2FA;border-radius:10px;font-size:14px;">
+  <div style="color:#555566;margin-bottom:4px;">{{tracking.label}}</div>
+  <div style="font-family:ui-monospace,monospace;font-weight:700;word-break:break-all;">{{tracking.number}}</div>
+  {{#if tracking.url}}<a href="{{tracking.url}}" style="display:inline-block;margin-top:8px;color:#5B4A9E;font-weight:600;text-decoration:none;">{{tracking.linkLabel}}</a>{{/if}}
+</div>
+{{/if}}

package/dist/shop/templates/awaiting-payment.en.html

@@ -0,0 +1,6 @@
+{{> header}}
+<h1 style="font-size:20px;font-weight:800;margin:0 0 8px;">Awaiting payment</h1>
+<p style="margin:0 0 20px;color:#555566;line-height:1.5;">Your order {{order.number}} has been placed. Waiting for payment per the chosen method.</p>
+{{> items}}
+{{#if viewUrl}}<div style="margin-top:24px;text-align:center;"><a href="{{viewUrl}}" style="display:inline-block;background:#5B4A9E;color:#fff;text-decoration:none;padding:10px 18px;border-radius:8px;font-weight:600;">{{viewLinkLabel}}</a></div>{{/if}}
+{{> footer}}