forked from fa/breadcrumb-the-shire
Reworks the auth flow from a single centered card into a two-pane
layout — form on the left, tenant brand on the right — and tightens the
multi-step login UX along the way. Major changes:
LAYOUT
- templates/login.phtml splits into a flex-column body so the footer
spans both panes at the bottom instead of getting clipped under main.
- New .login-form-pane and .login-brand-pane on a 1fr/1fr grid above
768px; mobile stacks brand on top as a slim band, form below.
- Brand pane carries a soft halo + dot grid + tinted base, all derived
from --app-primary so it tracks the tenant accent automatically.
- Login card gets a Stripe-style hairline border + soft shadow, no
Pico article > header sectioning band, h1 in semibold + tracking-tight.
- The "body > main" global padding is overridden for login so the brand
panel reaches the very top + bottom edges of its column.
OS THEME FALLBACK
- New appExplicitTheme() returns the user/tenant theme or empty string,
used by login.phtml + error.phtml to OMIT data-theme entirely when no
preference exists. CSS prefers-color-scheme media query then drives
the theme — DB stays the source of truth, no browser-side persistence.
MULTI-STEP UX
- Heading is stage-aware: "Login" / "Select tenant" / "Login to {tenant}".
Drops the redundant "Login credentials" subtitle.
- Stage 3 gets an identity pill (icon + email + compact "use different
email" button) replacing the old tenant-context block, so the user
always sees which account they're signing in with regardless of
multi-tenant status.
- Stage 2 tenant selection drops avatars + initials — just radio + name
with text-overflow ellipsis for long tenant names.
- Tightens primary CTA: full-width on every stage incl. <p>-wrapped
buttons. autofocus moves to the right input per stage (ldap_username
/ password).
NOTICE / HELP LINKS
- The placeholder "Problems logging in" link is gone (it used to point
at the imprint route — misleading). show_support wired through 6
auth pages and the partial removed; architecture tests adjusted.
- Help-links centered with bullet separators between items, hairline
border-top so they read as secondary navigation under the main CTA.
- The "Encrypted / HTTPS/TLS 1.2+" trust badge at the card bottom is
removed — modern users assume HTTPS, and the badge added noise.
DEAD CODE
- $authLogoHref, $selectedTenantAvatarUrl, $selectedTenantInitial,
$hasSelectedTenantAvatar, $canSwitchTenant — unused after the
identity-pill / brand-pane move, removed from all 6 auth pages.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
57 lines
2.1 KiB
PHTML
57 lines
2.1 KiB
PHTML
<?php
|
|
|
|
/**
|
|
* @var array<int, string> $errors
|
|
* @var string $email
|
|
* @var string $code
|
|
*/
|
|
|
|
use MintyPHP\Buffer;
|
|
use MintyPHP\Session;
|
|
|
|
Buffer::set('title', t('Verify email'));
|
|
$errorNoticeId = !empty($errors) ? 'auth-verify-email-error-notice' : '';
|
|
$authHelpContext = [
|
|
'show_back_to_login' => true,
|
|
];
|
|
?>
|
|
|
|
<article class="login-card">
|
|
<header>
|
|
<hgroup>
|
|
<h1><?php e(t('Verify email')); ?></h1>
|
|
<p><?php e(t('Enter the verification code we sent to your email to complete your registration.')); ?></p>
|
|
</hgroup>
|
|
</header>
|
|
<form method="post">
|
|
<label for="email">
|
|
<span><?php e(t('Email')); ?></span>
|
|
<input required type="email" name="email" id="email" value="<?php e($email ?? ''); ?>" autocomplete="email" <?php if ($errorNoticeId !== ''): ?>aria-invalid="true" aria-describedby="<?php e($errorNoticeId); ?>"<?php endif; ?> />
|
|
</label>
|
|
<label for="code">
|
|
<span><?php e(t('Verification code')); ?></span>
|
|
<input required type="text" name="code" id="code" inputmode="numeric" pattern="\d{6}" maxlength="6"
|
|
value="<?php e($code ?? ''); ?>" autocomplete="one-time-code" <?php if ($errorNoticeId !== ''): ?>aria-invalid="true" aria-describedby="<?php e($errorNoticeId); ?>"<?php endif; ?> />
|
|
</label>
|
|
<?php if (!empty($errors)): ?>
|
|
<div id="<?php e($errorNoticeId); ?>" class="notice" data-variant="error" role="alert" aria-live="assertive" tabindex="-1">
|
|
<ul>
|
|
<?php foreach ($errors as $error): ?>
|
|
<li><?php e($error); ?></li>
|
|
<?php endforeach; ?>
|
|
</ul>
|
|
</div>
|
|
<?php endif; ?>
|
|
<button type="submit"><?php e(t('Verify')); ?></button>
|
|
<?php Session::getCsrfInput(); ?>
|
|
</form>
|
|
<hr>
|
|
<form method="post" class="text-align-center">
|
|
<input type="hidden" name="email" value="<?php e($email ?? ''); ?>">
|
|
<input type="hidden" name="action" value="resend">
|
|
<?php Session::getCsrfInput(); ?>
|
|
<button type="submit" class="secondary outline"><?php e(t('Send code again')); ?></button>
|
|
</form>
|
|
<?php require templatePath('partials/auth-help-links.phtml'); ?>
|
|
</article>
|