@page "/login"
@layout LoginLayout
@* Login MUST stay anonymously reachable — otherwise the fallback authorization policy
   would lock operators out of the only way in (Admin-001). Static-rendered on purpose:
   the form POSTs to /auth/login while ASP.NET still owns an unstarted HTTP response.
   Calling SignInAsync from an interactive circuit would be too late.

   Uses LoginLayout (no side rail) so the page renders as a clean centred card. *@
@attribute [Microsoft.AspNetCore.Authorization.AllowAnonymous]

<div class="login-wrap rise" style="animation-delay:.02s">
    <section class="panel">
        <div class="panel-head">OtOpcUa Admin &mdash; sign in</div>
        <div style="padding:1.1rem 1.1rem 1.25rem">
            <form method="post" action="/auth/login" data-enhance="false">
                @if (ReturnUrl is not null)
                {
                    <input type="hidden" name="returnUrl" value="@ReturnUrl"/>
                }
                <div class="mb-3">
                    <label class="form-label" for="username">Username</label>
                    <input id="username" name="username" type="text"
                           class="form-control form-control-sm" autocomplete="username"/>
                </div>
                <div class="mb-3">
                    <label class="form-label" for="password">Password</label>
                    <input id="password" name="password" type="password"
                           class="form-control form-control-sm" autocomplete="current-password"/>
                </div>

                @if (!string.IsNullOrWhiteSpace(Error))
                {
                    <div class="panel notice" style="margin-bottom:.85rem">@Error</div>
                }

                <button class="btn btn-primary w-100" type="submit">Sign in</button>
            </form>
        </div>
    </section>
</div>

@code {
    /// <summary>Error message surfaced by /auth/login after a failed bind.</summary>
    [SupplyParameterFromQuery]
    private string? Error { get; set; }

    /// <summary>Original protected URL the operator was bounced from; round-tripped to the endpoint.</summary>
    [SupplyParameterFromQuery]
    private string? ReturnUrl { get; set; }
}