Auth0 (auth.coderic.org): login/logout en tema, Alpine.js y Knockout.js

- auth0_domain: auth.coderic.org, auth0_client_id por sitio
- assets/js/auth0-coderic.js: SPA redirect flow, botones Iniciar/Cerrar sesión
- assets/js/alpine.js y knockout.js: carga desde CDN (ruta tema /assets/js/)
- Layout: contenedor #coderic-auth-buttons en header, Auth0 SPA SDK 2.15
- Botones solo visibles si site.auth0_client_id está definido

Co-authored-by: Cursor <cursoragent@cursor.com>

Author: NeftaliYagua

_config.yml

@@ -44,11 +44,13 @@ privacy_url: "/privacy"
 legal_url: "/legal"
 tos_url: "/tos"
 
-# Auth URLs (opcional; los sitios sobreescriben)
+# Auth0 (opcional; los sitios sobreescriben)
+# OpenID: https://auth.coderic.org/.well-known/openid-configuration
 # profile_url: "/profile"
 # dashboard_url: "/dashboard"
-# auth0_domain: "auth.coderic.org"
-# auth_js_path: "/js/auth.js"
+auth0_domain: "auth.coderic.org"
+auth0_client_id: ""   # Cada sitio define su Application (Single Page) en Auth0
+# auth_js_path: "/assets/js/auth0-coderic.js"  # por defecto el tema carga desde assets/js
 
 # Company (opcional)
 # about_url: "/about"

_layouts/default.html

@@ -95,6 +95,9 @@
               </svg>
             </div>
           </a>
+          {% if site.auth0_domain and site.auth0_client_id != nil and site.auth0_client_id != "" %}
+          <div id="coderic-auth-buttons" class="flex items-center gap-2" aria-label="Autenticación"></div>
+          {% endif %}
         </div>
       </div>
     </header>
@@ -351,11 +354,22 @@ <h3 class="text-sm font-bold uppercase tracking-wider text-white mb-6">Ecosistem
      crossorigin="anonymous"></script>
   {% endif %}
   <script src="https://code.jquery.com/jquery-3.7.1.min.js" integrity="sha256-/JqT3SQfawRcv/BIHPThkBvs0OEvtFFmqPF/lYI/Cxo=" crossorigin="anonymous"></script>
-  {% if site.auth0_domain %}
-  <script src="https://cdn.auth0.com/js/auth0/9.28.0/auth0.min.js"></script>
-  {% endif %}
-  {% if site.auth_js_path %}
-  <script type="text/javascript" src="{{ site.auth_js_path | relative_url }}"></script>
+  <!-- Tema: Alpine.js y Knockout.js (ruta /assets/js/ para no conflictos con cada proyecto) -->
+  <script defer src="https://unpkg.com/alpinejs@3.14.3/dist/cdn.min.js"></script>
+  <script src="https://unpkg.com/knockout@3.5.1/build/output/knockout-latest.js"></script>
+  {% if site.auth0_domain and site.auth0_client_id != nil and site.auth0_client_id != "" %}
+  <script src="https://cdn.auth0.com/js/auth0-spa-js/2.15/auth0-spa-js.production.js"></script>
+  <script>
+    window.CodericAuth0Config = {
+      domain: "{{ site.auth0_domain }}",
+      clientId: "{{ site.auth0_client_id }}",
+      baseurl: "{{ site.baseurl | default: '' }}",
+      audience: "{{ site.auth0_audience | default: '' }}"
+    };
+  </script>
+  <script src="{{ '/assets/js/auth0-coderic.js' | relative_url }}"></script>
+  {% elsif site.auth_js_path %}
+  <script src="{{ site.auth_js_path | relative_url }}"></script>
   {% endif %}
 </body>
 </html>

assets/js/alpine.js

@@ -0,0 +1,11 @@
+/**
+ * Alpine.js — cargado desde CDN para no duplicar en cada proyecto.
+ * El layout incluye la versión desde CDN; este archivo documenta la ruta del tema.
+ */
+(function () {
+  if (window.Alpine) return;
+  var s = document.createElement("script");
+  s.src = "https://unpkg.com/alpinejs@3.14.3/dist/cdn.min.js";
+  s.defer = true;
+  document.head.appendChild(s);
+})();

assets/js/auth0-coderic.js

@@ -0,0 +1,88 @@
+/**
+ * Auth0 (auth.coderic.org) — Login/Logout en el tema Coderic.
+ * Requiere: window.CodericAuth0Config = { domain, clientId, baseurl } y Auth0 SPA SDK cargado.
+ */
+(function () {
+  "use strict";
+
+  var config = window.CodericAuth0Config;
+  if (!config || !config.domain || !config.clientId) return;
+
+  var container = document.getElementById("coderic-auth-buttons");
+  if (!container) return;
+
+  var baseurl = (config.baseurl || "").replace(/\/$/, "");
+  var redirectUri = window.location.origin + baseurl + "/";
+
+  function renderLoggedOut() {
+    container.innerHTML =
+      '<button type="button" id="coderic-login-btn" class="px-4 py-2 text-sm font-medium text-white bg-orange-600 rounded-md hover:bg-orange-700 focus:outline-none focus:ring-2 focus:ring-orange-500">Iniciar sesión</button>';
+    document.getElementById("coderic-login-btn").addEventListener("click", function () {
+      window.CodericAuth0Client.loginWithRedirect();
+    });
+  }
+
+  function renderLoggedIn(user) {
+    var name = (user && (user.name || user.nickname || user.email)) || "Usuario";
+    container.innerHTML =
+      '<span class="text-sm text-gray-600 mr-2">' +
+      escapeHtml(name) +
+      '</span><button type="button" id="coderic-logout-btn" class="px-4 py-2 text-sm font-medium text-gray-700 bg-gray-100 rounded-md hover:bg-gray-200 focus:outline-none focus:ring-2 focus:ring-orange-500">Cerrar sesión</button>';
+    document.getElementById("coderic-logout-btn").addEventListener("click", function () {
+      window.CodericAuth0Client.logout({
+        logoutParams: { returnTo: redirectUri },
+      });
+    });
+  }
+
+  function escapeHtml(s) {
+    var div = document.createElement("div");
+    div.textContent = s;
+    return div.innerHTML;
+  }
+
+  function init() {
+    if (typeof createAuth0Client === "undefined") {
+      container.innerHTML = "";
+      return;
+    }
+    createAuth0Client({
+      domain: config.domain,
+      clientId: config.clientId,
+      authorizationParams: {
+        redirect_uri: redirectUri,
+        audience: config.audience || undefined,
+      },
+      cacheLocation: "memory",
+    }).then(function (client) {
+      window.CodericAuth0Client = client;
+      var q = new URLSearchParams(window.location.search);
+      if (q.has("code") && q.has("state")) {
+        client.handleRedirectCallback().then(function () {
+          window.history.replaceState({}, document.title, baseurl + "/");
+          return client.getUser();
+        }).then(function (user) {
+          renderLoggedIn(user);
+        }).catch(function () {
+          renderLoggedOut();
+        });
+        return;
+      }
+      client.isAuthenticated().then(function (ok) {
+        if (ok) {
+          client.getUser().then(renderLoggedIn);
+        } else {
+          renderLoggedOut();
+        }
+      });
+    }).catch(function () {
+      renderLoggedOut();
+    });
+  }
+
+  if (document.readyState === "loading") {
+    document.addEventListener("DOMContentLoaded", init);
+  } else {
+    init();
+  }
+})();

assets/js/knockout.js

@@ -0,0 +1,10 @@
+/**
+ * Knockout.js — cargado desde CDN para no duplicar en cada proyecto.
+ * El layout incluye la versión desde CDN; este archivo documenta la ruta del tema.
+ */
+(function () {
+  if (window.ko) return;
+  var s = document.createElement("script");
+  s.src = "https://unpkg.com/knockout@3.5.1/build/output/knockout-latest.js";
+  document.head.appendChild(s);
+})();