Shadcn Auth Page Blocks

Email change confirmation page showing the new and old address with timestamp and device, a lock account alarm for unauthorized changes, and a dual address notice.

SSO failure page with the specific error reason, a named admin contact, numbered steps to resolve, and retry plus password fallback actions.

Returning user login showing the known account avatar and email with a single password field, passkey option, and a use a different account escape hatch.

Account deactivation state page naming who deactivated the account and when, listing what reactivation restores, and linking directly to the named admin for recovery.

Workspace entry page for invited and domain-matched users with a member preview, join or request buttons, and a note that joining is visible to admins immediately.

New device verification gate showing device, location, time, and account with approve and deny actions and an honest account-lock security note.

Centered auth card prompting passkey enrollment with three benefit rows, a device save target panel, and a skip fallback that keeps the existing password active.

Account recovery card with an email lookup form and three recovery options listed by speed, plus a plain explanation of why identity review takes up to 3 days.

OAuth connecting state card with a Spinner, three step rows showing progress for a GitHub org link, and fallback links if the page hangs.

Account lockout page stating the 15-minute duration, a password reset shortcut, and the reassurance that lockouts are never permanent.

Check-your-inbox state showing the sent address, a throttled resend button, a change-email link, and the 24-hour expiry note.

SSO-enforced sign in card with org domain shown, a single Continue with SSO button, and a named admin fallback for lockouts.

The invite named, inviter, role, what it grants, and the days left to accept.

Calm session timeout screen that promises local draft restore and prefills the email for one click return.

Password reset form that openly explains its anti enumeration response and states reset link timing facts.

TOTP verification with six OTP slots, device trust checkbox, backup code link, and human recovery promise.

Passwordless sign in showing both the request and sent states with expiry and resend throttle facts.

Workspace signup with SSO buttons first, slug preview, and plain 14 day read only trial terms.

SSO first sign in with the password fallback and honest reset link timing.