{% extends 'admin/layout/base.twig' %}
{% block title %}Staff - {{ app_name }}{% endblock %}
{% block content %}
<div class="op-page-header">
    <div>
        <h1>Staff Members</h1>
        <p class="op-page-subtitle">Manage staff members and assign their brand and role-based permissions.</p>
    </div>
    <a href="/admin/staff/create" class="op-btn op-btn-primary">+ Add Staff</a>
</div>
<div class="op-card">
    <div class="op-card-body op-p-0">
        <div class="op-table-responsive"><table class="op-table">
            <thead><tr><th>Name</th><th>Email</th><th>Role</th><th>2FA</th><th>Last Login</th><th>Status</th><th>Actions</th></tr></thead>
            <tbody>
                {% for s in staff %}
                <tr>
                    <td data-label="Name"><strong>{{ s.name }}</strong></td>
                    <td data-label="Email">{{ s.email }}</td>
                    <td data-label="Role"><span class="op-badge op-badge-{{ s.role is defined and s.role == 'Owner' ? 'primary' : 'outline' }}">{{ s.role ?? 'N/A' }}</span></td>
                    <td data-label="2FA"><span class="op-badge op-badge-{{ s.two_factor_enabled ? 'success' : 'muted' }}">{{ s.two_factor_enabled ? 'ON' : 'OFF' }}</span></td>
                    <td data-label="Last Login">{{ s.last_login_at is defined and s.last_login_at ? s.last_login_at|date("M d, Y") : 'Never' }}</td>
                    <td data-label="Status"><span class="op-badge op-badge-{{ s.status == 'active' ? 'success' : 'muted' }}">{{ s.status }}</span></td>
                    <td data-label="Actions" class="op-nowrap">
                        <a href="/admin/staff/{{ s.id }}" class="op-btn op-btn-xs op-btn-outline">Edit</a>
                        {% if s.two_factor_enabled %}
                        <form method="POST" action="/admin/staff/{{ s.id }}/reset-2fa" class="op-inline-form" onsubmit="return confirm('Reset 2FA for {{ s.name|e('js') }}?')">
                            <input type="hidden" name="_csrf_token" value="{{ csrf_token }}">
                            <button type="submit" class="op-btn op-btn-xs op-btn-warning">Reset 2FA</button>
                        </form>
                        {% endif %}
                        {% if not s.is_superadmin %}
                        <form method="POST" action="/admin/staff/{{ s.id }}/delete" class="op-inline-form" onsubmit="return confirm('Delete staff {{ s.name|e('js') }}?')">
                            <input type="hidden" name="_csrf_token" value="{{ csrf_token }}">
                            <button type="submit" class="op-btn op-btn-xs op-btn-danger">Delete</button>
                        </form>
                        {% endif %}
                    </td>
                </tr>
                {% endfor %}
            </tbody>
        </table></div>
    </div>
</div>
{% endblock %}
