v0.1.0 — initialer Sprint, vollständige Auth-Reise als SwiftUI

Phase 2 aus dem Native-Auth-Vollausbau-Plan (Option A, siehe ../mana/docs/MANA_SWIFT.md). Entstanden weil drei Apps fast- byte-identische LoginView.swift hatten und Sign-Up/Forgot-PW komplett fehlten. ManaAuthUI-Library mit: - ManaBrandConfig — App-injizierte Theme-Werte (forest für Cards/ Manaspur, mana-default für Memoro), Environment-Key, View-Modifier - Base-Components: ManaAuthScaffold, ManaPrimaryButton, ManaTextField, ManaSecureField + .manaEmailField()-Modifier - ManaLoginView + LoginViewModel — Email/PW-Login, schaltet bei AuthError.emailNotVerified automatisch auf ManaEmailVerifyGateView - ManaSignUpView + SignUpViewModel — Email/Name/PW + awaiting- Verification-Hinweis-Screen - ManaEmailVerifyGateView + ViewModel — Resend-Verification - ManaForgotPasswordView + ViewModel — Reset-Mail anfordern (immer generischer Hinweis, User-Enumeration-Schutz) - ManaResetPasswordView + ViewModel — neues PW mit Token aus Universal-Link - ManaChangeEmailView, ManaChangePasswordView, ManaDeleteAccountView + internal ViewModels — Account-Bausteine - ManaDeleteAccountView ist zweistufig (Bestätigungs-Wort tippen + Passwort) → App-Store-Guideline 5.1.1(v) Pflicht-Surface 26/26 ViewModel-Tests grün via per-test-ID URLProtocol-Routing (löst Parallel-Pollution zwischen .serialized Suites). 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-13 19:22:42 +02:00 · 2026-05-13 19:22:42 +02:00 · 0a2cb349b4
commit 0a2cb349b4
29 changed files with 2614 additions and 0 deletions
--- a/Sources/ManaAuthUI/Reset/ForgotPasswordViewModel.swift
+++ b/Sources/ManaAuthUI/Reset/ForgotPasswordViewModel.swift
@ -0,0 +1,60 @@
+import Foundation
+import ManaCore
+import Observation
+
+/// State-Maschine für ``ManaForgotPasswordView``. Wraps
+/// `AuthClient.forgotPassword`.
+///
+/// **User-Enumeration-Schutz:** Server antwortet immer 200,
+/// unabhängig davon ob die Email existiert. Die UI meldet daher
+/// generisch ("Wenn dein Account existiert, ist eine Mail unterwegs").
+@MainActor
+@Observable
+public final class ForgotPasswordViewModel {
+    public enum Status: Equatable, Sendable {
+        case idle
+        case sending
+        case sent
+        case error(String)
+    }
+
+    public var email: String = ""
+    public private(set) var status: Status = .idle
+
+    private let auth: AuthClient
+    private let resetUniversalLink: URL
+
+    /// - Parameter resetUniversalLink: Universal-Link der App für den
+    ///   Reset-Klick aus der Email. Z.B.
+    ///   `URL(string: "https://cardecky.mana.how/auth/reset")!`.
+    public init(auth: AuthClient, resetUniversalLink: URL) {
+        self.auth = auth
+        self.resetUniversalLink = resetUniversalLink
+    }
+
+    public var canSubmit: Bool {
+        guard !email.trimmingCharacters(in: .whitespacesAndNewlines).isEmpty else { return false }
+        if case .sending = status { return false }
+        return true
+    }
+
+    public var isSending: Bool {
+        if case .sending = status { return true }
+        return false
+    }
+
+    public func submit() async {
+        let trimmed = email.trimmingCharacters(in: .whitespacesAndNewlines)
+        guard !trimmed.isEmpty else { return }
+
+        status = .sending
+        do {
+            try await auth.forgotPassword(email: trimmed, resetUniversalLink: resetUniversalLink)
+            status = .sent
+        } catch let error as AuthError {
+            status = .error(error.errorDescription ?? "Senden fehlgeschlagen")
+        } catch {
+            status = .error(String(describing: error))
+        }
+    }
+}