feat: BOPS walkthrough pages, screenshots, and CloudFormation password output

- Walkthrough: 4-step guide (login, browse applications, review detail, applicants portal)
- Complete page with takeaways, production readiness, ODP links
- 14 Playwright screenshots (CloudFormation, BOPS back-office, applicants portal, AWS Console)
- walkthroughs.yaml, scenarios.yaml, exploration YAML, screenshots YAML
- CloudFormation template: Lambda custom resource for unique password per deployment
  shown in plain text in stack outputs (replaces Secrets Manager console link)
- Naming updated to "Back Office Planning System (BOPS)" throughout
- Links to opendigitalplanning.org/back-office-planning-system-bops

Author: chrisns

cloudformation/scenarios/bops-planning/cdk/lib/bops-planning-stack.ts

@@ -108,6 +108,10 @@ export class BopsPlanningStack extends cdk.Stack {
       },
     });
 
+    // NOTE: template.yaml has been manually edited to replace this with a Lambda-backed
+    // custom resource (PasswordGeneratorFunction) that generates a random password and
+    // returns it via Fn::GetAtt, so it can be displayed in CloudFormation outputs.
+    // Secrets Manager dynamic references ({{resolve:...}}) don't work in outputs.
     const adminPasswordSecret = new secretsmanager.Secret(this, 'AdminPasswordSecret', {
       description: 'BOPS demo admin password',
       generateSecretString: {
@@ -196,8 +200,8 @@ export class BopsPlanningStack extends cdk.Stack {
     });
 
     new cdk.CfnOutput(this, 'BOPSPassword', {
-      description: 'BOPS admin password (retrieve from Secrets Manager)',
-      value: `https://console.aws.amazon.com/secretsmanager/secret?name=${adminPasswordSecret.secretName}&region=${cdk.Aws.REGION}`,
+      description: 'BOPS admin password',
+      value: adminPasswordSecret.secretValueFromJson('ADMIN_PASSWORD').unsafeUnwrap(),
     });
 
     new cdk.CfnOutput(this, 'ApplicantsPortalUrl', {