From a97aaada8464d11920a0edd4148d77ce53740d9b Mon Sep 17 00:00:00 2001
From: Augustin Mauroy <97875033+AugustinMauroy@users.noreply.github.com>
Date: Mon, 10 Feb 2025 15:24:49 +0100
Subject: [PATCH 1/4] fix(UI/UX): add a validation step before leaving scope

---
 .../@[scope]/(_islands)/ScopeInviteForm.tsx   |   4 +-
 .../@[scope]/(_islands)/ScopeMemberLeave.tsx  |  85 +++++
 frontend/routes/@[scope]/~/members.tsx        | 299 ------------------
 3 files changed, 88 insertions(+), 300 deletions(-)
 create mode 100644 frontend/routes/@[scope]/(_islands)/ScopeMemberLeave.tsx

diff --git a/frontend/routes/@[scope]/(_islands)/ScopeInviteForm.tsx b/frontend/routes/@[scope]/(_islands)/ScopeInviteForm.tsx
index ed5c07c5..d29c49dd 100644
--- a/frontend/routes/@[scope]/(_islands)/ScopeInviteForm.tsx
+++ b/frontend/routes/@[scope]/(_islands)/ScopeInviteForm.tsx
@@ -4,6 +4,7 @@ import { useCallback, useRef } from "preact/hooks";
 import { JSX } from "preact/jsx-runtime";
 import { ScopeInvite } from "../../../utils/api_types.ts";
 import { api, path } from "../../../utils/api.ts";
+import { TbUsersPlus } from "tb-icons";
 
 interface ScopeInviteFormProps {
   scope: string;
@@ -53,7 +54,7 @@ export function ScopeInviteForm(props: ScopeInviteFormProps) {
       class="contents"
       onSubmit={onSubmit}
     >
-      <div class="mt-4 flex gap-4">
+      <div class="mt-4 flex gap-4 justify-between">
         <div class="flex">
           <select
             name="kind"
@@ -92,6 +93,7 @@ export function ScopeInviteForm(props: ScopeInviteFormProps) {
           disabled={submitting}
         >
           Invite
+          <TbUsersPlus class="size-5 ml-2" />
         </button>
       </div>
       {error && <p class="text-red-600 mt-2">{error}</p>}
diff --git a/frontend/routes/@[scope]/(_islands)/ScopeMemberLeave.tsx b/frontend/routes/@[scope]/(_islands)/ScopeMemberLeave.tsx
new file mode 100644
index 00000000..923ba1a6
--- /dev/null
+++ b/frontend/routes/@[scope]/(_islands)/ScopeMemberLeave.tsx
@@ -0,0 +1,85 @@
+// Copyright 2024 the JSR authors. All rights reserved. MIT license.
+import { useSignal } from "@preact/signals";
+import { useEffect } from "preact/hooks";
+import { TbArrowRightFromArc } from "tb-icons";
+
+export function ScopeMemberLeave({
+  userId,
+  isAdmin,
+  isLastAdmin,
+  scopeName = "",
+}: {
+  userId: string;
+  isAdmin: boolean;
+  isLastAdmin: boolean;
+  scopeName?: string;
+}) {
+  const scopeInput = useSignal("");
+  const isEmptyInput = useSignal(false);
+  const isInvalidInput = useSignal(false);
+
+  useEffect(() => {
+    const handler = setTimeout(() => {
+      validate();
+    }, 300);
+
+    return () => clearTimeout(handler);
+  }, [scopeInput.value]);
+
+  const validate = () => {
+    isEmptyInput.value = scopeInput.value.length === 0;
+    isInvalidInput.value = scopeInput.value !== scopeName &&
+      scopeInput.value.length > 0;
+  };
+
+  return (
+    <form
+      method="POST"
+      class="max-w-3xl border-t border-jsr-cyan-950/10 pt-8 mt-12"
+    >
+      <h2 class="text-lg font-semibold">Leave scope</h2>
+      <p class="mt-2 text-jsr-gray-600">
+        Leaving this scope will revoke your access to all packages in this
+        scope. You will no longer be able to publish packages to this
+        scope{isAdmin && " or manage members"}.
+      </p>
+      <input type="hidden" name="userId" value={userId} />
+      {(isLastAdmin || isInvalidInput.value) && (
+        <div class="mt-6 border rounded-md border-red-300 bg-red-50 p-6 text-red-600">
+          <span class="font-bold text-xl">Warning</span>
+          <p>
+            {isLastAdmin &&
+              "You are the last admin in this scope. You must promote another member to admin before leaving."}
+            {isInvalidInput.value &&
+              "The scope name you entered does not match the scope name."}
+          </p>
+        </div>
+      )}
+      <div class="mt-4 flex justify-between gap-4">
+        <input
+          type="text"
+          class="inline-block w-full max-w-sm px-3 input-container text-sm input"
+          value={scopeInput.value}
+          onInput={(e) => {
+            scopeInput.value = (e.target as HTMLInputElement).value;
+          }}
+          placeholder="Scope name"
+          disabled={isLastAdmin}
+          title={isLastAdmin
+            ? "This is the last admin in this scope. Promote another member to admin before demoting this one."
+            : undefined}
+        />
+        <button
+          class="button-danger"
+          type="submit"
+          name="action"
+          value="deleteMember"
+          disabled={isLastAdmin || isInvalidInput.value || isEmptyInput.value}
+        >
+          Leave
+          <TbArrowRightFromArc class="size-5 ml-2 rotate-180" />
+        </button>
+      </div>
+    </form>
+  );
+}
diff --git a/frontend/routes/@[scope]/~/members.tsx b/frontend/routes/@[scope]/~/members.tsx
index 62baaba7..9ba9d416 100644
--- a/frontend/routes/@[scope]/~/members.tsx
+++ b/frontend/routes/@[scope]/~/members.tsx
@@ -1,200 +1,3 @@
-// Copyright 2024 the JSR authors. All rights reserved. MIT license.
-import { HttpError } from "fresh";
-import { define } from "../../../util.ts";
-import { ScopeHeader } from "../(_components)/ScopeHeader.tsx";
-import { ScopeNav } from "../(_components)/ScopeNav.tsx";
-import { ScopePendingInvite } from "../(_components)/ScopePendingInvite.tsx";
-import { ScopeInviteForm } from "../(_islands)/ScopeInviteForm.tsx";
-import { ScopeMemberRole } from "../(_islands)/ScopeMemberRole.tsx";
-import { Table, TableData, TableRow } from "../../../components/Table.tsx";
-import { CopyButton } from "../../../islands/CopyButton.tsx";
-import { path } from "../../../utils/api.ts";
-import {
-  FullUser,
-  ScopeInvite,
-  ScopeMember,
-} from "../../../utils/api_types.ts";
-import { scopeData } from "../../../utils/data.ts";
-import TbTrash from "tb-icons/TbTrash";
-import { scopeIAM } from "../../../utils/iam.ts";
-import { ScopeIAM } from "../../../utils/iam.ts";
-
-export default define.page<typeof handler>(function ScopeMembersPage(
-  { params, data, state, url },
-) {
-  const iam = scopeIAM(state, data.scopeMember);
-
-  const hasOneAdmin = data.members.filter((member) =>
-    member.isAdmin
-  ).length === 1;
-
-  const isLastAdmin = (data.scopeMember?.isAdmin || false) && hasOneAdmin;
-
-  const inviteUrl = url.href;
-
-  return (
-    <div class="mb-20">
-      <ScopeHeader scope={data.scope} />
-      <ScopeNav active="Members" iam={iam} scope={data.scope.scope} />
-      <ScopePendingInvite
-        userInvites={data.invites.filter((i) =>
-          i.targetUser.id === state.user?.id
-        )}
-        scope={params.scope}
-      />
-      <Table
-        class="mt-8"
-        columns={[
-          { title: "Name", class: "w-auto" },
-          { title: "Role", class: "w-0" },
-          ...(iam.canAdmin
-            ? [{ title: "", class: "w-0", align: "right" as const }]
-            : []),
-        ]}
-        currentUrl={url}
-      >
-        {data.members.map((member) => (
-          <MemberItem
-            member={member}
-            isLastAdmin={hasOneAdmin && member.isAdmin}
-            iam={iam}
-          />
-        ))}
-        {data.invites.map((invite) => (
-          <InviteItem
-            invite={invite}
-            inviteUrl={inviteUrl}
-            iam={iam}
-          />
-        ))}
-      </Table>
-      {iam.canAdmin && <MemberInvite scope={data.scope.scope} />}
-      {data.scopeMember && (
-        <MemberLeave
-          userId={data.scopeMember.user.id}
-          isAdmin={data.scopeMember.isAdmin}
-          isLastAdmin={isLastAdmin}
-        />
-      )}
-    </div>
-  );
-});
-
-interface MemberItemProps {
-  isLastAdmin: boolean;
-  member: ScopeMember;
-  iam: ScopeIAM;
-}
-
-export function MemberItem(props: MemberItemProps) {
-  const { member, iam } = props;
-  return (
-    <TableRow key={member.user.id}>
-      <TableData>
-        <a
-          class="text-jsr-cyan-700 hover:text-jsr-cyan-400 hover:underline"
-          href={`/user/${member.user.id}`}
-        >
-          {member.user.name}
-        </a>
-      </TableData>
-      <TableData>
-        {iam.canAdmin
-          ? (
-            <ScopeMemberRole
-              scope={member.scope}
-              userId={member.user.id}
-              isAdmin={member.isAdmin}
-              isLastAdmin={props.isLastAdmin}
-            />
-          )
-          : member.isAdmin
-          ? "Admin"
-          : "Member"}
-      </TableData>
-      {iam.canAdmin && (
-        <TableData>
-          <div class="flex gap-2 justify-end">
-            <form method="POST" class="contents">
-              <input type="hidden" name="userId" value={member.user.id} />
-              <button
-                type="submit"
-                class="hover:underline disabled:text-jsr-gray-300 disabled:cursor-not-allowed hover:text-red-600 motion-safe:transition-colors"
-                name="action"
-                value="deleteMember"
-                disabled={props.isLastAdmin}
-                title={props.isLastAdmin
-                  ? "This is the last admin in this scope. Promote another member to admin before removing this one."
-                  : "Remove user"}
-              >
-                <TbTrash class="size-4" />
-              </button>
-            </form>
-          </div>
-        </TableData>
-      )}
-    </TableRow>
-  );
-}
-
-interface InviteItemProps {
-  invite: ScopeInvite;
-  inviteUrl: string;
-  iam: ScopeIAM;
-}
-
-export function InviteItem(props: InviteItemProps) {
-  const { invite, iam } = props;
-  return (
-    <TableRow key={invite.targetUser.id} class="striped">
-      <TableData>
-        <a
-          class="text-jsr-cyan-700 hover:text-jsr-cyan-400 hover:underline"
-          href={`/user/${invite.targetUser.id}`}
-        >
-          {invite.targetUser.name}
-        </a>
-      </TableData>
-      <TableData>
-        Invited
-      </TableData>
-      {iam.canAdmin && (
-        <TableData>
-          <div class="flex justify-end gap-4">
-            <CopyButton text={props.inviteUrl} title="Copy invite URL" />
-            <form method="POST" class="contents">
-              <input type="hidden" name="userId" value={invite.targetUser.id} />
-              <button
-                type="submit"
-                class="hover:underline"
-                title="Delete invite"
-                name="action"
-                value="deleteInvite"
-              >
-                <TbTrash class="h-4 w-4" />
-              </button>
-            </form>
-          </div>
-        </TableData>
-      )}
-    </TableRow>
-  );
-}
-
-function MemberInvite({ scope }: { scope: string }) {
-  return (
-    <div class="max-w-3xl border-t border-jsr-cyan-950/10 pt-8 mt-8">
-      <h2 class="text-lg font-semibold">Invite member</h2>
-      <p class="mt-2 text-secondary">
-        Inviting users to this scope grants them access to publish all packages
-        in this scope and create new packages. They will not be able to manage
-        members unless they are granted admin status.
-      </p>
-      <ScopeInviteForm scope={scope} />
-    </div>
-  );
-}
-
 function MemberLeave(
   props: { userId: string; isAdmin: boolean; isLastAdmin: boolean },
 ) {
@@ -231,105 +34,3 @@ function MemberLeave(
     </form>
   );
 }
-
-export const handler = define.handlers({
-  async GET(ctx) {
-    let [user, data, membersResp, invitesResp] = await Promise.all([
-      ctx.state.userPromise,
-      scopeData(ctx.state, ctx.params.scope),
-      ctx.state.api.get<ScopeMember[]>(
-        path`/scopes/${ctx.params.scope}/members`,
-      ),
-      ctx.state.api.hasToken()
-        ? ctx.state.api.get<ScopeInvite[]>(
-          path`/scopes/${ctx.params.scope}/invites`,
-        )
-        : Promise.resolve(null),
-    ]);
-    if (user instanceof Response) return user;
-    if (data === null) throw new HttpError(404, "The scope was not found.");
-    if (!membersResp.ok) {
-      if (membersResp.code === "scopeNotFound") {
-        throw new HttpError(404, "The scope was not found.");
-      }
-      throw membersResp; // graceful handle errors
-    }
-    if (invitesResp && !invitesResp.ok) {
-      if (
-        invitesResp.code === "actorNotScopeMember" ||
-        invitesResp.code === "actorNotScopeAdmin"
-      ) {
-        invitesResp = null;
-      } else {
-        if (invitesResp.code === "scopeNotFound") {
-          throw new HttpError(404, "The scope was not found.");
-        }
-        throw invitesResp; // graceful handle errors
-      }
-    }
-
-    const scopeMember = membersResp.data.find((member) =>
-      member.user.id === (user as FullUser | null)?.id
-    ) ?? null;
-
-    ctx.state.meta = {
-      title: `Members - @${ctx.params.scope} - JSR`,
-      description: `List of members of the @${ctx.params.scope} scope on JSR.`,
-    };
-    return {
-      data: {
-        scope: data.scope,
-        scopeMember: scopeMember,
-        members: membersResp.data,
-        invites: invitesResp?.data ?? [],
-      },
-    };
-  },
-  async POST(ctx) {
-    const req = ctx.req;
-    const scope = ctx.params.scope;
-    const form = await req.formData();
-    const action = form.get("action");
-    if (action === "deleteInvite") {
-      const userId = String(form.get("userId"));
-      const res = await ctx.state.api.delete<null>(
-        path`/scopes/${scope}/invites/${userId}`,
-      );
-      if (!res.ok) {
-        if (res.code === "scopeNotFound") {
-          throw new HttpError(404, "The scope was not found.");
-        }
-        throw res; // graceful handle errors
-      }
-    } else if (action === "deleteMember") {
-      const userId = String(form.get("userId"));
-      const res = await ctx.state.api.delete<null>(
-        path`/scopes/${scope}/members/${userId}`,
-      );
-      if (!res.ok) {
-        if (res.code === "scopeNotFound") {
-          throw new HttpError(404, "The scope was not found.");
-        }
-        throw res; // graceful handle errors
-      }
-    } else if (action === "invite") {
-      const githubLogin = String(form.get("githubLogin"));
-      const res = await ctx.state.api.post<ScopeInvite>(
-        path`/scopes/${scope}/members`,
-        { githubLogin },
-      );
-      if (!res.ok) {
-        if (res.code === "scopeNotFound") {
-          throw new HttpError(404, "The scope was not found.");
-        }
-        throw res; // graceful handle errors
-      }
-    } else {
-      throw new Error("Invalid action");
-    }
-    return new Response(null, {
-      status: 303,
-      headers: { Location: `/@${scope}/~/members` },
-    });
-  },
-});

From ecfe51ef3bd0bfc595c4bd4b43dd6877c59e67e0 Mon Sep 17 00:00:00 2001
From: Augustin Mauroy <97875033+AugustinMauroy@users.noreply.github.com>
Date: Thu, 17 Apr 2025 23:07:36 +0200
Subject: [PATCH 2/4] fix: remove layout shift

---
 .../@[scope]/(_islands)/ScopeMemberLeave.tsx  | 22 +++++++++----------
 1 file changed, 11 insertions(+), 11 deletions(-)

diff --git a/frontend/routes/@[scope]/(_islands)/ScopeMemberLeave.tsx b/frontend/routes/@[scope]/(_islands)/ScopeMemberLeave.tsx
index 923ba1a6..c96799cf 100644
--- a/frontend/routes/@[scope]/(_islands)/ScopeMemberLeave.tsx
+++ b/frontend/routes/@[scope]/(_islands)/ScopeMemberLeave.tsx
@@ -44,17 +44,6 @@ export function ScopeMemberLeave({
         scope{isAdmin && " or manage members"}.
       </p>
       <input type="hidden" name="userId" value={userId} />
-      {(isLastAdmin || isInvalidInput.value) && (
-        <div class="mt-6 border rounded-md border-red-300 bg-red-50 p-6 text-red-600">
-          <span class="font-bold text-xl">Warning</span>
-          <p>
-            {isLastAdmin &&
-              "You are the last admin in this scope. You must promote another member to admin before leaving."}
-            {isInvalidInput.value &&
-              "The scope name you entered does not match the scope name."}
-          </p>
-        </div>
-      )}
       <div class="mt-4 flex justify-between gap-4">
         <input
           type="text"
@@ -80,6 +69,17 @@ export function ScopeMemberLeave({
           <TbArrowRightFromArc class="size-5 ml-2 rotate-180" />
         </button>
       </div>
+      {(isLastAdmin || isInvalidInput.value) && (
+        <div class="mt-6 border rounded-md border-red-300 bg-red-50 p-6 text-red-600">
+          <span class="font-bold text-xl">Warning</span>
+          <p>
+            {isLastAdmin &&
+              "You are the last admin in this scope. You must promote another member to admin before leaving."}
+            {isInvalidInput.value &&
+              "The scope name you entered does not match the scope name."}
+          </p>
+        </div>
+      )}
     </form>
   );
 }

From a1524041903c2767ef299168bfa52361d4b27fbf Mon Sep 17 00:00:00 2001
From: Augustin Mauroy <97875033+AugustinMauroy@users.noreply.github.com>
Date: Sat, 26 Apr 2025 11:53:11 +0200
Subject: [PATCH 3/4] fix rebase + dark theme

---
 .../@[scope]/(_islands)/ScopeMemberLeave.tsx  |   2 +-
 frontend/routes/@[scope]/~/members.tsx        | 324 ++++++++++++++++--
 2 files changed, 295 insertions(+), 31 deletions(-)

diff --git a/frontend/routes/@[scope]/(_islands)/ScopeMemberLeave.tsx b/frontend/routes/@[scope]/(_islands)/ScopeMemberLeave.tsx
index c96799cf..5756a9d4 100644
--- a/frontend/routes/@[scope]/(_islands)/ScopeMemberLeave.tsx
+++ b/frontend/routes/@[scope]/(_islands)/ScopeMemberLeave.tsx
@@ -70,7 +70,7 @@ export function ScopeMemberLeave({
         </button>
       </div>
       {(isLastAdmin || isInvalidInput.value) && (
-        <div class="mt-6 border rounded-md border-red-300 bg-red-50 p-6 text-red-600">
+        <div class="mt-6 border rounded-md border-red-300 bg-red-50 p-6 text-red-600 dark:bg-red-900/10 dark:text-red-400">
           <span class="font-bold text-xl">Warning</span>
           <p>
             {isLastAdmin &&
diff --git a/frontend/routes/@[scope]/~/members.tsx b/frontend/routes/@[scope]/~/members.tsx
index 9ba9d416..dc98ad46 100644
--- a/frontend/routes/@[scope]/~/members.tsx
+++ b/frontend/routes/@[scope]/~/members.tsx
@@ -1,36 +1,300 @@
-function MemberLeave(
-  props: { userId: string; isAdmin: boolean; isLastAdmin: boolean },
+// Copyright 2024 the JSR authors. All rights reserved. MIT license.
+import { HttpError } from "fresh";
+import { define } from "../../../util.ts";
+import { ScopeHeader } from "../(_components)/ScopeHeader.tsx";
+import { ScopeNav } from "../(_components)/ScopeNav.tsx";
+import { ScopePendingInvite } from "../(_components)/ScopePendingInvite.tsx";
+import { ScopeInviteForm } from "../(_islands)/ScopeInviteForm.tsx";
+import { ScopeMemberRole } from "../(_islands)/ScopeMemberRole.tsx";
+import { Table, TableData, TableRow } from "../../../components/Table.tsx";
+import { CopyButton } from "../../../islands/CopyButton.tsx";
+import { path } from "../../../utils/api.ts";
+import {
+  FullUser,
+  ScopeInvite,
+  ScopeMember,
+} from "../../../utils/api_types.ts";
+import { scopeData } from "../../../utils/data.ts";
+import TbTrash from "tb-icons/TbTrash";
+import { scopeIAM } from "../../../utils/iam.ts";
+import { ScopeIAM } from "../../../utils/iam.ts";
+import { ScopeMemberLeave } from "../(_islands)/ScopeMemberLeave.tsx";
+
+export default define.page<typeof handler>(function ScopeMembersPage(
+  { params, data, state, url },
 ) {
+  const iam = scopeIAM(state, data.scopeMember);
+
+  const hasOneAdmin = data.members.filter((member) =>
+    member.isAdmin
+  ).length === 1;
+
+  const isLastAdmin = (data.scopeMember?.isAdmin || false) && hasOneAdmin;
+
+  const inviteUrl = url.href;
+
   return (
-    <form
-      method="POST"
-      class="max-w-3xl border-t border-jsr-cyan-950/10 dark:border-jsr-cyan-50/10 pt-8 mt-12"
-    >
-      <h2 class="text-lg font-semibold">Leave scope</h2>
+    <div class="mb-20">
+      <ScopeHeader scope={data.scope} />
+      <ScopeNav active="Members" iam={iam} scope={data.scope.scope} />
+      <ScopePendingInvite
+        userInvites={data.invites.filter((i) =>
+          i.targetUser.id === state.user?.id
+        )}
+        scope={params.scope}
+      />
+      <Table
+        class="mt-8"
+        columns={[
+          { title: "Name", class: "w-auto" },
+          { title: "Role", class: "w-0" },
+          ...(iam.canAdmin
+            ? [{ title: "", class: "w-0", align: "right" as const }]
+            : []),
+        ]}
+        currentUrl={url}
+      >
+        {data.members.map((member) => (
+          <MemberItem
+            member={member}
+            isLastAdmin={hasOneAdmin && member.isAdmin}
+            iam={iam}
+          />
+        ))}
+        {data.invites.map((invite) => (
+          <InviteItem
+            invite={invite}
+            inviteUrl={inviteUrl}
+            iam={iam}
+          />
+        ))}
+      </Table>
+      {iam.canAdmin && <MemberInvite scope={data.scope.scope} />}
+      {data.scopeMember && (
+        <ScopeMemberLeave
+          userId={data.scopeMember.user.id}
+          isAdmin={data.scopeMember.isAdmin}
+          isLastAdmin={isLastAdmin}
+          scopeName={data.scope.scope}
+        />
+      )}
+    </div>
+  );
+});
+
+interface MemberItemProps {
+  isLastAdmin: boolean;
+  member: ScopeMember;
+  iam: ScopeIAM;
+}
+
+export function MemberItem(props: MemberItemProps) {
+  const { member, iam } = props;
+  return (
+    <TableRow key={member.user.id}>
+      <TableData>
+        <a
+          class="text-jsr-cyan-700 hover:text-jsr-cyan-400 hover:underline"
+          href={`/user/${member.user.id}`}
+        >
+          {member.user.name}
+        </a>
+      </TableData>
+      <TableData>
+        {iam.canAdmin
+          ? (
+            <ScopeMemberRole
+              scope={member.scope}
+              userId={member.user.id}
+              isAdmin={member.isAdmin}
+              isLastAdmin={props.isLastAdmin}
+            />
+          )
+          : member.isAdmin
+          ? "Admin"
+          : "Member"}
+      </TableData>
+      {iam.canAdmin && (
+        <TableData>
+          <div class="flex gap-2 justify-end">
+            <form method="POST" class="contents">
+              <input type="hidden" name="userId" value={member.user.id} />
+              <button
+                type="submit"
+                class="hover:underline disabled:text-jsr-gray-300 disabled:cursor-not-allowed hover:text-red-600 motion-safe:transition-colors"
+                name="action"
+                value="deleteMember"
+                disabled={props.isLastAdmin}
+                title={props.isLastAdmin
+                  ? "This is the last admin in this scope. Promote another member to admin before removing this one."
+                  : "Remove user"}
+              >
+                <TbTrash class="size-4" />
+              </button>
+            </form>
+          </div>
+        </TableData>
+      )}
+    </TableRow>
+  );
+}
+
+interface InviteItemProps {
+  invite: ScopeInvite;
+  inviteUrl: string;
+  iam: ScopeIAM;
+}
+
+export function InviteItem(props: InviteItemProps) {
+  const { invite, iam } = props;
+  return (
+    <TableRow key={invite.targetUser.id} class="striped">
+      <TableData>
+        <a
+          class="text-jsr-cyan-700 hover:text-jsr-cyan-400 hover:underline"
+          href={`/user/${invite.targetUser.id}`}
+        >
+          {invite.targetUser.name}
+        </a>
+      </TableData>
+      <TableData>
+        Invited
+      </TableData>
+      {iam.canAdmin && (
+        <TableData>
+          <div class="flex justify-end gap-4">
+            <CopyButton text={props.inviteUrl} title="Copy invite URL" />
+            <form method="POST" class="contents">
+              <input type="hidden" name="userId" value={invite.targetUser.id} />
+              <button
+                type="submit"
+                class="hover:underline"
+                title="Delete invite"
+                name="action"
+                value="deleteInvite"
+              >
+                <TbTrash class="h-4 w-4" />
+              </button>
+            </form>
+          </div>
+        </TableData>
+      )}
+    </TableRow>
+  );
+}
+
+function MemberInvite({ scope }: { scope: string }) {
+  return (
+    <div class="max-w-3xl border-t border-jsr-cyan-950/10 pt-8 mt-8">
+      <h2 class="text-lg font-semibold">Invite member</h2>
       <p class="mt-2 text-secondary">
-        Leaving this scope will revoke your access to all packages in this
-        scope. You will no longer be able to publish packages to this
-        scope{props.isAdmin && " or manage members"}.
+        Inviting users to this scope grants them access to publish all packages
+        in this scope and create new packages. They will not be able to manage
+        members unless they are granted admin status.
       </p>
-      <input type="hidden" name="userId" value={props.userId} />
-      {props.isLastAdmin && (
-        <div class="mt-6 border-1 rounded-md border-red-300 bg-red-50 p-6 text-red-600">
-          <span class="font-bold text-xl">Warning</span>
-          <p>
-            You are the last admin in this scope. You must promote another
-            member to admin before leaving.
-          </p>
-        </div>
-      )}
-      <button
-        class="button-danger mt-6"
-        type="submit"
-        name="action"
-        value="deleteMember"
-        disabled={props.isLastAdmin}
-      >
-        Leave
-      </button>
-    </form>
+      <ScopeInviteForm scope={scope} />
+    </div>
   );
 }
+
+export const handler = define.handlers({
+  async GET(ctx) {
+    let [user, data, membersResp, invitesResp] = await Promise.all([
+      ctx.state.userPromise,
+      scopeData(ctx.state, ctx.params.scope),
+      ctx.state.api.get<ScopeMember[]>(
+        path`/scopes/${ctx.params.scope}/members`,
+      ),
+      ctx.state.api.hasToken()
+        ? ctx.state.api.get<ScopeInvite[]>(
+          path`/scopes/${ctx.params.scope}/invites`,
+        )
+        : Promise.resolve(null),
+    ]);
+    if (user instanceof Response) return user;
+    if (data === null) throw new HttpError(404, "The scope was not found.");
+    if (!membersResp.ok) {
+      if (membersResp.code === "scopeNotFound") {
+        throw new HttpError(404, "The scope was not found.");
+      }
+      throw membersResp; // graceful handle errors
+    }
+    if (invitesResp && !invitesResp.ok) {
+      if (
+        invitesResp.code === "actorNotScopeMember" ||
+        invitesResp.code === "actorNotScopeAdmin"
+      ) {
+        invitesResp = null;
+      } else {
+        if (invitesResp.code === "scopeNotFound") {
+          throw new HttpError(404, "The scope was not found.");
+        }
+        throw invitesResp; // graceful handle errors
+      }
+    }
+
+    const scopeMember = membersResp.data.find((member) =>
+      member.user.id === (user as FullUser | null)?.id
+    ) ?? null;
+
+    ctx.state.meta = {
+      title: `Members - @${ctx.params.scope} - JSR`,
+      description: `List of members of the @${ctx.params.scope} scope on JSR.`,
+    };
+    return {
+      data: {
+        scope: data.scope,
+        scopeMember: scopeMember,
+        members: membersResp.data,
+        invites: invitesResp?.data ?? [],
+      },
+    };
+  },
+  async POST(ctx) {
+    const req = ctx.req;
+    const scope = ctx.params.scope;
+    const form = await req.formData();
+    const action = form.get("action");
+    if (action === "deleteInvite") {
+      const userId = String(form.get("userId"));
+      const res = await ctx.state.api.delete<null>(
+        path`/scopes/${scope}/invites/${userId}`,
+      );
+      if (!res.ok) {
+        if (res.code === "scopeNotFound") {
+          throw new HttpError(404, "The scope was not found.");
+        }
+        throw res; // graceful handle errors
+      }
+    } else if (action === "deleteMember") {
+      const userId = String(form.get("userId"));
+      const res = await ctx.state.api.delete<null>(
+        path`/scopes/${scope}/members/${userId}`,
+      );
+      if (!res.ok) {
+        if (res.code === "scopeNotFound") {
+          throw new HttpError(404, "The scope was not found.");
+        }
+        throw res; // graceful handle errors
+      }
+    } else if (action === "invite") {
+      const githubLogin = String(form.get("githubLogin"));
+      const res = await ctx.state.api.post<ScopeInvite>(
+        path`/scopes/${scope}/members`,
+        { githubLogin },
+      );
+      if (!res.ok) {
+        if (res.code === "scopeNotFound") {
+          throw new HttpError(404, "The scope was not found.");
+        }
+        throw res; // graceful handle errors
+      }
+    } else {
+      throw new Error("Invalid action");
+    }
+    return new Response(null, {
+      status: 303,
+      headers: { Location: `/@${scope}/~/members` },
+    });
+  },
+});

From 1483c3264780d74f96ce2d9a7be810271194b602 Mon Sep 17 00:00:00 2001
From: Augustin Mauroy <97875033+AugustinMauroy@users.noreply.github.com>
Date: Sun, 4 May 2025 23:38:31 +0200
Subject: [PATCH 4/4] fix: dark theme

---
 frontend/routes/@[scope]/(_islands)/ScopeMemberLeave.tsx | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/frontend/routes/@[scope]/(_islands)/ScopeMemberLeave.tsx b/frontend/routes/@[scope]/(_islands)/ScopeMemberLeave.tsx
index 5756a9d4..a6cf27fa 100644
--- a/frontend/routes/@[scope]/(_islands)/ScopeMemberLeave.tsx
+++ b/frontend/routes/@[scope]/(_islands)/ScopeMemberLeave.tsx
@@ -38,7 +38,7 @@ export function ScopeMemberLeave({
       class="max-w-3xl border-t border-jsr-cyan-950/10 pt-8 mt-12"
     >
       <h2 class="text-lg font-semibold">Leave scope</h2>
-      <p class="mt-2 text-jsr-gray-600">
+      <p class="mt-2 text-secondary">
         Leaving this scope will revoke your access to all packages in this
         scope. You will no longer be able to publish packages to this
         scope{isAdmin && " or manage members"}.