Skip to content

docs: document ePDS branding customization#128

Merged
Kzoeps merged 2 commits into
mainfrom
epds-css-injection-docs
Apr 16, 2026
Merged

docs: document ePDS branding customization#128
Kzoeps merged 2 commits into
mainfrom
epds-css-injection-docs

Conversation

@Kzoeps

@Kzoeps Kzoeps commented Apr 16, 2026
edited by coderabbitai Bot
Loading

Copy link
Copy Markdown
Contributor

Summary

  • add a new ePDS branding and customization section covering how branding works, trusted-client CSS injection, client_id matching, and affected routes
  • expand the full client metadata example to include branding CSS and document the exact auth/consent URLs used by the flow
  • add before/after screenshots for send OTP, initial OTP, choose handle, consent, and recovery screens

Summary by CodeRabbit

Documentation

  • Added "Branding and customization" section explaining how to configure custom branding across authentication surfaces. Documentation includes configuration examples via client-metadata.json, security controls for trusted clients, and visual examples showing branding placement on OTP, handle selection, recovery, and consent pages.

@vercel

vercel Bot commented Apr 16, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
hypercerts-atproto-documentation Ready Ready Preview, Comment Apr 16, 2026 3:29pm
hypercerts-v0.2-documentation Ready Ready Preview, Comment Apr 16, 2026 3:29pm

@coderabbitai

coderabbitai Bot commented Apr 16, 2026
edited
Loading

Copy link
Copy Markdown

Warning

Rate limit exceeded

@Kzoeps has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 55 minutes and 16 seconds before requesting another review.

Your organization is not enrolled in usage-based pricing. Contact your admin to enable usage-based pricing to continue reviews beyond the rate limit, or try again in 55 minutes and 16 seconds.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info
⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 78a66567-7478-41fd-b5a8-24cf590a4bff

📥 Commits

Reviewing files that changed from the base of the PR and between 2f644f5 and c3c362e.

⛔ Files ignored due to path filters (1)
  • public/images/epds/recovery-css-injected.png is excluded by !**/*.png
📒 Files selected for processing (1)
  • pages/architecture/epds.md
📝 Walkthrough

Walkthrough

Documentation expanded to describe ePDS branding customization via OAuth client_id. Added example client-metadata.json with branding object, specified trusted client restrictions using PDS_OAUTH_TRUSTED_CLIENTS, outlined runtime CSS injection and sanitization behaviors, and documented branding UI placements across authentication surfaces with screenshots.

Changes

Cohort / File(s) Summary
Documentation: Branding & Customization
pages/architecture/epds.md		 Added "Branding and customization" section documenting: branding object in client-metadata.json example, OAuth client_id resolution, trusted client restrictions via PDS_OAUTH_TRUSTED_CLIENTS, CSS injection/sanitization mechanics, CSP hash updates, and branding appearance across auth surfaces (send OTP, initial OTP, handle selection, recovery, consent) with UI screenshots.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~5 minutes

Possibly related PRs

  • docs: add ePDS architecture page #109: Directly modifies pages/architecture/epds.md by adding the same branding object and customization section that is the subject of this documentation update.

Poem

🐰 A dash of CSS, a touch of style,
Our branding blooms with OAuth's smile,
Trusted clients wear custom flair,
While consent screens glow with care! ✨

🚥 Pre-merge checks | ✅ 3
✅ Passed checks (3 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Title check ✅ Passed The pull request title 'docs: document ePDS branding customization' directly and clearly summarizes the main change: adding documentation for ePDS branding customization features.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch epds-css-injection-docs

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

coderabbitai[bot]
coderabbitai Bot reviewed Apr 16, 2026
View reviewed changes

@coderabbitai coderabbitai Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents 
Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@pages/architecture/epds.md`:
- Line 324: The image reference uses an inconsistent filename
"recovery-image-css-injected.png"; update the Markdown image reference to
"recovery-css-injected.png" and, if the asset file in the repo still uses the
old name, rename the file to recovery-css-injected.png so the reference and
actual asset match (check the image tag string and the stored asset filename).
🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

  • Push a commit to this branch (recommended)
  • Create a new PR with the fixes
ℹ️ Review info
⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 9511b48b-d196-481d-9566-9270fc20bd50

📥 Commits

Reviewing files that changed from the base of the PR and between 0d9a452 and 2f644f5.

⛔ Files ignored due to path filters (10)
  • public/images/epds/choose-handle-css-injected.png is excluded by !**/*.png
  • public/images/epds/choose-handle-stock.png is excluded by !**/*.png
  • public/images/epds/consent-page-css-injected.png is excluded by !**/*.png
  • public/images/epds/consent-page-stock.png is excluded by !**/*.png
  • public/images/epds/initial-otp-css-injected.png is excluded by !**/*.png
  • public/images/epds/initial-otp-stock.png is excluded by !**/*.png
  • public/images/epds/recovery-image-css-injected.png is excluded by !**/*.png
  • public/images/epds/recovery-stock.png is excluded by !**/*.png
  • public/images/epds/send-otp-css-injected.png is excluded by !**/*.png
  • public/images/epds/send-otp-stock.png is excluded by !**/*.png
📒 Files selected for processing (1)
  • pages/architecture/epds.md

Comment thread pages/architecture/epds.md Outdated
@Kzoeps Kzoeps merged commit 8758601 into main Apr 16, 2026
4 checks passed
@Kzoeps Kzoeps deleted the epds-css-injection-docs branch April 16, 2026 15:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Kzoeps