From b824289173ee9b9cee8e2ff94c053a9ef7af28f4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Mehmet=20Can=20Karag=C3=B6z?=
 <78308169+mckaragoz@users.noreply.github.com>
Date: Mon, 13 Apr 2026 23:35:15 +0300
Subject: [PATCH 1/2] EFCore Samples (#38)

* EFCore Samples

* Cleanup

* More Cleanup

* More Cleanup

* EFCore Store Permission Fix & Finalized Samples
---
 UltimateAuth.slnx                             |   5 +
 .../Brand/UAuthLogo.razor                     |  19 +
 .../Brand/UAuthLogo.razor.cs                  |  54 ++
 .../Brand/UAuthLogoVariant.cs                 |   7 +
 ...UltimateAuth.Sample.UAuthHub.EFCore.csproj |  34 +
 .../Components/App.razor                      |  29 +
 .../Components/Layout/MainLayout.razor        | 101 +++
 .../Components/Layout/MainLayout.razor.cs     | 130 ++++
 .../Components/Layout/ReconnectModal.razor    |  31 +
 .../Layout/ReconnectModal.razor.css           | 157 ++++
 .../Components/Layout/ReconnectModal.razor.js |  63 ++
 .../Components/Pages/Home.razor               | 103 +++
 .../Components/Pages/Home.razor.cs            | 261 +++++++
 .../Components/Pages/NotAuthorized.razor      |  27 +
 .../Components/Pages/NotAuthorized.razor.cs   |  15 +
 .../Components/Pages/NotFound.razor           |   5 +
 .../Components/Routes.razor                   |  73 ++
 .../Components/_Imports.razor                 |  17 +
 .../Infrastructure/DarkModeManager.cs         |  45 ++
 ...0260412205559_InitUltimateAuth.Designer.cs | 716 ++++++++++++++++++
 .../20260412205559_InitUltimateAuth.cs        | 558 ++++++++++++++
 .../Migrations/UAuthDbContextModelSnapshot.cs | 713 +++++++++++++++++
 .../Program.cs                                |  93 +++
 .../Properties/launchSettings.json            |  23 +
 .../Seed/UAuthDbInitializer.cs                |  46 ++
 .../appsettings.Development.json              |   8 +
 .../appsettings.json                          |   9 +
 .../uauthhub.db                               | Bin 0 -> 4096 bytes
 .../uauthhub.db-shm                           | Bin 0 -> 32768 bytes
 .../uauthhub.db-wal                           | Bin 0 -> 1211312 bytes
 .../wwwroot/UltimateAuth-Logo.png             | Bin 0 -> 14776 bytes
 .../wwwroot/app.css                           | 148 ++++
 ...deBeam.UltimateAuth.Sample.UAuthHub.csproj |  41 +-
 .../Brand/UAuthLogo.razor                     |  19 +
 .../Brand/UAuthLogo.razor.cs                  |  54 ++
 .../Brand/UAuthLogoVariant.cs                 |   7 +
 ...odeBeam.UAuth.Sample.IntWasm.Client.csproj |  24 +
 .../Common/UAuthDialog.cs                     |  29 +
 .../Custom/UAuthPageComponent.razor           |  10 +
 .../Dialogs/AccountStatusDialog.razor         |  23 +
 .../Dialogs/AccountStatusDialog.razor.cs      |  77 ++
 .../Components/Dialogs/CreateUserDialog.razor |  27 +
 .../Dialogs/CreateUserDialog.razor.cs         |  55 ++
 .../Components/Dialogs/CredentialDialog.razor |  51 ++
 .../Dialogs/CredentialDialog.razor.cs         |  92 +++
 .../Components/Dialogs/IdentifierDialog.razor | 115 +++
 .../Dialogs/IdentifierDialog.razor.cs         | 311 ++++++++
 .../Components/Dialogs/PermissionDialog.razor |  46 ++
 .../Dialogs/PermissionDialog.razor.cs         | 120 +++
 .../Components/Dialogs/ProfileDialog.razor    | 103 +++
 .../Components/Dialogs/ProfileDialog.razor.cs | 116 +++
 .../Components/Dialogs/ResetDialog.razor      |  38 +
 .../Components/Dialogs/ResetDialog.razor.cs   |  42 +
 .../Dialogs/ResourceApiDialog.razor           |  54 ++
 .../Dialogs/ResourceApiDialog.razor.cs        |  95 +++
 .../Components/Dialogs/RoleDialog.razor       |  90 +++
 .../Components/Dialogs/RoleDialog.razor.cs    | 176 +++++
 .../Components/Dialogs/SessionDialog.razor    | 226 ++++++
 .../Components/Dialogs/SessionDialog.razor.cs | 286 +++++++
 .../Components/Dialogs/UserDetailDialog.razor |  75 ++
 .../Dialogs/UserDetailDialog.razor.cs         | 100 +++
 .../Components/Dialogs/UserRoleDialog.razor   |  49 ++
 .../Dialogs/UserRoleDialog.razor.cs           | 124 +++
 .../Components/Dialogs/UsersDialog.razor      |  94 +++
 .../Components/Dialogs/UsersDialog.razor.cs   | 188 +++++
 .../Infrastructure/DarkModeManager.cs         |  45 ++
 .../Layout/MainLayout.razor                   |  72 ++
 .../Layout/MainLayout.razor.cs                | 130 ++++
 .../Pages/AnonymousTestPage.razor             |   1 +
 .../Pages/AuthorizedTestPage.razor            |  26 +
 .../Pages/Home.razor                          | 455 +++++++++++
 .../Pages/Home.razor.cs                       | 227 ++++++
 .../Pages/LandingPage.razor                   |   4 +
 .../Pages/LandingPage.razor.cs                |  17 +
 .../Pages/Login.razor                         | 135 ++++
 .../Pages/Login.razor.cs                      | 216 ++++++
 .../Pages/NotAuthorized.razor                 |  27 +
 .../Pages/NotAuthorized.razor.cs              |  15 +
 .../Pages/Register.razor                      |  61 ++
 .../Pages/Register.razor.cs                   |  45 ++
 .../Pages/ResetCredential.razor               |  18 +
 .../Pages/ResetCredential.razor.cs            |  49 ++
 .../Program.cs                                |  33 +
 .../ResourceApi/ProductApiService.cs          |  78 ++
 .../ResourceApi/SampleProduct.cs              |   7 +
 .../Routes.razor                              |  73 ++
 .../_Imports.razor                            |  19 +
 .../wwwroot/appsettings.Development.json      |   8 +
 .../wwwroot/appsettings.json                  |   8 +
 .../CodeBeam.UAuth.Sample.IntWasm.csproj      |  18 +
 .../Components/App.razor                      |  26 +
 .../Components/Pages/Error.razor              |  36 +
 .../Components/_Imports.razor                 |  14 +
 .../CodeBeam.UAuth.Sample.IntWasm/Program.cs  |  65 ++
 .../Properties/launchSettings.json            |  25 +
 .../appsettings.Development.json              |   8 +
 .../appsettings.json                          |   9 +
 .../wwwroot/UltimateAuth-Logo.png             | Bin 0 -> 14776 bytes
 .../wwwroot/app.css                           | 206 +++++
 ...imateAuth.Sample.ResourceApi.EfCore.csproj |  17 +
 ...ltimateAuth.Sample.ResourceApi.EfCore.http |   6 +
 .../Program.cs                                |  28 +
 .../Properties/launchSettings.json            |  23 +
 .../SampleData/AppActions.cs                  |  18 +
 .../SampleData/ProductStore.cs                |   6 +
 .../SampleData/ProductsController.cs          |  73 ++
 .../SampleData/SampleProduct.cs               |   7 +
 .../appsettings.Development.json              |   8 +
 .../appsettings.json                          |   9 +
 .../Program.cs                                |   1 +
 .../Issuers/UAuthTokenIssuer.cs               |   5 +-
 .../Stores/EfCoreRoleStore.cs                 |  23 +-
 ...Beam.UltimateAuth.Client.AspNetCore.csproj |  28 +
 .../NoOpAuthHandler.cs                        |  22 +
 .../README.md                                 |  30 +
 .../ServiceCollectionExtensions.cs            |  18 +
 .../uauthlogo.png                             | Bin 0 -> 4954 bytes
 117 files changed, 8919 insertions(+), 26 deletions(-)
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Brand/UAuthLogo.razor
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Brand/UAuthLogo.razor.cs
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Brand/UAuthLogoVariant.cs
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.csproj
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/App.razor
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/MainLayout.razor
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/MainLayout.razor.cs
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/ReconnectModal.razor
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/ReconnectModal.razor.css
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/ReconnectModal.razor.js
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/Home.razor
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/Home.razor.cs
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/NotAuthorized.razor
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/NotAuthorized.razor.cs
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/NotFound.razor
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Routes.razor
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/_Imports.razor
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Infrastructure/DarkModeManager.cs
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Migrations/20260412205559_InitUltimateAuth.Designer.cs
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Migrations/20260412205559_InitUltimateAuth.cs
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Migrations/UAuthDbContextModelSnapshot.cs
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Program.cs
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Properties/launchSettings.json
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Seed/UAuthDbInitializer.cs
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/appsettings.Development.json
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/appsettings.json
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/uauthhub.db
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/uauthhub.db-shm
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/uauthhub.db-wal
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/wwwroot/UltimateAuth-Logo.png
 create mode 100644 samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/wwwroot/app.css
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Brand/UAuthLogo.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Brand/UAuthLogo.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Brand/UAuthLogoVariant.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/CodeBeam.UAuth.Sample.IntWasm.Client.csproj
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Common/UAuthDialog.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Custom/UAuthPageComponent.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/AccountStatusDialog.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/AccountStatusDialog.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/CreateUserDialog.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/CreateUserDialog.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/CredentialDialog.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/CredentialDialog.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/IdentifierDialog.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/IdentifierDialog.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/PermissionDialog.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/PermissionDialog.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ProfileDialog.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ProfileDialog.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ResetDialog.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ResetDialog.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ResourceApiDialog.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ResourceApiDialog.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/RoleDialog.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/RoleDialog.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/SessionDialog.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/SessionDialog.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UserDetailDialog.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UserDetailDialog.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UserRoleDialog.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UserRoleDialog.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UsersDialog.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UsersDialog.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Infrastructure/DarkModeManager.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Layout/MainLayout.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Layout/MainLayout.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/AnonymousTestPage.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/AuthorizedTestPage.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Home.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Home.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/LandingPage.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/LandingPage.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Login.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Login.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/NotAuthorized.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/NotAuthorized.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Register.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Register.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/ResetCredential.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/ResetCredential.razor.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Program.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/ResourceApi/ProductApiService.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/ResourceApi/SampleProduct.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Routes.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/_Imports.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/wwwroot/appsettings.Development.json
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/wwwroot/appsettings.json
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.csproj
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Components/App.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Components/Pages/Error.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Components/_Imports.razor
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Program.cs
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Properties/launchSettings.json
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/appsettings.Development.json
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/appsettings.json
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/wwwroot/UltimateAuth-Logo.png
 create mode 100644 samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/wwwroot/app.css
 create mode 100644 samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore.csproj
 create mode 100644 samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore.http
 create mode 100644 samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/Program.cs
 create mode 100644 samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/Properties/launchSettings.json
 create mode 100644 samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/SampleData/AppActions.cs
 create mode 100644 samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/SampleData/ProductStore.cs
 create mode 100644 samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/SampleData/ProductsController.cs
 create mode 100644 samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/SampleData/SampleProduct.cs
 create mode 100644 samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/appsettings.Development.json
 create mode 100644 samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/appsettings.json
 create mode 100644 src/client/CodeBeam.UltimateAuth.Client.AspNetCore/CodeBeam.UltimateAuth.Client.AspNetCore.csproj
 create mode 100644 src/client/CodeBeam.UltimateAuth.Client.AspNetCore/NoOpAuthHandler.cs
 create mode 100644 src/client/CodeBeam.UltimateAuth.Client.AspNetCore/README.md
 create mode 100644 src/client/CodeBeam.UltimateAuth.Client.AspNetCore/ServiceCollectionExtensions.cs
 create mode 100644 src/client/CodeBeam.UltimateAuth.Client.AspNetCore/uauthlogo.png

diff --git a/UltimateAuth.slnx b/UltimateAuth.slnx
index c449693f..fb479af0 100644
--- a/UltimateAuth.slnx
+++ b/UltimateAuth.slnx
@@ -13,7 +13,11 @@
     <Project Path="samples/blazor-server/CodeBeam.UltimateAuth.Sample.BlazorServer/CodeBeam.UltimateAuth.Sample.BlazorServer.csproj" />
     <Project Path="samples/blazor-standalone-wasm/CodeBeam.UltimateAuth.Sample.BlazorStandaloneWasm/CodeBeam.UltimateAuth.Sample.BlazorStandaloneWasm.csproj" Id="27bd3c4d-65a9-4c70-a6c9-4178b1897730" />
     <Project Path="samples/CodeBeam.UltimateAuth.Sample.Seed/CodeBeam.UltimateAuth.Sample.Seed.csproj" Id="c79b227b-409e-439d-97df-8979a3dc1a60" />
+    <Project Path="samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/CodeBeam.UAuth.Sample.IntWasm.Client.csproj" Id="f17355ac-c53c-44e8-b372-a258493bf950" />
+    <Project Path="samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.csproj" Id="65386675-4cf7-4745-b4d7-544b6404e0c3" />
+    <Project Path="samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore.csproj" Id="ac247836-455a-4a71-9a52-73587c2393f3" />
     <Project Path="samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi/CodeBeam.UltimateAuth.Sample.ResourceApi.csproj" Id="3d877c9b-65eb-45be-b259-431b2d386736" />
+    <Project Path="samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.csproj" Id="a1fc0019-8a7c-4452-8e8c-4c2bdd549de0" />
     <Project Path="samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.csproj" Id="ae5368ee-10aa-4c75-9653-a7f481849834" />
   </Folder>
   <Folder Name="/Solution Items/">
@@ -35,6 +39,7 @@
   <Project Path="src/authorization/CodeBeam.UltimateAuth.Authorization.InMemory/CodeBeam.UltimateAuth.Authorization.InMemory.csproj" Id="a1e6d007-bdc0-4574-b549-ec863757edd3" />
   <Project Path="src/authorization/CodeBeam.UltimateAuth.Authorization.Reference/CodeBeam.UltimateAuth.Authorization.Reference.csproj" Id="84b784d0-bb48-406a-a0d1-c600da667597" />
   <Project Path="src/authorization/CodeBeam.UltimateAuth.Authorization/CodeBeam.UltimateAuth.Authorization.csproj" Id="28b1d647-fb0b-4cc3-8503-2680c4a9b28f" />
+  <Project Path="src/client/CodeBeam.UltimateAuth.Client.AspNetCore/CodeBeam.UltimateAuth.Client.AspNetCore.csproj" Id="aa4e9064-759f-4756-b1ee-d84c73826105" />
   <Project Path="src/client/CodeBeam.UltimateAuth.Client.Blazor/CodeBeam.UltimateAuth.Client.Blazor.csproj" Id="eb60a3b7-ba9d-48c9-98ad-b28e879b23bf" />
   <Project Path="src/client/CodeBeam.UltimateAuth.Client/CodeBeam.UltimateAuth.Client.csproj" Id="fa128a9b-613c-4762-993a-2886280d3051" />
   <Project Path="src/CodeBeam.UltimateAuth.Core/CodeBeam.UltimateAuth.Core.csproj" />
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Brand/UAuthLogo.razor b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Brand/UAuthLogo.razor
new file mode 100644
index 00000000..2806b7d3
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Brand/UAuthLogo.razor
@@ -0,0 +1,19 @@
+@namespace CodeBeam.UltimateAuth.Sample
+@inherits ComponentBase
+
+<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 200 240" width="@Size" height="@Size" style="@BuildStyle()" class="@Class">
+
+    @if (Variant == UAuthLogoVariant.Brand)
+    {
+        <path fill="@ShieldColor"
+              d="M32.39,14.07H167.61c11.27,0,18,6.76,18,18V133.52c0,22.54-58.59,69.87-85.64,92.41-27-22.54-85.64-69.87-85.64-92.41V32.1C14.36,20.83,21.12,14.07,32.39,14.07Z" />
+
+        <path fill="@KeyColor" fill-rule="evenodd" d="@KeyPath" />
+    }
+    else
+    {
+        <path d="M32.39,14.07H167.61c11.27,0,18,6.76,18,18V133.52c0,22.54-58.59,69.87-85.64,92.41-27-22.54-85.64-69.87-85.64-92.41V32.1C14.36,20.83,21.12,14.07,32.39,14.07Z" />
+
+        <path fill-rule="evenodd" d="@KeyPath" />
+    }
+</svg>
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Brand/UAuthLogo.razor.cs b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Brand/UAuthLogo.razor.cs
new file mode 100644
index 00000000..030d9b66
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Brand/UAuthLogo.razor.cs
@@ -0,0 +1,54 @@
+using Microsoft.AspNetCore.Components;
+using Microsoft.AspNetCore.Components.Web;
+
+namespace CodeBeam.UltimateAuth.Sample;
+
+public partial class UAuthLogo : ComponentBase
+{
+    [Parameter] public UAuthLogoVariant Variant { get; set; } = UAuthLogoVariant.Brand;
+
+    [Parameter] public int Size { get; set; } = 32;
+
+    [Parameter] public string? ShieldColor { get; set; } = "#00072d";
+    [Parameter] public string? KeyColor { get; set; } = "#f6f5ae";
+
+    [Parameter] public string? Class { get; set; }
+    [Parameter] public string? Style { get; set; }
+
+    private string BuildStyle()
+    {
+        if (Variant == UAuthLogoVariant.Mono)
+            return $"color: {KeyColor}; {Style}";
+
+        return Style ?? "";
+    }
+
+    protected string KeyPath => @"
+M120.43,39.44H79.57A11.67,11.67,0,0,0,67.9,51.11V77.37
+A11.67,11.67,0,0,0,79.57,89H90.51l3.89,3.9v5.32l-3.8,3.81v81.41H99
+v-5.33h13.69V169H108.1v-3.8H99C99,150.76,111.9,153,111.9,153
+V99.79h-8V93.32L108.19,89h12.24
+A11.67,11.67,0,0,0,132.1,77.37V51.11
+A11.67,11.67,0,0,0,120.43,39.44Z
+
+M79.57,48.19h5.84a2.92,2.92 0 0 1 2.92,2.92
+v5.84a2.92,2.92 0 0 1 -2.92,2.92
+h-5.84a2.91,2.91 0 0 1 -2.91,-2.92
+v-5.84a2.91,2.91 0 0 1 2.91,-2.92Z
+
+M79.57,68.62h5.84a2.92,2.92 0 0 1 2.92,2.92
+v5.83a2.92,2.92 0 0 1 -2.92,2.92
+h-5.84a2.91,2.91 0 0 1 -2.91,-2.92
+v-5.83a2.91,2.91 0 0 1 2.91,-2.92Z
+
+M114.59,48.19h5.84a2.92,2.92 0 0 1 2.91,2.92
+v5.84a2.91,2.91 0 0 1 -2.91,2.91
+h-5.84a2.92,2.92 0 0 1 -2.92,-2.91
+v-5.84a2.92,2.92 0 0 1 2.92,-2.92Z
+
+M114.59,68.62h5.84a2.92,2.92 0 0 1 2.91,2.92
+v5.83a2.91,2.91 0 0 1 -2.91,2.92
+h-5.84a2.92,2.92 0 0 1 -2.92,-2.92
+v-5.83a2.92,2.92 0 0 1 2.92,-2.92Z
+";
+}
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Brand/UAuthLogoVariant.cs b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Brand/UAuthLogoVariant.cs
new file mode 100644
index 00000000..fe3be220
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Brand/UAuthLogoVariant.cs
@@ -0,0 +1,7 @@
+namespace CodeBeam.UltimateAuth.Sample;
+
+public enum UAuthLogoVariant
+{
+    Brand,
+    Mono
+}
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.csproj b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.csproj
new file mode 100644
index 00000000..f79f1a74
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.csproj
@@ -0,0 +1,34 @@
+<Project Sdk="Microsoft.NET.Sdk.Web">
+
+	<PropertyGroup>
+		<TargetFramework>net10.0</TargetFramework>
+		<Nullable>enable</Nullable>
+		<ImplicitUsings>enable</ImplicitUsings>
+		<IsPackable>false</IsPackable>
+		<BlazorDisableThrowNavigationException>true</BlazorDisableThrowNavigationException>
+	</PropertyGroup>
+
+	<ItemGroup>
+		<PackageReference Include="CodeBeam.MudBlazor.Extensions" Version="9.0.4" />
+		<PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="10.0.5" />
+		<PackageReference Include="Microsoft.EntityFrameworkCore.Design" Version="10.0.5">
+			<PrivateAssets>all</PrivateAssets>
+			<IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
+		</PackageReference>
+		<PackageReference Include="Microsoft.EntityFrameworkCore.Sqlite" Version="10.0.5" />
+		<PackageReference Include="Microsoft.EntityFrameworkCore.Tools" Version="10.0.5">
+			<PrivateAssets>all</PrivateAssets>
+			<IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
+		</PackageReference>
+		<PackageReference Include="MudBlazor" Version="9.3.0" />
+		<PackageReference Include="Scalar.AspNetCore" Version="2.13.22" />
+	</ItemGroup>
+
+	<ItemGroup>
+		<ProjectReference Include="..\..\..\nuget\CodeBeam.UltimateAuth.EntityFrameworkCore\CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle.csproj" />
+		<ProjectReference Include="..\..\..\src\client\CodeBeam.UltimateAuth.Client.Blazor\CodeBeam.UltimateAuth.Client.Blazor.csproj" />
+		<ProjectReference Include="..\..\..\src\CodeBeam.UltimateAuth.Server\CodeBeam.UltimateAuth.Server.csproj" />
+		<ProjectReference Include="..\..\CodeBeam.UltimateAuth.Sample.Seed\CodeBeam.UltimateAuth.Sample.Seed.csproj" />
+	</ItemGroup>
+
+</Project>
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/App.razor b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/App.razor
new file mode 100644
index 00000000..3156b071
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/App.razor
@@ -0,0 +1,29 @@
+<!DOCTYPE html>
+<html lang="en">
+
+<head>
+    <meta charset="utf-8" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <base href="/" />
+    <ResourcePreloader />
+    <link rel="stylesheet" href="@Assets["lib/bootstrap/dist/css/bootstrap.min.css"]" />
+    <link rel="stylesheet" href="@Assets["app.css"]" />
+    <link rel="stylesheet" href="@Assets["CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.styles.css"]" />
+    <ImportMap />
+    <link rel="icon" type="image/png" href="UltimateAuth-Logo.png" />
+    <link href="https://fonts.googleapis.com/css?family=Roboto:300,400,500,700&display=swap" rel="stylesheet" />
+    <link href="_content/MudBlazor/MudBlazor.min.css" rel="stylesheet" />
+    <link href="_content/CodeBeam.MudBlazor.Extensions/MudExtensions.min.css" rel="stylesheet" />
+    <HeadOutlet @rendermode="InteractiveServer" />
+</head>
+
+<body>
+    <Routes @rendermode="InteractiveServer" />
+    <ReconnectModal />
+    <script src="@Assets["_framework/blazor.web.js"]"></script>
+    <script src="_content/MudBlazor/MudBlazor.min.js"></script>
+    <script src="_content/CodeBeam.MudBlazor.Extensions/MudExtensions.min.js"></script>
+    <script src="_content/CodeBeam.UltimateAuth.Client.Blazor/uauth.min.js"></script>
+</body>
+
+</html>
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/MainLayout.razor b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/MainLayout.razor
new file mode 100644
index 00000000..ac680f3b
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/MainLayout.razor
@@ -0,0 +1,101 @@
+@inherits UAuthHubLayoutComponentBase
+@inject IUAuthClient UAuthClient
+@inject ISnackbar Snackbar
+@inject NavigationManager Nav
+
+@if (!IsHubAuthorized)
+{
+    <MudAppBar Class="uauth-blur" Color="Color.Transparent" Dense="true" Elevation="0">
+        <UAuthLogo />
+        <MudText Class="ml-2 cursor-pointer" Style="user-select: none" @onclick="@(() => Nav.NavigateTo("/home", true))"><b>UltimateAuth</b></MudText>
+        <MudDivider Class="ml-3 mr-1" Vertical="true" />
+        <MudText Class="ml-2" Style="line-height: 14px" Typo="Typo.subtitle2">UAuthHub Sample</MudText>
+
+        <MudSpacer />
+
+        <MudIconButton Icon="@(DarkModeManager.IsDarkMode? Icons.Material.Filled.LightMode : Icons.Material.Filled.DarkMode)" OnClick="@(() => DarkModeManager.ToggleAsync())" />
+    </MudAppBar>
+
+    <MudPage Class="d-flex align-center justify-center" FullScreen="FullScreen.FullWithoutAppbar" Column="1" Row="1">
+        <MudPaper Class="pa-8" Elevation="4" Style="max-width: 520px; width: 100%;">
+            <MudStack Spacing="3" AlignItems="AlignItems.Center">
+                <UAuthLogo Size="72" />
+
+                <MudText Typo="Typo.h5"><b>Access Denied</b></MudText>
+
+                <MudText Typo="Typo.body2" Align="Align.Center">
+                    This page cannot be accessed directly.
+                    UAuthHub login flows can only be initiated by an authorized client application.
+                </MudText>
+
+                <MudDivider Class="my-2" />
+
+                <MudText Typo="Typo.caption" Color="Color.Secondary">
+                    UltimateAuth protects this resource based on your session and permissions.
+                </MudText>
+            </MudStack>
+        </MudPaper>
+    </MudPage>
+    return;
+}
+
+<MudLayout>
+    <MudAppBar Class="uauth-blur" Color="Color.Transparent" Dense="true" Elevation="0">
+        <UAuthLogo />
+        <MudText Class="ml-2 cursor-pointer" Style="user-select: none" @onclick="@(() => Nav.NavigateTo("/home", true))"><b>UltimateAuth</b></MudText>
+        <MudDivider Class="ml-3 mr-1" Vertical="true" />
+        <MudText Class="ml-2" Style="line-height: 14px" Typo="Typo.subtitle2">UAuthHub Sample</MudText>
+
+        <MudSpacer />
+
+        <MudIconButton Icon="@(DarkModeManager.IsDarkMode? Icons.Material.Filled.LightMode : Icons.Material.Filled.DarkMode)" OnClick="@(() => DarkModeManager.ToggleAsync())" />
+
+        <UAuthStateView>
+            <Authorized Context="state">
+                <MudMenu PopoverClass="mud-theme-primary uauth-menu-popover" AnchorOrigin="Origin.BottomRight" TransformOrigin="Origin.TopRight">
+                    <ActivatorContent>
+                        <div @onclick="@(() => context.ToggleAsync())">
+                            <MudBadge Overlap="true" Dot="true" Color="@GetBadgeColor()">
+                                <MudAvatar Class="cursor-pointer mud-ripple" Variant="Variant.Filled" Color="Color.Primary">
+                                    <MudText Typo="Typo.subtitle2">@((state.Identity?.DisplayName ?? "?").Trim() is var n ? (n.Length >= 2 ? n[..2] : n[..1]) : "?")</MudText>
+                                </MudAvatar>
+                            </MudBadge>
+                        </div>
+                    </ActivatorContent>
+
+                    <ChildContent>
+                        <MudText Class="px-4 py-2"><b>@state.Identity?.DisplayName</b></MudText>
+                        <MudText Class="px-4" Typo="Typo.subtitle2">@string.Join(", ", state.Claims.Roles)</MudText>
+
+                        <MudDivider />
+
+                        <MudMenuItem Icon="@Icons.Material.Filled.Refresh" IconColor="Color.Secondary" Label="Refresh Session" OnClick="@Refresh" />
+                        <MudMenuItem Icon="@Icons.Material.Filled.VerifiedUser" IconColor="Color.Secondary" Label="Validate Session" OnClick="@Validate" />
+                        <MudMenuItem Icon="@Icons.Material.Filled.Logout" IconColor="Color.Secondary" Label="Logout" OnClick="@Logout" />
+
+                        @if (state.Identity?.SessionState is not null && state.Identity.SessionState != SessionState.Active)
+                        {
+                            <MudDivider />
+                            <MudMenuItem Icon="@Icons.Material.Filled.Login" Label="Reauthenticate" OnClick="@GoToLoginWithReturn" />
+                        }
+                    </ChildContent>
+                </MudMenu>
+            </Authorized>
+
+            <NotAuthorized>
+                <MudChip T="string" Style="width: fit-content" Text="Sign In" Color="Color.Primary" Variant="Variant.Filled" Class="cursor-pointer" OnClick="@HandleSignInClick" />
+            </NotAuthorized>
+        </UAuthStateView>
+    </MudAppBar>
+
+    <MudMainContent>
+        @Body
+    </MudMainContent>
+</MudLayout>
+
+
+<div id="blazor-error-ui">
+    An unhandled error has occurred.
+    <a href="" class="reload">Reload</a>
+    <a class="dismiss">🗙</a>
+</div>
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/MainLayout.razor.cs b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/MainLayout.razor.cs
new file mode 100644
index 00000000..e5886028
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/MainLayout.razor.cs
@@ -0,0 +1,130 @@
+using CodeBeam.UltimateAuth.Client;
+using CodeBeam.UltimateAuth.Client.Errors;
+using CodeBeam.UltimateAuth.Core.Contracts;
+using CodeBeam.UltimateAuth.Core.Domain;
+using CodeBeam.UltimateAuth.Core.Errors;
+using CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.Infrastructure;
+using Microsoft.AspNetCore.Components;
+using MudBlazor;
+
+namespace CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.Components.Layout;
+
+public partial class MainLayout
+{
+    [CascadingParameter]
+    public UAuthState UAuth { get; set; } = default!;
+
+    [CascadingParameter]
+    public DarkModeManager DarkModeManager { get; set; } = default!;
+
+    private async Task Refresh()
+    {
+        await UAuthClient.Flows.RefreshAsync();
+    }
+
+    private async Task Logout()
+    {
+        await UAuthClient.Flows.LogoutAsync();
+    }
+
+    private Color GetBadgeColor()
+    {
+        if (UAuth is null || !UAuth.IsAuthenticated)
+            return Color.Error;
+
+        if (UAuth.IsStale)
+            return Color.Warning;
+
+        var state = UAuth.Identity?.SessionState;
+
+        if (state is null || state == SessionState.Active)
+            return Color.Success;
+
+        if (state == SessionState.Invalid)
+            return Color.Error;
+
+        return Color.Warning;
+    }
+
+    private void HandleSignInClick()
+    {
+        var uri = Nav.ToAbsoluteUri(Nav.Uri);
+
+        if (uri.AbsolutePath.EndsWith("/login", StringComparison.OrdinalIgnoreCase))
+        {
+            Nav.NavigateTo("/login?focus=1", replace: true, forceLoad: true);
+            return;
+        }
+
+        GoToLoginWithReturn();
+    }
+
+    private async Task Validate()
+    {
+        try
+        {
+            var result = await UAuthClient.Flows.ValidateAsync();
+
+            if (result.IsValid)
+            {
+                if (result.Snapshot?.Identity.UserStatus == UserStatus.SelfSuspended)
+                {
+                    Snackbar.Add("Your account is suspended by you.", Severity.Warning);
+                    return;
+                }
+                Snackbar.Add($"Session active • Tenant: {result.Snapshot?.Identity?.Tenant.Value} • User: {result.Snapshot?.Identity?.PrimaryUserName}", Severity.Success);
+            }
+            else
+            {
+                switch (result.State)
+                {
+                    case SessionState.Expired:
+                        Snackbar.Add("Session expired. Please sign in again.", Severity.Warning);
+                        break;
+
+                    case SessionState.DeviceMismatch:
+                        Snackbar.Add("Session invalid for this device.", Severity.Error);
+                        break;
+
+                    default:
+                        Snackbar.Add($"Session state: {result.State}", Severity.Error);
+                        break;
+                }
+            }
+        }
+        catch (UAuthTransportException)
+        {
+            Snackbar.Add("Network error.", Severity.Error);
+        }
+        catch (UAuthProtocolException)
+        {
+            Snackbar.Add("Invalid response.", Severity.Error);
+        }
+        catch (UAuthException ex)
+        {
+            Snackbar.Add($"UAuth error: {ex.Message}", Severity.Error);
+        }
+        catch (Exception ex)
+        {
+            Snackbar.Add($"Unexpected error: {ex.Message}", Severity.Error);
+        }
+    }
+
+    private void GoToLoginWithReturn()
+    {
+        var uri = Nav.ToAbsoluteUri(Nav.Uri);
+
+        if (uri.AbsolutePath.EndsWith("/login", StringComparison.OrdinalIgnoreCase))
+        {
+            Nav.NavigateTo("/login", replace: true);
+            return;
+        }
+
+        var current = Nav.ToBaseRelativePath(uri.ToString());
+        if (string.IsNullOrWhiteSpace(current))
+            current = "home";
+
+        var returnUrl = Uri.EscapeDataString("/" + current.TrimStart('/'));
+        Nav.NavigateTo($"/login?returnUrl={returnUrl}", replace: true);
+    }
+}
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/ReconnectModal.razor b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/ReconnectModal.razor
new file mode 100644
index 00000000..e740b0c8
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/ReconnectModal.razor
@@ -0,0 +1,31 @@
+<script type="module" src="@Assets["Components/Layout/ReconnectModal.razor.js"]"></script>
+
+<dialog id="components-reconnect-modal" data-nosnippet>
+    <div class="components-reconnect-container">
+        <div class="components-rejoining-animation" aria-hidden="true">
+            <div></div>
+            <div></div>
+        </div>
+        <p class="components-reconnect-first-attempt-visible">
+            Rejoining the server...
+        </p>
+        <p class="components-reconnect-repeated-attempt-visible">
+            Rejoin failed... trying again in <span id="components-seconds-to-next-attempt"></span> seconds.
+        </p>
+        <p class="components-reconnect-failed-visible">
+            Failed to rejoin.<br />Please retry or reload the page.
+        </p>
+        <button id="components-reconnect-button" class="components-reconnect-failed-visible">
+            Retry
+        </button>
+        <p class="components-pause-visible">
+            The session has been paused by the server.
+        </p>
+        <p class="components-resume-failed-visible">
+            Failed to resume the session.<br />Please retry or reload the page.
+        </p>
+        <button id="components-resume-button" class="components-pause-visible components-resume-failed-visible">
+            Resume
+        </button>
+    </div>
+</dialog>
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/ReconnectModal.razor.css b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/ReconnectModal.razor.css
new file mode 100644
index 00000000..3ad3773f
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/ReconnectModal.razor.css
@@ -0,0 +1,157 @@
+.components-reconnect-first-attempt-visible,
+.components-reconnect-repeated-attempt-visible,
+.components-reconnect-failed-visible,
+.components-pause-visible,
+.components-resume-failed-visible,
+.components-rejoining-animation {
+    display: none;
+}
+
+#components-reconnect-modal.components-reconnect-show .components-reconnect-first-attempt-visible,
+#components-reconnect-modal.components-reconnect-show .components-rejoining-animation,
+#components-reconnect-modal.components-reconnect-paused .components-pause-visible,
+#components-reconnect-modal.components-reconnect-resume-failed .components-resume-failed-visible,
+#components-reconnect-modal.components-reconnect-retrying,
+#components-reconnect-modal.components-reconnect-retrying .components-reconnect-repeated-attempt-visible,
+#components-reconnect-modal.components-reconnect-retrying .components-rejoining-animation,
+#components-reconnect-modal.components-reconnect-failed,
+#components-reconnect-modal.components-reconnect-failed .components-reconnect-failed-visible {
+    display: block;
+}
+
+
+#components-reconnect-modal {
+    background-color: white;
+    width: 20rem;
+    margin: 20vh auto;
+    padding: 2rem;
+    border: 0;
+    border-radius: 0.5rem;
+    box-shadow: 0 3px 6px 2px rgba(0, 0, 0, 0.3);
+    opacity: 0;
+    transition: display 0.5s allow-discrete, overlay 0.5s allow-discrete;
+    animation: components-reconnect-modal-fadeOutOpacity 0.5s both;
+    &[open]
+
+{
+    animation: components-reconnect-modal-slideUp 1.5s cubic-bezier(.05, .89, .25, 1.02) 0.3s, components-reconnect-modal-fadeInOpacity 0.5s ease-in-out 0.3s;
+    animation-fill-mode: both;
+}
+
+}
+
+#components-reconnect-modal::backdrop {
+    background-color: rgba(0, 0, 0, 0.4);
+    animation: components-reconnect-modal-fadeInOpacity 0.5s ease-in-out;
+    opacity: 1;
+}
+
+@keyframes components-reconnect-modal-slideUp {
+    0% {
+        transform: translateY(30px) scale(0.95);
+    }
+
+    100% {
+        transform: translateY(0);
+    }
+}
+
+@keyframes components-reconnect-modal-fadeInOpacity {
+    0% {
+        opacity: 0;
+    }
+
+    100% {
+        opacity: 1;
+    }
+}
+
+@keyframes components-reconnect-modal-fadeOutOpacity {
+    0% {
+        opacity: 1;
+    }
+
+    100% {
+        opacity: 0;
+    }
+}
+
+.components-reconnect-container {
+    display: flex;
+    flex-direction: column;
+    align-items: center;
+    gap: 1rem;
+}
+
+#components-reconnect-modal p {
+    margin: 0;
+    text-align: center;
+}
+
+#components-reconnect-modal button {
+    border: 0;
+    background-color: #6b9ed2;
+    color: white;
+    padding: 4px 24px;
+    border-radius: 4px;
+}
+
+    #components-reconnect-modal button:hover {
+        background-color: #3b6ea2;
+    }
+
+    #components-reconnect-modal button:active {
+        background-color: #6b9ed2;
+    }
+
+.components-rejoining-animation {
+    position: relative;
+    width: 80px;
+    height: 80px;
+}
+
+    .components-rejoining-animation div {
+        position: absolute;
+        border: 3px solid #0087ff;
+        opacity: 1;
+        border-radius: 50%;
+        animation: components-rejoining-animation 1.5s cubic-bezier(0, 0.2, 0.8, 1) infinite;
+    }
+
+        .components-rejoining-animation div:nth-child(2) {
+            animation-delay: -0.5s;
+        }
+
+@keyframes components-rejoining-animation {
+    0% {
+        top: 40px;
+        left: 40px;
+        width: 0;
+        height: 0;
+        opacity: 0;
+    }
+
+    4.9% {
+        top: 40px;
+        left: 40px;
+        width: 0;
+        height: 0;
+        opacity: 0;
+    }
+
+    5% {
+        top: 40px;
+        left: 40px;
+        width: 0;
+        height: 0;
+        opacity: 1;
+    }
+
+    100% {
+        top: 0px;
+        left: 0px;
+        width: 80px;
+        height: 80px;
+        opacity: 0;
+    }
+}
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/ReconnectModal.razor.js b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/ReconnectModal.razor.js
new file mode 100644
index 00000000..a44de78d
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Layout/ReconnectModal.razor.js
@@ -0,0 +1,63 @@
+// Set up event handlers
+const reconnectModal = document.getElementById("components-reconnect-modal");
+reconnectModal.addEventListener("components-reconnect-state-changed", handleReconnectStateChanged);
+
+const retryButton = document.getElementById("components-reconnect-button");
+retryButton.addEventListener("click", retry);
+
+const resumeButton = document.getElementById("components-resume-button");
+resumeButton.addEventListener("click", resume);
+
+function handleReconnectStateChanged(event) {
+    if (event.detail.state === "show") {
+        reconnectModal.showModal();
+    } else if (event.detail.state === "hide") {
+        reconnectModal.close();
+    } else if (event.detail.state === "failed") {
+        document.addEventListener("visibilitychange", retryWhenDocumentBecomesVisible);
+    } else if (event.detail.state === "rejected") {
+        location.reload();
+    }
+}
+
+async function retry() {
+    document.removeEventListener("visibilitychange", retryWhenDocumentBecomesVisible);
+
+    try {
+        // Reconnect will asynchronously return:
+        // - true to mean success
+        // - false to mean we reached the server, but it rejected the connection (e.g., unknown circuit ID)
+        // - exception to mean we didn't reach the server (this can be sync or async)
+        const successful = await Blazor.reconnect();
+        if (!successful) {
+            // We have been able to reach the server, but the circuit is no longer available.
+            // We'll reload the page so the user can continue using the app as quickly as possible.
+            const resumeSuccessful = await Blazor.resumeCircuit();
+            if (!resumeSuccessful) {
+                location.reload();
+            } else {
+                reconnectModal.close();
+            }
+        }
+    } catch (err) {
+        // We got an exception, server is currently unavailable
+        document.addEventListener("visibilitychange", retryWhenDocumentBecomesVisible);
+    }
+}
+
+async function resume() {
+    try {
+        const successful = await Blazor.resumeCircuit();
+        if (!successful) {
+            location.reload();
+        }
+    } catch {
+        reconnectModal.classList.replace("components-reconnect-paused", "components-reconnect-resume-failed");
+    }
+}
+
+async function retryWhenDocumentBecomesVisible() {
+    if (document.visibilityState === "visible") {
+        await retry();
+    }
+}
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/Home.razor b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/Home.razor
new file mode 100644
index 00000000..b1720a39
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/Home.razor
@@ -0,0 +1,103 @@
+@page "/"
+@page "/login"
+@attribute [UAuthLoginPage]
+@inherits UAuthHubPageBase
+
+@implements IDisposable
+@using CodeBeam.UltimateAuth.Client.Infrastructure
+@using CodeBeam.UltimateAuth.Client.Options
+@using CodeBeam.UltimateAuth.Client.Runtime
+@using CodeBeam.UltimateAuth.Core.Abstractions
+@using CodeBeam.UltimateAuth.Core.Contracts
+@using CodeBeam.UltimateAuth.Server.Services
+@using CodeBeam.UltimateAuth.Server.Stores
+@using Microsoft.Extensions.Options
+@inject IUAuthClient UAuthClient
+@inject IAuthStore AuthStore
+@inject IHubFlowService HubFlowService
+@inject IPkceService PkceService
+@inject IHubCredentialResolver HubCredentialResolver
+@inject IClientStorage BrowserStorage
+@inject ISnackbar Snackbar
+@inject IUAuthClientProductInfoProvider ClientProductInfoProvider
+@inject IDeviceIdProvider DeviceIdProvider
+@inject IDialogService DialogService
+@inject IOptions<UAuthClientOptions> Options
+
+<MudPage FullScreen="FullScreen.FullWithoutAppbar" Column="1" Row="1">
+    <MudContainer Class="d-flex align-center justify-center" MaxWidth="MaxWidth.Medium" Gutters="false">
+        <MudGrid Spacing="0">
+            <MudItem Class="order-1 order-sm-0" xs="12" sm="6">
+                <MudPaper Class="mud-theme-secondary uauth-login-paper pa-8 d-flex flex-column align-center justify-center" Elevation="3">
+                    <MudStack Class="my-4">
+                        <div class="uauth-brand-glow uauth-logo-slide d-flex justify-center">
+                            <UAuthLogo Size="90" ShieldColor="#f6f5ae" KeyColor="var(--mud-palette-secondary)" />
+                        </div>
+                        <MudText Style="font-weight: 700" Typo="Typo.h4" Align="Align.Center">UAuthHub</MudText>
+                        <MudText Align="Align.Center">The centralized AuthServer for your application.</MudText>
+                    </MudStack>
+
+                    <MudDivider />
+
+                    <MudStack Class="mt-4" Wrap="Wrap.Wrap" Spacing="0">
+                        <MudText Typo="Typo.subtitle2" Align="Align.Center"><b>@_productInfo?.ProductName</b> v @_productInfo?.Version</MudText>
+                        <MudText Typo="Typo.subtitle2" Align="Align.Center">Client Profile: @_productInfo?.ClientProfile.ToString()</MudText>
+                        <MudText Typo="Typo.subtitle2" Align="Align.Center">@_productInfo?.FrameworkDescription</MudText>
+                    </MudStack>
+                </MudPaper>
+            </MudItem>
+
+            <MudItem Class="order-0 order-sm-1" xs="12" sm="6">
+                <MudPaper Class="uauth-login-paper pa-8" Elevation="3">
+                    <UAuthLoginForm @ref="_loginForm" Identifier="@_username" Secret="@_password" LoginType="UAuthLoginType.Pkce" SubmitMode="UAuthSubmitMode.TryAndCommit" OnTryResult="@HandleLoginResult">
+                        <MudStack Class="mud-width-full">
+                            <MudStack Row="true" AlignItems="AlignItems.Center">
+                                <UAuthLogo Size="48" ShieldColor="var(--mud-palette-primary)" KeyColor="white" />
+                                <MudText Typo="Typo.h5">
+                                    <MudText Style="font-weight: 700" Inline="true" Typo="Typo.h5" Color="Color.Primary">Sign <MudText Inline="true" Style="font-weight: 700" Typo="Typo.h5" Color="Color.Secondary">In</MudText></MudText>
+                                </MudText>
+                            </MudStack>
+                            <MudTextField @bind-Value="@_username" Variant="Variant.Outlined" Label="Username" Required="true" Immediate="true" HelperText="@(_remainingAttempts != null ? $"Remaining Attempts: {_remainingAttempts}" : null)" />
+                            <MudPasswordField @bind-Value="@_password" Variant="Variant.Outlined" Label="Password" Required="true" Immediate="true" />
+                            <MudButton Variant="Variant.Filled" Color="Color.Primary" Disabled="@_isLocked" ButtonType="ButtonType.Submit">Login</MudButton>
+                            @if (_isLocked)
+                            {
+                                <MudAlert NoIcon="true" Severity="Severity.Error" Variant="Variant.Filled">
+                                    <MudStack Row="true" AlignItems="AlignItems.Center" Justify="Justify.SpaceBetween">
+                                        <MudStack Spacing="0">
+                                            <MudText Typo="Typo.subtitle2">Your account is locked.</MudText>
+                                            <MudText Typo="Typo.subtitle2">Try again in </MudText>
+                                        </MudStack>
+                                        <MudProgressCircular Class="mud-theme-error" Value="@_progressPercent" Max="100" Size="Size.Large">
+                                            @_remaining.Minutes.ToString("00"):@_remaining.Seconds.ToString("00")
+                                        </MudProgressCircular>
+                                    </MudStack>
+                                </MudAlert>
+                            }
+                        </MudStack>
+                    </UAuthLoginForm>
+                    <MudAlert Severity="Severity.Info" Variant="Variant.Text" Dense="true">
+                        Default sample users:
+                        <b>admin/admin</b> (Admin),
+                        <b>user/user</b> (Standard User)
+                    </MudAlert>
+
+                    <MudDivider Class="my-8" />
+
+                    <MudStack Class="mud-width-full">
+                        <MudButton Variant="Variant.Filled" Color="Color.Primary" OnClick="ProgrammaticPkceLogin">Programmatic Login</MudButton>
+                        <MudText Style="color: var(--mud-palette-text-secondary)" Typo="Typo.subtitle2" Align="Align.Center">Login programmatically as admin/admin.</MudText>
+                    </MudStack>
+
+                    @* <MudDivider Class="my-2" /> *@
+
+                    <MudStack>
+                        @* TODO: Enhance sample *@
+                        @* <MudText Align="Align.Center" Typo="Typo.subtitle2"><MudLink Class="cursor-pointer" OnClick="OpenResetDialog">Forgot Password</MudLink></MudText> *@
+                        @* <MudText Align="Align.Center" Typo="Typo.subtitle2">Don't have an account? <MudLink Class="cursor-pointer" Href="/register">SignUp</MudLink></MudText> *@
+                    </MudStack>
+                </MudPaper>
+            </MudItem>
+        </MudGrid>
+    </MudContainer>
+</MudPage>
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/Home.razor.cs b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/Home.razor.cs
new file mode 100644
index 00000000..0cc81888
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/Home.razor.cs
@@ -0,0 +1,261 @@
+using CodeBeam.UltimateAuth.Client;
+using CodeBeam.UltimateAuth.Client.Blazor;
+using CodeBeam.UltimateAuth.Client.Runtime;
+using CodeBeam.UltimateAuth.Core.Contracts;
+using CodeBeam.UltimateAuth.Core.Domain;
+using CodeBeam.UltimateAuth.Server.Stores;
+using MudBlazor;
+
+namespace CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.Components.Pages;
+
+public partial class Home
+{
+    private string? _username;
+    private string? _password;
+
+    private UAuthClientProductInfo? _productInfo;
+    private UAuthLoginForm _loginForm = null!;
+
+    private CancellationTokenSource? _lockoutCts;
+    private PeriodicTimer? _lockoutTimer;
+    private DateTimeOffset? _lockoutUntil;
+    private TimeSpan _remaining;
+    private bool _isLocked;
+    private DateTimeOffset? _lockoutStartedAt;
+    private TimeSpan _lockoutDuration;
+    private double _progressPercent;
+    private int? _remainingAttempts = null;
+    private bool _errorHandled;
+
+    protected override async Task OnInitializedAsync()
+    {
+        _productInfo = ClientProductInfoProvider.Get();
+    }
+
+    protected override async Task OnAfterRenderAsync(bool firstRender)
+    {
+        if (string.IsNullOrWhiteSpace(HubKey))
+            return;
+
+        if (HubState is null || !HubState.Exists)
+        {
+            return;
+        }
+
+        if (HubState.IsExpired)
+        {
+            await ContinuePkceAsync();
+            return;
+        }
+
+        if (HubState.Error != null && !_errorHandled)
+        {
+            _errorHandled = true;
+            Snackbar.Add(ResolveErrorMessage(HubState.Error), Severity.Error);
+            await ContinuePkceAsync();
+
+            if (HubSessionId.TryParse(HubKey, out var hubSessionId))
+            {
+                await ReloadState();
+            }
+
+            await _loginForm.ReloadAsync();
+
+            StateHasChanged();
+        }
+    }
+
+    // For testing & debugging
+    private async Task ProgrammaticPkceLogin()
+    {
+        var hub = HubState;
+
+        if (hub is null)
+            return;
+
+        if (!HubSessionId.TryParse(HubKey, out var hubSessionId))
+            return;
+
+        var credentials = await HubCredentialResolver.ResolveAsync(hubSessionId);
+
+        var request = new PkceCompleteRequest
+        {
+            Identifier = "admin",
+            Secret = "admin",
+            AuthorizationCode = credentials?.AuthorizationCode ?? string.Empty,
+            CodeVerifier = credentials?.CodeVerifier ?? string.Empty,
+            ReturnUrl = HubState?.ReturnUrl ?? string.Empty,
+            HubSessionId = HubState?.HubSessionId.Value ?? hubSessionId.Value,
+        };
+
+        await UAuthClient.Flows.TryCompletePkceLoginAsync(request, UAuthSubmitMode.TryAndCommit);
+    }
+
+    private async Task HandleLoginResult(IUAuthTryResult result)
+    {
+        if (result is TryPkceLoginResult pkce)
+        {
+            if (!result.Success)
+            {
+                if (result.Reason == AuthFailureReason.LockedOut && result.LockoutUntilUtc is { } until)
+                {
+                    _lockoutUntil = until;
+                    StartCountdown();
+                }
+
+                _remainingAttempts = result.RemainingAttempts;
+
+                ShowLoginError(result.Reason, result.RemainingAttempts);
+                await ContinuePkceAsync();
+            }
+        }
+    }
+
+    private HubCredentials? _pkce;
+
+    private async Task ContinuePkceAsync()
+    {
+        if (string.IsNullOrWhiteSpace(HubKey))
+            return;
+
+        var key = new AuthArtifactKey(HubKey);
+        var artifact = await AuthStore.GetAsync(key) as HubFlowArtifact;
+
+        if (artifact is null)
+            return;
+
+        _pkce = await PkceService.RefreshAsync(artifact);
+        await HubFlowService.ContinuePkceAsync(HubKey, _pkce.AuthorizationCode, _pkce.CodeVerifier);
+    }
+
+    private async Task StartNewPkceAsync()
+    {
+        var returnUrl = await ResolveReturnUrlAsync();
+        await UAuthClient.Flows.BeginPkceAsync(returnUrl);
+    }
+
+    private async Task<string> ResolveReturnUrlAsync()
+    {
+        var fromContext = HubState?.ReturnUrl;
+        if (!string.IsNullOrWhiteSpace(fromContext))
+            return fromContext;
+
+        var uri = Nav.ToAbsoluteUri(Nav.Uri);
+        var query = Microsoft.AspNetCore.WebUtilities.QueryHelpers.ParseQuery(uri.Query);
+
+        if (query.TryGetValue("return_url", out var ru) && !string.IsNullOrWhiteSpace(ru))
+            return ru!;
+
+        if (query.TryGetValue("hub", out var hubKey) && !string.IsNullOrWhiteSpace(hubKey))
+        {
+            var artifact = await AuthStore.GetAsync(new AuthArtifactKey(hubKey!));
+            if (artifact is HubFlowArtifact flow && !string.IsNullOrWhiteSpace(flow.ReturnUrl))
+                return flow.ReturnUrl!;
+        }
+
+        return Nav.Uri;
+    }
+
+    private async void StartCountdown()
+    {
+        if (_lockoutUntil is null)
+            return;
+
+        _isLocked = true;
+        _lockoutStartedAt = DateTimeOffset.UtcNow;
+        _lockoutDuration = _lockoutUntil.Value - DateTimeOffset.UtcNow;
+        UpdateRemaining();
+
+        _lockoutCts?.Cancel();
+        _lockoutCts = new CancellationTokenSource();
+
+        _lockoutTimer?.Dispose();
+        _lockoutTimer = new PeriodicTimer(TimeSpan.FromSeconds(1));
+
+        try
+        {
+            while (await _lockoutTimer.WaitForNextTickAsync(_lockoutCts.Token))
+            {
+                UpdateRemaining();
+
+                if (_remaining <= TimeSpan.Zero)
+                {
+                    ResetLockoutState();
+                    await InvokeAsync(StateHasChanged);
+                    break;
+                }
+
+                await InvokeAsync(StateHasChanged);
+            }
+        }
+        catch (OperationCanceledException)
+        {
+
+        }
+    }
+
+    private void ResetLockoutState()
+    {
+        _isLocked = false;
+        _lockoutUntil = null;
+        _progressPercent = 0;
+        _remainingAttempts = null;
+    }
+
+    private void UpdateRemaining()
+    {
+        if (_lockoutUntil is null || _lockoutStartedAt is null)
+            return;
+
+        var now = DateTimeOffset.UtcNow;
+
+        _remaining = _lockoutUntil.Value - now;
+
+        if (_remaining <= TimeSpan.Zero)
+        {
+            _remaining = TimeSpan.Zero;
+            return;
+        }
+
+        var elapsed = now - _lockoutStartedAt.Value;
+
+        if (_lockoutDuration.TotalSeconds > 0)
+        {
+            var percent = 100 - (elapsed.TotalSeconds / _lockoutDuration.TotalSeconds * 100);
+            _progressPercent = Math.Max(0, percent);
+        }
+    }
+
+    private void ShowLoginError(AuthFailureReason? reason, int? remainingAttempts)
+    {
+        string message = reason switch
+        {
+            AuthFailureReason.InvalidCredentials when remainingAttempts is > 0
+                => $"Invalid username or password. {remainingAttempts} attempt(s) remaining.",
+
+            AuthFailureReason.InvalidCredentials
+                => "Invalid username or password.",
+
+            AuthFailureReason.RequiresMfa
+                => "Multi-factor authentication required.",
+
+            AuthFailureReason.LockedOut
+                => "Your account is locked.",
+
+            _ => "Login failed."
+        };
+
+        Snackbar.Add(message, Severity.Error);
+    }
+
+    private string ResolveErrorMessage(HubErrorCode? errorCode)
+    {
+        if (errorCode == HubErrorCode.InvalidCredentials)
+        {
+            return "Invalid credentials.";
+        }
+
+        return "Failed attempt.";
+    }
+
+}
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/NotAuthorized.razor b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/NotAuthorized.razor
new file mode 100644
index 00000000..2c0e9b77
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/NotAuthorized.razor
@@ -0,0 +1,27 @@
+@inject NavigationManager Nav
+
+<MudPage Class="d-flex align-center justify-center" FullScreen="FullScreen.FullWithoutAppbar" Column="1" Row="1">
+    <MudPaper Class="pa-8" Elevation="4" Style="max-width: 520px; width: 100%;">
+        <MudStack Spacing="3" AlignItems="AlignItems.Center">
+            <UAuthLogo Size="72" />
+
+            <MudText Typo="Typo.h5"><b>Access Denied</b></MudText>
+
+            <MudText Typo="Typo.body2" Align="Align.Center" Color="Color.Secondary">
+                You don’t have permission to view this page.
+                If you think this is a mistake, sign in with a different account or request access.
+            </MudText>
+
+            <MudStack Row="true" Spacing="2" Class="mt-2">
+                <MudButton Href="@LoginHref" Color="Color.Primary" Variant="Variant.Filled">Sign In</MudButton>
+                <MudButton OnClick="@GoBack" Color="Color.Primary" Variant="Variant.Outlined">Go Back</MudButton>
+            </MudStack>
+
+            <MudDivider Class="my-2" />
+
+            <MudText Typo="Typo.caption" Color="Color.Secondary">
+                UltimateAuth protects this resource based on your session and permissions.
+            </MudText>
+        </MudStack>
+    </MudPaper>
+</MudPage>
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/NotAuthorized.razor.cs b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/NotAuthorized.razor.cs
new file mode 100644
index 00000000..9d96c733
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/NotAuthorized.razor.cs
@@ -0,0 +1,15 @@
+namespace CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.Components.Pages;
+
+public partial class NotAuthorized
+{
+    private string LoginHref
+    {
+        get
+        {
+            var returnUrl = Uri.EscapeDataString(Nav.ToBaseRelativePath(Nav.Uri));
+            return $"/login?returnUrl=/{returnUrl}";
+        }
+    }
+
+    private void GoBack() => Nav.NavigateTo("/", replace: false);
+}
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/NotFound.razor b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/NotFound.razor
new file mode 100644
index 00000000..917ada1d
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Pages/NotFound.razor
@@ -0,0 +1,5 @@
+@page "/not-found"
+@layout MainLayout
+
+<h3>Not Found</h3>
+<p>Sorry, the content you are looking for does not exist.</p>
\ No newline at end of file
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Routes.razor b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Routes.razor
new file mode 100644
index 00000000..9d7b5207
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/Routes.razor
@@ -0,0 +1,73 @@
+@using CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.Components.Pages
+@using CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.Infrastructure
+@inject ISnackbar Snackbar
+@inject DarkModeManager DarkModeManager
+
+<CascadingValue Value="DarkModeManager" IsFixed="true">
+
+    <UAuthApp OnReauthRequired="HandleReauth" UseBuiltInRouter="true" AppAssembly="typeof(Program).Assembly" DefaultLayout="typeof(Layout.MainLayout)">
+        <ChildContent>
+            <MudThemeProvider IsDarkMode="@DarkModeManager.IsDarkMode" />
+            <MudPopoverProvider />
+            <MudDialogProvider />
+            <MudSnackbarProvider />
+        </ChildContent>
+        <NotAuthorized>
+            <NotAuthorized />
+        </NotAuthorized>
+    </UAuthApp>
+
+    @* Advanced: you can fully control routing by providing your own Router *@
+    @* <UAuthApp OnReauthRequired="HandleReauth">
+        <MudThemeProvider IsDarkMode="@DarkModeManager.IsDarkMode" />
+        <MudPopoverProvider />
+        <MudDialogProvider />
+        <MudSnackbarProvider />
+
+        <Router AppAssembly="typeof(Program).Assembly" AdditionalAssemblies="UAuthAssemblies.Client()">
+            <Found Context="routeData">
+                <AuthorizeRouteView RouteData="routeData" DefaultLayout="typeof(Layout.MainLayout)">
+                    <NotAuthorized>
+                        <NotAuthorized />
+                    </NotAuthorized>
+                </AuthorizeRouteView>
+                <FocusOnNavigate RouteData="routeData" Selector="h1" />
+            </Found>
+        </Router>
+    </UAuthApp> *@
+</CascadingValue>
+
+@code {
+    private async Task HandleReauth()
+    {
+        Snackbar.Add("Reauthentication required. Please log in again.", Severity.Warning);
+    }
+
+    #region DarkMode
+
+    protected override void OnInitialized()
+    {
+        DarkModeManager.Changed += OnThemeChanged;
+    }
+
+    private void OnThemeChanged()
+    {
+        InvokeAsync(StateHasChanged);
+    }
+
+    protected override async Task OnAfterRenderAsync(bool firstRender)
+    {
+        if (firstRender)
+        {
+            await DarkModeManager.InitializeAsync();
+            StateHasChanged();
+        }
+    }
+
+    public void Dispose()
+    {
+        DarkModeManager.Changed -= OnThemeChanged;
+    }
+
+    #endregion
+}
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/_Imports.razor b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/_Imports.razor
new file mode 100644
index 00000000..56f13ea9
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Components/_Imports.razor
@@ -0,0 +1,17 @@
+@using System.Net.Http
+@using System.Net.Http.Json
+@using Microsoft.AspNetCore.Components.Forms
+@using Microsoft.AspNetCore.Components.Routing
+@using Microsoft.AspNetCore.Components.Web
+@using static Microsoft.AspNetCore.Components.Web.RenderMode
+@using Microsoft.AspNetCore.Components.Web.Virtualization
+@using Microsoft.JSInterop
+@using CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore
+@using CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.Components
+@using CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.Components.Layout
+@using CodeBeam.UltimateAuth.Core.Domain
+@using CodeBeam.UltimateAuth.Client
+@using CodeBeam.UltimateAuth.Client.Blazor
+
+@using MudBlazor
+@using MudExtensions
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Infrastructure/DarkModeManager.cs b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Infrastructure/DarkModeManager.cs
new file mode 100644
index 00000000..70ab1af0
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Infrastructure/DarkModeManager.cs
@@ -0,0 +1,45 @@
+using CodeBeam.UltimateAuth.Client.Contracts;
+using CodeBeam.UltimateAuth.Client.Infrastructure;
+
+namespace CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.Infrastructure;
+
+public sealed class DarkModeManager
+{
+    private const string StorageKey = "uauth:theme:dark";
+
+    private readonly IClientStorage _storage;
+
+    public DarkModeManager(IClientStorage storage)
+    {
+        _storage = storage;
+    }
+
+    public async Task InitializeAsync()
+    {
+        var value = await _storage.GetAsync(StorageScope.Local, StorageKey);
+
+        if (bool.TryParse(value, out var parsed))
+            IsDarkMode = parsed;
+    }
+
+    public bool IsDarkMode { get; set; }
+
+    public event Action? Changed;
+
+    public async Task ToggleAsync()
+    {
+        IsDarkMode = !IsDarkMode;
+
+        await _storage.SetAsync(StorageScope.Local, StorageKey, IsDarkMode.ToString());
+        Changed?.Invoke();
+    }
+
+    public void Set(bool value)
+    {
+        if (IsDarkMode == value)
+            return;
+
+        IsDarkMode = value;
+        Changed?.Invoke();
+    }
+}
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Migrations/20260412205559_InitUltimateAuth.Designer.cs b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Migrations/20260412205559_InitUltimateAuth.Designer.cs
new file mode 100644
index 00000000..96400072
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Migrations/20260412205559_InitUltimateAuth.Designer.cs
@@ -0,0 +1,716 @@
+// <auto-generated />
+using System;
+using CodeBeam.UltimateAuth.EntityFrameworkCore;
+using Microsoft.EntityFrameworkCore;
+using Microsoft.EntityFrameworkCore.Infrastructure;
+using Microsoft.EntityFrameworkCore.Migrations;
+using Microsoft.EntityFrameworkCore.Storage.ValueConversion;
+
+#nullable disable
+
+namespace CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.Migrations
+{
+    [DbContext(typeof(UAuthDbContext))]
+    [Migration("20260412205559_InitUltimateAuth")]
+    partial class InitUltimateAuth
+    {
+        /// <inheritdoc />
+        protected override void BuildTargetModel(ModelBuilder modelBuilder)
+        {
+#pragma warning disable 612, 618
+            modelBuilder.HasAnnotation("ProductVersion", "10.0.5");
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Authentication.EntityFrameworkCore.AuthenticationSecurityStateProjection", b =>
+                {
+                    b.Property<Guid>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("TEXT");
+
+                    b.Property<int?>("CredentialType")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<int>("FailedAttempts")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<DateTime?>("LastFailedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("LockedUntil")
+                        .HasColumnType("TEXT");
+
+                    b.Property<bool>("RequiresReauthentication")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<int>("ResetAttempts")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<DateTime?>("ResetConsumedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("ResetExpiresAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("ResetRequestedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("ResetTokenHash")
+                        .HasMaxLength(512)
+                        .HasColumnType("TEXT");
+
+                    b.Property<int>("Scope")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<long>("SecurityVersion")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "LockedUntil");
+
+                    b.HasIndex("Tenant", "ResetRequestedAt");
+
+                    b.HasIndex("Tenant", "UserKey");
+
+                    b.HasIndex("Tenant", "UserKey", "Scope");
+
+                    b.HasIndex("Tenant", "UserKey", "Scope", "CredentialType")
+                        .IsUnique();
+
+                    b.ToTable("UAuth_Authentication", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Authorization.EntityFrameworkCore.RolePermissionProjection", b =>
+                {
+                    b.Property<string>("Tenant")
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<Guid>("RoleId")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Permission")
+                        .HasMaxLength(256)
+                        .HasColumnType("TEXT");
+
+                    b.HasKey("Tenant", "RoleId", "Permission");
+
+                    b.HasIndex("Tenant", "Permission");
+
+                    b.HasIndex("Tenant", "RoleId");
+
+                    b.ToTable("UAuth_RolePermissions", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Authorization.EntityFrameworkCore.RoleProjection", b =>
+                {
+                    b.Property<Guid>("Id")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("DeletedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Name")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("NormalizedName")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("UpdatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "Id")
+                        .IsUnique();
+
+                    b.HasIndex("Tenant", "NormalizedName")
+                        .IsUnique();
+
+                    b.ToTable("UAuth_Roles", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Authorization.EntityFrameworkCore.UserRoleProjection", b =>
+                {
+                    b.Property<string>("Tenant")
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<Guid>("RoleId")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("AssignedAt")
+                        .HasColumnType("TEXT");
+
+                    b.HasKey("Tenant", "UserKey", "RoleId");
+
+                    b.HasIndex("Tenant", "RoleId");
+
+                    b.HasIndex("Tenant", "UserKey");
+
+                    b.ToTable("UAuth_UserRoles", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Credentials.EntityFrameworkCore.PasswordCredentialProjection", b =>
+                {
+                    b.Property<Guid>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("DeletedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("ExpiresAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("LastUsedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("RevokedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("SecretHash")
+                        .IsRequired()
+                        .HasMaxLength(512)
+                        .HasColumnType("TEXT");
+
+                    b.Property<Guid>("SecurityStamp")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Source")
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("UpdatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "ExpiresAt");
+
+                    b.HasIndex("Tenant", "Id")
+                        .IsUnique();
+
+                    b.HasIndex("Tenant", "RevokedAt");
+
+                    b.HasIndex("Tenant", "UserKey");
+
+                    b.HasIndex("Tenant", "UserKey", "DeletedAt");
+
+                    b.ToTable("UAuth_PasswordCredentials", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore.SessionChainProjection", b =>
+                {
+                    b.Property<long>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("INTEGER");
+
+                    b.Property<DateTime?>("AbsoluteExpiresAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("ActiveSessionId")
+                        .HasColumnType("TEXT");
+
+                    b.Property<Guid>("ChainId")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("ClaimsSnapshot")
+                        .IsRequired()
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Device")
+                        .IsRequired()
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("DeviceId")
+                        .IsRequired()
+                        .HasMaxLength(64)
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("LastSeenAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("RevokedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<Guid>("RootId")
+                        .HasColumnType("TEXT");
+
+                    b.Property<int>("RotationCount")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<long>("SecurityVersionAtCreation")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<int>("TouchCount")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "ChainId")
+                        .IsUnique();
+
+                    b.HasIndex("Tenant", "RootId");
+
+                    b.HasIndex("Tenant", "UserKey");
+
+                    b.HasIndex("Tenant", "UserKey", "DeviceId");
+
+                    b.ToTable("UAuth_SessionChains", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore.SessionProjection", b =>
+                {
+                    b.Property<long>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("INTEGER");
+
+                    b.Property<Guid>("ChainId")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Claims")
+                        .IsRequired()
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Device")
+                        .IsRequired()
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("ExpiresAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Metadata")
+                        .IsRequired()
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("RevokedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("SecurityVersionAtCreation")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<string>("SessionId")
+                        .IsRequired()
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "ChainId");
+
+                    b.HasIndex("Tenant", "ExpiresAt");
+
+                    b.HasIndex("Tenant", "RevokedAt");
+
+                    b.HasIndex("Tenant", "SessionId")
+                        .IsUnique();
+
+                    b.HasIndex("Tenant", "ChainId", "RevokedAt");
+
+                    b.HasIndex("Tenant", "UserKey", "RevokedAt");
+
+                    b.ToTable("UAuth_Sessions", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore.SessionRootProjection", b =>
+                {
+                    b.Property<long>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("INTEGER");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("RevokedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<Guid>("RootId")
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("SecurityVersion")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("UpdatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "RootId")
+                        .IsUnique();
+
+                    b.HasIndex("Tenant", "UserKey")
+                        .IsUnique();
+
+                    b.ToTable("UAuth_SessionRoots", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Tokens.EntityFrameworkCore.RefreshTokenProjection", b =>
+                {
+                    b.Property<long>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("INTEGER");
+
+                    b.Property<Guid?>("ChainId")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("ExpiresAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("ReplacedByTokenHash")
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("RevokedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("SessionId")
+                        .IsRequired()
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("TokenHash")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<Guid>("TokenId")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "ChainId");
+
+                    b.HasIndex("Tenant", "ExpiresAt");
+
+                    b.HasIndex("Tenant", "ReplacedByTokenHash");
+
+                    b.HasIndex("Tenant", "SessionId");
+
+                    b.HasIndex("Tenant", "TokenHash")
+                        .IsUnique();
+
+                    b.HasIndex("Tenant", "TokenId");
+
+                    b.HasIndex("Tenant", "UserKey");
+
+                    b.HasIndex("Tenant", "ExpiresAt", "RevokedAt");
+
+                    b.HasIndex("Tenant", "TokenHash", "RevokedAt");
+
+                    b.ToTable("UAuth_RefreshTokens", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Users.EntityFrameworkCore.UserIdentifierProjection", b =>
+                {
+                    b.Property<Guid>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("DeletedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<bool>("IsPrimary")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<string>("NormalizedValue")
+                        .IsRequired()
+                        .HasMaxLength(256)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<int>("Type")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<DateTime?>("UpdatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Value")
+                        .IsRequired()
+                        .HasMaxLength(256)
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTimeOffset?>("VerifiedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "NormalizedValue");
+
+                    b.HasIndex("Tenant", "UserKey");
+
+                    b.HasIndex("Tenant", "Type", "NormalizedValue")
+                        .IsUnique();
+
+                    b.HasIndex("Tenant", "UserKey", "IsPrimary");
+
+                    b.HasIndex("Tenant", "UserKey", "Type", "IsPrimary");
+
+                    b.ToTable("UAuth_UserIdentifiers", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Users.EntityFrameworkCore.UserLifecycleProjection", b =>
+                {
+                    b.Property<Guid>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("DeletedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("SecurityVersion")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<int>("Status")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("UpdatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "UserKey")
+                        .IsUnique();
+
+                    b.ToTable("UAuth_UserLifecycles", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Users.EntityFrameworkCore.UserProfileProjection", b =>
+                {
+                    b.Property<Guid>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Bio")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateOnly?>("BirthDate")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Culture")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("DeletedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("DisplayName")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("FirstName")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Gender")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Language")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("LastName")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Metadata")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("ProfileKey")
+                        .IsRequired()
+                        .HasMaxLength(64)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("TimeZone")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("UpdatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "UserKey", "ProfileKey")
+                        .IsUnique();
+
+                    b.ToTable("UAuth_UserProfiles", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore.SessionChainProjection", b =>
+                {
+                    b.HasOne("CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore.SessionRootProjection", null)
+                        .WithMany()
+                        .HasForeignKey("Tenant", "RootId")
+                        .HasPrincipalKey("Tenant", "RootId")
+                        .OnDelete(DeleteBehavior.Restrict)
+                        .IsRequired();
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore.SessionProjection", b =>
+                {
+                    b.HasOne("CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore.SessionChainProjection", null)
+                        .WithMany()
+                        .HasForeignKey("Tenant", "ChainId")
+                        .HasPrincipalKey("Tenant", "ChainId")
+                        .OnDelete(DeleteBehavior.Restrict)
+                        .IsRequired();
+                });
+#pragma warning restore 612, 618
+        }
+    }
+}
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Migrations/20260412205559_InitUltimateAuth.cs b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Migrations/20260412205559_InitUltimateAuth.cs
new file mode 100644
index 00000000..35dc371f
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Migrations/20260412205559_InitUltimateAuth.cs
@@ -0,0 +1,558 @@
+using System;
+using Microsoft.EntityFrameworkCore.Migrations;
+
+#nullable disable
+
+namespace CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.Migrations
+{
+    /// <inheritdoc />
+    public partial class InitUltimateAuth : Migration
+    {
+        /// <inheritdoc />
+        protected override void Up(MigrationBuilder migrationBuilder)
+        {
+            migrationBuilder.CreateTable(
+                name: "UAuth_Authentication",
+                columns: table => new
+                {
+                    Id = table.Column<Guid>(type: "TEXT", nullable: false),
+                    Tenant = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    UserKey = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    Scope = table.Column<int>(type: "INTEGER", nullable: false),
+                    CredentialType = table.Column<int>(type: "INTEGER", nullable: true),
+                    FailedAttempts = table.Column<int>(type: "INTEGER", nullable: false),
+                    LastFailedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    LockedUntil = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    RequiresReauthentication = table.Column<bool>(type: "INTEGER", nullable: false),
+                    ResetRequestedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    ResetExpiresAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    ResetConsumedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    ResetTokenHash = table.Column<string>(type: "TEXT", maxLength: 512, nullable: true),
+                    ResetAttempts = table.Column<int>(type: "INTEGER", nullable: false),
+                    SecurityVersion = table.Column<long>(type: "INTEGER", nullable: false)
+                },
+                constraints: table =>
+                {
+                    table.PrimaryKey("PK_UAuth_Authentication", x => x.Id);
+                });
+
+            migrationBuilder.CreateTable(
+                name: "UAuth_PasswordCredentials",
+                columns: table => new
+                {
+                    Id = table.Column<Guid>(type: "TEXT", nullable: false),
+                    Tenant = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    UserKey = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    SecretHash = table.Column<string>(type: "TEXT", maxLength: 512, nullable: false),
+                    RevokedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    ExpiresAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    SecurityStamp = table.Column<Guid>(type: "TEXT", nullable: false),
+                    LastUsedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    Source = table.Column<string>(type: "TEXT", maxLength: 128, nullable: true),
+                    CreatedAt = table.Column<DateTime>(type: "TEXT", nullable: false),
+                    UpdatedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    DeletedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    Version = table.Column<long>(type: "INTEGER", nullable: false)
+                },
+                constraints: table =>
+                {
+                    table.PrimaryKey("PK_UAuth_PasswordCredentials", x => x.Id);
+                });
+
+            migrationBuilder.CreateTable(
+                name: "UAuth_RefreshTokens",
+                columns: table => new
+                {
+                    Id = table.Column<long>(type: "INTEGER", nullable: false)
+                        .Annotation("Sqlite:Autoincrement", true),
+                    TokenId = table.Column<Guid>(type: "TEXT", nullable: false),
+                    Tenant = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    TokenHash = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    UserKey = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    SessionId = table.Column<string>(type: "TEXT", nullable: false),
+                    ChainId = table.Column<Guid>(type: "TEXT", nullable: true),
+                    ReplacedByTokenHash = table.Column<string>(type: "TEXT", maxLength: 128, nullable: true),
+                    CreatedAt = table.Column<DateTime>(type: "TEXT", nullable: false),
+                    ExpiresAt = table.Column<DateTime>(type: "TEXT", nullable: false),
+                    RevokedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    Version = table.Column<long>(type: "INTEGER", nullable: false)
+                },
+                constraints: table =>
+                {
+                    table.PrimaryKey("PK_UAuth_RefreshTokens", x => x.Id);
+                });
+
+            migrationBuilder.CreateTable(
+                name: "UAuth_RolePermissions",
+                columns: table => new
+                {
+                    Tenant = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    RoleId = table.Column<Guid>(type: "TEXT", nullable: false),
+                    Permission = table.Column<string>(type: "TEXT", maxLength: 256, nullable: false)
+                },
+                constraints: table =>
+                {
+                    table.PrimaryKey("PK_UAuth_RolePermissions", x => new { x.Tenant, x.RoleId, x.Permission });
+                });
+
+            migrationBuilder.CreateTable(
+                name: "UAuth_Roles",
+                columns: table => new
+                {
+                    Id = table.Column<Guid>(type: "TEXT", nullable: false),
+                    Tenant = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    Name = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    NormalizedName = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    CreatedAt = table.Column<DateTime>(type: "TEXT", nullable: false),
+                    UpdatedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    DeletedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    Version = table.Column<long>(type: "INTEGER", nullable: false)
+                },
+                constraints: table =>
+                {
+                    table.PrimaryKey("PK_UAuth_Roles", x => x.Id);
+                });
+
+            migrationBuilder.CreateTable(
+                name: "UAuth_SessionRoots",
+                columns: table => new
+                {
+                    Id = table.Column<long>(type: "INTEGER", nullable: false)
+                        .Annotation("Sqlite:Autoincrement", true),
+                    RootId = table.Column<Guid>(type: "TEXT", maxLength: 128, nullable: false),
+                    Tenant = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    UserKey = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    CreatedAt = table.Column<DateTime>(type: "TEXT", nullable: false),
+                    UpdatedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    RevokedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    SecurityVersion = table.Column<long>(type: "INTEGER", nullable: false),
+                    Version = table.Column<long>(type: "INTEGER", nullable: false)
+                },
+                constraints: table =>
+                {
+                    table.PrimaryKey("PK_UAuth_SessionRoots", x => x.Id);
+                    table.UniqueConstraint("AK_UAuth_SessionRoots_Tenant_RootId", x => new { x.Tenant, x.RootId });
+                });
+
+            migrationBuilder.CreateTable(
+                name: "UAuth_UserIdentifiers",
+                columns: table => new
+                {
+                    Id = table.Column<Guid>(type: "TEXT", nullable: false),
+                    Tenant = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    UserKey = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    Type = table.Column<int>(type: "INTEGER", nullable: false),
+                    Value = table.Column<string>(type: "TEXT", maxLength: 256, nullable: false),
+                    NormalizedValue = table.Column<string>(type: "TEXT", maxLength: 256, nullable: false),
+                    IsPrimary = table.Column<bool>(type: "INTEGER", nullable: false),
+                    CreatedAt = table.Column<DateTime>(type: "TEXT", nullable: false),
+                    VerifiedAt = table.Column<DateTimeOffset>(type: "TEXT", nullable: true),
+                    UpdatedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    DeletedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    Version = table.Column<long>(type: "INTEGER", nullable: false)
+                },
+                constraints: table =>
+                {
+                    table.PrimaryKey("PK_UAuth_UserIdentifiers", x => x.Id);
+                });
+
+            migrationBuilder.CreateTable(
+                name: "UAuth_UserLifecycles",
+                columns: table => new
+                {
+                    Id = table.Column<Guid>(type: "TEXT", nullable: false),
+                    Tenant = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    UserKey = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    Status = table.Column<int>(type: "INTEGER", nullable: false),
+                    SecurityVersion = table.Column<long>(type: "INTEGER", nullable: false),
+                    CreatedAt = table.Column<DateTime>(type: "TEXT", nullable: false),
+                    UpdatedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    DeletedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    Version = table.Column<long>(type: "INTEGER", nullable: false)
+                },
+                constraints: table =>
+                {
+                    table.PrimaryKey("PK_UAuth_UserLifecycles", x => x.Id);
+                });
+
+            migrationBuilder.CreateTable(
+                name: "UAuth_UserProfiles",
+                columns: table => new
+                {
+                    Id = table.Column<Guid>(type: "TEXT", nullable: false),
+                    Tenant = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    UserKey = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    ProfileKey = table.Column<string>(type: "TEXT", maxLength: 64, nullable: false),
+                    FirstName = table.Column<string>(type: "TEXT", nullable: true),
+                    LastName = table.Column<string>(type: "TEXT", nullable: true),
+                    DisplayName = table.Column<string>(type: "TEXT", nullable: true),
+                    BirthDate = table.Column<DateOnly>(type: "TEXT", nullable: true),
+                    Gender = table.Column<string>(type: "TEXT", nullable: true),
+                    Bio = table.Column<string>(type: "TEXT", nullable: true),
+                    Language = table.Column<string>(type: "TEXT", nullable: true),
+                    TimeZone = table.Column<string>(type: "TEXT", nullable: true),
+                    Culture = table.Column<string>(type: "TEXT", nullable: true),
+                    Metadata = table.Column<string>(type: "TEXT", nullable: true),
+                    CreatedAt = table.Column<DateTime>(type: "TEXT", nullable: false),
+                    UpdatedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    DeletedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    Version = table.Column<long>(type: "INTEGER", nullable: false)
+                },
+                constraints: table =>
+                {
+                    table.PrimaryKey("PK_UAuth_UserProfiles", x => x.Id);
+                });
+
+            migrationBuilder.CreateTable(
+                name: "UAuth_UserRoles",
+                columns: table => new
+                {
+                    Tenant = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    UserKey = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    RoleId = table.Column<Guid>(type: "TEXT", nullable: false),
+                    AssignedAt = table.Column<DateTime>(type: "TEXT", nullable: false)
+                },
+                constraints: table =>
+                {
+                    table.PrimaryKey("PK_UAuth_UserRoles", x => new { x.Tenant, x.UserKey, x.RoleId });
+                });
+
+            migrationBuilder.CreateTable(
+                name: "UAuth_SessionChains",
+                columns: table => new
+                {
+                    Id = table.Column<long>(type: "INTEGER", nullable: false)
+                        .Annotation("Sqlite:Autoincrement", true),
+                    ChainId = table.Column<Guid>(type: "TEXT", nullable: false),
+                    RootId = table.Column<Guid>(type: "TEXT", nullable: false),
+                    Tenant = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    UserKey = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    CreatedAt = table.Column<DateTime>(type: "TEXT", nullable: false),
+                    LastSeenAt = table.Column<DateTime>(type: "TEXT", nullable: false),
+                    AbsoluteExpiresAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    DeviceId = table.Column<string>(type: "TEXT", maxLength: 64, nullable: false),
+                    Device = table.Column<string>(type: "TEXT", nullable: false),
+                    ClaimsSnapshot = table.Column<string>(type: "TEXT", nullable: false),
+                    ActiveSessionId = table.Column<string>(type: "TEXT", nullable: true),
+                    RotationCount = table.Column<int>(type: "INTEGER", nullable: false),
+                    TouchCount = table.Column<int>(type: "INTEGER", nullable: false),
+                    SecurityVersionAtCreation = table.Column<long>(type: "INTEGER", nullable: false),
+                    RevokedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    Version = table.Column<long>(type: "INTEGER", nullable: false)
+                },
+                constraints: table =>
+                {
+                    table.PrimaryKey("PK_UAuth_SessionChains", x => x.Id);
+                    table.UniqueConstraint("AK_UAuth_SessionChains_Tenant_ChainId", x => new { x.Tenant, x.ChainId });
+                    table.ForeignKey(
+                        name: "FK_UAuth_SessionChains_UAuth_SessionRoots_Tenant_RootId",
+                        columns: x => new { x.Tenant, x.RootId },
+                        principalTable: "UAuth_SessionRoots",
+                        principalColumns: new[] { "Tenant", "RootId" },
+                        onDelete: ReferentialAction.Restrict);
+                });
+
+            migrationBuilder.CreateTable(
+                name: "UAuth_Sessions",
+                columns: table => new
+                {
+                    Id = table.Column<long>(type: "INTEGER", nullable: false)
+                        .Annotation("Sqlite:Autoincrement", true),
+                    SessionId = table.Column<string>(type: "TEXT", nullable: false),
+                    ChainId = table.Column<Guid>(type: "TEXT", nullable: false),
+                    Tenant = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    UserKey = table.Column<string>(type: "TEXT", maxLength: 128, nullable: false),
+                    CreatedAt = table.Column<DateTime>(type: "TEXT", nullable: false),
+                    ExpiresAt = table.Column<DateTime>(type: "TEXT", nullable: false),
+                    RevokedAt = table.Column<DateTime>(type: "TEXT", nullable: true),
+                    SecurityVersionAtCreation = table.Column<long>(type: "INTEGER", nullable: false),
+                    Device = table.Column<string>(type: "TEXT", nullable: false),
+                    Claims = table.Column<string>(type: "TEXT", nullable: false),
+                    Metadata = table.Column<string>(type: "TEXT", nullable: false),
+                    Version = table.Column<long>(type: "INTEGER", nullable: false)
+                },
+                constraints: table =>
+                {
+                    table.PrimaryKey("PK_UAuth_Sessions", x => x.Id);
+                    table.ForeignKey(
+                        name: "FK_UAuth_Sessions_UAuth_SessionChains_Tenant_ChainId",
+                        columns: x => new { x.Tenant, x.ChainId },
+                        principalTable: "UAuth_SessionChains",
+                        principalColumns: new[] { "Tenant", "ChainId" },
+                        onDelete: ReferentialAction.Restrict);
+                });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_Authentication_Tenant_LockedUntil",
+                table: "UAuth_Authentication",
+                columns: new[] { "Tenant", "LockedUntil" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_Authentication_Tenant_ResetRequestedAt",
+                table: "UAuth_Authentication",
+                columns: new[] { "Tenant", "ResetRequestedAt" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_Authentication_Tenant_UserKey",
+                table: "UAuth_Authentication",
+                columns: new[] { "Tenant", "UserKey" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_Authentication_Tenant_UserKey_Scope",
+                table: "UAuth_Authentication",
+                columns: new[] { "Tenant", "UserKey", "Scope" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_Authentication_Tenant_UserKey_Scope_CredentialType",
+                table: "UAuth_Authentication",
+                columns: new[] { "Tenant", "UserKey", "Scope", "CredentialType" },
+                unique: true);
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_PasswordCredentials_Tenant_ExpiresAt",
+                table: "UAuth_PasswordCredentials",
+                columns: new[] { "Tenant", "ExpiresAt" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_PasswordCredentials_Tenant_Id",
+                table: "UAuth_PasswordCredentials",
+                columns: new[] { "Tenant", "Id" },
+                unique: true);
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_PasswordCredentials_Tenant_RevokedAt",
+                table: "UAuth_PasswordCredentials",
+                columns: new[] { "Tenant", "RevokedAt" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_PasswordCredentials_Tenant_UserKey",
+                table: "UAuth_PasswordCredentials",
+                columns: new[] { "Tenant", "UserKey" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_PasswordCredentials_Tenant_UserKey_DeletedAt",
+                table: "UAuth_PasswordCredentials",
+                columns: new[] { "Tenant", "UserKey", "DeletedAt" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_RefreshTokens_Tenant_ChainId",
+                table: "UAuth_RefreshTokens",
+                columns: new[] { "Tenant", "ChainId" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_RefreshTokens_Tenant_ExpiresAt",
+                table: "UAuth_RefreshTokens",
+                columns: new[] { "Tenant", "ExpiresAt" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_RefreshTokens_Tenant_ExpiresAt_RevokedAt",
+                table: "UAuth_RefreshTokens",
+                columns: new[] { "Tenant", "ExpiresAt", "RevokedAt" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_RefreshTokens_Tenant_ReplacedByTokenHash",
+                table: "UAuth_RefreshTokens",
+                columns: new[] { "Tenant", "ReplacedByTokenHash" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_RefreshTokens_Tenant_SessionId",
+                table: "UAuth_RefreshTokens",
+                columns: new[] { "Tenant", "SessionId" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_RefreshTokens_Tenant_TokenHash",
+                table: "UAuth_RefreshTokens",
+                columns: new[] { "Tenant", "TokenHash" },
+                unique: true);
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_RefreshTokens_Tenant_TokenHash_RevokedAt",
+                table: "UAuth_RefreshTokens",
+                columns: new[] { "Tenant", "TokenHash", "RevokedAt" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_RefreshTokens_Tenant_TokenId",
+                table: "UAuth_RefreshTokens",
+                columns: new[] { "Tenant", "TokenId" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_RefreshTokens_Tenant_UserKey",
+                table: "UAuth_RefreshTokens",
+                columns: new[] { "Tenant", "UserKey" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_RolePermissions_Tenant_Permission",
+                table: "UAuth_RolePermissions",
+                columns: new[] { "Tenant", "Permission" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_RolePermissions_Tenant_RoleId",
+                table: "UAuth_RolePermissions",
+                columns: new[] { "Tenant", "RoleId" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_Roles_Tenant_Id",
+                table: "UAuth_Roles",
+                columns: new[] { "Tenant", "Id" },
+                unique: true);
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_Roles_Tenant_NormalizedName",
+                table: "UAuth_Roles",
+                columns: new[] { "Tenant", "NormalizedName" },
+                unique: true);
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_SessionChains_Tenant_ChainId",
+                table: "UAuth_SessionChains",
+                columns: new[] { "Tenant", "ChainId" },
+                unique: true);
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_SessionChains_Tenant_RootId",
+                table: "UAuth_SessionChains",
+                columns: new[] { "Tenant", "RootId" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_SessionChains_Tenant_UserKey",
+                table: "UAuth_SessionChains",
+                columns: new[] { "Tenant", "UserKey" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_SessionChains_Tenant_UserKey_DeviceId",
+                table: "UAuth_SessionChains",
+                columns: new[] { "Tenant", "UserKey", "DeviceId" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_SessionRoots_Tenant_RootId",
+                table: "UAuth_SessionRoots",
+                columns: new[] { "Tenant", "RootId" },
+                unique: true);
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_SessionRoots_Tenant_UserKey",
+                table: "UAuth_SessionRoots",
+                columns: new[] { "Tenant", "UserKey" },
+                unique: true);
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_Sessions_Tenant_ChainId",
+                table: "UAuth_Sessions",
+                columns: new[] { "Tenant", "ChainId" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_Sessions_Tenant_ChainId_RevokedAt",
+                table: "UAuth_Sessions",
+                columns: new[] { "Tenant", "ChainId", "RevokedAt" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_Sessions_Tenant_ExpiresAt",
+                table: "UAuth_Sessions",
+                columns: new[] { "Tenant", "ExpiresAt" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_Sessions_Tenant_RevokedAt",
+                table: "UAuth_Sessions",
+                columns: new[] { "Tenant", "RevokedAt" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_Sessions_Tenant_SessionId",
+                table: "UAuth_Sessions",
+                columns: new[] { "Tenant", "SessionId" },
+                unique: true);
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_Sessions_Tenant_UserKey_RevokedAt",
+                table: "UAuth_Sessions",
+                columns: new[] { "Tenant", "UserKey", "RevokedAt" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_UserIdentifiers_Tenant_NormalizedValue",
+                table: "UAuth_UserIdentifiers",
+                columns: new[] { "Tenant", "NormalizedValue" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_UserIdentifiers_Tenant_Type_NormalizedValue",
+                table: "UAuth_UserIdentifiers",
+                columns: new[] { "Tenant", "Type", "NormalizedValue" },
+                unique: true);
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_UserIdentifiers_Tenant_UserKey",
+                table: "UAuth_UserIdentifiers",
+                columns: new[] { "Tenant", "UserKey" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_UserIdentifiers_Tenant_UserKey_IsPrimary",
+                table: "UAuth_UserIdentifiers",
+                columns: new[] { "Tenant", "UserKey", "IsPrimary" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_UserIdentifiers_Tenant_UserKey_Type_IsPrimary",
+                table: "UAuth_UserIdentifiers",
+                columns: new[] { "Tenant", "UserKey", "Type", "IsPrimary" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_UserLifecycles_Tenant_UserKey",
+                table: "UAuth_UserLifecycles",
+                columns: new[] { "Tenant", "UserKey" },
+                unique: true);
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_UserProfiles_Tenant_UserKey_ProfileKey",
+                table: "UAuth_UserProfiles",
+                columns: new[] { "Tenant", "UserKey", "ProfileKey" },
+                unique: true);
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_UserRoles_Tenant_RoleId",
+                table: "UAuth_UserRoles",
+                columns: new[] { "Tenant", "RoleId" });
+
+            migrationBuilder.CreateIndex(
+                name: "IX_UAuth_UserRoles_Tenant_UserKey",
+                table: "UAuth_UserRoles",
+                columns: new[] { "Tenant", "UserKey" });
+        }
+
+        /// <inheritdoc />
+        protected override void Down(MigrationBuilder migrationBuilder)
+        {
+            migrationBuilder.DropTable(
+                name: "UAuth_Authentication");
+
+            migrationBuilder.DropTable(
+                name: "UAuth_PasswordCredentials");
+
+            migrationBuilder.DropTable(
+                name: "UAuth_RefreshTokens");
+
+            migrationBuilder.DropTable(
+                name: "UAuth_RolePermissions");
+
+            migrationBuilder.DropTable(
+                name: "UAuth_Roles");
+
+            migrationBuilder.DropTable(
+                name: "UAuth_Sessions");
+
+            migrationBuilder.DropTable(
+                name: "UAuth_UserIdentifiers");
+
+            migrationBuilder.DropTable(
+                name: "UAuth_UserLifecycles");
+
+            migrationBuilder.DropTable(
+                name: "UAuth_UserProfiles");
+
+            migrationBuilder.DropTable(
+                name: "UAuth_UserRoles");
+
+            migrationBuilder.DropTable(
+                name: "UAuth_SessionChains");
+
+            migrationBuilder.DropTable(
+                name: "UAuth_SessionRoots");
+        }
+    }
+}
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Migrations/UAuthDbContextModelSnapshot.cs b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Migrations/UAuthDbContextModelSnapshot.cs
new file mode 100644
index 00000000..4000ca4d
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Migrations/UAuthDbContextModelSnapshot.cs
@@ -0,0 +1,713 @@
+// <auto-generated />
+using System;
+using CodeBeam.UltimateAuth.EntityFrameworkCore;
+using Microsoft.EntityFrameworkCore;
+using Microsoft.EntityFrameworkCore.Infrastructure;
+using Microsoft.EntityFrameworkCore.Storage.ValueConversion;
+
+#nullable disable
+
+namespace CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.Migrations
+{
+    [DbContext(typeof(UAuthDbContext))]
+    partial class UAuthDbContextModelSnapshot : ModelSnapshot
+    {
+        protected override void BuildModel(ModelBuilder modelBuilder)
+        {
+#pragma warning disable 612, 618
+            modelBuilder.HasAnnotation("ProductVersion", "10.0.5");
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Authentication.EntityFrameworkCore.AuthenticationSecurityStateProjection", b =>
+                {
+                    b.Property<Guid>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("TEXT");
+
+                    b.Property<int?>("CredentialType")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<int>("FailedAttempts")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<DateTime?>("LastFailedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("LockedUntil")
+                        .HasColumnType("TEXT");
+
+                    b.Property<bool>("RequiresReauthentication")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<int>("ResetAttempts")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<DateTime?>("ResetConsumedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("ResetExpiresAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("ResetRequestedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("ResetTokenHash")
+                        .HasMaxLength(512)
+                        .HasColumnType("TEXT");
+
+                    b.Property<int>("Scope")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<long>("SecurityVersion")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "LockedUntil");
+
+                    b.HasIndex("Tenant", "ResetRequestedAt");
+
+                    b.HasIndex("Tenant", "UserKey");
+
+                    b.HasIndex("Tenant", "UserKey", "Scope");
+
+                    b.HasIndex("Tenant", "UserKey", "Scope", "CredentialType")
+                        .IsUnique();
+
+                    b.ToTable("UAuth_Authentication", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Authorization.EntityFrameworkCore.RolePermissionProjection", b =>
+                {
+                    b.Property<string>("Tenant")
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<Guid>("RoleId")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Permission")
+                        .HasMaxLength(256)
+                        .HasColumnType("TEXT");
+
+                    b.HasKey("Tenant", "RoleId", "Permission");
+
+                    b.HasIndex("Tenant", "Permission");
+
+                    b.HasIndex("Tenant", "RoleId");
+
+                    b.ToTable("UAuth_RolePermissions", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Authorization.EntityFrameworkCore.RoleProjection", b =>
+                {
+                    b.Property<Guid>("Id")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("DeletedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Name")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("NormalizedName")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("UpdatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "Id")
+                        .IsUnique();
+
+                    b.HasIndex("Tenant", "NormalizedName")
+                        .IsUnique();
+
+                    b.ToTable("UAuth_Roles", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Authorization.EntityFrameworkCore.UserRoleProjection", b =>
+                {
+                    b.Property<string>("Tenant")
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<Guid>("RoleId")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("AssignedAt")
+                        .HasColumnType("TEXT");
+
+                    b.HasKey("Tenant", "UserKey", "RoleId");
+
+                    b.HasIndex("Tenant", "RoleId");
+
+                    b.HasIndex("Tenant", "UserKey");
+
+                    b.ToTable("UAuth_UserRoles", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Credentials.EntityFrameworkCore.PasswordCredentialProjection", b =>
+                {
+                    b.Property<Guid>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("DeletedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("ExpiresAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("LastUsedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("RevokedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("SecretHash")
+                        .IsRequired()
+                        .HasMaxLength(512)
+                        .HasColumnType("TEXT");
+
+                    b.Property<Guid>("SecurityStamp")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Source")
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("UpdatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "ExpiresAt");
+
+                    b.HasIndex("Tenant", "Id")
+                        .IsUnique();
+
+                    b.HasIndex("Tenant", "RevokedAt");
+
+                    b.HasIndex("Tenant", "UserKey");
+
+                    b.HasIndex("Tenant", "UserKey", "DeletedAt");
+
+                    b.ToTable("UAuth_PasswordCredentials", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore.SessionChainProjection", b =>
+                {
+                    b.Property<long>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("INTEGER");
+
+                    b.Property<DateTime?>("AbsoluteExpiresAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("ActiveSessionId")
+                        .HasColumnType("TEXT");
+
+                    b.Property<Guid>("ChainId")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("ClaimsSnapshot")
+                        .IsRequired()
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Device")
+                        .IsRequired()
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("DeviceId")
+                        .IsRequired()
+                        .HasMaxLength(64)
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("LastSeenAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("RevokedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<Guid>("RootId")
+                        .HasColumnType("TEXT");
+
+                    b.Property<int>("RotationCount")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<long>("SecurityVersionAtCreation")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<int>("TouchCount")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "ChainId")
+                        .IsUnique();
+
+                    b.HasIndex("Tenant", "RootId");
+
+                    b.HasIndex("Tenant", "UserKey");
+
+                    b.HasIndex("Tenant", "UserKey", "DeviceId");
+
+                    b.ToTable("UAuth_SessionChains", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore.SessionProjection", b =>
+                {
+                    b.Property<long>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("INTEGER");
+
+                    b.Property<Guid>("ChainId")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Claims")
+                        .IsRequired()
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Device")
+                        .IsRequired()
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("ExpiresAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Metadata")
+                        .IsRequired()
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("RevokedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("SecurityVersionAtCreation")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<string>("SessionId")
+                        .IsRequired()
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "ChainId");
+
+                    b.HasIndex("Tenant", "ExpiresAt");
+
+                    b.HasIndex("Tenant", "RevokedAt");
+
+                    b.HasIndex("Tenant", "SessionId")
+                        .IsUnique();
+
+                    b.HasIndex("Tenant", "ChainId", "RevokedAt");
+
+                    b.HasIndex("Tenant", "UserKey", "RevokedAt");
+
+                    b.ToTable("UAuth_Sessions", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore.SessionRootProjection", b =>
+                {
+                    b.Property<long>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("INTEGER");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("RevokedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<Guid>("RootId")
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("SecurityVersion")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("UpdatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "RootId")
+                        .IsUnique();
+
+                    b.HasIndex("Tenant", "UserKey")
+                        .IsUnique();
+
+                    b.ToTable("UAuth_SessionRoots", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Tokens.EntityFrameworkCore.RefreshTokenProjection", b =>
+                {
+                    b.Property<long>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("INTEGER");
+
+                    b.Property<Guid?>("ChainId")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("ExpiresAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("ReplacedByTokenHash")
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("RevokedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("SessionId")
+                        .IsRequired()
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("TokenHash")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<Guid>("TokenId")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "ChainId");
+
+                    b.HasIndex("Tenant", "ExpiresAt");
+
+                    b.HasIndex("Tenant", "ReplacedByTokenHash");
+
+                    b.HasIndex("Tenant", "SessionId");
+
+                    b.HasIndex("Tenant", "TokenHash")
+                        .IsUnique();
+
+                    b.HasIndex("Tenant", "TokenId");
+
+                    b.HasIndex("Tenant", "UserKey");
+
+                    b.HasIndex("Tenant", "ExpiresAt", "RevokedAt");
+
+                    b.HasIndex("Tenant", "TokenHash", "RevokedAt");
+
+                    b.ToTable("UAuth_RefreshTokens", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Users.EntityFrameworkCore.UserIdentifierProjection", b =>
+                {
+                    b.Property<Guid>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("DeletedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<bool>("IsPrimary")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<string>("NormalizedValue")
+                        .IsRequired()
+                        .HasMaxLength(256)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<int>("Type")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<DateTime?>("UpdatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Value")
+                        .IsRequired()
+                        .HasMaxLength(256)
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTimeOffset?>("VerifiedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "NormalizedValue");
+
+                    b.HasIndex("Tenant", "UserKey");
+
+                    b.HasIndex("Tenant", "Type", "NormalizedValue")
+                        .IsUnique();
+
+                    b.HasIndex("Tenant", "UserKey", "IsPrimary");
+
+                    b.HasIndex("Tenant", "UserKey", "Type", "IsPrimary");
+
+                    b.ToTable("UAuth_UserIdentifiers", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Users.EntityFrameworkCore.UserLifecycleProjection", b =>
+                {
+                    b.Property<Guid>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("DeletedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("SecurityVersion")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<int>("Status")
+                        .HasColumnType("INTEGER");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("UpdatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "UserKey")
+                        .IsUnique();
+
+                    b.ToTable("UAuth_UserLifecycles", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Users.EntityFrameworkCore.UserProfileProjection", b =>
+                {
+                    b.Property<Guid>("Id")
+                        .ValueGeneratedOnAdd()
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Bio")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateOnly?>("BirthDate")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime>("CreatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Culture")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("DeletedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("DisplayName")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("FirstName")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Gender")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Language")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("LastName")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Metadata")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("ProfileKey")
+                        .IsRequired()
+                        .HasMaxLength(64)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("Tenant")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("TimeZone")
+                        .HasColumnType("TEXT");
+
+                    b.Property<DateTime?>("UpdatedAt")
+                        .HasColumnType("TEXT");
+
+                    b.Property<string>("UserKey")
+                        .IsRequired()
+                        .HasMaxLength(128)
+                        .HasColumnType("TEXT");
+
+                    b.Property<long>("Version")
+                        .IsConcurrencyToken()
+                        .HasColumnType("INTEGER");
+
+                    b.HasKey("Id");
+
+                    b.HasIndex("Tenant", "UserKey", "ProfileKey")
+                        .IsUnique();
+
+                    b.ToTable("UAuth_UserProfiles", (string)null);
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore.SessionChainProjection", b =>
+                {
+                    b.HasOne("CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore.SessionRootProjection", null)
+                        .WithMany()
+                        .HasForeignKey("Tenant", "RootId")
+                        .HasPrincipalKey("Tenant", "RootId")
+                        .OnDelete(DeleteBehavior.Restrict)
+                        .IsRequired();
+                });
+
+            modelBuilder.Entity("CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore.SessionProjection", b =>
+                {
+                    b.HasOne("CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore.SessionChainProjection", null)
+                        .WithMany()
+                        .HasForeignKey("Tenant", "ChainId")
+                        .HasPrincipalKey("Tenant", "ChainId")
+                        .OnDelete(DeleteBehavior.Restrict)
+                        .IsRequired();
+                });
+#pragma warning restore 612, 618
+        }
+    }
+}
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Program.cs b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Program.cs
new file mode 100644
index 00000000..125730ca
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Program.cs
@@ -0,0 +1,93 @@
+using CodeBeam.UltimateAuth.Client.Blazor;
+using CodeBeam.UltimateAuth.Client.Blazor.Extensions;
+using CodeBeam.UltimateAuth.Core.Domain;
+using CodeBeam.UltimateAuth.Core.Infrastructure;
+using CodeBeam.UltimateAuth.EntityFrameworkCore;
+using CodeBeam.UltimateAuth.Sample.Seed.Extensions;
+using CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore;
+using CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.Components;
+using CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.Infrastructure;
+using CodeBeam.UltimateAuth.Server.Extensions;
+using Microsoft.EntityFrameworkCore;
+using MudBlazor.Services;
+using MudExtensions.Services;
+using Scalar.AspNetCore;
+
+var builder = WebApplication.CreateBuilder(args);
+
+builder.Services.AddRazorComponents()
+    .AddInteractiveServerComponents()
+    .AddCircuitOptions(options =>
+    {
+        options.DetailedErrors = true;
+    });
+
+builder.Services.AddMudServices(o => {
+    o.SnackbarConfiguration.PreventDuplicates = false;
+});
+builder.Services.AddMudExtensions();
+
+builder.Services.AddScoped<DarkModeManager>();
+
+builder.Services.AddUltimateAuthServer(o => {
+    o.Diagnostics.EnableRefreshDetails = true;
+    //o.Session.MaxLifetime = TimeSpan.FromSeconds(32);
+    //o.Session.Lifetime = TimeSpan.FromSeconds(32);
+    //o.Session.TouchInterval = TimeSpan.FromSeconds(9);
+    //o.Session.IdleTimeout = TimeSpan.FromSeconds(15);
+    //o.Token.AccessTokenLifetime = TimeSpan.FromSeconds(30);
+    //o.Token.RefreshTokenLifetime = TimeSpan.FromSeconds(32);
+    o.Login.MaxFailedAttempts = 2;
+    o.Login.LockoutDuration = TimeSpan.FromSeconds(10);
+    o.Identifiers.AllowMultipleUsernames = true;
+    o.UserProfile.EnableMultiProfile = true;
+})
+    .AddUltimateAuthEntityFrameworkCore(db =>
+    {
+        db.UseSqlite("Data Source=uauthhub.db", x => x.MigrationsAssembly("CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore"));
+    })
+    .AddUAuthHub(o => o.AllowedClientOrigins.Add("https://localhost:6132")); // Client sample's URL
+
+builder.Services.AddScopedUltimateAuthSampleSeed();
+
+builder.Services.AddUltimateAuthClientBlazor(o =>
+{
+    //o.Refresh.Interval = TimeSpan.FromSeconds(5);
+    o.Reauth.Behavior = ReauthBehavior.RaiseEvent;
+});
+
+var app = builder.Build();
+
+if (!app.Environment.IsDevelopment())
+{
+    app.UseExceptionHandler("/Error", createScopeForErrors: true);
+    app.UseHsts();
+}
+else
+{
+    app.MapOpenApi();
+    app.MapScalarApiReference();
+
+    using (var scope = app.Services.CreateScope())
+    {
+        await UAuthDbInitializer.InitializeAsync(app.Services, reset: true);
+
+        var seedRunner = scope.ServiceProvider.GetRequiredService<SeedRunner>();
+        await seedRunner.RunAsync(null);
+    }
+}
+
+app.UseHttpsRedirection();
+
+app.UseUltimateAuthWithAspNetCore();
+app.UseAntiforgery();
+
+app.MapUltimateAuthEndpoints();
+app.MapUAuthHub();
+app.MapStaticAssets();
+
+app.MapRazorComponents<App>()
+    .AddInteractiveServerRenderMode()
+    .AddUltimateAuthRoutes(UAuthAssemblies.BlazorClient());
+
+app.Run();
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Properties/launchSettings.json b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Properties/launchSettings.json
new file mode 100644
index 00000000..591418ff
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Properties/launchSettings.json
@@ -0,0 +1,23 @@
+{
+  "$schema": "https://json.schemastore.org/launchsettings.json",
+    "profiles": {
+      "http": {
+        "commandName": "Project",
+        "dotnetRunMessages": true,
+        "launchBrowser": true,
+        "applicationUrl": "http://localhost:6113",
+        "environmentVariables": {
+          "ASPNETCORE_ENVIRONMENT": "Development"
+        }
+      },
+      "https": {
+        "commandName": "Project",
+        "dotnetRunMessages": true,
+        "launchBrowser": true,
+        "applicationUrl": "https://localhost:6112;http://localhost:6113",
+        "environmentVariables": {
+          "ASPNETCORE_ENVIRONMENT": "Development"
+        }
+      }
+    }
+  }
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Seed/UAuthDbInitializer.cs b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Seed/UAuthDbInitializer.cs
new file mode 100644
index 00000000..85f801a9
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/Seed/UAuthDbInitializer.cs
@@ -0,0 +1,46 @@
+using CodeBeam.UltimateAuth.Authentication.EntityFrameworkCore;
+using CodeBeam.UltimateAuth.Authorization.EntityFrameworkCore;
+using CodeBeam.UltimateAuth.Credentials.EntityFrameworkCore;
+using CodeBeam.UltimateAuth.EntityFrameworkCore;
+using CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore;
+using CodeBeam.UltimateAuth.Tokens.EntityFrameworkCore;
+using CodeBeam.UltimateAuth.Users.EntityFrameworkCore;
+using Microsoft.EntityFrameworkCore;
+
+namespace CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore;
+
+public static class UAuthDbInitializer
+{
+    public static async Task InitializeAsync(IServiceProvider services, bool reset = false)
+    {
+        using var scope = services.CreateScope();
+        var sp = scope.ServiceProvider;
+
+        var bundleDb = sp.GetService<UAuthDbContext>();
+
+        if (bundleDb != null)
+        {
+            if (reset)
+                await bundleDb.Database.EnsureDeletedAsync();
+
+            await bundleDb.Database.MigrateAsync();
+            return;
+        }
+
+        var contexts = new DbContext[]
+        {
+            sp.GetRequiredService<UAuthSessionDbContext>(),
+            sp.GetRequiredService<UAuthUserDbContext>(),
+            sp.GetRequiredService<UAuthCredentialDbContext>(),
+            sp.GetRequiredService<UAuthAuthorizationDbContext>(),
+            sp.GetRequiredService<UAuthTokenDbContext>(),
+            sp.GetRequiredService<UAuthAuthenticationDbContext>()
+        };
+
+        if (reset)
+            await contexts[0].Database.EnsureDeletedAsync();
+
+        foreach (var db in contexts)
+            await db.Database.MigrateAsync();
+    }
+}
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/appsettings.Development.json b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/appsettings.Development.json
new file mode 100644
index 00000000..0c208ae9
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/appsettings.Development.json
@@ -0,0 +1,8 @@
+{
+  "Logging": {
+    "LogLevel": {
+      "Default": "Information",
+      "Microsoft.AspNetCore": "Warning"
+    }
+  }
+}
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/appsettings.json b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/appsettings.json
new file mode 100644
index 00000000..10f68b8c
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/appsettings.json
@@ -0,0 +1,9 @@
+{
+  "Logging": {
+    "LogLevel": {
+      "Default": "Information",
+      "Microsoft.AspNetCore": "Warning"
+    }
+  },
+  "AllowedHosts": "*"
+}
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/uauthhub.db b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/uauthhub.db
new file mode 100644
index 0000000000000000000000000000000000000000..4e86411b5803e34b1e4767ce981907694f15c1ed
GIT binary patch
literal 4096
zcmWFz^vNtqRY=P(%1ta$FlG>7U}9o$P*7lCU|@t|AVoG{WYBBV<OOLLAlr;ljiVtj
n8UmvsFd71*Aut*OqaiRF0;3@?8UmvsFd71*Aut*O6ovo*b`b`^

literal 0
HcmV?d00001

diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/uauthhub.db-shm b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/uauthhub.db-shm
new file mode 100644
index 0000000000000000000000000000000000000000..c6cedbd528aee1b8a0ea2a6ef1c664d3bad8602f
GIT binary patch
literal 32768
zcmeI5Wpor*6o9`MAV6G*dqRS{HdxSLHA;<AcP|y{r9zFm(3ZLzHR?u{y1P-M-cm31
zmflA?r=fxDPEWIMhQ05cFS|4E&fNRHcX$8foZ0*(J+Py*U?8JL{!Etl(`x5VU7R~_
z_LP|gN%I%ZnZ77<*}|m@X4L2VjJNl;!`^p!qtS5opT9Cq!r$2Ut%TM><M(akI8kUT
zv=iD3NkX!aBBTmwLb{M4WC~eAw$MSy5psn*AzvsE3WXw}SSS%ng)*UBs1PcJDxsrL
zEz}5|1naAd&{gOrbQi42o<c97x6nuEEA$ik3j>6K!XRO=u$E9O3=xJ3!-V0&2%%0G
zDU1?E3uA<_!Z@K`7%xl^CJK`TyJyy)w?;eft<%PNE>?A~|2h}TT;86qY9E@L`*&}6
z`{C_{*E8O+*Av#ObsFi|>q*-;<wE10i8N<>*Xz~BJ?OVTyw5>2{b={h_POn|I>Gjr
zt<%<GYp`>x>q9?z)|4EgLx&nr18P7Gr~x&g2GoEWPy=c}4X6P%pa#@{8c+jjKn<t?
zHJ}F6fErK(YCsLB0X3io)PNdL18P7Gr~x&g2GoEWPy=c}4X6P%pa#@{8c+jjKn<t?
zHJ}F6fErK(O$_wrWxk@VDK|}~^u$UAikQltE1e1I!8o4fQ;aEew5LX%F=3w`5d6`H
zSNNKCroxe_;2ZKPEM_BScn5)gt>-!3<uiUJ!DO1EnD1<YJY{7{pbdG&_2pH*p}nb$
zxg)QFu)LPAF?)xi*zs(}Htfty4rR83ircJshLD5AzEk$&HNGXuRB87|a97G@T*dqd
zQ9+oVz;w1{7xw2cj&@K`;)<tdIY{g~Wq)4hJCaRD?fwYv%D9}Xxh_If5T+-xIoq)-
z2QZ6c92Atqjoi*c-s2at0^L^wc!TdrG1Y;t(!mxsNm<T=Ea5jg1m4snwqSd9<3JAQ
z*e2^}`4h?9#2qc4=6}dAkT>~(RAZkWsiQdq6+G13bb#h2vn4yQI|p$D$2q7gh2uHZ
zL0<nU2XUVNi{kQ%N*-o0AFzzyNi#VC{<c_~4cW`#9;Gse(;ViHKJ{SEk3KlABdb`z
zouM$W4x6x#!%EY5p3iAziUa%&(V)jZ8(K#+2J91|!!g$73a;ULXT_#-A20AeU+^of
zO|~fs?5CiX3%JCYr!Xb1=4S2+MZxPit}=tO9aj)-`XOA%rO^h*bzBX%aCayStk0EP
z%MH$I&Ey<sx&0*`$|8Rk#BFpZZsnf1UA>=$XEBe9{9NEHb{LO1%N?%7ow<#B!&S1Q
zYO^_)iyh_mmv%Uh`nw=*qq}edr^oH;{Vco#_xlNV7(0T;9A*zw>aLu~8DT2eS*<xd
z;4HVl#C1IG?}E6E?#4-+8MmwVv+!ItWh-`MUk>I-KNrS4b|g>4JZCr)cIRZ~hO_h-
zSDnW+wq_^x;}DLDac+O<M)4#c@&~zr{f~sd^|V}c4^H8%mb?8LbZ7euzu_38d5X9B
zh#&crbd#r_fz@tXPhMmxZA_^;TCJmo3H!Un;TU6hnvYpdzV2y+4eP~Ad`Y4yQ&SO4
f6|w<)@K%JVAWV<t8Q$R&ev+TM&oBis-`T$adal@%

literal 0
HcmV?d00001

diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/uauthhub.db-wal b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/uauthhub.db-wal
new file mode 100644
index 0000000000000000000000000000000000000000..a23ad2d540f522ad5063c0cf51278b4f91a4dc47
GIT binary patch
literal 1211312
zcmeF)31A!Lo%nspM|>pCa0L^N)>b%T64|;B(-34Gi4(_8d_V#OSFtCth%FgOPB4^q
z9Viso?!ToMblDcVy|%#8ZcAIXz;;_;dr_bVrAsfmz1Y%jDWxp!yY2ftlExazvMePb
z`1lTqh-c=Rd7jVnXsr3^ndfo8W!WKv`KPBC496Md(tBWa{ap{<bm@-`lj@6!mG_BN
zM*aH#-TBPNuDa*Jj=mjTk)+zRHx?fYC!6ddbw!2Yf~F?1Z$;*>OePnZzAE*v^h@e^
zx}OXEv%=7NeM^JbVpQH>5Pw(@KmY**5I_I{1Q0*~0R#|OZ~{|4V@;#gYCL34hWCuB
zgM-1)w#dGCI2nmW6J4>P{WI58_<MuC{$NwTucIs2WSY5yscCIPeUn&Box`T4&hGx;
zreJSVcTay)_dr)ylfS3CufNwP);F29ZyhX@etU1{Hec_qrmewU>obSykBq5_WO!`c
z)YKo`DGrr6Ttj_}Ku_K0Yw?2qw>7RZxa!|2@7Xh<gaubGWEcSi5I_I{1Q0*~0R#|0
z009I_7RZSUymiHI-x7VJV^#XQ{AUcxGbJB~9T7kP0R#|0009ILKmY**5I|u52&^$y
z8n)RiHkaArFk9_SHcPwsWB0UrT`rg1xz1u~w^&4WbDkq;eeQ+tx>sHBwmF_7&_6dI
z;|ltpOMi|)aTqFBt`yG^tX#SBx%mS}P7pu<0R#|0009ILKmdWID=@XQqNdU9HXiCJ
z&@+B>B$158Cv*F*XI54g>mQ%lC)-7Sy0^XTE1%P|y?96Y=>rw$E5AJ+8=e?SUZ}<s
zq8oqSVMT}e&dOztyWK`ZBs#2KnYdz9JUu@co=C=0Kj(GG*Gg(FSXOxtTr1niB6*IW
zQkF$~j^M}d{n{mW$L<>BIRdG|f&c;tAb<b@2q1s}0tg_0z@itBagHi2E^u4xjbDGu
z!;cv2WwFyk6)t)J3Wxv#2q1s}0tg_000IagfWQ(K$a#+7{lBz~JofW$`y9^^bm_d>
z#lH{hIf81LP<dV+YOC^R<&Vk>%JcO<Tz1d0ORD~N*>RP7tNz_+s%$oVPyBbZmd@jg
z^%@!QO(aJK2NG($b6AZgBYPvF_sO8O;OY~uebdU+sFOFWN%gHs@6@LzWOtR`SS*>C
zxkkzDRWoykY?qo+Mx88_Ue}YR$v4p7)7dS~xh>e;uZ=+|vo@ofj<&I1jfSJiyv{b-
zM(MIuot$N>Kdy$8>acIt)Z@ds+r==N+L3$J1F`-3w7PA5>d-_ylAN6G2$Vk-r*@FJ
zcF+&m>DxLu6K^nG`aw--pu2O&K(J}8DWkH!$&}gDBKjZsm1T_=S!e5iRN&~DW~6T+
z#~s?aqNZ`p8sl{bb#16OHmYVCPwJlyg<4H&OKx*1+VLu#p-d`WBhmDV)_iw(Or53L
zyXAx>qmirB;UYU7N!tjhqiRmO(zT6Qt6bENvte0d=bGa6lj6|c->Dx~9$HnO>M?h1
zXI_nLSL0)m)SFvZH@cO}XR9UMKH2&z$}Mv;>svH?xWYA}Z{}iT+HAdN6DCYex)zYv
zz*DCdO+CB2NjCS+<#S&+Wxlh?rZ1d%t5<BVTh_R4opDzRIMZ`4p<XeeMu*hAAM0~a
z^ER%Hie|Z9q-?pauC}JpZa3cG)mNIjH?Af|`o)zcs#TeORb9@pO&KWt9@*+D{c7Bs
zdjP$2!OL+fd$U${(PolLx;dN}DclfD#jn?y>(H#H_K$=k(d<^;yRKIq9}N$w!yS_|
za-iF5uJ?TK%JGP(pILuj6#Jb}?0tV-^Rk-8jT?<O?9jD^?cqe?U@Sf?GL`zp9v;oK
zhyojG3bl&@`{lNd5-z?4kD+TIC0&Z=s??#lnk>>LimA@15nXL+zlHk>j9#tfyDOYX
zitOn=0_YDAn}`oh{}Rz{n5&%(6#3k6xW5~A)GTXMHx~chP@uN7-xLKl)xPzFs+vZp
z(|F@1U9*!PC*|kJq0~_1=_^d`y6QrWEq9l)+gX0{quj)XV&kG7XZsYEeTVf==Ip1d
z@=!Q3Dw|1C9UD)IUq-VXOExHNU+o&FJB%FJT^$|}zM}=U_KM#q@&ePVhI49R_S5yM
z2{kE`i80z|X~n5sioH)#JNU)0^Alsm4pHpFnL5PWINCe1*tKv|^|HoGoW<LDZfnt+
zc<$O|JV%h4OJI>cM<8yl9p{Oc*Pkn1PC8Y*oVZfF<UB`UNREEP_wtK>pB{JcDTDHq
z*n<TD1Q0*~0R#|0009ILKmY**7LdSNW98P>a>zl8!)mixoKB~AurnG-4vZ!vW8!OD
z84j{qS}m<kQK-~+{n~Q`&0RNsVvT?IN91z^M&*YF@rMNg1Q0*~0R#|0009ILKmY**
z7NUTua%<fj(E(8`*`0rS+`(t>S(7~V>u-OWaR(P-g_CCl5I_I{1Q0*~0R#|0009Kb
z7FZ@zX#EBHzw<uNb?<xYFBo^QY)29xfB*srAb<b@2q1s}0tg_m5Cv*vrnR`hX@kH1
z>1_}HemDIE7GhPBX9N&H009ILKmY**5I_I{1j-hul_|8iz;)m5-uup9f9Wms7bx42
z1PCC200IagfB*srAb<b@2rNW_I+<xLE|6?^@{>RQdHhuR3oOK{B+m#SfB*srAb<b@
z2q1s}0tl2Xkm?$s#Rc9q`l*Xw+IUfzxIo#CBtQTG1Q0*~0R#|0009ILKwu#XESH(q
z;sU3<{MV|-kDmw-7g&f@NuCiv009ILKmY**5I_I{1P~}&V1-Pf#Rcvge);2fyzR?h
zVtj$J9Z7%y0tg_000IagfB*srAb`L^6i9Uq(BcAHJYTfk`pxqr^cPr&RY{%^KmY**
z5I_I{1Q0*~0R#{zTVSP3p~VG8Z#(h5z5loIYWfS5?MMOy5I_I{1Q0*~0R#|0009IR
zqJSbZt;Gd?c;8RI_{dAIJW79og;<s3836<kKmY**5I_I{1Q0*~fwBdTlPR>gz&F40
zr4Rr4taH9We}S?cNq_(X2q1s}0tg_000IagfWSf&I9_I2iwm4`$@<oZuYK<C=`XMl
ztCBn;fB*srAb<b@2q1s}0tg^bw!jH8g%%h1ZvExGuY2U2m*_80wj&7;KmY**5I_I{
z1Q0*~0R#|Ohyo|dOlxt053l^F?FZfuf44z#7*-nh8I(7yT)FbO<(7s=YVWWA;j(*{
zT~h6@`rpcbsN8GZXEYhUC;mHHOXu;+8h5*mhDdZ+y)tpdXe6l)h9{D-$k951IL@r+
zkmnp6@J%E~1_u&qymMHMCL?<zYCJJ$Ex7swzp||HB5Q%{>JHVXCK8cYv^N$@P9I0V
z?zn5;w6dnrYBk=lCK=u{s;1AR-(%()#ortB^#_~!eH~rFCezFvOigPW>YK!3>KryT
zb$0g$HwAl}x_kPYx(B+tn*2T8ef_;YvA)T)eQT!7`cs;kw)b{!^Y!j(+8W%|<QwSk
z>FgHg+!pNaU!OU!ERZ~Se{iQbYUaq=#(p&#jwWZ>C~>!{le28~$JKCB9rn$ddVDx{
zyC{%$+FtcQY`;FOZd;!^G!c&^CodHBDe7aUigu8>cF^Pb3gHc=OFyUy4Rm+z7zj44
zHDy%RH<>b<S{mwGoDItwJJ%F%L%p$4b-MASepq>E=Zc!fHEWF59n`g&)TVT6Nd2>+
zP&-L&$!#Dxby&D{WK!vxh2~YXuDioy>MRxA9gB~JM<Z9M!$o#FlGYGVN7bB`q-zbc
zR<fv(&gHXQgmmv}$+2CHk3~{%?wq>OtzL0xReepP+ikqIGq09(J7w!jw{rPxHK*Gr
zTZcufKxTE;H){59g=<OQ*r%@)d4<otSmZYI)Tu>-*PTZ;`t5bg8rQ8e?n<d-uJZ}?
ziU~D3q~`rtpCggCacxwzuk|8j%XM|NHH~(=@dmG6THPC06C?fNq7Y4Fob{{fa*mz3
zj`r&J$QqY^A<a90?k!XJN}9^vtTj}$Zc|A&hZ7@(YtK~tQk%Kr&w6VANH`MBZq>bg
zde!mK@Q^y(F*zd#y1nLl^9HXRkBIu2^-^E#a$f8Wd|mUhn#PSAjW_JjwT12BMB-p9
zJ}feo`o$g|&9sOD8)^!*ivs)QwvH06q6LqkYak_EQ|GGGp}3kX(k6<j&ZrSxZEC+j
z`;y_Y@mbniS2&Rr+0*^@)*m1?5g(fVZJ^sQS34Of@+<#vFY-HTmNlvyi~rg!P+Qt3
z!2+9V-+Dq-O{3Fkym6DR*~yQS@^j=+I4M4Lq_07_>#7Siw%lFHZfE()k8%?mij9kU
z%>P)aHQwwytba0RKV6lF!jVzgOp@x@crr2jv1EhN_SM>)?l4`kA@O-{K=_Up*xD<8
zqsR+PuNuy&h1pNnt0vT>Or|Dg`{a<?rP%u<wSzwvO-zi<@<vGQQS8E*+F@=S?HyU{
zTDYltS>q+n;_W=QwP;N|ckQyNofWB%GKYFnt$T1V7}^%u7f&_o#O6pM8H-OATv?gh
zz6<V?ZQ#?#%>Le)<*sFx0~KiM+vBm}iJ{~)Q_h82e&DMt_JOb9c?PWoS67Mq%UXG_
zI^{E_Zt4!13uwt!o10v&sVL?ocgP}1oBVfQ{>S#2C&>AnroCDFBV(ei&%B}w7Ez3o
zWLdPhz;$1H;`>jWInXYjBUoV=F)aUS-LrM?t@&8pwyI}q_Eg?b^`RB#R9+x99Hr&0
z1E<zBwzL>;QgzqU%x9L&?{4j<Gji?HmsxFNd2ab>b?vF}$G0*+MIF04<rx>Lyi*tZ
zAdq)y@g-Bgql?}*2h;<R?63E{bNNTZkuh<d&w1-<ZE%~YU~y9)o@Mj&`!>JHXVUBM
zQ9^k)<cZwiM(Pu7Lc2kq{(Kwi=?!*n>P`ha^!G2?4lPZ+!BDU_*zFJY<%L_)M-)v=
zcXyvn*3;b-2zCWUsHQh4A}*c&e(}Bvu3px-%U=AFoM}|)qia{>oRy~^I_2aVc@uT*
zKHb|xel|?qs;8Ur^pC3xy+Nk8X5S%2?>6NAvj=X9-e>y6ee%Aj{`X;S1JT#v^nIo-
zfBJW!o?6RNDyEXU*_5}J8yc52?pRk`c>3U)?(~XNuY2=Jsf+iG=j6$XUnG0Q=a$UH
zM<&qLG|uL$?T{s&^A}sT>avM-<=5UdM^IIn<IY}}p-4QD)Q4sCpSi?GvRO6-A_;L{
zI62GKjz~N?5)i>V?R~C0=q6PJSK<XWbVOnW)^>%X`zFHs3LQ!QLc2H?Ewsr$F`Ar+
z7uu441=8j0wYWL)ubMlqtZ#k#CakrYQ?6ZeLh5$pt&zM|+!fiY4owc_wBzi$RkO9^
z>@J7Zmi5VxZfh1dq{)dQ_Yir%%VvIb(%w<8MOAM)aqiFOvZ}Lu`pV9(J^3hpt#R#}
zk4t^jzu~mJmZSShBzuw4tvr6VwxiqUuo_QJ`lH)=^6pV{e=V6V43ADsUoi5vWdqp7
z_UcS*k4MJBaq)e}ET3OYbG1A10Z4uiRXD2hY6M4)%J*6~TzE<<BKvpZ{h9y0R{C>I
z&PVO^s?!R!pq$S=x$P&PH2*HBz$tQWg9?A7*FL}%{<x}ruT$`|>=FD{o~s$iSV*6$
zMrVze`t~GZqZ3JW#s`1hue0>0^ckN)v`b(KAL9F>;qk;sY_{*`d_&2|0d>YrkuD3p
zF>%2bw-Wx?g#3;$zY4Xi^v5QKM&{Tj@6uk%ZA!7bo^tLq^1u4ad{j@@|KM~BD)8l>
zwyh;oQvGM&{QH;8QFEHHY=6`DFj`}r?G{G+rg8Q=nAG9KyGnNhGo7g5{foH0UnOtx
zwYWgnSN`zVza4E|&G-UGDe%Ez5I_I{1Q0*~0R#|0009ILnBM{?%j{`!0oSs3^!(z_
z+lLrmV18E`xkCT}1Q0*~0R#|0009ILK;S3|G|J;>ae=;;hbOLj`Hy?)FL0D}ISc{_
zAb<b@2q1s}0tg_000Q${;1roXEiUkrvA;R%rE|8NNq>R)U1{VF0R#|0009ILKmY**
z5I_Kdqa?6e9!HA{Jlg-~<;u3J*U?|#DCu$-1Q0*~0R#|0009ILKmY**=C{D9GJ9HF
zz`N|;XZ|p->p}Vp%<oDgcL*SW00IagfB*srAb<b@2plDW)8uiqxWIvnZ}m;tEgz@9
zz){lWFbE)k00IagfB*srAb<b@2+VJR(`ELwxWJ(wgkJdJr~VM7zrg&iG;)Uk0tg_0
z00IagfB*srAb`M85;#L1M~e$Q9R0`lja2{p8T1!8O1c~d0R#|0009ILKmY**5I_Kd
z`7Q7|nLRBoa9QMMzx=?z{NF+P3(W6IBX<ZOfB*srAb<b@2q1s}0tg%>f!E99XmJ7S
z)ZcV}u-W<ghT5+hjx)FnwJU1^%idG{WYu@8R#fh&c$@JN!?OmL(zEiKhJRl1e=CB^
z6ZK!IKcg<3&db!=vuYYIvKy!RBGF;>%FdmG1HOsm$Y8I!H?Af|`eXamXkxHmjfSJi
zLH|fN673u=ut$r(H|XmRHg$Fff;*c`B^}1p)YIK$DsV7U(^^ydjHdNXrp!rAEmPq$
zYZ?!3G#*-=o7L^%MB-p9KJ1UH!)i1c36D-^cp#z1x2lta0d-VOs>8ly`fLSKtevF*
z1$NamW*l5!paSV~i<L<&OE{f7QN|0_)HDulG*0a=w~Vuv?3}|c*<qEZWh!K<Y1}7@
zkSMtbz3Ktc&Wcsf+2t2v`k-YMBb%ya%F|raxJwj7Ex91td!s<@pOq=WKzHYkfthcV
z0x7h1);U~O3B>NA4w}lXgW#3p5%G>M@)kL>{5qIEXjvu5rfQj*e0^=>RHf5+D41Ib
z@**YQ>_g#XBo@`Ew6|p6P;6Ws%w7=sC&$(F8zeW~n&Op`yK^Zg(U&tf^{nsyR9;gT
zy6Nke%&w?J-|K1`Ri|-kqU@p<DywOh>dVb$!9pH(samGipCR5uq6`<6QHDafZ$6yd
zmz(dFsZFQXH0~GKy}Fd__Noar*{fbLp(b>{Tyi~|%F1{C5lbz=jCA7Sby`hhSd?U6
zDJAKO4T<aTfOtQR7Q%mBS%uIYtknGLle8ENm2YZnX))fUCc}G1Gw<6zHIWc+^h7#)
z+D~U>GS=_w=n86|CA5v=9oJCbBo>prf_8TI2R8+Ko4R}Yo4N<Ox|;kw-F^MNKC!;Z
zw0&#lV^22i_TJ8IzTRC;TZ6lrd;|SGo!wL3Rzd2XLE0M|Rky40u}C_H+B+z_DxK%N
z-E6a%=Iu7~XnNDUopY}-*$jwl$y#&iAM-L-(M-1W9|WzlWm><JmSyb|PH7+Ww7o@E
z*O#8v)aO&}w{Fg7R!ccq%^W6&R$ruCSZ(i?sh)K;jWN6NP+jhuEGHuxM=I6ka6*2z
z&iS~Lvv*tB+0H#=IYp2u<u9J;{D^kqJh!It5^*~aDW^mQT1soC9J74f$tm*;p|T6n
zGS%9W&i5rH<U8{wFW79%<@iq@sKg9s_ivf%TAOY<l_g}jR~;V>52?c)lhci;0QvfI
zvR>ejB^IJkO7TuOr}THi^yj;x?}T;b6sN!;ODxWG%KUdi>)EBZsOf_gsFrgNs~lzL
zUi{iLG|78<EiUl6rWboZbHUzD`U^-E76cGL009ILKmY**5I_I{1QxwOvn-(&7x>H{
z`drU``Pa`77g+T5P5}`>009ILKmY**5I_I{1Q3t{Ci$Yp1x~wuxc%1WuXu^LfK*{Y
z009ILKmY**5I_I{1Q0-A(F?4RCDh^qANu3^4}|}Fmz%i2qOW%fhyVfzAb<b@2q1s}
z0tg_0fD|}WzG!iQyFd8(51kmY{5x?0sltK)0tg_000IagfB*srAb`N47dT6nP>Tz6
zJ$nB2FP-zWow&fFuXhTF00IagfB*srAb<b@2q1uf6gXSHXmNq7YJPgtpLa#>Aub?Q
zSP(z}0R#|0009ILKmY**5LomA=g1Ojae>eO=HlP}WZlh=6Bk(Y^-cj1KmY**5I_I{
z1Q0*~0R#|`0&C@q78ls@(x-p_?=Nn>pSXZjVL<=^1Q0*~0R#|0009ILKw!}ew8#=_
zae;x~C7ycx1Fv6BTwu}HI|W1l0R#|0009ILKmY**5I{f*oGV|nxIj31*?<1{d*+`L
z7mz9}2q1s}0tg_000IagfB*srEP8=;vV>Y(;L=~8cK#!)ulpr&fkj{M6c7Of5I_I{
z1Q0*~0R#|000AkmUcP8?f$jIc)N%TIdaT3+qzVfH2q1s}0tg_000IagfB*uEUcf9%
zsKo_7W2-!S`0~#W5f@nW^-cj1KmY**5I_I{1Q0*~0R#|`0<H2ziwivd;&bPAzWCmM
zATA(PSP(z}0R#|0009ILKmY**5LomAZL)+~T;S3(uKBy4KlY}#5EoeV^-cj1KmY**
z5I_I{1Q0*~0R#|`0v7qA#RZoA)8F3m;?BMn;sR2I1px#QKmY**5I_I{1Q0*~fkiK1
zl_k{T0w<jI{~dU=_w@6K3oQD2r+^3`fB*srAb<b@2q1s}0tiR}n|#sY0vk5J^QxY+
z|NLFz0#bzq0R#|0009ILKmY**5I_KdMK55NCDh^qZ(RS*AARwRbKgf?VA0n*1w;S=
z1Q0*~0R#|0009ILKtKvO<ck&;_~9-8_JLn~%|6v2)*WAUi(%P^t6!<^uDV6pzVfk^
zXE!8Qd}BrP@}2ef)cv(?r1q1wC)OOO{CvgFjDIn1HXM-0IkIJ{Cs5P4-)cOhM54p$
zm7O~W2YeIBk->q48s8p|?Tw78iNSs~8jdDY>$a+sgPHZ>pELLE^!EmR{lTVz?#>+p
z!KTjcKyYW1sm#NgntHmMOfwH|YFcYb=f$*MY!_J+d656i=E&4CW%t)K?s6KZ)R`sf
zitJT~CWmI0DSNK$E}Q2rN_OWwqx=$NcPw0nmZ_nRn#M`D@z9!?x$YcRqshqLh#H?!
z75$Ur>R@MLdpt50j_ayJmt<3>7=@}rw_9ET26K;`Umjh;!UYnQB99;|XF7YLZg%);
z8e^iAb!C-u`Uu%-(q$lYcm<q3=;4$to494lazRbwC2r%?CFPW<U`c|9Rg$vv-!c{6
zSkpK$XJec4w$?O;MalN%maI26s%}@~W06E65{pi^$?U3h;qrE~%~H6$-L!U?J(|9J
zc{}H}JzbKPskP>s#*6I6slL3tt9#>WVx&K|U(Mz`b0x`STfc{OwoL1H(z2{wkaSnC
zUj2T#xz+X-SzTXxR#O@894?SmOF3E1943c$_N;1qw@me{6YpR9jQ4L&F*S}<s?FiV
z$Y8H}KzI-Pk_EEeR(7^?4_QtTWJ-BOn$C~7BAt3(P2-Lh<J6|ycG9QjHty*p=^|*G
zFPJ6w+IG!iI=Mc(+D^IcBD<@|Tzg5G3tl-M5v^MD)sDNd#LP`6pF4BeU0bG{UU790
za%08i{3GE=v~xJW5onn_zr;+=ILzFc%_PaM@sm6?joU=NH<py|-1^>7UT#azW6RV!
zcTMAf)i|}gV77W=vE=lXHs^YkflTf2hD`Qm`ShjVRco2rWk`3?((jhrHnp9_HOp1g
z*e7zkYwq02oM~4q{h`k*KeOpW6;Mr;J~ywKeOsnN&YH%E_)Tz4!K|hlNxtl0Ks^u{
zQuA`1-nG4W6DWSX0$EQd$j!UvEUr~rPQ;~Zt)t-YiHvE%6X&$v^d8>B$bXsHZkamE
zE*i5i?<v8&K>JAN)KgAQXKfmVe5cz+n=MT$E>ZfspMs>R0~Kr%?vh$^IwRWqE_1XJ
zWwpIqrp~kq*)=mR6Y_)6bSv(T#mB;<k*n0<?(mqJ`K2p&a23yJk%Q>-nc6M4!RDS(
zv{i$prg4MFra2cj=M0)<YNfM`taT30ksYx^%aplI+y{zJuNTeCLiUs5w3*C=K0~@)
z?6b5(nMAjnR<r3N<>yehV=i50_ZD#<@09oQT3q07t?m;7?>p&T^cOg?2nVSVKmY**
z5I_I{1Q0*~0R#|OAObF#Pc1HR@WO+8KlX$B?jbI)Kx&U{B7gt_2q1s}0tg_000Iag
zaAX2*nOutteE3)P|NOQ0V=>|aM}|sj1Q0*~0R#|0009ILKmY**7KngH=2MFcyubOK
z|9s*Pe)0-&fdx`~WD@}d5I_I{1Q0*~0R#|00D&VD@XF*`T%i6PmzpkZ3;&w9z>%Sn
z8UX|lKmY**5I_I{1Q0*~fdwMaF7v6y1<v1n>w&)2r>n#T7D(-pO#~1?009ILKmY**
z5I_I{1ddGLJegdJ3#`8K{{QYg`#)-k3mh3LsS!W`0R#|0009ILKmY**5Lh4rZ;<)a
z;sU2Ub>Bm~@A&Ks#03^e?U79c5I_I{1Q0*~0R#|0009J!OkjgduEhnGUFWua`}N^3
z6Bjr#R8k{=00IagfB*srAb<b@2q3UP1kRWF)ZzkX-)+Bs)lWY555xr)NbQkL1Q0*~
z0R#|0009ILKmY**j!a;qOs>TRPN_fRPd@KkUr$`%$WTd*00IagfB*srAb<b@2q1vK
z0ui`C=2MFc{PkCV{^n%Iwg_>71yXxt69EJeKmY**5I_I{1Q0*~fg=;}$>dsG;G5A~
zJO0M9;xys{M}|sj1Q0*~0R#|0009ILKmY**7KlKH%%>I?`2FxH?;U%fZGgDI0;xT+
zi2wo!Ab<b@2q1s}0tg_0z>x{~WpXVp@a7XO^^dGy{W;<SM}|sj1Q0*~0R#|0009IL
zKmY**7KlJV=2MFc{O(5kkG4JhK$y6|0;xT+i2wo!Ab<b@2q1s}0tg_0z>x_AWpXVp
z@cxZGy<adr{UULJBSR%M0tg_000IagfB*srAb<b@3q&9!^QpxJKJ`zHAHDc}%im61
zV1d*g*+c*V1Q0*~0R#|0009ILK;Xy(Hp%2#T;Pv)eDTz;jlJP<;sQs8N@@fUKmY**
z5I_I{1Q0*~0R$F^z-F0GEiQ0%-2B_ey?_6G;sOh#_Q)mz2q1s}0tg_000IagfB*tV
zCeSI9YjJ@StJd%N?N`6JmAJr>p^_Q_1Q0*~0R#|0009ILKmdUSBCti~Q;Q2kt%lFO
z-F;G!xWEFbJ+g@a0tg_000IagfB*srAb`M;32c?gwYb0|br+o1{I19EX%Op{*F0uW
zE?xQIhVQR<X+_8KX#LyjzEx+a9TBTp5I_I{1Q0-Az6(s95~^wJS!bN`N20^(m7O~W
z2YeIBk->q48t;vbs)@mVH5!g4Q!BQrlX+Xa{JlY6f3T^uI}qI2WSTR%si~*C$&_~x
zQ`1^g`YfjPVxu^-IFYGkYE`hNahu56#yPSk^VvC^chD`R<}97Mgp6f&Y?<l_)HLq5
z8V@Nm^R+!5+Z&mwHketT1E}rWnaSxucju0Q!j#&sd6l6%Y<~W=6oqXCb2djp+U~Du
z+~qV*sWVH|71^r}O%Ba0Q`S4X%jUU@lHED4F!?3O?pU}CEmK1sHI0*Q<DoS(bKN<t
zMw5}f5jCFQfCu|0$JN2k#P)b(EF9OhXI+v_McR&Tx4Z)69XY=|x`c%bBq~MbO}+=F
zvnT3ihp(nFCQ4aXRw<{CkgX<N2118d!0Ce?PT8`FTc#`*)HGh=HcnkqPMHdpBzRaQ
zDLelyQ{jy@jT0p|wp1hQj>X5qqmirB;S0l~6KcWy2j+gq=;}>tafJ?Fa+$P7mX|%z
z)Ha_lE^MM&t}dxs^3oS9p1-{6$vb4pMaoatGUeP*(->|sPL1UjrB6*HBC+U<i$bq@
zAhur}_9fG$(01#XCHvZTtv)ipvj(RRqtCgv^Q`asY^s*2<~P(d?hyGND4y@kF}2@%
z+9`a+Ta&h%mhI`I%$?ort}WstO_%(u#RWdzc;%m0-*Mx|=r1teKkSh|1Q0*~0R#|0
z009ILKmY**j*38qILdTfp#Rg~diX7)t9Ho#0*2!Z2IZNfat;oH00IagfB*srAb<b@
z2q1s}0>@Thjj__O&1SK=%oc~)YHzYx+QlEcr`79nx$Mq$7E8OuBC@nfW=rcY(E7m5
zFWvRRW&a}M0!HO#gZRUO00IagfB*srAb<b@2q1s}0<XS6!dO4hysfs@Z!pxlEWVJ#
z-{CMjgI>Sc;k5_NKD*a$cDSuRuiI*O*g~$s!9*mwZ&V!|49~I53=Vi(txmVoYx9a?
zoh*x{#RdNNr9Zsw?bmL(RX#^xRGv17KP(6!fB*srAb<b@2q1s}0tg_mzy!{z9H=WL
zxFCwPS^S-Tj==t}C)VHf#8tmc#|54=C{Hf1f|FeY5I_I{1Q0*~0R#|0009J+vOsH9
z^R~LuyAlYhM#-i17dU%=&#xc4{a-(revV+wpo}eLOv;V`0tg_000IagfB*srAb`M8
z6qq{Bc%pbz;538boXk<>GXp`V*W+?|Easrk;Wj&*Vl)6xz~(pGtagjf>k9ZRA%E#N
z`orqp@Wg1+H!LP^h$NEna55Gz{v5$6GA~+O;KjjzIr+T*dhh_x5gf&O=THbBfB*sr
zAb<b@2q1s}0tg&q0r?z3DFFwOtxoZG`Z<CxeD=X_nwCHMr*vH4s|Mw($2jAh4gmxZ
zKmY**5I_I{1Q0*~0R+kya8-+r2xUA#km*+-PISCHnbu!mLulXWpS<#)_N1R9xYVFr
zT7FhYfdB#sAb<b@2q1s}0tg_000IWXRI{-`&M?r}Sm*B%4-7c`7Hi1sv6?MbSHSED
zh(`x}mJYkw=5&UFUZ11G?hcjyz(80&DUf<8@|Zx8P1Exfo*?T=iwj(0J#*{3pLzH@
zJV!taMgRc>5I_I{1Q0*~0R#|0VBreL=LkxPLx>WJF%GhEfrf)scR%;nAFNHs1)eu3
z&o5j9a*hB32q1s}0tg_000IagfB*tnffK8m8}&~b$PNc$Ye4Ry^%uD3M;iwnmal#w
z9T)huLHTtyJ^w-g0R#|0009ILKmY**5I_Kd1uJk;b#rZ@xIj>rNQ(>nX8G?XwoSb6
z?diC{lLqC<1zTP+jsOA(Ab<b@2q1s}0tg_0z|s?Ft!mz;?-UR&z6hX@MAG5{TR+|P
z)Ty6T&rHV!o-im+EImR>i~s@%Ab<b@2q1s}0tg_0z(N&h6VnpZl@}M-B+5EHPvLcS
zrmMc=-XBZH1s*pjk1tdS@{Irj2q1s}0tg_000IagfWVRyuq+evACwsv$eE|`GjDsv
zbLzU@kH~onD^|Wo%u^^{SP(z}0R#|0009ILKmY**5IB|sQ-KOO!JpCVO;7M=x7vMf
zpTlCdd+Z^z!{ZH^y-qRJpVMOTx?CMzU(n+&eS*LG)Z~5_OpGQYW8tJ4o=A?g4#ma_
zuPrjsUy)7eIRF>pJcZpS+<E(tryfa-J6NIIYf$c0o<5dU&$$pl009ILKmY**5I_I{
z1Q0-AR)MvZ1IALKBo&7{PvO6P?fj3}pZHCae2$<(c~s0(C|+0)KmY**5I_I{1Q0*~
z0R#|0U>*ycRn_b@>UvDb83<=|h^Q!Kp2D|Xw=Q&1<yXI#jthKQ%u}d*c^(&>tRa8^
z0tg_000IagfB*srAh6U0&Z%xT>Z1a)JSS06(maL1d*A=>&f`uTO~(c96!R1+cP@2c
z%8vj72q1s}0tg_000IagfWT`e&?e>`)OQ6aKJ8$*;t1y{e3Rl^bHeSGNIEX?K`~FE
z^1;`v?3@?@1Q0*~0R#|0009ILKmdWIEntz;4we%ZIMR6v<6n699lL+C`?z#m;C3-j
zp>q4ut^!Jr00IagfB*srAb<b@2q1vKYa?J2lMWioi3-$L9PvDbpWAxY&wo|_%FS|~
z!peqUq~<9U|6@S_0R#|0009ILKmY**5LnOxQ|l{J6aO_grzie%Ijtd^&*m^&Lm{u2
z_|M`pdwou)+3T=6Y<_2lqr(}}4P!S)-}RHMHoL>=a(ld%?7xc4;#Xu-W`aNFDI6S}
z13jFYS26Wc#IwkzG_`2fC&;GVdti0_T@T)L>E<W5{PNw;erJvBFHosmpPHvo{Er0z
z1Q0*~0R#|0009ILKmY**UNr$Z{a`7vn#xywp283O_4SuOaQDq$OUDK7HYj&9Q{k&t
z?Hm{Z1Q0*~0R#|0009ILKmdU<1XfoyH|xe4$o9>sJbLpKMqd8X@8AE?$noj8z{gVa
z6e=GpBa`fk00IagfB*srAb<b@2q1s}0!LfmG%**UJ|>`hbffa9&Qo~kng_o3a=7Bh
z>A1iZsd);OD~@(?I35BBAb<b@2q1s}0tg_000K)?pv-v(E6d#fNaraGzW?oSy6Dgo
z-%Q5^qN#ZbmFN<!D~gQ(0tg_000IagfB*srAb`M86)1Pw!OC(IR2=C%g|~k9#CQF2
z^4xpUae+u`o<b#ZR1r8B0tg_000IagfB*srAb<b@OHZKeNe54=EIY~J%~QBaR)#ho
z!RP;U>4R6*{pug(JcSj?$p+<S@xp=t0tg_000IagfB*srAb`M<5=d0k4>WJ9t@RrW
zwH<y-hs)yio1H<Y%j~dpgv?%#+iwndEl#`3;&cT<?(Ce7d*)aQO&sX5S*>2XCt=K<
z)MfF79R3c6IH@?Z!)p(keRi+i>~LFsUbofmu!UUNlg>4zVWE>+oo=Vs<`vbNy6@NG
z0z*Ie;{}&|`ahkrzd(g@uR(cQys#jE00IagfB*srAb<b@2q1vKd=QZH6qXXGs5qx`
zpstkQf+*Bx@wZEh3w*(F#~ZGHG+CRD3*4C+cW^!woID_a00IagfB*srAb<b@2q3T|
z1@gunoTEF!p2HY-uu-~dae@DM>D!N;wED)@)N=$Y|I?t1i5C_G5I_I{1Q0*~0R#|0
z009IRoWRs^6(@>^0Zua*&dKCmJ{1rOS}XyF&u(_P16H%cB|GQ`+#$2i-C?ua?N*n|
zAIf&npX)AsSlt_*7)|yi!_nbze7I>Kp~ee!+Rr>GFm;@<K$e0|ugB%`Sj<76!)<mr
zEe^9MVDp=8R=dULbp?EukUyKHxt<xwWXU%?7Kug@$#^&!E10G1a|EYI9xX25>99ur
z<?f$6#B&4-uECRG1Q0*~0R#|0009ILKmdWoFCd>IC?&L!dXAu!fP*0G6o03mBe>$e
zXCC_5IV(1&;{xwAC|_0Hx%gQrAp!^>fB*srAb<b@2q1s}0`o+`T`l@J7_<EYO6;;w
z;gad<vgu0fS0GA#yezraU*J#2owE98pS<jH`5Zx2L%^V1y7D~@zYzamK>z^+5I_I{
z1Q0*~0R#}3RbcA%RSk0Z`c<py{5_(ty5H^d`<#xT*>COeioxXFKC{>1cbNknPOr=F
z4Y&d>d-euyt{cAz(KlWGEz&=|$fk7`OS{D~wZ2m3(AeCZ&Y{a`4cUA)huInmi5z+?
zF0<F?bc$?R9X7wS!_nc?^`@We7V{*l&F*lz+#atb`>#TI%Jf|?vMH0@Kt(FMUT-?P
zcB|dz_BkwOyT=|9+4YJk0mM82W~asCb-6mczMw}pCBR(Stq;pS_7{l$|B<n9QVmZe
zM_PwsV};ii$!n2KnPM~>Q|+R$F<lIY-(n4UJyx^DDl+c~h(`x}mJYkw=5&UFUZ11G
z?k+<;mEY7$k&G1Cl+L4Q)F;S>t;Gc{_~)0u|K$C_N!eeZO4)5t?iDi<Trd8?f&c;t
zAb<b@2q1s}0tg_000QL+$X@@Y1c|ETj-|wED&>x)L`hQ55tI^#5Csy$E@a~Zdw>1O
zPptprH!SJ6z^w-5ZsmF9QRUY13eMgLAb<b@2q1s}0tg_000Iaga3lgJRyD8EJxw4x
zj8v_zYHrr8%l6HvJgchNtJ_kz>qCV&W~2T|1KDjt<T3S(fYx8&tcU*jrMB-}|JHO|
z;1+}OYvmT@%gV=&q%5RG009ILKmY**5I_I{1Q0*~fl>uds&1~G5fV79y4k3Y3Fsc(
zs60n((?<nnc}}829=K3kASiRD#RYD<pxX9tzrAyRIxgTdC{HSPDpx4JQghFK2q1s}
z0tg_000IagfB*srEGdDuDlu+D>7zwd<?TP$U<j3E?qAU=@}ut*Fvkf*U4>+QX>oy1
z{vrI*U-ta%Q|Y+C27~g1@<Ao4Y*<otN?{Q|009ILKmY**5I_I{1P~}iz#`@Vs4FKZ
zke^_VoAz*Jxd|%TWR}W{3v3caot~#~^JA~PqrUF>o$0uM+n_wI+^$3vcPSj~g8%{u
zAb<b@2q1s}0tg_0z!DL#E)(-llob-Ni4;bCin(F}Csmf6q`tzE%2#=Dft+~?zrFDf
z6Yu@(-XF_(3aeMVWqO`M@lO^65I_I{1Q0*~0R#|0;MEYA>Znf5NauEECeRD{9CmlW
zYxejZVn#Zz#b)-|omR8Y=?{2pPOHV$VJW@ScD)>~ZN`Lj1y>fD(9LDDTD^8pkxiNT
z=$NOFc?xZocDuJVGZW*&ou_cm4LhoTc1LTE>@QHQIJ9{R9n4htYFz#}CISc`fB*sr
zAb<b@2q1vKLKH~NDp*1Qt9k*>Q@C-<<3GHkV$Hv$;{u84c?y-pLaZtBi~s@%Ab<b@
z2q1s}0tg_0z`PSUv#Qyx8<e16_m%3`YM#QAZn|R6KYri;&U9R0zcx?der771ckPG_
zA%Fk^2q1s}0tg_000IasEP=Dde1iIbK;frcs$biA3jguJFSYGm`RRMpae?Ef=P6WD
zqYx}CaB_<P0tg_000IagfB*srAb>#G0(tWS?wMn$E_46+K2PB{|JAwqi-F($F&!6J
zF+ESAvZ8EB5+Hy80tg_000IagfB*srAh4hW@+SqHBP6h=y4(a+`3dHlli=9TQ`mi=
z=PN5;ICL-_7pR(^r%<U{P*q805kLR|1Q0*~0R#|0009ILC|O{}e1LNW1nR37?L39=
zXsi19mmli=zMQ9U+43iJ^Aw67SP(z}0R#|0009ILKwv=#Os!v*n)t7|IWzH}-S2ez
zJyx?f6!MuJc8}fc^?SW$i_;shxB@}H+tpF}#D6DwJ#LrNVYgW=*?$$8$FIny%v5g7
zQ#jX6s2rD0{w-ozWK)KDePwQ|a9Tq)pUq*mhC*Jm!((xoy*{VY>~&ZjHovpO(cuhb
zTg6=8YM*4aF;C$lnWu37S?~O(M{G|$Df<g7Q<kUaDO|2xuP{^Lg1G*ZNdyo;009IL
zKmY**5I_Kd!xl(QKUhK-ZP{X;r*QCx$G`I&(|dlLjtlIP^Azq<o>v}KZe^yz!){q5
zL;wK<5I_I{1Q0*~0R#|OdIGDfnwxdA5oWvBESuN!6n^pl-FMRY4;!vb#|3(H^AsvQ
zORo|sF#-r6fB*srAb<b@2q1s}0%ZxDCgvj4hXZsE-Yi=X^Ax`D)w+G(?2Laa6&G0f
ztZtq{@dFD22q1s}0tg_000IagfB*suO`yzq1ecY$|6-e`@SMI4%FDl4wlW<Tct$r*
z;mT(gTGf+Z1Q0*~0R#|0009ILKmdUyEs#Gc;9LVdE-N>|Vw|V&@BT6LsgJI?){~A4
zJgJ+faOIOrx;0UF1Q0*~0R#|0009ILKmdV-AyD?DgC{L3JIUgjr?5s=Z0~{9^>;mZ
z)1}XU<>mW5=9;g_c?yln3WNB=f&c;tAb<b@2q1s}0tg_0z>*M{y27XoG;f<a&tMoZ
z7&aOVwZ6<^mjBOt(YBR7pJO<_FBY|(X>WBoopx8N&C%Kw-g8j(Il3I1-M)c=Sntj~
zlZoy7Hf(6^zQW`0>FC}++U*<_Q;J^PdGYqmPWRT!J>8!0#RnqmE=pWJG`3ES9k_7E
z28Y#ebNCzqv%}#JnjNkVr`h8Oh?z-UZbwIl!yWRu9ffAH^tvootEkvoS-DzV;Jojj
zY2NYa)u+q;0!HO&gZRUO00IagfB*srAb<b@2q1s}0t-ywoXUYZEpm|;&`ABLZ4<>h
zQx;8&3%oP*zBh)uUb!h97kI&-ys*FuPIeJM009ILKmY**5I_I{1Q0-Ac7c^u&4#*c
z9|y7HS#oDBF7W!kpE|zqZR0o6ae>DS%44%1iY*8rfB*srAb<b@2q1s}0tg^5j|6O0
z%>%l7eyvZy9Q_5(mL<^Q0(aHEaM$_gH1DCmz&xr~vVs5t2q1s}0tg_000IagfWXlb
znAu<89C>IhF7Upsp(}3vkGL-#7ZCFiFbl!alIJ)GAb<b@2q1s}0tg_000IcS`U0(0
z&D(T+2EubJB13D%-!3gKuyJ>5-_!3~`^$7(;0c5B#H*iW&VT>{2q1s}0tg_000Iag
zfB*tVN1&~`d7FOxfH}efVR6=+c?#b;vA=d*!}1&CJcSi2PZskOiWe3H5I_I{1Q0*~
z0R#|00D&bYFqNp#&DiG`bJ=xd7PI_+-ix*^JDS~|IhL6-_U#+EvZK2{X>*SEMcOv`
z{1a_^ePN%NvCnsv^T3ruJ>$azot;;Vg!k{8oCx@aEknIqwrt(w-*i>1fBeEtfh+sB
z?>e}_>-D(&E}z}pVY9o;a*{rCN66(eyS+h&E9mU-`|QCPGxj+wtyZgBOa|y+p2C|h
z9eV1?^S}P<2R<VE3sflgig^mf3kw1WAb<b@2q1s}0tg_000Ici2Z6Pf14b<jlNX&y
z{itoLINW&(ZT0Jdw|86rJ{=c$R?JhVJUbr>P96|I009ILKmY**5I_I{1Q0;rFa#7a
zFQGBplcQqhxPv+K6h5<c?99(p{q_EIT;Mh_PoZ+#VVspD2q1s}0tg_000IagfB*sr
zAaEoCb}{Fm?tWhD2vD?>z)_f|aP?)X{Wm}T>ErYlIFiaEEdmH2fB*srAb<b@2q1s}
z0`o**?*0Nf^AtY#hxdJYXY*fvpN<RMDds6u?wltjAsYxFfB*srAb<b@2q1s}0thTU
zfi^MkpswG*90NM;sW`%U3jgOn6F1!clhM(1T;PLZo<ik=OAnnABY*$`2q1s}0tg_0
z00IagFfRlwa@xUi!UBgePvLS|(%u8B>+gE-rb}0}UbN}vFMYaM&QoYqzHShISP(z}
z0R#|0009ILKmY**5I|u53)qcfNCG80#Go~^nC1WTUbJoJiejyhMbqK}@u!BrT)Sg@
zO!gNbE+A!C5I_I{1Q0*~0R#|0009ILSP%k^Y7rKwD?ctEy9P|h1s(~te7D}PJ(TV*
z@F9cpp#@QPGKl~J2q1s}0tg_000IagfWRUZxYSrT(A?PQHyCQQZ~61S{7?O;ZOg_5
ze8Xdrs4uXsv)g8|xy%-a*=ldHS=z-Pho#kOvw1Cck3d@~;k5n&yQY+{K6JxfA4>NZ
zc-o*my+~Op76J$$fB*srAb<b@2q1s}0*hGSoXUYZEmTk}j35YXl0l0Lv^-|=uCYJ#
z-gI2xcLwEmix`QbA%Fk^2q1s}0tg_000Iagu*3w!w1xU-4dnO&c1fVc1*)D~Q|EkT
z(vpq~JZ4ZHTVg;I7XbtiKmY**5I_I{1Q0*~frTny69W&HIlzD@s#6wMiwnGT+t`gx
z-;NWA3oO(|K)w+`009ILKmY**5I_I{1eUD8;l%}9!mCS*3;gN&Z&p-&@!S8Ljte|*
zP@Z41niL!X1Q0*~0R#|0009ILKmdV7C2(R@bEB?1L25`sQNWz}2+n<A^Z5SnoW4)4
ztWZK?J_7N=f&c;tAb<b@2q1s}0tg_000Kn>F0K%B2CP~o=M1oA7PI_+-ix*^J7>T^
zLX8jf1$&Fk7;tRoBd~t{nq{wy-u@BUU!X#{SIkEsURV%7009ILKmY**5I_I{1Q0-A
zJ_xL>958Cpg}k6c>PKx`MH%xE<cu%y^YE(hy-!^BU+K8OZDQO(<+k}yaPoiv0tg_0
z00IagfB*srAb`M<60nOg1dZ8_1=<aN(O|$)7+;`ov~|x#-?jWS9T#|7j4z-(y`<bJ
zECL81fB*srAb<b@2q1s}0*gREj3uy27gmtZDpbrezQAf(Ty5OJy5npQp0xU;EpmJT
zqw)@e_``w#0tg_000IagfB*srAb<b@$4DS*tZv>m;Lmmx2+y%tGmBaNKkr4`R%G-7
zQLIyC(X_aL=bL}I_4z%od@em7!QBSs?qgJNPJ;jf2q1s}0tg_000IagfB*tT1^Q&j
zKsTYl91(-C78b~h7NmaEwuuvNktfyS0yST#IrEH5@AyqRF7TKbU!Z7~*oXiE2q1s}
z0tg_000IagfB*vXMd0wp7w8h%@6zG|p@HB2wmUHJ#&lfZNrUp_d?_6HKmY**5I_I{
z1Q0*~0R#|00D(CLTC1A3mC>g_94}{lfd_u@^@E!qa9<|J7pPF0#P|Z@g#`fw5I_I{
z1Q0*~0R#|00D&bc5UnWldH+%-4k+@x|7$(Iz(-I2?Ws5Z^h=epzd(g@kr-b<ys#jE
z00IagfB*srAb<b@2q1t!IRgDMnxLBxV6LG6N{J>^9E<S<I<EiMm-e}x_ow3mw~6ru
zl-tTFIQt@i00IagfB*srAb<b@2q1vKQ4p|KHR}TlB?S(S!uSIA&pZ%#;G*CEC><BL
zQ;aX5+<6pA!yynr009ILKmY**5I_I{1Q0;ra0J@KcmZW}Jg7Lr@daKu)6)FQ=RWoh
zIle&U%1@@o7ZCqrK>z^+5I_I{1Q0*~0R#|0U|tABEAyWB-!sQj$`|d$p7&p3;|pBz
z^Z)qe#iqagiR>>>sZ^xK7ZCqrK>z^+5I_I{1Q0*~0R#|0V37*s4+StsoMBHXfriTb
zgD#ly1vdY2XZKV4)_y!47f@5<3n=O$t$K=u00IagfB*srAb<b@2q1vKu@E?nu>vX&
zBTdCo7+>J(7r*%b-E;ewJ?Xf>6{+zBlq-$}66Zhw0R#|0009ILKmY**5I|rF2;_|y
zFjwz{%DnyO>UeM%;|o+v_1*)k>+gE-rc2k<e$5rUz<)@NFJM&eFo-`a2q1s}0tg_0
z00IagfB*srAn+OqTxL9Opm|%Zq1GV(h?iQ2#~KRxoKCaPVe2qE0v$fH$7gk$gI=G<
zV-E#`0k?H<FcFFF8&wAf=ZYhULoSoY)#3tw`27CK{T*NVuIw*hRGv17KP(6!fB*sr
zAb<b@2q1s}0tg_mzy!{z9H=WLf*^|ZI$1O=E-?B1@Vl?yxz(MH3%p=ZURYoSC%XtB
zfB*srAb<b@2q1s}0tg^5yTHn-W<y=JKY`e>N$#x01$w{qNZ-i)D>{h_NEH?Y5I_I{
z1Q0*~0R#|0009IRnZV4rK(j2N78m$x{dLdo|Jl}er{e-oig5=QS@|gr0tg_000Iag
zfB*srAb<b@i&>zxs(G8PKR^lN3z#H_78jWM*vI`3Jb2sd(s6+&49XLW8H=(ZfB*sr
zAb<b@2q1s}0tg_mxCGj&#VCd4#Rb*~fi5jB@YT+rednyb(b{xe;BkZU_~P=RGzcJo
z00IagfB*srAb<b@2rOa&%Q886L3we3oOueb`G1}FU-j_Uo{{quRwx_AJcZ(g1px#Q
zKmY**5I_I{1Q0*~0R##O3|7c#1dX-XX#_)dSIF(QS<POn!)12Zf&p`fBM>rs{Q*ZX
z6tZ`?eWC2Ie{*&7uRqrF6mI$Z&42ylv!`Dt`wLVk_lkK6#S04p2q1s}0tg_000Iag
zfB*sr%m;zBl>^37A`caZJ5S-2|LywPM?SmmN9nl0vtph?<=OdAaPoiv0tg_000Iag
zfB*srAb<b@hasSdc?pf#4hj`B=Obv6N7cp`IL-CP```V=)~^s3I1Fo&Ab<b@2q1s}
z0tg_000IagFy92`jtk_>Q&_wE<vTWc_pDCG1@08{6e@Slw<3`r1Q0*~0R#|0009IL
zKmY**mW)7~n0HY3eg9ko5>y=FJcXhE`oz@Vy#B$n({X_hh<OT?4=fpL3W@*%2q1s}
z0tg_000IagfWW*Gu!>m+jb%gy>MM?Pp2Djh-PrT_@4o+zbX?$eF;Ag#`@A9{GYBAn
z00IagfB*srAb<b@2rLl+o0xRaSX)+D;Be<D?9#>;cz>e(?Z4@%zLI$gmq;U{m<S+%
z00IagfB*srAb<b@M<Os|p2E6PW(&v;131@X0movVLfJK7dfdTh-*?}R6F&L#(_~zr
zQhCUrJSRpNc<4xoNQ(dh2q1s}0tg_000IagfB*uoj==Gil`VAxzKP_>V4s>uL}Jmz
z$rY9M+*SUOa3q>oWvsO3uJ4V-k_nM7MdnTGFYw3zZNC2l-fR9O;{rzIW`p>{f&c;t
zAb<b@2q1s}0tg_000OVRK*CsW7--(+HyCPbJA54>t3T*5+bwRF+2QoK%-(=2U=Diy
zL8~j^3<TZ&(t91)EH;<f;xJq7O*Tur_~W#;x;;*d!(kW2I!+c%iwpc^<kHW+@q-(F
zE;|tzmB$R?4+{baAb<b@2q1s}0tg_000Ias1OZ!B^FUoTTu@4IK@{sWSu`y!@RnEl
zES4vlCQ|(c8vbe!e^?Me009ILKmY**5I_I{1QxHrwQn|_Xc&;+Qv3btq1}T+wY9Z|
zx?srVaJeiNv)%6QFgvW44zt&0@tcD|yFKJ`T0$LGTPZi4*;~}Po}(}Fjdlr}Y?c|{
zgYWW&6FWCqd;5HozOJNo^Nv^`xT$mJmWdsKZIipa`+D5LK-h74pQC^OhO14(>Ve3R
z+Bs}$H<gpnv_6xve{x(EX@}Ls{$y-itR5c?C-=tUV>v5h<7zydj70bKO(v46+;%V$
z9gZDLhy;7$;{R$~tQ#7M$Hr8#Dl+aH9*&F01H{VqcB|={t4%|r;mDZy`RZ%do8qxi
zRs8dk-QsL&d@PcFj6klqW->N3aru5n{Bmp5tR}+;w~g6`d%9f1TSFJxw(RuuCok?E
zi0!g=Z@tPVn)d0kd24Y2>z-e%?A-nS=jku7c;EDt3;_fXKmY**5I_I{1Q0-AkqYGX
z7bqpXBP7m{8d_Z7&9^tW*IfG^ce=m8dkhWlS)^7J3jqWWKmY**5I_I{1Q3|d0@sZg
zk2egZzQs4x9@>3v!&F0U8Q%eyazA)fzsfK0ef<Lb4&F2o76bUTC)H>;niSu=o3chG
z@umDoGCAJf)|MC=QOClG*0IP?JeG*<O|}lj#@Y@h+H4k!r_JJOiwvvLWF$G+mi}_T
zO@6O0kLDX5i$p~?fC1SpKpZc9w(M8^a-VZeyLCMQW+ch(EISIM_P*K_9v{C@jmt3y
zP3_T%(b4s$(b!N}o-_T^P$Is!Kek_;-aIssNXA5O1-bbe@iuVFw}KWIxcR@HzVV%3
z_|aeJFEF1k5abO31Q0*~0R#|0009ILKmdUP0*BXMz$1^O#RcB=o{xQW!1xU>ae)H9
ztU>?*1Q0*~0R#|0009ILKwv%#<i!O_83IBS$197Z#RY!)w(74K5AFCyIxg^}L3wgM
z7nr;ufB*srAb<b@2q1s}0tg_0K#o9bRr5C8oCI?X_$bo0%k)}Y;MT96XkFLn*qV+D
zeAu9TIOpj6fB*srAb<b@2q1s}0tg_000PHY;F9X*ZE6|!`sGZiAc}IHERGfzc*jk@
zIQzy`7oN*=1jo3NIUNEBAb<b@2q1s}0tg_000KuUaCpxVyg{B;iwoG^{kx_WkNx2V
zo+CKY${;-g2q1s}0tg_000IagfB*uofk64s5p0mT)ZzmFJ^Y0qnQpl06#5Ii26e|N
z5kLR|1Q0*~0R#|0009ILI1+)p{sN`US1C?+zC5KC7x?<_lmF*WlW%$|9T)h9LHWj!
zWQeo~Ab<b@2q1s}0tg_000IagaI6IE)y)G2-8cj##sxOY{AqE4M_>1UfA=r1{BlD&
zF7T8=dFoi@p7S7p00IagfB*srAb<b@2q1vK(Gh5=YWC{_1U8G!WwtoXHcOMu(k}iu
zt*vg4)8cU0#rZCf=hWf?+i!2Z?>~O?=9klPffo$Q3vw$90tg_000IagfB*srAb<b@
z2rLSLl~v99J_VvoK3Og;F7Tc^Zh7Ot^~X)6;{uNwlt&jusVM{k2q1s}0tg_000Iag
zfB*uESioD=Jf!O%Fc}+~xO~4Oez`SjR+Hg_+s16eJzcKht)UBTTXuT-lNWan#CBP`
zw_YV<0v+OSmlhY8il4Ff!=K&Sla32KVNjk}#B3A|0R#|0009ILKmY**5I_KdMJCWz
z-MmfTA0Rx(B8p!p3ADICh5b8$gOB{Kr$MYUu6)rT{;(i`00IagfB*srAb<b@2q3VS
z1P;|38w>-@>b9W)gU@HE^?IFlr`zK*`vXpo+2OYZ&E7!3Vs`kvL66<z@!MVg!NEi%
zx^Gk+9E|u!f@7l>UeR@+XT-B(-{fTI^5M}PdwYDg-aVVt&=&td#53XwB(B(eaKjw;
z<l!>D*DqxZL2VcTt6dvLz}9MU*)3MLwk12jfVM?ctn3;v9T)ig->J9V^y!rs%eX+5
z@==5GobsgdkoX4+0tg_000IagfB*srAb<b@2)srDCs$S4>jr!i$&tZcb#GivjP%F$
ztI@>qm6a`-^?hn05s5_;Cs$1Gnpx!^2}h!dRmMtd?ykMDSTZ3B)FKO|^%vOQc*|X;
z=neOzpCfq8pgi^(6`9i_fB*srAb<b@2q1s}0tg_0KzRbTs^$URFaxFZF%Ty>SDr+R
z3miDnbN1)%er$U>F7Q2r^1br1z}^TTfB*srAb<b@2q1s}0tg`RnhUJ0YWC?O1Vx`C
zSSNF<#RX1(xZ&k*ynIG)Ixg^(L3!#mFAEt!009ILKmY**5I_I{1Q0*~fwBZzs+)cK
z(Fcph1=h<$YjJ^1Z<zYl=P!BX<LS7-3kKzdvQEs-2q1s}0tg_000IagfB*srATXZ=
zR#r9ZBL*U?W|>_rE^xnMo%+_desWnlF7T*9d2~J(hP)ww00IagfB*srAb<b@2q1uf
z!QicG9@0HFP{uq5La$W{YH<Pk>0jLR%?qwRn2rlPVo)Bz7XbtiKmY**5I_I{1Q0*~
z0R-l?KzmiQstXI0GnJw!SDP%G78m%hRm=VBH-GrCbX?$JgYxjaE;*S)009ILKmY**
z5I_I{1Q0-A$qSrU-K^@L4Jb1%V3B}YT;OY;cysV4HBUc~jtekP;gWA$03d(>0tg_0
z00IagfB*srEF6Knc?!K=r`_rH_{{!*(_?n{Z9%g)5U`jXK5x)t_jvqvmtPdlD*kq9
zae*zDe(T$YmX^MBT;NHA^5nuPJ~>4I0R#|0009ILKmY**5I|tb3$#`>Z__<f5T0WZ
zUaQ34>9|1X1O59WvAgbV5GyNIzG6^r7B4IaAb<b@2q1s}0tg_000IasHi0RnqJE%x
zo3YmKH`I0bEgde4*Kc+Poi4M((h)LyJ#N1_;I%mIE{oF@2)PFb6Orh?QFU-|&m7B1
z+O&XHdy~!5F8<iPtuC9@>a~0FHd))PmR76V<*_<E38TzVZLRnYzt&~(g&h74hscn~
zmBVWfntgV!-Ry8%eO|ZK?y!Yi*$mBb?;p-PX(~Tfr`zeZc}2CJA*)vFFL0mZb<X91
zliniZ0>*}`4B`(90tg_000IagfB*srAb`NDBJkEq<MD<eaVO~a`)d#FzP4eip{|U9
z<bxrX!{xGA%yzrG!|bqHI?P_1#cvJ<?e>t%X$f^$ZAWnD=(M)FJx+_mVb^XdZI;YU
z?#xY@`(JCj&CzOecpYAg_iEFydLS~Sb`G1`O}o6|#Li9D-ag-?uPbTYydxF}ZtC2*
zWnxEQ+vG0qz8-fl5O!SN=jh+R!L&Y;vVU@16={dn#QtP#T&x}+4JY@;;$t~0W8-Q(
zoD?_geUpi#Dz_bsM2BMs6C%N$xcI*s7wd*b;;}JRtcr~LhKJ*7A|Y0`w_8ouTx}W}
z4M)br&sUo!!V}4n_M{pON0X-ZOH5fl)9&@Akz{hby{#=VG@_1$6Rl&Bp?EA2+na11
zijB1$Otjf77EhbS)fO36qsd5evMqh!ws>q*l;aYUZ+I*c6<HXNSrW%fpG{<cERsk>
zVo|xzxu)IMtT)LNB11EiWOq(&mU~}q3XhLpsK(Prh)#@-t~ZUwhQjik>7RxY@xA@A
z{i--YX2nDz852_Sr)xyhK3_I(EiUlME0y1QM}Ib%evaT%2IW()O5^9C2q1s}0tg_0
z00IagfB*srAaFPW-PO$le%*rtrNoD{&`yE)jmW|UG8<Z4;NU%P_{`^a*PNP;3p`~|
zo|0Qx5I_I{1Q0*~0R#|0009ILKw#krv{W_gV+Y0K0v)1U)8h-A_nwWl4Yxipo{kIL
zXHf22IHe}12q1s}0tg_000IagfB*srED3=v)#B+BU7vw6#~08)?;*UZ#oy_;z@a-o
z{MhohzvFeOaR-(24ayzjg#`fw5I_I{1Q0*~0R#|0009IF2)wc4xYXE%wPL71xw+OD
zvb#cVx6NwyS{-5pLt8Ll?r;ReFoynsBNz(VJKVldcHDxwZs_YPE;GtA)XKxB&rs{|
zSVJM7(`oiOY+_)EK!?xl@mbyGpx5W|*h9f!z-=x43?kFAYryn#1iyD)7WlzGT=9_x
z<sn0ra*IKEPI*$fMfs@QhXnxy5I_I{1Q0*~0R#|0009JEZGjUiD_e{MJ~0I1V4oNu
zQH)5Ks5rT*(q5Nd*Q@Ro<0g)zMiNYjyquU>ukCws#q_S3RsNB1B$`-dthDCt+8c`{
z<q=MkCDO(h_}<B$mKSfixHCN;!Cwpwf00{R5I_I{1Q0*~0R#|0009IRr@*yuF`j4`
zNY9C&9@;%PR9jnXFqSfuU5BqDWc3F<X1m2Lz880TTxM^;6%gNA`-4_jz!?a-{iT0v
zo%aB|rM<|U2M&9y#p1Af9S$v3fteD@nE_z|PMx5ev_Q;kkULGm?rXfh3-?|)xTWu^
zy`4Rdp-B8Hr|$}Pz%zNJKfHO%#kOr%^=#R*D?08;_8hDb?K)?k!s~C{`J?~)w%wb0
zj$rw5VxB_r!h!$-2q1s}0tg_0z!DR<ZeN8qdz_*6&?R#AxY{y4XP0tIb=bE{*7jNN
ziS(Q1|9wtshP0(VLmcxIGEd=1d-k6GHJhh!gS^CR{RQej*VytuzZ(A+`EWsna+^VU
zOuVolfB*srAb<b@2q1s}0tg_0z_AsuS2Yh9vmwM%0*)0nkw!NhVJT@up;F@tYH@*2
zT+sBtF9beZosJ8<$)LPR`P8v3IA=ou0R#|0009ILKmY**5I|sQ2so;n2Mp!j`*({(
z`nd>7x%t-~xUkxrY?gLg-h2cbrM4CqaBup+^}Y8m|4=$EaF;=OO1W!k)CQ$Q009IL
zKmY**5I_I{1Q0-AUJIOC)$G?r5wx5A%;*aGCy6Rr#ICxI19`jZhi?!izCe~*iwjiR
zFZs?pzV@B%>A1k72IW!ZDY=~m0R#|0009ILKmY**5I_I{1m>%NQq`>QcraUBpm2Wy
zpDdLY7x<sGAH8MIiHZBuae<o+%FW87^R?9E3jqWWKmY**5I_I{1Q0*~fkh<HUe!FL
z>km-IXr~okkyO_|U@|r|aru5n{Bmp5tR}+;w~g6`d%9f1TSFJxw(RuuCok?Ei0!g=
zZ@o&!1UkguE-fzbx|h%V=w~8_wx#0&*BO-Sl=~KuF-1WD0R#|0009ILKmY**5I|tw
z30SI|x9Pv`56`hwY!M0c&k4-2e^`5tpm2YIItil11vab<IR`&|-}9+?3LAcASoxxO
zVL<=^1Q0*~0R#|0009ILSkMB8R#Y??2Ab7vLjwlC-%#s!1g%!L*J1W`SiNRP(B?IJ
z9j<`cXLVZb?ts%D=&)u-!tV;XY@-8#_{DqH^;~?pI@TWxboV)T9CVD0?Y#K%zRgkJ
zLDhHhfxu|LWy4%IsAYTyeput_iFrJ&7Khhr_h`4m`ls(Rn-0|*r#XB+L#@~Av^(7%
zpV=R9ddv>LEok-z0v5Bw=M8%79*^Jd@@F|B{*mC==!I8w9q1YH?ASLs8M=IUbjRKv
zpRIS#CN;FhKM?VZxB`hQHXodmqm1wM4}(JtBVcQ_xa=0IJ5NKmMKo;LHDEd}(DM7M
zKk}pP!QV6}A2n1dw-}V?lqZ#2l+Q2dHvpMO009ILKmY**5I_I{1Q0-A!3dmCS=nM7
z@J%E~2K&@RA`*)xDn#Z_s7tTwRrki##7JXRr9HD(W=(%=zbbY;xuVjZ*)@~gKN5~a
z6RV7s*4*{Iu~;%8j@%+?wEhCozrXU`=YRWkm!+R0xXqwErrajCvmk%~0tg_000Iag
zfB*srAb`Lz6tGt{59mf4D5bwZg-xW<4Kq+m8d0KiWvR5dz^Z-KcYWcPiPxp$0(Tpf
z?<sd5!%}l91Q0*~0R#|0009ILKmY**5ST@vgoz3>k4jXmt!nn^A_PUBBUmR-r^N*}
zJbUTW7qox;jp?|+Ck)C{$|q*Y4yzGB009ILKmY**5I_I{1Q0;rm<g<_ZuaX(C(OIo
zx3*^oSEy*IZuS{UjSH-oMbP2`XMX6yzk2?0cSSlb@T@_3L3#F=6_FDmfB*srAb<b@
z2q1s}0tg_0z|j>@s+#rDgo>5oXI;cVoXjjwsKo^?+q?PBCpHA0Nyi0lHYhhMj~?9&
zaWn)FKmY**5I_I{1Q0*~0R#{zAkbdbJfs^@pp3a2D!d}8?q<J?c@9KAT4i3exWJ$G
z^<4X%mnw$Rae*5R%8kk+1@g)&1Q0*~0R#|0009ILKmY**5IC9w=T$YUx~M=ovqM&h
zh=QsM3zRdJq9{U}EQS^r_~3Vbb?HeT|Iat4;{rDrlpB<Xk7hAB76J$$fB*srAb<b@
z2q1s}0tn0yctdrws_*V!R#@OXnfUPI0v4GYEiUlTTWUx9Px^XgIxfIGg)?f36$l`J
z00IagfB*srAb<b@2pkK6ym<=!j-b`*_BzbI4y)Jf2->`6ufr8E`>al@-5qfH10B}<
zc?!K=r`_rH_{{!*(_?n{Z9%g)5U`jXK5x)t_jvqvmtPdcD*kq9ae-?u-PLCJW#ZO!
zT;NWF@}zR-u_!L*KmY**5I_I{1Q0*~0R#|00D%GmZB@<Nbk7%r=U6IQ#s0d!19R*i
z7H2#|o>hwrT)k%Jdp{p}kJ2F4Rn)&^Xt+weupoc{0tg_000Iaguowm2T2XPlVQ8Rv
zo8RxRJ#@*n4O0zuWeoEb47nUGm&IbX+ua>zht<+y_S!6db1-PPhg?oesKaU-985%_
z`$pBl!MQ$}Yx9j+?M*gIyDc@}n8o6-dL0gJlg%>grfe#AtIgwaIbE)+O~dMe$dKAO
zY-%^{@`e*TH(7i8e3QPeq;>O-SRlBmbLW<c9f56=yS)2)+`&NDae1GkfBy#4`b^6H
z$#GSr9aa<jld*BJdVDmT+#8FJ<*ba2tMPDBl(KI!kyPcjgOTWP>|jD9*b^83SL0&c
z&`3NsrixXOao_N8TumfQ?a_(R(QB?Y4UL8)W8%lFO%vgX<Vbr`jfSI1Q~M>Rte$E2
zdecZUIo{sZmKYjQ$HIx$vB*$7mWb_5whqO{+72e#Y!-{B&Ejf{46D&(BstlZK5$z+
zHY$p7iODxS7Kw@+49Fab<E76gaz7SHBqFh>+~-`=?rYYYWD1d?nMtxcr#8#IuQr9p
z$1hal=_AM@tv8LvhQjik>7RxY@xA@A{i--YX2nDz852;c^1rpxsB46~Q;o2U0pniP
zMrdhwT3g*7r^Vs0=QYAYo2DC~&CzOecpYAgcm6j*Q+vDBwB%c%xV)b)FY#Jj;Orl?
zJfQskxTn(n1;Pg9Q;Lioupoc{0tg_000IagfB*srAb`N(2=r7p5BPOo_?HsT(LyoP
z@fOE)(66Ff9#7XH;INLDjo*kOT_B64#RY!#@QRPzv}1TpIxcXRL3v8KOKxXD009IL
zKmY**5I_I{1Q0*~f!9>v+^S}MfT39MphfJeiyh3^H7736AxbqpzJU459rpA8)pUJ2
zE)X#&_bHLrwA7p&0R#|0009ILKmY**5I_Kd#UQY?T0FL->o-vT<3-s%16$;=boc#b
zA1fy=P%U_;;{u&GefJIHv5kL7jW3{_Z&2<KFDwWkfB*srAb<b@2q1s}0tg^bK;VrP
z$B9u&jJ34}gZLv}j3K)#<aXPvX0O%ZGCOR+fVsmF2${Y9fFl?R**o06P<Hf;xo+s|
zD=#z3Gt|n%r_WI9@K{43pVMjfIc#EdlR$^h?D1LM=AhT-@z_JbV8CrH{R|@0vTMNf
za|Hi9IBwbU!n^*jLHVemO1Z_LJoo>%cR#RkRQVmi$2;pg2jaXYSBGmU*ITPP;Ur`4
z{GTxw$n4B4$vXDNf7a)i=FDb2&aUnC+Pmu*8zm$LL^;$}O4YjysE8{qRKWE_RcKV5
zTJFTrR!1tO(t(b0?NMk8Dn$Z>j{br6jd#~OUX!fHBoLGDD30Tq_h#OFX0zV;&3o@h
zGZLI4XWTMaAOHafKmY;|fB*y_009U<00I!W)B@XBwyhyy(1|!l`spm4bY9E?OOLs2
zQ)ykFGe#%xOkWdZ#d4|gnxz>o3xVwcRxB4SS2xqi%v7PJf#p}O@5|+i1-j>J-7~7p
zFVJ)SPha@gx4v@R?Jv;K{2@dCV1WPxAOHafKmY;|fB*y_0D;e}z@2wAe1S=n5_33<
zhelFO^wD?2TBfp#7?CJ%+8QT@Rr*|9))Y>+6pKE!Hf>(9WXo2~wLi74832F5oCmU-
z^FUBVh2{Ve6fP`r<#Zk1T7J@SY{1kBp41sMzsAaB8HbMb%pc5&(NsP@HaKew$>?Ce
zbtJYBpWzqggx=y_HImQDT?r+nY5UxW!-_nGe<O|eZhhnR7B?=yHhp6$Pa*w=1p*L&
z00bZa0SJ780(Yg^O5QG}X>loUSCfxVIBWSZyY3IFeCK&Tje0k2z)zT0W{NoEDMX&a
z>fIFb6ecUT*yS1Uy|>tvO&@XhUD>oeZ+>;$I^GI5Mz&1)3x2ozOTN-y;H@u-k2NK~
z`=&d%fF%w?&XUvg8x{ya00Izz00bZa0SG_<0uX=z1lB7c215zYl!I#tVYBO~6A<We
zJkt@b<v8?|mgW_##0CCp=0w9i?XRaxae-Y7*+rft$@QK%>OlYk5P$##AOHafKmY;|
zfB*zOI|5Q;D8cx>zmL;O-aG_rxmjP;4@0WvBIt4V=kw-&)&8peI_TB8$-P3AxWLe>
zfjdUh!!MQM0w);q0(qRAa7$o;00bZa0SG_<0uX=z1Rwwb2teRs3+xDnyitS79ejDv
zhIfz}Td$}jwui$KuS-&(jqcSGJE+;Kca#V{pFQq5RpJ6~os^&b-Rb<*rMSQY40*tf
z47eq*KmY;|fB*y_009U<00Izz00bcL2?~&4$lE*Nd~t#0$sIhM3eFQ3ST4GvzkuPM
zQzb62XwSaX@};;~iVGZI$bIAhdF~TDYa9v!5P$##AOHafKmY;|fB*y_uz>|SgQ1jX
zsDY1(bJ?1zx-mF5I1=k$7~2<@QkndMY|N;ZHh-I$+#4Gfx)<WH!w09PwPJiOpwpvz
z`UlMCQnTX|QhuDD;+$e~t~)D?#`i0uUC}`yHlz&{hkFvagM3fdf*TWv(69ZKxWLdK
z{o<b<&Hm@ZrMQ5`5RE)VG8_1Upy?2R00bZa0SG_<0uX=z1Rwx`OCS(#40U^-<|pec
zY!|KI9WhX+d~JpZzSGkkAm;AN69@3UuND0THn}{NxWNDJ8hrFc?jHu0@)U0V3A5$h
z=GW*qED(SI1Rwwb2tWV=5P$##HkQERX11A0gq-eFf-y~|$qdVu#G5i_+Pca~x+-(J
zY{;AyF?hw4Rn?ZvY7W!e#;t>gvvWH$dbF<?9*<hH9YY7w9isz@L|n1bMpwid8lI2G
zQb)Dj_3p@gJTG3?gmiBDR9)94jjtI)UK*KR+O)Viu#!Wvd0y2e&WP|jC)t9|>5^h`
z1~2oXYRRS*;j0|`qlz$@u=2x)cgBauo$Nr)>gktz=cH_QXn4GT@02m;7{f=c$$@ZP
z4j<3J*Tq4H*z;jY=S6K5M|IQURSnA=hQT!Hx-817W^kq@Yn)^XHm6%wn3D|M)<jJ+
zMaA>#$e3w6J2^PB|7bj|^&Xj@kB*N{_Kw93q3`g`PBdmFGFn=(3Nw4>>T>vauD=cr
zI*owP9#+IKuhwXIw$T6BZr6b2xWLgS`A?pEcaPjm9$|vy6hq!1=g28?W@EhpptTTy
z00bZa0SG_<0uX=z1Rwx`jViE>W!oAO#%wV?((e=sncP%?rRTD3Q)ykFGnRJ>>1%?l
zST0pwGmx8bXwmHfRxB4SS2xqi%v7PJf#p}O@5|+i1-j=pSE|xq;Lq<le)k)rpD&ii
z5jYGvOHLEVErA6B5P$##AOHafKmY;|fB*y_0D*N0h`~_8GwHxup8d1ys1p$AaXiBd
z)^Z$rK0DlVs>B6;^Zu5R&h%gZZ7D8rk|8gWC&<Zloi!>!00Izz00bZa0SG_<0uX=z
z1RzjPpkDUD>PV6EB_vqRX;>X95x71WGCUE23yve$={B(v7brgPKR-OZc>Q20E^wTo
zSqdK`$LpO0wnG2{5P$##AOHafKmY;|fB*y_;9p>8W61Q*URZPg?wurpty|U;7HDe>
z8O&Pa0=wLHSK<P<p5R~o%O4+WDa8fOG30IX3OVQh%uoXY5P$##AOHafKmY;|fB*y_
z0D(_IfCNL{NCR8*b6^YI?ui)C7IJPYD{+D7|Ls2e&dlL#DK2n;A@`93<hf7bJa9+|
zKmY;|fB*y_009U<00Izzzy=iP42DvksRVrFqhM>Q`pDf7(CJY<H~T*F98ltRm$?!b
z`1*gnz2ye}?uScpfo_J}OMXPUH{gXplOX^B2tWV=5P$##AOHafKmY=tw7?C)kmCso
z_(^!l*3|Wr9Wp>83XUf%;3t(LCF*dQDsh1yE(FGRfByLsrMN(hA@`7HN$it`#PJ{i
z0SG_<0uX=z1Rwwb2tWV=8%^M=jUmU|gWp$FptiEFu)q!Ok=Gv=2)ojixPWl(*Z17N
z?b*$xxWH1LLWi8*Xx9Smg#ZK~009U<00Izz00bZa0SH`10yQ}Y&9H1qyeV_0t*e}*
zt1_p{hRj(JgI7#hRc*<v%~NPfHqWcN#2FD@=OkOuIbBjL&fsNUR4v)GB7AM0LS2_d
zS=9{Av}BEwOu^=K%L;Rnq1&3MX{M-{REeiw`zvvQf9}2UJtg$aSSc<r!;o|2J7nfE
zvP4rL009U<00Izz00bZa0SG_<0vlPNBN*!Tj5SEsSy-Rt1MPJGp1uQhcAun_*SVaP
zxWMbre=uZqzxb_Yx{htiG0h8Cy+^-cfdB*`009U<00I|V;BJ=P%A^vZZqqcI77yLo
ze6o3ykGYxbs3Iv!ILwKn8sQ{99N}~!Y;v|Oicv)lM<cv2GE&G)9hr1SM(TYgs$_-Y
z#V-rtPN9?)N)l92p*s~6E-Z1&xuM-O(knMrYiaGWEGe?8-`+av9L=PheWR_Ntq1jF
zVd!SQuiuzA_80lRy*bOidEZcMw%6*OKd2vxtG1Pt#`~p#iQTQc$~6b(ryW{%)G169
zbJKM7^klL)mdj^XtjtY2`DBrvW&eDk=(yYFGE<|uxdN?lI8VPjdAcr@&gZfYU6q+O
zMo05bp+Hx5cJi&qZf{LZCNo+3^X;v($=PDMv*=7Er;4qex3pIIS`Y1NO&5#PogE#8
zRNBcV3+>rVDxWLl#)|E!T()Db&>@7wT1Qyv$c#Eu#Y}O&qqO6Wd~TAS$1SbKXf`uN
zn~-puME6%Z8f|_yQz&F|Q*N0Zt%r{7YISSS2Cc4AExfeZEq!}ya(a5u$(QypH9I-E
zt93G$O1j4^{gf)?#|Cl}4n075#cZLNqf+iq$L<aUJg>rAmR^NErun+WuR@w{EF6}2
zU6NM43RiDheice;yP#=`tSFcNt8nQeT=6eLw!!lvEWH)_m@w{=z6iseGT*Lha#)hY
znit_mZCZX23huk4F6m*s6>gBXLi!8-M)#L|B`)yv@BRHFKfe7RKUeB6u$3WCk|f!B
zu|Ec2e-MBG1Rwwb2tWV=5P$##AOL~OR3P3MN|>Gp`fG{5R6-}q@ez4BRLowK{Z)g0
zfgZPgo(=))YF{;eL$AUf_exaa0=ND2SO4O7UYxw96c;$bkQd0~<b+!S3j`nl0SG_<
z0uX=z1Rwwb2tWV=7h7OQFyxIwTqwd&uc#+@&_?&_i5;xk>x#HQgr3v#`~q8g{xCA}
z!Hxr^xWIJ`d5UDn(ny1gedgF71Rwwb2tWV=5P$##AOHafK;SYL=xU?`-aLH={0~g4
z_8a)v`|{lO$J};#?)!bWYeih3kzR%6xWK_{8%9ErlT+^e0s(R(Lmr}kVSxYyAOHaf
zKmY;|fB*y_009U<;3EWX4g3<FE2p8UiDBp;`d33#RHCXX@SM&|3MUD+#YH45%IT&h
z+0m#NQH^MI3YU5}^j8JH-rydg$=!YF2u+g4N27);bA}|)Id*6g15Pt|m9uq2)5NH4
zTPnZyBhW^>T?3ZK5q$aEho>KU|Ix2ClSh~!ImM7SXhwol<cwPe3j`nl0SG_<0uX=z
z1Rwwb2tWV=ms(&O%eFNn3_2U^NI#t`mQK!E2-0J2+f-WD=Zw)QWYgCKS+QKIyk=>d
z)dIUcz>4Lf<?3cSnVBlIG_d^2^?kWqu|W5Ht$Rk5`31hx@GB3ztL^)q+h3re`9p^O
z!2$sYKmY;|fB*y_009U<00N&`fjjSL_yUtCrH64A4~?Xn=%eq3wM=CfF(Ogkv^7o)
ztMs|JtSOvsDHeTdZQ8tI$(F5}Ykz88GXVYqIS+)+u--0-8m}lyrB*p<jJKAbWH6V1
z{*F~yWIXv>Xp)ze8Cwn=o0wFmjz*FTsaS7(ES4M`**lv}s>0w<^1#T<jMY_$_NAuf
z{6v3O!i_kr$Wu7<*7z^~@o&6v+>HwaKNl?LDWw0v0s#m>00LKxz+LHJC1Vm(P9E3f
z<9EwiK1QtjBf<qf2Y5Gaz~AjxW`;QADMX&a&gutQ<S9&6?rxSRGhdyIa5-D%>P^*J
z$Wyq%l4T-KA>Il<^|wO$A$Pa?LATOh;GILKroZ=Uj&%nY1PRZOv*a{!=s&PP00Izz
z00bZa0SG_<0uX=z1R%gLVlb5OOhvesha$ms)M3|ACm_(ad8Q*=OWWurU7A<05*K*n
zXRmd<f9BBDOL2iMFEd+SCQp(i*@{aK0SG_<0uX=z1Rwwb2tWV=5ZGt}Qe!B=_`QdZ
z(@NeP1Z%muUe)DCuI3@QDEsr|BIt43=kw-&Rr^-tBe==Eu9djJ_g{bN@4ngG`X8nK
z0ttq^KprP2NMfU1d$bn<5P$##AOHafKmY;|fB*y_@Tm#x2!_0&h01Mtc{q@F{A2LK
zMfpxyY8NCy6&0PWSF}3FD9}b5;E5g7G{8F%12x*?I#uEV-~9PaUsQH{@rhDgV45M*
zrO1F=1`7lr009U<00Izz00bZa0SG_<0v}I+1Vi2~4CjjrEKeKa>3MLTxWIBzPp5+O
z#08d%uIMjdxMx&}3$#7+4W|3v;!G(n(87@W$N|zqp8I%bjoJ`^00bZa0SG_<0uX=z
z1Rwx`4J6PR45d8d4}8qQ9IUC@Gk-8AMpOCt*x;-!B%_1<){)pke1>0`6MBn#)kr=o
zcO{gRrtM>Es_Mqz*x*R4e_?E2TuNo~3$ihzTH5?=W^!+ASm<7e#||Hyn%0W(xqwa^
z?CBpcpG(b-Pe}Q3eu{I7$+_;VFdE;ljCMr_h1ifbP#o?_<PP#ZT?=kZAVR<PSK<Qu
zU;1GBxBl(OSZRKNH<>MOlBY<9EafcNKvxh=g#ZK~009U<00Izz00bZa0SK%T2sehh
zy$|b?b(UZkt>7IHP^bLr)FPgz{U3W@p6&oKw_Tn%fbVv#=r6Fzg{s5_zV+|pp>g)Z
z=A}G^S3k#WdAIqs%|D_4zybjXKmY;|fB*y_009VG<^qeGgUw7L<aDPJjA=4Wiptv&
zL9jSQr8(s#i)NQMbY15RQ&yt3A%smSTumL@-92E(C+D5sIrV66;7E@>qa5hX%_O6#
zbi_znv*FxCYA}|!4t_1XyWTB`k7ujvn9*%%XtpdUqN3_GgQmTk7B{miILxqYNxUg@
zrmd@-q^mNg%ZAKZ5rbDuSygSxta98oZXG<Fo!gnwqkYBjc+{Hh7&?&d7#&C?;)<0v
zx+2!l@O(U$I;z#>@bSEO9UP_M=k&r#8ehZV-L$wlu#!Wvd0y2e&WP|jC)t9|=@NaN
z7`)7jswJCNgs*b!k1E1s!paXH-WeYrcd`RHtEXS?os+WJq2clVy;H`VV+<d)CI{-j
zI($3>Ul#`*V$X*qofoxL9Mw&WS2Zki7zWd%>#``Tn!%ZttZ|Yl*qm-zVNNo1TN5?S
z6cx{_BV(rR?Bw9g{-g1<)_Y`rJ~}=+**g|DgucT!JJFb#$Y^QBD$MMitNZHk@mzl$
z9CR81p*^gKVP37#@NA)PY;M<p<+woNx(6q=b?A|1@(9gSc#0u!kaOe|Idhr60it;j
zfB*y_009U<00Izz00bZafzOD*HkNH`NEoxl^hm!`C}eU|g&;k(ZJSE#`kb-6Q%GME
zWW{o+@|uC%ghPvN53pjnXt}zXPG+VGEe$Nca(!PeS1iyyx4CeY{sOPu@$}<2ZTjvV
zrTGPThMXm*i9>j|3>FAL00Izz00bZa0SG_<0uX?}6)zwLLkZ8^18aGXA6!Qrb{%yB
z0&SaTc)?oQMz7}%_nKDX0{X8#yztKZ;;p5)z#v0jBu|i&Wblf=?f`%Q1Rwwb2tWV=
z5P$##AOHaftXbeZsRO);3d^Hm&X<s&T+}-pWG#sb%cCd)*9Sv}Cqi(+aRfWv)2hS;
zw$Jt-`^9fRI9rMf^f5F`;bY`D>09%uqaXwz009U<00Izz00bZa0SG|giWb<}7&5)H
z8`j*Dd*{Ij)+xIpDp0p<bq0k%TVu#z)*2Vs<zB8zT;R{1{nLMW`oS~3rMSQk81goG
zh0ZYWgDd)y;^ZL!0SG_<0uX=z1Rwwb2tWV=m#Y8?hP+XTV9n2L&Ch`?w7e%`Ku?Qv
zPpuLcu&%f7f0)b1N^yY}hTKOEkQRb`1efdeN4p>Z0SG_<0uX=z1Rwwb2teTC3v>oU
zDbE}NK5}dXYpVLlN5R%q^^v<Fpwk9>ZuWiTIiPs$E?^}tAph*=Pd@zLPwXni1-3He
zUb2<^h;(0kWb6?F5P$##AOHafKmY;|fB*y_a2X2R5DYn<n1G)gp23>BeiB}?HFf=D
zhYZk&g5wDb_(`QmuRw=;6)JIoKX_=@mh5}6v!%E|Gehnn&E#1Uy9}=sngjs|KmY;|
zfB*y_009U<00I!WxB_2o3_0FT`M!bzwUvEE1!^n%3JcueHhcYXfv}5Mi3>cx=e>8H
zIraT-m*N66Pa#h;6*}bf#f8S+AOHafKmY;|fB*y_009U<00J9SpeBEyqVje`5G+nn
z6^oNBP2mh(*Ez$Km8fk9VN(j%<|#D8vL*4R%$c^Xa+0pfoGu$OXGIKNF=bV?C9^h9
zp()usuj&$KM0lN(Y(eLAi5}75WnNS**|Z{jZJt71mql6C49>J<jgw5l=5)&nbCRLk
zny6`}sF?IB@bqhcB`z@V`<=sgo!<U(DK20zbk4!=kQriZ(5r=JLjVF0fB*y_009U<
o00Izz00b_rKu0jt?HPBFtg{4tmS=sI546+vc=`_1X-@M00Wk9?o&W#<

literal 0
HcmV?d00001

diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/wwwroot/UltimateAuth-Logo.png b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/wwwroot/UltimateAuth-Logo.png
new file mode 100644
index 0000000000000000000000000000000000000000..5b7282f15f1b7e435a8e88356ed2351d1edcc26b
GIT binary patch
literal 14776
zcmeIZi9eL#_b`0T7~J-IN=eosds#wu#vny$luBf+BqZ6X7>uP9EtDk;rL>`<D5A1O
z))d+IeaTW9%gl34-}il=_w)V%@AG?}&#%v?k9)5BT<1FHT<1F1+3u@kD|0^X?c4wW
zzWw`54+FqPg8wHF4mh&((`p_5;quvc!VdstY1V&CaIR4x0Fq$8sj*G){h8iF*H3m_
znV=sLuxqy%IqYbg6M>OpbGzkO9m6QO@$s~%l7HR}w(Xm$9JQMx1yiaj4+S5i+$4@*
zYPY43PVd{lb(67iRYT3ga|%`*Y?=yO$BwxQ@!1M&BYK6p%zpauG*DB!(K4Qywox$E
z=QlUMgu%(BkNhdkefS}uX`}a}zwSXu;jML{AQ1rK_97Sn1`z_JPn3WIfGSM|fZ{_%
z0YDQ_EC8SIkUOF_2>}2x|8L;`mo&x=-|A<6^eNKIEn+@0x_oF!01*2fEEOEyO<pM5
zopHUOWO{-3(YJHUniCo6Bsu0C=5+Mfg|Ezw{E2BcP?#{9PEufw-zHC~5Nt|iL${{Y
zoj~;f@Vl7J^{_bn(VYdEhLc(Zo7D7A<IYQ20%lH|0fqnh9=*Nvtk;1zrlhHgs@oF&
zXbj$A()TX^20*^Wf<GszO(ZaWN|MU`eP&(MoAFcViU9zMQr8sWkovX+{yhsz_gXu!
zfX2B9V(v69lzMu*>rly<wB9UHVy*rX8)&hlr{-w+3Wj9n@sjdP4g#@r47Eu<AQ^Ln
z&go;^zKhU~!QcQza_TPX@zYsbcLos!Kuf1jG<AvBI-W|l<oMjm7&F!xF2H~ihp?E5
zI{)2apX-ZEkYZ<5(NQs4#q@>*H>k97sM|~xyO(Z6&@gXQZV~BY!-2}J&-XO*XB4?F
zNmIv8Lug~fXnItF6A(q3G~b(Kilwm;G)^^|mS~lsTL4Aa_RD<weXE*#JIA~>?ip^V
zId~>~+I3YD0Jj~7wmW*r3aFa|Qr$)#A&ZW1aBT3e|87IKGiN_1wD4*~Gj1VR;GDql
zRuvU4Fpws>$EG2n<x@sjK(W)8j&U<VW+@PY#^&nIL2cQ?LaVzYCU75eK8iIAT-`Yj
z+~}72HV9?^wc*>Bzj5iWG)e9}kpIl2HW@q)5M8!DzVos-dlyPd*VvX2sHJDT_O!$q
zfE@ai|LzYX`4<w-QuoY1WTA7mY)oA7ibT7pZrY#JtDWTGAswyNYFfp4C7@lzrIRgR
za#S_}kiS;rti4;?Wiz#<rfGWuJe+0;ns*XPISKv(2M=CSMgS#k#y98OsYf+0KIeJC
z-4F8D73Rqa=)~Lg?`IKJoscT^){x*Y6gB8h$X&iy?XV31uS{v*l>zr22i}+mN(#BL
z*WRlF(5b6pSI(nHdV8)<ct<1v6Fl!pK`!PKdjg~2kL(Lpa>FuOfBXWe-mY43-AvuF
zn!fskmV+}K7|?PmbIZG{V%d;dU3u2rm(t#I<J6Y%%MkIz>$6Zw;z56P3I12K<ijOD
zSXbr(P^mBW=3NI@_B0Ct8i9Hs+0&Py*y9GW$A13(^(mITWZZd_1xXZvKQ@s({{ik7
zPb<`06%!C6HF6H9@RSGw;C|$<L-vFoiHH3p8vsSS)>j552!bD|7=S3OuQ;<z-NMXv
zUi0jr=ua^%&e~lU?4TA$ME42Cl}QUSPVN98`zM~;0$M!u=ZCseMbXeARuvmfIf?J4
z>Px`so}aw=O?&a&_8$Q7*-Q|;&a#%~!~g81&&CxJfm4=cR^xV!1P%KT+64=YxgcN$
z%Kgb3qPpyTsH!+_8;Nj11AynB6UZpb!Wy2nC7}s57*IL>$LwT$96|6^Fa}VXxga70
zs_8CM`v^GbJ1qdf-;?b^PvMeTJV72TGQl9nwP^0_k3OeeAt$J}c^wT>S=p)$O}qI2
zH0=hh$A~Ow)^fD@|6T0-{k0xnO48m-68qi<@qIg$c=_CHMgQBCh$7F9mU?n|{JhhN
zwaqmZ8zy!R8S4uboN-nNW^kl3WWCj3a>4vV(N<!j!K>O>O5eNg@wLSZMh6@286BLz
z;v?g5nR%zk_jj5AK%1O(Gh*oJoS$1s7L&bLWp?+UCIWL-oSA=pLswfEMJq}IwqYe-
zzV|y>j`uUPGYprkw>vS~+lU8*ps^-BtT>5a%9De_J}gz;`?h5CH|=l4!Fp@|)fbkN
zjp`CV6(Vh^<SZ^i9ATcJA29K3@<Qf@-8*JjGrcl!V=5!@n^M6>jh`7Bg-)pxa2t2o
zCaQ%#q-N?C^=HHg*Eeq}_aAaF#%;(_R}Ub@Mx)X`&CG%6K#FsdFS_yDufpdv|Ej`C
zBqR|f7qcDGzt0#RdOcY!wAB>-dLom!^4`+CBhV4!AxEVsjyll7Lzc*^5|0IPIV(!K
z4^p>|N{Aae8ot{TCQds>Lh`J_I9r$}4bvDy-2(4JT5hegRmBQr7VF_`ED_AnFHY~m
zHX6)o2WV(W&_sWeO8#scw%ruIDY+=996pJyznvvk-#n$G$jKV5Zon_kj|+)KM@5c4
z@TK>EyX?P(#z8{lyKW#|Yg;NbOePm^eZTDgdvgBD_j2sDpe%b_l46CVro`I?eYAa4
z!bztju>5iVYF!4~wKL|3eA|t)k)~+7Lha2A0_`+JlrZemBA^q)O9mD)RLamuh9n-h
zaWlLfH6dQ5qU5A3#z=F=-UaN&&BV8irRJ>VOacvhH1d1HG6zZ}E;sT;WPZ^r(}@8V
zQdEl62-iiUjW2I|cqg8$ix-Y(ZM^H|5i~(CW~v1K)%gofw!g|yGA{w=ugtXY(#9@3
zF<wd=aUx_a98#3H+EB5HO>M+QKA{dHgOZ4k7YjZoR2lE2*9sgNq2zNBXzGbZ@6OI*
zJS6X~57+j8_;oNyY$6H8>MrG|kkDh|$ytdtSbsAFlTr8H*zrF1OS&3v;x>Fg$b<fB
z&)x`(rZgc0S^(WZDlm#twAI9^n4c&|MO)sDhdcW#`}FqfuW2e_{7DGrMZL6N#S(S@
z#maz?$ewTgua$5`hv4vP(`KhXeUbxPIj^^J>Pk{6$LOEfdXy^;edRe8@dlEpNsmtu
z%EJcT35v&b?VwVA{LNu|UhA#avWI{xs;TpGHlWKifb;K~J=o4anT&5rKdYR(Vpwup
z`2%ymU1{ix@66ti4F1b&4U?6d1s-!&Oq{t>ygKuG|LSPB#N(y;b>$l>;ayYX@)9P!
z@DLX_w|?vIcB-b_zI=l&b}Hlr=u%CwdhD__6k5E8NqxHp4olu&ubvUeT3;Dr&WI9K
zGJ@a!{(It(xYGK!tji4#%j?(Iiv_;*X9a7$$hW#y@(XTS=xVpn)@w}BjkiMK8IB>p
zwb)N`QT<(Xg;h*fKa1U9v%3|Zp?rezn_=G{V!%2;^0JYyzFoMI#5mpG+*Z&>FQGhh
zk*51C7hfn#3tJuz-v!@`3Wcx!eKxsxp`q`*@Ri&drXFTF9>v-%bV@rZ24*ka>oC&$
z75eTkBN>}NW<}@u9h9Z}`i;F=sqg6#_g%l;kMpmu>!|2FwPb$8O$b3*=8ULl(;Hm)
znq@|MpRV_88vUZSu`wQI-LBlyJ2KtSabl{e#Ziw$jEDPs?Xc6`zin4@pNcm%>6y?i
zwa(C66T=-E$0zpkCQoH^@*$Wm0^G}_5^4Y6D;+;Lq}z9dU)_j3ZuERAZB2Q;ZS-uZ
z$L$BZm<U-4E)6y8h5SXkqfeZ0T8s6b6)%-+ZeBL>SRPA#H^k@sgNmX*RQeeX$>E`W
zTk7W@XJ69U*L*xwW$_nvQ<jcWNFjHN3JFPhZyixPwD@@_*Qhg0B}O(WyM2FD`q8!D
zY%^38JLVk}5w+>AQuw8f`tQu01B!VYe#?EFS%N-WKrcKS`((;B0`xqXSbpHJnFO{x
zrQ1q?q<`1be~FNUFx#j3e6=|Y-XiQL*+DxreuNu;49UN<%AYOXoQ}Ve9G<ZEQU$s4
zDDZ~{f?)7xU$35GqS0b5Hb1f}YIUKWX#hI82srBR<&_V1vsqySS7UifxW(6p<~$M=
z#vIJdcSh8)Bz+|I&vE+WaY}<zrNZYUu~WQL>pJjmfUis7>tlxE$A_Eh<5hM-$@Scf
zdiN$HxlCmFt)V&5hlC)rS>cS+N255yR__?S6|tdRcJf#i9c?b}m6X(lYu~NlWvtPw
z6+cvsJvh+3G2jVL!rSh(WX`sVvXH!M0rbaNMyb%!XR5KmJqe~;dL?AXith}1Jj%L&
z7z@c!aKiK#^Ic4MrI?uqB+%@#Zm^|j5^yb5WX2}@t{tVKXPJRvt$xPIby*LXrI(9J
z&NeTm%&*h88iOpju{SOsP@aExx$Lrr0duB9ua{8o^l+(QrQ*GR(Q1&m*&QQu=J0a1
zQB1%+JyW`0QsT^&;K858``8Bjq9*;fyXkOzwr1@A&AO6FUp5!RyQf-_Ir6Nc;_k70
zN6*>t{y7H|C)-PP<L*n2x-XL)bqAS8O*oYg$PJTg1?H3nwu5WQaz&|aHCA*{Oj7MX
zkLZ8*V0X^10W;@Mf1CB_8??O(qec%$8?qjK|Gr=8nMT(dF?8Z%?_}lMiu=$R`8>&3
zi=DHo?pqtM&}BB&dS*R<{?fTwfiGDPu3W0PDSqknq0p%ohIszY$|f!XC4EFCpJidc
ztGv(>aboz-W-VO^zYk5IODKcW=}`F6Ob5>TOxSO$58=!-xC7H8pDtWZu&Vgo+7&R;
z+zPeSrYr}%9(NZd4p$h4@7b8=be!KA>3uIK+c#-ra=0LWmTdi@*)aWKMd<2*)wv^Q
zb>nHj4b7d_Vw&-ljZohm8H;HZJI0)vEt4w9%%2e*9f88~#~GrdYe_*%7D+*Ii@&cD
zDAWHSe;bDH-+6*@l)2Wt@#$VCsW*<c-O!w_Tfq2my;qT<%teqax@Wa>i=UvkG)uML
ztmme`THm;uJ0v|3Ba$UenP43-#?kfUj<6%&v$7JuY<zwuvDHVWr|^$XXmNhCb;291
z=97v87T}#Ul~QO`5%8q=W#?-f`?B8-eMg^Li_-v_ief*7E*(hyjNfy6xUqmfDj!f+
zvv+YW=WG*&b-oWXu(tKV!?ShsdY`UzK5^QrJIGJtgGcwt7-Hes!OVi@rI@$Nw)v98
z<-=pqm?CHc3A>K(9`rOQb}|C~2N8@-UJXG2kT?BLPyT;#l7?DzsiSbp=u**21U4TF
zrl99_(?j5Dmr1^gc&Ja%_wX<7^FrJu+!Sww;5>I%CETt@YW|r%mE{&dcA*pWcuI5I
zmFgxb^d9S~2naabBh??yR22&z8pP(GzU1-Yk73BK`1jBH9M-KOvL3(#e+*h$JVKCs
zJ|6z-w<2@7jOSJb<w%U3k@=zU`DdO+NRr#=RQT4QgG3|f#cY8Ner`#0*vu`1qvGdR
zCl4{oD9;9B9`nx@cprD~$ae`{h>phQk63kZ_ZV}m?nf}$8{e9<POcrcjTdtI>((`0
znlQ8u{l(`~p?(MMy?dsu{4142%VOQd@$>iIN++eA)n|-0ny{bzQnP6N=x}&-qH^t|
z(a}vN(251Uv>2gF(hiakce5`}K8yI$aJ>rK<t8#?aW%0(bmxGD?V*JDwxDfU;eV#h
z!V`|=a}#I=5W0GC)JU+rMJI;k!dDxpCso*tiz(r4Vnt1uVPP*znyth7tr?;lPAXTP
zQJ$S}dZJfLG~$DarWAX<Z3&C1w}W5=j7)x0VwTq_9DUmmCFU41t2MdaEfEyRM;}~!
zEO15BV55BF=yTy9#ZkYc$6d*xf^&iWt4-6c$U8siBE{;4?}AR>h|@#nP<KE%Q#L%c
zao*TtIJXc+UmYJx#+>GF)Xv>o*Qu}l(51baY-B{wT5lWZl3L|)S~ZHlJiiTxSEjNo
zFGW&0%qRC9T5mq~sw+SJ6|@hh5=#_Te22|BDQ|-JBJPd!x8Y}BM!eT$S_PRS5h+l(
zX_t4_1)m)7hTi1W0E`_}tYaBr)3@0<y>Ep}E=V1vorhBTo_^Nw)j;Jg$eRfdwg|?1
zFY0TD7fo7$R&W?P5edDrl`-MkVaoI()4=`IbM4AmmX8cQywmR3!kUXGXi6kxf_fH9
zxqRTy&{{%0mgSMiE#|kJ%?b&TGX2wbHK;e7rVfEj!=l#vvut1eMU#3ZX`XQ8t5N}@
z<~8a6`Q7ehw8EnWBEQ@jf(Z%e%RsmPUba*D(#v#UJaU#T9Quy|?<1gfrTO)T&k1qJ
z5m9>o%KCLlVh5zEbUk-sEuqeMezdoL=|VS#qaOO?QX?wn^im8hYtdQIC>Y4#Nkp|p
zKel_}YfnV52FtyVo3uA^3PLZgy3XnL;ysyW9^;Djj`8M43ulac!5Ii{4UMy9c;G;Q
z8qQ#0sl)I9D~6iIU4v$9Xv8T266N$>ja<6klV$yr_yh(@57&8o4XxPP70ho6$+F2n
zHeObt?fY>UO(>dH@2Z<;V`%(RNM1CGy>{<Z9blL555Kg~0Y_p`?9-c^^6SvLhc=^v
z^2~h;#}8%gFDP3TdCU3l?Zs0?f#S71Nd%_$EoQks^H1#@Lf%5a*~nD*YbFjiRv79j
za`x66S&U@ZsaUdmz^FrU)G3SkA8&j?Nuy|XYQ7-%!j<uWc?A1ZmP+v$?aiJy3~-y}
zIl*w{_<FoA`pRV0;m}~{zE`gl*q*0(z)04SLAqO!GOE@ciHu1nRyVybgjZV!H(NQB
za9`c2H|+SYR(+Uy%<|}lk-bQKMvx0;)m1ga>T}OmnA*L0c=5<q+(qcMeft*s;XmQ<
zXdyd2mU`TA&1bfjeSyv8WQtV{&n*T_DJ}Q?fAa+;gFZq!VT<VPZ)Xj6v-7)dB3*%m
zi<%`Gt>*d<bPGIg?c;2Va_SKaI~X@zE|CA+;8YMJqyMS|5%~@86z_YV<vCj?l$`dh
z{V}{5IJ-T6V|-&p;Ki2mTTybFQD%!x&CpgL5(9yQq=^sMd<;!p>3G454Zni7L*wMG
z@@Gw|t43jeZCCpl9n4&cl0pY_iOC3`WQNhp9XAf{wP*7>fMC36V@^#=LPO!J^gEMJ
zOxAcx(iTUqx`%Av4i>g$@wNET<HH!AnqQcrL@yE|3Do?R@Hh&JMM%63a*<#k9J@QA
z2GfHj#s~(tSu@5I1zOPS!<fYr@Hp17Ba*FM_u();S`f7GL+woj>kJK@WXXpb_&DGQ
zlThXVK=;BY&(%#PQV69HC4qJ8Sr*#PodjIvE{_{5WXE7iZH{cudsPy=fk`i)<2pN)
znSZ_w37O+Cg<>Rx65wE;Ay}>rG0biv0UJv=?C}3<?V{3QwoCJXfI&(35KN^*iu6X1
z)s?0A$&V`B1i-pveBwp$|B^}DKq!nTewjmJ<yo9Vx!r>N!9RmN<9FGrj``sX7!#RI
z1ummg#l_(u4~Ck^^FJ9hC#LVqCC^}%wog{Q&v4=d_QTNIA}4&tuv`%Y${NjpfA``r
ztbH=WVJZWlyb+lEWx3;+I7v{FjAAEr;6M-*lYwj`7?^|mlxV<=Du{<~dH&0|8UJ09
zg2~$d64CJgp=4AZF4_W(&Hr8Fl(Rt&$_@M2hr!%=#tbV{o{8snmKo^h1)yh#E8?I4
z<4Hi<aWAKrk99~sLTJzb<kX2?LQ;(1c$2yjm~;PovhD^}58_4bOU9!PSD|TEH9FK|
z|B4gx5h!=n0t71gV2v)mzu1m)pD2gLf%MTl9#?aim>=R^E7v}anDsK)0HqtrrjVK}
zIRPadJ~eSLx-q~xL|51;{vG!%lR6e2DV~ih+FmTe^>w^+DV7*OQ7*%We3za_WNL?D
z?ZBh>=Qczs6wwifr8Lt)EgUJf#ea8`1m!ynssVsGKJJp3{AebuOrREqTZI^Ug(x@U
z<~F$J)I{12>W_rlU8$_Ol5)LX1pg>S4j>tsJn?PF8zpr-afKB8vfXEbI2efs$>jQH
z|Dzye6N!(otOHAZV0Gr?YYghRiIkOYRdXTuF<i!AES3rRv8Ve0&|<FCC+4q2@K-X~
z3~NKu{eBmusorh(Q}vI3WrxL(rWd+&e>sA`Trn>oX5G)Qs_E!ywdcz2h9Q1#Qk$=}
z5agjd=xbN+exx_UfdCh*teXiyvfsP!Jy#$Y<N`pUX4rsJENYjv%M<{Q!0eEjsP`yo
z`d8#pSRfmZ-MEC3R@{{EfU^B3Ul#>^_x4U;Gyr)wdue<~_9geR7u{Q6jZQW&YL78;
z{%byDK=Y+Y5f{mwtuepl)_)3fuSJUXliW9#9Y+AgqLZ&{2cam$&<22{uih<Nk?eyW
zfzfx>{jgA|!j7z7fM+GPP;k04`4=+LuI<g-7(mWB0?UZk^j?R+GGf|`8lLYbRRO?1
z550bBn%eT?CyRz1a<d%gGtjP_$<vn=E*KmOXa!*TyTwwU<r`R;Y{sjcU<Wi%o3`Tk
z%8cYLk|vP8$N^}ULTO)WyrR&qM{wF#%VQWYaTCL(CrJ&gc@CQs-ucuw90}Ts%o3Ld
z^^VU<z~gY^*umX>I)oxW4mr3(vTU2&h{!Bi{dMmE)cUSM{fz5ZR_<d68f=XN)X^!H
z=2(mi{}#rRUJu`wg`E(~zDvI0a8Bbsb?reL6$WJ6;<f9^KVDqfKX+?G4GqzDC4Pdx
zggp%JH=V}<Rm*W$M>(OSYfo~oNfUSy#Df8<JkP@1vjhkl5-^<(fAtA#$dTOn(}H+H
zQuqKRqhuh%m{lr%NN;hRVAY8$%XBtroh7+{;MbFazxIfFS_!McDG8#t*nqQ$=vB`M
zG)>)n1lBgO=0kQ;)ULreST0K++;`HFO6ExuSi056%m!elO2>StOPXp23;F%Oa-f#{
zfFKQ2@_QDd0dM|G7d_rn$?<6dZ`(M*fZOALq_-&(+Fy;CFnsfjwgbxV=fQW&L`Zoe
z^j=Z}o(UD*8{#mhk~vv8By;^Q!))}4IPV^zg+%3#upSIc#0ig*!nR)71>V6tX@^tC
z#f6P&X6fqB9XC{%F1<>jGq+S;Y>dx2d}bwi-mP9T8o_q^!iY`cwSO<3Bv$V?1j|<+
zliIXCDPxK8zRM#6A@fm(+Umc1dNRGf-*CouVjjHWk)*!6XCluG|L)K#gmwP0=naD~
zBdhU#dIkk!;ad_iXehRcB-YT(qxqgRALEEngy}GOue<Rh*MIe^`MJyVBMsb1HF+~6
zBpW*tI|9>l;!id{Pk2IKD`aInceCZ>vc1F!6PiuK-ZS@1kS(r|Kw(~U9);X1u=l`O
z35Sxe9)0ktL5f;`JF(7Tu?(%OS;Ut}Z2axOB6-!f^ffzs6=PSBEe}K7n{apv-#V*4
zmNm1MieNo%W$}c5?p2IO6%Q=^>S<{0zzldVDz`WpT#>!9@<jbyK!EEF%JyL8JTfVd
zNDs*#bJ`BJ!>H-p>bF`a2a#AlGFLPEmIFxgwDXdR05SMNW@!>*rgFMF6r)It)fci+
zCD`PRg=9xT%#!9UtjNxMkkSPa`jGOR=^G@4++p}CZW?-5HZ^|6@bZX;R;~81g-}ib
z8=8n<6_X{-YfqHY7P+!@N2Gm~T7@ui(uuWOjfuJZT8Y|ZZGuh2m=Jq24~8%@>C-P{
zOw35oDj;QJNqL(Zt8P_KOoL_nutO~?e0#x^e|E^j2n!_pn#LV-D>ElfS_Okqb(mFn
z6yxxCJ+y3fg-SjHmCr@Ro_%!!#t;vWJ8s;##M55mL$!beg#1)&QKIj=KZp=>%QT7)
zlk!N8Z@8BmjmlPC>`JF<ZD_hGm(F>VQ^~n$_g-wz1UB=mIP18h-wysfEAfPZ+$UQ$
zleVbqV<w_t9xZhfCkwMUN=k-9c_;e#pjw#E5y+cA<3mZv@6VBgT*Mnz6{B=lnr@8r
zG8LVIyk3olJhj)pHYT1)5J_l}Amz!WImz-K0#6slQY|z2upYkNP)Gb~S51)L`<8gB
zS=*ZTIsL4@2+l^@DDg_??356pUA=Kztsi_NZ!dn^XJJEWZWEaeE^C4OzO&z#*xFRF
z@lpiW?wTEvYG5Eu4b7uh57FR@CruSgdMg}xA9J`aZpctWpVCJ^?a-lVXI<HIaVLM?
z#|GJ|-|6U-+MN-~rmK=P?0DLE{-heA-B0!lCb#r&1dMjwNGDN}JY`Ji#u3)~pZ_jO
z^l;H^o;CX5HV<J@(nV3V{rvI~4=xh3P06Yx`M5EsDSdqxnN>T`Te{wT=!GHqskCfW
zwG<Vrc1&cVYw-*LCpekMb#Vd7c20BB<=+c;Rz&G|hBoG!pNFn+mcRWFo`iuHy3DEK
z2<5Vsk8(f6<iA8up7tW0B$MRjS)(WIGi-xsf(=$*s${8H^<yIL-JR+rqVRz@6U62D
z9)Mm$TyLP<bB|tjxgse_4_-%*L^Wj7cTo3b)wZ}m3?Yk`Q8K04&0P>7<a>q*pFm9j
z@sQX`zNEJ-_3s1OnCmxjW1sY>6#mg5b}>J;l2mkPE4-kd2k~N-B&n2y`%C$fb9<4C
zv2NXeOOi1_@$F0z&orLYbM*C<88L|L#oZfU#$bRq?eXST^9cf=?GE|-%>`do-g7pf
zlbDdL@8+8ojSU={oS!|!$_SQdUS9eNt;~x=?vhQ;d%eq4zrT+xkt0+Yj5-~L9V3z3
zuz^z_RpuPm9%~5oR}A%$DuP`U(}&zeMLgal3xw99fUK=@;LJBFn$Bv$3LaDh<U%tz
zq69~Nc&W!j8Z;i8qV_V>&fBsv3AUPmhCVJ+O`b(bUMH5~8*-A_fNr1_?xh1M?)*8|
ziM;Rd_p6?=F}62m$jkGP`_p|1Zz2J);cj{mdx(o-w=A{umYbd(F9w{)8-JyuuC-Mt
zXt}Ll`lk?a-AYAY`#z*ca{y=YW9b<*%VYOWpro&+OATKkFJO#_Q}ZLmrQ%IM<$X~>
z<F9F`>m%=L*;|x&z}Lzl|J{zSZnDP4(zfY#dYxheULCGWbEK5gwVet}H{TX;ezxut
zuCExFc~wVzlF8^}EdPCQ$;~%_Wz=9s{?;YF*M!IvB|=qC9D&9m5O#5;%josLqoeb+
z<|4kTOlN!TNlk%0%G$D=z^m;E%Q<jWyFiL7^>m$xOXdK3e4d6_>wV2YbG9`8`IGaV
z1N<OFx+kMKnyv`2jYV<-NO8xm62QQo2B|n@gkUEZ11L4V>NZ?<a?}aa%_fhZ8v<(a
zR^!I_&TI(Vq|rS9XAa?w{jHEz1vMNPjFY@3Nu9XA4NFlqMXOPgpfN9oIRE0BB&^2E
z$H3vfO~!)eh_xUDF87m;R4y$}GDWQK%f={|r~|SA-t;9E&DHJHCvyRqtg_Z1nBGcL
zui}BrJlzo~pNZz!{^v0-63uaEJxWEwlvGYI>rpZ??;4uJ4Ii(`M&>1;Ionx}J0kOL
zqdAJKM+kct&Cz8&LfAAk#{xd;%0%WtymqWdLgWNH!Sp-a^CAmes|YD>3W~!$8p%0M
zMav~)fOEbnS}skU;DhA*L0}nzX+azTq$uD`FK`h;&3Q4E2jV0{4<fCW5M7`tuJsZr
zu5XhGDBL9#he8~(5Qn8H>VgnL4?*BZagroFi3%|fWSXL^Ou=Te1labIbjn>Jx2X9>
zY+(7y$7FwK9?KnnuNeM)NO?xtwb_`ugNm5(8VC8}SdAn>pk68xX=v5{R63c`qZ1@S
zsWe5ixd^0sHI0nx0*{ic=s1AhM5OcyrtVPZ3%6k<x8Y5L_ahPTDd`Lz*TF@A)}l%>
zazK`ZK%r5@-{XxtdQO*EAs-JyVHoU)98jjBJ$rdEEz(lR4+3>S87i^&d61WaL_&AF
zFaavt&fFsRE6~kGBKZ(PN$lk5b-3ZQ-Q%Vx%uIdcfOxj(XhMRnNp_~7kq6<5HUl<G
z*OdynNXVZ3ycn`79%sLU>dce2ZPm@<-1m1FGR$&xOH!TV;hlIm3^@v6033lZB5*`T
z4M(iqYKD4cp^@jIjQ!nT>g4lz-9aP8AZ~vm?jtWk=**Ul`J-`RfrApV$yiky)*wB0
zxo|-1GnaH&{9$2p=;3R%61{iCFO685oos|98`$>{4%2H9ilcWpV;@5w_N@SH9{k7)
z6=4jz5F|e=CIxRk>>L9rC>~2C)Q*4@c0A5cit1bg5BrfHTPb3wv8s7O%|}tbm<Q{`
zY4so5D7);uGr1rEawKHz057J{tfA4WMU#hf3Fdmfo>=;E0ix;T#p8D2NiC7GF<W0~
zf)&X~ni&bPYbyg#ReZFdp(|=oC$+qS>Jb#{_;wCxSZT^}QnvoYN8Z)cGdZ;9lr<*q
zAkNr)1~E2=95RyH4qKeNcL|_v{~8+Y1z=XZg`kE*f4KUQz(m}Gi!Iq>W+Bj(+p>a@
zgsZc|_b;Kmv`!ttOcWf&<3@cn__@_s&5pIO>sStyzwWwT`(fk<Nf@p{NDDIG*(r>j
z5Q8&cN#odI3m(0*N_~!x_}df}tWQ7%^Fkh1DXehNJVIi_6OqW>Tm*TW%_b`EjlfYm
z@4(3X(ko<H0*>9&vFPoDIL2l)5{X<4*^986VHf9GrsuX07pye(R*8dfIrg+5EB&AP
z{yfA~Q`E*3F_wWl@YAjA%{Huj^F=%^;Gzb<B5aHOqov~5JKBd4bb0x+lv5GL;ELa_
zyY$XiKLci{F<C*6M1BI(!S8<xca4i<i<Bjf7;0x+zqiw%eLrGcU4;_mj-@YjIwo;L
zSE+?9YEWLHA-JX-m-0T@O>Q5~c$A7RQ@3GL-k(vih-Rqn#DwMucZarb;8J+-IOwU+
z%pqA{^gq@au%|pZB89BN8ubM0NC(AQg?6Bo2^otyHWP9LoWUrhNG}k^4HB=fw;UoN
zp-?fr(uHzK%}@lP&xPmTJr1c8qBP=-QHmG=sf<64*;5^Vn1Je$P@?)IZ1?nU+TbXG
z3EYpJ_(<on;4K6E^uND8!lPK-MidRCN~XB+&Rkp(b8fsLlzUAQ*^3wx8?|j!9NBZ0
za%_;Vt=h=f_~Q|kW%64hH<Qr&L3|iYh&Ajk25LC!keG4h_GSd*SjKI7v-XscLL@~5
zrclC1s-F=Lg_xs0oCI9Y$M-Q5@e}9z@H-+Y_6T7hzY1+(Yp6NJHob5i^*P>Xdt!b&
z)+4|ehgpI9Q1W=p!KA=mh9=dA$9e5TFe1AhMe^$YDW?dB7i=#}mx`fq2b-gX=Q8ow
zJ=G9<BwVWSOdyrAYayRNQ)Nwz7b7@ZF5+PDdq43@#w%Z9?Oijp&;i1n7vVLRJ7Qr}
z6iMVPlSVr6dZfxXns-vmJQ4S9m>``=f>UeLg7`8ttohv|f^Zmh0+o`g>L}v=u@#D~
zjl}kPz+F^zbK~cFo*GX!zgO~+loL?3za}koRbCfP<og;8F+56(y(e_NgTsx8!}y&t
zM^e(^_VzC_u5aOZ^D)@VIUmZ&@7sYu$X(}C9w{V63)0aeT)^iQvCv6`&PxmTaB;*z
zZNrS~i6`V~e6UIM1*D;~G6%tSoi<0@li_OT7f+W&eftvp<r6p$DJZHBK0hF<)JVqR
zaYaoDXp8W0F+pSaWrWpFJXZHq*&b?u6%OO@S{moy6nq}34)&rUuq!Tdp$q-=kF^&Z
z7LYYE)vfGL*l=<7J(iM7A@VU|1e$z}r^!6*)n;?>^^CaPiN{{MEs>dNRkL=ZBgWAd
zhC2W1Nn<Wk!*l$sEWDYY2EV+Wy7gQ@5Z6=J-J)cD*wxhf=+4Ek$tkV$abC(|`OZkn
zc8KU{%k>V!^uwWbVo|QU_82(=LD;hPUDcZZT5^z=0ITEpEv!I6Pg`@*v~>Mf@l{`P
zQnH(TBrFO+eaUNc)~>I;ka=;1c0^0|vxA=qrHh5MUH^Ld#GLWjCg|Y1!EJvE?QE1n
zZkb+DLk9K7wnRP~)+(N|^}DVT+@rtv5LL9dbJ`Sy_-$m4g|IstLdnXRp)EqN_!pfn
zTc6=)?lN{PeLSMc&W@%cdV?*r)>J1&;m#n%5ej}e;i|8yy6k66Ic!&)*tL1o+5A8Z
z8@%E%<!(8mUhxq9yv}yc<+Q85g)$HfUhTA%14&T_)r9$x>Q-$@!Of!s`Ebgom(n<@
zYmR8o$J5%9JD|k&v207So@X5PV>!&gB$_(mB%w8=em{`ZptgMT5C)UV%SnYbrWV$9
z1^4a4gs1Vg5cyB=gqMxnWxEB<1Ty>Rs_)~R0(Qc4jb^s1l9F&Mz>SYS{=0LRO{R?x
zK@2{dSwmyl7dMYiJb(si;8-9Pcz@%yw%u)=koivuOH;vH$f{2|JOfWcyxo6xkxR|+
zIG-R0`NJhgbc_A@gij8>n=x}%u*Ae_{11Aee<~xd%2!={?V1Qjp`rOO*rN*X_Qy#H
zc5;e7*+1cB2Sf^`afSOKmz=HpO$6oJpU8G$I&lPCA-in7b)LT9AfFbe^AZ$zXXM!6
zk^vlygM+ZGy%1J7oa58(9Ufcg8h<V(W_K==Q+HYxcx61e2=rK&gSv@PQB09n=~bHN
zR&nP`@W9Pf!p{M2XEhhb6ip-{*iIeDwYqa0c9+h-W9CK4fM-LMtr3l8HxW#E0NGR3
zgY3DvtBTHADU8N;RJb^#-ugZ!-y_4rt*QqJ;AiDR&aPiCJ`=mhKm5<ElCWRzLK6I1
z$_ANv#b-F1H1&+7AS7J>Yb)%HPdOa=8D)PnVYB%g_<9w^ro48`IT_|XLGWyp9mz&6
z*veDrutu}XJw|?Hp=<5A*0k;UOisI3M6e`B1$L+7u+w!Wc>Z)=&KB{{n}A)r{>sIk
zG`~AM(4-bMC!j=5NE3g~ofvuQS$Qnc9F}>^(+J#_uJX?xu%ek|Gca)t7K3gQxCt-d
zfzG(`0R;|=*HL0D%UxN&yw6Z-)R0=(rY``Cak_5i2n~%IoUpZ+obO5Ov-6gkuv?A>
zFr|%^-=}Um7_jm%h}R6r!*+Q2>jdudQ*g})eQ6vyW$eoCwe$xz?Meb>!H02}Bv=X)
zbcbo|b20Mw{lcG~hJb@`W956`3D)B_^3Qte0*Bb4oCI0Pf&B`*-W@usEfWc*oFNUH
zV&nzqS)X%ky@CfGF8|jE#BD2R3<BV}A*cTPHfMRS#iUB_`=%Fr%m<a(oj55|2!UcD
zoYSIXf(MFYuxysgYdw*ajeumh*<>9PK|7Y11fbE#yHDVLp(co-LGK8&OeJvpoq=zf
z;rvWBQ<pKw<pcpLacB)1ow^%>J!XL=5xDi-AXp-_u@ed=f^VStr2y6&h|S&=zJZ<o
zl8A}m9u~ur(2nC=;yxJ&UjyiMF#^Sz*SaJM5`*C)P$=*W!w*S*CbfO2Trn~d@DGNG
zfn5W3z&#Zz6e~HPM3;yAaI$5sqD?e<voSD+iz3PcC_Cg0)-;}1w+tq=O=Ip3wL?Lj
ztPB7xYOt1?222DKpdr1(ev%VF{|y#emlnV0X7X993SuaF+wOu&3C-rlof`AsC)psT
z5+!&pdcMPLng2n5f9-fJ83%sIP=W1nxZkIvoB1H|l?Gg}GW+BcfjdSD6cXSnF^a-D
z&hl80?q-VxB2S&;A|YE|SH%e6&BICpx6ok=PChf>46im|f2`#n$(>u_yf=cXrY;wC
zg)0W<{!`LDKkXj($piLpeaT>Re$Q(OoV#_m<@gNCJb{H%F}Tx}2jDj=(h9j*jTbdp
zDBU1Rb=JpDkCOUQKKq$Kid2ulN^GhJJVGmUeGS;7$QtuwjitB#TRKGqF5Lt1l-*hS
zx`#17o{g|Pd6^(iN{Ff^Kc)0s=CsbcY9<}#(S6{$rL1*(&b$2MstER4w_H2O`%iv9
zU<udmb<;nr?yw5`m)TuvA`K!Wk;p{p?XGfLrHqGYKBm9oCanhB<Ln=;U6<cx1_t2G
zLUGzT{fB{_T?x3a3@Tx*9e_HuEIt56AW9(l@9R6Af204tLi_i5o-gDT-2C^^-oKW{
e{{}6(t|lJ0a>@E;n@<ve|Mr_%ndXz6BmW155K|ri

literal 0
HcmV?d00001

diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/wwwroot/app.css b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/wwwroot/app.css
new file mode 100644
index 00000000..17fcfd6a
--- /dev/null
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/wwwroot/app.css
@@ -0,0 +1,148 @@
+html, body {
+    font-family: 'Helvetica Neue', Helvetica, Arial, sans-serif;
+}
+
+a, .btn-link {
+    color: #006bb7;
+}
+
+.btn-primary {
+    color: #fff;
+    background-color: #1b6ec2;
+    border-color: #1861ac;
+}
+
+.btn:focus, .btn:active:focus, .btn-link.nav-link:focus, .form-control:focus, .form-check-input:focus {
+    box-shadow: 0 0 0 0.1rem white, 0 0 0 0.25rem #258cfb;
+}
+
+.content {
+    padding-top: 1.1rem;
+}
+
+h1:focus {
+    outline: none;
+}
+
+.valid.modified:not([type=checkbox]) {
+    outline: 1px solid #26b050;
+}
+
+.invalid {
+    outline: 1px solid #e50000;
+}
+
+.validation-message {
+    color: #e50000;
+}
+
+.blazor-error-boundary {
+    background: url(data:image/svg+xml;base64,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) no-repeat 1rem/1.8rem, #b32121;
+    padding: 1rem 1rem 1rem 3.7rem;
+    color: white;
+}
+
+    .blazor-error-boundary::after {
+        content: "An error has occurred."
+    }
+
+.darker-border-checkbox.form-check-input {
+    border-color: #929292;
+}
+
+.uauth-stack {
+    min-height: 60vh;
+    max-height: calc(100vh - var(--mud-appbar-height));
+    width: 30vw;
+    min-width: 300px;
+}
+
+.uauth-menu-popover {
+    width: 300px;
+}
+
+.uauth-login-paper {
+    min-height: 70vh;
+}
+
+    .uauth-login-paper.mud-theme-primary {
+        background: linear-gradient(145deg, var(--mud-palette-primary), rgba(0, 0, 0, 0.85) );
+        color: white;
+    }
+
+    .uauth-login-paper.mud-theme-secondary {
+        background: linear-gradient(145deg, var(--mud-palette-secondary), rgba(0, 0, 0, 0.85) );
+        color: white;
+    }
+
+.uauth-brand-glow {
+    filter: drop-shadow(0 0 25px rgba(255,255,255,0.15));
+}
+
+.uauth-logo-slide {
+    animation: uauth-logo-float 30s ease-in-out infinite;
+}
+
+.uauth-text-transform-none .mud-button {
+    text-transform: none;
+}
+
+.uauth-dialog {
+    height: 68vh;
+    max-height: 68vh;
+    overflow: auto;
+}
+
+.text-secondary {
+    color: var(--mud-palette-text-secondary);
+}
+
+.uauth-blur {
+    backdrop-filter: blur(10px);
+}
+
+.uauth-blur-slight {
+    backdrop-filter: blur(4px);
+}
+
+@keyframes uauth-logo-float {
+    0% {
+        transform: translateY(0) rotateY(0);
+    }
+
+    10% {
+        transform: translateY(0) rotateY(0);
+    }
+
+    15% {
+        transform: translateY(200px) rotateY(360deg);
+    }
+
+    35% {
+        transform: translateY(200px) rotateY(360deg);
+    }
+
+    40% {
+        transform: translateY(200px) rotateY(720deg);
+    }
+
+    60% {
+        transform: translateY(200px) rotateY(720deg);
+    }
+
+    65% {
+        transform: translateY(0) rotateY(360deg);
+    }
+
+    85% {
+        transform: translateY(0) rotateY(360deg);
+    }
+
+    90% {
+        transform: translateY(0) rotateY(0);
+    }
+
+    100% {
+        transform: translateY(0) rotateY(0);
+    }
+}
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.csproj b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.csproj
index 840af929..b7cf0040 100644
--- a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.csproj
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.csproj
@@ -1,27 +1,26 @@
 <Project Sdk="Microsoft.NET.Sdk.Web">
 
-  <PropertyGroup>
-    <TargetFramework>net10.0</TargetFramework>
-    <Nullable>enable</Nullable>
-    <ImplicitUsings>enable</ImplicitUsings>
-	  <Version>0.0.1</Version>
-	  <IsPackable>false</IsPackable>
-    <BlazorDisableThrowNavigationException>true</BlazorDisableThrowNavigationException>
-  </PropertyGroup>
+	<PropertyGroup>
+		<TargetFramework>net10.0</TargetFramework>
+		<Nullable>enable</Nullable>
+		<ImplicitUsings>enable</ImplicitUsings>
+		<IsPackable>false</IsPackable>
+		<BlazorDisableThrowNavigationException>true</BlazorDisableThrowNavigationException>
+	</PropertyGroup>
 
-  <ItemGroup>
-    <PackageReference Include="CodeBeam.MudBlazor.Extensions" Version="9.0.3" />
-    <PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="10.0.5" />
-    <PackageReference Include="MudBlazor" Version="9.1.0" />
-    <PackageReference Include="Scalar.AspNetCore.Microsoft" Version="2.13.8" />
-  </ItemGroup>
+	<ItemGroup>
+		<PackageReference Include="CodeBeam.MudBlazor.Extensions" Version="9.0.3" />
+		<PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="10.0.5" />
+		<PackageReference Include="MudBlazor" Version="9.1.0" />
+		<PackageReference Include="Scalar.AspNetCore.Microsoft" Version="2.13.8" />
+	</ItemGroup>
 
-  <ItemGroup>
-    <ProjectReference Include="..\..\..\nuget\CodeBeam.UltimateAuth.InMemory\CodeBeam.UltimateAuth.InMemory.Bundle.csproj" />
-    <ProjectReference Include="..\..\..\src\client\CodeBeam.UltimateAuth.Client.Blazor\CodeBeam.UltimateAuth.Client.Blazor.csproj" />
-    <ProjectReference Include="..\..\..\src\CodeBeam.UltimateAuth.Core\CodeBeam.UltimateAuth.Core.csproj" />
-    <ProjectReference Include="..\..\..\src\CodeBeam.UltimateAuth.Server\CodeBeam.UltimateAuth.Server.csproj" />
-    <ProjectReference Include="..\..\CodeBeam.UltimateAuth.Sample.Seed\CodeBeam.UltimateAuth.Sample.Seed.csproj" />
-  </ItemGroup>
+	<ItemGroup>
+		<ProjectReference Include="..\..\..\nuget\CodeBeam.UltimateAuth.InMemory\CodeBeam.UltimateAuth.InMemory.Bundle.csproj" />
+		<ProjectReference Include="..\..\..\src\client\CodeBeam.UltimateAuth.Client.Blazor\CodeBeam.UltimateAuth.Client.Blazor.csproj" />
+		<ProjectReference Include="..\..\..\src\CodeBeam.UltimateAuth.Core\CodeBeam.UltimateAuth.Core.csproj" />
+		<ProjectReference Include="..\..\..\src\CodeBeam.UltimateAuth.Server\CodeBeam.UltimateAuth.Server.csproj" />
+		<ProjectReference Include="..\..\CodeBeam.UltimateAuth.Sample.Seed\CodeBeam.UltimateAuth.Sample.Seed.csproj" />
+	</ItemGroup>
 
 </Project>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Brand/UAuthLogo.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Brand/UAuthLogo.razor
new file mode 100644
index 00000000..2806b7d3
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Brand/UAuthLogo.razor
@@ -0,0 +1,19 @@
+@namespace CodeBeam.UltimateAuth.Sample
+@inherits ComponentBase
+
+<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 200 240" width="@Size" height="@Size" style="@BuildStyle()" class="@Class">
+
+    @if (Variant == UAuthLogoVariant.Brand)
+    {
+        <path fill="@ShieldColor"
+              d="M32.39,14.07H167.61c11.27,0,18,6.76,18,18V133.52c0,22.54-58.59,69.87-85.64,92.41-27-22.54-85.64-69.87-85.64-92.41V32.1C14.36,20.83,21.12,14.07,32.39,14.07Z" />
+
+        <path fill="@KeyColor" fill-rule="evenodd" d="@KeyPath" />
+    }
+    else
+    {
+        <path d="M32.39,14.07H167.61c11.27,0,18,6.76,18,18V133.52c0,22.54-58.59,69.87-85.64,92.41-27-22.54-85.64-69.87-85.64-92.41V32.1C14.36,20.83,21.12,14.07,32.39,14.07Z" />
+
+        <path fill-rule="evenodd" d="@KeyPath" />
+    }
+</svg>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Brand/UAuthLogo.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Brand/UAuthLogo.razor.cs
new file mode 100644
index 00000000..030d9b66
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Brand/UAuthLogo.razor.cs
@@ -0,0 +1,54 @@
+using Microsoft.AspNetCore.Components;
+using Microsoft.AspNetCore.Components.Web;
+
+namespace CodeBeam.UltimateAuth.Sample;
+
+public partial class UAuthLogo : ComponentBase
+{
+    [Parameter] public UAuthLogoVariant Variant { get; set; } = UAuthLogoVariant.Brand;
+
+    [Parameter] public int Size { get; set; } = 32;
+
+    [Parameter] public string? ShieldColor { get; set; } = "#00072d";
+    [Parameter] public string? KeyColor { get; set; } = "#f6f5ae";
+
+    [Parameter] public string? Class { get; set; }
+    [Parameter] public string? Style { get; set; }
+
+    private string BuildStyle()
+    {
+        if (Variant == UAuthLogoVariant.Mono)
+            return $"color: {KeyColor}; {Style}";
+
+        return Style ?? "";
+    }
+
+    protected string KeyPath => @"
+M120.43,39.44H79.57A11.67,11.67,0,0,0,67.9,51.11V77.37
+A11.67,11.67,0,0,0,79.57,89H90.51l3.89,3.9v5.32l-3.8,3.81v81.41H99
+v-5.33h13.69V169H108.1v-3.8H99C99,150.76,111.9,153,111.9,153
+V99.79h-8V93.32L108.19,89h12.24
+A11.67,11.67,0,0,0,132.1,77.37V51.11
+A11.67,11.67,0,0,0,120.43,39.44Z
+
+M79.57,48.19h5.84a2.92,2.92 0 0 1 2.92,2.92
+v5.84a2.92,2.92 0 0 1 -2.92,2.92
+h-5.84a2.91,2.91 0 0 1 -2.91,-2.92
+v-5.84a2.91,2.91 0 0 1 2.91,-2.92Z
+
+M79.57,68.62h5.84a2.92,2.92 0 0 1 2.92,2.92
+v5.83a2.92,2.92 0 0 1 -2.92,2.92
+h-5.84a2.91,2.91 0 0 1 -2.91,-2.92
+v-5.83a2.91,2.91 0 0 1 2.91,-2.92Z
+
+M114.59,48.19h5.84a2.92,2.92 0 0 1 2.91,2.92
+v5.84a2.91,2.91 0 0 1 -2.91,2.91
+h-5.84a2.92,2.92 0 0 1 -2.92,-2.91
+v-5.84a2.92,2.92 0 0 1 2.92,-2.92Z
+
+M114.59,68.62h5.84a2.92,2.92 0 0 1 2.91,2.92
+v5.83a2.91,2.91 0 0 1 -2.91,2.92
+h-5.84a2.92,2.92 0 0 1 -2.92,-2.92
+v-5.83a2.92,2.92 0 0 1 2.92,-2.92Z
+";
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Brand/UAuthLogoVariant.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Brand/UAuthLogoVariant.cs
new file mode 100644
index 00000000..fe3be220
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Brand/UAuthLogoVariant.cs
@@ -0,0 +1,7 @@
+namespace CodeBeam.UltimateAuth.Sample;
+
+public enum UAuthLogoVariant
+{
+    Brand,
+    Mono
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/CodeBeam.UAuth.Sample.IntWasm.Client.csproj b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/CodeBeam.UAuth.Sample.IntWasm.Client.csproj
new file mode 100644
index 00000000..93156414
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/CodeBeam.UAuth.Sample.IntWasm.Client.csproj
@@ -0,0 +1,24 @@
+<Project Sdk="Microsoft.NET.Sdk.BlazorWebAssembly">
+
+  <PropertyGroup>
+    <TargetFramework>net10.0</TargetFramework>
+    <ImplicitUsings>enable</ImplicitUsings>
+    <Nullable>enable</Nullable>
+    <NoDefaultLaunchSettingsFile>true</NoDefaultLaunchSettingsFile>
+    <StaticWebAssetProjectMode>Default</StaticWebAssetProjectMode>
+	  <IsPackable>false</IsPackable>
+    <BlazorDisableThrowNavigationException>true</BlazorDisableThrowNavigationException>
+  </PropertyGroup>
+
+  <ItemGroup>
+    <PackageReference Include="CodeBeam.MudBlazor.Extensions" Version="9.0.4" />
+    <PackageReference Include="Microsoft.AspNetCore.Components.WebAssembly" Version="10.0.5" />
+    <PackageReference Include="Microsoft.Extensions.Http" Version="10.0.5" />
+    <PackageReference Include="MudBlazor" Version="9.3.0" />
+  </ItemGroup>
+
+  <ItemGroup>
+    <ProjectReference Include="..\..\..\..\src\client\CodeBeam.UltimateAuth.Client.Blazor\CodeBeam.UltimateAuth.Client.Blazor.csproj" />
+  </ItemGroup>
+
+</Project>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Common/UAuthDialog.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Common/UAuthDialog.cs
new file mode 100644
index 00000000..caa73d6b
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Common/UAuthDialog.cs
@@ -0,0 +1,29 @@
+using CodeBeam.UltimateAuth.Client;
+using CodeBeam.UltimateAuth.Core.Domain;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Common;
+
+public static class UAuthDialog
+{
+    public static DialogParameters GetDialogParameters(UAuthState state, UserKey? userKey = null)
+    {
+        DialogParameters parameters = new DialogParameters();
+        parameters.Add("AuthState", state);
+        if (userKey != null )
+        {
+            parameters.Add("UserKey", userKey);
+        }
+        return parameters;
+    }
+
+    public static DialogOptions GetDialogOptions(MaxWidth maxWidth = MaxWidth.Medium)
+    {
+        return new DialogOptions
+        {
+            MaxWidth = maxWidth,
+            FullWidth = true,
+            CloseButton = true
+        };
+    }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Custom/UAuthPageComponent.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Custom/UAuthPageComponent.razor
new file mode 100644
index 00000000..5af543e4
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Custom/UAuthPageComponent.razor
@@ -0,0 +1,10 @@
+<MudPage Class="mud-width-full" FullScreen="FullScreen.FullWithoutAppbar" Column="1" Row="1">
+    <MudContainer Class="mud-height-full" MaxWidth="MaxWidth.Small">
+        @ChildContent
+    </MudContainer>
+</MudPage>
+
+@code {
+    [Parameter]
+    public RenderFragment? ChildContent { get; set; }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/AccountStatusDialog.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/AccountStatusDialog.razor
new file mode 100644
index 00000000..0c91e45c
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/AccountStatusDialog.razor
@@ -0,0 +1,23 @@
+@using CodeBeam.UltimateAuth.Core.Contracts
+@using CodeBeam.UltimateAuth.Users.Contracts
+@inject IUAuthClient UAuthClient
+@inject ISnackbar Snackbar
+@inject IDialogService DialogService
+
+<MudDialog Class="mud-width-full">
+    <TitleContent>
+        <MudText>Identifier Management</MudText>
+        <MudText Typo="Typo.subtitle2" Color="Color.Primary">User: @AuthState?.Identity?.DisplayName</MudText>
+    </TitleContent>
+    <DialogContent>
+        <MudStack Class="mud-width-full">
+            <MudButton Variant="Variant.Outlined" Color="Color.Primary" StartIcon="@Icons.Material.Filled.NearbyOff" OnClick="SuspendAccountAsync">
+                Suspend Account
+            </MudButton>
+
+            <MudButton Variant="Variant.Outlined" Color="Color.Error" StartIcon="@Icons.Material.Filled.Delete" OnClick="DeleteAccountAsync">
+                Delete Account
+            </MudButton>
+        </MudStack>
+    </DialogContent>
+</MudDialog>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/AccountStatusDialog.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/AccountStatusDialog.razor.cs
new file mode 100644
index 00000000..d5652e62
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/AccountStatusDialog.razor.cs
@@ -0,0 +1,77 @@
+using CodeBeam.UltimateAuth.Client;
+using CodeBeam.UltimateAuth.Users.Contracts;
+using Microsoft.AspNetCore.Components;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Components.Dialogs;
+
+public partial class AccountStatusDialog
+{
+    [CascadingParameter]
+    private IMudDialogInstance MudDialog { get; set; } = default!;
+
+    [Parameter]
+    public UAuthState AuthState { get; set; } = default!;
+
+    private async Task SuspendAccountAsync()
+    {
+        var info = await DialogService.ShowMessageBoxAsync(
+            title: "Are You Sure",
+            markupMessage: (MarkupString)
+                """
+            You are going to suspend your account.<br/><br/>
+            You can still active your account later.
+            """,
+            yesText: "Suspend", noText: "Cancel",
+            options: new DialogOptions() { MaxWidth = MaxWidth.Medium, FullWidth = true, BackgroundClass = "uauth-blur-slight" });
+
+        if (info != true)
+        {
+            Snackbar.Add("Suspend process cancelled.", Severity.Info);
+            return;
+        }
+
+        ChangeUserStatusSelfRequest request = new() { NewStatus = SelfAssignableUserStatus.SelfSuspended };
+        var result = await UAuthClient.Users.ChangeMyStatusAsync(request);
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Your account suspended successfully.", Severity.Success);
+            MudDialog.Close();
+        }
+        else
+        {
+            Snackbar.Add(result?.ErrorText ?? "Delete failed.", Severity.Error);
+        }
+    }
+
+    private async Task DeleteAccountAsync()
+    {
+        var info = await DialogService.ShowMessageBoxAsync(
+            title: "Are You Sure",
+            markupMessage: (MarkupString)
+                """
+            You are going to delete your account.<br/><br/>
+            This action can't be undone.<br/><br/>
+            (Actually it is, admin can handle soft deleted accounts.)
+            """,
+            yesText: "Delete", noText: "Cancel",
+            options: new DialogOptions() { MaxWidth = MaxWidth.Medium, FullWidth = true, BackgroundClass = "uauth-blur-slight" });
+
+        if (info != true)
+        {
+            Snackbar.Add("Deletion cancelled.", Severity.Info);
+            return;
+        }
+
+        var result = await UAuthClient.Users.DeleteMeAsync();
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Your account deleted successfully.", Severity.Success);
+            MudDialog.Close();
+        }
+        else
+        {
+            Snackbar.Add(result?.ErrorText ?? "Delete failed.", Severity.Error);
+        }
+    }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/CreateUserDialog.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/CreateUserDialog.razor
new file mode 100644
index 00000000..9a514935
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/CreateUserDialog.razor
@@ -0,0 +1,27 @@
+@using CodeBeam.UltimateAuth.Credentials.Contracts
+@using CodeBeam.UltimateAuth.Users.Contracts
+@inject IUAuthClient UAuthClient
+@inject ISnackbar Snackbar
+
+<MudDialog>
+    <TitleContent>
+        <MudText Typo="Typo.h6">Create User</MudText>
+    </TitleContent>
+
+    <DialogContent>
+        <MudForm @ref="_form" OnEnterPressed="CreateUserAsync">
+            <MudStack Spacing="2">
+                <MudTextField @bind-Value="_username" Label="Username" Variant="Variant.Outlined" Required="true" />
+                <MudTextField @bind-Value="_email" Label="Email" Variant="Variant.Outlined" Required="true" />
+                <MudPasswordField @bind-Value="_password" Label="Password" Variant="Variant.Outlined" Required="true" />
+                <MudPasswordField @bind-Value="_passwordCheck" Label="Password (Again)" Variant="Variant.Outlined" Required="true" Immediate="true" Validation="@(new Func<string, string>(PasswordMatch))" />
+                <MudTextField @bind-Value="_displayName" Label="Display Name" Variant="Variant.Outlined" />
+            </MudStack>
+        </MudForm>
+    </DialogContent>
+
+    <DialogActions>
+        <MudButton OnClick="Cancel">Cancel</MudButton>
+        <MudButton Color="Color.Primary" Variant="Variant.Filled" OnClick="CreateUserAsync">Create</MudButton>
+    </DialogActions>
+</MudDialog>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/CreateUserDialog.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/CreateUserDialog.razor.cs
new file mode 100644
index 00000000..d96ee282
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/CreateUserDialog.razor.cs
@@ -0,0 +1,55 @@
+using CodeBeam.UltimateAuth.Users.Contracts;
+using Microsoft.AspNetCore.Components;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Components.Dialogs;
+
+public partial class CreateUserDialog
+{
+    private MudForm _form = null!;
+    private string? _username;
+    private string? _email;
+    private string? _password;
+    private string? _passwordCheck;
+    private string? _displayName;
+
+    [CascadingParameter]
+    private IMudDialogInstance MudDialog { get; set; } = default!;
+
+    private async Task CreateUserAsync()
+    {
+        await _form.ValidateAsync();
+
+        if (!_form.IsValid)
+            return;
+
+        if (_password != _passwordCheck)
+        {
+            Snackbar.Add("Passwords don't match.", Severity.Error);
+            return;
+        }
+
+        var request = new CreateUserRequest
+        {
+            UserName = _username,
+            Email = _email,
+            DisplayName = _displayName,
+            Password = _password
+        };
+
+        var result = await UAuthClient.Users.CreateAsAdminAsync(request);
+
+        if (!result.IsSuccess)
+        {
+            Snackbar.Add(result.ErrorText ?? "User creation failed.", Severity.Error);
+            return;
+        }
+
+        Snackbar.Add("User created successfully", Severity.Success);
+        MudDialog.Close(DialogResult.Ok(true));
+    }
+
+    private string PasswordMatch(string? arg) => _password != arg ? "Passwords don't match." : string.Empty;
+
+    private void Cancel() => MudDialog.Cancel();
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/CredentialDialog.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/CredentialDialog.razor
new file mode 100644
index 00000000..660b7c3a
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/CredentialDialog.razor
@@ -0,0 +1,51 @@
+@using CodeBeam.UltimateAuth.Core.Contracts
+@using CodeBeam.UltimateAuth.Credentials.Contracts
+@using CodeBeam.UltimateAuth.Users.Contracts
+@inject IUAuthClient UAuthClient
+@inject ISnackbar Snackbar
+@inject IDialogService DialogService
+@inject IUAuthStateManager StateManager
+@inject NavigationManager Nav
+
+<MudDialog Class="mud-width-full" ContentClass="uauth-dialog">
+    <TitleContent>
+        <MudText>Credential Management</MudText>
+        <MudText Typo="Typo.subtitle2" Color="Color.Primary">User: @AuthState?.Identity?.DisplayName</MudText>
+    </TitleContent>
+    <DialogContent>
+        <MudForm @ref="@_form" OnEnterPressed="@ChangePasswordAsync">
+            <MudGrid Spacing="2">
+                @if (UserKey == null)
+                {
+                    <MudItem xs="12" sm="6">
+                        <MudPasswordField @bind-Value="_oldPassword" @bind-PasswordMode="@_passwordMode1" Label="Old Password" Variant="Variant.Outlined" Immediate="true" Required="true" />
+                    </MudItem>
+                }
+                else
+                {
+                    <MudItem xs="12">
+                        <MudAlert Severity="Severity.Warning">
+                            Administrators can directly assign passwords to users.
+                            However, using the credential reset flow is generally recommended for better security and auditability.
+                        </MudAlert>
+                    </MudItem>
+                }
+
+                <MudItem xs="12" sm="6">
+                    <MudPasswordField @bind-Value="_newPassword" @bind-PasswordMode="@_passwordMode2" Label="New Password" Variant="Variant.Outlined" Immediate="true" Required="true" />
+                </MudItem>
+
+                <MudItem xs="12" sm="6">
+                    <MudPasswordField @bind-Value="_newPasswordCheck" @bind-PasswordMode="@_passwordMode3" Label="New Password (Again)" Variant="Variant.Outlined" Immediate="true" Required="true" Validation="@(new Func<string, string>(PasswordMatch))" />
+                </MudItem>
+
+                <MudItem xs="12">
+                    <MudButton Color="Color.Primary" Variant="Variant.Filled" OnClick="ChangePasswordAsync">@(UserKey is null ? "Change Password" : "Set Password")</MudButton>
+                </MudItem>
+            </MudGrid>
+        </MudForm>
+    </DialogContent>
+    <DialogActions>
+        <MudButton OnClick="Cancel">Cancel</MudButton>
+    </DialogActions>
+</MudDialog>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/CredentialDialog.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/CredentialDialog.razor.cs
new file mode 100644
index 00000000..93228c65
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/CredentialDialog.razor.cs
@@ -0,0 +1,92 @@
+using CodeBeam.UltimateAuth.Client;
+using CodeBeam.UltimateAuth.Core.Contracts;
+using CodeBeam.UltimateAuth.Core.Domain;
+using CodeBeam.UltimateAuth.Credentials.Contracts;
+using Microsoft.AspNetCore.Components;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Components.Dialogs;
+
+public partial class CredentialDialog
+{
+    private MudForm _form = null!;
+    private string? _oldPassword;
+    private string? _newPassword;
+    private string? _newPasswordCheck;
+    private bool _passwordMode1 = false;
+    private bool _passwordMode2 = false;
+    private bool _passwordMode3 = true;
+
+    [CascadingParameter]
+    private IMudDialogInstance MudDialog { get; set; } = default!;
+
+    [Parameter]
+    public UAuthState AuthState { get; set; } = default!;
+
+    [Parameter]
+    public UserKey? UserKey { get; set; }
+
+    private async Task ChangePasswordAsync()
+    {
+        if (_form is null)
+            return;
+
+        await _form.ValidateAsync();
+        if (!_form.IsValid)
+        {
+            Snackbar.Add("Form is not valid.", Severity.Error);
+            return;
+        }
+
+        if (_newPassword != _newPasswordCheck)
+        {
+            Snackbar.Add("New password and check do not match", Severity.Error);
+            return;
+        }
+
+        ChangeCredentialRequest request;
+
+        if (UserKey is null)
+        {
+            request = new ChangeCredentialRequest
+            {
+                CurrentSecret = _oldPassword!,
+                NewSecret = _newPassword!
+            };
+        }
+        else
+        {
+            request = new ChangeCredentialRequest
+            {
+                NewSecret = _newPassword!
+            };
+        }
+
+        UAuthResult<ChangeCredentialResult> result;
+        if (UserKey is null)
+        {
+            result = await UAuthClient.Credentials.ChangeMyAsync(request);
+        }
+        else
+        {
+            result = await UAuthClient.Credentials.ChangeUserAsync(UserKey.Value, request);
+        }
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Password changed successfully", Severity.Success);
+            _oldPassword = null;
+            _newPassword = null;
+            _newPasswordCheck = null;
+            MudDialog.Close(DialogResult.Ok(true));
+        }
+        else
+        {
+            Snackbar.Add(result.ErrorText ?? "An error occurred while changing password", Severity.Error);
+        }
+    }
+
+    private string PasswordMatch(string arg) => _newPassword != arg ? "Passwords don't match" : string.Empty;
+
+    private void Cancel() => MudDialog.Cancel();
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/IdentifierDialog.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/IdentifierDialog.razor
new file mode 100644
index 00000000..24c9e8c9
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/IdentifierDialog.razor
@@ -0,0 +1,115 @@
+@using CodeBeam.UltimateAuth.Core.Contracts
+@using CodeBeam.UltimateAuth.Users.Contracts
+@inject IUAuthClient UAuthClient
+@inject ISnackbar Snackbar
+@inject IDialogService DialogService
+
+<MudDialog Class="mud-width-full" ContentClass="uauth-dialog">
+    <TitleContent>
+        <MudText>Identifier Management</MudText>
+        <MudText Typo="Typo.subtitle2" Color="Color.Primary">
+            @if (UserKey is null)
+            {
+                <text>User: @AuthState?.Identity?.DisplayName</text>
+            }
+            else
+            {
+                <text>UserKey: @UserKey.Value</text>
+            }
+        </MudText>
+    </TitleContent>
+    <DialogContent>
+        @if (_loaded)
+        {
+            <MudDataGrid @ref="@_grid" T="UserIdentifierInfo" ServerData="LoadServerData" Hover="true" Bordered="true" Striped="true" Dense="true" Elevation="0"
+                         EditMode="DataGridEditMode.Form" ReadOnly="false" CommittedItemChanges="@CommittedItemChanges" Loading="@_loading">
+                <ToolBarContent>
+                    <MudStack Class="mud-width-full" Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center">
+                        <MudText>Identifiers</MudText>
+                        <MudSpacer />
+                        <MudIconButton Variant="Variant.Filled" Color="Color.Primary" Icon="@Icons.Material.Filled.Refresh" OnClick="ReloadAsync" />
+                    </MudStack>
+                </ToolBarContent>
+                <Columns>
+                    <PropertyColumn Property="x => x.Id" Title="Id" Editable="false" />
+                    <PropertyColumn Property="x => x.Type" Title="Type" Editable="false" />
+                    <PropertyColumn Property="x => x.Value" Title="Value" />
+                    <PropertyColumn Property="x => x.IsPrimary" Title="Primary" Editable="false">
+                        <CellTemplate>
+                            <MudIcon Size="Size.Small" Icon="@(context.Item.IsPrimary? Icons.Material.Filled.Done : Icons.Material.Filled.Close)" />
+                        </CellTemplate>
+                    </PropertyColumn>
+                    <PropertyColumn Property="x => x.IsVerified" Title="Verified" Editable="false">
+                        <CellTemplate>
+                            <MudIcon Size="Size.Small" Icon="@(context.Item.IsVerified? Icons.Material.Filled.Done : Icons.Material.Filled.Close)" />
+                        </CellTemplate>
+                    </PropertyColumn>
+                    <TemplateColumn Title="Actions" Editable="false">
+                        <CellTemplate>
+                            <MudStack Style="min-width: 120px" Row="true" Spacing="2" Wrap="Wrap.Wrap">
+                                <MudTooltip Text="Edit" Color="Color.Primary" Delay="300" ShowOnFocus="false">
+                                    <MudIconButton Color="Color.Primary" Variant="Variant.Filled" Icon="@Icons.Material.Filled.Edit" Size="Size.Small" OnClick="@context.Actions.StartEditingItemAsync" />
+                                </MudTooltip>
+                                @if (context.Item.IsPrimary)
+                                {
+                                    <MudTooltip Text="Unset Primary" Color="Color.Primary" Delay="300" ShowOnFocus="false">
+                                        <MudIconButton Color="Color.Primary" Variant="Variant.Filled" Icon="@Icons.Material.Filled.KeyOff" Size="Size.Small" OnClick="@(() => UnsetPrimaryAsync(context.Item.Id))" />
+                                    </MudTooltip>
+                                }
+                                else
+                                {
+                                    <MudTooltip Text="Set Primary" Color="Color.Primary" Delay="300" ShowOnFocus="false">
+                                        <MudIconButton Color="Color.Primary" Variant="Variant.Filled" Icon="@Icons.Material.Filled.Key" Size="Size.Small" OnClick="@(() => SetPrimaryAsync(context.Item.Id))" />
+                                    </MudTooltip>
+                                }
+
+                                <MudTooltip Text="Verify" Color="Color.Primary" Delay="300" ShowOnFocus="false">
+                                    <MudIconButton Color="Color.Primary" Variant="Variant.Filled" Icon="@Icons.Material.Filled.Verified" Size="Size.Small" OnClick="@(() => VerifyAsync(context.Item.Id))" />
+                                </MudTooltip>
+
+                                <MudTooltip Text="Delete" Color="Color.Error" Delay="300" ShowOnFocus="false">
+                                    <MudIconButton Color="Color.Error" Variant="Variant.Filled" Icon="@Icons.Material.Filled.Delete" Size="Size.Small" OnClick="@(() => DeleteIdentifier(context.Item.Id))" />
+                                </MudTooltip>
+                            </MudStack>
+                        </CellTemplate>
+                    </TemplateColumn>
+                </Columns>
+                <PagerContent>
+                    <MudDataGridPager T="UserIdentifierInfo" PageSizeOptions="new int[] { 5, 10, 20 }" />
+                </PagerContent>
+            </MudDataGrid>
+
+            <MudExpansionPanels Class="mt-4" Elevation="0">
+                <MudExpansionPanel Style="background: var(--mud-palette-background-gray)" Text="Add New Identifier" Expanded="false">
+                    <MudGrid>
+                        <MudItem xs="12" sm="6" md="4">
+                            <MudSelectExtended @bind-Value="_newIdentifierType" ItemCollection="@(Enum.GetValues<UserIdentifierType>())" Variant="Variant.Outlined" Label="Type" Dense="true" />
+                        </MudItem>
+
+                        <MudItem xs="12" sm="6" md="4">
+                            <MudTextField @bind-Value="_newIdentifierValue" Variant="Variant.Outlined" Label="Value" />
+                        </MudItem>
+
+                        <MudItem xs="12" sm="6" md="4" Class="d-flex align-center justify-start">
+                            <MudSwitchM3 @bind-Value="_newIdentifierPrimary" Label="Primary" Color="Color.Primary" />
+                        </MudItem>
+
+                        <MudItem xs="12">
+                            <MudButton Style="width: fit-content" Color="Color.Primary" Variant="Variant.Outlined" OnClick="AddNewIdentifier">Add</MudButton>
+                        </MudItem>
+                    </MudGrid>
+                </MudExpansionPanel>
+            </MudExpansionPanels>
+        }
+        else
+        {
+            <div class="mud-width-full mud-height-full d-flex align-center justify-center">
+                <MudProgressCircular Indeterminate="true" Color="Color.Primary" />
+            </div>
+        }
+    </DialogContent>
+
+    <DialogActions>
+        <MudButton OnClick="Cancel">Cancel</MudButton>
+    </DialogActions>
+</MudDialog>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/IdentifierDialog.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/IdentifierDialog.razor.cs
new file mode 100644
index 00000000..135cdc64
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/IdentifierDialog.razor.cs
@@ -0,0 +1,311 @@
+using CodeBeam.UltimateAuth.Client;
+using CodeBeam.UltimateAuth.Core.Contracts;
+using CodeBeam.UltimateAuth.Core.Domain;
+using CodeBeam.UltimateAuth.Users.Contracts;
+using Microsoft.AspNetCore.Components;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Components.Dialogs;
+
+public partial class IdentifierDialog
+{
+    private MudDataGrid<UserIdentifierInfo>? _grid;
+    private UserIdentifierType _newIdentifierType;
+    private string? _newIdentifierValue;
+    private bool _newIdentifierPrimary;
+    private bool _loading = false;
+    private bool _reloadQueued;
+    private bool _loaded;
+
+    [CascadingParameter]
+    private IMudDialogInstance MudDialog { get; set; } = default!;
+
+    [Parameter]
+    public UAuthState AuthState { get; set; } = default!;
+
+    [Parameter]
+    public UserKey? UserKey { get; set; }
+
+    protected override async Task OnAfterRenderAsync(bool firstRender)
+    {
+        await base.OnAfterRenderAsync(firstRender);
+        
+        if (firstRender)
+        {
+            _loaded = true;
+            var result = await UAuthClient.Identifiers.GetMyAsync();
+            if (result != null && result.IsSuccess && result.Value != null)
+            {
+                await ReloadAsync();
+            }
+            StateHasChanged();
+        }
+    }
+
+    private async Task<GridData<UserIdentifierInfo>> LoadServerData(GridState<UserIdentifierInfo> state, CancellationToken ct)
+    {
+        var sort = state.SortDefinitions?.FirstOrDefault();
+
+        var req = new PageRequest
+        {
+            PageNumber = state.Page + 1,
+            PageSize = state.PageSize,
+            SortBy = sort?.SortBy,
+            Descending = sort?.Descending ?? false
+        };
+
+        UAuthResult<PagedResult<UserIdentifierInfo>> res;
+
+        if (UserKey is null)
+        {
+            res = await UAuthClient.Identifiers.GetMyAsync(req);
+        }
+        else
+        {
+            res = await UAuthClient.Identifiers.GetUserAsync(UserKey.Value, req);
+        }
+
+        if (!res.IsSuccess || res.Value is null)
+        {
+            Snackbar.Add(res.Problem?.Title ?? "Failed", Severity.Error);
+
+            return new GridData<UserIdentifierInfo>
+            {
+                Items = Array.Empty<UserIdentifierInfo>(),
+                TotalItems = 0
+            };
+        }
+
+        return new GridData<UserIdentifierInfo>
+        {
+            Items = res.Value.Items,
+            TotalItems = res.Value.TotalCount
+        };
+    }
+
+    private async Task ReloadAsync()
+    {
+        if (_loading)
+        {
+            _reloadQueued = true;
+            return;
+        }
+
+        if (_grid is null)
+            return;
+
+        _loading = true;
+        await InvokeAsync(StateHasChanged);
+        await Task.Delay(300);
+
+        try
+        {
+            await _grid.ReloadServerData();
+        }
+        finally
+        {
+            _loading = false;
+
+            if (_reloadQueued)
+            {
+                _reloadQueued = false;
+                await ReloadAsync();
+            }
+
+            await InvokeAsync(StateHasChanged);
+        }
+    }
+
+    private async Task<DataGridEditFormAction> CommittedItemChanges(UserIdentifierInfo item)
+    {
+        UpdateUserIdentifierRequest updateRequest = new()
+        {
+            Id = item.Id,
+            NewValue = item.Value
+        };
+
+        UAuthResult result;
+
+        if (UserKey is null)
+        {
+            result = await UAuthClient.Identifiers.UpdateMyAsync(updateRequest);
+        }
+        else
+        {
+            result = await UAuthClient.Identifiers.UpdateUserAsync(UserKey.Value, updateRequest);
+        }
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Identifier updated successfully", Severity.Success);
+        }
+        else
+        {
+            Snackbar.Add(result?.ErrorText ?? "Failed to update identifier", Severity.Error);
+        }
+
+        await ReloadAsync();
+        return DataGridEditFormAction.Close;
+    }
+
+    private async Task AddNewIdentifier()
+    {
+        if (string.IsNullOrEmpty(_newIdentifierValue))
+        {
+            Snackbar.Add("Value cannot be empty", Severity.Warning);
+            return;
+        }
+
+        AddUserIdentifierRequest request = new()
+        {
+            Type = _newIdentifierType,
+            Value = _newIdentifierValue,
+            IsPrimary = _newIdentifierPrimary
+        };
+
+        UAuthResult result;
+
+        if (UserKey is null)
+        {
+            result = await UAuthClient.Identifiers.AddMyAsync(request);
+        }
+        else
+        {
+            result = await UAuthClient.Identifiers.AddUserAsync(UserKey.Value, request);
+        }
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Identifier added successfully", Severity.Success);
+            await ReloadAsync();
+            StateHasChanged();
+        }
+        else
+        {
+            Snackbar.Add(result?.ErrorText ?? "Failed to add identifier", Severity.Error);
+        }
+    }
+
+    private async Task VerifyAsync(Guid id)
+    {
+        var demoInfo = await DialogService.ShowMessageBoxAsync(
+            title: "Demo verification",
+            markupMessage: (MarkupString)
+                """
+            This is a <b>demo</b> action.<br/><br/>
+            In a real app, you should verify identifiers via <b>Email</b>, <b>SMS</b>, or an <b>Authenticator</b> flow.
+            This will only mark the identifier as verified in UltimateAuth.
+            """,
+            yesText: "Verify", noText: "Cancel",
+            options: new DialogOptions() { MaxWidth = MaxWidth.Medium, FullWidth = true, BackgroundClass = "uauth-blur-slight" });
+
+        if (demoInfo != true)
+        {
+            Snackbar.Add("Verification cancelled", Severity.Info);
+            return;
+        }
+
+        VerifyUserIdentifierRequest request = new() { Id = id };
+        UAuthResult result;
+
+        if (UserKey is null)
+        {
+            result = await UAuthClient.Identifiers.VerifyMyAsync(request);
+        }
+        else
+        {
+            result = await UAuthClient.Identifiers.VerifyUserAsync(UserKey.Value, request);
+        }
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Identifier verified successfully", Severity.Success);
+            await ReloadAsync();
+            StateHasChanged();
+        }
+        else
+        {
+            Snackbar.Add(result?.ErrorText ?? "Failed to verify primary identifier", Severity.Error);
+        }
+    }
+
+    private async Task SetPrimaryAsync(Guid id)
+    {
+        SetPrimaryUserIdentifierRequest request = new() { Id = id };
+        UAuthResult result;
+
+        if (UserKey is null)
+        {
+            result = await UAuthClient.Identifiers.SetMyPrimaryAsync(request);
+        }
+        else
+        {
+            result = await UAuthClient.Identifiers.SetUserPrimaryAsync(UserKey.Value, request);
+        }
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Primary identifier set successfully.", Severity.Success);
+            await ReloadAsync();
+            StateHasChanged();
+        }
+        else
+        {
+            Snackbar.Add(result?.ErrorText ?? "Failed to set primary identifier", Severity.Error);
+        }
+    }
+
+    private async Task UnsetPrimaryAsync(Guid id)
+    {
+        UnsetPrimaryUserIdentifierRequest request = new() { Id = id };
+        UAuthResult result;
+
+        if (UserKey is null)
+        {
+            result = await UAuthClient.Identifiers.UnsetMyPrimaryAsync(request);
+        }
+        else
+        {
+            result = await UAuthClient.Identifiers.UnsetUserPrimaryAsync(UserKey.Value, request);
+        }
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Primary identifier unset successfully.", Severity.Success);
+            await ReloadAsync();
+            StateHasChanged();
+        }
+        else
+        {
+            Snackbar.Add(result?.ErrorText ?? "Failed to unset primary identifier", Severity.Error);
+        }
+    }
+
+    private async Task DeleteIdentifier(Guid id)
+    {
+        DeleteUserIdentifierRequest request = new() { Id = id };
+        UAuthResult result;
+
+        if (UserKey is null)
+        {
+            result = await UAuthClient.Identifiers.DeleteMyAsync(request);
+        }
+        else
+        {
+            result = await UAuthClient.Identifiers.DeleteUserAsync(UserKey.Value, request);
+        }
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Identifier deleted successfully.", Severity.Success);
+            await ReloadAsync();
+            StateHasChanged();
+        }
+        else
+        {
+            Snackbar.Add(result?.ErrorText ?? "Failed to delete identifier", Severity.Error);
+        }
+    }
+
+    private void Cancel() => MudDialog.Cancel();
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/PermissionDialog.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/PermissionDialog.razor
new file mode 100644
index 00000000..8e0df863
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/PermissionDialog.razor
@@ -0,0 +1,46 @@
+@using CodeBeam.UltimateAuth.Authorization.Contracts
+@using CodeBeam.UltimateAuth.Core.Defaults
+@using System.Reflection
+
+@inject IUAuthClient UAuthClient
+@inject ISnackbar Snackbar
+
+<MudDialog Class="mud-width-full" ContentClass="uauth-dialog">
+    <TitleContent>
+        <MudText Typo="Typo.h6">Role Permissions</MudText>
+        <MudText Typo="Typo.subtitle2">@Role.Name</MudText>
+    </TitleContent>
+
+    <DialogContent>
+        @* For Debug *@
+        @* <MudText>Current Permissions: @string.Join(", ", Role.Permissions)</MudText> *@
+        <MudExpansionPanels Dense="true">
+            @foreach (var group in _groups)
+            {
+                <MudExpansionPanel HeaderClass="py-0">
+                    <TitleContent>
+                        <MudStack Class="py-1" Row="true" AlignItems="AlignItems.Center">
+                            <MudCheckBox T="bool?" Color="Color.Primary" Value="@GetGroupState(group)" ValueChanged="@(v => ToggleGroup(group, v ?? false))" />
+                            <MudText Class="ml-2">@group.Name (@group.Items.Count(x => x.Selected)/@group.Items.Count)</MudText>
+                        </MudStack>
+                    </TitleContent>
+                    <ChildContent>
+                        <MudGrid Spacing="0">
+                        @foreach (var perm in group.Items)
+                        {
+                            <MudItem xs="12" md="6">
+                                <MudCheckBox T="bool" Class="ml-6" Style="width: fit-content" Color="Color.Primary" Label="@perm.Value" Value="@perm.Selected" ValueChanged="@(v => TogglePermission(perm, v))" />
+                            </MudItem>
+                        }
+                        </MudGrid>
+                    </ChildContent>
+                </MudExpansionPanel>
+            }
+        </MudExpansionPanels>
+    </DialogContent>
+
+    <DialogActions>
+        <MudButton OnClick="Cancel">Cancel</MudButton>
+        <MudButton Color="Color.Primary" OnClick="Save">Save</MudButton>
+    </DialogActions>
+</MudDialog>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/PermissionDialog.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/PermissionDialog.razor.cs
new file mode 100644
index 00000000..b6b03bb8
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/PermissionDialog.razor.cs
@@ -0,0 +1,120 @@
+using CodeBeam.UltimateAuth.Authorization.Contracts;
+using Microsoft.AspNetCore.Components;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Components.Dialogs;
+
+public partial class PermissionDialog
+{
+    [CascadingParameter]
+    private IMudDialogInstance MudDialog { get; set; } = default!;
+
+    [Parameter]
+    public RoleInfo Role { get; set; } = default!;
+
+    private List<PermissionGroup> _groups = new();
+
+    protected override void OnInitialized()
+    {
+        var catalog = UAuthPermissionCatalog.GetAdminPermissions();
+        var expanded = PermissionExpander.Expand(Role.Permissions, catalog);
+        var selected = expanded.Select(x => x.Value).ToHashSet();
+
+        _groups = catalog
+            .GroupBy(p => p.Split('.')[0])
+            .Select(g => new PermissionGroup
+            {
+                Name = g.Key,
+                Items = g.Select(p => new PermissionItem
+                {
+                    Value = p,
+                    Selected = selected.Contains(p)
+                }).ToList()
+            })
+            .OrderBy(x => x.Name)
+            .ToList();
+    }
+
+    private void ToggleGroup(PermissionGroup group, bool value)
+    {
+        foreach (var item in group.Items)
+            item.Selected = value;
+    }
+
+    private void TogglePermission(PermissionItem item, bool value)
+    {
+        item.Selected = value;
+    }
+
+    private bool? GetGroupState(PermissionGroup group)
+    {
+        var selected = group.Items.Count(x => x.Selected);
+
+        if (selected == 0)
+            return false;
+
+        if (selected == group.Items.Count)
+            return true;
+
+        return null;
+    }
+
+    private async Task Save()
+    {
+        var permissions = _groups.SelectMany(g => g.Items).Where(x => x.Selected).Select(x => Permission.From(x.Value)).ToList();
+
+        var req = new SetRolePermissionsRequest
+        {
+            RoleId = Role.Id,
+            Permissions = permissions
+        };
+
+        var result = await UAuthClient.Authorization.SetRolePermissionsAsync(req);
+
+        if (!result.IsSuccess)
+        {
+            Snackbar.Add(result.ErrorText ?? "Failed to update permissions", Severity.Error);
+            return;
+        }
+
+        var result2 = await UAuthClient.Authorization.QueryRolesAsync(new RoleQuery() { Search = Role.Name });
+        if (result2.Value?.Items is not null)
+        {
+            Role = result2.Value.Items.First();
+        }
+
+        Snackbar.Add("Permissions updated", Severity.Success);
+        RefreshUI();
+    }
+
+    private void RefreshUI()
+    {
+        var catalog = UAuthPermissionCatalog.GetAdminPermissions();
+        var expanded = PermissionExpander.Expand(Role.Permissions, catalog);
+        var selected = expanded.Select(x => x.Value).ToHashSet();
+
+        foreach (var group in _groups)
+        {
+            foreach (var item in group.Items)
+            {
+                item.Selected = selected.Contains(item.Value);
+            }
+        }
+
+        StateHasChanged();
+    }
+
+    private void Cancel() => MudDialog.Cancel();
+
+    private class PermissionGroup
+    {
+        public string Name { get; set; } = "";
+        public List<PermissionItem> Items { get; set; } = new();
+    }
+
+    private class PermissionItem
+    {
+        public string Value { get; set; } = "";
+        public bool Selected { get; set; }
+    }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ProfileDialog.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ProfileDialog.razor
new file mode 100644
index 00000000..a36af169
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ProfileDialog.razor
@@ -0,0 +1,103 @@
+@using CodeBeam.UltimateAuth.Core.Contracts
+@using CodeBeam.UltimateAuth.Users.Contracts
+@inject IUAuthClient UAuthClient
+@inject ISnackbar Snackbar
+@inject IDialogService DialogService
+
+<MudDialog Class="mud-width-full" ContentClass="uauth-dialog">
+    <TitleContent>
+        <MudText>Identifier Management</MudText>
+        <MudText Typo="Typo.subtitle2" Color="Color.Primary">
+            @if (UserKey is null)
+            {
+                <text>User: @AuthState?.Identity?.DisplayName</text>
+            }
+            else
+            {
+                <text>UserKey: @UserKey.Value</text>
+            }
+        </MudText>
+    </TitleContent>
+    <DialogContent>
+        @if (_loaded)
+        {
+            <MudForm @ref="_form" OnEnterPressed="SaveAsync">
+                <MudContainer Class="pa-2" Gutters="false">
+                    <MudGrid Spacing="2">
+                        <MudItem xs="12">
+                            <MudStack Row="true" AlignItems="AlignItems.Center">
+                                <MudText Typo="Typo.subtitle1" Color="Color.Primary">Name</MudText>
+                                <MudDivider DividerType="DividerType.FullWidth" Style="width: unset" />
+                            </MudStack>
+                        </MudItem>
+
+                        <MudItem xs="12" sm="4">
+                            <MudTextField @bind-Value="_firstName" Label="First Name" Variant="Variant.Outlined" />
+                        </MudItem>
+
+                        <MudItem xs="12" sm="4">
+                            <MudTextField @bind-Value="_lastName" Label="Last Name" Variant="Variant.Outlined" />
+                        </MudItem>
+
+                        <MudItem xs="12" sm="4">
+                            <MudTextField @bind-Value="_displayName" Label="Display Name" Variant="Variant.Outlined" />
+                        </MudItem>
+
+                        <MudItem xs="12" class="mt-4">
+                            <MudStack Row="true" AlignItems="AlignItems.Center">
+                                <MudText Typo="Typo.subtitle1" Color="Color.Primary">Personal</MudText>
+                                <MudDivider DividerType="DividerType.FullWidth" Style="width: unset" />
+                            </MudStack>
+                        </MudItem>
+
+                        <MudItem xs="12" sm="4">
+                            <MudDatePicker @bind-Date="_birthDate" Label="Birth Date" Variant="Variant.Outlined" />
+                        </MudItem>
+
+                        <MudItem xs="12" sm="4">
+                            <MudTextField @bind-Value="_gender" Label="Gender" Variant="Variant.Outlined" />
+                        </MudItem>
+
+                        <MudItem xs="12">
+                            <MudTextField @bind-Value="_bio" Label="Bio" Lines="3" Variant="Variant.Outlined" />
+                        </MudItem>
+
+                        <MudItem xs="12" class="mt-4">
+                            <MudStack Row="true" AlignItems="AlignItems.Center">
+                                <MudText Typo="Typo.subtitle1" Color="Color.Primary">Localization</MudText>
+                                <MudDivider DividerType="DividerType.FullWidth" Style="width: unset" />
+                            </MudStack>
+                        </MudItem>
+
+                        <MudItem xs="12" sm="4">
+                            <MudTextField @bind-Value="_language" Label="Language" Variant="Variant.Outlined" />
+                        </MudItem>
+
+                        <MudItem xs="12" sm="4">
+                            <MudSelectExtended T="string" @bind-Value="_timeZone" Label="Time Zone" Variant="Variant.Outlined" SearchBox="true">
+                                @foreach (var tz in TimeZoneInfo.GetSystemTimeZones())
+                                {
+                                    <MudSelectItemExtended Value="@tz.Id">@tz.Id - @tz.DisplayName</MudSelectItemExtended>
+                                }
+                            </MudSelectExtended>
+                        </MudItem>
+
+                        <MudItem xs="12" sm="4">
+                            <MudTextField @bind-Value="_culture" Label="Culture" Variant="Variant.Outlined" />
+                        </MudItem>
+                    </MudGrid>
+                </MudContainer>
+            </MudForm>
+        }
+        else
+        {
+            <div class="mud-width-full mud-height-full d-flex align-center justify-center">
+                <MudProgressCircular Indeterminate="true" Color="Color.Primary" />
+            </div>
+        }
+    </DialogContent>
+    <DialogActions>
+        <MudButton OnClick="Cancel">Cancel</MudButton>
+        <MudButton Color="Color.Primary" OnClick="SaveAsync">Save</MudButton>
+    </DialogActions>
+</MudDialog>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ProfileDialog.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ProfileDialog.razor.cs
new file mode 100644
index 00000000..50a8d74a
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ProfileDialog.razor.cs
@@ -0,0 +1,116 @@
+using CodeBeam.UltimateAuth.Client;
+using CodeBeam.UltimateAuth.Core.Contracts;
+using CodeBeam.UltimateAuth.Core.Domain;
+using CodeBeam.UltimateAuth.Users.Contracts;
+using Microsoft.AspNetCore.Components;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Components.Dialogs;
+
+public partial class ProfileDialog
+{
+    private MudForm? _form;
+    private string? _firstName;
+    private string? _lastName;
+    private string? _displayName;
+    private DateTime? _birthDate;
+    private string? _gender;
+    private string? _bio;
+    private string? _language;
+    private string? _timeZone;
+    private string? _culture;
+    private bool _loaded;
+
+    [CascadingParameter]
+    private IMudDialogInstance MudDialog { get; set; } = default!;
+
+    [Parameter]
+    public UAuthState AuthState { get; set; } = default!;
+
+    [Parameter]
+    public UserKey? UserKey { get; set; }
+
+    protected override async Task OnInitializedAsync()
+    {
+        UAuthResult<UserView> result;
+
+        if (UserKey is null)
+        {
+            result = await UAuthClient.Users.GetMeAsync();
+        }
+        else
+        {
+            result = await UAuthClient.Users.GetUserAsync(UserKey.Value);
+        }
+
+        if (result.IsSuccess && result.Value is not null)
+        {
+            var p = result.Value;
+
+            _firstName = p.FirstName;
+            _lastName = p.LastName;
+            _displayName = p.DisplayName;
+
+            _gender = p.Gender;
+            _birthDate = p.BirthDate?.ToDateTime(TimeOnly.MinValue);
+            _bio = p.Bio;
+
+            _language = p.Language;
+            _timeZone = p.TimeZone;
+            _culture = p.Culture;
+        }
+        _loaded = true;
+    }
+
+    private async Task SaveAsync()
+    {
+        if (AuthState is null || AuthState.Identity is null)
+        {
+            Snackbar.Add("No AuthState found.", Severity.Error);
+            return;
+        }
+
+        if (_form is not null)
+        {
+            await _form.ValidateAsync();
+            if (!_form.IsValid)
+                return;
+        }
+
+        var request = new UpdateProfileRequest
+        {
+            FirstName = _firstName,
+            LastName = _lastName,
+            DisplayName = _displayName,
+            BirthDate = _birthDate.HasValue ? DateOnly.FromDateTime(_birthDate.Value) : null,
+            Gender = _gender,
+            Bio = _bio,
+            Language = _language,
+            TimeZone = _timeZone,
+            Culture = _culture
+        };
+
+        UAuthResult result;
+
+        if (UserKey is null)
+        {
+            result = await UAuthClient.Users.UpdateMeAsync(request);
+        }
+        else
+        {
+            result = await UAuthClient.Users.UpdateUserAsync(UserKey.Value, request);
+        }
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Profile updated", Severity.Success);
+            MudDialog.Close(DialogResult.Ok(true));
+        }
+        else
+        {
+            Snackbar.Add(result.ErrorText ?? "Failed to update profile", Severity.Error);
+        }
+    }
+
+    private void Cancel() => MudDialog.Cancel();
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ResetDialog.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ResetDialog.razor
new file mode 100644
index 00000000..06a515aa
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ResetDialog.razor
@@ -0,0 +1,38 @@
+@using CodeBeam.UltimateAuth.Core.Contracts
+@using CodeBeam.UltimateAuth.Credentials.Contracts
+@using CodeBeam.UltimateAuth.Users.Contracts
+@inject IUAuthClient UAuthClient
+@inject ISnackbar Snackbar
+@inject IDialogService DialogService
+@inject IUAuthStateManager StateManager
+@inject NavigationManager Nav
+
+<MudDialog Class="mud-width-full" ContentClass="uauth-dialog">
+    <TitleContent>
+        <MudText>Reset Credential</MudText>
+    </TitleContent>
+
+    <DialogContent>
+        <MudStack Class="mud-width-full">
+            <MudAlert Severity="Severity.Info">
+                This is a demonstration of how to implement a credential reset flow.
+                In a production application, you should use reset token or code in email, SMS etc. verification steps.
+            </MudAlert>
+            <MudAlert Severity="Severity.Warning">
+                Reset request always returns ok even with not found users due to security reasons.
+            </MudAlert>
+            <MudTextField @bind-Value="@_identifier" Label="Username or Email" Variant="Variant.Outlined" />
+            <MudButton Color="Color.Primary" Variant="Variant.Filled" OnClick="RequestResetAsync">Request Reset</MudButton>
+            @if (_resetRequested)
+            {
+                <MudText Align="Align.Center">Your reset code is: (Copy it before next step)</MudText>
+                <MudText Align="Align.Center" Typo="Typo.h6"><b>@_resetCode</b></MudText>
+                <MudText Align="Align.Center"><MudLink Class="cursor-pointer" Href="@($"/reset?identifier={_identifier}")">Use Reset Code</MudLink></MudText>
+            }
+        </MudStack>
+    </DialogContent>
+
+    <DialogActions>
+        <MudButton OnClick="Cancel">Close</MudButton>
+    </DialogActions>
+</MudDialog>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ResetDialog.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ResetDialog.razor.cs
new file mode 100644
index 00000000..04657723
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ResetDialog.razor.cs
@@ -0,0 +1,42 @@
+using CodeBeam.UltimateAuth.Client;
+using CodeBeam.UltimateAuth.Core.Domain;
+using CodeBeam.UltimateAuth.Credentials.Contracts;
+using Microsoft.AspNetCore.Components;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Components.Dialogs;
+
+public partial class ResetDialog
+{
+    private bool _resetRequested = false;
+    private string? _resetCode;
+    private string? _identifier;
+
+    [CascadingParameter]
+    private IMudDialogInstance MudDialog { get; set; } = default!;
+
+    [Parameter]
+    public UAuthState AuthState { get; set; } = default!;
+
+    private async Task RequestResetAsync()
+    {
+        var request = new BeginResetCredentialRequest
+        {
+            CredentialType = CredentialType.Password,
+            ResetCodeType = ResetCodeType.Code,
+            Identifier = _identifier ?? string.Empty
+        };
+
+        var result = await UAuthClient.Credentials.BeginResetMyAsync(request);
+        if (!result.IsSuccess || result.Value is null)
+        {
+            Snackbar.Add(result.ErrorText ?? "Failed to request credential reset.", Severity.Error);
+            return;
+        }
+
+        _resetCode = result.Value.Token;
+        _resetRequested = true;
+    }
+
+    private void Cancel() => MudDialog.Cancel();
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ResourceApiDialog.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ResourceApiDialog.razor
new file mode 100644
index 00000000..c235fb4b
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ResourceApiDialog.razor
@@ -0,0 +1,54 @@
+@using CodeBeam.UAuth.Sample.IntWasm.Client.ResourceApi
+@inject ProductApiService Api
+@inject ISnackbar Snackbar
+
+<MudDialog Class="mud-width-full" ContentClass="uauth-dialog">
+
+    <TitleContent>
+        <MudText>Resource Api</MudText>
+        <MudText Typo="Typo.subtitle2" Color="Color.Primary">Sample demonstration of a resource.</MudText>
+    </TitleContent>
+
+    <DialogContent>
+        <MudButton OnClick="GetProducts">Reload</MudButton>
+
+        <MudDataGrid Items="@_products" Dense="true" Striped="true" Hover="true"
+                     EditMode="DataGridEditMode.Form" ReadOnly="false" CommittedItemChanges="@CommittedItemChanges">
+            <Columns>
+                <PropertyColumn Property="x => x.Id" Title="Id" Editable="false" />
+                <PropertyColumn Property="x => x.Name" Title="Name" />
+                <TemplateColumn Title="Actions" Editable="false">
+                    <CellTemplate>
+                        <MudStack Style="min-width: 120px" Row="true" Spacing="2" Wrap="Wrap.Wrap">
+                            <MudTooltip Text="Edit" Color="Color.Primary" Delay="300" ShowOnFocus="false">
+                                <MudIconButton Color="Color.Primary" Variant="Variant.Filled" Icon="@Icons.Material.Filled.Edit" Size="Size.Small" OnClick="@context.Actions.StartEditingItemAsync" />
+                            </MudTooltip>
+
+                            <MudTooltip Text="Delete" Color="Color.Error" Delay="300" ShowOnFocus="false">
+                                <MudIconButton Color="Color.Error" Variant="Variant.Filled" Icon="@Icons.Material.Filled.Delete" Size="Size.Small" OnClick="@(() => DeleteProduct(context.Item.Id))" />
+                            </MudTooltip>
+                        </MudStack>
+                    </CellTemplate>
+                </TemplateColumn>
+            </Columns>
+            <PagerContent>
+                <MudDataGridPager T="SampleProduct" PageSizeOptions="new int[] { 5, 10, 20 }" />
+            </PagerContent>
+        </MudDataGrid>
+
+        <MudExpansionPanels Class="mt-4" Elevation="0">
+            <MudExpansionPanel Style="background: var(--mud-palette-background-gray)" Text="Add New Product" Expanded="false">
+                <MudGrid>
+                    <MudItem xs="12" sm="6">
+                        <MudTextField @bind-Value="_newName" Variant="Variant.Outlined" Label="Name" />
+                    </MudItem>
+
+                    <MudItem xs="12">
+                        <MudButton Style="width: fit-content" Color="Color.Primary" Variant="Variant.Outlined" OnClick="CreateProduct">Add</MudButton>
+                    </MudItem>
+                </MudGrid>
+            </MudExpansionPanel>
+        </MudExpansionPanels>
+    </DialogContent>
+
+</MudDialog>
\ No newline at end of file
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ResourceApiDialog.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ResourceApiDialog.razor.cs
new file mode 100644
index 00000000..7b6f3ebb
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/ResourceApiDialog.razor.cs
@@ -0,0 +1,95 @@
+using CodeBeam.UltimateAuth.Client;
+using CodeBeam.UltimateAuth.Core.Contracts;
+using CodeBeam.UltimateAuth.Core.Domain;
+using CodeBeam.UAuth.Sample.IntWasm.Client.ResourceApi;
+using CodeBeam.UltimateAuth.Users.Contracts;
+using Microsoft.AspNetCore.Components;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Components.Dialogs;
+
+public partial class ResourceApiDialog
+{
+    [CascadingParameter]
+    private IMudDialogInstance MudDialog { get; set; } = default!;
+
+    [Parameter]
+    public UAuthState AuthState { get; set; } = default!;
+
+    private List<SampleProduct> _products = new List<SampleProduct>();
+    private string? _newName = null;
+
+    protected override async Task OnAfterRenderAsync(bool firstRender)
+    {
+        if (firstRender)
+        {
+            _products = (await Api.GetAllAsync()).Value ?? new();
+            StateHasChanged();
+        }
+    }
+
+    private async Task<DataGridEditFormAction> CommittedItemChanges(SampleProduct item)
+    {
+        var result = await Api.UpdateAsync(item.Id, item);
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Product updated successfully", Severity.Success);
+        }
+        else
+        {
+            Snackbar.Add(result?.ErrorText ?? "Failed to update product.", Severity.Error);
+        }
+
+        return DataGridEditFormAction.Close;
+    }
+
+    private async Task GetProducts()
+    {
+        var result = await Api.GetAllAsync();
+
+        if (result.IsSuccess)
+        {
+            _products = result.Value ?? new();
+        }
+        else
+        {
+            Snackbar.Add(result.ErrorText ?? "Process failed.", Severity.Error);
+        }
+    }
+
+    private async Task CreateProduct()
+    {
+        var product = new SampleProduct
+        {
+            Name = _newName
+        };
+
+        var result = await Api.CreateAsync(product);
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("New product created.");
+            _products = (await Api.GetAllAsync()).Value ?? new();
+        }
+        else
+        {
+            Snackbar.Add(result.ErrorText ?? "Process failed.", Severity.Error);
+        }
+    }
+
+    private async Task DeleteProduct(int id)
+    {
+        var result = await Api.DeleteAsync(id);
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Product deleted succesfully.", Severity.Success);
+            _products = (await Api.GetAllAsync()).Value ?? new();
+        }
+        else
+        {
+            Snackbar.Add(result.ErrorText ?? "Process failed.", Severity.Error);
+        }
+    }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/RoleDialog.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/RoleDialog.razor
new file mode 100644
index 00000000..bfcf9428
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/RoleDialog.razor
@@ -0,0 +1,90 @@
+@using CodeBeam.UltimateAuth.Authorization.Contracts
+@using CodeBeam.UltimateAuth.Core.Contracts
+@inject IUAuthClient UAuthClient
+@inject ISnackbar Snackbar
+@inject IDialogService DialogService
+
+<MudDialog Class="mud-width-full" ContentClass="uauth-dialog">
+
+    <TitleContent>
+        <MudText>Role Management</MudText>
+        <MudText Typo="Typo.subtitle2" Color="Color.Primary">Manage system roles</MudText>
+    </TitleContent>
+
+    <DialogContent>
+        @if (_loaded)
+        {
+            <MudDataGrid @ref="_grid" T="RoleInfo" ServerData="LoadServerData" Hover="true" Dense="true" Bordered="true" Striped="true"
+                         EditMode="DataGridEditMode.Form" CommittedItemChanges="CommittedItemChanges" Loading="_loading" ReadOnly="false">
+
+                <ToolBarContent>
+                    <MudStack Class="mud-width-full" Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center">
+                        <MudText>Roles</MudText>
+                        <MudSpacer />
+                        <MudIconButton Icon="@Icons.Material.Filled.Refresh" Variant="Variant.Filled" Color="Color.Primary" OnClick="ReloadAsync" />
+                    </MudStack>
+                </ToolBarContent>
+
+                <Columns>
+                    <PropertyColumn Property="x => x.Id" Title="Role Id" Editable="false" />
+                    <PropertyColumn Property="x => x.Name" Title="Name" />
+                    <PropertyColumn Property="x => x.Permissions" Title="Permissions" Editable="false">
+                        <CellTemplate>
+                            <MudChip Color="Color.Primary" Variant="Variant.Outlined">@GetPermissionCount(context.Item)</MudChip>
+                        </CellTemplate>
+                    </PropertyColumn>
+                    <TemplateColumn Title="Is Wildcard" Editable="false">
+                        <CellTemplate>
+                            <MudCheckBox Value="@(context.Item.Permissions.Any(x => x.IsWildcard))" Color="Color.Primary" ReadOnly="true" />
+                        </CellTemplate>
+                    </TemplateColumn>
+                    <TemplateColumn Title="Actions" Editable="false">
+                        <CellTemplate>
+                            <MudStack Row="true" Spacing="2">
+                                <MudTooltip Text="Edit" Delay="300" Color="Color.Primary">
+                                    <MudIconButton Icon="@Icons.Material.Filled.Edit" Color="Color.Primary" Variant="Variant.Filled" OnClick="@context.Actions.StartEditingItemAsync" />
+                                </MudTooltip>
+
+                                <MudTooltip Text="Permissions">
+                                    <MudIconButton Icon="@Icons.Material.Filled.Security" Color="Color.Primary" Variant="Variant.Filled" OnClick="@(() => EditPermissions(context.Item))" />
+                                </MudTooltip>
+
+                                <MudTooltip Text="Delete">
+                                    <MudIconButton Icon="@Icons.Material.Filled.Delete" Color="Color.Error" Variant="Variant.Filled" OnClick="@(() => DeleteRole(context.Item.Id))" />
+                                </MudTooltip>
+                            </MudStack>
+                        </CellTemplate>
+                    </TemplateColumn>
+                </Columns>
+
+                <PagerContent>
+                    <MudDataGridPager T="RoleInfo" PageSizeOptions="new int[] { 5, 10, 20 }" />
+                </PagerContent>
+            </MudDataGrid>
+
+            <MudExpansionPanels Class="mt-4">
+                <MudExpansionPanel Text="Create Role">
+                    <MudGrid>
+                        <MudItem xs="12" sm="6">
+                            <MudTextField @bind-Value="_newRoleName" Label="Role name" Variant="Variant.Outlined" />
+                        </MudItem>
+
+                        <MudItem xs="12">
+                            <MudButton Variant="Variant.Outlined" Color="Color.Primary" OnClick="CreateRole">Create</MudButton>
+                        </MudItem>
+                    </MudGrid>
+                </MudExpansionPanel>
+            </MudExpansionPanels>
+        }
+        else
+        {
+            <div class="mud-width-full mud-height-full d-flex align-center justify-center">
+                <MudProgressCircular Indeterminate="true" Color="Color.Primary" />
+            </div>
+        }
+    </DialogContent>
+
+    <DialogActions>
+        <MudButton OnClick="Cancel">Close</MudButton>
+    </DialogActions>
+</MudDialog>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/RoleDialog.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/RoleDialog.razor.cs
new file mode 100644
index 00000000..f079d51a
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/RoleDialog.razor.cs
@@ -0,0 +1,176 @@
+using CodeBeam.UltimateAuth.Authorization.Contracts;
+using CodeBeam.UltimateAuth.Client;
+using Microsoft.AspNetCore.Components;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Components.Dialogs;
+
+public partial class RoleDialog
+{
+    private MudDataGrid<RoleInfo>? _grid;
+    private bool _loading;
+    private string? _newRoleName;
+    private bool _loaded;
+
+    [CascadingParameter]
+    private IMudDialogInstance MudDialog { get; set; } = default!;
+
+    [Parameter]
+    public UAuthState AuthState { get; set; } = default!;
+
+    protected override async Task OnAfterRenderAsync(bool firstRender)
+    {
+        await base.OnAfterRenderAsync(firstRender);
+
+        if (firstRender)
+        {
+            _loaded = true;
+            StateHasChanged();
+        }
+    }
+
+    private async Task<GridData<RoleInfo>> LoadServerData(GridState<RoleInfo> state, CancellationToken ct)
+    {
+        var sort = state.SortDefinitions?.FirstOrDefault();
+
+        var req = new RoleQuery
+        {
+            PageNumber = state.Page + 1,
+            PageSize = state.PageSize,
+            SortBy = sort?.SortBy,
+            Descending = sort?.Descending ?? false
+        };
+
+        var res = await UAuthClient.Authorization.QueryRolesAsync(req);
+
+        if (!res.IsSuccess || res.Value == null)
+        {
+            Snackbar.Add(res.ErrorText ?? "Failed", Severity.Error);
+
+            return new GridData<RoleInfo>
+            {
+                Items = Array.Empty<RoleInfo>(),
+                TotalItems = 0
+            };
+        }
+
+        return new GridData<RoleInfo>
+        {
+            Items = res.Value.Items,
+            TotalItems = res.Value.TotalCount
+        };
+    }
+
+    private async Task<DataGridEditFormAction> CommittedItemChanges(RoleInfo role)
+    {
+        var req = new RenameRoleRequest
+        {
+            Id = role.Id,
+            Name = role.Name
+        };
+
+        var result = await UAuthClient.Authorization.RenameRoleAsync(req);
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Role renamed", Severity.Success);
+        }
+        else
+        {
+            Snackbar.Add(result.ErrorText ?? "Rename failed", Severity.Error);
+        }
+
+        await ReloadAsync();
+        return DataGridEditFormAction.Close;
+    }
+
+    private async Task CreateRole()
+    {
+        if (string.IsNullOrWhiteSpace(_newRoleName))
+        {
+            Snackbar.Add("Role name required.", Severity.Warning);
+            return;
+        }
+
+        var req = new CreateRoleRequest
+        {
+            Name = _newRoleName
+        };
+
+        var res = await UAuthClient.Authorization.CreateRoleAsync(req);
+
+        if (res.IsSuccess)
+        {
+            Snackbar.Add("Role created.", Severity.Success);
+            await ReloadAsync();
+        }
+        else
+        {
+            Snackbar.Add(res.ErrorText ?? "Creation failed.", Severity.Error);
+        }
+    }
+
+    private async Task DeleteRole(RoleId roleId)
+    {
+        var confirm = await DialogService.ShowMessageBoxAsync(
+            "Delete role",
+            "Are you sure?",
+            yesText: "Delete",
+            cancelText: "Cancel",
+            options: new DialogOptions() { MaxWidth = MaxWidth.Medium, FullWidth = true, BackgroundClass = "uauth-blur-slight" });
+
+        if (confirm != true)
+            return;
+
+        var req = new DeleteRoleRequest() { Id = roleId };
+        var result = await UAuthClient.Authorization.DeleteRoleAsync(req);
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add($"Role deleted, assignments removed from {result.Value?.RemovedAssignments.ToString() ?? "unknown"} users.", Severity.Success);
+            await ReloadAsync();
+        }
+        else
+        {
+            Snackbar.Add(result.ErrorText ?? "Deletion failed.", Severity.Error);
+        }
+    }
+
+    private async Task EditPermissions(RoleInfo role)
+    {
+        var dialog = await DialogService.ShowAsync<PermissionDialog>(
+            "Edit Permissions",
+            new DialogParameters
+            {
+            { nameof(PermissionDialog.Role), role }
+            },
+            new DialogOptions
+            {
+                CloseButton = true,
+                MaxWidth = MaxWidth.Large,
+                FullWidth = true
+            });
+
+        var result = await dialog.Result;
+        await ReloadAsync();
+    }
+
+    private async Task ReloadAsync()
+    {
+        _loading = true;
+        await Task.Delay(300);
+        if (_grid is null)
+            return;
+
+        await _grid.ReloadServerData();
+        _loading = false;
+    }
+
+    private int GetPermissionCount(RoleInfo role)
+    {
+        var expanded = PermissionExpander.Expand(role.Permissions, UAuthPermissionCatalog.GetAdminPermissions());
+        return expanded.Count;
+    }
+
+    private void Cancel() => MudDialog.Cancel();
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/SessionDialog.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/SessionDialog.razor
new file mode 100644
index 00000000..e5ee0c4d
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/SessionDialog.razor
@@ -0,0 +1,226 @@
+@using CodeBeam.UltimateAuth.Core.Contracts
+@using CodeBeam.UltimateAuth.Users.Contracts
+@inject IUAuthClient UAuthClient
+@inject ISnackbar Snackbar
+@inject IDialogService DialogService
+@inject IUAuthStateManager StateManager
+@inject NavigationManager Nav
+
+<MudDialog Class="mud-width-full" ContentClass="uauth-dialog">
+    <TitleContent>
+        <MudText>Session Management</MudText>
+        <MudText Typo="Typo.subtitle2" Color="Color.Primary">
+            @if (UserKey is null)
+            {
+                <text>User: @AuthState?.Identity?.DisplayName</text>
+            }
+            else
+            {
+                <text>UserKey: @UserKey.Value</text>
+            }
+        </MudText>
+    </TitleContent>
+    <DialogContent>
+        @if (_loaded)
+        {
+            @if (_chainDetail is not null)
+            {
+                <MudPaper Class="pa-4 mud-width-full" Elevation="0">
+                    <MudStack Row="true" AlignItems="AlignItems.Center" Spacing="2" Class="mb-3">
+                        <MudIconButton Icon="@Icons.Material.Filled.ArrowBack" Color="Color.Primary" Variant="Variant.Filled" OnClick="ClearDetail" />
+                        <MudText Typo="Typo.h6">Device Details</MudText>
+
+                        <MudSpacer />
+
+                        @if (!_chainDetail.IsRevoked)
+                        {
+                            <MudButton StartIcon="@Icons.Material.Filled.Logout" Variant="Variant.Filled" Color="Color.Error" OnClick="@(() => RevokeChainAsync(_chainDetail.ChainId))">
+                                Revoke Device
+                            </MudButton>
+                        }
+                    </MudStack>
+
+                    <MudPaper Class="pa-4 mb-4" Elevation="0" Outlined="true">
+                        <MudGrid Spacing="3">
+
+                            <MudItem xs="12" md="6">
+                                <MudText Typo="Typo.subtitle2" Style="color: var(--mud-palette-text-secondary)">Device Type</MudText>
+                                <MudText>@_chainDetail.DeviceType</MudText>
+                            </MudItem>
+
+                            <MudItem xs="12" md="6">
+                                <MudText Typo="Typo.subtitle2" Style="color: var(--mud-palette-text-secondary)">Platform</MudText>
+                                <MudText>@_chainDetail.Platform</MudText>
+                            </MudItem>
+
+                            <MudItem xs="12" md="6">
+                                <MudText Typo="Typo.subtitle2" Style="color: var(--mud-palette-text-secondary)">Operating System</MudText>
+                                <MudText>@_chainDetail.OperatingSystem</MudText>
+                            </MudItem>
+
+                            <MudItem xs="12" md="6">
+                                <MudText Typo="Typo.subtitle2" Style="color: var(--mud-palette-text-secondary)">Browser</MudText>
+                                <MudText>@_chainDetail.Browser</MudText>
+                            </MudItem>
+
+                            <MudItem xs="12" md="6">
+                                <MudText Typo="Typo.subtitle2" Style="color: var(--mud-palette-text-secondary)">Created</MudText>
+                                <MudText>@_chainDetail.CreatedAt.ToLocalTime()</MudText>
+                            </MudItem>
+
+                            <MudItem xs="12" md="6">
+                                <MudText Typo="Typo.subtitle2" Style="color: var(--mud-palette-text-secondary)">Last Seen</MudText>
+                                <MudText>@_chainDetail.LastSeenAt.ToLocalTime()</MudText>
+                            </MudItem>
+
+                            <MudItem xs="12" md="6">
+                                <MudText Typo="Typo.subtitle2" Style="color: var(--mud-palette-text-secondary)">State</MudText>
+                                <MudChip T="string" Class="ml-n1" Color="Color.Primary" Variant="Variant.Filled" Size="Size.Small">
+                                    @_chainDetail.State
+                                </MudChip>
+                            </MudItem>
+
+                            <MudItem xs="12" md="6">
+                                <MudText Typo="Typo.subtitle2" Style="color: var(--mud-palette-text-secondary)">Active Session</MudText>
+                                <MudText>@_chainDetail.ActiveSessionId</MudText>
+                            </MudItem>
+
+                            <MudItem xs="12" md="6">
+                                <MudText Typo="Typo.subtitle2" Style="color: var(--mud-palette-text-secondary)">Rotation Count</MudText>
+                                <MudText>@_chainDetail.RotationCount</MudText>
+                            </MudItem>
+
+                            <MudItem xs="12" md="6">
+                                <MudText Typo="Typo.subtitle2" Style="color: var(--mud-palette-text-secondary)">Touch Count</MudText>
+                                <MudText>@_chainDetail.TouchCount</MudText>
+                            </MudItem>
+
+                        </MudGrid>
+                    </MudPaper>
+
+                    <MudText Typo="Typo.h6" Class="mb-2">Session History</MudText>
+
+                    <MudTable Items="_chainDetail.Sessions" Dense="true" Hover="true" Bordered="true" Striped="true">
+                        <HeaderContent>
+                            <MudTh>Session Id</MudTh>
+                            <MudTh>Created</MudTh>
+                            <MudTh>Expires</MudTh>
+                            <MudTh>Status</MudTh>
+                        </HeaderContent>
+
+                        <RowTemplate>
+                            <MudTd>@context.SessionId</MudTd>
+                            <MudTd>@context.CreatedAt.ToLocalTime()</MudTd>
+                            <MudTd>@context.ExpiresAt.ToLocalTime()</MudTd>
+                            <MudTd>
+                                @if (context.IsRevoked)
+                                {
+                                    <MudChip T="string" Color="Color.Error" Variant="Variant.Filled" Size="Size.Small">Revoked</MudChip>
+                                }
+                                else
+                                {
+                                    <MudChip T="string" Color="Color.Success" Variant="Variant.Filled" Size="Size.Small">Active</MudChip>
+                                }
+                            </MudTd>
+                        </RowTemplate>
+                    </MudTable>
+                </MudPaper>
+            }
+            else
+            {
+                <MudStack Class="mud-width-full mb-4" Row="true">
+                    <MudButton Variant="Variant.Filled" Color="Color.Primary" StartIcon="@Icons.Material.Filled.SensorsOff" OnClick="LogoutAllAsync">Logout All Devices</MudButton>
+                    @if (UserKey == null)
+                    {
+                        <MudButton Variant="Variant.Filled" Color="Color.Primary" StartIcon="@Icons.Material.Filled.SensorsOff" OnClick="LogoutOthersAsync">Logout Other Devices</MudButton>
+                    }
+                    <MudButton Variant="Variant.Outlined" Color="Color.Error" StartIcon="@Icons.Material.Filled.SensorsOff" OnClick="RevokeAllAsync">Revoke All Devices</MudButton>
+                    @if (UserKey == null)
+                    {
+                        <MudButton Variant="Variant.Outlined" Color="Color.Error" StartIcon="@Icons.Material.Filled.SensorsOff" OnClick="RevokeOthersAsync">Revoke Other Devices</MudButton>
+                    }
+                </MudStack>
+                <MudDataGrid @ref="@_grid" T="SessionChainSummary" ServerData="LoadServerData" Hover="true" Bordered="true" Striped="true" Dense="true" Elevation="0"
+                             EditMode="DataGridEditMode.Form" ReadOnly="false" Loading="@_loading" Filterable="false">
+                    <ToolBarContent>
+                        <MudText>Sessions</MudText>
+                        <MudSpacer />
+                        <MudDivider Style="width: 30%" />
+                        <MudSpacer />
+                        <MudIconButton Variant="Variant.Filled" Color="Color.Primary" Icon="@Icons.Material.Filled.Refresh" OnClick="ReloadAsync" />
+                    </ToolBarContent>
+                    <Columns>
+                        <HierarchyColumn T="SessionChainSummary" />
+                        <PropertyColumn Property="x => x.State" Title="State" Editable="false">
+                            <CellTemplate>
+                                <MudChip T="string" Class="ml-n1" Size="Size.Small" Text="@context.Item.State.ToDescriptionString()" />
+                            </CellTemplate>
+                        </PropertyColumn>
+                        <PropertyColumn Property="x => x.IsCurrentDevice" Title="Current Device" Editable="false">
+                            <CellTemplate>
+                                <MudIcon Size="Size.Small" Icon="@(context.Item.IsCurrentDevice? Icons.Material.Filled.Done : Icons.Material.Filled.Close)" />
+                            </CellTemplate>
+                        </PropertyColumn>
+                        <PropertyColumn Property="x => x.OperatingSystem" Title="Operating System" Editable="false" />
+                        <PropertyColumn Property="x => x.Platform" Title="Platform" Editable="false" />
+                        <PropertyColumn Property="x => x.Browser" Title="Browser" Editable="false" />
+                        <PropertyColumn Property="x => x.LastSeenAt" Title="Last Seen At" Editable="false" />
+                        <TemplateColumn Title="Actions" Editable="false" StickyRight="true">
+                            <CellTemplate>
+                                <MudStack Style="min-width: 120px" Row="true" Spacing="2" Wrap="Wrap.Wrap">
+                                    <MudTooltip Text="Details" Color="Color.Primary" Delay="300" ShowOnFocus="false">
+                                        <MudIconButton Color="Color.Primary" Variant="Variant.Filled" Icon="@Icons.Material.Filled.ViewList" Size="Size.Small" OnClick="@(() => ShowChainDetailsAsync(context.Item.ChainId))" />
+                                    </MudTooltip>
+
+                                    <MudTooltip Text="Logout Device" Color="Color.Primary" Delay="300" ShowOnFocus="false">
+                                        <MudIconButton Color="Color.Primary" Variant="Variant.Filled" Icon="@Icons.Material.Filled.Logout" Size="Size.Small" OnClick="@(() => LogoutDeviceAsync(context.Item.ChainId))" />
+                                    </MudTooltip>
+
+                                    <MudTooltip Text="Revoke Device" Color="Color.Error" Delay="300" ShowOnFocus="false">
+                                        <MudIconButton Color="Color.Error" Variant="Variant.Filled" Icon="@Icons.Material.Filled.SensorsOff" Size="Size.Small" OnClick="@(() => RevokeChainAsync(context.Item.ChainId))" />
+                                    </MudTooltip>
+                                </MudStack>
+                            </CellTemplate>
+                        </TemplateColumn>
+                    </Columns>
+                    <ChildRowContent>
+                        <MudGrid Spacing="2">
+                            <MudItem xs="12" sm="6">
+                                <MudText Typo="Typo.subtitle2">Id</MudText>
+                                <MudText>@context.Item.ChainId</MudText>
+                            </MudItem>
+
+                            <MudItem xs="12" sm="6">
+                                <MudText Typo="Typo.subtitle2">Created At</MudText>
+                                <MudText>@context.Item.CreatedAt</MudText>
+                            </MudItem>
+
+                            <MudItem xs="12" sm="6">
+                                <MudText Typo="Typo.subtitle2">Touch Count</MudText>
+                                <MudText>@context.Item.TouchCount</MudText>
+                            </MudItem>
+
+                            <MudItem xs="12" sm="6">
+                                <MudText Typo="Typo.subtitle2">Rotation Count</MudText>
+                                <MudText>@context.Item.RotationCount</MudText>
+                            </MudItem>
+                        </MudGrid>
+
+                    </ChildRowContent>
+                    <PagerContent>
+                        <MudDataGridPager T="SessionChainSummary" PageSizeOptions="new int[] { 5, 10, 20 }" />
+                    </PagerContent>
+                </MudDataGrid>
+            }
+        }
+        else
+        {
+            <div class="mud-width-full mud-height-full d-flex align-center justify-center">
+                <MudProgressCircular Indeterminate="true" Color="Color.Primary" />
+            </div>
+        }
+    </DialogContent>
+    <DialogActions>
+        <MudButton OnClick="Cancel">Cancel</MudButton>
+    </DialogActions>
+</MudDialog>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/SessionDialog.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/SessionDialog.razor.cs
new file mode 100644
index 00000000..b7b084d3
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/SessionDialog.razor.cs
@@ -0,0 +1,286 @@
+using CodeBeam.UltimateAuth.Client;
+using CodeBeam.UltimateAuth.Core.Contracts;
+using CodeBeam.UltimateAuth.Core.Domain;
+using CodeBeam.UltimateAuth.Users.Contracts;
+using Microsoft.AspNetCore.Components;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Components.Dialogs;
+
+public partial class SessionDialog
+{
+    private MudDataGrid<SessionChainSummary>? _grid;
+    private bool _loading = false;
+    private bool _reloadQueued;
+    private SessionChainDetail? _chainDetail;
+    private bool _loaded;
+
+    [CascadingParameter]
+    private IMudDialogInstance MudDialog { get; set; } = default!;
+
+    [Parameter]
+    public UAuthState AuthState { get; set; } = default!;
+
+    [Parameter]
+    public UserKey? UserKey { get; set; }
+
+    protected override async Task OnAfterRenderAsync(bool firstRender)
+    {
+        await base.OnAfterRenderAsync(firstRender);
+
+        if (firstRender)
+        {
+            _loaded = true;
+            var result = await UAuthClient.Sessions.GetMyChainsAsync();
+            if (result != null && result.IsSuccess && result.Value != null)
+            {
+                await ReloadAsync();
+            }
+            StateHasChanged();
+        }
+    }
+
+    private async Task<GridData<SessionChainSummary>> LoadServerData(GridState<SessionChainSummary> state, CancellationToken ct)
+    {
+        var sort = state.SortDefinitions?.FirstOrDefault();
+
+        var req = new PageRequest
+        {
+            PageNumber = state.Page + 1,
+            PageSize = state.PageSize,
+            SortBy = sort?.SortBy,
+            Descending = sort?.Descending ?? false
+        };
+
+        UAuthResult<PagedResult<SessionChainSummary>> res;
+
+        if (UserKey is null)
+        {
+            res = await UAuthClient.Sessions.GetMyChainsAsync(req);
+        }
+        else
+        {
+            res = await UAuthClient.Sessions.GetUserChainsAsync(UserKey.Value, req);
+        }
+
+        if (!res.IsSuccess || res.Value is null)
+        {
+            Snackbar.Add(res.Problem?.Title ?? "Failed", Severity.Error);
+
+            return new GridData<SessionChainSummary>
+            {
+                Items = Array.Empty<SessionChainSummary>(),
+                TotalItems = 0
+            };
+        }
+
+        return new GridData<SessionChainSummary>
+        {
+            Items = res.Value.Items,
+            TotalItems = res.Value.TotalCount
+        };
+    }
+
+    private async Task ReloadAsync()
+    {
+        if (_loading)
+        {
+            _reloadQueued = true;
+            return;
+        }
+
+        if (_grid is null)
+            return;
+
+        _loading = true;
+        await InvokeAsync(StateHasChanged);
+        await Task.Delay(300);
+
+        try
+        {
+            await _grid.ReloadServerData();
+        }
+        finally
+        {
+            _loading = false;
+
+            if (_reloadQueued)
+            {
+                _reloadQueued = false;
+                await ReloadAsync();
+            }
+
+            await InvokeAsync(StateHasChanged);
+        }
+    }
+
+    private async Task LogoutAllAsync()
+    {
+        UAuthResult result;
+
+        if (UserKey is null)
+        {
+            result = await UAuthClient.Flows.LogoutAllMyDevicesAsync();
+        }
+        else
+        {
+            result = await UAuthClient.Flows.LogoutAllUserDevicesAsync(UserKey.Value);
+        }
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Logged out of all devices.", Severity.Success);
+            if (UserKey is null)
+                Nav.NavigateTo("/login");
+        }
+        else
+        {
+            Snackbar.Add(result.ErrorText ?? "Failed to logout.", Severity.Error);
+        }
+    }
+
+    private async Task LogoutOthersAsync()
+    {
+        var result = await UAuthClient.Flows.LogoutMyOtherDevicesAsync();
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Logged out of other devices.", Severity.Success);
+        }
+        else
+        {
+            Snackbar.Add(result?.ErrorText ?? "Failed to logout", Severity.Error);
+        }
+    }
+
+    private async Task LogoutDeviceAsync(SessionChainId chainId)
+    {
+        LogoutDeviceRequest request = new() { ChainId = chainId };
+        UAuthResult<RevokeResult> result;
+
+        if (UserKey is null)
+        {
+            result = await UAuthClient.Flows.LogoutMyDeviceAsync(request);
+        }
+        else
+        {
+            result = await UAuthClient.Flows.LogoutUserDeviceAsync(UserKey.Value, request);
+        }
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Logged out of device.", Severity.Success);
+            if (result?.Value?.CurrentChain == true)
+            {
+                Nav.NavigateTo("/login");
+                return;
+            }
+            await ReloadAsync();
+        }
+        else
+        {
+            Snackbar.Add(result.ErrorText ?? "Failed to logout.", Severity.Error);
+        }
+    }
+
+    private async Task RevokeAllAsync()
+    {
+        UAuthResult result;
+
+        if (UserKey is null)
+        {
+            result = await UAuthClient.Sessions.RevokeAllMyChainsAsync();
+        }
+        else
+        {
+            result = await UAuthClient.Sessions.RevokeAllUserChainsAsync(UserKey.Value);
+        }
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Logged out of all devices.", Severity.Success);
+
+            if (UserKey is null)
+                Nav.NavigateTo("/login");
+        }
+        else
+        {
+            Snackbar.Add(result?.ErrorText ?? "Failed to logout.", Severity.Error);
+        }
+    }
+
+    private async Task RevokeOthersAsync()
+    {
+        var result = await UAuthClient.Sessions.RevokeMyOtherChainsAsync();
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Revoked all other devices.", Severity.Success);
+            await ReloadAsync();
+        }
+        else
+        {
+            Snackbar.Add(result?.ErrorText ?? "Failed to logout.", Severity.Error);
+        }
+    }
+
+    private async Task RevokeChainAsync(SessionChainId chainId)
+    {
+        UAuthResult<RevokeResult> result;
+
+        if (UserKey is null)
+        {
+            result = await UAuthClient.Sessions.RevokeMyChainAsync(chainId);
+        }
+        else
+        {
+            result = await UAuthClient.Sessions.RevokeUserChainAsync(UserKey.Value, chainId);
+        }
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Device revoked successfully.", Severity.Success);
+
+            if (result?.Value?.CurrentChain == true)
+            {
+                Nav.NavigateTo("/login");
+                return;
+            }
+            await ReloadAsync();
+        }
+        else
+        {
+            Snackbar.Add(result?.ErrorText ?? "Failed to logout.", Severity.Error);
+        }
+    }
+
+    private async Task ShowChainDetailsAsync(SessionChainId chainId)
+    {
+        UAuthResult<SessionChainDetail> result;
+
+        if (UserKey is null)
+        {
+            result = await UAuthClient.Sessions.GetMyChainDetailAsync(chainId);
+        }
+        else
+        {
+            result = await UAuthClient.Sessions.GetUserChainDetailAsync(UserKey.Value, chainId);
+        }
+
+        if (result.IsSuccess)
+        {
+            _chainDetail = result.Value;
+        }
+        else
+        {
+            Snackbar.Add(result?.ErrorText ?? "Failed to fetch chain details.", Severity.Error);
+            _chainDetail = null;
+        }
+    }
+
+    private void ClearDetail()
+    {
+        _chainDetail = null;
+    }
+
+    private void Cancel() => MudDialog.Cancel();
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UserDetailDialog.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UserDetailDialog.razor
new file mode 100644
index 00000000..39053d5e
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UserDetailDialog.razor
@@ -0,0 +1,75 @@
+@using CodeBeam.UltimateAuth.Core.Contracts
+@using CodeBeam.UAuth.Sample.IntWasm.Client.Common
+@using CodeBeam.UltimateAuth.Users.Contracts
+@inject IUAuthClient UAuthClient
+@inject IDialogService DialogService
+@inject ISnackbar Snackbar
+
+<MudDialog Class="mud-width-full" ContentClass="uauth-dialog">
+    <TitleContent>
+        <MudText Typo="Typo.h6">User Management</MudText>
+        <MudText Typo="Typo.subtitle2">@_user?.UserKey.Value</MudText>
+    </TitleContent>
+
+    <DialogContent>
+        <MudStack Spacing="3">
+            <MudPaper Class="pa-4" Elevation="0" Outlined="true">
+                <MudGrid Spacing="2">
+                    <MudItem xs="12" sm="6">
+                        <MudText Typo="Typo.subtitle2">Display Name</MudText>
+                        <MudText>@_user?.DisplayName</MudText>
+                    </MudItem>
+
+                    <MudItem xs="12" sm="6">
+                        <MudText Typo="Typo.subtitle2">Username</MudText>
+                        <MudText>@_user?.UserName</MudText>
+                    </MudItem>
+
+                    <MudItem xs="12" sm="6">
+                        <MudText Typo="Typo.subtitle2">Email</MudText>
+                        <MudText>@_user?.PrimaryEmail</MudText>
+                    </MudItem>
+
+                    <MudItem xs="12" sm="6">
+                        <MudText Typo="Typo.subtitle2">Phone</MudText>
+                        <MudText>@_user?.PrimaryPhone</MudText>
+                    </MudItem>
+
+                    <MudItem xs="12" sm="6">
+                        <MudText Typo="Typo.subtitle2">Created</MudText>
+                        <MudText>@_user?.CreatedAt?.ToLocalTime()</MudText>
+                    </MudItem>
+
+                    <MudItem xs="12" sm="6">
+                        <MudText Typo="Typo.subtitle2">Status</MudText>
+                        <MudChip T="string" Color="@GetStatusColor(_user?.Status)" Variant="Variant.Filled">@_user?.Status</MudChip>
+                        <MudStack Row="true" AlignItems="AlignItems.Center" Spacing="2">
+                            <MudSelect T="AdminAssignableUserStatus" @bind-Value="_status" Dense="true" Variant="Variant.Outlined">
+                                @foreach (var s in Enum.GetValues<AdminAssignableUserStatus>())
+                                {
+                                    <MudSelectItem Value="@s">@s</MudSelectItem>
+                                }
+                            </MudSelect>
+                            <MudButton Variant="Variant.Filled" Color="Color.Primary" OnClick="ChangeStatusAsync">Change</MudButton>
+                        </MudStack>
+                    </MudItem>
+                </MudGrid>
+            </MudPaper>
+
+            <MudDivider />
+
+            <MudText Typo="Typo.subtitle1">Management</MudText>
+            <MudStack Row="true" Spacing="2" Wrap="Wrap.Wrap">
+                <MudButton Variant="Variant.Filled" Color="Color.Primary" OnClick="OpenSessions">Sessions</MudButton>
+                <MudButton Variant="Variant.Filled" Color="Color.Primary" OnClick="OpenProfile">Profile</MudButton>
+                <MudButton Variant="Variant.Filled" Color="Color.Primary" OnClick="OpenIdentifiers">Identifiers</MudButton>
+                <MudButton Variant="Variant.Filled" Color="Color.Primary" OnClick="OpenCredentials">Credentials</MudButton>
+                <MudButton Variant="Variant.Filled" Color="Color.Primary" OnClick="OpenRoles">Roles</MudButton>
+            </MudStack>
+        </MudStack>
+    </DialogContent>
+
+    <DialogActions>
+        <MudButton OnClick="Close">Close</MudButton>
+    </DialogActions>
+</MudDialog>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UserDetailDialog.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UserDetailDialog.razor.cs
new file mode 100644
index 00000000..842af288
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UserDetailDialog.razor.cs
@@ -0,0 +1,100 @@
+using CodeBeam.UltimateAuth.Client;
+using CodeBeam.UltimateAuth.Core.Contracts;
+using CodeBeam.UltimateAuth.Core.Domain;
+using CodeBeam.UAuth.Sample.IntWasm.Client.Common;
+using CodeBeam.UltimateAuth.Users.Contracts;
+using Microsoft.AspNetCore.Components;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Components.Dialogs;
+
+public partial class UserDetailDialog
+{
+    private UserView? _user;
+    private AdminAssignableUserStatus _status;
+
+    [CascadingParameter]
+    IMudDialogInstance MudDialog { get; set; } = default!;
+
+    [Parameter]
+    public UAuthState AuthState { get; set; } = default!;
+
+    [Parameter]
+    public UserKey UserKey { get; set; }
+
+    protected override async Task OnInitializedAsync()
+    {
+        await base.OnInitializedAsync();
+        var result = await UAuthClient.Users.GetUserAsync(UserKey);
+
+        if (result.IsSuccess)
+        {
+            _user = result.Value;
+            _status = _user?.Status.ToAdminAssignableUserStatus() ?? AdminAssignableUserStatus.Unknown;
+        }
+    }
+
+    private async Task OpenSessions()
+    {
+        await DialogService.ShowAsync<SessionDialog>("Session Management", UAuthDialog.GetDialogParameters(AuthState, _user?.UserKey), UAuthDialog.GetDialogOptions());
+    }
+
+    private async Task OpenProfile()
+    {
+        await DialogService.ShowAsync<ProfileDialog>("Profile Management", UAuthDialog.GetDialogParameters(AuthState, _user?.UserKey), UAuthDialog.GetDialogOptions());
+    }
+
+    private async Task OpenIdentifiers()
+    {
+        await DialogService.ShowAsync<IdentifierDialog>("Identifier Management", UAuthDialog.GetDialogParameters(AuthState, _user?.UserKey), UAuthDialog.GetDialogOptions());
+    }
+
+    private async Task OpenCredentials()
+    {
+        await DialogService.ShowAsync<CredentialDialog>("Credentials", UAuthDialog.GetDialogParameters(AuthState, _user?.UserKey), UAuthDialog.GetDialogOptions());
+    }
+
+    private async Task OpenRoles()
+    {
+        await DialogService.ShowAsync<UserRoleDialog>("Roles", UAuthDialog.GetDialogParameters(AuthState, _user?.UserKey), UAuthDialog.GetDialogOptions());
+    }
+
+    private async Task ChangeStatusAsync()
+    {
+        if (_user is null)
+            return;
+
+        ChangeUserStatusAdminRequest request = new()
+        {
+            NewStatus = _status,
+        };
+
+        var result = await UAuthClient.Users.ChangeUserStatusAsync(_user.UserKey, request);
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("User status updated", Severity.Success);
+            _user = _user with { Status = _status.ToUserStatus() };
+        }
+        else
+        {
+            Snackbar.Add(result.ErrorText ?? "Failed", Severity.Error);
+        }
+    }
+
+    private Color GetStatusColor(UserStatus? status)
+    {
+        return status switch
+        {
+            UserStatus.Active => Color.Success,
+            UserStatus.Suspended => Color.Warning,
+            UserStatus.Disabled => Color.Error,
+            _ => Color.Default
+        };
+    }
+
+    private void Close()
+    {
+        MudDialog.Close();
+    }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UserRoleDialog.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UserRoleDialog.razor
new file mode 100644
index 00000000..6e754848
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UserRoleDialog.razor
@@ -0,0 +1,49 @@
+@using CodeBeam.UltimateAuth.Authorization.Contracts
+@inject IUAuthClient UAuthClient
+@inject IDialogService DialogService
+@inject ISnackbar Snackbar
+
+<MudDialog Class="mud-width-full" ContentClass="uauth-dialog">
+
+    <TitleContent>
+        <MudText Typo="Typo.h6">User Roles</MudText>
+        <MudText Typo="Typo.subtitle2">UserKey: @UserKey.Value</MudText>
+    </TitleContent>
+
+    <DialogContent>
+        <MudStack Spacing="2">
+            <MudText Typo="Typo.subtitle1">Assigned Roles</MudText>
+
+            @if (_roles.Count == 0)
+            {
+                <MudText Color="Color.Secondary">No roles assigned</MudText>
+            }
+
+            <MudStack Row="true" Wrap="Wrap.Wrap" Spacing="1">
+                @foreach (var role in _roles)
+                {
+                    <MudChip T="string" Color="Color.Primary" Variant="Variant.Filled" OnClose="(() => RemoveRole(role))">@role</MudChip>
+                }
+            </MudStack>
+
+            <MudDivider Class="my-4" />
+
+            <MudText Typo="Typo.subtitle1">Add Role</MudText>
+            <MudStack Row="true" Spacing="2">
+
+                <MudSelect T="string" @bind-Value="_selectedRole" Label="Role" Dense="true">
+                    @foreach (var role in _allRoles)
+                    {
+                        <MudSelectItem Value="@role.Name">@role.Name</MudSelectItem>
+                    }
+                </MudSelect>
+
+                <MudButton Variant="Variant.Filled" Color="Color.Primary" OnClick="AddRole">Add</MudButton>
+            </MudStack>
+        </MudStack>
+    </DialogContent>
+
+    <DialogActions>
+        <MudButton OnClick="Close">Close</MudButton>
+    </DialogActions>
+</MudDialog>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UserRoleDialog.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UserRoleDialog.razor.cs
new file mode 100644
index 00000000..b167d6db
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UserRoleDialog.razor.cs
@@ -0,0 +1,124 @@
+using CodeBeam.UltimateAuth.Authorization.Contracts;
+using CodeBeam.UltimateAuth.Client;
+using CodeBeam.UltimateAuth.Core.Domain;
+using Microsoft.AspNetCore.Components;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Components.Dialogs;
+
+public partial class UserRoleDialog
+{
+    [CascadingParameter]
+    private IMudDialogInstance MudDialog { get; set; } = default!;
+
+    [Parameter]
+    public UAuthState AuthState { get; set; } = default!;
+
+    [Parameter]
+    public UserKey UserKey { get; set; } = default!;
+
+    private List<string> _roles = new();
+    private List<RoleInfo> _allRoles = new();
+
+    private string? _selectedRole;
+
+    protected override async Task OnInitializedAsync()
+    {
+        await LoadRoles();
+    }
+
+    private async Task LoadRoles()
+    {
+        var userRoles = await UAuthClient.Authorization.GetUserRolesAsync(UserKey);
+
+        if (userRoles.IsSuccess && userRoles.Value != null)
+            _roles = userRoles.Value.Roles.Items.Select(x => x.Name).ToList();
+
+        var roles = await UAuthClient.Authorization.QueryRolesAsync(new RoleQuery
+        {
+            PageNumber = 1,
+            PageSize = 200
+        });
+
+        if (roles.IsSuccess && roles.Value != null)
+            _allRoles = roles.Value.Items.ToList();
+    }
+
+    private async Task AddRole()
+    {
+        if (string.IsNullOrWhiteSpace(_selectedRole))
+            return;
+
+        var request = new AssignRoleRequest
+        {
+            UserKey = UserKey,
+            RoleName = _selectedRole
+        };
+
+        var result = await UAuthClient.Authorization.AssignRoleToUserAsync(request);
+
+        if (result.IsSuccess)
+        {
+            _roles.Add(_selectedRole);
+            Snackbar.Add("Role assigned", Severity.Success);
+        }
+        else
+        {
+            Snackbar.Add(result.ErrorText ?? "Failed", Severity.Error);
+        }
+
+        _selectedRole = null;
+    }
+
+    private async Task RemoveRole(string role)
+    {
+        var confirm = await DialogService.ShowMessageBoxAsync(
+            "Remove Role",
+            $"Remove {role} from user?",
+            yesText: "Remove",
+            noText: "Cancel",
+            options: new DialogOptions() { MaxWidth = MaxWidth.Medium, FullWidth = true, BackgroundClass = "uauth-blur-slight" });
+
+        if (confirm != true)
+        {
+            Snackbar.Add("Role remove process cancelled.", Severity.Info);
+            return;
+        }
+
+        if (role == "Admin")
+        {
+            var confirm2 = await DialogService.ShowMessageBoxAsync(
+                "Are You Sure",
+                "You are going to remove admin role. This action may cause the application unuseable.",
+                yesText: "Remove",
+                noText: "Cancel",
+                options: new DialogOptions() { MaxWidth = MaxWidth.Medium, FullWidth = true, BackgroundClass = "uauth-blur-slight" });
+
+            if (confirm2 != true)
+            {
+                Snackbar.Add("Role remove process cancelled.", Severity.Info);
+                return;
+            }
+        }
+
+        var request = new RemoveRoleRequest
+        {
+            UserKey = UserKey,
+            RoleName = role
+        };
+
+        var result = await UAuthClient.Authorization.RemoveRoleFromUserAsync(request);
+
+        if (result.IsSuccess)
+        {
+            _roles.Remove(role);
+            Snackbar.Add("Role removed.", Severity.Success);
+        }
+        else
+        {
+            Snackbar.Add(result.ErrorText ?? "Failed", Severity.Error);
+        }
+    }
+
+    private void Close() => MudDialog.Close();
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UsersDialog.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UsersDialog.razor
new file mode 100644
index 00000000..0eea8438
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UsersDialog.razor
@@ -0,0 +1,94 @@
+@using CodeBeam.UltimateAuth.Core.Contracts
+@using CodeBeam.UAuth.Sample.IntWasm.Client.Common
+@using CodeBeam.UltimateAuth.Users.Contracts
+@inject IUAuthClient UAuthClient
+@inject IDialogService DialogService
+@inject ISnackbar Snackbar
+
+<MudDialog Class="mud-width-full" ContentClass="uauth-dialog">
+    <TitleContent>
+        <MudText Typo="Typo.h6">User Management</MudText>
+        <MudText Typo="Typo.subtitle2" Color="Color.Primary">Browse, create and manage users</MudText>
+    </TitleContent>
+
+    <DialogContent>
+        @if (_loaded)
+        {
+            <MudGrid>
+                <MudItem xs="12" sm="8">
+                    <MudTextField @bind-Value="_search" @bind-Value:after="@ReloadAsync" Placeholder="Search by user key, username, email or display name"
+                                  Variant="Variant.Outlined" Immediate="true" Adornment="Adornment.Start" AdornmentIcon="@Icons.Material.Filled.Search" />
+                </MudItem>
+
+                <MudItem xs="12" sm="4">
+                    <MudSelectExtended T="UserStatus?" ItemCollection="@(Enum.GetValues<UserStatus>().Cast<UserStatus?>().Prepend(null).ToList())"
+                                       Value="_statusFilter" ValueChanged="OnStatusChanged" Label="Status" Variant="Variant.Outlined" Dense="true" Clearable="true" />
+                </MudItem>
+            </MudGrid>
+
+            <MudDataGrid @ref="@_grid" T="UserSummary" ServerData="LoadUsers" Dense="true" Hover="true" Striped="true" Bordered="true" Loading="@_loading" Elevation="0">
+                <ToolBarContent>
+                    <MudStack Row="true" AlignItems="AlignItems.Center" Class="mud-width-full">
+                        <MudText Typo="Typo.h6">Users</MudText>
+                        <MudSpacer />
+                        <MudButton Variant="Variant.Filled" Color="Color.Primary" StartIcon="@Icons.Material.Filled.PersonAdd" OnClick="OpenCreateUser">New User</MudButton>
+                    </MudStack>
+                </ToolBarContent>
+                <Columns>
+                    <HierarchyColumn T="UserSummary" />
+                    <PropertyColumn Property="x => x.UserName" Title="Username" />
+                    <PropertyColumn Property="x => x.DisplayName" Title="Display Name" />
+                    <PropertyColumn Property="x => x.PrimaryEmail" Title="Email" />
+                    <PropertyColumn Property="x => x.PrimaryPhone" Title="Phone" />
+                    <TemplateColumn Title="Status">
+                        <CellTemplate>
+                            <MudChip T="string" Size="Size.Small" Variant="Variant.Filled" Color="@GetStatusColor(context.Item.Status)">@context.Item.Status</MudChip>
+                        </CellTemplate>
+                    </TemplateColumn>
+                    <TemplateColumn Title="Actions" StickyRight="true">
+                        <CellTemplate>
+                            <MudStack Row="true" Spacing="1">
+                                <MudTooltip Text="Manage" Color="Color.Primary" Delay="300">
+                                    <MudIconButton Icon="@Icons.Material.Filled.ViewList" Color="Color.Primary" Variant="Variant.Filled" Size="Size.Small" OnClick="@(() => OpenUser(context.Item.UserKey))" />
+                                </MudTooltip>
+
+                                <MudTooltip Text="Delete User" Color="Color.Error" Delay="300">
+                                    <MudIconButton Icon="@Icons.Material.Filled.Delete" Color="Color.Error" Variant="Variant.Filled" Size="Size.Small" OnClick="@(() => DeleteUserAsync(context.Item))" />
+                                </MudTooltip>
+                            </MudStack>
+                        </CellTemplate>
+                    </TemplateColumn>
+                </Columns>
+
+                <ChildRowContent>
+                    <MudGrid Spacing="2">
+                        <MudItem xs="12" sm="6">
+                            <MudText Typo="Typo.subtitle2">Id</MudText>
+                            <MudText>@context.Item.UserKey.Value</MudText>
+                        </MudItem>
+
+                        <MudItem xs="12" sm="6">
+                            <MudText Typo="Typo.subtitle2">Created At</MudText>
+                            <MudText>@context.Item.CreatedAt</MudText>
+                        </MudItem>
+                    </MudGrid>
+
+                </ChildRowContent>
+
+                <PagerContent>
+                    <MudDataGridPager T="UserSummary" PageSizeOptions="new int[] { 5, 10, 20, 50 }" />
+                </PagerContent>
+            </MudDataGrid>
+        }
+        else
+        {
+            <div class="mud-width-full mud-height-full d-flex align-center justify-center">
+                <MudProgressCircular Indeterminate="true" Color="Color.Primary" />
+            </div>
+        }
+    </DialogContent>
+
+    <DialogActions>
+        <MudButton OnClick="Close">Close</MudButton>
+    </DialogActions>
+</MudDialog>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UsersDialog.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UsersDialog.razor.cs
new file mode 100644
index 00000000..cc24a17b
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Components/Dialogs/UsersDialog.razor.cs
@@ -0,0 +1,188 @@
+using CodeBeam.UltimateAuth.Client;
+using CodeBeam.UltimateAuth.Core.Contracts;
+using CodeBeam.UltimateAuth.Core.Domain;
+using CodeBeam.UAuth.Sample.IntWasm.Client.Common;
+using CodeBeam.UltimateAuth.Users.Contracts;
+using Microsoft.AspNetCore.Components;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Components.Dialogs;
+
+public partial class UsersDialog
+{
+    private MudDataGrid<UserSummary>? _grid;
+    private bool _loading;
+    private string? _search;
+    private bool _reloadQueued;
+    private UserStatus? _statusFilter;
+    private bool _loaded;
+
+    [CascadingParameter]
+    IMudDialogInstance MudDialog { get; set; } = default!;
+
+    [Parameter]
+    public UAuthState AuthState { get; set; } = default!;
+
+    protected override async Task OnAfterRenderAsync(bool firstRender)
+    {
+        await base.OnAfterRenderAsync(firstRender);
+
+        if (firstRender)
+        {
+            _loaded = true;
+            StateHasChanged();
+        }
+    }
+
+    private async Task<GridData<UserSummary>> LoadUsers(GridState<UserSummary> state, CancellationToken ct)
+    {
+        var sort = state.SortDefinitions?.FirstOrDefault();
+
+        var req = new UserQuery
+        {
+            PageNumber = state.Page + 1,
+            PageSize = state.PageSize,
+            Search = _search,
+            Status = _statusFilter,
+            SortBy = sort?.SortBy,
+            Descending = sort?.Descending ?? false
+        };
+
+        var res = await UAuthClient.Users.QueryAsync(req);
+
+        if (!res.IsSuccess || res.Value == null)
+        {
+            Snackbar.Add(res.ErrorText ?? "Failed to load users.", Severity.Error);
+
+            return new GridData<UserSummary>
+            {
+                Items = Array.Empty<UserSummary>(),
+                TotalItems = 0
+            };
+        }
+
+        return new GridData<UserSummary>
+        {
+            Items = res.Value.Items,
+            TotalItems = res.Value.TotalCount
+        };
+    }
+
+    private async Task ReloadAsync()
+    {
+        if (_loading)
+        {
+            _reloadQueued = true;
+            return;
+        }
+
+        if (_grid is null)
+            return;
+
+        _loading = true;
+        await InvokeAsync(StateHasChanged);
+
+        try
+        {
+            await _grid.ReloadServerData();
+        }
+        finally
+        {
+            _loading = false;
+
+            if (_reloadQueued)
+            {
+                _reloadQueued = false;
+                await ReloadAsync();
+            }
+
+            await InvokeAsync(StateHasChanged);
+        }
+    }
+
+    private async Task OnStatusChanged(UserStatus? status)
+    {
+        _statusFilter = status;
+        await ReloadAsync();
+    }
+
+    private async Task OpenUser(UserKey userKey)
+    {
+        var dialog = await DialogService.ShowAsync<UserDetailDialog>("User", UAuthDialog.GetDialogParameters(AuthState, userKey), UAuthDialog.GetDialogOptions());
+        await dialog.Result;
+        await ReloadAsync();
+    }
+
+    private async Task OpenCreateUser()
+    {
+        var dialog = await DialogService.ShowAsync<CreateUserDialog>(
+            "Create User",
+            new DialogOptions
+            {
+                MaxWidth = MaxWidth.Small,
+                FullWidth = true,
+                CloseButton = true
+            });
+
+        var result = await dialog.Result;
+
+        if (result?.Canceled == false)
+            await ReloadAsync();
+    }
+
+    private async Task DeleteUserAsync(UserSummary user)
+    {
+        var confirm = await DialogService.ShowMessageBoxAsync(
+            title: "Delete user",
+            markupMessage: (MarkupString)$"""
+            Are you sure you want to delete <b>{user.DisplayName ?? user.UserName ?? user.PrimaryEmail ?? user.UserKey}</b>?
+            <br/><br/>
+            This operation is intended for admin usage.
+            """,
+            yesText: "Delete",
+            cancelText: "Cancel",
+            options: new DialogOptions
+            {
+                MaxWidth = MaxWidth.Medium,
+                FullWidth = true,
+                BackgroundClass = "uauth-blur-slight"
+            });
+
+        if (confirm != true)
+            return;
+
+        var req = new DeleteUserRequest
+        {
+            Mode = DeleteMode.Soft
+        };
+
+        var result = await UAuthClient.Users.DeleteUserAsync(UserKey.Parse(user.UserKey, null), req);
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("User deleted successfully.", Severity.Success);
+            await ReloadAsync();
+        }
+        else
+        {
+            Snackbar.Add(result.ErrorText ?? "Failed to delete user.", Severity.Error);
+        }
+    }
+
+    private static Color GetStatusColor(UserStatus status)
+    {
+        return status switch
+        {
+            UserStatus.Active => Color.Success,
+            UserStatus.SelfSuspended => Color.Warning,
+            UserStatus.Suspended => Color.Warning,
+            UserStatus.Disabled => Color.Error,
+            _ => Color.Default
+        };
+    }
+
+    private void Close()
+    {
+        MudDialog.Close();
+    }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Infrastructure/DarkModeManager.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Infrastructure/DarkModeManager.cs
new file mode 100644
index 00000000..3f654e18
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Infrastructure/DarkModeManager.cs
@@ -0,0 +1,45 @@
+using CodeBeam.UltimateAuth.Client.Contracts;
+using CodeBeam.UltimateAuth.Client.Infrastructure;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Infrastructure;
+
+public sealed class DarkModeManager
+{
+    private const string StorageKey = "uauth:theme:dark";
+
+    private readonly IClientStorage _storage;
+
+    public DarkModeManager(IClientStorage storage)
+    {
+        _storage = storage;
+    }
+
+    public async Task InitializeAsync()
+    {
+        var value = await _storage.GetAsync(StorageScope.Local, StorageKey);
+
+        if (bool.TryParse(value, out var parsed))
+            IsDarkMode = parsed;
+    }
+
+    public bool IsDarkMode { get; set; }
+
+    public event Action? Changed;
+
+    public async Task ToggleAsync()
+    {
+        IsDarkMode = !IsDarkMode;
+
+        await _storage.SetAsync(StorageScope.Local, StorageKey, IsDarkMode.ToString());
+        Changed?.Invoke();
+    }
+
+    public void Set(bool value)
+    {
+        if (IsDarkMode == value)
+            return;
+
+        IsDarkMode = value;
+        Changed?.Invoke();
+    }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Layout/MainLayout.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Layout/MainLayout.razor
new file mode 100644
index 00000000..d1498eb6
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Layout/MainLayout.razor
@@ -0,0 +1,72 @@
+@inherits LayoutComponentBase
+@inject IUAuthClient UAuthClient
+@inject ISnackbar Snackbar
+@inject NavigationManager Nav
+
+@if (!RendererInfo.IsInteractive)
+{
+    <MudOverlay Class="d-flex align-center justify-center" Style="width: 100vw; height: 100vh" Visible="true" DarkBackground="true" ZIndex="9999">
+        <MudProgressCircular Indeterminate="true" Color="Color.Primary" Size="Size.Large" />
+    </MudOverlay>
+}
+
+<MudLayout>
+    <MudAppBar Class="uauth-blur" Color="Color.Transparent" Dense="true" Elevation="0">
+        <UAuthLogo />
+        <MudText Class="ml-2 cursor-pointer" Style="user-select: none" @onclick="@(() => Nav.NavigateTo("/home", true))"><b>UltimateAuth</b></MudText>
+        <MudDivider Class="ml-3 mr-1" Vertical="true" />
+        <MudText Class="ml-2" Style="line-height: 14px" Typo="Typo.subtitle2">Blazor WASM Sample</MudText>
+
+        <MudSpacer />
+
+        <MudIconButton Icon="@(DarkModeManager.IsDarkMode? Icons.Material.Filled.LightMode : Icons.Material.Filled.DarkMode)" OnClick="@(() => DarkModeManager.ToggleAsync())" />
+
+        <UAuthStateView>
+            <Authorized Context="state">
+                <MudMenu PopoverClass="mud-theme-primary uauth-menu-popover" AnchorOrigin="Origin.BottomRight" TransformOrigin="Origin.TopRight">
+                    <ActivatorContent>
+                        <div @onclick="@(() => context.ToggleAsync())">
+                            <MudBadge Overlap="true" Dot="true" Color="@GetBadgeColor()">
+                                <MudAvatar Class="cursor-pointer mud-ripple" Variant="Variant.Filled" Color="Color.Primary">
+                                    <MudText Typo="Typo.subtitle2">@((state.Identity?.DisplayName ?? "?").Trim() is var n ? (n.Length >= 2 ? n[..2] : n[..1]) : "?")</MudText>
+                                </MudAvatar>
+                            </MudBadge>
+                        </div>
+                    </ActivatorContent>
+
+                    <ChildContent>
+                        <MudText Class="px-4 py-2"><b>@state.Identity?.DisplayName</b></MudText>
+                        <MudText Class="px-4" Typo="Typo.subtitle2">@string.Join(", ", state.Claims.Roles)</MudText>
+
+                        <MudDivider />
+
+                        <MudMenuItem Icon="@Icons.Material.Filled.Refresh" IconColor="Color.Secondary" Label="Refresh Session" OnClick="@Refresh" />
+                        <MudMenuItem Icon="@Icons.Material.Filled.VerifiedUser" IconColor="Color.Secondary" Label="Validate Session" OnClick="@Validate" />
+                        <MudMenuItem Icon="@Icons.Material.Filled.Logout" IconColor="Color.Secondary" Label="Logout" OnClick="@Logout" />
+
+                        @if (state.Identity?.SessionState is not null && state.Identity.SessionState != SessionState.Active)
+                        {
+                            <MudDivider />
+                            <MudMenuItem Icon="@Icons.Material.Filled.Login" Label="Reauthenticate" OnClick="@GoToLoginWithReturn" />
+                        }
+                    </ChildContent>
+                </MudMenu>
+            </Authorized>
+
+            <NotAuthorized>
+                <MudChip T="string" Style="width: fit-content" Text="Sign In" Color="Color.Primary" Variant="Variant.Filled" Class="cursor-pointer" OnClick="@HandleSignInClick" />
+            </NotAuthorized>
+        </UAuthStateView>
+    </MudAppBar>
+
+    <MudMainContent>
+        @Body
+    </MudMainContent>
+</MudLayout>
+
+
+<div id="blazor-error-ui">
+    An unhandled error has occurred.
+    <a href="" class="reload">Reload</a>
+    <a class="dismiss">🗙</a>
+</div>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Layout/MainLayout.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Layout/MainLayout.razor.cs
new file mode 100644
index 00000000..dfefa793
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Layout/MainLayout.razor.cs
@@ -0,0 +1,130 @@
+using CodeBeam.UltimateAuth.Client;
+using CodeBeam.UltimateAuth.Client.Errors;
+using CodeBeam.UltimateAuth.Core.Contracts;
+using CodeBeam.UltimateAuth.Core.Domain;
+using CodeBeam.UltimateAuth.Core.Errors;
+using CodeBeam.UAuth.Sample.IntWasm.Client.Infrastructure;
+using Microsoft.AspNetCore.Components;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Layout;
+
+public partial class MainLayout
+{
+    [CascadingParameter]
+    public UAuthState UAuth { get; set; } = default!;
+
+    [CascadingParameter]
+    public DarkModeManager DarkModeManager { get; set; } = default!;
+
+    private async Task Refresh()
+    {
+        await UAuthClient.Flows.RefreshAsync();
+    }
+
+    private async Task Logout()
+    {
+        await UAuthClient.Flows.LogoutAsync();
+    }
+
+    private Color GetBadgeColor()
+    {
+        if (UAuth is null || !UAuth.IsAuthenticated)
+            return Color.Error;
+
+        if (UAuth.IsStale)
+            return Color.Warning;
+
+        var state = UAuth.Identity?.SessionState;
+
+        if (state is null || state == SessionState.Active)
+            return Color.Success;
+
+        if (state == SessionState.Invalid)
+            return Color.Error;
+
+        return Color.Warning;
+    }
+
+    private void HandleSignInClick()
+    {
+        var uri = Nav.ToAbsoluteUri(Nav.Uri);
+
+        if (uri.AbsolutePath.EndsWith("/login", StringComparison.OrdinalIgnoreCase))
+        {
+            Nav.NavigateTo("/login?focus=1", replace: true, forceLoad: true);
+            return;
+        }
+
+        GoToLoginWithReturn();
+    }
+
+    private async Task Validate()
+    {
+        try
+        {
+            var result = await UAuthClient.Flows.ValidateAsync();
+
+            if (result.IsValid)
+            {
+                if (result.Snapshot?.Identity.UserStatus == UserStatus.SelfSuspended)
+                {
+                    Snackbar.Add("Your account is suspended by you.", Severity.Warning);
+                    return;
+                }
+                Snackbar.Add($"Session active • Tenant: {result.Snapshot?.Identity?.Tenant.Value} • User: {result.Snapshot?.Identity?.PrimaryUserName}", Severity.Success);
+            }
+            else
+            {
+                switch (result.State)
+                {
+                    case SessionState.Expired:
+                        Snackbar.Add("Session expired. Please sign in again.", Severity.Warning);
+                        break;
+
+                    case SessionState.DeviceMismatch:
+                        Snackbar.Add("Session invalid for this device.", Severity.Error);
+                        break;
+
+                    default:
+                        Snackbar.Add($"Session state: {result.State}", Severity.Error);
+                        break;
+                }
+            }
+        }
+        catch (UAuthTransportException)
+        {
+            Snackbar.Add("Network error.", Severity.Error);
+        }
+        catch (UAuthProtocolException)
+        {
+            Snackbar.Add("Invalid response.", Severity.Error);
+        }
+        catch (UAuthException ex)
+        {
+            Snackbar.Add($"UAuth error: {ex.Message}", Severity.Error);
+        }
+        catch (Exception ex)
+        {
+            Snackbar.Add($"Unexpected error: {ex.Message}", Severity.Error);
+        }
+    }
+
+    private void GoToLoginWithReturn()
+    {
+        var uri = Nav.ToAbsoluteUri(Nav.Uri);
+
+        if (uri.AbsolutePath.EndsWith("/login", StringComparison.OrdinalIgnoreCase))
+        {
+            Nav.NavigateTo("/login", replace: true);
+            return;
+        }
+
+        var current = Nav.ToBaseRelativePath(uri.ToString());
+        if (string.IsNullOrWhiteSpace(current))
+            current = "home";
+
+        var returnUrl = Uri.EscapeDataString("/" + current.TrimStart('/'));
+        Nav.NavigateTo($"/login?returnUrl={returnUrl}", replace: true);
+    }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/AnonymousTestPage.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/AnonymousTestPage.razor
new file mode 100644
index 00000000..10d035ba
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/AnonymousTestPage.razor
@@ -0,0 +1 @@
+@page "/anonymous-test"
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/AuthorizedTestPage.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/AuthorizedTestPage.razor
new file mode 100644
index 00000000..e5554c4e
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/AuthorizedTestPage.razor
@@ -0,0 +1,26 @@
+@page "/authorized-test"
+@attribute [Authorize]
+
+<MudPage Class="d-flex align-center justify-center" FullScreen="FullScreen.FullWithoutAppbar" Column="1" Row="1">
+    <MudPaper Class="pa-8" Style="max-width: 520px; width: 100%;" Elevation="0" Outlined="true">
+        <MudStack Spacing="3" AlignItems="AlignItems.Center">
+            <MudIcon Icon="@Icons.Material.Filled.Verified" Color="Color.Success" Size="Size.Large" />
+
+            <MudText Typo="Typo.h5"><b>Everything is Ok</b></MudText>
+
+            <MudText Typo="Typo.body2" Align="Align.Center">
+                If you see this section, it means you succesfully logged in.
+            </MudText>
+
+            <MudStack Row="true" Spacing="2" Class="mt-2">
+                <MudButton Href="/home" Color="Color.Primary" Variant="Variant.Filled">Go Profile</MudButton>
+            </MudStack>
+
+            <MudDivider Class="my-2" />
+
+            <MudText Typo="Typo.caption" Color="Color.Primary">
+                UltimateAuth protects this resource based on your session and permissions.
+            </MudText>
+        </MudStack>
+    </MudPaper>
+</MudPage>
\ No newline at end of file
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Home.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Home.razor
new file mode 100644
index 00000000..d1a9096c
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Home.razor
@@ -0,0 +1,455 @@
+@page "/home"
+@* To make Authorize attribute to work, add ResourceApi in Program.cs, but it affects performance significantly *@
+@* @attribute [Authorize] *@
+@inherits UAuthFlowPageBase
+
+@inject IUAuthClient UAuthClient
+@inject UAuthClientDiagnostics Diagnostics
+@inject AuthenticationStateProvider AuthStateProvider
+@inject ISnackbar Snackbar
+@inject IDialogService DialogService
+@using System.Security.Claims
+@using CodeBeam.UltimateAuth.Client.Diagnostics
+@using CodeBeam.UltimateAuth.Core.Contracts
+@using CodeBeam.UltimateAuth.Core.Defaults
+@using CodeBeam.UAuth.Sample.IntWasm.Client.Components.Custom
+@using Microsoft.AspNetCore.Authorization
+
+@if (AuthState?.Identity?.UserStatus == UserStatus.SelfSuspended)
+{
+    <UAuthPageComponent>
+        <MudStack>
+            <MudAlert Severity="Severity.Warning">
+                Your account is suspended. Please active it before continue.
+            </MudAlert>
+
+            <MudStack Class="mud-width-full" Row="true" Justify="Justify.Center">
+                <MudButton Color="Color.Primary" Variant="Variant.Filled" OnClick="SetAccountActiveAsync">Set Active</MudButton>
+                <MudButton Color="Color.Error" Variant="Variant.Outlined" OnClick="Logout">Logout</MudButton>
+            </MudStack>
+        </MudStack>
+    </UAuthPageComponent>
+    return;
+}
+
+@if (AuthState?.Identity?.UserStatus == UserStatus.Suspended)
+{
+    <UAuthPageComponent>
+        <MudStack>
+            <MudAlert Severity="Severity.Warning">
+                Your account is suspended. Please contact with administrator.
+            </MudAlert>
+
+            <MudStack Class="mud-width-full" Row="true" Justify="Justify.Center">
+                <MudButton Color="Color.Error" Variant="Variant.Outlined" OnClick="Logout">Logout</MudButton>
+            </MudStack>
+        </MudStack>
+    </UAuthPageComponent>
+    return;
+}
+
+<MudPage Class="mud-width-full" FullScreen="FullScreen.FullWithoutAppbar" Column="1" Row="1">
+    <MudContainer MaxWidth="MaxWidth.ExtraLarge" Gutters="false">
+        <MudGrid Spacing="3">
+
+            <!-- OPERATIONS -->
+            <MudItem xs="12" md="4" Class="order-2 order-md-1">
+                <MudExpansionPanel Text="Auth Operations" Expanded="true">
+                    <MudStack Class="mt-2" Spacing="2">
+                        <MudStack Row="true" AlignItems="AlignItems.Center">
+                            <MudText Typo="Typo.subtitle2">Session</MudText>
+                            <MudDivider Style="width: 60%" />
+                        </MudStack>
+
+                        <MudGrid Spacing="2">
+                            <MudItem xs="12" sm="6">
+                                <MudButton FullWidth Variant="Variant.Outlined" StartIcon="@Icons.Material.Filled.VerifiedUser" OnClick="Validate">
+                                    <MudText Class="mud-width-full" Align="Align.Center">Validate</MudText>
+                                </MudButton>
+                            </MudItem>
+
+                            <MudItem xs="12" sm="6">
+                                <MudButton FullWidth Variant="Variant.Outlined" StartIcon="@Icons.Material.Filled.Refresh" OnClick="RefreshSession">
+                                    <MudText Class="mud-width-full" Align="Align.Center">Manual Refresh</MudText>
+                                </MudButton>
+                            </MudItem>
+
+                            <MudItem xs="12">
+                                <MudButton FullWidth Variant="Variant.Outlined" Color="Color.Error" StartIcon="@Icons.Material.Filled.Logout" OnClick="Logout">
+                                    <MudText Class="mud-width-full" Align="Align.Center">Logout</MudText>
+                                </MudButton>
+                            </MudItem>
+                        </MudGrid>
+
+                        <MudStack Class="mt-4" Row="true" AlignItems="AlignItems.Center">
+                            <MudText Typo="Typo.subtitle2">Account</MudText>
+                            <MudDivider Style="width: 60%" />
+                        </MudStack>
+
+                        <MudButton FullWidth Variant="Variant.Outlined" StartIcon="@Icons.Material.Filled.SpaceDashboard" OnClick="OpenSessionDialog">
+                            <MudText Class="mud-width-full" Align="Align.Center">Manage Sessions</MudText>
+                        </MudButton>
+
+                        <MudButton FullWidth Variant="Variant.Outlined" StartIcon="@Icons.Material.Filled.Person" OnClick="OpenProfileDialog">
+                            <MudText Class="mud-width-full" Align="Align.Center">Manage Profile</MudText>
+                        </MudButton>
+
+                        <MudButton FullWidth Variant="Variant.Outlined" StartIcon="@Icons.Material.Filled.Abc" OnClick="OpenIdentifierDialog">
+                            <MudText Class="mud-width-full" Align="Align.Center">Manage Identifiers</MudText>
+                        </MudButton>
+
+                        <MudButton FullWidth Variant="Variant.Outlined" StartIcon="@Icons.Material.Filled.Password" OnClick="OpenCredentialDialog">
+                            <MudText Class="mud-width-full" Align="Align.Center">Manage Credentials</MudText>
+                        </MudButton>
+
+                        <MudButton FullWidth Variant="Variant.Outlined" StartIcon="@Icons.Material.Filled.Delete" OnClick="OpenAccountStatusDialog">
+                            <MudText Class="mud-width-full" Align="Align.Center">Suspend | Delete Account</MudText>
+                        </MudButton>
+
+                        <MudStack Class="mt-4" Row="true" AlignItems="AlignItems.Center" Justify="Justify.SpaceBetween">
+                            <MudText Typo="Typo.subtitle2">Admin</MudText>
+                            <MudDivider Style="width: 60%" />
+                            <UAuthStateView Roles="Admin">
+                                <NotAuthorized>
+                                    <MudSwitchM3 @bind-Value="_showAdminPreview" Color="Color.Primary" Label="View" />
+                                </NotAuthorized>
+                            </UAuthStateView>
+                        </MudStack>
+
+                        @if (_showAdminPreview)
+                        {
+                            <MudAlert Dense Severity="Severity.Warning" Variant="Variant.Outlined" Class="mt-2">
+                                Admin operations are shown for preview. Sign in as an Admin to execute them.
+                            </MudAlert>
+                        }
+
+                        @if (AuthState?.IsInRole("Admin") == true || _showAdminPreview)
+                        {
+                            <MudGrid Spacing="2">
+                                <MudItem xs="12" sm="6">
+                                    <MudButton FullWidth Variant="Variant.Outlined" StartIcon="@Icons.Material.Filled.AdminPanelSettings" OnClick="OpenUserDialog">
+                                        @* <MudStack Class="mud-width-full" Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center"> *@
+                                            @* <MudIcon Icon="@Icons.Material.Filled.AdminPanelSettings" /> *@
+                                            <MudText Class="mud-width-full" Align="Align.Center">User Management</MudText>
+                                        @* </MudStack> *@
+                                    </MudButton>
+                                </MudItem>
+
+                                <MudItem xs="12" sm="6">
+                                    <MudButton FullWidth Variant="Variant.Outlined" StartIcon="@Icons.Material.Filled.PersonAdd" OnClick="OpenRoleDialog">
+                                        @* <MudStack Class="mud-width-full" Row="true" AlignItems="AlignItems.Center" Justify="Justify.SpaceBetween"> *@
+                                            <MudText Class="mud-width-full" Align="Align.Center">Role Management</MudText>
+                                        @* </MudStack> *@
+                                    </MudButton>
+                                </MudItem>
+                            </MudGrid>
+                        }
+
+                        <MudStack Class="mt-4" Row="true" AlignItems="AlignItems.Center">
+                            <MudText Typo="Typo.subtitle2">Resource Api</MudText>
+                            <MudDivider Style="width: 60%" />
+                        </MudStack>
+
+                        <MudButton FullWidth Variant="Variant.Outlined" StartIcon="@Icons.Material.Filled.Api" OnClick="OpenResourceApiDialog">
+                            <MudText Class="mud-width-full" Align="Align.Center">Manage Resource</MudText>
+                        </MudButton>
+                    </MudStack>
+                </MudExpansionPanel>
+            </MudItem>
+
+            <!-- PROFILE -->
+            <MudItem xs="12" md="4" Class="order-1 order-md-2">
+                <MudCard Style="height: 90vh; max-height:90vh; overflow: auto" Outlined="true" Elevation="0">
+                    <MudCardHeader Class="d-flex flex-column align-center justify-center" Style="background: var(--mud-palette-background-gray)">
+                        <MudAvatar Style="width: 120px; height: 120px" Color="Color.Primary">
+                            <MudText Typo="Typo.h4">
+                                @((AuthState?.Identity?.DisplayName ?? "?").Substring(0, Math.Min(2, (AuthState?.Identity?.DisplayName ?? "?").Length)))
+                            </MudText>
+                        </MudAvatar>
+                        <MudDivider Class="my-4" />
+                        <MudText Style="font-weight: 300; letter-spacing: 0.5rem" Typo="Typo.h5">@AuthState?.Identity?.DisplayName</MudText>
+                        <MudChipSet T="string" Class="mt-2" Size="Size.Small" Variant="Variant.Outlined">
+                            @foreach (var role in AuthState?.Claims?.Roles ?? Enumerable.Empty<string>())
+                            {
+                                <MudChip Color="Color.Primary">
+                                    @role
+                                </MudChip>
+                            }
+                        </MudChipSet>
+                    </MudCardHeader>
+
+                    <MudCardContent>
+                        <MudToggleGroup @bind-Value="@_selectedAuthState" Class="uauth-text-transform-none my-2">
+                            <MudToggleItem Value="@("UAuthState")" Text="UAuth State" />
+                            <MudToggleItem Value="@("AspNetCoreState")" Text="ASP.NET Core State" />
+                        </MudToggleGroup>
+
+                        @if (_selectedAuthState == "UAuthState")
+                        {
+                            <MudGrid Class="mt-2" Spacing="4">
+                                <MudItem xs="6">
+                                    <div class="pa-2" style="background: var(--mud-palette-background-gray); border-radius: var(--mud-default-borderradius)">
+                                        <MudStack Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center" Spacing="2">
+                                            <MudIcon Icon="@Icons.Material.Filled.Domain" Color="Color.Primary" Size="Size.Small" />
+                                            <MudText Typo="Typo.subtitle2" Color="Color.Primary">Tenant</MudText>
+                                        </MudStack>
+                                        <MudText Align="Align.Center">@AuthState?.Identity?.Tenant.Value</MudText>
+                                    </div>
+
+                                </MudItem>
+
+                                <MudItem xs="6">
+                                    <div class="pa-2" style="background: var(--mud-palette-background-gray); border-radius: var(--mud-default-borderradius)">
+                                        <MudStack Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center" Spacing="2">
+                                            <MudIcon Icon="@Icons.Material.Filled.Face" Color="Color.Primary" Size="Size.Small" />
+                                            <MudText Typo="Typo.subtitle2" Color="Color.Primary">User Id</MudText>
+                                        </MudStack>
+                                        <MudText Style="overflow: hidden; text-overflow: ellipsis" Align="Align.Center">@AuthState?.Identity?.UserKey.Value</MudText>
+                                    </div>
+                                </MudItem>
+
+                                <MudItem xs="6">
+                                    <div class="pa-2" style="background: var(--mud-palette-background-gray); border-radius: var(--mud-default-borderradius)">
+                                        <MudStack Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center" Spacing="2">
+                                            <MudIcon Icon="@Icons.Material.Filled.Security" Color="Color.Primary" Size="Size.Small" />
+                                            <MudText Typo="Typo.subtitle2" Color="Color.Primary">Authenticated</MudText>
+                                        </MudStack>
+                                        <MudText Align="Align.Center">@(AuthState?.IsAuthenticated == true ? "Yes" : "No")</MudText>
+                                    </div>
+                                </MudItem>
+
+                                <MudItem xs="6">
+                                    <div class="pa-2" style="background: var(--mud-palette-background-gray); border-radius: var(--mud-default-borderradius)">
+                                        <MudStack Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center" Spacing="2">
+                                            <MudIcon Icon="@Icons.Material.Filled.Token" Color="Color.Primary" Size="Size.Small" />
+                                            <MudText Typo="Typo.subtitle2" Color="Color.Primary">Session State</MudText>
+                                        </MudStack>
+                                        <MudText Align="Align.Center">@AuthState?.Identity?.SessionState?.ToDescriptionString()</MudText>
+                                    </div>
+                                </MudItem>
+
+                                <MudItem xs="6">
+                                    <div class="pa-2" style="background: var(--mud-palette-background-gray); border-radius: var(--mud-default-borderradius)">
+                                        <MudStack Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center" Spacing="2">
+                                            <MudIcon Icon="@Icons.Material.Filled.PersonPin" Color="Color.Primary" Size="Size.Small" />
+                                            <MudText Typo="Typo.subtitle2" Color="Color.Primary">Username</MudText>
+                                        </MudStack>
+                                        <MudText Align="Align.Center">@AuthState?.Identity?.PrimaryUserName</MudText>
+                                    </div>
+                                </MudItem>
+
+                                <MudItem xs="6">
+                                    <div class="pa-2" style="background: var(--mud-palette-background-gray); border-radius: var(--mud-default-borderradius)">
+                                        <MudStack Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center" Spacing="2">
+                                            <MudIcon Icon="@Icons.Material.Filled.ShortText" Color="Color.Primary" Size="Size.Small" />
+                                            <MudText Typo="Typo.subtitle2" Color="Color.Primary">Display Name</MudText>
+                                        </MudStack>
+                                        <MudText Align="Align.Center">@AuthState?.Identity?.DisplayName</MudText>
+                                    </div>
+                                </MudItem>
+
+                                <MudDivider Class="mt-4" />
+
+                                <MudItem xs="12">
+                                    <MudStack Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center" Spacing="2">
+                                        <MudIcon Icon="@Icons.Material.Filled.Email" Color="Color.Primary" Size="Size.Small" />
+                                        <MudText Typo="Typo.subtitle2" Color="Color.Primary">Email</MudText>
+                                    </MudStack>
+                                    <MudText Align="Align.Center">@AuthState?.Identity?.PrimaryEmail</MudText>
+                                </MudItem>
+
+                                <MudItem xs="12">
+                                    <MudStack Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center" Spacing="2">
+                                        <MudIcon Icon="@Icons.Material.Filled.Phone" Color="Color.Primary" Size="Size.Small" />
+                                        <MudText Typo="Typo.subtitle2" Color="Color.Primary">Phone</MudText>
+                                    </MudStack>
+                                    <MudText Align="Align.Center">@AuthState?.Identity?.PrimaryPhone</MudText>
+                                </MudItem>
+
+                                <MudDivider Class="mt-4" />
+
+                                <MudItem xs="6">
+                                    <MudStack Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center" Spacing="2">
+                                        <MudIcon Icon="@Icons.Material.Filled.Login" Color="Color.Primary" Size="Size.Small" />
+                                        <MudText Typo="Typo.subtitle2" Color="Color.Primary">Authenticated At</MudText>
+                                    </MudStack>
+                                    @* TODO: Add IUAuthDateTimeFormatter *@
+                                    <MudText Align="Align.Center">@FormatLocalTime(AuthState?.Identity?.AuthenticatedAt)</MudText>
+                                </MudItem>
+
+                                <MudItem xs="6">
+                                    <MudStack Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center" Spacing="2">
+                                        <MudIcon Icon="@Icons.Material.Filled.Schedule" Color="Color.Primary" Size="Size.Small" />
+                                        <MudText Typo="Typo.subtitle2" Color="Color.Primary">Last Validated At</MudText>
+                                    </MudStack>
+                                    @* TODO: Validation call should update last validated at *@
+                                    <MudText Align="Align.Center">@FormatLocalTime(AuthState?.LastValidatedAt)</MudText>
+                                </MudItem>
+                            </MudGrid>
+                        }
+                        else if (_selectedAuthState == "AspNetCoreState")
+                        {
+                            <MudGrid Class="mt-2" Spacing="4">
+                                <MudItem xs="6">
+                                    <div class="pa-2" style="background: var(--mud-palette-background-gray); border-radius: var(--mud-default-borderradius)">
+                                        <MudStack Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center" Spacing="2">
+                                            <MudIcon Icon="@Icons.Material.Filled.Security" Color="Color.Primary" Size="Size.Small" />
+                                            <MudText Typo="Typo.subtitle2" Color="Color.Primary">Authenticated</MudText>
+                                        </MudStack>
+                                        <MudText Align="Align.Center">@(_aspNetCoreState?.Identity?.IsAuthenticated == true ? "Yes" : "No")</MudText>
+                                    </div>
+                                </MudItem>
+
+                                <MudItem xs="6">
+                                    <div class="pa-2" style="background: var(--mud-palette-background-gray); border-radius: var(--mud-default-borderradius)">
+                                        <MudStack Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center" Spacing="2">
+                                            <MudIcon Icon="@Icons.Material.Filled.Face" Color="Color.Primary" Size="Size.Small" />
+                                            <MudText Typo="Typo.subtitle2" Color="Color.Primary">User Id</MudText>
+                                        </MudStack>
+                                        <MudText Style="overflow: hidden; text-overflow: ellipsis" Align="Align.Center">@_aspNetCoreState?.FindFirst(System.Security.Claims.ClaimTypes.NameIdentifier)?.Value</MudText>
+                                    </div>
+                                </MudItem>
+
+                                <MudItem xs="6">
+                                    <div class="pa-2" style="background: var(--mud-palette-background-gray); border-radius: var(--mud-default-borderradius)">
+                                        <MudStack Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center" Spacing="2">
+                                            <MudIcon Icon="@Icons.Material.Filled.PersonPin" Color="Color.Primary" Size="Size.Small" />
+                                            <MudText Typo="Typo.subtitle2" Color="Color.Primary">Username</MudText>
+                                        </MudStack>
+                                        <MudText Align="Align.Center">@_aspNetCoreState?.Identity?.Name</MudText>
+                                    </div>
+                                </MudItem>
+
+                                <MudItem xs="6">
+                                    <div class="pa-2" style="background: var(--mud-palette-background-gray); border-radius: var(--mud-default-borderradius)">
+                                        <MudStack Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center" Spacing="2">
+                                            <MudIcon Icon="@Icons.Material.Filled.Shield" Color="Color.Primary" Size="Size.Small" />
+                                            <MudText Typo="Typo.subtitle2" Color="Color.Primary">Authentication Type</MudText>
+                                        </MudStack>
+                                        <MudText Align="Align.Center">@_aspNetCoreState?.Identity?.AuthenticationType</MudText>
+                                    </div>
+                                </MudItem>
+                            </MudGrid>
+                        }
+                    </MudCardContent>
+                </MudCard>
+            </MudItem>
+
+            <!-- DIAGNOSTICS -->
+            <MudItem xs="12" md="4" Class="order-3 order-md-3">
+                <MudExpansionPanel Text="UltimateAuth Client Diagnostics" Expanded="true">
+                    <MudChip T="string" Class="ml-n1" Color="@GetHealthColor()" Variant="Variant.Filled" Icon="@Icons.Material.Filled.HealthAndSafety" Size="Size.Small">
+                        @GetHealthText()
+                    </MudChip>
+
+                    <MudText Class="mt-4 mb-2" Typo="Typo.subtitle2">Lifecycle</MudText>
+
+                    <MudGrid Spacing="2">
+
+                        <MudItem xs="4">
+                            <MudPaper Class="pa-3 text-center" Style="background: var(--mud-palette-background-gray); border-left: 2px solid" Elevation="0" Outlined="true">
+                                <MudText Class="text-secondary" Typo="Typo.caption">Started</MudText>
+                                <MudText Typo="Typo.h6">@Diagnostics.StartCount</MudText>
+                            </MudPaper>
+                            @if (Diagnostics.StartedAt is not null)
+                            {
+                                <MudTooltip Text="@FormatLocalTime(Diagnostics.StartedAt)">
+                                    <MudStack Class="mt-1" Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center" Spacing="1">
+                                        <MudIcon Icon="@Icons.Material.Filled.Schedule" Size="Size.Small" />
+                                        <MudText Typo="Typo.subtitle2">@FormatRelative(Diagnostics.StartedAt)</MudText>
+                                    </MudStack>
+                                </MudTooltip>
+                            }
+                        </MudItem>
+
+                        <MudItem xs="4">
+                            <MudPaper Class="pa-3 text-center" Style="background: var(--mud-palette-background-gray); border-left: 2px solid" Elevation="0" Outlined="true">
+                                <MudText Class="text-secondary" Typo="Typo.caption">Stopped</MudText>
+                                <MudText Typo="Typo.h6">@Diagnostics.StopCount</MudText>
+                            </MudPaper>
+                        </MudItem>
+
+                        <MudItem xs="4">
+                            <MudPaper Class="pa-3 text-center" Style="background: var(--mud-palette-background-gray); border-left: 2px solid" Elevation="0" Outlined="true">
+                                <MudText Class="text-secondary" Typo="Typo.caption">Terminated</MudText>
+                                <MudText Typo="Typo.h6">@Diagnostics.TerminatedCount</MudText>
+                            </MudPaper>
+                            @if (Diagnostics.TerminatedAt is not null)
+                            {
+                                <MudTooltip Text="@FormatLocalTime(Diagnostics.TerminatedAt)">
+                                    <MudStack Class="mt-1" Row="true" AlignItems="AlignItems.Center" Justify="Justify.Center" Spacing="1">
+                                        <MudIcon Icon="@Icons.Material.Filled.Schedule" Size="Size.Small" />
+                                        <MudText Typo="Typo.subtitle2">
+                                            @FormatRelative(Diagnostics.TerminatedAt)
+                                        </MudText>
+                                    </MudStack>
+                                </MudTooltip>
+                            }
+                        </MudItem>
+
+                        <MudDivider Class="my-4" />
+
+                        <MudText Typo="Typo.subtitle2" Class="mb-2">
+                            Refresh Metrics
+                        </MudText>
+
+                        <MudGrid Spacing="4">
+
+                            <MudItem xs="6">
+                                <MudPaper Class="pa-3 text-center" Style="background: var(--mud-palette-background-gray)" Elevation="0" Outlined="true">
+                                    <MudText Typo="Typo.caption">Total Attempts</MudText>
+                                    <MudText Typo="Typo.h6">@Diagnostics.RefreshAttemptCount</MudText>
+                                </MudPaper>
+                            </MudItem>
+
+                            <MudItem xs="6">
+                                <MudPaper Class="pa-3 text-center" Style="background: var(--mud-palette-background-gray)" Elevation="0" Outlined="true">
+                                    <MudTooltip Text="Shows minimal success count. Set EnableRefreshDetails diagnostics option to true to view details.">
+                                        <MudText Typo="Typo.caption">Success</MudText>
+                                    </MudTooltip>
+                                    <MudText Typo="Typo.h6">@Diagnostics.RefreshSuccessCount</MudText>
+                                </MudPaper>
+                            </MudItem>
+
+                            <MudItem xs="6">
+                                <MudPaper Class="pa-3 text-center" Style="background: var(--mud-palette-background-gray)" Elevation="0" Outlined="true">
+                                    <MudText Typo="Typo.caption">Automatic</MudText>
+                                    <MudText Typo="Typo.h6">@Diagnostics.AutomaticRefreshCount</MudText>
+                                </MudPaper>
+                            </MudItem>
+
+                            <MudItem xs="6">
+                                <MudPaper Class="pa-3 text-center" Style="background: var(--mud-palette-background-gray)" Elevation="0" Outlined="true">
+                                    <MudText Typo="Typo.caption">Manual</MudText>
+                                    <MudText Typo="Typo.h6">@Diagnostics.ManualRefreshCount</MudText>
+                                </MudPaper>
+                            </MudItem>
+
+                            <MudItem xs="6">
+                                <MudPaper Class="pa-3 text-center" Style="background: var(--mud-palette-background-gray)" Elevation="0" Outlined="true">
+                                    <MudText Typo="Typo.caption">Touched/Rotated</MudText>
+                                    <MudText Typo="Typo.h6">@Diagnostics.RefreshTouchedCount / @Diagnostics.RefreshRotatedCount</MudText>
+                                </MudPaper>
+                            </MudItem>
+
+                            <MudItem xs="6">
+                                <MudPaper Class="pa-3 text-center" Style="background: var(--mud-palette-background-gray)" Elevation="0" Outlined="true">
+                                    <MudText Typo="Typo.caption">No-Op</MudText>
+                                    <MudText Typo="Typo.h6">@Diagnostics.RefreshNoOpCount</MudText>
+                                </MudPaper>
+                            </MudItem>
+
+                            <MudItem xs="6">
+                                <MudPaper Class="pa-3 text-center" Style="background: var(--mud-palette-background-gray)" Elevation="0" Outlined="true">
+                                    <MudText Typo="Typo.caption">Reauth Required</MudText>
+                                    <MudText Typo="Typo.h6" Color="Color.Warning">@Diagnostics.RefreshReauthRequiredCount</MudText>
+                                </MudPaper>
+                            </MudItem>
+                        </MudGrid>
+                    </MudGrid>
+                </MudExpansionPanel>
+            </MudItem>
+
+        </MudGrid>
+    </MudContainer>
+</MudPage>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Home.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Home.razor.cs
new file mode 100644
index 00000000..c296ed00
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Home.razor.cs
@@ -0,0 +1,227 @@
+using CodeBeam.UltimateAuth.Client.Blazor;
+using CodeBeam.UltimateAuth.Client.Errors;
+using CodeBeam.UltimateAuth.Core.Contracts;
+using CodeBeam.UltimateAuth.Core.Domain;
+using CodeBeam.UltimateAuth.Core.Errors;
+using CodeBeam.UAuth.Sample.IntWasm.Client.Common;
+using CodeBeam.UAuth.Sample.IntWasm.Client.Components.Dialogs;
+using CodeBeam.UltimateAuth.Users.Contracts;
+using Microsoft.AspNetCore.Components.Authorization;
+using MudBlazor;
+using System.Security.Claims;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Pages;
+
+public partial class Home : UAuthFlowPageBase
+{
+    private string _selectedAuthState = "UAuthState";
+    private ClaimsPrincipal? _aspNetCoreState;
+
+    private bool _showAdminPreview = false;
+
+    protected override async Task OnInitializedAsync()
+    {
+        var initial = await AuthStateProvider.GetAuthenticationStateAsync();
+        _aspNetCoreState = initial.User;
+        AuthStateProvider.AuthenticationStateChanged += OnAuthStateChanged;
+        Diagnostics.Changed += OnDiagnosticsChanged;
+    }
+
+    private void OnAuthStateChanged(Task<AuthenticationState> task)
+    {
+        _ = HandleAuthStateChangedAsync(task);
+    }
+
+    private async Task HandleAuthStateChangedAsync(Task<AuthenticationState> task)
+    {
+        try
+        {
+            var state = await task;
+            _aspNetCoreState = state.User;
+            await InvokeAsync(StateHasChanged);
+        }
+        catch
+        {
+
+        }
+    }
+
+    private void OnDiagnosticsChanged()
+    {
+        InvokeAsync(StateHasChanged);
+    }
+
+    private async Task Logout() => await UAuthClient.Flows.LogoutAsync();
+
+    private async Task RefreshSession() => await UAuthClient.Flows.RefreshAsync(false);
+
+    private async Task Validate()
+    {
+        try
+        {
+            var result = await UAuthClient.Flows.ValidateAsync();
+
+            if (result.IsValid)
+            {
+                if (result.Snapshot?.Identity.UserStatus == UserStatus.SelfSuspended)
+                {
+                    Snackbar.Add("Your account is suspended by you.", Severity.Warning);
+                    return;
+                }
+                Snackbar.Add($"Session active • Tenant: {result.Snapshot?.Identity?.Tenant.Value} • User: {result.Snapshot?.Identity?.PrimaryUserName}", Severity.Success);
+            }
+            else
+            {
+                switch (result.State)
+                {
+                    case SessionState.Expired:
+                        Snackbar.Add("Session expired. Please sign in again.", Severity.Warning);
+                        break;
+
+                    case SessionState.DeviceMismatch:
+                        Snackbar.Add("Session invalid for this device.", Severity.Error);
+                        break;
+
+                    default:
+                        Snackbar.Add($"Session state: {result.State}", Severity.Error);
+                        break;
+                }
+            }
+        }
+        catch (UAuthTransportException)
+        {
+            Snackbar.Add("Network error.", Severity.Error);
+        }
+        catch (UAuthProtocolException)
+        {
+            Snackbar.Add("Invalid response.", Severity.Error);
+        }
+        catch (UAuthException ex)
+        {
+            Snackbar.Add($"UAuth error: {ex.Message}", Severity.Error);
+        }
+        catch (Exception ex)
+        {
+            Snackbar.Add($"Unexpected error: {ex.Message}", Severity.Error);
+        }
+    }
+
+    private Color GetHealthColor()
+    {
+        if (Diagnostics.RefreshReauthRequiredCount > 0)
+            return Color.Warning;
+
+        if (Diagnostics.TerminatedCount > 0)
+            return Color.Error;
+
+        return Color.Success;
+    }
+
+    private string GetHealthText()
+    {
+        if (Diagnostics.RefreshReauthRequiredCount > 0)
+            return "Reauthentication Required";
+
+        if (Diagnostics.TerminatedCount > 0)
+            return "Session Terminated";
+
+        return "Healthy";
+    }
+
+    private string? FormatRelative(DateTimeOffset? utc)
+    {
+        if (utc is null)
+            return null;
+
+        var diff = DateTimeOffset.UtcNow - utc.Value;
+
+        if (diff.TotalSeconds < 5)
+            return "just now";
+
+        if (diff.TotalSeconds < 60)
+            return $"{(int)diff.Seconds} secs ago";
+
+        if (diff.TotalMinutes < 60)
+            return $"{(int)diff.TotalMinutes} min ago";
+
+        if (diff.TotalHours < 24)
+            return $"{(int)diff.TotalHours} hrs ago";
+
+        return utc.Value.ToLocalTime().ToString("dd MMM yyyy");
+    }
+
+    private string? FormatLocalTime(DateTimeOffset? utc)
+    {
+        return utc?.ToLocalTime().ToString("dd MMM yyyy • HH:mm:ss");
+    }
+
+    private async Task OpenProfileDialog()
+    {
+        await DialogService.ShowAsync<ProfileDialog>("Manage Profile", GetDialogParameters(), UAuthDialog.GetDialogOptions());
+    }
+
+    private async Task OpenIdentifierDialog()
+    {
+        await DialogService.ShowAsync<IdentifierDialog>("Manage Identifiers", GetDialogParameters(), UAuthDialog.GetDialogOptions());
+    }
+
+    private async Task OpenSessionDialog()
+    {
+        await DialogService.ShowAsync<SessionDialog>("Manage Sessions", GetDialogParameters(), UAuthDialog.GetDialogOptions());
+    }
+
+    private async Task OpenCredentialDialog()
+    {
+        await DialogService.ShowAsync<CredentialDialog>("Session Diagnostics", GetDialogParameters(), UAuthDialog.GetDialogOptions());
+    }
+
+    private async Task OpenAccountStatusDialog()
+    {
+        await DialogService.ShowAsync<AccountStatusDialog>("Manage Account", GetDialogParameters(), UAuthDialog.GetDialogOptions(MaxWidth.ExtraSmall));
+    }
+
+    private async Task OpenUserDialog()
+    {
+        await DialogService.ShowAsync<UsersDialog>("User Management", GetDialogParameters(), UAuthDialog.GetDialogOptions(MaxWidth.Large));
+    }
+
+    private async Task OpenRoleDialog()
+    {
+        await DialogService.ShowAsync<RoleDialog>("Role Management", GetDialogParameters(), UAuthDialog.GetDialogOptions());
+    }
+
+    private async Task OpenResourceApiDialog()
+    {
+        await DialogService.ShowAsync<ResourceApiDialog>("Resource Api", GetDialogParameters(), UAuthDialog.GetDialogOptions());
+    }
+
+    private DialogParameters GetDialogParameters()
+    {
+        return new DialogParameters
+        {
+            ["AuthState"] = AuthState
+        };
+    }
+
+    private async Task SetAccountActiveAsync()
+    {
+        ChangeUserStatusSelfRequest request = new() { NewStatus = SelfAssignableUserStatus.Active };
+        var result = await UAuthClient.Users.ChangeMyStatusAsync(request);
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Account activated successfully.", Severity.Success);
+        }
+        else
+        {
+            Snackbar.Add(result?.Problem?.Detail ?? result?.Problem?.Title ?? "Activation failed.", Severity.Error);
+        }
+    }
+
+    public override void Dispose()
+    {
+        base.Dispose();
+        AuthStateProvider.AuthenticationStateChanged -= OnAuthStateChanged;
+        Diagnostics.Changed -= OnDiagnosticsChanged;
+    }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/LandingPage.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/LandingPage.razor
new file mode 100644
index 00000000..1e4a9016
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/LandingPage.razor
@@ -0,0 +1,4 @@
+@page "/"
+
+@inject NavigationManager Nav
+@inject AuthenticationStateProvider AuthProvider
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/LandingPage.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/LandingPage.razor.cs
new file mode 100644
index 00000000..ac24e527
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/LandingPage.razor.cs
@@ -0,0 +1,17 @@
+using CodeBeam.UltimateAuth.Core.Defaults;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Pages;
+
+public partial class LandingPage
+{
+    protected override async Task OnAfterRenderAsync(bool firstRender)
+    {
+        if (!firstRender)
+            return;
+
+        var state = await AuthProvider.GetAuthenticationStateAsync();
+        var isAuthenticated = state.User.Identity?.IsAuthenticated == true;
+
+        Nav.NavigateTo(isAuthenticated ? "/home" : $"{UAuthConstants.Routes.LoginRedirect}?fresh=true");
+    }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Login.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Login.razor
new file mode 100644
index 00000000..7da73973
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Login.razor
@@ -0,0 +1,135 @@
+@page "/login"
+@using CodeBeam.UltimateAuth.Client.Runtime
+@attribute [UAuthLoginPage]
+@inherits UAuthFlowPageBase
+
+@implements IDisposable
+@inject IUAuthClient UAuthClient
+@inject ISnackbar Snackbar
+@inject IUAuthClientProductInfoProvider ClientProductInfoProvider
+@inject IDeviceIdProvider DeviceIdProvider
+@inject IDialogService DialogService
+
+<MudPage FullScreen="FullScreen.FullWithoutAppbar" Column="1" Row="1">
+    <MudContainer Class="d-flex align-center justify-center" MaxWidth="MaxWidth.Medium" Gutters="false">
+        <MudGrid Spacing="0">
+            <MudItem Class="order-1 order-sm-0" xs="12" sm="6">
+                <MudPaper Class="mud-theme-primary uauth-login-paper pa-8 d-flex flex-column align-center justify-center" Elevation="3">
+                    <UAuthStateView>
+                        <Authorized Context="state">
+                            <MudStack Spacing="2">
+                                <MudText Typo="Typo.subtitle1">You are already signed in</MudText>
+                                <MudStack Row="true" AlignItems="AlignItems.Center" Spacing="2">
+                                    <MudAvatar Class="uauth-brand-glow" Color="Color.Secondary" Variant="Variant.Filled">
+                                        @(state.Identity?.PrimaryUserName?.Substring(0, 2))
+                                    </MudAvatar>
+
+                                    <MudStack Spacing="0">
+                                        <MudText Typo="Typo.h6">
+                                            <b>@state.Identity?.PrimaryUserName</b>
+                                        </MudText>
+                                        <MudText Typo="Typo.caption">
+                                            Roles: @string.Join(", ", state.Claims.Roles)
+                                        </MudText>
+                                    </MudStack>
+                                </MudStack>
+
+                                <MudStack Class="mt-2" Row="true" Spacing="2" Justify="Justify.SpaceBetween">
+                                    <MudButton Variant="Variant.Filled" Color="Color.Secondary" OnClick="@(() => Nav.NavigateTo("/home"))">
+                                        Continue
+                                    </MudButton>
+
+                                    <MudButton Variant="Variant.Filled" Color="Color.Primary" OnClick="@UAuthClient.Flows.LogoutAsync">
+                                        Switch account
+                                    </MudButton>
+                                </MudStack>
+
+                                <MudAlert Class="white-text mt-4" Dense="true" Variant="Variant.Text">
+                                    In a production application, users would typically be redirected automatically.
+                                    This screen is shown in the sample to demonstrate session handling behavior.
+                                </MudAlert>
+                            </MudStack>
+                            <MudDivider />
+                        </Authorized>
+
+                        <NotAuthorized>
+                            <MudStack Class="my-4">
+                                <div class="uauth-brand-glow uauth-logo-slide d-flex justify-center">
+                                    <UAuthLogo Size="90" ShieldColor="#f6f5ae" KeyColor="var(--mud-palette-primary)" />
+                                </div>
+                                <MudText Style="font-weight: 700" Typo="Typo.h4" Align="Align.Center">UltimateAuth</MudText>
+                                <MudText Align="Align.Center">The Modern Unified Auth Framework for .NET — Reimagined.</MudText>
+                            </MudStack>
+                            <MudDivider />
+                        </NotAuthorized>
+                    </UAuthStateView>
+
+                    <MudStack Class="mt-4" Wrap="Wrap.Wrap" Spacing="0">
+                        <MudText Typo="Typo.subtitle2" Align="Align.Center"><b>@_productInfo?.ProductName</b> v @_productInfo?.Version</MudText>
+                        <MudText Typo="Typo.subtitle2" Align="Align.Center">Client Profile: @_productInfo?.ClientProfile.ToString()</MudText>
+                        <MudText Typo="Typo.subtitle2" Align="Align.Center">@_productInfo?.FrameworkDescription</MudText>
+                    </MudStack>
+                </MudPaper>
+            </MudItem>
+
+            <MudItem Class="order-0 order-sm-1" xs="12" sm="6">
+                <MudPaper Class="uauth-login-paper pa-8" Elevation="3">
+                    <MudStack Class="mb-4" Row="true" AlignItems="AlignItems.Center">
+                        <UAuthLogo Size="48" ShieldColor="var(--mud-palette-primary)" KeyColor="white" />
+                        <MudText Typo="Typo.h5">
+                            <MudText Style="font-weight: 700" Inline="true" Typo="Typo.h5" Color="Color.Primary">Sign <MudText Inline="true" Style="font-weight: 700" Typo="Typo.h5" Color="Color.Secondary">In</MudText></MudText>
+                        </MudText>
+                    </MudStack>
+                    <MudButton FullWidth="true" Color="Color.Primary" Variant="Variant.Filled" OnClick="StartPkceLogin">Login (PKCE)</MudButton>
+                    <MudExpansionPanel Text="Direct Login" Expanded="false">
+                        <MudAlert Severity="Severity.Warning">
+                            In blazor WASM client, you shouldn't login directly.
+                            Instead of use PKCE flow.
+                            This section only demonstrates that direct login flow is working, but not suggested.
+                        </MudAlert>
+                        <UAuthLoginForm Identifier="@_username" Secret="@_password" ReturnUrl="@(ReturnUrl ?? "/home")" OnTryResult="HandleLoginResult">
+                            <MudStack Class="mud-width-full">
+                                <MudTextField @ref="@_usernameField" @bind-Value="@_username" Variant="Variant.Outlined" Label="Username" Required="true" Immediate="true" HelperText="@(_remainingAttempts != null ? $"Remaining Attempts: {_remainingAttempts}" : null)" />
+                                <MudPasswordField @bind-Value="@_password" Variant="Variant.Outlined" Label="Password" Required="true" Immediate="true" />
+                                <MudButton Variant="Variant.Filled" Color="Color.Primary" Disabled="@_isLocked" ButtonType="ButtonType.Submit">Login</MudButton>
+                                @if (_isLocked)
+                                {
+                                    <MudAlert NoIcon="true" Severity="Severity.Error" Variant="Variant.Filled">
+                                        <MudStack Row="true" AlignItems="AlignItems.Center" Justify="Justify.SpaceBetween">
+                                            <MudStack Spacing="0">
+                                                <MudText Typo="Typo.subtitle2">Your account is locked.</MudText>
+                                                <MudText Typo="Typo.subtitle2">Try again in </MudText>
+                                            </MudStack>
+                                            <MudProgressCircular Class="mud-theme-error" Value="@_progressPercent" Max="100" Size="Size.Large">
+                                                @_remaining.Minutes.ToString("00"):@_remaining.Seconds.ToString("00")
+                                            </MudProgressCircular>
+                                        </MudStack>
+                                    </MudAlert>
+                                }
+                            </MudStack>
+                        </UAuthLoginForm>
+                        <MudAlert Severity="Severity.Info" Variant="Variant.Text" Dense="true">
+                            Default sample users:
+                            <b>admin/admin</b> (Admin),
+                            <b>user/user</b> (Standard User)
+                        </MudAlert>
+
+                        <MudDivider Class="my-8" />
+
+                        <MudStack Class="mud-width-full">
+                            <MudButton Variant="Variant.Filled" Color="Color.Primary" OnClick="ProgrammaticLogin">Programmatic Login</MudButton>
+                            <MudText Style="color: var(--mud-palette-text-secondary)" Typo="Typo.subtitle2" Align="Align.Center">Login programmatically as admin/admin.</MudText>
+                        </MudStack>
+                    </MudExpansionPanel>
+
+                    <MudDivider Class="my-2" />
+
+                    <MudStack>
+                        <MudText Align="Align.Center" Typo="Typo.subtitle2"><MudLink Class="cursor-pointer" OnClick="OpenResetDialog">Forgot Password</MudLink></MudText>
+                        <MudText Align="Align.Center" Typo="Typo.subtitle2">Don't have an account? <MudLink Class="cursor-pointer" Href="/register">SignUp</MudLink></MudText>
+                    </MudStack>
+                </MudPaper>
+            </MudItem>
+        </MudGrid>
+    </MudContainer>
+</MudPage>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Login.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Login.razor.cs
new file mode 100644
index 00000000..970f9128
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Login.razor.cs
@@ -0,0 +1,216 @@
+using CodeBeam.UltimateAuth.Client;
+using CodeBeam.UltimateAuth.Client.Blazor;
+using CodeBeam.UltimateAuth.Client.Runtime;
+using CodeBeam.UltimateAuth.Core.Contracts;
+using CodeBeam.UltimateAuth.Core.Domain;
+using CodeBeam.UAuth.Sample.IntWasm.Client.Components.Dialogs;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Pages;
+
+public partial class Login : UAuthFlowPageBase
+{
+    private string? _username;
+    private string? _password;
+    private UAuthClientProductInfo? _productInfo;
+    private MudTextField<string> _usernameField = default!;
+
+    private CancellationTokenSource? _lockoutCts;
+    private PeriodicTimer? _lockoutTimer;
+    private DateTimeOffset? _lockoutUntil;
+    private TimeSpan _remaining;
+    private bool _isLocked;
+    private DateTimeOffset? _lockoutStartedAt;
+    private TimeSpan _lockoutDuration;
+    private double _progressPercent;
+    private int? _remainingAttempts = null;
+
+    protected override async Task OnInitializedAsync()
+    {
+        _productInfo = ClientProductInfoProvider.Get();
+    }
+
+    protected override Task OnUAuthPayloadAsync(AuthFlowPayload payload)
+    {
+        HandleLoginPayload(payload);
+        return Task.CompletedTask;
+    }
+
+    protected override async Task OnFocusRequestedAsync()
+    {
+        await _usernameField.FocusAsync();
+    }
+
+    private void HandleLoginPayload(AuthFlowPayload payload)
+    {
+        if (payload.Flow != AuthFlowType.Login)
+            return;
+
+        if (payload.Reason == AuthFailureReason.LockedOut && payload.LockoutUntilUtc is { } until)
+        {
+            _lockoutUntil = until;
+            StartCountdown();
+        }
+
+        _remainingAttempts = payload.RemainingAttempts;
+
+        ShowLoginError(payload.Reason, payload.RemainingAttempts);
+    }
+
+    private void ShowLoginError(AuthFailureReason? reason, int? remainingAttempts)
+    {
+        string message = reason switch
+        {
+            AuthFailureReason.InvalidCredentials when remainingAttempts is > 0
+                => $"Invalid username or password. {remainingAttempts} attempt(s) remaining.",
+
+            AuthFailureReason.InvalidCredentials
+                => "Invalid username or password.",
+
+            AuthFailureReason.RequiresMfa
+                => "Multi-factor authentication required.",
+
+            AuthFailureReason.LockedOut
+                => "Your account is locked.",
+
+            _ => "Login failed."
+        };
+
+        Snackbar.Add(message, Severity.Error);
+    }
+
+    private async Task StartPkceLogin()
+    {
+        string? returnUrl = null;
+        if (!string.IsNullOrEmpty(ReturnUrl))
+            returnUrl = Nav.BaseUri + ReturnUrl.TrimStart('/');
+
+        await UAuthClient.Flows.BeginPkceAsync(returnUrl);
+    }
+
+    private async Task ProgrammaticLogin()
+    {
+        var deviceId = await DeviceIdProvider.GetOrCreateAsync();
+        var request = new LoginRequest
+        {
+            Identifier = "admin",
+            Secret = "admin",
+        };
+        await UAuthClient.Flows.LoginAsync(request, ReturnUrl ?? "/home");
+    }
+
+    private async Task HandleLoginResult(IUAuthTryResult result)
+    {
+        if (!result.Success)
+        {
+            if (result.Reason == AuthFailureReason.LockedOut && result.LockoutUntilUtc is { } until)
+            {
+                _lockoutUntil = until;
+                StartCountdown();
+            }
+
+            _remainingAttempts = result.RemainingAttempts;
+            ShowLoginError(result.Reason, result.RemainingAttempts);
+        }
+    }
+
+    private async void StartCountdown()
+    {
+        if (_lockoutUntil is null)
+            return;
+
+        _isLocked = true;
+        _lockoutStartedAt = DateTimeOffset.UtcNow;
+        _lockoutDuration = _lockoutUntil.Value - DateTimeOffset.UtcNow;
+        UpdateRemaining();
+
+        _lockoutCts?.Cancel();
+        _lockoutCts = new CancellationTokenSource();
+
+        _lockoutTimer?.Dispose();
+        _lockoutTimer = new PeriodicTimer(TimeSpan.FromSeconds(1));
+
+        try
+        {
+            while (await _lockoutTimer.WaitForNextTickAsync(_lockoutCts.Token))
+            {
+                UpdateRemaining();
+
+                if (_remaining <= TimeSpan.Zero)
+                {
+                    ResetLockoutState();
+                    await InvokeAsync(StateHasChanged);
+                    break;
+                }
+
+                await InvokeAsync(StateHasChanged);
+            }
+        }
+        catch (OperationCanceledException)
+        {
+
+        }
+    }
+
+    private void ResetLockoutState()
+    {
+        _isLocked = false;
+        _lockoutUntil = null;
+        _progressPercent = 0;
+        _remainingAttempts = null;
+    }
+
+    private void UpdateRemaining()
+    {
+        if (_lockoutUntil is null || _lockoutStartedAt is null)
+            return;
+
+        var now = DateTimeOffset.UtcNow;
+
+        _remaining = _lockoutUntil.Value - now;
+
+        if (_remaining <= TimeSpan.Zero)
+        {
+            _remaining = TimeSpan.Zero;
+            return;
+        }
+
+        var elapsed = now - _lockoutStartedAt.Value;
+
+        if (_lockoutDuration.TotalSeconds > 0)
+        {
+            var percent = 100 - (elapsed.TotalSeconds / _lockoutDuration.TotalSeconds * 100);
+            _progressPercent = Math.Max(0, percent);
+        }
+    }
+
+    private async Task OpenResetDialog()
+    {
+        await DialogService.ShowAsync<ResetDialog>("Reset Credentials", GetDialogParameters(), GetDialogOptions());
+    }
+
+    private DialogOptions GetDialogOptions()
+    {
+        return new DialogOptions
+        {
+            MaxWidth = MaxWidth.Medium,
+            FullWidth = true,
+            CloseButton = true
+        };
+    }
+
+    private DialogParameters GetDialogParameters()
+    {
+        return new DialogParameters
+        {
+            ["AuthState"] = AuthState
+        };
+    }
+
+    public override void Dispose()
+    {
+        base.Dispose();
+        _lockoutCts?.Cancel();
+        _lockoutTimer?.Dispose();
+    }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/NotAuthorized.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/NotAuthorized.razor
new file mode 100644
index 00000000..d8eb7138
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/NotAuthorized.razor
@@ -0,0 +1,27 @@
+@inject NavigationManager Nav
+
+<MudPage Class="d-flex align-center justify-center" FullScreen="FullScreen.FullWithoutAppbar" Column="1" Row="1">
+    <MudPaper Class="pa-8" Style="max-width: 520px; width: 100%;" Elevation="0" Outlined="true">
+        <MudStack Spacing="3" AlignItems="AlignItems.Center">
+            <UAuthLogo Size="72" />
+
+            <MudText Typo="Typo.h5"><b>Access Denied</b></MudText>
+
+            <MudText Typo="Typo.body2" Align="Align.Center" Color="Color.Secondary">
+                You don’t have permission to view this page.
+                If you think this is a mistake, sign in with a different account or request access.
+            </MudText>
+
+            <MudStack Row="true" Spacing="2" Class="mt-2">
+                <MudButton Href="@LoginHref" Color="Color.Primary" Variant="Variant.Filled">Sign In</MudButton>
+                <MudButton OnClick="@GoBack" Color="Color.Primary" Variant="Variant.Outlined">Go Back</MudButton>
+            </MudStack>
+
+            <MudDivider Class="my-2" />
+
+            <MudText Typo="Typo.caption" Color="Color.Secondary">
+                UltimateAuth protects this resource based on your session and permissions.
+            </MudText>
+        </MudStack>
+    </MudPaper>
+</MudPage>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/NotAuthorized.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/NotAuthorized.razor.cs
new file mode 100644
index 00000000..a59522db
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/NotAuthorized.razor.cs
@@ -0,0 +1,15 @@
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Pages;
+
+public partial class NotAuthorized
+{
+    private string LoginHref
+    {
+        get
+        {
+            var returnUrl = Uri.EscapeDataString(Nav.ToBaseRelativePath(Nav.Uri));
+            return $"/login?returnUrl=/{returnUrl}";
+        }
+    }
+
+    private void GoBack() => Nav.NavigateTo("/", replace: false);
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Register.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Register.razor
new file mode 100644
index 00000000..bb174660
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Register.razor
@@ -0,0 +1,61 @@
+@page "/register"
+@using CodeBeam.UltimateAuth.Client.Runtime
+@inherits UAuthFlowPageBase
+
+@implements IDisposable
+@inject IUAuthClient UAuthClient
+@inject ISnackbar Snackbar
+@inject IUAuthClientProductInfoProvider ClientProductInfoProvider
+@inject IDeviceIdProvider DeviceIdProvider
+@inject IDialogService DialogService
+
+<MudPage FullScreen="FullScreen.FullWithoutAppbar" Column="1" Row="1">
+    <MudContainer Class="d-flex align-center justify-center" MaxWidth="MaxWidth.Medium">
+        <MudGrid Spacing="0">
+            <MudItem Class="order-1 order-sm-0" xs="12" sm="6">
+                <MudPaper Class="mud-theme-primary uauth-login-paper pa-8 d-flex flex-column align-center justify-center" Elevation="3">
+                    <MudStack Class="my-4">
+                        <div class="uauth-brand-glow uauth-logo-slide d-flex justify-center">
+                            <UAuthLogo Size="90" ShieldColor="#f6f5ae" KeyColor="var(--mud-palette-primary)" />
+                        </div>
+                        <MudText Style="font-weight: 700" Typo="Typo.h4" Align="Align.Center">UltimateAuth</MudText>
+                        <MudText Align="Align.Center">The Modern Unified Auth Framework for .NET — Reimagined.</MudText>
+                    </MudStack>
+                    <MudDivider />
+
+                    <MudStack Class="mt-4" Wrap="Wrap.Wrap" Spacing="0">
+                        <MudText Typo="Typo.subtitle2" Align="Align.Center"><b>@_productInfo?.ProductName</b> v @_productInfo?.Version</MudText>
+                        <MudText Typo="Typo.subtitle2" Align="Align.Center">Client Profile: @_productInfo?.ClientProfile.ToString()</MudText>
+                        <MudText Typo="Typo.subtitle2" Align="Align.Center">@_productInfo?.FrameworkDescription</MudText>
+                    </MudStack>
+                </MudPaper>
+            </MudItem>
+
+            <MudItem Class="order-0 order-sm-1" xs="12" sm="6">
+                <MudPaper Class="uauth-login-paper pa-8" Elevation="3">
+                    <MudForm @ref="@_form">
+                        <MudStack Class="mud-width-full">
+                            <MudStack Row="true" AlignItems="AlignItems.Center">
+                                <UAuthLogo Size="48" ShieldColor="var(--mud-palette-primary)" KeyColor="white" />
+                                <MudText Typo="Typo.h5">
+                                    <MudText Style="font-weight: 700" Inline="true" Typo="Typo.h5" Color="Color.Primary">Regist<MudText Inline="true" Style="font-weight: 700" Typo="Typo.h5" Color="Color.Secondary">er</MudText></MudText>
+                                </MudText>
+                            </MudStack>
+                            <MudTextField @bind-Value="@_username" Variant="Variant.Outlined" Label="Username" Required="true" Immediate="true" />
+                            <MudPasswordField @bind-Value="@_password" Variant="Variant.Outlined" Label="Password" Required="true" Immediate="true" />
+                            <MudPasswordField @bind-Value="@_passwordCheck" Variant="Variant.Outlined" Label="Password (Again)" Required="true" Immediate="true" />
+                            <MudTextField @bind-Value="@_email" Variant="Variant.Outlined" Label="Email" Required="true" Immediate="true" />
+                            <MudButton Variant="Variant.Filled" Color="Color.Primary" OnClick="HandleRegisterAsync">Sign Up</MudButton>
+
+                            <MudDivider Class="my-2" />
+
+                            <MudStack>
+                                <MudText Align="Align.Center" Typo="Typo.subtitle2">Already have an account? <MudLink Class="cursor-pointer" Href="/login">SignIn</MudLink></MudText>
+                            </MudStack>
+                        </MudStack>
+                    </MudForm>
+                </MudPaper>
+            </MudItem>
+        </MudGrid>
+    </MudContainer>
+</MudPage>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Register.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Register.razor.cs
new file mode 100644
index 00000000..a1917203
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/Register.razor.cs
@@ -0,0 +1,45 @@
+using CodeBeam.UltimateAuth.Client.Runtime;
+using CodeBeam.UltimateAuth.Users.Contracts;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Pages;
+
+public partial class Register
+{
+    private string? _username;
+    private string? _password;
+    private string? _passwordCheck;
+    private string? _email;
+    private UAuthClientProductInfo? _productInfo;
+    private MudForm _form = null!;
+
+    protected override async Task OnInitializedAsync()
+    {
+        _productInfo = ClientProductInfoProvider.Get();
+    }
+
+    private async Task HandleRegisterAsync()
+    {
+        await _form.ValidateAsync();
+        
+        if (!_form.IsValid)
+            return;
+        
+        var request = new CreateUserRequest
+        {
+            UserName = _username,
+            Password = _password,
+            Email = _email,
+        };
+
+        var result = await UAuthClient.Users.CreateAsync(request);
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("User created successfully.", Severity.Success);
+        }
+        else
+        {
+            Snackbar.Add(result.ErrorText ?? "Failed to create user.", Severity.Error);
+        }
+    }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/ResetCredential.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/ResetCredential.razor
new file mode 100644
index 00000000..753878b8
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/ResetCredential.razor
@@ -0,0 +1,18 @@
+@page "/reset"
+@inherits UAuthFlowPageBase
+
+@inject IUAuthClient UAuthClient
+@inject ISnackbar Snackbar
+
+<MudPage Class="mud-width-full" FullScreen="FullScreen.FullWithoutAppbar" Column="1" Row="1">
+    <MudContainer Class="pb-4" MaxWidth="MaxWidth.ExtraSmall">
+        <MudForm @ref="_form">
+            <MudStack>
+                <MudTextField @bind-Value="@_code" Label="Code" Variant="Variant.Outlined" Immediate="true" Required="true" />
+                <MudPasswordField @bind-Value="_newPassword" Label="New Password" Variant="Variant.Outlined" Immediate="true" Required="true" />
+                <MudPasswordField @bind-Value="_newPasswordCheck" Label="New Password (Again)" Variant="Variant.Outlined" Immediate="true" Required="true" Validation="@(new Func<string, string>(PasswordMatch))" />
+                <MudButton Color="Color.Primary" Variant="Variant.Filled" OnClick="ResetPasswordAsync">Change Password</MudButton>
+            </MudStack>
+        </MudForm>
+    </MudContainer>
+</MudPage>
\ No newline at end of file
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/ResetCredential.razor.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/ResetCredential.razor.cs
new file mode 100644
index 00000000..fc9942f0
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Pages/ResetCredential.razor.cs
@@ -0,0 +1,49 @@
+using CodeBeam.UltimateAuth.Credentials.Contracts;
+using MudBlazor;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.Pages;
+
+public partial class ResetCredential
+{
+    private MudForm _form = null!;
+    private string? _code;
+    private string? _newPassword;
+    private string? _newPasswordCheck;
+
+    private async Task ResetPasswordAsync()
+    {
+        await _form.ValidateAsync();
+        if (!_form.IsValid)
+        {
+            Snackbar.Add("Please fix the validation errors.", Severity.Error);
+            return;
+        }
+
+        if (_newPassword != _newPasswordCheck)
+        {
+            Snackbar.Add("Passwords do not match.", Severity.Error);
+            return;
+        }
+
+        var request = new CompleteResetCredentialRequest
+        {
+            ResetToken = _code,
+            NewSecret = _newPassword ?? string.Empty,
+            Identifier = Identifier // Coming from UAuthFlowPageBase automatically if begin reset is successful
+        };
+
+        var result = await UAuthClient.Credentials.CompleteResetMyAsync(request);
+
+        if (result.IsSuccess)
+        {
+            Snackbar.Add("Credential reset successfully. Please log in with your new password.", Severity.Success);
+            Nav.NavigateTo("/login");
+        }
+        else
+        {
+            Snackbar.Add(result.Problem?.Detail ?? result.Problem?.Title ?? "Failed to reset credential. Please try again.", Severity.Error);
+        }
+    }
+
+    private string PasswordMatch(string arg) => _newPassword != arg ? "Passwords don't match" : string.Empty;
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Program.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Program.cs
new file mode 100644
index 00000000..adb7d26a
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Program.cs
@@ -0,0 +1,33 @@
+using CodeBeam.UAuth.Sample.IntWasm.Client.Infrastructure;
+using CodeBeam.UAuth.Sample.IntWasm.Client.ResourceApi;
+using CodeBeam.UltimateAuth.Client.Blazor.Extensions;
+using CodeBeam.UltimateAuth.Core.Domain;
+using Microsoft.AspNetCore.Components.WebAssembly.Hosting;
+using MudBlazor.Services;
+using MudExtensions.Services;
+
+var builder = WebAssemblyHostBuilder.CreateDefault(args);
+
+builder.Services.AddMudServices(o => {
+    o.SnackbarConfiguration.PreventDuplicates = false;
+});
+builder.Services.AddMudExtensions();
+builder.Services.AddScoped<DarkModeManager>();
+builder.Services.AddScoped<ProductApiService>();
+
+builder.Services.AddScoped(sp => new HttpClient { BaseAddress = new Uri(builder.HostEnvironment.BaseAddress) });
+
+builder.Services.AddHttpClient("resourceApi", client =>
+{
+    client.BaseAddress = new Uri("https://localhost:6122");
+});
+
+builder.Services.AddUltimateAuthClientBlazor(o =>
+{
+    o.Endpoints.BasePath = "https://localhost:6112/auth"; // UAuthHub EFCore URL
+    o.Reauth.Behavior = ReauthBehavior.RaiseEvent;
+    o.Login.AllowCredentialPost = true;
+    o.Pkce.ReturnUrl = "https://localhost:6132/home"; // This application domain + path
+});
+
+await builder.Build().RunAsync();
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/ResourceApi/ProductApiService.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/ResourceApi/ProductApiService.cs
new file mode 100644
index 00000000..6220f56b
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/ResourceApi/ProductApiService.cs
@@ -0,0 +1,78 @@
+using CodeBeam.UltimateAuth.Core.Contracts;
+using Microsoft.AspNetCore.Components.WebAssembly.Http;
+using System.Net.Http.Json;
+
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.ResourceApi;
+
+public class ProductApiService
+{
+    private readonly HttpClient _http;
+
+    public ProductApiService(IHttpClientFactory factory)
+    {
+        _http = factory.CreateClient("resourceApi");
+    }
+
+    private HttpRequestMessage CreateRequest(HttpMethod method, string url, object? body = null)
+    {
+        var request = new HttpRequestMessage(method, url);
+        request.SetBrowserRequestCredentials(BrowserRequestCredentials.Include);
+
+        if (body is not null)
+        {
+            request.Content = JsonContent.Create(body);
+        }
+
+        return request;
+    }
+
+    public Task<UAuthResult<List<SampleProduct>>> GetAllAsync()
+        => SendAsync<List<SampleProduct>>(CreateRequest(HttpMethod.Get, "/api/products"));
+
+    public Task<UAuthResult<SampleProduct?>> GetAsync(int id)
+        => SendAsync<SampleProduct?>(CreateRequest(HttpMethod.Get, $"/api/products/{id}"));
+
+    public Task<UAuthResult<SampleProduct?>> CreateAsync(SampleProduct product)
+        => SendAsync<SampleProduct?>(CreateRequest(HttpMethod.Post, $"/api/products", product));
+
+    public Task<UAuthResult<SampleProduct?>> UpdateAsync(int id, SampleProduct product)
+        => SendAsync<SampleProduct?>(CreateRequest(HttpMethod.Put, $"/api/products/{id}", product));
+
+    public Task<UAuthResult<SampleProduct?>> DeleteAsync(int id)
+        => SendAsync<SampleProduct?>(CreateRequest(HttpMethod.Delete, $"/api/products/{id}"));
+
+    private async Task<UAuthResult<T>> SendAsync<T>(HttpRequestMessage request)
+    {
+        var response = await _http.SendAsync(request);
+
+        var result = new UAuthResult<T>
+        {
+            Status = (int)response.StatusCode,
+            IsSuccess = response.IsSuccessStatusCode
+        };
+
+        if (response.IsSuccessStatusCode)
+        {
+            result.Value = await response.Content.ReadFromJsonAsync<T>();
+            return result;
+        }
+
+        result.Problem = await TryReadProblem(response);
+        return result;
+    }
+
+    private async Task<UAuthProblem?> TryReadProblem(HttpResponseMessage response)
+    {
+        try
+        {
+            return await response.Content.ReadFromJsonAsync<UAuthProblem>();
+        }
+        catch
+        {
+            return new UAuthProblem
+            {
+                Title = response.ReasonPhrase
+            };
+        }
+    }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/ResourceApi/SampleProduct.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/ResourceApi/SampleProduct.cs
new file mode 100644
index 00000000..b169ecf3
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/ResourceApi/SampleProduct.cs
@@ -0,0 +1,7 @@
+namespace CodeBeam.UAuth.Sample.IntWasm.Client.ResourceApi;
+
+public class SampleProduct
+{
+    public int Id { get; set; }
+    public string? Name { get; set; }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Routes.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Routes.razor
new file mode 100644
index 00000000..e102e257
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/Routes.razor
@@ -0,0 +1,73 @@
+@using CodeBeam.UAuth.Sample.IntWasm.Client.Pages
+@using CodeBeam.UAuth.Sample.IntWasm.Client.Infrastructure
+@inject ISnackbar Snackbar
+@inject DarkModeManager DarkModeManager
+
+<CascadingValue Value="DarkModeManager" IsFixed="true">
+
+    <UAuthApp OnReauthRequired="HandleReauth" UseBuiltInRouter="true" AppAssembly="typeof(Program).Assembly" DefaultLayout="typeof(Layout.MainLayout)">
+        <ChildContent>
+            <MudThemeProvider IsDarkMode="@DarkModeManager.IsDarkMode" />
+            <MudPopoverProvider />
+            <MudDialogProvider />
+            <MudSnackbarProvider />
+        </ChildContent>
+        <NotAuthorized>
+            <NotAuthorized />
+        </NotAuthorized>
+    </UAuthApp>
+
+    @* Advanced: you can fully control routing by providing your own Router *@
+    @* <UAuthApp OnReauthRequired="HandleReauth">
+        <MudThemeProvider IsDarkMode="@DarkModeManager.IsDarkMode" />
+        <MudPopoverProvider />
+        <MudDialogProvider />
+        <MudSnackbarProvider />
+
+        <Router AppAssembly="typeof(Program).Assembly" AdditionalAssemblies="UAuthAssemblies.Client()">
+            <Found Context="routeData">
+                <AuthorizeRouteView RouteData="routeData" DefaultLayout="typeof(Layout.MainLayout)">
+                    <NotAuthorized>
+                        <NotAuthorized />
+                    </NotAuthorized>
+                </AuthorizeRouteView>
+                <FocusOnNavigate RouteData="routeData" Selector="h1" />
+            </Found>
+        </Router>
+    </UAuthApp> *@
+</CascadingValue>
+
+@code {
+    private async Task HandleReauth()
+    {
+        Snackbar.Add("Reauthentication required. Please log in again.", Severity.Warning);
+    }
+
+    #region DarkMode
+
+    protected override void OnInitialized()
+    {
+        DarkModeManager.Changed += OnThemeChanged;
+    }
+
+    private void OnThemeChanged()
+    {
+        InvokeAsync(StateHasChanged);
+    }
+
+    protected override async Task OnAfterRenderAsync(bool firstRender)
+    {
+        if (firstRender)
+        {
+            await DarkModeManager.InitializeAsync();
+            StateHasChanged();
+        }
+    }
+
+    public void Dispose()
+    {
+        DarkModeManager.Changed -= OnThemeChanged;
+    }
+
+    #endregion
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/_Imports.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/_Imports.razor
new file mode 100644
index 00000000..6fb3b530
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/_Imports.razor
@@ -0,0 +1,19 @@
+@using System.Net.Http
+@using System.Net.Http.Json
+@using Microsoft.AspNetCore.Components.Forms
+@using Microsoft.AspNetCore.Components.Routing
+@using Microsoft.AspNetCore.Components.Web
+@using Microsoft.AspNetCore.Authorization
+@using Microsoft.AspNetCore.Components.Authorization
+@using static Microsoft.AspNetCore.Components.Web.RenderMode
+@using Microsoft.AspNetCore.Components.Web.Virtualization
+@using Microsoft.JSInterop
+@using CodeBeam.UAuth.Sample.IntWasm.Client
+@using CodeBeam.UAuth.Sample.IntWasm.Client.Layout
+@using CodeBeam.UltimateAuth.Sample
+@using CodeBeam.UltimateAuth.Core.Domain
+@using CodeBeam.UltimateAuth.Client
+@using CodeBeam.UltimateAuth.Client.Blazor
+
+@using MudBlazor
+@using MudExtensions
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/wwwroot/appsettings.Development.json b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/wwwroot/appsettings.Development.json
new file mode 100644
index 00000000..0c208ae9
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/wwwroot/appsettings.Development.json
@@ -0,0 +1,8 @@
+{
+  "Logging": {
+    "LogLevel": {
+      "Default": "Information",
+      "Microsoft.AspNetCore": "Warning"
+    }
+  }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/wwwroot/appsettings.json b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/wwwroot/appsettings.json
new file mode 100644
index 00000000..0c208ae9
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.Client/wwwroot/appsettings.json
@@ -0,0 +1,8 @@
+{
+  "Logging": {
+    "LogLevel": {
+      "Default": "Information",
+      "Microsoft.AspNetCore": "Warning"
+    }
+  }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.csproj b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.csproj
new file mode 100644
index 00000000..62e3c107
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.csproj
@@ -0,0 +1,18 @@
+<Project Sdk="Microsoft.NET.Sdk.Web">
+
+  <PropertyGroup>
+    <TargetFramework>net10.0</TargetFramework>
+    <Nullable>enable</Nullable>
+    <ImplicitUsings>enable</ImplicitUsings>
+	  <IsPackable>false</IsPackable>
+    <BlazorDisableThrowNavigationException>true</BlazorDisableThrowNavigationException>
+  </PropertyGroup>
+
+  <ItemGroup>
+    <ProjectReference Include="..\..\..\..\src\client\CodeBeam.UltimateAuth.Client.AspNetCore\CodeBeam.UltimateAuth.Client.AspNetCore.csproj" />
+    <ProjectReference Include="..\..\..\..\src\CodeBeam.UltimateAuth.Server\CodeBeam.UltimateAuth.Server.csproj" />
+    <ProjectReference Include="..\CodeBeam.UAuth.Sample.IntWasm.Client\CodeBeam.UAuth.Sample.IntWasm.Client.csproj" />
+    <PackageReference Include="Microsoft.AspNetCore.Components.WebAssembly.Server" Version="10.0.5" />
+  </ItemGroup>
+
+</Project>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Components/App.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Components/App.razor
new file mode 100644
index 00000000..6ba144f0
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Components/App.razor
@@ -0,0 +1,26 @@
+<!DOCTYPE html>
+<html lang="en">
+
+<head>
+    <meta charset="utf-8" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <base href="/" />
+    <ResourcePreloader />
+    <link rel="stylesheet" href="@Assets["app.css"]" />
+    <ImportMap />
+    <link rel="icon" type="image/png" href="favicon.png" />
+    <link href="https://fonts.googleapis.com/css?family=Roboto:300,400,500,700&display=swap" rel="stylesheet" />
+    <link href="_content/MudBlazor/MudBlazor.min.css" rel="stylesheet" />
+    <link href="_content/CodeBeam.MudBlazor.Extensions/MudExtensions.min.css" rel="stylesheet" />
+    <HeadOutlet @rendermode="InteractiveWebAssembly" />
+</head>
+
+<body>
+    <Routes @rendermode="InteractiveWebAssembly" />
+    <script src="@Assets["_framework/blazor.web.js"]"></script>
+    <script src="_content/MudBlazor/MudBlazor.min.js"></script>
+    <script src="_content/CodeBeam.MudBlazor.Extensions/MudExtensions.min.js"></script>
+    <script src="_content/CodeBeam.UltimateAuth.Client.Blazor/uauth.min.js"></script>
+</body>
+
+</html>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Components/Pages/Error.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Components/Pages/Error.razor
new file mode 100644
index 00000000..576cc2d2
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Components/Pages/Error.razor
@@ -0,0 +1,36 @@
+@page "/Error"
+@using System.Diagnostics
+
+<PageTitle>Error</PageTitle>
+
+<h1 class="text-danger">Error.</h1>
+<h2 class="text-danger">An error occurred while processing your request.</h2>
+
+@if (ShowRequestId)
+{
+    <p>
+        <strong>Request ID:</strong> <code>@RequestId</code>
+    </p>
+}
+
+<h3>Development Mode</h3>
+<p>
+    Swapping to <strong>Development</strong> environment will display more detailed information about the error that occurred.
+</p>
+<p>
+    <strong>The Development environment shouldn't be enabled for deployed applications.</strong>
+    It can result in displaying sensitive information from exceptions to end users.
+    For local debugging, enable the <strong>Development</strong> environment by setting the <strong>ASPNETCORE_ENVIRONMENT</strong> environment variable to <strong>Development</strong>
+    and restarting the app.
+</p>
+
+@code{
+    [CascadingParameter]
+    private HttpContext? HttpContext { get; set; }
+
+    private string? RequestId { get; set; }
+    private bool ShowRequestId => !string.IsNullOrEmpty(RequestId);
+
+    protected override void OnInitialized() =>
+        RequestId = Activity.Current?.Id ?? HttpContext?.TraceIdentifier;
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Components/_Imports.razor b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Components/_Imports.razor
new file mode 100644
index 00000000..ed7e1a53
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Components/_Imports.razor
@@ -0,0 +1,14 @@
+@using System.Net.Http
+@using System.Net.Http.Json
+@using Microsoft.AspNetCore.Components.Forms
+@using Microsoft.AspNetCore.Components.Routing
+@using Microsoft.AspNetCore.Components.Web
+@using static Microsoft.AspNetCore.Components.Web.RenderMode
+@using Microsoft.AspNetCore.Components.Web.Virtualization
+@using Microsoft.JSInterop
+@using CodeBeam.UAuth.Sample.IntWasm
+@using CodeBeam.UAuth.Sample.IntWasm.Client
+@using CodeBeam.UAuth.Sample.IntWasm.Components
+
+@using MudBlazor
+@using MudExtensions
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Program.cs b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Program.cs
new file mode 100644
index 00000000..7790e14a
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Program.cs
@@ -0,0 +1,65 @@
+using CodeBeam.UAuth.Sample.IntWasm.Client.Infrastructure;
+using CodeBeam.UAuth.Sample.IntWasm.Client.ResourceApi;
+using CodeBeam.UAuth.Sample.IntWasm.Components;
+using CodeBeam.UltimateAuth.Client.AspNetCore;
+using CodeBeam.UltimateAuth.Client.Blazor;
+using CodeBeam.UltimateAuth.Client.Blazor.Extensions;
+using CodeBeam.UltimateAuth.Core.Domain;
+using MudBlazor.Services;
+using MudExtensions.Services;
+
+var builder = WebApplication.CreateBuilder(args);
+
+builder.Services.AddRazorComponents()
+    .AddInteractiveWebAssemblyComponents();
+
+builder.Services.AddMudServices(o => {
+    o.SnackbarConfiguration.PreventDuplicates = false;
+});
+builder.Services.AddMudExtensions();
+
+builder.Services.AddUltimateAuthClientBlazor(o =>
+{
+    o.Endpoints.BasePath = "https://localhost:6112/auth"; // UAuthHub EFCore URL
+    o.Reauth.Behavior = ReauthBehavior.RaiseEvent;
+    o.Login.AllowCredentialPost = true;
+    o.Pkce.ReturnUrl = "https://localhost:6132/home"; // This application domain + path
+});
+
+builder.Services.AddScoped<DarkModeManager>();
+
+builder.Services.AddUltimateAuthAspNetCoreCompatibility();
+// If you want to use the UltimateAuthClientBlazor without the AspNetCore compatibility layer, you can register the services like this instead:
+// It gives full AspNetCore compatibility but affects performance significantly.
+//builder.Services.AddUltimateAuthResourceApi(o => o.UAuthHubBaseUrl = "https://localhost:6112/auth");
+
+builder.Services.AddScoped<ProductApiService>();
+
+builder.Services.AddHttpClient("resourceApi", client =>
+{
+    client.BaseAddress = new Uri("https://localhost:6122"); // Resource API URL
+});
+
+var app = builder.Build();
+
+if (app.Environment.IsDevelopment())
+{
+    app.UseWebAssemblyDebugging();
+}
+else
+{
+    app.UseExceptionHandler("/Error", createScopeForErrors: true);
+    app.UseHsts();
+}
+app.UseStatusCodePagesWithReExecute("/not-found", createScopeForStatusCodePages: true);
+app.UseHttpsRedirection();
+
+//app.UseUltimateAuthResourceApiWithAspNetCore();
+app.UseAntiforgery();
+
+app.MapStaticAssets();
+app.MapRazorComponents<App>()
+    .AddInteractiveWebAssemblyRenderMode()
+    .AddAdditionalAssemblies(typeof(CodeBeam.UAuth.Sample.IntWasm.Client._Imports).Assembly, UAuthAssemblies.BlazorClient().First());
+
+app.Run();
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Properties/launchSettings.json b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Properties/launchSettings.json
new file mode 100644
index 00000000..40513f8d
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/Properties/launchSettings.json
@@ -0,0 +1,25 @@
+{
+  "$schema": "https://json.schemastore.org/launchsettings.json",
+    "profiles": {
+      "http": {
+        "commandName": "Project",
+        "dotnetRunMessages": true,
+        "launchBrowser": true,
+        "inspectUri": "{wsProtocol}://{url.hostname}:{url.port}/_framework/debug/ws-proxy?browser={browserInspectUri}",
+        "applicationUrl": "http://localhost:6133",
+        "environmentVariables": {
+          "ASPNETCORE_ENVIRONMENT": "Development"
+        }
+      },
+      "https": {
+        "commandName": "Project",
+        "dotnetRunMessages": true,
+        "launchBrowser": true,
+        "inspectUri": "{wsProtocol}://{url.hostname}:{url.port}/_framework/debug/ws-proxy?browser={browserInspectUri}",
+        "applicationUrl": "https://localhost:6132;http://localhost:6133",
+        "environmentVariables": {
+          "ASPNETCORE_ENVIRONMENT": "Development"
+        }
+      }
+    }
+  }
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/appsettings.Development.json b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/appsettings.Development.json
new file mode 100644
index 00000000..0c208ae9
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/appsettings.Development.json
@@ -0,0 +1,8 @@
+{
+  "Logging": {
+    "LogLevel": {
+      "Default": "Information",
+      "Microsoft.AspNetCore": "Warning"
+    }
+  }
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/appsettings.json b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/appsettings.json
new file mode 100644
index 00000000..10f68b8c
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/appsettings.json
@@ -0,0 +1,9 @@
+{
+  "Logging": {
+    "LogLevel": {
+      "Default": "Information",
+      "Microsoft.AspNetCore": "Warning"
+    }
+  },
+  "AllowedHosts": "*"
+}
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/wwwroot/UltimateAuth-Logo.png b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/wwwroot/UltimateAuth-Logo.png
new file mode 100644
index 0000000000000000000000000000000000000000..5b7282f15f1b7e435a8e88356ed2351d1edcc26b
GIT binary patch
literal 14776
zcmeIZi9eL#_b`0T7~J-IN=eosds#wu#vny$luBf+BqZ6X7>uP9EtDk;rL>`<D5A1O
z))d+IeaTW9%gl34-}il=_w)V%@AG?}&#%v?k9)5BT<1FHT<1F1+3u@kD|0^X?c4wW
zzWw`54+FqPg8wHF4mh&((`p_5;quvc!VdstY1V&CaIR4x0Fq$8sj*G){h8iF*H3m_
znV=sLuxqy%IqYbg6M>OpbGzkO9m6QO@$s~%l7HR}w(Xm$9JQMx1yiaj4+S5i+$4@*
zYPY43PVd{lb(67iRYT3ga|%`*Y?=yO$BwxQ@!1M&BYK6p%zpauG*DB!(K4Qywox$E
z=QlUMgu%(BkNhdkefS}uX`}a}zwSXu;jML{AQ1rK_97Sn1`z_JPn3WIfGSM|fZ{_%
z0YDQ_EC8SIkUOF_2>}2x|8L;`mo&x=-|A<6^eNKIEn+@0x_oF!01*2fEEOEyO<pM5
zopHUOWO{-3(YJHUniCo6Bsu0C=5+Mfg|Ezw{E2BcP?#{9PEufw-zHC~5Nt|iL${{Y
zoj~;f@Vl7J^{_bn(VYdEhLc(Zo7D7A<IYQ20%lH|0fqnh9=*Nvtk;1zrlhHgs@oF&
zXbj$A()TX^20*^Wf<GszO(ZaWN|MU`eP&(MoAFcViU9zMQr8sWkovX+{yhsz_gXu!
zfX2B9V(v69lzMu*>rly<wB9UHVy*rX8)&hlr{-w+3Wj9n@sjdP4g#@r47Eu<AQ^Ln
z&go;^zKhU~!QcQza_TPX@zYsbcLos!Kuf1jG<AvBI-W|l<oMjm7&F!xF2H~ihp?E5
zI{)2apX-ZEkYZ<5(NQs4#q@>*H>k97sM|~xyO(Z6&@gXQZV~BY!-2}J&-XO*XB4?F
zNmIv8Lug~fXnItF6A(q3G~b(Kilwm;G)^^|mS~lsTL4Aa_RD<weXE*#JIA~>?ip^V
zId~>~+I3YD0Jj~7wmW*r3aFa|Qr$)#A&ZW1aBT3e|87IKGiN_1wD4*~Gj1VR;GDql
zRuvU4Fpws>$EG2n<x@sjK(W)8j&U<VW+@PY#^&nIL2cQ?LaVzYCU75eK8iIAT-`Yj
z+~}72HV9?^wc*>Bzj5iWG)e9}kpIl2HW@q)5M8!DzVos-dlyPd*VvX2sHJDT_O!$q
zfE@ai|LzYX`4<w-QuoY1WTA7mY)oA7ibT7pZrY#JtDWTGAswyNYFfp4C7@lzrIRgR
za#S_}kiS;rti4;?Wiz#<rfGWuJe+0;ns*XPISKv(2M=CSMgS#k#y98OsYf+0KIeJC
z-4F8D73Rqa=)~Lg?`IKJoscT^){x*Y6gB8h$X&iy?XV31uS{v*l>zr22i}+mN(#BL
z*WRlF(5b6pSI(nHdV8)<ct<1v6Fl!pK`!PKdjg~2kL(Lpa>FuOfBXWe-mY43-AvuF
zn!fskmV+}K7|?PmbIZG{V%d;dU3u2rm(t#I<J6Y%%MkIz>$6Zw;z56P3I12K<ijOD
zSXbr(P^mBW=3NI@_B0Ct8i9Hs+0&Py*y9GW$A13(^(mITWZZd_1xXZvKQ@s({{ik7
zPb<`06%!C6HF6H9@RSGw;C|$<L-vFoiHH3p8vsSS)>j552!bD|7=S3OuQ;<z-NMXv
zUi0jr=ua^%&e~lU?4TA$ME42Cl}QUSPVN98`zM~;0$M!u=ZCseMbXeARuvmfIf?J4
z>Px`so}aw=O?&a&_8$Q7*-Q|;&a#%~!~g81&&CxJfm4=cR^xV!1P%KT+64=YxgcN$
z%Kgb3qPpyTsH!+_8;Nj11AynB6UZpb!Wy2nC7}s57*IL>$LwT$96|6^Fa}VXxga70
zs_8CM`v^GbJ1qdf-;?b^PvMeTJV72TGQl9nwP^0_k3OeeAt$J}c^wT>S=p)$O}qI2
zH0=hh$A~Ow)^fD@|6T0-{k0xnO48m-68qi<@qIg$c=_CHMgQBCh$7F9mU?n|{JhhN
zwaqmZ8zy!R8S4uboN-nNW^kl3WWCj3a>4vV(N<!j!K>O>O5eNg@wLSZMh6@286BLz
z;v?g5nR%zk_jj5AK%1O(Gh*oJoS$1s7L&bLWp?+UCIWL-oSA=pLswfEMJq}IwqYe-
zzV|y>j`uUPGYprkw>vS~+lU8*ps^-BtT>5a%9De_J}gz;`?h5CH|=l4!Fp@|)fbkN
zjp`CV6(Vh^<SZ^i9ATcJA29K3@<Qf@-8*JjGrcl!V=5!@n^M6>jh`7Bg-)pxa2t2o
zCaQ%#q-N?C^=HHg*Eeq}_aAaF#%;(_R}Ub@Mx)X`&CG%6K#FsdFS_yDufpdv|Ej`C
zBqR|f7qcDGzt0#RdOcY!wAB>-dLom!^4`+CBhV4!AxEVsjyll7Lzc*^5|0IPIV(!K
z4^p>|N{Aae8ot{TCQds>Lh`J_I9r$}4bvDy-2(4JT5hegRmBQr7VF_`ED_AnFHY~m
zHX6)o2WV(W&_sWeO8#scw%ruIDY+=996pJyznvvk-#n$G$jKV5Zon_kj|+)KM@5c4
z@TK>EyX?P(#z8{lyKW#|Yg;NbOePm^eZTDgdvgBD_j2sDpe%b_l46CVro`I?eYAa4
z!bztju>5iVYF!4~wKL|3eA|t)k)~+7Lha2A0_`+JlrZemBA^q)O9mD)RLamuh9n-h
zaWlLfH6dQ5qU5A3#z=F=-UaN&&BV8irRJ>VOacvhH1d1HG6zZ}E;sT;WPZ^r(}@8V
zQdEl62-iiUjW2I|cqg8$ix-Y(ZM^H|5i~(CW~v1K)%gofw!g|yGA{w=ugtXY(#9@3
zF<wd=aUx_a98#3H+EB5HO>M+QKA{dHgOZ4k7YjZoR2lE2*9sgNq2zNBXzGbZ@6OI*
zJS6X~57+j8_;oNyY$6H8>MrG|kkDh|$ytdtSbsAFlTr8H*zrF1OS&3v;x>Fg$b<fB
z&)x`(rZgc0S^(WZDlm#twAI9^n4c&|MO)sDhdcW#`}FqfuW2e_{7DGrMZL6N#S(S@
z#maz?$ewTgua$5`hv4vP(`KhXeUbxPIj^^J>Pk{6$LOEfdXy^;edRe8@dlEpNsmtu
z%EJcT35v&b?VwVA{LNu|UhA#avWI{xs;TpGHlWKifb;K~J=o4anT&5rKdYR(Vpwup
z`2%ymU1{ix@66ti4F1b&4U?6d1s-!&Oq{t>ygKuG|LSPB#N(y;b>$l>;ayYX@)9P!
z@DLX_w|?vIcB-b_zI=l&b}Hlr=u%CwdhD__6k5E8NqxHp4olu&ubvUeT3;Dr&WI9K
zGJ@a!{(It(xYGK!tji4#%j?(Iiv_;*X9a7$$hW#y@(XTS=xVpn)@w}BjkiMK8IB>p
zwb)N`QT<(Xg;h*fKa1U9v%3|Zp?rezn_=G{V!%2;^0JYyzFoMI#5mpG+*Z&>FQGhh
zk*51C7hfn#3tJuz-v!@`3Wcx!eKxsxp`q`*@Ri&drXFTF9>v-%bV@rZ24*ka>oC&$
z75eTkBN>}NW<}@u9h9Z}`i;F=sqg6#_g%l;kMpmu>!|2FwPb$8O$b3*=8ULl(;Hm)
znq@|MpRV_88vUZSu`wQI-LBlyJ2KtSabl{e#Ziw$jEDPs?Xc6`zin4@pNcm%>6y?i
zwa(C66T=-E$0zpkCQoH^@*$Wm0^G}_5^4Y6D;+;Lq}z9dU)_j3ZuERAZB2Q;ZS-uZ
z$L$BZm<U-4E)6y8h5SXkqfeZ0T8s6b6)%-+ZeBL>SRPA#H^k@sgNmX*RQeeX$>E`W
zTk7W@XJ69U*L*xwW$_nvQ<jcWNFjHN3JFPhZyixPwD@@_*Qhg0B}O(WyM2FD`q8!D
zY%^38JLVk}5w+>AQuw8f`tQu01B!VYe#?EFS%N-WKrcKS`((;B0`xqXSbpHJnFO{x
zrQ1q?q<`1be~FNUFx#j3e6=|Y-XiQL*+DxreuNu;49UN<%AYOXoQ}Ve9G<ZEQU$s4
zDDZ~{f?)7xU$35GqS0b5Hb1f}YIUKWX#hI82srBR<&_V1vsqySS7UifxW(6p<~$M=
z#vIJdcSh8)Bz+|I&vE+WaY}<zrNZYUu~WQL>pJjmfUis7>tlxE$A_Eh<5hM-$@Scf
zdiN$HxlCmFt)V&5hlC)rS>cS+N255yR__?S6|tdRcJf#i9c?b}m6X(lYu~NlWvtPw
z6+cvsJvh+3G2jVL!rSh(WX`sVvXH!M0rbaNMyb%!XR5KmJqe~;dL?AXith}1Jj%L&
z7z@c!aKiK#^Ic4MrI?uqB+%@#Zm^|j5^yb5WX2}@t{tVKXPJRvt$xPIby*LXrI(9J
z&NeTm%&*h88iOpju{SOsP@aExx$Lrr0duB9ua{8o^l+(QrQ*GR(Q1&m*&QQu=J0a1
zQB1%+JyW`0QsT^&;K858``8Bjq9*;fyXkOzwr1@A&AO6FUp5!RyQf-_Ir6Nc;_k70
zN6*>t{y7H|C)-PP<L*n2x-XL)bqAS8O*oYg$PJTg1?H3nwu5WQaz&|aHCA*{Oj7MX
zkLZ8*V0X^10W;@Mf1CB_8??O(qec%$8?qjK|Gr=8nMT(dF?8Z%?_}lMiu=$R`8>&3
zi=DHo?pqtM&}BB&dS*R<{?fTwfiGDPu3W0PDSqknq0p%ohIszY$|f!XC4EFCpJidc
ztGv(>aboz-W-VO^zYk5IODKcW=}`F6Ob5>TOxSO$58=!-xC7H8pDtWZu&Vgo+7&R;
z+zPeSrYr}%9(NZd4p$h4@7b8=be!KA>3uIK+c#-ra=0LWmTdi@*)aWKMd<2*)wv^Q
zb>nHj4b7d_Vw&-ljZohm8H;HZJI0)vEt4w9%%2e*9f88~#~GrdYe_*%7D+*Ii@&cD
zDAWHSe;bDH-+6*@l)2Wt@#$VCsW*<c-O!w_Tfq2my;qT<%teqax@Wa>i=UvkG)uML
ztmme`THm;uJ0v|3Ba$UenP43-#?kfUj<6%&v$7JuY<zwuvDHVWr|^$XXmNhCb;291
z=97v87T}#Ul~QO`5%8q=W#?-f`?B8-eMg^Li_-v_ief*7E*(hyjNfy6xUqmfDj!f+
zvv+YW=WG*&b-oWXu(tKV!?ShsdY`UzK5^QrJIGJtgGcwt7-Hes!OVi@rI@$Nw)v98
z<-=pqm?CHc3A>K(9`rOQb}|C~2N8@-UJXG2kT?BLPyT;#l7?DzsiSbp=u**21U4TF
zrl99_(?j5Dmr1^gc&Ja%_wX<7^FrJu+!Sww;5>I%CETt@YW|r%mE{&dcA*pWcuI5I
zmFgxb^d9S~2naabBh??yR22&z8pP(GzU1-Yk73BK`1jBH9M-KOvL3(#e+*h$JVKCs
zJ|6z-w<2@7jOSJb<w%U3k@=zU`DdO+NRr#=RQT4QgG3|f#cY8Ner`#0*vu`1qvGdR
zCl4{oD9;9B9`nx@cprD~$ae`{h>phQk63kZ_ZV}m?nf}$8{e9<POcrcjTdtI>((`0
znlQ8u{l(`~p?(MMy?dsu{4142%VOQd@$>iIN++eA)n|-0ny{bzQnP6N=x}&-qH^t|
z(a}vN(251Uv>2gF(hiakce5`}K8yI$aJ>rK<t8#?aW%0(bmxGD?V*JDwxDfU;eV#h
z!V`|=a}#I=5W0GC)JU+rMJI;k!dDxpCso*tiz(r4Vnt1uVPP*znyth7tr?;lPAXTP
zQJ$S}dZJfLG~$DarWAX<Z3&C1w}W5=j7)x0VwTq_9DUmmCFU41t2MdaEfEyRM;}~!
zEO15BV55BF=yTy9#ZkYc$6d*xf^&iWt4-6c$U8siBE{;4?}AR>h|@#nP<KE%Q#L%c
zao*TtIJXc+UmYJx#+>GF)Xv>o*Qu}l(51baY-B{wT5lWZl3L|)S~ZHlJiiTxSEjNo
zFGW&0%qRC9T5mq~sw+SJ6|@hh5=#_Te22|BDQ|-JBJPd!x8Y}BM!eT$S_PRS5h+l(
zX_t4_1)m)7hTi1W0E`_}tYaBr)3@0<y>Ep}E=V1vorhBTo_^Nw)j;Jg$eRfdwg|?1
zFY0TD7fo7$R&W?P5edDrl`-MkVaoI()4=`IbM4AmmX8cQywmR3!kUXGXi6kxf_fH9
zxqRTy&{{%0mgSMiE#|kJ%?b&TGX2wbHK;e7rVfEj!=l#vvut1eMU#3ZX`XQ8t5N}@
z<~8a6`Q7ehw8EnWBEQ@jf(Z%e%RsmPUba*D(#v#UJaU#T9Quy|?<1gfrTO)T&k1qJ
z5m9>o%KCLlVh5zEbUk-sEuqeMezdoL=|VS#qaOO?QX?wn^im8hYtdQIC>Y4#Nkp|p
zKel_}YfnV52FtyVo3uA^3PLZgy3XnL;ysyW9^;Djj`8M43ulac!5Ii{4UMy9c;G;Q
z8qQ#0sl)I9D~6iIU4v$9Xv8T266N$>ja<6klV$yr_yh(@57&8o4XxPP70ho6$+F2n
zHeObt?fY>UO(>dH@2Z<;V`%(RNM1CGy>{<Z9blL555Kg~0Y_p`?9-c^^6SvLhc=^v
z^2~h;#}8%gFDP3TdCU3l?Zs0?f#S71Nd%_$EoQks^H1#@Lf%5a*~nD*YbFjiRv79j
za`x66S&U@ZsaUdmz^FrU)G3SkA8&j?Nuy|XYQ7-%!j<uWc?A1ZmP+v$?aiJy3~-y}
zIl*w{_<FoA`pRV0;m}~{zE`gl*q*0(z)04SLAqO!GOE@ciHu1nRyVybgjZV!H(NQB
za9`c2H|+SYR(+Uy%<|}lk-bQKMvx0;)m1ga>T}OmnA*L0c=5<q+(qcMeft*s;XmQ<
zXdyd2mU`TA&1bfjeSyv8WQtV{&n*T_DJ}Q?fAa+;gFZq!VT<VPZ)Xj6v-7)dB3*%m
zi<%`Gt>*d<bPGIg?c;2Va_SKaI~X@zE|CA+;8YMJqyMS|5%~@86z_YV<vCj?l$`dh
z{V}{5IJ-T6V|-&p;Ki2mTTybFQD%!x&CpgL5(9yQq=^sMd<;!p>3G454Zni7L*wMG
z@@Gw|t43jeZCCpl9n4&cl0pY_iOC3`WQNhp9XAf{wP*7>fMC36V@^#=LPO!J^gEMJ
zOxAcx(iTUqx`%Av4i>g$@wNET<HH!AnqQcrL@yE|3Do?R@Hh&JMM%63a*<#k9J@QA
z2GfHj#s~(tSu@5I1zOPS!<fYr@Hp17Ba*FM_u();S`f7GL+woj>kJK@WXXpb_&DGQ
zlThXVK=;BY&(%#PQV69HC4qJ8Sr*#PodjIvE{_{5WXE7iZH{cudsPy=fk`i)<2pN)
znSZ_w37O+Cg<>Rx65wE;Ay}>rG0biv0UJv=?C}3<?V{3QwoCJXfI&(35KN^*iu6X1
z)s?0A$&V`B1i-pveBwp$|B^}DKq!nTewjmJ<yo9Vx!r>N!9RmN<9FGrj``sX7!#RI
z1ummg#l_(u4~Ck^^FJ9hC#LVqCC^}%wog{Q&v4=d_QTNIA}4&tuv`%Y${NjpfA``r
ztbH=WVJZWlyb+lEWx3;+I7v{FjAAEr;6M-*lYwj`7?^|mlxV<=Du{<~dH&0|8UJ09
zg2~$d64CJgp=4AZF4_W(&Hr8Fl(Rt&$_@M2hr!%=#tbV{o{8snmKo^h1)yh#E8?I4
z<4Hi<aWAKrk99~sLTJzb<kX2?LQ;(1c$2yjm~;PovhD^}58_4bOU9!PSD|TEH9FK|
z|B4gx5h!=n0t71gV2v)mzu1m)pD2gLf%MTl9#?aim>=R^E7v}anDsK)0HqtrrjVK}
zIRPadJ~eSLx-q~xL|51;{vG!%lR6e2DV~ih+FmTe^>w^+DV7*OQ7*%We3za_WNL?D
z?ZBh>=Qczs6wwifr8Lt)EgUJf#ea8`1m!ynssVsGKJJp3{AebuOrREqTZI^Ug(x@U
z<~F$J)I{12>W_rlU8$_Ol5)LX1pg>S4j>tsJn?PF8zpr-afKB8vfXEbI2efs$>jQH
z|Dzye6N!(otOHAZV0Gr?YYghRiIkOYRdXTuF<i!AES3rRv8Ve0&|<FCC+4q2@K-X~
z3~NKu{eBmusorh(Q}vI3WrxL(rWd+&e>sA`Trn>oX5G)Qs_E!ywdcz2h9Q1#Qk$=}
z5agjd=xbN+exx_UfdCh*teXiyvfsP!Jy#$Y<N`pUX4rsJENYjv%M<{Q!0eEjsP`yo
z`d8#pSRfmZ-MEC3R@{{EfU^B3Ul#>^_x4U;Gyr)wdue<~_9geR7u{Q6jZQW&YL78;
z{%byDK=Y+Y5f{mwtuepl)_)3fuSJUXliW9#9Y+AgqLZ&{2cam$&<22{uih<Nk?eyW
zfzfx>{jgA|!j7z7fM+GPP;k04`4=+LuI<g-7(mWB0?UZk^j?R+GGf|`8lLYbRRO?1
z550bBn%eT?CyRz1a<d%gGtjP_$<vn=E*KmOXa!*TyTwwU<r`R;Y{sjcU<Wi%o3`Tk
z%8cYLk|vP8$N^}ULTO)WyrR&qM{wF#%VQWYaTCL(CrJ&gc@CQs-ucuw90}Ts%o3Ld
z^^VU<z~gY^*umX>I)oxW4mr3(vTU2&h{!Bi{dMmE)cUSM{fz5ZR_<d68f=XN)X^!H
z=2(mi{}#rRUJu`wg`E(~zDvI0a8Bbsb?reL6$WJ6;<f9^KVDqfKX+?G4GqzDC4Pdx
zggp%JH=V}<Rm*W$M>(OSYfo~oNfUSy#Df8<JkP@1vjhkl5-^<(fAtA#$dTOn(}H+H
zQuqKRqhuh%m{lr%NN;hRVAY8$%XBtroh7+{;MbFazxIfFS_!McDG8#t*nqQ$=vB`M
zG)>)n1lBgO=0kQ;)ULreST0K++;`HFO6ExuSi056%m!elO2>StOPXp23;F%Oa-f#{
zfFKQ2@_QDd0dM|G7d_rn$?<6dZ`(M*fZOALq_-&(+Fy;CFnsfjwgbxV=fQW&L`Zoe
z^j=Z}o(UD*8{#mhk~vv8By;^Q!))}4IPV^zg+%3#upSIc#0ig*!nR)71>V6tX@^tC
z#f6P&X6fqB9XC{%F1<>jGq+S;Y>dx2d}bwi-mP9T8o_q^!iY`cwSO<3Bv$V?1j|<+
zliIXCDPxK8zRM#6A@fm(+Umc1dNRGf-*CouVjjHWk)*!6XCluG|L)K#gmwP0=naD~
zBdhU#dIkk!;ad_iXehRcB-YT(qxqgRALEEngy}GOue<Rh*MIe^`MJyVBMsb1HF+~6
zBpW*tI|9>l;!id{Pk2IKD`aInceCZ>vc1F!6PiuK-ZS@1kS(r|Kw(~U9);X1u=l`O
z35Sxe9)0ktL5f;`JF(7Tu?(%OS;Ut}Z2axOB6-!f^ffzs6=PSBEe}K7n{apv-#V*4
zmNm1MieNo%W$}c5?p2IO6%Q=^>S<{0zzldVDz`WpT#>!9@<jbyK!EEF%JyL8JTfVd
zNDs*#bJ`BJ!>H-p>bF`a2a#AlGFLPEmIFxgwDXdR05SMNW@!>*rgFMF6r)It)fci+
zCD`PRg=9xT%#!9UtjNxMkkSPa`jGOR=^G@4++p}CZW?-5HZ^|6@bZX;R;~81g-}ib
z8=8n<6_X{-YfqHY7P+!@N2Gm~T7@ui(uuWOjfuJZT8Y|ZZGuh2m=Jq24~8%@>C-P{
zOw35oDj;QJNqL(Zt8P_KOoL_nutO~?e0#x^e|E^j2n!_pn#LV-D>ElfS_Okqb(mFn
z6yxxCJ+y3fg-SjHmCr@Ro_%!!#t;vWJ8s;##M55mL$!beg#1)&QKIj=KZp=>%QT7)
zlk!N8Z@8BmjmlPC>`JF<ZD_hGm(F>VQ^~n$_g-wz1UB=mIP18h-wysfEAfPZ+$UQ$
zleVbqV<w_t9xZhfCkwMUN=k-9c_;e#pjw#E5y+cA<3mZv@6VBgT*Mnz6{B=lnr@8r
zG8LVIyk3olJhj)pHYT1)5J_l}Amz!WImz-K0#6slQY|z2upYkNP)Gb~S51)L`<8gB
zS=*ZTIsL4@2+l^@DDg_??356pUA=Kztsi_NZ!dn^XJJEWZWEaeE^C4OzO&z#*xFRF
z@lpiW?wTEvYG5Eu4b7uh57FR@CruSgdMg}xA9J`aZpctWpVCJ^?a-lVXI<HIaVLM?
z#|GJ|-|6U-+MN-~rmK=P?0DLE{-heA-B0!lCb#r&1dMjwNGDN}JY`Ji#u3)~pZ_jO
z^l;H^o;CX5HV<J@(nV3V{rvI~4=xh3P06Yx`M5EsDSdqxnN>T`Te{wT=!GHqskCfW
zwG<Vrc1&cVYw-*LCpekMb#Vd7c20BB<=+c;Rz&G|hBoG!pNFn+mcRWFo`iuHy3DEK
z2<5Vsk8(f6<iA8up7tW0B$MRjS)(WIGi-xsf(=$*s${8H^<yIL-JR+rqVRz@6U62D
z9)Mm$TyLP<bB|tjxgse_4_-%*L^Wj7cTo3b)wZ}m3?Yk`Q8K04&0P>7<a>q*pFm9j
z@sQX`zNEJ-_3s1OnCmxjW1sY>6#mg5b}>J;l2mkPE4-kd2k~N-B&n2y`%C$fb9<4C
zv2NXeOOi1_@$F0z&orLYbM*C<88L|L#oZfU#$bRq?eXST^9cf=?GE|-%>`do-g7pf
zlbDdL@8+8ojSU={oS!|!$_SQdUS9eNt;~x=?vhQ;d%eq4zrT+xkt0+Yj5-~L9V3z3
zuz^z_RpuPm9%~5oR}A%$DuP`U(}&zeMLgal3xw99fUK=@;LJBFn$Bv$3LaDh<U%tz
zq69~Nc&W!j8Z;i8qV_V>&fBsv3AUPmhCVJ+O`b(bUMH5~8*-A_fNr1_?xh1M?)*8|
ziM;Rd_p6?=F}62m$jkGP`_p|1Zz2J);cj{mdx(o-w=A{umYbd(F9w{)8-JyuuC-Mt
zXt}Ll`lk?a-AYAY`#z*ca{y=YW9b<*%VYOWpro&+OATKkFJO#_Q}ZLmrQ%IM<$X~>
z<F9F`>m%=L*;|x&z}Lzl|J{zSZnDP4(zfY#dYxheULCGWbEK5gwVet}H{TX;ezxut
zuCExFc~wVzlF8^}EdPCQ$;~%_Wz=9s{?;YF*M!IvB|=qC9D&9m5O#5;%josLqoeb+
z<|4kTOlN!TNlk%0%G$D=z^m;E%Q<jWyFiL7^>m$xOXdK3e4d6_>wV2YbG9`8`IGaV
z1N<OFx+kMKnyv`2jYV<-NO8xm62QQo2B|n@gkUEZ11L4V>NZ?<a?}aa%_fhZ8v<(a
zR^!I_&TI(Vq|rS9XAa?w{jHEz1vMNPjFY@3Nu9XA4NFlqMXOPgpfN9oIRE0BB&^2E
z$H3vfO~!)eh_xUDF87m;R4y$}GDWQK%f={|r~|SA-t;9E&DHJHCvyRqtg_Z1nBGcL
zui}BrJlzo~pNZz!{^v0-63uaEJxWEwlvGYI>rpZ??;4uJ4Ii(`M&>1;Ionx}J0kOL
zqdAJKM+kct&Cz8&LfAAk#{xd;%0%WtymqWdLgWNH!Sp-a^CAmes|YD>3W~!$8p%0M
zMav~)fOEbnS}skU;DhA*L0}nzX+azTq$uD`FK`h;&3Q4E2jV0{4<fCW5M7`tuJsZr
zu5XhGDBL9#he8~(5Qn8H>VgnL4?*BZagroFi3%|fWSXL^Ou=Te1labIbjn>Jx2X9>
zY+(7y$7FwK9?KnnuNeM)NO?xtwb_`ugNm5(8VC8}SdAn>pk68xX=v5{R63c`qZ1@S
zsWe5ixd^0sHI0nx0*{ic=s1AhM5OcyrtVPZ3%6k<x8Y5L_ahPTDd`Lz*TF@A)}l%>
zazK`ZK%r5@-{XxtdQO*EAs-JyVHoU)98jjBJ$rdEEz(lR4+3>S87i^&d61WaL_&AF
zFaavt&fFsRE6~kGBKZ(PN$lk5b-3ZQ-Q%Vx%uIdcfOxj(XhMRnNp_~7kq6<5HUl<G
z*OdynNXVZ3ycn`79%sLU>dce2ZPm@<-1m1FGR$&xOH!TV;hlIm3^@v6033lZB5*`T
z4M(iqYKD4cp^@jIjQ!nT>g4lz-9aP8AZ~vm?jtWk=**Ul`J-`RfrApV$yiky)*wB0
zxo|-1GnaH&{9$2p=;3R%61{iCFO685oos|98`$>{4%2H9ilcWpV;@5w_N@SH9{k7)
z6=4jz5F|e=CIxRk>>L9rC>~2C)Q*4@c0A5cit1bg5BrfHTPb3wv8s7O%|}tbm<Q{`
zY4so5D7);uGr1rEawKHz057J{tfA4WMU#hf3Fdmfo>=;E0ix;T#p8D2NiC7GF<W0~
zf)&X~ni&bPYbyg#ReZFdp(|=oC$+qS>Jb#{_;wCxSZT^}QnvoYN8Z)cGdZ;9lr<*q
zAkNr)1~E2=95RyH4qKeNcL|_v{~8+Y1z=XZg`kE*f4KUQz(m}Gi!Iq>W+Bj(+p>a@
zgsZc|_b;Kmv`!ttOcWf&<3@cn__@_s&5pIO>sStyzwWwT`(fk<Nf@p{NDDIG*(r>j
z5Q8&cN#odI3m(0*N_~!x_}df}tWQ7%^Fkh1DXehNJVIi_6OqW>Tm*TW%_b`EjlfYm
z@4(3X(ko<H0*>9&vFPoDIL2l)5{X<4*^986VHf9GrsuX07pye(R*8dfIrg+5EB&AP
z{yfA~Q`E*3F_wWl@YAjA%{Huj^F=%^;Gzb<B5aHOqov~5JKBd4bb0x+lv5GL;ELa_
zyY$XiKLci{F<C*6M1BI(!S8<xca4i<i<Bjf7;0x+zqiw%eLrGcU4;_mj-@YjIwo;L
zSE+?9YEWLHA-JX-m-0T@O>Q5~c$A7RQ@3GL-k(vih-Rqn#DwMucZarb;8J+-IOwU+
z%pqA{^gq@au%|pZB89BN8ubM0NC(AQg?6Bo2^otyHWP9LoWUrhNG}k^4HB=fw;UoN
zp-?fr(uHzK%}@lP&xPmTJr1c8qBP=-QHmG=sf<64*;5^Vn1Je$P@?)IZ1?nU+TbXG
z3EYpJ_(<on;4K6E^uND8!lPK-MidRCN~XB+&Rkp(b8fsLlzUAQ*^3wx8?|j!9NBZ0
za%_;Vt=h=f_~Q|kW%64hH<Qr&L3|iYh&Ajk25LC!keG4h_GSd*SjKI7v-XscLL@~5
zrclC1s-F=Lg_xs0oCI9Y$M-Q5@e}9z@H-+Y_6T7hzY1+(Yp6NJHob5i^*P>Xdt!b&
z)+4|ehgpI9Q1W=p!KA=mh9=dA$9e5TFe1AhMe^$YDW?dB7i=#}mx`fq2b-gX=Q8ow
zJ=G9<BwVWSOdyrAYayRNQ)Nwz7b7@ZF5+PDdq43@#w%Z9?Oijp&;i1n7vVLRJ7Qr}
z6iMVPlSVr6dZfxXns-vmJQ4S9m>``=f>UeLg7`8ttohv|f^Zmh0+o`g>L}v=u@#D~
zjl}kPz+F^zbK~cFo*GX!zgO~+loL?3za}koRbCfP<og;8F+56(y(e_NgTsx8!}y&t
zM^e(^_VzC_u5aOZ^D)@VIUmZ&@7sYu$X(}C9w{V63)0aeT)^iQvCv6`&PxmTaB;*z
zZNrS~i6`V~e6UIM1*D;~G6%tSoi<0@li_OT7f+W&eftvp<r6p$DJZHBK0hF<)JVqR
zaYaoDXp8W0F+pSaWrWpFJXZHq*&b?u6%OO@S{moy6nq}34)&rUuq!Tdp$q-=kF^&Z
z7LYYE)vfGL*l=<7J(iM7A@VU|1e$z}r^!6*)n;?>^^CaPiN{{MEs>dNRkL=ZBgWAd
zhC2W1Nn<Wk!*l$sEWDYY2EV+Wy7gQ@5Z6=J-J)cD*wxhf=+4Ek$tkV$abC(|`OZkn
zc8KU{%k>V!^uwWbVo|QU_82(=LD;hPUDcZZT5^z=0ITEpEv!I6Pg`@*v~>Mf@l{`P
zQnH(TBrFO+eaUNc)~>I;ka=;1c0^0|vxA=qrHh5MUH^Ld#GLWjCg|Y1!EJvE?QE1n
zZkb+DLk9K7wnRP~)+(N|^}DVT+@rtv5LL9dbJ`Sy_-$m4g|IstLdnXRp)EqN_!pfn
zTc6=)?lN{PeLSMc&W@%cdV?*r)>J1&;m#n%5ej}e;i|8yy6k66Ic!&)*tL1o+5A8Z
z8@%E%<!(8mUhxq9yv}yc<+Q85g)$HfUhTA%14&T_)r9$x>Q-$@!Of!s`Ebgom(n<@
zYmR8o$J5%9JD|k&v207So@X5PV>!&gB$_(mB%w8=em{`ZptgMT5C)UV%SnYbrWV$9
z1^4a4gs1Vg5cyB=gqMxnWxEB<1Ty>Rs_)~R0(Qc4jb^s1l9F&Mz>SYS{=0LRO{R?x
zK@2{dSwmyl7dMYiJb(si;8-9Pcz@%yw%u)=koivuOH;vH$f{2|JOfWcyxo6xkxR|+
zIG-R0`NJhgbc_A@gij8>n=x}%u*Ae_{11Aee<~xd%2!={?V1Qjp`rOO*rN*X_Qy#H
zc5;e7*+1cB2Sf^`afSOKmz=HpO$6oJpU8G$I&lPCA-in7b)LT9AfFbe^AZ$zXXM!6
zk^vlygM+ZGy%1J7oa58(9Ufcg8h<V(W_K==Q+HYxcx61e2=rK&gSv@PQB09n=~bHN
zR&nP`@W9Pf!p{M2XEhhb6ip-{*iIeDwYqa0c9+h-W9CK4fM-LMtr3l8HxW#E0NGR3
zgY3DvtBTHADU8N;RJb^#-ugZ!-y_4rt*QqJ;AiDR&aPiCJ`=mhKm5<ElCWRzLK6I1
z$_ANv#b-F1H1&+7AS7J>Yb)%HPdOa=8D)PnVYB%g_<9w^ro48`IT_|XLGWyp9mz&6
z*veDrutu}XJw|?Hp=<5A*0k;UOisI3M6e`B1$L+7u+w!Wc>Z)=&KB{{n}A)r{>sIk
zG`~AM(4-bMC!j=5NE3g~ofvuQS$Qnc9F}>^(+J#_uJX?xu%ek|Gca)t7K3gQxCt-d
zfzG(`0R;|=*HL0D%UxN&yw6Z-)R0=(rY``Cak_5i2n~%IoUpZ+obO5Ov-6gkuv?A>
zFr|%^-=}Um7_jm%h}R6r!*+Q2>jdudQ*g})eQ6vyW$eoCwe$xz?Meb>!H02}Bv=X)
zbcbo|b20Mw{lcG~hJb@`W956`3D)B_^3Qte0*Bb4oCI0Pf&B`*-W@usEfWc*oFNUH
zV&nzqS)X%ky@CfGF8|jE#BD2R3<BV}A*cTPHfMRS#iUB_`=%Fr%m<a(oj55|2!UcD
zoYSIXf(MFYuxysgYdw*ajeumh*<>9PK|7Y11fbE#yHDVLp(co-LGK8&OeJvpoq=zf
z;rvWBQ<pKw<pcpLacB)1ow^%>J!XL=5xDi-AXp-_u@ed=f^VStr2y6&h|S&=zJZ<o
zl8A}m9u~ur(2nC=;yxJ&UjyiMF#^Sz*SaJM5`*C)P$=*W!w*S*CbfO2Trn~d@DGNG
zfn5W3z&#Zz6e~HPM3;yAaI$5sqD?e<voSD+iz3PcC_Cg0)-;}1w+tq=O=Ip3wL?Lj
ztPB7xYOt1?222DKpdr1(ev%VF{|y#emlnV0X7X993SuaF+wOu&3C-rlof`AsC)psT
z5+!&pdcMPLng2n5f9-fJ83%sIP=W1nxZkIvoB1H|l?Gg}GW+BcfjdSD6cXSnF^a-D
z&hl80?q-VxB2S&;A|YE|SH%e6&BICpx6ok=PChf>46im|f2`#n$(>u_yf=cXrY;wC
zg)0W<{!`LDKkXj($piLpeaT>Re$Q(OoV#_m<@gNCJb{H%F}Tx}2jDj=(h9j*jTbdp
zDBU1Rb=JpDkCOUQKKq$Kid2ulN^GhJJVGmUeGS;7$QtuwjitB#TRKGqF5Lt1l-*hS
zx`#17o{g|Pd6^(iN{Ff^Kc)0s=CsbcY9<}#(S6{$rL1*(&b$2MstER4w_H2O`%iv9
zU<udmb<;nr?yw5`m)TuvA`K!Wk;p{p?XGfLrHqGYKBm9oCanhB<Ln=;U6<cx1_t2G
zLUGzT{fB{_T?x3a3@Tx*9e_HuEIt56AW9(l@9R6Af204tLi_i5o-gDT-2C^^-oKW{
e{{}6(t|lJ0a>@E;n@<ve|Mr_%ndXz6BmW155K|ri

literal 0
HcmV?d00001

diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/wwwroot/app.css b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/wwwroot/app.css
new file mode 100644
index 00000000..5b69be65
--- /dev/null
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/wwwroot/app.css
@@ -0,0 +1,206 @@
+html, body {
+    font-family: 'Helvetica Neue', Helvetica, Arial, sans-serif;
+}
+
+h1:focus {
+    outline: none;
+}
+
+a, .btn-link {
+    color: #0071c1;
+}
+
+.btn-primary {
+    color: #fff;
+    background-color: #1b6ec2;
+    border-color: #1861ac;
+}
+
+.btn:focus, .btn:active:focus, .btn-link.nav-link:focus, .form-control:focus, .form-check-input:focus {
+    box-shadow: 0 0 0 0.1rem white, 0 0 0 0.25rem #258cfb;
+}
+
+.content {
+    padding-top: 1.1rem;
+}
+
+.valid.modified:not([type=checkbox]) {
+    outline: 1px solid #26b050;
+}
+
+.invalid {
+    outline: 1px solid red;
+}
+
+.validation-message {
+    color: red;
+}
+
+#blazor-error-ui {
+    color-scheme: light only;
+    background: lightyellow;
+    bottom: 0;
+    box-shadow: 0 -1px 2px rgba(0, 0, 0, 0.2);
+    box-sizing: border-box;
+    display: none;
+    left: 0;
+    padding: 0.6rem 1.25rem 0.7rem 1.25rem;
+    position: fixed;
+    width: 100%;
+    z-index: 1000;
+}
+
+    #blazor-error-ui .dismiss {
+        cursor: pointer;
+        position: absolute;
+        right: 0.75rem;
+        top: 0.5rem;
+    }
+
+.blazor-error-boundary {
+    background: url(data:image/svg+xml;base64,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) no-repeat 1rem/1.8rem, #b32121;
+    padding: 1rem 1rem 1rem 3.7rem;
+    color: white;
+}
+
+    .blazor-error-boundary::after {
+        content: "An error has occurred."
+    }
+
+.loading-progress {
+    position: relative;
+    display: block;
+    width: 8rem;
+    height: 8rem;
+    margin: 20vh auto 1rem auto;
+}
+
+    .loading-progress circle {
+        fill: none;
+        stroke: #e0e0e0;
+        stroke-width: 0.6rem;
+        transform-origin: 50% 50%;
+        transform: rotate(-90deg);
+    }
+
+        .loading-progress circle:last-child {
+            stroke: #1b6ec2;
+            stroke-dasharray: calc(3.141 * var(--blazor-load-percentage, 0%) * 0.8), 500%;
+            transition: stroke-dasharray 0.05s ease-in-out;
+        }
+
+.loading-progress-text {
+    position: absolute;
+    text-align: center;
+    font-weight: bold;
+    inset: calc(20vh + 3.25rem) 0 auto 0.2rem;
+}
+
+    .loading-progress-text:after {
+        content: var(--blazor-load-percentage-text, "Loading");
+    }
+
+code {
+    color: #c02d76;
+}
+
+.form-floating > .form-control-plaintext::placeholder, .form-floating > .form-control::placeholder {
+    color: var(--bs-secondary-color);
+    text-align: end;
+}
+
+.form-floating > .form-control-plaintext:focus::placeholder, .form-floating > .form-control:focus::placeholder {
+    text-align: start;
+}
+
+.uauth-stack {
+    min-height: 60vh;
+    max-height: calc(100vh - var(--mud-appbar-height));
+    width: 30vw;
+    min-width: 300px;
+}
+
+.uauth-menu-popover {
+    width: 300px;
+}
+
+.uauth-login-paper {
+    min-height: 70vh;
+}
+
+    .uauth-login-paper.mud-theme-primary {
+        background: linear-gradient(145deg, var(--mud-palette-primary), rgba(0, 0, 0, 0.85) );
+        color: white;
+    }
+
+.uauth-brand-glow {
+    filter: drop-shadow(0 0 25px rgba(255,255,255,0.15));
+}
+
+.uauth-logo-slide {
+    animation: uauth-logo-float 30s ease-in-out infinite;
+}
+
+.uauth-text-transform-none .mud-button {
+    text-transform: none;
+}
+
+.uauth-dialog {
+    height: 68vh;
+    max-height: 68vh;
+    overflow: auto;
+}
+
+.text-secondary {
+    color: var(--mud-palette-text-secondary);
+}
+
+.uauth-blur {
+    backdrop-filter: blur(10px);
+}
+
+.uauth-blur-slight {
+    backdrop-filter: blur(4px);
+}
+
+@keyframes uauth-logo-float {
+    0% {
+        transform: translateY(0) rotateY(0);
+    }
+
+    10% {
+        transform: translateY(0) rotateY(0);
+    }
+
+    15% {
+        transform: translateY(200px) rotateY(360deg);
+    }
+
+    35% {
+        transform: translateY(200px) rotateY(360deg);
+    }
+
+    40% {
+        transform: translateY(200px) rotateY(720deg);
+    }
+
+    60% {
+        transform: translateY(200px) rotateY(720deg);
+    }
+
+    65% {
+        transform: translateY(0) rotateY(360deg);
+    }
+
+    85% {
+        transform: translateY(0) rotateY(360deg);
+    }
+
+    90% {
+        transform: translateY(0) rotateY(0);
+    }
+
+    100% {
+        transform: translateY(0) rotateY(0);
+    }
+}
diff --git a/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore.csproj b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore.csproj
new file mode 100644
index 00000000..2d474a92
--- /dev/null
+++ b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore.csproj
@@ -0,0 +1,17 @@
+<Project Sdk="Microsoft.NET.Sdk.Web">
+
+  <PropertyGroup>
+    <TargetFramework>net10.0</TargetFramework>
+    <Nullable>enable</Nullable>
+    <ImplicitUsings>enable</ImplicitUsings>
+  </PropertyGroup>
+
+  <ItemGroup>
+    <PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="10.0.5" />
+  </ItemGroup>
+
+  <ItemGroup>
+    <ProjectReference Include="..\..\..\src\CodeBeam.UltimateAuth.Server\CodeBeam.UltimateAuth.Server.csproj" />
+  </ItemGroup>
+
+</Project>
diff --git a/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore.http b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore.http
new file mode 100644
index 00000000..506fcd1e
--- /dev/null
+++ b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore.http
@@ -0,0 +1,6 @@
+@CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore_HostAddress = http://localhost:5151
+
+GET {{CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore_HostAddress}}/weatherforecast/
+Accept: application/json
+
+###
diff --git a/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/Program.cs b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/Program.cs
new file mode 100644
index 00000000..b1825cb2
--- /dev/null
+++ b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/Program.cs
@@ -0,0 +1,28 @@
+using CodeBeam.UltimateAuth.Server.Extensions;
+
+var builder = WebApplication.CreateBuilder(args);
+
+builder.Services.AddControllers();
+builder.Services.AddOpenApi();
+
+builder.Services.AddUltimateAuthResourceApi(o =>
+{
+    o.UAuthHubBaseUrl = "https://localhost:6112";
+    o.AllowedClientOrigins.Add("https://localhost:6132");
+    o.CorsPolicyName = "resourceApi";
+});
+
+var app = builder.Build();
+
+if (app.Environment.IsDevelopment())
+{
+    app.MapOpenApi();
+}
+
+app.UseHttpsRedirection();
+
+app.UseUltimateAuthResourceApiWithAspNetCore();
+
+app.MapControllers();
+
+app.Run();
diff --git a/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/Properties/launchSettings.json b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/Properties/launchSettings.json
new file mode 100644
index 00000000..00407688
--- /dev/null
+++ b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/Properties/launchSettings.json
@@ -0,0 +1,23 @@
+{
+  "$schema": "https://json.schemastore.org/launchsettings.json",
+  "profiles": {
+    "http": {
+      "commandName": "Project",
+      "dotnetRunMessages": true,
+      "launchBrowser": false,
+      "applicationUrl": "http://localhost:6123",
+      "environmentVariables": {
+        "ASPNETCORE_ENVIRONMENT": "Development"
+      }
+    },
+    "https": {
+      "commandName": "Project",
+      "dotnetRunMessages": true,
+      "launchBrowser": false,
+      "applicationUrl": "https://localhost:6122;http://localhost:6123",
+      "environmentVariables": {
+        "ASPNETCORE_ENVIRONMENT": "Development"
+      }
+    }
+  }
+}
diff --git a/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/SampleData/AppActions.cs b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/SampleData/AppActions.cs
new file mode 100644
index 00000000..7d9191f3
--- /dev/null
+++ b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/SampleData/AppActions.cs
@@ -0,0 +1,18 @@
+using CodeBeam.UltimateAuth.Core.Contracts;
+using CodeBeam.UltimateAuth.Core.Defaults;
+
+namespace CodeBeam.UltimateAuth.Sample.ResourceApi;
+
+public static class AppActions
+{
+    public static class Products
+    {
+        public static readonly string Read = UAuthActions.Create("products", "read", ActionScope.Self);
+
+        public static readonly string Create = UAuthActions.Create("products", "create", ActionScope.Admin);
+
+        public static readonly string Update = UAuthActions.Create("products", "update", ActionScope.Admin);
+
+        public static readonly string Delete = UAuthActions.Create("products", "delete", ActionScope.Admin);
+    }
+}
diff --git a/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/SampleData/ProductStore.cs b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/SampleData/ProductStore.cs
new file mode 100644
index 00000000..10db05bf
--- /dev/null
+++ b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/SampleData/ProductStore.cs
@@ -0,0 +1,6 @@
+namespace CodeBeam.UltimateAuth.Sample.ResourceApi;
+
+public static class ProductStore
+{
+    public static List<SampleProduct> Items = new() { new SampleProduct() { Id = 0, Name = "Test"} };
+}
diff --git a/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/SampleData/ProductsController.cs b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/SampleData/ProductsController.cs
new file mode 100644
index 00000000..8f99886a
--- /dev/null
+++ b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/SampleData/ProductsController.cs
@@ -0,0 +1,73 @@
+using CodeBeam.UltimateAuth.Core.Defaults;
+using CodeBeam.UltimateAuth.Core.Errors;
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Mvc;
+
+namespace CodeBeam.UltimateAuth.Sample.ResourceApi;
+
+[ApiController]
+[Route("api/products")]
+public class ProductsController : ControllerBase
+{
+    [HttpGet]
+    [Authorize(Roles = "Admin")]
+    //[Authorize(Policy = UAuthActions.Authorization.Roles.GetAdmin)] // You can use UAuthActions as permission in ASP.NET Core policy.
+    public IActionResult GetAll()
+    {
+        return Ok(ProductStore.Items);
+    }
+
+    [HttpGet("{id}")]
+    [Authorize(Roles = "Admin")]
+    //[Authorize(Policy = UAuthActions.Authorization.Roles.GetAdmin)]
+    public IActionResult Get(int id)
+    {
+        var item = ProductStore.Items.FirstOrDefault(x => x.Id == id);
+        if (item == null) return NotFound();
+
+        return Ok(item);
+    }
+
+    [HttpPost]
+    [Authorize(Roles = "Admin")]
+    //[Authorize(Policy = UAuthActions.Authorization.Roles.GetAdmin)]
+    public IActionResult Create(SampleProduct product)
+    {
+        var nextId = ProductStore.Items.Any()
+            ? ProductStore.Items.Max(x => x.Id) + 1
+            : 1;
+
+        product.Id = nextId;
+        ProductStore.Items.Add(product);
+
+        return Ok(product);
+    }
+
+    [HttpPut("{id}")]
+    [Authorize(Roles = "Admin")]
+    //[Authorize(Policy = UAuthActions.Authorization.Roles.GetAdmin)]
+    public IActionResult Update(int id, SampleProduct product)
+    {
+        var item = ProductStore.Items.FirstOrDefault(x => x.Id == id);
+
+        if (item == null)
+        {
+            throw new UAuthNotFoundException("No product found.");
+        }
+
+        item.Name = product.Name;
+        return Ok(product);
+    }
+
+    [HttpDelete("{id}")]
+    [Authorize(Roles = "Admin")]
+    //[Authorize(Policy = UAuthActions.Authorization.Roles.GetAdmin)]
+    public IActionResult Delete(int id)
+    {
+        var item = ProductStore.Items.FirstOrDefault(x => x.Id == id);
+        if (item == null) return NotFound();
+
+        ProductStore.Items.Remove(item);
+        return Ok(item);
+    }
+}
diff --git a/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/SampleData/SampleProduct.cs b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/SampleData/SampleProduct.cs
new file mode 100644
index 00000000..2c75603d
--- /dev/null
+++ b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/SampleData/SampleProduct.cs
@@ -0,0 +1,7 @@
+namespace CodeBeam.UltimateAuth.Sample.ResourceApi;
+
+public class SampleProduct
+{
+    public int Id { get; set; }
+    public string Name { get; set; } = default!;
+}
diff --git a/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/appsettings.Development.json b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/appsettings.Development.json
new file mode 100644
index 00000000..0c208ae9
--- /dev/null
+++ b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/appsettings.Development.json
@@ -0,0 +1,8 @@
+{
+  "Logging": {
+    "LogLevel": {
+      "Default": "Information",
+      "Microsoft.AspNetCore": "Warning"
+    }
+  }
+}
diff --git a/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/appsettings.json b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/appsettings.json
new file mode 100644
index 00000000..10f68b8c
--- /dev/null
+++ b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi.EfCore/appsettings.json
@@ -0,0 +1,9 @@
+{
+  "Logging": {
+    "LogLevel": {
+      "Default": "Information",
+      "Microsoft.AspNetCore": "Warning"
+    }
+  },
+  "AllowedHosts": "*"
+}
diff --git a/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi/Program.cs b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi/Program.cs
index a59b1f61..0b595429 100644
--- a/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi/Program.cs
+++ b/samples/resource-api/CodeBeam.UltimateAuth.Sample.ResourceApi/Program.cs
@@ -7,6 +7,7 @@
 
 builder.Services.AddUltimateAuthResourceApi(o =>
     {
+        // TODO: Make multiple UAuthHub support via resolver, then different client apps can use different UAuthHub instances if needed.
         o.UAuthHubBaseUrl = "https://localhost:6110";
         o.AllowedClientOrigins.Add("https://localhost:6130");
     });
diff --git a/src/CodeBeam.UltimateAuth.Server/Infrastructure/Issuers/UAuthTokenIssuer.cs b/src/CodeBeam.UltimateAuth.Server/Infrastructure/Issuers/UAuthTokenIssuer.cs
index d6986a1e..290b399e 100644
--- a/src/CodeBeam.UltimateAuth.Server/Infrastructure/Issuers/UAuthTokenIssuer.cs
+++ b/src/CodeBeam.UltimateAuth.Server/Infrastructure/Issuers/UAuthTokenIssuer.cs
@@ -77,7 +77,10 @@ UAuthMode.SemiHybrid or
         if (persistence == RefreshTokenPersistence.Persist)
         {
             var store = _storeFactory.Create(flow.Tenant);
-            await store.StoreAsync(stored, ct);
+            await store.ExecuteAsync(async ct =>
+            {
+                await store.StoreAsync(stored, ct);
+            });
         }
 
         return new RefreshTokenInfo
diff --git a/src/authorization/CodeBeam.UltimateAuth.Authorization.EntityFrameworkCore/Stores/EfCoreRoleStore.cs b/src/authorization/CodeBeam.UltimateAuth.Authorization.EntityFrameworkCore/Stores/EfCoreRoleStore.cs
index 3a0b5a30..b6f8d893 100644
--- a/src/authorization/CodeBeam.UltimateAuth.Authorization.EntityFrameworkCore/Stores/EfCoreRoleStore.cs
+++ b/src/authorization/CodeBeam.UltimateAuth.Authorization.EntityFrameworkCore/Stores/EfCoreRoleStore.cs
@@ -214,9 +214,7 @@ public async Task<IReadOnlyCollection<Role>> GetByIdsAsync(
         return result.AsReadOnly();
     }
 
-    public async Task<PagedResult<Role>> QueryAsync(
-        RoleQuery query,
-        CancellationToken ct = default)
+    public async Task<PagedResult<Role>> QueryAsync(RoleQuery query, CancellationToken ct = default)
     {
         var normalized = query.Normalize();
 
@@ -257,8 +255,25 @@ public async Task<PagedResult<Role>> QueryAsync(
             .Take(normalized.PageSize)
             .ToListAsync(ct);
 
+        var roleIds = items.Select(x => x.Id).ToList();
+
+        var permissions = await DbSetPermission
+            .AsNoTracking()
+            .Where(x =>
+                x.Tenant == _tenant &&
+                roleIds.Contains(x.RoleId))
+            .ToListAsync(ct);
+
+        var lookup = permissions
+            .GroupBy(x => x.RoleId)
+            .ToDictionary(x => x.Key);
+
         var result = items
-            .Select(x => RoleMapper.ToDomain(x, Enumerable.Empty<RolePermissionProjection>()))
+            .Select(x =>
+            {
+                lookup.TryGetValue(x.Id, out var perms);
+                return RoleMapper.ToDomain(x, perms ?? Enumerable.Empty<RolePermissionProjection>());
+            })
             .ToList()
             .AsReadOnly();
 
diff --git a/src/client/CodeBeam.UltimateAuth.Client.AspNetCore/CodeBeam.UltimateAuth.Client.AspNetCore.csproj b/src/client/CodeBeam.UltimateAuth.Client.AspNetCore/CodeBeam.UltimateAuth.Client.AspNetCore.csproj
new file mode 100644
index 00000000..a6b3ab90
--- /dev/null
+++ b/src/client/CodeBeam.UltimateAuth.Client.AspNetCore/CodeBeam.UltimateAuth.Client.AspNetCore.csproj
@@ -0,0 +1,28 @@
+<Project Sdk="Microsoft.NET.Sdk">
+
+	<PropertyGroup>
+		<TargetFrameworks>net8.0;net9.0;net10.0</TargetFrameworks>
+		<NoWarn>$(NoWarn);1591</NoWarn>
+
+		<PackageId>CodeBeam.UltimateAuth.Client.AspNetCore</PackageId>
+
+		<Description>
+			Provides ASP.NET Core compatibility layer for UltimateAuth client applications.
+			This package enables integration with ASP.NET Core authentication and authorization infrastructure without introducing server-side authentication overhead. It allows applications to use features like [Authorize] without requiring a full server-side auth pipeline.
+			Designed for Blazor Web App (Interactive WASM) and similar hybrid hosting scenarios.
+			This package does NOT implement authentication. It only provides a lightweight compatibility layer.
+		</Description>
+		<PackageTags>authentication;authorization;identity;aspnetcore;auth;jwt;auth-framework</PackageTags>
+		<PackageIcon>uauthlogo.png</PackageIcon>
+		<PackageReadmeFile>README.md</PackageReadmeFile>
+	</PropertyGroup>
+
+	<ItemGroup>
+		<FrameworkReference Include="Microsoft.AspNetCore.App" />
+	</ItemGroup>
+
+	<ItemGroup>
+		<None Include="uauthlogo.png" Pack="true" PackagePath="\" />
+		<None Include="README.md" Pack="true" PackagePath="\" />
+	</ItemGroup>
+</Project>
diff --git a/src/client/CodeBeam.UltimateAuth.Client.AspNetCore/NoOpAuthHandler.cs b/src/client/CodeBeam.UltimateAuth.Client.AspNetCore/NoOpAuthHandler.cs
new file mode 100644
index 00000000..1c92c535
--- /dev/null
+++ b/src/client/CodeBeam.UltimateAuth.Client.AspNetCore/NoOpAuthHandler.cs
@@ -0,0 +1,22 @@
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.Extensions.Logging;
+using Microsoft.Extensions.Options;
+using System.Text.Encodings.Web;
+
+namespace CodeBeam.UltimateAuth.Client.AspNetCore;
+
+public class NoopAuthHandler : AuthenticationHandler<AuthenticationSchemeOptions>
+{
+    public NoopAuthHandler(
+        IOptionsMonitor<AuthenticationSchemeOptions> options,
+        ILoggerFactory logger,
+        UrlEncoder encoder)
+        : base(options, logger, encoder)
+    {
+    }
+
+    protected override Task<AuthenticateResult> HandleAuthenticateAsync()
+    {
+        return Task.FromResult(AuthenticateResult.NoResult());
+    }
+}
diff --git a/src/client/CodeBeam.UltimateAuth.Client.AspNetCore/README.md b/src/client/CodeBeam.UltimateAuth.Client.AspNetCore/README.md
new file mode 100644
index 00000000..8a3bad2a
--- /dev/null
+++ b/src/client/CodeBeam.UltimateAuth.Client.AspNetCore/README.md
@@ -0,0 +1,30 @@
+# UltimateAuth Client ASP.NET Core Compatibility
+
+Provides a lightweight ASP.NET Core compatibility layer for UltimateAuth client applications.
+
+---
+
+## 🎯 Purpose
+
+This package enables seamless integration between **UltimateAuth client-side authentication** and **ASP.NET Core infrastructure**.
+
+It allows applications to:
+
+- Use `[Authorize]` without runtime errors
+- Integrate with ASP.NET Core middleware pipeline
+- Avoid mandatory server-side authentication setup
+
+---
+
+## ⚠️ Important
+
+This package does **NOT** perform authentication.
+
+It only provides a **No-op compatibility layer** for ASP.NET Core.
+
+```text
+✔ Prevents ASP.NET Core auth errors
+✔ Enables framework compatibility
+❌ Does NOT validate users
+❌ Does NOT populate HttpContext.User
+❌ Does NOT enforce security
\ No newline at end of file
diff --git a/src/client/CodeBeam.UltimateAuth.Client.AspNetCore/ServiceCollectionExtensions.cs b/src/client/CodeBeam.UltimateAuth.Client.AspNetCore/ServiceCollectionExtensions.cs
new file mode 100644
index 00000000..b546b9d5
--- /dev/null
+++ b/src/client/CodeBeam.UltimateAuth.Client.AspNetCore/ServiceCollectionExtensions.cs
@@ -0,0 +1,18 @@
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.Extensions.DependencyInjection;
+
+namespace CodeBeam.UltimateAuth.Client.AspNetCore;
+
+public static class UAuthAspNetCoreExtensions
+{
+    public static IServiceCollection AddUltimateAuthAspNetCoreCompatibility(
+        this IServiceCollection services)
+    {
+        services.AddAuthentication("UAuth.Noop")
+            .AddScheme<AuthenticationSchemeOptions, NoopAuthHandler>("UAuth.Noop", _ => { });
+
+        services.AddAuthorization();
+
+        return services;
+    }
+}
diff --git a/src/client/CodeBeam.UltimateAuth.Client.AspNetCore/uauthlogo.png b/src/client/CodeBeam.UltimateAuth.Client.AspNetCore/uauthlogo.png
new file mode 100644
index 0000000000000000000000000000000000000000..911f2530a1353be33b73719b23571bd6edfb6e96
GIT binary patch
literal 4954
zcmcgwWmFVEw8j;Xg(a76mW8EDLILSmU};dg1$nfzN~|mb0>UDKq##I2hf7FENJvPt
zbgXnOpwe&s`ObOq@BNs$_sq;W_s-n8-*;!?j106X$yv#Xh=?e4;2I_bdHAo9krH|(
z^Q{zu0Q$l${fUSu=>D}^V+-MzL_}baj)tmPNcLWiz9+pl>nr8aU3V2<Kr{tE8y~Dg
z_+AHJq=UF+Pf*G`I%Ic*8Wobb&KRRo>q?ymO^#*<)B?F#;?x<F3WoT&xtZ=oc8>@e
z)9+HyW~+1-H>^+21!UDMn43PhYim1ss+97s&v|z{_gPU{`}uacB^V5LiuYr&7KZ%Y
zj%}CMbjfWXr5Ov)jqUTIWr=IAd|3Ewaw=@teA$mBs_;Qg{X)|fkJ@|zX@;gt31kx8
zYLy<}u_i_8{>8*f4Z?k#@!Bi~8>WC2I>aQXVn;Mw{N}<1d2o*O;bw);ifkWEFe2Az
z{|LX<i>0MGD+o&H69uv>uZ8!NO7Z9$$7_0@voyIQ*Np#w3i?p>#2;s@vp5pn<c^bi
zAA?ry3R_Y2AogZvg?AYUUV?$4B=xnyvo_kXpnZq_2FT?1qV|~(;-Xg6I@NqLYl|xi
z-I1D3<KdEm$^WP9Fzb0r0Zi@GcIy;_4C7^E8MJ#FG1tEya9*hIU;eJMX?gCCzXA4t
z!!y~V&nBB{U1taSZ-P;E45i-YGMa+Et;5fMPTEPFA0j8bZP0bfRD%l_?e|6@Cj4ol
zp_Yx84SLOwD&F=`FfoKZ_9>Z)GbMR*_p^5kW;p(5gU=xwOPizDcSd0L(2jk2RMw)n
zi3{|3K+$8*Qew`hq7UdyonxPW3|d4^CDY6<e3hhY%G(O8fK29YEoJjm$D6t(H2ZL1
zg$t6xgY#sdE{x(Ks%;9sBF_xOB3Vqgq><V-So46r#Uc12%-N9R2_+BYxXgbYzj6(M
za#p|_3a;5qiQoJ=4&NDgjzS0H_Jb25IOQ1S8k{>JOaSU`Fbxey=n40>Ptk2nB%M$B
zlA)rlgPWH9`~*YGl6Q!@AFrIxW{N0V^Xts1WV%~%BX+E5{^_q0&lfAeOrF$?rdlgH
zNZaSXZQCP?F9QzJ@PYG+#Pq)dd}^^`bfjdNoLsD_YYnOueN|$%w29qm87~+sN4ibK
z80Sdk^kL#tn}_|{p*nWlV+pqaSD-6>l5;^Vk3mE;YhuSy^FbKXv)f8%cG%yUcvEV*
zV>~)MUFtEsU-g5{O~1k8Z#0nc_VA0Sy{u~Dop1eQiq2uB0<Ws<jR)e{G(+ROMwdnp
zMsLPC@UFKCeAhqw18$x_F*?Jl_;BI)q9em&u8Y;Cef$9pQ!o;{HMK7)#6~jus`7K0
zpM)#E#3d7-C=*wVskHYD#A$v+^v@po!3-h`DH)zWW3GnuM0KQ*dsfx}=W}vEJz|l2
zk?za0Q68<`BogH1xzXlVa@r82g6EAnLs?j>ZTWQ5sG=Ig?5ZX*Y?H$P_!;}T!_9t`
zF6Z^E!>ueY!b)3=T(e;n)h`)v%;+ZrD=L@3;h@LkN{oZ%hiB;+l($x_J}qO$^h7@h
zMI)EjfeHbU@OL{4Nbqo~BY{WE<cQesMh<F<uK?gxNrtviZ?qX)gj=%B-8Yv;7|D2>
zB!~!}Wu|sg6LOV*3@f;CN~aP+IqkqG#AlGEn=d>4Bn3WD0ADDF0`|TK<`uD!gHtZ^
zJ4k35bm!XdZXZ5Y2n0;m9ZWF&jALzP4<3`J$8a0rj2_8<0WA~jz!CT;0F%l==}6T5
zab_+Pj9m&f{ftz}1p}706tf5@Gbg@9(g=F_kcVzNaD$Shkt{8K;Cj9sFw&J)PMDiU
zil%(peKK9vFrW*4|3;0>y1raA<i$*DbvZ^Z4`t*KpTL};QnWFw#xA0cYa*W9Z+vf~
z+)r9O$|wn3&-2CTP)b~aYIE_##mbqDJ?n*V+m-M!cKR8~TKdDC;U+uTr`gAUEytAp
z`{SaYapqJGbSux*^8y0NcbPZB*=4<HghJN)k9dyt&qBXM7pfyU*5+{s1>F$~S|P2C
zYnz?(<AO&Q`q-CyFJ(;?`u*SQZgH24p(iqgSktj;uHR_i(<J5p?@>am`z9|eu;IG)
z^#{hUjTUHGO!}|`Sp<+s8o0!aGD?97zLXG!o_tMeNPLO7{WZ*()j3x%;R(g{8wxL;
zEno6IW=rx(obAN$r^e&}fokU;ADqK0z0*E;krI3u`=88z?|VuUwAXy*9y65uNpyN2
zKVJaJ>tNinNX{KHqpr<Fba#%d+rq{4tlvztGIb0--3LoXWmqs;UT-|oU@c@{jWuAO
zoc;PAIkI6twYHsF=Eii8b5w+&YRm+0$G?i8S;eGS&kr|#wj2P1<|qk4>J<3BJ;u;!
z<MW`e{9)p1VW>d$<LWw?#_tnpC8BJX7=ShDINXy71hf$^9ywD%QV<m!*7Awp@vFcL
zYt8ZM92+eI-rMI0rzf4H+c_y7tjX(y8!f+#?Ecc$#(hV2UkG=)(k#ZcpH%sF{SJv3
zGom=+!PQbpz)<TpdsP+5-uGj%O4x)$ju(b%mq^Dl6M3&3XwOT{<?<iQQu)=cbL1A=
z?)=u|H$~1X5LYV(B9b5wd^CY<p?q4?(sW2Sfkma@{89IVd(mRRWX_T7Aw-v8RlCtL
z-Oq&X)M+09-~Pz%+s}tk(t>Py^REEuG~?uGko+0-e@##uwc3eVNVqyuk96B5!|aM1
z7nxzf2f**&`(1iO!XY0ab#8*B1paUjVtdoU$5Y-~$ZoWpq7vGL`j^u5|Mz|R|5(yX
zf#gcMT2T=u3+>(Px-&cvbR)LAUKJjg{>P(}jWi$E8jF-GEt|)-zxrz}6S!2WN*;FF
zfIStSnp2N`?eWLEsI4}nlVa*1!_@T2Wbt%E%a&Y1GKBddNTAu$#SX)FSQ~&mSiFfI
zf3ixv8AD(_LoeMw+ksPAo2eZO<r8wtyPq7(y?CIBYwA%07fu&vk8HppN8dDSJ^Kes
zt8!YTe>{;Eq(5oLCZ25h6ClO-rXkUP5YF}6Q}^onZA~%OP+1L6dPRLDkq9XoS^d~S
z0B6C1pWi*A*rRoL@|N;%J|VB0L)9Pg>^(Jb5P|J&{SrXTe<aX2ZnJ#5O4e5j>|r><
zj}v&Yd8tz@<p@7hjZiRF`0y-ev-mlEQkbl-iNk^b=$T=dcf$jyXCs$FNo)9t>B;m*
zUs)zAIdbYH%)qXQ6Uj;4hy4ZJD{IZ9w$<8>zh(-UtuWk<!W#}3mH2h?^J%J~&F6&F
zr{D<dIbDFi&n=mXrZt-JGYj(vx-*=Jn=g}J)t2=6KN$9bDK_so<2<r;-?pl((wwKi
z9{(C<F#mjmMC%!Le?M_xTC&H{EVCYb0<+Ddzp9B%q;L<Z$>$pRR#sv4ezi69N!6(=
z8vpXTFjKyOYuo8=W9i>RF>WJ?(K#5~@Aj;7`5@sHFj$o&g+s$sa=f$TW!0JguYtAV
z2#p&`$`jrb7{g|a=AFvzBQ=N8EZuU(iKDPfgz^1SrIZAIF=A&MqLHs<*CbS)^X7eT
zcsc5><&FZrl`_gW^xW|gR_2jRu~C{o_;DPke|_?$-R0cluf%!+?*7b1OZbg}*TmV>
zG}CMMY|?`=6Uce7?qSE!Qh4f4SK?p%*9fCU`BD4DF~vV0+pjh{YF=6ue^)?CHgC&w
zX}MKWmv^>JLf#(O664FtJR^}`!=iUjWjY6&M?+laTCW3fI~MH)-CMrvIppVYLgpr`
z+LY;QLW_(++R{evK9LODUMrF7CT}dOk4&Nq$*S9#t~7ee^&Z{3L2jJ(g9uP0{2_)<
z7ymak!zwU9QcW4CH2){(T<uIAa<X*)eBL@~8sPkZ%GiygZ^B7)(9Jh)k7bj(86gZJ
zPoDmCYR9nnArX}~)v*{MWUuW)J9s<4*xE@R&MMBN!wx%qELck)lf_f=X)xVjOth($
zUN$i;9%?XkC|L7Jx){7_YRZ(+iyu2T3?dcwi|rRZT@L$xQDrTrcH<{FGE00QRTBX9
zNfAq*oJ`1k=$;xEorfqO3n-8YvKRDkKjde^q6A6;3+*pl`QkWlzuDcWC(+_u*fe!L
z43|q`y6V-|4epSGYGJdyLxCO<h!e8gts~8eXU5l;=x}k!uzM;V6^>x2Y1N49B0Z=Q
zGv=MWTrF=kX>?oOdN0Dl?Q8sMD`08??w+S^NF8)mUucq4+S+#KkM1c*F$XFTl_0{<
zpT&;7>&N;xFDsX6*Lk81-AWY4`Z)GS`craS>Zy}}I8Hjfgo3-VH}Cu6ua~jCm#%_e
zJDdb0-*~S4y3;QC?hAqe{*uN5#Mf(<MR%bSi`Rt%DEP!g^9O|Ufg&~CeZiBr;zA=c
zxlkfiD1qwkz@os=ak@uM>+&^oD6uM(P<8j9RwC53Hm1dB(Jl2E2ZpvETUE)M`Z$OA
z0-0qgzh$v(2jm>M$j&24i-f*vZS#7k7lk+An-L6nKm%?_3G|h>RZI=$?@a0dmb^<S
z40>BXC?3oZQSA?hzLO5X+4HG{M)Mw;A;!hjD|a2UT<$92^kV>qT^g&SgU2)93R7MY
zi&UkCDL4vqv+2p@q&4eOWgC3q8t@?1b|5L@JsO~1bY0kzjk-7+Yn-mfJ1P5Y;>op_
zdu>{R>l_8gl9Ob-<oGq2L)t%d(PC~{D0`XZ!UQ=-&={FRN1f0*RV1Z~n<P4fQ14^j
zmg@K}$?is^<6ThzwiI~6`G7ozLsFsWR+lwQ%xKa5kmVk4(NAMfOA+;Lr$vW3{-E$J
zhkAQT5^sQM+@Q&klsLkKSFnoHAU})y{;iK5lU94mS{pCoW6FlO&xz*S>+)Ow5_S8*
zQXf%jFEg$Pq)-mqVJQfzDr}s?ODM23JzxCp$~pS46P<EitE(@uH<%wik({oIpp!<G
zqBB;==J^pO;%`w&1ft-ywcJ_m8iJ}u;ay{ReX~~JcNvBe_-MdJWNCLukk}d$3*^70
z1no`5Wq%}8F89%VSgS^IF3j&Rn6g{IB7pv$HbSp6wUjq2+}Dwk1MNC6#|m=7!BY?Y
zFzt?4TeTv0GsM6v;SN|tsC5i)HJ|SbK?9YE6@Q8EE=$rXr-t-2&^;u;x*G}+=F}<~
zd}gbpf)sU@H#w`#>UWW&O^^Fm?h@rP@EmOxEHy;T<6bO_pnnliH&qVCedzoGo`&CM
z@0GUNaYA7?8q*VCv1&_HS7P+4wR}IJYI`O)y|=H?bR(PsKKt{pI(Yfo;cluMva>^|
zQdy~%!%G`z--_&z#2RZAgO)(`ZSI^g7hdAmZ4Bl<J0V_1*Vk2c1?&e>#WC`|WVuM=
zhmg;El5d<?^BXzlrTX1n3!7-BhBDv3PxfPRhGJ<Eyc74T6%IU$L^_4EGWSf;+n=HD
zY8l6(TR>3E*=aPKoTIO5`0kYy*7zOI7$UR+d_Rlqg-rHN5LZH(z%SQS^_;FantmXV
zAMMJRBb?AT>q5T31Nqa{O6~2OqAu!%FqPJicQNo^5h;ZSLg|<j24|9E1MY<Bv6Gna
zJeE8F+$!o6x}^Li&7@0s)N<-*IfU{{wE0O+D6GmCnJZ<^x_LDFWT0K$LJA<}Aj}9!
znj4+7eu&>@@ON`9E~R8S>OC(HGiEN(ToR{?RiSdi!$K^&KIr__^@v)#f>>S13Zwwc
zld}A<;70{vj{`d(Q}!Gw0EM=rkHl;*EOR-{z4~=b{r#TQpO5GP$Cfi-1YdS;Q;!1y
zLzFJ~f6!Pkqkof+FEdJgF*w+JyZ4<+$^r*_i{5x<1_<t+12q}W+(txM^GjIZpoSWS
z;GMQ{wsfm^QrDdos*6I@l9b*uFFS?YW;6M#O0<?yek=;S5NklI<DwJmd?r<t`S8<5
zh&j%ojKLyTC!zENZ?ylAMS{{B7-e4RUksTvuw~OH&gFs`m^vj%0KFwGaMHmVE?$~t
zNr8!;AyVp>6jQzJ$svHk)<CtdqO?mlr*m8aRawma!bRHUMo!AcBwv_6KV@|e?QtO>
zXYu%T3h}>zOaxx{Arj1-^Beq`$=QtG;A5g}`4e4-(A=k?ulhMr_1$kna)L`T?8i=y
zJ|1!Hx;zk7%PeAavykDds+R&xgOhsg{g}W!S_!ZFv@2q>M$>M${Y(zY8gIn-p^`H?
z61{vsao}}Zw3fHJdGQbTpFp4hQ{3IXl*U{eVuRRVnbU5MzSInqhN#_B4ihhpCwH32
z6>|vRO>Benv=M<)uk{u07`yB;MHc>TwnCTX$nQY#5tKsryrOqKTL_<JL^_%V8kK4e
GFaHzHhfe(f

literal 0
HcmV?d00001


From 71ed1d187fe827919d669d82e8f668cce87b535d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Mehmet=20Can=20Karag=C3=B6z?=
 <78308169+mckaragoz@users.noreply.github.com>
Date: Tue, 14 Apr 2026 00:18:51 +0300
Subject: [PATCH 2/2] Project Arrangement & Docs Dependency Update (#39)

---
 UltimateAuth.slnx                             |   6 +--
 ...eBeam.UltimateAuth.Docs.Wasm.Client.csproj |   4 +-
 ...mateAuth.EntityFrameworkCore.Bundle.csproj |  35 -----------------
 .../CodeBeam.UltimateAuth.Sample.Seed.csproj  |   2 +-
 ...UltimateAuth.Sample.UAuthHub.EFCore.csproj |   2 +-
 ...deBeam.UltimateAuth.Sample.UAuthHub.csproj |   6 +--
 ...mateAuth.Sample.BlazorServer.EFCore.csproj |   8 ++--
 ...am.UltimateAuth.Sample.BlazorServer.csproj |   6 +--
 ...ateAuth.Sample.BlazorStandaloneWasm.csproj |   4 +-
 .../CodeBeam.UAuth.Sample.IntWasm.csproj      |   1 -
 ...mateAuth.EntityFrameworkCore.Bundle.csproj |  36 ++++++++++++++++++
 .../Data/UAuthDbContext.cs                    |   0
 ...timateAuthEntityFrameworkCoreExtensions.cs |   0
 .../Options/UAuthEfCoreOptions.cs             |   0
 .../README.md                                 |   0
 .../uauthlogo.png                             | Bin
 ...deBeam.UltimateAuth.InMemory.Bundle.csproj |  12 +++---
 .../README.md                                 |   0
 .../UltimateAuthInMemoryExtensions.cs         |   0
 .../uauthlogo.png                             | Bin
 ...eBeam.UltimateAuth.Reference.Bundle.csproj |   8 ++--
 .../README.md                                 |   0
 .../UltimateAuthReferenceBundleExtensions.cs  |   0
 .../uauthlogo.png                             | Bin
 .../CodeBeam.UltimateAuth.Tests.Unit.csproj   |   4 +-
 25 files changed, 67 insertions(+), 67 deletions(-)
 delete mode 100644 nuget/CodeBeam.UltimateAuth.EntityFrameworkCore/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle.csproj
 create mode 100644 src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle.csproj
 rename {nuget/CodeBeam.UltimateAuth.EntityFrameworkCore => src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle}/Data/UAuthDbContext.cs (100%)
 rename {nuget/CodeBeam.UltimateAuth.EntityFrameworkCore => src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle}/Extensions/UltimateAuthEntityFrameworkCoreExtensions.cs (100%)
 rename {nuget/CodeBeam.UltimateAuth.EntityFrameworkCore => src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle}/Options/UAuthEfCoreOptions.cs (100%)
 rename {nuget/CodeBeam.UltimateAuth.EntityFrameworkCore => src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle}/README.md (100%)
 rename {nuget/CodeBeam.UltimateAuth.EntityFrameworkCore => src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle}/uauthlogo.png (100%)
 rename {nuget/CodeBeam.UltimateAuth.InMemory => src/bundle/CodeBeam.UltimateAuth.InMemory.Bundle}/CodeBeam.UltimateAuth.InMemory.Bundle.csproj (55%)
 rename {nuget/CodeBeam.UltimateAuth.InMemory => src/bundle/CodeBeam.UltimateAuth.InMemory.Bundle}/README.md (100%)
 rename {nuget/CodeBeam.UltimateAuth.InMemory => src/bundle/CodeBeam.UltimateAuth.InMemory.Bundle}/UltimateAuthInMemoryExtensions.cs (100%)
 rename {nuget/CodeBeam.UltimateAuth.InMemory => src/bundle/CodeBeam.UltimateAuth.InMemory.Bundle}/uauthlogo.png (100%)
 rename {nuget => src/bundle}/CodeBeam.UltimateAuth.Reference.Bundle/CodeBeam.UltimateAuth.Reference.Bundle.csproj (66%)
 rename {nuget => src/bundle}/CodeBeam.UltimateAuth.Reference.Bundle/README.md (100%)
 rename {nuget => src/bundle}/CodeBeam.UltimateAuth.Reference.Bundle/UltimateAuthReferenceBundleExtensions.cs (100%)
 rename {nuget => src/bundle}/CodeBeam.UltimateAuth.Reference.Bundle/uauthlogo.png (100%)

diff --git a/UltimateAuth.slnx b/UltimateAuth.slnx
index fb479af0..9bef746e 100644
--- a/UltimateAuth.slnx
+++ b/UltimateAuth.slnx
@@ -4,9 +4,9 @@
     <Project Path="docs/website/CodeBeam.UltimateAuth.Docs.Wasm/CodeBeam.UltimateAuth.Docs.Wasm/CodeBeam.UltimateAuth.Docs.Wasm.csproj" Id="629c8d74-d253-4ef2-9f26-47a405d9d7a6" />
   </Folder>
   <Folder Name="/Packages/">
-    <Project Path="nuget/CodeBeam.UltimateAuth.EntityFrameworkCore/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle.csproj" Id="764569b4-dd5b-4a18-a332-7307d20ee21a" />
-    <Project Path="nuget/CodeBeam.UltimateAuth.InMemory/CodeBeam.UltimateAuth.InMemory.Bundle.csproj" />
-    <Project Path="nuget/CodeBeam.UltimateAuth.Reference.Bundle/CodeBeam.UltimateAuth.Reference.Bundle.csproj" Id="f01dee6a-a60d-40a2-bb6a-9894b03e7122" />
+    <Project Path="src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle.csproj" Id="764569b4-dd5b-4a18-a332-7307d20ee21a" />
+    <Project Path="src/bundle/CodeBeam.UltimateAuth.InMemory.Bundle/CodeBeam.UltimateAuth.InMemory.Bundle.csproj" />
+    <Project Path="src/bundle/CodeBeam.UltimateAuth.Reference.Bundle/CodeBeam.UltimateAuth.Reference.Bundle.csproj" Id="f01dee6a-a60d-40a2-bb6a-9894b03e7122" />
   </Folder>
   <Folder Name="/Samples/">
     <Project Path="samples/blazor-server/CodeBeam.UltimateAuth.Sample.BlazorServer.EFCore/CodeBeam.UltimateAuth.Sample.BlazorServer.EFCore.csproj" Id="84201d45-0298-4bf3-9bd4-0567b373f6a0" />
diff --git a/docs/website/CodeBeam.UltimateAuth.Docs.Wasm/CodeBeam.UltimateAuth.Docs.Wasm.Client/CodeBeam.UltimateAuth.Docs.Wasm.Client.csproj b/docs/website/CodeBeam.UltimateAuth.Docs.Wasm/CodeBeam.UltimateAuth.Docs.Wasm.Client/CodeBeam.UltimateAuth.Docs.Wasm.Client.csproj
index 3ac3c530..3e3e1fb5 100644
--- a/docs/website/CodeBeam.UltimateAuth.Docs.Wasm/CodeBeam.UltimateAuth.Docs.Wasm.Client/CodeBeam.UltimateAuth.Docs.Wasm.Client.csproj
+++ b/docs/website/CodeBeam.UltimateAuth.Docs.Wasm/CodeBeam.UltimateAuth.Docs.Wasm.Client/CodeBeam.UltimateAuth.Docs.Wasm.Client.csproj
@@ -11,10 +11,10 @@
 	</PropertyGroup>
 
 	<ItemGroup>
-		<PackageReference Include="CodeBeam.MudBlazor.Extensions" Version="9.0.3" />
+		<PackageReference Include="CodeBeam.MudBlazor.Extensions" Version="9.0.4" />
 		<PackageReference Include="CodeBeam.MudBlazor.Extensions.Code" Version="9.0.1" />
 		<PackageReference Include="Microsoft.AspNetCore.Components.WebAssembly" Version="10.0.5" />
-		<PackageReference Include="MudBlazor" Version="9.2.0" />
+		<PackageReference Include="MudBlazor" Version="9.3.0" />
 	</ItemGroup>
 
 	<Target Name="BuildDocs" BeforeTargets="Build">
diff --git a/nuget/CodeBeam.UltimateAuth.EntityFrameworkCore/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle.csproj b/nuget/CodeBeam.UltimateAuth.EntityFrameworkCore/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle.csproj
deleted file mode 100644
index 29faf8f7..00000000
--- a/nuget/CodeBeam.UltimateAuth.EntityFrameworkCore/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle.csproj
+++ /dev/null
@@ -1,35 +0,0 @@
-<Project Sdk="Microsoft.NET.Sdk">
-
-	<PropertyGroup>
-		<TargetFrameworks>net8.0;net9.0;net10.0</TargetFrameworks>
-		<NoWarn>$(NoWarn);1591</NoWarn>
-
-		<PackageId>CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle</PackageId>
-
-		<Description>
-			Provides a complete Entity Framework Core persistence setup for UltimateAuth.
-			This package includes reference domain implementations and Entity Framework Core-based persistence for all modules.
-			It is designed for production scenarios requiring durable storage.
-		</Description>
-
-		<PackageTags>authentication;authorization;identity;efcore;inmemory;bundle;auth-framework;security;jwt</PackageTags>
-		<PackageIcon>uauthlogo.png</PackageIcon>
-		<PackageReadmeFile>README.md</PackageReadmeFile>
-	</PropertyGroup>
-
-	<ItemGroup>
-		<ProjectReference Include="..\CodeBeam.UltimateAuth.Reference.Bundle\CodeBeam.UltimateAuth.Reference.Bundle.csproj" />
-		<ProjectReference Include="..\..\src\authentication\CodeBeam.UltimateAuth.Authentication.EntityFrameworkCore\CodeBeam.UltimateAuth.Authentication.EntityFrameworkCore.csproj" />
-		<ProjectReference Include="..\..\src\authorization\CodeBeam.UltimateAuth.Authorization.EntityFrameworkCore\CodeBeam.UltimateAuth.Authorization.EntityFrameworkCore.csproj" />
-		<ProjectReference Include="..\..\src\credentials\CodeBeam.UltimateAuth.Credentials.EntityFrameworkCore\CodeBeam.UltimateAuth.Credentials.EntityFrameworkCore.csproj" />
-		<ProjectReference Include="..\..\src\sessions\CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore\CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore.csproj" />
-		<ProjectReference Include="..\..\src\tokens\CodeBeam.UltimateAuth.Tokens.EntityFrameworkCore\CodeBeam.UltimateAuth.Tokens.EntityFrameworkCore.csproj" />
-		<ProjectReference Include="..\..\src\users\CodeBeam.UltimateAuth.Users.EntityFrameworkCore\CodeBeam.UltimateAuth.Users.EntityFrameworkCore.csproj" />
-	</ItemGroup>
-
-	<ItemGroup>
-		<None Include="uauthlogo.png" Pack="true" PackagePath="\" />
-		<None Include="README.md" Pack="true" PackagePath="\" />
-	</ItemGroup>
-
-</Project>
diff --git a/samples/CodeBeam.UltimateAuth.Sample.Seed/CodeBeam.UltimateAuth.Sample.Seed.csproj b/samples/CodeBeam.UltimateAuth.Sample.Seed/CodeBeam.UltimateAuth.Sample.Seed.csproj
index 96d9adaa..92487581 100644
--- a/samples/CodeBeam.UltimateAuth.Sample.Seed/CodeBeam.UltimateAuth.Sample.Seed.csproj
+++ b/samples/CodeBeam.UltimateAuth.Sample.Seed/CodeBeam.UltimateAuth.Sample.Seed.csproj
@@ -7,7 +7,7 @@
   </PropertyGroup>
 
   <ItemGroup>
-    <ProjectReference Include="..\..\nuget\CodeBeam.UltimateAuth.Reference.Bundle\CodeBeam.UltimateAuth.Reference.Bundle.csproj" />
+    <ProjectReference Include="..\..\src\bundle\CodeBeam.UltimateAuth.Reference.Bundle\CodeBeam.UltimateAuth.Reference.Bundle.csproj" />
   </ItemGroup>
 
 </Project>
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.csproj b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.csproj
index f79f1a74..f6e72309 100644
--- a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.csproj
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore/CodeBeam.UltimateAuth.Sample.UAuthHub.EFCore.csproj
@@ -25,7 +25,7 @@
 	</ItemGroup>
 
 	<ItemGroup>
-		<ProjectReference Include="..\..\..\nuget\CodeBeam.UltimateAuth.EntityFrameworkCore\CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle.csproj" />
+		<ProjectReference Include="..\..\..\src\bundle\CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle\CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle.csproj" />
 		<ProjectReference Include="..\..\..\src\client\CodeBeam.UltimateAuth.Client.Blazor\CodeBeam.UltimateAuth.Client.Blazor.csproj" />
 		<ProjectReference Include="..\..\..\src\CodeBeam.UltimateAuth.Server\CodeBeam.UltimateAuth.Server.csproj" />
 		<ProjectReference Include="..\..\CodeBeam.UltimateAuth.Sample.Seed\CodeBeam.UltimateAuth.Sample.Seed.csproj" />
diff --git a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.csproj b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.csproj
index b7cf0040..a5ccdc5e 100644
--- a/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.csproj
+++ b/samples/UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub/CodeBeam.UltimateAuth.Sample.UAuthHub.csproj
@@ -9,14 +9,14 @@
 	</PropertyGroup>
 
 	<ItemGroup>
-		<PackageReference Include="CodeBeam.MudBlazor.Extensions" Version="9.0.3" />
+		<PackageReference Include="CodeBeam.MudBlazor.Extensions" Version="9.0.4" />
 		<PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="10.0.5" />
-		<PackageReference Include="MudBlazor" Version="9.1.0" />
+		<PackageReference Include="MudBlazor" Version="9.3.0" />
 		<PackageReference Include="Scalar.AspNetCore.Microsoft" Version="2.13.8" />
 	</ItemGroup>
 
 	<ItemGroup>
-		<ProjectReference Include="..\..\..\nuget\CodeBeam.UltimateAuth.InMemory\CodeBeam.UltimateAuth.InMemory.Bundle.csproj" />
+		<ProjectReference Include="..\..\..\src\bundle\CodeBeam.UltimateAuth.InMemory.Bundle\CodeBeam.UltimateAuth.InMemory.Bundle.csproj" />
 		<ProjectReference Include="..\..\..\src\client\CodeBeam.UltimateAuth.Client.Blazor\CodeBeam.UltimateAuth.Client.Blazor.csproj" />
 		<ProjectReference Include="..\..\..\src\CodeBeam.UltimateAuth.Core\CodeBeam.UltimateAuth.Core.csproj" />
 		<ProjectReference Include="..\..\..\src\CodeBeam.UltimateAuth.Server\CodeBeam.UltimateAuth.Server.csproj" />
diff --git a/samples/blazor-server/CodeBeam.UltimateAuth.Sample.BlazorServer.EFCore/CodeBeam.UltimateAuth.Sample.BlazorServer.EFCore.csproj b/samples/blazor-server/CodeBeam.UltimateAuth.Sample.BlazorServer.EFCore/CodeBeam.UltimateAuth.Sample.BlazorServer.EFCore.csproj
index f49ac077..90bfe9d6 100644
--- a/samples/blazor-server/CodeBeam.UltimateAuth.Sample.BlazorServer.EFCore/CodeBeam.UltimateAuth.Sample.BlazorServer.EFCore.csproj
+++ b/samples/blazor-server/CodeBeam.UltimateAuth.Sample.BlazorServer.EFCore/CodeBeam.UltimateAuth.Sample.BlazorServer.EFCore.csproj
@@ -1,4 +1,4 @@
-<Project Sdk="Microsoft.NET.Sdk.Web">
+<Project Sdk="Microsoft.NET.Sdk.Web">
 
   <PropertyGroup>
     <TargetFramework>net10.0</TargetFramework>
@@ -19,13 +19,13 @@
 		  <PrivateAssets>all</PrivateAssets>
 		  <IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
 		</PackageReference>
-		<PackageReference Include="MudBlazor" Version="9.0.0" />
-		<PackageReference Include="CodeBeam.MudBlazor.Extensions" Version="9.0.1" />
+		<PackageReference Include="MudBlazor" Version="9.3.0" />
+		<PackageReference Include="CodeBeam.MudBlazor.Extensions" Version="9.0.4" />
 		<PackageReference Include="Scalar.AspNetCore" Version="2.12.46" />
 	</ItemGroup>
 
 	<ItemGroup>
-	  <ProjectReference Include="..\..\..\nuget\CodeBeam.UltimateAuth.EntityFrameworkCore\CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle.csproj" />
+	  <ProjectReference Include="..\..\..\src\bundle\CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle\CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle.csproj" />
 	  <ProjectReference Include="..\..\..\src\client\CodeBeam.UltimateAuth.Client.Blazor\CodeBeam.UltimateAuth.Client.Blazor.csproj" />
 	  <ProjectReference Include="..\..\CodeBeam.UltimateAuth.Sample.Seed\CodeBeam.UltimateAuth.Sample.Seed.csproj" />
 	</ItemGroup>
diff --git a/samples/blazor-server/CodeBeam.UltimateAuth.Sample.BlazorServer/CodeBeam.UltimateAuth.Sample.BlazorServer.csproj b/samples/blazor-server/CodeBeam.UltimateAuth.Sample.BlazorServer/CodeBeam.UltimateAuth.Sample.BlazorServer.csproj
index 9d71e7d7..daf780dd 100644
--- a/samples/blazor-server/CodeBeam.UltimateAuth.Sample.BlazorServer/CodeBeam.UltimateAuth.Sample.BlazorServer.csproj
+++ b/samples/blazor-server/CodeBeam.UltimateAuth.Sample.BlazorServer/CodeBeam.UltimateAuth.Sample.BlazorServer.csproj
@@ -9,13 +9,13 @@
 
 	<ItemGroup>
 		<PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="10.0.5" />
-		<PackageReference Include="MudBlazor" Version="9.0.0" />
-		<PackageReference Include="CodeBeam.MudBlazor.Extensions" Version="9.0.1" />
+		<PackageReference Include="MudBlazor" Version="9.3.0" />
+		<PackageReference Include="CodeBeam.MudBlazor.Extensions" Version="9.0.4" />
 		<PackageReference Include="Scalar.AspNetCore" Version="2.12.46" />
 	</ItemGroup>
 
 	<ItemGroup>
-		<ProjectReference Include="..\..\..\nuget\CodeBeam.UltimateAuth.InMemory\CodeBeam.UltimateAuth.InMemory.Bundle.csproj" />
+		<ProjectReference Include="..\..\..\src\bundle\CodeBeam.UltimateAuth.InMemory.Bundle\CodeBeam.UltimateAuth.InMemory.Bundle.csproj" />
 		<ProjectReference Include="..\..\..\src\client\CodeBeam.UltimateAuth.Client.Blazor\CodeBeam.UltimateAuth.Client.Blazor.csproj" />
 		<ProjectReference Include="..\..\CodeBeam.UltimateAuth.Sample.Seed\CodeBeam.UltimateAuth.Sample.Seed.csproj" />
 	</ItemGroup>
diff --git a/samples/blazor-standalone-wasm/CodeBeam.UltimateAuth.Sample.BlazorStandaloneWasm/CodeBeam.UltimateAuth.Sample.BlazorStandaloneWasm.csproj b/samples/blazor-standalone-wasm/CodeBeam.UltimateAuth.Sample.BlazorStandaloneWasm/CodeBeam.UltimateAuth.Sample.BlazorStandaloneWasm.csproj
index a77dd098..4b88fd56 100644
--- a/samples/blazor-standalone-wasm/CodeBeam.UltimateAuth.Sample.BlazorStandaloneWasm/CodeBeam.UltimateAuth.Sample.BlazorStandaloneWasm.csproj
+++ b/samples/blazor-standalone-wasm/CodeBeam.UltimateAuth.Sample.BlazorStandaloneWasm/CodeBeam.UltimateAuth.Sample.BlazorStandaloneWasm.csproj
@@ -8,12 +8,12 @@
   </PropertyGroup>
 
   <ItemGroup>
-    <PackageReference Include="CodeBeam.MudBlazor.Extensions" Version="9.0.1" />
+    <PackageReference Include="CodeBeam.MudBlazor.Extensions" Version="9.0.4" />
     <PackageReference Include="Microsoft.AspNetCore.Components.WebAssembly" Version="10.0.5" />
     <PackageReference Include="Microsoft.AspNetCore.Components.WebAssembly.DevServer" Version="10.0.5" PrivateAssets="all" />
     <PackageReference Include="Microsoft.AspNetCore.WebUtilities" Version="10.0.5" />
     <PackageReference Include="Microsoft.Extensions.Http" Version="10.0.5" />
-    <PackageReference Include="MudBlazor" Version="9.0.0" />
+    <PackageReference Include="MudBlazor" Version="9.3.0" />
   </ItemGroup>
 
   <ItemGroup>
diff --git a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.csproj b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.csproj
index 62e3c107..f309e0b0 100644
--- a/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.csproj
+++ b/samples/int-wasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm/CodeBeam.UAuth.Sample.IntWasm.csproj
@@ -10,7 +10,6 @@
 
   <ItemGroup>
     <ProjectReference Include="..\..\..\..\src\client\CodeBeam.UltimateAuth.Client.AspNetCore\CodeBeam.UltimateAuth.Client.AspNetCore.csproj" />
-    <ProjectReference Include="..\..\..\..\src\CodeBeam.UltimateAuth.Server\CodeBeam.UltimateAuth.Server.csproj" />
     <ProjectReference Include="..\CodeBeam.UAuth.Sample.IntWasm.Client\CodeBeam.UAuth.Sample.IntWasm.Client.csproj" />
     <PackageReference Include="Microsoft.AspNetCore.Components.WebAssembly.Server" Version="10.0.5" />
   </ItemGroup>
diff --git a/src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle.csproj b/src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle.csproj
new file mode 100644
index 00000000..17220e06
--- /dev/null
+++ b/src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle.csproj
@@ -0,0 +1,36 @@
+<Project Sdk="Microsoft.NET.Sdk">
+
+	<PropertyGroup>
+		<TargetFrameworks>net8.0;net9.0;net10.0</TargetFrameworks>
+		<NoWarn>$(NoWarn);1591</NoWarn>
+
+		<PackageId>CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle</PackageId>
+
+		<Description>
+			Provides a complete Entity Framework Core persistence setup for UltimateAuth.
+			This package includes reference domain implementations and Entity Framework Core-based persistence for all modules.
+			It is designed for production scenarios requiring durable storage.
+		</Description>
+
+		<PackageTags>authentication;authorization;identity;efcore;inmemory;bundle;auth-framework;security;jwt</PackageTags>
+		<PackageIcon>uauthlogo.png</PackageIcon>
+		<PackageReadmeFile>README.md</PackageReadmeFile>
+	</PropertyGroup>
+
+	<ItemGroup>
+		<ProjectReference Include="..\..\authentication\CodeBeam.UltimateAuth.Authentication.EntityFrameworkCore\CodeBeam.UltimateAuth.Authentication.EntityFrameworkCore.csproj" />
+		<ProjectReference Include="..\CodeBeam.UltimateAuth.Reference.Bundle\CodeBeam.UltimateAuth.Reference.Bundle.csproj" />
+		<ProjectReference Include="..\..\authentication\CodeBeam.UltimateAuth.Authentication.EntityFrameworkCore\CodeBeam.UltimateAuth.Authentication.EntityFrameworkCore.csproj" />
+		<ProjectReference Include="..\..\authorization\CodeBeam.UltimateAuth.Authorization.EntityFrameworkCore\CodeBeam.UltimateAuth.Authorization.EntityFrameworkCore.csproj" />
+		<ProjectReference Include="..\..\credentials\CodeBeam.UltimateAuth.Credentials.EntityFrameworkCore\CodeBeam.UltimateAuth.Credentials.EntityFrameworkCore.csproj" />
+		<ProjectReference Include="..\..\sessions\CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore\CodeBeam.UltimateAuth.Sessions.EntityFrameworkCore.csproj" />
+		<ProjectReference Include="..\..\tokens\CodeBeam.UltimateAuth.Tokens.EntityFrameworkCore\CodeBeam.UltimateAuth.Tokens.EntityFrameworkCore.csproj" />
+		<ProjectReference Include="..\..\users\CodeBeam.UltimateAuth.Users.EntityFrameworkCore\CodeBeam.UltimateAuth.Users.EntityFrameworkCore.csproj" />
+	</ItemGroup>
+
+	<ItemGroup>
+		<None Include="uauthlogo.png" Pack="true" PackagePath="\" />
+		<None Include="README.md" Pack="true" PackagePath="\" />
+	</ItemGroup>
+
+</Project>
diff --git a/nuget/CodeBeam.UltimateAuth.EntityFrameworkCore/Data/UAuthDbContext.cs b/src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle/Data/UAuthDbContext.cs
similarity index 100%
rename from nuget/CodeBeam.UltimateAuth.EntityFrameworkCore/Data/UAuthDbContext.cs
rename to src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle/Data/UAuthDbContext.cs
diff --git a/nuget/CodeBeam.UltimateAuth.EntityFrameworkCore/Extensions/UltimateAuthEntityFrameworkCoreExtensions.cs b/src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle/Extensions/UltimateAuthEntityFrameworkCoreExtensions.cs
similarity index 100%
rename from nuget/CodeBeam.UltimateAuth.EntityFrameworkCore/Extensions/UltimateAuthEntityFrameworkCoreExtensions.cs
rename to src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle/Extensions/UltimateAuthEntityFrameworkCoreExtensions.cs
diff --git a/nuget/CodeBeam.UltimateAuth.EntityFrameworkCore/Options/UAuthEfCoreOptions.cs b/src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle/Options/UAuthEfCoreOptions.cs
similarity index 100%
rename from nuget/CodeBeam.UltimateAuth.EntityFrameworkCore/Options/UAuthEfCoreOptions.cs
rename to src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle/Options/UAuthEfCoreOptions.cs
diff --git a/nuget/CodeBeam.UltimateAuth.EntityFrameworkCore/README.md b/src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle/README.md
similarity index 100%
rename from nuget/CodeBeam.UltimateAuth.EntityFrameworkCore/README.md
rename to src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle/README.md
diff --git a/nuget/CodeBeam.UltimateAuth.EntityFrameworkCore/uauthlogo.png b/src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle/uauthlogo.png
similarity index 100%
rename from nuget/CodeBeam.UltimateAuth.EntityFrameworkCore/uauthlogo.png
rename to src/bundle/CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle/uauthlogo.png
diff --git a/nuget/CodeBeam.UltimateAuth.InMemory/CodeBeam.UltimateAuth.InMemory.Bundle.csproj b/src/bundle/CodeBeam.UltimateAuth.InMemory.Bundle/CodeBeam.UltimateAuth.InMemory.Bundle.csproj
similarity index 55%
rename from nuget/CodeBeam.UltimateAuth.InMemory/CodeBeam.UltimateAuth.InMemory.Bundle.csproj
rename to src/bundle/CodeBeam.UltimateAuth.InMemory.Bundle/CodeBeam.UltimateAuth.InMemory.Bundle.csproj
index 45fc3e18..c0c22ad8 100644
--- a/nuget/CodeBeam.UltimateAuth.InMemory/CodeBeam.UltimateAuth.InMemory.Bundle.csproj
+++ b/src/bundle/CodeBeam.UltimateAuth.InMemory.Bundle/CodeBeam.UltimateAuth.InMemory.Bundle.csproj
@@ -20,12 +20,12 @@
 
   <ItemGroup>
 		<ProjectReference Include="..\CodeBeam.UltimateAuth.Reference.Bundle\CodeBeam.UltimateAuth.Reference.Bundle.csproj" />
-		<ProjectReference Include="..\..\src\authentication\CodeBeam.UltimateAuth.Authentication.InMemory\CodeBeam.UltimateAuth.Authentication.InMemory.csproj" />
-		<ProjectReference Include="..\..\src\authorization\CodeBeam.UltimateAuth.Authorization.InMemory\CodeBeam.UltimateAuth.Authorization.InMemory.csproj" />
-		<ProjectReference Include="..\..\src\credentials\CodeBeam.UltimateAuth.Credentials.InMemory\CodeBeam.UltimateAuth.Credentials.InMemory.csproj" />
-		<ProjectReference Include="..\..\src\sessions\CodeBeam.UltimateAuth.Sessions.InMemory\CodeBeam.UltimateAuth.Sessions.InMemory.csproj" />
-		<ProjectReference Include="..\..\src\tokens\CodeBeam.UltimateAuth.Tokens.InMemory\CodeBeam.UltimateAuth.Tokens.InMemory.csproj" />
-		<ProjectReference Include="..\..\src\users\CodeBeam.UltimateAuth.Users.InMemory\CodeBeam.UltimateAuth.Users.InMemory.csproj" />
+		<ProjectReference Include="..\..\authentication\CodeBeam.UltimateAuth.Authentication.InMemory\CodeBeam.UltimateAuth.Authentication.InMemory.csproj" />
+		<ProjectReference Include="..\..\authorization\CodeBeam.UltimateAuth.Authorization.InMemory\CodeBeam.UltimateAuth.Authorization.InMemory.csproj" />
+		<ProjectReference Include="..\..\credentials\CodeBeam.UltimateAuth.Credentials.InMemory\CodeBeam.UltimateAuth.Credentials.InMemory.csproj" />
+		<ProjectReference Include="..\..\sessions\CodeBeam.UltimateAuth.Sessions.InMemory\CodeBeam.UltimateAuth.Sessions.InMemory.csproj" />
+		<ProjectReference Include="..\..\tokens\CodeBeam.UltimateAuth.Tokens.InMemory\CodeBeam.UltimateAuth.Tokens.InMemory.csproj" />
+		<ProjectReference Include="..\..\users\CodeBeam.UltimateAuth.Users.InMemory\CodeBeam.UltimateAuth.Users.InMemory.csproj" />
   </ItemGroup>
 
 	<ItemGroup>
diff --git a/nuget/CodeBeam.UltimateAuth.InMemory/README.md b/src/bundle/CodeBeam.UltimateAuth.InMemory.Bundle/README.md
similarity index 100%
rename from nuget/CodeBeam.UltimateAuth.InMemory/README.md
rename to src/bundle/CodeBeam.UltimateAuth.InMemory.Bundle/README.md
diff --git a/nuget/CodeBeam.UltimateAuth.InMemory/UltimateAuthInMemoryExtensions.cs b/src/bundle/CodeBeam.UltimateAuth.InMemory.Bundle/UltimateAuthInMemoryExtensions.cs
similarity index 100%
rename from nuget/CodeBeam.UltimateAuth.InMemory/UltimateAuthInMemoryExtensions.cs
rename to src/bundle/CodeBeam.UltimateAuth.InMemory.Bundle/UltimateAuthInMemoryExtensions.cs
diff --git a/nuget/CodeBeam.UltimateAuth.InMemory/uauthlogo.png b/src/bundle/CodeBeam.UltimateAuth.InMemory.Bundle/uauthlogo.png
similarity index 100%
rename from nuget/CodeBeam.UltimateAuth.InMemory/uauthlogo.png
rename to src/bundle/CodeBeam.UltimateAuth.InMemory.Bundle/uauthlogo.png
diff --git a/nuget/CodeBeam.UltimateAuth.Reference.Bundle/CodeBeam.UltimateAuth.Reference.Bundle.csproj b/src/bundle/CodeBeam.UltimateAuth.Reference.Bundle/CodeBeam.UltimateAuth.Reference.Bundle.csproj
similarity index 66%
rename from nuget/CodeBeam.UltimateAuth.Reference.Bundle/CodeBeam.UltimateAuth.Reference.Bundle.csproj
rename to src/bundle/CodeBeam.UltimateAuth.Reference.Bundle/CodeBeam.UltimateAuth.Reference.Bundle.csproj
index e8cde4d1..01f6356a 100644
--- a/nuget/CodeBeam.UltimateAuth.Reference.Bundle/CodeBeam.UltimateAuth.Reference.Bundle.csproj
+++ b/src/bundle/CodeBeam.UltimateAuth.Reference.Bundle/CodeBeam.UltimateAuth.Reference.Bundle.csproj
@@ -19,10 +19,10 @@
 	</PropertyGroup>
 
 	<ItemGroup>
-		<ProjectReference Include="..\..\src\authorization\CodeBeam.UltimateAuth.Authorization.Reference\CodeBeam.UltimateAuth.Authorization.Reference.csproj" />
-		<ProjectReference Include="..\..\src\credentials\CodeBeam.UltimateAuth.Credentials.Reference\CodeBeam.UltimateAuth.Credentials.Reference.csproj" />
-		<ProjectReference Include="..\..\src\security\CodeBeam.UltimateAuth.Security.Argon2\CodeBeam.UltimateAuth.Security.Argon2.csproj" />
-		<ProjectReference Include="..\..\src\users\CodeBeam.UltimateAuth.Users.Reference\CodeBeam.UltimateAuth.Users.Reference.csproj" />
+		<ProjectReference Include="..\..\authorization\CodeBeam.UltimateAuth.Authorization.Reference\CodeBeam.UltimateAuth.Authorization.Reference.csproj" />
+		<ProjectReference Include="..\..\credentials\CodeBeam.UltimateAuth.Credentials.Reference\CodeBeam.UltimateAuth.Credentials.Reference.csproj" />
+		<ProjectReference Include="..\..\security\CodeBeam.UltimateAuth.Security.Argon2\CodeBeam.UltimateAuth.Security.Argon2.csproj" />
+		<ProjectReference Include="..\..\users\CodeBeam.UltimateAuth.Users.Reference\CodeBeam.UltimateAuth.Users.Reference.csproj" />
 	</ItemGroup>
 
 	<ItemGroup>
diff --git a/nuget/CodeBeam.UltimateAuth.Reference.Bundle/README.md b/src/bundle/CodeBeam.UltimateAuth.Reference.Bundle/README.md
similarity index 100%
rename from nuget/CodeBeam.UltimateAuth.Reference.Bundle/README.md
rename to src/bundle/CodeBeam.UltimateAuth.Reference.Bundle/README.md
diff --git a/nuget/CodeBeam.UltimateAuth.Reference.Bundle/UltimateAuthReferenceBundleExtensions.cs b/src/bundle/CodeBeam.UltimateAuth.Reference.Bundle/UltimateAuthReferenceBundleExtensions.cs
similarity index 100%
rename from nuget/CodeBeam.UltimateAuth.Reference.Bundle/UltimateAuthReferenceBundleExtensions.cs
rename to src/bundle/CodeBeam.UltimateAuth.Reference.Bundle/UltimateAuthReferenceBundleExtensions.cs
diff --git a/nuget/CodeBeam.UltimateAuth.Reference.Bundle/uauthlogo.png b/src/bundle/CodeBeam.UltimateAuth.Reference.Bundle/uauthlogo.png
similarity index 100%
rename from nuget/CodeBeam.UltimateAuth.Reference.Bundle/uauthlogo.png
rename to src/bundle/CodeBeam.UltimateAuth.Reference.Bundle/uauthlogo.png
diff --git a/tests/CodeBeam.UltimateAuth.Tests.Unit/CodeBeam.UltimateAuth.Tests.Unit.csproj b/tests/CodeBeam.UltimateAuth.Tests.Unit/CodeBeam.UltimateAuth.Tests.Unit.csproj
index ee936bd7..1b44b87b 100644
--- a/tests/CodeBeam.UltimateAuth.Tests.Unit/CodeBeam.UltimateAuth.Tests.Unit.csproj
+++ b/tests/CodeBeam.UltimateAuth.Tests.Unit/CodeBeam.UltimateAuth.Tests.Unit.csproj
@@ -20,8 +20,8 @@
 	</ItemGroup>
 
 	<ItemGroup>
-		<ProjectReference Include="..\..\nuget\CodeBeam.UltimateAuth.EntityFrameworkCore\CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle.csproj" />
-		<ProjectReference Include="..\..\nuget\CodeBeam.UltimateAuth.InMemory\CodeBeam.UltimateAuth.InMemory.Bundle.csproj" />
+		<ProjectReference Include="..\..\src\bundle\CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle\CodeBeam.UltimateAuth.EntityFrameworkCore.Bundle.csproj" />
+		<ProjectReference Include="..\..\src\bundle\CodeBeam.UltimateAuth.InMemory.Bundle\CodeBeam.UltimateAuth.InMemory.Bundle.csproj" />
 		<ProjectReference Include="..\..\samples\CodeBeam.UltimateAuth.Sample.Seed\CodeBeam.UltimateAuth.Sample.Seed.csproj" />
 		<ProjectReference Include="..\..\src\authentication\CodeBeam.UltimateAuth.Authentication.EntityFrameworkCore\CodeBeam.UltimateAuth.Authentication.EntityFrameworkCore.csproj" />
 		<ProjectReference Include="..\..\src\authentication\CodeBeam.UltimateAuth.Authentication.InMemory\CodeBeam.UltimateAuth.Authentication.InMemory.csproj" />