From 4b08ba0a340d83e77cd1b9db2525bb1cf128bbf0 Mon Sep 17 00:00:00 2001
From: Jed Esposito <jed@theansible.net>
Date: Mon, 30 Mar 2026 14:51:54 +1300
Subject: [PATCH 1/7] =?UTF-8?q?fix:=20full=20port=20of=20cloud=20SSR/navig?=
 =?UTF-8?q?ation=20files=20=E2=80=94=20exact=20match?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Direct copy of all SSR and navigation files from facets-sh cloud.
Only difference: no courses link, no hasFeature import.
Build verified clean.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 frontend/src/components/public/SiteNav.svelte |  3 +-
 frontend/src/params/slug.ts                   |  9 ++-
 frontend/src/routes/+layout.server.ts         | 23 +++++-
 frontend/src/routes/+layout.svelte            | 71 +++++++++++-----
 frontend/src/routes/+page.server.ts           | 81 +++++++++----------
 .../src/routes/[slug=slug]/+page.server.ts    |  5 +-
 6 files changed, 122 insertions(+), 70 deletions(-)

diff --git a/frontend/src/components/public/SiteNav.svelte b/frontend/src/components/public/SiteNav.svelte
index 4ca230a9..ab0c552f 100644
--- a/frontend/src/components/public/SiteNav.svelte
+++ b/frontend/src/components/public/SiteNav.svelte
@@ -171,7 +171,8 @@
 							{item.label}
 						</a>
 					{/each}
-				</div>
+
+					</div>
 			</div>
 		{/if}
 	</nav>
diff --git a/frontend/src/params/slug.ts b/frontend/src/params/slug.ts
index 562d8550..1b313519 100644
--- a/frontend/src/params/slug.ts
+++ b/frontend/src/params/slug.ts
@@ -28,6 +28,7 @@ const RESERVED_SLUGS = new Set([
 	'projects',
 	'posts',
 	'talks',
+	'courses',
 	// SvelteKit internal
 	'_app',
 	'_',
@@ -48,11 +49,17 @@ const RESERVED_SLUGS = new Set([
 	'auth',
 	'oauth',
 	'callback',
+	// Public pages
+	'unsubscribe',
+	'testimonial',
 	// Prevent confusion
 	'home',
 	'index',
 	'default',
-	'profile'
+	'profile',
+	// Product terminology
+	'facet',
+	'facets'
 ]);
 
 export const match: ParamMatcher = (param) => {
diff --git a/frontend/src/routes/+layout.server.ts b/frontend/src/routes/+layout.server.ts
index 84a8b878..04545647 100644
--- a/frontend/src/routes/+layout.server.ts
+++ b/frontend/src/routes/+layout.server.ts
@@ -1,3 +1,12 @@
+/**
+ * Root layout server load: Preload plan config server-side to eliminate FOUC
+ *
+ * Fetches plan configuration from PocketBase before first render, ensuring
+ * the "Powered by Facet" badge visibility state is correct on initial paint.
+ *
+ * Pro/Creator users (managed, !badge_forced) will never see the badge flash.
+ */
+
 import type { LayoutServerLoad } from './$types';
 import type { PlanConfig } from '$lib/stores/plan';
 import { logger } from '$lib/logger';
@@ -23,7 +32,7 @@ export const load: LayoutServerLoad = async ({ fetch }) => {
 		logger.debug('[LAYOUT SSR] Failed to load site settings:', error);
 	}
 
-	// Fetch plan config server-side (FOUC fix)
+	// Fetch plan config server-side (new functionality - FOUC fix)
 	let planConfig: PlanConfig | null = null;
 	try {
 		const planResponse = await fetch(`${pbUrl}/api/plan`, {
@@ -31,11 +40,19 @@ export const load: LayoutServerLoad = async ({ fetch }) => {
 		});
 		if (planResponse.ok) {
 			planConfig = await planResponse.json();
+			logger.debug('[LAYOUT SSR] Loaded plan config:', planConfig?.plan);
+		} else {
+			logger.debug('[LAYOUT SSR] Plan API returned non-OK status:', planResponse.status);
 		}
 	} catch (error) {
 		logger.debug('[LAYOUT SSR] Failed to load plan config:', error);
 	}
 
+	// Pass APP_URL to the client for canonical/OG URLs.
+	// SSR $page.url.origin reflects the internal HTTP origin (behind Caddy proxy),
+	// not the public HTTPS URL. APP_URL is authoritative.
+	const appUrl = process.env.APP_URL || '';
+
 	// Fetch site-nav server-side to eliminate nav pop-in on page load
 	let siteNav = { enabled: false, items: [] as Array<{ viewId: string; slug: string; label: string; name: string }> };
 	try {
@@ -45,6 +62,9 @@ export const load: LayoutServerLoad = async ({ fetch }) => {
 		if (navResponse.ok) {
 			const navData = await navResponse.json();
 			siteNav = { enabled: navData.enabled === true, items: navData.items || [] };
+			logger.debug('[LAYOUT SSR] Loaded site nav:', siteNav.enabled, siteNav.items.length, 'items');
+		} else {
+			logger.debug('[LAYOUT SSR] Site nav API returned:', navResponse.status);
 		}
 	} catch (error) {
 		logger.debug('[LAYOUT SSR] Failed to load site nav:', error);
@@ -71,6 +91,7 @@ export const load: LayoutServerLoad = async ({ fetch }) => {
 	return {
 		faviconUrl,
 		planConfig,
+		appUrl,
 		siteNav,
 		accentColor,
 		customHexColor,
diff --git a/frontend/src/routes/+layout.svelte b/frontend/src/routes/+layout.svelte
index 45d57949..5615b17b 100644
--- a/frontend/src/routes/+layout.svelte
+++ b/frontend/src/routes/+layout.svelte
@@ -1,6 +1,4 @@
 <script lang="ts">
-	import { run } from 'svelte/legacy';
-
 	import '../app.css';
 	import { onMount } from 'svelte';
 	import { browser } from '$app/environment';
@@ -10,15 +8,16 @@
 	import ConfirmDialog from '$components/shared/ConfirmDialog.svelte';
 	import { ACCENT_COLORS, DEFAULT_ACCENT_COLOR, type AccentColor, generatePaletteFromHex } from '$lib/colors';
 	import { getFontPack, DEFAULT_FONT_PACK, type FontPack } from '$lib/fonts';
-	import { initPlanFromSSR, type PlanConfig } from '$lib/stores/plan';
-	import { siteNavStore } from '$lib/stores/siteNav';
 	import { initI18n, setLocale, waitLocale } from '$lib/i18n';
 	import { isLoading as i18nLoading, t } from 'svelte-i18n';
+	import { initPlan, initPlanFromSSR, type PlanConfig } from '$lib/stores/plan';
+	import { siteNavStore } from '$lib/stores/siteNav';
 	interface Props {
 		children?: import('svelte').Snippet;
 		data: {
 			faviconUrl: string | null;
 			planConfig: PlanConfig | null;
+			appUrl: string;
 			siteNav: { enabled: boolean; items: Array<{ viewId: string; slug: string; label: string; name: string }> };
 			accentColor: string | null;
 			customHexColor: string | null;
@@ -31,13 +30,15 @@
 	let { children, data }: Props = $props();
 
 	// Initialize plan config from SSR data immediately (before onMount)
+	// This eliminates FOUC on Pro/Creator plans where badge should be hidden
 	$effect(() => {
 		if (data.planConfig) {
 			initPlanFromSSR(data.planConfig);
 		}
 	});
 
-	// Initialize site nav store from SSR data
+	// Initialize site nav store from SSR data — updates on every navigation
+	// so the store always reflects the latest server data.
 	$effect(() => {
 		if (data.siteNav) {
 			siteNavStore.initFromSSR(data.siteNav);
@@ -45,6 +46,7 @@
 	});
 
 	// Apply accent color from SSR data immediately via $effect (before onMount)
+	// This runs during hydration, before paint, eliminating the color flash
 	$effect(() => {
 		if (!browser) return;
 		if (data.customHexColor) {
@@ -62,7 +64,7 @@
 		}
 	});
 
-	// Debug navigation in development
+	// Debug navigation (only log in dev mode)
 	beforeNavigate((navigation) => {
 		if (import.meta.env.DEV) {
 			console.log('[NAVIGATION] Before navigate:', {
@@ -94,8 +96,10 @@ let accentStyleEl: HTMLStyleElement | null = $state(null);
 let fontStyleEl: HTMLStyleElement | null = $state(null);
 let fontLinkEl: HTMLLinkElement | null = $state(null);
 let customPaletteLocked = false;
+// Initialize from server-loaded data for correct SSR
 let faviconUrl = $state<string | null>(null);
 
+// Update faviconUrl when data changes (SSR or client-side navigation)
 $effect(() => {
 	faviconUrl = data.faviconUrl;
 });
@@ -112,7 +116,7 @@ function applyPaletteFromCSS(css: string) {
 
 	if (Object.keys(palette).length === 0) return;
 
-	// If only 500 is provided, generate a proper palette from that hex color
+	// If only 500 is provided, generate a full palette from it
 	if (Object.keys(palette).length === 1 && palette['500']) {
 		const scale = generatePaletteFromHex(palette['500']);
 		for (const step of ['50', '100', '200', '300', '400', '500', '600', '700', '800', '900', '950'] as const) {
@@ -156,7 +160,7 @@ function applyFlatAccent(color: string) {
   --color-primary-950: ${scale[950]};
 }
 	`.trim();
-	themeColor = scale[500];
+	themeColor = color;
 }
 
 	function applyAccentColor(colorName: AccentColor) {
@@ -230,6 +234,7 @@ function applyFlatAccent(color: string) {
 			const response = await fetch('/api/homepage');
 			if (response.ok) {
 				const data = await response.json();
+				// Custom hex color takes precedence over named palette
 				if (data.profile?.custom_hex_color) {
 					applyFlatAccent(data.profile.custom_hex_color);
 				} else if (data.profile?.accent_color) {
@@ -297,18 +302,38 @@ onMount(() => {
 	mounted = true;
 	theme.initialize();
 	(async () => {
-		// Load site settings first to get server locale
-		const serverLocale = await loadSiteSettings();
-		initI18n(serverLocale);
+		// Load plan config only if SSR didn't provide it (fallback for client-side navigation)
+		if (!data.planConfig) {
+			try {
+				await initPlan();
+			} catch {
+				// Continue - plan fetch failure shouldn't block rendering
+			}
+		}
+		// SSR provides locale and custom CSS from +layout.server.ts.
+		// Fall back to client-side loadSiteSettings() if SSR didn't provide them.
+		if (data.defaultLocale || data.customCSS) {
+			initI18n(data.defaultLocale || undefined);
+			if (data.customCSS) {
+				applyCustomCSS(data.customCSS);
+			}
+		} else {
+			const serverLocale = await loadSiteSettings();
+			initI18n(serverLocale);
+			if (lastCustomCSS) {
+				applyCustomCSS(lastCustomCSS);
+			}
+		}
 		await waitLocale();
-		await loadAccentColor();
-		if (lastCustomCSS) {
-			applyCustomCSS(lastCustomCSS);
+		// Skip client-side accent fetch if SSR already provided it
+		if (!data.accentColor && !data.customHexColor) {
+			await loadAccentColor();
 		}
 	})();
 
 	// Listen for accent color changes from settings page
 	const handleColorChange = (event: CustomEvent<AccentColor>) => {
+		customPaletteLocked = false;
 		applyAccentColor(event.detail);
 		if (lastCustomCSS) {
 			applyCustomCSS(lastCustomCSS);
@@ -316,6 +341,15 @@ onMount(() => {
 	};
 	window.addEventListener('accent-color-changed', handleColorChange as EventListener);
 
+	// Listen for custom hex color changes from settings page
+	const handleHexColorChange = (event: CustomEvent<string>) => {
+		applyFlatAccent(event.detail);
+		if (lastCustomCSS) {
+			applyCustomCSS(lastCustomCSS);
+		}
+	};
+	window.addEventListener('custom-hex-color-changed', handleHexColorChange as EventListener);
+
 	// Listen for favicon changes from settings page
 	// The {#key faviconUrl} block in <svelte:head> handles DOM updates via Svelte reactivity
 	const handleFaviconChange = (event: CustomEvent<string | null>) => {
@@ -331,6 +365,7 @@ onMount(() => {
 
 	return () => {
 		window.removeEventListener('accent-color-changed', handleColorChange as EventListener);
+		window.removeEventListener('custom-hex-color-changed', handleHexColorChange as EventListener);
 		window.removeEventListener('favicon-changed', handleFaviconChange as EventListener);
 		window.removeEventListener('font-pack-changed', handleFontPackChange as EventListener);
 	};
@@ -354,11 +389,11 @@ onMount(() => {
 		  window.dataLayer = window.dataLayer || [];
 		  function gtag(){dataLayer.push(arguments);}
 		  gtag('js', new Date());
-		  gtag('config', '${id}');
+		  gtag('config', '${id.replace(/[^A-Za-z0-9-]/g, '')}');
 		`;
 		document.head.appendChild(inline);
 	}
-run(() => {
+$effect(() => {
 		if (mounted) {
 		applyCustomCSS(customCSS);
 		if (!gaInitialized && gaMeasurementId) {
@@ -368,7 +403,7 @@ run(() => {
 	}
 	});
 // Ensure custom CSS stays last after accent updates
-run(() => {
+$effect(() => {
 		if (mounted && lastCustomCSS && accentStyleEl) {
 		// Re-append custom CSS to the end of head so it wins cascade against accent variables
 		applyCustomCSS(lastCustomCSS);
@@ -378,6 +413,7 @@ run(() => {
 
 <svelte:head>
 	<meta name="theme-color" content={themeColor} />
+	<link rel="alternate" type="application/rss+xml" title="RSS Feed" href="/rss.xml" />
 	<!-- Use {#key} to force browser to fetch new favicon when URL changes -->
 	{#key faviconUrl}
 		{#if faviconUrl}
@@ -400,7 +436,6 @@ run(() => {
 	class="fixed bottom-4 right-4 left-4 sm:left-auto z-50 flex flex-col gap-2"
 	role="region"
 	aria-label={$t('shared.aria.notifications')}
-	aria-live="polite"
 >
 	{#each $toasts as toast (toast.id)}
 		<Toast {toast} on:dismiss={() => toasts.remove(toast.id)} />
diff --git a/frontend/src/routes/+page.server.ts b/frontend/src/routes/+page.server.ts
index 3a01ca67..c2d3ed67 100644
--- a/frontend/src/routes/+page.server.ts
+++ b/frontend/src/routes/+page.server.ts
@@ -11,26 +11,24 @@
 import type { PageServerLoad } from './$types';
 import { logger } from '$lib/logger';
 
-type ViewData = {
-	hero_headline?: string;
-	hero_summary?: string;
-	hero_location?: string;
-	slug?: string;
-	accent_color?: string;
-	cta_url?: string;
-	cta_button_text?: string;
-	cta_text?: string;
-	cta_enabled?: boolean;
-	font_pack?: string | null;
-	hero_layout?: string | null;
-} | null;
-
-// eslint-disable-next-line @typescript-eslint/no-explicit-any
-type SectionsData = Record<string, any[]>;
-
 export const load: PageServerLoad = async ({ fetch, parent }) => {
-	const parentData = await parent();
 	const pbUrl = process.env.POCKETBASE_URL || 'http://localhost:8090';
+	const parentData = await parent();
+
+	// Common empty shape so TypeScript knows view can have properties (not just null)
+	const emptyView = null as {
+		slug: string;
+		hero_headline: string;
+		hero_summary: string;
+		hero_location: string;
+		accent_color: string | null;
+		cta_text: string;
+		cta_url: string;
+		cta_button_text: string;
+		cta_enabled: boolean;
+		font_pack: string | null;
+		hero_layout: string | null;
+	} | null;
 
 	try {
 		const response = await fetch(`${pbUrl}/api/homepage`, {
@@ -50,18 +48,18 @@ export const load: PageServerLoad = async ({ fetch, parent }) => {
 				skills: [],
 				posts: [],
 				talks: [],
+				courses: [],
 				testimonials: [],
 				contacts: [],
-				view: null as ViewData,
-				sections: {} as SectionsData,
+				view: emptyView,
+				sections: {} as Record<string, any[]>,
 				sectionOrder: [],
 				sectionLayouts: {} as Record<string, string>,
 				sectionWidths: {} as Record<string, string>,
-				sectionFeaturedIds: {} as Record<string, string>,
 				sectionCategoryOrders: {} as Record<string, string[]>,
 				sectionDisabledCategories: {} as Record<string, string[]>,
 				sectionCategoryDisplayModes: {} as Record<string, Record<string, string>>,
-				homepageSections: {} as Record<string, Record<string, unknown>>,
+				sectionFeaturedIds: {} as Record<string, string>,
 				postsTotalCount: 0,
 				talksTotalCount: 0,
 				error: 'Failed to load profile',
@@ -69,8 +67,7 @@ export const load: PageServerLoad = async ({ fetch, parent }) => {
 				homepageDisabled: false,
 				landingPageMessage: '',
 				hideLoginButton: false,
-				siteCtaEnabled: true,
-				siteNav: parentData.siteNav
+				siteCtaEnabled: true
 			};
 		}
 
@@ -90,16 +87,15 @@ export const load: PageServerLoad = async ({ fetch, parent }) => {
 				skills: [],
 				posts: [],
 				talks: [],
-				view: null as ViewData,
+				courses: [],
+				view: emptyView,
 				isDefaultView: false,
 				sectionFeaturedIds: {} as Record<string, string>,
 				sectionCategoryOrders: {} as Record<string, string[]>,
 				sectionDisabledCategories: {} as Record<string, string[]>,
 				sectionCategoryDisplayModes: {} as Record<string, Record<string, string>>,
-				homepageSections: {} as Record<string, Record<string, unknown>>,
 				postsTotalCount: 0,
-				talksTotalCount: 0,
-				siteNav: parentData.siteNav
+				talksTotalCount: 0
 			};
 		}
 
@@ -114,7 +110,8 @@ export const load: PageServerLoad = async ({ fetch, parent }) => {
 				skills: [],
 				posts: [],
 				talks: [],
-				view: null as ViewData,
+				courses: [],
+				view: emptyView,
 				error: 'Profile is private',
 				isDefaultView: false,
 				hideLoginButton: data.hide_login_button || false,
@@ -123,10 +120,8 @@ export const load: PageServerLoad = async ({ fetch, parent }) => {
 				sectionCategoryOrders: {} as Record<string, string[]>,
 				sectionDisabledCategories: {} as Record<string, string[]>,
 				sectionCategoryDisplayModes: {} as Record<string, Record<string, string>>,
-				homepageSections: {} as Record<string, Record<string, unknown>>,
 				postsTotalCount: 0,
-				talksTotalCount: 0,
-				siteNav: parentData.siteNav
+				talksTotalCount: 0
 			};
 		}
 
@@ -148,6 +143,8 @@ export const load: PageServerLoad = async ({ fetch, parent }) => {
 			cover_image: p.cover_image_url || null
 		}));
 
+		const courses = data.courses || [];
+
 		return {
 			profile,
 			experience: data.experience || [],
@@ -158,6 +155,7 @@ export const load: PageServerLoad = async ({ fetch, parent }) => {
 			skills: data.skills || [],
 			posts,
 			talks: data.talks || [],
+			courses,
 			postsTotalCount: data.posts_total_count ?? 0,
 			talksTotalCount: data.talks_total_count ?? 0,
 			testimonials: data.testimonials || [],
@@ -165,25 +163,19 @@ export const load: PageServerLoad = async ({ fetch, parent }) => {
 			customContent: data.custom_content || [],
 			homepageCustomContentConfig: data.homepage_custom_content || [],
 			homepageSectionOrder: data.homepage_section_order || [],
-			homepageSections: data.homepage_sections || {} as Record<string, Record<string, unknown>>,
+			homepageSections: data.homepage_sections || {},
 			skillsCategoryOrder: data.skills_category_order || [],
 			sectionFeaturedIds: {} as Record<string, string>,
-			sectionLayouts: {} as Record<string, string>,
-			sectionWidths: {} as Record<string, string>,
 			sectionCategoryOrders: {} as Record<string, string[]>,
 			sectionDisabledCategories: {} as Record<string, string[]>,
 			sectionCategoryDisplayModes: {} as Record<string, Record<string, string>>,
-			view: null as ViewData,
+			view: emptyView,
 			isDefaultView: false,
 			hideLoginButton: data.hide_login_button || false,
 			siteCtaEnabled: data.site_cta_enabled !== false,
-				siteNav: parentData.siteNav
+			siteNav: parentData.siteNav
 		};
 	} catch (error) {
-		// If navigation was cancelled (user clicked another link), let SvelteKit handle it
-		if (error instanceof Error && error.name === 'AbortError') {
-			throw error;
-		}
 		logger.error('[ROOT PAGE] Exception:', error);
 		return {
 			profile: null,
@@ -195,21 +187,20 @@ export const load: PageServerLoad = async ({ fetch, parent }) => {
 			skills: [],
 			posts: [],
 			talks: [],
+			courses: [],
 			testimonials: [],
 			contacts: [],
-			view: null as ViewData,
+			view: emptyView,
 			sectionFeaturedIds: {} as Record<string, string>,
 			sectionCategoryOrders: {} as Record<string, string[]>,
 			sectionDisabledCategories: {} as Record<string, string[]>,
 			sectionCategoryDisplayModes: {} as Record<string, Record<string, string>>,
-			homepageSections: {} as Record<string, Record<string, unknown>>,
 			postsTotalCount: 0,
 			talksTotalCount: 0,
 			error: 'Failed to load profile',
 			isDefaultView: false,
 			hideLoginButton: false,
-			siteCtaEnabled: true,
-				siteNav: parentData.siteNav
+			siteCtaEnabled: true
 		};
 	}
 };
diff --git a/frontend/src/routes/[slug=slug]/+page.server.ts b/frontend/src/routes/[slug=slug]/+page.server.ts
index 8379d1ca..e4985199 100644
--- a/frontend/src/routes/[slug=slug]/+page.server.ts
+++ b/frontend/src/routes/[slug=slug]/+page.server.ts
@@ -187,13 +187,10 @@ export const load: PageServerLoad = async ({ params, cookies, url, fetch, locals
 			shareToken: effectiveShareToken || null,
 			isPublicView: accessInfo.visibility === 'public',
 			siteCtaEnabled: viewData.site_cta_enabled !== false,
+			siteNavEnabled: viewData.site_nav_enabled === true,
 			siteNav: (await parent()).siteNav
 		};
 	} catch (err) {
-		// If navigation was cancelled (user clicked another link), let SvelteKit handle it
-		if (err instanceof Error && err.name === 'AbortError') {
-			throw err;
-		}
 		if ((err as { status?: number }).status === 404) {
 			throw err;
 		}

From 7ffbb2ccad191b7f8662f834c9482b7ec687dd2e Mon Sep 17 00:00:00 2001
From: Jed Esposito <jed@theansible.net>
Date: Mon, 30 Mar 2026 15:00:24 +1300
Subject: [PATCH 2/7] =?UTF-8?q?fix:=20remove=20deprecated=20%sveltekit.the?=
 =?UTF-8?q?me%=20=E2=80=94=20causes=20hydration=20mismatch?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

The <html class="%sveltekit.theme%"> placeholder was removed from
SvelteKit and renders as literal text in production. This causes a
hydration mismatch on every page load, which corrupts SvelteKit's
client router during rapid SPA navigation — leading to 404 flashes
and WelcomePage appearing incorrectly.

Also adds dark mode FOUC prevention script from cloud version.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 frontend/src/app.html | 13 +++++++++++--
 1 file changed, 11 insertions(+), 2 deletions(-)

diff --git a/frontend/src/app.html b/frontend/src/app.html
index 71c0160c..efa62f80 100644
--- a/frontend/src/app.html
+++ b/frontend/src/app.html
@@ -1,12 +1,21 @@
 <!doctype html>
-<html lang="en" class="%sveltekit.theme%">
+<html lang="en">
 	<head>
 		<meta charset="utf-8" />
 		<!-- favicon is set dynamically in +layout.svelte -->
 		<meta name="viewport" content="width=device-width, initial-scale=1" />
 		<link rel="preconnect" href="https://fonts.googleapis.com" />
 		<link rel="preconnect" href="https://fonts.gstatic.com" crossorigin />
-		<link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&family=JetBrains+Mono:wght@400;500&display=swap" rel="stylesheet" />
+		<link href="https://fonts.googleapis.com/css2?family=Lora:ital,wght@0,400;0,500;0,600;0,700;1,400;1,500;1,600;1,700&family=Plus+Jakarta+Sans:wght@400;500;600;700&family=Inter:wght@400;500;600;700&family=JetBrains+Mono:wght@400;500&display=swap" rel="stylesheet" />
+		<script>
+			// Apply dark mode before paint to prevent FOUC
+			(function() {
+				var t = localStorage.getItem('theme');
+				if (t === 'dark' || (!t && matchMedia('(prefers-color-scheme: dark)').matches)) {
+					document.documentElement.classList.add('dark');
+				}
+			})();
+		</script>
 		%sveltekit.head%
 	</head>
 	<body data-sveltekit-preload-data="hover" class="bg-white dark:bg-gray-900 text-gray-900 dark:text-gray-100" style="margin: 0; padding: 0; width: 100%; max-width: 100%;">

From eb31296e7223840746527ed6edc6b868b9fac9cb Mon Sep 17 00:00:00 2001
From: Jed Esposito <jed@theansible.net>
Date: Mon, 30 Mar 2026 15:13:17 +1300
Subject: [PATCH 3/7] fix: prevent Cloudflare email obfuscation from breaking
 hydration
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Cloudflare's Email Address Obfuscation rewrites email addresses in
SSR HTML, causing a Svelte hydration mismatch (server HTML ≠ client
DOM). This corrupts SvelteKit's client router, causing 404 flashes
and WelcomePage on rapid SPA navigation.

Fix: wrap ATS content emails with <!--email_off--> comments, which
Cloudflare respects and skips.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 frontend/src/components/public/ATSContent.svelte | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/frontend/src/components/public/ATSContent.svelte b/frontend/src/components/public/ATSContent.svelte
index 301de31d..08ee9e94 100644
--- a/frontend/src/components/public/ATSContent.svelte
+++ b/frontend/src/components/public/ATSContent.svelte
@@ -84,7 +84,7 @@
 			<p>Location: {profile.location}</p>
 		{/if}
 		{#if emailContact}
-			<p>Email: {emailContact.value}</p>
+			<p><!--email_off-->Email: {emailContact.value}<!--/email_off--></p>
 		{/if}
 		{#if phoneContact}
 			<p>Phone: {phoneContact.value}</p>
@@ -99,7 +99,7 @@
 			<p>Website: {websiteContact.value}</p>
 		{/if}
 		{#if !hasAnyContact && profile?.contact_email}
-			<p>Email: {profile.contact_email}</p>
+			<p><!--email_off-->Email: {profile.contact_email}<!--/email_off--></p>
 		{/if}
 	</section>
 

From 8d9a0622cccb45a28f1768a2f9d2fea0ec3b6a42 Mon Sep 17 00:00:00 2001
From: Jed Esposito <jed@theansible.net>
Date: Mon, 30 Mar 2026 15:37:05 +1300
Subject: [PATCH 4/7] =?UTF-8?q?fix:=20align=20Caddyfile=20with=20cloud=20?=
 =?UTF-8?q?=E2=80=94=20cache=20control,=20CSP,=20immutable=20assets?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Self-hosted Caddyfile was missing critical headers that cloud has:
- Cache-Control "no-store, no-cache" on /api/* (prevents stale cached responses)
- Cache-Control "immutable" on /_app/immutable/* (proper asset caching)
- Cache-Control on /api/files/* (uploaded content caching)
- CSP header (XSS protection)
- HSTS header
- Request body size limit (25MB)
- X-Internal header stripping (prevents spoofing)
- Maintenance mode support

Missing cache-control on API routes likely caused Cloudflare or browser
to cache __data.json responses, returning stale data during rapid SPA
navigation → 404 error page.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 docker/Caddyfile | 102 +++++++++++++++++++++++++++++++++++++++++++++--
 1 file changed, 99 insertions(+), 3 deletions(-)

diff --git a/docker/Caddyfile b/docker/Caddyfile
index b602be8f..0d59231c 100644
--- a/docker/Caddyfile
+++ b/docker/Caddyfile
@@ -21,18 +21,108 @@
         # Disable browser features not used by Facet
         Permissions-Policy "geolocation=(), microphone=(), camera=(), payment=(), usb=()"
 
+        # HSTS - safe because all traffic goes through Cloudflare (TLS-terminated at edge)
+        Strict-Transport-Security "max-age=31536000; includeSubDomains"
+
         # Remove server identification
         -Server
 
+        # Content Security Policy (enforcing)
+        # Restricts script/style/frame sources to mitigate XSS.
+        # 'unsafe-inline' kept for scripts/styles due to Svelte's inline injection pattern.
+        Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' https://static.cloudflareinsights.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' data: blob: https:; font-src 'self' data: https://fonts.gstatic.com; frame-src https://www.youtube.com https://www.youtube-nocookie.com https://player.vimeo.com https://www.loom.com https://w.soundcloud.com https://open.spotify.com https://codepen.io https://www.figma.com; connect-src 'self'; media-src 'self' blob:; object-src 'none'; base-uri 'self'; form-action 'self'"
+
         # INTENTIONALLY OMITTED:
         # - X-XSS-Protection: Deprecated since 2023, can cause vulnerabilities
-        # - HSTS: TLS terminates at edge proxy (Cloudflare), not here
         # - COOP/COEP/CORP: Phase 5B - requires testing with frontend
-        # - CSP: Phase 5B - requires report-only rollout first
+        # - CSP nonce-based: Would allow removing 'unsafe-inline'; requires SSR nonce injection
+    }
+
+    # =========================================================================
+    # Maintenance mode: serve a branded 503 page for all requests except /api/health
+    # Activated by setting FACET_MAINTENANCE_MODE=true
+    # =========================================================================
+    @maintenance expression `{env.FACET_MAINTENANCE_MODE} == "true"`
+    @not_health not path /api/health
+
+    handle @maintenance {
+        handle @not_health {
+            header Content-Type "text/html; charset=utf-8"
+            respond 503 <<HTML
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="utf-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>Maintenance — Facet</title>
+  <style>
+    * { margin: 0; padding: 0; box-sizing: border-box; }
+    body {
+      font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif;
+      background-color: #f6f6f6;
+      color: #1a1a1a;
+      display: flex;
+      align-items: center;
+      justify-content: center;
+      min-height: 100vh;
+    }
+    .container {
+      text-align: center;
+      max-width: 480px;
+      padding: 48px 24px;
+    }
+    .logo {
+      display: inline-block;
+      background-color: #2563eb;
+      color: #ffffff;
+      font-size: 18px;
+      font-weight: 700;
+      padding: 10px 24px;
+      border-radius: 8px;
+      margin-bottom: 32px;
+    }
+    h1 {
+      font-size: 28px;
+      font-weight: 700;
+      margin-bottom: 16px;
+      color: #1a1a1a;
+    }
+    p {
+      font-size: 16px;
+      line-height: 1.6;
+      color: #4b5563;
+    }
+  </style>
+</head>
+<body>
+  <div class="container">
+    <div class="logo">Facet</div>
+    <h1>We'll be right back</h1>
+    <p>We're performing scheduled maintenance. Your data is safe and we'll be back shortly.</p>
+  </div>
+</body>
+</html>
+HTML
+        }
+    }
+
+    # Request body size limit
+    request_body {
+        max_size 25MB
+    }
+
+    # Uploaded files (images, etc.) — cacheable, served by PocketBase
+    handle /api/files/* {
+        header Cache-Control "public, max-age=86400"
+        reverse_proxy localhost:8090
     }
 
-    # API and PocketBase routes go to backend
+    # API and PocketBase routes go to backend (no caching)
     handle /api/* {
+        header Cache-Control "no-store, no-cache"
+        # Strip X-Internal header from external requests to prevent spoofing.
+        # SSR bypasses Caddy (goes direct to :8090), so legitimate internal requests are unaffected.
+        request_header -X-Internal
         reverse_proxy localhost:8090
     }
 
@@ -64,6 +154,12 @@
         reverse_proxy localhost:8090
     }
 
+    # SvelteKit immutable assets (content-hashed filenames, safe to cache forever)
+    handle /_app/immutable/* {
+        header Cache-Control "public, max-age=31536000, immutable"
+        reverse_proxy localhost:3000
+    }
+
     # Everything else goes to SvelteKit frontend
     handle {
         reverse_proxy localhost:3000

From ab38d74bc31930b39abd224bc2eaef41f548c91a Mon Sep 17 00:00:00 2001
From: Jed Esposito <jed@theansible.net>
Date: Mon, 30 Mar 2026 15:50:10 +1300
Subject: [PATCH 5/7] =?UTF-8?q?fix:=20copy=20EXACT=20+page.svelte=20files?=
 =?UTF-8?q?=20from=20cloud=20=E2=80=94=20was=20still=20using=20old=20Facet?=
 =?UTF-8?q?=20versions?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

The +page.svelte files had 179 lines of differences from cloud despite
earlier claims of being "identical." Copied the actual cloud files
including CoursesSection and NewsletterSection components.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 .../components/public/CoursesSection.svelte   | 587 ++++++++++++++++++
 .../public/NewsletterSection.svelte           | 286 +++++++++
 frontend/src/routes/+page.svelte              | 179 ++++--
 frontend/src/routes/[slug=slug]/+page.svelte  | 170 +++--
 4 files changed, 1143 insertions(+), 79 deletions(-)
 create mode 100644 frontend/src/components/public/CoursesSection.svelte
 create mode 100644 frontend/src/components/public/NewsletterSection.svelte

diff --git a/frontend/src/components/public/CoursesSection.svelte b/frontend/src/components/public/CoursesSection.svelte
new file mode 100644
index 00000000..bb524164
--- /dev/null
+++ b/frontend/src/components/public/CoursesSection.svelte
@@ -0,0 +1,587 @@
+<script lang="ts">
+	import { t } from 'svelte-i18n';
+	import { parseMarkdown } from '$lib/utils';
+
+	interface Props {
+		items: any[];
+		layout?: 'grid-3' | 'grid-2' | 'list' | 'featured';
+		viewSlug?: string;
+		showHeader?: boolean;
+	}
+
+	let { items = [], layout = 'grid-3', viewSlug = '', showHeader = true }: Props = $props();
+
+	// Derived values for featured layout
+	let featuredCourse = $derived(items[0]);
+	let remainingCourses = $derived(items.slice(1));
+
+	// Build the course URL with optional from parameter for back navigation
+	function getCourseUrl(slug: string, isResume = false, course: any = null): string {
+		let baseUrl = viewSlug ? `/courses/${slug}?from=${encodeURIComponent(viewSlug)}` : `/courses/${slug}`;
+
+		// If this is a resume action and we have progress, go directly to learn page
+		if (isResume && course?.is_purchased) {
+			return `/courses/${slug}/learn`;
+		}
+
+		return baseUrl;
+	}
+
+	const coverImageUrl = (course: any) =>
+		course.cover_image_url || '';
+
+	function formatDifficulty(difficulty: string): string {
+		if (!difficulty) return '';
+		return difficulty.charAt(0).toUpperCase() + difficulty.slice(1);
+	}
+
+	function formatDuration(hours: number): string {
+		if (!hours) return '';
+		return $t('public.courses.hours', { values: { count: hours } });
+	}
+
+	// Get button text based on course state
+	function getButtonText(course: any): string {
+		if (course.is_purchased) {
+			if (course.enable_certificates !== false && course.progress_percent >= 100) {
+				return $t('public.courses.view_certificate');
+			} else if (course.enable_progress !== false && course.progress_percent > 0) {
+				return $t('public.courses.resume');
+			}
+			return $t('public.courses.start_course');
+		} else if (course.access_tier === 'free') {
+			return $t('public.courses.start_free');
+		} else if (course.price) {
+			return `${$t('public.courses.start')} · $${(course.price / 100).toFixed(2)}`;
+		}
+		return $t('public.courses.start');
+	}
+
+	// Difficulty badge color
+	function difficultyColor(difficulty: string): string {
+		switch (difficulty) {
+			case 'beginner': return 'text-emerald-700 dark:text-emerald-400 bg-emerald-50 dark:bg-emerald-900/20';
+			case 'intermediate': return 'text-amber-700 dark:text-amber-400 bg-amber-50 dark:bg-amber-900/20';
+			case 'advanced': return 'text-rose-700 dark:text-rose-400 bg-rose-50 dark:bg-rose-900/20';
+			default: return 'text-stone-600 dark:text-stone-400 bg-stone-50 dark:bg-stone-800';
+		}
+	}
+</script>
+
+<section id="courses" class="mb-16">
+	{#if showHeader}
+		<h2 class="section-title">{$t('public.sections.courses')}</h2>
+	{/if}
+
+	{#if layout === 'featured' && items.length > 0}
+		<!-- Featured layout: first course large, rest in grid -->
+		<div class="space-y-8">
+			<!-- Featured course (large) -->
+			<article class="card p-0 overflow-hidden group animate-fade-in opacity-0" style="animation-fill-mode: forwards;">
+				<div class="grid grid-cols-1 md:grid-cols-2">
+					<!-- Image section -->
+					<div class="relative">
+						{#if coverImageUrl(featuredCourse)}
+							<a href={getCourseUrl(featuredCourse.slug)} class="block aspect-video md:aspect-auto md:h-full overflow-hidden bg-stone-100 dark:bg-stone-700 relative">
+								<img
+									src={coverImageUrl(featuredCourse)}
+									alt={featuredCourse.title}
+									class="w-full h-full object-cover group-hover:scale-[1.03] transition-transform duration-500 ease-out"
+								/>
+								<!-- Subtle bottom gradient overlay -->
+								<div class="absolute inset-x-0 bottom-0 h-16 bg-gradient-to-t from-black/20 to-transparent pointer-events-none"></div>
+
+								<!-- Gated content badge -->
+								{#if featuredCourse.is_gated && !featuredCourse.is_purchased && featuredCourse.price}
+									<div class="absolute top-3 right-3 backdrop-blur-md bg-white/70 dark:bg-stone-900/70 rounded-full px-2 py-1 shadow-lg border border-white/30 dark:border-stone-700/30 flex items-center gap-1.5">
+										<svg class="w-3 h-3 text-stone-600 dark:text-stone-300" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+											<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z" />
+										</svg>
+										<span class="text-xs font-semibold text-stone-700 dark:text-stone-200">${(featuredCourse.price / 100).toFixed(2)}</span>
+									</div>
+								{:else if featuredCourse.access_tier === 'free'}
+									<div class="absolute top-3 right-3 backdrop-blur-md bg-emerald-500/80 dark:bg-emerald-600/80 rounded-full px-2.5 py-1 shadow-lg border border-emerald-400/30">
+										<span class="text-xs font-semibold text-white">{$t('public.courses.free')}</span>
+									</div>
+								{/if}
+
+								<!-- Progress bar -->
+								{#if featuredCourse.show_progress_bar !== false && featuredCourse.enable_progress !== false && featuredCourse.is_purchased && featuredCourse.progress_percent > 0 && featuredCourse.progress_percent < 100}
+									<div class="absolute bottom-0 left-0 right-0 h-1 bg-black/20">
+										<div
+											class="h-full bg-primary-500 transition-all duration-500"
+											style="width: {featuredCourse.progress_percent}%"
+										></div>
+									</div>
+									{#if featuredCourse.lessons_completed && featuredCourse.total_lessons}
+										<div class="absolute bottom-2.5 left-3 backdrop-blur-md bg-black/50 text-white text-xs rounded-full px-2.5 py-0.5 font-medium">
+											{$t('public.courses.progress_count', { values: { completed: featuredCourse.lessons_completed, total: featuredCourse.total_lessons } })}
+										</div>
+									{/if}
+								{/if}
+							</a>
+						{:else}
+							<!-- Placeholder gradient header -->
+							<div class="aspect-video md:aspect-auto md:h-full bg-gradient-to-br from-primary-500 via-primary-600 to-primary-800 dark:from-primary-700 dark:via-primary-800 dark:to-primary-950 flex items-center justify-center relative">
+								<svg class="w-14 h-14 text-white/25" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+									<path stroke-linecap="round" stroke-linejoin="round" stroke-width="1.5" d="M12 6.253v13m0-13C10.832 5.477 9.246 5 7.5 5S4.168 5.477 3 6.253v13C4.168 18.477 5.754 18 7.5 18s3.332.477 4.5 1.253m0-13C13.168 5.477 14.754 5 16.5 5c1.747 0 3.332.477 4.5 1.253v13C19.832 18.477 18.247 18 16.5 18c-1.746 0-3.332.477-4.5 1.253" />
+								</svg>
+								{#if featuredCourse.is_gated && !featuredCourse.is_purchased && featuredCourse.price}
+									<div class="absolute top-3 right-3 backdrop-blur-md bg-white/70 dark:bg-stone-900/70 rounded-full px-2 py-1 shadow-lg border border-white/30 dark:border-stone-700/30 flex items-center gap-1.5">
+										<svg class="w-3 h-3 text-stone-600 dark:text-stone-300" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+											<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z" />
+										</svg>
+										<span class="text-xs font-semibold text-stone-700 dark:text-stone-200">${(featuredCourse.price / 100).toFixed(2)}</span>
+									</div>
+								{:else if featuredCourse.access_tier === 'free'}
+									<div class="absolute top-3 right-3 backdrop-blur-md bg-emerald-500/80 dark:bg-emerald-600/80 rounded-full px-2.5 py-1 shadow-lg border border-emerald-400/30">
+										<span class="text-xs font-semibold text-white">{$t('public.courses.free')}</span>
+									</div>
+								{/if}
+							</div>
+						{/if}
+					</div>
+
+					<!-- Content section -->
+					<div class="p-6 flex flex-col">
+						<h3 class="text-2xl font-semibold text-stone-900 dark:text-white line-clamp-2 leading-tight">
+							<a href={getCourseUrl(featuredCourse.slug)} class="hover:text-primary-600 dark:hover:text-primary-400 transition-colors duration-200">
+								{featuredCourse.title}
+							</a>
+						</h3>
+
+						{#if featuredCourse.description}
+							<div class="mt-3 text-base text-stone-600 dark:text-stone-300 line-clamp-3 leading-relaxed prose-custom">
+								{@html parseMarkdown(featuredCourse.description)}
+							</div>
+						{/if}
+
+						<!-- Metadata chips -->
+						<div class="mt-4 flex flex-wrap items-center gap-2">
+							{#if featuredCourse.difficulty}
+								<span class="text-sm font-medium px-2.5 py-1 rounded-full {difficultyColor(featuredCourse.difficulty)}">
+									{formatDifficulty(featuredCourse.difficulty)}
+								</span>
+							{/if}
+							{#if featuredCourse.estimated_hours}
+								<span class="text-sm text-stone-500 dark:text-stone-500 flex items-center gap-1">
+									<svg class="w-4 h-4" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+										<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 8v4l3 3m6-3a9 9 0 11-18 0 9 9 0 0118 0z" />
+									</svg>
+									{formatDuration(featuredCourse.estimated_hours)}
+								</span>
+							{/if}
+							{#if featuredCourse.total_lessons}
+								<span class="text-sm text-stone-500 dark:text-stone-500 flex items-center gap-1">
+									<svg class="w-4 h-4" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+										<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M9 5H7a2 2 0 00-2 2v12a2 2 0 002 2h10a2 2 0 002-2V7a2 2 0 00-2-2h-2M9 5a2 2 0 002 2h2a2 2 0 002-2M9 5a2 2 0 012-2h2a2 2 0 012 2" />
+									</svg>
+									{$t('public.courses.lessons_count', { values: { count: featuredCourse.total_lessons } })}
+								</span>
+							{/if}
+						</div>
+
+						<!-- CTA button -->
+						<div class="mt-auto pt-6">
+							<a
+								href={getCourseUrl(featuredCourse.slug, featuredCourse.is_purchased && featuredCourse.progress_percent > 0, featuredCourse)}
+								class="inline-flex items-center gap-2 px-5 py-2.5 text-base font-medium rounded-lg
+									bg-primary-600 text-white hover:bg-primary-700 active:bg-primary-800
+									shadow-sm hover:shadow-md
+									transition-all duration-200 ease-out
+									hover:scale-[1.02] active:scale-[0.98]
+									focus:outline-none focus-visible:ring-2 focus-visible:ring-primary-500 focus-visible:ring-offset-2"
+							>
+								{getButtonText(featuredCourse)}
+								<svg class="w-4 h-4 transition-transform duration-200 group-hover:translate-x-0.5" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+									<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M17 8l4 4m0 0l-4 4m4-4H3" />
+								</svg>
+							</a>
+						</div>
+					</div>
+				</div>
+			</article>
+
+			<!-- Remaining courses in grid -->
+			{#if remainingCourses.length > 0}
+				<div class="grid grid-cols-1 md:grid-cols-2 lg:grid-cols-3 gap-6">
+					{#each remainingCourses as course, index (course.id)}
+						<article
+							class="card p-0 overflow-hidden group animate-fade-in opacity-0 flex flex-col"
+							style="animation-delay: {(index + 1) * 75}ms; animation-fill-mode: forwards;"
+						>
+							<!-- Cover image / gradient header -->
+							{#if coverImageUrl(course)}
+								<a href={getCourseUrl(course.slug)} class="block aspect-video overflow-hidden bg-stone-100 dark:bg-stone-700 relative">
+									<img
+										src={coverImageUrl(course)}
+										alt={course.title}
+										class="w-full h-full object-cover group-hover:scale-[1.03] transition-transform duration-500 ease-out"
+									/>
+									<div class="absolute inset-x-0 bottom-0 h-16 bg-gradient-to-t from-black/20 to-transparent pointer-events-none"></div>
+
+									{#if course.is_gated && !course.is_purchased && course.price}
+										<div class="absolute top-3 right-3 backdrop-blur-md bg-white/70 dark:bg-stone-900/70 rounded-full px-2 py-1 shadow-lg border border-white/30 dark:border-stone-700/30 flex items-center gap-1.5">
+											<svg class="w-3 h-3 text-stone-600 dark:text-stone-300" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+												<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z" />
+											</svg>
+											<span class="text-xs font-semibold text-stone-700 dark:text-stone-200">${(course.price / 100).toFixed(2)}</span>
+										</div>
+									{:else if course.access_tier === 'free'}
+										<div class="absolute top-3 right-3 backdrop-blur-md bg-emerald-500/80 dark:bg-emerald-600/80 rounded-full px-2.5 py-1 shadow-lg border border-emerald-400/30">
+											<span class="text-xs font-semibold text-white">{$t('public.courses.free')}</span>
+										</div>
+									{/if}
+
+									{#if course.show_progress_bar !== false && course.enable_progress !== false && course.is_purchased && course.progress_percent > 0 && course.progress_percent < 100}
+										<div class="absolute bottom-0 left-0 right-0 h-1 bg-black/20">
+											<div
+												class="h-full bg-primary-500 transition-all duration-500"
+												style="width: {course.progress_percent}%"
+											></div>
+										</div>
+										{#if course.lessons_completed && course.total_lessons}
+											<div class="absolute bottom-2.5 left-3 backdrop-blur-md bg-black/50 text-white text-xs rounded-full px-2.5 py-0.5 font-medium">
+												{$t('public.courses.progress_count', { values: { completed: course.lessons_completed, total: course.total_lessons } })}
+											</div>
+										{/if}
+									{/if}
+								</a>
+							{:else}
+								<div class="aspect-video bg-gradient-to-br from-primary-500 via-primary-600 to-primary-800 dark:from-primary-700 dark:via-primary-800 dark:to-primary-950 flex items-center justify-center relative">
+									<svg class="w-14 h-14 text-white/25" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+										<path stroke-linecap="round" stroke-linejoin="round" stroke-width="1.5" d="M12 6.253v13m0-13C10.832 5.477 9.246 5 7.5 5S4.168 5.477 3 6.253v13C4.168 18.477 5.754 18 7.5 18s3.332.477 4.5 1.253m0-13C13.168 5.477 14.754 5 16.5 5c1.747 0 3.332.477 4.5 1.253v13C19.832 18.477 18.247 18 16.5 18c-1.746 0-3.332.477-4.5 1.253" />
+									</svg>
+									{#if course.is_gated && !course.is_purchased && course.price}
+										<div class="absolute top-3 right-3 backdrop-blur-md bg-white/70 dark:bg-stone-900/70 rounded-full px-2 py-1 shadow-lg border border-white/30 dark:border-stone-700/30 flex items-center gap-1.5">
+											<svg class="w-3 h-3 text-stone-600 dark:text-stone-300" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+												<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z" />
+											</svg>
+											<span class="text-xs font-semibold text-stone-700 dark:text-stone-200">${(course.price / 100).toFixed(2)}</span>
+										</div>
+									{:else if course.access_tier === 'free'}
+										<div class="absolute top-3 right-3 backdrop-blur-md bg-emerald-500/80 dark:bg-emerald-600/80 rounded-full px-2.5 py-1 shadow-lg border border-emerald-400/30">
+											<span class="text-xs font-semibold text-white">{$t('public.courses.free')}</span>
+										</div>
+									{/if}
+								</div>
+							{/if}
+
+							<!-- Card content -->
+							<div class="p-5 flex flex-col flex-1">
+								<h3 class="text-lg text-stone-900 dark:text-white line-clamp-2 leading-snug">
+									<a href={getCourseUrl(course.slug)} class="hover:text-primary-600 dark:hover:text-primary-400 transition-colors duration-200">
+										{course.title}
+									</a>
+								</h3>
+
+								{#if course.description}
+									<div class="mt-2.5 text-sm text-stone-500 dark:text-stone-400 line-clamp-2 leading-relaxed prose-custom">
+										{@html parseMarkdown(course.description)}
+									</div>
+								{/if}
+
+								<!-- Metadata chips -->
+								<div class="mt-3 flex flex-wrap items-center gap-2">
+									{#if course.difficulty}
+										<span class="text-xs font-medium px-2 py-0.5 rounded-full {difficultyColor(course.difficulty)}">
+											{formatDifficulty(course.difficulty)}
+										</span>
+									{/if}
+									{#if course.estimated_hours}
+										<span class="text-xs text-stone-500 dark:text-stone-500 flex items-center gap-1">
+											<svg class="w-3.5 h-3.5" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+												<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 8v4l3 3m6-3a9 9 0 11-18 0 9 9 0 0118 0z" />
+											</svg>
+											{formatDuration(course.estimated_hours)}
+										</span>
+									{/if}
+									{#if course.total_lessons}
+										<span class="text-xs text-stone-500 dark:text-stone-500 flex items-center gap-1">
+											<svg class="w-3.5 h-3.5" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+												<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M9 5H7a2 2 0 00-2 2v12a2 2 0 002 2h10a2 2 0 002-2V7a2 2 0 00-2-2h-2M9 5a2 2 0 002 2h2a2 2 0 002-2M9 5a2 2 0 012-2h2a2 2 0 012 2" />
+											</svg>
+											{$t('public.courses.lessons_count', { values: { count: course.total_lessons } })}
+										</span>
+									{/if}
+								</div>
+
+								<!-- CTA button -->
+								<div class="mt-auto pt-5">
+									<a
+										href={getCourseUrl(course.slug, course.is_purchased && course.progress_percent > 0, course)}
+										class="inline-flex items-center gap-2 px-4 py-2 text-sm font-medium rounded-lg
+											bg-primary-600 text-white hover:bg-primary-700 active:bg-primary-800
+											shadow-sm hover:shadow-md
+											transition-all duration-200 ease-out
+											hover:scale-[1.02] active:scale-[0.98]
+											focus:outline-none focus-visible:ring-2 focus-visible:ring-primary-500 focus-visible:ring-offset-2"
+									>
+										{getButtonText(course)}
+										<svg class="w-4 h-4 transition-transform duration-200 group-hover:translate-x-0.5" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+											<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M17 8l4 4m0 0l-4 4m4-4H3" />
+										</svg>
+									</a>
+								</div>
+							</div>
+						</article>
+					{/each}
+				</div>
+			{/if}
+		</div>
+	{:else if layout === 'list'}
+		<!-- List layout: single column, horizontal cards -->
+		<div class="space-y-6">
+			{#each items as course, index (course.id)}
+				<article
+					class="card p-0 overflow-hidden group animate-fade-in opacity-0 flex flex-col sm:flex-row"
+					style="animation-delay: {index * 75}ms; animation-fill-mode: forwards;"
+				>
+					<!-- Image section -->
+					{#if coverImageUrl(course)}
+						<a href={getCourseUrl(course.slug)} class="block sm:w-48 shrink-0 aspect-video sm:aspect-auto overflow-hidden bg-stone-100 dark:bg-stone-700 relative">
+							<img
+								src={coverImageUrl(course)}
+								alt={course.title}
+								class="w-full h-full object-cover group-hover:scale-[1.03] transition-transform duration-500 ease-out"
+							/>
+							<div class="absolute inset-x-0 bottom-0 h-16 bg-gradient-to-t from-black/20 to-transparent pointer-events-none"></div>
+
+							{#if course.is_gated && !course.is_purchased && course.price}
+								<div class="absolute top-3 right-3 backdrop-blur-md bg-white/70 dark:bg-stone-900/70 rounded-full px-2 py-1 shadow-lg border border-white/30 dark:border-stone-700/30 flex items-center gap-1.5">
+									<svg class="w-3 h-3 text-stone-600 dark:text-stone-300" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+										<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z" />
+									</svg>
+									<span class="text-xs font-semibold text-stone-700 dark:text-stone-200">${(course.price / 100).toFixed(2)}</span>
+								</div>
+							{:else if course.access_tier === 'free'}
+								<div class="absolute top-3 right-3 backdrop-blur-md bg-emerald-500/80 dark:bg-emerald-600/80 rounded-full px-2.5 py-1 shadow-lg border border-emerald-400/30">
+									<span class="text-xs font-semibold text-white">{$t('public.courses.free')}</span>
+								</div>
+							{/if}
+
+							{#if course.show_progress_bar !== false && course.enable_progress !== false && course.is_purchased && course.progress_percent > 0 && course.progress_percent < 100}
+								<div class="absolute bottom-0 left-0 right-0 h-1 bg-black/20">
+									<div
+										class="h-full bg-primary-500 transition-all duration-500"
+										style="width: {course.progress_percent}%"
+									></div>
+								</div>
+								{#if course.lessons_completed && course.total_lessons}
+									<div class="absolute bottom-2.5 left-3 backdrop-blur-md bg-black/50 text-white text-xs rounded-full px-2.5 py-0.5 font-medium">
+										{$t('public.courses.progress_count', { values: { completed: course.lessons_completed, total: course.total_lessons } })}
+									</div>
+								{/if}
+							{/if}
+						</a>
+					{:else}
+						<div class="sm:w-48 shrink-0 aspect-video sm:aspect-auto bg-gradient-to-br from-primary-500 via-primary-600 to-primary-800 dark:from-primary-700 dark:via-primary-800 dark:to-primary-950 flex items-center justify-center relative">
+							<svg class="w-14 h-14 text-white/25" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+								<path stroke-linecap="round" stroke-linejoin="round" stroke-width="1.5" d="M12 6.253v13m0-13C10.832 5.477 9.246 5 7.5 5S4.168 5.477 3 6.253v13C4.168 18.477 5.754 18 7.5 18s3.332.477 4.5 1.253m0-13C13.168 5.477 14.754 5 16.5 5c1.747 0 3.332.477 4.5 1.253v13C19.832 18.477 18.247 18 16.5 18c-1.746 0-3.332.477-4.5 1.253" />
+							</svg>
+							{#if course.is_gated && !course.is_purchased && course.price}
+								<div class="absolute top-3 right-3 backdrop-blur-md bg-white/70 dark:bg-stone-900/70 rounded-full px-2 py-1 shadow-lg border border-white/30 dark:border-stone-700/30 flex items-center gap-1.5">
+									<svg class="w-3 h-3 text-stone-600 dark:text-stone-300" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+										<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z" />
+									</svg>
+									<span class="text-xs font-semibold text-stone-700 dark:text-stone-200">${(course.price / 100).toFixed(2)}</span>
+								</div>
+							{:else if course.access_tier === 'free'}
+								<div class="absolute top-3 right-3 backdrop-blur-md bg-emerald-500/80 dark:bg-emerald-600/80 rounded-full px-2.5 py-1 shadow-lg border border-emerald-400/30">
+									<span class="text-xs font-semibold text-white">{$t('public.courses.free')}</span>
+								</div>
+							{/if}
+						</div>
+					{/if}
+
+					<!-- Content section -->
+					<div class="p-5 flex flex-col flex-1">
+						<h3 class="text-lg text-stone-900 dark:text-white line-clamp-2 leading-snug">
+							<a href={getCourseUrl(course.slug)} class="hover:text-primary-600 dark:hover:text-primary-400 transition-colors duration-200">
+								{course.title}
+							</a>
+						</h3>
+
+						{#if course.description}
+							<div class="mt-2.5 text-sm text-stone-500 dark:text-stone-400 line-clamp-2 leading-relaxed prose-custom">
+								{@html parseMarkdown(course.description)}
+							</div>
+						{/if}
+
+						<!-- Metadata chips -->
+						<div class="mt-3 flex flex-wrap items-center gap-2">
+							{#if course.difficulty}
+								<span class="text-xs font-medium px-2 py-0.5 rounded-full {difficultyColor(course.difficulty)}">
+									{formatDifficulty(course.difficulty)}
+								</span>
+							{/if}
+							{#if course.estimated_hours}
+								<span class="text-xs text-stone-500 dark:text-stone-500 flex items-center gap-1">
+									<svg class="w-3.5 h-3.5" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+										<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 8v4l3 3m6-3a9 9 0 11-18 0 9 9 0 0118 0z" />
+									</svg>
+									{formatDuration(course.estimated_hours)}
+								</span>
+							{/if}
+							{#if course.total_lessons}
+								<span class="text-xs text-stone-500 dark:text-stone-500 flex items-center gap-1">
+									<svg class="w-3.5 h-3.5" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+										<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M9 5H7a2 2 0 00-2 2v12a2 2 0 002 2h10a2 2 0 002-2V7a2 2 0 00-2-2h-2M9 5a2 2 0 002 2h2a2 2 0 002-2M9 5a2 2 0 012-2h2a2 2 0 012 2" />
+									</svg>
+									{$t('public.courses.lessons_count', { values: { count: course.total_lessons } })}
+								</span>
+							{/if}
+						</div>
+
+						<!-- CTA button -->
+						<div class="mt-auto pt-5">
+							<a
+								href={getCourseUrl(course.slug, course.is_purchased && course.progress_percent > 0, course)}
+								class="inline-flex items-center gap-2 px-4 py-2 text-sm font-medium rounded-lg
+									bg-primary-600 text-white hover:bg-primary-700 active:bg-primary-800
+									shadow-sm hover:shadow-md
+									transition-all duration-200 ease-out
+									hover:scale-[1.02] active:scale-[0.98]
+									focus:outline-none focus-visible:ring-2 focus-visible:ring-primary-500 focus-visible:ring-offset-2"
+							>
+								{getButtonText(course)}
+								<svg class="w-4 h-4 transition-transform duration-200 group-hover:translate-x-0.5" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+									<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M17 8l4 4m0 0l-4 4m4-4H3" />
+								</svg>
+							</a>
+						</div>
+					</div>
+				</article>
+			{/each}
+		</div>
+	{:else}
+		<!-- Grid layouts (grid-3, grid-2) -->
+		<div class="grid grid-cols-1 {layout === 'grid-2' ? 'md:grid-cols-2' : 'md:grid-cols-2 lg:grid-cols-3'} gap-6">
+			{#each items as course, index (course.id)}
+				<article
+					class="card p-0 overflow-hidden group animate-fade-in opacity-0 flex flex-col"
+					style="animation-delay: {index * 75}ms; animation-fill-mode: forwards;"
+				>
+					<!-- Cover image / gradient header -->
+					{#if coverImageUrl(course)}
+						<a href={getCourseUrl(course.slug)} class="block aspect-video overflow-hidden bg-stone-100 dark:bg-stone-700 relative">
+							<img
+								src={coverImageUrl(course)}
+								alt={course.title}
+								class="w-full h-full object-cover group-hover:scale-[1.03] transition-transform duration-500 ease-out"
+							/>
+							<!-- Subtle bottom gradient overlay for text readability -->
+							<div class="absolute inset-x-0 bottom-0 h-16 bg-gradient-to-t from-black/20 to-transparent pointer-events-none"></div>
+
+							<!-- Gated content badge - frosted glass -->
+							{#if course.is_gated && !course.is_purchased && course.price}
+								<div class="absolute top-3 right-3 backdrop-blur-md bg-white/70 dark:bg-stone-900/70 rounded-full px-2 py-1 shadow-lg border border-white/30 dark:border-stone-700/30 flex items-center gap-1.5">
+									<svg class="w-3 h-3 text-stone-600 dark:text-stone-300" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+										<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z" />
+									</svg>
+									<span class="text-xs font-semibold text-stone-700 dark:text-stone-200">${(course.price / 100).toFixed(2)}</span>
+								</div>
+							{:else if course.access_tier === 'free'}
+								<div class="absolute top-3 right-3 backdrop-blur-md bg-emerald-500/80 dark:bg-emerald-600/80 rounded-full px-2.5 py-1 shadow-lg border border-emerald-400/30">
+									<span class="text-xs font-semibold text-white">{$t('public.courses.free')}</span>
+								</div>
+							{/if}
+
+							<!-- Progress bar for enrolled students -->
+							{#if course.show_progress_bar !== false && course.enable_progress !== false && course.is_purchased && course.progress_percent > 0 && course.progress_percent < 100}
+								<div class="absolute bottom-0 left-0 right-0 h-1 bg-black/20">
+									<div
+										class="h-full bg-primary-500 transition-all duration-500"
+										style="width: {course.progress_percent}%"
+									></div>
+								</div>
+								{#if course.lessons_completed && course.total_lessons}
+									<div class="absolute bottom-2.5 left-3 backdrop-blur-md bg-black/50 text-white text-xs rounded-full px-2.5 py-0.5 font-medium">
+										{$t('public.courses.progress_count', { values: { completed: course.lessons_completed, total: course.total_lessons } })}
+									</div>
+								{/if}
+							{/if}
+						</a>
+					{:else}
+						<!-- Placeholder gradient header -->
+						<div class="aspect-video bg-gradient-to-br from-primary-500 via-primary-600 to-primary-800 dark:from-primary-700 dark:via-primary-800 dark:to-primary-950 flex items-center justify-center relative">
+							<svg class="w-14 h-14 text-white/25" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+								<path stroke-linecap="round" stroke-linejoin="round" stroke-width="1.5" d="M12 6.253v13m0-13C10.832 5.477 9.246 5 7.5 5S4.168 5.477 3 6.253v13C4.168 18.477 5.754 18 7.5 18s3.332.477 4.5 1.253m0-13C13.168 5.477 14.754 5 16.5 5c1.747 0 3.332.477 4.5 1.253v13C19.832 18.477 18.247 18 16.5 18c-1.746 0-3.332.477-4.5 1.253" />
+							</svg>
+							{#if course.is_gated && !course.is_purchased && course.price}
+								<div class="absolute top-3 right-3 backdrop-blur-md bg-white/70 dark:bg-stone-900/70 rounded-full px-2 py-1 shadow-lg border border-white/30 dark:border-stone-700/30 flex items-center gap-1.5">
+									<svg class="w-3 h-3 text-stone-600 dark:text-stone-300" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+										<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z" />
+									</svg>
+									<span class="text-xs font-semibold text-stone-700 dark:text-stone-200">${(course.price / 100).toFixed(2)}</span>
+								</div>
+							{:else if course.access_tier === 'free'}
+								<div class="absolute top-3 right-3 backdrop-blur-md bg-emerald-500/80 dark:bg-emerald-600/80 rounded-full px-2.5 py-1 shadow-lg border border-emerald-400/30">
+									<span class="text-xs font-semibold text-white">{$t('public.courses.free')}</span>
+								</div>
+							{/if}
+						</div>
+					{/if}
+
+					<!-- Card content -->
+					<div class="p-5 flex flex-col flex-1">
+						<h3 class="text-lg text-stone-900 dark:text-white line-clamp-2 leading-snug">
+							<a href={getCourseUrl(course.slug)} class="hover:text-primary-600 dark:hover:text-primary-400 transition-colors duration-200">
+								{course.title}
+							</a>
+						</h3>
+
+						{#if course.description}
+							<div class="mt-2.5 text-sm text-stone-500 dark:text-stone-400 line-clamp-2 leading-relaxed prose-custom">
+								{@html parseMarkdown(course.description)}
+							</div>
+						{/if}
+
+						<!-- Metadata chips -->
+						<div class="mt-3 flex flex-wrap items-center gap-2">
+							{#if course.difficulty}
+								<span class="text-xs font-medium px-2 py-0.5 rounded-full {difficultyColor(course.difficulty)}">
+									{formatDifficulty(course.difficulty)}
+								</span>
+							{/if}
+							{#if course.estimated_hours}
+								<span class="text-xs text-stone-500 dark:text-stone-500 flex items-center gap-1">
+									<svg class="w-3.5 h-3.5" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+										<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 8v4l3 3m6-3a9 9 0 11-18 0 9 9 0 0118 0z" />
+									</svg>
+									{formatDuration(course.estimated_hours)}
+								</span>
+							{/if}
+							{#if course.total_lessons}
+								<span class="text-xs text-stone-500 dark:text-stone-500 flex items-center gap-1">
+									<svg class="w-3.5 h-3.5" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+										<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M9 5H7a2 2 0 00-2 2v12a2 2 0 002 2h10a2 2 0 002-2V7a2 2 0 00-2-2h-2M9 5a2 2 0 002 2h2a2 2 0 002-2M9 5a2 2 0 012-2h2a2 2 0 012 2" />
+									</svg>
+									{$t('public.courses.lessons_count', { values: { count: course.total_lessons } })}
+								</span>
+							{/if}
+						</div>
+
+						<!-- CTA button - pushed to bottom with flex -->
+						<div class="mt-auto pt-5">
+							<a
+								href={getCourseUrl(course.slug, course.is_purchased && course.progress_percent > 0, course)}
+								class="inline-flex items-center gap-2 px-4 py-2 text-sm font-medium rounded-lg
+									bg-primary-600 text-white hover:bg-primary-700 active:bg-primary-800
+									shadow-sm hover:shadow-md
+									transition-all duration-200 ease-out
+									hover:scale-[1.02] active:scale-[0.98]
+									focus:outline-none focus-visible:ring-2 focus-visible:ring-primary-500 focus-visible:ring-offset-2"
+							>
+								{getButtonText(course)}
+								<svg class="w-4 h-4 transition-transform duration-200 group-hover:translate-x-0.5" fill="none" viewBox="0 0 24 24" stroke="currentColor" aria-hidden="true">
+									<path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M17 8l4 4m0 0l-4 4m4-4H3" />
+								</svg>
+							</a>
+						</div>
+					</div>
+				</article>
+			{/each}
+		</div>
+	{/if}
+</section>
diff --git a/frontend/src/components/public/NewsletterSection.svelte b/frontend/src/components/public/NewsletterSection.svelte
new file mode 100644
index 00000000..430f671d
--- /dev/null
+++ b/frontend/src/components/public/NewsletterSection.svelte
@@ -0,0 +1,286 @@
+<script lang="ts">
+	import { t } from 'svelte-i18n';
+	import { env } from '$env/dynamic/public';
+	import { browser } from '$app/environment';
+	import { onMount } from 'svelte';
+
+	interface Props {
+		viewSlug: string;
+	}
+
+	let { viewSlug }: Props = $props();
+
+	let email = $state('');
+	let name = $state('');
+	let status = $state<'idle' | 'loading' | 'success' | 'error'>('idle');
+	let errorMessage = $state('');
+
+	// Turnstile
+	let turnstileContainer: HTMLDivElement | undefined = $state();
+	let turnstileToken = $state('');
+	let scriptLoaded = $state(false);
+	const siteKey = env.PUBLIC_TURNSTILE_SITE_KEY || '';
+
+	function loadTurnstileScript(): Promise<void> {
+		return new Promise((resolve, reject) => {
+			if (typeof window !== 'undefined' && (window as any).turnstile) {
+				scriptLoaded = true;
+				resolve();
+				return;
+			}
+
+			const existing = document.querySelector('script[src*="challenges.cloudflare.com/turnstile"]');
+			if (existing) {
+				existing.addEventListener('load', () => { scriptLoaded = true; resolve(); });
+				if ((window as any).turnstile) { scriptLoaded = true; resolve(); }
+				return;
+			}
+
+			const script = document.createElement('script');
+			script.src = 'https://challenges.cloudflare.com/turnstile/v0/api.js?render=explicit';
+			script.async = true;
+			script.onload = () => { scriptLoaded = true; resolve(); };
+			script.onerror = () => reject(new Error('Failed to load Turnstile'));
+			document.head.appendChild(script);
+		});
+	}
+
+	onMount(() => {
+		if (browser && siteKey) {
+			loadTurnstileScript().then(() => {
+				if (turnstileContainer && (window as any).turnstile) {
+					(window as any).turnstile.render(turnstileContainer, {
+						sitekey: siteKey,
+						size: 'invisible',
+						callback: (token: string) => { turnstileToken = token; },
+						'expired-callback': () => { turnstileToken = ''; }
+					});
+				}
+			}).catch(() => {});
+		}
+	});
+
+	const emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
+
+	async function handleSubmit(e: Event) {
+		e.preventDefault();
+
+		const trimmedEmail = email.trim().toLowerCase();
+		if (!trimmedEmail || !emailRegex.test(trimmedEmail)) {
+			status = 'error';
+			errorMessage = $t('public.sections.newsletter_invalid_email');
+			return;
+		}
+
+		status = 'loading';
+		errorMessage = '';
+
+		try {
+			const response = await fetch(`/api/public/${viewSlug}/subscribe`, {
+				method: 'POST',
+				headers: { 'Content-Type': 'application/json' },
+				body: JSON.stringify({
+					email: trimmedEmail,
+					name: name.trim(),
+					turnstile_token: turnstileToken || undefined
+				})
+			});
+
+			if (response.ok) {
+				status = 'success';
+				email = '';
+				name = '';
+			} else if (response.status === 429) {
+				status = 'error';
+				errorMessage = $t('public.sections.newsletter_error');
+			} else {
+				const data = await response.json().catch(() => ({}));
+				status = 'error';
+				errorMessage = data.error || $t('public.sections.newsletter_error');
+			}
+		} catch {
+			status = 'error';
+			errorMessage = $t('public.sections.newsletter_error');
+		}
+	}
+</script>
+
+<section id="newsletter" class="mb-16">
+	<!-- Full-width CTA banner with gradient -->
+	<div class="relative overflow-hidden rounded-3xl bg-gradient-to-br from-primary-600 via-primary-700 to-primary-800 dark:from-primary-800 dark:via-primary-900 dark:to-stone-900 p-8 sm:p-10 md:p-14 shadow-editorial-lg animate-fade-in">
+		<!-- Background decorative elements -->
+		<div class="absolute inset-0 overflow-hidden pointer-events-none" aria-hidden="true">
+			<!-- Soft radial glow -->
+			<div class="absolute -top-24 -right-24 w-96 h-96 rounded-full bg-white/[0.07] blur-3xl"></div>
+			<div class="absolute -bottom-16 -left-16 w-64 h-64 rounded-full bg-white/[0.05] blur-2xl"></div>
+			<!-- Subtle grid texture -->
+			<div class="absolute inset-0 opacity-[0.04]" style="background-image: url('data:image/svg+xml,%3Csvg width=&quot;40&quot; height=&quot;40&quot; xmlns=&quot;http://www.w3.org/2000/svg&quot;%3E%3Cpath d=&quot;M0 0h40v40H0z&quot; fill=&quot;none&quot; stroke=&quot;white&quot; stroke-width=&quot;0.5&quot;/%3E%3C/svg%3E'); background-size: 40px 40px;"></div>
+		</div>
+
+		<div class="relative z-10 max-w-2xl mx-auto text-center">
+			<!-- Mail icon -->
+			<div class="inline-flex items-center justify-center w-12 h-12 rounded-2xl bg-white/10 backdrop-blur-sm mb-5">
+				<svg class="w-6 h-6 text-white/90" fill="none" viewBox="0 0 24 24" stroke="currentColor" stroke-width="1.5">
+					<path stroke-linecap="round" stroke-linejoin="round" d="M21.75 6.75v10.5a2.25 2.25 0 01-2.25 2.25h-15a2.25 2.25 0 01-2.25-2.25V6.75m19.5 0A2.25 2.25 0 0019.5 4.5h-15a2.25 2.25 0 00-2.25 2.25m19.5 0v.243a2.25 2.25 0 01-1.07 1.916l-7.5 4.615a2.25 2.25 0 01-2.36 0L3.32 8.91a2.25 2.25 0 01-1.07-1.916V6.75" />
+				</svg>
+			</div>
+
+			<h2 class="text-2xl sm:text-3xl font-serif text-white mb-3">{$t('public.sections.newsletter_heading')}</h2>
+			<p class="text-primary-100/80 dark:text-stone-300/70 mb-8 max-w-lg mx-auto leading-relaxed">{$t('public.sections.newsletter_description')}</p>
+
+			{#if status === 'success'}
+				<div class="animate-scale-in inline-flex items-center gap-2.5 px-6 py-3.5 bg-white/15 backdrop-blur-sm rounded-2xl border border-white/20" role="status">
+					<div class="flex items-center justify-center w-6 h-6 rounded-full bg-emerald-400/20">
+						<svg class="w-4 h-4 text-emerald-300" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2.5" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true">
+							<polyline points="20 6 9 17 4 12"></polyline>
+						</svg>
+					</div>
+					<span class="text-white font-medium">{$t('public.sections.newsletter_success')}</span>
+				</div>
+			{:else}
+				<form onsubmit={handleSubmit} class="max-w-md mx-auto">
+					<!-- Integrated input group -->
+					<div class="space-y-3 mb-4">
+						<div class="relative">
+							<input
+								type="email"
+								bind:value={email}
+								placeholder={$t('public.sections.newsletter_email_placeholder')}
+								required
+								class="newsletter-input"
+								disabled={status === 'loading'}
+							/>
+						</div>
+						<div class="relative">
+							<input
+								type="text"
+								bind:value={name}
+								placeholder={$t('public.sections.newsletter_name_placeholder')}
+								class="newsletter-input"
+								disabled={status === 'loading'}
+							/>
+						</div>
+					</div>
+
+					<button
+						type="submit"
+						class="newsletter-button"
+						disabled={status === 'loading'}
+					>
+						{#if status === 'loading'}
+							<span class="spinner" aria-hidden="true"></span>
+						{/if}
+						{$t('public.sections.newsletter_button')}
+					</button>
+
+					{#if errorMessage}
+						<p class="error-message mt-3" role="alert">{errorMessage}</p>
+					{/if}
+
+					<!-- Hidden Turnstile container -->
+					{#if siteKey}
+						<div bind:this={turnstileContainer} class="turnstile-container" aria-hidden="true"></div>
+					{/if}
+				</form>
+			{/if}
+		</div>
+	</div>
+</section>
+
+<style>
+	.newsletter-input {
+		width: 100%;
+		padding: 0.75rem 1rem;
+		border: 1px solid rgba(255, 255, 255, 0.2);
+		border-radius: 1rem;
+		background: rgba(255, 255, 255, 0.12);
+		-webkit-backdrop-filter: blur(8px);
+		backdrop-filter: blur(8px);
+		color: #ffffff;
+		font-size: 0.9375rem;
+		transition: all 0.25s cubic-bezier(0.16, 1, 0.3, 1);
+	}
+
+	.newsletter-input::placeholder {
+		color: rgba(255, 255, 255, 0.5);
+	}
+
+	.newsletter-input:focus {
+		outline: none;
+		border-color: rgba(255, 255, 255, 0.4);
+		background: rgba(255, 255, 255, 0.18);
+		box-shadow: 0 0 0 3px rgba(255, 255, 255, 0.1);
+	}
+
+	.newsletter-input:disabled {
+		opacity: 0.5;
+		cursor: not-allowed;
+	}
+
+	.newsletter-button {
+		display: inline-flex;
+		align-items: center;
+		justify-content: center;
+		gap: 0.5rem;
+		width: 100%;
+		padding: 0.75rem 2rem;
+		background: rgba(255, 255, 255, 0.95);
+		color: var(--color-primary-700, #0369a1);
+		border: none;
+		border-radius: 1rem;
+		font-size: 0.9375rem;
+		font-weight: 700;
+		cursor: pointer;
+		transition: all 0.25s cubic-bezier(0.16, 1, 0.3, 1);
+		box-shadow: 0 2px 8px rgba(0, 0, 0, 0.12);
+	}
+
+	.newsletter-button:hover:not(:disabled) {
+		background: #ffffff;
+		transform: translateY(-1px);
+		box-shadow: 0 4px 16px rgba(0, 0, 0, 0.18);
+	}
+
+	.newsletter-button:active:not(:disabled) {
+		transform: translateY(0);
+		box-shadow: 0 1px 4px rgba(0, 0, 0, 0.1);
+	}
+
+	.newsletter-button:disabled {
+		opacity: 0.6;
+		cursor: not-allowed;
+	}
+
+	.spinner {
+		display: inline-block;
+		width: 1rem;
+		height: 1rem;
+		border: 2px solid currentColor;
+		border-right-color: transparent;
+		border-radius: 50%;
+		animation: spin 0.6s linear infinite;
+	}
+
+	@keyframes spin {
+		to { transform: rotate(360deg); }
+	}
+
+	.error-message {
+		font-size: 0.8125rem;
+		color: #fecaca;
+		text-align: center;
+	}
+
+	.turnstile-container {
+		position: absolute;
+		overflow: hidden;
+		height: 0;
+		width: 0;
+	}
+
+	@media (prefers-reduced-motion: reduce) {
+		.spinner {
+			animation: none;
+		}
+	}
+</style>
diff --git a/frontend/src/routes/+page.svelte b/frontend/src/routes/+page.svelte
index 9aff7fd8..25ef7762 100644
--- a/frontend/src/routes/+page.svelte
+++ b/frontend/src/routes/+page.svelte
@@ -4,8 +4,9 @@
 	import type { PageData } from './$types';
 	import { onMount } from 'svelte';
 	import { browser } from '$app/environment';
-	import { navigating } from '$app/stores';
+	import { navigating, page } from '$app/stores';
 	import { t } from 'svelte-i18n';
+	import { brandName, isDemoMode } from '$lib/stores/plan';
 	import ProfileHero from '$components/public/ProfileHero.svelte';
 	import ProfileNav from '$components/public/ProfileNav.svelte';
 	import ExperienceSection from '$components/public/ExperienceSection.svelte';
@@ -16,6 +17,7 @@
 	import SkillsSection from '$components/public/SkillsSection.svelte';
 	import PostsSection from '$components/public/PostsSection.svelte';
 	import TalksSection from '$components/public/TalksSection.svelte';
+	import CoursesSection from '$components/public/CoursesSection.svelte';
 	import TestimonialsSection from '$components/public/TestimonialsSection.svelte';
 	import ContactMethodsList from '$components/public/ContactMethodsList.svelte';
 	import CustomContentSection from '$components/public/CustomContentSection.svelte';
@@ -26,7 +28,7 @@
 	import WelcomePage from '$components/public/WelcomePage.svelte';
 	import { ACCENT_COLORS, type AccentColor } from '$lib/colors';
 	import { getFontPack, DEFAULT_FONT_PACK } from '$lib/fonts';
-	import { pb, currentUser, performLogout } from '$lib/pocketbase';
+	import { pb, currentUser, performLogout, getSectionLayout as getDefaultSectionLayout } from '$lib/pocketbase';
 	import { generatePersonJsonLd, generateWebSiteJsonLd, serializeJsonLd, getCanonicalUrl, generateOpenGraphTags, type OpenGraphData } from '$lib/seo';
 	import { goto } from '$app/navigation';
 
@@ -38,7 +40,7 @@
 	// causing a brief frame where !data.profile && !isNavigating is true.
 	let hasHydratedData = $state(false);
 
-	const DEFAULT_SECTION_ORDER = ['experience', 'projects', 'education', 'certifications', 'awards', 'skills', 'posts', 'talks', 'testimonials', 'contacts'];
+	const DEFAULT_SECTION_ORDER = ['experience', 'projects', 'education', 'certifications', 'awards', 'skills', 'posts', 'talks', 'courses', 'testimonials', 'contacts'];
 
 	interface Props {
 		data: PageData;
@@ -59,7 +61,8 @@
 	let location = $derived(data.view?.hero_location || data.profile?.location);
 
 	// Generate JSON-LD and Open Graph for SEO
-	let baseUrl = $derived(browser ? window.location.origin : 'http://localhost:8080');
+	// Use APP_URL from server for correct https:// canonical URLs behind reverse proxy
+	let baseUrl = $derived($page.data.appUrl || $page.url.origin);
 	let personJsonLd = $derived(data.profile ? serializeJsonLd(generatePersonJsonLd(data.profile, baseUrl)) : null);
 	let websiteJsonLd = $derived(data.profile ? serializeJsonLd(generateWebSiteJsonLd(data.profile, baseUrl)) : null);
 	let canonicalUrl = $derived(getCanonicalUrl(baseUrl, ''));
@@ -95,6 +98,7 @@
 					case 'skills': return data.skills?.length > 0;
 					case 'posts': return data.posts?.length > 0;
 					case 'talks': return data.talks?.length > 0;
+					case 'courses': return data.courses?.length > 0;
 					case 'testimonials': return data.testimonials?.length > 0;
 					case 'contacts': return data.contacts?.length > 0;
 					default: return false;
@@ -151,7 +155,8 @@
 		if (data.homepageSections?.[sectionKey]?.layout) {
 			return data.homepageSections[sectionKey].layout;
 		}
-		return 'default';
+		// Use the section-specific default (e.g. 'wall' for testimonials, 'grouped' for certifications)
+		return getDefaultSectionLayout(sectionKey);
 	}
 
 	type ContactLayoutType = 'vertical' | 'horizontal' | 'grid';
@@ -209,7 +214,8 @@
 	}
 
 	function getFeaturedId(sectionKey: string): string | undefined {
-		return data.sectionFeaturedIds?.[sectionKey];
+		const val = data.sectionFeaturedIds?.[sectionKey];
+		return typeof val === 'string' ? val : undefined;
 	}
 
 	function getWidthClass(width: string): string {
@@ -224,6 +230,9 @@
 	let showPrintMenu = $state(false);
 	let showGenerateModal = $state(false);
 	let generating = $state(false);
+	let modalEl: HTMLDivElement | undefined = $state();
+	let printMenuTriggerEl: HTMLButtonElement | undefined = $state();
+	let previousActiveElement: HTMLElement | null = $state(null);
 	let aiPrintStatus = $state({
 		available: false,
 		ai_configured: false,
@@ -240,7 +249,7 @@
 
 	// Floating buttons visibility - hide when nav is pinned (sticky)
 	let navPinned = $state(false);
-	let sentinelEl: HTMLDivElement | null = null;
+	let sentinelEl: HTMLDivElement | null = $state(null);
 
 	// Apply view-specific accent color if default view has one
 	function applyAccentColor(colorName: AccentColor) {
@@ -401,6 +410,72 @@
 		showPrintMenu = false;
 	}
 
+	function closeGenerateModal() {
+		showGenerateModal = false;
+		generatedUrl = null;
+		// Restore focus to the element that triggered the modal
+		if (previousActiveElement && typeof previousActiveElement.focus === 'function') {
+			previousActiveElement.focus();
+		}
+	}
+
+	// Modal focus trap, Escape key, and body scroll lock
+	function handleModalKeydown(event: KeyboardEvent) {
+		if (!showGenerateModal) return;
+
+		if (event.key === 'Escape') {
+			event.preventDefault();
+			closeGenerateModal();
+			return;
+		}
+
+		if (event.key === 'Tab') {
+			const focusableElements = modalEl?.querySelectorAll<HTMLElement>(
+				'button:not([disabled]), [href], input:not([disabled]), select:not([disabled]), textarea:not([disabled]), [tabindex]:not([tabindex="-1"])'
+			);
+			if (!focusableElements?.length) return;
+
+			const firstElement = focusableElements[0];
+			const lastElement = focusableElements[focusableElements.length - 1];
+
+			if (event.shiftKey && document.activeElement === firstElement) {
+				event.preventDefault();
+				lastElement.focus();
+			} else if (!event.shiftKey && document.activeElement === lastElement) {
+				event.preventDefault();
+				firstElement.focus();
+			}
+		}
+	}
+
+	// Lock body scroll and manage focus when modal opens/closes
+	$effect(() => {
+		if (typeof document === 'undefined') return;
+		if (showGenerateModal) {
+			previousActiveElement = document.activeElement as HTMLElement;
+			document.body.style.overflow = 'hidden';
+			// Focus the first focusable element in the modal after render
+			requestAnimationFrame(() => {
+				const firstFocusable = modalEl?.querySelector<HTMLElement>(
+					'select, button:not([disabled]), [href], input:not([disabled])'
+				);
+				firstFocusable?.focus();
+			});
+		} else {
+			document.body.style.overflow = '';
+		}
+	});
+
+	// Print menu keyboard handler
+	function handlePrintMenuKeydown(event: KeyboardEvent) {
+		if (!showPrintMenu) return;
+		if (event.key === 'Escape') {
+			event.preventDefault();
+			closePrintMenu();
+			printMenuTriggerEl?.focus();
+		}
+	}
+
 	async function handleLogout() {
 		await performLogout();
 		window.location.href = '/admin/login';
@@ -408,7 +483,7 @@
 </script>
 
 <svelte:head>
-	<title>{data.profile?.name || 'Profile'} | Facet</title>
+	<title>{data.profile?.name || 'Profile'} | {$brandName}</title>
 	<meta name="description" content={headline || 'Personal profile and portfolio'} />
 
 	<!-- Canonical URL -->
@@ -430,20 +505,20 @@
 
 {#if data.homepageDisabled}
 	<!-- Profile exists but homepage is disabled - show landing message -->
-	<div class="min-h-screen bg-gray-50 dark:bg-gray-900 flex items-center justify-center px-4">
+	<div class="min-h-screen bg-stone-50 dark:bg-stone-900 flex items-center justify-center px-4">
 		<div class="fixed top-4 right-4 z-40 flex items-center gap-2 print:hidden">
 			<ThemeToggle />
 		</div>
-		<div class="max-w-2xl w-full bg-white dark:bg-gray-800 rounded-2xl shadow-lg border border-gray-200 dark:border-gray-700 p-8 text-center space-y-4">
-			<h1 class="text-2xl font-semibold text-gray-900 dark:text-white">{$t('public.homepage.profile_private')}</h1>
-			<p class="text-gray-600 dark:text-gray-300 leading-relaxed whitespace-pre-wrap">{landingMessage}</p>
-			<p class="text-sm text-gray-500 dark:text-gray-400">
+		<div class="max-w-2xl w-full bg-white dark:bg-stone-800 rounded-2xl shadow-lg border border-stone-200 dark:border-stone-700 p-8 text-center space-y-4">
+			<h1 class="text-2xl font-semibold text-stone-900 dark:text-white">{$t('public.homepage.profile_private')}</h1>
+			<p class="text-stone-600 dark:text-stone-300 leading-relaxed whitespace-pre-wrap">{landingMessage}</p>
+			<p class="text-sm text-stone-500 dark:text-stone-400">
 				{$t('public.homepage.views_accessible')}
 			</p>
 		</div>
 	</div>
 {:else if !data.profile && !data.experience?.length && !data.projects?.length && !isNavigating && !hasHydratedData}
-	<!-- First-time visitor: no profile exists yet (don't show during navigation transitions) -->
+	<!-- First-time visitor: no profile exists yet (don't show during navigation transitions or after data was already loaded) -->
 	<WelcomePage />
 {:else}
 <div class="min-h-screen">
@@ -455,26 +530,28 @@
 		<!-- Print Menu -->
 		<div class="relative">
 			<button
+				bind:this={printMenuTriggerEl}
 				onclick={() => showPrintMenu = !showPrintMenu}
-				class="p-2 rounded-lg bg-white/80 dark:bg-gray-800/80 backdrop-blur-sm shadow-sm border border-gray-200 dark:border-gray-700 hover:bg-gray-100 dark:hover:bg-gray-700 transition-colors"
+				class="p-2 rounded-lg bg-white/80 dark:bg-stone-800/80 backdrop-blur-sm shadow-sm border border-stone-200 dark:border-stone-700 hover:bg-stone-100 dark:hover:bg-stone-700 transition-colors"
 				title={$t('public.homepage.print_options')}
 				aria-label={$t('public.homepage.print_options')}
 				aria-expanded={showPrintMenu}
+				aria-haspopup="menu"
 			>
-				<svg class="w-5 h-5 text-gray-600 dark:text-gray-300" fill="none" viewBox="0 0 24 24" stroke="currentColor" stroke-width="2" aria-hidden="true">
+				<svg class="w-5 h-5 text-stone-600 dark:text-stone-300" fill="none" viewBox="0 0 24 24" stroke="currentColor" stroke-width="2" aria-hidden="true">
 					<path stroke-linecap="round" stroke-linejoin="round" d="M17 17h2a2 2 0 002-2v-4a2 2 0 00-2-2H5a2 2 0 00-2 2v4a2 2 0 002 2h2m2 4h6a2 2 0 002-2v-4a2 2 0 00-2-2H9a2 2 0 00-2 2v4a2 2 0 002 2zm8-12V5a2 2 0 00-2-2H9a2 2 0 00-2 2v4h10z" />
 				</svg>
 			</button>
 
 			{#if showPrintMenu}
-				<!-- svelte-ignore a11y_click_events_have_key_events, a11y_no_static_element_interactions -->
-				<div class="fixed inset-0" onclick={closePrintMenu}></div>
-				<div class="absolute right-0 mt-2 w-48 bg-white dark:bg-gray-800 rounded-lg shadow-lg border border-gray-200 dark:border-gray-700 py-1 z-50">
+				<div class="fixed inset-0" onclick={closePrintMenu} onkeydown={handlePrintMenuKeydown} role="presentation" tabindex="-1"></div>
+				<div class="absolute right-0 mt-2 w-48 bg-white dark:bg-stone-800 rounded-lg shadow-lg border border-stone-200 dark:border-stone-700 py-1 z-50" role="menu" onkeydown={handlePrintMenuKeydown}>
 					<button
 						onclick={() => { window.print(); closePrintMenu(); }}
-						class="w-full px-4 py-2 text-left text-sm text-gray-700 dark:text-gray-200 hover:bg-gray-100 dark:hover:bg-gray-700 flex items-center gap-2"
+						class="w-full px-4 py-2 text-left text-sm text-stone-700 dark:text-stone-200 hover:bg-stone-100 dark:hover:bg-stone-700 flex items-center gap-2"
+						role="menuitem"
 					>
-						<svg class="w-4 h-4" fill="none" viewBox="0 0 24 24" stroke="currentColor" stroke-width="2">
+						<svg class="w-4 h-4" fill="none" viewBox="0 0 24 24" stroke="currentColor" stroke-width="2" aria-hidden="true">
 							<path stroke-linecap="round" stroke-linejoin="round" d="M17 17h2a2 2 0 002-2v-4a2 2 0 00-2-2H5a2 2 0 00-2 2v4a2 2 0 002 2h2m2 4h6a2 2 0 002-2v-4a2 2 0 00-2-2H9a2 2 0 00-2 2v4a2 2 0 002 2zm8-12V5a2 2 0 00-2-2H9a2 2 0 00-2 2v4h10z" />
 						</svg>
 						{$t('public.homepage.simple_print')}
@@ -482,9 +559,10 @@
 					{#if aiPrintStatus.ai_configured && data.view?.slug}
 						<button
 							onclick={() => { showGenerateModal = true; closePrintMenu(); }}
-							class="w-full px-4 py-2 text-left text-sm text-gray-700 dark:text-gray-200 hover:bg-gray-100 dark:hover:bg-gray-700 flex items-center gap-2"
+							class="w-full px-4 py-2 text-left text-sm text-stone-700 dark:text-stone-200 hover:bg-stone-100 dark:hover:bg-stone-700 flex items-center gap-2"
+							role="menuitem"
 						>
-							<svg class="w-4 h-4" fill="none" viewBox="0 0 24 24" stroke="currentColor" stroke-width="2">
+							<svg class="w-4 h-4" fill="none" viewBox="0 0 24 24" stroke="currentColor" stroke-width="2" aria-hidden="true">
 								<path stroke-linecap="round" stroke-linejoin="round" d="M9 12h6m-6 4h6m2 5H7a2 2 0 01-2-2V5a2 2 0 012-2h5.586a1 1 0 01.707.293l5.414 5.414a1 1 0 01.293.707V19a2 2 0 01-2 2z" />
 							</svg>
 							{$t('public.homepage.ai_resume')}
@@ -496,11 +574,11 @@
 
 		<!-- Login button - for demo users, auto-logout and go to login page -->
 		<!-- Always show on first-time screen, even if hide setting is enabled -->
-		{#if !data.hideLoginButton || (!data.profile?.name && data.experience.length === 0 && data.projects.length === 0)}
+		{#if !$isDemoMode && (!data.hideLoginButton || (!data.profile?.name && data.experience.length === 0 && data.projects.length === 0))}
 			{#if $currentUser}
 				<button
 					onclick={handleLogout}
-					class="px-3 py-2 rounded-lg bg-white/80 dark:bg-gray-800/80 backdrop-blur-sm shadow-sm border border-gray-200 dark:border-gray-700 hover:bg-gray-100 dark:hover:bg-gray-700 transition-colors text-sm font-medium text-gray-700 dark:text-gray-300"
+					class="px-3 py-2 rounded-lg bg-white/80 dark:bg-stone-800/80 backdrop-blur-sm shadow-sm border border-stone-200 dark:border-stone-700 hover:bg-stone-100 dark:hover:bg-stone-700 transition-colors text-sm font-medium text-stone-700 dark:text-stone-300"
 					title={$t('public.homepage.log_in_account')}
 					aria-label={$t('public.homepage.log_in_account')}
 				>
@@ -509,7 +587,7 @@
 			{:else}
 				<a
 					href="/admin/login"
-					class="px-3 py-2 rounded-lg bg-white/80 dark:bg-gray-800/80 backdrop-blur-sm shadow-sm border border-gray-200 dark:border-gray-700 hover:bg-gray-100 dark:hover:bg-gray-700 transition-colors text-sm font-medium text-gray-700 dark:text-gray-300"
+					class="px-3 py-2 rounded-lg bg-white/80 dark:bg-stone-800/80 backdrop-blur-sm shadow-sm border border-stone-200 dark:border-stone-700 hover:bg-stone-100 dark:hover:bg-stone-700 transition-colors text-sm font-medium text-stone-700 dark:text-stone-300"
 					title={$t('public.homepage.log_in')}
 					aria-label={$t('public.homepage.log_in')}
 				>
@@ -557,6 +635,7 @@
 		hasSkills={data.skills.length > 0}
 		hasPosts={data.posts && data.posts.length > 0}
 		hasTalks={data.talks && data.talks.length > 0}
+		hasCourses={data.courses && data.courses.length > 0}
 		hasTestimonials={data.testimonials && data.testimonials.length > 0}
 		hasContacts={data.contacts && data.contacts.length > 0}
 		viewSlug=""
@@ -569,7 +648,7 @@
 		{#if !data.profile?.name && data.experience.length === 0 && data.projects.length === 0}
 			<!-- Empty profile state -->
 			<div class="text-center py-16">
-				<p class="text-gray-500 dark:text-gray-400 text-lg">
+				<p class="text-stone-500 dark:text-stone-400 text-lg">
 					{$t('public.homepage.profile_setup')}
 				</p>
 			</div>
@@ -634,6 +713,8 @@
 						<!-- Note: Don't pass viewSlug - we're on root page, back navigation should go to "/" -->
 						<TalksSection items={data.talks} layout={getSectionLayout('talks')} viewSlug="" />
 					{/if}
+				{:else if sectionKey === 'courses' && data.courses && data.courses.length > 0}
+					<CoursesSection items={data.courses} layout={getSectionLayout('courses') as 'grid-3' | 'grid-2' | 'list' | 'featured'} viewSlug="" />
 				{:else if sectionKey === 'testimonials' && data.testimonials && data.testimonials.length > 0}
 					<TestimonialsSection items={data.testimonials} layout={getSectionLayout('testimonials') as 'wall' | 'carousel' | 'featured'} featuredId={getFeaturedId('testimonials')} />
 				{:else if sectionKey === 'contacts' && data.contacts && data.contacts.length > 0}
@@ -655,22 +736,32 @@
 	<!-- ATS-optimized hidden content for resume parsing (placed at end to avoid blank first page) -->
 	<ATSContent
 		profile={data.profile}
-		experience={data.sections?.experience}
-		education={data.sections?.education}
-		skills={data.sections?.skills}
-		contacts={data.sections?.contacts}
-		certifications={data.sections?.certifications}
+		experience={data.experience}
+		education={data.education}
+		skills={data.skills}
+		contacts={data.contacts}
+		certifications={data.certifications}
 	/>
 </div>
 
 <!-- AI Resume Generation Modal -->
 {#if showGenerateModal}
-	<!-- svelte-ignore a11y_click_events_have_key_events, a11y_no_static_element_interactions -->
-	<div class="fixed inset-0 bg-black/50 flex items-center justify-center z-50 print:hidden" onclick={self(() => showGenerateModal = false)}>
-		<div class="bg-white dark:bg-gray-800 rounded-lg shadow-xl max-w-md w-full mx-4 overflow-hidden">
-			<div class="p-4 border-b border-gray-200 dark:border-gray-700">
-				<h2 class="text-lg font-semibold text-gray-900 dark:text-white">{$t('public.ai_resume.title')}</h2>
-				<p class="text-sm text-gray-500 dark:text-gray-400 mt-1">
+	<div
+		class="fixed inset-0 bg-black/50 flex items-center justify-center z-50 print:hidden"
+		onclick={self(closeGenerateModal)}
+		onkeydown={handleModalKeydown}
+		role="presentation"
+	>
+		<div
+			bind:this={modalEl}
+			role="dialog"
+			aria-modal="true"
+			aria-labelledby="ai-resume-modal-title"
+			class="bg-white dark:bg-stone-800 rounded-lg shadow-xl max-w-md w-full mx-4 overflow-hidden"
+		>
+			<div class="p-4 border-b border-stone-200 dark:border-stone-700">
+				<h2 id="ai-resume-modal-title" class="text-lg font-semibold text-stone-900 dark:text-white">{$t('public.ai_resume.title')}</h2>
+				<p class="text-sm text-stone-500 dark:text-stone-400 mt-1">
 					{$t('public.ai_resume.description')}
 				</p>
 			</div>
@@ -689,7 +780,7 @@
 					</div>
 				{:else}
 					<div>
-						<label for="format" class="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-1">{$t('public.ai_resume.format')}</label>
+						<label for="format" class="block text-sm font-medium text-stone-700 dark:text-stone-300 mb-1">{$t('public.ai_resume.format')}</label>
 						<select id="format" bind:value={generationConfig.format} class="input">
 							<option value="pdf">{$t('public.ai_resume.format_pdf')}</option>
 							<option value="docx">{$t('public.ai_resume.format_word')}</option>
@@ -697,7 +788,7 @@
 					</div>
 
 					<div>
-						<label for="style" class="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-1">{$t('public.ai_resume.style')}</label>
+						<label for="style" class="block text-sm font-medium text-stone-700 dark:text-stone-300 mb-1">{$t('public.ai_resume.style')}</label>
 						<select id="style" bind:value={generationConfig.style} class="input">
 							<option value="chronological">{$t('public.ai_resume.style_chronological')}</option>
 							<option value="functional">{$t('public.ai_resume.style_functional')}</option>
@@ -706,7 +797,7 @@
 					</div>
 
 					<div>
-						<label for="length" class="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-1">{$t('public.ai_resume.length')}</label>
+						<label for="length" class="block text-sm font-medium text-stone-700 dark:text-stone-300 mb-1">{$t('public.ai_resume.length')}</label>
 						<select id="length" bind:value={generationConfig.length} class="input">
 							<option value="one-page">{$t('public.ai_resume.length_one')}</option>
 							<option value="two-page">{$t('public.ai_resume.length_two')}</option>
@@ -716,11 +807,11 @@
 				{/if}
 			</div>
 
-			<div class="p-4 border-t border-gray-200 dark:border-gray-700 flex justify-end gap-2">
+			<div class="p-4 border-t border-stone-200 dark:border-stone-700 flex justify-end gap-2">
 				<button
 					type="button"
 					class="btn btn-ghost"
-					onclick={() => { showGenerateModal = false; generatedUrl = null; }}
+					onclick={closeGenerateModal}
 				>
 					{generatedUrl ? $t('shared.close') : $t('shared.cancel')}
 				</button>
@@ -732,7 +823,7 @@
 						disabled={generating}
 					>
 						{#if generating}
-							<svg class="animate-spin -ml-1 mr-2 h-4 w-4" fill="none" viewBox="0 0 24 24">
+							<svg class="animate-spin -ml-1 mr-2 h-4 w-4" fill="none" viewBox="0 0 24 24" aria-hidden="true">
 								<circle class="opacity-25" cx="12" cy="12" r="10" stroke="currentColor" stroke-width="4"></circle>
 								<path class="opacity-75" fill="currentColor" d="M4 12a8 8 0 018-8V0C5.373 0 0 5.373 0 12h4zm2 5.291A7.962 7.962 0 014 12H0c0 3.042 1.135 5.824 3 7.938l3-2.647z"></path>
 							</svg>
diff --git a/frontend/src/routes/[slug=slug]/+page.svelte b/frontend/src/routes/[slug=slug]/+page.svelte
index 1a2f0df3..ede8ef70 100644
--- a/frontend/src/routes/[slug=slug]/+page.svelte
+++ b/frontend/src/routes/[slug=slug]/+page.svelte
@@ -5,7 +5,7 @@
 	import type { PageData } from './$types';
 	import { enhance } from '$app/forms';
 	import { invalidateAll } from '$app/navigation';
-	import { navigating } from '$app/stores';
+	import { navigating, page } from '$app/stores';
 	import { onMount } from 'svelte';
 	import { browser } from '$app/environment';
 	import ProfileHero from '$components/public/ProfileHero.svelte';
@@ -18,9 +18,12 @@
 	import SkillsSection from '$components/public/SkillsSection.svelte';
 	import PostsSection from '$components/public/PostsSection.svelte';
 	import TalksSection from '$components/public/TalksSection.svelte';
+	import CoursesSection from '$components/public/CoursesSection.svelte';
 	import TestimonialsSection from '$components/public/TestimonialsSection.svelte';
 	import ContactMethodsList from '$components/public/ContactMethodsList.svelte';
 	import CustomContentSection from '$components/public/CustomContentSection.svelte';
+	import NewsletterSection from '$components/public/NewsletterSection.svelte';
+	import { checkFeature } from '$lib/stores/plan';
 	import SiteNav from '$components/public/SiteNav.svelte';
 	import ATSContent from '$components/public/ATSContent.svelte';
 
@@ -34,7 +37,7 @@
 	import PasswordPrompt from '$components/public/PasswordPrompt.svelte';
 	import { ACCENT_COLORS, type AccentColor } from '$lib/colors';
 	import { getFontPack, DEFAULT_FONT_PACK } from '$lib/fonts';
-	import { pb } from '$lib/pocketbase';
+	import { pb, getSectionLayout as getDefaultSectionLayout } from '$lib/pocketbase';
 	import { generatePersonJsonLd, serializeJsonLd } from '$lib/seo';
 
 	interface Props {
@@ -53,6 +56,9 @@
 	let showPrintMenu = $state(false);
 	let showGenerateModal = $state(false);
 	let generating = $state(false);
+	let modalEl: HTMLDivElement | undefined = $state();
+	let printMenuTriggerEl: HTMLButtonElement | undefined = $state();
+	let previousActiveElement: HTMLElement | null = $state(null);
 	let aiPrintStatus = $state({
 		available: false,
 		ai_configured: false,
@@ -68,7 +74,7 @@
 
 	// Floating buttons visibility - hide when nav is pinned (sticky)
 	let navPinned = $state(false);
-	let sentinelEl: HTMLDivElement | null = null;
+	let sentinelEl: HTMLDivElement | null = $state(null);
 
 	// Apply view-specific accent color (or profile default)
 	function applyAccentColor(colorName: AccentColor) {
@@ -92,8 +98,11 @@
 	}
 
 	onMount(() => {
-		// View accent color takes priority over profile accent color
-		const accentColor = data.view?.accent_color || data.profile?.accent_color;
+		// In site-mode, use profile accent for visual coherence across Facet tabs.
+		// View accent only applies when site nav is off or view has an explicit override.
+		const accentColor = (data.siteNavEnabled && !data.view?.accent_color)
+			? data.profile?.accent_color
+			: (data.view?.accent_color || data.profile?.accent_color);
 		if (accentColor) {
 			applyAccentColor(accentColor as AccentColor);
 		}
@@ -108,6 +117,7 @@
 			root.style.setProperty('--font-heading', `'${pack.heading}', ${pack.headingFallback}`);
 			root.style.setProperty('--font-body', `'${pack.body}', ${pack.bodyFallback}`);
 			root.style.setProperty('--font-code', `'${pack.code}', ${pack.codeFallback}`);
+			// Load Google Fonts
 			const existing = document.getElementById('view-google-fonts');
 			if (existing) existing.remove();
 			const link = document.createElement('link');
@@ -220,6 +230,70 @@
 		showPrintMenu = false;
 	}
 
+	function closeGenerateModal() {
+		showGenerateModal = false;
+		generatedUrl = null;
+		if (previousActiveElement && typeof previousActiveElement.focus === 'function') {
+			previousActiveElement.focus();
+		}
+	}
+
+	// Modal focus trap, Escape key, and body scroll lock
+	function handleModalKeydown(event: KeyboardEvent) {
+		if (!showGenerateModal) return;
+
+		if (event.key === 'Escape') {
+			event.preventDefault();
+			closeGenerateModal();
+			return;
+		}
+
+		if (event.key === 'Tab') {
+			const focusableElements = modalEl?.querySelectorAll<HTMLElement>(
+				'button:not([disabled]), [href], input:not([disabled]), select:not([disabled]), textarea:not([disabled]), [tabindex]:not([tabindex="-1"])'
+			);
+			if (!focusableElements?.length) return;
+
+			const firstElement = focusableElements[0];
+			const lastElement = focusableElements[focusableElements.length - 1];
+
+			if (event.shiftKey && document.activeElement === firstElement) {
+				event.preventDefault();
+				lastElement.focus();
+			} else if (!event.shiftKey && document.activeElement === lastElement) {
+				event.preventDefault();
+				firstElement.focus();
+			}
+		}
+	}
+
+	// Lock body scroll and manage focus when modal opens/closes
+	$effect(() => {
+		if (typeof document === 'undefined') return;
+		if (showGenerateModal) {
+			previousActiveElement = document.activeElement as HTMLElement;
+			document.body.style.overflow = 'hidden';
+			requestAnimationFrame(() => {
+				const firstFocusable = modalEl?.querySelector<HTMLElement>(
+					'select, button:not([disabled]), [href], input:not([disabled])'
+				);
+				firstFocusable?.focus();
+			});
+		} else {
+			document.body.style.overflow = '';
+		}
+	});
+
+	// Print menu keyboard handler
+	function handlePrintMenuKeydown(event: KeyboardEvent) {
+		if (!showPrintMenu) return;
+		if (event.key === 'Escape') {
+			event.preventDefault();
+			closePrintMenu();
+			printMenuTriggerEl?.focus();
+		}
+	}
+
 	// Default section order (fallback when no custom order is specified)
 	const DEFAULT_SECTION_ORDER = ['experience', 'projects', 'education', 'certifications', 'awards', 'skills', 'posts', 'talks', 'testimonials', 'contacts'];
 
@@ -245,7 +319,11 @@
 
 	// Get layout for a section (from API response or default)
 	function getSectionLayout(sectionKey: string): string {
-		return data.sectionLayouts?.[sectionKey] || 'default';
+		if (data.sectionLayouts?.[sectionKey]) {
+			return data.sectionLayouts[sectionKey];
+		}
+		// Use the section-specific default (e.g. 'wall' for testimonials, 'grouped' for certifications)
+		return getDefaultSectionLayout(sectionKey);
 	}
 
 	type ContactLayoutType = 'vertical' | 'horizontal' | 'grid';
@@ -302,9 +380,8 @@
 
 <svelte:head>
 	<title>{data.view?.name || 'View'} | {data.profile?.name || 'Profile'}</title>
-	<meta name="description" content={data.view?.hero_headline || data.profile?.headline || ''} />
-	<!-- Canonical URL is /<slug> -->
-	<link rel="canonical" href="/{data.view?.slug}" />
+	<meta name="description" content={data.view?.hero_summary || data.profile?.summary || data.view?.hero_headline || data.profile?.headline || ''} />
+	<link rel="canonical" href="{$page.data.appUrl || $page.url.origin}/{data.view?.slug}" />
 	<!-- JSON-LD structured data for SEO -->
 	{#if personJsonLd}
 		{@html `<script type="application/ld+json">${personJsonLd}</script>`}
@@ -338,8 +415,8 @@
 	<!-- Only show "Not Found" when not navigating (prevents flash during transitions) -->
 	<div class="min-h-screen flex items-center justify-center">
 		<div class="text-center">
-			<h1 class="text-4xl font-bold text-gray-900 dark:text-white mb-4">Not Found</h1>
-			<p class="text-gray-600 dark:text-gray-400">This page doesn't exist.</p>
+			<h1 class="text-4xl font-bold text-stone-900 dark:text-white mb-4">Not Found</h1>
+			<p class="text-stone-600 dark:text-stone-400">This page doesn't exist.</p>
 			<a href="/" class="mt-4 inline-block btn btn-primary">Go Home</a>
 		</div>
 	</div>
@@ -353,26 +430,28 @@
 			<!-- Print Menu -->
 			<div class="relative">
 				<button
+					bind:this={printMenuTriggerEl}
 					onclick={() => showPrintMenu = !showPrintMenu}
-					class="p-2 rounded-lg bg-white/80 dark:bg-gray-800/80 backdrop-blur-sm shadow-sm border border-gray-200 dark:border-gray-700 hover:bg-gray-100 dark:hover:bg-gray-700 transition-colors"
+					class="p-2 rounded-lg bg-white/80 dark:bg-stone-800/80 backdrop-blur-sm shadow-sm border border-stone-200 dark:border-stone-700 hover:bg-stone-100 dark:hover:bg-stone-700 transition-colors"
 					title="Print options"
 					aria-label={$t('public.aria.print_options')}
 					aria-expanded={showPrintMenu}
+					aria-haspopup="menu"
 				>
-					<svg class="w-5 h-5 text-gray-600 dark:text-gray-300" fill="none" viewBox="0 0 24 24" stroke="currentColor" stroke-width="2" aria-hidden="true">
+					<svg class="w-5 h-5 text-stone-600 dark:text-stone-300" fill="none" viewBox="0 0 24 24" stroke="currentColor" stroke-width="2" aria-hidden="true">
 						<path stroke-linecap="round" stroke-linejoin="round" d="M17 17h2a2 2 0 002-2v-4a2 2 0 00-2-2H5a2 2 0 00-2 2v4a2 2 0 002 2h2m2 4h6a2 2 0 002-2v-4a2 2 0 00-2-2H9a2 2 0 00-2 2v4a2 2 0 002 2zm8-12V5a2 2 0 00-2-2H9a2 2 0 00-2 2v4h10z" />
 					</svg>
 				</button>
 
 				{#if showPrintMenu}
-					<!-- svelte-ignore a11y_click_events_have_key_events, a11y_no_static_element_interactions -->
-					<div class="fixed inset-0" onclick={closePrintMenu}></div>
-					<div class="absolute right-0 mt-2 w-48 bg-white dark:bg-gray-800 rounded-lg shadow-lg border border-gray-200 dark:border-gray-700 py-1 z-50">
+					<div class="fixed inset-0" onclick={closePrintMenu} onkeydown={handlePrintMenuKeydown} role="presentation" tabindex="-1"></div>
+					<div class="absolute right-0 mt-2 w-48 bg-white dark:bg-stone-800 rounded-lg shadow-lg border border-stone-200 dark:border-stone-700 py-1 z-50" role="menu" onkeydown={handlePrintMenuKeydown}>
 						<button
 							onclick={() => { window.print(); closePrintMenu(); }}
-							class="w-full px-4 py-2 text-left text-sm text-gray-700 dark:text-gray-200 hover:bg-gray-100 dark:hover:bg-gray-700 flex items-center gap-2"
+							class="w-full px-4 py-2 text-left text-sm text-stone-700 dark:text-stone-200 hover:bg-stone-100 dark:hover:bg-stone-700 flex items-center gap-2"
+							role="menuitem"
 						>
-							<svg class="w-4 h-4" fill="none" viewBox="0 0 24 24" stroke="currentColor" stroke-width="2">
+							<svg class="w-4 h-4" fill="none" viewBox="0 0 24 24" stroke="currentColor" stroke-width="2" aria-hidden="true">
 								<path stroke-linecap="round" stroke-linejoin="round" d="M17 17h2a2 2 0 002-2v-4a2 2 0 00-2-2H5a2 2 0 00-2 2v4a2 2 0 002 2h2m2 4h6a2 2 0 002-2v-4a2 2 0 00-2-2H9a2 2 0 00-2 2v4a2 2 0 002 2zm8-12V5a2 2 0 00-2-2H9a2 2 0 00-2 2v4h10z" />
 							</svg>
 							Simple Print
@@ -380,9 +459,10 @@
 						{#if aiPrintStatus.ai_configured}
 							<button
 								onclick={() => { showGenerateModal = true; closePrintMenu(); }}
-								class="w-full px-4 py-2 text-left text-sm text-gray-700 dark:text-gray-200 hover:bg-gray-100 dark:hover:bg-gray-700 flex items-center gap-2"
+								class="w-full px-4 py-2 text-left text-sm text-stone-700 dark:text-stone-200 hover:bg-stone-100 dark:hover:bg-stone-700 flex items-center gap-2"
+								role="menuitem"
 							>
-								<svg class="w-4 h-4" fill="none" viewBox="0 0 24 24" stroke="currentColor" stroke-width="2">
+								<svg class="w-4 h-4" fill="none" viewBox="0 0 24 24" stroke="currentColor" stroke-width="2" aria-hidden="true">
 									<path stroke-linecap="round" stroke-linejoin="round" d="M9 12h6m-6 4h6m2 5H7a2 2 0 01-2-2V5a2 2 0 012-2h5.586a1 1 0 01.707.293l5.414 5.414a1 1 0 01.293.707V19a2 2 0 01-2 2z" />
 								</svg>
 								AI Resume
@@ -402,11 +482,11 @@
 			{#if pb.authStore.isValid}
 				<a
 					href="/admin"
-					class="p-2 rounded-lg bg-white/80 dark:bg-gray-800/80 backdrop-blur-sm shadow-sm border border-gray-200 dark:border-gray-700 hover:bg-gray-100 dark:hover:bg-gray-700 transition-colors"
+					class="p-2 rounded-lg bg-white/80 dark:bg-stone-800/80 backdrop-blur-sm shadow-sm border border-stone-200 dark:border-stone-700 hover:bg-stone-100 dark:hover:bg-stone-700 transition-colors"
 					title="Go to Admin"
 					aria-label={$t('public.aria.go_to_admin')}
 				>
-					<svg class="w-5 h-5 text-gray-600 dark:text-gray-300" fill="none" viewBox="0 0 24 24" stroke="currentColor" stroke-width="2">
+					<svg class="w-5 h-5 text-stone-600 dark:text-stone-300" fill="none" viewBox="0 0 24 24" stroke="currentColor" stroke-width="2">
 						<path stroke-linecap="round" stroke-linejoin="round" d="M10.325 4.317c.426-1.756 2.924-1.756 3.35 0a1.724 1.724 0 002.573 1.066c1.543-.94 3.31.826 2.37 2.37a1.724 1.724 0 001.065 2.572c1.756.426 1.756 2.924 0 3.35a1.724 1.724 0 00-1.066 2.573c.94 1.543-.826 3.31-2.37 2.37a1.724 1.724 0 00-2.572 1.065c-.426 1.756-2.924 1.756-3.35 0a1.724 1.724 0 00-2.573-1.066c-1.543.94-3.31-.826-2.37-2.37a1.724 1.724 0 00-1.065-2.572c-1.756-.426-1.756-2.924 0-3.35a1.724 1.724 0 001.066-2.573c-.94-1.543.826-3.31 2.37-2.37.996.608 2.296.07 2.572-1.065z" />
 						<path stroke-linecap="round" stroke-linejoin="round" d="M15 12a3 3 0 11-6 0 3 3 0 016 0z" />
 					</svg>
@@ -446,7 +526,7 @@
 						href={data.view.cta_url}
 						target="_blank"
 						rel="noopener noreferrer"
-						class="btn bg-white text-primary-600 hover:bg-gray-100"
+						class="btn bg-white text-primary-600 hover:bg-stone-100"
 					>
 						{data.view.cta_button_text || 'Learn More'}
 					</a>
@@ -470,8 +550,10 @@
 			hasSkills={data.sections?.skills?.length > 0}
 			hasPosts={data.sections?.posts?.length > 0}
 			hasTalks={data.sections?.talks?.length > 0}
+			hasCourses={data.sections?.courses?.length > 0}
 			hasTestimonials={data.sections?.testimonials?.length > 0}
 			hasContacts={data.sections?.contacts?.length > 0}
+			hasNewsletter={effectiveSectionOrder.includes('newsletter') && checkFeature('newsletter')}
 			viewSlug={data.view?.slug || ''}
 			sectionOrder={effectiveSectionOrder}
 			customContent={customContentForNav}
@@ -548,6 +630,10 @@
 								<TalksSection items={data.sections.talks} layout={getSectionLayout('talks')} viewSlug={data.view?.slug || ''} />
 							{/if}
 						</div>
+					{:else if sectionKey === 'courses' && data.sections?.courses?.length > 0}
+						<div class={getWidthClass(getSectionWidth('courses'))}>
+							<CoursesSection items={data.sections.courses} layout={getSectionLayout('courses') as 'grid-3' | 'grid-2' | 'list' | 'featured'} viewSlug={data.view?.slug || ''} />
+						</div>
 					{:else if sectionKey === 'testimonials' && data.sections?.testimonials?.length > 0}
 						<div class={getWidthClass(getSectionWidth('testimonials'))}>
 							<TestimonialsSection items={data.sections.testimonials} layout={getSectionLayout('testimonials') as 'wall' | 'carousel' | 'featured'} featuredId={getFeaturedId('testimonials')} />
@@ -556,6 +642,10 @@
 						<div class={getWidthClass(getSectionWidth('contacts'))}>
 							<ContactMethodsList contacts={data.sections.contacts} viewId={data.view?.id || ''} layout={getContactLayout()} />
 						</div>
+					{:else if sectionKey === 'newsletter' && checkFeature('newsletter')}
+						<div class={getWidthClass(getSectionWidth('newsletter'))}>
+							<NewsletterSection viewSlug={data.view?.slug || ''} />
+						</div>
 					{:else if isCustomSection(sectionKey) && data.sections?.[sectionKey]?.[0]}
 						<div class={getWidthClass(getSectionWidth(sectionKey))}>
 							<CustomContentSection item={data.sections[sectionKey][0]} layout={getSectionLayout(sectionKey)} />
@@ -581,12 +671,22 @@
 
 <!-- AI Resume Generation Modal -->
 {#if showGenerateModal}
-	<!-- svelte-ignore a11y_click_events_have_key_events, a11y_no_static_element_interactions -->
-	<div class="fixed inset-0 bg-black/50 flex items-center justify-center z-50 print:hidden" onclick={self(() => showGenerateModal = false)}>
-		<div class="bg-white dark:bg-gray-800 rounded-lg shadow-xl max-w-md w-full mx-4 overflow-hidden">
-			<div class="p-4 border-b border-gray-200 dark:border-gray-700">
-				<h2 class="text-lg font-semibold text-gray-900 dark:text-white">Generate AI Resume</h2>
-				<p class="text-sm text-gray-500 dark:text-gray-400 mt-1">
+	<div
+		class="fixed inset-0 bg-black/50 flex items-center justify-center z-50 print:hidden"
+		onclick={self(closeGenerateModal)}
+		onkeydown={handleModalKeydown}
+		role="presentation"
+	>
+		<div
+			bind:this={modalEl}
+			role="dialog"
+			aria-modal="true"
+			aria-labelledby="ai-resume-modal-title"
+			class="bg-white dark:bg-stone-800 rounded-lg shadow-xl max-w-md w-full mx-4 overflow-hidden"
+		>
+			<div class="p-4 border-b border-stone-200 dark:border-stone-700">
+				<h2 id="ai-resume-modal-title" class="text-lg font-semibold text-stone-900 dark:text-white">Generate AI Resume</h2>
+				<p class="text-sm text-stone-500 dark:text-stone-400 mt-1">
 					Create a professionally formatted resume from this view.
 				</p>
 			</div>
@@ -605,7 +705,7 @@
 					</div>
 				{:else}
 					<div>
-						<label for="format" class="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-1">Format</label>
+						<label for="format" class="block text-sm font-medium text-stone-700 dark:text-stone-300 mb-1">Format</label>
 						<select id="format" bind:value={generationConfig.format} class="input">
 							<option value="pdf">PDF</option>
 							<option value="docx">Word Document</option>
@@ -613,7 +713,7 @@
 					</div>
 
 					<div>
-						<label for="style" class="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-1">Style</label>
+						<label for="style" class="block text-sm font-medium text-stone-700 dark:text-stone-300 mb-1">Style</label>
 						<select id="style" bind:value={generationConfig.style} class="input">
 							<option value="chronological">Chronological</option>
 							<option value="functional">Functional</option>
@@ -622,7 +722,7 @@
 					</div>
 
 					<div>
-						<label for="length" class="block text-sm font-medium text-gray-700 dark:text-gray-300 mb-1">Length</label>
+						<label for="length" class="block text-sm font-medium text-stone-700 dark:text-stone-300 mb-1">Length</label>
 						<select id="length" bind:value={generationConfig.length} class="input">
 							<option value="one-page">One Page</option>
 							<option value="two-page">Two Pages</option>
@@ -632,11 +732,11 @@
 				{/if}
 			</div>
 
-			<div class="p-4 border-t border-gray-200 dark:border-gray-700 flex justify-end gap-2">
+			<div class="p-4 border-t border-stone-200 dark:border-stone-700 flex justify-end gap-2">
 				<button
 					type="button"
 					class="btn btn-ghost"
-					onclick={() => { showGenerateModal = false; generatedUrl = null; }}
+					onclick={closeGenerateModal}
 				>
 					{generatedUrl ? 'Close' : 'Cancel'}
 				</button>
@@ -648,7 +748,7 @@
 						disabled={generating}
 					>
 						{#if generating}
-							<svg class="animate-spin -ml-1 mr-2 h-4 w-4" fill="none" viewBox="0 0 24 24">
+							<svg class="animate-spin -ml-1 mr-2 h-4 w-4" fill="none" viewBox="0 0 24 24" aria-hidden="true">
 								<circle class="opacity-25" cx="12" cy="12" r="10" stroke="currentColor" stroke-width="4"></circle>
 								<path class="opacity-75" fill="currentColor" d="M4 12a8 8 0 018-8V0C5.373 0 0 5.373 0 12h4zm2 5.291A7.962 7.962 0 014 12H0c0 3.042 1.135 5.824 3 7.938l3-2.647z"></path>
 							</svg>

From 8cca1bb3ebd12076c7e72210a423f2b9971b8019 Mon Sep 17 00:00:00 2001
From: Jed Esposito <jed@theansible.net>
Date: Mon, 30 Mar 2026 15:58:16 +1300
Subject: [PATCH 6/7] fix: remove maintenance mode heredoc that breaks Caddy
 parser

The CSS '* {' inside the heredoc HTML was interpreted by Caddy as a
block opener, causing parse failure on line 59.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 docker/Caddyfile | 68 ------------------------------------------------
 1 file changed, 68 deletions(-)

diff --git a/docker/Caddyfile b/docker/Caddyfile
index 0d59231c..d09d5acb 100644
--- a/docker/Caddyfile
+++ b/docker/Caddyfile
@@ -38,74 +38,6 @@
         # - CSP nonce-based: Would allow removing 'unsafe-inline'; requires SSR nonce injection
     }
 
-    # =========================================================================
-    # Maintenance mode: serve a branded 503 page for all requests except /api/health
-    # Activated by setting FACET_MAINTENANCE_MODE=true
-    # =========================================================================
-    @maintenance expression `{env.FACET_MAINTENANCE_MODE} == "true"`
-    @not_health not path /api/health
-
-    handle @maintenance {
-        handle @not_health {
-            header Content-Type "text/html; charset=utf-8"
-            respond 503 <<HTML
-<!DOCTYPE html>
-<html lang="en">
-<head>
-  <meta charset="utf-8">
-  <meta name="viewport" content="width=device-width, initial-scale=1.0">
-  <title>Maintenance — Facet</title>
-  <style>
-    * { margin: 0; padding: 0; box-sizing: border-box; }
-    body {
-      font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Helvetica, Arial, sans-serif;
-      background-color: #f6f6f6;
-      color: #1a1a1a;
-      display: flex;
-      align-items: center;
-      justify-content: center;
-      min-height: 100vh;
-    }
-    .container {
-      text-align: center;
-      max-width: 480px;
-      padding: 48px 24px;
-    }
-    .logo {
-      display: inline-block;
-      background-color: #2563eb;
-      color: #ffffff;
-      font-size: 18px;
-      font-weight: 700;
-      padding: 10px 24px;
-      border-radius: 8px;
-      margin-bottom: 32px;
-    }
-    h1 {
-      font-size: 28px;
-      font-weight: 700;
-      margin-bottom: 16px;
-      color: #1a1a1a;
-    }
-    p {
-      font-size: 16px;
-      line-height: 1.6;
-      color: #4b5563;
-    }
-  </style>
-</head>
-<body>
-  <div class="container">
-    <div class="logo">Facet</div>
-    <h1>We'll be right back</h1>
-    <p>We're performing scheduled maintenance. Your data is safe and we'll be back shortly.</p>
-  </div>
-</body>
-</html>
-HTML
-        }
-    }
-
     # Request body size limit
     request_body {
         max_size 25MB

From cc6fda4c3f9e4e1c8bbd87f7101f2a55d600fa9f Mon Sep 17 00:00:00 2001
From: Jed Esposito <jed@theansible.net>
Date: Mon, 30 Mar 2026 16:14:03 +1300
Subject: [PATCH 7/7] fix: bypass rate limiting for X-Internal SSR requests

Root cause of rapid-click 404s and WelcomePage: SSR fetches to
/api/homepage were getting 429 Too Many Requests from PocketBase's
rate limiter. The X-Internal header was only bypassing analytics
tracking, not rate limiting.

Server logs showed: [ROOT PAGE] Homepage API error: 429 {"error":"too many requests"}

This caused the homepage server load to return profile:null,
which the template correctly interpreted as "first time setup."

Fix: skip rate limiting entirely when X-Internal: true is present.
Caddy strips this header from external requests, so only same-container
SSR fetches can use it.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 backend/hooks/ratelimit.go | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/backend/hooks/ratelimit.go b/backend/hooks/ratelimit.go
index f5bab695..cc792517 100644
--- a/backend/hooks/ratelimit.go
+++ b/backend/hooks/ratelimit.go
@@ -20,6 +20,11 @@ import (
 func RateLimitMiddleware(rl *services.RateLimitService, tier string) func(func(*core.RequestEvent) error) func(*core.RequestEvent) error {
 	return func(handler func(*core.RequestEvent) error) func(*core.RequestEvent) error {
 		return func(e *core.RequestEvent) error {
+			// Bypass rate limiting for SSR internal requests (same-container fetch)
+			if e.Request.Header.Get("X-Internal") == "true" {
+				return handler(e)
+			}
+
 			info := rl.AllowWithInfo(e.Request, tier)
 
 			// Always set rate limit headers (allows clients to monitor quota)