{% load i18n static %}

<div id="user-tools">
    <a href="{% url 'add' %}">Add ➕</a> &nbsp; &nbsp;
    <a href="{% url 'Home' %}">Snapshots</a> |
    <a href="/admin/core/tag/">Tags</a> |
    <a href="/admin/core/archiveresult/?o=-1">Log</a> &nbsp; &nbsp;
    <a href="{% url 'Docs' %}" target="_blank" rel="noopener noreferrer">Docs</a> |
    <a href="/api/v1/docs">API</a> |
    <a href="/admin/">Admin</a>
     &nbsp; &nbsp;
    {% if user.is_authenticated %}
        {% block welcome-msg %}
            {% trans 'User' %}
            <strong>{% firstof user.get_short_name user.get_username %}</strong> &nbsp; &nbsp;
        {% endblock %}
        {% block userlinks %}
            {% if user.has_usable_password %}
                <a href="{% url 'admin:password_change' %}" title="Change your account password">Account</a> /
            {% endif %}
            <a href="{% url 'admin:logout' %}">{% trans 'Log out' %}</a>
        {% endblock %}
    {% elif request.COOKIES.archivebox_admin_logged_in == "1" %}
        {% comment %}
        Authenticated on the admin host but the session cookie is admin-host-
        scoped (security boundary — public.* must NEVER see the session).
        The hint cookie is the only signal that crosses, so we render the
        logged-out state's `Account` / `Log out` links pointing at admin host
        so the user can still reach those pages from public.*/web.*.
        {% endcomment %}
        <a href="/admin/password_change/" title="Change your account password">Account</a> /
        <a href="/admin/logout/">{% trans 'Log out' %}</a>
    {% else %}
        <a href="{% url 'admin:login' %}">{% trans 'Log in' %}</a>
    {% endif %}
</div>