@ory/elements-react 0.0.0-pr.e3d2b7e1 → 0.0.0-pr.f3c2f07

package/dist/index.js

@@ -36,10 +36,14 @@ function useGroupSorter() {
 }
 var defaultNodeOrder = [
   "oidc",
+  "saml",
   "identifier_first",
   "default",
   "profile",
   "password",
+  // CAPTCHA is below password because otherwise the password input field
+  // would be above the captcha. Somehow, we sort the password sign up button somewhere else to be always at the bottom.
+  "captcha",
   "passkey",
   "code",
   "webauthn"
@@ -48,6 +52,11 @@ function defaultNodeSorter(a, b) {
   var _a, _b;
   const aGroupWeight = (_a = defaultNodeOrder.indexOf(a.group)) != null ? _a : 999;
   const bGroupWeight = (_b = defaultNodeOrder.indexOf(b.group)) != null ? _b : 999;
+  if (b.group === "captcha" && clientFetch.isUiNodeInputAttributes(a.attributes) && a.attributes.type === "submit") {
+    return aGroupWeight - (bGroupWeight - 2);
+  } else if (a.group === "captcha" && clientFetch.isUiNodeInputAttributes(b.attributes) && b.attributes.type === "submit") {
+    return aGroupWeight - 2 - bGroupWeight;
+  }
   return aGroupWeight - bGroupWeight;
 }
 var defaultGroupOrder = [
@@ -85,22 +94,25 @@ function OryComponentProvider({
     }
   );
 }
-function isChoosingMethod(uiNodes) {
-  return uiNodes.some(
+function isChoosingMethod(flow) {
+  return flow.flow.ui.nodes.some(
     (node) => "name" in node.attributes && node.attributes.name === "screen" && "value" in node.attributes && node.attributes.value === "previous"
-  ) || uiNodes.some(
+  ) || flow.flow.ui.nodes.some(
     (node) => node.group === clientFetch.UiNodeGroupEnum.IdentifierFirst && "name" in node.attributes && node.attributes.name === "identifier" && node.attributes.type === "hidden"
-  );
+  ) || flow.flowType === clientFetch.FlowType.Login && flow.flow.requested_aal === "aal2";
 }
-function filterOidcOut(nodes) {
-  return nodes.filter((node) => node.group !== clientFetch.UiNodeGroupEnum.Oidc);
+function removeSsoNodes(nodes) {
+  return nodes.filter(
+    (node) => !(node.group === clientFetch.UiNodeGroupEnum.Oidc || node.group === clientFetch.UiNodeGroupEnum.Saml)
+  );
 }
 function getFinalNodes(uniqueGroups, selectedGroup) {
-  var _a, _b, _c;
+  var _a, _b, _c, _d;
   const selectedNodes = selectedGroup ? (_a = uniqueGroups[selectedGroup]) != null ? _a : [] : [];
   return [
     ...(_b = uniqueGroups == null ? void 0 : uniqueGroups.identifier_first) != null ? _b : [],
-    ...(_c = uniqueGroups == null ? void 0 : uniqueGroups.default) != null ? _c : []
+    ...(_c = uniqueGroups == null ? void 0 : uniqueGroups.default) != null ? _c : [],
+    ...(_d = uniqueGroups == null ? void 0 : uniqueGroups.captcha) != null ? _d : []
   ].flat().filter(
     (node) => "type" in node.attributes && node.attributes.type === "hidden"
   ).concat(selectedNodes);
@@ -172,6 +184,7 @@ function nodesToAuthMethodGroups(nodes, excludeAuthMethods = []) {
       clientFetch.UiNodeGroupEnum.Default,
       clientFetch.UiNodeGroupEnum.IdentifierFirst,
       clientFetch.UiNodeGroupEnum.Profile,
+      clientFetch.UiNodeGroupEnum.Captcha,
       ...excludeAuthMethods
     ].includes(group)
   );
@@ -200,6 +213,9 @@ function useNodesGroups(nodes) {
     entries
   };
 }
+var findNode = (nodes, opt) => nodes.find((n) => {
+  return n.attributes.node_type === opt.node_type && (opt.group instanceof RegExp ? n.group.match(opt.group) : n.group === opt.group) && (opt.name && n.attributes.node_type === "input" ? opt.name instanceof RegExp ? n.attributes.name.match(opt.name) : n.attributes.name === opt.name : !opt.name);
+});
 
 // src/context/form-state.ts
 function findMethodWithMessage(nodes) {
@@ -221,9 +237,11 @@ function parseStateFromFlow(flow) {
         return { current: "method_active", method: "code" };
       } else if (methodWithMessage) {
         return { current: "method_active", method: methodWithMessage.group };
-      } else if (flow.flow.active && !["default", "identifier_first", "oidc"].includes(flow.flow.active)) {
+      } else if (flow.flow.active && !["default", "identifier_first", "oidc", "saml"].includes(
+        flow.flow.active
+      )) {
         return { current: "method_active", method: flow.flow.active };
-      } else if (isChoosingMethod(flow.flow.ui.nodes)) {
+      } else if (isChoosingMethod(flow)) {
         const authMethods = nodesToAuthMethodGroups(flow.flow.ui.nodes);
         if (authMethods.length === 1 && authMethods[0] !== "code") {
           return { current: "method_active", method: authMethods[0] };
@@ -245,23 +263,32 @@ function parseStateFromFlow(flow) {
       break;
     case clientFetch.FlowType.Settings:
       return { current: "settings" };
+    case clientFetch.FlowType.OAuth2Consent:
+      return { current: "method_active", method: "oauth2_consent" };
   }
   console.warn(
     `[Ory/Elements React] Encountered an unknown form state on ${flow.flowType} flow with ID ${flow.flow.id}`
   );
   throw new Error("Unknown form state");
 }
-function formStateReducer(state, action) {
-  switch (action.type) {
-    case "action_flow_update":
-      return parseStateFromFlow(action.flow);
-    case "action_select_method":
-      return { current: "method_active", method: action.method };
-  }
-  return state;
-}
 function useFormStateReducer(flow) {
-  return react.useReducer(formStateReducer, parseStateFromFlow(flow));
+  const action = parseStateFromFlow(flow);
+  const [selectedMethod, setSelectedMethod] = react.useState();
+  const formStateReducer = (state, action2) => {
+    switch (action2.type) {
+      case "action_flow_update": {
+        if (selectedMethod)
+          return { current: "method_active", method: selectedMethod };
+        return parseStateFromFlow(action2.flow);
+      }
+      case "action_select_method": {
+        setSelectedMethod(action2.method);
+        return { current: "method_active", method: action2.method };
+      }
+    }
+    return state;
+  };
+  return react.useReducer(formStateReducer, action);
 }
 function useOryFlow() {
   const ctx = react.useContext(OryFlowContext);
@@ -351,6 +378,22 @@ function computeDefaultValues(nodes) {
       if (attrs.name === "method" || attrs.type === "submit" || typeof attrs.value === "undefined") {
         return acc;
       }
+      if (attrs.name.startsWith("grant_scope")) {
+        const scope = attrs.value;
+        if (Array.isArray(acc.grant_scope)) {
+          return {
+            ...acc,
+            // We want to have all scopes accepted by default, so that the user has to actively uncheck them.
+            grant_scope: [...acc.grant_scope, scope]
+          };
+        } else if (!acc.grant_scope) {
+          return {
+            ...acc,
+            grant_scope: [scope]
+          };
+        }
+        return acc;
+      }
       return unrollTrait(
         {
           name: attrs.name,
@@ -782,7 +825,7 @@ function useOryFormSubmit(onAfterSubmit) {
         if ("lookup_secret_confirm" in submitData || "lookup_secret_reveal" in submitData || "lookup_secret_regenerate" in submitData || "lookup_secret_disable" in submitData) {
           submitData.method = "lookup_secret";
         }
-        if (submitData.method === "oidc" && submitData.link && supportsSelectAccountPrompt.includes(submitData.link)) {
+        if (submitData.method === clientFetch.UiNodeGroupEnum.Oidc && submitData.link && supportsSelectAccountPrompt.includes(submitData.link)) {
           submitData.upstream_parameters = {
             prompt: "select_account"
           };
@@ -800,6 +843,19 @@ function useOryFormSubmit(onAfterSubmit) {
         });
         break;
       }
+      case clientFetch.FlowType.OAuth2Consent: {
+        const response = await fetch(flowContainer.flow.ui.action, {
+          method: "POST",
+          body: JSON.stringify(data),
+          headers: {
+            "Content-Type": "application/json"
+          }
+        });
+        const oauth2Success = await response.json();
+        if (oauth2Success.redirect_to && typeof oauth2Success.redirect_to === "string") {
+          onRedirect(oauth2Success.redirect_to);
+        }
+      }
     }
     if ("password" in data) {
       methods.setValue("password", "");
@@ -815,10 +871,10 @@ function useOryFormSubmit(onAfterSubmit) {
   return onSubmit;
 }
 function OryForm({ children, onAfterSubmit }) {
-  var _a;
   const { Form } = useComponents();
   const flowContainer = useOryFlow();
   const methods = reactHookForm.useFormContext();
+  const { Message } = useComponents();
   const intl = reactIntl.useIntl();
   const onSubmit = useOryFormSubmit(onAfterSubmit);
   const hasMethods = flowContainer.flow.ui.nodes.some((node) => {
@@ -833,11 +889,22 @@ function OryForm({ children, onAfterSubmit }) {
     }
     return false;
   });
-  if (!hasMethods && ((_a = flowContainer.flow.ui.messages) != null ? _a : []).length === 0) {
-    return intl.formatMessage({
-      id: `identities.messages.${5000002}`,
-      defaultMessage: "No authentication methods are available for this request. Please contact the site or app owner."
-    });
+  if (!hasMethods) {
+    const m = {
+      id: 5000002,
+      text: intl.formatMessage({
+        id: `identities.messages.${5000002}`,
+        defaultMessage: "No authentication methods are available for this request. Please contact the site or app owner."
+      }),
+      type: "error"
+    };
+    return /* @__PURE__ */ jsxRuntime.jsxs(jsxRuntime.Fragment, { children: [
+      /* @__PURE__ */ jsxRuntime.jsx(Message.Root, { children: /* @__PURE__ */ jsxRuntime.jsx(Message.Content, { message: m }, m.id) }),
+      /* @__PURE__ */ jsxRuntime.jsx(OryCardFooter, {})
+    ] });
+  }
+  if (flowContainer.flowType === clientFetch.FlowType.Login && flowContainer.formState.current === "method_active" && flowContainer.formState.method === "code") {
+    methods.setValue("method", "code");
   }
   return /* @__PURE__ */ jsxRuntime.jsx(
     Form.Root,
@@ -849,7 +916,15 @@ function OryForm({ children, onAfterSubmit }) {
     }
   );
 }
-var messageIdsToHide = [1040009, 1060003, 1080003, 1010014, 1040005, 1010016];
+var messageIdsToHide = [
+  1040009,
+  1060003,
+  1080003,
+  1010004,
+  1010014,
+  1040005,
+  1010016
+];
 function OryCardValidationMessages({ ...props }) {
   var _a;
   const { flow } = useOryFlow();
@@ -868,7 +943,7 @@ var NodeInput = ({
 }) => {
   var _a;
   const { Node: Node2 } = useComponents();
-  const { setValue } = reactHookForm.useFormContext();
+  const { setValue, watch } = reactHookForm.useFormContext();
   const {
     onloadTrigger,
     onclickTrigger,
@@ -881,7 +956,10 @@ var NodeInput = ({
   const isResendNode = ((_a = node.meta.label) == null ? void 0 : _a.id) === 1070008;
   const isScreenSelectionNode = "name" in node.attributes && node.attributes.name === "screen";
   const setFormValue = () => {
-    if (attrs.value && !(isResendNode || isScreenSelectionNode)) {
+    if (isResendNode || isScreenSelectionNode || node.group === "oauth2_consent") {
+      return;
+    }
+    if (attrs.value !== void 0) {
       setValue(attrs.name, attrs.value);
     }
   };
@@ -904,8 +982,21 @@ var NodeInput = ({
       triggerToWindowCall(onclickTrigger);
     }
   };
-  const isSocial = (attrs.name === "provider" || attrs.name === "link") && node.group === "oidc";
+  const isSocial = (attrs.name === "provider" || attrs.name === "link") && (node.group === clientFetch.UiNodeGroupEnum.Oidc || node.group === clientFetch.UiNodeGroupEnum.Saml);
   const isPinCodeInput = attrs.name === "code" && node.group === "code" || attrs.name === "totp_code" && node.group === "totp";
+  const handleScopeChange = (checked) => {
+    const scopes = watch("grant_scope");
+    if (Array.isArray(scopes)) {
+      if (checked) {
+        setValue("grant_scope", Array.from(/* @__PURE__ */ new Set([...scopes, attrs.value])));
+      } else {
+        setValue(
+          "grant_scope",
+          scopes.filter((scope) => scope !== attrs.value)
+        );
+      }
+    }
+  };
   switch (attributes.type) {
     case clientFetch.UiNodeInputAttributesTypeEnum.Submit:
     case clientFetch.UiNodeInputAttributesTypeEnum.Button:
@@ -915,6 +1006,9 @@ var NodeInput = ({
       if (isResendNode || isScreenSelectionNode) {
         return null;
       }
+      if (node.group === "oauth2_consent") {
+        return null;
+      }
       return /* @__PURE__ */ jsxRuntime.jsx(
         Node2.Label,
         {
@@ -926,6 +1020,21 @@ var NodeInput = ({
     case clientFetch.UiNodeInputAttributesTypeEnum.DatetimeLocal:
       throw new Error("Not implemented");
     case clientFetch.UiNodeInputAttributesTypeEnum.Checkbox:
+      if (node.group === "oauth2_consent" && node.attributes.node_type === "input") {
+        switch (node.attributes.name) {
+          case "grant_scope":
+            return /* @__PURE__ */ jsxRuntime.jsx(
+              Node2.ConsentScopeCheckbox,
+              {
+                attributes: attrs,
+                node,
+                onCheckedChange: handleScopeChange
+              }
+            );
+          default:
+            return null;
+        }
+      }
       return /* @__PURE__ */ jsxRuntime.jsx(
         Node2.Label,
         {
@@ -952,6 +1061,9 @@ var NodeInput = ({
 };
 var Node = ({ node, onClick }) => {
   const { Node: Node2 } = useComponents();
+  if (node.group === clientFetch.UiNodeGroupEnum.Captcha) {
+    return /* @__PURE__ */ jsxRuntime.jsx(Node2.Captcha, { node });
+  }
   if (clientFetch.isUiNodeImageAttributes(node.attributes)) {
     return /* @__PURE__ */ jsxRuntime.jsx(Node2.Image, { node, attributes: node.attributes });
   } else if (clientFetch.isUiNodeTextAttributes(node.attributes)) {
@@ -984,7 +1096,9 @@ function OryFormOidcButtons() {
     flow: { ui }
   } = useOryFlow();
   const { setValue } = reactHookForm.useFormContext();
-  const filteredNodes = ui.nodes.filter((node) => node.group === "oidc");
+  const filteredNodes = ui.nodes.filter(
+    (node) => node.group === clientFetch.UiNodeGroupEnum.Oidc || node.group === clientFetch.UiNodeGroupEnum.Saml
+  );
   const { Form, Node: Node2 } = useComponents();
   if (filteredNodes.length === 0) {
     return null;
@@ -999,7 +1113,7 @@ function OryFormOidcButtons() {
           "provider",
           node.attributes.value
         );
-        setValue("method", "oidc");
+        setValue("method", node.group);
       }
     },
     k
@@ -1009,7 +1123,9 @@ function OryFormSocialButtonsForm() {
   const {
     flow: { ui }
   } = useOryFlow();
-  const filteredNodes = ui.nodes.filter((node) => node.group === "oidc");
+  const filteredNodes = ui.nodes.filter(
+    (node) => node.group === clientFetch.UiNodeGroupEnum.Saml || node.group === clientFetch.UiNodeGroupEnum.Oidc
+  );
   if (filteredNodes.length === 0) {
     return null;
   }
@@ -1019,28 +1135,49 @@ function isUINodeGroupEnum(method) {
   return Object.values(clientFetch.UiNodeGroupEnum).includes(method);
 }
 function OryTwoStepCard() {
-  const {
-    flow: { ui },
-    flowType,
-    formState,
-    dispatchFormState
-  } = useOryFlow();
+  var _a, _b, _c, _d;
   const { Form, Card } = useComponents();
+  const { flow, flowType, formState, dispatchFormState } = useOryFlow();
+  const { ui } = flow;
   const nodeSorter = useNodeSorter();
   const sortNodes = (a, b) => nodeSorter(a, b, { flowType });
   const uniqueGroups = useNodesGroups(ui.nodes);
-  const options = Object.values(clientFetch.UiNodeGroupEnum).filter((group) => {
-    var _a;
-    return (_a = uniqueGroups.groups[group]) == null ? void 0 : _a.length;
-  }).filter(
-    (group) => ![
-      clientFetch.UiNodeGroupEnum.Oidc,
-      clientFetch.UiNodeGroupEnum.Default,
-      clientFetch.UiNodeGroupEnum.IdentifierFirst,
-      clientFetch.UiNodeGroupEnum.Profile
-    ].includes(group)
+  const options = Object.fromEntries(
+    Object.values(clientFetch.UiNodeGroupEnum).filter((group) => {
+      var _a2;
+      return (_a2 = uniqueGroups.groups[group]) == null ? void 0 : _a2.length;
+    }).filter(
+      (group) => ![
+        clientFetch.UiNodeGroupEnum.Oidc,
+        clientFetch.UiNodeGroupEnum.Saml,
+        clientFetch.UiNodeGroupEnum.Default,
+        clientFetch.UiNodeGroupEnum.IdentifierFirst,
+        clientFetch.UiNodeGroupEnum.Profile,
+        clientFetch.UiNodeGroupEnum.Captcha
+      ].includes(group)
+    ).map((g) => [g, {}])
   );
-  const nonOidcNodes = filterOidcOut(ui.nodes);
+  if (clientFetch.UiNodeGroupEnum.Code in options) {
+    let identifier = (_b = (_a = findNode(ui.nodes, {
+      group: "identifier_first",
+      node_type: "input",
+      name: "identifier"
+    })) == null ? void 0 : _a.attributes) == null ? void 0 : _b.value;
+    identifier || (identifier = (_d = (_c = findNode(ui.nodes, {
+      group: "code",
+      node_type: "input",
+      name: "address"
+    })) == null ? void 0 : _c.attributes) == null ? void 0 : _d.value);
+    if (identifier) {
+      options[clientFetch.UiNodeGroupEnum.Code] = {
+        title: {
+          id: "identities.messages.1010023",
+          values: { address: identifier }
+        }
+      };
+    }
+  }
+  const nonSsoNodes = removeSsoNodes(ui.nodes);
   const finalNodes = formState.current === "method_active" ? getFinalNodes(uniqueGroups.groups, formState.method) : [];
   const handleAfterFormSubmit = (method) => {
     if (typeof method !== "string" || !isUINodeGroupEnum(method)) {
@@ -1053,18 +1190,28 @@ function OryTwoStepCard() {
       });
     }
   };
-  const hasOidc = ui.nodes.some((node) => node.group === clientFetch.UiNodeGroupEnum.Oidc);
-  const showOidc = !(formState.current === "method_active" && formState.method !== "oidc");
+  const hasSso = ui.nodes.some(
+    (node) => node.group === clientFetch.UiNodeGroupEnum.Oidc || node.group === clientFetch.UiNodeGroupEnum.Saml
+  );
+  const showSso = !(formState.current === "method_active" && !(formState.method === clientFetch.UiNodeGroupEnum.Oidc || formState.method === clientFetch.UiNodeGroupEnum.Saml));
+  const showSsoDivider = hasSso && nonSsoNodes.filter((n) => {
+    if (clientFetch.isUiNodeInputAttributes(n.attributes)) {
+      return n.attributes.type !== clientFetch.UiNodeInputAttributesTypeEnum.Hidden;
+    } else if (clientFetch.isUiNodeScriptAttributes(n.attributes)) {
+      return false;
+    }
+    return true;
+  }).length > 0;
   return /* @__PURE__ */ jsxRuntime.jsxs(OryCard, { children: [
     /* @__PURE__ */ jsxRuntime.jsx(OryCardHeader, {}),
     /* @__PURE__ */ jsxRuntime.jsxs(OryCardContent, { children: [
       /* @__PURE__ */ jsxRuntime.jsx(OryCardValidationMessages, {}),
-      showOidc && /* @__PURE__ */ jsxRuntime.jsx(OryFormSocialButtonsForm, {}),
+      showSso && /* @__PURE__ */ jsxRuntime.jsx(OryFormSocialButtonsForm, {}),
       /* @__PURE__ */ jsxRuntime.jsxs(OryForm, { onAfterSubmit: handleAfterFormSubmit, children: [
         /* @__PURE__ */ jsxRuntime.jsxs(Form.Group, { children: [
           formState.current === "provide_identifier" && /* @__PURE__ */ jsxRuntime.jsxs(jsxRuntime.Fragment, { children: [
-            hasOidc && /* @__PURE__ */ jsxRuntime.jsx(Card.Divider, {}),
-            nonOidcNodes.sort(sortNodes).map((node, k) => /* @__PURE__ */ jsxRuntime.jsx(Node, { node }, k))
+            showSsoDivider && /* @__PURE__ */ jsxRuntime.jsx(Card.Divider, {}),
+            nonSsoNodes.sort(sortNodes).map((node, k) => /* @__PURE__ */ jsxRuntime.jsx(Node, { node }, k))
           ] }),
           formState.current === "select_method" && /* @__PURE__ */ jsxRuntime.jsxs(jsxRuntime.Fragment, { children: [
             /* @__PURE__ */ jsxRuntime.jsx(Card.Divider, {}),
@@ -1077,7 +1224,8 @@ function OryTwoStepCard() {
                   method: group
                 })
               }
-            )
+            ),
+            ui.nodes.filter((n) => n.group === clientFetch.UiNodeGroupEnum.Captcha).map((node, k) => /* @__PURE__ */ jsxRuntime.jsx(Node, { node }, k))
           ] }),
           formState.current === "method_active" && /* @__PURE__ */ jsxRuntime.jsxs(jsxRuntime.Fragment, { children: [
             ui.nodes.filter((n) => n.type === "script").map((node, k) => /* @__PURE__ */ jsxRuntime.jsx(Node, { node }, k)),
@@ -1091,22 +1239,27 @@ function OryTwoStepCard() {
 }
 function AuthMethodList({ options, setSelectedGroup }) {
   const { Card } = useComponents();
-  const { setValue } = reactHookForm.useFormContext();
-  const handleClick = (group) => {
+  const { setValue, getValues } = reactHookForm.useFormContext();
+  const handleClick = (group, options2) => {
+    var _a, _b, _c, _d;
     if (isGroupImmediateSubmit(group)) {
+      if (group === "code" && !getValues("identifier") && ((_b = (_a = options2 == null ? void 0 : options2.title) == null ? void 0 : _a.values) == null ? void 0 : _b.address)) {
+        setValue("identifier", (_d = (_c = options2 == null ? void 0 : options2.title) == null ? void 0 : _c.values) == null ? void 0 : _d.address);
+      }
       setValue("method", group);
     } else {
       setSelectedGroup(group);
     }
   };
-  return options.map((option) => /* @__PURE__ */ jsxRuntime.jsx(
+  return /* @__PURE__ */ jsxRuntime.jsx(Card.AuthMethodListContainer, { children: Object.entries(options).map(([group, options2]) => /* @__PURE__ */ jsxRuntime.jsx(
     Card.AuthMethodListItem,
     {
-      group: option,
-      onClick: () => handleClick(option)
+      group,
+      title: options2.title,
+      onClick: () => handleClick(group, options2)
     },
-    option
-  ));
+    group
+  )) });
 }
 function OryFormGroups({ groups }) {
   const {
@@ -1146,14 +1299,29 @@ function OryFormSectionInner({
     }
   );
 }
+function OryConsentCard() {
+  const { Form, Card } = useComponents();
+  const flow = useOryFlow();
+  return /* @__PURE__ */ jsxRuntime.jsxs(OryCard, { children: [
+    /* @__PURE__ */ jsxRuntime.jsx(OryCardHeader, {}),
+    /* @__PURE__ */ jsxRuntime.jsx(OryCardContent, { children: /* @__PURE__ */ jsxRuntime.jsxs(OryForm, { children: [
+      /* @__PURE__ */ jsxRuntime.jsx(Card.Divider, {}),
+      /* @__PURE__ */ jsxRuntime.jsx(Form.Group, { children: flow.flow.ui.nodes.map((node, k) => /* @__PURE__ */ jsxRuntime.jsx(Node, { node }, k)) }),
+      /* @__PURE__ */ jsxRuntime.jsx(Card.Divider, {}),
+      /* @__PURE__ */ jsxRuntime.jsx(OryCardFooter, {})
+    ] }) })
+  ] });
+}
 function OryFormGroupDivider() {
   const { Card } = useComponents();
   const {
     flow: { ui }
   } = useOryFlow();
-  const filteredNodes = ui.nodes.filter((node) => node.group === "oidc");
+  const filteredNodes = ui.nodes.filter(
+    (node) => node.group === clientFetch.UiNodeGroupEnum.Oidc || node.group === clientFetch.UiNodeGroupEnum.Saml
+  );
   const otherNodes = ui.nodes.filter(
-    (node) => node.group !== "oidc" && node.group !== "default"
+    (node) => !(node.group === clientFetch.UiNodeGroupEnum.Oidc || node.group === clientFetch.UiNodeGroupEnum.Saml) && node.group !== "default"
   );
   if (filteredNodes.length > 0 && otherNodes.length > 0) {
     return /* @__PURE__ */ jsxRuntime.jsx(Card.Divider, {});
@@ -1179,7 +1347,7 @@ function OrySettingsOidc({ nodes }) {
     onClick: () => {
       if (node.attributes.node_type === "input") {
         setValue("link", node.attributes.value);
-        setValue("method", "oidc");
+        setValue("method", node.group);
       }
     }
   }));
@@ -1188,7 +1356,7 @@ function OrySettingsOidc({ nodes }) {
     onClick: () => {
       if (node.attributes.node_type === "input") {
         setValue("unlink", node.attributes.value);
-        setValue("method", "oidc");
+        setValue("method", node.group);
       }
     }
   }));
@@ -1703,9 +1871,9 @@ var en_default = {
   "identities.messages.1010005": "Verify",
   "identities.messages.1010006": "Authentication code",
   "identities.messages.1010007": "Backup recovery code",
-  "identities.messages.1010008": "Sign in with hardware key",
-  "identities.messages.1010009": "Use Authenticator",
-  "identities.messages.1010010": "Use backup recovery code",
+  "identities.messages.1010008": "Continue with hardware key",
+  "identities.messages.1010009": "Continue",
+  "identities.messages.1010010": "Continue",
   "identities.messages.1010011": "Sign in with hardware key",
   "identities.messages.1010012": "Prepare your WebAuthn device (e.g. security key, biometrics scanner, ...) and press continue.",
   "identities.messages.1010013": "Continue",
@@ -1842,9 +2010,17 @@ var en_default = {
   "login.subtitle-oauth2": "To authenticate {clientName}",
   "login.title": "Sign in",
   "login.subtitle": "Sign in with {parts}",
-  "login.title-aal2": "Two-Factor Authentication",
+  "login.title-aal2": "Second factor authentication",
+  "login.subtitle-aal2": "Choose a way to complete your second factor authentication",
+  "login.code.subtitle": "A verification code will be sent by email",
+  "login.webauthn.subtitle": "Please prepare your WebAuthN device",
+  "login.totp.subtitle": "Please enter the code generated by your Authenticator App",
+  "login.lookup_secret.subtitle": "Please enter one of your 8-digit backup recovery codes",
   "login.title-refresh": "Reauthenticate",
   "login.subtitle-refresh": "Confirm your identity with {parts}",
+  "login.2fa.go-back": "Something isn't working?",
+  "login.2fa.go-back.link": "Go back",
+  "login.2fa.method.go-back": "Choose another method",
   "logout.accept-button": "Yes",
   "logout.reject-button": "No",
   "logout.title": "Do you wish to log out?",
@@ -1893,10 +2069,14 @@ var en_default = {
   "two-step.password.description": "Enter your password associated with your account",
   "two-step.code.title": "Email code",
   "two-step.code.description": "A verification code will be sent to your email",
-  "two-step.webauthn.title": "Security Key",
+  "two-step.webauthn.title": "Security key",
   "two-step.webauthn.description": "Use your security key to authenticate",
   "two-step.passkey.title": "Passkey (recommended)",
   "two-step.passkey.description": "Use your device's for fingerprint or face recognition",
+  "two-step.totp.title": "Use your Authenticator App (TOTP)",
+  "two-step.totp.description": "Use a 6-digit one-time code from your authenticator app",
+  "two-step.lookup_secret.title": "Backup recovery code",
+  "two-step.lookup_secret.description": "Use up one of your 8-digit backup codes to authenticate",
   "identities.messages.1010020": "",
   "input.placeholder": "Enter your {placeholder}",
   "card.header.parts.oidc": "a social provider",
@@ -1930,7 +2110,27 @@ var en_default = {
   "property.phone": "phone",
   "property.username": "username",
   "property.identifier": "identifier",
-  "property.code": "code"
+  "property.code": "code",
+  "consent.title": "Authorize {party}",
+  "consent.subtitle": "A third party application wants to access information associated with your account {identifier}.",
+  "consent.scope.openid.title": "Public Data",
+  "consent.scope.openid.description": "This application will be able to identify you and read public information about you.",
+  "consent.scope.offline_access.title": "Offline Access",
+  "consent.scope.offline_access.description": "This application will be able to identify you and read personal information about you.",
+  "consent.scope.profile.title": "Profile",
+  "consent.scope.profile.description": "This application will be able to access your profile information, including your name, profile picture, and other basic details.",
+  "consent.scope.email.title": "Email Address",
+  "consent.scope.email.description": "This application will be able to access your email address.",
+  "consent.scope.address.title": "Address",
+  "consent.scope.address.description": "This application will be able to access your physical address information.",
+  "consent.scope.phone.title": "Phone",
+  "consent.scope.phone.description": "This application will be able to access your phone number.",
+  "error.title.what-happened": "What happened?",
+  "error.title.what-can-i-do": "What can I do?",
+  "error.instructions": "Please try again in a few minutes or contact the website operator.",
+  "error.footer.text": "When reporting this error, please include the following information:",
+  "error.footer.copy": "Copy",
+  "error.action.go-back": "Go back"
 };
 
 // src/locales/de.json
@@ -1956,9 +2156,9 @@ var de_default = {
   "identities.messages.1010005": "Verifizieren",
   "identities.messages.1010006": "Authentifizierungscode",
   "identities.messages.1010007": "Backup-Wiederherstellungscode",
-  "identities.messages.1010008": "Sicherheitsschl\xFCssel verwenden",
-  "identities.messages.1010009": "Authentifizierungs-App verwenden",
-  "identities.messages.1010010": "Backup-Wiederherstellungscode verwenden",
+  "identities.messages.1010008": "Mit Sicherheitsschl\xFCssel fortfahren",
+  "identities.messages.1010009": "Weiter",
+  "identities.messages.1010010": "Weiter",
   "identities.messages.1010011": "Mit Sicherheitsschl\xFCssel fortfahren",
   "identities.messages.1010012": "Bereiten Sie Ihr WebAuthn-Ger\xE4t vor (z. B. Sicherheitsschl\xFCssel, biometrischer Scanner, ...) und dr\xFCcken Sie auf Weiter.",
   "identities.messages.1010013": "Weiter",
@@ -2074,8 +2274,16 @@ var de_default = {
   "login.registration-label": "Sie haben noch kein Konto?",
   "login.subtitle-oauth2": "Zur Authentifizierung bei {clientName}",
   "login.title": "Anmelden",
-  "login.title-aal2": "Zwei-Faktor-Authentifizierung",
+  "login.title-aal2": "Zweitfaktor-Authentifizierung",
+  "login.subtitle-aal2": "W\xE4hlen Sie eine Methode zur Best\xE4tigung Ihrer Zwei-Faktor-Authentifizierung",
+  "login.code.subtitle": "Ein Best\xE4tigungscode wird per E-Mail gesendet",
+  "login.webauthn.subtitle": "Bitte bereiten Sie Ihr WebAuthN-Ger\xE4t vor",
+  "login.totp.subtitle": "Bitte geben Sie den Code aus Ihrer Authenticator-App ein",
+  "login.lookup_secret.subtitle": "Bitte geben Sie einen Ihrer 8-stelligen Backup-Wiederherstellungscodes ein",
   "login.title-refresh": "Best\xE4tigen Sie, dass Sie es sind",
+  "login.2fa.go-back": "Funktioniert etwas nicht?",
+  "login.2fa.go-back.link": "Zur\xFCck",
+  "login.2fa.method.go-back": "Eine andere Methode w\xE4hlen",
   "logout.accept-button": "Ja",
   "logout.reject-button": "Nein",
   "logout.title": "M\xF6chten Sie sich abmelden?",
@@ -2096,8 +2304,12 @@ var de_default = {
   "two-step.passkey.title": "Passwort (empfohlen)",
   "two-step.password.description": "Geben Sie Ihr Passwort ein, das mit Ihrem Konto verkn\xFCpft ist",
   "two-step.password.title": "Passwort",
-  "two-step.webauthn.description": "Verwenden Sie Ihren Sicherheitsschl\xFCssel zur Authentifizierung",
   "two-step.webauthn.title": "Sicherheitsschl\xFCssel",
+  "two-step.webauthn.description": "Verwenden Sie Ihren Sicherheitsschl\xFCssel zur Authentifizierung",
+  "two-step.totp.title": "Verwenden Sie Ihre Authenticator-App (TOTP)",
+  "two-step.totp.description": "Verwenden Sie einen 6-stelligen Einmal-Code aus Ihrer Authenticator-App",
+  "two-step.lookup_secret.title": "Backup-Wiederherstellungscode",
+  "two-step.lookup_secret.description": "Verwenden Sie einen Ihrer 8-stelligen Backup-Codes, um sich zu authentifizieren",
   "identities.messages.1070014": "Login- und Link-Zugangsdaten",
   "identities.messages.1070015": "Bitte schlie\xDFen Sie die Captcha-Challenge ab, um fortzufahren.",
   "identities.messages.4000038": "Die Captcha-\xDCberpr\xFCfung ist fehlgeschlagen. Bitte versuchen Sie es erneut.",
@@ -2183,7 +2395,27 @@ var de_default = {
   "property.password": "Passwort",
   "property.phone": "Telefon",
   "property.code": "Code",
-  "property.username": "Benutzername"
+  "property.username": "Benutzername",
+  "consent.title": "",
+  "consent.subtitle": "",
+  "consent.scope.openid.title": "",
+  "consent.scope.openid.description": "",
+  "consent.scope.offline_access.title": "",
+  "consent.scope.offline_access.description": "",
+  "consent.scope.profile.title": "",
+  "consent.scope.profile.description": "",
+  "consent.scope.email.title": "",
+  "consent.scope.email.description": "",
+  "consent.scope.address.title": "",
+  "consent.scope.address.description": "",
+  "consent.scope.phone.title": "",
+  "consent.scope.phone.description": "",
+  "error.title.what-happened": "Was ist passiert?",
+  "error.footer.copy": "Kopieren",
+  "error.footer.text": "Bitte f\xFCgen Sie bei der Meldung dieses Fehlers die folgenden Informationen hinzu:",
+  "error.instructions": "Bitte versuchen Sie es in wenigen Minuten erneut oder wenden Sie sich an den Website-Betreiber.",
+  "error.title.what-can-i-do": "Was kann ich tun?",
+  "error.action.go-back": "Zur\xFCck"
 };
 
 // src/locales/es.json
@@ -2199,7 +2431,7 @@ var es_default = {
   "error.back-button": "Regresar",
   "error.description": "Ocurri\xF3 un error con el siguiente mensaje:",
   "error.support-email-link": "Si el problema persiste, por favor contacte a <a>{contactSupportEmail}</a>",
-  "error.title": "Ocurri\xF3 un error",
+  "error.title": "",
   "error.title-internal-server-error": "Error Interno del Servidor",
   "error.title-not-found": "404 - P\xE1gina no encontrada",
   "identities.messages.1010001": "Iniciar sesi\xF3n",
@@ -2209,9 +2441,9 @@ var es_default = {
   "identities.messages.1010005": "Verificar",
   "identities.messages.1010006": "C\xF3digo de autenticaci\xF3n",
   "identities.messages.1010007": "C\xF3digo de recuperaci\xF3n de respaldo",
-  "identities.messages.1010008": "Usar llave de seguridad",
-  "identities.messages.1010009": "Usar Autenticador",
-  "identities.messages.1010010": "Usar c\xF3digo de recuperaci\xF3n de respaldo",
+  "identities.messages.1010008": "Continuar con la llave de hardware",
+  "identities.messages.1010009": "Continuar",
+  "identities.messages.1010010": "Continuar",
   "identities.messages.1010011": "Continuar con llave de seguridad",
   "identities.messages.1010012": "Prepare su dispositivo WebAuthn (por ejemplo, llave de seguridad, esc\xE1ner biom\xE9trico, ...) y presione continuar.",
   "identities.messages.1010013": "Continuar",
@@ -2327,8 +2559,16 @@ var es_default = {
   "login.registration-label": "\xBFNo tiene una cuenta?",
   "login.subtitle-oauth2": "Para autenticar a {clientName}",
   "login.title": "Iniciar sesi\xF3n",
-  "login.title-aal2": "Autenticaci\xF3n de Dos Factores",
+  "login.title-aal2": "Autenticaci\xF3n de dos factores",
+  "login.subtitle-aal2": "Elija una forma de completar su autenticaci\xF3n de segundo factor",
+  "login.code.subtitle": "Se enviar\xE1 un c\xF3digo de verificaci\xF3n por correo electr\xF3nico",
+  "login.webauthn.subtitle": "Por favor, prepare su dispositivo WebAuthN",
+  "login.totp.subtitle": "Ingrese el c\xF3digo generado por su aplicaci\xF3n de autenticaci\xF3n",
+  "login.lookup_secret.subtitle": "Ingrese uno de sus c\xF3digos de recuperaci\xF3n de respaldo de 8 d\xEDgitos",
   "login.title-refresh": "Confirme que es usted",
+  "login.2fa.go-back": "\xBFAlgo no funciona?",
+  "login.2fa.go-back.link": "Volver",
+  "login.2fa.method.go-back": "Elegir otro m\xE9todo",
   "logout.accept-button": "S\xED",
   "logout.reject-button": "No",
   "logout.title": "\xBFDesea cerrar sesi\xF3n?",
@@ -2360,8 +2600,12 @@ var es_default = {
   "two-step.passkey.title": "Clave de acceso (recomendada)",
   "two-step.password.description": "Ingrese la contrase\xF1a asociada con su cuenta",
   "two-step.password.title": "Contrase\xF1a",
-  "two-step.webauthn.description": "Utiliza tu llave de seguridad para autenticarte",
   "two-step.webauthn.title": "Clave de Seguridad",
+  "two-step.webauthn.description": "Utilice su llave de seguridad para autenticase",
+  "two-step.totp.title": "Utilice su aplicaci\xF3n de autenticaci\xF3n (TOTP)",
+  "two-step.totp.description": "Utilice un c\xF3digo de un solo uso de 6 d\xEDgitos de su aplicaci\xF3n de autenticaci\xF3n",
+  "two-step.lookup_secret.title": "C\xF3digo de recuperaci\xF3n de respaldo",
+  "two-step.lookup_secret.description": "Utilice uno de sus c\xF3digos de respaldo de 8 d\xEDgitos para autenticarse",
   "identities.messages.1010016": "",
   "identities.messages.1010017": "",
   "identities.messages.1010018": "",
@@ -2436,7 +2680,27 @@ var es_default = {
   "property.identifier": "",
   "property.password": "",
   "property.phone": "",
-  "property.username": ""
+  "property.username": "",
+  "consent.title": "",
+  "consent.subtitle": "",
+  "consent.scope.openid.title": "",
+  "consent.scope.openid.description": "",
+  "consent.scope.offline_access.title": "",
+  "consent.scope.offline_access.description": "",
+  "consent.scope.profile.title": "",
+  "consent.scope.profile.description": "",
+  "consent.scope.email.title": "",
+  "consent.scope.email.description": "",
+  "consent.scope.address.title": "",
+  "consent.scope.address.description": "",
+  "consent.scope.phone.title": "",
+  "consent.scope.phone.description": "",
+  "error.action.go-back": "",
+  "error.footer.copy": "",
+  "error.footer.text": "",
+  "error.instructions": "",
+  "error.title.what-can-i-do": "",
+  "error.title.what-happened": ""
 };
 
 // src/locales/fr.json
@@ -2462,9 +2726,9 @@ var fr_default = {
   "identities.messages.1010005": "V\xE9rifier",
   "identities.messages.1010006": "Code d'authentification",
   "identities.messages.1010007": "Code de r\xE9cup\xE9ration de secours",
-  "identities.messages.1010008": "Utiliser une cl\xE9 de s\xE9curit\xE9",
-  "identities.messages.1010009": "Utiliser un authentificateur",
-  "identities.messages.1010010": "Utiliser un code de r\xE9cup\xE9ration de secours",
+  "identities.messages.1010008": "Continuer avec la cl\xE9 mat\xE9rielle",
+  "identities.messages.1010009": "Continuer",
+  "identities.messages.1010010": "Continuer",
   "identities.messages.1010011": "Continuer avec la cl\xE9 de s\xE9curit\xE9",
   "identities.messages.1010012": "Pr\xE9parez votre appareil WebAuthn (par exemple, une cl\xE9 de s\xE9curit\xE9, un scanner biom\xE9trique, ...) et appuyez sur Continuer.",
   "identities.messages.1010013": "Continuer",
@@ -2581,7 +2845,15 @@ var fr_default = {
   "login.subtitle-oauth2": "Pour vous authentifier sur {clientName}",
   "login.title": "Se connecter",
   "login.title-aal2": "Authentification \xE0 deux facteurs",
+  "login.subtitle-aal2": "Choisissez une m\xE9thode pour compl\xE9ter votre authentification \xE0 deux facteurs",
+  "login.code.subtitle": "Un code de v\xE9rification sera envoy\xE9 par e-mail",
+  "login.webauthn.subtitle": "Veuillez pr\xE9parer votre dispositif WebAuthN",
+  "login.totp.subtitle": "Veuillez saisir le code g\xE9n\xE9r\xE9 par votre application d'authentification",
+  "login.lookup_secret.subtitle": "Veuillez saisir l'un de vos codes de r\xE9cup\xE9ration de secours \xE0 8 chiffres",
   "login.title-refresh": "Confirmez que c'est bien vous",
+  "login.2fa.go-back": "Quelque chose ne fonctionne pas ?",
+  "login.2fa.go-back.link": "Retour",
+  "login.2fa.method.go-back": "Choisir une autre m\xE9thode",
   "logout.accept-button": "Oui",
   "logout.reject-button": "Non",
   "logout.title": "Souhaitez-vous vous d\xE9connecter ?",
@@ -2613,8 +2885,12 @@ var fr_default = {
   "two-step.passkey.title": "Cl\xE9 de passe (recommand\xE9e)",
   "two-step.password.description": "Entrez votre mot de passe associ\xE9 \xE0 votre compte",
   "two-step.password.title": "Mot de passe",
-  "two-step.webauthn.description": "Utilisez votre cl\xE9 de s\xE9curit\xE9 pour vous authentifier",
   "two-step.webauthn.title": "Cl\xE9 de S\xE9curit\xE9",
+  "two-step.webauthn.description": "Utilisez votre cl\xE9 de s\xE9curit\xE9 pour vous authentifier",
+  "two-step.totp.title": "Utilisez votre application d'authentification (TOTP)",
+  "two-step.totp.description": "Utilisez un code \xE0 usage unique \xE0 6 chiffres provenant de votre application d'authentification",
+  "two-step.lookup_secret.title": "Code de r\xE9cup\xE9ration de secours",
+  "two-step.lookup_secret.description": "Utilisez l'un de vos codes de secours \xE0 8 chiffres pour vous authentifier",
   "identities.messages.1010023": "",
   "identities.messages.1070015": "",
   "identities.messages.4000038": "",
@@ -2689,7 +2965,27 @@ var fr_default = {
   "property.identifier": "",
   "property.password": "",
   "property.phone": "",
-  "property.username": ""
+  "property.username": "",
+  "consent.title": "",
+  "consent.subtitle": "",
+  "consent.scope.openid.title": "",
+  "consent.scope.openid.description": "",
+  "consent.scope.offline_access.title": "",
+  "consent.scope.offline_access.description": "",
+  "consent.scope.profile.title": "",
+  "consent.scope.profile.description": "",
+  "consent.scope.email.title": "",
+  "consent.scope.email.description": "",
+  "consent.scope.address.title": "",
+  "consent.scope.address.description": "",
+  "consent.scope.phone.title": "",
+  "consent.scope.phone.description": "",
+  "error.action.go-back": "",
+  "error.footer.copy": "",
+  "error.footer.text": "",
+  "error.title.what-can-i-do": "",
+  "error.title.what-happened": "",
+  "error.instructions": ""
 };
 
 // src/locales/nl.json
@@ -2715,9 +3011,9 @@ var nl_default = {
   "identities.messages.1010005": "Verifi\xEBren",
   "identities.messages.1010006": "Verificatiecode",
   "identities.messages.1010007": "Back-up herstelcode",
-  "identities.messages.1010008": "Beveiligingssleutel gebruiken",
-  "identities.messages.1010009": "Authenticator gebruiken",
-  "identities.messages.1010010": "Back-up herstelcode gebruiken",
+  "identities.messages.1010008": "Ga verder met hardware-sleutel",
+  "identities.messages.1010009": "Doorgaan",
+  "identities.messages.1010010": "Doorgaan",
   "identities.messages.1010011": "Doorgaan met beveiligingssleutel",
   "identities.messages.1010012": "Bereid uw WebAuthn-apparaat voor (bijv. beveiligingssleutel, biometrische scanner, ...) en druk op doorgaan.",
   "identities.messages.1010013": "Doorgaan",
@@ -2833,8 +3129,16 @@ var nl_default = {
   "login.registration-label": "Heb je nog geen account?",
   "login.subtitle-oauth2": "Om te authenticeren bij {clientName}",
   "login.title": "Inloggen",
-  "login.title-aal2": "Twee-Factor Authenticatie",
+  "login.title-aal2": "Tweefactorauthenticatie",
+  "login.subtitle-aal2": "Kies een manier om uw tweefactorauthenticatie te voltooien",
+  "login.code.subtitle": "Er wordt een verificatiecode per e-mail verzonden",
+  "login.webauthn.subtitle": "Bereid uw WebAuthN-apparaat voor",
+  "login.totp.subtitle": "Voer de code in die door uw Authenticator-app is gegenereerd",
+  "login.lookup_secret.subtitle": "Voer een van uw 8-cijferige back-up herstelcodes in",
   "login.title-refresh": "Bevestig dat jij het bent",
+  "login.2fa.go-back": "Werkt er iets niet?",
+  "login.2fa.go-back.link": "Ga terug",
+  "login.2fa.method.go-back": "Kies een andere methode",
   "logout.accept-button": "Ja",
   "logout.reject-button": "Nee",
   "logout.title": "Wil je uitloggen?",
@@ -2866,8 +3170,12 @@ var nl_default = {
   "two-step.passkey.title": "Toegangscode (aanbevolen)",
   "two-step.password.description": "Voer uw wachtwoord in dat is gekoppeld aan uw account",
   "two-step.password.title": "Wachtwoord",
-  "two-step.webauthn.description": "Gebruik uw beveiligingssleutel om te verifi\xEBren",
   "two-step.webauthn.title": "Beveiligingssleutel",
+  "two-step.webauthn.description": "Gebruik uw beveiligingssleutel om te verifi\xEBren",
+  "two-step.totp.title": "Gebruik uw Authenticator-app (TOTP)",
+  "two-step.totp.description": "Gebruik een 6-cijferige eenmalige code van uw authenticator-app",
+  "two-step.lookup_secret.title": "Herstelcode",
+  "two-step.lookup_secret.description": "Gebruik een van uw 8-cijferige back-upcodes om te authenticeren",
   "identities.messages.1010023": "",
   "identities.messages.1070014": "",
   "identities.messages.1070015": "",
@@ -2942,7 +3250,27 @@ var nl_default = {
   "property.identifier": "",
   "property.password": "",
   "property.phone": "",
-  "property.username": ""
+  "property.username": "",
+  "consent.title": "",
+  "consent.subtitle": "",
+  "consent.scope.openid.title": "",
+  "consent.scope.openid.description": "",
+  "consent.scope.offline_access.title": "",
+  "consent.scope.offline_access.description": "",
+  "consent.scope.profile.title": "",
+  "consent.scope.profile.description": "",
+  "consent.scope.email.title": "",
+  "consent.scope.email.description": "",
+  "consent.scope.address.title": "",
+  "consent.scope.address.description": "",
+  "consent.scope.phone.title": "",
+  "consent.scope.phone.description": "",
+  "error.action.go-back": "",
+  "error.footer.copy": "",
+  "error.footer.text": "",
+  "error.title.what-can-i-do": "",
+  "error.title.what-happened": "",
+  "error.instructions": ""
 };
 
 // src/locales/pl.json
@@ -2968,9 +3296,9 @@ var pl_default = {
   "identities.messages.1010005": "Zweryifkuj",
   "identities.messages.1010006": "Kod autentykacyjny",
   "identities.messages.1010007": "Zapasowe kody odzyskiwania",
-  "identities.messages.1010008": "U\u017Cyj klucza bezpiecze\u0144stwa",
-  "identities.messages.1010009": "U\u017Cyj Autentykatora",
-  "identities.messages.1010010": "U\u017Cyj zapasowych kod\xF3w odzyskiwania",
+  "identities.messages.1010008": "Kontynuuj z kluczem sprz\u0119towym",
+  "identities.messages.1010009": "Kontynuuj",
+  "identities.messages.1010010": "Kontynuuj",
   "identities.messages.1010011": "Kontynuuj za pomoc\u0105 klucza bezpiecze\u0144stwa",
   "identities.messages.1010012": "Przygotuj swoje urz\u0105dzenie WebAuthn (np. klucz bezpiecze\u0144stwa, czytnik biometryczny, ...) a nast\u0119pnie kliknij kontynuuj.",
   "identities.messages.1010013": "Kontynuuj",
@@ -3086,8 +3414,16 @@ var pl_default = {
   "login.registration-label": "Nie posiadasz konta?",
   "login.subtitle-oauth2": "Do autentykacji {clientName}",
   "login.title": "Zaloguj si\u0119",
-  "login.title-aal2": "Autentykacja Dwu-Etapowa",
+  "login.title-aal2": "Uwierzytelnianie dwusk\u0142adnikowe",
+  "login.subtitle-aal2": "Wybierz spos\xF3b, aby zako\u0144czy\u0107 uwierzytelnianie dwusk\u0142adnikowe",
+  "login.code.subtitle": "Kod weryfikacyjny zostanie wys\u0142any e-mailem",
+  "login.webauthn.subtitle": "Prosz\u0119 przygotowa\u0107 urz\u0105dzenie WebAuthN",
+  "login.totp.subtitle": "Prosz\u0119 wprowadzi\u0107 kod wygenerowany przez Twoj\u0105 aplikacj\u0119 uwierzytelniaj\u0105c\u0105",
+  "login.lookup_secret.subtitle": "Prosz\u0119 wprowadzi\u0107 jeden z Twoich 8-cyfrowych kod\xF3w odzyskiwania zapasowego",
   "login.title-refresh": "Potwierd\u017A \u017Ce to Ty",
+  "login.2fa.go-back": "Co\u015B nie dzia\u0142a?",
+  "login.2fa.go-back.link": "Wr\xF3\u0107",
+  "login.2fa.method.go-back": "Wybierz inn\u0105 metod\u0119",
   "logout.accept-button": "Tak",
   "logout.reject-button": "Nie",
   "logout.title": "Czy chcesz si\u0119 wylogowa\u0107?",
@@ -3119,8 +3455,12 @@ var pl_default = {
   "two-step.passkey.title": "Klucz dost\u0119pu (zalecany)",
   "two-step.password.description": "Wprowad\u017A has\u0142o powi\u0105zane z twoim kontem",
   "two-step.password.title": "Has\u0142o",
-  "two-step.webauthn.description": "U\u017Cyj swojego klucza bezpiecze\u0144stwa do uwierzytelnienia",
   "two-step.webauthn.title": "Klucz bezpiecze\u0144stwa",
+  "two-step.webauthn.description": "U\u017Cyj swojego klucza bezpiecze\u0144stwa do uwierzytelnienia",
+  "two-step.totp.title": "U\u017Cyj swojej aplikacji uwierzytelniaj\u0105cej (TOTP)",
+  "two-step.totp.description": "U\u017Cyj 6-cyfrowego jednorazowego kodu z Twojej aplikacji uwierzytelniaj\u0105cej",
+  "two-step.lookup_secret.title": "Kod odzyskiwania zapasowego",
+  "two-step.lookup_secret.description": "U\u017Cyj jednego z Twoich 8-cyfrowych kod\xF3w zapasowych, aby si\u0119 uwierzytelni\u0107",
   "identities.messages.1010016": "",
   "identities.messages.1010017": "",
   "identities.messages.1010018": "",
@@ -3195,7 +3535,27 @@ var pl_default = {
   "property.password": "",
   "property.phone": "",
   "property.username": "",
-  "property.identifier": ""
+  "property.identifier": "",
+  "consent.title": "",
+  "consent.subtitle": "",
+  "consent.scope.openid.title": "",
+  "consent.scope.openid.description": "",
+  "consent.scope.offline_access.title": "",
+  "consent.scope.offline_access.description": "",
+  "consent.scope.profile.title": "",
+  "consent.scope.profile.description": "",
+  "consent.scope.email.title": "",
+  "consent.scope.email.description": "",
+  "consent.scope.address.title": "",
+  "consent.scope.address.description": "",
+  "consent.scope.phone.title": "",
+  "consent.scope.phone.description": "",
+  "error.action.go-back": "",
+  "error.footer.copy": "",
+  "error.footer.text": "",
+  "error.title.what-can-i-do": "",
+  "error.title.what-happened": "",
+  "error.instructions": ""
 };
 
 // src/locales/pt.json
@@ -3221,9 +3581,9 @@ var pt_default = {
   "identities.messages.1010005": "Verificar",
   "identities.messages.1010006": "C\xF3digo de Autentica\xE7\xE3o",
   "identities.messages.1010007": "C\xF3digo de Recupera\xE7\xE3o de Backup",
-  "identities.messages.1010008": "Usar chave de seguran\xE7a",
-  "identities.messages.1010009": "Usar o Autenticador",
-  "identities.messages.1010010": "Usar c\xF3digo de recupera\xE7\xE3o de backup",
+  "identities.messages.1010008": "Continuar com chave de hardware",
+  "identities.messages.1010009": "Continuar",
+  "identities.messages.1010010": "Continuar",
   "identities.messages.1010011": "Continuar com a chave de seguran\xE7a",
   "identities.messages.1010012": "Prepare o seu dispositivo WebAuthn (por exemplo, chave de seguran\xE7a, scanner biom\xE9trico, ...) e pressione continuar.",
   "identities.messages.1010013": "Continuar",
@@ -3339,8 +3699,16 @@ var pt_default = {
   "login.registration-label": "N\xE3o tem uma conta?",
   "login.subtitle-oauth2": "Para autenticar {clientName}",
   "login.title": "Entrar",
-  "login.title-aal2": "Autentica\xE7\xE3o de Dois Fatores",
+  "login.title-aal2": "Autentica\xE7\xE3o de dois fatores",
+  "login.subtitle-aal2": "Escolha uma forma de completar sua autentica\xE7\xE3o de segundo fator",
+  "login.code.subtitle": "Um c\xF3digo de verifica\xE7\xE3o ser\xE1 enviado por e-mail",
+  "login.webauthn.subtitle": "Por favor, prepare seu dispositivo WebAuthN",
+  "login.totp.subtitle": "Digite o c\xF3digo gerado pelo seu aplicativo autenticador",
+  "login.lookup_secret.subtitle": "Digite um dos seus c\xF3digos de recupera\xE7\xE3o de 8 d\xEDgitos",
   "login.title-refresh": "Confirme que \xE9 voc\xEA",
+  "login.2fa.go-back": "Algo n\xE3o est\xE1 funcionando?",
+  "login.2fa.go-back.link": "Voltar",
+  "login.2fa.method.go-back": "Escolher outro m\xE9todo",
   "logout.accept-button": "Sim",
   "logout.reject-button": "N\xE3o",
   "logout.title": "Deseja sair?",
@@ -3372,8 +3740,12 @@ var pt_default = {
   "two-step.passkey.title": "Chave de acesso (recomendado)",
   "two-step.password.description": "Insira a sua senha associada \xE0 sua conta",
   "two-step.password.title": "Senha",
-  "two-step.webauthn.description": "Use sua chave de seguran\xE7a para autenticar",
   "two-step.webauthn.title": "Chave de Seguran\xE7a",
+  "two-step.webauthn.description": "Use sua chave de seguran\xE7a para autenticar",
+  "two-step.totp.title": "Use seu aplicativo autenticador (TOTP)",
+  "two-step.totp.description": "Use um c\xF3digo \xFAnico de 6 d\xEDgitos do seu aplicativo autenticador",
+  "two-step.lookup_secret.title": "C\xF3digo de recupera\xE7\xE3o de backup",
+  "two-step.lookup_secret.description": "Use um dos seus c\xF3digos de backup de 8 d\xEDgitos para autenticar",
   "identities.messages.1010016": "",
   "identities.messages.1010017": "",
   "identities.messages.1010018": "",
@@ -3448,7 +3820,27 @@ var pt_default = {
   "property.identifier": "",
   "property.password": "",
   "property.phone": "",
-  "property.username": ""
+  "property.username": "",
+  "consent.title": "",
+  "consent.subtitle": "",
+  "consent.scope.openid.title": "",
+  "consent.scope.openid.description": "",
+  "consent.scope.offline_access.title": "",
+  "consent.scope.offline_access.description": "",
+  "consent.scope.profile.title": "",
+  "consent.scope.profile.description": "",
+  "consent.scope.email.title": "",
+  "consent.scope.email.description": "",
+  "consent.scope.address.title": "",
+  "consent.scope.address.description": "",
+  "consent.scope.phone.title": "",
+  "consent.scope.phone.description": "",
+  "error.action.go-back": "",
+  "error.footer.copy": "",
+  "error.footer.text": "",
+  "error.title.what-can-i-do": "",
+  "error.title.what-happened": "",
+  "error.instructions": ""
 };
 
 // src/locales/sv.json
@@ -3474,9 +3866,9 @@ var sv_default = {
   "identities.messages.1010005": "Verifiera",
   "identities.messages.1010006": "Autentiseringskod",
   "identities.messages.1010007": "\xC5terst\xE4llningskod f\xF6r backup",
-  "identities.messages.1010008": "Anv\xE4nd s\xE4kerhetsnyckel",
-  "identities.messages.1010009": "Anv\xE4nd autentiserings-app",
-  "identities.messages.1010010": "Anv\xE4nd reserv\xE5terst\xE4llningskod",
+  "identities.messages.1010008": "Forts\xE4tt med s\xE4kerhetsnyckel",
+  "identities.messages.1010009": "Forts\xE4tt",
+  "identities.messages.1010010": "Forts\xE4tt",
   "identities.messages.1010011": "Forts\xE4tt med s\xE4kerhetsnyckel",
   "identities.messages.1010012": "F\xF6rbered din WebAuthn-enhet (t.ex. s\xE4kerhetsnyckel, biometriska skanner, ...) och tryck p\xE5 forts\xE4tt.",
   "identities.messages.1010013": "Forts\xE4tt",
@@ -3611,7 +4003,15 @@ var sv_default = {
   "login.subtitle-oauth2": "Att autentisera {clientName}",
   "login.title": "Logga in",
   "login.title-aal2": "Tv\xE5faktorsautentisering",
+  "login.subtitle-aal2": "V\xE4lj ett s\xE4tt att slutf\xF6ra din tv\xE5faktorsautentisering",
+  "login.code.subtitle": "En verifieringskod kommer att skickas via e-post",
+  "login.webauthn.subtitle": "F\xF6rbered din WebAuthN-enhet",
+  "login.totp.subtitle": "Ange koden som genererats av din autentiseringsapp",
+  "login.lookup_secret.subtitle": "Ange en av dina 8-siffriga \xE5terst\xE4llningskoder",
   "login.title-refresh": "Bekr\xE4fta att det \xE4r du",
+  "login.2fa.go-back": "N\xE5got fungerar inte?",
+  "login.2fa.go-back.link": "G\xE5 tillbaka",
+  "login.2fa.method.go-back": "V\xE4lj en annan metod",
   "logout.accept-button": "Ja",
   "logout.reject-button": "Nej",
   "logout.title": "Vill du logga ut?",
@@ -3643,8 +4043,12 @@ var sv_default = {
   "two-step.passkey.title": "Passerkod (rekommenderad)",
   "two-step.password.description": "Ange ditt l\xF6senord kopplat till ditt konto",
   "two-step.password.title": "L\xF6senord",
-  "two-step.webauthn.description": "Anv\xE4nd din s\xE4kerhetsnyckel f\xF6r att autentisera",
   "two-step.webauthn.title": "S\xE4kerhetsnyckel",
+  "two-step.webauthn.description": "Anv\xE4nd din s\xE4kerhetsnyckel f\xF6r att autentisera",
+  "two-step.totp.title": "Anv\xE4nd din autentiseringsapp (TOTP)",
+  "two-step.totp.description": "Anv\xE4nd en 6-siffrig eng\xE5ngskod fr\xE5n din autentiseringsapp",
+  "two-step.lookup_secret.title": "Reserv\xE5terst\xE4llningskod",
+  "two-step.lookup_secret.description": "Anv\xE4nd en av dina 8-siffriga reservkoder f\xF6r att autentisera",
   "identities.messages.4000037": "Detta konto finns inte eller har ingen inloggningsmetod konfigurerad.",
   "identities.messages.4000038": "Captcha-verifiering misslyckades, f\xF6rs\xF6k igen.",
   "identities.messages.1010020": "",
@@ -3701,7 +4105,27 @@ var sv_default = {
   "property.phone": "telefon",
   "property.username": "anv\xE4ndarnamn",
   "property.identifier": "identifier",
-  "property.code": "kod"
+  "property.code": "kod",
+  "consent.title": "",
+  "consent.subtitle": "",
+  "consent.scope.openid.title": "",
+  "consent.scope.openid.description": "",
+  "consent.scope.offline_access.title": "",
+  "consent.scope.offline_access.description": "",
+  "consent.scope.profile.title": "",
+  "consent.scope.profile.description": "",
+  "consent.scope.email.title": "",
+  "consent.scope.email.description": "",
+  "consent.scope.address.title": "",
+  "consent.scope.address.description": "",
+  "consent.scope.phone.title": "",
+  "consent.scope.phone.description": "",
+  "error.action.go-back": "",
+  "error.footer.copy": "",
+  "error.footer.text": "",
+  "error.title.what-can-i-do": "",
+  "error.title.what-happened": "",
+  "error.instructions": ""
 };
 
 // src/locales/index.ts
@@ -3722,6 +4146,7 @@ exports.OryCardContent = OryCardContent;
 exports.OryCardFooter = OryCardFooter;
 exports.OryCardHeader = OryCardHeader;
 exports.OryCardValidationMessages = OryCardValidationMessages;
+exports.OryConsentCard = OryConsentCard;
 exports.OryForm = OryForm;
 exports.OryFormGroupDivider = OryFormGroupDivider;
 exports.OryFormGroups = OryFormGroups;