@ory/elements-react 1.0.0-next.30 → 1.0.0-next.32

package/dist/index.js

@@ -40,6 +40,9 @@ var defaultNodeOrder = [
   "default",
   "profile",
   "password",
+  // CAPTCHA is below password because otherwise the password input field
+  // would be above the captcha. Somehow, we sort the password sign up button somewhere else to be always at the bottom.
+  "captcha",
   "passkey",
   "code",
   "webauthn"
@@ -48,6 +51,11 @@ function defaultNodeSorter(a, b) {
   var _a, _b;
   const aGroupWeight = (_a = defaultNodeOrder.indexOf(a.group)) != null ? _a : 999;
   const bGroupWeight = (_b = defaultNodeOrder.indexOf(b.group)) != null ? _b : 999;
+  if (b.group === "captcha" && clientFetch.isUiNodeInputAttributes(a.attributes) && a.attributes.type === "submit") {
+    return aGroupWeight - (bGroupWeight - 2);
+  } else if (a.group === "captcha" && clientFetch.isUiNodeInputAttributes(b.attributes) && b.attributes.type === "submit") {
+    return aGroupWeight - 2 - bGroupWeight;
+  }
   return aGroupWeight - bGroupWeight;
 }
 var defaultGroupOrder = [
@@ -85,22 +93,23 @@ function OryComponentProvider({
     }
   );
 }
-function isChoosingMethod(uiNodes) {
-  return uiNodes.some(
+function isChoosingMethod(flow) {
+  return flow.flow.ui.nodes.some(
     (node) => "name" in node.attributes && node.attributes.name === "screen" && "value" in node.attributes && node.attributes.value === "previous"
-  ) || uiNodes.some(
+  ) || flow.flow.ui.nodes.some(
     (node) => node.group === clientFetch.UiNodeGroupEnum.IdentifierFirst && "name" in node.attributes && node.attributes.name === "identifier" && node.attributes.type === "hidden"
-  );
+  ) || flow.flowType === clientFetch.FlowType.Login && flow.flow.requested_aal === "aal2";
 }
 function filterOidcOut(nodes) {
   return nodes.filter((node) => node.group !== clientFetch.UiNodeGroupEnum.Oidc);
 }
 function getFinalNodes(uniqueGroups, selectedGroup) {
-  var _a, _b, _c;
+  var _a, _b, _c, _d;
   const selectedNodes = selectedGroup ? (_a = uniqueGroups[selectedGroup]) != null ? _a : [] : [];
   return [
     ...(_b = uniqueGroups == null ? void 0 : uniqueGroups.identifier_first) != null ? _b : [],
-    ...(_c = uniqueGroups == null ? void 0 : uniqueGroups.default) != null ? _c : []
+    ...(_c = uniqueGroups == null ? void 0 : uniqueGroups.default) != null ? _c : [],
+    ...(_d = uniqueGroups == null ? void 0 : uniqueGroups.captcha) != null ? _d : []
   ].flat().filter(
     (node) => "type" in node.attributes && node.attributes.type === "hidden"
   ).concat(selectedNodes);
@@ -172,6 +181,7 @@ function nodesToAuthMethodGroups(nodes, excludeAuthMethods = []) {
       clientFetch.UiNodeGroupEnum.Default,
       clientFetch.UiNodeGroupEnum.IdentifierFirst,
       clientFetch.UiNodeGroupEnum.Profile,
+      clientFetch.UiNodeGroupEnum.Captcha,
       ...excludeAuthMethods
     ].includes(group)
   );
@@ -200,6 +210,9 @@ function useNodesGroups(nodes) {
     entries
   };
 }
+var findNode = (nodes, opt) => nodes.find((n) => {
+  return n.attributes.node_type === opt.node_type && (opt.group instanceof RegExp ? n.group.match(opt.group) : n.group === opt.group) && (opt.name && n.attributes.node_type === "input" ? opt.name instanceof RegExp ? n.attributes.name.match(opt.name) : n.attributes.name === opt.name : !opt.name);
+});
 
 // src/context/form-state.ts
 function findMethodWithMessage(nodes) {
@@ -223,7 +236,7 @@ function parseStateFromFlow(flow) {
         return { current: "method_active", method: methodWithMessage.group };
       } else if (flow.flow.active && !["default", "identifier_first", "oidc"].includes(flow.flow.active)) {
         return { current: "method_active", method: flow.flow.active };
-      } else if (isChoosingMethod(flow.flow.ui.nodes)) {
+      } else if (isChoosingMethod(flow)) {
         const authMethods = nodesToAuthMethodGroups(flow.flow.ui.nodes);
         if (authMethods.length === 1 && authMethods[0] !== "code") {
           return { current: "method_active", method: authMethods[0] };
@@ -815,10 +828,10 @@ function useOryFormSubmit(onAfterSubmit) {
   return onSubmit;
 }
 function OryForm({ children, onAfterSubmit }) {
-  var _a;
   const { Form } = useComponents();
   const flowContainer = useOryFlow();
   const methods = reactHookForm.useFormContext();
+  const { Message } = useComponents();
   const intl = reactIntl.useIntl();
   const onSubmit = useOryFormSubmit(onAfterSubmit);
   const hasMethods = flowContainer.flow.ui.nodes.some((node) => {
@@ -833,11 +846,22 @@ function OryForm({ children, onAfterSubmit }) {
     }
     return false;
   });
-  if (!hasMethods && ((_a = flowContainer.flow.ui.messages) != null ? _a : []).length === 0) {
-    return intl.formatMessage({
-      id: `identities.messages.${5000002}`,
-      defaultMessage: "No authentication methods are available for this request. Please contact the site or app owner."
-    });
+  if (!hasMethods) {
+    const m = {
+      id: 5000002,
+      text: intl.formatMessage({
+        id: `identities.messages.${5000002}`,
+        defaultMessage: "No authentication methods are available for this request. Please contact the site or app owner."
+      }),
+      type: "error"
+    };
+    return /* @__PURE__ */ jsxRuntime.jsxs(jsxRuntime.Fragment, { children: [
+      /* @__PURE__ */ jsxRuntime.jsx(Message.Root, { children: /* @__PURE__ */ jsxRuntime.jsx(Message.Content, { message: m }, m.id) }),
+      /* @__PURE__ */ jsxRuntime.jsx(OryCardFooter, {})
+    ] });
+  }
+  if (flowContainer.flowType === clientFetch.FlowType.Login && flowContainer.formState.current === "method_active" && flowContainer.formState.method === "code") {
+    methods.setValue("method", "code");
   }
   return /* @__PURE__ */ jsxRuntime.jsx(
     Form.Root,
@@ -952,6 +976,9 @@ var NodeInput = ({
 };
 var Node = ({ node, onClick }) => {
   const { Node: Node2 } = useComponents();
+  if (node.group === clientFetch.UiNodeGroupEnum.Captcha) {
+    return /* @__PURE__ */ jsxRuntime.jsx(Node2.Captcha, { node });
+  }
   if (clientFetch.isUiNodeImageAttributes(node.attributes)) {
     return /* @__PURE__ */ jsxRuntime.jsx(Node2.Image, { node, attributes: node.attributes });
   } else if (clientFetch.isUiNodeTextAttributes(node.attributes)) {
@@ -1019,27 +1046,48 @@ function isUINodeGroupEnum(method) {
   return Object.values(clientFetch.UiNodeGroupEnum).includes(method);
 }
 function OryTwoStepCard() {
-  const {
-    flow: { ui },
-    flowType,
-    formState,
-    dispatchFormState
-  } = useOryFlow();
+  var _a, _b, _c, _d, _e;
   const { Form, Card } = useComponents();
+  const { flow, flowType, formState, dispatchFormState } = useOryFlow();
+  const { ui } = flow;
   const nodeSorter = useNodeSorter();
   const sortNodes = (a, b) => nodeSorter(a, b, { flowType });
   const uniqueGroups = useNodesGroups(ui.nodes);
-  const options = Object.values(clientFetch.UiNodeGroupEnum).filter((group) => {
-    var _a;
-    return (_a = uniqueGroups.groups[group]) == null ? void 0 : _a.length;
-  }).filter(
-    (group) => ![
-      clientFetch.UiNodeGroupEnum.Oidc,
-      clientFetch.UiNodeGroupEnum.Default,
-      clientFetch.UiNodeGroupEnum.IdentifierFirst,
-      clientFetch.UiNodeGroupEnum.Profile
-    ].includes(group)
+  const options = Object.fromEntries(
+    Object.values(clientFetch.UiNodeGroupEnum).filter((group) => {
+      var _a2;
+      return (_a2 = uniqueGroups.groups[group]) == null ? void 0 : _a2.length;
+    }).filter(
+      (group) => ![
+        clientFetch.UiNodeGroupEnum.Oidc,
+        clientFetch.UiNodeGroupEnum.Default,
+        clientFetch.UiNodeGroupEnum.IdentifierFirst,
+        clientFetch.UiNodeGroupEnum.Profile,
+        clientFetch.UiNodeGroupEnum.Captcha
+      ].includes(group)
+    ).map((g) => [g, {}])
   );
+  if (clientFetch.UiNodeGroupEnum.Code in options) {
+    let identifier = (_b = (_a = findNode(ui.nodes, {
+      group: "identifier_first",
+      node_type: "input",
+      name: "identifier"
+    })) == null ? void 0 : _a.attributes) == null ? void 0 : _b.value;
+    identifier || (identifier = (_d = (_c = findNode(ui.nodes, {
+      group: "code",
+      node_type: "input",
+      name: "address"
+    })) == null ? void 0 : _c.attributes) == null ? void 0 : _d.value);
+    if (identifier) {
+      options[clientFetch.UiNodeGroupEnum.Code] = {
+        title: {
+          id: "identities.messages.1010023",
+          values: { address: identifier }
+        }
+      };
+    }
+  }
+  const hasError = Boolean((_e = ui.messages) == null ? void 0 : _e.some((m) => m.type === "error"));
   const nonOidcNodes = filterOidcOut(ui.nodes);
   const finalNodes = formState.current === "method_active" ? getFinalNodes(uniqueGroups.groups, formState.method) : [];
   const handleAfterFormSubmit = (method) => {
@@ -1058,7 +1106,7 @@ function OryTwoStepCard() {
   return /* @__PURE__ */ jsxRuntime.jsxs(OryCard, { children: [
     /* @__PURE__ */ jsxRuntime.jsx(OryCardHeader, {}),
     /* @__PURE__ */ jsxRuntime.jsxs(OryCardContent, { children: [
-      /* @__PURE__ */ jsxRuntime.jsx(OryCardValidationMessages, {}),
+      hasError ? /* @__PURE__ */ jsxRuntime.jsx(OryCardValidationMessages, {}) : void 0,
       showOidc && /* @__PURE__ */ jsxRuntime.jsx(OryFormSocialButtonsForm, {}),
       /* @__PURE__ */ jsxRuntime.jsxs(OryForm, { onAfterSubmit: handleAfterFormSubmit, children: [
         /* @__PURE__ */ jsxRuntime.jsxs(Form.Group, { children: [
@@ -1077,7 +1125,8 @@ function OryTwoStepCard() {
                   method: group
                 })
               }
-            )
+            ),
+            ui.nodes.filter((n) => n.group === clientFetch.UiNodeGroupEnum.Captcha).map((node, k) => /* @__PURE__ */ jsxRuntime.jsx(Node, { node }, k))
           ] }),
           formState.current === "method_active" && /* @__PURE__ */ jsxRuntime.jsxs(jsxRuntime.Fragment, { children: [
             ui.nodes.filter((n) => n.type === "script").map((node, k) => /* @__PURE__ */ jsxRuntime.jsx(Node, { node }, k)),
@@ -1091,21 +1140,26 @@ function OryTwoStepCard() {
 }
 function AuthMethodList({ options, setSelectedGroup }) {
   const { Card } = useComponents();
-  const { setValue } = reactHookForm.useFormContext();
-  const handleClick = (group) => {
+  const { setValue, getValues } = reactHookForm.useFormContext();
+  const handleClick = (group, options2) => {
+    var _a, _b, _c, _d;
     if (isGroupImmediateSubmit(group)) {
+      if (group === "code" && !getValues("identifier") && ((_b = (_a = options2 == null ? void 0 : options2.title) == null ? void 0 : _a.values) == null ? void 0 : _b.address)) {
+        setValue("identifier", (_d = (_c = options2 == null ? void 0 : options2.title) == null ? void 0 : _c.values) == null ? void 0 : _d.address);
+      }
       setValue("method", group);
     } else {
       setSelectedGroup(group);
     }
   };
-  return /* @__PURE__ */ jsxRuntime.jsx(Card.AuthMethodListContainer, { children: options.map((option) => /* @__PURE__ */ jsxRuntime.jsx(
+  return /* @__PURE__ */ jsxRuntime.jsx(Card.AuthMethodListContainer, { children: Object.entries(options).map(([group, options2]) => /* @__PURE__ */ jsxRuntime.jsx(
     Card.AuthMethodListItem,
     {
-      group: option,
-      onClick: () => handleClick(option)
+      group,
+      title: options2.title,
+      onClick: () => handleClick(group, options2)
     },
-    option
+    group
   )) });
 }
 function OryFormGroups({ groups }) {
@@ -1703,9 +1757,9 @@ var en_default = {
   "identities.messages.1010005": "Verify",
   "identities.messages.1010006": "Authentication code",
   "identities.messages.1010007": "Backup recovery code",
-  "identities.messages.1010008": "Sign in with hardware key",
-  "identities.messages.1010009": "Use Authenticator",
-  "identities.messages.1010010": "Use backup recovery code",
+  "identities.messages.1010008": "Continue with hardware key",
+  "identities.messages.1010009": "Continue",
+  "identities.messages.1010010": "Continue",
   "identities.messages.1010011": "Sign in with hardware key",
   "identities.messages.1010012": "Prepare your WebAuthn device (e.g. security key, biometrics scanner, ...) and press continue.",
   "identities.messages.1010013": "Continue",
@@ -1842,9 +1896,17 @@ var en_default = {
   "login.subtitle-oauth2": "To authenticate {clientName}",
   "login.title": "Sign in",
   "login.subtitle": "Sign in with {parts}",
-  "login.title-aal2": "Two-Factor Authentication",
+  "login.title-aal2": "Second factor authentication",
+  "login.subtitle-aal2": "Choose a way to complete your second factor authentication",
+  "login.code.subtitle": "A verification code will be sent by email",
+  "login.webauthn.subtitle": "Please prepare your WebAuthN device",
+  "login.totp.subtitle": "Please enter the code generated by your Authenticator App",
+  "login.lookup_secret.subtitle": "Please enter one of your 8-digit backup recovery codes",
   "login.title-refresh": "Reauthenticate",
   "login.subtitle-refresh": "Confirm your identity with {parts}",
+  "login.2fa.go-back": "Something isn't working?",
+  "login.2fa.go-back.link": "Go back",
+  "login.2fa.method.go-back": "Choose another method",
   "logout.accept-button": "Yes",
   "logout.reject-button": "No",
   "logout.title": "Do you wish to log out?",
@@ -1893,10 +1955,14 @@ var en_default = {
   "two-step.password.description": "Enter your password associated with your account",
   "two-step.code.title": "Email code",
   "two-step.code.description": "A verification code will be sent to your email",
-  "two-step.webauthn.title": "Security Key",
+  "two-step.webauthn.title": "Security key",
   "two-step.webauthn.description": "Use your security key to authenticate",
   "two-step.passkey.title": "Passkey (recommended)",
   "two-step.passkey.description": "Use your device's for fingerprint or face recognition",
+  "two-step.totp.title": "Use your Authenticator App (TOTP)",
+  "two-step.totp.description": "Use a 6-digit one-time code from your authenticator app",
+  "two-step.lookup_secret.title": "Backup recovery code",
+  "two-step.lookup_secret.description": "Use up one of your 8-digit backup codes to authenticate",
   "identities.messages.1010020": "",
   "input.placeholder": "Enter your {placeholder}",
   "card.header.parts.oidc": "a social provider",
@@ -1956,9 +2022,9 @@ var de_default = {
   "identities.messages.1010005": "Verifizieren",
   "identities.messages.1010006": "Authentifizierungscode",
   "identities.messages.1010007": "Backup-Wiederherstellungscode",
-  "identities.messages.1010008": "Sicherheitsschl\xFCssel verwenden",
-  "identities.messages.1010009": "Authentifizierungs-App verwenden",
-  "identities.messages.1010010": "Backup-Wiederherstellungscode verwenden",
+  "identities.messages.1010008": "Mit Sicherheitsschl\xFCssel fortfahren",
+  "identities.messages.1010009": "Weiter",
+  "identities.messages.1010010": "Weiter",
   "identities.messages.1010011": "Mit Sicherheitsschl\xFCssel fortfahren",
   "identities.messages.1010012": "Bereiten Sie Ihr WebAuthn-Ger\xE4t vor (z. B. Sicherheitsschl\xFCssel, biometrischer Scanner, ...) und dr\xFCcken Sie auf Weiter.",
   "identities.messages.1010013": "Weiter",
@@ -2074,8 +2140,16 @@ var de_default = {
   "login.registration-label": "Sie haben noch kein Konto?",
   "login.subtitle-oauth2": "Zur Authentifizierung bei {clientName}",
   "login.title": "Anmelden",
-  "login.title-aal2": "Zwei-Faktor-Authentifizierung",
+  "login.title-aal2": "Zweitfaktor-Authentifizierung",
+  "login.subtitle-aal2": "W\xE4hlen Sie eine Methode zur Best\xE4tigung Ihrer Zwei-Faktor-Authentifizierung",
+  "login.code.subtitle": "Ein Best\xE4tigungscode wird per E-Mail gesendet",
+  "login.webauthn.subtitle": "Bitte bereiten Sie Ihr WebAuthN-Ger\xE4t vor",
+  "login.totp.subtitle": "Bitte geben Sie den Code aus Ihrer Authenticator-App ein",
+  "login.lookup_secret.subtitle": "Bitte geben Sie einen Ihrer 8-stelligen Backup-Wiederherstellungscodes ein",
   "login.title-refresh": "Best\xE4tigen Sie, dass Sie es sind",
+  "login.2fa.go-back": "Funktioniert etwas nicht?",
+  "login.2fa.go-back.link": "Zur\xFCck",
+  "login.2fa.method.go-back": "Eine andere Methode w\xE4hlen",
   "logout.accept-button": "Ja",
   "logout.reject-button": "Nein",
   "logout.title": "M\xF6chten Sie sich abmelden?",
@@ -2096,8 +2170,12 @@ var de_default = {
   "two-step.passkey.title": "Passwort (empfohlen)",
   "two-step.password.description": "Geben Sie Ihr Passwort ein, das mit Ihrem Konto verkn\xFCpft ist",
   "two-step.password.title": "Passwort",
-  "two-step.webauthn.description": "Verwenden Sie Ihren Sicherheitsschl\xFCssel zur Authentifizierung",
   "two-step.webauthn.title": "Sicherheitsschl\xFCssel",
+  "two-step.webauthn.description": "Verwenden Sie Ihren Sicherheitsschl\xFCssel zur Authentifizierung",
+  "two-step.totp.title": "Verwenden Sie Ihre Authenticator-App (TOTP)",
+  "two-step.totp.description": "Verwenden Sie einen 6-stelligen Einmal-Code aus Ihrer Authenticator-App",
+  "two-step.lookup_secret.title": "Backup-Wiederherstellungscode",
+  "two-step.lookup_secret.description": "Verwenden Sie einen Ihrer 8-stelligen Backup-Codes, um sich zu authentifizieren",
   "identities.messages.1070014": "Login- und Link-Zugangsdaten",
   "identities.messages.1070015": "Bitte schlie\xDFen Sie die Captcha-Challenge ab, um fortzufahren.",
   "identities.messages.4000038": "Die Captcha-\xDCberpr\xFCfung ist fehlgeschlagen. Bitte versuchen Sie es erneut.",
@@ -2209,9 +2287,9 @@ var es_default = {
   "identities.messages.1010005": "Verificar",
   "identities.messages.1010006": "C\xF3digo de autenticaci\xF3n",
   "identities.messages.1010007": "C\xF3digo de recuperaci\xF3n de respaldo",
-  "identities.messages.1010008": "Usar llave de seguridad",
-  "identities.messages.1010009": "Usar Autenticador",
-  "identities.messages.1010010": "Usar c\xF3digo de recuperaci\xF3n de respaldo",
+  "identities.messages.1010008": "Continuar con la llave de hardware",
+  "identities.messages.1010009": "Continuar",
+  "identities.messages.1010010": "Continuar",
   "identities.messages.1010011": "Continuar con llave de seguridad",
   "identities.messages.1010012": "Prepare su dispositivo WebAuthn (por ejemplo, llave de seguridad, esc\xE1ner biom\xE9trico, ...) y presione continuar.",
   "identities.messages.1010013": "Continuar",
@@ -2327,8 +2405,16 @@ var es_default = {
   "login.registration-label": "\xBFNo tiene una cuenta?",
   "login.subtitle-oauth2": "Para autenticar a {clientName}",
   "login.title": "Iniciar sesi\xF3n",
-  "login.title-aal2": "Autenticaci\xF3n de Dos Factores",
+  "login.title-aal2": "Autenticaci\xF3n de dos factores",
+  "login.subtitle-aal2": "Elija una forma de completar su autenticaci\xF3n de segundo factor",
+  "login.code.subtitle": "Se enviar\xE1 un c\xF3digo de verificaci\xF3n por correo electr\xF3nico",
+  "login.webauthn.subtitle": "Por favor, prepare su dispositivo WebAuthN",
+  "login.totp.subtitle": "Ingrese el c\xF3digo generado por su aplicaci\xF3n de autenticaci\xF3n",
+  "login.lookup_secret.subtitle": "Ingrese uno de sus c\xF3digos de recuperaci\xF3n de respaldo de 8 d\xEDgitos",
   "login.title-refresh": "Confirme que es usted",
+  "login.2fa.go-back": "\xBFAlgo no funciona?",
+  "login.2fa.go-back.link": "Volver",
+  "login.2fa.method.go-back": "Elegir otro m\xE9todo",
   "logout.accept-button": "S\xED",
   "logout.reject-button": "No",
   "logout.title": "\xBFDesea cerrar sesi\xF3n?",
@@ -2360,8 +2446,12 @@ var es_default = {
   "two-step.passkey.title": "Clave de acceso (recomendada)",
   "two-step.password.description": "Ingrese la contrase\xF1a asociada con su cuenta",
   "two-step.password.title": "Contrase\xF1a",
-  "two-step.webauthn.description": "Utiliza tu llave de seguridad para autenticarte",
   "two-step.webauthn.title": "Clave de Seguridad",
+  "two-step.webauthn.description": "Utilice su llave de seguridad para autenticase",
+  "two-step.totp.title": "Utilice su aplicaci\xF3n de autenticaci\xF3n (TOTP)",
+  "two-step.totp.description": "Utilice un c\xF3digo de un solo uso de 6 d\xEDgitos de su aplicaci\xF3n de autenticaci\xF3n",
+  "two-step.lookup_secret.title": "C\xF3digo de recuperaci\xF3n de respaldo",
+  "two-step.lookup_secret.description": "Utilice uno de sus c\xF3digos de respaldo de 8 d\xEDgitos para autenticarse",
   "identities.messages.1010016": "",
   "identities.messages.1010017": "",
   "identities.messages.1010018": "",
@@ -2462,9 +2552,9 @@ var fr_default = {
   "identities.messages.1010005": "V\xE9rifier",
   "identities.messages.1010006": "Code d'authentification",
   "identities.messages.1010007": "Code de r\xE9cup\xE9ration de secours",
-  "identities.messages.1010008": "Utiliser une cl\xE9 de s\xE9curit\xE9",
-  "identities.messages.1010009": "Utiliser un authentificateur",
-  "identities.messages.1010010": "Utiliser un code de r\xE9cup\xE9ration de secours",
+  "identities.messages.1010008": "Continuer avec la cl\xE9 mat\xE9rielle",
+  "identities.messages.1010009": "Continuer",
+  "identities.messages.1010010": "Continuer",
   "identities.messages.1010011": "Continuer avec la cl\xE9 de s\xE9curit\xE9",
   "identities.messages.1010012": "Pr\xE9parez votre appareil WebAuthn (par exemple, une cl\xE9 de s\xE9curit\xE9, un scanner biom\xE9trique, ...) et appuyez sur Continuer.",
   "identities.messages.1010013": "Continuer",
@@ -2581,7 +2671,15 @@ var fr_default = {
   "login.subtitle-oauth2": "Pour vous authentifier sur {clientName}",
   "login.title": "Se connecter",
   "login.title-aal2": "Authentification \xE0 deux facteurs",
+  "login.subtitle-aal2": "Choisissez une m\xE9thode pour compl\xE9ter votre authentification \xE0 deux facteurs",
+  "login.code.subtitle": "Un code de v\xE9rification sera envoy\xE9 par e-mail",
+  "login.webauthn.subtitle": "Veuillez pr\xE9parer votre dispositif WebAuthN",
+  "login.totp.subtitle": "Veuillez saisir le code g\xE9n\xE9r\xE9 par votre application d'authentification",
+  "login.lookup_secret.subtitle": "Veuillez saisir l'un de vos codes de r\xE9cup\xE9ration de secours \xE0 8 chiffres",
   "login.title-refresh": "Confirmez que c'est bien vous",
+  "login.2fa.go-back": "Quelque chose ne fonctionne pas ?",
+  "login.2fa.go-back.link": "Retour",
+  "login.2fa.method.go-back": "Choisir une autre m\xE9thode",
   "logout.accept-button": "Oui",
   "logout.reject-button": "Non",
   "logout.title": "Souhaitez-vous vous d\xE9connecter ?",
@@ -2613,8 +2711,12 @@ var fr_default = {
   "two-step.passkey.title": "Cl\xE9 de passe (recommand\xE9e)",
   "two-step.password.description": "Entrez votre mot de passe associ\xE9 \xE0 votre compte",
   "two-step.password.title": "Mot de passe",
-  "two-step.webauthn.description": "Utilisez votre cl\xE9 de s\xE9curit\xE9 pour vous authentifier",
   "two-step.webauthn.title": "Cl\xE9 de S\xE9curit\xE9",
+  "two-step.webauthn.description": "Utilisez votre cl\xE9 de s\xE9curit\xE9 pour vous authentifier",
+  "two-step.totp.title": "Utilisez votre application d'authentification (TOTP)",
+  "two-step.totp.description": "Utilisez un code \xE0 usage unique \xE0 6 chiffres provenant de votre application d'authentification",
+  "two-step.lookup_secret.title": "Code de r\xE9cup\xE9ration de secours",
+  "two-step.lookup_secret.description": "Utilisez l'un de vos codes de secours \xE0 8 chiffres pour vous authentifier",
   "identities.messages.1010023": "",
   "identities.messages.1070015": "",
   "identities.messages.4000038": "",
@@ -2715,9 +2817,9 @@ var nl_default = {
   "identities.messages.1010005": "Verifi\xEBren",
   "identities.messages.1010006": "Verificatiecode",
   "identities.messages.1010007": "Back-up herstelcode",
-  "identities.messages.1010008": "Beveiligingssleutel gebruiken",
-  "identities.messages.1010009": "Authenticator gebruiken",
-  "identities.messages.1010010": "Back-up herstelcode gebruiken",
+  "identities.messages.1010008": "Ga verder met hardware-sleutel",
+  "identities.messages.1010009": "Doorgaan",
+  "identities.messages.1010010": "Doorgaan",
   "identities.messages.1010011": "Doorgaan met beveiligingssleutel",
   "identities.messages.1010012": "Bereid uw WebAuthn-apparaat voor (bijv. beveiligingssleutel, biometrische scanner, ...) en druk op doorgaan.",
   "identities.messages.1010013": "Doorgaan",
@@ -2833,8 +2935,16 @@ var nl_default = {
   "login.registration-label": "Heb je nog geen account?",
   "login.subtitle-oauth2": "Om te authenticeren bij {clientName}",
   "login.title": "Inloggen",
-  "login.title-aal2": "Twee-Factor Authenticatie",
+  "login.title-aal2": "Tweefactorauthenticatie",
+  "login.subtitle-aal2": "Kies een manier om uw tweefactorauthenticatie te voltooien",
+  "login.code.subtitle": "Er wordt een verificatiecode per e-mail verzonden",
+  "login.webauthn.subtitle": "Bereid uw WebAuthN-apparaat voor",
+  "login.totp.subtitle": "Voer de code in die door uw Authenticator-app is gegenereerd",
+  "login.lookup_secret.subtitle": "Voer een van uw 8-cijferige back-up herstelcodes in",
   "login.title-refresh": "Bevestig dat jij het bent",
+  "login.2fa.go-back": "Werkt er iets niet?",
+  "login.2fa.go-back.link": "Ga terug",
+  "login.2fa.method.go-back": "Kies een andere methode",
   "logout.accept-button": "Ja",
   "logout.reject-button": "Nee",
   "logout.title": "Wil je uitloggen?",
@@ -2866,8 +2976,12 @@ var nl_default = {
   "two-step.passkey.title": "Toegangscode (aanbevolen)",
   "two-step.password.description": "Voer uw wachtwoord in dat is gekoppeld aan uw account",
   "two-step.password.title": "Wachtwoord",
-  "two-step.webauthn.description": "Gebruik uw beveiligingssleutel om te verifi\xEBren",
   "two-step.webauthn.title": "Beveiligingssleutel",
+  "two-step.webauthn.description": "Gebruik uw beveiligingssleutel om te verifi\xEBren",
+  "two-step.totp.title": "Gebruik uw Authenticator-app (TOTP)",
+  "two-step.totp.description": "Gebruik een 6-cijferige eenmalige code van uw authenticator-app",
+  "two-step.lookup_secret.title": "Herstelcode",
+  "two-step.lookup_secret.description": "Gebruik een van uw 8-cijferige back-upcodes om te authenticeren",
   "identities.messages.1010023": "",
   "identities.messages.1070014": "",
   "identities.messages.1070015": "",
@@ -2968,9 +3082,9 @@ var pl_default = {
   "identities.messages.1010005": "Zweryifkuj",
   "identities.messages.1010006": "Kod autentykacyjny",
   "identities.messages.1010007": "Zapasowe kody odzyskiwania",
-  "identities.messages.1010008": "U\u017Cyj klucza bezpiecze\u0144stwa",
-  "identities.messages.1010009": "U\u017Cyj Autentykatora",
-  "identities.messages.1010010": "U\u017Cyj zapasowych kod\xF3w odzyskiwania",
+  "identities.messages.1010008": "Kontynuuj z kluczem sprz\u0119towym",
+  "identities.messages.1010009": "Kontynuuj",
+  "identities.messages.1010010": "Kontynuuj",
   "identities.messages.1010011": "Kontynuuj za pomoc\u0105 klucza bezpiecze\u0144stwa",
   "identities.messages.1010012": "Przygotuj swoje urz\u0105dzenie WebAuthn (np. klucz bezpiecze\u0144stwa, czytnik biometryczny, ...) a nast\u0119pnie kliknij kontynuuj.",
   "identities.messages.1010013": "Kontynuuj",
@@ -3086,8 +3200,16 @@ var pl_default = {
   "login.registration-label": "Nie posiadasz konta?",
   "login.subtitle-oauth2": "Do autentykacji {clientName}",
   "login.title": "Zaloguj si\u0119",
-  "login.title-aal2": "Autentykacja Dwu-Etapowa",
+  "login.title-aal2": "Uwierzytelnianie dwusk\u0142adnikowe",
+  "login.subtitle-aal2": "Wybierz spos\xF3b, aby zako\u0144czy\u0107 uwierzytelnianie dwusk\u0142adnikowe",
+  "login.code.subtitle": "Kod weryfikacyjny zostanie wys\u0142any e-mailem",
+  "login.webauthn.subtitle": "Prosz\u0119 przygotowa\u0107 urz\u0105dzenie WebAuthN",
+  "login.totp.subtitle": "Prosz\u0119 wprowadzi\u0107 kod wygenerowany przez Twoj\u0105 aplikacj\u0119 uwierzytelniaj\u0105c\u0105",
+  "login.lookup_secret.subtitle": "Prosz\u0119 wprowadzi\u0107 jeden z Twoich 8-cyfrowych kod\xF3w odzyskiwania zapasowego",
   "login.title-refresh": "Potwierd\u017A \u017Ce to Ty",
+  "login.2fa.go-back": "Co\u015B nie dzia\u0142a?",
+  "login.2fa.go-back.link": "Wr\xF3\u0107",
+  "login.2fa.method.go-back": "Wybierz inn\u0105 metod\u0119",
   "logout.accept-button": "Tak",
   "logout.reject-button": "Nie",
   "logout.title": "Czy chcesz si\u0119 wylogowa\u0107?",
@@ -3119,8 +3241,12 @@ var pl_default = {
   "two-step.passkey.title": "Klucz dost\u0119pu (zalecany)",
   "two-step.password.description": "Wprowad\u017A has\u0142o powi\u0105zane z twoim kontem",
   "two-step.password.title": "Has\u0142o",
-  "two-step.webauthn.description": "U\u017Cyj swojego klucza bezpiecze\u0144stwa do uwierzytelnienia",
   "two-step.webauthn.title": "Klucz bezpiecze\u0144stwa",
+  "two-step.webauthn.description": "U\u017Cyj swojego klucza bezpiecze\u0144stwa do uwierzytelnienia",
+  "two-step.totp.title": "U\u017Cyj swojej aplikacji uwierzytelniaj\u0105cej (TOTP)",
+  "two-step.totp.description": "U\u017Cyj 6-cyfrowego jednorazowego kodu z Twojej aplikacji uwierzytelniaj\u0105cej",
+  "two-step.lookup_secret.title": "Kod odzyskiwania zapasowego",
+  "two-step.lookup_secret.description": "U\u017Cyj jednego z Twoich 8-cyfrowych kod\xF3w zapasowych, aby si\u0119 uwierzytelni\u0107",
   "identities.messages.1010016": "",
   "identities.messages.1010017": "",
   "identities.messages.1010018": "",
@@ -3221,9 +3347,9 @@ var pt_default = {
   "identities.messages.1010005": "Verificar",
   "identities.messages.1010006": "C\xF3digo de Autentica\xE7\xE3o",
   "identities.messages.1010007": "C\xF3digo de Recupera\xE7\xE3o de Backup",
-  "identities.messages.1010008": "Usar chave de seguran\xE7a",
-  "identities.messages.1010009": "Usar o Autenticador",
-  "identities.messages.1010010": "Usar c\xF3digo de recupera\xE7\xE3o de backup",
+  "identities.messages.1010008": "Continuar com chave de hardware",
+  "identities.messages.1010009": "Continuar",
+  "identities.messages.1010010": "Continuar",
   "identities.messages.1010011": "Continuar com a chave de seguran\xE7a",
   "identities.messages.1010012": "Prepare o seu dispositivo WebAuthn (por exemplo, chave de seguran\xE7a, scanner biom\xE9trico, ...) e pressione continuar.",
   "identities.messages.1010013": "Continuar",
@@ -3339,8 +3465,16 @@ var pt_default = {
   "login.registration-label": "N\xE3o tem uma conta?",
   "login.subtitle-oauth2": "Para autenticar {clientName}",
   "login.title": "Entrar",
-  "login.title-aal2": "Autentica\xE7\xE3o de Dois Fatores",
+  "login.title-aal2": "Autentica\xE7\xE3o de dois fatores",
+  "login.subtitle-aal2": "Escolha uma forma de completar sua autentica\xE7\xE3o de segundo fator",
+  "login.code.subtitle": "Um c\xF3digo de verifica\xE7\xE3o ser\xE1 enviado por e-mail",
+  "login.webauthn.subtitle": "Por favor, prepare seu dispositivo WebAuthN",
+  "login.totp.subtitle": "Digite o c\xF3digo gerado pelo seu aplicativo autenticador",
+  "login.lookup_secret.subtitle": "Digite um dos seus c\xF3digos de recupera\xE7\xE3o de 8 d\xEDgitos",
   "login.title-refresh": "Confirme que \xE9 voc\xEA",
+  "login.2fa.go-back": "Algo n\xE3o est\xE1 funcionando?",
+  "login.2fa.go-back.link": "Voltar",
+  "login.2fa.method.go-back": "Escolher outro m\xE9todo",
   "logout.accept-button": "Sim",
   "logout.reject-button": "N\xE3o",
   "logout.title": "Deseja sair?",
@@ -3372,8 +3506,12 @@ var pt_default = {
   "two-step.passkey.title": "Chave de acesso (recomendado)",
   "two-step.password.description": "Insira a sua senha associada \xE0 sua conta",
   "two-step.password.title": "Senha",
-  "two-step.webauthn.description": "Use sua chave de seguran\xE7a para autenticar",
   "two-step.webauthn.title": "Chave de Seguran\xE7a",
+  "two-step.webauthn.description": "Use sua chave de seguran\xE7a para autenticar",
+  "two-step.totp.title": "Use seu aplicativo autenticador (TOTP)",
+  "two-step.totp.description": "Use um c\xF3digo \xFAnico de 6 d\xEDgitos do seu aplicativo autenticador",
+  "two-step.lookup_secret.title": "C\xF3digo de recupera\xE7\xE3o de backup",
+  "two-step.lookup_secret.description": "Use um dos seus c\xF3digos de backup de 8 d\xEDgitos para autenticar",
   "identities.messages.1010016": "",
   "identities.messages.1010017": "",
   "identities.messages.1010018": "",
@@ -3474,9 +3612,9 @@ var sv_default = {
   "identities.messages.1010005": "Verifiera",
   "identities.messages.1010006": "Autentiseringskod",
   "identities.messages.1010007": "\xC5terst\xE4llningskod f\xF6r backup",
-  "identities.messages.1010008": "Anv\xE4nd s\xE4kerhetsnyckel",
-  "identities.messages.1010009": "Anv\xE4nd autentiserings-app",
-  "identities.messages.1010010": "Anv\xE4nd reserv\xE5terst\xE4llningskod",
+  "identities.messages.1010008": "Forts\xE4tt med s\xE4kerhetsnyckel",
+  "identities.messages.1010009": "Forts\xE4tt",
+  "identities.messages.1010010": "Forts\xE4tt",
   "identities.messages.1010011": "Forts\xE4tt med s\xE4kerhetsnyckel",
   "identities.messages.1010012": "F\xF6rbered din WebAuthn-enhet (t.ex. s\xE4kerhetsnyckel, biometriska skanner, ...) och tryck p\xE5 forts\xE4tt.",
   "identities.messages.1010013": "Forts\xE4tt",
@@ -3611,7 +3749,15 @@ var sv_default = {
   "login.subtitle-oauth2": "Att autentisera {clientName}",
   "login.title": "Logga in",
   "login.title-aal2": "Tv\xE5faktorsautentisering",
+  "login.subtitle-aal2": "V\xE4lj ett s\xE4tt att slutf\xF6ra din tv\xE5faktorsautentisering",
+  "login.code.subtitle": "En verifieringskod kommer att skickas via e-post",
+  "login.webauthn.subtitle": "F\xF6rbered din WebAuthN-enhet",
+  "login.totp.subtitle": "Ange koden som genererats av din autentiseringsapp",
+  "login.lookup_secret.subtitle": "Ange en av dina 8-siffriga \xE5terst\xE4llningskoder",
   "login.title-refresh": "Bekr\xE4fta att det \xE4r du",
+  "login.2fa.go-back": "N\xE5got fungerar inte?",
+  "login.2fa.go-back.link": "G\xE5 tillbaka",
+  "login.2fa.method.go-back": "V\xE4lj en annan metod",
   "logout.accept-button": "Ja",
   "logout.reject-button": "Nej",
   "logout.title": "Vill du logga ut?",
@@ -3643,8 +3789,12 @@ var sv_default = {
   "two-step.passkey.title": "Passerkod (rekommenderad)",
   "two-step.password.description": "Ange ditt l\xF6senord kopplat till ditt konto",
   "two-step.password.title": "L\xF6senord",
-  "two-step.webauthn.description": "Anv\xE4nd din s\xE4kerhetsnyckel f\xF6r att autentisera",
   "two-step.webauthn.title": "S\xE4kerhetsnyckel",
+  "two-step.webauthn.description": "Anv\xE4nd din s\xE4kerhetsnyckel f\xF6r att autentisera",
+  "two-step.totp.title": "Anv\xE4nd din autentiseringsapp (TOTP)",
+  "two-step.totp.description": "Anv\xE4nd en 6-siffrig eng\xE5ngskod fr\xE5n din autentiseringsapp",
+  "two-step.lookup_secret.title": "Reserv\xE5terst\xE4llningskod",
+  "two-step.lookup_secret.description": "Anv\xE4nd en av dina 8-siffriga reservkoder f\xF6r att autentisera",
   "identities.messages.4000037": "Detta konto finns inte eller har ingen inloggningsmetod konfigurerad.",
   "identities.messages.4000038": "Captcha-verifiering misslyckades, f\xF6rs\xF6k igen.",
   "identities.messages.1010020": "",