From e3fb871e4fb52ac0387e10a225e52286efc78ed8 Mon Sep 17 00:00:00 2001
From: Jin <22962980+JYC333@users.noreply.github.com>
Date: Sat, 22 Mar 2025 15:55:14 +0100
Subject: [PATCH] =?UTF-8?q?feat:=20=F0=9F=8E=B8=20Reformat=20MFA=20option?=
 =?UTF-8?q?=20page?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../options/multi_factor_authentication.ts    | 98 +++++++++++--------
 src/public/translations/en/translation.json   | 16 +++
 2 files changed, 71 insertions(+), 43 deletions(-)

diff --git a/src/public/app/widgets/type_widgets/options/multi_factor_authentication.ts b/src/public/app/widgets/type_widgets/options/multi_factor_authentication.ts
index 7df18c301..413784119 100644
--- a/src/public/app/widgets/type_widgets/options/multi_factor_authentication.ts
+++ b/src/public/app/widgets/type_widgets/options/multi_factor_authentication.ts
@@ -2,65 +2,75 @@ import server from "../../../services/server.js";
 import toastService from "../../../services/toast.js";
 import OptionsWidget from "./options_widget.js";
 import type { OptionMap } from "../../../../../services/options_interface.js";
+import { t } from "../../../services/i18n.js";
 
 const TPL = `
 <div class="options-section">
-    <h4 class="">What is Multi-Factor Authentication?</h4>
-    <i>
-        Multi-Factor Authentication (MFA) adds an extra layer of security to your account. Instead
-            of just entering a password to log in, MFA requires you to provide one or more additional
-            pieces of evidence to verify your identity. This way, even if someone gets hold of your
-            password, they still can't access your account without the second piece of information.
-            It's like adding an extra lock to your door, making it much harder for anyone else to
-            break in.</i>
+    <h4>${t("multi_factor_authentication.title")}</h4>
+    <p class="form-text">${t("multi_factor_authentication.description")}</p>
 </div>
 
 <div class="options-section">
-    <h4>OAuth/OpenID</h4>
-    <span><i>OpenID is a standardized way to let you log into websites using an account from another service, like Google, to verify your identity.</i></span>
-    <div>
-        <label>
-        <b>OAuth/OpenID Enabled</b>
-        </label>
-        <input type="checkbox" class="oauth-enabled-checkbox" disabled="true" />
-        <span class="env-oauth-enabled" role="alert" style="font-weight: bold; color: red !important;" > </span>
+    <h4>${t("multi_factor_authentication.oauth_title")}</h4>
+
+    <div class="form-group row">
+        <div class="col-md-6 side-checkbox">
+            <label class="form-check tn-checkbox">
+                <input type="checkbox" class="oauth-enabled-checkbox form-check-input" disabled />
+                <b>${t("multi_factor_authentication.oauth_enabled")}</b>
+            </label>
+        </div>
     </div>
-    <div>
-        <span> <b>User Account: </b></span><span class="user-account-name"> Not logged in! </span>
+
+    <div class="alert alert-warning env-oauth-enabled" role="alert" style="font-weight: bold; color: red !important;"></div>
+
+    <div class="col-md-6">
+        <span><b>User Account: </b></span><span class="user-account-name"> Not logged in!</span>
         <br>
-        <span><b> User Email: </b></span><span class="user-account-email"> Not logged in!</span>
+        <span><b>User Email: </b></span><span class="user-account-email"> Not logged in!</span>
     </div>
+
+    <p class="form-text">${t("multi_factor_authentication.oauth_description")}</p>
 </div>
 
 <div class="options-section">
-    <h4>Time-based One-Time Password</h4>
-    <div>
-        <label>
-        <b>TOTP Enabled</b>
-        </label>
-        <input type="checkbox" class="totp-enabled" disabled="true" />
-        <span class="env-totp-enabled" role="alert" style="font-weight: bold; color: red !important;" > </span>
-    </div>
-    <div>
-        <span><i>TOTP (Time-Based One-Time Password) is a security feature that generates a unique, temporary
-        code which changes every 30 seconds. You use this code, along with your password to log into your
-        account, making it much harder for anyone else to access it.</i></span>
+    <h4>${t("multi_factor_authentication.totp_title")}</h4>
+
+    <div class="form-group row">
+        <div class="col-md-6 side-checkbox">
+            <label class="form-check tn-checkbox">
+                <input type="checkbox" class="totp-enabled form-check-input" disabled />
+                <b>${t("multi_factor_authentication.totp_enabled")}</b>
+            </label>
+        </div>
     </div>
+
+    <div class="alert alert-warning env-totp-enabled" role="alert" style="font-weight: bold; color: red !important;"></div>
+
+    <p class="form-text">${t("multi_factor_authentication.totp_description")}</p>
 </div>
 
 <div class="options-section">
-    <h4> Generate TOTP Secret </h4>
-    <span class="totp-secret" > TOTP Secret Key </span>
+    <h4>${t("multi_factor_authentication.totp_secret_title")}</h4>
+
+    <div class="form-group">
+        <div class="totp-secret">${t("multi_factor_authentication.totp_secret_description")}</div>
+    </div>
+
+    <button class="regenerate-totp btn btn-primary"> ${t("multi_factor_authentication.totp_secret_generate")} </button>
+</div>
+
+<div class="options-section">
+    <h4>${t("multi_factor_authentication.recovery_keys_title")}</h4>
+
+    <p class="form-text">${t("multi_factor_authentication.recovery_keys_description")}</p>
+
+    <div class="alert alert-warning" role="alert" style="font-weight: bold; color: red !important;">
+        ${t("multi_factor_authentication.recovery_keys_description_warning")}
+    </div>
+
     <br>
-    <button class="regenerate-totp"> Generate TOTP Secret </button>
-</div>
 
-<div class="options-section">
-    <h4> Single Sign-on Recovery Keys </h4>
-    <span ><i>Single sign-on recovery keys are used to login in the event you cannot access your Authenticator codes. Keep them somewhere safe and secure. </i></span>
-    <br><br>
-    <span class="alert alert-warning" role="alert" style="font-weight: bold; color: red !important;">After a recovery key is used it cannot be used again.</span>
-    <br><br>
     <table style="border: 0px solid white">
         <tbody>
             <tr>
@@ -85,8 +95,10 @@ const TPL = `
             </tr>
         </tbody>
     </table>
+
     <br>
-    <button class="generate-recovery-code" disabled="true"> Generate Recovery Keys </button>
+
+    <button class="generate-recovery-code btn btn-primary" disabled="true"> Generate Recovery Keys </button>
 </div>
 `;
 
@@ -199,7 +211,7 @@ export default class MultiFactorAuthenticationOptions extends OptionsWidget {
                 if (result.email) this.$UserAccountEmail.text(result.email);
             } else {
                 this.$envEnabledOAuth.text(
-                    "set SSO_ENABLED as environment variable to 'true' to enable (Requires restart)"
+                    "Set SSO_ENABLED as environment variable to 'true' to enable (Requires restart)"
                 );
             }
         });
diff --git a/src/public/translations/en/translation.json b/src/public/translations/en/translation.json
index 46bf2ed4d..40ce5a0ef 100644
--- a/src/public/translations/en/translation.json
+++ b/src/public/translations/en/translation.json
@@ -1309,6 +1309,22 @@
     "password_mismatch": "New passwords are not the same.",
     "password_changed_success": "Password has been changed. Trilium will be reloaded after you press OK."
   },
+  "multi_factor_authentication": {
+    "title": "Multi-Factor Authentication",
+    "description": "Multi-Factor Authentication (MFA) adds an extra layer of security to your account. Instead of just entering a password to log in, MFA requires you to provide one or more additional pieces of evidence to verify your identity. This way, even if someone gets hold of your password, they still can't access your account without the second piece of information. It's like adding an extra lock to your door, making it much harder for anyone else to break in.",
+    "oauth_title": "OAuth/OpenID",
+    "oauth_enabled": "OAuth/OpenID Enabled",
+    "oauth_description": "OpenID is a standardized way to let you log into websites using an account from another service, like Google, to verify your identity.",
+    "totp_title": "Time-based One-Time Password",
+    "totp_enabled": "TOTP Enabled",
+    "totp_description": "TOTP (Time-Based One-Time Password) is a security feature that generates a unique, temporary code which changes every 30 seconds. You use this code, along with your password to log into your account, making it much harder for anyone else to access it.",
+    "totp_secret_title": "Generate TOTP Secret",
+    "totp_secret_description": "TOTP Secret Key",
+    "totp_secret_generate": "Generate TOTP Secret",
+    "recovery_keys_title": "Single Sign-on Recovery Keys",
+    "recovery_keys_description": "Single sign-on recovery keys are used to login in the event you cannot access your Authenticator codes. Keep them somewhere safe and secure.",
+    "recovery_keys_description_warning": "After a recovery key is used it cannot be used again."
+  },
   "shortcuts": {
     "keyboard_shortcuts": "Keyboard Shortcuts",
     "multiple_shortcuts": "Multiple shortcuts for the same action can be separated by comma.",