{
	"@metadata": {
		"authors": [
			"Ryan Lane <rlane@wikimedia.org>",
			"Tyler Romeo <tylerromeo@gmail.com>"
		]
	},
	"oathauth-desc": "Provides authentication support using HMAC based one-time passwords",
	"disableoathforuser": "Disable user's two-factor authentication",
	"verifyoathforuser": "Verify two-factor authentication status",
	"oath": "OATHAuth",
	"oathauth-account": "Account name:",
	"oathauth-secret": "Two-factor authentication secret key:",
	"oathauth-enable": "Enable two-factor authentication",
	"oathauth-recoverycodes": "The following list is a list of one-time use recovery codes. These codes can only be used once, and are for emergency use when you don't have access to your device. Please write these down and keep them in a secure location. It is recommended that you mark each code as used when you have logged in using it. If you lose your device, these codes are the only way to rescue your account.",
	"oathauth-recoverycodes-important": "This step is important! Do not skip this step!",
	"oathauth-recoverycodes-neveragain": "These codes will never be shown again!",
	"oathauth-recoverytokens-createdat": "Recovery tokens created: $1",
	"oathauth-recoverycodes-download": "Download recovery codes",
	"oathauth-disable": "Disable two-factor authentication",
	"oathauth-validatedoath": "Validated two-factor credentials. Two-factor authentication will now be enforced.",
	"oathauth-noscratchforvalidation": "You cannot use a recovery code to confirm two-factor authentication. Recovery codes are for backup and incidental use only. Please use a code from your two-factor authentication application (such as [https://authy.com/ Authy], [https://freeotp.github.io/ FreeOTP], [https://support.google.com/accounts/answer/1066447 Google Authenticator], [https://www.microsoft.com/en/security/mobile-authenticator-app Microsoft Authenticator] or [https://1password.com/ 1Password]).",
	"oathauth-failedtovalidateoath": "Failed to validate two-factor credentials",
	"oathauth-disabledoath": "Disabled two-factor authentication.",
	"oathauth-prefs-label": "Two-factor authentication:",
	"oathauth-step1": "Step 1: Download a two-factor authentication program",
	"oathauth-step1-test": "Download a program for two-factor authentication. That can be a mobile or desktop application, such as [https://authy.com/ Authy], [https://freeotp.github.io/ FreeOTP], [https://support.google.com/accounts/answer/1066447 Google Authenticator], [https://www.microsoft.com/en/account/authenticator/ Microsoft Authenticator] or [https://1password.com/ 1Password].",
	"oathauth-step2": "Step 2: Scan the QR code",
	"oathauth-step2-qrcode": "Scan the QR code using the application or browser extension you downloaded in step 1 for two-factor authentication.",
	"oathauth-step2alt": "If you are unable to scan the QR code, enter the secret key and account name manually:",
	"oathauth-step3": "Step 3: Write down the recovery codes",
	"oathauth-step4": "Step 4: Verification",
	"oathauth-entertoken": "Enter a code from your authentication device to verify:",
	"oathauth-disable-for-user": "Disable two-factor authentication for a user",
	"oathauth-verify-for-user": "Verify if a user has two-factor authentication enabled",
	"right-oathauth-disable-for-user": "Disable two-factor authentication for a user",
	"action-oathauth-disable-for-user": "disable two-factor authentication for a user",
	"right-oathauth-verify-user": "Verify whether a user has two-factor authentication enabled",
	"action-oathauth-verify-user": "verify whether a user has two-factor authentication enabled",
	"right-oathauth-view-log": "Access the log of two-factor authentication changes",
	"action-oathauth-view-log": "access the log of two-factor authentication changes",
	"oathauth-disable-intro": "With great power, comes great responsibility",
	"oathauth-enteruser": "Username:",
	"oathauth-enterdisablereason": "Reason for disabling:",
	"oathauth-enterverifyreason": "Reason for checking:",
	"oathauth-user-not-does-not-have-oath-enabled": "User doesn't have two-factor authentication enabled, so nothing to disable",
	"right-oathauth-enable": "Enable two-factor authentication",
	"action-oathauth-enable": "enable two-factor authentication",
	"oathauth-auth-token-label": "Two-factor token or recovery code",
	"oathauth-auth-token-help": "The one-time password used as the second factor of two-factor authentication.",
	"oathauth-auth-token-help-ui": "Enter either a code from your authentication device, or a recovery code",
	"oathauth-auth-ui": "Please enter a code from your two-factor authentication application (such as [https://authy.com/ Authy], [https://freeotp.github.io/ FreeOTP], [https://support.google.com/accounts/answer/1066447 Google Authenticator], [https://www.microsoft.com/en/account/authenticator/ Microsoft Authenticator] or [https://1password.com/ 1Password]).",
	"oathauth-throttled": "Too many verification attempts! Please wait $1.",
	"oathauth-login-failed": "Verification failed.",
	"oathauth-describe-provider": "Two-factor authentication (OATH).",
	"grant-group-authentication": "Perform authentication actions for self and others",
	"grant-oath": "Access two-factor authentication (OATH) information for self and others",
	"right-oathauth-api-all": "Query and validate OATH information for self and others",
	"action-oathauth-api-all": "check OATH status",
	"oathauth-user-not-found": "No user account was found with that name",
	"oath-log-name": "Two-factor authentication log",
	"oath-log-header": "These events track changes to users' two-factor authentication status.",
	"logentry-oath-disable-other": "$1 {{GENDER:$2|disabled}} the two-factor authentication of $3",
	"logentry-oath-verify": "$1 {{GENDER:$2|checked}} if $3 had two-factor authentication enabled",
	"log-action-filter-oath": "Type of two-factor authentication operation:",
	"log-action-filter-oath-verify": "Checking if two-factor authentication is enabled",
	"log-action-filter-oath-disable-other": "Disabling two-factor authentication for another user",
	"oathauth-ui-no-module": "None enabled",
	"oathauth-module-totp-label": "TOTP (one-time token)",
	"oathauth-ui-manage": "Manage",
	"oathmanage": "Manage Two-factor authentication",
	"oathauth-ui-not-enabled-modules": "Switch to an alternative method",
	"oathauth-ui-enabled-module": "Enabled authentication method",
	"oathauth-enable-generic": "Enable",
	"oathauth-disable-generic": "Disable",
	"oathauth-invalid-data-format": "Data provider is invalid to create a key for the selected auth method",
	"oathauth-disable-page-title": "Disable $1",
	"oathauth-enable-page-title": "Enable $1",
	"oathauth-action-exclusive-to-2fa": "This action can only be performed by users with Two-factor authentication enabled.",
	"oathauth-ui-available-modules": "Available methods",
	"oathauth-ui-general-help": "'''Multi-factor authentication''' ('''MFA''') is an authentication method in which a computer user is granted access only after successfully presenting two or more pieces of evidence (or factors) to an authentication mechanism: knowledge (something the user and only the user knows), possession (something the user and only the user has), and inherence (something the user and only the user is). [https://en.wikipedia.org/wiki/Multi-factor_authentication Read more]",
	"oathauth-totp-description": "The Time-based One-Time Password algorithm (TOTP) is an extension of the HMAC-based One-time Password algorithm (HOTP) generating a one-time password by instead taking uniqueness from the current time.",
	"oathauth-disable-method-warning-header": "Confirm disabling of an authentication method",
	"oathauth-disable-method-warning-button-label": "Confirm and continue",
	"oathauth-disable-method-warning": "If you disable $1 two-factor authentication method, you will no longer be able to use this method when logging in, and all the data associated with this authentication method will be deleted.",
	"oathauth-disable-method-next-step": "On the next step, you will be required to authenticate yourself with your current two-factor authentication method ($1) to be able to disable it.",
	"oathauth-switch-method-warning-header": "Confirm switching to a different authentication method",
	"oathauth-switch-method-warning": "By switching to $2 two-factor authentication method, current method ($1) will be disabled, and all the data associated with the current authentication method will be deleted",
	"oathauth-switch-method-next-step": "On the next step, you will be required to authenticate yourself with your current two-factor authentication method ($1) to be able to switch to $2.",
	"oathauth-totp-disable-warning": "You will no longer be able to use the authentication device registered with this account. All recovery codes associated with this account will be invalidated.",
	"oathauth-invalidrequest": "Invalid request",
	"notification-header-oathauth-disable": "Two-factor authentication has been disabled on {{GENDER:$2|your account}}.",
	"notification-header-oathauth-remove-device": "A two-factor authentication device has been removed from {{GENDER:$2|your account}}.",
	"notification-body-oathauth-disable": "If {{GENDER:$2|you}} did not do this, {{GENDER:$2|your account}} may have been compromised.",
	"notification-body-oathauth-disable-other": "If {{GENDER:$2|you}} did not request this, {{GENDER:$2|you}} should contact an administrator.",
	"notification-body-oathauth-disable-remaining": "There still {{PLURAL:$3|is an additional device|are $3 additional devices}} active on {{GENDER:$2|your account}}.",
	"oathauth-notifications-disable-help": "Help",
	"oathauth-notifications-disable-helplink": "mw:Special:MyLanguage/Help:Two-factor authentication",
	"oathauth-notifications-disable-primary": "Check your two-factor authentication settings",
	"notification-header-oathauth-enable": "Two-factor authentication has been enabled on {{GENDER:$2|your account}}.",
	"notification-body-oathauth-enable": "If {{GENDER:$2|you}} did not do this, {{GENDER:$2|your account}} may have been compromised.",
	"oathauth-notifications-enable-help": "Help",
	"oathauth-notifications-enable-helplink": "mw:Special:MyLanguage/Help:Two-factor authentication",
	"oathauth-notifications-enable-primary": "Check your two-factor authentication settings",
	"notification-body-oathauth-oathauth-recoverycodesleft": "{{GENDER:$2|You}} have $3 recovery {{PLURAL:$3|code|codes}} left. You may want to consider disabling and re-enabling two-factor authentication to generate $4 new recovery {{PLURAL:$4|code|codes}} to use in future.",
	"oathauth-notifications-recoverycodesleft-help": "Help",
	"oathauth-notifications-recoverycodesleft-helplink": "mw:Special:MyLanguage/Help:Two-factor authentication",
	"oathauth-notifications-recoverycodesleft-primary": "Check your two-factor authentication settings",
	"oathauth-verify-enabled": "{{GENDER:$1|$1}} has two-factor authentication enabled.",
	"oathauth-verify-disabled": "{{GENDER:$1|$1}} does not have two-factor authentication enabled.",
	"oathauth-prefs-disabledgroups": "Disabled {{PLURAL:$1|group|groups}}:",
	"oathauth-prefs-disabledgroups-help": "{{GENDER:$2|Your membership}} in {{PLURAL:$1|this group|these groups}} is disabled until you enable [[Special:Manage Two-factor authentication|two-factor authentication]].",
	"oathauth-qrcode-alt": "Scannable QR code representing the secret key.",
	"oathauth-hint": "Don't have access to your device or application? You can enter recovery tokens (presented when you enabled 2FA) in this field."
}