From c0bb7b9edf54a8b383332bdfb0a6954de044cae2 Mon Sep 17 00:00:00 2001
From: Thomas Rittson <31796059+eliykat@users.noreply.github.com>
Date: Mon, 27 May 2024 11:03:23 +1000
Subject: [PATCH 001/138] [AC-2631] Add device-approval command scaffolding
 (#9351)

* Add device-approval scaffolding

* Refactor: move helpers to BaseProgram

* Update CODEOWNERS
---
 .github/CODEOWNERS                            |   1 +
 apps/cli/src/base-program.ts                  | 173 ++++++++++++++++++
 apps/cli/src/program.ts                       | 154 +---------------
 apps/cli/src/register-oss-programs.ts         |   4 +-
 apps/cli/src/tools/send/send.program.ts       |   6 +-
 apps/cli/src/vault.program.ts                 |   6 +-
 .../device-approval/approve-all.command.ts    |   9 +
 .../device-approval/approve.command.ts        |   9 +
 .../device-approval/deny-all.command.ts       |   9 +
 .../device-approval/deny.command.ts           |   9 +
 .../device-approval.program.ts                |  96 ++++++++++
 .../admin-console/device-approval/index.ts    |   1 +
 .../device-approval/list.command.ts           |   9 +
 .../bit-cli/src/register-bit-programs.ts      |   5 +-
 libs/common/src/enums/feature-flag.enum.ts    |   2 +
 15 files changed, 333 insertions(+), 160 deletions(-)
 create mode 100644 apps/cli/src/base-program.ts
 create mode 100644 bitwarden_license/bit-cli/src/admin-console/device-approval/approve-all.command.ts
 create mode 100644 bitwarden_license/bit-cli/src/admin-console/device-approval/approve.command.ts
 create mode 100644 bitwarden_license/bit-cli/src/admin-console/device-approval/deny-all.command.ts
 create mode 100644 bitwarden_license/bit-cli/src/admin-console/device-approval/deny.command.ts
 create mode 100644 bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
 create mode 100644 bitwarden_license/bit-cli/src/admin-console/device-approval/index.ts
 create mode 100644 bitwarden_license/bit-cli/src/admin-console/device-approval/list.command.ts

diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
index 2ec9d3b1b40..118f9dab277 100644
--- a/.github/CODEOWNERS
+++ b/.github/CODEOWNERS
@@ -52,6 +52,7 @@ apps/cli/src/admin-console @bitwarden/team-admin-console-dev
 apps/desktop/src/admin-console @bitwarden/team-admin-console-dev
 apps/web/src/app/admin-console @bitwarden/team-admin-console-dev
 bitwarden_license/bit-web/src/app/admin-console @bitwarden/team-admin-console-dev
+bitwarden_license/bit-cli/src/admin-console @bitwarden/team-admin-console-dev
 libs/angular/src/admin-console @bitwarden/team-admin-console-dev
 libs/common/src/admin-console @bitwarden/team-admin-console-dev
 libs/admin-console @bitwarden/team-admin-console-dev
diff --git a/apps/cli/src/base-program.ts b/apps/cli/src/base-program.ts
new file mode 100644
index 00000000000..46aadc323c3
--- /dev/null
+++ b/apps/cli/src/base-program.ts
@@ -0,0 +1,173 @@
+import * as chalk from "chalk";
+import { firstValueFrom, map } from "rxjs";
+
+import { AuthenticationStatus } from "@bitwarden/common/auth/enums/authentication-status";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+
+import { UnlockCommand } from "./auth/commands/unlock.command";
+import { Response } from "./models/response";
+import { ListResponse } from "./models/response/list.response";
+import { MessageResponse } from "./models/response/message.response";
+import { StringResponse } from "./models/response/string.response";
+import { TemplateResponse } from "./models/response/template.response";
+import { ServiceContainer } from "./service-container";
+import { CliUtils } from "./utils";
+
+const writeLn = CliUtils.writeLn;
+
+export abstract class BaseProgram {
+  constructor(protected serviceContainer: ServiceContainer) {}
+
+  protected processResponse(response: Response, exitImmediately = false) {
+    if (!response.success) {
+      if (process.env.BW_QUIET !== "true") {
+        if (process.env.BW_RESPONSE === "true") {
+          writeLn(this.getJson(response), true, false);
+        } else {
+          writeLn(chalk.redBright(response.message), true, true);
+        }
+      }
+      const exitCode = process.env.BW_CLEANEXIT ? 0 : 1;
+      if (exitImmediately) {
+        process.exit(exitCode);
+      } else {
+        process.exitCode = exitCode;
+      }
+      return;
+    }
+
+    if (process.env.BW_RESPONSE === "true") {
+      writeLn(this.getJson(response), true, false);
+    } else if (response.data != null) {
+      let out: string = null;
+
+      if (response.data.object === "template") {
+        out = this.getJson((response.data as TemplateResponse).template);
+      }
+
+      if (out == null) {
+        if (response.data.object === "string") {
+          const data = (response.data as StringResponse).data;
+          if (data != null) {
+            out = data;
+          }
+        } else if (response.data.object === "list") {
+          out = this.getJson((response.data as ListResponse).data);
+        } else if (response.data.object === "message") {
+          out = this.getMessage(response);
+        } else {
+          out = this.getJson(response.data);
+        }
+      }
+
+      if (out != null && process.env.BW_QUIET !== "true") {
+        writeLn(out, true, false);
+      }
+    }
+    if (exitImmediately) {
+      process.exit(0);
+    } else {
+      process.exitCode = 0;
+    }
+  }
+
+  private getJson(obj: any): string {
+    if (process.env.BW_PRETTY === "true") {
+      return JSON.stringify(obj, null, "  ");
+    } else {
+      return JSON.stringify(obj);
+    }
+  }
+
+  protected getMessage(response: Response): string {
+    const message = response.data as MessageResponse;
+    if (process.env.BW_RAW === "true") {
+      return message.raw;
+    }
+
+    let out = "";
+    if (message.title != null) {
+      if (message.noColor) {
+        out = message.title;
+      } else {
+        out = chalk.greenBright(message.title);
+      }
+    }
+    if (message.message != null) {
+      if (message.title != null) {
+        out += "\n";
+      }
+      out += message.message;
+    }
+    return out.trim() === "" ? null : out;
+  }
+
+  protected async exitIfAuthed() {
+    const authed = await firstValueFrom(
+      this.serviceContainer.authService.activeAccountStatus$.pipe(
+        map((status) => status > AuthenticationStatus.LoggedOut),
+      ),
+    );
+    if (authed) {
+      const email = await firstValueFrom(
+        this.serviceContainer.accountService.activeAccount$.pipe(map((a) => a?.email)),
+      );
+      this.processResponse(Response.error("You are already logged in as " + email + "."), true);
+    }
+  }
+
+  protected async exitIfNotAuthed() {
+    const authed = await this.serviceContainer.stateService.getIsAuthenticated();
+    if (!authed) {
+      this.processResponse(Response.error("You are not logged in."), true);
+    }
+  }
+
+  protected async exitIfLocked() {
+    await this.exitIfNotAuthed();
+    if (await this.serviceContainer.cryptoService.hasUserKey()) {
+      return;
+    } else if (process.env.BW_NOINTERACTION !== "true") {
+      // must unlock
+      if (await this.serviceContainer.keyConnectorService.getUsesKeyConnector()) {
+        const response = Response.error(
+          "Your vault is locked. You must unlock your vault using your session key.\n" +
+            "If you do not have your session key, you can get a new one by logging out and logging in again.",
+        );
+        this.processResponse(response, true);
+      } else {
+        const command = new UnlockCommand(
+          this.serviceContainer.accountService,
+          this.serviceContainer.masterPasswordService,
+          this.serviceContainer.cryptoService,
+          this.serviceContainer.stateService,
+          this.serviceContainer.cryptoFunctionService,
+          this.serviceContainer.apiService,
+          this.serviceContainer.logService,
+          this.serviceContainer.keyConnectorService,
+          this.serviceContainer.environmentService,
+          this.serviceContainer.syncService,
+          this.serviceContainer.organizationApiService,
+          this.serviceContainer.logout,
+          this.serviceContainer.kdfConfigService,
+        );
+        const response = await command.run(null, null);
+        if (!response.success) {
+          this.processResponse(response, true);
+        }
+      }
+    } else {
+      this.processResponse(Response.error("Vault is locked."), true);
+    }
+  }
+
+  protected async exitIfFeatureFlagDisabled(featureFlag: FeatureFlag) {
+    const enabled = await firstValueFrom(
+      this.serviceContainer.configService.getFeatureFlag$(featureFlag),
+    );
+
+    if (!enabled) {
+      this.processResponse(Response.error("This command is temporarily unavailable."), true);
+    }
+  }
+}
diff --git a/apps/cli/src/program.ts b/apps/cli/src/program.ts
index 667e0f683fd..e0311beb247 100644
--- a/apps/cli/src/program.ts
+++ b/apps/cli/src/program.ts
@@ -1,6 +1,6 @@
 import * as chalk from "chalk";
 import { program, Command, OptionValues } from "commander";
-import { firstValueFrom, map } from "rxjs";
+import { firstValueFrom } from "rxjs";
 
 import { AuthenticationStatus } from "@bitwarden/common/auth/enums/authentication-status";
 
@@ -8,6 +8,7 @@ import { LockCommand } from "./auth/commands/lock.command";
 import { LoginCommand } from "./auth/commands/login.command";
 import { LogoutCommand } from "./auth/commands/logout.command";
 import { UnlockCommand } from "./auth/commands/unlock.command";
+import { BaseProgram } from "./base-program";
 import { CompletionCommand } from "./commands/completion.command";
 import { ConfigCommand } from "./commands/config.command";
 import { EncodeCommand } from "./commands/encode.command";
@@ -15,20 +16,14 @@ import { ServeCommand } from "./commands/serve.command";
 import { StatusCommand } from "./commands/status.command";
 import { UpdateCommand } from "./commands/update.command";
 import { Response } from "./models/response";
-import { ListResponse } from "./models/response/list.response";
 import { MessageResponse } from "./models/response/message.response";
-import { StringResponse } from "./models/response/string.response";
-import { TemplateResponse } from "./models/response/template.response";
-import { ServiceContainer } from "./service-container";
 import { GenerateCommand } from "./tools/generate.command";
 import { CliUtils } from "./utils";
 import { SyncCommand } from "./vault/sync.command";
 
 const writeLn = CliUtils.writeLn;
 
-export class Program {
-  constructor(protected serviceContainer: ServiceContainer) {}
-
+export class Program extends BaseProgram {
   async register() {
     program
       .option("--pretty", "Format output. JSON is tabbed with two spaces.")
@@ -517,147 +512,4 @@ export class Program {
         await command.run(cmd);
       });
   }
-
-  protected processResponse(response: Response, exitImmediately = false) {
-    if (!response.success) {
-      if (process.env.BW_QUIET !== "true") {
-        if (process.env.BW_RESPONSE === "true") {
-          writeLn(this.getJson(response), true, false);
-        } else {
-          writeLn(chalk.redBright(response.message), true, true);
-        }
-      }
-      const exitCode = process.env.BW_CLEANEXIT ? 0 : 1;
-      if (exitImmediately) {
-        process.exit(exitCode);
-      } else {
-        process.exitCode = exitCode;
-      }
-      return;
-    }
-
-    if (process.env.BW_RESPONSE === "true") {
-      writeLn(this.getJson(response), true, false);
-    } else if (response.data != null) {
-      let out: string = null;
-
-      if (response.data.object === "template") {
-        out = this.getJson((response.data as TemplateResponse).template);
-      }
-
-      if (out == null) {
-        if (response.data.object === "string") {
-          const data = (response.data as StringResponse).data;
-          if (data != null) {
-            out = data;
-          }
-        } else if (response.data.object === "list") {
-          out = this.getJson((response.data as ListResponse).data);
-        } else if (response.data.object === "message") {
-          out = this.getMessage(response);
-        } else {
-          out = this.getJson(response.data);
-        }
-      }
-
-      if (out != null && process.env.BW_QUIET !== "true") {
-        writeLn(out, true, false);
-      }
-    }
-    if (exitImmediately) {
-      process.exit(0);
-    } else {
-      process.exitCode = 0;
-    }
-  }
-
-  private getJson(obj: any): string {
-    if (process.env.BW_PRETTY === "true") {
-      return JSON.stringify(obj, null, "  ");
-    } else {
-      return JSON.stringify(obj);
-    }
-  }
-
-  private getMessage(response: Response): string {
-    const message = response.data as MessageResponse;
-    if (process.env.BW_RAW === "true") {
-      return message.raw;
-    }
-
-    let out = "";
-    if (message.title != null) {
-      if (message.noColor) {
-        out = message.title;
-      } else {
-        out = chalk.greenBright(message.title);
-      }
-    }
-    if (message.message != null) {
-      if (message.title != null) {
-        out += "\n";
-      }
-      out += message.message;
-    }
-    return out.trim() === "" ? null : out;
-  }
-
-  private async exitIfAuthed() {
-    const authed = await firstValueFrom(
-      this.serviceContainer.authService.activeAccountStatus$.pipe(
-        map((status) => status > AuthenticationStatus.LoggedOut),
-      ),
-    );
-    if (authed) {
-      const email = await firstValueFrom(
-        this.serviceContainer.accountService.activeAccount$.pipe(map((a) => a?.email)),
-      );
-      this.processResponse(Response.error("You are already logged in as " + email + "."), true);
-    }
-  }
-
-  private async exitIfNotAuthed() {
-    const authed = await this.serviceContainer.stateService.getIsAuthenticated();
-    if (!authed) {
-      this.processResponse(Response.error("You are not logged in."), true);
-    }
-  }
-
-  protected async exitIfLocked() {
-    await this.exitIfNotAuthed();
-    if (await this.serviceContainer.cryptoService.hasUserKey()) {
-      return;
-    } else if (process.env.BW_NOINTERACTION !== "true") {
-      // must unlock
-      if (await this.serviceContainer.keyConnectorService.getUsesKeyConnector()) {
-        const response = Response.error(
-          "Your vault is locked. You must unlock your vault using your session key.\n" +
-            "If you do not have your session key, you can get a new one by logging out and logging in again.",
-        );
-        this.processResponse(response, true);
-      } else {
-        const command = new UnlockCommand(
-          this.serviceContainer.accountService,
-          this.serviceContainer.masterPasswordService,
-          this.serviceContainer.cryptoService,
-          this.serviceContainer.stateService,
-          this.serviceContainer.cryptoFunctionService,
-          this.serviceContainer.apiService,
-          this.serviceContainer.logService,
-          this.serviceContainer.keyConnectorService,
-          this.serviceContainer.environmentService,
-          this.serviceContainer.syncService,
-          this.serviceContainer.organizationApiService,
-          this.serviceContainer.logout,
-          this.serviceContainer.kdfConfigService,
-        );
-        const response = await command.run(null, null);
-        if (!response.success) {
-          this.processResponse(response, true);
-        }
-      }
-    } else {
-      this.processResponse(Response.error("Vault is locked."), true);
-    }
-  }
 }
diff --git a/apps/cli/src/register-oss-programs.ts b/apps/cli/src/register-oss-programs.ts
index f47aa528543..d8aa54118d7 100644
--- a/apps/cli/src/register-oss-programs.ts
+++ b/apps/cli/src/register-oss-programs.ts
@@ -15,8 +15,8 @@ export async function registerOssPrograms(serviceContainer: ServiceContainer) {
   await program.register();
 
   const vaultProgram = new VaultProgram(serviceContainer);
-  await vaultProgram.register();
+  vaultProgram.register();
 
   const sendProgram = new SendProgram(serviceContainer);
-  await sendProgram.register();
+  sendProgram.register();
 }
diff --git a/apps/cli/src/tools/send/send.program.ts b/apps/cli/src/tools/send/send.program.ts
index 86edd28f098..670683e7a2a 100644
--- a/apps/cli/src/tools/send/send.program.ts
+++ b/apps/cli/src/tools/send/send.program.ts
@@ -7,9 +7,9 @@ import { program, Command, OptionValues } from "commander";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { SendType } from "@bitwarden/common/tools/send/enums/send-type";
 
+import { BaseProgram } from "../../base-program";
 import { GetCommand } from "../../commands/get.command";
 import { Response } from "../../models/response";
-import { Program } from "../../program";
 import { CliUtils } from "../../utils";
 
 import {
@@ -27,8 +27,8 @@ import { SendResponse } from "./models/send.response";
 
 const writeLn = CliUtils.writeLn;
 
-export class SendProgram extends Program {
-  async register() {
+export class SendProgram extends BaseProgram {
+  register() {
     program.addCommand(this.sendCommand());
     // receive is accessible both at `bw receive` and `bw send receive`
     program.addCommand(this.receiveCommand());
diff --git a/apps/cli/src/vault.program.ts b/apps/cli/src/vault.program.ts
index 52857ed5424..c8e0701845b 100644
--- a/apps/cli/src/vault.program.ts
+++ b/apps/cli/src/vault.program.ts
@@ -2,12 +2,12 @@ import { program, Command } from "commander";
 
 import { ConfirmCommand } from "./admin-console/commands/confirm.command";
 import { ShareCommand } from "./admin-console/commands/share.command";
+import { BaseProgram } from "./base-program";
 import { EditCommand } from "./commands/edit.command";
 import { GetCommand } from "./commands/get.command";
 import { ListCommand } from "./commands/list.command";
 import { RestoreCommand } from "./commands/restore.command";
 import { Response } from "./models/response";
-import { Program } from "./program";
 import { ExportCommand } from "./tools/export.command";
 import { ImportCommand } from "./tools/import.command";
 import { CliUtils } from "./utils";
@@ -16,8 +16,8 @@ import { DeleteCommand } from "./vault/delete.command";
 
 const writeLn = CliUtils.writeLn;
 
-export class VaultProgram extends Program {
-  async register() {
+export class VaultProgram extends BaseProgram {
+  register() {
     program
       .addCommand(this.listCommand())
       .addCommand(this.getCommand())
diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/approve-all.command.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/approve-all.command.ts
new file mode 100644
index 00000000000..a3a6c4943f8
--- /dev/null
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/approve-all.command.ts
@@ -0,0 +1,9 @@
+import { Response } from "@bitwarden/cli/models/response";
+
+export class ApproveAllCommand {
+  constructor() {}
+
+  async run(organizationId: string): Promise<Response> {
+    throw new Error("Not implemented");
+  }
+}
diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/approve.command.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/approve.command.ts
new file mode 100644
index 00000000000..b3a30165ce3
--- /dev/null
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/approve.command.ts
@@ -0,0 +1,9 @@
+import { Response } from "@bitwarden/cli/models/response";
+
+export class ApproveCommand {
+  constructor() {}
+
+  async run(id: string): Promise<Response> {
+    throw new Error("Not implemented");
+  }
+}
diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/deny-all.command.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/deny-all.command.ts
new file mode 100644
index 00000000000..521a7e8ded6
--- /dev/null
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/deny-all.command.ts
@@ -0,0 +1,9 @@
+import { Response } from "@bitwarden/cli/models/response";
+
+export class DenyAllCommand {
+  constructor() {}
+
+  async run(organizationId: string): Promise<Response> {
+    throw new Error("Not implemented");
+  }
+}
diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/deny.command.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/deny.command.ts
new file mode 100644
index 00000000000..a366bfb05a0
--- /dev/null
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/deny.command.ts
@@ -0,0 +1,9 @@
+import { Response } from "@bitwarden/cli/models/response";
+
+export class DenyCommand {
+  constructor() {}
+
+  async run(id: string): Promise<Response> {
+    throw new Error("Not implemented");
+  }
+}
diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
new file mode 100644
index 00000000000..342ea9bc52e
--- /dev/null
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
@@ -0,0 +1,96 @@
+import { program, Command } from "commander";
+
+import { BaseProgram } from "@bitwarden/cli/base-program";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+
+import { ApproveAllCommand } from "./approve-all.command";
+import { ApproveCommand } from "./approve.command";
+import { DenyAllCommand } from "./deny-all.command";
+import { DenyCommand } from "./deny.command";
+import { ListCommand } from "./list.command";
+
+export class DeviceApprovalProgram extends BaseProgram {
+  register() {
+    program.addCommand(this.deviceApprovalCommand());
+  }
+
+  private deviceApprovalCommand() {
+    return new Command("device-approval")
+      .description("Manage device approvals")
+      .addCommand(this.listCommand())
+      .addCommand(this.approveCommand())
+      .addCommand(this.approveAllCommand())
+      .addCommand(this.denyCommand())
+      .addCommand(this.denyAllCommand());
+  }
+
+  private listCommand(): Command {
+    return new Command("list")
+      .description("List all pending requests for an organization")
+      .argument("<organizationId>")
+      .action(async (organizationId: string) => {
+        await this.exitIfFeatureFlagDisabled(FeatureFlag.BulkDeviceApproval);
+        await this.exitIfNotAuthed();
+
+        const cmd = new ListCommand();
+        const response = await cmd.run(organizationId);
+        this.processResponse(response);
+      });
+  }
+
+  private approveCommand(): Command {
+    return new Command("approve")
+      .argument("<id>")
+      .description("Approve a pending request")
+      .action(async (id: string) => {
+        await this.exitIfFeatureFlagDisabled(FeatureFlag.BulkDeviceApproval);
+        await this.exitIfLocked();
+
+        const cmd = new ApproveCommand();
+        const response = await cmd.run(id);
+        this.processResponse(response);
+      });
+  }
+
+  private approveAllCommand(): Command {
+    return new Command("approveAll")
+      .description("Approve all pending requests for an organization")
+      .argument("<organizationId>")
+      .action(async (organizationId: string) => {
+        await this.exitIfFeatureFlagDisabled(FeatureFlag.BulkDeviceApproval);
+        await this.exitIfLocked();
+
+        const cmd = new ApproveAllCommand();
+        const response = await cmd.run(organizationId);
+        this.processResponse(response);
+      });
+  }
+
+  private denyCommand(): Command {
+    return new Command("deny")
+      .argument("<id>")
+      .description("Deny a pending request")
+      .action(async (id: string) => {
+        await this.exitIfFeatureFlagDisabled(FeatureFlag.BulkDeviceApproval);
+        await this.exitIfLocked();
+
+        const cmd = new DenyCommand();
+        const response = await cmd.run(id);
+        this.processResponse(response);
+      });
+  }
+
+  private denyAllCommand(): Command {
+    return new Command("denyAll")
+      .description("Deny all pending requests for an organization")
+      .argument("<organizationId>")
+      .action(async (organizationId: string) => {
+        await this.exitIfFeatureFlagDisabled(FeatureFlag.BulkDeviceApproval);
+        await this.exitIfLocked();
+
+        const cmd = new DenyAllCommand();
+        const response = await cmd.run(organizationId);
+        this.processResponse(response);
+      });
+  }
+}
diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/index.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/index.ts
new file mode 100644
index 00000000000..399f89623ec
--- /dev/null
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/index.ts
@@ -0,0 +1 @@
+export { DeviceApprovalProgram } from "./device-approval.program";
diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/list.command.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/list.command.ts
new file mode 100644
index 00000000000..11fb6ec3ee2
--- /dev/null
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/list.command.ts
@@ -0,0 +1,9 @@
+import { Response } from "@bitwarden/cli/models/response";
+
+export class ListCommand {
+  constructor() {}
+
+  async run(organizationId: string): Promise<Response> {
+    throw new Error("Not implemented");
+  }
+}
diff --git a/bitwarden_license/bit-cli/src/register-bit-programs.ts b/bitwarden_license/bit-cli/src/register-bit-programs.ts
index 859574644ad..0d3f5e39f25 100644
--- a/bitwarden_license/bit-cli/src/register-bit-programs.ts
+++ b/bitwarden_license/bit-cli/src/register-bit-programs.ts
@@ -1,3 +1,4 @@
+import { DeviceApprovalProgram } from "./admin-console/device-approval";
 import { ServiceContainer } from "./service-container";
 
 /**
@@ -7,4 +8,6 @@ import { ServiceContainer } from "./service-container";
  * myProgram.register();
  * @param serviceContainer A class that instantiates services and makes them available for dependency injection
  */
-export async function registerBitPrograms(serviceContainer: ServiceContainer) {}
+export async function registerBitPrograms(serviceContainer: ServiceContainer) {
+  new DeviceApprovalProgram(serviceContainer).register();
+}
diff --git a/libs/common/src/enums/feature-flag.enum.ts b/libs/common/src/enums/feature-flag.enum.ts
index af022f4e549..f3bea6964ec 100644
--- a/libs/common/src/enums/feature-flag.enum.ts
+++ b/libs/common/src/enums/feature-flag.enum.ts
@@ -16,6 +16,7 @@ export enum FeatureFlag {
   ExtensionRefresh = "extension-refresh",
   RestrictProviderAccess = "restrict-provider-access",
   UseTreeWalkerApiForPageDetailsCollection = "use-tree-walker-api-for-page-details-collection",
+  BulkDeviceApproval = "bulk-device-approval",
 }
 
 export type AllowedFeatureFlagTypes = boolean | number | string;
@@ -42,6 +43,7 @@ export const DefaultFeatureFlagValue = {
   [FeatureFlag.ExtensionRefresh]: FALSE,
   [FeatureFlag.RestrictProviderAccess]: FALSE,
   [FeatureFlag.UseTreeWalkerApiForPageDetailsCollection]: FALSE,
+  [FeatureFlag.BulkDeviceApproval]: FALSE,
 } satisfies Record<FeatureFlag, AllowedFeatureFlagTypes>;
 
 export type DefaultFeatureFlagValueType = typeof DefaultFeatureFlagValue;

From c61ba41b97d53eb20b5a45e6b6ae6487533a115d Mon Sep 17 00:00:00 2001
From: Matt Gibson <mgibson@bitwarden.com>
Date: Mon, 27 May 2024 08:12:28 -0400
Subject: [PATCH 002/138] Use User Key Definitions for user-scoped data (#9348)

---
 .../services/vault-browser-state.service.ts   | 23 +++++++++++--------
 .../services/vault-banners.service.ts         |  8 ++++---
 .../services/vault-onboarding.service.ts      | 13 +++++++----
 .../src/vault/services/collection.service.ts  |  5 ++--
 .../vault/services/key-state/ciphers.state.ts | 14 +++++++----
 .../key-state/collapsed-groupings.state.ts    |  5 ++--
 .../vault/services/key-state/folder.state.ts  | 13 +++++++----
 .../key-state/vault-settings.state.ts         | 12 ++++++----
 8 files changed, 59 insertions(+), 34 deletions(-)

diff --git a/apps/browser/src/vault/services/vault-browser-state.service.ts b/apps/browser/src/vault/services/vault-browser-state.service.ts
index 43a28928da5..17934b3867f 100644
--- a/apps/browser/src/vault/services/vault-browser-state.service.ts
+++ b/apps/browser/src/vault/services/vault-browser-state.service.ts
@@ -3,28 +3,31 @@ import { Jsonify } from "type-fest";
 
 import {
   ActiveUserState,
-  KeyDefinition,
   StateProvider,
+  UserKeyDefinition,
   VAULT_BROWSER_MEMORY,
 } from "@bitwarden/common/platform/state";
 
 import { BrowserComponentState } from "../../models/browserComponentState";
 import { BrowserGroupingsComponentState } from "../../models/browserGroupingsComponentState";
 
-export const VAULT_BROWSER_GROUPINGS_COMPONENT = new KeyDefinition<BrowserGroupingsComponentState>(
-  VAULT_BROWSER_MEMORY,
-  "vault_browser_groupings_component",
-  {
-    deserializer: (obj: Jsonify<BrowserGroupingsComponentState>) =>
-      BrowserGroupingsComponentState.fromJSON(obj),
-  },
-);
+export const VAULT_BROWSER_GROUPINGS_COMPONENT =
+  new UserKeyDefinition<BrowserGroupingsComponentState>(
+    VAULT_BROWSER_MEMORY,
+    "vault_browser_groupings_component",
+    {
+      deserializer: (obj: Jsonify<BrowserGroupingsComponentState>) =>
+        BrowserGroupingsComponentState.fromJSON(obj),
+      clearOn: ["logout", "lock"],
+    },
+  );
 
-export const VAULT_BROWSER_COMPONENT = new KeyDefinition<BrowserComponentState>(
+export const VAULT_BROWSER_COMPONENT = new UserKeyDefinition<BrowserComponentState>(
   VAULT_BROWSER_MEMORY,
   "vault_browser_component",
   {
     deserializer: (obj: Jsonify<BrowserComponentState>) => BrowserComponentState.fromJSON(obj),
+    clearOn: ["logout", "lock"],
   },
 );
 
diff --git a/apps/web/src/app/vault/individual-vault/vault-banners/services/vault-banners.service.ts b/apps/web/src/app/vault/individual-vault/vault-banners/services/vault-banners.service.ts
index b54f2e9c115..1cb8e13cb3e 100644
--- a/apps/web/src/app/vault/individual-vault/vault-banners/services/vault-banners.service.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-banners/services/vault-banners.service.ts
@@ -11,9 +11,9 @@ import { KdfType, PBKDF2_ITERATIONS } from "@bitwarden/common/platform/enums";
 import {
   StateProvider,
   ActiveUserState,
-  KeyDefinition,
   PREMIUM_BANNER_DISK_LOCAL,
   BANNERS_DISMISSED_DISK,
+  UserKeyDefinition,
 } from "@bitwarden/common/platform/state";
 import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 
@@ -33,19 +33,21 @@ type PremiumBannerReprompt = {
 /** Banners that will be re-shown on a new session */
 type SessionBanners = Omit<VisibleVaultBanner, VisibleVaultBanner.Premium>;
 
-export const PREMIUM_BANNER_REPROMPT_KEY = new KeyDefinition<PremiumBannerReprompt>(
+export const PREMIUM_BANNER_REPROMPT_KEY = new UserKeyDefinition<PremiumBannerReprompt>(
   PREMIUM_BANNER_DISK_LOCAL,
   "bannerReprompt",
   {
     deserializer: (bannerReprompt) => bannerReprompt,
+    clearOn: [], // Do not clear user tutorials
   },
 );
 
-export const BANNERS_DISMISSED_DISK_KEY = new KeyDefinition<SessionBanners[]>(
+export const BANNERS_DISMISSED_DISK_KEY = new UserKeyDefinition<SessionBanners[]>(
   BANNERS_DISMISSED_DISK,
   "bannersDismissed",
   {
     deserializer: (bannersDismissed) => bannersDismissed,
+    clearOn: [], // Do not clear user tutorials
   },
 );
 
diff --git a/apps/web/src/app/vault/individual-vault/vault-onboarding/services/vault-onboarding.service.ts b/apps/web/src/app/vault/individual-vault/vault-onboarding/services/vault-onboarding.service.ts
index 927de00737c..4f791a1a2d9 100644
--- a/apps/web/src/app/vault/individual-vault/vault-onboarding/services/vault-onboarding.service.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-onboarding/services/vault-onboarding.service.ts
@@ -3,8 +3,8 @@ import { Observable } from "rxjs";
 
 import {
   ActiveUserState,
-  KeyDefinition,
   StateProvider,
+  UserKeyDefinition,
   VAULT_ONBOARDING,
 } from "@bitwarden/common/platform/state";
 
@@ -16,9 +16,14 @@ export type VaultOnboardingTasks = {
   installExtension: boolean;
 };
 
-const VAULT_ONBOARDING_KEY = new KeyDefinition<VaultOnboardingTasks>(VAULT_ONBOARDING, "tasks", {
-  deserializer: (jsonData) => jsonData,
-});
+const VAULT_ONBOARDING_KEY = new UserKeyDefinition<VaultOnboardingTasks>(
+  VAULT_ONBOARDING,
+  "tasks",
+  {
+    deserializer: (jsonData) => jsonData,
+    clearOn: [], // do not clear tutorials
+  },
+);
 
 @Injectable()
 export class VaultOnboardingService implements VaultOnboardingServiceAbstraction {
diff --git a/libs/common/src/vault/services/collection.service.ts b/libs/common/src/vault/services/collection.service.ts
index 2c91651a0e0..97b3257ab56 100644
--- a/libs/common/src/vault/services/collection.service.ts
+++ b/libs/common/src/vault/services/collection.service.ts
@@ -6,11 +6,11 @@ import { I18nService } from "../../platform/abstractions/i18n.service";
 import { Utils } from "../../platform/misc/utils";
 import {
   ActiveUserState,
-  KeyDefinition,
   StateProvider,
   COLLECTION_DATA,
   DeriveDefinition,
   DerivedState,
+  UserKeyDefinition,
 } from "../../platform/state";
 import { CollectionId, OrganizationId, UserId } from "../../types/guid";
 import { CollectionService as CollectionServiceAbstraction } from "../../vault/abstractions/collection.service";
@@ -20,11 +20,12 @@ import { TreeNode } from "../models/domain/tree-node";
 import { CollectionView } from "../models/view/collection.view";
 import { ServiceUtils } from "../service-utils";
 
-const ENCRYPTED_COLLECTION_DATA_KEY = KeyDefinition.record<CollectionData, CollectionId>(
+const ENCRYPTED_COLLECTION_DATA_KEY = UserKeyDefinition.record<CollectionData, CollectionId>(
   COLLECTION_DATA,
   "collections",
   {
     deserializer: (jsonData: Jsonify<CollectionData>) => CollectionData.fromJSON(jsonData),
+    clearOn: ["logout"],
   },
 );
 
diff --git a/libs/common/src/vault/services/key-state/ciphers.state.ts b/libs/common/src/vault/services/key-state/ciphers.state.ts
index 71da4c23334..ff6b4fb051b 100644
--- a/libs/common/src/vault/services/key-state/ciphers.state.ts
+++ b/libs/common/src/vault/services/key-state/ciphers.state.ts
@@ -4,7 +4,7 @@ import {
   CIPHERS_DISK,
   CIPHERS_DISK_LOCAL,
   CIPHERS_MEMORY,
-  KeyDefinition,
+  UserKeyDefinition,
 } from "../../../platform/state";
 import { CipherId } from "../../../types/guid";
 import { CipherData } from "../../models/data/cipher.data";
@@ -12,27 +12,30 @@ import { LocalData } from "../../models/data/local.data";
 import { CipherView } from "../../models/view/cipher.view";
 import { AddEditCipherInfo } from "../../types/add-edit-cipher-info";
 
-export const ENCRYPTED_CIPHERS = KeyDefinition.record<CipherData>(CIPHERS_DISK, "ciphers", {
+export const ENCRYPTED_CIPHERS = UserKeyDefinition.record<CipherData>(CIPHERS_DISK, "ciphers", {
   deserializer: (obj: Jsonify<CipherData>) => CipherData.fromJSON(obj),
+  clearOn: ["logout"],
 });
 
-export const DECRYPTED_CIPHERS = KeyDefinition.record<CipherView>(
+export const DECRYPTED_CIPHERS = UserKeyDefinition.record<CipherView>(
   CIPHERS_MEMORY,
   "decryptedCiphers",
   {
     deserializer: (cipher: Jsonify<CipherView>) => CipherView.fromJSON(cipher),
+    clearOn: ["logout", "lock"],
   },
 );
 
-export const LOCAL_DATA_KEY = new KeyDefinition<Record<CipherId, LocalData>>(
+export const LOCAL_DATA_KEY = new UserKeyDefinition<Record<CipherId, LocalData>>(
   CIPHERS_DISK_LOCAL,
   "localData",
   {
     deserializer: (localData) => localData,
+    clearOn: ["logout"],
   },
 );
 
-export const ADD_EDIT_CIPHER_INFO_KEY = new KeyDefinition<AddEditCipherInfo>(
+export const ADD_EDIT_CIPHER_INFO_KEY = new UserKeyDefinition<AddEditCipherInfo>(
   CIPHERS_MEMORY,
   "addEditCipherInfo",
   {
@@ -48,5 +51,6 @@ export const ADD_EDIT_CIPHER_INFO_KEY = new KeyDefinition<AddEditCipherInfo>(
 
       return { cipher, collectionIds: addEditCipherInfo.collectionIds };
     },
+    clearOn: ["logout", "lock"],
   },
 );
diff --git a/libs/common/src/vault/services/key-state/collapsed-groupings.state.ts b/libs/common/src/vault/services/key-state/collapsed-groupings.state.ts
index b1b976770e1..b6d48874175 100644
--- a/libs/common/src/vault/services/key-state/collapsed-groupings.state.ts
+++ b/libs/common/src/vault/services/key-state/collapsed-groupings.state.ts
@@ -1,9 +1,10 @@
-import { KeyDefinition, VAULT_FILTER_DISK } from "../../../platform/state";
+import { UserKeyDefinition, VAULT_FILTER_DISK } from "../../../platform/state";
 
-export const COLLAPSED_GROUPINGS = KeyDefinition.array<string>(
+export const COLLAPSED_GROUPINGS = UserKeyDefinition.array<string>(
   VAULT_FILTER_DISK,
   "collapsedGroupings",
   {
     deserializer: (obj) => obj,
+    clearOn: ["logout", "lock"],
   },
 );
diff --git a/libs/common/src/vault/services/key-state/folder.state.ts b/libs/common/src/vault/services/key-state/folder.state.ts
index 7fbd63ed76d..1a45c88d6f2 100644
--- a/libs/common/src/vault/services/key-state/folder.state.ts
+++ b/libs/common/src/vault/services/key-state/folder.state.ts
@@ -1,15 +1,20 @@
 import { Jsonify } from "type-fest";
 
 import { CryptoService } from "../../../platform/abstractions/crypto.service";
-import { DeriveDefinition, FOLDER_DISK, KeyDefinition } from "../../../platform/state";
+import { DeriveDefinition, FOLDER_DISK, UserKeyDefinition } from "../../../platform/state";
 import { FolderService } from "../../abstractions/folder/folder.service.abstraction";
 import { FolderData } from "../../models/data/folder.data";
 import { Folder } from "../../models/domain/folder";
 import { FolderView } from "../../models/view/folder.view";
 
-export const FOLDER_ENCRYPTED_FOLDERS = KeyDefinition.record<FolderData>(FOLDER_DISK, "folders", {
-  deserializer: (obj: Jsonify<FolderData>) => FolderData.fromJSON(obj),
-});
+export const FOLDER_ENCRYPTED_FOLDERS = UserKeyDefinition.record<FolderData>(
+  FOLDER_DISK,
+  "folders",
+  {
+    deserializer: (obj: Jsonify<FolderData>) => FolderData.fromJSON(obj),
+    clearOn: ["logout"],
+  },
+);
 
 export const FOLDER_DECRYPTED_FOLDERS = DeriveDefinition.from<
   Record<string, FolderData>,
diff --git a/libs/common/src/vault/services/key-state/vault-settings.state.ts b/libs/common/src/vault/services/key-state/vault-settings.state.ts
index 90b47912eee..21364bbbf8e 100644
--- a/libs/common/src/vault/services/key-state/vault-settings.state.ts
+++ b/libs/common/src/vault/services/key-state/vault-settings.state.ts
@@ -1,4 +1,4 @@
-import { VAULT_SETTINGS_DISK, KeyDefinition } from "../../../platform/state";
+import { VAULT_SETTINGS_DISK, KeyDefinition, UserKeyDefinition } from "../../../platform/state";
 
 export const USER_ENABLE_PASSKEYS = new KeyDefinition<boolean>(
   VAULT_SETTINGS_DISK,
@@ -8,16 +8,20 @@ export const USER_ENABLE_PASSKEYS = new KeyDefinition<boolean>(
   },
 );
 
-export const SHOW_CARDS_CURRENT_TAB = new KeyDefinition<boolean>(
+export const SHOW_CARDS_CURRENT_TAB = new UserKeyDefinition<boolean>(
   VAULT_SETTINGS_DISK,
   "showCardsCurrentTab",
   {
     deserializer: (obj) => obj,
+    clearOn: [], // do not clear user settings
   },
 );
 
-export const SHOW_IDENTITIES_CURRENT_TAB = new KeyDefinition<boolean>(
+export const SHOW_IDENTITIES_CURRENT_TAB = new UserKeyDefinition<boolean>(
   VAULT_SETTINGS_DISK,
   "showIdentitiesCurrentTab",
-  { deserializer: (obj) => obj },
+  {
+    deserializer: (obj) => obj,
+    clearOn: [], // do not clear user settings
+  },
 );

From 2e6280ce88274455155c464b05f1d1dcb7b22a17 Mon Sep 17 00:00:00 2001
From: Matt Gibson <mgibson@bitwarden.com>
Date: Mon, 27 May 2024 08:12:53 -0400
Subject: [PATCH 003/138] Prefer UserKeyDefinition for user-scoped data (#9349)

---
 apps/browser/src/tools/popup/services/key-definitions.ts | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/apps/browser/src/tools/popup/services/key-definitions.ts b/apps/browser/src/tools/popup/services/key-definitions.ts
index 9b256073f3f..b4ccd991e7b 100644
--- a/apps/browser/src/tools/popup/services/key-definitions.ts
+++ b/apps/browser/src/tools/popup/services/key-definitions.ts
@@ -1,23 +1,25 @@
 import { Jsonify } from "type-fest";
 
-import { BROWSER_SEND_MEMORY, KeyDefinition } from "@bitwarden/common/platform/state";
+import { BROWSER_SEND_MEMORY, UserKeyDefinition } from "@bitwarden/common/platform/state";
 
 import { BrowserComponentState } from "../../../models/browserComponentState";
 import { BrowserSendComponentState } from "../../../models/browserSendComponentState";
 
-export const BROWSER_SEND_COMPONENT = new KeyDefinition<BrowserSendComponentState>(
+export const BROWSER_SEND_COMPONENT = new UserKeyDefinition<BrowserSendComponentState>(
   BROWSER_SEND_MEMORY,
   "browser_send_component",
   {
     deserializer: (obj: Jsonify<BrowserSendComponentState>) =>
       BrowserSendComponentState.fromJSON(obj),
+    clearOn: ["logout", "lock"],
   },
 );
 
-export const BROWSER_SEND_TYPE_COMPONENT = new KeyDefinition<BrowserComponentState>(
+export const BROWSER_SEND_TYPE_COMPONENT = new UserKeyDefinition<BrowserComponentState>(
   BROWSER_SEND_MEMORY,
   "browser_send_type_component",
   {
     deserializer: (obj: Jsonify<BrowserComponentState>) => BrowserComponentState.fromJSON(obj),
+    clearOn: ["logout", "lock"],
   },
 );

From 93b9eba76925c95b470a4f7e8b33cef09fbd2a55 Mon Sep 17 00:00:00 2001
From: Matt Gibson <mgibson@bitwarden.com>
Date: Mon, 27 May 2024 08:54:24 -0400
Subject: [PATCH 004/138] Separate browser foreground and background memory
 space (#9315)

* Separate browser foreground and background memory space

* Prefer inherited DI providers
---
 apps/browser/src/popup/services/services.module.ts | 10 ++--------
 libs/common/src/auth/services/auth.service.ts      |  6 +++---
 2 files changed, 5 insertions(+), 11 deletions(-)

diff --git a/apps/browser/src/popup/services/services.module.ts b/apps/browser/src/popup/services/services.module.ts
index a4f5c8a4c67..d260b4ec7b1 100644
--- a/apps/browser/src/popup/services/services.module.ts
+++ b/apps/browser/src/popup/services/services.module.ts
@@ -25,7 +25,7 @@ import { VaultTimeoutService } from "@bitwarden/common/abstractions/vault-timeou
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { AccountService as AccountServiceAbstraction } from "@bitwarden/common/auth/abstractions/account.service";
-import { AuthService as AuthServiceAbstraction } from "@bitwarden/common/auth/abstractions/auth.service";
+import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
 import { DeviceTrustServiceAbstraction } from "@bitwarden/common/auth/abstractions/device-trust.service.abstraction";
 import { DevicesServiceAbstraction } from "@bitwarden/common/auth/abstractions/devices/devices.service.abstraction";
 import { KdfConfigService } from "@bitwarden/common/auth/abstractions/kdf-config.service";
@@ -34,7 +34,6 @@ import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/auth
 import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/sso-login.service.abstraction";
 import { TokenService } from "@bitwarden/common/auth/abstractions/token.service";
 import { UserVerificationService } from "@bitwarden/common/auth/abstractions/user-verification/user-verification.service.abstraction";
-import { AuthService } from "@bitwarden/common/auth/services/auth.service";
 import {
   AutofillSettingsService,
   AutofillSettingsServiceAbstraction,
@@ -174,12 +173,7 @@ const safeProviders: SafeProvider[] = [
   safeProvider({
     provide: BaseUnauthGuardService,
     useClass: UnauthGuardService,
-    deps: [AuthServiceAbstraction, Router],
-  }),
-  safeProvider({
-    provide: AuthServiceAbstraction,
-    useFactory: getBgService<AuthService>("authService"),
-    deps: [],
+    deps: [AuthService, Router],
   }),
   safeProvider({
     provide: SsoLoginServiceAbstraction,
diff --git a/libs/common/src/auth/services/auth.service.ts b/libs/common/src/auth/services/auth.service.ts
index a4529084a2a..25e7b92edf2 100644
--- a/libs/common/src/auth/services/auth.service.ts
+++ b/libs/common/src/auth/services/auth.service.ts
@@ -11,8 +11,8 @@ import {
 
 import { ApiService } from "../../abstractions/api.service";
 import { CryptoService } from "../../platform/abstractions/crypto.service";
-import { MessagingService } from "../../platform/abstractions/messaging.service";
 import { StateService } from "../../platform/abstractions/state.service";
+import { MessageSender } from "../../platform/messaging";
 import { Utils } from "../../platform/misc/utils";
 import { UserId } from "../../types/guid";
 import { AccountService } from "../abstractions/account.service";
@@ -26,7 +26,7 @@ export class AuthService implements AuthServiceAbstraction {
 
   constructor(
     protected accountService: AccountService,
-    protected messagingService: MessagingService,
+    protected messageSender: MessageSender,
     protected cryptoService: CryptoService,
     protected apiService: ApiService,
     protected stateService: StateService,
@@ -95,6 +95,6 @@ export class AuthService implements AuthServiceAbstraction {
 
   logOut(callback: () => void) {
     callback();
-    this.messagingService.send("loggedOut");
+    this.messageSender.send("loggedOut");
   }
 }

From 8e7a215597e79263dc630746aa773551b4b43937 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Rui=20Tom=C3=A9?=
 <108268980+r-tome@users.noreply.github.com>
Date: Mon, 27 May 2024 14:20:44 +0100
Subject: [PATCH 005/138] =?UTF-8?q?[AC-1712]=C2=A0Add=20functionality=20to?=
 =?UTF-8?q?=20approve=20all=20device=20approval=20requests=20(#9251)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* [AC-2302] Move organization-auth-request.service to bit-common folder

* [AC-2302] Rename organization-auth-request.service to organization-auth-request-api.service

* [AC-2302] Move logic from component to organization-auth-request.service

* [AC-2302] Fix import path in OrganizationAuthRequestService

* [AC-2302] Move imports to OrganizationsModule and delete unused CoreOrganizationModule

* [AC-2302] Move the call to get userResetPasswordDetails into OrganizationAuthRequestService

* [AC-2302] Remove @Injectable() and manually configure dependencies

* [AC-2302] Add OrganizationAuthRequestService unit tests first draft

* [AC-2302] Refactor device-approvals.component.ts to remove unused imports

* [AC-2302] Set up jest on bit-common and add unit tests for OrganizationAuthRequestService

* [AC-2302] Add bit-common to jest.config.js

* [AC-2302] Update organizations.module.ts to include safeProviders declared in variable

* [AC-2302] Remove services and views folders from bit-common

* [AC-2302] Define path mapping

* Adjust an import path

The import path of `PendingAuthRequestView` in
`OrganizationAuthRequestApiService` was pointing to the wrong place. I
think this file was just recently moved, and the import didn't get
updated.

* Get paths working

* Fix import

* Update jest config to use ts-jest adn jsdom

* Copy-paste path mappings from bit-web

* Remove unnecessary test setup file

* Undo unnecessary change

* Fix remaining path mappings

* Remove Bitwarden License mapping from OSS code

* Fix bit-web so it uses its own tsconfig

* Fix import path

* Remove web-bit entrypoint from OSS tsconfig

* Make DeviceApprovalsComponent standalone

* Remove organization-auth-request-api.service export

* Add BulkApproveAuthRequestsRequest class for bulk approval of authentication requests

* Add api call for device bulk approvals

* Add bulk device approval to OrganizationAuthRequestService

* Add unit tests for bulk device approval method

* Remove OrganizationsRoutingModule from DeviceApprovalsComponent imports

* Remove CoreOrganizationModule from OrganizationsModule imports

* Remove NoItemsModule from OrganizationsModule imports

* Get keys for each item to approve

* Update approvePendingRequests unit test

* Use ApiService from JslibServicesModule

* Update providers in device-approvals.component.ts

* Add method to retrieve reset password details for multiple organization users

* Add organizationUserId property to OrganizationUserResetPasswordDetailsResponse class

* Use method to retrieve reset password details for multiple organization users

* Rename ResetPasswordDetails to AccountRecoveryDetails

* Update OrganizationAuthRequestService to use getManyOrganizationUserAccountRecoveryDetails

* Add functionality to approve all device approval requests

* Update AdminAuthRequestUpdateWithIdRequest property names and imports

* Refactor bulk approval functionality in organization auth requests

* Put the 'Approve All' button behind a feature flag.

* Update feature flag key

Co-authored-by: Addison Beck <github@addisonbeck.com>

* Rename update request AdminAuthRequestUpdateWithIdRequest to OrganizationAuthRequestUpdateRequest

* Update organization-auth-request.service.spec.ts to use bulkUpdatePendingRequests method

---------

Co-authored-by: Addison Beck <hello@addisonbeck.com>
Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
Co-authored-by: Addison Beck <github@addisonbeck.com>
---
 apps/web/src/locales/en/messages.json         |  6 +++++
 .../device-approvals.component.html           | 10 ++++++++
 .../device-approvals.component.ts             | 24 +++++++++++++++++++
 3 files changed, 40 insertions(+)

diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index d4d3fc6d815..c21955179d6 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -8288,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/bitwarden_license/bit-web/src/app/admin-console/organizations/manage/device-approvals/device-approvals.component.html b/bitwarden_license/bit-web/src/app/admin-console/organizations/manage/device-approvals/device-approvals.component.html
index 5edc1f58674..cfc6538dbd9 100644
--- a/bitwarden_license/bit-web/src/app/admin-console/organizations/manage/device-approvals/device-approvals.component.html
+++ b/bitwarden_license/bit-web/src/app/admin-console/organizations/manage/device-approvals/device-approvals.component.html
@@ -28,6 +28,16 @@
           appA11yTitle="{{ 'options' | i18n }}"
         ></button>
         <bit-menu #headerMenu>
+          <button
+            *ngIf="bulkDeviceApprovalEnabled$ | async"
+            type="button"
+            bitMenuItem
+            (click)="approveAllRequests()"
+            [disabled]="actionInProgress"
+          >
+            <i class="bwi bwi-fw bwi-check" aria-hidden="true"></i>
+            {{ "approveAllRequests" | i18n }}
+          </button>
           <button
             type="button"
             bitMenuItem
diff --git a/bitwarden_license/bit-web/src/app/admin-console/organizations/manage/device-approvals/device-approvals.component.ts b/bitwarden_license/bit-web/src/app/admin-console/organizations/manage/device-approvals/device-approvals.component.ts
index a1ffd91a1c5..ba4b969ff5e 100644
--- a/bitwarden_license/bit-web/src/app/admin-console/organizations/manage/device-approvals/device-approvals.component.ts
+++ b/bitwarden_license/bit-web/src/app/admin-console/organizations/manage/device-approvals/device-approvals.component.ts
@@ -8,6 +8,8 @@ import { OrganizationAuthRequestService } from "@bitwarden/bit-common/admin-cons
 import { PendingAuthRequestView } from "@bitwarden/bit-common/admin-console/auth-requests/pending-auth-request.view";
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { OrganizationUserService } from "@bitwarden/common/admin-console/abstractions/organization-user/organization-user.service";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { CryptoService } from "@bitwarden/common/platform/abstractions/crypto.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
@@ -41,6 +43,9 @@ export class DeviceApprovalsComponent implements OnInit, OnDestroy {
   actionInProgress = false;
 
   protected readonly Devices = Devices;
+  protected bulkDeviceApprovalEnabled$ = this.configService.getFeatureFlag$(
+    FeatureFlag.BulkDeviceApproval,
+  );
 
   private destroy$ = new Subject<void>();
   private refresh$ = new BehaviorSubject<void>(null);
@@ -52,6 +57,7 @@ export class DeviceApprovalsComponent implements OnInit, OnDestroy {
     private i18nService: I18nService,
     private logService: LogService,
     private validationService: ValidationService,
+    private configService: ConfigService,
   ) {}
 
   async ngOnInit() {
@@ -97,6 +103,24 @@ export class DeviceApprovalsComponent implements OnInit, OnDestroy {
     });
   }
 
+  async approveAllRequests() {
+    if (this.tableDataSource.data.length === 0) {
+      return;
+    }
+
+    await this.performAsyncAction(async () => {
+      await this.organizationAuthRequestService.approvePendingRequests(
+        this.organizationId,
+        this.tableDataSource.data,
+      );
+      this.platformUtilsService.showToast(
+        "success",
+        null,
+        this.i18nService.t("allLoginRequestsApproved"),
+      );
+    });
+  }
+
   async denyRequest(requestId: string) {
     await this.performAsyncAction(async () => {
       await this.organizationAuthRequestService.denyPendingRequests(this.organizationId, requestId);

From 93c59db6fca440384017bc8e7fa174f9b95da24a Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 27 May 2024 15:23:20 +0000
Subject: [PATCH 006/138] [deps] Autofill: Update tldts to v6.1.22 (#9374)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Cesar Gonzalez <cesar.a.gonzalezcs@gmail.com>
---
 apps/cli/package.json |  2 +-
 package-lock.json     | 18 +++++++++---------
 package.json          |  2 +-
 3 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/apps/cli/package.json b/apps/cli/package.json
index 3da80a0dda4..d8ddde3d670 100644
--- a/apps/cli/package.json
+++ b/apps/cli/package.json
@@ -80,7 +80,7 @@
     "papaparse": "5.4.1",
     "proper-lockfile": "4.1.2",
     "rxjs": "7.8.1",
-    "tldts": "6.1.20",
+    "tldts": "6.1.22",
     "zxcvbn": "4.4.2"
   }
 }
diff --git a/package-lock.json b/package-lock.json
index ccb7bd8ba78..18a7dad0293 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -67,7 +67,7 @@
         "qrious": "4.0.2",
         "rxjs": "7.8.1",
         "tabbable": "6.2.0",
-        "tldts": "6.1.20",
+        "tldts": "6.1.22",
         "utf-8-validate": "6.0.3",
         "zone.js": "0.13.3",
         "zxcvbn": "4.4.2"
@@ -224,7 +224,7 @@
         "papaparse": "5.4.1",
         "proper-lockfile": "4.1.2",
         "rxjs": "7.8.1",
-        "tldts": "6.1.20",
+        "tldts": "6.1.22",
         "zxcvbn": "4.4.2"
       },
       "bin": {
@@ -36035,20 +36035,20 @@
       "dev": true
     },
     "node_modules/tldts": {
-      "version": "6.1.20",
-      "resolved": "https://registry.npmjs.org/tldts/-/tldts-6.1.20.tgz",
-      "integrity": "sha512-ryfUREMx1yw2AsSMwzflHqe14DaoAoekQLjxV7gk6Uh97ng2MZdDwoxV+jTX3MpNfpwXbJuW7hriCa6/21DFNA==",
+      "version": "6.1.22",
+      "resolved": "https://registry.npmjs.org/tldts/-/tldts-6.1.22.tgz",
+      "integrity": "sha512-WwWAPp+zJn8oJkpjqJcSuuj5foL9cI8SiTjH+gGS1bw5N163YywM0Cmd9OijwtKjdGG7OC6NEYZVl4EG8HfSMg==",
       "dependencies": {
-        "tldts-core": "^6.1.20"
+        "tldts-core": "^6.1.22"
       },
       "bin": {
         "tldts": "bin/cli.js"
       }
     },
     "node_modules/tldts-core": {
-      "version": "6.1.20",
-      "resolved": "https://registry.npmjs.org/tldts-core/-/tldts-core-6.1.20.tgz",
-      "integrity": "sha512-VTEzsx7kVbLDgWaACW0atZ7Q0KzbJveYvR6IxvirIhV4Z4GGGqLVCCj9PvF0KW3h0PbJcw0JJnpr0YueHg0ueA=="
+      "version": "6.1.22",
+      "resolved": "https://registry.npmjs.org/tldts-core/-/tldts-core-6.1.22.tgz",
+      "integrity": "sha512-TMCyBC7HpvDpBRQCLsODmsclNXGhZLSj76gIlx7QcwvKElMdIzhGN5iYcuTI7yAWJm8zTpsVehWCeOGytDY9fg=="
     },
     "node_modules/tmp": {
       "version": "0.0.33",
diff --git a/package.json b/package.json
index 1850de265ea..8a745120441 100644
--- a/package.json
+++ b/package.json
@@ -200,7 +200,7 @@
     "qrious": "4.0.2",
     "rxjs": "7.8.1",
     "tabbable": "6.2.0",
-    "tldts": "6.1.20",
+    "tldts": "6.1.22",
     "utf-8-validate": "6.0.3",
     "zone.js": "0.13.3",
     "zxcvbn": "4.4.2"

From 81c1456f6b8e635b1f951f63465e6e184afea51f Mon Sep 17 00:00:00 2001
From: Alex Urbina <42731074+urbinaalex17@users.noreply.github.com>
Date: Mon, 27 May 2024 15:35:19 -0600
Subject: [PATCH 007/138] BRE-87 ADD: Slack notification enable feature and
 check in version-bump workflow (#9385)

---
 .github/workflows/version-bump.yml | 20 ++++++++++++++++----
 1 file changed, 16 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/version-bump.yml b/.github/workflows/version-bump.yml
index 15041aaa5d8..4bf502da21c 100644
--- a/.github/workflows/version-bump.yml
+++ b/.github/workflows/version-bump.yml
@@ -28,6 +28,10 @@ on:
         description: "Cut RC branch?"
         default: true
         type: boolean
+      enable_slack_notification:
+        description: "Enable Slack notifications for upcoming release?"
+        default: false
+        type: boolean
 
 jobs:
   bump_version:
@@ -45,6 +49,14 @@ jobs:
         with:
           version: ${{ inputs.version_number_override }}
 
+      - name: Slack Notification Check
+        run: |
+          if [[ "${{ inputs.enable_slack_notification }}" == true ]]; then
+            echo "Slack notifications enabled."
+          else
+            echo "Slack notifications disabled."
+          fi
+
       - name: Checkout Branch
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
         with:
@@ -476,7 +488,7 @@ jobs:
         run: gh pr merge $PR_NUMBER --squash --auto --delete-branch
 
       - name: Report upcoming browser release version to Slack
-        if: ${{ steps.version-changed.outputs.changes_to_commit == 'TRUE' && steps.set-final-version-output.outputs.version_browser != '' }}
+        if: ${{ steps.version-changed.outputs.changes_to_commit == 'TRUE' && steps.set-final-version-output.outputs.version_browser != '' && inputs.enable_slack_notification == true }}
         uses: bitwarden/gh-actions/report-upcoming-release-version@main
         with:
           version: ${{ steps.set-final-version-output.outputs.version_browser }}
@@ -484,7 +496,7 @@ jobs:
           AZURE_KV_CI_SERVICE_PRINCIPAL: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
 
       - name: Report upcoming cli release version to Slack
-        if: ${{ steps.version-changed.outputs.changes_to_commit == 'TRUE' && steps.set-final-version-output.outputs.version_cli != '' }}
+        if: ${{ steps.version-changed.outputs.changes_to_commit == 'TRUE' && steps.set-final-version-output.outputs.version_cli != '' && inputs.enable_slack_notification == true }}
         uses: bitwarden/gh-actions/report-upcoming-release-version@main
         with:
           version: ${{ steps.set-final-version-output.outputs.version_cli }}
@@ -492,7 +504,7 @@ jobs:
           AZURE_KV_CI_SERVICE_PRINCIPAL: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
 
       - name: Report upcoming desktop release version to Slack
-        if: ${{ steps.version-changed.outputs.changes_to_commit == 'TRUE' && steps.set-final-version-output.outputs.version_desktop != '' }}
+        if: ${{ steps.version-changed.outputs.changes_to_commit == 'TRUE' && steps.set-final-version-output.outputs.version_desktop != '' && inputs.enable_slack_notification == true }}
         uses: bitwarden/gh-actions/report-upcoming-release-version@main
         with:
           version: ${{ steps.set-final-version-output.outputs.version_desktop }}
@@ -500,7 +512,7 @@ jobs:
           AZURE_KV_CI_SERVICE_PRINCIPAL: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
 
       - name: Report upcoming web release version to Slack
-        if: ${{ steps.version-changed.outputs.changes_to_commit == 'TRUE' && steps.set-final-version-output.outputs.version_web != '' }}
+        if: ${{ steps.version-changed.outputs.changes_to_commit == 'TRUE' && steps.set-final-version-output.outputs.version_web != '' && inputs.enable_slack_notification == true }}
         uses: bitwarden/gh-actions/report-upcoming-release-version@main
         with:
           version: ${{ steps.set-final-version-output.outputs.version_web }}

From 5bdb42a44b903b5f424532b414acd4e08b82def3 Mon Sep 17 00:00:00 2001
From: Thomas Rittson <31796059+eliykat@users.noreply.github.com>
Date: Wed, 29 May 2024 00:39:40 +1000
Subject: [PATCH 008/138] Require unlock to list device approvals (#9378)

---
 .../admin-console/device-approval/device-approval.program.ts    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
index 342ea9bc52e..152dd48c7b7 100644
--- a/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
@@ -30,7 +30,7 @@ export class DeviceApprovalProgram extends BaseProgram {
       .argument("<organizationId>")
       .action(async (organizationId: string) => {
         await this.exitIfFeatureFlagDisabled(FeatureFlag.BulkDeviceApproval);
-        await this.exitIfNotAuthed();
+        await this.exitIfLocked();
 
         const cmd = new ListCommand();
         const response = await cmd.run(organizationId);

From 49b59840a8086669568bca514ea5d84c7f3dfdd6 Mon Sep 17 00:00:00 2001
From: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
Date: Tue, 28 May 2024 16:47:35 +0200
Subject: [PATCH 009/138] Create import-browser-v2 component (#9214)

Copy existing `import-browser`-component
Add `popup-page` and -`header` and -`footer`
Add missing imports as page is marked as standalone
Fix no-floating-promise
Change to route OnSuccess to `vault-settings` instead of old `settings`-page

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
---
 apps/browser/src/popup/app-routing.module.ts  |  6 +--
 .../import/import-browser-v2.component.html   | 28 +++++++++++++
 .../import/import-browser-v2.component.ts     | 40 +++++++++++++++++++
 3 files changed, 71 insertions(+), 3 deletions(-)
 create mode 100644 apps/browser/src/tools/popup/settings/import/import-browser-v2.component.html
 create mode 100644 apps/browser/src/tools/popup/settings/import/import-browser-v2.component.ts

diff --git a/apps/browser/src/popup/app-routing.module.ts b/apps/browser/src/popup/app-routing.module.ts
index 37504568336..a84d343c31a 100644
--- a/apps/browser/src/popup/app-routing.module.ts
+++ b/apps/browser/src/popup/app-routing.module.ts
@@ -41,6 +41,7 @@ import { AboutPageComponent } from "../tools/popup/settings/about-page/about-pag
 import { MoreFromBitwardenPageV2Component } from "../tools/popup/settings/about-page/more-from-bitwarden-page-v2.component";
 import { MoreFromBitwardenPageComponent } from "../tools/popup/settings/about-page/more-from-bitwarden-page.component";
 import { ExportComponent } from "../tools/popup/settings/export.component";
+import { ImportBrowserV2Component } from "../tools/popup/settings/import/import-browser-v2.component";
 import { ImportBrowserComponent } from "../tools/popup/settings/import/import-browser.component";
 import { SettingsV2Component } from "../tools/popup/settings/settings-v2.component";
 import { SettingsComponent } from "../tools/popup/settings/settings.component";
@@ -238,12 +239,11 @@ const routes: Routes = [
     canActivate: [AuthGuard],
     data: { state: "generator-history" },
   },
-  {
+  ...extensionRefreshSwap(ImportBrowserComponent, ImportBrowserV2Component, {
     path: "import",
-    component: ImportBrowserComponent,
     canActivate: [AuthGuard],
     data: { state: "import" },
-  },
+  }),
   {
     path: "export",
     component: ExportComponent,
diff --git a/apps/browser/src/tools/popup/settings/import/import-browser-v2.component.html b/apps/browser/src/tools/popup/settings/import/import-browser-v2.component.html
new file mode 100644
index 00000000000..5458b46535a
--- /dev/null
+++ b/apps/browser/src/tools/popup/settings/import/import-browser-v2.component.html
@@ -0,0 +1,28 @@
+<popup-page>
+  <popup-header slot="header" [pageTitle]="'importData' | i18n" showBackButton>
+    <ng-container slot="end">
+      <app-pop-out></app-pop-out>
+    </ng-container>
+  </popup-header>
+
+  <tools-import
+    (formDisabled)="this.disabled = $event"
+    (formLoading)="this.loading = $event"
+    (onSuccessfulImport)="this.onSuccessfulImport($event)"
+  >
+  </tools-import>
+
+  <popup-footer slot="footer">
+    <button
+      [disabled]="disabled"
+      [loading]="loading"
+      form="import_form_importForm"
+      bitButton
+      type="submit"
+      bitFormButton
+      buttonType="primary"
+    >
+      {{ "importData" | i18n }}
+    </button>
+  </popup-footer>
+</popup-page>
diff --git a/apps/browser/src/tools/popup/settings/import/import-browser-v2.component.ts b/apps/browser/src/tools/popup/settings/import/import-browser-v2.component.ts
new file mode 100644
index 00000000000..16759057ed5
--- /dev/null
+++ b/apps/browser/src/tools/popup/settings/import/import-browser-v2.component.ts
@@ -0,0 +1,40 @@
+import { CommonModule } from "@angular/common";
+import { Component } from "@angular/core";
+import { Router, RouterLink } from "@angular/router";
+
+import { JslibModule } from "@bitwarden/angular/jslib.module";
+import { AsyncActionsModule, ButtonModule, DialogModule } from "@bitwarden/components";
+import { ImportComponent } from "@bitwarden/importer/ui";
+
+import { PopOutComponent } from "../../../../platform/popup/components/pop-out.component";
+import { PopupFooterComponent } from "../../../../platform/popup/layout/popup-footer.component";
+import { PopupHeaderComponent } from "../../../../platform/popup/layout/popup-header.component";
+import { PopupPageComponent } from "../../../../platform/popup/layout/popup-page.component";
+
+@Component({
+  templateUrl: "import-browser-v2.component.html",
+  standalone: true,
+  imports: [
+    CommonModule,
+    RouterLink,
+    JslibModule,
+    DialogModule,
+    AsyncActionsModule,
+    ButtonModule,
+    ImportComponent,
+    PopupPageComponent,
+    PopupFooterComponent,
+    PopupHeaderComponent,
+    PopOutComponent,
+  ],
+})
+export class ImportBrowserV2Component {
+  protected disabled = false;
+  protected loading = false;
+
+  constructor(private router: Router) {}
+
+  protected async onSuccessfulImport(organizationId: string): Promise<void> {
+    await this.router.navigate(["/vault-settings"]);
+  }
+}

From 1b5faae7c3a7f550e1ffd4e2b404e0182b99aaae Mon Sep 17 00:00:00 2001
From: vinith-kovan <156108204+vinith-kovan@users.noreply.github.com>
Date: Tue, 28 May 2024 21:23:54 +0530
Subject: [PATCH 010/138] [PM-5011][PM-7284] migrate user subscription along
 with update license dialog (#8659)

* migrate user subscription along with update license dialog

* migrate user subscription along with update license dialog
---
 .../user-subscription.component.html          | 90 ++++++-------------
 .../individual/user-subscription.component.ts | 21 +++--
 .../billing/shared/billing-shared.module.ts   |  3 +
 .../update-license-dialog.component.html      | 40 +++++++++
 .../shared/update-license-dialog.component.ts | 38 ++++++++
 5 files changed, 118 insertions(+), 74 deletions(-)
 create mode 100644 apps/web/src/app/billing/shared/update-license-dialog.component.html
 create mode 100644 apps/web/src/app/billing/shared/update-license-dialog.component.ts

diff --git a/apps/web/src/app/billing/individual/user-subscription.component.html b/apps/web/src/app/billing/individual/user-subscription.component.html
index bed41c8dc5c..5f9e6463f1b 100644
--- a/apps/web/src/app/billing/individual/user-subscription.component.html
+++ b/apps/web/src/app/billing/individual/user-subscription.component.html
@@ -1,10 +1,10 @@
 <ng-container *ngIf="!firstLoaded && loading">
   <i
-    class="bwi bwi-spinner bwi-spin text-muted"
+    class="bwi bwi-spinner bwi-spin tw-text-muted"
     title="{{ 'loading' | i18n }}"
     aria-hidden="true"
   ></i>
-  <span class="sr-only">{{ "loading" | i18n }}</span>
+  <span class="tw-sr-only">{{ "loading" | i18n }}</span>
 </ng-container>
 <ng-container *ngIf="sub">
   <bit-callout
@@ -19,19 +19,17 @@
     title="{{ 'pendingCancellation' | i18n }}"
     *ngIf="subscriptionMarkedForCancel"
   >
-    <p>{{ "subscriptionPendingCanceled" | i18n }}</p>
+    <p bitTypography="body1">{{ "subscriptionPendingCanceled" | i18n }}</p>
     <button
       bitButton
       type="button"
       buttonType="secondary"
       #reinstateBtn
-      class="btn-submit"
       (click)="reinstate()"
       [appApiAction]="reinstatePromise"
       [disabled]="$any(reinstateBtn).loading"
     >
-      <i class="bwi bwi-spinner bwi-spin" title="{{ 'loading' | i18n }}" aria-hidden="true"></i>
-      <span>{{ "reinstateSubscription" | i18n }}</span>
+      {{ "reinstateSubscription" | i18n }}
     </button>
   </bit-callout>
   <dl *ngIf="selfHosted">
@@ -39,12 +37,12 @@
     <dd *ngIf="sub.expiration">{{ sub.expiration | date: "mediumDate" }}</dd>
     <dd *ngIf="!sub.expiration">{{ "neverExpires" | i18n }}</dd>
   </dl>
-  <div class="row" *ngIf="!selfHosted">
-    <div class="col-4">
+  <div class="tw-flex tw-w-full" *ngIf="!selfHosted">
+    <div class="tw-w-1/3">
       <dl>
         <dt>{{ "status" | i18n }}</dt>
         <dd>
-          <span class="text-capitalize">{{ (subscription && subscription.status) || "-" }}</span>
+          <span class="tw-capitalize">{{ (subscription && subscription.status) || "-" }}</span>
           <span bitBadge variant="warning" *ngIf="subscriptionMarkedForCancel">{{
             "pendingCancellation" | i18n
           }}</span>
@@ -61,19 +59,19 @@
         </dd>
       </dl>
     </div>
-    <div class="col-8" *ngIf="subscription">
-      <strong class="d-block mb-1">{{ "details" | i18n }}</strong>
-      <table class="table">
-        <tbody>
+    <div class="tw-w-2/3" *ngIf="subscription">
+      <strong class="!tw-block tw-mb-1">{{ "details" | i18n }}</strong>
+      <bit-table>
+        <ng-template body>
           <tr *ngFor="let i of subscription.items">
-            <td>
+            <td bitCell>
               {{ i.name }} {{ i.quantity > 1 ? "&times;" + i.quantity : "" }} @
               {{ i.amount | currency: "$" }}
             </td>
-            <td>{{ i.quantity * i.amount | currency: "$" }} /{{ i.interval | i18n }}</td>
+            <td bitCell>{{ i.quantity * i.amount | currency: "$" }} /{{ i.interval | i18n }}</td>
           </tr>
-        </tbody>
-      </table>
+        </ng-template>
+      </bit-table>
     </div>
   </div>
   <ng-container *ngIf="selfHosted">
@@ -91,27 +89,9 @@
         {{ "launchCloudSubscription" | i18n }}
       </a>
     </div>
-    <div class="card mt-3" *ngIf="showUpdateLicense">
-      <div class="card-body">
-        <button
-          type="button"
-          class="close"
-          appA11yTitle="{{ 'cancel' | i18n }}"
-          (click)="closeUpdateLicense(false)"
-        >
-          <span aria-hidden="true">&times;</span>
-        </button>
-        <h3 class="card-body-header">{{ "updateLicense" | i18n }}</h3>
-        <app-update-license
-          (onUpdated)="closeUpdateLicense(true)"
-          (onCanceled)="closeUpdateLicense(false)"
-        >
-        </app-update-license>
-      </div>
-    </div>
   </ng-container>
   <ng-container *ngIf="!selfHosted">
-    <div class="d-flex">
+    <div class="tw-flex tw-justify-between">
       <button
         bitButton
         type="button"
@@ -126,43 +106,27 @@
         #cancelBtn
         type="button"
         buttonType="danger"
-        class="btn-submit tw-ml-auto"
+        class="tw-ml-auto"
         (click)="cancelSubscription()"
         [appApiAction]="cancelPromise"
         [disabled]="$any(cancelBtn).loading"
         *ngIf="subscription && !subscription.cancelled && !subscriptionMarkedForCancel"
       >
-        <i class="bwi bwi-spinner bwi-spin" title="{{ 'loading' | i18n }}" aria-hidden="true"></i>
-        <span>{{ "cancelSubscription" | i18n }}</span>
+        {{ "cancelSubscription" | i18n }}
       </button>
     </div>
-    <h2 class="spaced-header">{{ "storage" | i18n }}</h2>
-    <p>{{ "subscriptionStorage" | i18n: sub.maxStorageGb || 0 : sub.storageName || "0 MB" }}</p>
-    <div class="progress">
-      <div
-        class="progress-bar bg-success"
-        role="progressbar"
-        [ngStyle]="{ width: storageProgressWidth + '%' }"
-        [attr.aria-valuenow]="storagePercentage"
-        aria-valuemin="0"
-        aria-valuemax="100"
-      >
-        {{ storagePercentage / 100 | percent }}
-      </div>
-    </div>
+    <h3 bitTypography="h3" class="tw-mt-16">{{ "storage" | i18n }}</h3>
+    <p bitTypography="body1">
+      {{ "subscriptionStorage" | i18n: sub.maxStorageGb || 0 : sub.storageName || "0 MB" }}
+    </p>
+    <bit-progress [barWidth]="storagePercentage" bgColor="success" size="default"></bit-progress>
     <ng-container *ngIf="subscription && !subscription.cancelled && !subscriptionMarkedForCancel">
-      <div class="mt-3">
-        <div class="d-flex">
-          <button bitButton type="button" buttonType="secondary" [bitAction]="adjustStorage(true)">
+      <div class="tw-mt-3">
+        <div class="tw-flex tw-gap-1">
+          <button bitButton type="button" buttonType="secondary" (click)="adjustStorage(true)">
             {{ "addStorage" | i18n }}
           </button>
-          <button
-            bitButton
-            type="button"
-            buttonType="secondary"
-            class="tw-ml-1"
-            [bitAction]="adjustStorage(false)"
-          >
+          <button bitButton type="button" buttonType="secondary" (click)="adjustStorage(false)">
             {{ "removeStorage" | i18n }}
           </button>
         </div>
diff --git a/apps/web/src/app/billing/individual/user-subscription.component.ts b/apps/web/src/app/billing/individual/user-subscription.component.ts
index fa21317c180..8535f23f820 100644
--- a/apps/web/src/app/billing/individual/user-subscription.component.ts
+++ b/apps/web/src/app/billing/individual/user-subscription.component.ts
@@ -20,6 +20,10 @@ import {
   OffboardingSurveyDialogResultType,
   openOffboardingSurvey,
 } from "../shared/offboarding-survey.component";
+import {
+  UpdateLicenseDialogComponent,
+  UpdateLicenseDialogResult,
+} from "../shared/update-license-dialog.component";
 
 @Component({
   templateUrl: "user-subscription.component.html",
@@ -131,21 +135,16 @@ export class UserSubscriptionComponent implements OnInit {
     });
   }
 
-  updateLicense() {
+  updateLicense = async () => {
     if (this.loading) {
       return;
     }
-    this.showUpdateLicense = true;
-  }
-
-  closeUpdateLicense(load: boolean) {
-    this.showUpdateLicense = false;
-    if (load) {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.load();
+    const dialogRef = UpdateLicenseDialogComponent.open(this.dialogService);
+    const result = await lastValueFrom(dialogRef.closed);
+    if (result === UpdateLicenseDialogResult.Updated) {
+      await this.load();
     }
-  }
+  };
 
   adjustStorage = (add: boolean) => {
     return async () => {
diff --git a/apps/web/src/app/billing/shared/billing-shared.module.ts b/apps/web/src/app/billing/shared/billing-shared.module.ts
index 35fe33c7e06..0031cff7755 100644
--- a/apps/web/src/app/billing/shared/billing-shared.module.ts
+++ b/apps/web/src/app/billing/shared/billing-shared.module.ts
@@ -12,6 +12,7 @@ import { PaymentMethodComponent } from "./payment-method.component";
 import { PaymentComponent } from "./payment.component";
 import { SecretsManagerSubscribeComponent } from "./sm-subscribe.component";
 import { TaxInfoComponent } from "./tax-info.component";
+import { UpdateLicenseDialogComponent } from "./update-license-dialog.component";
 import { UpdateLicenseComponent } from "./update-license.component";
 
 @NgModule({
@@ -24,6 +25,7 @@ import { UpdateLicenseComponent } from "./update-license.component";
     PaymentMethodComponent,
     SecretsManagerSubscribeComponent,
     UpdateLicenseComponent,
+    UpdateLicenseDialogComponent,
     OffboardingSurveyComponent,
   ],
   exports: [
@@ -34,6 +36,7 @@ import { UpdateLicenseComponent } from "./update-license.component";
     BillingHistoryComponent,
     SecretsManagerSubscribeComponent,
     UpdateLicenseComponent,
+    UpdateLicenseDialogComponent,
     OffboardingSurveyComponent,
   ],
 })
diff --git a/apps/web/src/app/billing/shared/update-license-dialog.component.html b/apps/web/src/app/billing/shared/update-license-dialog.component.html
new file mode 100644
index 00000000000..6430c47528f
--- /dev/null
+++ b/apps/web/src/app/billing/shared/update-license-dialog.component.html
@@ -0,0 +1,40 @@
+<form [formGroup]="updateLicenseForm" [bitSubmit]="submitLicenseDialog">
+  <bit-dialog dialogSize="default" [title]="'updateLicense' | i18n">
+    <ng-container bitDialogContent>
+      <bit-form-field>
+        <bit-label>{{ "licenseFile" | i18n }}</bit-label>
+        <div>
+          <button bitButton type="button" buttonType="secondary" (click)="fileSelector.click()">
+            {{ "chooseFile" | i18n }}
+          </button>
+          {{ licenseFile ? licenseFile.name : ("noFileChosen" | i18n) }}
+        </div>
+        <input
+          bitInput
+          #fileSelector
+          type="file"
+          formControlName="file"
+          (change)="setSelectedFile($event)"
+          hidden
+        />
+        <bit-hint>{{ "licenseFileDesc" | i18n: "bitwarden_premium_license.json" }}</bit-hint>
+      </bit-form-field>
+    </ng-container>
+    <ng-container bitDialogFooter>
+      <button type="submit" buttonType="primary" bitButton bitFormButton>
+        {{ "submit" | i18n }}
+      </button>
+      <button
+        bitButton
+        *ngIf="showCancel"
+        bitFormButton
+        buttonType="secondary"
+        type="button"
+        bitDialogClose
+        [bitAction]="cancel"
+      >
+        {{ "cancel" | i18n }}
+      </button>
+    </ng-container>
+  </bit-dialog>
+</form>
diff --git a/apps/web/src/app/billing/shared/update-license-dialog.component.ts b/apps/web/src/app/billing/shared/update-license-dialog.component.ts
new file mode 100644
index 00000000000..5f9a1e94bef
--- /dev/null
+++ b/apps/web/src/app/billing/shared/update-license-dialog.component.ts
@@ -0,0 +1,38 @@
+import { Component } from "@angular/core";
+import { FormBuilder } from "@angular/forms";
+
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { DialogService } from "@bitwarden/components";
+
+import { UpdateLicenseComponent } from "./update-license.component";
+
+export enum UpdateLicenseDialogResult {
+  Updated = "updated",
+  Cancelled = "cancelled",
+}
+@Component({
+  templateUrl: "update-license-dialog.component.html",
+})
+export class UpdateLicenseDialogComponent extends UpdateLicenseComponent {
+  constructor(
+    apiService: ApiService,
+    i18nService: I18nService,
+    platformUtilsService: PlatformUtilsService,
+    organizationApiService: OrganizationApiServiceAbstraction,
+    formBuilder: FormBuilder,
+  ) {
+    super(apiService, i18nService, platformUtilsService, organizationApiService, formBuilder);
+  }
+  async submitLicense() {
+    await this.submit();
+  }
+  submitLicenseDialog = async () => {
+    await this.submitLicense();
+  };
+  static open(dialogService: DialogService) {
+    return dialogService.open<UpdateLicenseDialogResult>(UpdateLicenseDialogComponent);
+  }
+}

From 5a25024f591d590d6a1c297b97cf3168ff6fb96c Mon Sep 17 00:00:00 2001
From: cyprain-okeke <108260115+cyprain-okeke@users.noreply.github.com>
Date: Tue, 28 May 2024 17:38:15 +0100
Subject: [PATCH 011/138] Change Addons to Add-ons (#9392)

---
 apps/web/src/locales/en/messages.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index c21955179d6..e090f6a7ab5 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"

From 3fc2570a0e2437242b880fd1662f31f573ab11c9 Mon Sep 17 00:00:00 2001
From: DanHillesheim <79476558+DanHillesheim@users.noreply.github.com>
Date: Tue, 28 May 2024 10:42:53 -0600
Subject: [PATCH 012/138] Trial initiation content updates (#9138)

---
 .../content/enterprise-content.component.html |  73 +++++++++++-------
 .../content/logo-badges.component.html        |  11 +++
 .../content/logo-badges.component.ts          |   7 ++
 .../content/teams1-content.component.html     |  43 +++++++----
 .../trial-initiation.module.ts                |   2 +
 .../register-layout/vault-signup-badges.png   | Bin 0 -> 20376 bytes
 6 files changed, 94 insertions(+), 42 deletions(-)
 create mode 100644 apps/web/src/app/auth/trial-initiation/content/logo-badges.component.html
 create mode 100644 apps/web/src/app/auth/trial-initiation/content/logo-badges.component.ts
 create mode 100644 apps/web/src/images/register-layout/vault-signup-badges.png

diff --git a/apps/web/src/app/auth/trial-initiation/content/enterprise-content.component.html b/apps/web/src/app/auth/trial-initiation/content/enterprise-content.component.html
index 120748d4c0d..4abb44db4f0 100644
--- a/apps/web/src/app/auth/trial-initiation/content/enterprise-content.component.html
+++ b/apps/web/src/app/auth/trial-initiation/content/enterprise-content.component.html
@@ -1,34 +1,51 @@
-<h1 class="tw-text-3xl !tw-text-alt2">The Password Manager Trusted by Millions</h1>
-<div class="tw-pt-32">
-  <h2 class="tw-text-2xl">Everything enterprises need out of a password manager:</h2>
+<h1 class="tw-text-3xl !tw-text-alt2">Start your 7-day free trial of Bitwarden</h1>
+<div class="tw-pt-20">
+  <h2 class="tw-text-2xl">
+    Strengthen business security with the password manager designed for seamless administration and
+    employee usability.
+  </h2>
 </div>
 <ul class="tw-mt-12 tw-flex tw-flex-col tw-gap-10 tw-text-2xl tw-text-main tw-list-none tw-pl-0">
-  <li><i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Secure password sharing</li>
-  <li>
-    <i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Easy, flexible SSO and SCIM integrations
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Instantly and securely share credentials with the groups and individuals who need them</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Strengthen employee security practices through centralized administrative control and
+      policies</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Streamline user onboarding and automate account provisioning with turnkey SSO and SCIM
+      integrations</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Migrate to Bitwarden in minutes with comprehensive import options</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Save time and increase productivity with autofill and instant device syncing</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Empower employees to secure their digital life at home, at work, and on the go by offering a
+      free Families plan to all Enterprise users</span
+    >
   </li>
-  <li><i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Free families plan for users</li>
-  <li><i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Quick import and migration tools</li>
-  <li><i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Simple, streamlined user experience</li>
-  <li><i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Priority support and trainers</li>
 </ul>
 <div class="tw-mt-28 tw-flex tw-flex-col tw-items-center tw-gap-5">
-  <app-logo-cnet-5-stars></app-logo-cnet-5-stars>
-  <div class="tw-flex tw-items-end tw-gap-8">
-    <review-logo
-      logoClass="tw-w-8"
-      logoSrc="../../images/register-layout/g2-logo.svg"
-      logoAlt="G2 Logo"
-    ></review-logo>
-    <review-logo
-      logoClass="tw-w-28"
-      logoSrc="../../images/register-layout/capterra-logo.svg"
-      logoAlt="Capterra Logo"
-    ></review-logo>
-    <review-logo
-      logoClass="tw-w-28"
-      logoSrc="../../images/register-layout/get-app-logo.svg"
-      logoAlt="Get App Logo"
-    ></review-logo>
-  </div>
+  <app-logo-badges></app-logo-badges>
 </div>
diff --git a/apps/web/src/app/auth/trial-initiation/content/logo-badges.component.html b/apps/web/src/app/auth/trial-initiation/content/logo-badges.component.html
new file mode 100644
index 00000000000..d1b33eab3a4
--- /dev/null
+++ b/apps/web/src/app/auth/trial-initiation/content/logo-badges.component.html
@@ -0,0 +1,11 @@
+<figure>
+  <figcaption>
+    <cite>
+      <img
+        src="../../images/register-layout/vault-signup-badges.png"
+        class="tw-mx-auto tw-block tw-w-full"
+        alt="third party awards"
+      />
+    </cite>
+  </figcaption>
+</figure>
diff --git a/apps/web/src/app/auth/trial-initiation/content/logo-badges.component.ts b/apps/web/src/app/auth/trial-initiation/content/logo-badges.component.ts
new file mode 100644
index 00000000000..c23432b67cf
--- /dev/null
+++ b/apps/web/src/app/auth/trial-initiation/content/logo-badges.component.ts
@@ -0,0 +1,7 @@
+import { Component } from "@angular/core";
+
+@Component({
+  selector: "app-logo-badges",
+  templateUrl: "logo-badges.component.html",
+})
+export class LogoBadgesComponent {}
diff --git a/apps/web/src/app/auth/trial-initiation/content/teams1-content.component.html b/apps/web/src/app/auth/trial-initiation/content/teams1-content.component.html
index d26bbabaef2..42f99be26b8 100644
--- a/apps/web/src/app/auth/trial-initiation/content/teams1-content.component.html
+++ b/apps/web/src/app/auth/trial-initiation/content/teams1-content.component.html
@@ -1,21 +1,36 @@
-<h1 class="tw-text-4xl !tw-text-alt2">Start Your Teams Free Trial Now</h1>
-<div class="tw-flex tw-flex-col tw-items-center tw-justify-center tw-pt-16">
-  <div class="tw-text-2xl">$4 per month / per user</div>
-  <div class="tw-text-xl">Annual subscription</div>
-</div>
+<h1 class="tw-text-4xl !tw-text-alt2">Start your 7-day free trial for Teams</h1>
+<div class="tw-flex tw-flex-col tw-items-center tw-justify-center tw-pt-16"></div>
 <div class="tw-pt-10">
   <h2 class="tw-text-2xl">
-    Millions of individuals, teams, and organizations worldwide trust Bitwarden for secure password
-    storage and sharing.
+    Strengthen business security with an easy-to-use password manager your team will love.
   </h2>
 </div>
-<ul class="tw-mt-12 tw-flex tw-flex-col tw-gap-10 tw-text-2xl tw-text-main">
-  <li>Collaborate and share securely</li>
-  <li>Deploy and manage quickly and easily</li>
-  <li>Access anywhere on any device</li>
-  <li>Create your account to get started</li>
+<ul class="tw-mt-12 tw-flex tw-flex-col tw-gap-10 tw-text-2xl tw-text-main tw-list-none tw-pl-0">
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Instantly and securely share credentials with the groups and individuals who need them</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Migrate to Bitwarden in minutes with comprehensive import options</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Save time and increase productivity with autofill and instant device syncing</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Enhance security practices across your team with easy user management</span
+    >
+  </li>
 </ul>
 <div class="tw-mt-28 tw-flex tw-flex-col tw-items-center tw-gap-5">
-  <app-logo-forbes></app-logo-forbes>
-  <app-logo-us-news></app-logo-us-news>
+  <app-logo-badges></app-logo-badges>
 </div>
diff --git a/apps/web/src/app/auth/trial-initiation/trial-initiation.module.ts b/apps/web/src/app/auth/trial-initiation/trial-initiation.module.ts
index 6e25e978580..57d982fd00b 100644
--- a/apps/web/src/app/auth/trial-initiation/trial-initiation.module.ts
+++ b/apps/web/src/app/auth/trial-initiation/trial-initiation.module.ts
@@ -24,6 +24,7 @@ import { DefaultContentComponent } from "./content/default-content.component";
 import { EnterpriseContentComponent } from "./content/enterprise-content.component";
 import { Enterprise1ContentComponent } from "./content/enterprise1-content.component";
 import { Enterprise2ContentComponent } from "./content/enterprise2-content.component";
+import { LogoBadgesComponent } from "./content/logo-badges.component";
 import { LogoCnet5StarsComponent } from "./content/logo-cnet-5-stars.component";
 import { LogoCnetComponent } from "./content/logo-cnet.component";
 import { LogoForbesComponent } from "./content/logo-forbes.component";
@@ -69,6 +70,7 @@ import { VerticalStepperModule } from "./vertical-stepper/vertical-stepper.modul
     CnetTeamsContentComponent,
     AbmEnterpriseContentComponent,
     AbmTeamsContentComponent,
+    LogoBadgesComponent,
     LogoCnet5StarsComponent,
     LogoCnetComponent,
     LogoForbesComponent,
diff --git a/apps/web/src/images/register-layout/vault-signup-badges.png b/apps/web/src/images/register-layout/vault-signup-badges.png
new file mode 100644
index 0000000000000000000000000000000000000000..7a80ffaebb9ad3d6ba162b5237f0b465205f974d
GIT binary patch
literal 20376
zcmXVW1yoeu*EZcLDKJQPgT&AX4Bg$`J%e<EbT=|ccL+#JcMUK|iXzR>rGy9{zyJHK
zb=O_z?z?+Gcb{|aI`LW>AbcDu93&(pd}Sqh9V8?)$jkT-7V67Ae2-2Z2?^y)OHEJV
z<&p5Mrh<w#5)Wu?ZGGd%hPk2!pRA_5iuTL3<L<;Ir}_4s2CbOt3&YFxLPX+K+}zy!
zKZgGv|3^Oo$^PH?|LFUm|8f5B)f1HMh38sH?Ee_PZ+`#r^T*3wUPbGL^8Ls6Q$5KW
zRiTZa8_&vI2q*Cu*%y(28eIEIN-yJ$&5dUj?tMGS+kEz$JdW+1?VBLS7Y#4;|5Nz<
z{CstN^$cZu5r0v_%*?k30zEwZ{nXrTU}{4#2Lt<sZ0&3-YwF+L-B}q)D5~i?jh;R}
zKKk2=#-5+=?eE|G{w=$+eSUe_-#?U?l#Wzb=;ZE$DWraSc7FS%T20$%<Hsf~$l|#?
zJ6;l`sc%+MS%an?P5{)InueKKJKhzgdV>R~db$=Cm!7Q@pOb^gWsMGwPM!m7H}?*o
z5qo13Q%5H!M(;laghaY|zZW(2tZ!`2EhzFz$b0T-O3%tK{8VNcoX9BoE;Rf@S5IGa
zYkNs~Rbpyptc!@J1#o`tXZ!H<SvCi+zO%HnGM=EKv4y>$yzIdA!tXqGS-bZS1?&O>
zk}T@B($Y%XX<U<wt2486d9`giMi$QtQxY~#6e9BeX+^SHhPICGkueFXt|69oE~~$G
z!g9)<^~7XVq<Paa<z$oxhsPLdYn`Gp+B<tb6jnF&j>g2NOvmxBByvj|TT+dW)zmfV
zct@s|H9p^5Rkru*nOL=j@K@H<i+KBLYfBdTynXZK%TOe*KxC|gt9Q7)NL_%CowMg%
z0`K#W)pYl_?14360im&HXY7SVuRg>%ngR`WcBn$a7(M+ZR#u+#<Ms_@hg?J>kB^_5
z$}AF678F3wZo2K(66b+J9db%;bxnwxyyvO*?xyIo%xG#oaE=tnK@21oUZR-aRxYa)
zvAu&T<EUQ)lbxQn?%COz9<v`hGW)VF-9PZu)nw@ExBBs^>IL!A5FHI&B%;mDCo3$5
zlRu=CJitHprkZpke#*xYuuk}VUGJyyD*tXf=iK5=>5LEItP%Z(Pe+zAG9UXtX-|Jj
ztD0+)=q6G`LQ<nrmY3D@UqAVAtZ8abGjJJcL}xY<E@)9YW~KHA^A094cOKqsZj@?X
zh7Mt_k1N$S;emDny+o^snP4XG^bG7LW<^>3<Ld<#Nt*oQFI)UgOY<+ucm6fZA;b>E
zV#z7FPuHJ{LVqST+uQLzsDC=Rm8c?bb%j^)zYeQ9KPYl%XJeaq6LUyPN?Kn<1eJr}
zT)kTe$TibTS{(gN_8)z>;5q@@+v8nLW?D<bvK)lyGdcDELjthMcJ80YK+SH2hK{L8
zoW@hnBNuX^EAcykbN?Hn?@RItiNX|swH%D(Nvu`)FBi21_ELt<A%^JMmOmacv%Q-E
zgZrhnQ9?>Qz%&d)>jVulvcWxaVk2Ib4kRCu6UcHLC6tq2;UJhJvXz4iWmV<O3;F$z
zQ~T^L3TVKymR*3@E3y2N!_E%d1lXP)+7g4?kzP)lC+6dyjCHd_4NEk=h%v>@nt`kN
z;DWN996p6ACtR{2G4h-GHoG@i1CsAtd^mvDo8hp{LtGg;q$)Typd*?CsK2C#m1{iz
zUF9rC2F)!(zu?`%C3h6h0M3`-Qg11oYeZ6t=@1zdT;l>y`9_)CHSZ$ZSi3PuVc7WN
z@5j$;K@^9ybQHT9kbQOa%eqY<as;Gr(OY$*wCt48Zx%%d<UB)uB0j0mwu?O9yG3_*
z@^$*_z*PPrUIfqQ`u^+qhegU4H@Jbh3wg9_ZBC$S3YO|xc%&(yE2_V+XlRv2?rguT
z>-#DiC#ZA>Q@>o(R2!N!By#OsXfgS!`_N3uc4&UP0*hNFt~M>TiDO#)ep_W-*~{gv
z`e&Zc`-+e+rG<PU!=GU3U0fxJDcQ9tL-nx?LMJX|wb$Hv&7(`MW7`RIZKoK0yLk-0
zV#I*3V6cXq(9j*66kt3=0ad9jKoTEysz?8tH7M1$u2Nt(pCyWI@Yh~y@Q90dHs(-X
zhTpEh9v^BmYpkIQvBS28+-xne;prrGKhW2Q`j((K!+jh@9!AL)pBN5lnJ5lqAp7)V
zxh1YdEz$hIgL%r-t95zy@|7E|k<<>W#JV80?|?YpKapeY<Hn!<9o|GR*iaSUj^4pv
z0gUBdLphyh{Be_XvrZoFYP-Kh8UUQPc`HsuSq;0X)j?>}oUOC~X*S?1jKg$@JSfLY
z5!4gVw%ejzh+!RFTgzpnUyy>nenwX<mJ;sq=A)IpI1o^L!HPG(HL_pEs47}!yTr1e
z$tUM+5@|tbPqf+BvJ9l<BRBN-OV`Kri>TZS(fLHZfKWP7g@m>)q%)T<EHnja3^0s3
z<CS|)(G}&dWL63zvlw>&<FSp@H%KR$uA?uL-I!;2QEpVGYtlg2l%ic2XlIxv;P1Gf
zy?442K9=n7Gul=_VPu>Fn<Vpe4Yq=J)ErK{T0e9m0ncI4RERd`-+z8sst_GFTsFD-
zfM6*{B4`g+EZ}IGzM7D5v9SD&KU%#h-j@F&^z*QA*fM{Sw1(9>L%`_`t<m|$q-FGv
z*f=a&p))J7X^xiH0I3Gxnv)NMho4xQ9GD0M`j{7#{T53nvD0z?#5salj=Pa^9C`kS
zDo?Y+TVMzg3197Sj{fw=jm324nS}+Gec3cEi(5UKDDBz-F~N=&aYGv#T%qHy)4`aW
zJrq)m#Z*@aP2!Wd?1|jK7dZGrzQo@P-MrT>zlj2hp69Qmvx|H(Ya`L#aOL`}WUOFN
zwv!miGSm*vS!>dM!>J8AI(U)tgR~#=&KM^wA$`$CpNazRk7nOU5s$m>iyJN1ON~qu
zUTQQS_*aB780UC_##QveM5RVC$P!ty0a^zrEt>U{*=IzX5}x@C2ln*9V}mMB5(+7M
z>;Q<$eH3?!Zv7bY`7rk?l=H=t_|{IH4JV1+A#H<#>_e}ROa1tA+85;0LOBxtxzSb7
zhSS*-g-$uzua$VrPeiIUcK%f-smHB1jwd*vM#*#<51x9#!Oeo$3M7Zw*xd3_{yLI6
zhb`(N9@tiizZ4?R*R(l6VT7qXo1aYZN#9#43{8(%Qq0U!D1QG}YRaV$)VhFlPP6~%
zuO{IvZtFwX85b_kZ@a3vOwJ#n7OCH9M#&sSfn&^?!^(SNz^|f}gwJZFVkq*U=g0h?
zy97)@VgGE$QvhM}j~7fcHI{CJzJ#T<Cq(^T?m@9}j-vps<NOo?w8!Ks5$UXNp($7k
z3xrG^GG05=wVy)&y2frB7QDIputcs0%4n#Z>+%86p%gd^O7CvZD8%C4Y2+5BIO)t1
zGyK<`_+Nj8*siv?#2z(C7@KSNJk8v@=)DQi2RXP!{^&~Z>%c4caYC^C66WT*ajf*D
zahKKt_WHW8UYg@jy=b@e)gGfO`ArbfQr?+tR!;8|sioO05&xyQ5s&cTlp=)A#qG4b
zJAe2iqY{K?Wp3`bCmnFE_xDAri|3V#uL5RUW@<H$rSV#`j8s>543>-OM{k<%#+k{7
zOdh9{x;IS!$<^l`rQXmWN{@qXhFPhosAd)>KT?+t^KF;l)lM6lPSXA?%+O${bu`~+
zj9iN&XgyI45gd0);alj^3Nub=>@f)3?aqDUYBjTPpV&Ar*!!6hXN`5-35GrF##NKY
zW7#Zj_#@bxdA(VN<RF1D(l|k5dpSiKXHpoHcSs7Y;FeiVgfY4qFBRW=Cokz=bk1O6
zgS-Bavtj*PEiL0}90@8Ob(V7S|M1O@6G(Kb<SrO10xCSzb6YqMT3_LSm7Vup`J*}}
zz%;XtTfPsJ`xUT^f*~G0>+b}|aJeP3WFb3?k79;Dws{&!)hp2ryzO&JZGWy`D$w2U
zV^KoU^Nb|LJp0BIhs!cW`J@RryLy!skq7MO%zVEJyDijkfg!B-Vumo!+_?RV@0ujD
zb((Kj?mapJBC{I~FB$;t`I&Oy=md?n(8*xyHW4vT_MmZB`2&&KYp!lO#iP@u57@(#
zim}*>Y6xd<XR@zDk#gw)KEDUX3a*D)EeTyq?pyCw8-SXdki{xjgYkfi3e+A|6_swk
z{>zj0#b>10;Vq^$zF`U@_-Q$d_`;T{IBV%k3wp80uD?c7c0Kd1Nr>seJ9}yAb9=6!
z*w3XU654EJvn|q6K_$V8Dts@6st;=UMaQ29_szoot)NDWJvxHH*Pk@&X04?x%YeEd
zyI<v~9httqFB7S&VO<o{>T-D})Na1D*wvRb*MkWtrjR3_471w!c^Tw(?%#X(xU)qK
zY%Qi-8aEgW71hv<gE7r!HHK1_;pJc+Ws!GCj~ce9Q@azCeO(cIv;?;rKn=6^>n|;;
zz@JDv?0$AU!EpH6*<YRidat#?_fB9u;G?tVzl`9-6fSIXD2IE55Ka^}$Y(hf=IQMT
zQ4CD_z~%451GJu^3n+#qOfE?(3xOJ7<FkRj1Yyk%zBC}ZqPnGk^+P7u**W@>D^nD~
zpMp0&>6Q!W6><=^kh40%ZHY^P4#QN~_sZj}1m=Q?9cYm_Ee<y=^~KR9Hcw1;Q*Y+@
zyF{>Tsu++&HU>nf;P1gN6zCS-;pPUEfIabvQkc-3*o4uV;j~yvEdH4v2?vR@3r&Qs
zAC6r32SXgR6{?D6I%QjXCFA$``om`Gt~cwVgBuN4y<>i3)NhZHmg<&j3PG8oXd$ot
zJ|}Qqu>)I}ydW4!vxNs?PiO07ef`;gl`PGhAs4tuYP{;CwAnI?K5D0OL`Y{QhbC#V
zTU5VY7Pjo%0T2ke-aoM35+R+YKZf}LmkzM_aUR*T-oMd$?^AonMVMW)qy3}e%Ob9H
zCT~S4D8m)D^6BmI()|^TVmY*_74(6!>u+0c5FsS$PfuleSt}+)ohj2qb|)~$ECck?
zlD*4FbjpTDeI2>zfnk(&bw(H|3uqvBt5;V}3)T*@E7E-~kU;W5zJ&^fSZrCfCMtjv
zHS&Du!xw5bhhEOIVQHh)jN5ORCQSTYK6xL9U9N@eV7c{TejH2mpPEdd=EYvU)%XoR
zrMFQOT;U7+2F|zQ$`}9vDa>Q&)x+2L7YI;7!EL|C<7feAeU^P9rQlX#X!Onmu4_YM
zk{4wdBbGOdL2?Q}&Fs0=&!MD2&l)L(>WeSMZAh3FsUGRKT*2o!VDfCzu#B9^$28Ki
z-VzKdl|}tm?(5+dR4V35+$KHPCb{GroeHvCcfS%65=tYt8{-l@izW-f`%Hob!tELP
zu-jki2PwT|jc=aAp7u7>D~8!f5L#!I(il4d;)qTgON4?`;{993b0OGZaQQfJRjk|B
zV%`?u`az!oku^2)76-_GmR$l%E|~?w>2p(5cfVASx4C}p{Nj|ofD<agRR&0}tF;o7
z2PPaUSAD?jdyXFw{{)6_;qI#unRNWfV|LQT<>lRM)zD>Nfj)sO#V7@n1cu5<&c^Gd
z)KV+k+SAX{qr$bjT`RyH?0|==IhW$>Pc&wI;}b0pL1r9KMic$(qPjmAg|;KWrd|)D
zajE6Wh?Gx@5d|1Y@@i>?YT=hE9<<hDOuw)Q=~aj!SG$26k-#csJC%xsJZo6+r2pfq
z&_aO5Phx>ST+8yN)URWkQG0j@wo+CA?fX945pl-1@cXwWWb>4^7&$xNqZqYYtpnO(
zl^qqIMWM)0VHPNB5Tvx5Q3+38TFO<$(f9R7w(qm$V6X0=0N>gS`W(lyF`9g0{w`f$
zr%yJjiiP`#SYC(v@z-!7$rah80~tpe@A9k6%*+uMb8M@--y8w!e+KfO6d5c6q~owY
zj;Zn&qs4Nv^bqrrIO|$ai>rK=lbP5K`dml{P`D|#wV7=VwShO|1;L0AM%II4(<j-)
zjrbSF=zRZ{Gw$Os@?zDazVIWIvWpL_BUBvCZ`CySmS~R#V~5-R%`UXKmV?uQG#GMn
z9`j;vdMAtz_&-uDBM-zO+s$dAi87p$BS?*k<Ozy^vauL4$khr94Vh|2w7hTIcWvlG
z4~b`a|8wHn^Dj#O^U-$>#3KwpNaGUT3}0N43=x@(sD_-C{1606eubzlj2s%^sEJJx
zWT2y@!&+uPInb~Z;?M|sq{9{(S~ef0+q4fhe5MosG{Z=O!(XW|nCiT)X6U&}O^2~r
z4JESCUGd<A$Nc)L0Ng!;ot8CvtMb5H0{^QMRCdeqzCr~UCXYTQOCDi_u*gFYqDEvA
zRB`6DD^=n1ZMEZM`<>as^93qwp({s0?_J(vP$ojmNDzf_W8nhpo#4;D7CSb8Y3G)H
zjx?1@wvP_JCb$)g*d~ipsskl%dhSqBne)-aESGW;<*I);dj8p&DchP=lbZ!!658hy
zCM5D)B>N^S%HoP3N6M@w%+NRJnTAi^Cg4C06cz)-mw!<Zhj82Pa6~9G22GTQ#9~*q
zFDFK{{8#G(zGEX>0GahRwgu31jgPrKMk^OB&noDZs|}kIp7cb8Uh|bRTMRqBoJJYw
z-D$CIeTIg=Krw@_Hxk6gn+1BHBcNl*QVwlm{f@*l2&}F7KPOZ`)fuqZU~vL=ZBxog
z6v|m4`yhlw_eXeufA*uk1vjThHi3mxI#MJ&@yMI-Jpr<KtPk#%FU``|AVYMs*}!e#
zsPTF@d!#a}m>sNdQiNE;NM+w_fE2#R=IFdJRL+==N_~%X50eM-rvGyAIanmQ0tZJf
z&A_$gHG$vLV7!Hp(4FIjR+UlQ<!>B#dG&pYUh5V>Om6rVyz!!p1y{}-@#`5y?Jk@6
zk$*=AaRS*tY6{CH5T3PFEWduhRkBalkVK5Udu)^oDBdPpGXQdK!0xmg%fz&xV!u_w
z5p;0tQ;F;5DN`p_GzOWt`r^a_!~a?g=#YISTO&&;cCPV`{+jsMUYD}>bpK6-;5%AD
z#0B<8ax%3erP$Ed7UXCYs+e<T3U`?+53W6VzCX7bh6}Ip>MZkNHLOswitR`OIR)9R
zEPbGw&=_OczQM2ZOi*<B8@^BmXvEPEGvhCeJ`U)(fIy{I6%g@l8-%OX@V6Ya<L)HE
zQ<>*BpQ^wfAnb?R4&VCF&eUfIV|C;8GzF@8W5$GK!RoKa=?>dv47zIP9HqaH0>6o!
z$b%~0g0n|>Lql`Ea5CDEGC(cxxs=R>;q?64Ci@@ChLClE)NwjUY9Evi^yRxyA@eC(
ztet4bg~K0p{|h`;BY&kNR%zU)_27%cjPybw=Yx}70r|-JJq1F-xp0LKAz}Fsf5muH
z-4B5HoOPmY0ra50lX#>Na#n7nO7<;kNd^~HA0ejaGwy9D9Fml(0PUPm`d=i?%!@)1
z1<S*^{s=V&l$ym7X!@%NB2#C{KKB1%Ee~=uSbkmhHXUvZI9VpU+^zlTlT=}wu$xVV
zs6Rd(n&w|-Tcv0`1ZjRDNYM+thfEk0<=WmV9IHA)lkBW>lB4W8P8Y?n^W7svUcC{b
zI@TK(d($EsD=;whYHTc}LJ-pcUYiV2JgvyY1blgyFvA9RnI=|e`(O9-@}h>{$EY0O
zPvh9|#ocUz)_p1`<CA>|m*>k=k|A^gOTxAiGdKF>GAu2XEm|o$B{KJudwb};<iC9Y
z2)-uC_^`YKMk_`rah2);R-xJ378aZNeW81Hm{@zOp<)I+QIthl*E<)DT;QWHJU|zf
z6V8yS(H!W)Azv=24QBebTJYXx0$iX8Oz1qXux;cF(WwSyDINH!-d_4()Gl1yU!t&E
zgTndbUOEp(7^xa<JNfMQ7X-$L6x)RlsD5F!JyCjp)eTqGs=~l`+tO`lhUs#EVYW(b
z9|h(XoG~zJmU1UH{F@V5Jq!iHuuuH;E8qc*ft(5jO5<;usQB?qpsyy7=*hKGJ%s-^
zXE6W*spbD^9dL)PW_o69r5CX(xXH;gQGHgzJg^4-_$PxnU+lNQEb2K{iS0)RO&ZAW
zHGZcfa8`~9|2(W39dMi`deD|CRoaz(dN!bd&$ljWlZ31<Gh`8T%Jiy~Dar~|DPNI^
zulM?lnE~*JyPI^N{$Fn52iAFJb(a51vLn82bp5lg`-T#JKX}$rG=pU8JI|+_A82P+
z!a&IajrzuaEGeWFufMsta;-wiW?ldJ0gf<b4a;u1#dCQeB;G40A^%Im1I?Vh$8@K(
zrb_Zn+EDRJtuTP?U;>y~Gv!G0!FhJqdLy73L)@4lJF}*E!=HRBY^hO_P(9#h2cy_8
z$auO4G+o8VOuD9X%4}vM>-(Agj1-1I_!jSXSCS)Jr32H!l)gdG^n+Ak{z2~F>i8me
z&fDDY7H1@-xPp5%tY!6q6?1mKH&=wI_j0;&FZ;hfxryKwkyjcB=Bqt_Ls|2eSWFdj
zs)YOlwgzX!hJ{}}w1yZd>F(tliXtHIW)Qij<_XI)1X<9l*M5yr;JUR`jvb<$jVUT_
zr}$jqvGK$**=6roEp|7z9t3xG_gP%C;MRSD_?MeHf7CHP?sQdib`slWaDg(W2UlZO
z_m%Pd<;PaTwdMx6jT9QN`PI7EYFKnb4r77x|C(MdLC<usWH<B?NA-ZP#M@{xI7n~#
z_ylEfesjkQQ5fYRM6Jb#KL-31T6th_LQp_>CmIVXLZVLCRa%pQAI6dz$I5DFu#r`^
z7QHnM%o4e02gg4F_1@YyBGIQ(SrvtpmE@FtRQjK-10n{fqcsP|H|AQ^gV-NAu%Cjs
zb@IURdzvXRHf={<A806GzmNj&AXsSn_P}TrFCqqeSbb7R>#nlI8=VrF@pYCk(OjAX
z<QaWHPSydwr954Ytdd@t^<RN%yzXA#MDO;|mPqwmA%c%35O|RbM>|#sGaJQMgZ}T9
z>0z>(k4oD#kC&2E2S)4-vTs$2sOZSh2oTIWT^lud@OVRuF8*-;q*(f;v=l5B%#1h{
z);eUyJh|jF%&Cvupts2o(uGWdbXXS?IbW^f@6?RVhqmzmct8&KGjQ-gYeLp%=avJn
z&sG#Os^NM87mN6q=)mYTp~`^P@=tlZd**m{R>>r`UhH@YwMM6$-ME~AFX8miW^C-k
z6x`SR2(|q~+XlW=s_^5Iq#9P?S=pACuu9Bi?C8?VmVq1h%c+sq<=0Ggfq)$_8>p?4
zL1zBS>7e@dQLQkl$p3cE_~BCW{RcPZpHDi#GUT|Dw&sQcR~nW@Vx$FWei$dGRN-Qs
z@tk|H|7Dk4M6?Xcb--hfEmQAQ&2SkudKNXPhiJPzs+;BCop<$oU8y1#TG!WexI=mh
zQy|>B5R_svJkRYGW%=`AJ_7DsmRtAc*a-3K9kdW7t1y8EFP&ifSH<<_st`0&shwtl
z37-BkowHE1x&lGb?nEJV;}LM<DnDe}pf7VZGz*cy@P!nbnIe@cBvSWk=P^2_m&A_O
zxM^7#uM%wHJjbWU!HO@Qbt>P{R?+N%xyC!Z?8{EbeRzV{0KTs%6~1a$iIp?P7eV|}
z%D%fiRb7;6R)OxqjAI;=39D$f!93#~9<cmngj|X}VTB+$Mx^iu-UqjoCGw0z<#7Yx
z?O^0DlOYJ>s<jj=m_1MsHw*GgEW0-o_Ib!WYB3N3b|c7oasN*bcjYg#!3OzB0ewea
zf{}mtjwOwJS{Qb_THmZhX<!7V9Zy^1&CK6KIbRpk<atW=iM?l1eOXmfrR?KKc<fnw
zJvk)e#1_JC|B=&}4khd;*9TC)P9IMec!QQ8U2O4<rbAZgh24a}Ix)o&twR8Xh>VYb
zR)Cepo2?^|W-JX86pYW7PX^Hdo3*pPL|adz`tiLXdWQfOvF!NZb<uv?kP`|UT=a_X
z^<I;q^uLSBwEwEr9D!%a{jL(^#g1zi&=Lh|qGauu0?258NW-*OLyd&TYe<)~p9$o?
zg!n9g$&bI~F<2p?Qb|W65oqrtQE-dOoGC|(v4fNQe%mHMPzm%(67lG&+QN{G#WPwz
z1K0vf<+gh`gumL5rv>&}7pqP9Ka{-wUpbz7nY-R#p!>bzUgSQF73-wW|1=b+i#Ang
zi+j+6-T&lBmy)<QO9xQCDc2oM7g^c5{zOY*CZ{QViZ8J;i9h+6z5lM#w+QT!NjH9`
z9#EOND)#@mXJdY6f&bn{njYpP%`9BH1GC;~$SdHp`4xv~J|bz!u|qPNtP!L|%aiAo
z;ImFk$Dz!WIln*s90zsZJ^TMT4{|4^3Hngz%^3F(bSSE>dAVi&;-T-y$ubfL9$$=A
z2nJ?q{Ph?UgNh(Fwv@;H*0P_s3!D0S06PUIDxH`Q(7yUFIkqNu@1e|J`n%q31!8$c
zX^{LcH{WI(@7Ts=yzuA5!#s;;M*@8C+0w1Qd|I0ir_*mY7K(tppgSd|_4)18VCSI{
z$VkM4*Y^g87nij}hlp(uX}uqBT+MNWP;z|*?SG#Qc}jg5&CI(<*UnU7RGRmlbCPC}
zDzA%~{&-?1e&pgUUbYQZrvs?JY~l7yg7!9Gm*Kz2yIc9VtqS{Ahq@28)kj@d^81O|
z5S@Wvo3P8vUXbI~Io7ArxYKvyVgNT2u(g=gb}TJK%bNUWJhY9m5XpI{v-wknb^8r~
zGS27|!F<(M@FM^KXou&2%sb2@amSkVjW*+iGHSMR#4;IV1);Bemf1fr*ZW$!y!GAJ
zLg6n_8&cNH$5pW)4(I}0olK?dtGCZC;@_z(OsoX<ms2z7-CH=~Fr@nGSGq;NQW~da
z>?88O75)yDgCmo@;Kxadw_n5RT<`XeJtwNBn*_w*2f-=M`nZ3CwhKRUS<11}w&cRG
z$2@H|-k{0Raz;0g6z+sYOAPtcWWYM_|GfLgJJtgj<K6MdhV8Y%yS6|48;i=lHygO*
zzM|0@GIv_h67lLIqNdE9%mu_Rh(7r;$aZ?8;%_QR9o%p^y78c-M_h`+jRSa?Vipzt
z;RbM*2&P%evYqp0l*D|oROlJZKtbb<g-J|x#KN%!dM=hHf9NSl3>DfAsbW&cm1X7<
z+&__cWWOvqFQ%#gP_NvZ4NkHlFjd^pPha`SqQ)T&MAOI8`z#tne(YsKu|_Gm3-=c3
z`c`7<B8oz^EF&J?keRgb#sjO(wOOHj5!tmz(zwX*QaDjEOG9fe$NyM<^;kmnt71JI
zQ6I2w9r8C^wPLu1b1X{aL<Dx*6{V`hflK<#vJOZn$Ve>PHIiSKq4dR%yr3EK!A3&?
z@O^lGJq}mK<gjY{iq@RWq_R(zC(o80-lkB_WB*Iv9JnQd8lm@>%FbRdJd&s4J+rA?
z&wvd%8^C9Jp|3YfL)?34Q8SZJY+z(<G1fnMLzbla@0;3;l>R^WjP!|+jli_v<XrPE
z#vXw`W?y0>T3E_{$ov^jqkn^SB&K7?^o0_}g1|3;?%op6$w}0|K0hd@ld~-k-Ndz_
zQ3c`ACDBA$|46;-^(XRiqF7ZkVwt{G1IoUdkVld;{UCZVj-_1th?I69z_NBHk&-Pi
zrdqXvl>wCh6I^csyp?9^(F4YQ+P61c>8e!!>@pW)5Laey#Yt1P!Wj)&+CWDChCCXU
zr9lxL*YIJTn5x+GLvf-qW`*zO?jUa&O|;(4rZO#(N~BuOc{*hETJ%sp>CS;PjB3_B
zo3@)B4XCQvHihRDI629msWEYPcp%V##0oHO%I#^h3(c>1-}c;6cO24)OaU7Y=Z}9M
zLGPTRNYc%}i+5A%eUeCpn3*KI_{$fowjcg&Vc9B9nUyGFRE2d@kq%Y02VPu;Oy3j7
zb9veTX|HyKT-EE13QnmB4o)-MsZ>P;V2}t1)DvaG{?UtwU<S6;QG0YQAJC>arL#tq
z?!H$5V%GM3L(TVBqHau2$(z4y`bBYbEAnahhZp+mA6UIYEbxl5-GtHY%@gRHE2BQm
zKw0$CZ%ix>|M^S{QU!%x>?U4q>JP&1O8IFyS~^S-$rZ7*I#fDNN|_$yLmESALs~cy
z<b;EACHN<!Dk`h(8M>OZlJ|~x4nI?a9a%i!%Iz7-(iEAwB4wN>vFE9`j3SA>6Kn?)
z<9DLbA6T+R3bA@0wklL&F+|YUijjtBKSE|?leAQH%Ju3jRMM7`6{a_qI5VWX=Nk1^
z><n)T6Nx(Mww-q2?7wK>iK7aM5ENpl(+6c%k})*whF_Ff1gekAI&OHNa_y|{Etn6S
zD{K;eKMB)yODoz^u%m|p{$RhK%+ym9&X5CIh^QW1H=PF=@=P_Zq7(nkBMFhRK|J<-
z^=_c>7^3!Wg)Hj;bzaKBFDTd=$!yY#oUU=1D*e@;d!pSDwzZ*T!#{&{Fkd$!=EnrU
zV)5t98PqSyuLweX{ly0De?%><eHzrBwtt?so$w3W@uoO0iOMFnP!$yH7+Tk1jS*cR
z+p?DvO458TOOuES+s)0|K~uRdNTzT!Qje`>8T;A!DlYj(DA7hqX!_g&__O!ZS%n}H
zVWGX@UfoB<w)MPzC-}L^WU+g2mw=R?5Pjhv`#Kc|Y3G&hSKVydJg^x40%lHifo9v_
z?kilEn*{>!Pve@UYGD&x!?D}zSK;c%u@C9l{F)uKX=4GTC+&*E^bMF!I9b^BtV+or
zz>ja>=|gT$zs=<5hFiY;CL6%EP=alb&L5UD1`K}67Mix~gA~E{MALAnS@cqJa&ics
z8GC_WzCr#J$&s_l0sovF%^_!j%hbGU4<05+9!Br#;Xg_OvhNRDcvud;hbo%pqcjx@
zbmzBdt;8uDj-&VgQY+D1!kg3^b=#|)eEN~5`0RFh?u`2;V2s8GrZ9%dWBvLe@@Ghh
z@AVcA4_u%{BbZUESvmH$1|I02ZL+w6Iu;xOO<RCVDVhQMr~QNM;9^KHF`0A!GZ~;z
zqKd5`dTlABvxmV;e}eh246O$83vWVRX<YgJ5=;}B%6yKkmL47W6s^%$J3NWgO3+Md
z_fsohoswH%z4Xo8W8^D9*SDx5RdiVYRYz4l<T2#lWqoM8$on8W{Y*61q51r7H(k?m
z$BfARjv>_H%pw542wmF+!29M?dD#utush8~5lz$1VUrxt3ELA5#034tzh9rZ$VIym
z14&usup4tDP1+xlq6e%B<c3(0`RD|1T=UzVk0_1HzF!h@EmxKtW|HkJw_FePKvyba
zHYXo6Lj)c%C;337_Rn=rU7QAKzIo-!3WZr#HgsBrT$whN+EKcN(WIyVOGV0X$+FTI
zSK>1GRU{P*TErsPHk$r|0}oE3b25F7AHs&q@_6!pA0jhEfBnKhYKCi8wzYbC##Ln~
zy%7O{f1_v(W;BpkH}Ad1TlO&MQ3bz0<TFa=YWDs!@bf8J=>XsKeZ`-K@QY{+G$CBR
zo?0FCEZ>7wX01|oom8f3duVM|SG?8xie^^5e&)uSPrtEpYM=TZ#oV`|_<0eZ_kbnZ
z7DU=>8~HWSH#60dq8U&8c?=o+Pm@ZNI?CzyHFTQc27bbXh%YJ$%#ILRm3ie9>@ytO
zyZ7_4P5u^<5F2NbA2C49R_%XiP{|PKuGKVOHWa`RM=q}Q<Z-6oFX1?DVNmXDsXSA=
z^lSM2pZ2xv`Ea<CJ{bo_SOZS2sCycJwtTqmEN(B7sy;Q&-`*J;D%Wk{xmE$$*e8Ek
zDdE-O2F0Q$>N!w`dB~PG>bXSHxoyf^1BLvF)gZZhPO1^`y`4#4$;oScP8TR6OZv8r
z&I7iRqqdsxxj^oyf$u|vkt0L-j#aB;qDwewn5zkE7`95!bv+GNX%RTaFk#80Yjm5~
zsYZaEEm1pp-frz%z9L&9P?PLtgqoqwmE)WGF6g(Lh31A{^1#d@{80Qs`>*TzPzSBy
z#n0hyT>JHp2^&gW9Fbje7r#3s{g?p~i?%}UR7mzVH6T~BRjd|4Vt7}`dF_~lj;*V&
z%!Utopy6+-w-{|GN{OWEytuw)^x(SVq~`(A0|ncN%D69x$Z-j;27;O2bWyjBQeMOC
zk-$&+jTOrDx3Y!9>?4+8n_xe9yp%}tseJ>>Ix0N<Q>3?loFTllI$o)%ulJvWraIco
z0ji$JHGO5FKKvtdL{>C~5OAGnh)BVSQuwWVZ=FtuO|Mn6O%zBQNYGMuF2NHa1T#F~
zV?FIFTPN(+_&uiF`j}E~E6w~_ZoIV4hN%;sdfS5dm@9uy>5m-1U0soWP4<0-`r1=%
zN5HEJLEbOguxq7go%3}LUMZe%EyZ$k-)!97nBF>7ZJ7^F5-Zec&bbbTknwxx+rmT}
z8vKc-W+Sc$q#DX!CaavpjO9eEPldD9Xz9hTP$dWvwM2{CSU#QC{(rM(DD(WOz`Miq
zRYeP`RTrj&{t#x*al}wzzR+K3noDM8#*Flw;6zQ|oM1eYz4VN}a(;^&?~K?nk|21_
zj3SfmhZ6(D*DX7Hx~ALqsnF*AF-3i{HO<7=<s1JhX2nnTGKQ$X^YwHSE4Z4zU)o&*
z95!=Ogv!Jp1V&v}xwdk4n;i%twPO`WOjtz*hoh|^<4xxKNkF|u3#|rKuF_JJiSZ_1
z=}sDb_Rg>-9Pe25+D(<c9{9yLW2{l4`38>>P&Lt_M#EHCw(~nM2sbMEd-^0}Cip!2
zU$IVDm=YVK8_F<=E2Fu4#5#`IG$WV3doyc{JvrCVFY8Qoc3iH?l5ZuxMxV>ogWp$N
zFAw{ZgBetv=!E&LjU&kg(#ddB@%KBKX|2P9<!zbVY!+%uoM3#`=n|Zsr4g&67e}#}
zMdDcmXrc%0YP<G9DJgJgjv?UNKJLM>*V%Y#$vgqyY&!Jbp=*<}jXRz6xSX3u7^1Yw
zcHqY~`0Z7;`c7z{Hj#*Up$L{`!3G5?-Ea{yC_RJ7<x#_8-3CMil8UGoqE@{RgI$m@
zxR@;ml#s^GP{_SB>z8GSQZLK$qC~`RbGe@JsezV$zw;xUJ`}1ZYx63j6)uk+uLARs
z)6x@_1E^LoJ~+5JT^X}c76TqZgU<k<QKo|=sJkgu^MZb?Tr6@GsycE(1&iSK!4L1J
z)2-pCa%n|t*?GS9%L;uCZF;@BfBHpxT-FUR-ruQ?;_RySi>=t67Y@u88AvU582aoc
zfDw=Bwx1y`+T}`QbkH?3o&Y)2+&58Xz)_kVv0ROa!Z)2gLqF_hQcup@_U+nXO>bWN
z{~jLhkQ`S2|CUz~vK4?dh0BX_?-Jcp2XXy$tU(trrh}mtzZWX{vxUgHT{y43)1x_l
z>-T+3SmQ>=+Twc{x`d~L^p+9ul>j}07axs}9<w}CG1{M)WT?&z$Um|LH<pXea+^qk
zvgQeWAm97#8$kWLM8LK0!CDECQ~@5-1;Pk9LKvbKg6ysGsZe(%)t~hJO9D|ds)~B+
z{@?~0(r|n70DL`GdUSqtt}PC6?ncIm&9MJBzb$^IU7>t$9FK|!57cZ-g&ayHqa=7z
zdgjNMA&afX8cGLWSsDG$hz^h-1-|v|ilJ2dT88Je5j16GOmM$!)jvQs98ip_l_Dn6
zgr^64Tz;MVr@<=VdTQYB3C_iSos)Qy*j%B?!5UA@p8>hQd0G-e7KP0!m<_M{6K)bD
zyWKN1;uNiVzEY7|NdNpnV~6UrO$ipZDK<Vc0@@-9o3mi2sc>xyA#ed0!+<Ud>o7?f
z#P$xIy6Ns=ub{>bwIex!PEjvn1n*M5r>tP8<O6$;%MVAxv=s{l<9TYTmNc4TTrAXY
z!kj|yT2!jSvC&QG@BMh7pfxvPb=Sd<mF^#r&l{s3(oSI?45dYLVMahlt_twq6O}qn
z&GixLHgF6&X^sc+d~^YYE0(MJK2629HhI-AgTM<u*`V{IO0^p8iqF-R<$AnA0(uVn
z-Cx{f-y{{hd>DNv2^K`emLoKq`)NNo%Uj*ma7rEXe&OS@0VaR;!sq-5&uqiLMp?*L
zf9FbdEAg|u#^Z%HLtvsR2g!)RR!*aeSrHTb&y|D@hU!KY)|nHJwL=FhR`^P!epV$D
zKYMBq*bB6#m_OF*nQ~VO@6CM6H9T*vqkw{&fnOnV5@A!6<G%JZN|-;>Gbb`u@cfC!
z*}tk@=#Rth_i=}$F{BBHd7r7DDT6hiC~d)%)2FSR$JWKa1w=oRI+fw)T+5ggFPkkz
ze<sD>*TA9pP^%_O<z-)dI?_b#prG6Mwi$%D`6bB|G1j#!4@4frVK4(3Igl2R-IHa(
zO4A5}A(Bqnum|E&ruLOmYc=b1T~7nlJa8m!-=6nWu5@Rdch}r*kEw&<`&2Wdg#Nv+
zHSf*Z8j!!VSMT2koeX^jOf2y?;R*FiSe|tyRXuA1&(6*HE$&I}yO)hKX_OoV74HGW
zw2KeZ>+2>XpGP7TfEH>KK8V6GwpT4Gjubzuvjfb`Dz`Mz|532db4gQ{8b4hUdTgW4
z8U3<rb#%rlHiOJ&@S>`3+(@W)g<1!KsP)|UPkT8{xyqa>b-DExd+OA6L&P^B|Meel
z-scuShkjmpZJH+LKg^LvjO`Th(HB+$U6Ohy_B!-fItg@#d}A7?;?3t-BPM_QmUxyE
z;wXqORiiOqg+=vfoI}=YWqlnU0-WY%%#}j#L&6R=z~^0+xC{gzp84!8$Y$yV5@D27
z+zr#Y0)#rhDM7n?Yuq#4bVF<%;e7aeRs#}U1qwlyYYW~Pb-GUMfc(E8=Kj3``%Axf
zAKc7xH_}TS%vZZjfz1I~!V_2az0})k5A&$`&bM01sYQwW41R4r!K;FQ<H3AJ*N&yF
z+-MFw`SOnIYBnj9nSP&O`a}_HKEk6+M{;{)0EE(br)_mq)5)P%_kE#EPvvU}j~y?d
z%hq#m>NIuPa!24x#8A<)ZqTZOGjW{nn+MU5%a@}?d6HipH0?(At-lE|l>MVt+Ykwq
zI5=&3lU_6THK_3Ewz0MEQLEbzH+x^LkT<unLi;LF!|B3baf#pT<rvV|t7uvoj8<0f
z1w@Sa48d#r;mZ724TJI!AZARRVD%fVYj}gIK4N|=Q_CQ-OolJg;-A&WN@Tx<$=4u^
zI{W#ufz5BwkA6=u_k%Azk|)oGQxy;&GgUAyPG^n-a-LC6es4kiP?U49V6H&ho7ASt
z$awF$dQ7QtOy-5xq}x)tKG=9y&|V$#D60vSZ}k~-!se(R!|Cj4COttx_?ilaT;8;W
z*pc+Or-?ART0w?usUp`{V~8RxC_n*J{v#HzSUYp3`hvI4c;2onq#J$X!#gv8pnG5t
zeyW0DwBl5FJ{@J>eEXq9F~6=+W93^N{&-ki*IWzP<q>0i3Y%mnrRmmauMD4Oz+LVV
z*D_l+_1}|4{$EmshetPur*AC+*!@PUm$BUc{(cX22Un?B{T7vQshxTCCFQGhiYThV
z&iFM>x66%D?=Gc{TDKilH~I0joj_hAY3xd~U$padC5&J&Z4jLM<K0?*(Q={oZg)O|
zI8b{@2KP~H!T%_=(%WU(ta1nT(_&cgdpdLN+jmic5mqjZzfDM(h;XLZ>M>P@Ef{KI
z2Y}y%jLvAjcDS#%2dN-0ag7mHuT2=bfk5b}lC9jt>S&>vSOY5qZ?<OYyVP=jTG)0>
zzm&Wl?A`Xs>|ltUrV&SH;WI&)L8XWlsxm|;-<>_~dmhi9kMGP5j&4r=i*)z1BgT?R
zu`hkiRrNbjiABBHp;-2-F&Q$M*`-SAQeDx4g1b}xGaujD>@rSXdBbSn+pM>AhayyB
zQKMD^O`&Z2V*@m$nQ=bv$e}0c1`JI@6N2O^f+ARzh@aoV{$*Jj<WxIA3i@A3Mlm!p
zUM+=cb!IiIDJl98hVI5u<QuFuWYY&ww?tt%FMn;LVX&GU)5XujgawFs$fsz^w-e#1
zb~1Rb$$41c(YJ5v1H`(IzOPtIw@9xw3Oci3J#foc%(W2H8PSYTLlRC8jTBfh($I!L
zHo7)Oav2+ToTKb+ed8Fc8uFOo9Ju@p{^10qk}3z~Oq?h&TQBNzg#-Mhk}kJhPcHdl
zFZYfq9{%0E!+=UsnG;h@))a5CYS*;Nm^>I<ED<XBK}M#URFtq50-8e5!sY2|5oz!*
zY}l>8$|{fKi}IGsx2c57JE(%{d=}!j=A0CwU2+qs^|%#B*x&H@_+BlH%u)6bzfbxt
zo<PF*j<fnQq;#fZF63|E+ir$0a;ygtR*%+t>l3-gG~}$)iJ>Pd=qY0gATrCbf|Rk~
zLZ=J~#k}Vsyk$zqB7*$zM2*6V&HgdzSJa*Twju*ZyI{h$y1Uocu>-;VnF9g=Ryh1A
z8d>*`HJ+A)W~k|5Juoby8T>LGhXE@hJlgOP45-bgo|XiStiCLT14&Oc*;lUkuBBr^
zR}GmRRNgLFAF8hPcU))WvqrN1cr9(tK7_)^MBk2{)8)wZn|~8!4G@$5yldoaGJ8Pp
zA|gLtffJ0wVSc8MKKRwPIy+S>*bqb>Rai=bjQTi0Hlg)N6lsMj@@pkY)#(5|e*58W
zZU4vY^@rD{iUaoj;JmlgXAgp<ob+Nv?0N;zqqp-7X<5V^#^o;L{|sImN<ZFabxAHL
z+a+kwQ7x{?`3#os6lLA>Rv#Y}ejrYK)Ub976K%^i0X1aobPX5f;4(zI%JA6%IJC1&
zoo9_dP$h^@KmXmAsXM%=Vv9;lp|Pl_FCu9De3o{p9Ctk!AI@#IcW7mjxVZ!Hn&Nkz
z<dor(J#AG=8COBrl{CL9DlmW|s)f?0Qn+*Lj7gs<<wF;g({stpls@n0DX?l-pp<i!
zlEf2BsxZm27HJ8{nxb@Frj;=^FrVWLI`<3ay~Py1uQ)vV$R%dMS&<o|c=hV^1g=)7
zI(c<HNR|9-aLOj$n1VyJAevvAiQ?b1bs+kr!6YPEldpiuaL0^rAqQ{>X&0QSEOhl5
z{Q41j!T+ghr%0D5rinSV7nSk$0We5U*%f1Kx@dgm17Tk3V!I#d(wnt$SnYf$xob@M
zoz-OwkwVcbW57;|Q-+8J4lw}lNOah(T1S!*;O*M$qJG7CW=%2lk2L9nL-+p@H#Tgq
ze5SfMWmSb7n6MmjijKHwup?_@T{G~33SPb^aT-DdGu89R?`Qzm1q1<rRE&C8AP2P!
zYKMH%dKUn2zB?`Ed;A*NU;_Jfy>XRQ?B{+#-YOb%d#xUH6LOS6Zatgmx=5=D)o*ae
zk_r8<aI1)cH)zdAABhxWDh;%veiI$N6Xr@pc3_+;Sfx~7x>8Cp6vmkPn<17<ulMk}
zzS(cl+A15^78=6}0F(l!GUx}eCD|I(BX27stu`X-UzU|+eBxx#uq1H+;49j^8JZFJ
zm&_!l5vQD&_Ui8td!OYlnT~-!?*V&=%-4cNg}o7MB0r__FL#Hi(Y1e?<?-8&eP`6!
z?C?~c8xrHS+*{#0p7a5k$?Bplcz+)o5W<%a_YFeZxXcwM*&ifJU-vxL7OAA8TEUyk
zKF@dncu2ff>bg(EnqB*Nf*8VwL#*j`Y9c8;mBtyXy=cR;xSC`$_6U4^6X<|EGr7-p
z=Wb!^wL?f27dYEJ8jiu(f_?p?si6!04??fI^qdzr%GJLsjk37rS+nRdu)XJ~aYBip
zlnd7)N132AjxL$Zicxq~8gEJdg!zmq9SD<@tkMKT1!;OV*%xkNu7JNUy`J$rkl;P&
z+6!;PUUvDMj(|osyQP7<-xiCV6yZYHE%$M^3-@sK7%AMAwDKP>i;Ud4NLs9$R!v3X
zXSbVpDz1G=(aI!eZx^Kz-an3lAIN$cs`@qpVj?nf1hZca1`Dqa)JJvAS|WzCdxChR
zSO~TX?rp`|Ref7LsSk%3y55ienb{7yS@UsAm)c-VTKySxR<0`~dtn^C+F?xdy+Pwg
zSCj~lE$S^lmiXY9y(lv7_U~5Y*^)03@1Epq5a1E^zYtv##y^b?Q71Z8Cpo7rgTasp
zXiHwC+rc~qwMY44?34UfUKGqH+agXpPP~clA{=!&&0g5U`s##oCNUg_s0`nqKqi(}
zyo9L7o}8cl;F@+!b>26W>vZHv`xq2tIN}he^?prwA_l@!wq?e-+a@FFzY{REDf}Gl
zYx;Em+57(cKH%Y#w_|1Fln}Hg>u*8hFmNrs0a^n~9R6`NIRE=oSYIE<%D=i}sIK^N
zU9UdQnjNHPB1dzucp^u-n$Qrmcq4Q_s?&F{O(kyOy~5WSB05d|4J7e!eSG%z0FE7o
z7P(7NE~zCAThH?{eN{46am=-IHUQN)HfPWiC%g~!n?m44B)`=+7*fJ;TdwTl;@OXA
zZBHf@Ai$$|Ze*^uo3{Lx&$$wR9r>M<Jadw)F_#0ub>50Z=r>2UZ3blfME);b!n~@N
zBM0`f>xoa-VD^+s_xAHc%+o1l44V<4h#!edV7&UK*Nx6o(F$l_x|wr25Z%7qU+tj#
z+~>Dbh|5)|mIgUAIRjU_+59O>&I2Rl8zToe(yGpJt&SL>FT2M~Mre+swr6JI`#5(J
zqU#wG?KHd_j8@d}3A?>EYo3bC+2O3aizq@gp%j17<!fv#IT*=74@IYu#}CAX4m6ok
zJdFSQ%cjsTJS7lEaGI<f%moGel#@6G*7_vzg9;5{Nyx)3;no_h)kKVQ=3wo5ZW6Z~
zyPz6f#DuM7<)bl_+i%d-J-1sX?W<a$x9+!R{c(t$HS9@%z8U{vSt_RSR``hyblDpp
zxsC(VPX8|x*clqXo))vi-JOO4RGf*d+}OnV2}#KzC9V(UpU%DZd-8ecnuWxt_ZHa+
z3|}&Xw4ncb9@~j#F-07f{HE{}oM+@=v!e9ZjKq|#<?Ai2O%%=GUu~jbh=%n|R0bra
z0<4h%K_M(LZP{;yRSn8F`L%)#jDf8KMjS!RD*dcI!lQlMAM2GIS0U`sL<eS?n{Oe=
zF9!qZ&si_4bIZE!Ia3e#$WMU)i^{K>xieya`CqT6pNRL*mL6-y*mV{B&q5XiMW9}=
z(0lPg?7MqxWO%bl&RnfO-z;R2vrJUNEX&+h%7-3Wg4RlQ@P**8vlKz9Z0b}E6+Cb|
zS-(iw{o$JUS50a|EJ(!f_4M?LTXl}p&)|HTsc~;2yC;Sw3{tKCrD`$*7BZ*rf)?Rn
zX~wVrbJYwDL)}&#wd@tZghF`Rns!=YDp**Vxf&Ii@I`pM5BcRk(}?VG_OBHM+MmtT
z&3|&Re{P(-`p_!lGlCTHTTHAXEl4jjr53ExwLlt1CL-$HynP{Ze=Qo8%di=@$jj!8
z5H0-;`8?xGj{08qmYgq?9Q)e1yOlWI4hBJCbNzQxF$pt1PN`UwCPXFamILMg{dgH3
zH>3?O`H;?)k#{0s$&>&eL<c(1SEg|pW~UT@;evpyE}O#MGd988vbrp@ig#IFAk2Sl
zO=Y%Y?J2UGO8k3S{d83oJGCZNe}P7fvIlM`jGyegZR}zo%gx|BKUhk$U0}a0;zm=}
zp`icUtufnAus08S<VY&Wyb@e7B!GKtwzj&ux@phrS=!MUKWEu>HU4%S9e5**`=*ew
zyll7dvyf_`GAP3Vo_=GEfRHvr7_R)B5TaYyLY*Q)ClYyX$jm@e2`!*N!p!%#Vf$}<
zxuAf!oPSm4ty;V2K0E}G^Ej8eC`vlb!Z8bkQ*do>jg)l;GcFCE=JK@!xGcY1&6UfC
zV+EyHomwSU^ZQ6`Zh+z7?%G>QuY$Rs?b$XS34wM@Q0B8j{?LaE=SFC;ErJW#Y(;jL
zDj@ms_4uvX-Q+DfmXsKUF6F;p*^p9t)_T4*tpq(PZ-+Fob`I^ia(Be%Y+1t)eK@vZ
zx!}q|^N>O2O-)Y9aF4GYa*FP8eZi1e*6fi?%Ret+#zIC0*krI2a*|r;;e_42oEB!f
zYk39KOe4JbnC3EdPCG)ws73~44#a_B$1GS+{(`6TY{Rz{aTpO=IC4Pdhq-Hdm5Bcr
zkPdJ0#(K1L9M=ePRueGpB!xAR2TF94ueL>|T;$H>KBu!=rnxYOhmNLA`iIa}fnIc+
zr%e!CjS#=M9LM(;w)+s0L()-j4)e(jI~K)rxm@UW(&@WJIy3RIbW*mgC<grkEgfe(
zAgwcE!cMP~IaHLSXdusuP|g-mEOyRX<Bz(7?xi!Gfw5lc9DRq5I`^F-Uz;EpjS+vi
z+y#Qr`{WrPeu7v!3eKTB6-p#$dqYacR!L4sCthH&V<erGNxH_;(RDfsmC2lS3l@S$
zFq{F3d2zyqrpoiY{ed@S(E;iGW5C#%;JA{`Y!b$1WhJt9PA#;ykx@J#!WU4xsrkKX
zXSup`6r95&$&@~$ES(t|Ic5o|NdslC=n6@vkG+w?(n<B%Xz4iR2~^N$Z8>p{WK5*5
z@_Aq^*sWKX;Pw({92i?mvxhim4U$>0xa<CarWPK*C-PH80Y%~i=wc1X#hQIdJ!0u7
zIEP|TjWCL~bObXcoHC!JE40&LFT+SW!dxMYmd+uxyeJdr3t$~yBsc>9l}<JflEf@e
zmLq~3C)ulsc^I6K&e4gh+RJrrlt7SqpVXb6-$7tqjWql76U5R{aSjj1P>INt`6Q!g
zln+_yG!5@W=mJS6Z0ECzS~@k*B>N$Hcj(E<opgdjCUDqqRgexUM2=32#e<IoG_~Jz
z5zd2Pu<nU-97H<bqh6q+E*%x;lu{|%I}wz<67ZN#oXMqHI^0gxF`ZE@9ar4<l(fz`
zM7P~YhcYz47x|H34btf!hs01&--+xc?YP_f6NSXNa<cq}LbAMe>8R{;cuk*B%dOJk
znXK@Cr4yelOQ$5Iqf_SYXg!0P5Tb|db!IPC!7b6hO)q9&*zC8hwORd%N;Jq`-Zm$n
zox;v}BB1errgrjq1_bACkUE0>mS2e}be7jH9hI}yOu0^{bbINf?6<IV_(S_~Tzo;F
zE)G=b{gl?(4!WhA+eDfEadtS<U7i9D6XzfqC3WO-9t4Rm$TPnE1hI77I!9C@M+&*Z
z91Z4#4wjA`Hm;VAy`rRe-A-RF$CkQIN3~ohJH}e2{H1$`RXB6>U_B3My(jVw2+ZF}
z-MC~_jehXYIaoRh&SB>yLE#|jh+j+pm5#wXvg8-A$67k7*6AH%^~MT#w9k1~?{hdF
zjio_(>|aQo=sAx^KPV*2J&}%U=irR_Od)ijbQlrbdnN3WX41ha_ju@Fv~-TV=feNJ
zPVYG0=RBv20=?wnwsW6>Ao)3|3z4fJ`7(BouO(JkI?<2{#%MZSNb#4soNN{6tr6&P
zDwiwakBsJWasGB8ou)4jK}+W_>&U&%NO#aDdZ)nB&Z!$O#CpzxAo>BR1F;-PQW0O1
z<ybmzM?=Sv6D^&<Lsfg7k)S{H&f~My8GVC}*R+$B3<$dFkix>#j6b?W9t-%+Sx!6|
zI(7_pojuXgVb+l*V3~72$j(>JR(kY9J!q*OOLK{MO)*+=+GX;XZy`A>onxw<3{}nv
zmkzZKj_oc5>(9hIBu3=wjCM{PXnGoZ;in$rEgxj?Z5FTk=Nv4ZW2qgc94(z{>sVWL
zkLygVRjPvYKBr!^Hj{5G)QU;GB-{l8>lbqBe+kLG{_<H#S8dvf8zmGHHc|#!l<2}+
z<w)LqG;nf3C#)T?7V2Xi>>POsyWZz`4Nja#enS%)h=<(x1O(A<$f^G+B=@LC+8GVo
z1vduwPjQAW<_dg~wihxl9_DSJ$|U1hIj;mxG{`#F0mgfSb!0mP1Hw5vhOB_%Jr_R`
z&xm{mlHdI=(81a{Tf27B;$928{$>tMf`~`Z%m|9X3y_u3%DIhoy0<JC?+@0Ep(LzL
z1UY)2Q(qoy`{67I20crh_k07A&lEb#J=M-jRoV%;$6&r$3EOJn{SD!jNnWa4WN-Dc
zMOs{7IvKhxS~&{V5iFVFDnIY(-b7!n_c?W@<uS7I5ePC~S?3!Q1jdavh0zan)XreY
zEot5{p5vXIOfY<l6SixTS9rtujL=iT3+245l_RSJ(QWO?;b1-JUI6&HS1zB`HGy^J
zRq~hT10vEO>FS{cI{!QB+QE(D@`B{^bdj??Gsh&ueI(jM4G)xaf^$~4Sm$)bIvL2X
z2EC`Z6FEoMA^SknDN?jR@L7!1&R<CoBxz@Ppb@A=JG32wPZO56b4kz8Mh63(s^(av
zM}<L@vNB%3H=vO`a#v6=JP+o&=Si&W8kk#Rp?f_2fR*cf?P<Br2O$td>F9?>`Flf2
zI~ab;1(psD`V`C04Bijwii}pyA>4l#zD5+T2fbxt0JU4`0arfJdJp*yBsmWYbj)AK
z(~aVsnzd78r>g^{V=x^Va-+jOp_SvMb)G^OPna;C4SL9C6cXE&rM@T7Cmv`cKY^si
z#CcB%3#_@ZhIiDUoiq<1A0VChT=_DKQT8kUgo1JyZ)@coMC)^vnD08kfQQyuPr$%L
zW%-akTls*v=c1yD#OI_2BB}p$mNys*+L6wQgbtKWgy~3J8d#o=70xLr=iQTBetanR
zJ%=WYN4*Ot_jXz^B~s;j?t{NPMlPWloPQBz@ImeTxmd$FM@>6iF_ZBFrPIfpBZ590
z@kEy&dqvZ;Xx{G{M3=k?Ay0v|&?}dBY3KM#JNa`E1Rs5@K5oVWLDvs$4UjDNMmr@w
z%<~rM$Ya;7($Temp3?FJa>W=xrw7%^)0wL7^}BRQpue;{Nj?wNK9=Tv69mc2q&?86
zxYSN*MmmR&D(7+K8R;BOic?_YYvNit0`H5H`xh*jpQyDWa6JkG=$v+@vBHlh0h&1f
z#YE8<q5$44B^xMNexP>Va;}}y3^PlPL3KkHb19=RBS(KmayACOLRr@WBD}k<U9y>g
z{7`L2t4=`S96f5rPw+h#Igoru6u6WJNt&E$Wam&`snSlyLBA(&@+`=)=0??tDu<=x
zLOF(3j`P&HWI7M9)m>9{PP9|}emzppXK=^)RS;NT6W8204+8Ty(%krsx=yu&rBhkX
zjD~J69bJB04_Z+;d3Fjc^@^R5WYwVb(|UC9|HR{MJ)eOfS|l#PwLYVf1}o61Njs^u
zWR$IqVmRDau%kAGw8W6x7`o84fc4>t2T@EW37HYq*;X($j6%rA;(yjVlZV^TY`kP2
zamQ7Vq+)Fk1da!Hzg(>y_vnrXA8C0A1$KrK5LIc#8lGnjo;rlw5d7QT`Ls3>24UPr
z*(BJsVu?jljEE8A2k_$I-6;sG*e=ULmKE9%1C?5&kPxh`ZK;ANv=l^yKx_}ezZWmb
z#g;<Pekr4{+u7#dW^I%A-JRd9rMHwP^Ugf;jFiSv?T;U@9>8tr%mS~&@=mhjJxbZ5
z{rDz%0X+~yjh%cA;QLDtQ!4{s4IQTz@<6%DX0qN?=ba7~nfL7W8Id?C*`f5~et_M{
zvsD0Ny;nmZ&g*KpkV$g}0?xU32sVovbIUUm8=5CX`yBsQcF2C*N2JsUdSYz?9OQfG
zATNQwgN%h&MCk+gnDZfasDQ;=w|1R{3{F}e<9~4FRdy(flm|x7qNebH4kfpDhx0oM
z6!*{{Un3VX2MmYs`qZK3PIJ!TS$jf2&1se$k{pf+Cvovo1l`?M#77ex>Fy&mDd&TD
zR711xdatJ+ezAzKUmh-GhoVUNU<g04%3A=XuP(|Q1G0^ph!#Bg;|7~s1PkLK>x#CD
zPd`L1oDmmqvP1Uc{)1CY<@rXZMy+)zcJ@jDwQc)H%3tS-8#w&W?4EP+3ecwLz)wH$
zCOc$5Mx68$3;UBhcXsmkb(s8tesPHwAGl(I{mz2LRJXzT7X>Ve?|C@=z?1Bd7x46u
z#vPZd4A5)kcHW%VMS!hsnWk3UGBk#j<mq(h&2kkiR9;R$@FF`TIj2hu7dwTT3QD!m
zvVpt_P})Pk7#XLh6>msmtZsnC^EuX@l?+&z%j~jf1|4^@L-u1%IiJGi%!{nOQiYkX
z8lZ2L@zaVr$Q&{p!rkFltSz~7V6&zPIxKH_0{wqw$0Yl4KN!7&<z>eN{k|<P_Cy^j
zj@eeqH~*&oB8GD=l#OW@!}7NR56ipB&Q!)E`!SykT|2(ZY2uun?TQNe`aCXkXzzhn
z;?cRMV4>DoYaZ$7N?*ihy}9GELta2W!Tw}<cD)3!X_<}-`v$<lwk(qeSqK_~^Lt>C
zUFmlE;Zu$YJ}hr3JNF#2Lz2TKVMno(-_L^nueDRCE`eV8IxCYOP!!T^VF@gX3#<v;
zY(DqE2gCBN3GNxPA9IP+D0UDpKLDuv<-H2PWOde2=1_7D-$<8P9UX|+Z5~`5Y0~5j
zyXw=Ia*u~2iex_?1mV<(V~$nP!O+3nDa(i})Xm|ZhFxb_IZ~Y*bMmctq&dstrCE5E
z9kL&DiRIa`79+lcdQg_hn<E<G5L?qx?lHscE`o(pX9-__pvPo~ynsA1G=51&6n-?C
zIfx{cIbslxus6uAgH<Pod_0Ftj2QM)l^v%SkR)dS3}2Jmadwm>M-<}G>7QtYeB+(P
z1~LV{(fl?ncOg4uKjsk>piD0-VYz`l#~3^;kH*ggfex}`PSKQ{3+y)*CK-V5L_Z;=
z*|$mPL~&QJ81|Es9kL&DNR#X&$(kb^SJ~$*v}bB2IGWQeJLCoAkm2hxzTHVLEAfyT
zITt##LwV+pGz-tN<MaZO<Zwakx}DTTyPZPvcW|yk8|o|(xUqmkcF2CrBT_6$k|Q+X
zg!TklqHJi1Anwmyv`?UuF^5y6(PYZ+J`P_KkLFfYXhvOQ(SUxix9*VSa8BSVaG!A@
zqOGiEvQ8fVn$aS`7?!t|9g-Y^I6cA>jIlW<jA;{rely#$bC)ECAWj@9o=$|EjHTm2
ruV8Q8A^R~w5Pjv=U6LGv2sVEJmxL5zyW*Q400000NkvXXu0mjf@Ec}b

literal 0
HcmV?d00001


From 7fbd9901f0ef72c32bfa3da9f5decd46a9021faf Mon Sep 17 00:00:00 2001
From: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
Date: Tue, 28 May 2024 20:35:10 +0200
Subject: [PATCH 013/138] Fix missing confirmation toast on vault export
 (#9398)

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
---
 apps/web/src/app/tools/vault-export/export.component.ts | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/apps/web/src/app/tools/vault-export/export.component.ts b/apps/web/src/app/tools/vault-export/export.component.ts
index 7902d2818d6..df53e599ed7 100644
--- a/apps/web/src/app/tools/vault-export/export.component.ts
+++ b/apps/web/src/app/tools/vault-export/export.component.ts
@@ -42,4 +42,9 @@ export class ExportComponent extends BaseExportComponent {
       organizationService,
     );
   }
+
+  protected saved() {
+    super.saved();
+    this.platformUtilsService.showToast("success", null, this.i18nService.t("exportSuccess"));
+  }
 }

From e14e2627ad7409b5a538bf928a9abdf5858957fe Mon Sep 17 00:00:00 2001
From: Cesar Gonzalez <cesar.a.gonzalezcs@gmail.com>
Date: Tue, 28 May 2024 14:05:24 -0500
Subject: [PATCH 014/138] [PM-8447] Autofill On Load Causes Extension to Hang
 After Browser Startup (#9400)

---
 .../services/autofill.service.spec.ts         | 20 +++++++++++++++++++
 .../src/autofill/services/autofill.service.ts |  7 ++++++-
 .../browser/src/background/main.background.ts |  1 +
 .../src/popup/services/services.module.ts     |  1 +
 4 files changed, 28 insertions(+), 1 deletion(-)

diff --git a/apps/browser/src/autofill/services/autofill.service.spec.ts b/apps/browser/src/autofill/services/autofill.service.spec.ts
index 24b1c90b3fa..23f690544df 100644
--- a/apps/browser/src/autofill/services/autofill.service.spec.ts
+++ b/apps/browser/src/autofill/services/autofill.service.spec.ts
@@ -1,6 +1,8 @@
 import { mock, mockReset, MockProxy } from "jest-mock-extended";
 import { BehaviorSubject, of } from "rxjs";
 
+import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
+import { AuthenticationStatus } from "@bitwarden/common/auth/enums/authentication-status";
 import { UserVerificationService } from "@bitwarden/common/auth/services/user-verification/user-verification.service";
 import { AutofillOverlayVisibility } from "@bitwarden/common/autofill/constants";
 import { AutofillSettingsService } from "@bitwarden/common/autofill/services/autofill-settings.service";
@@ -78,12 +80,17 @@ describe("AutofillService", () => {
   const userVerificationService = mock<UserVerificationService>();
   const billingAccountProfileStateService = mock<BillingAccountProfileStateService>();
   const platformUtilsService = mock<PlatformUtilsService>();
+  let activeAccountStatusMock$: BehaviorSubject<AuthenticationStatus>;
+  let authService: MockProxy<AuthService>;
 
   beforeEach(() => {
     scriptInjectorService = new BrowserScriptInjectorService(platformUtilsService, logService);
     inlineMenuVisibilityMock$ = new BehaviorSubject(AutofillOverlayVisibility.OnFieldFocus);
     autofillSettingsService = mock<AutofillSettingsService>();
     (autofillSettingsService as any).inlineMenuVisibility$ = inlineMenuVisibilityMock$;
+    activeAccountStatusMock$ = new BehaviorSubject(AuthenticationStatus.Unlocked);
+    authService = mock<AuthService>();
+    authService.activeAccountStatus$ = activeAccountStatusMock$;
     autofillService = new AutofillService(
       cipherService,
       autofillSettingsService,
@@ -95,6 +102,7 @@ describe("AutofillService", () => {
       billingAccountProfileStateService,
       scriptInjectorService,
       accountService,
+      authService,
     );
 
     domainSettingsService = new DefaultDomainSettingsService(fakeStateProvider);
@@ -287,6 +295,18 @@ describe("AutofillService", () => {
       });
     });
 
+    it("skips injecting the autofiller script when the user's account is not unlocked", async () => {
+      activeAccountStatusMock$.next(AuthenticationStatus.Locked);
+
+      await autofillService.injectAutofillScripts(sender.tab, sender.frameId, true);
+
+      expect(BrowserApi.executeScriptInTab).not.toHaveBeenCalledWith(tabMock.id, {
+        file: "content/autofiller.js",
+        frameId: sender.frameId,
+        ...defaultExecuteScriptOptions,
+      });
+    });
+
     it("will inject the bootstrap-autofill-overlay script if the user has the autofill overlay enabled", async () => {
       await autofillService.injectAutofillScripts(sender.tab, sender.frameId);
 
diff --git a/apps/browser/src/autofill/services/autofill.service.ts b/apps/browser/src/autofill/services/autofill.service.ts
index 5348ca5b9ab..9ec2052381a 100644
--- a/apps/browser/src/autofill/services/autofill.service.ts
+++ b/apps/browser/src/autofill/services/autofill.service.ts
@@ -3,7 +3,9 @@ import { pairwise } from "rxjs/operators";
 
 import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
 import { UserVerificationService } from "@bitwarden/common/auth/abstractions/user-verification/user-verification.service.abstraction";
+import { AuthenticationStatus } from "@bitwarden/common/auth/enums/authentication-status";
 import { AutofillOverlayVisibility } from "@bitwarden/common/autofill/constants";
 import { AutofillSettingsServiceAbstraction } from "@bitwarden/common/autofill/services/autofill-settings.service";
 import { DomainSettingsService } from "@bitwarden/common/autofill/services/domain-settings.service";
@@ -61,6 +63,7 @@ export default class AutofillService implements AutofillServiceInterface {
     private billingAccountProfileStateService: BillingAccountProfileStateService,
     private scriptInjectorService: ScriptInjectorService,
     private accountService: AccountService,
+    private authService: AuthService,
   ) {}
 
   /**
@@ -113,6 +116,8 @@ export default class AutofillService implements AutofillServiceInterface {
     // Autofill user settings loaded from state can await the active account state indefinitely
     // if not guarded by an active account check (e.g. the user is logged in)
     const activeAccount = await firstValueFrom(this.accountService.activeAccount$);
+    const authStatus = await firstValueFrom(this.authService.activeAccountStatus$);
+    const accountIsUnlocked = authStatus === AuthenticationStatus.Unlocked;
     let overlayVisibility: InlineMenuVisibilitySetting = AutofillOverlayVisibility.Off;
     let autoFillOnPageLoadIsEnabled = false;
 
@@ -126,7 +131,7 @@ export default class AutofillService implements AutofillServiceInterface {
 
     const injectedScripts = [mainAutofillScript];
 
-    if (activeAccount) {
+    if (activeAccount && accountIsUnlocked) {
       autoFillOnPageLoadIsEnabled = await this.getAutofillOnPageLoad();
     }
 
diff --git a/apps/browser/src/background/main.background.ts b/apps/browser/src/background/main.background.ts
index a382a76781a..2072f8396e8 100644
--- a/apps/browser/src/background/main.background.ts
+++ b/apps/browser/src/background/main.background.ts
@@ -872,6 +872,7 @@ export default class MainBackground {
       this.billingAccountProfileStateService,
       this.scriptInjectorService,
       this.accountService,
+      this.authService,
     );
     this.auditService = new AuditService(this.cryptoFunctionService, this.apiService);
 
diff --git a/apps/browser/src/popup/services/services.module.ts b/apps/browser/src/popup/services/services.module.ts
index d260b4ec7b1..342b3d26a66 100644
--- a/apps/browser/src/popup/services/services.module.ts
+++ b/apps/browser/src/popup/services/services.module.ts
@@ -341,6 +341,7 @@ const safeProviders: SafeProvider[] = [
       BillingAccountProfileStateService,
       ScriptInjectorService,
       AccountServiceAbstraction,
+      AuthService,
     ],
   }),
   safeProvider({

From e47f83db80546a6fec4bbd04d2cb49ab05c31c49 Mon Sep 17 00:00:00 2001
From: Vincent Salucci <26154748+vincentsalucci@users.noreply.github.com>
Date: Tue, 28 May 2024 14:17:20 -0500
Subject: [PATCH 015/138] fix: remove view events menu option for users without
 permission, refs PM-7024 (#9355)

---
 apps/web/src/app/vault/org-vault/vault.component.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/web/src/app/vault/org-vault/vault.component.html b/apps/web/src/app/vault/org-vault/vault.component.html
index 06907b9e5dc..af8789c906c 100644
--- a/apps/web/src/app/vault/org-vault/vault.component.html
+++ b/apps/web/src/app/vault/org-vault/vault.component.html
@@ -62,7 +62,7 @@
       [showPremiumFeatures]="organization?.useTotp"
       [showBulkMove]="false"
       [showBulkTrashOptions]="filter.type === 'trash'"
-      [useEvents]="organization?.useEvents"
+      [useEvents]="organization?.canAccessEventLogs"
       [showAdminActions]="true"
       (onEvent)="onVaultItemsEvent($event)"
       [showBulkEditCollectionAccess]="organization?.flexibleCollections"

From bc170f520748a8f320e0ccbc6fb2edcb31972fb2 Mon Sep 17 00:00:00 2001
From: Jake Fink <jfink@bitwarden.com>
Date: Tue, 28 May 2024 15:17:30 -0400
Subject: [PATCH 016/138] use valid userId when logging out (#9334)

---
 apps/browser/src/background/main.background.ts | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/browser/src/background/main.background.ts b/apps/browser/src/background/main.background.ts
index 2072f8396e8..51d18f15a34 100644
--- a/apps/browser/src/background/main.background.ts
+++ b/apps/browser/src/background/main.background.ts
@@ -1333,7 +1333,7 @@ export default class MainBackground {
     ]);
 
     //Needs to be checked before state is cleaned
-    const needStorageReseed = await this.needsStorageReseed(userId);
+    const needStorageReseed = await this.needsStorageReseed(userBeingLoggedOut);
 
     await this.stateService.clean({ userId: userBeingLoggedOut });
     await this.accountService.clean(userBeingLoggedOut);

From c7494478943a93f5ac139aa5e280221b3e105157 Mon Sep 17 00:00:00 2001
From: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
Date: Tue, 28 May 2024 22:32:01 +0200
Subject: [PATCH 017/138] [PM-8254] Create shareable export component (#9246)

* Make export.component a standalone component

Fix lint issue with takeUntil

* Create shareable export.component.html

Copied existing export.component.html as that has already been migrated to use the component library components
Strip the markup from the dialog and the submit-button

* Add outputs to inform the hosting component about certain events (submit, loading, disabled)

Emit successful Export

Expose a form-id so the hosting component can bind to this form

Fix name of output

* Ensure that the file gets prefixed with `org`when exporting from an organization

* When exporting from an organization ensure Organization_ClientExportedVault is collected

* Add comments to the components outputs

* Better way of addressing the previously fixed lint issue

* Fix disabling the form not emitting the formDisabled state

* Add better comments to Outputs based on PR feedback

---------

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
---
 .../src/components/export.component.html      | 100 ++++++++++++++++++
 .../src/components/export.component.ts        |  98 +++++++++++++++--
 2 files changed, 191 insertions(+), 7 deletions(-)
 create mode 100644 libs/tools/export/vault-export/vault-export-ui/src/components/export.component.html

diff --git a/libs/tools/export/vault-export/vault-export-ui/src/components/export.component.html b/libs/tools/export/vault-export/vault-export-ui/src/components/export.component.html
new file mode 100644
index 00000000000..8abc0c77553
--- /dev/null
+++ b/libs/tools/export/vault-export/vault-export-ui/src/components/export.component.html
@@ -0,0 +1,100 @@
+<bit-callout type="danger" title="{{ 'vaultExportDisabled' | i18n }}" *ngIf="disabledByPolicy">
+  {{ "personalVaultExportPolicyInEffect" | i18n }}
+</bit-callout>
+<tools-export-scope-callout
+  [organizationId]="organizationId"
+  *ngIf="!disabledByPolicy"
+></tools-export-scope-callout>
+
+<form [formGroup]="exportForm" [bitSubmit]="submit" id="export_form_exportForm">
+  <ng-container *ngIf="organizations$ | async as organizations">
+    <bit-form-field *ngIf="organizations.length > 0">
+      <bit-label>{{ "exportFrom" | i18n }}</bit-label>
+      <bit-select formControlName="vaultSelector">
+        <bit-option [label]="'myVault' | i18n" value="myVault" icon="bwi-user" />
+        <bit-option
+          *ngFor="let o of organizations$ | async"
+          [value]="o.id"
+          [label]="o.name"
+          icon="bwi-business"
+        />
+      </bit-select>
+    </bit-form-field>
+  </ng-container>
+
+  <bit-form-field>
+    <bit-label>{{ "fileFormat" | i18n }}</bit-label>
+    <bit-select formControlName="format">
+      <bit-option *ngFor="let f of formatOptions" [value]="f.value" [label]="f.name" />
+    </bit-select>
+  </bit-form-field>
+
+  <ng-container *ngIf="format === 'encrypted_json'">
+    <bit-radio-group formControlName="fileEncryptionType" aria-label="exportTypeHeading">
+      <bit-label>{{ "exportTypeHeading" | i18n }}</bit-label>
+
+      <bit-radio-button
+        id="AccountEncrypted"
+        name="fileEncryptionType"
+        class="tw-block"
+        [value]="encryptedExportType.AccountEncrypted"
+        checked="fileEncryptionType === encryptedExportType.AccountEncrypted"
+      >
+        <bit-label>{{ "accountRestricted" | i18n }}</bit-label>
+        <bit-hint>{{ "accountRestrictedOptionDescription" | i18n }}</bit-hint>
+      </bit-radio-button>
+
+      <bit-radio-button
+        id="FileEncrypted"
+        name="fileEncryptionType"
+        class="tw-block"
+        [value]="encryptedExportType.FileEncrypted"
+        checked="fileEncryptionType === encryptedExportType.FileEncrypted"
+      >
+        <bit-label>{{ "passwordProtected" | i18n }}</bit-label>
+        <bit-hint>{{ "passwordProtectedOptionDescription" | i18n }}</bit-hint>
+      </bit-radio-button>
+    </bit-radio-group>
+
+    <ng-container *ngIf="fileEncryptionType == encryptedExportType.FileEncrypted">
+      <div class="tw-mb-3">
+        <bit-form-field>
+          <bit-label>{{ "filePassword" | i18n }}</bit-label>
+          <input
+            bitInput
+            type="password"
+            id="filePassword"
+            formControlName="filePassword"
+            name="password"
+          />
+          <button
+            type="button"
+            bitSuffix
+            bitIconButton
+            bitPasswordInputToggle
+            [(toggled)]="showFilePassword"
+          ></button>
+          <bit-hint>{{ "exportPasswordDescription" | i18n }}</bit-hint>
+        </bit-form-field>
+        <app-password-strength [password]="filePassword" [showText]="true"> </app-password-strength>
+      </div>
+      <bit-form-field>
+        <bit-label>{{ "confirmFilePassword" | i18n }}</bit-label>
+        <input
+          bitInput
+          type="password"
+          id="confirmFilePassword"
+          formControlName="confirmFilePassword"
+          name="confirmFilePassword"
+        />
+        <button
+          type="button"
+          bitSuffix
+          bitIconButton
+          bitPasswordInputToggle
+          [(toggled)]="showFilePassword"
+        ></button>
+      </bit-form-field>
+    </ng-container>
+  </ng-container>
+</form>
diff --git a/libs/tools/export/vault-export/vault-export-ui/src/components/export.component.ts b/libs/tools/export/vault-export/vault-export-ui/src/components/export.component.ts
index 3e091a2417a..d90e0690154 100644
--- a/libs/tools/export/vault-export/vault-export-ui/src/components/export.component.ts
+++ b/libs/tools/export/vault-export/vault-export-ui/src/components/export.component.ts
@@ -1,7 +1,9 @@
-import { Directive, EventEmitter, OnDestroy, OnInit, Output, ViewChild } from "@angular/core";
-import { UntypedFormBuilder, Validators } from "@angular/forms";
+import { CommonModule } from "@angular/common";
+import { Component, EventEmitter, OnDestroy, OnInit, Output, ViewChild } from "@angular/core";
+import { ReactiveFormsModule, UntypedFormBuilder, Validators } from "@angular/forms";
 import { map, merge, Observable, startWith, Subject, takeUntil } from "rxjs";
 
+import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { PasswordStrengthComponent } from "@bitwarden/angular/tools/password-strength/password-strength.component";
 import { UserVerificationDialogComponent } from "@bitwarden/auth/angular";
 import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
@@ -16,11 +18,70 @@ import { LogService } from "@bitwarden/common/platform/abstractions/log.service"
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { EncryptedExportType } from "@bitwarden/common/tools/enums/encrypted-export-type.enum";
-import { DialogService } from "@bitwarden/components";
+import {
+  AsyncActionsModule,
+  BitSubmitDirective,
+  ButtonModule,
+  CalloutModule,
+  DialogService,
+  FormFieldModule,
+  IconButtonModule,
+  RadioButtonModule,
+  SelectModule,
+} from "@bitwarden/components";
 import { VaultExportServiceAbstraction } from "@bitwarden/vault-export-core";
 
-@Directive()
+import { ExportScopeCalloutComponent } from "./export-scope-callout.component";
+
+@Component({
+  selector: "tools-export",
+  templateUrl: "export.component.html",
+  standalone: true,
+  imports: [
+    CommonModule,
+    ReactiveFormsModule,
+    JslibModule,
+    FormFieldModule,
+    AsyncActionsModule,
+    ButtonModule,
+    IconButtonModule,
+    SelectModule,
+    CalloutModule,
+    RadioButtonModule,
+    ExportScopeCalloutComponent,
+    UserVerificationDialogComponent,
+  ],
+})
 export class ExportComponent implements OnInit, OnDestroy {
+  /**
+   * The hosting control also needs a bitSubmitDirective (on the Submit button) which calls this components {@link submit}-method.
+   * This components formState (loading/disabled) is emitted back up to the hosting component so for example the Submit button can be enabled/disabled and show loading state.
+   */
+  @ViewChild(BitSubmitDirective)
+  private bitSubmit: BitSubmitDirective;
+
+  /**
+   * Emits true when the BitSubmitDirective({@link bitSubmit} is executing {@link submit} and false when execution has completed.
+   * Example: Used to show the loading state of the submit button present on the hosting component
+   * */
+  @Output()
+  formLoading = new EventEmitter<boolean>();
+
+  /**
+   * Emits true when this form gets disabled and false when enabled.
+   * Example: Used to disable the submit button, which is present on the hosting component
+   * */
+  @Output()
+  formDisabled = new EventEmitter<boolean>();
+
+  /**
+   * Emits when the creation and download of the export-file have succeeded
+   * - Emits an null/empty string when exporting from an individual vault
+   * - Emits the organizationId when exporting from an organizationl vault
+   * */
+  @Output()
+  onSuccessfulExport = new EventEmitter<string>();
+
   @Output() onSaved = new EventEmitter();
   @ViewChild(PasswordStrengthComponent) passwordStrengthComponent: PasswordStrengthComponent;
 
@@ -74,6 +135,11 @@ export class ExportComponent implements OnInit, OnDestroy {
   ) {}
 
   async ngOnInit() {
+    // Setup subscription to emit when this form is enabled/disabled
+    this.exportForm.statusChanges.pipe(takeUntil(this.destroy$)).subscribe((c) => {
+      this.formDisabled.emit(c === "DISABLED");
+    });
+
     this.policyService
       .policyAppliesToActiveUser$(PolicyType.DisablePersonalVaultExport)
       .pipe(takeUntil(this.destroy$))
@@ -88,8 +154,7 @@ export class ExportComponent implements OnInit, OnDestroy {
       this.exportForm.get("format").valueChanges,
       this.exportForm.get("fileEncryptionType").valueChanges,
     )
-      .pipe(takeUntil(this.destroy$))
-      .pipe(startWith(0))
+      .pipe(startWith(0), takeUntil(this.destroy$))
       .subscribe(() => this.adjustValidators());
 
     if (this.organizationId) {
@@ -118,6 +183,12 @@ export class ExportComponent implements OnInit, OnDestroy {
     this.exportForm.controls.vaultSelector.setValue("myVault");
   }
 
+  ngAfterViewInit(): void {
+    this.bitSubmit.loading$.pipe(takeUntil(this.destroy$)).subscribe((loading) => {
+      this.formLoading.emit(loading);
+    });
+  }
+
   ngOnDestroy(): void {
     this.destroy$.next();
   }
@@ -187,6 +258,7 @@ export class ExportComponent implements OnInit, OnDestroy {
 
   protected saved() {
     this.onSaved.emit();
+    this.onSuccessfulExport.emit(this.organizationId);
   }
 
   private async verifyUser(): Promise<boolean> {
@@ -235,6 +307,10 @@ export class ExportComponent implements OnInit, OnDestroy {
   }
 
   protected getFileName(prefix?: string) {
+    if (this.organizationId) {
+      prefix = "org";
+    }
+
     let extension = this.format;
     if (this.format === "encrypted_json") {
       if (prefix == null) {
@@ -248,7 +324,15 @@ export class ExportComponent implements OnInit, OnDestroy {
   }
 
   protected async collectEvent(): Promise<void> {
-    await this.eventCollectionService.collect(EventType.User_ClientExportedVault);
+    if (this.organizationId) {
+      return await this.eventCollectionService.collect(
+        EventType.Organization_ClientExportedVault,
+        null,
+        false,
+        this.organizationId,
+      );
+    }
+    return await this.eventCollectionService.collect(EventType.User_ClientExportedVault);
   }
 
   get format() {

From 4ef9497bc51475fa26e69bb737fdf1eac4184eb5 Mon Sep 17 00:00:00 2001
From: Jason Ng <jng@bitwarden.com>
Date: Tue, 28 May 2024 17:08:25 -0400
Subject: [PATCH 018/138] [PM-6824] Browser V2 Search (#9343)

*browser v2 search - can search for terms and items filtered in their respective groups
---
 .../vault-v2-search.component.html            |   8 ++
 .../vault-search/vault-v2-search.component.ts |  35 +++++
 .../components/vault/vault-v2.component.html  |   3 +
 .../components/vault/vault-v2.component.ts    |   6 +
 .../vault-popup-items.service.spec.ts         | 134 +++++++++++++++++-
 .../services/vault-popup-items.service.ts     |  29 +++-
 6 files changed, 205 insertions(+), 10 deletions(-)
 create mode 100644 apps/browser/src/vault/popup/components/vault-v2/vault-search/vault-v2-search.component.html
 create mode 100644 apps/browser/src/vault/popup/components/vault-v2/vault-search/vault-v2-search.component.ts

diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-search/vault-v2-search.component.html b/apps/browser/src/vault/popup/components/vault-v2/vault-search/vault-v2-search.component.html
new file mode 100644
index 00000000000..55674aa83e5
--- /dev/null
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-search/vault-v2-search.component.html
@@ -0,0 +1,8 @@
+<div class="tw-mb-2">
+  <bit-search
+    [placeholder]="'search' | i18n"
+    [(ngModel)]="searchText"
+    (ngModelChange)="onSearchTextChanged()"
+  >
+  </bit-search>
+</div>
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-search/vault-v2-search.component.ts b/apps/browser/src/vault/popup/components/vault-v2/vault-search/vault-v2-search.component.ts
new file mode 100644
index 00000000000..321717285a9
--- /dev/null
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-search/vault-v2-search.component.ts
@@ -0,0 +1,35 @@
+import { CommonModule } from "@angular/common";
+import { Component, Output, EventEmitter } from "@angular/core";
+import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
+import { FormsModule } from "@angular/forms";
+import { Subject, debounceTime } from "rxjs";
+
+import { JslibModule } from "@bitwarden/angular/jslib.module";
+import { SearchModule } from "@bitwarden/components";
+
+const SearchTextDebounceInterval = 200;
+
+@Component({
+  imports: [CommonModule, SearchModule, JslibModule, FormsModule],
+  standalone: true,
+  selector: "app-vault-v2-search",
+  templateUrl: "vault-v2-search.component.html",
+})
+export class VaultV2SearchComponent {
+  searchText: string;
+  @Output() searchTextChanged = new EventEmitter<string>();
+
+  private searchText$ = new Subject<string>();
+
+  constructor() {
+    this.searchText$
+      .pipe(debounceTime(SearchTextDebounceInterval), takeUntilDestroyed())
+      .subscribe((data) => {
+        this.searchTextChanged.emit(data);
+      });
+  }
+
+  onSearchTextChanged() {
+    this.searchText$.next(this.searchText);
+  }
+}
diff --git a/apps/browser/src/vault/popup/components/vault/vault-v2.component.html b/apps/browser/src/vault/popup/components/vault/vault-v2.component.html
index df2b2c1a13e..7d83d9f26cc 100644
--- a/apps/browser/src/vault/popup/components/vault/vault-v2.component.html
+++ b/apps/browser/src/vault/popup/components/vault/vault-v2.component.html
@@ -24,6 +24,9 @@
   <ng-container *ngIf="!(showEmptyState$ | async)">
     <!-- TODO: Filter/search Section in PM-6824 and PM-6826.-->
 
+    <app-vault-v2-search (searchTextChanged)="handleSearchTextChange($event)">
+    </app-vault-v2-search>
+
     <div
       *ngIf="showNoResultsState$ | async"
       class="tw-flex tw-flex-col tw-h-full tw-justify-center"
diff --git a/apps/browser/src/vault/popup/components/vault/vault-v2.component.ts b/apps/browser/src/vault/popup/components/vault/vault-v2.component.ts
index 7e0be4607b4..36b41beb29d 100644
--- a/apps/browser/src/vault/popup/components/vault/vault-v2.component.ts
+++ b/apps/browser/src/vault/popup/components/vault/vault-v2.component.ts
@@ -11,6 +11,7 @@ import { PopupHeaderComponent } from "../../../../platform/popup/layout/popup-he
 import { PopupPageComponent } from "../../../../platform/popup/layout/popup-page.component";
 import { VaultPopupItemsService } from "../../services/vault-popup-items.service";
 import { AutofillVaultListItemsComponent, VaultListItemsContainerComponent } from "../vault-v2";
+import { VaultV2SearchComponent } from "../vault-v2/vault-search/vault-v2-search.component";
 
 @Component({
   selector: "app-vault",
@@ -28,6 +29,7 @@ import { AutofillVaultListItemsComponent, VaultListItemsContainerComponent } fro
     VaultListItemsContainerComponent,
     ButtonModule,
     RouterLink,
+    VaultV2SearchComponent,
   ],
 })
 export class VaultV2Component implements OnInit, OnDestroy {
@@ -48,6 +50,10 @@ export class VaultV2Component implements OnInit, OnDestroy {
 
   ngOnDestroy(): void {}
 
+  handleSearchTextChange(searchText: string) {
+    this.vaultPopupItemsService.applyFilter(searchText);
+  }
+
   addCipher() {
     // TODO: Add currently filtered organization to query params if available
     void this.router.navigate(["/add-cipher"], {});
diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
index 1830d4be35e..fedf666dbf3 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
@@ -1,6 +1,7 @@
 import { mock } from "jest-mock-extended";
 import { BehaviorSubject } from "rxjs";
 
+import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { CipherId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
@@ -19,6 +20,7 @@ describe("VaultPopupItemsService", () => {
 
   const cipherServiceMock = mock<CipherService>();
   const vaultSettingsServiceMock = mock<VaultSettingsService>();
+  const searchService = mock<SearchService>();
 
   beforeEach(() => {
     allCiphers = cipherFactory(10);
@@ -34,6 +36,7 @@ describe("VaultPopupItemsService", () => {
     cipherList[3].favorite = true;
 
     cipherServiceMock.cipherViews$ = new BehaviorSubject(allCiphers).asObservable();
+    searchService.searchCiphers.mockImplementation(async () => cipherList);
     cipherServiceMock.filterCiphersForUrl.mockImplementation(async () => autoFillCiphers);
     vaultSettingsServiceMock.showCardsCurrentTab$ = new BehaviorSubject(false).asObservable();
     vaultSettingsServiceMock.showIdentitiesCurrentTab$ = new BehaviorSubject(false).asObservable();
@@ -41,11 +44,19 @@ describe("VaultPopupItemsService", () => {
     jest
       .spyOn(BrowserApi, "getTabFromCurrentWindow")
       .mockResolvedValue({ url: "https://example.com" } as chrome.tabs.Tab);
-    service = new VaultPopupItemsService(cipherServiceMock, vaultSettingsServiceMock);
+    service = new VaultPopupItemsService(
+      cipherServiceMock,
+      vaultSettingsServiceMock,
+      searchService,
+    );
   });
 
   it("should be created", () => {
-    service = new VaultPopupItemsService(cipherServiceMock, vaultSettingsServiceMock);
+    service = new VaultPopupItemsService(
+      cipherServiceMock,
+      vaultSettingsServiceMock,
+      searchService,
+    );
     expect(service).toBeTruthy();
   });
 
@@ -73,7 +84,11 @@ describe("VaultPopupItemsService", () => {
       vaultSettingsServiceMock.showIdentitiesCurrentTab$ = new BehaviorSubject(true).asObservable();
       jest.spyOn(BrowserApi, "getTabFromCurrentWindow").mockResolvedValue(currentTab);
 
-      service = new VaultPopupItemsService(cipherServiceMock, vaultSettingsServiceMock);
+      service = new VaultPopupItemsService(
+        cipherServiceMock,
+        vaultSettingsServiceMock,
+        searchService,
+      );
 
       service.autoFillCiphers$.subscribe((ciphers) => {
         expect(cipherServiceMock.filterCiphersForUrl.mock.calls.length).toBe(1);
@@ -99,7 +114,11 @@ describe("VaultPopupItemsService", () => {
         Object.values(allCiphers),
       );
 
-      service = new VaultPopupItemsService(cipherServiceMock, vaultSettingsServiceMock);
+      service = new VaultPopupItemsService(
+        cipherServiceMock,
+        vaultSettingsServiceMock,
+        searchService,
+      );
 
       service.autoFillCiphers$.subscribe((ciphers) => {
         expect(ciphers.length).toBe(10);
@@ -114,6 +133,24 @@ describe("VaultPopupItemsService", () => {
         done();
       });
     });
+
+    it("should filter autoFillCiphers$ down to search term", (done) => {
+      const cipherList = Object.values(allCiphers);
+      const searchText = "Login";
+
+      searchService.searchCiphers.mockImplementation(async () => {
+        return cipherList.filter((cipher) => {
+          return cipher.name.includes(searchText);
+        });
+      });
+
+      // there is only 1 Login returned for filteredCiphers. but two results expected because of other autofill types
+      service.autoFillCiphers$.subscribe((ciphers) => {
+        expect(ciphers[0].name.includes(searchText)).toBe(true);
+        expect(ciphers.length).toBe(2);
+        done();
+      });
+    });
   });
 
   describe("favoriteCiphers$", () => {
@@ -131,6 +168,24 @@ describe("VaultPopupItemsService", () => {
         done();
       });
     });
+
+    it("should filter favoriteCiphers$ down to search term", (done) => {
+      const cipherList = Object.values(allCiphers);
+      const searchText = "Card 2";
+
+      searchService.searchCiphers.mockImplementation(async () => {
+        return cipherList.filter((cipher) => {
+          return cipher.name === searchText;
+        });
+      });
+
+      service.favoriteCiphers$.subscribe((ciphers) => {
+        // There are 2 favorite items but only one Card 2
+        expect(ciphers[0].name).toBe(searchText);
+        expect(ciphers.length).toBe(1);
+        done();
+      });
+    });
   });
 
   describe("remainingCiphers$", () => {
@@ -148,12 +203,33 @@ describe("VaultPopupItemsService", () => {
         done();
       });
     });
+
+    it("should filter remainingCiphers$ down to search term", (done) => {
+      const cipherList = Object.values(allCiphers);
+      const searchText = "Login";
+
+      searchService.searchCiphers.mockImplementation(async () => {
+        return cipherList.filter((cipher) => {
+          return cipher.name.includes(searchText);
+        });
+      });
+
+      service.remainingCiphers$.subscribe((ciphers) => {
+        // There are 6 remaining ciphers but only 2 with "Login" in the name
+        expect(ciphers.length).toBe(2);
+        done();
+      });
+    });
   });
 
   describe("emptyVault$", () => {
     it("should return true if there are no ciphers", (done) => {
       cipherServiceMock.cipherViews$ = new BehaviorSubject({}).asObservable();
-      service = new VaultPopupItemsService(cipherServiceMock, vaultSettingsServiceMock);
+      service = new VaultPopupItemsService(
+        cipherServiceMock,
+        vaultSettingsServiceMock,
+        searchService,
+      );
       service.emptyVault$.subscribe((empty) => {
         expect(empty).toBe(true);
         done();
@@ -192,6 +268,54 @@ describe("VaultPopupItemsService", () => {
       });
     });
   });
+
+  describe("noFilteredResults$", () => {
+    it("should return false when filteredResults has values", (done) => {
+      service.noFilteredResults$.subscribe((noResults) => {
+        expect(noResults).toBe(false);
+        done();
+      });
+    });
+
+    it("should return true when there are zero filteredResults", (done) => {
+      searchService.searchCiphers.mockImplementation(async () => []);
+      service.noFilteredResults$.subscribe((noResults) => {
+        expect(noResults).toBe(true);
+        done();
+      });
+    });
+  });
+
+  describe("hasFilterApplied$", () => {
+    it("should return true if the search term provided is searchable", (done) => {
+      searchService.isSearchable.mockImplementation(async () => true);
+      service.hasFilterApplied$.subscribe((canSearch) => {
+        expect(canSearch).toBe(true);
+        done();
+      });
+    });
+
+    it("should return false if the search term provided is not searchable", (done) => {
+      searchService.isSearchable.mockImplementation(async () => false);
+      service.hasFilterApplied$.subscribe((canSearch) => {
+        expect(canSearch).toBe(false);
+        done();
+      });
+    });
+  });
+
+  describe("applyFilter", () => {
+    it("should call search Service with the new search term", (done) => {
+      const searchText = "Hello";
+      service.applyFilter(searchText);
+      const searchServiceSpy = jest.spyOn(searchService, "searchCiphers");
+
+      service.favoriteCiphers$.subscribe(() => {
+        expect(searchServiceSpy).toHaveBeenCalledWith(searchText, null, expect.anything());
+        done();
+      });
+    });
+  });
 });
 
 // A function to generate a list of ciphers of different types
diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
index 52de117e6b5..9a66ada08c5 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
@@ -1,5 +1,6 @@
 import { Injectable } from "@angular/core";
 import {
+  BehaviorSubject,
   combineLatest,
   map,
   Observable,
@@ -10,6 +11,7 @@ import {
   switchMap,
 } from "rxjs";
 
+import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
@@ -26,6 +28,7 @@ import BrowserPopupUtils from "../../../platform/popup/browser-popup-utils";
 })
 export class VaultPopupItemsService {
   private _refreshCurrentTab$ = new Subject<void>();
+  private searchText$ = new BehaviorSubject<string>("");
 
   /**
    * Observable that contains the list of other cipher types that should be shown
@@ -69,6 +72,13 @@ export class VaultPopupItemsService {
     shareReplay({ refCount: false, bufferSize: 1 }),
   );
 
+  private _filteredCipherList$ = combineLatest([this._cipherList$, this.searchText$]).pipe(
+    switchMap(([ciphers, searchText]) =>
+      this.searchService.searchCiphers(searchText, null, ciphers),
+    ),
+    shareReplay({ refCount: true, bufferSize: 1 }),
+  );
+
   /**
    * List of ciphers that can be used for autofill on the current tab. Includes cards and/or identities
    * if enabled in the vault settings. Ciphers are sorted by type, then by last used date, then by name.
@@ -76,7 +86,7 @@ export class VaultPopupItemsService {
    * See {@link refreshCurrentTab} to trigger re-evaluation of the current tab.
    */
   autoFillCiphers$: Observable<CipherView[]> = combineLatest([
-    this._cipherList$,
+    this._filteredCipherList$,
     this._otherAutoFillTypes$,
     this._currentAutofillTab$,
   ]).pipe(
@@ -96,7 +106,7 @@ export class VaultPopupItemsService {
    */
   favoriteCiphers$: Observable<CipherView[]> = combineLatest([
     this.autoFillCiphers$,
-    this._cipherList$,
+    this._filteredCipherList$,
   ]).pipe(
     map(([autoFillCiphers, ciphers]) =>
       ciphers.filter((cipher) => cipher.favorite && !autoFillCiphers.includes(cipher)),
@@ -114,7 +124,7 @@ export class VaultPopupItemsService {
   remainingCiphers$: Observable<CipherView[]> = combineLatest([
     this.autoFillCiphers$,
     this.favoriteCiphers$,
-    this._cipherList$,
+    this._filteredCipherList$,
   ]).pipe(
     map(([autoFillCiphers, favoriteCiphers, ciphers]) =>
       ciphers.filter(
@@ -129,7 +139,9 @@ export class VaultPopupItemsService {
    * Observable that indicates whether a filter is currently applied to the ciphers.
    * @todo Implement filter/search functionality in PM-6824 and PM-6826.
    */
-  hasFilterApplied$: Observable<boolean> = of(false);
+  hasFilterApplied$: Observable<boolean> = this.searchText$.pipe(
+    switchMap((text) => this.searchService.isSearchable(text)),
+  );
 
   /**
    * Observable that indicates whether autofill is allowed in the current context.
@@ -146,11 +158,14 @@ export class VaultPopupItemsService {
    * Observable that indicates whether there are no ciphers to show with the current filter.
    * @todo Implement filter/search functionality in PM-6824 and PM-6826.
    */
-  noFilteredResults$: Observable<boolean> = of(false);
+  noFilteredResults$: Observable<boolean> = this._filteredCipherList$.pipe(
+    map((ciphers) => !ciphers.length),
+  );
 
   constructor(
     private cipherService: CipherService,
     private vaultSettingsService: VaultSettingsService,
+    private searchService: SearchService,
   ) {}
 
   /**
@@ -160,6 +175,10 @@ export class VaultPopupItemsService {
     this._refreshCurrentTab$.next(null);
   }
 
+  applyFilter(newSearchText: string) {
+    this.searchText$.next(newSearchText);
+  }
+
   /**
    * Sort function for ciphers to be used in the autofill section of the Vault tab.
    * Sorts by type, then by last used date, and finally by name.

From 42784b39f1afabc22817bbab1dc7e14642b70e6b Mon Sep 17 00:00:00 2001
From: Bitwarden DevOps
 <106330231+bitwarden-devops-bot@users.noreply.github.com>
Date: Tue, 28 May 2024 18:19:50 -0400
Subject: [PATCH 019/138] Bumped client version(s) (#9406)

---
 apps/browser/package.json         | 2 +-
 apps/browser/src/manifest.json    | 2 +-
 apps/browser/src/manifest.v3.json | 2 +-
 package-lock.json                 | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/apps/browser/package.json b/apps/browser/package.json
index 1f54bd64aca..25912c4832f 100644
--- a/apps/browser/package.json
+++ b/apps/browser/package.json
@@ -1,6 +1,6 @@
 {
   "name": "@bitwarden/browser",
-  "version": "2024.5.0",
+  "version": "2024.5.1",
   "scripts": {
     "build": "cross-env MANIFEST_VERSION=3 webpack",
     "build:mv2": "webpack",
diff --git a/apps/browser/src/manifest.json b/apps/browser/src/manifest.json
index fc0ff51230d..0c1bd2905ad 100644
--- a/apps/browser/src/manifest.json
+++ b/apps/browser/src/manifest.json
@@ -2,7 +2,7 @@
   "manifest_version": 2,
   "name": "__MSG_extName__",
   "short_name": "__MSG_appName__",
-  "version": "2024.5.0",
+  "version": "2024.5.1",
   "description": "__MSG_extDesc__",
   "default_locale": "en",
   "author": "Bitwarden Inc.",
diff --git a/apps/browser/src/manifest.v3.json b/apps/browser/src/manifest.v3.json
index 0720b65a913..952396758df 100644
--- a/apps/browser/src/manifest.v3.json
+++ b/apps/browser/src/manifest.v3.json
@@ -3,7 +3,7 @@
   "minimum_chrome_version": "102.0",
   "name": "__MSG_extName__",
   "short_name": "__MSG_appName__",
-  "version": "2024.5.0",
+  "version": "2024.5.1",
   "description": "__MSG_extDesc__",
   "default_locale": "en",
   "author": "Bitwarden Inc.",
diff --git a/package-lock.json b/package-lock.json
index 18a7dad0293..03a14daa6a6 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -193,7 +193,7 @@
     },
     "apps/browser": {
       "name": "@bitwarden/browser",
-      "version": "2024.5.0"
+      "version": "2024.5.1"
     },
     "apps/cli": {
       "name": "@bitwarden/cli",

From 86d6be318716c0ce08160ee9548b1afce90f764a Mon Sep 17 00:00:00 2001
From: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
Date: Wed, 29 May 2024 12:26:40 +0200
Subject: [PATCH 020/138] [PM-8448] Create BItwarden Send UI library package
 (#9402)

* Create the send-ui library package

Create folder
Create package.json
Create jest config
Create tsconfig and tsconfig.spec.json
Create README
Add empty barrel file for exporting future members

* Register @bitwarden/send-ui with all clients and libs

* Register with eslint

* Fix linting issue with README

---------

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
---
 .eslintrc.json                             |  6 ++++++
 .github/whitelist-capital-letters.txt      |  1 +
 apps/browser/tsconfig.json                 |  1 +
 apps/desktop/tsconfig.json                 |  1 +
 apps/web/tsconfig.json                     |  1 +
 bitwarden_license/bit-common/tsconfig.json |  1 +
 bitwarden_license/bit-web/tsconfig.json    |  1 +
 libs/shared/tsconfig.libs.json             |  1 +
 libs/tools/send/README.md                  | 17 ++++++++++++++++
 libs/tools/send/send-ui/jest.config.js     | 13 ++++++++++++
 libs/tools/send/send-ui/package.json       | 23 ++++++++++++++++++++++
 libs/tools/send/send-ui/src/index.ts       |  0
 libs/tools/send/send-ui/tsconfig.json      |  5 +++++
 libs/tools/send/send-ui/tsconfig.spec.json |  3 +++
 tsconfig.eslint.json                       |  1 +
 tsconfig.json                              |  1 +
 16 files changed, 76 insertions(+)
 create mode 100644 libs/tools/send/README.md
 create mode 100644 libs/tools/send/send-ui/jest.config.js
 create mode 100644 libs/tools/send/send-ui/package.json
 create mode 100644 libs/tools/send/send-ui/src/index.ts
 create mode 100644 libs/tools/send/send-ui/tsconfig.json
 create mode 100644 libs/tools/send/send-ui/tsconfig.spec.json

diff --git a/.eslintrc.json b/.eslintrc.json
index 2b52485689a..ce9c4a33426 100644
--- a/.eslintrc.json
+++ b/.eslintrc.json
@@ -218,6 +218,12 @@
         "no-restricted-imports": ["error", { "patterns": ["@bitwarden/platform/*", "src/**/*"] }]
       }
     },
+    {
+      "files": ["libs/tools/send/send-ui/src/**/*.ts"],
+      "rules": {
+        "no-restricted-imports": ["error", { "patterns": ["@bitwarden/send-ui/*", "src/**/*"] }]
+      }
+    },
     {
       "files": ["libs/vault/src/**/*.ts"],
       "rules": {
diff --git a/.github/whitelist-capital-letters.txt b/.github/whitelist-capital-letters.txt
index 99ce80376d3..45d9df649bc 100644
--- a/.github/whitelist-capital-letters.txt
+++ b/.github/whitelist-capital-letters.txt
@@ -21,6 +21,7 @@
 ./libs/platform/README.md
 ./libs/tools/README.md
 ./libs/tools/export/vault-export/README.md
+./libs/tools/send/README.md
 ./libs/vault/README.md
 ./README.md
 ./LICENSE_BITWARDEN.txt
diff --git a/apps/browser/tsconfig.json b/apps/browser/tsconfig.json
index e1bf2b7211c..eb2c02fd3fd 100644
--- a/apps/browser/tsconfig.json
+++ b/apps/browser/tsconfig.json
@@ -26,6 +26,7 @@
       "@bitwarden/importer/core": ["../../libs/importer/src"],
       "@bitwarden/importer/ui": ["../../libs/importer/src/components"],
       "@bitwarden/platform": ["../../libs/platform/src"],
+      "@bitwarden/send-ui": ["../../libs/tools/send/send-ui/src"],
       "@bitwarden/vault": ["../../libs/vault/src"]
     },
     "useDefineForClassFields": false
diff --git a/apps/desktop/tsconfig.json b/apps/desktop/tsconfig.json
index a62d494f294..eb054ba80ba 100644
--- a/apps/desktop/tsconfig.json
+++ b/apps/desktop/tsconfig.json
@@ -25,6 +25,7 @@
       "@bitwarden/importer/ui": ["../../libs/importer/src/components"],
       "@bitwarden/node/*": ["../../libs/node/src/*"],
       "@bitwarden/platform": ["../../libs/platform/src"],
+      "@bitwarden/send-ui": ["../../libs/tools/send/send-ui/src"],
       "@bitwarden/vault": ["../../libs/vault/src"]
     },
     "useDefineForClassFields": false
diff --git a/apps/web/tsconfig.json b/apps/web/tsconfig.json
index 07d244ee602..f6ea012c368 100644
--- a/apps/web/tsconfig.json
+++ b/apps/web/tsconfig.json
@@ -19,6 +19,7 @@
       "@bitwarden/importer/core": ["../../libs/importer/src"],
       "@bitwarden/importer/ui": ["../../libs/importer/src/components"],
       "@bitwarden/platform": ["../../libs/platform/src"],
+      "@bitwarden/send-ui": ["../../libs/tools/send/send-ui/src"],
       "@bitwarden/vault": ["../../libs/vault/src"],
       "@bitwarden/web-vault/*": ["src/*"]
     }
diff --git a/bitwarden_license/bit-common/tsconfig.json b/bitwarden_license/bit-common/tsconfig.json
index 6b40d447419..afe66845c6a 100644
--- a/bitwarden_license/bit-common/tsconfig.json
+++ b/bitwarden_license/bit-common/tsconfig.json
@@ -15,6 +15,7 @@
         "../../libs/tools/export/vault-export/vault-export-core/src"
       ],
       "@bitwarden/vault-export-ui": ["../../libs/tools/export/vault-export/vault-export-core/src"],
+      "@bitwarden/send-ui": ["../../libs/tools/send/send-ui/src"],
       "@bitwarden/platform": ["../../libs/platform/src"],
       "@bitwarden/vault": ["../../libs/vault/src"],
       "@bitwarden/web-vault/*": ["../../apps/web/src/*"],
diff --git a/bitwarden_license/bit-web/tsconfig.json b/bitwarden_license/bit-web/tsconfig.json
index 27095e1da91..05517df57c8 100644
--- a/bitwarden_license/bit-web/tsconfig.json
+++ b/bitwarden_license/bit-web/tsconfig.json
@@ -19,6 +19,7 @@
       "@bitwarden/importer/core": ["../../libs/importer/src"],
       "@bitwarden/importer/ui": ["../../libs/importer/src/components"],
       "@bitwarden/platform": ["../../libs/platform/src"],
+      "@bitwarden/send-ui": ["../../libs/tools/send/send-ui/src"],
       "@bitwarden/vault": ["../../libs/vault/src"],
       "@bitwarden/web-vault/*": ["../../apps/web/src/*"],
 
diff --git a/libs/shared/tsconfig.libs.json b/libs/shared/tsconfig.libs.json
index 452a565c9e4..517b2a4d164 100644
--- a/libs/shared/tsconfig.libs.json
+++ b/libs/shared/tsconfig.libs.json
@@ -15,6 +15,7 @@
       "@bitwarden/importer/core": ["../importer/src"],
       "@bitwarden/importer/ui": ["../importer/src/components"],
       "@bitwarden/platform": ["../platform/src"],
+      "@bitwarden/send-ui": ["../tools/send/send-ui/src"],
       "@bitwarden/node/*": ["../node/src/*"],
       "@bitwarden/vault": ["../vault/src"]
     }
diff --git a/libs/tools/send/README.md b/libs/tools/send/README.md
new file mode 100644
index 00000000000..a8bd7029830
--- /dev/null
+++ b/libs/tools/send/README.md
@@ -0,0 +1,17 @@
+# Bitwarden Send
+
+This folder contains 2 packages that can be used to create and modify Sends.
+
+## semd-core
+
+Package name: `@bitwarden/send-core`
+
+Contains all types, models, and services for Bitwarden Send
+
+Currently in use by the Bitwarden Web Vault, CLI, desktop app and browser extension
+
+## send-ui
+
+Package name: `@bitwarden/send-ui`
+
+Contains all UI components used for Bitwarden Send
diff --git a/libs/tools/send/send-ui/jest.config.js b/libs/tools/send/send-ui/jest.config.js
new file mode 100644
index 00000000000..100075fc7a7
--- /dev/null
+++ b/libs/tools/send/send-ui/jest.config.js
@@ -0,0 +1,13 @@
+const { pathsToModuleNameMapper } = require("ts-jest");
+
+const { compilerOptions } = require("../../../shared/tsconfig.libs");
+
+/** @type {import('jest').Config} */
+module.exports = {
+  testMatch: ["**/+(*.)+(spec).+(ts)"],
+  preset: "ts-jest",
+  testEnvironment: "jsdom",
+  moduleNameMapper: pathsToModuleNameMapper(compilerOptions?.paths || {}, {
+    prefix: "<rootDir>/../../../",
+  }),
+};
diff --git a/libs/tools/send/send-ui/package.json b/libs/tools/send/send-ui/package.json
new file mode 100644
index 00000000000..81bbbde4358
--- /dev/null
+++ b/libs/tools/send/send-ui/package.json
@@ -0,0 +1,23 @@
+{
+  "name": "@bitwarden/send-ui",
+  "version": "0.0.0",
+  "description": "Angular components for Bitwarden Send",
+  "keywords": [
+    "bitwarden"
+  ],
+  "author": "Bitwarden Inc.",
+  "homepage": "https://bitwarden.com",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/bitwarden/clients"
+  },
+  "license": "GPL-3.0",
+  "scripts": {
+    "clean": "rimraf dist",
+    "build": "npm run clean && tsc",
+    "build:watch": "npm run clean && tsc -watch"
+  },
+  "dependencies": {
+    "@bitwarden/common": "file:../../../common"
+  }
+}
diff --git a/libs/tools/send/send-ui/src/index.ts b/libs/tools/send/send-ui/src/index.ts
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/libs/tools/send/send-ui/tsconfig.json b/libs/tools/send/send-ui/tsconfig.json
new file mode 100644
index 00000000000..c52bfd7b0df
--- /dev/null
+++ b/libs/tools/send/send-ui/tsconfig.json
@@ -0,0 +1,5 @@
+{
+  "extends": "../../../shared/tsconfig.libs",
+  "include": ["src"],
+  "exclude": ["node_modules", "dist"]
+}
diff --git a/libs/tools/send/send-ui/tsconfig.spec.json b/libs/tools/send/send-ui/tsconfig.spec.json
new file mode 100644
index 00000000000..fc8520e7376
--- /dev/null
+++ b/libs/tools/send/send-ui/tsconfig.spec.json
@@ -0,0 +1,3 @@
+{
+  "extends": "./tsconfig.json"
+}
diff --git a/tsconfig.eslint.json b/tsconfig.eslint.json
index 7d4aee3fb36..ccb483f9b6f 100644
--- a/tsconfig.eslint.json
+++ b/tsconfig.eslint.json
@@ -25,6 +25,7 @@
       "@bitwarden/vault-export-ui": [".libs/tools/export/vault-export/vault-export-ui/src"],
       "@bitwarden/importer/core": ["./libs/importer/src"],
       "@bitwarden/importer/ui": ["./libs/importer/src/components"],
+      "@bitwarden/send-ui": [".libs/tools/send/send-ui/src"],
       "@bitwarden/platform": ["./libs/platform/src"],
       "@bitwarden/node/*": ["./libs/node/src/*"],
       "@bitwarden/vault": ["./libs/vault/src"],
diff --git a/tsconfig.json b/tsconfig.json
index 0a519a5b7e4..6b9e3d960ee 100644
--- a/tsconfig.json
+++ b/tsconfig.json
@@ -27,6 +27,7 @@
       "@bitwarden/importer/core": ["./libs/importer/src"],
       "@bitwarden/importer/ui": ["./libs/importer/src/components"],
       "@bitwarden/platform": ["./libs/platform/src"],
+      "@bitwarden/send-ui": ["./libs/tools/send/send-ui/src"],
       "@bitwarden/node/*": ["./libs/node/src/*"],
       "@bitwarden/web-vault/*": ["./apps/web/src/*"],
       "@bitwarden/vault": ["./libs/vault/src"],

From 9d342f61cb97e217756e04d1f6654642cb4768b2 Mon Sep 17 00:00:00 2001
From: Bernd Schoolmann <mail@quexten.com>
Date: Wed, 29 May 2024 13:32:13 +0200
Subject: [PATCH 021/138] Fix promise rejection on missing tray on Linux
 (#9265)

---
 apps/desktop/src/main/tray.main.ts | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/desktop/src/main/tray.main.ts b/apps/desktop/src/main/tray.main.ts
index 948c48f519a..8450a653222 100644
--- a/apps/desktop/src/main/tray.main.ts
+++ b/apps/desktop/src/main/tray.main.ts
@@ -140,7 +140,7 @@ export class TrayMain {
   }
 
   updateContextMenu() {
-    if (this.contextMenu != null && this.isLinux()) {
+    if (this.tray != null && this.contextMenu != null && this.isLinux()) {
       this.tray.setContextMenu(this.contextMenu);
     }
   }

From beb930902a3b5975eebc952f65a6c51159e79074 Mon Sep 17 00:00:00 2001
From: KiruthigaManivannan
 <162679756+KiruthigaManivannan@users.noreply.github.com>
Date: Wed, 29 May 2024 19:33:28 +0530
Subject: [PATCH 022/138] PM-8337 Add Invalid Secret Handling to Two Factor
 Verify Dialog (#9325)

---
 .../settings/two-factor-verify.component.html |  2 +-
 .../settings/two-factor-verify.component.ts   | 41 +++++++++++--------
 2 files changed, 26 insertions(+), 17 deletions(-)

diff --git a/apps/web/src/app/auth/settings/two-factor-verify.component.html b/apps/web/src/app/auth/settings/two-factor-verify.component.html
index 283282ccb8e..288a096c23f 100644
--- a/apps/web/src/app/auth/settings/two-factor-verify.component.html
+++ b/apps/web/src/app/auth/settings/two-factor-verify.component.html
@@ -7,8 +7,8 @@
     <ng-container bitDialogContent>
       <app-user-verification-form-input
         formControlName="secret"
-        ngDefaultControl
         name="secret"
+        [(invalidSecret)]="invalidSecret"
       ></app-user-verification-form-input>
     </ng-container>
     <ng-container bitDialogFooter>
diff --git a/apps/web/src/app/auth/settings/two-factor-verify.component.ts b/apps/web/src/app/auth/settings/two-factor-verify.component.ts
index 7dc2847b828..d41efc9b027 100644
--- a/apps/web/src/app/auth/settings/two-factor-verify.component.ts
+++ b/apps/web/src/app/auth/settings/two-factor-verify.component.ts
@@ -10,6 +10,7 @@ import { SecretVerificationRequest } from "@bitwarden/common/auth/models/request
 import { AuthResponse } from "@bitwarden/common/auth/types/auth-response";
 import { TwoFactorResponse } from "@bitwarden/common/auth/types/two-factor-response";
 import { Verification } from "@bitwarden/common/auth/types/verification";
+import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { DialogService } from "@bitwarden/components";
 
@@ -32,6 +33,7 @@ export class TwoFactorVerifyComponent {
   protected formGroup = new FormGroup({
     secret: new FormControl<Verification | null>(null),
   });
+  invalidSecret: boolean = false;
 
   constructor(
     @Inject(DIALOG_DATA) protected data: TwoFactorVerifyDialogData,
@@ -45,23 +47,30 @@ export class TwoFactorVerifyComponent {
   }
 
   submit = async () => {
-    let hashedSecret: string;
-    this.formPromise = this.userVerificationService
-      .buildRequest(this.formGroup.value.secret)
-      .then((request) => {
-        hashedSecret =
-          this.formGroup.value.secret.type === VerificationType.MasterPassword
-            ? request.masterPasswordHash
-            : request.otp;
-        return this.apiCall(request);
-      });
+    try {
+      let hashedSecret: string;
+      this.formPromise = this.userVerificationService
+        .buildRequest(this.formGroup.value.secret)
+        .then((request) => {
+          hashedSecret =
+            this.formGroup.value.secret.type === VerificationType.MasterPassword
+              ? request.masterPasswordHash
+              : request.otp;
+          return this.apiCall(request);
+        });
 
-    const response = await this.formPromise;
-    this.dialogRef.close({
-      response: response,
-      secret: hashedSecret,
-      verificationType: this.formGroup.value.secret.type,
-    });
+      const response = await this.formPromise;
+      this.dialogRef.close({
+        response: response,
+        secret: hashedSecret,
+        verificationType: this.formGroup.value.secret.type,
+      });
+    } catch (e) {
+      if (e instanceof ErrorResponse && e.statusCode === 400) {
+        this.invalidSecret = true;
+      }
+      throw e;
+    }
   };
 
   get dialogTitle(): string {

From a6df92341679421459720927046d0cf8cdf0257a Mon Sep 17 00:00:00 2001
From: Justin Baur <19896123+justindbaur@users.noreply.github.com>
Date: Wed, 29 May 2024 12:12:58 -0400
Subject: [PATCH 023/138] [PM-8292] Fixup `ForegroundSyncService` (#9292)

* Change `object` to `Record<string, unknown>`

* Change `object` to `Record<string, unknown>` Pt. 2

* Update ForegroundSyncService

- Manage finish message in the listener to more gaurantee a message back
- Make the timeout much longer
- Allow it to throw if the background sync service threw

---------

Co-authored-by: Cesar Gonzalez <cesar.a.gonzalezcs@gmail.com>
---
 .../browser/src/background/main.background.ts |  13 +-
 .../messaging/chrome-message.sender.ts        |   4 +-
 .../sync/foreground-sync.service.spec.ts      | 130 ++++++++++++++++++
 .../platform/sync/foreground-sync.service.ts  |  32 +++--
 .../sync/sync-service.listener.spec.ts        |  60 ++++++++
 .../platform/sync/sync-service.listener.ts    |  57 ++++++--
 .../utils/from-chrome-runtime-messaging.ts    |   3 +-
 .../src/popup/services/services.module.ts     |  10 +-
 .../src/app/services/services.module.ts       |   4 +-
 apps/desktop/src/main.ts                      |   2 +-
 .../electron-renderer-message.sender.ts       |   4 +-
 .../src/platform/utils/from-ipc-messaging.ts  |   4 +-
 .../electron-main-messaging.service.ts        |   5 +-
 libs/angular/src/services/injection-tokens.ts |   6 +-
 .../src/services/jslib-services.module.ts     |  10 +-
 .../abstractions/broadcaster.service.ts       |   4 -
 .../src/platform/messaging/helpers.spec.ts    |   8 +-
 libs/common/src/platform/messaging/helpers.ts |  16 ++-
 .../platform/messaging/message.listener.ts    |   6 +-
 .../src/platform/messaging/message.sender.ts  |  15 +-
 .../messaging/subject-message.sender.ts       |   6 +-
 libs/common/src/platform/messaging/types.ts   |   4 +-
 .../services/default-broadcaster.service.ts   |  11 +-
 23 files changed, 328 insertions(+), 86 deletions(-)
 create mode 100644 apps/browser/src/platform/sync/foreground-sync.service.spec.ts
 create mode 100644 apps/browser/src/platform/sync/sync-service.listener.spec.ts

diff --git a/apps/browser/src/background/main.background.ts b/apps/browser/src/background/main.background.ts
index 51d18f15a34..274649ef130 100644
--- a/apps/browser/src/background/main.background.ts
+++ b/apps/browser/src/background/main.background.ts
@@ -334,7 +334,7 @@ export default class MainBackground {
   ssoLoginService: SsoLoginServiceAbstraction;
   billingAccountProfileStateService: BillingAccountProfileStateService;
   // eslint-disable-next-line rxjs/no-exposed-subjects -- Needed to give access to services module
-  intraprocessMessagingSubject: Subject<Message<object>>;
+  intraprocessMessagingSubject: Subject<Message<Record<string, unknown>>>;
   userAutoUnlockKeyService: UserAutoUnlockKeyService;
   scriptInjectorService: BrowserScriptInjectorService;
   kdfConfigService: kdfConfigServiceAbstraction;
@@ -384,7 +384,7 @@ export default class MainBackground {
     this.keyGenerationService = new KeyGenerationService(this.cryptoFunctionService);
     this.storageService = new BrowserLocalStorageService();
 
-    this.intraprocessMessagingSubject = new Subject<Message<object>>();
+    this.intraprocessMessagingSubject = new Subject<Message<Record<string, unknown>>>();
 
     this.messagingService = MessageSender.combine(
       new SubjectMessageSender(this.intraprocessMessagingSubject),
@@ -840,7 +840,12 @@ export default class MainBackground {
         this.authService,
       );
 
-      this.syncServiceListener = new SyncServiceListener(this.syncService, messageListener);
+      this.syncServiceListener = new SyncServiceListener(
+        this.syncService,
+        messageListener,
+        this.messagingService,
+        this.logService,
+      );
     }
     this.eventUploadService = new EventUploadService(
       this.apiService,
@@ -1170,7 +1175,7 @@ export default class MainBackground {
     this.contextMenusBackground?.init();
     await this.idleBackground.init();
     this.webRequestBackground?.startListening();
-    this.syncServiceListener?.startListening();
+    this.syncServiceListener?.listener$().subscribe();
 
     return new Promise<void>((resolve) => {
       setTimeout(async () => {
diff --git a/apps/browser/src/platform/messaging/chrome-message.sender.ts b/apps/browser/src/platform/messaging/chrome-message.sender.ts
index 0e57ecfb4ec..914b8fd43a4 100644
--- a/apps/browser/src/platform/messaging/chrome-message.sender.ts
+++ b/apps/browser/src/platform/messaging/chrome-message.sender.ts
@@ -15,9 +15,9 @@ const HANDLED_ERRORS: Record<string, ErrorHandler> = {
 export class ChromeMessageSender implements MessageSender {
   constructor(private readonly logService: LogService) {}
 
-  send<T extends object>(
+  send<T extends Record<string, unknown>>(
     commandDefinition: string | CommandDefinition<T>,
-    payload: object | T = {},
+    payload: Record<string, unknown> | T = {},
   ): void {
     const command = getCommand(commandDefinition);
     chrome.runtime.sendMessage(Object.assign(payload, { command: command }), () => {
diff --git a/apps/browser/src/platform/sync/foreground-sync.service.spec.ts b/apps/browser/src/platform/sync/foreground-sync.service.spec.ts
new file mode 100644
index 00000000000..a9ee7c23b9c
--- /dev/null
+++ b/apps/browser/src/platform/sync/foreground-sync.service.spec.ts
@@ -0,0 +1,130 @@
+import { mock } from "jest-mock-extended";
+import { Subject } from "rxjs";
+
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
+import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
+import { MessageListener, MessageSender } from "@bitwarden/common/platform/messaging";
+import { SendApiService } from "@bitwarden/common/tools/send/services/send-api.service.abstraction";
+import { InternalSendService } from "@bitwarden/common/tools/send/services/send.service.abstraction";
+import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
+import { CollectionService } from "@bitwarden/common/vault/abstractions/collection.service";
+import { FolderApiServiceAbstraction } from "@bitwarden/common/vault/abstractions/folder/folder-api.service.abstraction";
+import { InternalFolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
+
+import { DO_FULL_SYNC, ForegroundSyncService, FullSyncMessage } from "./foreground-sync.service";
+import { FullSyncFinishedMessage } from "./sync-service.listener";
+
+describe("ForegroundSyncService", () => {
+  const stateService = mock<StateService>();
+  const folderService = mock<InternalFolderService>();
+  const folderApiService = mock<FolderApiServiceAbstraction>();
+  const messageSender = mock<MessageSender>();
+  const logService = mock<LogService>();
+  const cipherService = mock<CipherService>();
+  const collectionService = mock<CollectionService>();
+  const apiService = mock<ApiService>();
+  const accountService = mock<AccountService>();
+  const authService = mock<AuthService>();
+  const sendService = mock<InternalSendService>();
+  const sendApiService = mock<SendApiService>();
+  const messageListener = mock<MessageListener>();
+
+  const sut = new ForegroundSyncService(
+    stateService,
+    folderService,
+    folderApiService,
+    messageSender,
+    logService,
+    cipherService,
+    collectionService,
+    apiService,
+    accountService,
+    authService,
+    sendService,
+    sendApiService,
+    messageListener,
+  );
+
+  beforeEach(() => {
+    jest.resetAllMocks();
+  });
+
+  describe("fullSync", () => {
+    const getAndAssertRequestId = (doFullSyncMessage: Omit<FullSyncMessage, "requestId">) => {
+      expect(messageSender.send).toHaveBeenCalledWith(
+        DO_FULL_SYNC,
+        // We don't know the request id since that is created internally
+        expect.objectContaining(doFullSyncMessage),
+      );
+
+      const message = messageSender.send.mock.calls[0][1];
+
+      if (!("requestId" in message) || typeof message.requestId !== "string") {
+        throw new Error("requestId property of type string was expected on the sent message.");
+      }
+
+      return message.requestId;
+    };
+
+    it("correctly relays a successful fullSync", async () => {
+      const messages = new Subject<FullSyncFinishedMessage>();
+      messageListener.messages$.mockReturnValue(messages);
+      const fullSyncPromise = sut.fullSync(true, false);
+      expect(sut.syncInProgress).toBe(true);
+
+      const requestId = getAndAssertRequestId({ forceSync: true, allowThrowOnError: false });
+
+      // Pretend the sync has finished
+      messages.next({ successfully: true, errorMessage: null, requestId: requestId });
+
+      const result = await fullSyncPromise;
+
+      expect(sut.syncInProgress).toBe(false);
+      expect(result).toBe(true);
+    });
+
+    it("correctly relays an unsuccessful fullSync but does not throw if allowThrowOnError = false", async () => {
+      const messages = new Subject<FullSyncFinishedMessage>();
+      messageListener.messages$.mockReturnValue(messages);
+      const fullSyncPromise = sut.fullSync(false, false);
+      expect(sut.syncInProgress).toBe(true);
+
+      const requestId = getAndAssertRequestId({ forceSync: false, allowThrowOnError: false });
+
+      // Pretend the sync has finished
+      messages.next({
+        successfully: false,
+        errorMessage: "Error while syncing",
+        requestId: requestId,
+      });
+
+      const result = await fullSyncPromise;
+
+      expect(sut.syncInProgress).toBe(false);
+      expect(result).toBe(false);
+    });
+
+    it("correctly relays an unsuccessful fullSync but and will throw if allowThrowOnError = true", async () => {
+      const messages = new Subject<FullSyncFinishedMessage>();
+      messageListener.messages$.mockReturnValue(messages);
+      const fullSyncPromise = sut.fullSync(true, true);
+      expect(sut.syncInProgress).toBe(true);
+
+      const requestId = getAndAssertRequestId({ forceSync: true, allowThrowOnError: true });
+
+      // Pretend the sync has finished
+      messages.next({
+        successfully: false,
+        errorMessage: "Error while syncing",
+        requestId: requestId,
+      });
+
+      await expect(fullSyncPromise).rejects.toThrow("Error while syncing");
+
+      expect(sut.syncInProgress).toBe(false);
+    });
+  });
+});
diff --git a/apps/browser/src/platform/sync/foreground-sync.service.ts b/apps/browser/src/platform/sync/foreground-sync.service.ts
index 3c144316724..0a2c7074298 100644
--- a/apps/browser/src/platform/sync/foreground-sync.service.ts
+++ b/apps/browser/src/platform/sync/foreground-sync.service.ts
@@ -1,4 +1,4 @@
-import { firstValueFrom, timeout } from "rxjs";
+import { filter, firstValueFrom, of, timeout } from "rxjs";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
@@ -10,6 +10,7 @@ import {
   MessageListener,
   MessageSender,
 } from "@bitwarden/common/platform/messaging";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { CoreSyncService } from "@bitwarden/common/platform/sync/internal";
 import { SendApiService } from "@bitwarden/common/tools/send/services/send-api.service.abstraction";
 import { InternalSendService } from "@bitwarden/common/tools/send/services/send.service.abstraction";
@@ -18,11 +19,11 @@ import { CollectionService } from "@bitwarden/common/vault/abstractions/collecti
 import { FolderApiServiceAbstraction } from "@bitwarden/common/vault/abstractions/folder/folder-api.service.abstraction";
 import { InternalFolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
 
-const SYNC_COMPLETED = new CommandDefinition<{ successfully: boolean }>("syncCompleted");
-export const DO_FULL_SYNC = new CommandDefinition<{
-  forceSync: boolean;
-  allowThrowOnError: boolean;
-}>("doFullSync");
+import { FULL_SYNC_FINISHED } from "./sync-service.listener";
+
+export type FullSyncMessage = { forceSync: boolean; allowThrowOnError: boolean; requestId: string };
+
+export const DO_FULL_SYNC = new CommandDefinition<FullSyncMessage>("doFullSync");
 
 export class ForegroundSyncService extends CoreSyncService {
   constructor(
@@ -59,18 +60,29 @@ export class ForegroundSyncService extends CoreSyncService {
   async fullSync(forceSync: boolean, allowThrowOnError: boolean = false): Promise<boolean> {
     this.syncInProgress = true;
     try {
+      const requestId = Utils.newGuid();
       const syncCompletedPromise = firstValueFrom(
-        this.messageListener.messages$(SYNC_COMPLETED).pipe(
+        this.messageListener.messages$(FULL_SYNC_FINISHED).pipe(
+          filter((m) => m.requestId === requestId),
           timeout({
-            first: 10_000,
+            first: 30_000,
+            // If we haven't heard back in 30 seconds, just pretend we heard back about an unsuccesful sync.
             with: () => {
-              throw new Error("Timeout while doing a fullSync call.");
+              this.logService.warning(
+                "ForegroundSyncService did not receive a message back in a reasonable time.",
+              );
+              return of({ successfully: false, errorMessage: "Sync timed out." });
             },
           }),
         ),
       );
-      this.messageSender.send(DO_FULL_SYNC, { forceSync, allowThrowOnError });
+      this.messageSender.send(DO_FULL_SYNC, { forceSync, allowThrowOnError, requestId });
       const result = await syncCompletedPromise;
+
+      if (allowThrowOnError && result.errorMessage != null) {
+        throw new Error(result.errorMessage);
+      }
+
       return result.successfully;
     } finally {
       this.syncInProgress = false;
diff --git a/apps/browser/src/platform/sync/sync-service.listener.spec.ts b/apps/browser/src/platform/sync/sync-service.listener.spec.ts
new file mode 100644
index 00000000000..51f97e9f879
--- /dev/null
+++ b/apps/browser/src/platform/sync/sync-service.listener.spec.ts
@@ -0,0 +1,60 @@
+import { mock } from "jest-mock-extended";
+import { Subject, firstValueFrom } from "rxjs";
+
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
+import { MessageListener, MessageSender } from "@bitwarden/common/platform/messaging";
+import { tagAsExternal } from "@bitwarden/common/platform/messaging/helpers";
+import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
+
+import { FullSyncMessage } from "./foreground-sync.service";
+import { FULL_SYNC_FINISHED, SyncServiceListener } from "./sync-service.listener";
+
+describe("SyncServiceListener", () => {
+  const syncService = mock<SyncService>();
+  const messageListener = mock<MessageListener>();
+  const messageSender = mock<MessageSender>();
+  const logService = mock<LogService>();
+
+  const messages = new Subject<FullSyncMessage>();
+  messageListener.messages$.mockReturnValue(messages.asObservable().pipe(tagAsExternal()));
+  const sut = new SyncServiceListener(syncService, messageListener, messageSender, logService);
+
+  describe("listener$", () => {
+    it.each([true, false])(
+      "calls full sync and relays outcome when sync is [successfully = %s]",
+      async (value) => {
+        const listener = sut.listener$();
+        const emissionPromise = firstValueFrom(listener);
+
+        syncService.fullSync.mockResolvedValueOnce(value);
+        messages.next({ forceSync: true, allowThrowOnError: false, requestId: "1" });
+
+        await emissionPromise;
+
+        expect(syncService.fullSync).toHaveBeenCalledWith(true, false);
+        expect(messageSender.send).toHaveBeenCalledWith(FULL_SYNC_FINISHED, {
+          successfully: value,
+          errorMessage: null,
+          requestId: "1",
+        });
+      },
+    );
+
+    it("calls full sync and relays error message through messaging", async () => {
+      const listener = sut.listener$();
+      const emissionPromise = firstValueFrom(listener);
+
+      syncService.fullSync.mockRejectedValueOnce(new Error("SyncError"));
+      messages.next({ forceSync: true, allowThrowOnError: false, requestId: "1" });
+
+      await emissionPromise;
+
+      expect(syncService.fullSync).toHaveBeenCalledWith(true, false);
+      expect(messageSender.send).toHaveBeenCalledWith(FULL_SYNC_FINISHED, {
+        successfully: false,
+        errorMessage: "SyncError",
+        requestId: "1",
+      });
+    });
+  });
+});
diff --git a/apps/browser/src/platform/sync/sync-service.listener.ts b/apps/browser/src/platform/sync/sync-service.listener.ts
index b9e18accacd..079edbf4c71 100644
--- a/apps/browser/src/platform/sync/sync-service.listener.ts
+++ b/apps/browser/src/platform/sync/sync-service.listener.ts
@@ -1,25 +1,58 @@
-import { Subscription, concatMap, filter } from "rxjs";
+import { Observable, concatMap, filter } from "rxjs";
 
-import { MessageListener, isExternalMessage } from "@bitwarden/common/platform/messaging";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
+import {
+  CommandDefinition,
+  MessageListener,
+  MessageSender,
+  isExternalMessage,
+} from "@bitwarden/common/platform/messaging";
 import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 
 import { DO_FULL_SYNC } from "./foreground-sync.service";
 
+export type FullSyncFinishedMessage = {
+  successfully: boolean;
+  errorMessage: string;
+  requestId: string;
+};
+
+export const FULL_SYNC_FINISHED = new CommandDefinition<FullSyncFinishedMessage>(
+  "fullSyncFinished",
+);
+
 export class SyncServiceListener {
   constructor(
     private readonly syncService: SyncService,
     private readonly messageListener: MessageListener,
+    private readonly messageSender: MessageSender,
+    private readonly logService: LogService,
   ) {}
 
-  startListening(): Subscription {
-    return this.messageListener
-      .messages$(DO_FULL_SYNC)
-      .pipe(
-        filter((message) => isExternalMessage(message)),
-        concatMap(async ({ forceSync, allowThrowOnError }) => {
-          await this.syncService.fullSync(forceSync, allowThrowOnError);
-        }),
-      )
-      .subscribe();
+  listener$(): Observable<void> {
+    return this.messageListener.messages$(DO_FULL_SYNC).pipe(
+      filter((message) => isExternalMessage(message)),
+      concatMap(async ({ forceSync, allowThrowOnError, requestId }) => {
+        await this.doFullSync(forceSync, allowThrowOnError, requestId);
+      }),
+    );
+  }
+
+  private async doFullSync(forceSync: boolean, allowThrowOnError: boolean, requestId: string) {
+    try {
+      const result = await this.syncService.fullSync(forceSync, allowThrowOnError);
+      this.messageSender.send(FULL_SYNC_FINISHED, {
+        successfully: result,
+        errorMessage: null,
+        requestId,
+      });
+    } catch (err) {
+      this.logService.warning("Error while doing full sync in SyncServiceListener", err);
+      this.messageSender.send(FULL_SYNC_FINISHED, {
+        successfully: false,
+        errorMessage: err?.message ?? "Unknown Sync Error",
+        requestId,
+      });
+    }
   }
 }
diff --git a/apps/browser/src/platform/utils/from-chrome-runtime-messaging.ts b/apps/browser/src/platform/utils/from-chrome-runtime-messaging.ts
index e30f35b680b..ebc01ad86fa 100644
--- a/apps/browser/src/platform/utils/from-chrome-runtime-messaging.ts
+++ b/apps/browser/src/platform/utils/from-chrome-runtime-messaging.ts
@@ -1,5 +1,6 @@
 import { map, share } from "rxjs";
 
+import { Message } from "@bitwarden/common/platform/messaging";
 import { tagAsExternal } from "@bitwarden/common/platform/messaging/internal";
 
 import { fromChromeEvent } from "../browser/from-chrome-event";
@@ -20,7 +21,7 @@ export const fromChromeRuntimeMessaging = () => {
 
       return message;
     }),
-    tagAsExternal,
+    tagAsExternal<Message<Record<string, unknown>>>(),
     share(),
   );
 };
diff --git a/apps/browser/src/popup/services/services.module.ts b/apps/browser/src/popup/services/services.module.ts
index 342b3d26a66..ace9af3dfa8 100644
--- a/apps/browser/src/popup/services/services.module.ts
+++ b/apps/browser/src/popup/services/services.module.ts
@@ -524,7 +524,7 @@ const safeProviders: SafeProvider[] = [
   }),
   safeProvider({
     provide: MessageListener,
-    useFactory: (subject: Subject<Message<object>>, ngZone: NgZone) =>
+    useFactory: (subject: Subject<Message<Record<string, unknown>>>, ngZone: NgZone) =>
       new MessageListener(
         merge(
           subject.asObservable(), // For messages in the same context
@@ -535,7 +535,7 @@ const safeProviders: SafeProvider[] = [
   }),
   safeProvider({
     provide: MessageSender,
-    useFactory: (subject: Subject<Message<object>>, logService: LogService) =>
+    useFactory: (subject: Subject<Message<Record<string, unknown>>>, logService: LogService) =>
       MessageSender.combine(
         new SubjectMessageSender(subject), // For sending messages in the same context
         new ChromeMessageSender(logService), // For sending messages to different contexts
@@ -550,14 +550,14 @@ const safeProviders: SafeProvider[] = [
         // we need the same instance that our in memory background is utilizing.
         return getBgService("intraprocessMessagingSubject")();
       } else {
-        return new Subject<Message<object>>();
+        return new Subject<Message<Record<string, unknown>>>();
       }
     },
     deps: [],
   }),
   safeProvider({
     provide: MessageSender,
-    useFactory: (subject: Subject<Message<object>>, logService: LogService) =>
+    useFactory: (subject: Subject<Message<Record<string, unknown>>>, logService: LogService) =>
       MessageSender.combine(
         new SubjectMessageSender(subject), // For sending messages in the same context
         new ChromeMessageSender(logService), // For sending messages to different contexts
@@ -576,7 +576,7 @@ const safeProviders: SafeProvider[] = [
         // There isn't a locally created background so we will communicate with
         // the true background through chrome apis, in that case, we can just create
         // one for ourself.
-        return new Subject<Message<object>>();
+        return new Subject<Message<Record<string, unknown>>>();
       }
     },
     deps: [],
diff --git a/apps/desktop/src/app/services/services.module.ts b/apps/desktop/src/app/services/services.module.ts
index 8d800970535..25d4df5f935 100644
--- a/apps/desktop/src/app/services/services.module.ts
+++ b/apps/desktop/src/app/services/services.module.ts
@@ -151,7 +151,7 @@ const safeProviders: SafeProvider[] = [
   }),
   safeProvider({
     provide: MessageSender,
-    useFactory: (subject: Subject<Message<object>>) =>
+    useFactory: (subject: Subject<Message<Record<string, unknown>>>) =>
       MessageSender.combine(
         new ElectronRendererMessageSender(), // Communication with main process
         new SubjectMessageSender(subject), // Communication with ourself
@@ -160,7 +160,7 @@ const safeProviders: SafeProvider[] = [
   }),
   safeProvider({
     provide: MessageListener,
-    useFactory: (subject: Subject<Message<object>>) =>
+    useFactory: (subject: Subject<Message<Record<string, unknown>>>) =>
       new MessageListener(
         merge(
           subject.asObservable(), // For messages from the same context
diff --git a/apps/desktop/src/main.ts b/apps/desktop/src/main.ts
index 63d6e062a1e..d30d6ad821b 100644
--- a/apps/desktop/src/main.ts
+++ b/apps/desktop/src/main.ts
@@ -223,7 +223,7 @@ export class Main {
     this.updaterMain = new UpdaterMain(this.i18nService, this.windowMain);
     this.trayMain = new TrayMain(this.windowMain, this.i18nService, this.desktopSettingsService);
 
-    const messageSubject = new Subject<Message<object>>();
+    const messageSubject = new Subject<Message<Record<string, unknown>>>();
     this.messagingService = MessageSender.combine(
       new SubjectMessageSender(messageSubject), // For local messages
       new ElectronMainMessagingService(this.windowMain),
diff --git a/apps/desktop/src/platform/services/electron-renderer-message.sender.ts b/apps/desktop/src/platform/services/electron-renderer-message.sender.ts
index 037c303b3b6..109a52a8d8f 100644
--- a/apps/desktop/src/platform/services/electron-renderer-message.sender.ts
+++ b/apps/desktop/src/platform/services/electron-renderer-message.sender.ts
@@ -2,9 +2,9 @@ import { MessageSender, CommandDefinition } from "@bitwarden/common/platform/mes
 import { getCommand } from "@bitwarden/common/platform/messaging/internal";
 
 export class ElectronRendererMessageSender implements MessageSender {
-  send<T extends object>(
+  send<T extends Record<string, unknown>>(
     commandDefinition: CommandDefinition<T> | string,
-    payload: object | T = {},
+    payload: Record<string, unknown> | T = {},
   ): void {
     const command = getCommand(commandDefinition);
     ipc.platform.sendMessage(Object.assign({}, { command: command }, payload));
diff --git a/apps/desktop/src/platform/utils/from-ipc-messaging.ts b/apps/desktop/src/platform/utils/from-ipc-messaging.ts
index 254a215ceb3..cdefbf5c506 100644
--- a/apps/desktop/src/platform/utils/from-ipc-messaging.ts
+++ b/apps/desktop/src/platform/utils/from-ipc-messaging.ts
@@ -8,8 +8,8 @@ import { tagAsExternal } from "@bitwarden/common/platform/messaging/internal";
  * @returns An observable stream of messages.
  */
 export const fromIpcMessaging = () => {
-  return fromEventPattern<Message<object>>(
+  return fromEventPattern<Message<Record<string, unknown>>>(
     (handler) => ipc.platform.onMessage.addListener(handler),
     (handler) => ipc.platform.onMessage.removeListener(handler),
-  ).pipe(tagAsExternal, share());
+  ).pipe(tagAsExternal(), share());
 };
diff --git a/apps/desktop/src/services/electron-main-messaging.service.ts b/apps/desktop/src/services/electron-main-messaging.service.ts
index ce4ffd903a8..150890bf56f 100644
--- a/apps/desktop/src/services/electron-main-messaging.service.ts
+++ b/apps/desktop/src/services/electron-main-messaging.service.ts
@@ -87,7 +87,10 @@ export class ElectronMainMessagingService implements MessageSender {
     });
   }
 
-  send<T extends object>(commandDefinition: CommandDefinition<T> | string, arg: T | object = {}) {
+  send<T extends Record<string, unknown>>(
+    commandDefinition: CommandDefinition<T> | string,
+    arg: T | Record<string, unknown> = {},
+  ) {
     const command = getCommand(commandDefinition);
     const message = Object.assign({}, { command: command }, arg);
     if (this.windowMain.win != null) {
diff --git a/libs/angular/src/services/injection-tokens.ts b/libs/angular/src/services/injection-tokens.ts
index 9a94659e69f..17a98498d68 100644
--- a/libs/angular/src/services/injection-tokens.ts
+++ b/libs/angular/src/services/injection-tokens.ts
@@ -49,7 +49,7 @@ export const SYSTEM_THEME_OBSERVABLE = new SafeInjectionToken<Observable<ThemeTy
   "SYSTEM_THEME_OBSERVABLE",
 );
 export const DEFAULT_VAULT_TIMEOUT = new SafeInjectionToken<VaultTimeout>("DEFAULT_VAULT_TIMEOUT");
-export const INTRAPROCESS_MESSAGING_SUBJECT = new SafeInjectionToken<Subject<Message<object>>>(
-  "INTRAPROCESS_MESSAGING_SUBJECT",
-);
+export const INTRAPROCESS_MESSAGING_SUBJECT = new SafeInjectionToken<
+  Subject<Message<Record<string, unknown>>>
+>("INTRAPROCESS_MESSAGING_SUBJECT");
 export const CLIENT_TYPE = new SafeInjectionToken<ClientType>("CLIENT_TYPE");
diff --git a/libs/angular/src/services/jslib-services.module.ts b/libs/angular/src/services/jslib-services.module.ts
index 1f7b714fc85..60f83934af7 100644
--- a/libs/angular/src/services/jslib-services.module.ts
+++ b/libs/angular/src/services/jslib-services.module.ts
@@ -649,7 +649,7 @@ const safeProviders: SafeProvider[] = [
   safeProvider({
     provide: BroadcasterService,
     useClass: DefaultBroadcasterService,
-    deps: [MessageSender, MessageListener],
+    deps: [MessageListener],
   }),
   safeProvider({
     provide: VaultTimeoutSettingsServiceAbstraction,
@@ -1165,17 +1165,19 @@ const safeProviders: SafeProvider[] = [
   }),
   safeProvider({
     provide: INTRAPROCESS_MESSAGING_SUBJECT,
-    useFactory: () => new Subject<Message<object>>(),
+    useFactory: () => new Subject<Message<Record<string, unknown>>>(),
     deps: [],
   }),
   safeProvider({
     provide: MessageListener,
-    useFactory: (subject: Subject<Message<object>>) => new MessageListener(subject.asObservable()),
+    useFactory: (subject: Subject<Message<Record<string, unknown>>>) =>
+      new MessageListener(subject.asObservable()),
     deps: [INTRAPROCESS_MESSAGING_SUBJECT],
   }),
   safeProvider({
     provide: MessageSender,
-    useFactory: (subject: Subject<Message<object>>) => new SubjectMessageSender(subject),
+    useFactory: (subject: Subject<Message<Record<string, unknown>>>) =>
+      new SubjectMessageSender(subject),
     deps: [INTRAPROCESS_MESSAGING_SUBJECT],
   }),
   safeProvider({
diff --git a/libs/common/src/platform/abstractions/broadcaster.service.ts b/libs/common/src/platform/abstractions/broadcaster.service.ts
index 8abfb5a90c5..3afa25be90a 100644
--- a/libs/common/src/platform/abstractions/broadcaster.service.ts
+++ b/libs/common/src/platform/abstractions/broadcaster.service.ts
@@ -6,10 +6,6 @@ export interface MessageBase {
  * @deprecated Use the observable from the appropriate service instead.
  */
 export abstract class BroadcasterService {
-  /**
-   * @deprecated Use the observable from the appropriate service instead.
-   */
-  abstract send(message: MessageBase, id?: string): void;
   /**
    * @deprecated Use the observable from the appropriate service instead.
    */
diff --git a/libs/common/src/platform/messaging/helpers.spec.ts b/libs/common/src/platform/messaging/helpers.spec.ts
index fcd36b44111..8839a542ffc 100644
--- a/libs/common/src/platform/messaging/helpers.spec.ts
+++ b/libs/common/src/platform/messaging/helpers.spec.ts
@@ -12,7 +12,7 @@ describe("helpers", () => {
     });
 
     it("can get the command from a message definition", () => {
-      const commandDefinition = new CommandDefinition<object>("myCommand");
+      const commandDefinition = new CommandDefinition<Record<string, unknown>>("myCommand");
 
       const command = getCommand(commandDefinition);
 
@@ -22,9 +22,9 @@ describe("helpers", () => {
 
   describe("tag integration", () => {
     it("can tag and identify as tagged", async () => {
-      const messagesSubject = new Subject<Message<object>>();
+      const messagesSubject = new Subject<Message<Record<string, unknown>>>();
 
-      const taggedMessages = messagesSubject.asObservable().pipe(tagAsExternal);
+      const taggedMessages = messagesSubject.asObservable().pipe(tagAsExternal());
 
       const firstValuePromise = firstValueFrom(taggedMessages);
 
@@ -39,7 +39,7 @@ describe("helpers", () => {
   describe("isExternalMessage", () => {
     it.each([null, { command: "myCommand", test: "object" }, undefined] as Message<
       Record<string, unknown>
-    >[])("returns false when value is %s", (value: Message<object>) => {
+    >[])("returns false when value is %s", (value: Message<Record<string, unknown>>) => {
       expect(isExternalMessage(value)).toBe(false);
     });
   });
diff --git a/libs/common/src/platform/messaging/helpers.ts b/libs/common/src/platform/messaging/helpers.ts
index ba772e517bc..e7521ea42a2 100644
--- a/libs/common/src/platform/messaging/helpers.ts
+++ b/libs/common/src/platform/messaging/helpers.ts
@@ -1,8 +1,10 @@
-import { MonoTypeOperatorFunction, map } from "rxjs";
+import { map } from "rxjs";
 
-import { Message, CommandDefinition } from "./types";
+import { CommandDefinition } from "./types";
 
-export const getCommand = (commandDefinition: CommandDefinition<object> | string) => {
+export const getCommand = (
+  commandDefinition: CommandDefinition<Record<string, unknown>> | string,
+) => {
   if (typeof commandDefinition === "string") {
     return commandDefinition;
   } else {
@@ -16,8 +18,8 @@ export const isExternalMessage = (message: Record<PropertyKey, unknown>) => {
   return message?.[EXTERNAL_SOURCE_TAG] === true;
 };
 
-export const tagAsExternal: MonoTypeOperatorFunction<Message<object>> = map(
-  (message: Message<object>) => {
+export const tagAsExternal = <T extends Record<PropertyKey, unknown>>() => {
+  return map((message: T) => {
     return Object.assign(message, { [EXTERNAL_SOURCE_TAG]: true });
-  },
-);
+  });
+};
diff --git a/libs/common/src/platform/messaging/message.listener.ts b/libs/common/src/platform/messaging/message.listener.ts
index df453c84226..8936fe97528 100644
--- a/libs/common/src/platform/messaging/message.listener.ts
+++ b/libs/common/src/platform/messaging/message.listener.ts
@@ -11,7 +11,7 @@ import { Message, CommandDefinition } from "./types";
  * or vault data changes and those observables should be preferred over messaging.
  */
 export class MessageListener {
-  constructor(private readonly messageStream: Observable<Message<object>>) {}
+  constructor(private readonly messageStream: Observable<Message<Record<string, unknown>>>) {}
 
   /**
    * A stream of all messages sent through the application. It does not contain type information for the
@@ -28,7 +28,9 @@ export class MessageListener {
    *
    * @param commandDefinition The CommandDefinition containing the information about the message type you care about.
    */
-  messages$<T extends object>(commandDefinition: CommandDefinition<T>): Observable<T> {
+  messages$<T extends Record<string, unknown>>(
+    commandDefinition: CommandDefinition<T>,
+  ): Observable<T> {
     return this.allMessages$.pipe(
       filter((msg) => msg?.command === commandDefinition.command),
     ) as Observable<T>;
diff --git a/libs/common/src/platform/messaging/message.sender.ts b/libs/common/src/platform/messaging/message.sender.ts
index 6bf26615807..fc8ad450746 100644
--- a/libs/common/src/platform/messaging/message.sender.ts
+++ b/libs/common/src/platform/messaging/message.sender.ts
@@ -3,9 +3,9 @@ import { CommandDefinition } from "./types";
 class MultiMessageSender implements MessageSender {
   constructor(private readonly innerMessageSenders: MessageSender[]) {}
 
-  send<T extends object>(
+  send<T extends Record<string, unknown>>(
     commandDefinition: string | CommandDefinition<T>,
-    payload: object | T = {},
+    payload: Record<string, unknown> | T = {},
   ): void {
     for (const messageSender of this.innerMessageSenders) {
       messageSender.send(commandDefinition, payload);
@@ -26,7 +26,10 @@ export abstract class MessageSender {
    * @param commandDefinition
    * @param payload
    */
-  abstract send<T extends object>(commandDefinition: CommandDefinition<T>, payload: T): void;
+  abstract send<T extends Record<string, unknown>>(
+    commandDefinition: CommandDefinition<T>,
+    payload: T,
+  ): void;
 
   /**
    * A legacy method for sending messages in a non-type safe way.
@@ -38,12 +41,12 @@ export abstract class MessageSender {
    * @param payload Extra contextual information regarding the message. Be aware that this payload may
    *   be serialized and lose all prototype information.
    */
-  abstract send(command: string, payload?: object): void;
+  abstract send(command: string, payload?: Record<string, unknown>): void;
 
   /** Implementation of the other two overloads, read their docs instead. */
-  abstract send<T extends object>(
+  abstract send<T extends Record<string, unknown>>(
     commandDefinition: CommandDefinition<T> | string,
-    payload: T | object,
+    payload: T | Record<string, unknown>,
   ): void;
 
   /**
diff --git a/libs/common/src/platform/messaging/subject-message.sender.ts b/libs/common/src/platform/messaging/subject-message.sender.ts
index 94ae6f27f3c..170f8a24c6f 100644
--- a/libs/common/src/platform/messaging/subject-message.sender.ts
+++ b/libs/common/src/platform/messaging/subject-message.sender.ts
@@ -5,11 +5,11 @@ import { MessageSender } from "./message.sender";
 import { Message, CommandDefinition } from "./types";
 
 export class SubjectMessageSender implements MessageSender {
-  constructor(private readonly messagesSubject: Subject<Message<object>>) {}
+  constructor(private readonly messagesSubject: Subject<Message<Record<string, unknown>>>) {}
 
-  send<T extends object>(
+  send<T extends Record<string, unknown>>(
     commandDefinition: string | CommandDefinition<T>,
-    payload: object | T = {},
+    payload: Record<string, unknown> | T = {},
   ): void {
     const command = getCommand(commandDefinition);
     this.messagesSubject.next(Object.assign(payload ?? {}, { command: command }));
diff --git a/libs/common/src/platform/messaging/types.ts b/libs/common/src/platform/messaging/types.ts
index f30163344fd..0461132a0a8 100644
--- a/libs/common/src/platform/messaging/types.ts
+++ b/libs/common/src/platform/messaging/types.ts
@@ -5,9 +5,9 @@ declare const tag: unique symbol;
  * alonside `MessageSender` and `MessageListener` for providing a type
  * safe(-ish) way of sending and receiving messages.
  */
-export class CommandDefinition<T extends object> {
+export class CommandDefinition<T extends Record<string, unknown>> {
   [tag]: T;
   constructor(readonly command: string) {}
 }
 
-export type Message<T extends object> = { command: string } & T;
+export type Message<T extends Record<string, unknown>> = { command: string } & T;
diff --git a/libs/common/src/platform/services/default-broadcaster.service.ts b/libs/common/src/platform/services/default-broadcaster.service.ts
index a16745c643d..6ec4f2be953 100644
--- a/libs/common/src/platform/services/default-broadcaster.service.ts
+++ b/libs/common/src/platform/services/default-broadcaster.service.ts
@@ -1,7 +1,7 @@
 import { Subscription } from "rxjs";
 
 import { BroadcasterService, MessageBase } from "../abstractions/broadcaster.service";
-import { MessageListener, MessageSender } from "../messaging";
+import { MessageListener } from "../messaging";
 
 /**
  * Temporary implementation that just delegates to the message sender and message listener
@@ -10,14 +10,7 @@ import { MessageListener, MessageSender } from "../messaging";
 export class DefaultBroadcasterService implements BroadcasterService {
   subscriptions = new Map<string, Subscription>();
 
-  constructor(
-    private readonly messageSender: MessageSender,
-    private readonly messageListener: MessageListener,
-  ) {}
-
-  send(message: MessageBase, id?: string) {
-    this.messageSender.send(message?.command, message);
-  }
+  constructor(private readonly messageListener: MessageListener) {}
 
   subscribe(id: string, messageCallback: (message: MessageBase) => void) {
     this.subscriptions.set(

From a7aaa140fd6489742fe5d6f9d909de778523c4a0 Mon Sep 17 00:00:00 2001
From: Cesar Gonzalez <cesar.a.gonzalezcs@gmail.com>
Date: Wed, 29 May 2024 11:35:17 -0500
Subject: [PATCH 024/138] [PM-8322] Firefox Inline Autofill Menu Not
 Propagating Correctly When  Switching Tabs (#9300)

* [PM-8322] Firefox Inline Autofill Menu Not Propagation Correctly When Switching Tabs

* [PM-8322] Firefox Inline Autofill Menu Not Propagation Correctly When Switching Tabs

* Add missing RouterModule to the CurrentAccountComponent (#9295)

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>

* [PM-6825] Browser Refresh - Initial List Items (#9199)

* [PM-6825] Add temporary vault page header

* [PM-6825] Expose cipherViews$ observable

* [PM-6825] Refactor getAllDecryptedForUrl to expose filter functionality for reuse

* [PM-6825] Introduce VaultPopupItemsService

* [PM-6825] Introduce initial VaultListItem and VaultListItemsContainer components

* [PM-6825] Add VaultListItems to VaultV2 component

* [PM-6825] Introduce autofill-vault-list-items.component to encapsulate autofill logic

* [PM-6825] Add temporary Vault icon

* [PM-6825] Add empty and no results states to Vault tab

* [PM-6825] Add unit tests for vault popup items service

* [PM-6825] Negate noFilteredResults placeholder

* [PM-6825] Cleanup new Vault components

* [PM-6825] Move new components into its own module

* [PM-6825] Fix missing button type

* [PM-6825] Add booleanAttribute to showAutofill input

* [PM-6825] Replace empty refresh BehaviorSubject with Subject

* [PM-6825] Combine *ngIfs for vault list items container

* [PM-6825] Use popup-section-header component

* [PM-6825] Use small variant for icon buttons

* [PM-6825] Use anchor tag for vault items

* [PM-6825] Consolidate vault-list-items-container to include list item component functionality directly

* [PM-6825] Add Tailwind classes to new Vault icon

* [PM-6825] Remove temporary header comment

* [PM-6825] Fix auto fill suggestion font size and padding

* [PM-6825] Use tailwind for vault icon styling

* [PM-6825] Add libs/angular to tailwind.config content

* [PM-6825] Cleanup missing i18n

* [PM-6825] Make VaultV2 standalone and cleanup Browser App module

* [PM-6825] Use explicit type annotation

* [PM-6825] Use property binding instead of interpolation

* [PM-7076] Create settings-v2.component (#9213)

* Create settings-v2.component

Create new settings page
Add routing based on extension refresh flag

* Wrap anchors around the icons

* Add account-switcher to settings page

---------

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>

* [PM-8289] Inline menu content script does not update when user updates setting (#9279)

* [PM-8289] Inline menu content script does not update whne user updates setting

* [PM-8289] Fixing issue present within Jest tests

* [PM-8289] Triggering a reload of autofill scripts when a user logs into their account

---------

Co-authored-by: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
Co-authored-by: Shane Melton <smelton@bitwarden.com>
---
 .../abstractions/overlay.background.ts        |  7 +-
 .../background/overlay.background.spec.ts     | 70 ++++++++++++---
 .../autofill/background/overlay.background.ts | 89 ++++++++++++++-----
 .../autofill-overlay-content.service.ts       |  8 +-
 .../src/autofill/spec/autofill-mocks.ts       |  1 +
 5 files changed, 136 insertions(+), 39 deletions(-)

diff --git a/apps/browser/src/autofill/background/abstractions/overlay.background.ts b/apps/browser/src/autofill/background/abstractions/overlay.background.ts
index 1ceeed60a99..c9b230fe18c 100644
--- a/apps/browser/src/autofill/background/abstractions/overlay.background.ts
+++ b/apps/browser/src/autofill/background/abstractions/overlay.background.ts
@@ -42,6 +42,7 @@ type OverlayPortMessage = {
 type FocusedFieldData = {
   focusedFieldStyles: Partial<CSSStyleDeclaration>;
   focusedFieldRects: Partial<DOMRect>;
+  tabId?: number;
 };
 
 type OverlayCipherData = {
@@ -66,14 +67,14 @@ type BackgroundOnMessageHandlerParams = BackgroundMessageParam & BackgroundSende
 type OverlayBackgroundExtensionMessageHandlers = {
   [key: string]: CallableFunction;
   openAutofillOverlay: () => void;
-  autofillOverlayElementClosed: ({ message }: BackgroundMessageParam) => void;
+  autofillOverlayElementClosed: ({ message, sender }: BackgroundOnMessageHandlerParams) => void;
   autofillOverlayAddNewVaultItem: ({ message, sender }: BackgroundOnMessageHandlerParams) => void;
   getAutofillOverlayVisibility: () => void;
   checkAutofillOverlayFocused: () => void;
   focusAutofillOverlayList: () => void;
-  updateAutofillOverlayPosition: ({ message }: BackgroundMessageParam) => void;
+  updateAutofillOverlayPosition: ({ message, sender }: BackgroundOnMessageHandlerParams) => void;
   updateAutofillOverlayHidden: ({ message }: BackgroundMessageParam) => void;
-  updateFocusedFieldData: ({ message }: BackgroundMessageParam) => void;
+  updateFocusedFieldData: ({ message, sender }: BackgroundOnMessageHandlerParams) => void;
   collectPageDetailsResponse: ({ message, sender }: BackgroundOnMessageHandlerParams) => void;
   unlockCompleted: ({ message }: BackgroundMessageParam) => void;
   addEditCipherSubmitted: () => void;
diff --git a/apps/browser/src/autofill/background/overlay.background.spec.ts b/apps/browser/src/autofill/background/overlay.background.spec.ts
index 9f4da8f21f3..05d63b21d19 100644
--- a/apps/browser/src/autofill/background/overlay.background.spec.ts
+++ b/apps/browser/src/autofill/background/overlay.background.spec.ts
@@ -517,7 +517,7 @@ describe("OverlayBackground", () => {
 
       expect(returnValue).toBe(undefined);
       expect(sendResponse).not.toHaveBeenCalled();
-      expect(overlayBackground["overlayElementClosed"]).toHaveBeenCalledWith(message);
+      expect(overlayBackground["overlayElementClosed"]).toHaveBeenCalledWith(message, sender);
     });
 
     it("will return a response if the message handler returns a response", async () => {
@@ -570,6 +570,26 @@ describe("OverlayBackground", () => {
           await initOverlayElementPorts();
         });
 
+        it("disconnects any expired ports if the sender is not from the same page as the most recently focused field", () => {
+          const port1 = mock<chrome.runtime.Port>();
+          const port2 = mock<chrome.runtime.Port>();
+          overlayBackground["expiredPorts"] = [port1, port2];
+          const sender = mock<chrome.runtime.MessageSender>({ tab: { id: 1 } });
+          const focusedFieldData = createFocusedFieldDataMock({ tabId: 2 });
+          sendExtensionRuntimeMessage({ command: "updateFocusedFieldData", focusedFieldData });
+
+          sendExtensionRuntimeMessage(
+            {
+              command: "autofillOverlayElementClosed",
+              overlayElement: AutofillOverlayElement.Button,
+            },
+            sender,
+          );
+
+          expect(port1.disconnect).toHaveBeenCalled();
+          expect(port2.disconnect).toHaveBeenCalled();
+        });
+
         it("disconnects the button element port", () => {
           sendExtensionRuntimeMessage({
             command: "autofillOverlayElementClosed",
@@ -729,6 +749,23 @@ describe("OverlayBackground", () => {
           });
         });
 
+        it("skips updating the position if the most recently focused field is different than the message sender", () => {
+          const sender = mock<chrome.runtime.MessageSender>({ tab: { id: 1 } });
+          const focusedFieldData = createFocusedFieldDataMock({ tabId: 2 });
+          sendExtensionRuntimeMessage({ command: "updateFocusedFieldData", focusedFieldData });
+
+          sendExtensionRuntimeMessage({ command: "updateAutofillOverlayPosition" }, sender);
+
+          expect(listPortSpy.postMessage).not.toHaveBeenCalledWith({
+            command: "updateIframePosition",
+            styles: expect.anything(),
+          });
+          expect(buttonPortSpy.postMessage).not.toHaveBeenCalledWith({
+            command: "updateIframePosition",
+            styles: expect.anything(),
+          });
+        });
+
         it("updates the overlay button's position", () => {
           const focusedFieldData = createFocusedFieldDataMock();
           sendExtensionRuntimeMessage({ command: "updateFocusedFieldData", focusedFieldData });
@@ -796,12 +833,14 @@ describe("OverlayBackground", () => {
         });
 
         it("will post a message to the overlay list facilitating an update of the list's position", () => {
+          const sender = mock<chrome.runtime.MessageSender>({ tab: { id: 1 } });
           const focusedFieldData = createFocusedFieldDataMock();
           sendExtensionRuntimeMessage({ command: "updateFocusedFieldData", focusedFieldData });
 
-          overlayBackground["updateOverlayPosition"]({
-            overlayElement: AutofillOverlayElement.List,
-          });
+          overlayBackground["updateOverlayPosition"](
+            { overlayElement: AutofillOverlayElement.List },
+            sender,
+          );
           sendExtensionRuntimeMessage({
             command: "updateAutofillOverlayPosition",
             overlayElement: AutofillOverlayElement.List,
@@ -1017,9 +1056,10 @@ describe("OverlayBackground", () => {
       expect(chrome.runtime.getURL).toHaveBeenCalledWith("overlay/list.css");
       expect(overlayBackground["getTranslations"]).toHaveBeenCalled();
       expect(overlayBackground["getOverlayCipherData"]).toHaveBeenCalled();
-      expect(overlayBackground["updateOverlayPosition"]).toHaveBeenCalledWith({
-        overlayElement: AutofillOverlayElement.List,
-      });
+      expect(overlayBackground["updateOverlayPosition"]).toHaveBeenCalledWith(
+        { overlayElement: AutofillOverlayElement.List },
+        listPortSpy.sender,
+      );
     });
 
     it("sets up the overlay button port if the port connection is for the overlay button", async () => {
@@ -1032,9 +1072,19 @@ describe("OverlayBackground", () => {
       expect(overlayBackground["getAuthStatus"]).toHaveBeenCalled();
       expect(chrome.runtime.getURL).toHaveBeenCalledWith("overlay/button.css");
       expect(overlayBackground["getTranslations"]).toHaveBeenCalled();
-      expect(overlayBackground["updateOverlayPosition"]).toHaveBeenCalledWith({
-        overlayElement: AutofillOverlayElement.Button,
-      });
+      expect(overlayBackground["updateOverlayPosition"]).toHaveBeenCalledWith(
+        { overlayElement: AutofillOverlayElement.Button },
+        buttonPortSpy.sender,
+      );
+    });
+
+    it("stores an existing overlay port so that it can be disconnected at a later time", async () => {
+      overlayBackground["overlayButtonPort"] = mock<chrome.runtime.Port>();
+
+      await initOverlayElementPorts({ initList: false, initButton: true });
+      await flushPromises();
+
+      expect(overlayBackground["expiredPorts"].length).toBe(1);
     });
 
     it("gets the system theme", async () => {
diff --git a/apps/browser/src/autofill/background/overlay.background.ts b/apps/browser/src/autofill/background/overlay.background.ts
index 0e4abcd82d0..56f6a3a2158 100644
--- a/apps/browser/src/autofill/background/overlay.background.ts
+++ b/apps/browser/src/autofill/background/overlay.background.ts
@@ -54,19 +54,22 @@ class OverlayBackground implements OverlayBackgroundInterface {
   private userAuthStatus: AuthenticationStatus = AuthenticationStatus.LoggedOut;
   private overlayButtonPort: chrome.runtime.Port;
   private overlayListPort: chrome.runtime.Port;
+  private expiredPorts: chrome.runtime.Port[] = [];
   private focusedFieldData: FocusedFieldData;
   private overlayPageTranslations: Record<string, string>;
   private iconsServerUrl: string;
   private readonly extensionMessageHandlers: OverlayBackgroundExtensionMessageHandlers = {
     openAutofillOverlay: () => this.openOverlay(false),
-    autofillOverlayElementClosed: ({ message }) => this.overlayElementClosed(message),
+    autofillOverlayElementClosed: ({ message, sender }) =>
+      this.overlayElementClosed(message, sender),
     autofillOverlayAddNewVaultItem: ({ message, sender }) => this.addNewVaultItem(message, sender),
     getAutofillOverlayVisibility: () => this.getOverlayVisibility(),
     checkAutofillOverlayFocused: () => this.checkOverlayFocused(),
     focusAutofillOverlayList: () => this.focusOverlayList(),
-    updateAutofillOverlayPosition: ({ message }) => this.updateOverlayPosition(message),
+    updateAutofillOverlayPosition: ({ message, sender }) =>
+      this.updateOverlayPosition(message, sender),
     updateAutofillOverlayHidden: ({ message }) => this.updateOverlayHidden(message),
-    updateFocusedFieldData: ({ message }) => this.setFocusedFieldData(message),
+    updateFocusedFieldData: ({ message, sender }) => this.setFocusedFieldData(message, sender),
     collectPageDetailsResponse: ({ message, sender }) => this.storePageDetails(message, sender),
     unlockCompleted: ({ message }) => this.unlockCompleted(message),
     addEditCipherSubmitted: () => this.updateOverlayCiphers(),
@@ -302,8 +305,18 @@ class OverlayBackground implements OverlayBackgroundInterface {
    * the list and button ports and sets them to null.
    *
    * @param overlayElement - The overlay element that was closed, either the list or button
+   * @param sender - The sender of the port message
    */
-  private overlayElementClosed({ overlayElement }: OverlayBackgroundExtensionMessage) {
+  private overlayElementClosed(
+    { overlayElement }: OverlayBackgroundExtensionMessage,
+    sender: chrome.runtime.MessageSender,
+  ) {
+    if (sender.tab.id !== this.focusedFieldData?.tabId) {
+      this.expiredPorts.forEach((port) => port.disconnect());
+      this.expiredPorts = [];
+      return;
+    }
+
     if (overlayElement === AutofillOverlayElement.Button) {
       this.overlayButtonPort?.disconnect();
       this.overlayButtonPort = null;
@@ -320,9 +333,13 @@ class OverlayBackground implements OverlayBackgroundInterface {
    * is based on the focused field's position and dimensions.
    *
    * @param overlayElement - The overlay element to update, either the list or button
+   * @param sender - The sender of the port message
    */
-  private updateOverlayPosition({ overlayElement }: { overlayElement?: string }) {
-    if (!overlayElement) {
+  private updateOverlayPosition(
+    { overlayElement }: { overlayElement?: string },
+    sender: chrome.runtime.MessageSender,
+  ) {
+    if (!overlayElement || sender.tab.id !== this.focusedFieldData?.tabId) {
       return;
     }
 
@@ -396,9 +413,13 @@ class OverlayBackground implements OverlayBackgroundInterface {
    * Sets the focused field data to the data passed in the extension message.
    *
    * @param focusedFieldData - Contains the rects and styles of the focused field.
+   * @param sender - The sender of the extension message
    */
-  private setFocusedFieldData({ focusedFieldData }: OverlayBackgroundExtensionMessage) {
-    this.focusedFieldData = focusedFieldData;
+  private setFocusedFieldData(
+    { focusedFieldData }: OverlayBackgroundExtensionMessage,
+    sender: chrome.runtime.MessageSender,
+  ) {
+    this.focusedFieldData = { ...focusedFieldData, tabId: sender.tab.id };
   }
 
   /**
@@ -690,17 +711,11 @@ class OverlayBackground implements OverlayBackgroundInterface {
   private handlePortOnConnect = async (port: chrome.runtime.Port) => {
     const isOverlayListPort = port.name === AutofillOverlayPort.List;
     const isOverlayButtonPort = port.name === AutofillOverlayPort.Button;
-
     if (!isOverlayListPort && !isOverlayButtonPort) {
       return;
     }
 
-    if (isOverlayListPort) {
-      this.overlayListPort = port;
-    } else {
-      this.overlayButtonPort = port;
-    }
-
+    this.storeOverlayPort(port);
     port.onMessage.addListener(this.handleOverlayElementPortMessage);
     port.postMessage({
       command: `initAutofillOverlay${isOverlayListPort ? "List" : "Button"}`,
@@ -710,13 +725,47 @@ class OverlayBackground implements OverlayBackgroundInterface {
       translations: this.getTranslations(),
       ciphers: isOverlayListPort ? await this.getOverlayCipherData() : null,
     });
-    this.updateOverlayPosition({
-      overlayElement: isOverlayListPort
-        ? AutofillOverlayElement.List
-        : AutofillOverlayElement.Button,
-    });
+    this.updateOverlayPosition(
+      {
+        overlayElement: isOverlayListPort
+          ? AutofillOverlayElement.List
+          : AutofillOverlayElement.Button,
+      },
+      port.sender,
+    );
   };
 
+  /**
+   * Stores the connected overlay port and sets up any existing ports to be disconnected.
+   *
+   * @param port - The port to store
+|   */
+  private storeOverlayPort(port: chrome.runtime.Port) {
+    if (port.name === AutofillOverlayPort.List) {
+      this.storeExpiredOverlayPort(this.overlayListPort);
+      this.overlayListPort = port;
+      return;
+    }
+
+    if (port.name === AutofillOverlayPort.Button) {
+      this.storeExpiredOverlayPort(this.overlayButtonPort);
+      this.overlayButtonPort = port;
+    }
+  }
+
+  /**
+   * When registering a new connection, we want to ensure that the port is disconnected.
+   * This method places an existing port in the expiredPorts array to be disconnected
+   * at a later time.
+   *
+   * @param port - The port to store in the expiredPorts array
+   */
+  private storeExpiredOverlayPort(port: chrome.runtime.Port | null) {
+    if (port) {
+      this.expiredPorts.push(port);
+    }
+  }
+
   /**
    * Handles messages sent to the overlay list or button ports.
    *
diff --git a/apps/browser/src/autofill/services/autofill-overlay-content.service.ts b/apps/browser/src/autofill/services/autofill-overlay-content.service.ts
index 4b786e6ca31..43c0817eaf2 100644
--- a/apps/browser/src/autofill/services/autofill-overlay-content.service.ts
+++ b/apps/browser/src/autofill/services/autofill-overlay-content.service.ts
@@ -186,9 +186,7 @@ class AutofillOverlayContentService implements AutofillOverlayContentServiceInte
 
     this.overlayButtonElement.remove();
     this.isOverlayButtonVisible = false;
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    this.sendExtensionMessage("autofillOverlayElementClosed", {
+    void this.sendExtensionMessage("autofillOverlayElementClosed", {
       overlayElement: AutofillOverlayElement.Button,
     });
     this.removeOverlayRepositionEventListeners();
@@ -204,9 +202,7 @@ class AutofillOverlayContentService implements AutofillOverlayContentServiceInte
 
     this.overlayListElement.remove();
     this.isOverlayListVisible = false;
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    this.sendExtensionMessage("autofillOverlayElementClosed", {
+    void this.sendExtensionMessage("autofillOverlayElementClosed", {
       overlayElement: AutofillOverlayElement.List,
     });
   }
diff --git a/apps/browser/src/autofill/spec/autofill-mocks.ts b/apps/browser/src/autofill/spec/autofill-mocks.ts
index 9c957f6b1be..021b7719b2b 100644
--- a/apps/browser/src/autofill/spec/autofill-mocks.ts
+++ b/apps/browser/src/autofill/spec/autofill-mocks.ts
@@ -249,6 +249,7 @@ function createFocusedFieldDataMock(customFields = {}) {
       paddingRight: "6px",
       paddingLeft: "6px",
     },
+    tabId: 1,
     ...customFields,
   };
 }

From 2098f42400e5e996f2bd394ae2b4d04773a81f4a Mon Sep 17 00:00:00 2001
From: aj-rosado <109146700+aj-rosado@users.noreply.github.com>
Date: Wed, 29 May 2024 17:39:55 +0100
Subject: [PATCH 025/138] [PM-7875] Add log to which step parse failed on
 LastPass import (#9264)

* Added step info regarding where the parse accounts throw the error

* standardized the step to be always set
---
 .../lastpass/access/services/parser.ts         | 18 +++++++++++++++++-
 1 file changed, 17 insertions(+), 1 deletion(-)

diff --git a/libs/importer/src/importers/lastpass/access/services/parser.ts b/libs/importer/src/importers/lastpass/access/services/parser.ts
index 83d56832290..19ef55bc739 100644
--- a/libs/importer/src/importers/lastpass/access/services/parser.ts
+++ b/libs/importer/src/importers/lastpass/access/services/parser.ts
@@ -33,6 +33,7 @@ export class Parser {
     options: ParserOptions,
   ): Promise<Account> {
     let id: string;
+    let step = 0;
     try {
       const placeholder = "decryption failed";
       const reader = new BinaryReader(chunk.payload);
@@ -42,6 +43,7 @@ export class Parser {
       id = Utils.fromBufferToUtf8(this.readItem(reader));
 
       // 1: name
+      step = 1;
       const name = await this.cryptoUtils.decryptAes256PlainWithDefault(
         this.readItem(reader),
         encryptionKey,
@@ -49,6 +51,7 @@ export class Parser {
       );
 
       // 2: group
+      step = 2;
       const group = await this.cryptoUtils.decryptAes256PlainWithDefault(
         this.readItem(reader),
         encryptionKey,
@@ -56,6 +59,7 @@ export class Parser {
       );
 
       // 3: url
+      step = 3;
       let url = Utils.fromBufferToUtf8(
         this.decodeHexLoose(Utils.fromBufferToUtf8(this.readItem(reader))),
       );
@@ -66,6 +70,7 @@ export class Parser {
       }
 
       // 4: extra (notes)
+      step = 4;
       const notes = await this.cryptoUtils.decryptAes256PlainWithDefault(
         this.readItem(reader),
         encryptionKey,
@@ -73,12 +78,14 @@ export class Parser {
       );
 
       // 5: fav (is favorite)
+      step = 5;
       const isFavorite = Utils.fromBufferToUtf8(this.readItem(reader)) === "1";
 
       // 6: sharedfromaid (?)
       this.skipItem(reader);
 
       // 7: username
+      step = 7;
       let username = await this.cryptoUtils.decryptAes256PlainWithDefault(
         this.readItem(reader),
         encryptionKey,
@@ -86,6 +93,7 @@ export class Parser {
       );
 
       // 8: password
+      step = 8;
       let password = await this.cryptoUtils.decryptAes256PlainWithDefault(
         this.readItem(reader),
         encryptionKey,
@@ -99,6 +107,7 @@ export class Parser {
       this.skipItem(reader);
 
       // 11: sn (is secure note)
+      step = 11;
       const isSecureNote = Utils.fromBufferToUtf8(this.readItem(reader)) === "1";
 
       // Parse secure note
@@ -214,6 +223,7 @@ export class Parser {
       this.skipItem(reader);
 
       // 39: totp (?)
+      step = 39;
       const totp = await this.cryptoUtils.decryptAes256PlainWithDefault(
         this.readItem(reader),
         encryptionKey,
@@ -227,6 +237,7 @@ export class Parser {
       // 42: last_credential_monitoring_stat (?)
 
       // Adjust the path to include the group and the shared folder, if any.
+      step = 42;
       const path = this.makeAccountPath(group, folder);
 
       const account = new Account();
@@ -243,7 +254,12 @@ export class Parser {
       return account;
     } catch (err) {
       throw new Error(
-        "Error parsing accounts on item with ID:" + id + " errorMessage: " + err.message,
+        "Error parsing accounts on item with ID:" +
+          id +
+          " step #" +
+          step +
+          " errorMessage: " +
+          err.message,
       );
     }
   }

From d8ee878ab3765152125d00f6f3b39f17dfc0243e Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Wed, 29 May 2024 20:11:45 +0000
Subject: [PATCH 026/138] Autosync the updated translations (#9418)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/desktop/src/locales/af/messages.json    |  24 +++
 apps/desktop/src/locales/ar/messages.json    |  24 +++
 apps/desktop/src/locales/az/messages.json    |  32 +++-
 apps/desktop/src/locales/be/messages.json    |  24 +++
 apps/desktop/src/locales/bg/messages.json    |  32 +++-
 apps/desktop/src/locales/bn/messages.json    |  24 +++
 apps/desktop/src/locales/bs/messages.json    |  24 +++
 apps/desktop/src/locales/ca/messages.json    |  24 +++
 apps/desktop/src/locales/cs/messages.json    |  32 +++-
 apps/desktop/src/locales/cy/messages.json    |  24 +++
 apps/desktop/src/locales/da/messages.json    |  24 +++
 apps/desktop/src/locales/de/messages.json    |  50 +++--
 apps/desktop/src/locales/el/messages.json    |  24 +++
 apps/desktop/src/locales/en_GB/messages.json |  24 +++
 apps/desktop/src/locales/en_IN/messages.json |  24 +++
 apps/desktop/src/locales/eo/messages.json    |  24 +++
 apps/desktop/src/locales/es/messages.json    |  32 +++-
 apps/desktop/src/locales/et/messages.json    |  24 +++
 apps/desktop/src/locales/eu/messages.json    |  24 +++
 apps/desktop/src/locales/fa/messages.json    |  24 +++
 apps/desktop/src/locales/fi/messages.json    |  32 +++-
 apps/desktop/src/locales/fil/messages.json   |  24 +++
 apps/desktop/src/locales/fr/messages.json    |  24 +++
 apps/desktop/src/locales/gl/messages.json    |  24 +++
 apps/desktop/src/locales/he/messages.json    |  24 +++
 apps/desktop/src/locales/hi/messages.json    |  24 +++
 apps/desktop/src/locales/hr/messages.json    |  24 +++
 apps/desktop/src/locales/hu/messages.json    |  32 +++-
 apps/desktop/src/locales/id/messages.json    |  24 +++
 apps/desktop/src/locales/it/messages.json    |  32 +++-
 apps/desktop/src/locales/ja/messages.json    |  32 +++-
 apps/desktop/src/locales/ka/messages.json    |  24 +++
 apps/desktop/src/locales/km/messages.json    |  24 +++
 apps/desktop/src/locales/kn/messages.json    |  24 +++
 apps/desktop/src/locales/ko/messages.json    |  24 +++
 apps/desktop/src/locales/lt/messages.json    |  24 +++
 apps/desktop/src/locales/lv/messages.json    |  32 +++-
 apps/desktop/src/locales/me/messages.json    |  24 +++
 apps/desktop/src/locales/ml/messages.json    |  24 +++
 apps/desktop/src/locales/mr/messages.json    |  24 +++
 apps/desktop/src/locales/my/messages.json    |  24 +++
 apps/desktop/src/locales/nb/messages.json    |  24 +++
 apps/desktop/src/locales/ne/messages.json    | 182 +++++++++++--------
 apps/desktop/src/locales/nl/messages.json    |  24 +++
 apps/desktop/src/locales/nn/messages.json    |  24 +++
 apps/desktop/src/locales/or/messages.json    |  24 +++
 apps/desktop/src/locales/pl/messages.json    |  24 +++
 apps/desktop/src/locales/pt_BR/messages.json |  32 +++-
 apps/desktop/src/locales/pt_PT/messages.json |  32 +++-
 apps/desktop/src/locales/ro/messages.json    |  24 +++
 apps/desktop/src/locales/ru/messages.json    |  24 +++
 apps/desktop/src/locales/si/messages.json    |  24 +++
 apps/desktop/src/locales/sk/messages.json    |  32 +++-
 apps/desktop/src/locales/sl/messages.json    |  24 +++
 apps/desktop/src/locales/sr/messages.json    |  32 +++-
 apps/desktop/src/locales/sv/messages.json    | 104 +++++++----
 apps/desktop/src/locales/te/messages.json    |  24 +++
 apps/desktop/src/locales/th/messages.json    |  24 +++
 apps/desktop/src/locales/tr/messages.json    |  24 +++
 apps/desktop/src/locales/uk/messages.json    |  52 ++++--
 apps/desktop/src/locales/vi/messages.json    |  24 +++
 apps/desktop/src/locales/zh_CN/messages.json |  36 +++-
 apps/desktop/src/locales/zh_TW/messages.json |  24 +++
 63 files changed, 1716 insertions(+), 204 deletions(-)

diff --git a/apps/desktop/src/locales/af/messages.json b/apps/desktop/src/locales/af/messages.json
index 1601a2ba8fd..28efbc7de4e 100644
--- a/apps/desktop/src/locales/af/messages.json
+++ b/apps/desktop/src/locales/af/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Verander rekening"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Opsies"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Aan teken versoek"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Ontblote Hoofwagwoord"
   },
diff --git a/apps/desktop/src/locales/ar/messages.json b/apps/desktop/src/locales/ar/messages.json
index f94b869503f..25a91b95b6c 100644
--- a/apps/desktop/src/locales/ar/messages.json
+++ b/apps/desktop/src/locales/ar/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "تبديل الحساب"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "الخيارات"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "طلب تسجيل الدخول"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "كلمة المرور الرئيسية مكشوفة"
   },
diff --git a/apps/desktop/src/locales/az/messages.json b/apps/desktop/src/locales/az/messages.json
index bfeacdeafd9..c26e49d743c 100644
--- a/apps/desktop/src/locales/az/messages.json
+++ b/apps/desktop/src/locales/az/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Hesabı dəyişdir"
   },
+  "alreadyHaveAccount": {
+    "message": "Artıq hesabınız var?"
+  },
   "options": {
     "message": "Seçimlər"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Giriş tələb olundu"
   },
+  "creatingAccountOn": {
+    "message": "Hesab yaradılır"
+  },
+  "checkYourEmail": {
+    "message": "E-poçtunuzu yoxlayın"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Göndərilən e-poçtdakı keçidi izləyin"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "və hesabınızı yaratmağa davam edin."
+  },
+  "noEmail": {
+    "message": "E-poçt yoxdur?"
+  },
+  "goBack": {
+    "message": "Geri qayıt"
+  },
+  "toEditYourEmailAddress": {
+    "message": "və e-poçt ünvanına düzəliş et."
+  },
   "exposedMasterPassword": {
     "message": "İfşa olunmuş ana parol"
   },
@@ -2824,7 +2848,7 @@
     "message": "Hədəf qovluğa təyin etmə xətası."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "$NAME$ daxilindəki elementlərə bax",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2834,7 +2858,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Geri qayıt: $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2844,11 +2868,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Geri",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Sil: $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/be/messages.json b/apps/desktop/src/locales/be/messages.json
index 4ece988a001..0371f3bcebb 100644
--- a/apps/desktop/src/locales/be/messages.json
+++ b/apps/desktop/src/locales/be/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Пераключыць уліковы запіс"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Параметры"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Запытаны ўваход"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Скампраметаваны асноўны пароль"
   },
diff --git a/apps/desktop/src/locales/bg/messages.json b/apps/desktop/src/locales/bg/messages.json
index 1c739acde18..071399419c7 100644
--- a/apps/desktop/src/locales/bg/messages.json
+++ b/apps/desktop/src/locales/bg/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Превключване на потребителя"
   },
+  "alreadyHaveAccount": {
+    "message": "Вече имате регистрация?"
+  },
   "options": {
     "message": "Настройки"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Направена е заявка за вписване"
   },
+  "creatingAccountOn": {
+    "message": "Създаване на регистрация в"
+  },
+  "checkYourEmail": {
+    "message": "Проверете е-пощата си"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Последвайте връзката в е-писмото изпратено до"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "и продължете със създаването на регистрацията си."
+  },
+  "noEmail": {
+    "message": "Не сте получили е-писмо?"
+  },
+  "goBack": {
+    "message": "Върнете се назад"
+  },
+  "toEditYourEmailAddress": {
+    "message": ", за да редактирате адреса на е-пощата си."
+  },
   "exposedMasterPassword": {
     "message": "Разобличена главна парола"
   },
@@ -2824,7 +2848,7 @@
     "message": "Грешка при задаването на целева папка."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Преглед на елементите в $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2834,7 +2858,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Назад към $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2844,11 +2868,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Назад",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Премахване на $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/bn/messages.json b/apps/desktop/src/locales/bn/messages.json
index 30dfd127778..a6f0e712063 100644
--- a/apps/desktop/src/locales/bn/messages.json
+++ b/apps/desktop/src/locales/bn/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/bs/messages.json b/apps/desktop/src/locales/bs/messages.json
index 34fb1f6e8d0..1a489ea397d 100644
--- a/apps/desktop/src/locales/bs/messages.json
+++ b/apps/desktop/src/locales/bs/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/ca/messages.json b/apps/desktop/src/locales/ca/messages.json
index 68887770391..e55128ceeb4 100644
--- a/apps/desktop/src/locales/ca/messages.json
+++ b/apps/desktop/src/locales/ca/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Canvia de compte"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Opcions"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "S'ha sol·licitat inici de sessió"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Contrasenya mestra exposada"
   },
diff --git a/apps/desktop/src/locales/cs/messages.json b/apps/desktop/src/locales/cs/messages.json
index 03f0a1e4b36..b5f2a4f5f0c 100644
--- a/apps/desktop/src/locales/cs/messages.json
+++ b/apps/desktop/src/locales/cs/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Přepnout účet"
   },
+  "alreadyHaveAccount": {
+    "message": "Už máte účet?"
+  },
   "options": {
     "message": "Volby"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Bylo vyžádáno přihlášení"
   },
+  "creatingAccountOn": {
+    "message": "Vytváření účtu na"
+  },
+  "checkYourEmail": {
+    "message": "Zkontrolujte Váš e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Následujte pokyny v e-mailu poslaném na"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "a pokračujte ve vytváření Vašeho účtu."
+  },
+  "noEmail": {
+    "message": "Žádný e-mail?"
+  },
+  "goBack": {
+    "message": "Zpět"
+  },
+  "toEditYourEmailAddress": {
+    "message": "pro úpravu Vaší e-mailové adresy."
+  },
   "exposedMasterPassword": {
     "message": "Odhalené hlavní heslo"
   },
@@ -2824,7 +2848,7 @@
     "message": "Chyba při přiřazování cílové složky."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Zobrazit položky v $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2834,7 +2858,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Zpět do $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2844,11 +2868,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Zpět",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Odebrat $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/cy/messages.json b/apps/desktop/src/locales/cy/messages.json
index 0124bb3a6f5..aeb76cba552 100644
--- a/apps/desktop/src/locales/cy/messages.json
+++ b/apps/desktop/src/locales/cy/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/da/messages.json b/apps/desktop/src/locales/da/messages.json
index b5e65f44197..8965c8e2a12 100644
--- a/apps/desktop/src/locales/da/messages.json
+++ b/apps/desktop/src/locales/da/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Skift konto"
   },
+  "alreadyHaveAccount": {
+    "message": "Har allerede en konto?"
+  },
   "options": {
     "message": "Indstillinger"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Login anmodet"
   },
+  "creatingAccountOn": {
+    "message": "Opretter konto på"
+  },
+  "checkYourEmail": {
+    "message": "Tjek din e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Følg linket i e-mailen sendt til"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "og fortsæt med kontooprettelsen."
+  },
+  "noEmail": {
+    "message": "Ingen e-mail?"
+  },
+  "goBack": {
+    "message": "Gå tilbage"
+  },
+  "toEditYourEmailAddress": {
+    "message": "for at redigere e-mailadressen."
+  },
   "exposedMasterPassword": {
     "message": "Kompromitteret hovedadgangskode"
   },
diff --git a/apps/desktop/src/locales/de/messages.json b/apps/desktop/src/locales/de/messages.json
index fdc604986f3..d544b10bb64 100644
--- a/apps/desktop/src/locales/de/messages.json
+++ b/apps/desktop/src/locales/de/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Konto wechseln"
   },
+  "alreadyHaveAccount": {
+    "message": "Hast du bereits ein Konto?"
+  },
   "options": {
     "message": "Optionen"
   },
@@ -2133,7 +2136,7 @@
     "message": "Erzeuge ein E-Mail-Alias mit einem externen Weiterleitungsdienst."
   },
   "forwarderError": {
-    "message": "$SERVICENAME$ error: $ERRORMESSAGE$",
+    "message": "$SERVICENAME$ Fehler: $ERRORMESSAGE$",
     "description": "Reports an error returned by a forwarding service to the user.",
     "placeholders": {
       "servicename": {
@@ -2151,7 +2154,7 @@
     "description": "Displayed with the address on the forwarding service's configuration screen."
   },
   "forwarderGeneratedByWithWebsite": {
-    "message": "Website: $WEBSITE$. Generated by Bitwarden.",
+    "message": "Webseite: $WEBSITE$. Von Bitwarden generiert.",
     "description": "Displayed with the address on the forwarding service's configuration screen.",
     "placeholders": {
       "WEBSITE": {
@@ -2161,7 +2164,7 @@
     }
   },
   "forwaderInvalidToken": {
-    "message": "Invalid $SERVICENAME$ API token",
+    "message": "Ungültiger API-Token von $SERVICENAME$",
     "description": "Displayed when the user's API token is empty or rejected by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2171,7 +2174,7 @@
     }
   },
   "forwaderInvalidTokenWithMessage": {
-    "message": "Invalid $SERVICENAME$ API token: $ERRORMESSAGE$",
+    "message": "Ungültiger API-Token von $SERVICENAME$: $ERRORMESSAGE$",
     "description": "Displayed when the user's API token is rejected by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -2185,7 +2188,7 @@
     }
   },
   "forwarderNoAccountId": {
-    "message": "Unable to obtain $SERVICENAME$ masked email account ID.",
+    "message": "Maskierte E-Mail-Konto-ID für $SERVICENAME$ konnte nicht abgerufen werden.",
     "description": "Displayed when the forwarding service fails to return an account ID.",
     "placeholders": {
       "servicename": {
@@ -2195,7 +2198,7 @@
     }
   },
   "forwarderNoDomain": {
-    "message": "Invalid $SERVICENAME$ domain.",
+    "message": "Ungültige $SERVICENAME$-Domain.",
     "description": "Displayed when the domain is empty or domain authorization failed at the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2205,7 +2208,7 @@
     }
   },
   "forwarderNoUrl": {
-    "message": "Invalid $SERVICENAME$ url.",
+    "message": "Ungültige $SERVICENAME$-URL.",
     "description": "Displayed when the url of the forwarding service wasn't supplied.",
     "placeholders": {
       "servicename": {
@@ -2215,7 +2218,7 @@
     }
   },
   "forwarderUnknownError": {
-    "message": "Unknown $SERVICENAME$ error occurred.",
+    "message": "Unbekannter $SERVICENAME$-Fehler aufgetreten.",
     "description": "Displayed when the forwarding service failed due to an unknown error.",
     "placeholders": {
       "servicename": {
@@ -2225,7 +2228,7 @@
     }
   },
   "forwarderUnknownForwarder": {
-    "message": "Unknown forwarder: '$SERVICENAME$'.",
+    "message": "Unbekannter Weiterleitungsdienst: '$SERVICENAME$'.",
     "description": "Displayed when the forwarding service is not supported.",
     "placeholders": {
       "servicename": {
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Anmeldung angefordert"
   },
+  "creatingAccountOn": {
+    "message": "Konto wird erstellt bei"
+  },
+  "checkYourEmail": {
+    "message": "Überprüfe deine E-Mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Folge dem Link in der E-Mail an"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "und fahre mit der Erstellung deines Kontos fort."
+  },
+  "noEmail": {
+    "message": "Keine E-Mail?"
+  },
+  "goBack": {
+    "message": "Geh zurück"
+  },
+  "toEditYourEmailAddress": {
+    "message": ", um deine E-Mail-Adresse zu bearbeiten."
+  },
   "exposedMasterPassword": {
     "message": "Kompromittiertes Master-Passwort"
   },
@@ -2824,7 +2848,7 @@
     "message": "Fehler beim Zuweisen des Ziel-Ordners."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Einträge in $NAME$ anzeigen",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2834,7 +2858,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Zurück zu $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2844,11 +2868,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Zurück",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "$NAME$ entfernen",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/el/messages.json b/apps/desktop/src/locales/el/messages.json
index 0f67e125902..03c7d2183c0 100644
--- a/apps/desktop/src/locales/el/messages.json
+++ b/apps/desktop/src/locales/el/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Εναλλαγή λογαριασμού"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Ρυθμίσεις"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Ζητήθηκε σύνδεση"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Εκτεθειμένος Κύριος Κωδικός Πρόσβασης"
   },
diff --git a/apps/desktop/src/locales/en_GB/messages.json b/apps/desktop/src/locales/en_GB/messages.json
index ec4ea5090b0..5e337875324 100644
--- a/apps/desktop/src/locales/en_GB/messages.json
+++ b/apps/desktop/src/locales/en_GB/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/en_IN/messages.json b/apps/desktop/src/locales/en_IN/messages.json
index 6b96c526ee0..efc49892145 100644
--- a/apps/desktop/src/locales/en_IN/messages.json
+++ b/apps/desktop/src/locales/en_IN/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/eo/messages.json b/apps/desktop/src/locales/eo/messages.json
index 223f5aa290c..0b6c91a9212 100644
--- a/apps/desktop/src/locales/eo/messages.json
+++ b/apps/desktop/src/locales/eo/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/es/messages.json b/apps/desktop/src/locales/es/messages.json
index 43600c4ff85..a6a8b2a8027 100644
--- a/apps/desktop/src/locales/es/messages.json
+++ b/apps/desktop/src/locales/es/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Cambiar cuenta"
   },
+  "alreadyHaveAccount": {
+    "message": "¿Ya tienes una cuenta?"
+  },
   "options": {
     "message": "Opciones"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Inicio de sesión solicitado"
   },
+  "creatingAccountOn": {
+    "message": "Creando una cuenta en"
+  },
+  "checkYourEmail": {
+    "message": "Comprueba tu correo electrónico"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Sigue el enlace en el correo electrónico enviado a"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "y contunúa creando una cuenta."
+  },
+  "noEmail": {
+    "message": "¿Sin correo electrónico?"
+  },
+  "goBack": {
+    "message": "Volver"
+  },
+  "toEditYourEmailAddress": {
+    "message": "para editar tu dirección de correo electrónico."
+  },
   "exposedMasterPassword": {
     "message": "Contraseña maestra comprometida"
   },
@@ -2824,7 +2848,7 @@
     "message": "Error al asignar la carpeta de destino."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Ver elementos en $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2834,7 +2858,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Volver a $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2844,11 +2868,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Atrás",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Eliminar $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/et/messages.json b/apps/desktop/src/locales/et/messages.json
index 8203e38d29e..7217568b510 100644
--- a/apps/desktop/src/locales/et/messages.json
+++ b/apps/desktop/src/locales/et/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Vaheta kontot"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Valikud"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Sisselogimise päring on saadetud"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Ülemparool on haavatav"
   },
diff --git a/apps/desktop/src/locales/eu/messages.json b/apps/desktop/src/locales/eu/messages.json
index dbfee64137c..0f41c667e91 100644
--- a/apps/desktop/src/locales/eu/messages.json
+++ b/apps/desktop/src/locales/eu/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Aldatu kontua"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Aukerak"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/fa/messages.json b/apps/desktop/src/locales/fa/messages.json
index 979b0a45ffa..f5a5c3575ce 100644
--- a/apps/desktop/src/locales/fa/messages.json
+++ b/apps/desktop/src/locales/fa/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "تعویض حساب کاربری"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "گزینه‌ها"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "ورود الزامیست"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "کلمه عبور اصلی افشا شده"
   },
diff --git a/apps/desktop/src/locales/fi/messages.json b/apps/desktop/src/locales/fi/messages.json
index 3d044cc238c..893da1309f3 100644
--- a/apps/desktop/src/locales/fi/messages.json
+++ b/apps/desktop/src/locales/fi/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Vaihda tiliä"
   },
+  "alreadyHaveAccount": {
+    "message": "Onko sinulla jo tili?"
+  },
   "options": {
     "message": "Valinnat"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Kirjautumista pyydetty"
   },
+  "creatingAccountOn": {
+    "message": "Luodaan tili palvelimelle"
+  },
+  "checkYourEmail": {
+    "message": "Tarkasta sähköpostisi"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Seuraa viestin linkkiä, joka lähetettiin sähköpostitse osoitteeseen"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "ja jatka tilin luontia."
+  },
+  "noEmail": {
+    "message": "Etkö saanut viestiä?"
+  },
+  "goBack": {
+    "message": "Palaa takaisin"
+  },
+  "toEditYourEmailAddress": {
+    "message": "muokataksesi sähköpostiosoitettasi."
+  },
   "exposedMasterPassword": {
     "message": "Paljastunut pääsalasana"
   },
@@ -2824,7 +2848,7 @@
     "message": "Virhe määritettäessä kohdekansiota."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Näytä kohteen $NAME$ kohteet",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2834,7 +2858,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Palaa kohteeseen $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2844,11 +2868,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Takaisin",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Poista $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/fil/messages.json b/apps/desktop/src/locales/fil/messages.json
index b95ecc56a6e..e45770ab180 100644
--- a/apps/desktop/src/locales/fil/messages.json
+++ b/apps/desktop/src/locales/fil/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Lumipat ng account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Mga Pagpipilian"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Hiniling ang pag log in"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Nakalantad na Master Password"
   },
diff --git a/apps/desktop/src/locales/fr/messages.json b/apps/desktop/src/locales/fr/messages.json
index 9e547762e65..163bc548acf 100644
--- a/apps/desktop/src/locales/fr/messages.json
+++ b/apps/desktop/src/locales/fr/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Changer de compte"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Connexion demandée"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Mot de passe principal exposé"
   },
diff --git a/apps/desktop/src/locales/gl/messages.json b/apps/desktop/src/locales/gl/messages.json
index d8cb372359c..c489ab72602 100644
--- a/apps/desktop/src/locales/gl/messages.json
+++ b/apps/desktop/src/locales/gl/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/he/messages.json b/apps/desktop/src/locales/he/messages.json
index 6ab0859fcc6..7a28b04d2e0 100644
--- a/apps/desktop/src/locales/he/messages.json
+++ b/apps/desktop/src/locales/he/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "החלף חשבון"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "אפשרויות"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/hi/messages.json b/apps/desktop/src/locales/hi/messages.json
index bb4d063747e..3e752df95eb 100644
--- a/apps/desktop/src/locales/hi/messages.json
+++ b/apps/desktop/src/locales/hi/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/hr/messages.json b/apps/desktop/src/locales/hr/messages.json
index 049882594c6..be3c7c28e37 100644
--- a/apps/desktop/src/locales/hr/messages.json
+++ b/apps/desktop/src/locales/hr/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Promijeni račun"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Mogućnosti"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Zatražena je prijava"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Ukradena glavna lozinka"
   },
diff --git a/apps/desktop/src/locales/hu/messages.json b/apps/desktop/src/locales/hu/messages.json
index c2f515bdbf8..927fe859009 100644
--- a/apps/desktop/src/locales/hu/messages.json
+++ b/apps/desktop/src/locales/hu/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Fiók váltása"
   },
+  "alreadyHaveAccount": {
+    "message": "Van már saját fiók?"
+  },
   "options": {
     "message": "Opciók"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Bejelentkezés megkérve"
   },
+  "creatingAccountOn": {
+    "message": "Fiók létrehozása:"
+  },
+  "checkYourEmail": {
+    "message": "Email cím postaláda ellenőrzése"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Kövessük a hivatkozást az elküldött emailben"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "és folytassuk a fiók létrehozását."
+  },
+  "noEmail": {
+    "message": "Nem érkezett email?"
+  },
+  "goBack": {
+    "message": "Vissza"
+  },
+  "toEditYourEmailAddress": {
+    "message": "az email cím szerkesztéséhez."
+  },
   "exposedMasterPassword": {
     "message": "Kiszivárgott mesterjelszó"
   },
@@ -2824,7 +2848,7 @@
     "message": "Hiba történt a célmappa hozzárendelése során."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "$NAME$ elemek megtekintése",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2834,7 +2858,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Vissza: $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2844,11 +2868,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Vissza",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "$NAME$ eltávolítása",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/id/messages.json b/apps/desktop/src/locales/id/messages.json
index ba0c9095ad1..46735671f04 100644
--- a/apps/desktop/src/locales/id/messages.json
+++ b/apps/desktop/src/locales/id/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Pindah akun"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Pilihan"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Kata Sandi Utama terekspos"
   },
diff --git a/apps/desktop/src/locales/it/messages.json b/apps/desktop/src/locales/it/messages.json
index b7335e3ea55..7ab75fd9815 100644
--- a/apps/desktop/src/locales/it/messages.json
+++ b/apps/desktop/src/locales/it/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Cambia account"
   },
+  "alreadyHaveAccount": {
+    "message": "Hai già un account?"
+  },
   "options": {
     "message": "Opzioni"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Accesso richiesto"
   },
+  "creatingAccountOn": {
+    "message": "Creazione account su"
+  },
+  "checkYourEmail": {
+    "message": "Controlli la tua email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Segui il link nell'email inviata a"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "e continua a creare il tuo account."
+  },
+  "noEmail": {
+    "message": "Nessuna email?"
+  },
+  "goBack": {
+    "message": "Torna indietro"
+  },
+  "toEditYourEmailAddress": {
+    "message": "per modificare il tuo indirizzo email."
+  },
   "exposedMasterPassword": {
     "message": "Password principale violata"
   },
@@ -2824,7 +2848,7 @@
     "message": "Errore nell'assegnazione della cartella di destinazione."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Visualizza gli elementi in $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2834,7 +2858,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Torna a $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2844,11 +2868,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Indietro",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Rimuovi $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/ja/messages.json b/apps/desktop/src/locales/ja/messages.json
index 5c134f15ba7..e5a3fbcfb93 100644
--- a/apps/desktop/src/locales/ja/messages.json
+++ b/apps/desktop/src/locales/ja/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "アカウント切替"
   },
+  "alreadyHaveAccount": {
+    "message": "すでにアカウントをお持ちですか？"
+  },
   "options": {
     "message": "オプション"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "ログインリクエスト済み"
   },
+  "creatingAccountOn": {
+    "message": "アカウント作成："
+  },
+  "checkYourEmail": {
+    "message": "メールをご確認ください"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "アカウントの作成を続けるには"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "に送られたメールのリンクを開いてください。"
+  },
+  "noEmail": {
+    "message": "メールがありませんか?"
+  },
+  "goBack": {
+    "message": "戻って"
+  },
+  "toEditYourEmailAddress": {
+    "message": "メールアドレスを編集してください。"
+  },
   "exposedMasterPassword": {
     "message": "流出したマスターパスワード"
   },
@@ -2824,7 +2848,7 @@
     "message": "ターゲットフォルダーの割り当てに失敗しました。"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "$NAME$ のアイテムを表示",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2834,7 +2858,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "$NAME$ に戻る",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2844,11 +2868,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "戻る",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "$NAME$ を削除",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/ka/messages.json b/apps/desktop/src/locales/ka/messages.json
index d8cb372359c..c489ab72602 100644
--- a/apps/desktop/src/locales/ka/messages.json
+++ b/apps/desktop/src/locales/ka/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/km/messages.json b/apps/desktop/src/locales/km/messages.json
index d8cb372359c..c489ab72602 100644
--- a/apps/desktop/src/locales/km/messages.json
+++ b/apps/desktop/src/locales/km/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/kn/messages.json b/apps/desktop/src/locales/kn/messages.json
index 4b654e92327..8379628c437 100644
--- a/apps/desktop/src/locales/kn/messages.json
+++ b/apps/desktop/src/locales/kn/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/ko/messages.json b/apps/desktop/src/locales/ko/messages.json
index 8db205e66fa..5b1bcafa425 100644
--- a/apps/desktop/src/locales/ko/messages.json
+++ b/apps/desktop/src/locales/ko/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "계정 전환"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "선택"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "로그인 요청됨"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/lt/messages.json b/apps/desktop/src/locales/lt/messages.json
index 22f2ad8283c..e24f4b78f8a 100644
--- a/apps/desktop/src/locales/lt/messages.json
+++ b/apps/desktop/src/locales/lt/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Perjungti paskyrą"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Nustatymai"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Prašoma prisijungti"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Atskleistas pagrindinis slaptažodis"
   },
diff --git a/apps/desktop/src/locales/lv/messages.json b/apps/desktop/src/locales/lv/messages.json
index a1f810ee4af..d93dc9e8599 100644
--- a/apps/desktop/src/locales/lv/messages.json
+++ b/apps/desktop/src/locales/lv/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Pārslēgties starp kontiem"
   },
+  "alreadyHaveAccount": {
+    "message": "Jau ir konts?"
+  },
   "options": {
     "message": "Iespējas"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Pieprasīta pieteikšanās"
   },
+  "creatingAccountOn": {
+    "message": "Tiek veidots konts"
+  },
+  "checkYourEmail": {
+    "message": "Jāpārbauda e-pasts"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Jāatver saite, kas tika nosūtīta uz e-pasta adresi"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "un jāturpina sava konta izveide."
+  },
+  "noEmail": {
+    "message": "Nav e-pasta?"
+  },
+  "goBack": {
+    "message": "Atgriezties"
+  },
+  "toEditYourEmailAddress": {
+    "message": ", lai labotu savu e-pasta adresi."
+  },
   "exposedMasterPassword": {
     "message": "Noplūdusi galvenā parole"
   },
@@ -2824,7 +2848,7 @@
     "message": "Kļūda mērķa mapes piešķiršanā."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Skatīt $NAME$ vienumus",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2834,7 +2858,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Atgriezties $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2844,11 +2868,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Atpakaļ",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Noņemt $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/me/messages.json b/apps/desktop/src/locales/me/messages.json
index a4d6ff7026c..a19623dbf9e 100644
--- a/apps/desktop/src/locales/me/messages.json
+++ b/apps/desktop/src/locales/me/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/ml/messages.json b/apps/desktop/src/locales/ml/messages.json
index 38ba942874e..d1a20855478 100644
--- a/apps/desktop/src/locales/ml/messages.json
+++ b/apps/desktop/src/locales/ml/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/mr/messages.json b/apps/desktop/src/locales/mr/messages.json
index d8cb372359c..c489ab72602 100644
--- a/apps/desktop/src/locales/mr/messages.json
+++ b/apps/desktop/src/locales/mr/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/my/messages.json b/apps/desktop/src/locales/my/messages.json
index 78b62a34a0b..2f19a2f513f 100644
--- a/apps/desktop/src/locales/my/messages.json
+++ b/apps/desktop/src/locales/my/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/nb/messages.json b/apps/desktop/src/locales/nb/messages.json
index 6826acb6a8b..5af3025f0e5 100644
--- a/apps/desktop/src/locales/nb/messages.json
+++ b/apps/desktop/src/locales/nb/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Bytt konto"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Alternativer"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Eksponert hovedpassord"
   },
diff --git a/apps/desktop/src/locales/ne/messages.json b/apps/desktop/src/locales/ne/messages.json
index 0f138a2c418..6f6f7d95989 100644
--- a/apps/desktop/src/locales/ne/messages.json
+++ b/apps/desktop/src/locales/ne/messages.json
@@ -27,28 +27,28 @@
     "message": "सुरक्षित नोट"
   },
   "folders": {
-    "message": "Folders"
+    "message": "फोल्डरहरू"
   },
   "collections": {
-    "message": "Collections"
+    "message": "संग्रह"
   },
   "searchVault": {
-    "message": "Search vault"
+    "message": "भल्टमा खोज्नुहोस्"
   },
   "addItem": {
-    "message": "Add item"
+    "message": "आइटम थप्नुहोस्"
   },
   "shared": {
-    "message": "Shared"
+    "message": "साझा गरियो"
   },
   "share": {
-    "message": "Share"
+    "message": "शेयर"
   },
   "moveToOrganization": {
-    "message": "Move to organization"
+    "message": "संस्थामा सार्नुहोस्"
   },
   "movedItemToOrg": {
-    "message": "$ITEMNAME$ moved to $ORGNAME$",
+    "message": "$ITEMNAME$ लाई $ORGNAME$ मा सारियो",
     "placeholders": {
       "itemname": {
         "content": "$1",
@@ -61,16 +61,16 @@
     }
   },
   "moveToOrgDesc": {
-    "message": "Choose an organization that you wish to move this item to. Moving to an organization transfers ownership of the item to that organization. You will no longer be the direct owner of this item once it has been moved."
+    "message": "तपाईंले यो आइटम सार्न चाहनुहुने संस्था छान्नुहोस्। संस्थामा सर्दा आइटमको स्वामित्व त्यो संस्थामा हस्तान्तरण हुन्छ। एकपटक सारिएपछि तपाईं अब यस आइटमको प्रत्यक्ष मालिक हुनुहुनेछैन।"
   },
   "attachments": {
-    "message": "Attachments"
+    "message": "अट्याचमेंटहरू"
   },
   "viewItem": {
-    "message": "View item"
+    "message": "आइटम हेर्नुहोस्"
   },
   "name": {
-    "message": "Name"
+    "message": "नाम"
   },
   "uri": {
     "message": "URI"
@@ -86,120 +86,120 @@
     }
   },
   "newUri": {
-    "message": "New URI"
+    "message": "नयाँ URI"
   },
   "username": {
-    "message": "Username"
+    "message": "युजरनेम"
   },
   "password": {
-    "message": "Password"
+    "message": "पासवर्ड"
   },
   "passphrase": {
-    "message": "Passphrase"
+    "message": "पासफ्रेज"
   },
   "editItem": {
-    "message": "Edit item"
+    "message": "आइटम सम्पादन"
   },
   "emailAddress": {
-    "message": "Email address"
+    "message": "इमेल ठेगाना"
   },
   "verificationCodeTotp": {
-    "message": "Verification code (TOTP)"
+    "message": "प्रमाणीकरण कोड (TOTP)"
   },
   "website": {
-    "message": "Website"
+    "message": "वेबसाइट"
   },
   "notes": {
-    "message": "Notes"
+    "message": "टिपोट"
   },
   "customFields": {
-    "message": "Custom fields"
+    "message": "अनुकूलन फिल्डहरू"
   },
   "launch": {
-    "message": "Launch"
+    "message": "वेबसाइटमा जानुहोस्"
   },
   "copyValue": {
     "message": "Copy value",
     "description": "Copy value to clipboard"
   },
   "minimizeOnCopyToClipboard": {
-    "message": "Minimize when copying to clipboard"
+    "message": "क्लिपबोर्डमा प्रतिलिपि गर्दा मिनीमाइज गर्नुहोस्"
   },
   "minimizeOnCopyToClipboardDesc": {
-    "message": "Minimize application when copying an item's data to the clipboard."
+    "message": "क्लिपबोर्डमा आइटमको डेटा प्रतिलिपि गर्दा अनुप्रयोगलाई मिनिमाइज गर्नुहोस्।"
   },
   "toggleVisibility": {
-    "message": "Toggle visibility"
+    "message": "दृश्यता टगल गर्नुहोस्"
   },
   "toggleCollapse": {
     "message": "Toggle collapse",
     "description": "Toggling an expand/collapse state."
   },
   "cardholderName": {
-    "message": "Cardholder name"
+    "message": "कार्डधारकको नाम"
   },
   "number": {
-    "message": "Number"
+    "message": "नम्बर"
   },
   "brand": {
-    "message": "Brand"
+    "message": "ब्राण्ड"
   },
   "expiration": {
-    "message": "Expiration"
+    "message": "म्याद समाप्ति"
   },
   "securityCode": {
-    "message": "Security code"
+    "message": "सुरक्षा कोड (CVV)"
   },
   "identityName": {
-    "message": "Identity name"
+    "message": "पहिचान नाम"
   },
   "company": {
-    "message": "Company"
+    "message": "कम्पनी"
   },
   "ssn": {
-    "message": "Social Security number"
+    "message": "सामाजिक सुरक्षा नम्बर"
   },
   "passportNumber": {
-    "message": "Passport number"
+    "message": "राहदानी नम्बर"
   },
   "licenseNumber": {
-    "message": "License number"
+    "message": "लाइसेन्स नम्बर"
   },
   "email": {
-    "message": "Email"
+    "message": "ईमेल"
   },
   "phone": {
-    "message": "Phone"
+    "message": "फोन नं"
   },
   "address": {
-    "message": "Address"
+    "message": "ठेगाना"
   },
   "premiumRequired": {
-    "message": "Premium required"
+    "message": "प्रिमियम आवश्यक छ"
   },
   "premiumRequiredDesc": {
-    "message": "A Premium membership is required to use this feature."
+    "message": "यो सुविधा प्रयोग गर्न प्रिमियम सदस्यता आवश्यक छ।"
   },
   "errorOccurred": {
-    "message": "An error has occurred."
+    "message": "त्रुटि देखा पर्‍यो।"
   },
   "error": {
-    "message": "Error"
+    "message": "त्रुटि"
   },
   "january": {
-    "message": "January"
+    "message": "जनवरी"
   },
   "february": {
-    "message": "February"
+    "message": "फेब्रुअरी"
   },
   "march": {
-    "message": "March"
+    "message": "मार्च"
   },
   "april": {
-    "message": "April"
+    "message": "अप्रिल"
   },
   "may": {
-    "message": "May"
+    "message": "मे"
   },
   "june": {
     "message": "June"
@@ -349,62 +349,62 @@
     "message": "Name is required."
   },
   "addedItem": {
-    "message": "Item added"
+    "message": "आइटम थपियो"
   },
   "editedItem": {
-    "message": "Item saved"
+    "message": "आइटम सेभ गरियो"
   },
   "deleteItem": {
-    "message": "Delete item"
+    "message": "आइटम हटाउनुहोस्"
   },
   "deleteFolder": {
-    "message": "Delete folder"
+    "message": "फोल्डर हटाउनुहोस्"
   },
   "deleteAttachment": {
-    "message": "Delete attachment"
+    "message": "अट्याचमेंट हटाउनुहोस्"
   },
   "deleteItemConfirmation": {
-    "message": "Do you really want to send to the trash?"
+    "message": "के तपाई साँच्चै रद्दीटोकरीमा पठाउन चाहनुहुन्छ?"
   },
   "deletedItem": {
-    "message": "Item sent to trash"
+    "message": "आइटम रद्दीटोकरीमा पठाइयो"
   },
   "overwritePasswordConfirmation": {
-    "message": "Are you sure you want to overwrite the current password?"
+    "message": "के तपाइँ निश्चित हुनुहुन्छ कि तपाइँ हालको पासवर्ड अधिलेखन (ओभरराइट) गर्न चाहनुहुन्छ?"
   },
   "overwriteUsername": {
-    "message": "Overwrite username"
+    "message": "युजरनेम अधिलेखन गर्नुहोस्"
   },
   "overwriteUsernameConfirmation": {
-    "message": "Are you sure you want to overwrite the current username?"
+    "message": "के तपाइँ निश्चित हुनुहुन्छ कि तपाइँ हालको युजरनेम अधिलेखन (ओभरराइट) गर्न चाहनुहुन्छ?"
   },
   "noneFolder": {
-    "message": "No folder",
+    "message": "कुनै फोल्डर हैन",
     "description": "This is the folder for uncategorized items"
   },
   "addFolder": {
-    "message": "Add folder"
+    "message": "फोल्डर थप्नुहोस्"
   },
   "editFolder": {
-    "message": "Edit folder"
+    "message": "फोल्डर सम्पादन गर्नुहोस्"
   },
   "regeneratePassword": {
-    "message": "Regenerate password"
+    "message": "पासवर्ड पुन: उत्पन्न गर्नुहोस्"
   },
   "copyPassword": {
-    "message": "Copy password"
+    "message": "पासवर्ड प्रतिलिपि गर्नुहोस्"
   },
   "copyUri": {
-    "message": "Copy URI"
+    "message": "URI प्रतिलिपि गर्नुहोस्"
   },
   "copyVerificationCodeTotp": {
-    "message": "Copy verification code (TOTP)"
+    "message": "प्रमाणीकरण कोड (TOTP) प्रतिलिपि गर्नुहोस्"
   },
   "length": {
-    "message": "Length"
+    "message": "लम्बाइ"
   },
   "passwordMinLength": {
-    "message": "Minimum password length"
+    "message": "न्यूनतम पासवर्ड लम्बाइ"
   },
   "uppercase": {
     "message": "Uppercase (A-Z)"
@@ -413,45 +413,45 @@
     "message": "Lowercase (a-z)"
   },
   "numbers": {
-    "message": "Numbers (0-9)"
+    "message": "नम्बरहरू (0-9)"
   },
   "specialCharacters": {
-    "message": "Special characters (!@#$%^&*)"
+    "message": "विशेष अक्षरहरू (!@#$%^&*)"
   },
   "numWords": {
-    "message": "Number of words"
+    "message": "शब्द संख्या"
   },
   "wordSeparator": {
-    "message": "Word separator"
+    "message": "शब्द विभाजक"
   },
   "capitalize": {
     "message": "Capitalize",
     "description": "Make the first letter of a word uppercase."
   },
   "includeNumber": {
-    "message": "Include number"
+    "message": "नम्बर समावेश गर्नुहोस्"
   },
   "close": {
-    "message": "Close"
+    "message": "बन्द गर्नुहोस्"
   },
   "minNumbers": {
-    "message": "Minimum numbers"
+    "message": "न्यूनतम नम्बरहरू"
   },
   "minSpecial": {
-    "message": "Minimum special",
+    "message": "न्यूनतम विषेश अक्षरहरू",
     "description": "Minimum Special Characters"
   },
   "ambiguous": {
-    "message": "Avoid ambiguous characters"
+    "message": "अस्पष्ट अक्षरहरूबाट बच्नुहोस्"
   },
   "searchCollection": {
-    "message": "Search collection"
+    "message": "सङ्ग्रह खोज्नुहोस्"
   },
   "searchFolder": {
-    "message": "Search folder"
+    "message": "फोल्डर खोज्नुहोस्"
   },
   "searchFavorites": {
-    "message": "Search favorites"
+    "message": "मनपर्ने खोज्नुहोस्"
   },
   "searchType": {
     "message": "Search type",
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/nl/messages.json b/apps/desktop/src/locales/nl/messages.json
index 34f90d7c4f8..7d5132c872f 100644
--- a/apps/desktop/src/locales/nl/messages.json
+++ b/apps/desktop/src/locales/nl/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Account wisselen"
   },
+  "alreadyHaveAccount": {
+    "message": "Heb je al een account?"
+  },
   "options": {
     "message": "Opties"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Inloggen verzocht"
   },
+  "creatingAccountOn": {
+    "message": "Account maken bij"
+  },
+  "checkYourEmail": {
+    "message": "Check je e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Volg de link in de e-mail die verstuurd is naar"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "en ga verder met het aanmaken van je account."
+  },
+  "noEmail": {
+    "message": "Geen e-mail?"
+  },
+  "goBack": {
+    "message": "Ga terug"
+  },
+  "toEditYourEmailAddress": {
+    "message": "om je e-mailadres te bewerken."
+  },
   "exposedMasterPassword": {
     "message": "Gelekt hoofdwachtwoord"
   },
diff --git a/apps/desktop/src/locales/nn/messages.json b/apps/desktop/src/locales/nn/messages.json
index 6054b114c15..0de15cbe56b 100644
--- a/apps/desktop/src/locales/nn/messages.json
+++ b/apps/desktop/src/locales/nn/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/or/messages.json b/apps/desktop/src/locales/or/messages.json
index 4b072a68897..bcc358730ae 100644
--- a/apps/desktop/src/locales/or/messages.json
+++ b/apps/desktop/src/locales/or/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/pl/messages.json b/apps/desktop/src/locales/pl/messages.json
index 6e624f28475..237d94faa38 100644
--- a/apps/desktop/src/locales/pl/messages.json
+++ b/apps/desktop/src/locales/pl/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Przełącz konto"
   },
+  "alreadyHaveAccount": {
+    "message": "Masz już konto?"
+  },
   "options": {
     "message": "Opcje"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Wysłano prośbę logowania"
   },
+  "creatingAccountOn": {
+    "message": "Tworzenie konta na"
+  },
+  "checkYourEmail": {
+    "message": "Sprawdź swoją pocztę e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Kliknij łącze w wiadomości e-mail wysłanej do"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "i kontynuuj tworzenie konta."
+  },
+  "noEmail": {
+    "message": "Brak wiadomości e-mail?"
+  },
+  "goBack": {
+    "message": "Wróć"
+  },
+  "toEditYourEmailAddress": {
+    "message": "aby edytować swój adres e-mail."
+  },
   "exposedMasterPassword": {
     "message": "Ujawnione hasło główne"
   },
diff --git a/apps/desktop/src/locales/pt_BR/messages.json b/apps/desktop/src/locales/pt_BR/messages.json
index ae58f54dd9c..225bef63126 100644
--- a/apps/desktop/src/locales/pt_BR/messages.json
+++ b/apps/desktop/src/locales/pt_BR/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Trocar de Conta"
   },
+  "alreadyHaveAccount": {
+    "message": "Já tem uma conta?"
+  },
   "options": {
     "message": "Opções"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Acesso solicitado"
   },
+  "creatingAccountOn": {
+    "message": "Criando conta em"
+  },
+  "checkYourEmail": {
+    "message": "Verifique seu e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Siga o link no e-mail enviado para"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "e continue criando a sua conta."
+  },
+  "noEmail": {
+    "message": "Sem e-mail?"
+  },
+  "goBack": {
+    "message": "Voltar"
+  },
+  "toEditYourEmailAddress": {
+    "message": "para editar o seu endereço de e-mail."
+  },
   "exposedMasterPassword": {
     "message": "Senha Mestra comprometida"
   },
@@ -2824,7 +2848,7 @@
     "message": "Erro ao atribuir pasta de destino."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Visualizar itens em $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2834,7 +2858,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Voltar para $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2844,11 +2868,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Voltar",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Remover $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/pt_PT/messages.json b/apps/desktop/src/locales/pt_PT/messages.json
index d57fc481d8c..b2ff16748ec 100644
--- a/apps/desktop/src/locales/pt_PT/messages.json
+++ b/apps/desktop/src/locales/pt_PT/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Mudar de conta"
   },
+  "alreadyHaveAccount": {
+    "message": "Já tem uma conta?"
+  },
   "options": {
     "message": "Opções"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Pedido de início de sessão"
   },
+  "creatingAccountOn": {
+    "message": "A criar uma conta em"
+  },
+  "checkYourEmail": {
+    "message": "Verifique o seu e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Siga o link no e-mail enviado para"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "e continue a criação da sua conta."
+  },
+  "noEmail": {
+    "message": "Não recebeu o e-mail?"
+  },
+  "goBack": {
+    "message": "Volte atrás"
+  },
+  "toEditYourEmailAddress": {
+    "message": "para editar o seu endereço de e-mail."
+  },
   "exposedMasterPassword": {
     "message": "Palavra-passe mestra exposta"
   },
@@ -2824,7 +2848,7 @@
     "message": "Erro ao atribuir a pasta de destino."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Ver itens em $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2834,7 +2858,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Voltar a $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2844,11 +2868,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Voltar",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Remover $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/ro/messages.json b/apps/desktop/src/locales/ro/messages.json
index 0a538593adb..27c9bcd1229 100644
--- a/apps/desktop/src/locales/ro/messages.json
+++ b/apps/desktop/src/locales/ro/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Comutare cont"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Opțiuni"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/ru/messages.json b/apps/desktop/src/locales/ru/messages.json
index 75f30af8931..e6e621ed55f 100644
--- a/apps/desktop/src/locales/ru/messages.json
+++ b/apps/desktop/src/locales/ru/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Сменить аккаунт"
   },
+  "alreadyHaveAccount": {
+    "message": "Уже зарегистрированы?"
+  },
   "options": {
     "message": "Опции"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Запрошено разрешение на вход"
   },
+  "creatingAccountOn": {
+    "message": "Создание аккаунта"
+  },
+  "checkYourEmail": {
+    "message": "Проверьте свою почту"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Перейдите по ссылке из отправленного письма"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "и продолжите создание аккаунта."
+  },
+  "noEmail": {
+    "message": "Нет письма?"
+  },
+  "goBack": {
+    "message": "Вернуться"
+  },
+  "toEditYourEmailAddress": {
+    "message": "для изменения адреса email."
+  },
   "exposedMasterPassword": {
     "message": "Мастер-пароль скомпрометирован"
   },
diff --git a/apps/desktop/src/locales/si/messages.json b/apps/desktop/src/locales/si/messages.json
index ab9f837c2f9..829febb7a93 100644
--- a/apps/desktop/src/locales/si/messages.json
+++ b/apps/desktop/src/locales/si/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/sk/messages.json b/apps/desktop/src/locales/sk/messages.json
index 22e744f502e..f6ab99455c4 100644
--- a/apps/desktop/src/locales/sk/messages.json
+++ b/apps/desktop/src/locales/sk/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Prepnúť účet"
   },
+  "alreadyHaveAccount": {
+    "message": "Už máte účet?"
+  },
   "options": {
     "message": "Možnosti"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Požadované prihlásenie"
   },
+  "creatingAccountOn": {
+    "message": "Vytváranie účtu na"
+  },
+  "checkYourEmail": {
+    "message": "Skontrolujte si svoj e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Postupujte podľa odkazu v e-maile zaslanom na adresu"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "a pokračujte vo vytváraní účtu."
+  },
+  "noEmail": {
+    "message": "Žiadny email?"
+  },
+  "goBack": {
+    "message": "Prejsť späť"
+  },
+  "toEditYourEmailAddress": {
+    "message": "na úpravu e-mailovej adresy."
+  },
   "exposedMasterPassword": {
     "message": "Odhalené hlavné heslo"
   },
@@ -2824,7 +2848,7 @@
     "message": "Chyba pri priraďovaní cieľového priečinka."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Zobraziť položky v $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2834,7 +2858,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Späť do $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2844,11 +2868,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Späť",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Odstrániť $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/sl/messages.json b/apps/desktop/src/locales/sl/messages.json
index 57f9dbf36a1..968f34ad747 100644
--- a/apps/desktop/src/locales/sl/messages.json
+++ b/apps/desktop/src/locales/sl/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/sr/messages.json b/apps/desktop/src/locales/sr/messages.json
index 144c8e7bb69..7967e25b3f6 100644
--- a/apps/desktop/src/locales/sr/messages.json
+++ b/apps/desktop/src/locales/sr/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Промени налог"
   },
+  "alreadyHaveAccount": {
+    "message": "Већ имате налог?"
+  },
   "options": {
     "message": "Опције"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Захтев пријаве"
   },
+  "creatingAccountOn": {
+    "message": "Креирај налог на"
+  },
+  "checkYourEmail": {
+    "message": "Проверите свој имејл"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Пратите везу послатој на"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "и наставите са креирањем налога."
+  },
+  "noEmail": {
+    "message": "Немате имејл?"
+  },
+  "goBack": {
+    "message": "Ићи назад"
+  },
+  "toEditYourEmailAddress": {
+    "message": "да измените свој имејл."
+  },
   "exposedMasterPassword": {
     "message": "Изложена главна лозинка"
   },
@@ -2824,7 +2848,7 @@
     "message": "Грешка при додељивању циљне фасцикле."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Видети ставке у $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2834,7 +2858,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Назад на $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2844,11 +2868,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Назад",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Уклонити $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/sv/messages.json b/apps/desktop/src/locales/sv/messages.json
index dfebac7e4ed..6e731f777c5 100644
--- a/apps/desktop/src/locales/sv/messages.json
+++ b/apps/desktop/src/locales/sv/messages.json
@@ -801,10 +801,10 @@
     "message": "Ändra huvudlösenord"
   },
   "continueToWebApp": {
-    "message": "Continue to web app?"
+    "message": "Fortsätt till webapp?"
   },
   "changeMasterPasswordOnWebConfirmation": {
-    "message": "You can change your master password on the Bitwarden web app."
+    "message": "Du kan ändra ditt huvudlösenord i Bitwardens webbapp."
   },
   "fingerprintPhrase": {
     "message": "Fingeravtrycksfras",
@@ -1633,10 +1633,10 @@
     "message": "Webbläsarintegration stöds inte"
   },
   "browserIntegrationErrorTitle": {
-    "message": "Error enabling browser integration"
+    "message": "Fel vid aktivering av webbläsarintegration"
   },
   "browserIntegrationErrorDesc": {
-    "message": "An error has occurred while enabling browser integration."
+    "message": "Ett fel uppstod vid aktivering av webbläsarintegration."
   },
   "browserIntegrationMasOnlyDesc": {
     "message": "Tyvärr stöds webbläsarintegration för tillfället endast i versionen från Mac App Store."
@@ -1654,10 +1654,10 @@
     "message": "Aktivera ett ytterligare säkerhetslager genom att kräva validering av fingeravtrycksfrasen när du upprättar en länk mellan skrivbordet och webbläsaren. När det här är aktiverat krävs ingripande och verifiering från användaren varje gång en anslutning etableras."
   },
   "enableHardwareAcceleration": {
-    "message": "Use hardware acceleration"
+    "message": "Använd hårdvaruacceleration"
   },
   "enableHardwareAccelerationDesc": {
-    "message": "By default this setting is ON. Turn OFF only if you experience graphical issues. Restart is required."
+    "message": "Som standard är den här inställningen påslagen. Stäng endast av om du upplever grafiska problem. Omstart krävs."
   },
   "approve": {
     "message": "Godkänn"
@@ -1699,7 +1699,7 @@
     "message": "En organisationspolicy påverkar dina ägarskapsalternativ."
   },
   "personalOwnershipPolicyInEffectImports": {
-    "message": "An organization policy has blocked importing items into your individual vault."
+    "message": "En organisationspolicy har blockerat importering av objekt till ditt personliga valv."
   },
   "allSends": {
     "message": "Alla Sends",
@@ -1953,7 +1953,7 @@
     }
   },
   "vaultTimeoutPolicyWithActionInEffect": {
-    "message": "Your organization policies are affecting your vault timeout. Maximum allowed vault timeout is $HOURS$ hour(s) and $MINUTES$ minute(s). Your vault timeout action is set to $ACTION$.",
+    "message": "Dina organisationspolicys påverkar ditt valvs timeout. Maximal tillåten tid innan timeout är $HOURS$ timme(ar) och $MINUTES$ minut(er). Ditt valvs timeout-åtgärd är angivet som $ACTION$.",
     "placeholders": {
       "hours": {
         "content": "$1",
@@ -1970,7 +1970,7 @@
     }
   },
   "vaultTimeoutActionPolicyInEffect": {
-    "message": "Your organization policies have set your vault timeout action to $ACTION$.",
+    "message": "Dina organisationspolicys har satt din timeout-åtgärd till $ACTION$.",
     "placeholders": {
       "action": {
         "content": "$1",
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Byt konto"
   },
+  "alreadyHaveAccount": {
+    "message": "Har du redan ett konto?"
+  },
   "options": {
     "message": "Alternativ"
   },
@@ -2060,7 +2063,7 @@
     "message": "Exporterar individuellt valv"
   },
   "exportingIndividualVaultDescription": {
-    "message": "Only the individual vault items associated with $EMAIL$ will be exported. Organization vault items will not be included. Only vault item information will be exported and will not include associated attachments.",
+    "message": "Endast de personliga valvobjekten som är associerade med $EMAIL$ kommer att exporteras. Organisationers valv kommer inte att inkluderas. Endast information om valv kommer att exporteras och kommer inte att innehålla tillhörande bilagor.",
     "placeholders": {
       "email": {
         "content": "$1",
@@ -2147,11 +2150,11 @@
     }
   },
   "forwarderGeneratedBy": {
-    "message": "Generated by Bitwarden.",
+    "message": "Genererad av Bitwarden.",
     "description": "Displayed with the address on the forwarding service's configuration screen."
   },
   "forwarderGeneratedByWithWebsite": {
-    "message": "Website: $WEBSITE$. Generated by Bitwarden.",
+    "message": "Webbplats: $WEBSITE$. Genererad av Bitwarden.",
     "description": "Displayed with the address on the forwarding service's configuration screen.",
     "placeholders": {
       "WEBSITE": {
@@ -2161,7 +2164,7 @@
     }
   },
   "forwaderInvalidToken": {
-    "message": "Invalid $SERVICENAME$ API token",
+    "message": "Ogiltig $SERVICENAME$ API-token",
     "description": "Displayed when the user's API token is empty or rejected by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2171,7 +2174,7 @@
     }
   },
   "forwaderInvalidTokenWithMessage": {
-    "message": "Invalid $SERVICENAME$ API token: $ERRORMESSAGE$",
+    "message": "Ogiltig $SERVICENAME$ API token: $ERRORMESSAGE$",
     "description": "Displayed when the user's API token is rejected by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -2185,7 +2188,7 @@
     }
   },
   "forwarderNoAccountId": {
-    "message": "Unable to obtain $SERVICENAME$ masked email account ID.",
+    "message": "Gick inte att få $SERVICENAME$ maskerat e-postkonto-ID.",
     "description": "Displayed when the forwarding service fails to return an account ID.",
     "placeholders": {
       "servicename": {
@@ -2215,7 +2218,7 @@
     }
   },
   "forwarderUnknownError": {
-    "message": "Unknown $SERVICENAME$ error occurred.",
+    "message": "Okänt $SERVICENAME$ fel uppstod.",
     "description": "Displayed when the forwarding service failed due to an unknown error.",
     "placeholders": {
       "servicename": {
@@ -2225,7 +2228,7 @@
     }
   },
   "forwarderUnknownForwarder": {
-    "message": "Unknown forwarder: '$SERVICENAME$'.",
+    "message": "Okänd vidarebefordrare: '$SERVICENAME$'.",
     "description": "Displayed when the forwarding service is not supported.",
     "placeholders": {
       "servicename": {
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Inloggning begärd"
   },
+  "creatingAccountOn": {
+    "message": "Skapa konto på"
+  },
+  "checkYourEmail": {
+    "message": "Kolla din e-post"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Följ länken i e-postmeddelandet som skickats till"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "och fortsätt att skapa ditt konto."
+  },
+  "noEmail": {
+    "message": "Ingen e-post?"
+  },
+  "goBack": {
+    "message": "Gå tillbaka"
+  },
+  "toEditYourEmailAddress": {
+    "message": "för att redigera din e-postadress."
+  },
   "exposedMasterPassword": {
     "message": "Huvudlösenordet har exponerats"
   },
@@ -2421,19 +2445,19 @@
     }
   },
   "windowsBiometricUpdateWarning": {
-    "message": "Bitwarden recommends updating your biometric settings to require your master password (or PIN) on the first unlock. Would you like to update your settings now?"
+    "message": "Bitwarden rekommenderar att du uppdaterar dina biometriska inställningar för att kräva ditt huvudlösenord (eller PIN) på den första upplåsningen. Vill du uppdatera dina inställningar nu?"
   },
   "windowsBiometricUpdateWarningTitle": {
-    "message": "Recommended Settings Update"
+    "message": "Rekommenderade inställningsuppdateringar"
   },
   "deviceApprovalRequired": {
-    "message": "Device approval required. Select an approval option below:"
+    "message": "Godkännande av enhet krävs. Välj ett godkännandealternativ nedan:"
   },
   "rememberThisDevice": {
     "message": "Kom ihåg denna enhet"
   },
   "uncheckIfPublicDevice": {
-    "message": "Uncheck if using a public device"
+    "message": "Avmarkera om du använder en offentlig enhet"
   },
   "approveFromYourOtherDevice": {
     "message": "Godkänn från din andra enhet"
@@ -2461,7 +2485,7 @@
     "message": "självhostad"
   },
   "accessDenied": {
-    "message": "Access denied. You do not have permission to view this page."
+    "message": "Åtkomst nekad. Du har inte behörighet att se denna sida."
   },
   "accountSuccessfullyCreated": {
     "message": "Ditt konto har skapats!"
@@ -2506,7 +2530,7 @@
     }
   },
   "inputMaxLength": {
-    "message": "Input must not exceed $COUNT$ characters in length.",
+    "message": "Inmatningen får inte överstiga $COUNT$ tecken i längd.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -2524,7 +2548,7 @@
     }
   },
   "inputMinValue": {
-    "message": "Input value must be at least $MIN$.",
+    "message": "Inmatningsvärdet måste vara minst $MIN$.",
     "placeholders": {
       "min": {
         "content": "$1",
@@ -2533,7 +2557,7 @@
     }
   },
   "inputMaxValue": {
-    "message": "Input value must not exceed $MAX$.",
+    "message": "Inmatningsvärdet får inte överstiga $MAX$.",
     "placeholders": {
       "max": {
         "content": "$1",
@@ -2545,7 +2569,7 @@
     "message": "En eller flera e-postadresser är ogiltiga"
   },
   "inputTrimValidator": {
-    "message": "Input must not contain only whitespace.",
+    "message": "Indata får inte bara innehålla blanksteg.",
     "description": "Notification to inform the user that a form's input can't contain only whitespace."
   },
   "inputEmail": {
@@ -2676,7 +2700,7 @@
     "message": "Välj en samling"
   },
   "importTargetHint": {
-    "message": "Select this option if you want the imported file contents moved to a $DESTINATION$",
+    "message": "Välj det här alternativet om du vill att innehållet i den importerade filen ska flyttas till en $DESTINATION$",
     "description": "Located as a hint under the import target. Will be appended by either folder or collection, depending if the user is importing into an individual or an organizational vault.",
     "placeholders": {
       "destination": {
@@ -2723,7 +2747,7 @@
     "message": "Bekräfta fillösenord"
   },
   "multifactorAuthenticationCancelled": {
-    "message": "Multifactor authentication cancelled"
+    "message": "Flerfaktorsautentisering avbruten"
   },
   "noLastPassDataFound": {
     "message": "Ingen LastPass-data hittades"
@@ -2741,7 +2765,7 @@
     "message": "Felaktig PIN-kod"
   },
   "multifactorAuthenticationFailed": {
-    "message": "Multifactor authentication failed"
+    "message": "Flerfaktorsautentisering misslyckades"
   },
   "includeSharedFolders": {
     "message": "Inkludera delade mappar"
@@ -2753,13 +2777,13 @@
     "message": "Importerar ditt konto..."
   },
   "lastPassMFARequired": {
-    "message": "LastPass multifactor authentication required"
+    "message": "LastPass flerfaktorsautentisering krävs"
   },
   "lastPassMFADesc": {
     "message": "Ange din engångskod från din autentiseringsapp"
   },
   "lastPassOOBDesc": {
-    "message": "Approve the login request in your authentication app or enter a one-time passcode."
+    "message": "Godkänn inloggningsbegäran i din autentiseringsapp eller ange en engångskod."
   },
   "passcode": {
     "message": "Kod"
@@ -2800,16 +2824,16 @@
     "description": "Label indicating the most common import formats"
   },
   "success": {
-    "message": "Success"
+    "message": "Lyckades"
   },
   "troubleshooting": {
     "message": "Felsökning"
   },
   "disableHardwareAccelerationRestart": {
-    "message": "Disable hardware acceleration and restart"
+    "message": "Inaktivera hårdvaruacceleration och starta om"
   },
   "enableHardwareAccelerationRestart": {
-    "message": "Enable hardware acceleration and restart"
+    "message": "Inaktivera hårdvaruacceleration och starta om"
   },
   "removePasskey": {
     "message": "Ta bort nyckel"
@@ -2818,13 +2842,13 @@
     "message": "Nyckel borttagen"
   },
   "errorAssigningTargetCollection": {
-    "message": "Error assigning target collection."
+    "message": "Fel vid tilldelning av målsamling."
   },
   "errorAssigningTargetFolder": {
-    "message": "Error assigning target folder."
+    "message": "Fel vid tilldelning av målmapp."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Visa objekt i $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2834,7 +2858,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Tillbaka till $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2844,11 +2868,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Tillbaka",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Ta bort $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/te/messages.json b/apps/desktop/src/locales/te/messages.json
index d8cb372359c..c489ab72602 100644
--- a/apps/desktop/src/locales/te/messages.json
+++ b/apps/desktop/src/locales/te/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/th/messages.json b/apps/desktop/src/locales/th/messages.json
index a89bd7518fb..dce9013765f 100644
--- a/apps/desktop/src/locales/th/messages.json
+++ b/apps/desktop/src/locales/th/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Switch account"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Options"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/tr/messages.json b/apps/desktop/src/locales/tr/messages.json
index 73d2b6dc07d..ad828189877 100644
--- a/apps/desktop/src/locales/tr/messages.json
+++ b/apps/desktop/src/locales/tr/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Hesabı değiştir"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Seçenekler"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Giriş istendi"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Açığa Çıkmış Ana Parola"
   },
diff --git a/apps/desktop/src/locales/uk/messages.json b/apps/desktop/src/locales/uk/messages.json
index dbc0911430d..6503f3c19ab 100644
--- a/apps/desktop/src/locales/uk/messages.json
+++ b/apps/desktop/src/locales/uk/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Перемкнути обліковий запис"
   },
+  "alreadyHaveAccount": {
+    "message": "Вже маєте обліковий запис?"
+  },
   "options": {
     "message": "Налаштування"
   },
@@ -2133,7 +2136,7 @@
     "message": "Згенеруйте псевдонім е-пошти зі стороннім сервісом пересилання."
   },
   "forwarderError": {
-    "message": "$SERVICENAME$ error: $ERRORMESSAGE$",
+    "message": "Помилка $SERVICENAME$: $ERRORMESSAGE$",
     "description": "Reports an error returned by a forwarding service to the user.",
     "placeholders": {
       "servicename": {
@@ -2147,11 +2150,11 @@
     }
   },
   "forwarderGeneratedBy": {
-    "message": "Generated by Bitwarden.",
+    "message": "Згенеровано Bitwarden.",
     "description": "Displayed with the address on the forwarding service's configuration screen."
   },
   "forwarderGeneratedByWithWebsite": {
-    "message": "Website: $WEBSITE$. Generated by Bitwarden.",
+    "message": "Вебсайт: $WEBSITE$. Згенеровано Bitwarden.",
     "description": "Displayed with the address on the forwarding service's configuration screen.",
     "placeholders": {
       "WEBSITE": {
@@ -2161,7 +2164,7 @@
     }
   },
   "forwaderInvalidToken": {
-    "message": "Invalid $SERVICENAME$ API token",
+    "message": "Недійсний токен API для $SERVICENAME$",
     "description": "Displayed when the user's API token is empty or rejected by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2171,7 +2174,7 @@
     }
   },
   "forwaderInvalidTokenWithMessage": {
-    "message": "Invalid $SERVICENAME$ API token: $ERRORMESSAGE$",
+    "message": "Недійсний токен API для $SERVICENAME$: $ERRORMESSAGE$",
     "description": "Displayed when the user's API token is rejected by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -2185,7 +2188,7 @@
     }
   },
   "forwarderNoAccountId": {
-    "message": "Unable to obtain $SERVICENAME$ masked email account ID.",
+    "message": "Не вдалося отримати ідентифікатор замаскованої е-пошти облікового запису для $SERVICENAME$.",
     "description": "Displayed when the forwarding service fails to return an account ID.",
     "placeholders": {
       "servicename": {
@@ -2195,7 +2198,7 @@
     }
   },
   "forwarderNoDomain": {
-    "message": "Invalid $SERVICENAME$ domain.",
+    "message": "Недійсний домен для $SERVICENAME$.",
     "description": "Displayed when the domain is empty or domain authorization failed at the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2205,7 +2208,7 @@
     }
   },
   "forwarderNoUrl": {
-    "message": "Invalid $SERVICENAME$ url.",
+    "message": "Недійсна URL-адреса для $SERVICENAME$.",
     "description": "Displayed when the url of the forwarding service wasn't supplied.",
     "placeholders": {
       "servicename": {
@@ -2215,7 +2218,7 @@
     }
   },
   "forwarderUnknownError": {
-    "message": "Unknown $SERVICENAME$ error occurred.",
+    "message": "Сталася невідома помилка $SERVICENAME$.",
     "description": "Displayed when the forwarding service failed due to an unknown error.",
     "placeholders": {
       "servicename": {
@@ -2225,7 +2228,7 @@
     }
   },
   "forwarderUnknownForwarder": {
-    "message": "Unknown forwarder: '$SERVICENAME$'.",
+    "message": "Невідомий засіб переспрямування: '$SERVICENAME$'.",
     "description": "Displayed when the forwarding service is not supported.",
     "placeholders": {
       "servicename": {
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Виконано запит входу"
   },
+  "creatingAccountOn": {
+    "message": "Створення облікового запису"
+  },
+  "checkYourEmail": {
+    "message": "Перевірте свою електронну пошту"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Перейдіть за посиланням у листі, надісланому на"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "і завершіть створення облікового запису."
+  },
+  "noEmail": {
+    "message": "Не отримали електронного листа?"
+  },
+  "goBack": {
+    "message": "Поверніться назад"
+  },
+  "toEditYourEmailAddress": {
+    "message": "і виправте адресу електронної пошти."
+  },
   "exposedMasterPassword": {
     "message": "Головний пароль викрито"
   },
@@ -2824,7 +2848,7 @@
     "message": "Помилка призначення цільової теки."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Переглянути записи в $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2834,7 +2858,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Назад до $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2844,11 +2868,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Назад",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Вилучити $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/vi/messages.json b/apps/desktop/src/locales/vi/messages.json
index bea273740f6..1a0689b1329 100644
--- a/apps/desktop/src/locales/vi/messages.json
+++ b/apps/desktop/src/locales/vi/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "Chuyển tài khoản"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "Tùy chọn"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "Log in requested"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "Exposed Master Password"
   },
diff --git a/apps/desktop/src/locales/zh_CN/messages.json b/apps/desktop/src/locales/zh_CN/messages.json
index 71993f6e7bd..35cb9ec07ba 100644
--- a/apps/desktop/src/locales/zh_CN/messages.json
+++ b/apps/desktop/src/locales/zh_CN/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "切换账户"
   },
+  "alreadyHaveAccount": {
+    "message": "已经拥有账户了吗？"
+  },
   "options": {
     "message": "选项"
   },
@@ -2269,7 +2272,7 @@
     "message": "记住电子邮件地址"
   },
   "notYou": {
-    "message": "不是你？"
+    "message": "不是您吗？"
   },
   "newAroundHere": {
     "message": "初来乍到吗？"
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "已请求登录"
   },
+  "creatingAccountOn": {
+    "message": "创建账户于"
+  },
+  "checkYourEmail": {
+    "message": "检查您的电子邮箱"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "点击发送到电子邮件中的链接"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "然后继续创建您的账户。"
+  },
+  "noEmail": {
+    "message": "没收到电子邮件吗？"
+  },
+  "goBack": {
+    "message": "返回"
+  },
+  "toEditYourEmailAddress": {
+    "message": "编辑您的电子邮件地址。"
+  },
   "exposedMasterPassword": {
     "message": "已暴露的主密码"
   },
@@ -2787,7 +2811,7 @@
     "message": "从 CSV 导入"
   },
   "lastPassTryAgainCheckEmail": {
-    "message": "请重试或查找来自 LastPass 的电子邮件以验证您的身份。"
+    "message": "请重试或查找来自 LastPass 的可以验证您的身份的电子邮件。"
   },
   "collection": {
     "message": "集合"
@@ -2824,7 +2848,7 @@
     "message": "分配目标文件夹时出错。"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "查看 $NAME$ 中的项目",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2834,7 +2858,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "返回 $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2844,11 +2868,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "返回",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "删除 $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/zh_TW/messages.json b/apps/desktop/src/locales/zh_TW/messages.json
index 373875628a4..9ff900a41e2 100644
--- a/apps/desktop/src/locales/zh_TW/messages.json
+++ b/apps/desktop/src/locales/zh_TW/messages.json
@@ -2050,6 +2050,9 @@
   "switchAccount": {
     "message": "切換帳戶"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "options": {
     "message": "選項"
   },
@@ -2390,6 +2393,27 @@
   "logInRequested": {
     "message": "已要求登入"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "exposedMasterPassword": {
     "message": "已暴露的主密碼"
   },

From 8656ec54170636cc48c67ef258ca4094f5c48b43 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Wed, 29 May 2024 20:16:31 +0000
Subject: [PATCH 027/138] Autosync the updated translations (#9419)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/browser/src/_locales/ar/messages.json    |  30 ++++
 apps/browser/src/_locales/az/messages.json    |  66 ++++++---
 apps/browser/src/_locales/be/messages.json    |  30 ++++
 apps/browser/src/_locales/bg/messages.json    |  36 ++++-
 apps/browser/src/_locales/bn/messages.json    |  30 ++++
 apps/browser/src/_locales/bs/messages.json    |  30 ++++
 apps/browser/src/_locales/ca/messages.json    |  30 ++++
 apps/browser/src/_locales/cs/messages.json    |  36 ++++-
 apps/browser/src/_locales/cy/messages.json    |  30 ++++
 apps/browser/src/_locales/da/messages.json    |  30 ++++
 apps/browser/src/_locales/de/messages.json    |  42 +++++-
 apps/browser/src/_locales/el/messages.json    |  30 ++++
 apps/browser/src/_locales/en_GB/messages.json |  30 ++++
 apps/browser/src/_locales/en_IN/messages.json |  36 ++++-
 apps/browser/src/_locales/es/messages.json    |  36 ++++-
 apps/browser/src/_locales/et/messages.json    |  30 ++++
 apps/browser/src/_locales/eu/messages.json    |  30 ++++
 apps/browser/src/_locales/fa/messages.json    |  30 ++++
 apps/browser/src/_locales/fi/messages.json    |  84 +++++++----
 apps/browser/src/_locales/fil/messages.json   |  30 ++++
 apps/browser/src/_locales/fr/messages.json    |  30 ++++
 apps/browser/src/_locales/gl/messages.json    |  30 ++++
 apps/browser/src/_locales/he/messages.json    |  30 ++++
 apps/browser/src/_locales/hi/messages.json    |  30 ++++
 apps/browser/src/_locales/hr/messages.json    |  30 ++++
 apps/browser/src/_locales/hu/messages.json    |  36 ++++-
 apps/browser/src/_locales/id/messages.json    |  36 ++++-
 apps/browser/src/_locales/it/messages.json    |  36 ++++-
 apps/browser/src/_locales/ja/messages.json    |  36 ++++-
 apps/browser/src/_locales/ka/messages.json    |  30 ++++
 apps/browser/src/_locales/km/messages.json    |  30 ++++
 apps/browser/src/_locales/kn/messages.json    |  30 ++++
 apps/browser/src/_locales/ko/messages.json    |  30 ++++
 apps/browser/src/_locales/lt/messages.json    |  30 ++++
 apps/browser/src/_locales/lv/messages.json    |  36 ++++-
 apps/browser/src/_locales/ml/messages.json    |  30 ++++
 apps/browser/src/_locales/mr/messages.json    |  30 ++++
 apps/browser/src/_locales/my/messages.json    |  30 ++++
 apps/browser/src/_locales/nb/messages.json    |  30 ++++
 apps/browser/src/_locales/ne/messages.json    |  30 ++++
 apps/browser/src/_locales/nl/messages.json    |  64 ++++++---
 apps/browser/src/_locales/nn/messages.json    |  30 ++++
 apps/browser/src/_locales/or/messages.json    |  30 ++++
 apps/browser/src/_locales/pl/messages.json    |  30 ++++
 apps/browser/src/_locales/pt_BR/messages.json |  88 ++++++++----
 apps/browser/src/_locales/pt_PT/messages.json |  30 ++++
 apps/browser/src/_locales/ro/messages.json    |  30 ++++
 apps/browser/src/_locales/ru/messages.json    |  30 ++++
 apps/browser/src/_locales/si/messages.json    |  30 ++++
 apps/browser/src/_locales/sk/messages.json    |  36 ++++-
 apps/browser/src/_locales/sl/messages.json    |  30 ++++
 apps/browser/src/_locales/sr/messages.json    |  76 ++++++----
 apps/browser/src/_locales/sv/messages.json    | 130 +++++++++++-------
 apps/browser/src/_locales/te/messages.json    |  30 ++++
 apps/browser/src/_locales/th/messages.json    |  30 ++++
 apps/browser/src/_locales/tr/messages.json    |  54 ++++++--
 apps/browser/src/_locales/uk/messages.json    |  36 ++++-
 apps/browser/src/_locales/vi/messages.json    |  30 ++++
 apps/browser/src/_locales/zh_CN/messages.json |  46 +++++--
 apps/browser/src/_locales/zh_TW/messages.json |  30 ++++
 apps/browser/store/locales/sv/copy.resx       |   6 +-
 apps/browser/store/locales/zh_CN/copy.resx    |  28 ++--
 62 files changed, 2040 insertions(+), 240 deletions(-)

diff --git a/apps/browser/src/_locales/ar/messages.json b/apps/browser/src/_locales/ar/messages.json
index fc61b8010f3..c4a07015412 100644
--- a/apps/browser/src/_locales/ar/messages.json
+++ b/apps/browser/src/_locales/ar/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "تم استعادة العنصر"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "سيؤدي تسجيل الخروج إلى إزالة جميع إمكانية الوصول إلى خزنتك ويتطلب المصادقة عبر الإنترنت بعد انتهاء المهلة. هل أنت متأكد من أنك تريد استخدام هذا الإعداد؟"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "الاتحاد الأوروبي",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/az/messages.json b/apps/browser/src/_locales/az/messages.json
index 8b65adc90a8..8b3632da1ba 100644
--- a/apps/browser/src/_locales/az/messages.json
+++ b/apps/browser/src/_locales/az/messages.json
@@ -173,13 +173,19 @@
     "message": "Veb tətbiqlə davam edilsin?"
   },
   "continueToWebAppDesc": {
-    "message": "Explore more features of your Bitwarden account on the web app."
+    "message": "Veb tətbiqində Bitwarden hesabınızın daha çox özəlliyini kəşf edin."
   },
   "continueToHelpCenter": {
-    "message": "Continue to Help Center?"
+    "message": "Kömək Mərkəzi ilə davam edilsin?"
   },
   "continueToHelpCenterDesc": {
-    "message": "Learn more about how to use Bitwarden on the Help Center."
+    "message": "Kömək Mərkəzində Bitwarden-in necə istifadə ediləcəyi ilə bağlı ətraflı öyrənin."
+  },
+  "continueToBrowserExtensionStore": {
+    "message": "Brauzer uzantısını mağazasına gedirsiniz?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Başqalarının Bitwarden-in onlar üçün uyğun olub-olmadığını öyrənməkdə kömək edin. Brauzerin uzantı mağazasını ziyarət edin və qiymətləndirin."
   },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Ana parolunuzu Bitwarden veb tətbiqində dəyişdirə bilərsiniz."
@@ -199,43 +205,43 @@
     "message": "Çıxış"
   },
   "aboutBitwarden": {
-    "message": "About Bitwarden"
+    "message": "Bitwarden haqqında"
   },
   "about": {
     "message": "Haqqında"
   },
   "moreFromBitwarden": {
-    "message": "More from Bitwarden"
+    "message": "\"Bitwarden\"dən daha çoxu"
   },
   "continueToBitwardenDotCom": {
-    "message": "Continue to bitwarden.com?"
+    "message": "bitwarden.com ilə davam edilsin?"
   },
   "bitwardenForBusiness": {
-    "message": "Bitwarden for Business"
+    "message": "Biznes üçün Bitwarden"
   },
   "bitwardenAuthenticator": {
     "message": "Bitwarden Authenticator"
   },
   "continueToAuthenticatorPageDesc": {
-    "message": "Bitwarden Authenticator allows you to store authenticator keys and generate TOTP codes for 2-step verification flows. Learn more on the bitwarden.com website"
+    "message": "Bitwarden Authenticator, kimlik doğrulama açarlarını saxlamağınıza və 2 addımlı doğrulama axınları üçün TOTP kodlarını yaratmağınıza imkan verir. Daha ətraflı bitwarden.com veb saytında öyrənə bilərsiniz"
   },
   "bitwardenSecretsManager": {
-    "message": "Bitwarden Secrets Manager"
+    "message": "Bitwarden Sirr Meneceri"
   },
   "continueToSecretsManagerPageDesc": {
-    "message": "Securely store, manage, and share developer secrets with Bitwarden Secrets Manager. Learn more on the bitwarden.com website."
+    "message": "Bitwarden Sirr Meneceri ilə developer sirlərini güvənli bir şəkildə saxlayın, idarə edin və paylaşın. Daha ətraflı bitwarden.com veb saytında öyrənə bilərsiniz."
   },
   "passwordlessDotDev": {
     "message": "Passwordless.dev"
   },
   "continueToPasswordlessDotDevPageDesc": {
-    "message": "Create smooth and secure login experiences free from traditional passwords with Passwordless.dev. Learn more on the bitwarden.com website."
+    "message": "Passwordless.dev ilə ənənəvi parollardan azad, problemsiz və güvənli giriş təcrübələri yaradın. Daha ətraflı bitwarden.com veb saytında öyrənə bilərsiniz."
   },
   "freeBitwardenFamilies": {
-    "message": "Free Bitwarden Families"
+    "message": "Ödənişsiz Bitwarden Ailələri"
   },
   "freeBitwardenFamiliesPageDesc": {
-    "message": "You are eligible for Free Bitwarden Families. Redeem this offer today in the web app."
+    "message": "Ödənişsiz Bitwarden Ailələri üçün uyğunsunuz. Bu təklifdən veb tətbiqdən yararlanın."
   },
   "version": {
     "message": "Versiya"
@@ -296,7 +302,7 @@
     "message": "Hesablarınız üçün avtomatik olaraq güclü, unikal parollar yaradın."
   },
   "bitWebVaultApp": {
-    "message": "Bitwarden web app"
+    "message": "Bitwarden veb tətbiqi"
   },
   "importItems": {
     "message": "Elementləri daxilə köçür"
@@ -822,7 +828,7 @@
     "message": "Paylaşılan"
   },
   "bitwardenForBusinessPageDesc": {
-    "message": "Bitwarden for Business allows you to share your vault items with others by using an organization. Learn more on the bitwarden.com website."
+    "message": "Bitwarden for Business, bir təşkilat hesabı istifadə edərək anbar elementlərinizi başqaları ilə paylaşmağınıza imkan verir. Daha ətraflı bitwarden.com veb saytında öyrənə bilərsiniz."
   },
   "moveToOrganization": {
     "message": "Təşkilata daşı"
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Element bərpa edildi"
   },
+  "alreadyHaveAccount": {
+    "message": "Artıq hesabınız var?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Çıxış etdikdə anbarınıza bütün müraciətiniz dayanacaq və vaxt bitməsindən sonra onlayn kimlik doğrulaması tələb olunacaq. Bu ayarı istifadə etmək istədiyinizə əminsiniz?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Təşkilat SSO identifikatoru tələb olunur."
   },
+  "creatingAccountOn": {
+    "message": "Hesab yaradılır"
+  },
+  "checkYourEmail": {
+    "message": "E-poçtunuzu yoxlayın"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Göndərilən e-poçtdakı keçidi izləyin"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "və hesabınızı yaratmağa davam edin."
+  },
+  "noEmail": {
+    "message": "E-poçt yoxdur?"
+  },
+  "goBack": {
+    "message": "Geri qayıt"
+  },
+  "toEditYourEmailAddress": {
+    "message": "və e-poçt ünvanına düzəliş et."
+  },
   "eu": {
     "message": "AB",
     "description": "European Union"
@@ -3230,7 +3260,7 @@
     "message": "Hədəf qovluğa təyin etmə xətası."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "$NAME$ daxilindəki elementlərə bax",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3240,7 +3270,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Geri qayıt: $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3253,7 +3283,7 @@
     "message": "Yeni"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Sil: $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/browser/src/_locales/be/messages.json b/apps/browser/src/_locales/be/messages.json
index 4e7be1f47fc..5409816accf 100644
--- a/apps/browser/src/_locales/be/messages.json
+++ b/apps/browser/src/_locales/be/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Элемент адноўлены"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Выхад з сістэмы скасуе ўсе магчымасці доступу да сховішча і запатрабуе аўтэнтыфікацыю праз інтэрнэт пасля завяршэння часу чакання. Вы сапраўды хочаце выкарыстоўваць гэты параметр?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "ЕС",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/bg/messages.json b/apps/browser/src/_locales/bg/messages.json
index 9b3add9ad5f..e6f6cfc14d8 100644
--- a/apps/browser/src/_locales/bg/messages.json
+++ b/apps/browser/src/_locales/bg/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Научете повече относно това как да използвате Битуорден в помощния център."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Продължаване към уеб сайта за разширения на браузъра?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Помогнете на другите да разберат дали Битуорден е подходящ за тях. Посетете уеб сайта за разширения на браузъра си и дайте оценка още сега."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Може да промените главната си парола в уеб приложението на Битуорден."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Записът е възстановен"
   },
+  "alreadyHaveAccount": {
+    "message": "Вече имате регистрация?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Излизането от трезора изцяло спира достъпа до него след изтичане на времето. Ще ви се наложи отново да се идентифицирате, за да го достъпите. Сигурни ли сте, че искате това действие?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Идентификаторът за еднократна идентификация на организация е задължителен."
   },
+  "creatingAccountOn": {
+    "message": "Създаване на регистрация в"
+  },
+  "checkYourEmail": {
+    "message": "Проверете е-пощата си"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Последвайте връзката в е-писмото изпратено до"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "и продължете със създаването на регистрацията си."
+  },
+  "noEmail": {
+    "message": "Не сте получили е-писмо?"
+  },
+  "goBack": {
+    "message": "Върнете се назад"
+  },
+  "toEditYourEmailAddress": {
+    "message": ", за да редактирате адреса на е-пощата си."
+  },
   "eu": {
     "message": "ЕС",
     "description": "European Union"
@@ -3230,7 +3260,7 @@
     "message": "Грешка при задаването на целева папка."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Преглед на елементите в $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3240,7 +3270,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Назад към $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3253,7 +3283,7 @@
     "message": "Ново"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Премахване на $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/browser/src/_locales/bn/messages.json b/apps/browser/src/_locales/bn/messages.json
index 41fcdb980a3..1635de5bb8b 100644
--- a/apps/browser/src/_locales/bn/messages.json
+++ b/apps/browser/src/_locales/bn/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "বস্তু পুনরুদ্ধারকৃত"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "লগ আউট করা আপনার ভল্টের সমস্ত অ্যাক্সেস সরিয়ে ফেলবে এবং সময়সীমার পরে অনলাইন প্রমাণীকরণের প্রয়োজন। আপনি কি নিশ্চিত যে এই সেটিংটি ব্যবহার করবেন?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/bs/messages.json b/apps/browser/src/_locales/bs/messages.json
index 7b85e5c3619..db55f4784e4 100644
--- a/apps/browser/src/_locales/bs/messages.json
+++ b/apps/browser/src/_locales/bs/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Item restored"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Logging out will remove all access to your vault and requires online authentication after the timeout period. Are you sure you want to use this setting?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/ca/messages.json b/apps/browser/src/_locales/ca/messages.json
index cac7ecc1520..01f66bffd64 100644
--- a/apps/browser/src/_locales/ca/messages.json
+++ b/apps/browser/src/_locales/ca/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Podeu canviar la vostra contrasenya mestra a l'aplicació web de Bitwarden."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Element restaurat"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "En tancar la sessió s'eliminarà tot l'accés a la vostra caixa forta i es requerirà una autenticació en línia després del període de temps d'espera. Esteu segur que voleu utilitzar aquesta configuració?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Es requereix un identificador SSO de l'organització."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "UE",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/cs/messages.json b/apps/browser/src/_locales/cs/messages.json
index 12cfcf1fd74..2939bba1468 100644
--- a/apps/browser/src/_locales/cs/messages.json
+++ b/apps/browser/src/_locales/cs/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Přečtěte si více o tom, jak používat Bitwarden v Centru nápovědy."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Pokračovat do obchdou s rozšířeními pro prohlížeč?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Pomozte ostatním zjistit, zda je Bitwarden pro ně správný. Navštivte obchod s rozšířeními pro prohlížeč a zanechte hodnocení."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Hlavní heslo můžete změnit ve webové aplikaci Bitwardenu."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Položka byla obnovena"
   },
+  "alreadyHaveAccount": {
+    "message": "Už máte účet?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Po vypršení časového limitu dojde k odhlášení. Přístup k trezoru bude odebrán a pro opětovné přihlášení bude vyžadováno online ověření. Opravdu chcete použít toto nastavení?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Je vyžadován SSO identifikátor organizace."
   },
+  "creatingAccountOn": {
+    "message": "Vytváření účtu na"
+  },
+  "checkYourEmail": {
+    "message": "Zkontrolujte Váš e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Následujte pokyny v e-mailu poslaném na"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "a pokračujte ve vytváření Vašeho účtu."
+  },
+  "noEmail": {
+    "message": "Žádný e-mail?"
+  },
+  "goBack": {
+    "message": "Zpět"
+  },
+  "toEditYourEmailAddress": {
+    "message": "pro úpravu Vaší e-mailové adresy."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
@@ -3230,7 +3260,7 @@
     "message": "Chyba při přiřazování cílové složky."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Zobrazit položky v $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3240,7 +3270,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Zpět do $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3253,7 +3283,7 @@
     "message": "Nové"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Odebrat $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/browser/src/_locales/cy/messages.json b/apps/browser/src/_locales/cy/messages.json
index 664a2f83f02..58f7bc95446 100644
--- a/apps/browser/src/_locales/cy/messages.json
+++ b/apps/browser/src/_locales/cy/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Item restored"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Logging out will remove all access to your vault and requires online authentication after the timeout period. Are you sure you want to use this setting?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "UE",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/da/messages.json b/apps/browser/src/_locales/da/messages.json
index fbee1390d24..8f27f95be02 100644
--- a/apps/browser/src/_locales/da/messages.json
+++ b/apps/browser/src/_locales/da/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Læs mere i Hjælpecenter om, hvordan man bruger Bitwarden."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Fortsæt til webbrowserudvidelsesbutik?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Hjælp andre med at finde ud af, om Bitwarden er det rigtige for dem. Besøg App Store og skriv en bedømmelse nu."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Hovedadgangskoden kan ændres via Bitwarden web-appen."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Element gendannet"
   },
+  "alreadyHaveAccount": {
+    "message": "Har allerede en konto?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Ved at logge ud fjernes al adgang til din boks og kræver online-godkendelse efter timeout-perioden. Er du sikker på, at du vil bruge denne indstilling?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organisations SSO-identifikator kræves."
   },
+  "creatingAccountOn": {
+    "message": "Opretter konto på"
+  },
+  "checkYourEmail": {
+    "message": "Tjek din e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Følg linket i e-mailen sendt til"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "og fortsæt med kontooprettelsen."
+  },
+  "noEmail": {
+    "message": "Ingen e-mail?"
+  },
+  "goBack": {
+    "message": "Gå tilbage"
+  },
+  "toEditYourEmailAddress": {
+    "message": "for at redigere e-mailadressen."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/de/messages.json b/apps/browser/src/_locales/de/messages.json
index a204822e3b4..8a7c3e0067d 100644
--- a/apps/browser/src/_locales/de/messages.json
+++ b/apps/browser/src/_locales/de/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Erfahre mehr über die Verwendung von Bitwarden im Hilfezentrum."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Weiter zum Store für Browser-Erweiterungen?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Hilf anderen herauszufinden, ob Bitwarden für sie das Richtige ist. Besuch den Erweiterungs-Store deines Browsers und hinterlasse jetzt eine Bewertung."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Du kannst dein Master-Passwort in der Bitwarden Web-App ändern."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Eintrag wiederhergestellt"
   },
+  "alreadyHaveAccount": {
+    "message": "Hast du bereits ein Konto?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Nach dem Ausloggen verlierest du jeglichen Zugriff auf deinen Tresor und es ist nach Ablauf der Timeout-Zeit eine Online-Authentifizierung erforderlich. Bist du sicher, dass du diese Einstellung nutzen möchten?"
   },
@@ -1688,7 +1697,7 @@
     "message": "Ihr neues Master-Passwort entspricht nicht den Anforderungen der Richtlinie."
   },
   "acceptPolicies": {
-    "message": "Durch Anwählen dieses Kästchens erklären Sie sich mit folgendem einverstanden:"
+    "message": "Durch Anwählen dieses Kästchens erklärst du dich mit Folgendem einverstanden:"
   },
   "acceptPoliciesRequired": {
     "message": "Die Nutzungsbedingungen und Datenschutzerklärung wurden nicht akzeptiert."
@@ -1757,7 +1766,7 @@
     "message": "Nutzer gesperrt oder abgemeldet"
   },
   "biometricsNotUnlockedDesc": {
-    "message": "Bitte entsperren Sie diesen Nutzer in der Desktop-Anwendung und versuchen Sie es erneut."
+    "message": "Bitte entsperre diesen Nutzer in der Desktop-Anwendung und versuche es erneut."
   },
   "biometricsFailedTitle": {
     "message": "Biometrie fehlgeschlagen"
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "SSO-Kennung der Organisation erforderlich."
   },
+  "creatingAccountOn": {
+    "message": "Konto wird erstellt bei"
+  },
+  "checkYourEmail": {
+    "message": "Überprüfe deine E-Mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Folge dem Link in der E-Mail an"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "und fahre mit der Erstellung deines Kontos fort."
+  },
+  "noEmail": {
+    "message": "Keine E-Mail?"
+  },
+  "goBack": {
+    "message": "Geh zurück"
+  },
+  "toEditYourEmailAddress": {
+    "message": ", um deine E-Mail-Adresse zu bearbeiten."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
@@ -3183,7 +3213,7 @@
     "message": "Speichere einen Login-Eintrag für diese Seite zum automatischen Ausfüllen"
   },
   "yourVaultIsEmpty": {
-    "message": "Ihr Tresor hat keine Einträge"
+    "message": "Dein Tresor hat keine Einträge"
   },
   "noItemsMatchSearch": {
     "message": "Deine Suche ergab keine Treffer"
@@ -3230,7 +3260,7 @@
     "message": "Fehler beim Zuweisen des Ziel-Ordners."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Einträge in $NAME$ anzeigen",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3240,7 +3270,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Zurück zu $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3253,7 +3283,7 @@
     "message": "Neu"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "$NAME$ entfernen",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/browser/src/_locales/el/messages.json b/apps/browser/src/_locales/el/messages.json
index 4453114be1e..365f8475a07 100644
--- a/apps/browser/src/_locales/el/messages.json
+++ b/apps/browser/src/_locales/el/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Στοιχείο που έχει Ανακτηθεί"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Η αποσύνδεση θα καταργήσει όλη την πρόσβαση στο vault σας και απαιτεί online έλεγχο ταυτότητας μετά το χρονικό όριο λήξης. Είστε βέβαιοι ότι θέλετε να χρησιμοποιήσετε αυτήν τη ρύθμιση;"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Απαιτείται αναγνωριστικό οργανισμού SSO."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "ΕΕ",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/en_GB/messages.json b/apps/browser/src/_locales/en_GB/messages.json
index 06cf083567a..ffde447604b 100644
--- a/apps/browser/src/_locales/en_GB/messages.json
+++ b/apps/browser/src/_locales/en_GB/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Centre."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Item restored"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Logging out will remove all access to your vault and requires online authentication after the timeout period. Are you sure you want to use this setting?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organisation SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/en_IN/messages.json b/apps/browser/src/_locales/en_IN/messages.json
index be2b1b0055e..3ceedc40deb 100644
--- a/apps/browser/src/_locales/en_IN/messages.json
+++ b/apps/browser/src/_locales/en_IN/messages.json
@@ -176,10 +176,16 @@
     "message": "Explore more features of your Bitwarden account on the web app."
   },
   "continueToHelpCenter": {
-    "message": "Continue to Help Center?"
+    "message": "Continue to Help Centre?"
   },
   "continueToHelpCenterDesc": {
-    "message": "Learn more about how to use Bitwarden on the Help Center."
+    "message": "Learn more about how to use Bitwarden on the Help Centre."
+  },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
   },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
@@ -822,7 +828,7 @@
     "message": "Shared"
   },
   "bitwardenForBusinessPageDesc": {
-    "message": "Bitwarden for Business allows you to share your vault items with others by using an organization. Learn more on the bitwarden.com website."
+    "message": "Bitwarden for Business allows you to share your vault items with others by using an organisation. Learn more on the bitwarden.com website."
   },
   "moveToOrganization": {
     "message": "Move to organisation"
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Restored item"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Logging out will remove all access to your vault and requires online authentication after the timeout period. Are you sure you want to use this setting?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organisation SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/es/messages.json b/apps/browser/src/_locales/es/messages.json
index fdbbe165465..3550fa68c03 100644
--- a/apps/browser/src/_locales/es/messages.json
+++ b/apps/browser/src/_locales/es/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Obtén más sobre cómo utilizar Bitwarden en el Centro de Ayuda."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "¿Continuar a la tienda de extensiones del navegador?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Ayuda a otros a averiguar si Bitwarden es correcto para ellos. Visita la tienda de extensiones de tu navegador y deja una calificación ahora."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Puedes cambiar la contraseña maestra en la aplicación web de Bitwarden."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Elemento restaurado"
   },
+  "alreadyHaveAccount": {
+    "message": "¿Ya tienes una cuenta?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Cerrar sesión eliminará todo el acceso a tu caja fuerte y requerirá autenticación en línea después del tiempo de espera. ¿Estás seguro de que quieres usar esta configuración?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Se requiere un identificador único de inicio de sesión de la organización."
   },
+  "creatingAccountOn": {
+    "message": "Crea una cuenta en"
+  },
+  "checkYourEmail": {
+    "message": "Comprueba tu correo electrónico"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Sigue el enlace en el correo electrónico enviado a"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "y continúa creando tu cuenta."
+  },
+  "noEmail": {
+    "message": "¿Sin correo electrónico?"
+  },
+  "goBack": {
+    "message": "Volver"
+  },
+  "toEditYourEmailAddress": {
+    "message": "para editar la dirección de correo electrónico."
+  },
   "eu": {
     "message": "Unión Europea",
     "description": "European Union"
@@ -3230,7 +3260,7 @@
     "message": "Error al asignar la carpeta de destino."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Ver elementos en $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3240,7 +3270,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Volver a $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3253,7 +3283,7 @@
     "message": "Nuevo"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Eliminar $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/browser/src/_locales/et/messages.json b/apps/browser/src/_locales/et/messages.json
index 0d38859fead..8fb5274c52f 100644
--- a/apps/browser/src/_locales/et/messages.json
+++ b/apps/browser/src/_locales/et/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Kirje on taastatud"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Väljalogimine eemaldab hoidlale ligipääsu ning nõuab pärast ajalõpu perioodi uuesti autentimist. Oled kindel, et soovid seda valikut kasutada?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Nõutav on organisatsiooni SSO identifikaator."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EL",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/eu/messages.json b/apps/browser/src/_locales/eu/messages.json
index 03703412b86..60339f16b14 100644
--- a/apps/browser/src/_locales/eu/messages.json
+++ b/apps/browser/src/_locales/eu/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Elementua berreskuratua"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Saioa ixteak kutxa gotorreko sarrera guztia kenduko du eta itxaronaldiaren ondoren lineako autentifikazioa eskatuko du. Ziur zaude hau egin nahi duzula?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/fa/messages.json b/apps/browser/src/_locales/fa/messages.json
index ef8893b87c2..a493a1c24bf 100644
--- a/apps/browser/src/_locales/fa/messages.json
+++ b/apps/browser/src/_locales/fa/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "مورد بازیابی شد"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "خروج از سیستم، تمام دسترسی ها به گاو‌صندوق شما را از بین می‌برد و نیاز به احراز هویت آنلاین پس از مدت زمان توقف دارد. آیا مطمئن هستید که می‌خواهید از این تنظیمات استفاده کنید؟"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "شناسه سازمان SSO مورد نیاز است."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "اروپا",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/fi/messages.json b/apps/browser/src/_locales/fi/messages.json
index c1647843c26..05d2d3ed952 100644
--- a/apps/browser/src/_locales/fi/messages.json
+++ b/apps/browser/src/_locales/fi/messages.json
@@ -173,13 +173,19 @@
     "message": "Avataanko verkkosovellus?"
   },
   "continueToWebAppDesc": {
-    "message": "Explore more features of your Bitwarden account on the web app."
+    "message": "Tutustu Bitwarden-tilisi muihin ominaisuuksiin verkkosovelluksessa."
   },
   "continueToHelpCenter": {
-    "message": "Continue to Help Center?"
+    "message": "Avataanko tukikeskus?"
   },
   "continueToHelpCenterDesc": {
-    "message": "Learn more about how to use Bitwarden on the Help Center."
+    "message": "Lue Tukikeskuksesta lisää Bitwardenin käytöstä."
+  },
+  "continueToBrowserExtensionStore": {
+    "message": "Avataanko selaimen laajennuskauppa?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Auta muita selvittämään sopiiko Bitwarden heille. Arvioi se selaimesi laajennuskaupassa nyt."
   },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Voit vaihtaa pääsalasanasi Bitwardenin verkkosovelluksessa."
@@ -199,16 +205,16 @@
     "message": "Kirjaudu ulos"
   },
   "aboutBitwarden": {
-    "message": "About Bitwarden"
+    "message": "Tietoja Bitwardenista"
   },
   "about": {
     "message": "Tietoja"
   },
   "moreFromBitwarden": {
-    "message": "More from Bitwarden"
+    "message": "Lisää Bitwardenilta"
   },
   "continueToBitwardenDotCom": {
-    "message": "Continue to bitwarden.com?"
+    "message": "Avataanko bitwarden.com?"
   },
   "bitwardenForBusiness": {
     "message": "Bitwarden for Business"
@@ -217,25 +223,25 @@
     "message": "Bitwarden Authenticator"
   },
   "continueToAuthenticatorPageDesc": {
-    "message": "Bitwarden Authenticator allows you to store authenticator keys and generate TOTP codes for 2-step verification flows. Learn more on the bitwarden.com website"
+    "message": "Bitwarden Authenticatorin avulla voit säilyttää todennusavaimet ja luoda TOTP-koodeja kaksivaiheista tunnistautumista varten. Lue lisää bitwarden.com-sivustolta."
   },
   "bitwardenSecretsManager": {
-    "message": "Bitwarden Secrets Manager"
+    "message": "Bitwarden Salaisuushallinta"
   },
   "continueToSecretsManagerPageDesc": {
-    "message": "Securely store, manage, and share developer secrets with Bitwarden Secrets Manager. Learn more on the bitwarden.com website."
+    "message": "Säilytä, hallitse ja jaa kehittäjäsalaisuuksia turvallisesti Bitwardenin Salaisuushallinnalla. Lue lisää bitwarden.com-sivustolta."
   },
   "passwordlessDotDev": {
     "message": "Passwordless.dev"
   },
   "continueToPasswordlessDotDevPageDesc": {
-    "message": "Create smooth and secure login experiences free from traditional passwords with Passwordless.dev. Learn more on the bitwarden.com website."
+    "message": "Luo perinteisistä salasanoista vapaita sujuvia ja turvallisia kirjautumisratkaisuja Passwordless.dev-palvelussa. Tutustu palveluun bitwarden.com-sivustolla."
   },
   "freeBitwardenFamilies": {
-    "message": "Free Bitwarden Families"
+    "message": "Ilmainen Bitwarden Families"
   },
   "freeBitwardenFamiliesPageDesc": {
-    "message": "You are eligible for Free Bitwarden Families. Redeem this offer today in the web app."
+    "message": "Olet oikeutettu ilmaiseen Bitwarden Families -tilaukseen. Lunasta tarjous verkkosovelluksessa tänään."
   },
   "version": {
     "message": "Versio"
@@ -296,7 +302,7 @@
     "message": "Luo kirjautumistiedoillesi automaattisesti vahvoja, ainutlaatuisia salasanoja."
   },
   "bitWebVaultApp": {
-    "message": "Bitwarden web app"
+    "message": "Bitwarden Verkkosovellus"
   },
   "importItems": {
     "message": "Tuo kohteita"
@@ -822,7 +828,7 @@
     "message": "Jaettu"
   },
   "bitwardenForBusinessPageDesc": {
-    "message": "Bitwarden for Business allows you to share your vault items with others by using an organization. Learn more on the bitwarden.com website."
+    "message": "Bitwarden for Business mahdollistaa holvisi sisällön jakamisen organisaation avulla. Lue lisää osoitteesta bitwarden.com."
   },
   "moveToOrganization": {
     "message": "Siirrä organisaatiolle"
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Kohde palautettiin"
   },
+  "alreadyHaveAccount": {
+    "message": "Onko sinulla jo tili?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Uloskirjautuminen estää pääsyn holviisi ja vaatii ajan umpeuduttua todennuksen Internet-yhteyden välityksellä. Haluatko varmasti käyttää asetusta?"
   },
@@ -1754,10 +1763,10 @@
     "message": "Selaimen biometriaa ei tueta tällä laitteella."
   },
   "biometricsNotUnlockedTitle": {
-    "message": "User locked or logged out"
+    "message": "Käyttäjä on lukittu tai kirjattu ulos"
   },
   "biometricsNotUnlockedDesc": {
-    "message": "Please unlock this user in the desktop application and try again."
+    "message": "Poista käyttäjän lukitus työpöytäsovelluksesta ja yritä uudelleen."
   },
   "biometricsFailedTitle": {
     "message": "Biometria epäonnistui"
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organisaation kertakirjautumistunniste tarvitaan."
   },
+  "creatingAccountOn": {
+    "message": "Luodaan tili palvelimelle"
+  },
+  "checkYourEmail": {
+    "message": "Tarkasta sähköpostisi"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Seuraa viestin linkkiä, joka lähetettiin sähköpostitse osoitteeseen"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "ja jatka tilin luontia."
+  },
+  "noEmail": {
+    "message": "Etkö saanut viestiä?"
+  },
+  "goBack": {
+    "message": "Palaa takaisin"
+  },
+  "toEditYourEmailAddress": {
+    "message": "muokataksesi sähköpostiosoitettasi."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
@@ -3177,22 +3207,22 @@
     "description": "This will be part of a larger sentence, which will read like so: Assign these items to a collection from the Admin Console to make them visible."
   },
   "autofillSuggestions": {
-    "message": "Auto-fill suggestions"
+    "message": "Automaattitäytä ehdotukset"
   },
   "autofillSuggestionsTip": {
-    "message": "Save a login item for this site to auto-fill"
+    "message": "Tallenna sivustolle kirjautumiskohde automaattista täyttöä varten"
   },
   "yourVaultIsEmpty": {
-    "message": "Your vault is empty"
+    "message": "Holvisi on tyhjä"
   },
   "noItemsMatchSearch": {
-    "message": "No items match your search"
+    "message": "Mikään kohde ei vastaa hakuasi"
   },
   "clearFiltersOrTryAnother": {
-    "message": "Clear filters or try another search term"
+    "message": "Tyhjennä suodattimet tai kokeile toista hakutermiä"
   },
   "copyInfo": {
-    "message": "Copy info, $ITEMNAME$",
+    "message": "Kopio tiedot, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
       "itemname": {
@@ -3202,7 +3232,7 @@
     }
   },
   "moreOptions": {
-    "message": "More options, $ITEMNAME$",
+    "message": "Lisää valintoja, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
       "itemname": {
@@ -3230,7 +3260,7 @@
     "message": "Virhe määritettäessä kohdekansiota."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Näytä kohteen $NAME$ kohteet",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3240,7 +3270,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Palaa kohteeseen $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3250,10 +3280,10 @@
     }
   },
   "new": {
-    "message": "New"
+    "message": "Uusi"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Poista $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/browser/src/_locales/fil/messages.json b/apps/browser/src/_locales/fil/messages.json
index c75700da1c5..061da97446b 100644
--- a/apps/browser/src/_locales/fil/messages.json
+++ b/apps/browser/src/_locales/fil/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Item na nai-restore"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Sigurado ka bang gusto mong gamitin ang setting na ito? Pagsasara ay magtatanggal ng lahat ng access sa iyong vault at nangangailangan ng online authentication pagkatapos ng timeout period?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/fr/messages.json b/apps/browser/src/_locales/fr/messages.json
index 4ace8752b3c..c062390f228 100644
--- a/apps/browser/src/_locales/fr/messages.json
+++ b/apps/browser/src/_locales/fr/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Vous pouvez modifier votre mot de passe principal sur l'application web de Bitwarden."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Élément restauré"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "La déconnexion supprimera tout accès à votre coffre et nécessitera une authentification en ligne après la période d'expiration. Êtes-vous sûr de vouloir utiliser ce paramètre ?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Identifiant SSO de l'organisation requis."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "UE",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/gl/messages.json b/apps/browser/src/_locales/gl/messages.json
index 873e8196888..b92e05269eb 100644
--- a/apps/browser/src/_locales/gl/messages.json
+++ b/apps/browser/src/_locales/gl/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Podes cambiar o teu contrasinal mestre na aplicación web de Bitwarden."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Item restored"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Logging out will remove all access to your vault and requires online authentication after the timeout period. Are you sure you want to use this setting?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "UE",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/he/messages.json b/apps/browser/src/_locales/he/messages.json
index 3a31c9f4edf..fd49f7e55e8 100644
--- a/apps/browser/src/_locales/he/messages.json
+++ b/apps/browser/src/_locales/he/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "פריט ששוחזר"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "יציאה מהחשבון תסיר את כל הגישה לכספת ויידרש אימות מקוון לאחר משך הזמן שהוקצב. האם אתה בטוח שברצונך להשתמש בהגדרה זו?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/hi/messages.json b/apps/browser/src/_locales/hi/messages.json
index f70d97e3406..48c55b30a83 100644
--- a/apps/browser/src/_locales/hi/messages.json
+++ b/apps/browser/src/_locales/hi/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "बहाल आइटम"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "लॉग आउट करने से वॉल्टमें प्रवेश संभव नहीं होगा और समय समाप्त होने के बाद ऑनलाइन प्रमाणीकरण की आश्यकता होगी। आप इस सेटिंग्स को प्रयोग करने के लिए विश्वस्त हैं?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/hr/messages.json b/apps/browser/src/_locales/hr/messages.json
index 9a4419c77ba..ac452af85ee 100644
--- a/apps/browser/src/_locales/hr/messages.json
+++ b/apps/browser/src/_locales/hr/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Stavka vraćena"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Odjava će ukloniti pristup tvom trezoru i zahtijevati mrežnu potvrdu identiteta nakon isteka vremenske neaktivnosti. Sigurno želiš koristiti ovu postavku?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Potreban je identifikator organizacije."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/hu/messages.json b/apps/browser/src/_locales/hu/messages.json
index d5276f341e6..8b937375a63 100644
--- a/apps/browser/src/_locales/hu/messages.json
+++ b/apps/browser/src/_locales/hu/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "További információ a Bitwarden használatáról a Segítség Központban."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Továbblépés a böngésző bővítmények áruházba?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Segítsünk másoknak megtudni, hogy a Bitwarden megfelelő-e számukra. Látogassunk el a böngésző bővítmény áruházba és értékeljük most."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "A mesterjelszó a Bitwarden webalkalmazásban módosítható."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Visszaállított elem"
   },
+  "alreadyHaveAccount": {
+    "message": "Van már saját fiók?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Kijelentkezve az összes széf elérés eltávolításra kerül és webes hitelesítésre van szükség az időkifutás után. Biztosan szeretnénk használni ezt a beállítást?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "A szervezeti SSO azonosító megadása szükséges."
   },
+  "creatingAccountOn": {
+    "message": "Fiók létrehozása:"
+  },
+  "checkYourEmail": {
+    "message": "Email cím postaláda ellenőrzése"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Kövessük a hivatkozást az elküldött emailben"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "és folytassuk a fiók létrehozását."
+  },
+  "noEmail": {
+    "message": "Nem érkezett email?"
+  },
+  "goBack": {
+    "message": "Vissza"
+  },
+  "toEditYourEmailAddress": {
+    "message": "az email cím szerkesztéséhez."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
@@ -3230,7 +3260,7 @@
     "message": "Hiba történt a célmappa hozzárendelése során."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "$NAME$ elemek megtekintése",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3240,7 +3270,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Vissza: $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3253,7 +3283,7 @@
     "message": "Új"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "$NAME$ eltávolítása",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/browser/src/_locales/id/messages.json b/apps/browser/src/_locales/id/messages.json
index 57915c8f4a3..b151dbbf21f 100644
--- a/apps/browser/src/_locales/id/messages.json
+++ b/apps/browser/src/_locales/id/messages.json
@@ -173,13 +173,19 @@
     "message": "Lanjut ke aplikasi web?"
   },
   "continueToWebAppDesc": {
-    "message": "Explore more features of your Bitwarden account on the web app."
+    "message": "Temukan fitur Bitwarden lebih melalui aplikasi web."
   },
   "continueToHelpCenter": {
-    "message": "Continue to Help Center?"
+    "message": "Lanjutkan ke Pusat Bantuan?"
   },
   "continueToHelpCenterDesc": {
-    "message": "Learn more about how to use Bitwarden on the Help Center."
+    "message": "Pelajari lebih lanjut penggunaan Bitwarden di Pusat Bantuan."
+  },
+  "continueToBrowserExtensionStore": {
+    "message": "Lanjut ke pasar ekstensi peramban?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
   },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Anda dapat merubah sandi utama di aplikasi Bitwarden web."
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Item Yang Dipulihkan"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Keluar akan menghapus semua akses ke brankas Anda dan membutuhkan otentikasi daring setelah periode batas waktu tertentu. Apakah Anda yakin ingin menggunakan pengaturan ini?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/it/messages.json b/apps/browser/src/_locales/it/messages.json
index b5f9a8760be..938eb7671e0 100644
--- a/apps/browser/src/_locales/it/messages.json
+++ b/apps/browser/src/_locales/it/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Scopri di più su come usare Bitwarden nel centro assistenza."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continua sullo store delle estensioni per il browser?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Aiuta gli altri a scoprire se Bitwarden è adatto a loro. Visita lo store delle estensioni del tuo browser e lascia una recensione."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Puoi modificare la tua password principale sul sito web di Bitwarden."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Elemento ripristinato"
   },
+  "alreadyHaveAccount": {
+    "message": "Hai già un account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Uscire rimuoverà tutti gli accessi alla tua cassaforte e richiede l'autenticazione online dopo il periodo di timeout. Sei sicuro di voler usare questa opzione?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Identificatore SSO dell'organizzazione obbligatorio."
   },
+  "creatingAccountOn": {
+    "message": "Creazione account su"
+  },
+  "checkYourEmail": {
+    "message": "Controlli la tua email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Segui il link nell'email inviata a"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "e continua a creare il tuo account."
+  },
+  "noEmail": {
+    "message": "Nessuna email?"
+  },
+  "goBack": {
+    "message": "Torna indietro"
+  },
+  "toEditYourEmailAddress": {
+    "message": "per modificare il tuo indirizzo email."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
@@ -3230,7 +3260,7 @@
     "message": "Errore nell'assegnazione della cartella di destinazione."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Visualizza gli elementi in $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3240,7 +3270,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Torna a $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3253,7 +3283,7 @@
     "message": "Nuovo"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Rimuovi $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/browser/src/_locales/ja/messages.json b/apps/browser/src/_locales/ja/messages.json
index 877a678f5f5..cb78bd7fda5 100644
--- a/apps/browser/src/_locales/ja/messages.json
+++ b/apps/browser/src/_locales/ja/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Bitwarden のヘルプセンターで使用方法の詳細をご覧ください。"
   },
+  "continueToBrowserExtensionStore": {
+    "message": "ブラウザの拡張機能ストアに進みますか？"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Bitwarden を他のユーザーにもおすすめしましょう。ブラウザーの拡張機能ストアにアクセスして、レビューをしてください。"
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Bitwarden ウェブアプリでマスターパスワードを変更できます。"
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "リストアされたアイテム"
   },
+  "alreadyHaveAccount": {
+    "message": "すでにアカウントをお持ちですか？"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "ログアウトすると保管庫へのすべてのアクセスが制限され、タイムアウト期間後にオンライン認証が必要になります。 この設定を使用してもよろしいですか？"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "組織の SSO ID が必要です。"
   },
+  "creatingAccountOn": {
+    "message": "アカウント作成："
+  },
+  "checkYourEmail": {
+    "message": "メールをご確認ください"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "アカウントの作成を続けるには"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "に送られたメールのリンクを開いてください。"
+  },
+  "noEmail": {
+    "message": "メールがありませんか?"
+  },
+  "goBack": {
+    "message": "戻って"
+  },
+  "toEditYourEmailAddress": {
+    "message": "メールアドレスを編集してください。"
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
@@ -3230,7 +3260,7 @@
     "message": "ターゲットフォルダーの割り当てに失敗しました。"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "$NAME$ のアイテムを表示",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3240,7 +3270,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "$NAME$ に戻る",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3253,7 +3283,7 @@
     "message": "新規作成"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "$NAME$ を削除",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/browser/src/_locales/ka/messages.json b/apps/browser/src/_locales/ka/messages.json
index 27883b2a07a..62347f4acf4 100644
--- a/apps/browser/src/_locales/ka/messages.json
+++ b/apps/browser/src/_locales/ka/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Item restored"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Logging out will remove all access to your vault and requires online authentication after the timeout period. Are you sure you want to use this setting?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/km/messages.json b/apps/browser/src/_locales/km/messages.json
index e042785011c..64f3623b5af 100644
--- a/apps/browser/src/_locales/km/messages.json
+++ b/apps/browser/src/_locales/km/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Item restored"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Logging out will remove all access to your vault and requires online authentication after the timeout period. Are you sure you want to use this setting?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/kn/messages.json b/apps/browser/src/_locales/kn/messages.json
index f1d190ab5d8..7556ee6afd6 100644
--- a/apps/browser/src/_locales/kn/messages.json
+++ b/apps/browser/src/_locales/kn/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "ಐಟಂ ಅನ್ನು ಮರುಸ್ಥಾಪಿಸಲಾಗಿದೆ"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "ಲಾಗ್ out ಟ್ ಆಗುವುದರಿಂದ ನಿಮ್ಮ ವಾಲ್ಟ್‌ನ ಎಲ್ಲಾ ಪ್ರವೇಶವನ್ನು ತೆಗೆದುಹಾಕುತ್ತದೆ ಮತ್ತು ಕಾಲಾವಧಿ ಅವಧಿಯ ನಂತರ ಆನ್‌ಲೈನ್ ದೃ hentic ೀಕರಣದ ಅಗತ್ಯವಿದೆ. ಈ ಸೆಟ್ಟಿಂಗ್ ಅನ್ನು ಬಳಸಲು ನೀವು ಖಚಿತವಾಗಿ ಬಯಸುವಿರಾ?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/ko/messages.json b/apps/browser/src/_locales/ko/messages.json
index c5aa76dca7c..86295d469a7 100644
--- a/apps/browser/src/_locales/ko/messages.json
+++ b/apps/browser/src/_locales/ko/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Bitwarden 웹 앱에서 마스터 비밀번호를 변경할 수 있습니다."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "복원된 항목"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "로그아웃하면 보관함에 대한 모든 접근이 제거되며 시간 제한을 초과하면 온라인 인증을 요구합니다. 정말로 이 설정을 사용하시겠습니까?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/lt/messages.json b/apps/browser/src/_locales/lt/messages.json
index 9dff31e617a..6f0fc1bbb62 100644
--- a/apps/browser/src/_locales/lt/messages.json
+++ b/apps/browser/src/_locales/lt/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Pagrindinį slaptažodį galite pakeisti „Bitwarden“ žiniatinklio programėlėje."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Elementas atkurtas"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Atsijungus bus pašalinta visa Jūsų prieiga prie saugyklos, o pasibaigus skirtajam laikotarpiui bus reikalinga autentifikacija internetu. Ar tikrai norite naudoti šį nustatymą?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organizacijos SSO identifikatorius yra reikalingas."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "ES",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/lv/messages.json b/apps/browser/src/_locales/lv/messages.json
index 33c390f9e03..a7b50ae2a47 100644
--- a/apps/browser/src/_locales/lv/messages.json
+++ b/apps/browser/src/_locales/lv/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Vairāk par to, kā izmantot Bitwarden, var uzzināt palīdzības centrā."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Turpināt pārlūka paplašinājumu veikalā?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Var palīdzēt citiem noskaidrot, vai Bitwarden viņiem der. To var izdarīt pārlūka lietotņu veikalā, atstājot vērtējumu."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Savu galveno paroli var mainīt Bitwarden tīmekļa lietotnē."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Vienums atjaunots"
   },
+  "alreadyHaveAccount": {
+    "message": "Jau ir konts?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Atteikšanās noņems piekļuvi glabātavai un pieprasīs tiešsaistes pieteikšanos pēc noildzes laika. Vai tiešām izmantot šo iestatījumu?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Ir nepieciešams apvienības SSO identifikators."
   },
+  "creatingAccountOn": {
+    "message": "Tiek veidots konts"
+  },
+  "checkYourEmail": {
+    "message": "Jāpārbauda e-pasts"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Jāatver saite, kas tika nosūtīta uz e-pasta adresi"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "un jāturpina sava konta izveide."
+  },
+  "noEmail": {
+    "message": "Nav e-pasta?"
+  },
+  "goBack": {
+    "message": "Atgriezties"
+  },
+  "toEditYourEmailAddress": {
+    "message": ", lai labotu savu e-pasta adresi."
+  },
   "eu": {
     "message": "ES",
     "description": "European Union"
@@ -3230,7 +3260,7 @@
     "message": "Kļūda mērķa mapes piešķiršanā."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Skatīt $NAME$ vienumus",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3240,7 +3270,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Atgriezties uz $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3253,7 +3283,7 @@
     "message": "Jauns"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Noņemt $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/browser/src/_locales/ml/messages.json b/apps/browser/src/_locales/ml/messages.json
index 24235587d0d..fba3e5486a5 100644
--- a/apps/browser/src/_locales/ml/messages.json
+++ b/apps/browser/src/_locales/ml/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "വീണ്ടെടുത്ത ഇനം"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "ലോഗൗട്ട് ചെയ്യുകയാണെങ്കിൽ തങ്ങളുടെ വാൾട്ടിലേക്കുള്ള എല്ലാ ആക്സസും നീക്കംചെയ്യും. കാലയളവിനുശേഷം ഓൺലൈൻ ഓതന്റിക്കേറ്റർ ആവശ്യമാണ്. ഈ ക്രമീകരണം ഉപയോഗിക്കാൻ നിങ്ങൾ ആഗ്രഹിക്കുന്നുണ്ടോ?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/mr/messages.json b/apps/browser/src/_locales/mr/messages.json
index dc0edb74e58..fe984cb8302 100644
--- a/apps/browser/src/_locales/mr/messages.json
+++ b/apps/browser/src/_locales/mr/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Item restored"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Logging out will remove all access to your vault and requires online authentication after the timeout period. Are you sure you want to use this setting?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/my/messages.json b/apps/browser/src/_locales/my/messages.json
index e042785011c..64f3623b5af 100644
--- a/apps/browser/src/_locales/my/messages.json
+++ b/apps/browser/src/_locales/my/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Item restored"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Logging out will remove all access to your vault and requires online authentication after the timeout period. Are you sure you want to use this setting?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/nb/messages.json b/apps/browser/src/_locales/nb/messages.json
index 92e8ff47c25..6993e1f648c 100644
--- a/apps/browser/src/_locales/nb/messages.json
+++ b/apps/browser/src/_locales/nb/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Gjenopprettet objekt"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Hvis du logger ut, fjerner du all tilgang til hvelvet ditt og krever online godkjenning etter tidsavbrudd. Er du sikker på at du vil bruke denne innstillingen?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/ne/messages.json b/apps/browser/src/_locales/ne/messages.json
index e042785011c..64f3623b5af 100644
--- a/apps/browser/src/_locales/ne/messages.json
+++ b/apps/browser/src/_locales/ne/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Item restored"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Logging out will remove all access to your vault and requires online authentication after the timeout period. Are you sure you want to use this setting?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/nl/messages.json b/apps/browser/src/_locales/nl/messages.json
index b69928f663f..36a8ad9470a 100644
--- a/apps/browser/src/_locales/nl/messages.json
+++ b/apps/browser/src/_locales/nl/messages.json
@@ -173,13 +173,19 @@
     "message": "Doorgaan naar web-app?"
   },
   "continueToWebAppDesc": {
-    "message": "Explore more features of your Bitwarden account on the web app."
+    "message": "Ontdek meer functies van je Bitwarden-account in de webapp."
   },
   "continueToHelpCenter": {
-    "message": "Continue to Help Center?"
+    "message": "Doorgaan naar Helpcentrum?"
   },
   "continueToHelpCenterDesc": {
-    "message": "Learn more about how to use Bitwarden on the Help Center."
+    "message": "Leer meer over het gebruik van Bitwarden in het Helpcentrum."
+  },
+  "continueToBrowserExtensionStore": {
+    "message": "Doorgaan naar de app store van browserextensies?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help anderen met beslissen of Bitwarden iets voor hen is. Bezoek de app store voor extensies en laat een beoordeling achter."
   },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Je kunt je hoofdwachtwoord wijzigen in de Bitwarden-webapp."
@@ -199,43 +205,43 @@
     "message": "Uitloggen"
   },
   "aboutBitwarden": {
-    "message": "About Bitwarden"
+    "message": "Over Bitwarden"
   },
   "about": {
     "message": "Over"
   },
   "moreFromBitwarden": {
-    "message": "More from Bitwarden"
+    "message": "Meer van Bitwarden"
   },
   "continueToBitwardenDotCom": {
-    "message": "Continue to bitwarden.com?"
+    "message": "Doorgaan naar bitwarden.com?"
   },
   "bitwardenForBusiness": {
-    "message": "Bitwarden for Business"
+    "message": "Bitwarden voor Business"
   },
   "bitwardenAuthenticator": {
     "message": "Bitwarden Authenticator"
   },
   "continueToAuthenticatorPageDesc": {
-    "message": "Bitwarden Authenticator allows you to store authenticator keys and generate TOTP codes for 2-step verification flows. Learn more on the bitwarden.com website"
+    "message": "Met Bitwarden Authenticator kunt je authenticatiesleutels opslaan en TOTP-codes voor tweestapsaanmelding genereren. Lees meer op de website bitwarden.com"
   },
   "bitwardenSecretsManager": {
     "message": "Bitwarden Secrets Manager"
   },
   "continueToSecretsManagerPageDesc": {
-    "message": "Securely store, manage, and share developer secrets with Bitwarden Secrets Manager. Learn more on the bitwarden.com website."
+    "message": "Ontwikkelaars kunnen geheimen veilig opslaan, beheren en delen met Bitwarden Secrets Manager. Lees meer op de website bitwarden.com."
   },
   "passwordlessDotDev": {
     "message": "Passwordless.dev"
   },
   "continueToPasswordlessDotDevPageDesc": {
-    "message": "Create smooth and secure login experiences free from traditional passwords with Passwordless.dev. Learn more on the bitwarden.com website."
+    "message": "Maak vlotte en veilige inlogervaringen, vrij van traditionele wachtwoorden, met Passwordless.dev. Meer informatie op de website bitwarden.com."
   },
   "freeBitwardenFamilies": {
-    "message": "Free Bitwarden Families"
+    "message": "Gratis Bitwarden Families"
   },
   "freeBitwardenFamiliesPageDesc": {
-    "message": "You are eligible for Free Bitwarden Families. Redeem this offer today in the web app."
+    "message": "Je komt in aanmerking voor gratis Bitwarden Families. Claim deze aanbieding vandaag in de webapp."
   },
   "version": {
     "message": "Versie"
@@ -296,7 +302,7 @@
     "message": "Automatisch sterke, unieke wachtwoorden voor je logins genereren."
   },
   "bitWebVaultApp": {
-    "message": "Bitwarden web app"
+    "message": "Bitwarden webapp"
   },
   "importItems": {
     "message": "Items importeren"
@@ -822,7 +828,7 @@
     "message": "Gedeeld"
   },
   "bitwardenForBusinessPageDesc": {
-    "message": "Bitwarden for Business allows you to share your vault items with others by using an organization. Learn more on the bitwarden.com website."
+    "message": "Met Bitwarden voor Business kun je je kluis-items met anderen delen door gebruik te maken van een organisatie. Lees meer op de website bitwarden.com."
   },
   "moveToOrganization": {
     "message": "Naar organisatie verplaatsen"
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Hersteld item"
   },
+  "alreadyHaveAccount": {
+    "message": "Heb je al een account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Uitloggen ontneemt je de toegang tot je kluis en vereist online authenticatie na een periode van time-out. Weet je zeker dat je deze instelling wilt gebruiken?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organisatie SSO-identificatie vereist."
   },
+  "creatingAccountOn": {
+    "message": "Account maken bij"
+  },
+  "checkYourEmail": {
+    "message": "Check je e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Volg de link in de e-mail die verstuurd is naar"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "en ga verder met het aanmaken van je account."
+  },
+  "noEmail": {
+    "message": "Geen e-mail?"
+  },
+  "goBack": {
+    "message": "Ga terug"
+  },
+  "toEditYourEmailAddress": {
+    "message": "om je e-mailadres te bewerken."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
@@ -3230,7 +3260,7 @@
     "message": "Fout bij toewijzen doelmap."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Items weergeven in $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3240,7 +3270,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Terug naar $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3253,7 +3283,7 @@
     "message": "New"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Verwijder $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/browser/src/_locales/nn/messages.json b/apps/browser/src/_locales/nn/messages.json
index e042785011c..64f3623b5af 100644
--- a/apps/browser/src/_locales/nn/messages.json
+++ b/apps/browser/src/_locales/nn/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Item restored"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Logging out will remove all access to your vault and requires online authentication after the timeout period. Are you sure you want to use this setting?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/or/messages.json b/apps/browser/src/_locales/or/messages.json
index e042785011c..64f3623b5af 100644
--- a/apps/browser/src/_locales/or/messages.json
+++ b/apps/browser/src/_locales/or/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Item restored"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Logging out will remove all access to your vault and requires online authentication after the timeout period. Are you sure you want to use this setting?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/pl/messages.json b/apps/browser/src/_locales/pl/messages.json
index 4ef2e8579c7..d5e3940682f 100644
--- a/apps/browser/src/_locales/pl/messages.json
+++ b/apps/browser/src/_locales/pl/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Dowiedz się więcej o tym, jak korzystać z centrum pomocy Bitwarden."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Kontynuować do sklepu z rozszerzeniami przeglądarki?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Pomóż innym dowiedzieć się, czy Bitwarden jest dla nich odpowiedni. Odwiedź swój sklep z rozszerzeniami do przeglądarki i zostaw ocenę."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Możesz zmienić swoje hasło główne w aplikacji internetowej Bitwarden."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Element został przywrócony"
   },
+  "alreadyHaveAccount": {
+    "message": "Masz już konto?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Po wylogowaniu się z sejfu musisz ponownie zalogować się, aby uzyskać do niego dostęp. Czy na pewno chcesz użyć tego ustawienia?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Identyfikator organizacji jest wymagany."
   },
+  "creatingAccountOn": {
+    "message": "Tworzenie konta na"
+  },
+  "checkYourEmail": {
+    "message": "Sprawdź swoją pocztę e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Kliknij łącze w wiadomości e-mail wysłanej do"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "i kontynuuj tworzenie konta."
+  },
+  "noEmail": {
+    "message": "Brak wiadomości e-mail?"
+  },
+  "goBack": {
+    "message": "Wróć"
+  },
+  "toEditYourEmailAddress": {
+    "message": "aby edytować swój adres e-mail."
+  },
   "eu": {
     "message": "UE",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/pt_BR/messages.json b/apps/browser/src/_locales/pt_BR/messages.json
index 3f1f2aa224d..0a65acf9586 100644
--- a/apps/browser/src/_locales/pt_BR/messages.json
+++ b/apps/browser/src/_locales/pt_BR/messages.json
@@ -173,13 +173,19 @@
     "message": "Continuar no aplicativo web?"
   },
   "continueToWebAppDesc": {
-    "message": "Explore more features of your Bitwarden account on the web app."
+    "message": "Explore mais recursos da sua conta no Bitwarden no aplicativo web."
   },
   "continueToHelpCenter": {
-    "message": "Continue to Help Center?"
+    "message": "Continuar no Centro de Ajuda?"
   },
   "continueToHelpCenterDesc": {
-    "message": "Learn more about how to use Bitwarden on the Help Center."
+    "message": "Saiba mais sobre como usar o Bitwarden no Centro de Ajuda."
+  },
+  "continueToBrowserExtensionStore": {
+    "message": "Continuar na extensão da loja do navegador?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Ajude outros a descobrir se o Bitwarden está certo para eles. Visite a loja de extensões do seu navegador e deixe uma classificação agora."
   },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Você pode alterar a sua senha mestra no aplicativo web Bitwarden."
@@ -199,43 +205,43 @@
     "message": "Encerrar Sessão"
   },
   "aboutBitwarden": {
-    "message": "About Bitwarden"
+    "message": "Sobre o Bitwarden"
   },
   "about": {
     "message": "Sobre"
   },
   "moreFromBitwarden": {
-    "message": "More from Bitwarden"
+    "message": "Mais do Bitwarden"
   },
   "continueToBitwardenDotCom": {
-    "message": "Continue to bitwarden.com?"
+    "message": "Continuar para bitwarden.com?"
   },
   "bitwardenForBusiness": {
-    "message": "Bitwarden for Business"
+    "message": "Bitwarden para Negócios"
   },
   "bitwardenAuthenticator": {
-    "message": "Bitwarden Authenticator"
+    "message": "Autenticador Bitwarden"
   },
   "continueToAuthenticatorPageDesc": {
-    "message": "Bitwarden Authenticator allows you to store authenticator keys and generate TOTP codes for 2-step verification flows. Learn more on the bitwarden.com website"
+    "message": "O Autenticador Bitwarden permite que você armazene as chaves do autenticador e gere códigos TOTP para fluxos de verificação de 2 etapas. Saiba mais no site bitwarden.com"
   },
   "bitwardenSecretsManager": {
-    "message": "Bitwarden Secrets Manager"
+    "message": "Gerenciador de Segredos Bitwarden"
   },
   "continueToSecretsManagerPageDesc": {
-    "message": "Securely store, manage, and share developer secrets with Bitwarden Secrets Manager. Learn more on the bitwarden.com website."
+    "message": "Armazene, gerencie e compartilhe segredos de desenvolvedor com o Gerenciador de segredos do Bitwarden. Saiba mais no site bitwarden.com."
   },
   "passwordlessDotDev": {
     "message": "Passwordless.dev"
   },
   "continueToPasswordlessDotDevPageDesc": {
-    "message": "Create smooth and secure login experiences free from traditional passwords with Passwordless.dev. Learn more on the bitwarden.com website."
+    "message": "Crie experiências de login suaves e seguras, livres de senhas tradicionais com Passwordless.dev. Saiba mais no site bitwarden.com."
   },
   "freeBitwardenFamilies": {
-    "message": "Free Bitwarden Families"
+    "message": "Famílias do Bitwarden Grátis"
   },
   "freeBitwardenFamiliesPageDesc": {
-    "message": "You are eligible for Free Bitwarden Families. Redeem this offer today in the web app."
+    "message": "Você é elegível para as Famílias do Bitwarden Grátis. Resgate esta oferta hoje no aplicativo web."
   },
   "version": {
     "message": "Versão"
@@ -296,7 +302,7 @@
     "message": "Gere automaticamente senhas fortes e únicas para as suas credenciais."
   },
   "bitWebVaultApp": {
-    "message": "Bitwarden web app"
+    "message": "Aplicativo Web Bitwarden"
   },
   "importItems": {
     "message": "Importar Itens"
@@ -822,7 +828,7 @@
     "message": "Compartilhado"
   },
   "bitwardenForBusinessPageDesc": {
-    "message": "Bitwarden for Business allows you to share your vault items with others by using an organization. Learn more on the bitwarden.com website."
+    "message": "O Bitwarden para Business permite que você compartilhe os itens do seu cofre com outras pessoas usando uma organização. Saiba mais no site bitwarden.com."
   },
   "moveToOrganization": {
     "message": "Mover para a Organização"
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Item Restaurado"
   },
+  "alreadyHaveAccount": {
+    "message": "Já tem uma conta?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Sair irá remover todo o acesso ao seu cofre e requer autenticação online após o período de tempo limite. Tem certeza de que deseja usar esta configuração?"
   },
@@ -1754,10 +1763,10 @@
     "message": "A biometria com o navegador não é suportada neste dispositivo."
   },
   "biometricsNotUnlockedTitle": {
-    "message": "User locked or logged out"
+    "message": "Usuário bloqueado ou desconectado"
   },
   "biometricsNotUnlockedDesc": {
-    "message": "Please unlock this user in the desktop application and try again."
+    "message": "Por favor, desbloqueie esse usuário no aplicativo da área de trabalho e tente novamente."
   },
   "biometricsFailedTitle": {
     "message": "Biometria falhou"
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Identificador SSO da organização é necessário."
   },
+  "creatingAccountOn": {
+    "message": "Criando conta em"
+  },
+  "checkYourEmail": {
+    "message": "Verifique seu e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Siga o link no e-mail enviado para"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "e continue criando a sua conta."
+  },
+  "noEmail": {
+    "message": "Sem e-mail?"
+  },
+  "goBack": {
+    "message": "Voltar"
+  },
+  "toEditYourEmailAddress": {
+    "message": "para editar o seu endereço de e-mail."
+  },
   "eu": {
     "message": "Europa",
     "description": "European Union"
@@ -3177,22 +3207,22 @@
     "description": "This will be part of a larger sentence, which will read like so: Assign these items to a collection from the Admin Console to make them visible."
   },
   "autofillSuggestions": {
-    "message": "Auto-fill suggestions"
+    "message": "Sugestões de autopreenchimento"
   },
   "autofillSuggestionsTip": {
-    "message": "Save a login item for this site to auto-fill"
+    "message": "Salvar um item de login para este site autopreenchimento"
   },
   "yourVaultIsEmpty": {
-    "message": "Your vault is empty"
+    "message": "Seu cofre está vazio"
   },
   "noItemsMatchSearch": {
-    "message": "No items match your search"
+    "message": "Nenhum item corresponde à sua pesquisa"
   },
   "clearFiltersOrTryAnother": {
-    "message": "Clear filters or try another search term"
+    "message": "Limpar filtros ou tentar outro termo de pesquisa"
   },
   "copyInfo": {
-    "message": "Copy info, $ITEMNAME$",
+    "message": "Copiar informações, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
       "itemname": {
@@ -3202,7 +3232,7 @@
     }
   },
   "moreOptions": {
-    "message": "More options, $ITEMNAME$",
+    "message": "Mais opções, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
       "itemname": {
@@ -3230,7 +3260,7 @@
     "message": "Erro ao atribuir pasta de destino."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Visualizar itens em $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3240,7 +3270,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Voltar para $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3250,10 +3280,10 @@
     }
   },
   "new": {
-    "message": "New"
+    "message": "Novo"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Remover $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/browser/src/_locales/pt_PT/messages.json b/apps/browser/src/_locales/pt_PT/messages.json
index 32425cb0fea..7f4b488fa37 100644
--- a/apps/browser/src/_locales/pt_PT/messages.json
+++ b/apps/browser/src/_locales/pt_PT/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Saiba mais sobre como utilizar o Bitwarden no Centro de ajuda."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continuar para a loja de extensões do navegador?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Ajude outras pessoas a descobrir se o Bitwarden lhes é adequado. Visite a loja de extensões do seu navegador e deixe uma avaliação agora."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Pode alterar a sua palavra-passe mestra na aplicação Web Bitwarden."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Item restaurado"
   },
+  "alreadyHaveAccount": {
+    "message": "Já tem uma conta?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Ao terminar sessão removerá todo o acesso ao seu cofre e requer autenticação online após o período de tempo limite. Tem a certeza de que pretende utilizar esta definição?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "É necessário o identificador de SSO da organização."
   },
+  "creatingAccountOn": {
+    "message": "A criar uma conta em"
+  },
+  "checkYourEmail": {
+    "message": "Verifique o seu e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Siga o link no e-mail enviado para"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "e continue a criação da sua conta."
+  },
+  "noEmail": {
+    "message": "Não recebeu o e-mail?"
+  },
+  "goBack": {
+    "message": "Volte atrás"
+  },
+  "toEditYourEmailAddress": {
+    "message": "para editar o seu endereço de e-mail."
+  },
   "eu": {
     "message": "UE",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/ro/messages.json b/apps/browser/src/_locales/ro/messages.json
index af09c4b3a93..7c5cd8a3acd 100644
--- a/apps/browser/src/_locales/ro/messages.json
+++ b/apps/browser/src/_locales/ro/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Articol restabilit"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "După expirare, accesul la seiful dvs. va fi restricționat și va fi necesară autentificarea online. Sigur doriți să utilizați această setare?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Identificatorul SSO al organizației este necesar."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/ru/messages.json b/apps/browser/src/_locales/ru/messages.json
index 1b8d103c0e9..cbabda5066a 100644
--- a/apps/browser/src/_locales/ru/messages.json
+++ b/apps/browser/src/_locales/ru/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Подробнее о том, как использовать Bitwarden, можно узнать в справочном центре."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Перейти в магазин расширений для браузера?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Помогите другим узнать, подходит ли им Bitwarden. Посетите магазин расширений вашего браузера и оставьте отзыв прямо сейчас."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Изменить мастер-пароль можно в веб-приложении Bitwarden."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Элемент восстановлен"
   },
+  "alreadyHaveAccount": {
+    "message": "Уже зарегистрированы?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "По истечении тайм-аута будет выполнен выход, что приведет к отмене всех прав доступа к вашему хранилищу и потребует онлайн-аутентификации. Вы уверены, что хотите использовать этот параметр?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Требуется идентификатор SSO организации."
   },
+  "creatingAccountOn": {
+    "message": "Создание аккаунта"
+  },
+  "checkYourEmail": {
+    "message": "Проверьте свою почту"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Перейдите по ссылке из отправленного письма"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "и продолжите создание аккаунта."
+  },
+  "noEmail": {
+    "message": "Нет письма?"
+  },
+  "goBack": {
+    "message": "Вернуться"
+  },
+  "toEditYourEmailAddress": {
+    "message": "для изменения адреса email."
+  },
   "eu": {
     "message": "Европа",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/si/messages.json b/apps/browser/src/_locales/si/messages.json
index 3196fbbe15a..b9078c4c0f8 100644
--- a/apps/browser/src/_locales/si/messages.json
+++ b/apps/browser/src/_locales/si/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "ප්රතිෂ්ඨාපනය අයිතමය"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "පිටතට පිවිසීමෙන් ඔබගේ සුරක්ෂිතාගාරය වෙත ඇති සියලුම ප්රවේශය ඉවත් කරනු ඇති අතර කාල සීමාව පසු මාර්ගගත සත්යාපනය අවශ්ය වේ. ඔබට මෙම සැකසුම භාවිතා කිරීමට අවශ්ය බව ඔබට විශ්වාසද?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/sk/messages.json b/apps/browser/src/_locales/sk/messages.json
index 3716ec18144..63bc7a317c0 100644
--- a/apps/browser/src/_locales/sk/messages.json
+++ b/apps/browser/src/_locales/sk/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Viac informácií o používaní Bitwardenu nájdete v centre pomoci."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Pokračovať do obchodu s rozšíreniami pre prehliadače?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Pomôžte ostatným zistiť, či je Bitwarden pre nich vhodný. Navštívte obchod s rozšíreniami pre prehliadače a pridajte hodnotenie."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Hlavné heslo si môžete zmeniť vo webovej aplikácii Bitwarden."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Obnovená položka"
   },
+  "alreadyHaveAccount": {
+    "message": "Už máte účet?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Odhlásenie bude vyžadovať online prihlásenie po vypršaní časového limitu. Naozaj chcete použiť toto nastavenie?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Pole identifikátora SSO je povinné."
   },
+  "creatingAccountOn": {
+    "message": "Vytváranie účtu na"
+  },
+  "checkYourEmail": {
+    "message": "Skontrolujte si svoj e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Postupujte podľa odkazu v e-maile zaslanom na adresu"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "a pokračujte vo vytváraní účtu."
+  },
+  "noEmail": {
+    "message": "Žiadny email?"
+  },
+  "goBack": {
+    "message": "Prejsť späť"
+  },
+  "toEditYourEmailAddress": {
+    "message": "na úpravu e-mailovej adresy."
+  },
   "eu": {
     "message": "EÚ",
     "description": "European Union"
@@ -3230,7 +3260,7 @@
     "message": "Chyba pri priraďovaní cieľového priečinka."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Zobraziť položky v $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3240,7 +3270,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Späť do $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3253,7 +3283,7 @@
     "message": "Nová"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Odstrániť $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/browser/src/_locales/sl/messages.json b/apps/browser/src/_locales/sl/messages.json
index 35606e0b108..c12a31436fd 100644
--- a/apps/browser/src/_locales/sl/messages.json
+++ b/apps/browser/src/_locales/sl/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Element obnovljen"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Logging out will remove all access to your vault and requires online authentication after the timeout period. Are you sure you want to use this setting?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/sr/messages.json b/apps/browser/src/_locales/sr/messages.json
index 240a13a785e..941b38132a4 100644
--- a/apps/browser/src/_locales/sr/messages.json
+++ b/apps/browser/src/_locales/sr/messages.json
@@ -173,13 +173,19 @@
     "message": "Ићи на веб апликацију?"
   },
   "continueToWebAppDesc": {
-    "message": "Explore more features of your Bitwarden account on the web app."
+    "message": "Истражите више својстава на Bitwarden налогу на веб апликаији."
   },
   "continueToHelpCenter": {
-    "message": "Continue to Help Center?"
+    "message": "Настави на помоћни центар?"
   },
   "continueToHelpCenterDesc": {
-    "message": "Learn more about how to use Bitwarden on the Help Center."
+    "message": "Learn more about how to use Bitwarden у помоћни центар."
+  },
+  "continueToBrowserExtensionStore": {
+    "message": "Желите ли да наставите у продавницу додатака за прегледач?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Помозите другима да сазнају да ли је Bitwarden прави за њих. Посетите продавницу апликација и оставите оцену."
   },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Можете променити главну лозинку на Bitwarden веб апликацији."
@@ -199,16 +205,16 @@
     "message": "Одјави се"
   },
   "aboutBitwarden": {
-    "message": "About Bitwarden"
+    "message": "О Bitwarden"
   },
   "about": {
     "message": "О апликацији"
   },
   "moreFromBitwarden": {
-    "message": "More from Bitwarden"
+    "message": "Више од Bitwarden"
   },
   "continueToBitwardenDotCom": {
-    "message": "Continue to bitwarden.com?"
+    "message": "Наставити на bitwarden.com?"
   },
   "bitwardenForBusiness": {
     "message": "Bitwarden for Business"
@@ -217,25 +223,25 @@
     "message": "Bitwarden Authenticator"
   },
   "continueToAuthenticatorPageDesc": {
-    "message": "Bitwarden Authenticator allows you to store authenticator keys and generate TOTP codes for 2-step verification flows. Learn more on the bitwarden.com website"
+    "message": "Bitwarden Authenticator омогућава вам да чувате кључеве аутентификатора и генеришете ТОТП кодове за токове верификације у 2 корака. Сазнајте више на bitwarden.com"
   },
   "bitwardenSecretsManager": {
     "message": "Bitwarden Secrets Manager"
   },
   "continueToSecretsManagerPageDesc": {
-    "message": "Securely store, manage, and share developer secrets with Bitwarden Secrets Manager. Learn more on the bitwarden.com website."
+    "message": "Сигурно чувајте, управљајте и делите тајне програмера са Bitwarden Secrets Manager. Сазнајте више на bitwarden.com."
   },
   "passwordlessDotDev": {
     "message": "Passwordless.dev"
   },
   "continueToPasswordlessDotDevPageDesc": {
-    "message": "Create smooth and secure login experiences free from traditional passwords with Passwordless.dev. Learn more on the bitwarden.com website."
+    "message": "Креирајте глатко и безбедно искуство пријављивања без традиционалних лозинки са Passwordless.dev. Сазнајте више на bitwarden.com."
   },
   "freeBitwardenFamilies": {
-    "message": "Free Bitwarden Families"
+    "message": "Бесплатно Bitwarden Families"
   },
   "freeBitwardenFamiliesPageDesc": {
-    "message": "You are eligible for Free Bitwarden Families. Redeem this offer today in the web app."
+    "message": "Имате право на Бесплатно Bitwarden Families. Искористите ову понуду данас у веб апликацији."
   },
   "version": {
     "message": "Верзија"
@@ -296,7 +302,7 @@
     "message": "Аутоматски генеришите јаке, јединствене лозинке за ваше пријаве."
   },
   "bitWebVaultApp": {
-    "message": "Bitwarden web app"
+    "message": "Bitwarden веб апликација"
   },
   "importItems": {
     "message": "Увоз ставки"
@@ -822,7 +828,7 @@
     "message": "Дељено"
   },
   "bitwardenForBusinessPageDesc": {
-    "message": "Bitwarden for Business allows you to share your vault items with others by using an organization. Learn more on the bitwarden.com website."
+    "message": "Bitwarden for Business вам омогућава да делите ставке сефа са другима користећи организацију. Сазнајте више на веб локацију bitwarden.com."
   },
   "moveToOrganization": {
     "message": "Премести у организацију"
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Ставка враћена"
   },
+  "alreadyHaveAccount": {
+    "message": "Већ имате налог?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Одјава ће уклонити сваки приступ вашем сефу и захтева мрежну потврду идентитета након истека тајмаута. Да ли сте сигурни да желите да користите ову поставку?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Потребан је SSO идентификатор организације."
   },
+  "creatingAccountOn": {
+    "message": "Креирај налог на"
+  },
+  "checkYourEmail": {
+    "message": "Проверите свој имејл"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Пратите везу послатој на"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "и наставите са креирањем налога."
+  },
+  "noEmail": {
+    "message": "Немате имејл?"
+  },
+  "goBack": {
+    "message": "Ићи назад"
+  },
+  "toEditYourEmailAddress": {
+    "message": "да измените свој имејл."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
@@ -3177,22 +3207,22 @@
     "description": "This will be part of a larger sentence, which will read like so: Assign these items to a collection from the Admin Console to make them visible."
   },
   "autofillSuggestions": {
-    "message": "Auto-fill suggestions"
+    "message": "Предлози за ауто-попуњавање"
   },
   "autofillSuggestionsTip": {
-    "message": "Save a login item for this site to auto-fill"
+    "message": "Сачувајте ставку за пријаву за ову локацију за ауто-попуњавање"
   },
   "yourVaultIsEmpty": {
-    "message": "Your vault is empty"
+    "message": "Ваш сеф је празан"
   },
   "noItemsMatchSearch": {
-    "message": "No items match your search"
+    "message": "Нема резултата по вашем упиту"
   },
   "clearFiltersOrTryAnother": {
-    "message": "Clear filters or try another search term"
+    "message": "Обришите филтере или покушајте са другим термином"
   },
   "copyInfo": {
-    "message": "Copy info, $ITEMNAME$",
+    "message": "Копирај информације, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
       "itemname": {
@@ -3202,7 +3232,7 @@
     }
   },
   "moreOptions": {
-    "message": "More options, $ITEMNAME$",
+    "message": "Више опција, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
       "itemname": {
@@ -3230,7 +3260,7 @@
     "message": "Грешка при додељивању циљне фасцикле."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Видети ставке у $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3240,7 +3270,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Назад на $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3253,7 +3283,7 @@
     "message": "Ново"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Уклонити $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/browser/src/_locales/sv/messages.json b/apps/browser/src/_locales/sv/messages.json
index d6107818684..585d8e2d9a0 100644
--- a/apps/browser/src/_locales/sv/messages.json
+++ b/apps/browser/src/_locales/sv/messages.json
@@ -3,11 +3,11 @@
     "message": "Bitwarden"
   },
   "extName": {
-    "message": "Bitwarden Password Manager",
+    "message": "Bitwarden Lösenordshanterare",
     "description": "Extension name, MUST be less than 40 characters (Safari restriction)"
   },
   "extDesc": {
-    "message": "At home, at work, or on the go, Bitwarden easily secures all your passwords, passkeys, and sensitive information",
+    "message": "Hemma, på jobbet eller på språng säkrar Bitwarden enkelt alla dina lösenord, lösenord och känslig information",
     "description": "Extension description, MUST be less than 112 characters (Safari restriction)"
   },
   "loginOrCreateNewAccount": {
@@ -170,19 +170,25 @@
     "message": "Ändra huvudlösenord"
   },
   "continueToWebApp": {
-    "message": "Continue to web app?"
+    "message": "Fortsätt till webbapp?"
   },
   "continueToWebAppDesc": {
-    "message": "Explore more features of your Bitwarden account on the web app."
+    "message": "Utforska fler funktioner i ditt Bitwarden-konto i webbappen."
   },
   "continueToHelpCenter": {
-    "message": "Continue to Help Center?"
+    "message": "Fortsätt till Hjälpcenter?"
   },
   "continueToHelpCenterDesc": {
-    "message": "Learn more about how to use Bitwarden on the Help Center."
+    "message": "Lär dig mer om hur man använder Bitwarden i hjälpcentret."
+  },
+  "continueToBrowserExtensionStore": {
+    "message": "Fortsätt till webbläsartilläggsbutiken?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Hjälp andra att ta reda på om Bitwarden är rätt för dem. Besök din webbläsares tilläggsbutik och lämna en recension nu."
   },
   "changeMasterPasswordOnWebConfirmation": {
-    "message": "You can change your master password on the Bitwarden web app."
+    "message": "Du kan ändra ditt huvudlösenord i Bitwarden-webbappen."
   },
   "fingerprintPhrase": {
     "message": "Fingeravtrycksfras",
@@ -199,28 +205,28 @@
     "message": "Logga ut"
   },
   "aboutBitwarden": {
-    "message": "About Bitwarden"
+    "message": "Om Bitwarden"
   },
   "about": {
     "message": "Om"
   },
   "moreFromBitwarden": {
-    "message": "More from Bitwarden"
+    "message": "Mer från Bitwarden"
   },
   "continueToBitwardenDotCom": {
-    "message": "Continue to bitwarden.com?"
+    "message": "Fortsätt till bitwarden.com?"
   },
   "bitwardenForBusiness": {
-    "message": "Bitwarden for Business"
+    "message": "Bitwarden för Företag"
   },
   "bitwardenAuthenticator": {
     "message": "Bitwarden Authenticator"
   },
   "continueToAuthenticatorPageDesc": {
-    "message": "Bitwarden Authenticator allows you to store authenticator keys and generate TOTP codes for 2-step verification flows. Learn more on the bitwarden.com website"
+    "message": "Bitwarden Authenticator låter dig lagra autentiseringsnycklar och generera TOTP-koder för tvåstegsverifieringsflöden. Lär dig mer på bitwarden.com hemsidan"
   },
   "bitwardenSecretsManager": {
-    "message": "Bitwarden Secrets Manager"
+    "message": "Bitwarden Hemlighetshanterare"
   },
   "continueToSecretsManagerPageDesc": {
     "message": "Securely store, manage, and share developer secrets with Bitwarden Secrets Manager. Learn more on the bitwarden.com website."
@@ -229,7 +235,7 @@
     "message": "Passwordless.dev"
   },
   "continueToPasswordlessDotDevPageDesc": {
-    "message": "Create smooth and secure login experiences free from traditional passwords with Passwordless.dev. Learn more on the bitwarden.com website."
+    "message": "Skapa smidiga och säkra inloggningsupplevelser fria från traditionella lösenord med Passwordless.dev. Läs mer på bitwarden.com hemsidan."
   },
   "freeBitwardenFamilies": {
     "message": "Free Bitwarden Families"
@@ -296,7 +302,7 @@
     "message": "Skapa starka och unika lösenord automatiskt för dina inloggningar."
   },
   "bitWebVaultApp": {
-    "message": "Bitwarden web app"
+    "message": "Bitwarden webbapp"
   },
   "importItems": {
     "message": "Importera objekt"
@@ -417,7 +423,7 @@
     "message": "Annat"
   },
   "unlockMethods": {
-    "message": "Unlock options"
+    "message": "Upplåsningsalternativ"
   },
   "unlockMethodNeededToChangeTimeoutActionDesc": {
     "message": "Set up an unlock method to change your vault timeout action."
@@ -429,7 +435,7 @@
     "message": "Session timeout"
   },
   "otherOptions": {
-    "message": "Other options"
+    "message": "Andra alternativ"
   },
   "rateExtension": {
     "message": "Betygsätt tillägget"
@@ -582,7 +588,7 @@
     "message": "Det går inte att skanna QR-koden från den aktuella webbsidan"
   },
   "totpCaptureSuccess": {
-    "message": "Authenticator key added"
+    "message": "Autentiseringsnyckel tillagd"
   },
   "totpCapture": {
     "message": "Scan authenticator QR code from current webpage"
@@ -779,7 +785,7 @@
     "message": "Ändra programmets färgtema."
   },
   "themeDescAlt": {
-    "message": "Change the application's color theme. Applies to all logged in accounts."
+    "message": "Ändra programmets färgtema. Gäller för alla inloggade konton."
   },
   "dark": {
     "message": "Mörkt",
@@ -1109,7 +1115,7 @@
     "message": "Turn off your browser’s built in password manager settings to avoid conflicts."
   },
   "turnOffBrowserBuiltInPasswordManagerSettingsLink": {
-    "message": "Edit browser settings."
+    "message": "Redigera webbläsarinställningar."
   },
   "autofillOverlayVisibilityOff": {
     "message": "Av",
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Återställde objekt"
   },
+  "alreadyHaveAccount": {
+    "message": "Har du redan ett konto?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Genom att logga ut upphör all åtkomst till valvet och onlineautentisering krävs efter att tidsgränsen överskridits. Är du säker på att du vill använda denna inställning?"
   },
@@ -1757,7 +1766,7 @@
     "message": "User locked or logged out"
   },
   "biometricsNotUnlockedDesc": {
-    "message": "Please unlock this user in the desktop application and try again."
+    "message": "Lås upp den här användaren i skrivbordsprogrammet och försök igen."
   },
   "biometricsFailedTitle": {
     "message": "Biometri misslyckades"
@@ -2237,11 +2246,11 @@
     }
   },
   "forwarderGeneratedBy": {
-    "message": "Generated by Bitwarden.",
+    "message": "Genererad av Bitwarden.",
     "description": "Displayed with the address on the forwarding service's configuration screen."
   },
   "forwarderGeneratedByWithWebsite": {
-    "message": "Website: $WEBSITE$. Generated by Bitwarden.",
+    "message": "Webbplats: $WEBSITE$. Genererad av Bitwarden.",
     "description": "Displayed with the address on the forwarding service's configuration screen.",
     "placeholders": {
       "WEBSITE": {
@@ -2251,7 +2260,7 @@
     }
   },
   "forwaderInvalidToken": {
-    "message": "Invalid $SERVICENAME$ API token",
+    "message": "Ogiltig $SERVICENAME$ API-token",
     "description": "Displayed when the user's API token is empty or rejected by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2261,7 +2270,7 @@
     }
   },
   "forwaderInvalidTokenWithMessage": {
-    "message": "Invalid $SERVICENAME$ API token: $ERRORMESSAGE$",
+    "message": "Ogiltig $SERVICENAME$ API token: $ERRORMESSAGE$",
     "description": "Displayed when the user's API token is rejected by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -2535,12 +2544,33 @@
   "ssoIdentifierRequired": {
     "message": "Organisationens SSO-identifierare krävs."
   },
+  "creatingAccountOn": {
+    "message": "Skapa konto på"
+  },
+  "checkYourEmail": {
+    "message": "Kolla din e-post"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Följ länken i e-postmeddelandet som skickats till"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "Ingen e-post?"
+  },
+  "goBack": {
+    "message": "Gå tillbaka"
+  },
+  "toEditYourEmailAddress": {
+    "message": "för att redigera din e-postadress."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
   },
   "accessDenied": {
-    "message": "Access denied. You do not have permission to view this page."
+    "message": "Åtkomst nekad. Du har inte behörighet att visa denna sida."
   },
   "general": {
     "message": "Allmänt"
@@ -2570,7 +2600,7 @@
     "message": "Användarens e-postadress saknas"
   },
   "deviceTrusted": {
-    "message": "Device trusted"
+    "message": "Enhet betrodd"
   },
   "inputRequired": {
     "message": "Inmatning är obligatoriskt."
@@ -2701,7 +2731,7 @@
     "description": "Notification message for when an import has completed successfully."
   },
   "dataImportFailed": {
-    "message": "Error importing. Check console for details.",
+    "message": "Fel vid importeringen. Kolla konsolen för detaljer.",
     "description": "Notification message for when an import has failed."
   },
   "importNetworkError": {
@@ -2739,7 +2769,7 @@
     "description": "Page title in overlay"
   },
   "unlockYourAccountToViewMatchingLogins": {
-    "message": "Unlock your account to view matching logins",
+    "message": "Lås upp ditt konto för att visa matchande inloggningar",
     "description": "Text to display in overlay when the account is locked."
   },
   "unlockAccount": {
@@ -2853,7 +2883,7 @@
     }
   },
   "launchDuoAndFollowStepsToFinishLoggingIn": {
-    "message": "Launch Duo and follow the steps to finish logging in."
+    "message": "Starta Duo och följ stegen för att slutföra inloggningen."
   },
   "duoRequiredForAccount": {
     "message": "Duo two-step login is required for your account."
@@ -2990,7 +3020,7 @@
     "message": "Autentisering krävs för att använda lösennyckel. Verifiera din identitet för att fortsätta."
   },
   "multifactorAuthenticationCancelled": {
-    "message": "Multifactor authentication cancelled"
+    "message": "Flerfaktorsautentisering avbruten"
   },
   "noLastPassDataFound": {
     "message": "Ingen LastPass-data hittades"
@@ -3008,7 +3038,7 @@
     "message": "Felaktig PIN-kod"
   },
   "multifactorAuthenticationFailed": {
-    "message": "Multifactor authentication failed"
+    "message": "Flerfaktorsautentisering misslyckades"
   },
   "includeSharedFolders": {
     "message": "Inkludera delade mappar"
@@ -3020,7 +3050,7 @@
     "message": "Importerar ditt konto..."
   },
   "lastPassMFARequired": {
-    "message": "LastPass multifactor authentication required"
+    "message": "LastPass flerfaktorsautentisering krävs"
   },
   "lastPassMFADesc": {
     "message": "Ange din engångskod från din autentiseringsapp"
@@ -3035,7 +3065,7 @@
     "message": "LastPass Huvudlösenord"
   },
   "lastPassAuthRequired": {
-    "message": "LastPass authentication required"
+    "message": "LastPass autentisering krävs"
   },
   "awaitingSSO": {
     "message": "Awaiting SSO authentication"
@@ -3081,13 +3111,13 @@
     "message": "Account limit reached. Log out of an account to add another."
   },
   "active": {
-    "message": "active"
+    "message": "aktiv"
   },
   "locked": {
     "message": "låst"
   },
   "unlocked": {
-    "message": "unlocked"
+    "message": "upplåst"
   },
   "server": {
     "message": "server"
@@ -3114,7 +3144,7 @@
     }
   },
   "commonImportFormats": {
-    "message": "Common formats",
+    "message": "Vanliga format",
     "description": "Label indicating the most common import formats"
   },
   "overrideDefaultBrowserAutofillTitle": {
@@ -3157,10 +3187,10 @@
     "message": "Success"
   },
   "removePasskey": {
-    "message": "Remove passkey"
+    "message": "Ta bort passkey"
   },
   "passkeyRemoved": {
-    "message": "Passkey removed"
+    "message": "Passkey borttagen"
   },
   "unassignedItemsBannerNotice": {
     "message": "Notice: Unassigned organization items are no longer visible in the All Vaults view and only accessible via the Admin Console."
@@ -3173,7 +3203,7 @@
     "description": "This will be part of a larger sentence, which will read like so: Assign these items to a collection from the Admin Console to make them visible."
   },
   "unassignedItemsBannerCTAPartTwo": {
-    "message": "to make them visible.",
+    "message": "för att göra dem synliga.",
     "description": "This will be part of a larger sentence, which will read like so: Assign these items to a collection from the Admin Console to make them visible."
   },
   "autofillSuggestions": {
@@ -3183,16 +3213,16 @@
     "message": "Save a login item for this site to auto-fill"
   },
   "yourVaultIsEmpty": {
-    "message": "Your vault is empty"
+    "message": "Ditt valv är tomt"
   },
   "noItemsMatchSearch": {
-    "message": "No items match your search"
+    "message": "Inga objekt matchar din sökning"
   },
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
   "copyInfo": {
-    "message": "Copy info, $ITEMNAME$",
+    "message": "Kopiera information, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
       "itemname": {
@@ -3202,7 +3232,7 @@
     }
   },
   "moreOptions": {
-    "message": "More options, $ITEMNAME$",
+    "message": "Fler alternativ, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
       "itemname": {
@@ -3215,10 +3245,10 @@
     "message": "Admin Console"
   },
   "accountSecurity": {
-    "message": "Account security"
+    "message": "Kontosäkerhet"
   },
   "notifications": {
-    "message": "Notifications"
+    "message": "Aviseringar"
   },
   "appearance": {
     "message": "Utseende"
@@ -3230,7 +3260,7 @@
     "message": "Error assigning target folder."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Visa objekt i $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3240,7 +3270,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Tillbaka till $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3250,10 +3280,10 @@
     }
   },
   "new": {
-    "message": "New"
+    "message": "Ny/Nytt"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Ta bort $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/browser/src/_locales/te/messages.json b/apps/browser/src/_locales/te/messages.json
index e042785011c..64f3623b5af 100644
--- a/apps/browser/src/_locales/te/messages.json
+++ b/apps/browser/src/_locales/te/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Item restored"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Logging out will remove all access to your vault and requires online authentication after the timeout period. Are you sure you want to use this setting?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/th/messages.json b/apps/browser/src/_locales/th/messages.json
index 03e2f1036bb..bd708d0d6e4 100644
--- a/apps/browser/src/_locales/th/messages.json
+++ b/apps/browser/src/_locales/th/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "คืนค่ารายการแล้ว"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "การออกจากระบบจะลบการเข้าถึงตู้นิรภัยของคุณทั้งหมด และต้องมีการตรวจสอบสิทธิ์ออนไลน์หลังจากหมดเวลา คุณแน่ใจหรือไม่ว่าต้องการใช้การตั้งค่านี้"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/tr/messages.json b/apps/browser/src/_locales/tr/messages.json
index f62f2759485..596e779913a 100644
--- a/apps/browser/src/_locales/tr/messages.json
+++ b/apps/browser/src/_locales/tr/messages.json
@@ -173,13 +173,19 @@
     "message": "Web uygulamasına devam edilsin mi?"
   },
   "continueToWebAppDesc": {
-    "message": "Explore more features of your Bitwarden account on the web app."
+    "message": "Web uygulamasında Bitwarden hesabınızın diğer özelliklerini keşfedin."
   },
   "continueToHelpCenter": {
-    "message": "Continue to Help Center?"
+    "message": "Yardım merkezine gitmek ister misiniz?"
   },
   "continueToHelpCenterDesc": {
-    "message": "Learn more about how to use Bitwarden on the Help Center."
+    "message": "Yardım merkezinde Bitwarden kullanımı hakkında daha fazla bilgi alabilirsiniz."
+  },
+  "continueToBrowserExtensionStore": {
+    "message": "Tarayıcınızın uzantı sitesine gitmek ister misiniz?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
   },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Ana parolanızı Bitwarden web uygulamasında değiştirebilirsiniz."
@@ -199,19 +205,19 @@
     "message": "Çıkış yap"
   },
   "aboutBitwarden": {
-    "message": "About Bitwarden"
+    "message": "Bitwarden hakkında"
   },
   "about": {
     "message": "Hakkında"
   },
   "moreFromBitwarden": {
-    "message": "More from Bitwarden"
+    "message": "Diğer Bitwarden ürünleri"
   },
   "continueToBitwardenDotCom": {
-    "message": "Continue to bitwarden.com?"
+    "message": "bitwarden.com'a gitmek ister misiniz?"
   },
   "bitwardenForBusiness": {
-    "message": "Bitwarden for Business"
+    "message": "İşletmeler için Bitwarden"
   },
   "bitwardenAuthenticator": {
     "message": "Bitwarden Authenticator"
@@ -296,7 +302,7 @@
     "message": "Hesaplarınız için otomatik olarak güçlü, özgün parolalar oluşturun."
   },
   "bitWebVaultApp": {
-    "message": "Bitwarden web app"
+    "message": "Bitwarden web uygulaması"
   },
   "importItems": {
     "message": "Hesapları içe aktar"
@@ -822,7 +828,7 @@
     "message": "Paylaşılan"
   },
   "bitwardenForBusinessPageDesc": {
-    "message": "Bitwarden for Business allows you to share your vault items with others by using an organization. Learn more on the bitwarden.com website."
+    "message": "İşletmeler için Bitwarden'ı kullanarak kasanızdaki kayıtları başkalarıyla paylaşabilirsiniz. Daha fazla bilgi için bitwarden.com sitesini ziyaret edin."
   },
   "moveToOrganization": {
     "message": "Kuruluşa taşı"
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Kayıt geri yüklendi"
   },
+  "alreadyHaveAccount": {
+    "message": "Zaten hesabınız var mı?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Çıkış yaptığınızda kasanıza erişiminiz tamamen sonlanacak ve zaman aşımının ardından çevrimiçi kimlik doğrulaması yapmanız gerekecek. Bu ayarı kullanmak istediğinizden emin misiniz?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Kuruluş SSO tanımlayıcısı gereklidir."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "AB",
     "description": "European Union"
@@ -3177,16 +3207,16 @@
     "description": "This will be part of a larger sentence, which will read like so: Assign these items to a collection from the Admin Console to make them visible."
   },
   "autofillSuggestions": {
-    "message": "Auto-fill suggestions"
+    "message": "Önerileri otomatik doldur"
   },
   "autofillSuggestionsTip": {
     "message": "Save a login item for this site to auto-fill"
   },
   "yourVaultIsEmpty": {
-    "message": "Your vault is empty"
+    "message": "Kasanız boş"
   },
   "noItemsMatchSearch": {
-    "message": "No items match your search"
+    "message": "Aramanızla eşleşen kayıt yok"
   },
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
diff --git a/apps/browser/src/_locales/uk/messages.json b/apps/browser/src/_locales/uk/messages.json
index 687d11df722..43861e99e93 100644
--- a/apps/browser/src/_locales/uk/messages.json
+++ b/apps/browser/src/_locales/uk/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Дізнайтеся більше про те, як використовувати Bitwarden в довідковому центрі."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Перейти до вебмагазину розширень?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Допоможіть іншим дізнатися про Bitwarden. Відвідайте вебмагазин розширень для вашого браузера і поставте оцінку."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Ви можете змінити головний пароль у вебпрограмі Bitwarden."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Запис відновлено"
   },
+  "alreadyHaveAccount": {
+    "message": "Вже маєте обліковий запис?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Вихід скасує всі права доступу до вашого сховища і вимагатиме автентифікацію після завершення часу очікування. Ви дійсно хочете використати цей параметр?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Потрібен SSO-ідентифікатор організації."
   },
+  "creatingAccountOn": {
+    "message": "Створення облікового запису"
+  },
+  "checkYourEmail": {
+    "message": "Перевірте свою електронну пошту"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Перейдіть за посиланням у листі, надісланому на"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "і завершіть створення облікового запису."
+  },
+  "noEmail": {
+    "message": "Не отримали електронного листа?"
+  },
+  "goBack": {
+    "message": "Поверніться назад"
+  },
+  "toEditYourEmailAddress": {
+    "message": "і виправте адресу електронної пошти."
+  },
   "eu": {
     "message": "ЄС",
     "description": "European Union"
@@ -3230,7 +3260,7 @@
     "message": "Помилка призначення цільової теки."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Переглянути записи в $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3240,7 +3270,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Назад до $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3253,7 +3283,7 @@
     "message": "Новий"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Вилучити $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/browser/src/_locales/vi/messages.json b/apps/browser/src/_locales/vi/messages.json
index 54913730736..3d6bd434b1a 100644
--- a/apps/browser/src/_locales/vi/messages.json
+++ b/apps/browser/src/_locales/vi/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Bạn có thể thay đổi mật khẩu chính của mình trên Bitwarden bản web."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "Mục đã được khôi phục"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "Việc đăng xuất sẽ loại bỏ tất cả truy cập vào kho lưu trữ của bạn và yêu cầu xác minh trực tuyến sau khi hết giai đoạn thời gian chờ. Bạn có chắc chắn muốn dùng cài đặt này không?"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "Organization SSO identifier is required."
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/src/_locales/zh_CN/messages.json b/apps/browser/src/_locales/zh_CN/messages.json
index 7d5ef53fdd0..f8464f892f8 100644
--- a/apps/browser/src/_locales/zh_CN/messages.json
+++ b/apps/browser/src/_locales/zh_CN/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "访问帮助中心了解更多如何使用 Bitwarden 的信息。"
   },
+  "continueToBrowserExtensionStore": {
+    "message": "前往浏览器扩展商店吗？"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "帮助别人了解 Bitwarden 是否适合他们。立即访问浏览器的扩展程序商店并留下评分。"
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "您可以在 Bitwarden 网页应用上更改您的主密码。"
   },
@@ -229,7 +235,7 @@
     "message": "Passwordless.dev"
   },
   "continueToPasswordlessDotDevPageDesc": {
-    "message": "使用 Passwordless.dev 摆脱传统密码，创建流畅且安全的登录体验。访问 bitwarden.com 网站了解更多信息。"
+    "message": "使用 Passwordless.dev 摆脱传统密码束缚，打造流畅且安全的登录体验。访问 bitwarden.com 网站了解更多信息。"
   },
   "freeBitwardenFamilies": {
     "message": "免费 Bitwarden 家庭"
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "项目已恢复"
   },
+  "alreadyHaveAccount": {
+    "message": "已经拥有账户了吗？"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "超时后注销账户将解除对密码库的所有访问权限，并需要进行在线身份验证。确定使用此设置吗？"
   },
@@ -2398,7 +2407,7 @@
     "message": "正登录为"
   },
   "notYou": {
-    "message": "不是你？"
+    "message": "不是您吗？"
   },
   "newAroundHere": {
     "message": "初来乍到吗？"
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "必须填写组织 SSO 标识符。"
   },
+  "creatingAccountOn": {
+    "message": "创建账户于"
+  },
+  "checkYourEmail": {
+    "message": "检查您的电子邮箱"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "点击发送到电子邮件中的链接"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "然后继续创建您的账户。"
+  },
+  "noEmail": {
+    "message": "没收到电子邮件吗？"
+  },
+  "goBack": {
+    "message": "返回"
+  },
+  "toEditYourEmailAddress": {
+    "message": "编辑您的电子邮件地址。"
+  },
   "eu": {
     "message": "欧盟",
     "description": "European Union"
@@ -2747,7 +2777,7 @@
     "description": "Button text to display in overlay when the account is locked."
   },
   "fillCredentialsFor": {
-    "message": "填写凭据",
+    "message": "为其填写凭据",
     "description": "Screen reader text for when overlay item is in focused"
   },
   "partialUsername": {
@@ -2823,7 +2853,7 @@
     "message": "无法完成生物识别。"
   },
   "needADifferentMethod": {
-    "message": "需要一个不同的方法？"
+    "message": "尝试其他方式吗？"
   },
   "useMasterPassword": {
     "message": "使用主密码"
@@ -3054,7 +3084,7 @@
     "message": "从 CSV 导入"
   },
   "lastPassTryAgainCheckEmail": {
-    "message": "请重试或查找来自 LastPass 的电子邮件以验证您的身份。"
+    "message": "请重试或查找来自 LastPass 的可以验证您的身份的电子邮件。"
   },
   "collection": {
     "message": "集合"
@@ -3230,7 +3260,7 @@
     "message": "分配目标文件夹时出错。"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "查看 $NAME$ 中的项目",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3240,7 +3270,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "返回 $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3253,7 +3283,7 @@
     "message": "新建"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "删除 $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/browser/src/_locales/zh_TW/messages.json b/apps/browser/src/_locales/zh_TW/messages.json
index bbb5352ad13..a3a7bbfb686 100644
--- a/apps/browser/src/_locales/zh_TW/messages.json
+++ b/apps/browser/src/_locales/zh_TW/messages.json
@@ -181,6 +181,12 @@
   "continueToHelpCenterDesc": {
     "message": "Learn more about how to use Bitwarden on the Help Center."
   },
+  "continueToBrowserExtensionStore": {
+    "message": "Continue to browser extension store?"
+  },
+  "continueToBrowserExtensionStoreDesc": {
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+  },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
   },
@@ -1600,6 +1606,9 @@
   "restoredItem": {
     "message": "項目已還原"
   },
+  "alreadyHaveAccount": {
+    "message": "Already have an account?"
+  },
   "vaultTimeoutLogOutConfirmation": {
     "message": "選擇登出將會在密碼庫逾時後移除對密碼庫的所有存取權限，若要重新驗證則需連線網路。確定要使用此設定嗎？"
   },
@@ -2535,6 +2544,27 @@
   "ssoIdentifierRequired": {
     "message": "需要組織 SSO 識別碼。"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "eu": {
     "message": "EU",
     "description": "European Union"
diff --git a/apps/browser/store/locales/sv/copy.resx b/apps/browser/store/locales/sv/copy.resx
index 6406ab013e6..af48fec33bf 100644
--- a/apps/browser/store/locales/sv/copy.resx
+++ b/apps/browser/store/locales/sv/copy.resx
@@ -118,10 +118,10 @@
     <value>System.Resources.ResXResourceWriter, System.Windows.Forms, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089</value>
   </resheader>
   <data name="Name" xml:space="preserve">
-    <value>Bitwarden Password Manager</value>
+    <value>Bitwarden Lösenordshanterare</value>
   </data>
   <data name="Summary" xml:space="preserve">
-    <value>At home, at work, or on the go, Bitwarden easily secures all your passwords, passkeys, and sensitive information.</value>
+    <value>Hemma, på jobbet eller på resande fot säkrar Bitwarden enkelt alla dina lösenord, passkeys, och känslig information.</value>
   </data>
   <data name="Description" xml:space="preserve">
     <value>Recognized as the best password manager by PCMag, WIRED, The Verge, CNET, G2, and more!
@@ -169,7 +169,7 @@ End-to-end encrypted credential management solutions from Bitwarden empower orga
 </value>
   </data>
   <data name="AssetTitle" xml:space="preserve">
-    <value>At home, at work, or on the go, Bitwarden easily secures all your passwords, passkeys, and sensitive information.</value>
+    <value>Hemma, på jobbet eller på resande fot säkrar Bitwarden enkelt alla dina lösenord, passkeys, och känslig information.</value>
   </data>
   <data name="ScreenshotSync" xml:space="preserve">
     <value>Synkronisera och kom åt ditt valv från flera enheter</value>
diff --git a/apps/browser/store/locales/zh_CN/copy.resx b/apps/browser/store/locales/zh_CN/copy.resx
index d010cb1a7bf..e864e27ed0b 100644
--- a/apps/browser/store/locales/zh_CN/copy.resx
+++ b/apps/browser/store/locales/zh_CN/copy.resx
@@ -124,21 +124,21 @@
     <value>无论是在家里、工作中还是在外出时，Bitwarden 都可以轻松地保护您的所有密码、通行密钥和敏感信息。</value>
   </data>
   <data name="Description" xml:space="preserve">
-    <value>被 PCMag、WIRED、The Verge、CNET、G2 等评为最佳密码管理器！
+    <value>被 PCMag、WIRED、The Verge、CNET、G2 等评为最佳的密码管理器！
 
 保护您的数字生活
-通过为每个账户生成并保存独特而强大的密码，保护您的数字生活并防范数据泄露。所有内容保存在只有您可以访问的端对端加密的密码库中。
+通过为每个账户生成并保存唯一而强大的密码，保护您的数字生活并防止数据泄露。所有内容保存在只有您可以访问的端对端加密的密码库中。
 
 随时随地在任何设备上访问您的数据
-不受任何限制跨无限数量的设备轻松管理、存储、保护和分享不限数量的密码。
+不受任何限制，跨无限数量的设备，轻松地管理、存储、保护和分享不限数量的密码。
 
 每个人都应该拥有的保持在线安全的工具
-使用 Bitwarden 是免费的，没有广告，不会出售数据。Bitwarden 相信每个人都应该拥有保持在线安全的能力。高级计划提供了堆高级功能的访问。
+使用 Bitwarden 是免费的，没有广告，不会出售数据。Bitwarden 相信每个人都应该拥有保持在线安全的能力。高级计划提供了对高级功能的访问。
 
-通过 BITWARDEN 为您的团队提供支持
-团队和企业计划具有专业的商业功能。例如 SSO 集成、自托管、目录集成和 SCIM 配置、全局策略、API 访问、事件日志等。
+使用 BITWARDEN 为您的团队提供支持
+团队计划和企业计划具有专业的商业功能。例如 SSO 集成、自托管、目录集成，以及 SCIM 配置、全局策略、API 访问、事件日志等。
 
-使用 Bitwarden 保护您的团队，并与同事共享敏感信息。
+使用 Bitwarden 保护您的劳动成果，并与同事共享敏感信息。
 
 选择 Bitwarden 的更多理由：
 
@@ -146,25 +146,25 @@
 密码受到先进的端对端加密（AES-256 位、加盐哈希标签和 PBKDF2 SHA-256）保护，使您的数据保持安全和私密。
 
 第三方审计
-Bitwarden 定期与知名的安全公司进行全面的第三方安全审计。这些年度审核包括对 Bitwarden IP、服务器和 Web 应用程序的源代码评估和渗透测试。
+Bitwarden 定期与知名的安全公司进行全面的第三方安全审计。这些年度审计包括对 Bitwarden IP、服务器和 Web 应用程序的源代码评估和渗透测试。
 
-高级两步验证
-使用第三方身份验证器、通过电子邮件发送代码或 FIDO2 WebAuthn 凭据（如硬件安全钥匙或通行密钥）保护您的登录。
+高级 2FA
+使用第三方验证器、电子邮件代码或 FIDO2 WebAuthn 凭据（例如硬件安全钥匙或通行密钥）保护您的登录。
 
 Bitwarden Send
-直接传输数据给他人，同时保持端对端加密的安全性并防止曝露。
+直接传输数据给他人，同时保持端对端加密的安全性并防止暴露。
 
 内置生成器
-为您访问的每个网站创建长、复杂且独特的密码和用户名。与电子邮件别名提供商集成，增加隐私保护。
+为您访问的每个网站创建足够长、足够复杂且唯一的密码和用户名。与电子邮件别名提供商集成，增加隐私保护。
 
 全球翻译
-Bitwarden 的翻译涵盖 60 多种语言，由全球社区通过 Crowdin 翻译。
+Bitwarden 的翻译涵盖 60 多种语言，由全球社区使用 Crowdin 翻译。
 
 跨平台应用程序
 从任何浏览器、移动设备或桌面操作系统中安全地访问和共享 Bitwarden 密码库中的敏感数据。
 
 Bitwarden 保护的不仅仅是密码
-Bitwarden 的端对端加密凭据管理解决方案使组织能够保护所有内容，包括开发人员机密和通行密钥体验。访问 Bitwarden.com 了解更多关于Bitwarden Secrets Manager 和 Bitwarden Passwordless.dev 的信息！</value>
+Bitwarden 的端对端加密凭据管理解决方案使组织能够保护所有内容，包括开发人员机密和通行密钥体验。访问 Bitwarden.com 了解更多关于 Bitwarden Secrets Manager 和 Bitwarden Passwordless.dev 的信息！</value>
   </data>
   <data name="AssetTitle" xml:space="preserve">
     <value>无论是在家里、工作中还是在外出时，Bitwarden 都可以轻松地保护您的所有密码、通行密钥和敏感信息。</value>

From 05f5d632aa519a6a225d5630c098577ace6306ae Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Wed, 29 May 2024 20:21:03 +0000
Subject: [PATCH 028/138] Autosync the updated translations (#9420)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/web/src/locales/af/messages.json    | 133 ++++++++++++++---------
 apps/web/src/locales/ar/messages.json    |  29 ++++-
 apps/web/src/locales/az/messages.json    |  39 ++++++-
 apps/web/src/locales/be/messages.json    |  27 +++++
 apps/web/src/locales/bg/messages.json    |  35 +++++-
 apps/web/src/locales/bn/messages.json    |  29 ++++-
 apps/web/src/locales/bs/messages.json    |  29 ++++-
 apps/web/src/locales/ca/messages.json    |  27 +++++
 apps/web/src/locales/cs/messages.json    |  35 +++++-
 apps/web/src/locales/cy/messages.json    |  29 ++++-
 apps/web/src/locales/da/messages.json    |  27 +++++
 apps/web/src/locales/de/messages.json    |  35 +++++-
 apps/web/src/locales/el/messages.json    |  27 +++++
 apps/web/src/locales/en_GB/messages.json |  27 +++++
 apps/web/src/locales/en_IN/messages.json |  27 +++++
 apps/web/src/locales/eo/messages.json    |  27 +++++
 apps/web/src/locales/es/messages.json    |  27 +++++
 apps/web/src/locales/et/messages.json    |  27 +++++
 apps/web/src/locales/eu/messages.json    |  27 +++++
 apps/web/src/locales/fa/messages.json    |  27 +++++
 apps/web/src/locales/fi/messages.json    |  63 ++++++++---
 apps/web/src/locales/fil/messages.json   |  27 +++++
 apps/web/src/locales/fr/messages.json    |  27 +++++
 apps/web/src/locales/gl/messages.json    |  29 ++++-
 apps/web/src/locales/he/messages.json    |  27 +++++
 apps/web/src/locales/hi/messages.json    |  29 ++++-
 apps/web/src/locales/hr/messages.json    |  27 +++++
 apps/web/src/locales/hu/messages.json    |  35 +++++-
 apps/web/src/locales/id/messages.json    |  27 +++++
 apps/web/src/locales/it/messages.json    |  35 +++++-
 apps/web/src/locales/ja/messages.json    |  35 +++++-
 apps/web/src/locales/ka/messages.json    |  29 ++++-
 apps/web/src/locales/km/messages.json    |  29 ++++-
 apps/web/src/locales/kn/messages.json    |  27 +++++
 apps/web/src/locales/ko/messages.json    |  27 +++++
 apps/web/src/locales/lv/messages.json    |  35 +++++-
 apps/web/src/locales/ml/messages.json    |  27 +++++
 apps/web/src/locales/mr/messages.json    |  29 ++++-
 apps/web/src/locales/my/messages.json    |  29 ++++-
 apps/web/src/locales/nb/messages.json    |  27 +++++
 apps/web/src/locales/ne/messages.json    |  29 ++++-
 apps/web/src/locales/nl/messages.json    |  27 +++++
 apps/web/src/locales/nn/messages.json    |  29 ++++-
 apps/web/src/locales/or/messages.json    |  29 ++++-
 apps/web/src/locales/pl/messages.json    |  27 +++++
 apps/web/src/locales/pt_BR/messages.json | 111 ++++++++++++-------
 apps/web/src/locales/pt_PT/messages.json |  27 +++++
 apps/web/src/locales/ro/messages.json    |  27 +++++
 apps/web/src/locales/ru/messages.json    |  27 +++++
 apps/web/src/locales/si/messages.json    |  29 ++++-
 apps/web/src/locales/sk/messages.json    |  35 +++++-
 apps/web/src/locales/sl/messages.json    |  29 ++++-
 apps/web/src/locales/sr/messages.json    |  47 ++++++--
 apps/web/src/locales/sr_CS/messages.json |  27 +++++
 apps/web/src/locales/sv/messages.json    |  45 ++++++--
 apps/web/src/locales/te/messages.json    |  29 ++++-
 apps/web/src/locales/th/messages.json    |  29 ++++-
 apps/web/src/locales/tr/messages.json    |  27 +++++
 apps/web/src/locales/uk/messages.json    |  35 +++++-
 apps/web/src/locales/vi/messages.json    |  29 ++++-
 apps/web/src/locales/zh_CN/messages.json |  51 +++++++--
 apps/web/src/locales/zh_TW/messages.json |  43 ++++++--
 62 files changed, 1886 insertions(+), 212 deletions(-)

diff --git a/apps/web/src/locales/af/messages.json b/apps/web/src/locales/af/messages.json
index 4556a27dcb9..06a957e8833 100644
--- a/apps/web/src/locales/af/messages.json
+++ b/apps/web/src/locales/af/messages.json
@@ -579,7 +579,7 @@
     "message": "Toegang"
   },
   "accessLevel": {
-    "message": "Access level"
+    "message": "Toegangsvlak"
   },
   "loggedOut": {
     "message": "Uitgeteken"
@@ -672,10 +672,10 @@
     "message": "Encryption not supported"
   },
   "enablePasskeyEncryption": {
-    "message": "Set up encryption"
+    "message": "Stel enkripsie op"
   },
   "usedForEncryption": {
-    "message": "Used for encryption"
+    "message": "Gebruik vir enkripsie"
   },
   "loginWithPasskeyEnabled": {
     "message": "Log in with passkey turned on"
@@ -1045,7 +1045,7 @@
     "message": "Kopieer bevestigingskode"
   },
   "copyUuid": {
-    "message": "Copy UUID"
+    "message": "Kopieer UUID"
   },
   "warning": {
     "message": "Waarskuwing"
@@ -1151,7 +1151,7 @@
     "message": "Lengte"
   },
   "passwordMinLength": {
-    "message": "Minimum password length"
+    "message": "Minimum wagwoordlengte"
   },
   "uppercase": {
     "message": "Hoofletters (A-Z)",
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Toestel"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "Bekyk"
   },
@@ -7666,7 +7687,7 @@
     "message": "Service account access updated"
   },
   "commonImportFormats": {
-    "message": "Common formats",
+    "message": "Algemene formate",
     "description": "Label indicating the most common import formats"
   },
   "maintainYourSubscription": {
@@ -7743,7 +7764,7 @@
     "message": "Provider Portal"
   },
   "success": {
-    "message": "Success"
+    "message": "Sukses"
   },
   "restrictedGroupAccess": {
     "message": "You cannot add yourself to groups."
@@ -7862,7 +7883,7 @@
     "description": "A warning shown to the user when their subscription is past due and they pay via invoice."
   },
   "unpaidInvoice": {
-    "message": "Unpaid invoice",
+    "message": "Onbetaalde faktuur",
     "description": "The header of a warning box shown to a user whose subscription is unpaid."
   },
   "toReactivateYourSubscription": {
@@ -7877,39 +7898,39 @@
     "message": "Machine accounts cannot be created in suspended organizations. Please contact your organization owner for assistance."
   },
   "machineAccount": {
-    "message": "Machine account",
+    "message": "Masjienrekening",
     "description": "A machine user which can be used to automate processes and access secrets in the system."
   },
   "machineAccounts": {
-    "message": "Machine accounts",
+    "message": "Masjienrekeninge",
     "description": "The title for the section that deals with machine accounts."
   },
   "newMachineAccount": {
-    "message": "New machine account",
+    "message": "Nuwe masjienrekening",
     "description": "Title for creating a new machine account."
   },
   "machineAccountsNoItemsMessage": {
-    "message": "Create a new machine account to get started automating secret access.",
+    "message": "Skep ’n nuwe masjienrekening om die outomatisering van geheimtoegang te begin.",
     "description": "Message to encourage the user to start creating machine accounts."
   },
   "machineAccountsNoItemsTitle": {
-    "message": "Nothing to show yet",
+    "message": "Nog niks om te wys nie",
     "description": "Title to indicate that there are no machine accounts to display."
   },
   "deleteMachineAccounts": {
-    "message": "Delete machine accounts",
+    "message": "Skrap masjienrekeninge",
     "description": "Title for the action to delete one or multiple machine accounts."
   },
   "deleteMachineAccount": {
-    "message": "Delete machine account",
+    "message": "Skrap masjienrekening",
     "description": "Title for the action to delete a single machine account."
   },
   "viewMachineAccount": {
-    "message": "View machine account",
+    "message": "Bekyk masjienrekening",
     "description": "Action to view the details of a machine account."
   },
   "deleteMachineAccountDialogMessage": {
-    "message": "Deleting machine account $MACHINE_ACCOUNT$ is permanent and irreversible.",
+    "message": "Die skrap van masjienrekening $MACHINE_ACCOUNT$ is permanent en onomkeerbaar.",
     "placeholders": {
       "machine_account": {
         "content": "$1",
@@ -7918,10 +7939,10 @@
     }
   },
   "deleteMachineAccountsDialogMessage": {
-    "message": "Deleting machine accounts is permanent and irreversible."
+    "message": "Die skrap van masjienrekeninge is permanent en onomkeerbaar."
   },
   "deleteMachineAccountsConfirmMessage": {
-    "message": "Delete $COUNT$ machine accounts",
+    "message": "Skrap $COUNT$ masjienrekeninge",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -7930,48 +7951,48 @@
     }
   },
   "deleteMachineAccountToast": {
-    "message": "Machine account deleted"
+    "message": "Masjienrekening geskrap"
   },
   "deleteMachineAccountsToast": {
-    "message": "Machine accounts deleted"
+    "message": "Masjienrekeninge geskrap"
   },
   "searchMachineAccounts": {
-    "message": "Search machine accounts",
+    "message": "Soek masjienrekeninge",
     "description": "Placeholder text for searching machine accounts."
   },
   "editMachineAccount": {
-    "message": "Edit machine account",
+    "message": "Wysig masjienrekening",
     "description": "Title for editing a machine account."
   },
   "machineAccountName": {
-    "message": "Machine account name",
+    "message": "Masjienrekeningnaam",
     "description": "Label for the name of a machine account"
   },
   "machineAccountCreated": {
-    "message": "Machine account created",
+    "message": "Masjienrekening geskep",
     "description": "Notifies that a new machine account has been created"
   },
   "machineAccountUpdated": {
-    "message": "Machine account updated",
+    "message": "Masjienrekening bygewerk",
     "description": "Notifies that a machine account has been updated"
   },
   "projectMachineAccountsDescription": {
-    "message": "Grant machine accounts access to this project."
+    "message": "Verleen masjienrekeninge toegang tot hierdie projek."
   },
   "projectMachineAccountsSelectHint": {
-    "message": "Type or select machine accounts"
+    "message": "Tik of kies masjienrekeninge"
   },
   "projectEmptyMachineAccountAccessPolicies": {
-    "message": "Add machine accounts to grant access"
+    "message": "Voeg masjienrekeninge toe om toegang te verleen"
   },
   "machineAccountPeopleDescription": {
-    "message": "Grant groups or people access to this machine account."
+    "message": "Verleen groepe of mense toegang tot hierdie masjienrekening."
   },
   "machineAccountProjectsDescription": {
-    "message": "Assign projects to this machine account. "
+    "message": "Ken projekte toe aan hierdie masjienrekening. "
   },
   "createMachineAccount": {
-    "message": "Create a machine account"
+    "message": "Skep ’n masjienrekening"
   },
   "maPeopleWarningMessage": {
     "message": "Removing people from a machine account does not remove the access tokens they created. For security best practice, it is recommended to revoke access tokens created by people removed from a machine account."
@@ -8034,10 +8055,10 @@
     "message": "Max potential machine account cost"
   },
   "machineAccountAccessUpdated": {
-    "message": "Machine account access updated"
+    "message": "Masjienrekeningtoegang bygewerk"
   },
   "restrictedGroupAccessDesc": {
-    "message": "You cannot add yourself to a group."
+    "message": "U kan nie uself tot ’n groep toevoeg nie."
   },
   "unassignedItemsBannerSelfHost": {
     "message": "Notice: On May 2, 2024, unassigned organization items will no longer be visible in your All Vaults view across devices and will only be accessible via the Admin Console. Assign these items to a collection from the Admin Console to make them visible."
@@ -8057,7 +8078,7 @@
     "description": "This will be part of a larger sentence, which will read like so: Assign these items to a collection from the Admin Console to make them visible."
   },
   "deleteProvider": {
-    "message": "Delete provider"
+    "message": "Skrap verskaffer"
   },
   "deleteProviderConfirmation": {
     "message": "Deleting a provider is permanent and irreversible. Enter your master password to confirm the deletion of the provider and all associated data."
@@ -8115,13 +8136,13 @@
     "message": "Use Bitwarden Secrets Manager SDK in the following programming languages to build your own applications."
   },
   "setUpGithubActions": {
-    "message": "Set up Github Actions"
+    "message": "Stel Github Actions op"
   },
   "setUpGitlabCICD": {
-    "message": "Set up GitLab CI/CD"
+    "message": "Stel GitLab CI/CD op"
   },
   "setUpAnsible": {
-    "message": "Set up Ansible"
+    "message": "Stel Ansible op"
   },
   "cSharpSDKRepo": {
     "message": "View C# repository"
@@ -8151,13 +8172,13 @@
     "message": "Create a new client organization to manage as a Provider. Additional seats will be reflected in the next billing cycle."
   },
   "selectAPlan": {
-    "message": "Select a plan"
+    "message": "Kies ’n plan"
   },
   "thirtyFivePercentDiscount": {
-    "message": "35% Discount"
+    "message": "35% afslag"
   },
   "monthPerMember": {
-    "message": "month per member"
+    "message": "maand per lid"
   },
   "seats": {
     "message": "Seats"
@@ -8169,7 +8190,7 @@
     "message": "Successfully created new client"
   },
   "noAccess": {
-    "message": "No access"
+    "message": "Geen toegang"
   },
   "collectionAdminConsoleManaged": {
     "message": "This collection is only accessible from the admin console"
@@ -8178,10 +8199,10 @@
     "message": "Toggle Organization Menu"
   },
   "vaultItemSelect": {
-    "message": "Select vault item"
+    "message": "Kies kluisitem"
   },
   "collectionItemSelect": {
-    "message": "Select collection item"
+    "message": "Kies versamelingitem"
   },
   "manageBillingFromProviderPortalMessage": {
     "message": "Manage billing from the Provider Portal"
@@ -8197,7 +8218,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Terug na $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -8207,11 +8228,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Terug",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Verwyder $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -8221,10 +8242,10 @@
     }
   },
   "viewInfo": {
-    "message": "View info"
+    "message": "Bekyk inligting"
   },
   "viewAccess": {
-    "message": "View access"
+    "message": "Bekyk toegang"
   },
   "noCollectionsSelected": {
     "message": "You have not selected any collections."
@@ -8242,7 +8263,7 @@
     "message": "Organization Seats"
   },
   "providerDiscount": {
-    "message": "$AMOUNT$% Discount",
+    "message": "$AMOUNT$% afslag",
     "placeholders": {
       "amount": {
         "content": "$1",
@@ -8254,18 +8275,24 @@
     "message": "Low KDF iterations. Increase your iterations to improve the security of your account."
   },
   "changeKDFSettings": {
-    "message": "Change KDF settings"
+    "message": "Verander KDF-instellings"
   },
   "secureYourInfrastructure": {
-    "message": "Secure your infrastructure"
+    "message": "Beveilig u infrastruktuur"
   },
   "protectYourFamilyOrBusiness": {
-    "message": "Protect your family or business"
+    "message": "Beskerm u gesin of besigheid"
   },
   "upgradeOrganizationCloseSecurityGaps": {
     "message": "Close security gaps with monitoring reports"
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/ar/messages.json b/apps/web/src/locales/ar/messages.json
index 2ce0c82901d..e5f0fbe933b 100644
--- a/apps/web/src/locales/ar/messages.json
+++ b/apps/web/src/locales/ar/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "الجهاز"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/az/messages.json b/apps/web/src/locales/az/messages.json
index 141651d5309..963ea19cc74 100644
--- a/apps/web/src/locales/az/messages.json
+++ b/apps/web/src/locales/az/messages.json
@@ -1342,7 +1342,7 @@
     "message": "Hesabınız bağlandı və bütün əlaqəli verilənlər silindi."
   },
   "deleteOrganizationWarning": {
-    "message": "Deleting your organization is permanent. It cannot be undone."
+    "message": "Təşkilatınızı silmək birdəfəlik prosesdir. Bu əməliyyatın geri dönüşü yoxdur."
   },
   "myAccount": {
     "message": "Hesabım"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Cihaz"
   },
+  "creatingAccountOn": {
+    "message": "Hesab yaradılır"
+  },
+  "checkYourEmail": {
+    "message": "E-poçtunuzu yoxlayın"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Göndərilən e-poçtdakı keçidi izləyin"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "və hesabınızı yaratmağa davam edin."
+  },
+  "noEmail": {
+    "message": "E-poçt yoxdur?"
+  },
+  "goBack": {
+    "message": "Geri qayıt"
+  },
+  "toEditYourEmailAddress": {
+    "message": "və e-poçt ünvanına düzəliş et."
+  },
   "view": {
     "message": "Bax"
   },
@@ -3392,7 +3413,7 @@
     "message": "Bitwarden hesabınızı silmək üçün tələb göndərdiniz. Təsdiqləmək üçün aşağıdakı düyməyə basın."
   },
   "deleteRecoverOrgConfirmDesc": {
-    "message": "You have requested to delete your Bitwarden organization."
+    "message": "Bitwarden təşkilatınızın silinməsini tələb etdiniz."
   },
   "myOrganization": {
     "message": "Təşkilatım"
@@ -8187,7 +8208,7 @@
     "message": "Fakturanı \"Provayder Portalı\"ndan idarə et"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "$NAME$ daxilindəki elementlərə bax",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -8197,7 +8218,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Geri qayıt: $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -8207,11 +8228,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Geri",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Sil: $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Təkmil izləmə üçün ödənişli plana yüksəldərək təhlükəsizlik üzrə zəif nöqtələri qabaqlayın."
+  },
+  "approveAllRequests": {
+    "message": "Bütün tələbləri təsdiqlə"
+  },
+  "allLoginRequestsApproved": {
+    "message": "Bütün giriş tələbləri təsdiqləndi"
   }
 }
diff --git a/apps/web/src/locales/be/messages.json b/apps/web/src/locales/be/messages.json
index 2e6709579d4..8ec953ead5d 100644
--- a/apps/web/src/locales/be/messages.json
+++ b/apps/web/src/locales/be/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Прылада"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "Прагляд"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/bg/messages.json b/apps/web/src/locales/bg/messages.json
index b551adacdbe..17f37b27775 100644
--- a/apps/web/src/locales/bg/messages.json
+++ b/apps/web/src/locales/bg/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Устройство"
   },
+  "creatingAccountOn": {
+    "message": "Създаване на регистрация в"
+  },
+  "checkYourEmail": {
+    "message": "Проверете е-пощата си"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Последвайте връзката в е-писмото изпратено до"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "и продължете със създаването на регистрацията си."
+  },
+  "noEmail": {
+    "message": "Не сте получили е-писмо?"
+  },
+  "goBack": {
+    "message": "Върнете се назад"
+  },
+  "toEditYourEmailAddress": {
+    "message": ", за да редактирате адреса на е-пощата си."
+  },
   "view": {
     "message": "Изглед"
   },
@@ -8187,7 +8208,7 @@
     "message": "Управление на плащанията от Портала за доставчици"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Преглед на елементите в $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -8197,7 +8218,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Назад към $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -8207,11 +8228,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Назад",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Премахване на $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Не допускайте уязвимост в сигурността си като надградите до платен план с подобрено наблюдение."
+  },
+  "approveAllRequests": {
+    "message": "Одобряване на всички заявки"
+  },
+  "allLoginRequestsApproved": {
+    "message": "Всички заявки за вписване са одобрени"
   }
 }
diff --git a/apps/web/src/locales/bn/messages.json b/apps/web/src/locales/bn/messages.json
index cb4e52f754c..edf5b44ba56 100644
--- a/apps/web/src/locales/bn/messages.json
+++ b/apps/web/src/locales/bn/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/bs/messages.json b/apps/web/src/locales/bs/messages.json
index b6521e2899d..b4a453bafe7 100644
--- a/apps/web/src/locales/bs/messages.json
+++ b/apps/web/src/locales/bs/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/ca/messages.json b/apps/web/src/locales/ca/messages.json
index 1baddec1012..a759371fd4e 100644
--- a/apps/web/src/locales/ca/messages.json
+++ b/apps/web/src/locales/ca/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Dispositiu"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "Mostra"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/cs/messages.json b/apps/web/src/locales/cs/messages.json
index e314b74b88f..63be12e4052 100644
--- a/apps/web/src/locales/cs/messages.json
+++ b/apps/web/src/locales/cs/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Zařízení"
   },
+  "creatingAccountOn": {
+    "message": "Vytváření účtu na"
+  },
+  "checkYourEmail": {
+    "message": "Zkontrolujte Váš e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Následujte pokyny v e-mailu poslaném na"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "a pokračujte ve vytváření Vašeho účtu."
+  },
+  "noEmail": {
+    "message": "Žádný e-mail?"
+  },
+  "goBack": {
+    "message": "Zpět"
+  },
+  "toEditYourEmailAddress": {
+    "message": "pro úpravu Vaší e-mailové adresy."
+  },
   "view": {
     "message": "Zobrazit"
   },
@@ -8187,7 +8208,7 @@
     "message": "Spravovat fakturaci z portálu poskytovatele"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Zobrazit položky v $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -8197,7 +8218,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Zpět do $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -8207,11 +8228,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Zpět",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Odebrat $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Přechodem na placený plán rozšířeného monitorování získáte náskok před zranitelnostmi zabezpečení."
+  },
+  "approveAllRequests": {
+    "message": "Schválit všechny požadavky"
+  },
+  "allLoginRequestsApproved": {
+    "message": "Všechny žádosti o přihlášení byly schváleny"
   }
 }
diff --git a/apps/web/src/locales/cy/messages.json b/apps/web/src/locales/cy/messages.json
index a46b09e9961..2b5bdb55473 100644
--- a/apps/web/src/locales/cy/messages.json
+++ b/apps/web/src/locales/cy/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/da/messages.json b/apps/web/src/locales/da/messages.json
index f3ebd0a1cb5..9f689aa000d 100644
--- a/apps/web/src/locales/da/messages.json
+++ b/apps/web/src/locales/da/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Enhed"
   },
+  "creatingAccountOn": {
+    "message": "Opretter konto på"
+  },
+  "checkYourEmail": {
+    "message": "Tjek din e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Følg linket i e-mailen sendt til"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "og fortsæt med kontooprettelsen."
+  },
+  "noEmail": {
+    "message": "Ingen e-mail?"
+  },
+  "goBack": {
+    "message": "Gå tilbage"
+  },
+  "toEditYourEmailAddress": {
+    "message": "for at redigere e-mailadressen."
+  },
   "view": {
     "message": "Vis"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Vær opdateret mod sikkerhedssårbarheder ved at opgradere til en betalt abonnementstype for forbedret monitorering."
+  },
+  "approveAllRequests": {
+    "message": "Godkend alle anmodninger"
+  },
+  "allLoginRequestsApproved": {
+    "message": "Alle login-anmodninger godkendt"
   }
 }
diff --git a/apps/web/src/locales/de/messages.json b/apps/web/src/locales/de/messages.json
index ad40ad3e5c4..008e0261d88 100644
--- a/apps/web/src/locales/de/messages.json
+++ b/apps/web/src/locales/de/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Gerät"
   },
+  "creatingAccountOn": {
+    "message": "Konto wird erstellt bei"
+  },
+  "checkYourEmail": {
+    "message": "Überprüfe deine E-Mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Folge dem Link in der E-Mail an"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "und fahre mit der Erstellung deines Kontos fort."
+  },
+  "noEmail": {
+    "message": "Keine E-Mail?"
+  },
+  "goBack": {
+    "message": "Geh zurück"
+  },
+  "toEditYourEmailAddress": {
+    "message": ", um deine E-Mail-Adresse zu bearbeiten."
+  },
   "view": {
     "message": "Anzeigen"
   },
@@ -8187,7 +8208,7 @@
     "message": "Rechnungen über das Anbieter-Portal verwalten"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Einträge in $NAME$ anzeigen",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -8197,7 +8218,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Zurück zu $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -8207,11 +8228,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Zurück",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "$NAME$ entfernen",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Schütze dich vor Sicherheitsschwachstellen, indem du ein kostenpflichtiges Abo für eine verbesserte Sicherheitskontrolle abschließt."
+  },
+  "approveAllRequests": {
+    "message": "Alle Anfragen genehmigen"
+  },
+  "allLoginRequestsApproved": {
+    "message": "Alle Anmeldeanfragen genehmigt"
   }
 }
diff --git a/apps/web/src/locales/el/messages.json b/apps/web/src/locales/el/messages.json
index b8261c5a602..deed63f8e1a 100644
--- a/apps/web/src/locales/el/messages.json
+++ b/apps/web/src/locales/el/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Συσκευή"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "Προβολή"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/en_GB/messages.json b/apps/web/src/locales/en_GB/messages.json
index ba4f660be6e..77e378f8bed 100644
--- a/apps/web/src/locales/en_GB/messages.json
+++ b/apps/web/src/locales/en_GB/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/en_IN/messages.json b/apps/web/src/locales/en_IN/messages.json
index 2cfc183bb5a..f71834e6d81 100644
--- a/apps/web/src/locales/en_IN/messages.json
+++ b/apps/web/src/locales/en_IN/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/eo/messages.json b/apps/web/src/locales/eo/messages.json
index b06fa977195..8c518ab273e 100644
--- a/apps/web/src/locales/eo/messages.json
+++ b/apps/web/src/locales/eo/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Aparato"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "Vidigi"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/es/messages.json b/apps/web/src/locales/es/messages.json
index 0a1164be154..69d7a5ddbbe 100644
--- a/apps/web/src/locales/es/messages.json
+++ b/apps/web/src/locales/es/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Dispositivo"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "Ver"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/et/messages.json b/apps/web/src/locales/et/messages.json
index 62d5dde0a0f..a601c437b15 100644
--- a/apps/web/src/locales/et/messages.json
+++ b/apps/web/src/locales/et/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Seade"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "Vaata"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/eu/messages.json b/apps/web/src/locales/eu/messages.json
index fa09b67d619..0e8fc63c3aa 100644
--- a/apps/web/src/locales/eu/messages.json
+++ b/apps/web/src/locales/eu/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Gailua"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "Erakutsi"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/fa/messages.json b/apps/web/src/locales/fa/messages.json
index c2d67c67d08..d12af42e3b6 100644
--- a/apps/web/src/locales/fa/messages.json
+++ b/apps/web/src/locales/fa/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "دستگاه"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "مشاهده"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/fi/messages.json b/apps/web/src/locales/fi/messages.json
index 8958da9f03c..53b9723509a 100644
--- a/apps/web/src/locales/fi/messages.json
+++ b/apps/web/src/locales/fi/messages.json
@@ -1342,7 +1342,7 @@
     "message": "Tilisi on suljettu ja kaikki siihen liittyvät tiedot on poistettu."
   },
   "deleteOrganizationWarning": {
-    "message": "Deleting your organization is permanent. It cannot be undone."
+    "message": "Organisaation poisto on pysyvä toimenpide, eikä sen peruminen ole mahdollista."
   },
   "myAccount": {
     "message": "Oma tili"
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families -tilauksella."
   },
   "addons": {
-    "message": "Laajennukset"
+    "message": "Lisäykset"
   },
   "premiumAccess": {
     "message": "Premium-käyttöoikeudet"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Laite"
   },
+  "creatingAccountOn": {
+    "message": "Luodaan tili palvelimelle"
+  },
+  "checkYourEmail": {
+    "message": "Tarkasta sähköpostisi"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Seuraa viestin linkkiä, joka lähetettiin sähköpostitse osoitteeseen"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "ja jatka tilin luontia."
+  },
+  "noEmail": {
+    "message": "Etkö saanut viestiä?"
+  },
+  "goBack": {
+    "message": "Palaa takaisin"
+  },
+  "toEditYourEmailAddress": {
+    "message": "muokataksesi sähköpostiosoitettasi."
+  },
   "view": {
     "message": "Näytä"
   },
@@ -3392,7 +3413,7 @@
     "message": "Olet pyytänyt Bitwarden-tilisi poistoa. Vahvista alla olevalla painikeella."
   },
   "deleteRecoverOrgConfirmDesc": {
-    "message": "You have requested to delete your Bitwarden organization."
+    "message": "Olet pyytänyt Bitwarden-organisaatiosi poistoa."
   },
   "myOrganization": {
     "message": "Oma organisaatio"
@@ -3572,10 +3593,10 @@
     "message": "Tilausmuutokset aiheuttavat suhteutettuja laskutusmuutoksia. Jos hiljattain kutsuttujen jäsenten määrä ylittää tilauksesi jäsenpaikkojen määrän, veloitetaan suhteutettu hinta uusista jäsenistä välittömästi."
   },
   "smStandaloneTrialSeatCountUpdateMessageFragment1": {
-    "message": "If you want to add additional"
+    "message": "Lisää käyttäjäpaikkoja"
   },
   "smStandaloneTrialSeatCountUpdateMessageFragment2": {
-    "message": "seats without the bundled offer, please contact"
+    "message": "ottamalla yhteyttä osoitteella"
   },
   "subscriptionUserSeatsLimitedAutoscale": {
     "message": "Tilausmuutokset aiheuttavat suhteutettuja laskutusmuutoksia. Jos hiljattain kutsuttujen jäsenten määrä ylittää tilauksesi jäsenpaikkojen määrän, veloitetaan suhteutettu hinta uusista jäsenistä välittömästi, kunnes $MAX$ paikan enimmäismäärä täyttyy.",
@@ -6601,7 +6622,7 @@
     "message": "Myönnä käyttöoikeudet kokoelmiin lisäämällä heidät tähän ryhmään."
   },
   "restrictedCollectionAssignmentDesc": {
-    "message": "You can only assign collections you manage."
+    "message": "Voit määrittää vain hallitsemiasi kokoelmia."
   },
   "accessAllCollectionsDesc": {
     "message": "Myönnä käyttöoikeudet kaikkiin nykyisiin ja tuleviin kokoelmiin"
@@ -6835,7 +6856,7 @@
     "message": "Valitse ryhmät"
   },
   "userPermissionOverrideHelperDesc": {
-    "message": "Permissions set for a member will replace permissions set by that member's group."
+    "message": "Jäsenkohtaisesti määritetyt käyttöoikeudet korvaavat jäsenen ryhmän määrittämät oikeudet."
   },
   "noMembersOrGroupsAdded": {
     "message": "Jäseniä tai ryhmiä ei ole lisätty."
@@ -7749,7 +7770,7 @@
     "message": "Et voi lisätä itseäsi ryhmiin."
   },
   "cannotAddYourselfToCollections": {
-    "message": "You cannot add yourself to collections."
+    "message": "Et voi lisätä itseäsi kokoelmiin."
   },
   "assign": {
     "message": "Määritä"
@@ -8187,7 +8208,7 @@
     "message": "Hallitse laskutusta Toimittajaportaaliista"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Näytä kohteen $NAME$ kohteet",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -8197,7 +8218,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Palaa kohteeseen $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -8207,11 +8228,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Takaisin",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Poista $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -8251,21 +8272,27 @@
     }
   },
   "lowKDFIterationsBanner": {
-    "message": "Low KDF iterations. Increase your iterations to improve the security of your account."
+    "message": "Alhainen KDF-toistojen määrä. Paranna tilisi suojausta korottamalla määrää."
   },
   "changeKDFSettings": {
-    "message": "Change KDF settings"
+    "message": "Muuta KDF-asetuksia"
   },
   "secureYourInfrastructure": {
-    "message": "Secure your infrastructure"
+    "message": "Suojaa infrastruktuurisi"
   },
   "protectYourFamilyOrBusiness": {
-    "message": "Protect your family or business"
+    "message": "Suojaa perheesi tai yrityksesi"
   },
   "upgradeOrganizationCloseSecurityGaps": {
-    "message": "Close security gaps with monitoring reports"
+    "message": "Sulje suojauksesi aukkoja valvontaraporttien avulla"
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
-    "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+    "message": "Pysy haavoittuvuuksien edellä tehostamalla valvontaa päivittämällä maksulliseen tilaukseeen."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/fil/messages.json b/apps/web/src/locales/fil/messages.json
index 72c5b1e733b..96d7398e4e3 100644
--- a/apps/web/src/locales/fil/messages.json
+++ b/apps/web/src/locales/fil/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "Tanaw"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/fr/messages.json b/apps/web/src/locales/fr/messages.json
index 1cfcbe42ca5..a915955960b 100644
--- a/apps/web/src/locales/fr/messages.json
+++ b/apps/web/src/locales/fr/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Appareil"
   },
+  "creatingAccountOn": {
+    "message": "Création du compte sur"
+  },
+  "checkYourEmail": {
+    "message": "Vérifiez vos courriels"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Suivez le lien dans le courriel envoyé à"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "et continuer à créer votre compte."
+  },
+  "noEmail": {
+    "message": "Pas courriel?"
+  },
+  "goBack": {
+    "message": "Revenir en arrière"
+  },
+  "toEditYourEmailAddress": {
+    "message": "pour modifier votre adresse courriel."
+  },
   "view": {
     "message": "Voir"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Restez en avance sur les vulnérabilités de sécurité en passant à un plan payant pour une surveillance améliorée."
+  },
+  "approveAllRequests": {
+    "message": "Approuver toutes les demandes"
+  },
+  "allLoginRequestsApproved": {
+    "message": "Toutes les demandes de connexion approuvées"
   }
 }
diff --git a/apps/web/src/locales/gl/messages.json b/apps/web/src/locales/gl/messages.json
index 65ef50e2504..59167b94d9d 100644
--- a/apps/web/src/locales/gl/messages.json
+++ b/apps/web/src/locales/gl/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/he/messages.json b/apps/web/src/locales/he/messages.json
index c1a1530afa9..3ab0bf2dc14 100644
--- a/apps/web/src/locales/he/messages.json
+++ b/apps/web/src/locales/he/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "מכשיר"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "צפה"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/hi/messages.json b/apps/web/src/locales/hi/messages.json
index 7209f1caa98..04d2d691c3a 100644
--- a/apps/web/src/locales/hi/messages.json
+++ b/apps/web/src/locales/hi/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/hr/messages.json b/apps/web/src/locales/hr/messages.json
index 1122b2e8447..e88ba8016f3 100644
--- a/apps/web/src/locales/hr/messages.json
+++ b/apps/web/src/locales/hr/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Uređaj"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "Prikaz"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/hu/messages.json b/apps/web/src/locales/hu/messages.json
index 8e9725b8138..af4e018159a 100644
--- a/apps/web/src/locales/hu/messages.json
+++ b/apps/web/src/locales/hu/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Eszköz"
   },
+  "creatingAccountOn": {
+    "message": "Fiók létrehozása:"
+  },
+  "checkYourEmail": {
+    "message": "Email cím postaláda ellenőrzése"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Kövessük a hivatkozást az elküldött emailben"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "és folytassuk a fiók létrehozását."
+  },
+  "noEmail": {
+    "message": "Nem érkezett email?"
+  },
+  "goBack": {
+    "message": "Vissza"
+  },
+  "toEditYourEmailAddress": {
+    "message": "az email cím szerkesztéséhez."
+  },
   "view": {
     "message": "Megtekintés"
   },
@@ -8187,7 +8208,7 @@
     "message": "A számlázás kezelése a szolgáltatói portálon keresztül"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "$NAME$ elemek megtekintése",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -8197,7 +8218,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Vissza: $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -8207,11 +8228,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Vissza",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "$NAME$ eltávolítása",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Összes kérelem jóváhagyása"
+  },
+  "allLoginRequestsApproved": {
+    "message": "At összes bejelentkezési kérés óváhagyásra került."
   }
 }
diff --git a/apps/web/src/locales/id/messages.json b/apps/web/src/locales/id/messages.json
index dd95aee577d..d1d81cc3382 100644
--- a/apps/web/src/locales/id/messages.json
+++ b/apps/web/src/locales/id/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Perangkat"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "Tampilan"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/it/messages.json b/apps/web/src/locales/it/messages.json
index 550cd6e698f..02d01034ef9 100644
--- a/apps/web/src/locales/it/messages.json
+++ b/apps/web/src/locales/it/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Dispositivo"
   },
+  "creatingAccountOn": {
+    "message": "Creazione account su"
+  },
+  "checkYourEmail": {
+    "message": "Controlli la tua email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Segui il link nell'email inviata a"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "e continua a creare il tuo account."
+  },
+  "noEmail": {
+    "message": "Nessuna email?"
+  },
+  "goBack": {
+    "message": "Torna indietro"
+  },
+  "toEditYourEmailAddress": {
+    "message": "per modificare il tuo indirizzo email."
+  },
   "view": {
     "message": "Visualizza"
   },
@@ -8187,7 +8208,7 @@
     "message": "Gestisci la fatturazione dal Portale del Fornitore"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Visualizza gli elementi in $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -8197,7 +8218,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Torna a $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -8207,11 +8228,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Indietro",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Rimuovi $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stai al passo con le vulnerabilità della sicurezza passando a un piano a pagamento per un monitoraggio più avanzato."
+  },
+  "approveAllRequests": {
+    "message": "Approva tutte le richieste"
+  },
+  "allLoginRequestsApproved": {
+    "message": "Tutte le richieste di accesso approvate"
   }
 }
diff --git a/apps/web/src/locales/ja/messages.json b/apps/web/src/locales/ja/messages.json
index 42cb2af8bcc..f4bd38e6554 100644
--- a/apps/web/src/locales/ja/messages.json
+++ b/apps/web/src/locales/ja/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "デバイス"
   },
+  "creatingAccountOn": {
+    "message": "アカウント作成："
+  },
+  "checkYourEmail": {
+    "message": "メールをご確認ください"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "アカウントの作成を続けるには"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "に送られたメールのリンクを開いてください。"
+  },
+  "noEmail": {
+    "message": "メールがありませんか?"
+  },
+  "goBack": {
+    "message": "戻って"
+  },
+  "toEditYourEmailAddress": {
+    "message": "メールアドレスを編集してください。"
+  },
   "view": {
     "message": "表示"
   },
@@ -8187,7 +8208,7 @@
     "message": "プロバイダーポータルからの請求を管理"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "$NAME$ のアイテムを表示",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -8197,7 +8218,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "$NAME$ に戻る",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -8207,11 +8228,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "戻る",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "$NAME$ を削除",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "監視を強化できる有料プランにアップグレードすると、セキュリティ脆弱性に素早く対応できます。"
+  },
+  "approveAllRequests": {
+    "message": "すべての要求を承認する"
+  },
+  "allLoginRequestsApproved": {
+    "message": "すべてのログイン要求を承認しました"
   }
 }
diff --git a/apps/web/src/locales/ka/messages.json b/apps/web/src/locales/ka/messages.json
index 2dfadbbf2d7..6c0a32b6672 100644
--- a/apps/web/src/locales/ka/messages.json
+++ b/apps/web/src/locales/ka/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/km/messages.json b/apps/web/src/locales/km/messages.json
index 65ef50e2504..59167b94d9d 100644
--- a/apps/web/src/locales/km/messages.json
+++ b/apps/web/src/locales/km/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/kn/messages.json b/apps/web/src/locales/kn/messages.json
index 55776491fed..ef3d2f4d180 100644
--- a/apps/web/src/locales/kn/messages.json
+++ b/apps/web/src/locales/kn/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "ಡಿವೈಸ್"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "ವೀಕ್ಷಣೆ"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/ko/messages.json b/apps/web/src/locales/ko/messages.json
index ffafeff4213..df54ad4d32e 100644
--- a/apps/web/src/locales/ko/messages.json
+++ b/apps/web/src/locales/ko/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "기기"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "보기"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/lv/messages.json b/apps/web/src/locales/lv/messages.json
index cef0c1a05d8..febb28d0565 100644
--- a/apps/web/src/locales/lv/messages.json
+++ b/apps/web/src/locales/lv/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Ierīce"
   },
+  "creatingAccountOn": {
+    "message": "Tiek veidots konts"
+  },
+  "checkYourEmail": {
+    "message": "Jāpārbauda e-pasts"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Jāatver saite, kas tika nosūtīta uz e-pasta adresi"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "un jāturpina sava konta izveide."
+  },
+  "noEmail": {
+    "message": "Nav e-pasta?"
+  },
+  "goBack": {
+    "message": "Atgriezties"
+  },
+  "toEditYourEmailAddress": {
+    "message": ", lai labotu savu e-pasta adresi."
+  },
   "view": {
     "message": "Skatīt"
   },
@@ -8187,7 +8208,7 @@
     "message": "Norēķinus var pārvaldīt Nodrošinātāju portālā"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Skatīt $NAME$ vienumus",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -8197,7 +8218,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Atgriezties uz $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -8207,11 +8228,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Atpakaļ",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Noņemt $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Apsteidz drošības ievainojamības ar pāriešanu uz maksas plānu pastiprinātai uzraudzībai."
+  },
+  "approveAllRequests": {
+    "message": "Apstiprināt visus pieprasījumus"
+  },
+  "allLoginRequestsApproved": {
+    "message": "Visi pieteikšanās pieprasījumi apstiprināti"
   }
 }
diff --git a/apps/web/src/locales/ml/messages.json b/apps/web/src/locales/ml/messages.json
index 40ef281fd96..36067eec14f 100644
--- a/apps/web/src/locales/ml/messages.json
+++ b/apps/web/src/locales/ml/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "ഉപകരണം"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "പ്രദർശനം"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/mr/messages.json b/apps/web/src/locales/mr/messages.json
index 65ef50e2504..59167b94d9d 100644
--- a/apps/web/src/locales/mr/messages.json
+++ b/apps/web/src/locales/mr/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/my/messages.json b/apps/web/src/locales/my/messages.json
index 65ef50e2504..59167b94d9d 100644
--- a/apps/web/src/locales/my/messages.json
+++ b/apps/web/src/locales/my/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/nb/messages.json b/apps/web/src/locales/nb/messages.json
index 6d867ab93fc..13a5eaf0f44 100644
--- a/apps/web/src/locales/nb/messages.json
+++ b/apps/web/src/locales/nb/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Enhet"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "Vis"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/ne/messages.json b/apps/web/src/locales/ne/messages.json
index 7ff269c6797..e0c227c3578 100644
--- a/apps/web/src/locales/ne/messages.json
+++ b/apps/web/src/locales/ne/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/nl/messages.json b/apps/web/src/locales/nl/messages.json
index 1d788322e7b..2c6e1803227 100644
--- a/apps/web/src/locales/nl/messages.json
+++ b/apps/web/src/locales/nl/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Apparaat"
   },
+  "creatingAccountOn": {
+    "message": "Account maken bij"
+  },
+  "checkYourEmail": {
+    "message": "Check je e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Volg de link in de e-mail die verstuurd is naar"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "en ga verder met het aanmaken van je account."
+  },
+  "noEmail": {
+    "message": "Geen e-mail?"
+  },
+  "goBack": {
+    "message": "Ga terug"
+  },
+  "toEditYourEmailAddress": {
+    "message": "om je e-mailadres te bewerken."
+  },
   "view": {
     "message": "Weergeven"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Alle verzoeken goedkeuren"
+  },
+  "allLoginRequestsApproved": {
+    "message": "Alle inlogverzoeken goedgekeurd"
   }
 }
diff --git a/apps/web/src/locales/nn/messages.json b/apps/web/src/locales/nn/messages.json
index 575763b8c73..903acc72e10 100644
--- a/apps/web/src/locales/nn/messages.json
+++ b/apps/web/src/locales/nn/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Eining"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "Syn"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/or/messages.json b/apps/web/src/locales/or/messages.json
index 65ef50e2504..59167b94d9d 100644
--- a/apps/web/src/locales/or/messages.json
+++ b/apps/web/src/locales/or/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/pl/messages.json b/apps/web/src/locales/pl/messages.json
index 47f164e9163..621a81147ed 100644
--- a/apps/web/src/locales/pl/messages.json
+++ b/apps/web/src/locales/pl/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Urządzenie"
   },
+  "creatingAccountOn": {
+    "message": "Tworzenie konta na"
+  },
+  "checkYourEmail": {
+    "message": "Sprawdź swoją pocztę e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Kliknij łącze w wiadomości e-mail wysłanej do"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "i kontynuuj tworzenie konta."
+  },
+  "noEmail": {
+    "message": "Brak wiadomości e-mail?"
+  },
+  "goBack": {
+    "message": "Wróć"
+  },
+  "toEditYourEmailAddress": {
+    "message": "aby edytować swój adres e-mail."
+  },
   "view": {
     "message": "Widok"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Bądź na bieżąco z lukami bezpieczeństwa dzięki zmianie na płatny plan z bardziej rozbudowanym monitorowaniem."
+  },
+  "approveAllRequests": {
+    "message": "Zatwierdź wszystkie prośby"
+  },
+  "allLoginRequestsApproved": {
+    "message": "Wszystkie prośby o logowanie zatwierdzone"
   }
 }
diff --git a/apps/web/src/locales/pt_BR/messages.json b/apps/web/src/locales/pt_BR/messages.json
index b8ac6f03829..9b6f32309d7 100644
--- a/apps/web/src/locales/pt_BR/messages.json
+++ b/apps/web/src/locales/pt_BR/messages.json
@@ -1218,7 +1218,7 @@
     "message": "O processo desconectará você da sessão atual, exigindo que você inicie a sessão novamente. As sessões ativas em outros dispositivos podem continuar ativas por até uma hora."
   },
   "emailChanged": {
-    "message": "E-mail Alterado"
+    "message": "E-mail salvo"
   },
   "logBackIn": {
     "message": "Por favor, reinicie a sessão."
@@ -1233,16 +1233,16 @@
     "message": "Senha Mestra Alterada"
   },
   "currentMasterPass": {
-    "message": "Senha Mestra Atual"
+    "message": "Senha mestra atual"
   },
   "newMasterPass": {
-    "message": "Nova Senha Mestra"
+    "message": "Nova senha mestra"
   },
   "confirmNewMasterPass": {
-    "message": "Confirme a Nova Senha Mestra"
+    "message": "Confirme a nova senha mestra"
   },
   "encKeySettings": {
-    "message": "Configurações da Chave de Criptografia"
+    "message": "Configurações da chave de criptografia"
   },
   "kdfAlgorithm": {
     "message": "Algoritmo KDF"
@@ -1285,7 +1285,7 @@
     "message": "Alterar KDF"
   },
   "encKeySettingsChanged": {
-    "message": "As Configurações da Chave de Criptografia foram Alteradas"
+    "message": "As configurações da chave de criptografia foram salvas"
   },
   "dangerZone": {
     "message": "Zona de perigo"
@@ -1306,7 +1306,7 @@
     "message": "Todas as Sessões Desautorizadas"
   },
   "purgeVault": {
-    "message": "Limpar o Cofre"
+    "message": "Limpar cofre"
   },
   "purgedOrganizationVault": {
     "message": "Cofre da organização limpado."
@@ -1342,7 +1342,7 @@
     "message": "A sua conta foi fechada e todos os dados associados foram excluídos."
   },
   "deleteOrganizationWarning": {
-    "message": "Deleting your organization is permanent. It cannot be undone."
+    "message": "A exclusão da organização é permanente. Não pode ser desfeita."
   },
   "myAccount": {
     "message": "Minha Conta"
@@ -1358,7 +1358,7 @@
     "description": "This will be part of a larger sentence, that will read like this: If you don't have any data to import, you can create a new item instead. (Optional second half: You may need to wait until your administrator confirms your organization membership.)"
   },
   "onboardingImportDataDetailsLink": {
-    "message": "Novo Item",
+    "message": "Novo item",
     "description": "This will be part of a larger sentence, that will read like this: If you don't have any data to import, you can create a new item instead. (Optional second half: You may need to wait until your administrator confirms your organization membership.)"
   },
   "onboardingImportDataDetailsPartTwoNoOrgs": {
@@ -1370,7 +1370,7 @@
     "description": "This will be part of a larger sentence, that will read like this: If you don't have any data to import, you can create a new item instead. You may need to wait until your administrator confirms your organization membership."
   },
   "importError": {
-    "message": "Erro de Importação"
+    "message": "Erro de importação"
   },
   "importErrorDesc": {
     "message": "Houve um problema com os dados que você tentou importar. Por favor, resolva os erros listados abaixo em seu arquivo de origem e tente novamente."
@@ -1541,7 +1541,7 @@
     "description": "This will be used as part of a larger sentence, broken up to include links. The full sentence will read 'Enforce Bitwarden Two-step Login options for members by using the Two-step Login Policy.'"
   },
   "twoStepLoginPolicy": {
-    "message": "Política de Login em Duas Etapas"
+    "message": "Política de login em duas etapas"
   },
   "twoStepLoginOrganizationDuoDesc": {
     "message": "Para aplicar o Login em Duas Etapas pelo Duo, use as opções abaixo."
@@ -1553,7 +1553,7 @@
     "message": "Ativar o login em duas etapas pode bloquear você permanentemente da sua conta no Bitwarden. Um código de recuperação permite que você acesse sua conta no caso de não poder mais usar seu provedor de login em duas etapas normalmente (por exemplo, você perde seu dispositivo). O suporte do Bitwarden não poderá ajudá-lo se você perder o acesso à sua conta. Recomendamos que você anote ou imprima o código de recuperação e mantenha-o em um local seguro."
   },
   "viewRecoveryCode": {
-    "message": "Ver Código de Recuperação"
+    "message": "Ver código de recuperação"
   },
   "providers": {
     "message": "Provedores",
@@ -1566,7 +1566,7 @@
     "message": "Habilitado"
   },
   "restoreAccess": {
-    "message": "Recuperar Acesso"
+    "message": "Recuperar acesso"
   },
   "premium": {
     "message": "Premium",
@@ -1576,10 +1576,10 @@
     "message": "Assinatura Premium"
   },
   "premiumRequired": {
-    "message": "Requer Assinatura Premium"
+    "message": "Requer assinatura premium"
   },
   "premiumRequiredDesc": {
-    "message": "Uma conta premium é necessária para usar esse recurso."
+    "message": "É necessário ter uma conta premium para usar esse recurso."
   },
   "youHavePremiumAccess": {
     "message": "Você tem acesso premium"
@@ -1597,7 +1597,7 @@
     "message": "Desabilitar"
   },
   "revokeAccess": {
-    "message": "Revogar Acesso"
+    "message": "Revogar acesso"
   },
   "twoStepLoginProviderEnabled": {
     "message": "Este provedor de login em duas etapas está ativado em sua conta."
@@ -1708,19 +1708,19 @@
     "message": "YubiKeys atualizado"
   },
   "disableAllKeys": {
-    "message": "Desabilitar Todas as Chaves"
+    "message": "Desativar todas as chaves"
   },
   "twoFactorDuoDesc": {
     "message": "Insira as informações do aplicativo Bitwarden no painel do administrador do Duo."
   },
   "twoFactorDuoClientId": {
-    "message": "Client Id"
+    "message": "Id do cliente"
   },
   "twoFactorDuoClientSecret": {
-    "message": "Client Secret"
+    "message": "Segredo do cliente"
   },
   "twoFactorDuoApiHostname": {
-    "message": "Servidor API"
+    "message": "Nome do domínio da API"
   },
   "twoFactorEmailDesc": {
     "message": "Siga estas etapas para configurar o login em duas etapas com e-mail:"
@@ -1789,7 +1789,7 @@
     "message": "Você ainda não habilitou nenhum provedor de login em duas etapas. Depois de ativar um provedor de login em duas etapas, você pode conferir aqui o seu código de recuperação."
   },
   "printCode": {
-    "message": "Imprimir Código",
+    "message": "Imprimir código",
     "description": "Print 2FA recovery code"
   },
   "reports": {
@@ -1804,16 +1804,16 @@
     "description": "Vault health reports can be used to evaluate the security of your Bitwarden individual or organization vault."
   },
   "unsecuredWebsitesReport": {
-    "message": "Relatório de Sites Inseguros"
+    "message": "Relatório de sites inseguros"
   },
   "unsecuredWebsitesReportDesc": {
     "message": "Usar sites inseguros com o esquema http:// pode ser perigoso. Se o site permitir, você deve sempre acessá-lo utilizando o esquema https:// para que a sua conexão seja criptografada."
   },
   "unsecuredWebsitesFound": {
-    "message": "Sites Inseguros Encontrados"
+    "message": "Sites inseguros encontrados"
   },
   "unsecuredWebsitesFoundReportDesc": {
-    "message": "Nós encontramos $COUNT$ item(ns) no seu cofre com URIs não segura(s). Você deve alterar o esquema de URI para https:// se o site permitir.",
+    "message": "Encontramos $COUNT$ item(ns) em seu cofre com URIs não segura(s). Se o site permitir, altere o esquema da URI para https://.",
     "placeholders": {
       "count": {
         "content": "$1",
@@ -1857,7 +1857,7 @@
     "message": "Instruções"
   },
   "exposedPasswordsReport": {
-    "message": "Relatório de Senhas Expostas"
+    "message": "Relatório de senhas expostas"
   },
   "exposedPasswordsReportDesc": {
     "message": "As senhas expostas em um vazamento de dados são alvos fáceis para os atacantes. Altere estas senhas para evitar possíveis invasões."
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Dispositivo"
   },
+  "creatingAccountOn": {
+    "message": "Criando conta em"
+  },
+  "checkYourEmail": {
+    "message": "Verifique seu e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Siga o link no e-mail enviado para"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "e continue criando a sua conta."
+  },
+  "noEmail": {
+    "message": "Sem e-mail?"
+  },
+  "goBack": {
+    "message": "Voltar"
+  },
+  "toEditYourEmailAddress": {
+    "message": "para editar o seu endereço de e-mail."
+  },
   "view": {
     "message": "Ver"
   },
@@ -3392,7 +3413,7 @@
     "message": "Você pediu para excluir a sua conta no Bitwarden. Clique no botão abaixo para confirmar."
   },
   "deleteRecoverOrgConfirmDesc": {
-    "message": "You have requested to delete your Bitwarden organization."
+    "message": "Você pediu para excluir a sua organização do Bitwarden."
   },
   "myOrganization": {
     "message": "Minha Organização"
@@ -3572,10 +3593,10 @@
     "message": "Ajustes em sua assinatura resultarão em alterações rateadas em seus totais de cobrança. Se os usuários recém-convidados excederem o número de vagas de sua assinatura, você receberá imediatamente uma cobrança proporcional pelos usuários adicionais."
   },
   "smStandaloneTrialSeatCountUpdateMessageFragment1": {
-    "message": "If you want to add additional"
+    "message": "Se você quiser adicionar mais"
   },
   "smStandaloneTrialSeatCountUpdateMessageFragment2": {
-    "message": "seats without the bundled offer, please contact"
+    "message": "assentos sem a oferta empacotada, por favor contacte"
   },
   "subscriptionUserSeatsLimitedAutoscale": {
     "message": "Ajustes em sua assinatura resultarão em alterações rateadas em seus totais de cobrança. Se os usuários recém-convidados excederem o número de vagas de sua assinatura, você receberá imediatamente uma cobrança proporcional para os usuários adicionais até que seu limite de $MAX$ de vaga seja atingido.",
@@ -6601,7 +6622,7 @@
     "message": "Conceder acesso às coleções adicionando-as a este grupo."
   },
   "restrictedCollectionAssignmentDesc": {
-    "message": "You can only assign collections you manage."
+    "message": "Você só pode atribuir coleções que você gerencia."
   },
   "accessAllCollectionsDesc": {
     "message": "Conceder acesso a todas as coleções atuais e futuras."
@@ -6835,7 +6856,7 @@
     "message": "Selecione grupos"
   },
   "userPermissionOverrideHelperDesc": {
-    "message": "Permissions set for a member will replace permissions set by that member's group."
+    "message": "Permissões definidas para um membro substituirão as permissões definidas pelo grupo desse membro."
   },
   "noMembersOrGroupsAdded": {
     "message": "Nenhum membro ou grupo adicionado"
@@ -7027,7 +7048,7 @@
     "message": "Atualize suas configurações de criptografia para atender às novas recomendações de segurança e melhorar a proteção da conta."
   },
   "kdfSettingsChangeLogoutWarning": {
-    "message": "Proceeding will log you out of all active sessions. You will need to log back in and complete two-step login, if any. We recommend exporting your vault before changing your encryption settings to prevent data loss."
+    "message": "O processo desconectará você de todas as sessões ativas. Você precisará iniciar a sessão novamente e concluir o login em duas etapas, se houver. Recomendamos exportar seu cofre antes de alterar suas configurações de criptografia para evitar perda de dados."
   },
   "secretsManager": {
     "message": "Gerenciador de Segredos"
@@ -7749,7 +7770,7 @@
     "message": "Você não pode se adicionar aos grupos."
   },
   "cannotAddYourselfToCollections": {
-    "message": "You cannot add yourself to collections."
+    "message": "Você não pode se adicionar às coleções."
   },
   "assign": {
     "message": "Atribuir"
@@ -8187,7 +8208,7 @@
     "message": "Gerenciar faturamento a partir do Portal do Provedor"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Visualizar itens em $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -8197,7 +8218,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Voltar para $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -8207,11 +8228,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Voltar",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Remover $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -8251,21 +8272,27 @@
     }
   },
   "lowKDFIterationsBanner": {
-    "message": "Low KDF iterations. Increase your iterations to improve the security of your account."
+    "message": "Iterações baixas do KDF. Aumente as suas iterações para melhorar a segurança da sua conta."
   },
   "changeKDFSettings": {
-    "message": "Change KDF settings"
+    "message": "Atualizar as definições do KDF"
   },
   "secureYourInfrastructure": {
-    "message": "Secure your infrastructure"
+    "message": "Proteja sua infraestrutura"
   },
   "protectYourFamilyOrBusiness": {
-    "message": "Protect your family or business"
+    "message": "Proteja sua família ou empresa"
   },
   "upgradeOrganizationCloseSecurityGaps": {
-    "message": "Close security gaps with monitoring reports"
+    "message": "Fechar lacunas de segurança com relatórios de monitoramento"
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
-    "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+    "message": "Fique à frente das vulnerabilidades de segurança atualizando para um plano pago para um monitoramento melhorado."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/pt_PT/messages.json b/apps/web/src/locales/pt_PT/messages.json
index 4636a2ca073..341c12de976 100644
--- a/apps/web/src/locales/pt_PT/messages.json
+++ b/apps/web/src/locales/pt_PT/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Dispositivo"
   },
+  "creatingAccountOn": {
+    "message": "A criar conta em"
+  },
+  "checkYourEmail": {
+    "message": "Verifique o seu e-mail"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Siga o link no e-mail enviado para"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "e continue a criação da sua conta."
+  },
+  "noEmail": {
+    "message": "Não recebeu o e-mail?"
+  },
+  "goBack": {
+    "message": "Volte atrás"
+  },
+  "toEditYourEmailAddress": {
+    "message": "para editar o seu endereço de e-mail."
+  },
   "view": {
     "message": "Ver"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Mantenha-se à frente das vulnerabilidades de segurança atualizando para um plano pago para uma monitorização melhorada."
+  },
+  "approveAllRequests": {
+    "message": "Aprovar todos os pedidos"
+  },
+  "allLoginRequestsApproved": {
+    "message": "Todos os pedidos de início de sessão aprovados"
   }
 }
diff --git a/apps/web/src/locales/ro/messages.json b/apps/web/src/locales/ro/messages.json
index 8bdeaf5a44e..4995ca9f2b0 100644
--- a/apps/web/src/locales/ro/messages.json
+++ b/apps/web/src/locales/ro/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Dispozitiv"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "Afișare"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/ru/messages.json b/apps/web/src/locales/ru/messages.json
index f0a16363265..6e433fb2a8e 100644
--- a/apps/web/src/locales/ru/messages.json
+++ b/apps/web/src/locales/ru/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Устройство"
   },
+  "creatingAccountOn": {
+    "message": "Создание аккаунта"
+  },
+  "checkYourEmail": {
+    "message": "Проверьте свою почту"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Перейдите по ссылке из отправленного письма"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "и продолжите создание аккаунта."
+  },
+  "noEmail": {
+    "message": "Нет письма?"
+  },
+  "goBack": {
+    "message": "Вернуться"
+  },
+  "toEditYourEmailAddress": {
+    "message": "для изменения адреса email."
+  },
   "view": {
     "message": "Просмотр"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Опережайте уязвимости в системе безопасности, перейдя на платный тарифный план для расширенного мониторинга."
+  },
+  "approveAllRequests": {
+    "message": "Одобрить все запросы"
+  },
+  "allLoginRequestsApproved": {
+    "message": "Все запросы на вход одобрены"
   }
 }
diff --git a/apps/web/src/locales/si/messages.json b/apps/web/src/locales/si/messages.json
index 75b03dc8065..a1410974d79 100644
--- a/apps/web/src/locales/si/messages.json
+++ b/apps/web/src/locales/si/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/sk/messages.json b/apps/web/src/locales/sk/messages.json
index c1f6cc7e047..85a8d39fd91 100644
--- a/apps/web/src/locales/sk/messages.json
+++ b/apps/web/src/locales/sk/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Zariadenie"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "Zobraziť"
   },
@@ -8187,7 +8208,7 @@
     "message": "Spravujte fakturáciu cez portál poskytovateľa"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Zobraziť položky v $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -8197,7 +8218,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Späť do $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -8207,11 +8228,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Späť",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Odstrániť $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Schváliť všetky žiadosti"
+  },
+  "allLoginRequestsApproved": {
+    "message": "Všetky žiadosti o prihlásenie schválené"
   }
 }
diff --git a/apps/web/src/locales/sl/messages.json b/apps/web/src/locales/sl/messages.json
index c419844065e..d9364aa29c5 100644
--- a/apps/web/src/locales/sl/messages.json
+++ b/apps/web/src/locales/sl/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium dostop"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/sr/messages.json b/apps/web/src/locales/sr/messages.json
index 9fbe2a038a8..0c23abb5ccd 100644
--- a/apps/web/src/locales/sr/messages.json
+++ b/apps/web/src/locales/sr/messages.json
@@ -1342,7 +1342,7 @@
     "message": "Ваш налог је затворен и сви повезани подаци су избрисани."
   },
   "deleteOrganizationWarning": {
-    "message": "Deleting your organization is permanent. It cannot be undone."
+    "message": "Брисање организације је трајно. Не може се поништити."
   },
   "myAccount": {
     "message": "Мој налог"
@@ -1714,10 +1714,10 @@
     "message": "Унесите информације о апликацији Bitwarden из администрације Duo."
   },
   "twoFactorDuoClientId": {
-    "message": "Client Id"
+    "message": "Ид клијента"
   },
   "twoFactorDuoClientSecret": {
-    "message": "Client Secret"
+    "message": "Тајна клијента"
   },
   "twoFactorDuoApiHostname": {
     "message": "API Име хоста"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Уређај"
   },
+  "creatingAccountOn": {
+    "message": "Креирај налог на"
+  },
+  "checkYourEmail": {
+    "message": "Проверите свој имејл"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Пратите везу послатој на"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "и наставите са креирањем налога."
+  },
+  "noEmail": {
+    "message": "Немате имејл?"
+  },
+  "goBack": {
+    "message": "Ићи назад"
+  },
+  "toEditYourEmailAddress": {
+    "message": "да измените свој имејл."
+  },
   "view": {
     "message": "Приказ"
   },
@@ -3392,7 +3413,7 @@
     "message": "Затражили сте да избришете свој Bitwarden рачун. Кликните на доње дугме да бисте потврдили."
   },
   "deleteRecoverOrgConfirmDesc": {
-    "message": "You have requested to delete your Bitwarden organization."
+    "message": "Захтевали сте да избришете своју Bitwarden оранизацију."
   },
   "myOrganization": {
     "message": "Моја организација"
@@ -8187,7 +8208,7 @@
     "message": "Управљајте наплатом из Provider Portal"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Видети ставке у $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -8197,7 +8218,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Назад на $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -8207,11 +8228,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Назад",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Уклонити $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -8251,10 +8272,10 @@
     }
   },
   "lowKDFIterationsBanner": {
-    "message": "Low KDF iterations. Increase your iterations to improve the security of your account."
+    "message": "Ниске KDF итерације. Повећајте број понављања да бисте побољшали безбедност свог налога."
   },
   "changeKDFSettings": {
-    "message": "Change KDF settings"
+    "message": "Променити KDF подешавања"
   },
   "secureYourInfrastructure": {
     "message": "Обезбедите своју инфраструктуру"
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Будите испред безбедносних пропуста надоградњом на плаћени план за побољшано праћење."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/sr_CS/messages.json b/apps/web/src/locales/sr_CS/messages.json
index 875865d45a0..d3fef41494b 100644
--- a/apps/web/src/locales/sr_CS/messages.json
+++ b/apps/web/src/locales/sr_CS/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/sv/messages.json b/apps/web/src/locales/sv/messages.json
index 145e0ea5165..64a3007043e 100644
--- a/apps/web/src/locales/sv/messages.json
+++ b/apps/web/src/locales/sv/messages.json
@@ -2792,7 +2792,7 @@
     "message": "Alla"
   },
   "addAccess": {
-    "message": "Add Access"
+    "message": "Lägg till åtkomst"
   },
   "addAccessFilter": {
     "message": "Add Access Filter"
@@ -3098,7 +3098,7 @@
     }
   },
   "removeUserIdAccess": {
-    "message": "Remove $ID$ access",
+    "message": "Återkalla $ID$ åtkomst",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3125,7 +3125,7 @@
     }
   },
   "revokeUserId": {
-    "message": "Revoke $ID$ access",
+    "message": "Återkalla $ID$ åtkomst",
     "placeholders": {
       "id": {
         "content": "$1",
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Enhet"
   },
+  "creatingAccountOn": {
+    "message": "Skapa konto på"
+  },
+  "checkYourEmail": {
+    "message": "Kolla din e-post"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Följ länken i e-postmeddelandet som skickats till"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "och fortsätt att skapa ditt konto."
+  },
+  "noEmail": {
+    "message": "Ingen e-post?"
+  },
+  "goBack": {
+    "message": "Gå tillbaka"
+  },
+  "toEditYourEmailAddress": {
+    "message": "för att redigera din e-postadress."
+  },
   "view": {
     "message": "Visa"
   },
@@ -3353,7 +3374,7 @@
     "message": "Du kan komma åt denna organisation när en administratör har bekräftat ditt medlemskap. Vi skickar ett e-postmeddelande till dig när det sker."
   },
   "inviteInitAcceptedDesc": {
-    "message": "You can now access this organization."
+    "message": "Du har nu tillgång till denna organisation."
   },
   "inviteAcceptFailed": {
     "message": "Det gick inte att acceptera inbjudan. Be en administratör för organisationen att skicka en ny inbjudan."
@@ -3398,13 +3419,13 @@
     "message": "Min organisation"
   },
   "organizationInfo": {
-    "message": "Organization info"
+    "message": "Organisationsinformation"
   },
   "deleteOrganization": {
     "message": "Radera organisation"
   },
   "deletingOrganizationContentWarning": {
-    "message": "Enter the master password to confirm deletion of $ORGANIZATION$ and all associated data. Vault data in $ORGANIZATION$ includes:",
+    "message": "Ange huvudlösenordet för att bekräfta radering av $ORGANIZATION$ och allt tillhörande data. Valvdata i $ORGANIZATION$ inkluderar:",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -3551,7 +3572,7 @@
     }
   },
   "limitSubscription": {
-    "message": "Limit subscription (optional)"
+    "message": "Begränsa prenumeration (valfritt)"
   },
   "subscriptionSeats": {
     "message": "Prenumerationsplatser"
@@ -3572,7 +3593,7 @@
     "message": "Adjustments to your subscription will result in prorated changes to your billing totals. If newly invited members exceed your subscription seats, you will immediately receive a prorated charge for the additional members."
   },
   "smStandaloneTrialSeatCountUpdateMessageFragment1": {
-    "message": "If you want to add additional"
+    "message": "Om du vill lägga till ytterligare"
   },
   "smStandaloneTrialSeatCountUpdateMessageFragment2": {
     "message": "seats without the bundled offer, please contact"
@@ -8207,7 +8228,7 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Tillbaka",
     "description": "Button text to navigate back"
   },
   "removeItem": {
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Godkänn alla förfrågningar"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/te/messages.json b/apps/web/src/locales/te/messages.json
index 65ef50e2504..59167b94d9d 100644
--- a/apps/web/src/locales/te/messages.json
+++ b/apps/web/src/locales/te/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/th/messages.json b/apps/web/src/locales/th/messages.json
index f4dd03c0a28..b7b7d7887f5 100644
--- a/apps/web/src/locales/th/messages.json
+++ b/apps/web/src/locales/th/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Device"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/tr/messages.json b/apps/web/src/locales/tr/messages.json
index b646c054704..b40091486e5 100644
--- a/apps/web/src/locales/tr/messages.json
+++ b/apps/web/src/locales/tr/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Cihaz"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "Görüntüle"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/uk/messages.json b/apps/web/src/locales/uk/messages.json
index d4bb72dc856..0b1843a84c3 100644
--- a/apps/web/src/locales/uk/messages.json
+++ b/apps/web/src/locales/uk/messages.json
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Пристрій"
   },
+  "creatingAccountOn": {
+    "message": "Створення облікового запису"
+  },
+  "checkYourEmail": {
+    "message": "Перевірте свою електронну пошту"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Перейдіть за посиланням у листі, надісланому на"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "і завершіть створення облікового запису."
+  },
+  "noEmail": {
+    "message": "Не отримали електронного листа?"
+  },
+  "goBack": {
+    "message": "Поверніться назад"
+  },
+  "toEditYourEmailAddress": {
+    "message": "і виправте адресу електронної пошти."
+  },
   "view": {
     "message": "Переглянути"
   },
@@ -8187,7 +8208,7 @@
     "message": "Керування рахунками на порталі провайдера"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Переглянути записи в $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -8197,7 +8218,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Назад до $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -8207,11 +8228,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "Назад",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Вилучити $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Попереджайте вразливості безпеки, передплативши тарифний план для посиленого моніторингу."
+  },
+  "approveAllRequests": {
+    "message": "Схвалити всі запити"
+  },
+  "allLoginRequestsApproved": {
+    "message": "Усі запити на вхід схвалено"
   }
 }
diff --git a/apps/web/src/locales/vi/messages.json b/apps/web/src/locales/vi/messages.json
index f3a545c50b9..5a7c513faed 100644
--- a/apps/web/src/locales/vi/messages.json
+++ b/apps/web/src/locales/vi/messages.json
@@ -2102,7 +2102,7 @@
     "message": "Bitwarden Families plan."
   },
   "addons": {
-    "message": "Addons"
+    "message": "Add-ons"
   },
   "premiumAccess": {
     "message": "Premium access"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "Thiết bị"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "View"
   },
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }
diff --git a/apps/web/src/locales/zh_CN/messages.json b/apps/web/src/locales/zh_CN/messages.json
index 367c8cdd856..7babb5dadef 100644
--- a/apps/web/src/locales/zh_CN/messages.json
+++ b/apps/web/src/locales/zh_CN/messages.json
@@ -1723,10 +1723,10 @@
     "message": "API 主机名"
   },
   "twoFactorEmailDesc": {
-    "message": "按照以下步骤设置使用电子邮件两步登录:"
+    "message": "按照以下步骤设置使用电子邮件的两步登录："
   },
   "twoFactorEmailEnterEmail": {
-    "message": "输入您希望接收验证码的电子邮件"
+    "message": "输入您希望接收验证码的电子邮件地址"
   },
   "twoFactorEmailEnterCode": {
     "message": "输入电子邮件中的 6 位数验证码"
@@ -2540,7 +2540,7 @@
     "message": "使用审核日志跟踪用户操作"
   },
   "enforce2faDuo": {
-    "message": "强制启用 Duo 的两步登录"
+    "message": "强制 Duo 2FA"
   },
   "priorityCustomerSupport": {
     "message": "优先客户支持"
@@ -2849,7 +2849,7 @@
     "message": "停用了两步登录"
   },
   "recovered2fa": {
-    "message": "从两步登录中恢复了帐户。"
+    "message": "从两步登录中恢复了账户"
   },
   "failedLogin": {
     "message": "登录失败，密码不正确。"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "设备"
   },
+  "creatingAccountOn": {
+    "message": "创建账户于"
+  },
+  "checkYourEmail": {
+    "message": "检查您的电子邮箱"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "点击发送到电子邮件中的链接"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "然后继续创建您的账户。"
+  },
+  "noEmail": {
+    "message": "没收到电子邮件吗？"
+  },
+  "goBack": {
+    "message": "返回"
+  },
+  "toEditYourEmailAddress": {
+    "message": "编辑您的电子邮件地址。"
+  },
   "view": {
     "message": "查看"
   },
@@ -6110,7 +6131,7 @@
     "message": "正登录为"
   },
   "notYou": {
-    "message": "不是你？"
+    "message": "不是您吗？"
   },
   "pickAnAvatarColor": {
     "message": "选择头像颜色"
@@ -6835,7 +6856,7 @@
     "message": "选择群组"
   },
   "userPermissionOverrideHelperDesc": {
-    "message": "为成员设置的权限将替换为该成员群组设置的权限。"
+    "message": "为成员设置的权限将替换为由该成员群组设置的权限。"
   },
   "noMembersOrGroupsAdded": {
     "message": "未添加任何成员或群组"
@@ -7590,7 +7611,7 @@
     "message": "别名域"
   },
   "alreadyHaveAccount": {
-    "message": "已经有一个账户？"
+    "message": "已经拥有账户了吗？"
   },
   "skipToContent": {
     "message": "跳转到内容"
@@ -8166,7 +8187,7 @@
     "message": "添加组织"
   },
   "createdNewClient": {
-    "message": "Successfully created new client"
+    "message": "成功创建了新的客户"
   },
   "noAccess": {
     "message": "无访问权限"
@@ -8187,7 +8208,7 @@
     "message": "从提供商门户管理账单"
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "查看 $NAME$ 中的项目",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -8197,7 +8218,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "返回 $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -8207,11 +8228,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "返回",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "删除 $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "升级到付费计划以加强监控，从而提前发现安全漏洞。"
+  },
+  "approveAllRequests": {
+    "message": "批准所有请求"
+  },
+  "allLoginRequestsApproved": {
+    "message": "所有登录请求已批准"
   }
 }
diff --git a/apps/web/src/locales/zh_TW/messages.json b/apps/web/src/locales/zh_TW/messages.json
index 921acabb8ec..61cad90e3ae 100644
--- a/apps/web/src/locales/zh_TW/messages.json
+++ b/apps/web/src/locales/zh_TW/messages.json
@@ -615,10 +615,10 @@
     "message": "使用主密碼登入"
   },
   "readingPasskeyLoading": {
-    "message": "正在讀取金輪..."
+    "message": "正在讀取密碼金輪..."
   },
   "readingPasskeyLoadingInfo": {
-    "message": "請保持視窗開啟，並按照瀏覽器指示操作。"
+    "message": "保持此視窗打開，然後按照瀏覽器的提示進行操作。"
   },
   "useADifferentLogInMethod": {
     "message": "使用不同的登入方法"
@@ -627,10 +627,10 @@
     "message": "使用密碼金鑰登入"
   },
   "invalidPasskeyPleaseTryAgain": {
-    "message": "無效的金鑰。請再試一次。"
+    "message": "無效的密碼金鑰，請再試一次。"
   },
   "twoFactorForPasskeysNotSupportedOnClientUpdateToLogIn": {
-    "message": "不支援金鑰的多重要素驗證。更新應用程式以登入。"
+    "message": "不支援密碼金鑰 2FA。請更新 app 以登入。"
   },
   "loginWithPasskeyInfo": {
     "message": "使用已產生的密碼金輪，無需密碼即可自動登入。生物特徵辨識（例如面部識別或指紋）或其他 FIDO2 安全方式將用於確認您的身分。"
@@ -642,7 +642,7 @@
     "message": "瞭解更多關於無密碼登入的資訊"
   },
   "creatingPasskeyLoading": {
-    "message": "正在建立密碼金輪..."
+    "message": "正在建立密碼金鑰..."
   },
   "creatingPasskeyLoadingInfo": {
     "message": "保持此視窗打開，然後按照瀏覽器的提示進行操作。"
@@ -657,7 +657,7 @@
     "message": "密碼金鑰已成功建立！"
   },
   "customPasskeyNameInfo": {
-    "message": "命名您的密碼金輪以方便您辨識它。"
+    "message": "命名您的密碼金鑰以方便您辨識它。"
   },
   "useForVaultEncryption": {
     "message": "用於密碼庫加密"
@@ -1991,7 +1991,7 @@
     }
   },
   "breachFound": {
-    "message": "發現已外洩的帳號"
+    "message": "發現已外洩的帳戶"
   },
   "compromisedData": {
     "message": "遭外洩的資料"
@@ -3244,6 +3244,27 @@
   "device": {
     "message": "裝置"
   },
+  "creatingAccountOn": {
+    "message": "Creating account on"
+  },
+  "checkYourEmail": {
+    "message": "Check your email"
+  },
+  "followTheLinkInTheEmailSentTo": {
+    "message": "Follow the link in the email sent to"
+  },
+  "andContinueCreatingYourAccount": {
+    "message": "and continue creating your account."
+  },
+  "noEmail": {
+    "message": "No email?"
+  },
+  "goBack": {
+    "message": "Go back"
+  },
+  "toEditYourEmailAddress": {
+    "message": "to edit your email address."
+  },
   "view": {
     "message": "檢視"
   },
@@ -8236,7 +8257,7 @@
     "message": "更新了組織名稱"
   },
   "providerPlan": {
-    "message": "已管理的服務提供者"
+    "message": "代管服務供應商"
   },
   "orgSeats": {
     "message": "組織席位"
@@ -8267,5 +8288,11 @@
   },
   "upgradeOrganizationCloseSecurityGapsDesc": {
     "message": "Stay ahead of security vulnerabilities by upgrading to a paid plan for enhanced monitoring."
+  },
+  "approveAllRequests": {
+    "message": "Approve all requests"
+  },
+  "allLoginRequestsApproved": {
+    "message": "All login requests approved"
   }
 }

From 828e26f93cb47ddf3bebf018f139c8b106b0b04b Mon Sep 17 00:00:00 2001
From: rr-bw <102181210+rr-bw@users.noreply.github.com>
Date: Wed, 29 May 2024 13:31:04 -0700
Subject: [PATCH 029/138] [PM-8368] AnonLayout Footer Updates (#9397)

* add hostname to footer via env service

* add logic for showing/hiding environment

* add docs

* add web env-selector

* refactor to use one slot for env-selector

* add storybook docs

* add env hostname to stories

* remove sample route
---
 apps/web/src/locales/en/messages.json         |   3 +
 .../anon-layout-wrapper.component.html        |   8 +-
 .../anon-layout-wrapper.component.ts          |   5 +-
 .../anon-layout/anon-layout.component.html    |  10 +-
 .../anon-layout/anon-layout.component.ts      |  27 +++-
 .../src/angular/anon-layout/anon-layout.mdx   | 116 +++++++++++++-----
 .../anon-layout/anon-layout.stories.ts        |  33 ++++-
 7 files changed, 155 insertions(+), 47 deletions(-)

diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index e090f6a7ab5..c8f19318599 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Logged out"
   },
diff --git a/libs/auth/src/angular/anon-layout/anon-layout-wrapper.component.html b/libs/auth/src/angular/anon-layout/anon-layout-wrapper.component.html
index 26cab308095..6d5fc9b8dad 100644
--- a/libs/auth/src/angular/anon-layout/anon-layout-wrapper.component.html
+++ b/libs/auth/src/angular/anon-layout/anon-layout-wrapper.component.html
@@ -1,4 +1,10 @@
-<auth-anon-layout [title]="pageTitle" [subtitle]="pageSubtitle" [icon]="pageIcon">
+<auth-anon-layout
+  [title]="pageTitle"
+  [subtitle]="pageSubtitle"
+  [icon]="pageIcon"
+  [showReadonlyHostname]="showReadonlyHostname"
+>
   <router-outlet></router-outlet>
   <router-outlet slot="secondary" name="secondary"></router-outlet>
+  <router-outlet slot="environment-selector" name="environment-selector"></router-outlet>
 </auth-anon-layout>
diff --git a/libs/auth/src/angular/anon-layout/anon-layout-wrapper.component.ts b/libs/auth/src/angular/anon-layout/anon-layout-wrapper.component.ts
index fb98825b1b6..5efd2cf9ab4 100644
--- a/libs/auth/src/angular/anon-layout/anon-layout-wrapper.component.ts
+++ b/libs/auth/src/angular/anon-layout/anon-layout-wrapper.component.ts
@@ -9,6 +9,7 @@ export interface AnonLayoutWrapperData {
   pageTitle?: string;
   pageSubtitle?: string;
   pageIcon?: Icon;
+  showReadonlyHostname?: boolean;
 }
 
 @Component({
@@ -20,6 +21,7 @@ export class AnonLayoutWrapperComponent {
   protected pageTitle: string;
   protected pageSubtitle: string;
   protected pageIcon: Icon;
+  protected showReadonlyHostname: boolean;
 
   constructor(
     private route: ActivatedRoute,
@@ -27,6 +29,7 @@ export class AnonLayoutWrapperComponent {
   ) {
     this.pageTitle = this.i18nService.t(this.route.snapshot.firstChild.data["pageTitle"]);
     this.pageSubtitle = this.i18nService.t(this.route.snapshot.firstChild.data["pageSubtitle"]);
-    this.pageIcon = this.route.snapshot.firstChild.data["pageIcon"]; // don't translate
+    this.pageIcon = this.route.snapshot.firstChild.data["pageIcon"];
+    this.showReadonlyHostname = this.route.snapshot.firstChild.data["showReadonlyHostname"];
   }
 }
diff --git a/libs/auth/src/angular/anon-layout/anon-layout.component.html b/libs/auth/src/angular/anon-layout/anon-layout.component.html
index 1152d2efbbd..4b593d336e1 100644
--- a/libs/auth/src/angular/anon-layout/anon-layout.component.html
+++ b/libs/auth/src/angular/anon-layout/anon-layout.component.html
@@ -22,7 +22,13 @@
     <ng-content select="[slot=secondary]"></ng-content>
   </div>
   <footer class="tw-text-center">
-    <div>&copy; {{ year }} Bitwarden Inc.</div>
-    <div>{{ version }}</div>
+    <div *ngIf="showReadonlyHostname">{{ "accessing" | i18n }} {{ hostname }}</div>
+    <ng-container *ngIf="!showReadonlyHostname">
+      <ng-content select="[slot=environment-selector]"></ng-content>
+    </ng-container>
+    <ng-container *ngIf="showYearAndVersion">
+      <div>&copy; {{ year }} Bitwarden Inc.</div>
+      <div>{{ version }}</div>
+    </ng-container>
   </footer>
 </main>
diff --git a/libs/auth/src/angular/anon-layout/anon-layout.component.ts b/libs/auth/src/angular/anon-layout/anon-layout.component.ts
index 106844fb5aa..6aa644ea7c3 100644
--- a/libs/auth/src/angular/anon-layout/anon-layout.component.ts
+++ b/libs/auth/src/angular/anon-layout/anon-layout.component.ts
@@ -1,9 +1,13 @@
 import { CommonModule } from "@angular/common";
 import { Component, Input } from "@angular/core";
+import { firstValueFrom } from "rxjs";
 
+import { ClientType } from "@bitwarden/common/enums";
+import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 
 import { IconModule, Icon } from "../../../../components/src/icon";
+import { SharedModule } from "../../../../components/src/shared";
 import { TypographyModule } from "../../../../components/src/typography";
 import { BitwardenLogo } from "../icons/bitwarden-logo.icon";
 
@@ -11,21 +15,34 @@ import { BitwardenLogo } from "../icons/bitwarden-logo.icon";
   standalone: true,
   selector: "auth-anon-layout",
   templateUrl: "./anon-layout.component.html",
-  imports: [IconModule, CommonModule, TypographyModule],
+  imports: [IconModule, CommonModule, TypographyModule, SharedModule],
 })
 export class AnonLayoutComponent {
   @Input() title: string;
   @Input() subtitle: string;
   @Input() icon: Icon;
+  @Input() showReadonlyHostname: boolean;
 
   protected logo = BitwardenLogo;
-  protected version: string;
-  protected year = "2024";
 
-  constructor(private platformUtilsService: PlatformUtilsService) {}
+  protected year = "2024";
+  protected clientType: ClientType;
+  protected hostname: string;
+  protected version: string;
+
+  protected showYearAndVersion = true;
+
+  constructor(
+    private environmentService: EnvironmentService,
+    private platformUtilsService: PlatformUtilsService,
+  ) {
+    this.year = new Date().getFullYear().toString();
+    this.clientType = this.platformUtilsService.getClientType();
+    this.showYearAndVersion = this.clientType === ClientType.Web;
+  }
 
   async ngOnInit() {
-    this.year = new Date().getFullYear().toString();
+    this.hostname = (await firstValueFrom(this.environmentService.environment$)).getHostname();
     this.version = await this.platformUtilsService.getApplicationVersion();
   }
 }
diff --git a/libs/auth/src/angular/anon-layout/anon-layout.mdx b/libs/auth/src/angular/anon-layout/anon-layout.mdx
index b98523bba18..3b1de735382 100644
--- a/libs/auth/src/angular/anon-layout/anon-layout.mdx
+++ b/libs/auth/src/angular/anon-layout/anon-layout.mdx
@@ -44,9 +44,15 @@ The AnonLayout**Wrapper**Component embeds the AnonLayoutComponent along with the
 ```html
 <!-- File: anon-layout-wrapper.component.html -->
 
-<auth-anon-layout>
+<auth-anon-layout
+  [title]="pageTitle"
+  [subtitle]="pageSubtitle"
+  [icon]="pageIcon"
+  [showReadonlyHostname]="showReadonlyHostname"
+>
   <router-outlet></router-outlet>
   <router-outlet slot="secondary" name="secondary"></router-outlet>
+  <router-outlet slot="environment-selector" name="environment-selector"></router-outlet>
 </auth-anon-layout>
 ```
 
@@ -54,53 +60,60 @@ To implement, the developer does not need to work with the base AnonLayoutCompon
 devoloper simply uses the AnonLayout**Wrapper**Component in `oss-routing.module.ts` (for Web, for
 example) to construct the page via routable composition:
 
-```javascript
+```typescript
 // File: oss-routing.module.ts
+import { AnonLayoutWrapperComponent, AnonLayoutWrapperData, LockIcon } from "@bitwarden/auth/angular";
 
 {
-    path: "",
-    component: AnonLayoutWrapperComponent, // Wrapper component
-    children: [
-      {
-        path: "sample-route", // replace with your route
-        children: [
-          {
-            path: "",
-            component: MyPrimaryComponent, // replace with your component
-          },
-          {
-            path: "",
-            component: MySecondaryComponent, // replace with your component (or remove this secondary outlet object entirely if not needed)
-            outlet: "secondary",
-          },
-        ],
-        data: {
-          pageTitle: "logIn", // example of a translation key from messages.json
-          pageSubtitle: "loginWithMasterPassword", // example of a translation key from messages.json
-          pageIcon: LockIcon, // example of an icon to pass in
-        } satisfies AnonLayoutWrapperData,
-      },
-    ],
-  },
+  path: "",
+  component: AnonLayoutWrapperComponent, // Wrapper component
+  children: [
+    {
+      path: "sample-route", // replace with your route
+      children: [
+        {
+          path: "",
+          component: MyPrimaryComponent, // replace with your component
+        },
+        {
+          path: "",
+          component: MySecondaryComponent, // replace with your component (or remove this secondary outlet object entirely if not needed)
+          outlet: "secondary",
+        },
+      ],
+      data: {
+        pageTitle: "logIn", // example of a translation key from messages.json
+        pageSubtitle: "loginWithMasterPassword", // example of a translation key from messages.json
+        pageIcon: LockIcon, // example of an icon to pass in
+      } satisfies AnonLayoutWrapperData,
+    },
+  ],
+},
 ```
 
-And if the AnonLayout**Wrapper**Component is already being used in your client's routing module,
-then your work will be as simple as just adding another child route under the `children` array.
+(Notice that you can optionally add an `outlet: "secondary"` if you want to project secondary
+content below the primary content).
+
+If the AnonLayout**Wrapper**Component is already being used in your client's routing module, then
+your work will be as simple as just adding another child route under the `children` array.
+
+<br />
 
 ### Data Properties
 
-In the `oss-routing.module.ts` example above, notice the data properties being passed in:
+Routes that use the AnonLayou**tWrapper**Component can take several unique data properties defined
+in the `AnonLayoutWrapperData` interface:
 
 - For the `pageTitle` and `pageSubtitle` - pass in a translation key from `messages.json`.
 - For the `pageIcon` - import an icon (of type `Icon`) into the router file and use the icon
   directly.
+- `showReadonlyHostname` - set to `true` if you want to show the hostname in the footer (ex:
+  "Accessing bitwarden.com")
 
-All 3 of these properties are optional.
+All of these properties are optional.
 
-```javascript
-import { AnonLayoutWrapperData, LockIcon } from "@bitwarden/auth/angular";
-
-// ...
+```typescript
+import { AnonLayoutWrapperComponent, AnonLayoutWrapperData, LockIcon } from "@bitwarden/auth/angular";
 
 {
   // ...
@@ -108,10 +121,45 @@ import { AnonLayoutWrapperData, LockIcon } from "@bitwarden/auth/angular";
     pageTitle: "logIn",
     pageSubtitle: "loginWithMasterPassword",
     pageIcon: LockIcon,
+    showReadonlyHostname: true,
   } satisfies AnonLayoutWrapperData,
 }
 ```
 
+### Environment Selector
+
+For some routes, you may want to display the environment selector in the footer of the
+AnonLayoutComponent. To do so, add the relevant environment selector (Web or Libs version, depending
+on your client) as a component with `outlet: "environment-selector"`.
+
+```javascript
+// File: oss-routing.module.ts
+import { AnonLayoutWrapperComponent, AnonLayoutWrapperData, LockIcon } from "@bitwarden/auth/angular";
+import { EnvironmentSelectorComponent } from "./components/environment-selector/environment-selector.component";
+
+{
+  path: "",
+  component: AnonLayoutWrapperComponent,
+  children: [
+    {
+      path: "sample-route",
+      children: [
+        {
+          path: "",
+          component: MyPrimaryComponent,
+        },
+        {
+          path: "",
+          component: EnvironmentSelectorComponent, // use Web or Libs component depending on your client
+          outlet: "environment-selector",
+        },
+      ],
+      // ...
+    },
+  ],
+},
+```
+
 ---
 
 <Story of={stories.WithSecondaryContent} />
diff --git a/libs/auth/src/angular/anon-layout/anon-layout.stories.ts b/libs/auth/src/angular/anon-layout/anon-layout.stories.ts
index 103098349a0..82ca846afbf 100644
--- a/libs/auth/src/angular/anon-layout/anon-layout.stories.ts
+++ b/libs/auth/src/angular/anon-layout/anon-layout.stories.ts
@@ -1,14 +1,20 @@
 import { Meta, StoryObj, moduleMetadata } from "@storybook/angular";
+import { BehaviorSubject } from "rxjs";
 
+import { ClientType } from "@bitwarden/common/enums";
+import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 
 import { ButtonModule } from "../../../../components/src/button";
+import { I18nMockService } from "../../../../components/src/utils/i18n-mock.service";
 import { LockIcon } from "../icons";
 
 import { AnonLayoutComponent } from "./anon-layout.component";
 
 class MockPlatformUtilsService implements Partial<PlatformUtilsService> {
   getApplicationVersion = () => Promise.resolve("Version 2024.1.1");
+  getClientType = () => ClientType.Web;
 }
 
 export default {
@@ -22,12 +28,31 @@ export default {
           provide: PlatformUtilsService,
           useClass: MockPlatformUtilsService,
         },
+        {
+          provide: I18nService,
+          useFactory: () => {
+            return new I18nMockService({
+              accessing: "Accessing",
+            });
+          },
+        },
+        {
+          provide: EnvironmentService,
+          useValue: {
+            environment$: new BehaviorSubject({
+              getHostname() {
+                return "bitwarden.com";
+              },
+            }).asObservable(),
+          },
+        },
       ],
     }),
   ],
   args: {
     title: "The Page Title",
     subtitle: "The subtitle (optional)",
+    showReadonlyHostname: true,
     icon: LockIcon,
   },
 } as Meta;
@@ -40,7 +65,7 @@ export const WithPrimaryContent: Story = {
     template:
       // Projected content (the <div>) and styling is just a sample and can be replaced with any content/styling.
       `
-      <auth-anon-layout [title]="title" [subtitle]="subtitle">
+      <auth-anon-layout [title]="title" [subtitle]="subtitle" [showReadonlyHostname]="showReadonlyHostname">
         <div>
           <div class="tw-font-bold">Primary Projected Content Area (customizable)</div>
           <div>Lorem ipsum dolor sit amet consectetur adipisicing elit. Necessitatibus illum vero, placeat recusandae esse ratione eius minima veniam nemo, quas beatae! Impedit molestiae alias sapiente explicabo. Sapiente corporis ipsa numquam?</div>
@@ -57,7 +82,7 @@ export const WithSecondaryContent: Story = {
       // Projected content (the <div>'s) and styling is just a sample and can be replaced with any content/styling.
       // Notice that slot="secondary" is requred to project any secondary content.
       `
-      <auth-anon-layout [title]="title" [subtitle]="subtitle">
+      <auth-anon-layout [title]="title" [subtitle]="subtitle" [showReadonlyHostname]="showReadonlyHostname">
         <div>
           <div class="tw-font-bold">Primary Projected Content Area (customizable)</div>
           <div>Lorem ipsum dolor sit amet consectetur adipisicing elit. Necessitatibus illum vero, placeat recusandae esse ratione eius minima veniam nemo, quas beatae! Impedit molestiae alias sapiente explicabo. Sapiente corporis ipsa numquam?</div>
@@ -78,7 +103,7 @@ export const WithLongContent: Story = {
     template:
       // Projected content (the <div>'s) and styling is just a sample and can be replaced with any content/styling.
       `
-      <auth-anon-layout title="Page Title lorem ipsum dolor consectetur sit amet expedita quod est" subtitle="Subtitle here Lorem ipsum dolor sit amet consectetur adipisicing elit. Expedita, quod est?">
+      <auth-anon-layout title="Page Title lorem ipsum dolor consectetur sit amet expedita quod est" subtitle="Subtitle here Lorem ipsum dolor sit amet consectetur adipisicing elit. Expedita, quod est?" [showReadonlyHostname]="showReadonlyHostname">
         <div>
           <div class="tw-font-bold">Primary Projected Content Area (customizable)</div>
           <div>Lorem ipsum dolor sit amet consectetur adipisicing elit. Necessitatibus illum vero, placeat recusandae esse ratione eius minima veniam nemo, quas beatae! Impedit molestiae alias sapiente explicabo. Sapiente corporis ipsa numquam? Lorem ipsum dolor sit amet consectetur adipisicing elit. Lorem ipsum dolor sit amet consectetur adipisicing elit. Lorem ipsum dolor sit amet consectetur adipisicing elit. Lorem ipsum dolor sit amet consectetur adipisicing elit. Lorem ipsum dolor sit amet consectetur adipisicing elit. Lorem ipsum dolor sit amet consectetur adipisicing elit. Lorem ipsum dolor sit amet consectetur adipisicing elit. Lorem ipsum dolor sit amet consectetur adipisicing elit. Lorem ipsum dolor sit amet consectetur adipisicing elit.</div>
@@ -100,7 +125,7 @@ export const WithIcon: Story = {
     template:
       // Projected content (the <div>) and styling is just a sample and can be replaced with any content/styling.
       `
-      <auth-anon-layout [title]="title" [subtitle]="subtitle" [icon]="icon">
+      <auth-anon-layout [title]="title" [subtitle]="subtitle" [icon]="icon" [showReadonlyHostname]="showReadonlyHostname">
         <div>
           <div class="tw-font-bold">Primary Projected Content Area (customizable)</div>
           <div>Lorem ipsum dolor sit amet consectetur adipisicing elit. Necessitatibus illum vero, placeat recusandae esse ratione eius minima veniam nemo, quas beatae! Impedit molestiae alias sapiente explicabo. Sapiente corporis ipsa numquam?</div>

From e318ac0ddf5eba8c5824d8818d5104ea19759939 Mon Sep 17 00:00:00 2001
From: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
Date: Wed, 29 May 2024 23:58:04 +0200
Subject: [PATCH 030/138] [PM-2516][PM-8298] Add password protected export on
 browser/Export managed collection (#9284)

* Move/replace submit and userVerification logic from web into the BaseExportComponent

Add "@bitwarden/auth" as dependency to the vault-export-ui package
New submit logic also checks for password-encrypted exports which will be need for future UI updates on browser and desktop

* Create export-browser component using shared recipe

- Create new export component that uses the shared export.component from @bitwarden/vault-export-ui

* Update imports within AppModule

* Switch to route to the new component

* Add missing entries to messages.json

* Delete old export.component

* Remove duplicate verifyUser-method

* Change placeholder example

* Add documentation to protected members of ExportBrowserComponent

---------

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
---
 apps/browser/src/_locales/en/messages.json    | 39 ++++++++++++++
 apps/browser/src/popup/app-routing.module.ts  |  4 +-
 apps/browser/src/popup/app.module.ts          |  4 --
 .../popup/settings/export.component.html      | 35 ------------
 .../tools/popup/settings/export.component.ts  | 54 -------------------
 .../export/export-browser.component.html      | 26 +++++++++
 .../export/export-browser.component.ts        | 40 ++++++++++++++
 7 files changed, 107 insertions(+), 95 deletions(-)
 delete mode 100644 apps/browser/src/tools/popup/settings/export.component.html
 delete mode 100644 apps/browser/src/tools/popup/settings/export.component.ts
 create mode 100644 apps/browser/src/tools/popup/settings/export/export-browser.component.html
 create mode 100644 apps/browser/src/tools/popup/settings/export/export-browser.component.ts

diff --git a/apps/browser/src/_locales/en/messages.json b/apps/browser/src/_locales/en/messages.json
index bb672ea61d7..8d0f6fe31eb 100644
--- a/apps/browser/src/_locales/en/messages.json
+++ b/apps/browser/src/_locales/en/messages.json
@@ -799,12 +799,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },  
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "WARNING",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2209,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/popup/app-routing.module.ts b/apps/browser/src/popup/app-routing.module.ts
index a84d343c31a..9e0377a2f9a 100644
--- a/apps/browser/src/popup/app-routing.module.ts
+++ b/apps/browser/src/popup/app-routing.module.ts
@@ -40,7 +40,7 @@ import { AboutPageV2Component } from "../tools/popup/settings/about-page/about-p
 import { AboutPageComponent } from "../tools/popup/settings/about-page/about-page.component";
 import { MoreFromBitwardenPageV2Component } from "../tools/popup/settings/about-page/more-from-bitwarden-page-v2.component";
 import { MoreFromBitwardenPageComponent } from "../tools/popup/settings/about-page/more-from-bitwarden-page.component";
-import { ExportComponent } from "../tools/popup/settings/export.component";
+import { ExportBrowserComponent } from "../tools/popup/settings/export/export-browser.component";
 import { ImportBrowserV2Component } from "../tools/popup/settings/import/import-browser-v2.component";
 import { ImportBrowserComponent } from "../tools/popup/settings/import/import-browser.component";
 import { SettingsV2Component } from "../tools/popup/settings/settings-v2.component";
@@ -246,7 +246,7 @@ const routes: Routes = [
   }),
   {
     path: "export",
-    component: ExportComponent,
+    component: ExportBrowserComponent,
     canActivate: [AuthGuard],
     data: { state: "export" },
   },
diff --git a/apps/browser/src/popup/app.module.ts b/apps/browser/src/popup/app.module.ts
index 54a9da028f9..e16c33de3ae 100644
--- a/apps/browser/src/popup/app.module.ts
+++ b/apps/browser/src/popup/app.module.ts
@@ -16,7 +16,6 @@ import { ColorPasswordCountPipe } from "@bitwarden/angular/pipes/color-password-
 import { ColorPasswordPipe } from "@bitwarden/angular/pipes/color-password.pipe";
 import { UserVerificationDialogComponent } from "@bitwarden/auth/angular";
 import { AvatarModule, ButtonModule, ToastModule } from "@bitwarden/components";
-import { ExportScopeCalloutComponent } from "@bitwarden/vault-export-ui";
 
 import { AccountSwitcherComponent } from "../auth/popup/account-switching/account-switcher.component";
 import { AccountComponent } from "../auth/popup/account-switching/account.component";
@@ -55,7 +54,6 @@ import { SendListComponent } from "../tools/popup/send/components/send-list.comp
 import { SendAddEditComponent } from "../tools/popup/send/send-add-edit.component";
 import { SendGroupingsComponent } from "../tools/popup/send/send-groupings.component";
 import { SendTypeComponent } from "../tools/popup/send/send-type.component";
-import { ExportComponent } from "../tools/popup/settings/export.component";
 import { SettingsComponent } from "../tools/popup/settings/settings.component";
 import { ActionButtonsComponent } from "../vault/popup/components/action-buttons.component";
 import { CipherRowComponent } from "../vault/popup/components/cipher-row.component";
@@ -116,7 +114,6 @@ import "../platform/popup/locales";
     AvatarModule,
     AccountComponent,
     ButtonModule,
-    ExportScopeCalloutComponent,
     PopOutComponent,
     PopupPageComponent,
     PopupTabNavigationComponent,
@@ -140,7 +137,6 @@ import "../platform/popup/locales";
     CurrentTabComponent,
     EnvironmentComponent,
     ExcludedDomainsComponent,
-    ExportComponent,
     Fido2CipherRowComponent,
     Fido2UseBrowserLinkComponent,
     FolderAddEditComponent,
diff --git a/apps/browser/src/tools/popup/settings/export.component.html b/apps/browser/src/tools/popup/settings/export.component.html
deleted file mode 100644
index ef031b7979a..00000000000
--- a/apps/browser/src/tools/popup/settings/export.component.html
+++ /dev/null
@@ -1,35 +0,0 @@
-<form (ngSubmit)="submit()" [formGroup]="exportForm">
-  <header>
-    <div class="left">
-      <button type="button" routerLink="/vault-settings">
-        <span class="header-icon" aria-hidden="true"><i class="bwi bwi-angle-left"></i></span>
-        <span>{{ "back" | i18n }}</span>
-      </button>
-    </div>
-    <h1 class="center">
-      <span class="title">{{ "exportVault" | i18n }}</span>
-    </h1>
-    <div class="right">
-      <button type="submit" [disabled]="!exportForm.enabled">
-        {{ "submit" | i18n }}
-      </button>
-    </div>
-  </header>
-  <main tabindex="-1">
-    <app-callout type="warning" title="{{ 'vaultExportDisabled' | i18n }}" *ngIf="disabledByPolicy">
-      {{ "personalVaultExportPolicyInEffect" | i18n }}
-    </app-callout>
-    <tools-export-scope-callout *ngIf="!disabledByPolicy"></tools-export-scope-callout>
-
-    <div class="box">
-      <div class="box-content">
-        <div class="box-content-row" appBoxRow>
-          <label for="format">{{ "fileFormat" | i18n }}</label>
-          <select id="format" name="Format" formControlName="format">
-            <option *ngFor="let f of formatOptions" [value]="f.value">{{ f.name }}</option>
-          </select>
-        </div>
-      </div>
-    </div>
-  </main>
-</form>
diff --git a/apps/browser/src/tools/popup/settings/export.component.ts b/apps/browser/src/tools/popup/settings/export.component.ts
deleted file mode 100644
index 9f3f054d2ac..00000000000
--- a/apps/browser/src/tools/popup/settings/export.component.ts
+++ /dev/null
@@ -1,54 +0,0 @@
-import { Component } from "@angular/core";
-import { UntypedFormBuilder } from "@angular/forms";
-import { Router } from "@angular/router";
-
-import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
-import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
-import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
-import { FileDownloadService } from "@bitwarden/common/platform/abstractions/file-download/file-download.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { DialogService } from "@bitwarden/components";
-import { VaultExportServiceAbstraction } from "@bitwarden/vault-export-core";
-import { ExportComponent as BaseExportComponent } from "@bitwarden/vault-export-ui";
-
-@Component({
-  selector: "app-export",
-  templateUrl: "export.component.html",
-})
-export class ExportComponent extends BaseExportComponent {
-  constructor(
-    i18nService: I18nService,
-    platformUtilsService: PlatformUtilsService,
-    exportService: VaultExportServiceAbstraction,
-    eventCollectionService: EventCollectionService,
-    policyService: PolicyService,
-    private router: Router,
-    logService: LogService,
-    formBuilder: UntypedFormBuilder,
-    fileDownloadService: FileDownloadService,
-    dialogService: DialogService,
-    organizationService: OrganizationService,
-  ) {
-    super(
-      i18nService,
-      platformUtilsService,
-      exportService,
-      eventCollectionService,
-      policyService,
-      logService,
-      formBuilder,
-      fileDownloadService,
-      dialogService,
-      organizationService,
-    );
-  }
-
-  protected saved() {
-    super.saved();
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    this.router.navigate(["/tabs/settings"]);
-  }
-}
diff --git a/apps/browser/src/tools/popup/settings/export/export-browser.component.html b/apps/browser/src/tools/popup/settings/export/export-browser.component.html
new file mode 100644
index 00000000000..bccde32a68d
--- /dev/null
+++ b/apps/browser/src/tools/popup/settings/export/export-browser.component.html
@@ -0,0 +1,26 @@
+<header>
+  <div class="left">
+    <button type="button" routerLink="/vault-settings">
+      <span class="header-icon" aria-hidden="true"><i class="bwi bwi-angle-left"></i></span>
+      <span>{{ "back" | i18n }}</span>
+    </button>
+  </div>
+  <h1 class="center">
+    <span class="title">{{ "exportVault" | i18n }}</span>
+  </h1>
+  <div class="right">
+    <button form="export_form_exportForm" type="submit" [disabled]="disabled">
+      <span [hidden]="loading">{{ "submit" | i18n }}</span>
+      <i class="bwi bwi-spinner bwi-lg bwi-spin" [hidden]="!loading" aria-hidden="true"></i>
+    </button>
+  </div>
+</header>
+<main tabindex="-1">
+  <div class="tw-p-4">
+    <tools-export
+      (formDisabled)="this.disabled = $event"
+      (formLoading)="this.loading = $event"
+      (onSuccessfulExport)="this.onSuccessfulExport($event)"
+    ></tools-export>
+  </div>
+</main>
diff --git a/apps/browser/src/tools/popup/settings/export/export-browser.component.ts b/apps/browser/src/tools/popup/settings/export/export-browser.component.ts
new file mode 100644
index 00000000000..3125e0a2934
--- /dev/null
+++ b/apps/browser/src/tools/popup/settings/export/export-browser.component.ts
@@ -0,0 +1,40 @@
+import { CommonModule } from "@angular/common";
+import { Component } from "@angular/core";
+import { Router, RouterLink } from "@angular/router";
+
+import { JslibModule } from "@bitwarden/angular/jslib.module";
+import { AsyncActionsModule, ButtonModule, DialogModule } from "@bitwarden/components";
+import { ExportComponent } from "@bitwarden/vault-export-ui";
+
+@Component({
+  templateUrl: "export-browser.component.html",
+  standalone: true,
+  imports: [
+    CommonModule,
+    RouterLink,
+    JslibModule,
+    DialogModule,
+    AsyncActionsModule,
+    ButtonModule,
+    ExportComponent,
+  ],
+})
+export class ExportBrowserComponent {
+  /**
+   * Used to control the disabled state of the Submit button
+   * Gets set indirectly by the disabled state being emitted from the sub-form when thier form gets disabled or the submit button is clicked
+   */
+  protected disabled = false;
+
+  /**
+   * Used to control the disabled state of the Submit button
+   * Gets set indirectly by the loading state being emitted from the sub-form when their form is loading or finished loading
+   */
+  protected loading = false;
+
+  constructor(private router: Router) {}
+
+  protected async onSuccessfulExport(organizationId: string): Promise<void> {
+    await this.router.navigate(["/vault-settings"]);
+  }
+}

From df193dd869a88226cf844e4c580092c7feb7d5ea Mon Sep 17 00:00:00 2001
From: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
Date: Thu, 30 May 2024 00:00:49 +0200
Subject: [PATCH 031/138] [PM-2517] [PM-8299] Add password protected export on
 desktop/Export managed collections (#9286)

* Move/replace submit and userVerification logic from web into the BaseExportComponent

Add "@bitwarden/auth" as dependency to the vault-export-ui package
New submit logic also checks for password-encrypted exports which will be need for future UI updates on browser and desktop

* Create export-desktop component using shared recipe

Create new export component that uses the shared export.component from @bitwarden/vault-export-ui

* Update imports within AppModule

Remove old ExportComponent
Remove ExportScopeCalloutComponent as it's part of the BaseExportComponent

* Open new component when clicking on Export Vault menu item

* Add missing entries to messages.json

* Delete old export.component

* Remove duplicate verifyUser-method

* Change placeholder example

---------

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
---
 apps/desktop/src/app/app.component.ts         | 24 +---------
 apps/desktop/src/app/app.module.ts            |  4 --
 .../export/export-desktop.component.html      | 26 +++++++++++
 .../tools/export/export-desktop.component.ts  | 33 ++++++++++++++
 .../app/tools/export/export.component.html    | 40 -----------------
 .../src/app/tools/export/export.component.ts  | 45 -------------------
 apps/desktop/src/locales/en/messages.json     | 42 +++++++++++++++++
 7 files changed, 103 insertions(+), 111 deletions(-)
 create mode 100644 apps/desktop/src/app/tools/export/export-desktop.component.html
 create mode 100644 apps/desktop/src/app/tools/export/export-desktop.component.ts
 delete mode 100644 apps/desktop/src/app/tools/export/export.component.html
 delete mode 100644 apps/desktop/src/app/tools/export/export.component.ts

diff --git a/apps/desktop/src/app/app.component.ts b/apps/desktop/src/app/app.component.ts
index 4bc34f9af97..7feea649c30 100644
--- a/apps/desktop/src/app/app.component.ts
+++ b/apps/desktop/src/app/app.component.ts
@@ -57,7 +57,7 @@ import { PremiumComponent } from "../vault/app/accounts/premium.component";
 import { FolderAddEditComponent } from "../vault/app/vault/folder-add-edit.component";
 
 import { SettingsComponent } from "./accounts/settings.component";
-import { ExportComponent } from "./tools/export/export.component";
+import { ExportDesktopComponent } from "./tools/export/export-desktop.component";
 import { GeneratorComponent } from "./tools/generator.component";
 import { ImportDesktopComponent } from "./tools/import/import-desktop.component";
 import { PasswordGeneratorHistoryComponent } from "./tools/password-generator-history.component";
@@ -366,7 +366,7 @@ export class AppComponent implements OnInit, OnDestroy {
             await this.dialogService.open(ImportDesktopComponent);
             break;
           case "exportVault":
-            await this.openExportVault();
+            await this.dialogService.open(ExportDesktopComponent);
             break;
           case "newLogin":
             this.routeToVault("add", CipherType.Login);
@@ -463,26 +463,6 @@ export class AppComponent implements OnInit, OnDestroy {
     this.broadcasterService.unsubscribe(BroadcasterSubscriptionId);
   }
 
-  async openExportVault() {
-    this.modalService.closeAll();
-
-    const [modal, childComponent] = await this.modalService.openViewRef(
-      ExportComponent,
-      this.exportVaultModalRef,
-    );
-    this.modal = modal;
-
-    // eslint-disable-next-line rxjs-angular/prefer-takeuntil
-    childComponent.onSaved.subscribe(() => {
-      this.modal.close();
-    });
-
-    // eslint-disable-next-line rxjs-angular/prefer-takeuntil
-    this.modal.onClosed.subscribe(() => {
-      this.modal = null;
-    });
-  }
-
   async addFolder() {
     this.modalService.closeAll();
 
diff --git a/apps/desktop/src/app/app.module.ts b/apps/desktop/src/app/app.module.ts
index de228d0399f..c4861b96608 100644
--- a/apps/desktop/src/app/app.module.ts
+++ b/apps/desktop/src/app/app.module.ts
@@ -8,7 +8,6 @@ import { NgModule } from "@angular/core";
 import { ColorPasswordCountPipe } from "@bitwarden/angular/pipes/color-password-count.pipe";
 import { ColorPasswordPipe } from "@bitwarden/angular/pipes/color-password.pipe";
 import { DialogModule, CalloutModule } from "@bitwarden/components";
-import { ExportScopeCalloutComponent } from "@bitwarden/vault-export-ui";
 
 import { AccessibilityCookieComponent } from "../auth/accessibility-cookie.component";
 import { DeleteAccountComponent } from "../auth/delete-account.component";
@@ -47,7 +46,6 @@ import { HeaderComponent } from "./layout/header.component";
 import { NavComponent } from "./layout/nav.component";
 import { SearchComponent } from "./layout/search/search.component";
 import { SharedModule } from "./shared/shared.module";
-import { ExportComponent } from "./tools/export/export.component";
 import { GeneratorComponent } from "./tools/generator.component";
 import { PasswordGeneratorHistoryComponent } from "./tools/password-generator-history.component";
 import { AddEditComponent as SendAddEditComponent } from "./tools/send/add-edit.component";
@@ -63,7 +61,6 @@ import { SendComponent } from "./tools/send/send.component";
     CalloutModule,
     DeleteAccountComponent,
     UserVerificationComponent,
-    ExportScopeCalloutComponent,
   ],
   declarations: [
     AccessibilityCookieComponent,
@@ -77,7 +74,6 @@ import { SendComponent } from "./tools/send/send.component";
     ColorPasswordPipe,
     ColorPasswordCountPipe,
     EnvironmentComponent,
-    ExportComponent,
     FolderAddEditComponent,
     HeaderComponent,
     HintComponent,
diff --git a/apps/desktop/src/app/tools/export/export-desktop.component.html b/apps/desktop/src/app/tools/export/export-desktop.component.html
new file mode 100644
index 00000000000..9aa59c5a636
--- /dev/null
+++ b/apps/desktop/src/app/tools/export/export-desktop.component.html
@@ -0,0 +1,26 @@
+<bit-dialog #dialog dialogSize="large">
+  <span bitDialogTitle>{{ "exportVault" | i18n }}</span>
+  <ng-container bitDialogContent>
+    <tools-export
+      (formLoading)="this.loading = $event"
+      (formDisabled)="this.disabled = $event"
+      (onSuccessfulExport)="this.onSuccessfulExport($event)"
+    ></tools-export>
+  </ng-container>
+  <ng-container bitDialogFooter>
+    <button
+      [disabled]="disabled"
+      [loading]="loading"
+      form="export_form_exportForm"
+      bitButton
+      type="submit"
+      bitFormButton
+      buttonType="primary"
+    >
+      {{ "exportVault" | i18n }}
+    </button>
+    <button type="button" bitButton bitFormButton buttonType="secondary" bitDialogClose>
+      {{ "cancel" | i18n }}
+    </button>
+  </ng-container>
+</bit-dialog>
diff --git a/apps/desktop/src/app/tools/export/export-desktop.component.ts b/apps/desktop/src/app/tools/export/export-desktop.component.ts
new file mode 100644
index 00000000000..352fa29910a
--- /dev/null
+++ b/apps/desktop/src/app/tools/export/export-desktop.component.ts
@@ -0,0 +1,33 @@
+import { DialogRef } from "@angular/cdk/dialog";
+import { CommonModule } from "@angular/common";
+import { Component } from "@angular/core";
+
+import { JslibModule } from "@bitwarden/angular/jslib.module";
+import { AsyncActionsModule, ButtonModule, DialogModule } from "@bitwarden/components";
+import { ExportComponent } from "@bitwarden/vault-export-ui";
+
+@Component({
+  templateUrl: "export-desktop.component.html",
+  standalone: true,
+  imports: [
+    CommonModule,
+    JslibModule,
+    DialogModule,
+    AsyncActionsModule,
+    ButtonModule,
+    ExportComponent,
+  ],
+})
+export class ExportDesktopComponent {
+  protected disabled = false;
+  protected loading = false;
+
+  constructor(public dialogRef: DialogRef) {}
+
+  /**
+   * Callback that is called after a successful export.
+   */
+  protected async onSuccessfulExport(organizationId: string): Promise<void> {
+    this.dialogRef.close();
+  }
+}
diff --git a/apps/desktop/src/app/tools/export/export.component.html b/apps/desktop/src/app/tools/export/export.component.html
deleted file mode 100644
index 3792713e61e..00000000000
--- a/apps/desktop/src/app/tools/export/export.component.html
+++ /dev/null
@@ -1,40 +0,0 @@
-<div class="modal fade" role="dialog" aria-modal="true" aria-labelledby="exportTitle">
-  <div class="modal-dialog" role="document">
-    <form class="modal-content" #form (ngSubmit)="submit()" [formGroup]="exportForm">
-      <div class="modal-body">
-        <bit-callout
-          type="warning"
-          title="{{ 'vaultExportDisabled' | i18n }}"
-          *ngIf="disabledByPolicy"
-        >
-          {{ "personalVaultExportPolicyInEffect" | i18n }}
-        </bit-callout>
-        <tools-export-scope-callout *ngIf="!disabledByPolicy"></tools-export-scope-callout>
-        <div class="box">
-          <h1 class="box-header" id="exportTitle">
-            {{ "exportVault" | i18n }}
-          </h1>
-          <div class="box-content">
-            <div class="box-content-row" appBoxRow>
-              <label for="format">{{ "fileFormat" | i18n }}</label>
-              <select class="form-control" id="format" name="Format" formControlName="format">
-                <option *ngFor="let f of formatOptions" [value]="f.value">{{ f.name }}</option>
-              </select>
-            </div>
-          </div>
-        </div>
-      </div>
-      <div class="modal-footer">
-        <button
-          type="submit"
-          class="primary"
-          appA11yTitle="{{ 'submit' | i18n }}"
-          [disabled]="disabledByPolicy"
-        >
-          <i class="bwi bwi-download bwi-lg bwi-fw" aria-hidden="true"></i>
-        </button>
-        <button type="button" data-dismiss="modal">{{ "cancel" | i18n }}</button>
-      </div>
-    </form>
-  </div>
-</div>
diff --git a/apps/desktop/src/app/tools/export/export.component.ts b/apps/desktop/src/app/tools/export/export.component.ts
deleted file mode 100644
index 6cf5760a1cb..00000000000
--- a/apps/desktop/src/app/tools/export/export.component.ts
+++ /dev/null
@@ -1,45 +0,0 @@
-import { Component, OnInit } from "@angular/core";
-import { UntypedFormBuilder } from "@angular/forms";
-
-import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
-import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
-import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
-import { FileDownloadService } from "@bitwarden/common/platform/abstractions/file-download/file-download.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { DialogService } from "@bitwarden/components";
-import { VaultExportServiceAbstraction } from "@bitwarden/vault-export-core";
-import { ExportComponent as BaseExportComponent } from "@bitwarden/vault-export-ui";
-
-@Component({
-  selector: "app-export",
-  templateUrl: "export.component.html",
-})
-export class ExportComponent extends BaseExportComponent implements OnInit {
-  constructor(
-    i18nService: I18nService,
-    platformUtilsService: PlatformUtilsService,
-    exportService: VaultExportServiceAbstraction,
-    eventCollectionService: EventCollectionService,
-    policyService: PolicyService,
-    formBuilder: UntypedFormBuilder,
-    logService: LogService,
-    fileDownloadService: FileDownloadService,
-    dialogService: DialogService,
-    organizationService: OrganizationService,
-  ) {
-    super(
-      i18nService,
-      platformUtilsService,
-      exportService,
-      eventCollectionService,
-      policyService,
-      logService,
-      formBuilder,
-      fileDownloadService,
-      dialogService,
-      organizationService,
-    );
-  }
-}
diff --git a/apps/desktop/src/locales/en/messages.json b/apps/desktop/src/locales/en/messages.json
index dde17633788..8a91771da20 100644
--- a/apps/desktop/src/locales/en/messages.json
+++ b/apps/desktop/src/locales/en/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },  
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },

From fb7273beb894b33db8b62f853b3d056656342856 Mon Sep 17 00:00:00 2001
From: Thomas Rittson <31796059+eliykat@users.noreply.github.com>
Date: Thu, 30 May 2024 10:49:32 +1000
Subject: [PATCH 032/138] [AC-2703] Fix copy in members and groups modals for
 custom users (#9408)

* Fix copy in members and groups modals for custom users

* Fix nesting in member dialog template
---
 .../manage/group-add-edit.component.html           |  2 +-
 .../manage/group-add-edit.component.ts             | 11 ++++++++---
 .../member-dialog/member-dialog.component.html     | 14 +++++++++++---
 .../member-dialog/member-dialog.component.ts       | 13 +++++++++----
 4 files changed, 29 insertions(+), 11 deletions(-)

diff --git a/apps/web/src/app/admin-console/organizations/manage/group-add-edit.component.html b/apps/web/src/app/admin-console/organizations/manage/group-add-edit.component.html
index df731c5cf16..166467ada09 100644
--- a/apps/web/src/app/admin-console/organizations/manage/group-add-edit.component.html
+++ b/apps/web/src/app/admin-console/organizations/manage/group-add-edit.component.html
@@ -52,7 +52,7 @@
         <bit-tab label="{{ 'collections' | i18n }}">
           <p>
             {{ "editGroupCollectionsDesc" | i18n }}
-            <span *ngIf="!(canEditAnyCollection$ | async)">
+            <span *ngIf="!(canAssignAccessToAnyCollection$ | async)">
               {{ "restrictedCollectionAssignmentDesc" | i18n }}
             </span>
           </p>
diff --git a/apps/web/src/app/admin-console/organizations/manage/group-add-edit.component.ts b/apps/web/src/app/admin-console/organizations/manage/group-add-edit.component.ts
index a02c4a8da95..38ef0025349 100644
--- a/apps/web/src/app/admin-console/organizations/manage/group-add-edit.component.ts
+++ b/apps/web/src/app/admin-console/organizations/manage/group-add-edit.component.ts
@@ -196,12 +196,17 @@ export class GroupAddEditComponent implements OnInit, OnDestroy {
     }),
   );
 
-  protected canEditAnyCollection$ = combineLatest([
+  protected canAssignAccessToAnyCollection$ = combineLatest([
     this.organization$,
     this.flexibleCollectionsV1Enabled$,
+    this.allowAdminAccessToAllCollectionItems$,
   ]).pipe(
-    map(([org, flexibleCollectionsV1Enabled]) =>
-      org.canEditAnyCollection(flexibleCollectionsV1Enabled),
+    map(
+      ([org, flexibleCollectionsV1Enabled, allowAdminAccessToAllCollectionItems]) =>
+        org.canEditAnyCollection(flexibleCollectionsV1Enabled) ||
+        // Manage Groups custom permission cannot edit any collection but they can assign access from this dialog
+        // if permitted by collection management settings
+        (org.permissions.manageGroups && allowAdminAccessToAllCollectionItems),
     ),
   );
 
diff --git a/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.html b/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.html
index 35e28b5239e..149277b8179 100644
--- a/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.html
+++ b/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.html
@@ -278,9 +278,17 @@
           <div class="tw-mb-6" *ngIf="restrictEditingSelf$ | async">
             {{ "cannotAddYourselfToCollections" | i18n }}
           </div>
-          <div *ngIf="organization.useGroups && !(restrictEditingSelf$ | async)" class="tw-mb-6">
-            {{ "userPermissionOverrideHelperDesc" | i18n }}
-            <span *ngIf="!(canEditAnyCollection$ | async)">
+          <div
+            *ngIf="
+              !(restrictEditingSelf$ | async) &&
+              (organization.useGroups || !(canAssignAccessToAnyCollection$ | async))
+            "
+            class="tw-mb-6"
+          >
+            <span *ngIf="organization.useGroups">
+              {{ "userPermissionOverrideHelperDesc" | i18n }}
+            </span>
+            <span *ngIf="!(canAssignAccessToAnyCollection$ | async)">
               {{ "restrictedCollectionAssignmentDesc" | i18n }}
             </span>
           </div>
diff --git a/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.ts b/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.ts
index 8309d4d7253..8482cbb4dee 100644
--- a/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.ts
+++ b/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.ts
@@ -107,7 +107,7 @@ export class MemberDialogComponent implements OnDestroy {
 
   protected allowAdminAccessToAllCollectionItems$: Observable<boolean>;
   protected restrictEditingSelf$: Observable<boolean>;
-  protected canEditAnyCollection$: Observable<boolean>;
+  protected canAssignAccessToAnyCollection$: Observable<boolean>;
 
   protected permissionsGroup = this.formBuilder.group({
     manageAssignedCollectionsGroup: this.formBuilder.group<Record<string, boolean>>({
@@ -222,12 +222,17 @@ export class MemberDialogComponent implements OnDestroy {
       FeatureFlag.FlexibleCollectionsV1,
     );
 
-    this.canEditAnyCollection$ = combineLatest([
+    this.canAssignAccessToAnyCollection$ = combineLatest([
       this.organization$,
       flexibleCollectionsV1Enabled$,
+      this.allowAdminAccessToAllCollectionItems$,
     ]).pipe(
-      map(([org, flexibleCollectionsV1Enabled]) =>
-        org.canEditAnyCollection(flexibleCollectionsV1Enabled),
+      map(
+        ([org, flexibleCollectionsV1Enabled, allowAdminAccessToAllCollectionItems]) =>
+          org.canEditAnyCollection(flexibleCollectionsV1Enabled) ||
+          // Manage Users custom permission cannot edit any collection but they can assign access from this dialog
+          // if permitted by collection management settings
+          (org.permissions.manageUsers && allowAdminAccessToAllCollectionItems),
       ),
     );
 

From 6d0ef650941edd03445439a29cd5601d6fe705e0 Mon Sep 17 00:00:00 2001
From: Bernd Schoolmann <mail@quexten.com>
Date: Thu, 30 May 2024 11:08:47 +0200
Subject: [PATCH 033/138] [PM-5938] Prevent vault coruption on key-rotation on
 desycned vault (#9235)

* Prevent key-rotation when local vault is desynced

* Prevent key-rotation on non-decrypted vault

* Remove cipher check that is done on server side
---
 .../auth/key-rotation/user-key-rotation.service.spec.ts   | 4 ++++
 .../app/auth/key-rotation/user-key-rotation.service.ts    | 8 ++++++++
 2 files changed, 12 insertions(+)

diff --git a/apps/web/src/app/auth/key-rotation/user-key-rotation.service.spec.ts b/apps/web/src/app/auth/key-rotation/user-key-rotation.service.spec.ts
index 792ae15690f..c3d568e1187 100644
--- a/apps/web/src/app/auth/key-rotation/user-key-rotation.service.spec.ts
+++ b/apps/web/src/app/auth/key-rotation/user-key-rotation.service.spec.ts
@@ -17,6 +17,7 @@ import { UserId } from "@bitwarden/common/types/guid";
 import { UserKey } from "@bitwarden/common/types/key";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
+import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { CipherType } from "@bitwarden/common/vault/enums/cipher-type";
 import { Cipher } from "@bitwarden/common/vault/models/domain/cipher";
 import { Folder } from "@bitwarden/common/vault/models/domain/folder";
@@ -49,6 +50,7 @@ describe("KeyRotationService", () => {
   let mockStateService: MockProxy<StateService>;
   let mockConfigService: MockProxy<ConfigService>;
   let mockKdfConfigService: MockProxy<KdfConfigService>;
+  let mockSyncService: MockProxy<SyncService>;
 
   const mockUserId = Utils.newGuid() as UserId;
   const mockAccountService: FakeAccountService = mockAccountServiceWith(mockUserId);
@@ -68,6 +70,7 @@ describe("KeyRotationService", () => {
     mockStateService = mock<StateService>();
     mockConfigService = mock<ConfigService>();
     mockKdfConfigService = mock<KdfConfigService>();
+    mockSyncService = mock<SyncService>();
 
     keyRotationService = new UserKeyRotationService(
       mockMasterPasswordService,
@@ -83,6 +86,7 @@ describe("KeyRotationService", () => {
       mockStateService,
       mockAccountService,
       mockKdfConfigService,
+      mockSyncService,
     );
   });
 
diff --git a/apps/web/src/app/auth/key-rotation/user-key-rotation.service.ts b/apps/web/src/app/auth/key-rotation/user-key-rotation.service.ts
index 4b8d6ca1392..cac2dafd518 100644
--- a/apps/web/src/app/auth/key-rotation/user-key-rotation.service.ts
+++ b/apps/web/src/app/auth/key-rotation/user-key-rotation.service.ts
@@ -13,6 +13,7 @@ import { SendService } from "@bitwarden/common/tools/send/services/send.service.
 import { UserKey } from "@bitwarden/common/types/key";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
+import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { CipherWithIdRequest } from "@bitwarden/common/vault/models/request/cipher-with-id.request";
 import { FolderWithIdRequest } from "@bitwarden/common/vault/models/request/folder-with-id.request";
 
@@ -38,6 +39,7 @@ export class UserKeyRotationService {
     private stateService: StateService,
     private accountService: AccountService,
     private kdfConfigService: KdfConfigService,
+    private syncService: SyncService,
   ) {}
 
   /**
@@ -49,6 +51,12 @@ export class UserKeyRotationService {
       throw new Error("Invalid master password");
     }
 
+    if ((await this.syncService.getLastSync()) === null) {
+      throw new Error(
+        "The local vault is de-synced and the keys cannot be rotated. Please log out and log back in to resolve this issue.",
+      );
+    }
+
     // Create master key to validate the master password
     const masterKey = await this.cryptoService.makeMasterKey(
       masterPassword,

From f6942dde74a16ed75d11ff9aff10245114e04c4f Mon Sep 17 00:00:00 2001
From: Bernd Schoolmann <mail@quexten.com>
Date: Thu, 30 May 2024 11:10:03 +0200
Subject: [PATCH 034/138] [PM-3050] Add sync on unlock, logout when account is
 deleted (#9288)

* Add sync on unlock, logout when account is deleted

* Update libs/common/src/vault/services/sync/sync.service.ts

Co-authored-by: SmithThe4th <gsmith@bitwarden.com>

* Fix failing unit tests

* Fix incorrect merge

---------

Co-authored-by: SmithThe4th <gsmith@bitwarden.com>
---
 apps/browser/src/auth/popup/lock.component.ts       | 3 +++
 apps/desktop/src/auth/lock.component.spec.ts        | 5 +++++
 apps/desktop/src/auth/lock.component.ts             | 3 +++
 libs/angular/src/auth/components/lock.component.ts  | 5 +++++
 libs/common/src/vault/services/sync/sync.service.ts | 5 +++++
 5 files changed, 21 insertions(+)

diff --git a/apps/browser/src/auth/popup/lock.component.ts b/apps/browser/src/auth/popup/lock.component.ts
index 34bcbcf63ac..5047889b8ec 100644
--- a/apps/browser/src/auth/popup/lock.component.ts
+++ b/apps/browser/src/auth/popup/lock.component.ts
@@ -25,6 +25,7 @@ import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/pl
 import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
 import { BiometricStateService } from "@bitwarden/common/platform/biometrics/biometric-state.service";
 import { PasswordStrengthServiceAbstraction } from "@bitwarden/common/tools/password-strength";
+import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { DialogService } from "@bitwarden/components";
 
 import { BiometricErrors, BiometricErrorTypes } from "../../models/biometricErrors";
@@ -68,6 +69,7 @@ export class LockComponent extends BaseLockComponent {
     biometricStateService: BiometricStateService,
     accountService: AccountService,
     kdfConfigService: KdfConfigService,
+    syncService: SyncService,
   ) {
     super(
       masterPasswordService,
@@ -94,6 +96,7 @@ export class LockComponent extends BaseLockComponent {
       accountService,
       authService,
       kdfConfigService,
+      syncService,
     );
     this.successRoute = "/tabs/current";
     this.isInitialLockScreen = (window as any).previousPopupUrl == null;
diff --git a/apps/desktop/src/auth/lock.component.spec.ts b/apps/desktop/src/auth/lock.component.spec.ts
index 434d94bf5bd..c46b791b1b6 100644
--- a/apps/desktop/src/auth/lock.component.spec.ts
+++ b/apps/desktop/src/auth/lock.component.spec.ts
@@ -32,6 +32,7 @@ import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { FakeAccountService, mockAccountServiceWith } from "@bitwarden/common/spec";
 import { PasswordStrengthServiceAbstraction } from "@bitwarden/common/tools/password-strength";
 import { UserId } from "@bitwarden/common/types/guid";
+import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { DialogService } from "@bitwarden/components";
 
 import { LockComponent } from "./lock.component";
@@ -174,6 +175,10 @@ describe("LockComponent", () => {
           provide: KdfConfigService,
           useValue: mock<KdfConfigService>(),
         },
+        {
+          provide: SyncService,
+          useValue: mock<SyncService>(),
+        },
       ],
       schemas: [NO_ERRORS_SCHEMA],
     }).compileComponents();
diff --git a/apps/desktop/src/auth/lock.component.ts b/apps/desktop/src/auth/lock.component.ts
index 1b18f9f75f6..ad9f6e5d01e 100644
--- a/apps/desktop/src/auth/lock.component.ts
+++ b/apps/desktop/src/auth/lock.component.ts
@@ -26,6 +26,7 @@ import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/pl
 import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
 import { BiometricStateService } from "@bitwarden/common/platform/biometrics/biometric-state.service";
 import { PasswordStrengthServiceAbstraction } from "@bitwarden/common/tools/password-strength";
+import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { DialogService } from "@bitwarden/components";
 
 const BroadcasterSubscriptionId = "LockComponent";
@@ -67,6 +68,7 @@ export class LockComponent extends BaseLockComponent {
     accountService: AccountService,
     authService: AuthService,
     kdfConfigService: KdfConfigService,
+    syncService: SyncService,
   ) {
     super(
       masterPasswordService,
@@ -93,6 +95,7 @@ export class LockComponent extends BaseLockComponent {
       accountService,
       authService,
       kdfConfigService,
+      syncService,
     );
   }
 
diff --git a/libs/angular/src/auth/components/lock.component.ts b/libs/angular/src/auth/components/lock.component.ts
index a1c9e94fb0a..64cd664f1f3 100644
--- a/libs/angular/src/auth/components/lock.component.ts
+++ b/libs/angular/src/auth/components/lock.component.ts
@@ -33,6 +33,7 @@ import { HashPurpose, KeySuffixOptions } from "@bitwarden/common/platform/enums"
 import { PasswordStrengthServiceAbstraction } from "@bitwarden/common/tools/password-strength";
 import { UserId } from "@bitwarden/common/types/guid";
 import { UserKey } from "@bitwarden/common/types/key";
+import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { DialogService } from "@bitwarden/components";
 
 @Directive()
@@ -85,6 +86,7 @@ export class LockComponent implements OnInit, OnDestroy {
     protected accountService: AccountService,
     protected authService: AuthService,
     protected kdfConfigService: KdfConfigService,
+    protected syncService: SyncService,
   ) {}
 
   async ngOnInit() {
@@ -318,6 +320,9 @@ export class LockComponent implements OnInit, OnDestroy {
       }
     }
 
+    // Vault can be de-synced since notifications get ignored while locked. Need to check whether sync is required using the sync service.
+    await this.syncService.fullSync(false);
+
     if (this.onSuccessfulSubmit != null) {
       await this.onSuccessfulSubmit();
     } else if (this.router != null) {
diff --git a/libs/common/src/vault/services/sync/sync.service.ts b/libs/common/src/vault/services/sync/sync.service.ts
index 172891b08db..2c69f83b05e 100644
--- a/libs/common/src/vault/services/sync/sync.service.ts
+++ b/libs/common/src/vault/services/sync/sync.service.ts
@@ -145,6 +145,11 @@ export class SyncService extends CoreSyncService {
     }
 
     const response = await this.apiService.getAccountRevisionDate();
+    if (response < 0 && this.logoutCallback) {
+      // Account was deleted, log out now
+      await this.logoutCallback(false);
+    }
+
     if (new Date(response) <= lastSync) {
       return false;
     }

From 2015f0964f3d75ce0ec3f40520b4fe7390ea21bc Mon Sep 17 00:00:00 2001
From: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
Date: Thu, 30 May 2024 13:24:06 +0200
Subject: [PATCH 035/138] [PM-8229] Bump node to 20.13.1-LTS (#8078)

* Update .nvmrc from v18 to v20

* Update engines setting node 18->20 and npm 9->10

* Use yao-pkg/pkg instead of vercel/pkg

---------

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
---
 .github/workflows/build-cli.yml |  10 +-
 .nvmrc                          |   2 +-
 package-lock.json               | 403 ++++++++++++++++----------------
 package.json                    |   6 +-
 4 files changed, 207 insertions(+), 214 deletions(-)

diff --git a/.github/workflows/build-cli.yml b/.github/workflows/build-cli.yml
index 5436f976842..47ebaf5189c 100644
--- a/.github/workflows/build-cli.yml
+++ b/.github/workflows/build-cli.yml
@@ -78,8 +78,8 @@ jobs:
     env:
       _PACKAGE_VERSION: ${{ needs.setup.outputs.package_version }}
       _NODE_VERSION: ${{ needs.setup.outputs.node_version }}
-      _WIN_PKG_FETCH_VERSION: 18.5.0
-      _WIN_PKG_VERSION: 3.4
+      _WIN_PKG_FETCH_VERSION: 20.11.1
+      _WIN_PKG_VERSION: 3.5
     steps:
       - name: Checkout repo
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
@@ -155,8 +155,8 @@ jobs:
     env:
       _PACKAGE_VERSION: ${{ needs.setup.outputs.package_version }}
       _NODE_VERSION: ${{ needs.setup.outputs.node_version }}
-      _WIN_PKG_FETCH_VERSION: 18.5.0
-      _WIN_PKG_VERSION: 3.4
+      _WIN_PKG_FETCH_VERSION: 20.11.1
+      _WIN_PKG_VERSION: 3.5
     steps:
       - name: Checkout repo
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
@@ -178,7 +178,7 @@ jobs:
         shell: pwsh
         run: |
           cd $HOME
-          $fetchedUrl = "https://github.com/vercel/pkg-fetch/releases/download/v$env:_WIN_PKG_VERSION/node-v$env:_WIN_PKG_FETCH_VERSION-win-x64"
+          $fetchedUrl = "https://github.com/yao-pkg/pkg-fetch/releases/download/v$env:_WIN_PKG_VERSION/node-v$env:_WIN_PKG_FETCH_VERSION-win-x64"
           New-Item -ItemType directory -Path .\.pkg-cache
           New-Item -ItemType directory -Path .\.pkg-cache\v$env:_WIN_PKG_VERSION
           Invoke-RestMethod -Uri $fetchedUrl `
diff --git a/.nvmrc b/.nvmrc
index 3f430af82b3..9a2a0e219c9 100644
--- a/.nvmrc
+++ b/.nvmrc
@@ -1 +1 @@
-v18
+v20
diff --git a/package-lock.json b/package-lock.json
index 03a14daa6a6..17eaff3e3c8 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -120,6 +120,7 @@
         "@typescript-eslint/eslint-plugin": "7.8.0",
         "@typescript-eslint/parser": "7.8.0",
         "@webcomponents/custom-elements": "1.6.0",
+        "@yao-pkg/pkg": "^5.11.5",
         "autoprefixer": "10.4.19",
         "base64-loader": "1.0.0",
         "chromatic": "10.9.6",
@@ -157,7 +158,6 @@
         "lint-staged": "15.2.2",
         "mini-css-extract-plugin": "2.8.1",
         "node-ipc": "9.2.1",
-        "pkg": "5.8.1",
         "postcss": "8.4.38",
         "postcss-loader": "8.1.1",
         "prettier": "3.2.2",
@@ -187,8 +187,8 @@
         "webpack-node-externals": "3.0.0"
       },
       "engines": {
-        "node": "^18.18.0",
-        "npm": "~9"
+        "node": "~20",
+        "npm": "~10"
       }
     },
     "apps/browser": {
@@ -11803,6 +11803,201 @@
       "integrity": "sha512-NuHqBY1PB/D8xU6s/thBgOAiAP7HOYDQ32+BFZILJ8ivkUkAHQnWfn6WhL79Owj1qmUnoN/YPhktdIoucipkAQ==",
       "dev": true
     },
+    "node_modules/@yao-pkg/pkg": {
+      "version": "5.11.5",
+      "resolved": "https://registry.npmjs.org/@yao-pkg/pkg/-/pkg-5.11.5.tgz",
+      "integrity": "sha512-NPFXCn+5bAYZKej7jI92+mXiWG/LA6pEIJCXgI4MM3aYhUFrQOPrYKYr3cGXGs9lkgKGovlnMcKGDjwJ3B7rCQ==",
+      "dev": true,
+      "dependencies": {
+        "@babel/generator": "7.23.0",
+        "@babel/parser": "7.23.0",
+        "@babel/types": "7.23.0",
+        "@yao-pkg/pkg-fetch": "3.5.9",
+        "chalk": "^4.1.2",
+        "fs-extra": "^9.1.0",
+        "globby": "^11.1.0",
+        "into-stream": "^6.0.0",
+        "is-core-module": "2.9.0",
+        "minimist": "^1.2.6",
+        "multistream": "^4.1.0",
+        "prebuild-install": "7.1.1",
+        "resolve": "^1.22.0",
+        "stream-meter": "^1.0.4"
+      },
+      "bin": {
+        "pkg": "lib-es5/bin.js"
+      }
+    },
+    "node_modules/@yao-pkg/pkg-fetch": {
+      "version": "3.5.9",
+      "resolved": "https://registry.npmjs.org/@yao-pkg/pkg-fetch/-/pkg-fetch-3.5.9.tgz",
+      "integrity": "sha512-usMwwqFCd2B7k+V87u6kiTesyDSlw+3LpiuYBWe+UgryvSOk/NXjx3XVCub8hQoi0bCREbdQ6NDBqminyHJJrg==",
+      "dev": true,
+      "dependencies": {
+        "chalk": "^4.1.2",
+        "fs-extra": "^9.1.0",
+        "https-proxy-agent": "^5.0.0",
+        "node-fetch": "^2.6.6",
+        "progress": "^2.0.3",
+        "semver": "^7.3.5",
+        "tar-fs": "^2.1.1",
+        "yargs": "^16.2.0"
+      },
+      "bin": {
+        "pkg-fetch": "lib-es5/bin.js"
+      }
+    },
+    "node_modules/@yao-pkg/pkg-fetch/node_modules/cliui": {
+      "version": "7.0.4",
+      "resolved": "https://registry.npmjs.org/cliui/-/cliui-7.0.4.tgz",
+      "integrity": "sha512-OcRE68cOsVMXp1Yvonl/fzkQOyjLSu/8bhPDfQt0e0/Eb283TKP20Fs2MqoPsr9SwA595rRCA+QMzYc9nBP+JQ==",
+      "dev": true,
+      "dependencies": {
+        "string-width": "^4.2.0",
+        "strip-ansi": "^6.0.0",
+        "wrap-ansi": "^7.0.0"
+      }
+    },
+    "node_modules/@yao-pkg/pkg-fetch/node_modules/fs-extra": {
+      "version": "9.1.0",
+      "resolved": "https://registry.npmjs.org/fs-extra/-/fs-extra-9.1.0.tgz",
+      "integrity": "sha512-hcg3ZmepS30/7BSFqRvoo3DOMQu7IjqxO5nCDt+zM9XWjb33Wg7ziNT+Qvqbuc3+gWpzO02JubVyk2G4Zvo1OQ==",
+      "dev": true,
+      "dependencies": {
+        "at-least-node": "^1.0.0",
+        "graceful-fs": "^4.2.0",
+        "jsonfile": "^6.0.1",
+        "universalify": "^2.0.0"
+      },
+      "engines": {
+        "node": ">=10"
+      }
+    },
+    "node_modules/@yao-pkg/pkg-fetch/node_modules/https-proxy-agent": {
+      "version": "5.0.1",
+      "resolved": "https://registry.npmjs.org/https-proxy-agent/-/https-proxy-agent-5.0.1.tgz",
+      "integrity": "sha512-dFcAjpTQFgoLMzC2VwU+C/CbS7uRL0lWmxDITmqm7C+7F0Odmj6s9l6alZc6AELXhrnggM2CeWSXHGOdX2YtwA==",
+      "dev": true,
+      "dependencies": {
+        "agent-base": "6",
+        "debug": "4"
+      },
+      "engines": {
+        "node": ">= 6"
+      }
+    },
+    "node_modules/@yao-pkg/pkg-fetch/node_modules/wrap-ansi": {
+      "version": "7.0.0",
+      "resolved": "https://registry.npmjs.org/wrap-ansi/-/wrap-ansi-7.0.0.tgz",
+      "integrity": "sha512-YVGIj2kamLSTxw6NsZjoBxfSwsn0ycdesmc4p+Q21c5zPuZ1pl+NfxVdxPtdHvmNVOQ6XSYG4AUtyt/Fi7D16Q==",
+      "dev": true,
+      "dependencies": {
+        "ansi-styles": "^4.0.0",
+        "string-width": "^4.1.0",
+        "strip-ansi": "^6.0.0"
+      },
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/chalk/wrap-ansi?sponsor=1"
+      }
+    },
+    "node_modules/@yao-pkg/pkg-fetch/node_modules/yargs": {
+      "version": "16.2.0",
+      "resolved": "https://registry.npmjs.org/yargs/-/yargs-16.2.0.tgz",
+      "integrity": "sha512-D1mvvtDG0L5ft/jGWkLpG1+m0eQxOfaBvTNELraWj22wSVUMWxZUvYgJYcKh6jGGIkJFhH4IZPQhR4TKpc8mBw==",
+      "dev": true,
+      "dependencies": {
+        "cliui": "^7.0.2",
+        "escalade": "^3.1.1",
+        "get-caller-file": "^2.0.5",
+        "require-directory": "^2.1.1",
+        "string-width": "^4.2.0",
+        "y18n": "^5.0.5",
+        "yargs-parser": "^20.2.2"
+      },
+      "engines": {
+        "node": ">=10"
+      }
+    },
+    "node_modules/@yao-pkg/pkg-fetch/node_modules/yargs-parser": {
+      "version": "20.2.9",
+      "resolved": "https://registry.npmjs.org/yargs-parser/-/yargs-parser-20.2.9.tgz",
+      "integrity": "sha512-y11nGElTIV+CT3Zv9t7VKl+Q3hTQoT9a1Qzezhhl6Rp21gJ/IVTW7Z3y9EWXhuUBC2Shnf+DX0antecpAwSP8w==",
+      "dev": true,
+      "engines": {
+        "node": ">=10"
+      }
+    },
+    "node_modules/@yao-pkg/pkg/node_modules/@babel/generator": {
+      "version": "7.23.0",
+      "resolved": "https://registry.npmjs.org/@babel/generator/-/generator-7.23.0.tgz",
+      "integrity": "sha512-lN85QRR+5IbYrMWM6Y4pE/noaQtg4pNiqeNGX60eqOfo6gtEj6uw/JagelB8vVztSd7R6M5n1+PQkDbHbBRU4g==",
+      "dev": true,
+      "dependencies": {
+        "@babel/types": "^7.23.0",
+        "@jridgewell/gen-mapping": "^0.3.2",
+        "@jridgewell/trace-mapping": "^0.3.17",
+        "jsesc": "^2.5.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@yao-pkg/pkg/node_modules/@babel/parser": {
+      "version": "7.23.0",
+      "resolved": "https://registry.npmjs.org/@babel/parser/-/parser-7.23.0.tgz",
+      "integrity": "sha512-vvPKKdMemU85V9WE/l5wZEmImpCtLqbnTvqDS2U1fJ96KrxoW7KrXhNsNCblQlg8Ck4b85yxdTyelsMUgFUXiw==",
+      "dev": true,
+      "bin": {
+        "parser": "bin/babel-parser.js"
+      },
+      "engines": {
+        "node": ">=6.0.0"
+      }
+    },
+    "node_modules/@yao-pkg/pkg/node_modules/@babel/types": {
+      "version": "7.23.0",
+      "resolved": "https://registry.npmjs.org/@babel/types/-/types-7.23.0.tgz",
+      "integrity": "sha512-0oIyUfKoI3mSqMvsxBdclDwxXKXAUA8v/apZbc+iSyARYou1o8ZGDxbUYyLFoW2arqS2jDGqJuZvv1d/io1axg==",
+      "dev": true,
+      "dependencies": {
+        "@babel/helper-string-parser": "^7.22.5",
+        "@babel/helper-validator-identifier": "^7.22.20",
+        "to-fast-properties": "^2.0.0"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@yao-pkg/pkg/node_modules/fs-extra": {
+      "version": "9.1.0",
+      "resolved": "https://registry.npmjs.org/fs-extra/-/fs-extra-9.1.0.tgz",
+      "integrity": "sha512-hcg3ZmepS30/7BSFqRvoo3DOMQu7IjqxO5nCDt+zM9XWjb33Wg7ziNT+Qvqbuc3+gWpzO02JubVyk2G4Zvo1OQ==",
+      "dev": true,
+      "dependencies": {
+        "at-least-node": "^1.0.0",
+        "graceful-fs": "^4.2.0",
+        "jsonfile": "^6.0.1",
+        "universalify": "^2.0.0"
+      },
+      "engines": {
+        "node": ">=10"
+      }
+    },
+    "node_modules/@yao-pkg/pkg/node_modules/is-core-module": {
+      "version": "2.9.0",
+      "resolved": "https://registry.npmjs.org/is-core-module/-/is-core-module-2.9.0.tgz",
+      "integrity": "sha512-+5FPy5PnwmO3lvfMb0AsoPaBG+5KHUI0wYFXOtYPnVVVspTFUuMZNfNaNVRt3FZadstu2c8x23vykRW/NBoU6A==",
+      "dev": true,
+      "dependencies": {
+        "has": "^1.0.3"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
     "node_modules/@yarnpkg/esbuild-plugin-pnp": {
       "version": "3.0.0-rc.15",
       "resolved": "https://registry.npmjs.org/@yarnpkg/esbuild-plugin-pnp/-/esbuild-plugin-pnp-3.0.0-rc.15.tgz",
@@ -30732,39 +30927,6 @@
         "nice-napi": "^1.0.2"
       }
     },
-    "node_modules/pkg": {
-      "version": "5.8.1",
-      "resolved": "https://registry.npmjs.org/pkg/-/pkg-5.8.1.tgz",
-      "integrity": "sha512-CjBWtFStCfIiT4Bde9QpJy0KeH19jCfwZRJqHFDFXfhUklCx8JoFmMj3wgnEYIwGmZVNkhsStPHEOnrtrQhEXA==",
-      "dev": true,
-      "dependencies": {
-        "@babel/generator": "7.18.2",
-        "@babel/parser": "7.18.4",
-        "@babel/types": "7.19.0",
-        "chalk": "^4.1.2",
-        "fs-extra": "^9.1.0",
-        "globby": "^11.1.0",
-        "into-stream": "^6.0.0",
-        "is-core-module": "2.9.0",
-        "minimist": "^1.2.6",
-        "multistream": "^4.1.0",
-        "pkg-fetch": "3.4.2",
-        "prebuild-install": "7.1.1",
-        "resolve": "^1.22.0",
-        "stream-meter": "^1.0.4"
-      },
-      "bin": {
-        "pkg": "lib-es5/bin.js"
-      },
-      "peerDependencies": {
-        "node-notifier": ">=9.0.1"
-      },
-      "peerDependenciesMeta": {
-        "node-notifier": {
-          "optional": true
-        }
-      }
-    },
     "node_modules/pkg-dir": {
       "version": "5.0.0",
       "resolved": "https://registry.npmjs.org/pkg-dir/-/pkg-dir-5.0.0.tgz",
@@ -30777,108 +30939,6 @@
         "node": ">=10"
       }
     },
-    "node_modules/pkg-fetch": {
-      "version": "3.4.2",
-      "resolved": "https://registry.npmjs.org/pkg-fetch/-/pkg-fetch-3.4.2.tgz",
-      "integrity": "sha512-0+uijmzYcnhC0hStDjm/cl2VYdrmVVBpe7Q8k9YBojxmR5tG8mvR9/nooQq3QSXiQqORDVOTY3XqMEqJVIzkHA==",
-      "dev": true,
-      "dependencies": {
-        "chalk": "^4.1.2",
-        "fs-extra": "^9.1.0",
-        "https-proxy-agent": "^5.0.0",
-        "node-fetch": "^2.6.6",
-        "progress": "^2.0.3",
-        "semver": "^7.3.5",
-        "tar-fs": "^2.1.1",
-        "yargs": "^16.2.0"
-      },
-      "bin": {
-        "pkg-fetch": "lib-es5/bin.js"
-      }
-    },
-    "node_modules/pkg-fetch/node_modules/cliui": {
-      "version": "7.0.4",
-      "resolved": "https://registry.npmjs.org/cliui/-/cliui-7.0.4.tgz",
-      "integrity": "sha512-OcRE68cOsVMXp1Yvonl/fzkQOyjLSu/8bhPDfQt0e0/Eb283TKP20Fs2MqoPsr9SwA595rRCA+QMzYc9nBP+JQ==",
-      "dev": true,
-      "dependencies": {
-        "string-width": "^4.2.0",
-        "strip-ansi": "^6.0.0",
-        "wrap-ansi": "^7.0.0"
-      }
-    },
-    "node_modules/pkg-fetch/node_modules/fs-extra": {
-      "version": "9.1.0",
-      "resolved": "https://registry.npmjs.org/fs-extra/-/fs-extra-9.1.0.tgz",
-      "integrity": "sha512-hcg3ZmepS30/7BSFqRvoo3DOMQu7IjqxO5nCDt+zM9XWjb33Wg7ziNT+Qvqbuc3+gWpzO02JubVyk2G4Zvo1OQ==",
-      "dev": true,
-      "dependencies": {
-        "at-least-node": "^1.0.0",
-        "graceful-fs": "^4.2.0",
-        "jsonfile": "^6.0.1",
-        "universalify": "^2.0.0"
-      },
-      "engines": {
-        "node": ">=10"
-      }
-    },
-    "node_modules/pkg-fetch/node_modules/https-proxy-agent": {
-      "version": "5.0.1",
-      "resolved": "https://registry.npmjs.org/https-proxy-agent/-/https-proxy-agent-5.0.1.tgz",
-      "integrity": "sha512-dFcAjpTQFgoLMzC2VwU+C/CbS7uRL0lWmxDITmqm7C+7F0Odmj6s9l6alZc6AELXhrnggM2CeWSXHGOdX2YtwA==",
-      "dev": true,
-      "dependencies": {
-        "agent-base": "6",
-        "debug": "4"
-      },
-      "engines": {
-        "node": ">= 6"
-      }
-    },
-    "node_modules/pkg-fetch/node_modules/wrap-ansi": {
-      "version": "7.0.0",
-      "resolved": "https://registry.npmjs.org/wrap-ansi/-/wrap-ansi-7.0.0.tgz",
-      "integrity": "sha512-YVGIj2kamLSTxw6NsZjoBxfSwsn0ycdesmc4p+Q21c5zPuZ1pl+NfxVdxPtdHvmNVOQ6XSYG4AUtyt/Fi7D16Q==",
-      "dev": true,
-      "dependencies": {
-        "ansi-styles": "^4.0.0",
-        "string-width": "^4.1.0",
-        "strip-ansi": "^6.0.0"
-      },
-      "engines": {
-        "node": ">=10"
-      },
-      "funding": {
-        "url": "https://github.com/chalk/wrap-ansi?sponsor=1"
-      }
-    },
-    "node_modules/pkg-fetch/node_modules/yargs": {
-      "version": "16.2.0",
-      "resolved": "https://registry.npmjs.org/yargs/-/yargs-16.2.0.tgz",
-      "integrity": "sha512-D1mvvtDG0L5ft/jGWkLpG1+m0eQxOfaBvTNELraWj22wSVUMWxZUvYgJYcKh6jGGIkJFhH4IZPQhR4TKpc8mBw==",
-      "dev": true,
-      "dependencies": {
-        "cliui": "^7.0.2",
-        "escalade": "^3.1.1",
-        "get-caller-file": "^2.0.5",
-        "require-directory": "^2.1.1",
-        "string-width": "^4.2.0",
-        "y18n": "^5.0.5",
-        "yargs-parser": "^20.2.2"
-      },
-      "engines": {
-        "node": ">=10"
-      }
-    },
-    "node_modules/pkg-fetch/node_modules/yargs-parser": {
-      "version": "20.2.9",
-      "resolved": "https://registry.npmjs.org/yargs-parser/-/yargs-parser-20.2.9.tgz",
-      "integrity": "sha512-y11nGElTIV+CT3Zv9t7VKl+Q3hTQoT9a1Qzezhhl6Rp21gJ/IVTW7Z3y9EWXhuUBC2Shnf+DX0antecpAwSP8w==",
-      "dev": true,
-      "engines": {
-        "node": ">=10"
-      }
-    },
     "node_modules/pkg-up": {
       "version": "3.1.0",
       "resolved": "https://registry.npmjs.org/pkg-up/-/pkg-up-3.1.0.tgz",
@@ -30952,73 +31012,6 @@
         "node": ">=4"
       }
     },
-    "node_modules/pkg/node_modules/@babel/generator": {
-      "version": "7.18.2",
-      "resolved": "https://registry.npmjs.org/@babel/generator/-/generator-7.18.2.tgz",
-      "integrity": "sha512-W1lG5vUwFvfMd8HVXqdfbuG7RuaSrTCCD8cl8fP8wOivdbtbIg2Db3IWUcgvfxKbbn6ZBGYRW/Zk1MIwK49mgw==",
-      "dev": true,
-      "dependencies": {
-        "@babel/types": "^7.18.2",
-        "@jridgewell/gen-mapping": "^0.3.0",
-        "jsesc": "^2.5.1"
-      },
-      "engines": {
-        "node": ">=6.9.0"
-      }
-    },
-    "node_modules/pkg/node_modules/@babel/parser": {
-      "version": "7.18.4",
-      "resolved": "https://registry.npmjs.org/@babel/parser/-/parser-7.18.4.tgz",
-      "integrity": "sha512-FDge0dFazETFcxGw/EXzOkN8uJp0PC7Qbm+Pe9T+av2zlBpOgunFHkQPPn+eRuClU73JF+98D531UgayY89tow==",
-      "dev": true,
-      "bin": {
-        "parser": "bin/babel-parser.js"
-      },
-      "engines": {
-        "node": ">=6.0.0"
-      }
-    },
-    "node_modules/pkg/node_modules/@babel/types": {
-      "version": "7.19.0",
-      "resolved": "https://registry.npmjs.org/@babel/types/-/types-7.19.0.tgz",
-      "integrity": "sha512-YuGopBq3ke25BVSiS6fgF49Ul9gH1x70Bcr6bqRLjWCkcX8Hre1/5+z+IiWOIerRMSSEfGZVB9z9kyq7wVs9YA==",
-      "dev": true,
-      "dependencies": {
-        "@babel/helper-string-parser": "^7.18.10",
-        "@babel/helper-validator-identifier": "^7.18.6",
-        "to-fast-properties": "^2.0.0"
-      },
-      "engines": {
-        "node": ">=6.9.0"
-      }
-    },
-    "node_modules/pkg/node_modules/fs-extra": {
-      "version": "9.1.0",
-      "resolved": "https://registry.npmjs.org/fs-extra/-/fs-extra-9.1.0.tgz",
-      "integrity": "sha512-hcg3ZmepS30/7BSFqRvoo3DOMQu7IjqxO5nCDt+zM9XWjb33Wg7ziNT+Qvqbuc3+gWpzO02JubVyk2G4Zvo1OQ==",
-      "dev": true,
-      "dependencies": {
-        "at-least-node": "^1.0.0",
-        "graceful-fs": "^4.2.0",
-        "jsonfile": "^6.0.1",
-        "universalify": "^2.0.0"
-      },
-      "engines": {
-        "node": ">=10"
-      }
-    },
-    "node_modules/pkg/node_modules/is-core-module": {
-      "version": "2.9.0",
-      "resolved": "https://registry.npmjs.org/is-core-module/-/is-core-module-2.9.0.tgz",
-      "integrity": "sha512-+5FPy5PnwmO3lvfMb0AsoPaBG+5KHUI0wYFXOtYPnVVVspTFUuMZNfNaNVRt3FZadstu2c8x23vykRW/NBoU6A==",
-      "dev": true,
-      "dependencies": {
-        "has": "^1.0.3"
-      },
-      "funding": {
-        "url": "https://github.com/sponsors/ljharb"
-      }
-    },
     "node_modules/plist": {
       "version": "3.1.0",
       "resolved": "https://registry.npmjs.org/plist/-/plist-3.1.0.tgz",
diff --git a/package.json b/package.json
index 8a745120441..18aa77a867f 100644
--- a/package.json
+++ b/package.json
@@ -81,6 +81,7 @@
     "@typescript-eslint/eslint-plugin": "7.8.0",
     "@typescript-eslint/parser": "7.8.0",
     "@webcomponents/custom-elements": "1.6.0",
+    "@yao-pkg/pkg": "^5.11.5",
     "autoprefixer": "10.4.19",
     "base64-loader": "1.0.0",
     "chromatic": "10.9.6",
@@ -118,7 +119,6 @@
     "lint-staged": "15.2.2",
     "mini-css-extract-plugin": "2.8.1",
     "node-ipc": "9.2.1",
-    "pkg": "5.8.1",
     "postcss": "8.4.38",
     "postcss-loader": "8.1.1",
     "prettier": "3.2.2",
@@ -220,7 +220,7 @@
     "*.ts": "eslint --cache --cache-strategy content --fix"
   },
   "engines": {
-    "node": "^18.18.0",
-    "npm": "~9"
+    "node": "~20",
+    "npm": "~10"
   }
 }

From a4dd1f45441084b6343b13acf0fb1935736eb48b Mon Sep 17 00:00:00 2001
From: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
Date: Thu, 30 May 2024 13:24:40 +0200
Subject: [PATCH 036/138] [deps][PM-8493] Bump electron to 29.4.2 (#9424)

* Bump electron to 29.4.2

* Bump version in electron-builder.json

---------

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
---
 apps/desktop/electron-builder.json |  2 +-
 package-lock.json                  | 19 ++++++++++++++-----
 package.json                       |  2 +-
 3 files changed, 16 insertions(+), 7 deletions(-)

diff --git a/apps/desktop/electron-builder.json b/apps/desktop/electron-builder.json
index 960d56b0362..ef0927296a0 100644
--- a/apps/desktop/electron-builder.json
+++ b/apps/desktop/electron-builder.json
@@ -24,7 +24,7 @@
     "**/node_modules/argon2/package.json",
     "**/node_modules/argon2/lib/binding/napi-v3/argon2.node"
   ],
-  "electronVersion": "28.3.1",
+  "electronVersion": "29.4.2",
   "generateUpdatesFilesForAllChannels": true,
   "publish": {
     "provider": "generic",
diff --git a/package-lock.json b/package-lock.json
index 17eaff3e3c8..9f59c4a60f6 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -128,7 +128,7 @@
         "copy-webpack-plugin": "12.0.2",
         "cross-env": "7.0.3",
         "css-loader": "6.10.0",
-        "electron": "28.3.1",
+        "electron": "29.4.2",
         "electron-builder": "24.13.3",
         "electron-log": "5.0.1",
         "electron-reload": "2.0.0-alpha.1",
@@ -17164,14 +17164,14 @@
       }
     },
     "node_modules/electron": {
-      "version": "28.3.1",
-      "resolved": "https://registry.npmjs.org/electron/-/electron-28.3.1.tgz",
-      "integrity": "sha512-aF9fONuhVDJlctJS7YOw76ynxVAQdfIWmlhRMKits24tDcdSL0eMHUS0wWYiRfGWbQnUKB6V49Rf17o32f4/fg==",
+      "version": "29.4.2",
+      "resolved": "https://registry.npmjs.org/electron/-/electron-29.4.2.tgz",
+      "integrity": "sha512-XyIkuWQguwY8hGtLg0j5Q4Fqphdbh0ctBsKCSVzJ/R7Z2+2WN/oQ1M+zYwchmfiDgiuL3EKkrBrfPdxXYdMr+A==",
       "dev": true,
       "hasInstallScript": true,
       "dependencies": {
         "@electron/get": "^2.0.0",
-        "@types/node": "^18.11.18",
+        "@types/node": "^20.9.0",
         "extract-zip": "^2.0.1"
       },
       "bin": {
@@ -17375,6 +17375,15 @@
         "js-yaml": "bin/js-yaml.js"
       }
     },
+    "node_modules/electron/node_modules/@types/node": {
+      "version": "20.12.13",
+      "resolved": "https://registry.npmjs.org/@types/node/-/node-20.12.13.tgz",
+      "integrity": "sha512-gBGeanV41c1L171rR7wjbMiEpEI/l5XFQdLLfhr/REwpgDy/4U8y89+i8kRiLzDyZdOkXh+cRaTetUnCYutoXA==",
+      "dev": true,
+      "dependencies": {
+        "undici-types": "~5.26.4"
+      }
+    },
     "node_modules/emitter-component": {
       "version": "1.1.2",
       "resolved": "https://registry.npmjs.org/emitter-component/-/emitter-component-1.1.2.tgz",
diff --git a/package.json b/package.json
index 18aa77a867f..64499943194 100644
--- a/package.json
+++ b/package.json
@@ -89,7 +89,7 @@
     "copy-webpack-plugin": "12.0.2",
     "cross-env": "7.0.3",
     "css-loader": "6.10.0",
-    "electron": "28.3.1",
+    "electron": "29.4.2",
     "electron-builder": "24.13.3",
     "electron-log": "5.0.1",
     "electron-reload": "2.0.0-alpha.1",

From f79d1dac9239cc33ff3f3b475a0382b3a08d0969 Mon Sep 17 00:00:00 2001
From: Cesar Gonzalez <cesar.a.gonzalezcs@gmail.com>
Date: Thu, 30 May 2024 08:39:19 -0500
Subject: [PATCH 037/138] [PM-8480] Rename ambiguous Jest testing method
 (#9417)

---
 .../notification.background.spec.ts           | 100 +++++++++---------
 .../background/overlay.background.spec.ts     |  68 ++++++------
 .../autofill/content/autofill-init.spec.ts    |  54 +++++-----
 .../content/content-message-handler.spec.ts   |   6 +-
 .../src/autofill/spec/testing-utils.ts        |   4 +-
 .../offscreen-document.spec.ts                |  10 +-
 .../fido2/background/fido2.background.spec.ts |  12 +--
 7 files changed, 127 insertions(+), 127 deletions(-)

diff --git a/apps/browser/src/autofill/background/notification.background.spec.ts b/apps/browser/src/autofill/background/notification.background.spec.ts
index 45f095aee9f..5598c27dd6e 100644
--- a/apps/browser/src/autofill/background/notification.background.spec.ts
+++ b/apps/browser/src/autofill/background/notification.background.spec.ts
@@ -22,7 +22,7 @@ import { NotificationQueueMessageType } from "../enums/notification-queue-messag
 import { FormData } from "../services/abstractions/autofill.service";
 import AutofillService from "../services/autofill.service";
 import { createAutofillPageDetailsMock, createChromeTabMock } from "../spec/autofill-mocks";
-import { flushPromises, sendExtensionRuntimeMessage } from "../spec/testing-utils";
+import { flushPromises, sendMockExtensionMessage } from "../spec/testing-utils";
 
 import {
   AddChangePasswordQueueMessage,
@@ -143,7 +143,7 @@ describe("NotificationBackground", () => {
       const message: NotificationBackgroundExtensionMessage = { command: "unknown" };
       jest.spyOn(notificationBackground as any, "handleSaveCipherMessage");
 
-      sendExtensionRuntimeMessage(message);
+      sendMockExtensionMessage(message);
 
       expect(notificationBackground["handleSaveCipherMessage"]).not.toHaveBeenCalled();
     });
@@ -159,7 +159,7 @@ describe("NotificationBackground", () => {
         };
         jest.spyOn(BrowserApi, "tabSendMessageData").mockImplementation();
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(BrowserApi.tabSendMessageData).toHaveBeenCalledWith(
@@ -178,7 +178,7 @@ describe("NotificationBackground", () => {
         };
         jest.spyOn(notificationBackground as any, "handleSaveCipherMessage").mockImplementation();
 
-        sendExtensionRuntimeMessage(message);
+        sendMockExtensionMessage(message);
         await flushPromises();
 
         expect(notificationBackground["handleSaveCipherMessage"]).toHaveBeenCalledWith(
@@ -198,7 +198,7 @@ describe("NotificationBackground", () => {
         jest.spyOn(notificationBackground as any, "getFolderData");
         (firstValueFrom as jest.Mock).mockResolvedValueOnce(folderViews);
 
-        sendExtensionRuntimeMessage(message);
+        sendMockExtensionMessage(message);
         await flushPromises();
 
         expect(notificationBackground["getFolderData"]).toHaveBeenCalled();
@@ -214,7 +214,7 @@ describe("NotificationBackground", () => {
         };
         jest.spyOn(BrowserApi, "tabSendMessageData").mockImplementation();
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(BrowserApi.tabSendMessageData).toHaveBeenCalledWith(
@@ -233,7 +233,7 @@ describe("NotificationBackground", () => {
         };
         jest.spyOn(BrowserApi, "tabSendMessageData").mockImplementation();
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(BrowserApi.tabSendMessageData).toHaveBeenCalledWith(
@@ -281,7 +281,7 @@ describe("NotificationBackground", () => {
         };
         getAuthStatusSpy.mockResolvedValueOnce(AuthenticationStatus.LoggedOut);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(getAuthStatusSpy).toHaveBeenCalled();
@@ -296,7 +296,7 @@ describe("NotificationBackground", () => {
         };
         getAuthStatusSpy.mockResolvedValueOnce(AuthenticationStatus.Locked);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(getAuthStatusSpy).toHaveBeenCalled();
@@ -312,7 +312,7 @@ describe("NotificationBackground", () => {
         getAuthStatusSpy.mockResolvedValueOnce(AuthenticationStatus.Locked);
         getEnableAddedLoginPromptSpy.mockReturnValueOnce(false);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(getAuthStatusSpy).toHaveBeenCalled();
@@ -331,7 +331,7 @@ describe("NotificationBackground", () => {
         getEnableAddedLoginPromptSpy.mockReturnValueOnce(false);
         getAllDecryptedForUrlSpy.mockResolvedValueOnce([]);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(getAuthStatusSpy).toHaveBeenCalled();
@@ -353,7 +353,7 @@ describe("NotificationBackground", () => {
           mock<CipherView>({ login: { username: "test", password: "oldPassword" } }),
         ]);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(getAuthStatusSpy).toHaveBeenCalled();
@@ -375,7 +375,7 @@ describe("NotificationBackground", () => {
           mock<CipherView>({ login: { username: "test", password: "password" } }),
         ]);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(getAuthStatusSpy).toHaveBeenCalled();
@@ -391,7 +391,7 @@ describe("NotificationBackground", () => {
         getAuthStatusSpy.mockResolvedValueOnce(AuthenticationStatus.Locked);
         getEnableAddedLoginPromptSpy.mockReturnValueOnce(true);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(getAuthStatusSpy).toHaveBeenCalled();
@@ -411,7 +411,7 @@ describe("NotificationBackground", () => {
           mock<CipherView>({ login: { username: "anotherTestUsername", password: "password" } }),
         ]);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(getAuthStatusSpy).toHaveBeenCalled();
@@ -431,7 +431,7 @@ describe("NotificationBackground", () => {
           }),
         ]);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(pushChangePasswordToQueueSpy).toHaveBeenCalledWith(
@@ -467,7 +467,7 @@ describe("NotificationBackground", () => {
           data: { newPassword: "newPassword", currentPassword: "currentPassword", url: "" },
         };
 
-        sendExtensionRuntimeMessage(message);
+        sendMockExtensionMessage(message);
         await flushPromises();
 
         expect(pushChangePasswordToQueueSpy).not.toHaveBeenCalled();
@@ -484,7 +484,7 @@ describe("NotificationBackground", () => {
         };
         getAuthStatusSpy.mockResolvedValueOnce(AuthenticationStatus.Locked);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(getAuthStatusSpy).toHaveBeenCalled();
@@ -511,7 +511,7 @@ describe("NotificationBackground", () => {
           mock<CipherView>({ login: { username: "test", password: "password" } }),
         ]);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(getAuthStatusSpy).toHaveBeenCalled();
@@ -534,7 +534,7 @@ describe("NotificationBackground", () => {
           mock<CipherView>({ login: { username: "test2", password: "password" } }),
         ]);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(getAuthStatusSpy).toHaveBeenCalled();
@@ -559,7 +559,7 @@ describe("NotificationBackground", () => {
           }),
         ]);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(pushChangePasswordToQueueSpy).toHaveBeenCalledWith(
@@ -584,7 +584,7 @@ describe("NotificationBackground", () => {
           mock<CipherView>({ login: { username: "test2", password: "password" } }),
         ]);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(getAuthStatusSpy).toHaveBeenCalled();
@@ -608,7 +608,7 @@ describe("NotificationBackground", () => {
           }),
         ]);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(pushChangePasswordToQueueSpy).toHaveBeenCalledWith(
@@ -644,7 +644,7 @@ describe("NotificationBackground", () => {
           thirdQueueMessage,
         ];
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(removeTabFromNotificationQueueSpy).toHaveBeenCalledWith(tab);
@@ -677,7 +677,7 @@ describe("NotificationBackground", () => {
         };
         getAuthStatusSpy.mockResolvedValueOnce(AuthenticationStatus.Locked);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(getAuthStatusSpy).toHaveBeenCalled();
@@ -744,7 +744,7 @@ describe("NotificationBackground", () => {
             }),
           ];
 
-          sendExtensionRuntimeMessage(message, sender);
+          sendMockExtensionMessage(message, sender);
           await flushPromises();
 
           expect(updatePasswordSpy).not.toHaveBeenCalled();
@@ -767,7 +767,7 @@ describe("NotificationBackground", () => {
             }),
           ];
 
-          sendExtensionRuntimeMessage(message, sender);
+          sendMockExtensionMessage(message, sender);
           await flushPromises();
 
           expect(updatePasswordSpy).not.toHaveBeenCalled();
@@ -791,7 +791,7 @@ describe("NotificationBackground", () => {
             }),
           ];
 
-          sendExtensionRuntimeMessage(message, sender);
+          sendMockExtensionMessage(message, sender);
           expect(updatePasswordSpy).not.toHaveBeenCalled();
           expect(editItemSpy).not.toHaveBeenCalled();
           expect(createWithServerSpy).not.toHaveBeenCalled();
@@ -815,7 +815,7 @@ describe("NotificationBackground", () => {
           const cipherView = mock<CipherView>();
           getDecryptedCipherByIdSpy.mockResolvedValueOnce(cipherView);
 
-          sendExtensionRuntimeMessage(message, sender);
+          sendMockExtensionMessage(message, sender);
           await flushPromises();
 
           expect(editItemSpy).not.toHaveBeenCalled();
@@ -854,7 +854,7 @@ describe("NotificationBackground", () => {
           });
           getAllDecryptedForUrlSpy.mockResolvedValueOnce([cipherView]);
 
-          sendExtensionRuntimeMessage(message, sender);
+          sendMockExtensionMessage(message, sender);
           await flushPromises();
 
           expect(updatePasswordSpy).toHaveBeenCalledWith(
@@ -887,7 +887,7 @@ describe("NotificationBackground", () => {
           setAddEditCipherInfoSpy.mockResolvedValue(undefined);
           openAddEditVaultItemPopoutSpy.mockResolvedValue(undefined);
 
-          sendExtensionRuntimeMessage(message, sender);
+          sendMockExtensionMessage(message, sender);
           await flushPromises();
 
           expect(updatePasswordSpy).toHaveBeenCalledWith(
@@ -937,7 +937,7 @@ describe("NotificationBackground", () => {
           convertAddLoginQueueMessageToCipherViewSpy.mockReturnValueOnce(cipherView);
           editItemSpy.mockResolvedValueOnce(undefined);
 
-          sendExtensionRuntimeMessage(message, sender);
+          sendMockExtensionMessage(message, sender);
           await flushPromises();
 
           expect(updatePasswordSpy).not.toHaveBeenCalled();
@@ -976,7 +976,7 @@ describe("NotificationBackground", () => {
           convertAddLoginQueueMessageToCipherViewSpy.mockReturnValueOnce(cipherView);
           editItemSpy.mockResolvedValueOnce(undefined);
 
-          sendExtensionRuntimeMessage(message, sender);
+          sendMockExtensionMessage(message, sender);
           await flushPromises();
 
           expect(convertAddLoginQueueMessageToCipherViewSpy).toHaveBeenCalledWith(
@@ -1019,7 +1019,7 @@ describe("NotificationBackground", () => {
             throw new Error(errorMessage);
           });
 
-          sendExtensionRuntimeMessage(message, sender);
+          sendMockExtensionMessage(message, sender);
           await flushPromises();
 
           expect(cipherEncryptSpy).toHaveBeenCalledWith(cipherView);
@@ -1058,7 +1058,7 @@ describe("NotificationBackground", () => {
             throw new Error(errorMessage);
           });
 
-          sendExtensionRuntimeMessage(message, sender);
+          sendMockExtensionMessage(message, sender);
           await flushPromises();
 
           expect(updateWithServerSpy).toThrow(errorMessage);
@@ -1093,7 +1093,7 @@ describe("NotificationBackground", () => {
           }),
         ];
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(tabSendMessageDataSpy).not.toHaveBeenCalled();
@@ -1107,7 +1107,7 @@ describe("NotificationBackground", () => {
           mock<AddUnlockVaultQueueMessage>({ type: NotificationQueueMessageType.UnlockVault, tab }),
         ];
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(tabSendMessageDataSpy).not.toHaveBeenCalled();
@@ -1125,7 +1125,7 @@ describe("NotificationBackground", () => {
           }),
         ];
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(tabSendMessageDataSpy).not.toHaveBeenCalled();
@@ -1149,7 +1149,7 @@ describe("NotificationBackground", () => {
         jest.spyOn(cipherService, "saveNeverDomain").mockImplementation();
         jest.spyOn(BrowserApi, "tabSendMessageData").mockImplementation();
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(tabSendMessageDataSpy).toHaveBeenCalledWith(tab, "closeNotificationBar");
@@ -1171,7 +1171,7 @@ describe("NotificationBackground", () => {
           sender: "not-notificationBar",
         };
 
-        sendExtensionRuntimeMessage(message);
+        sendMockExtensionMessage(message);
         await flushPromises();
 
         expect(tabSendMessageDataSpy).not.toHaveBeenCalled();
@@ -1188,7 +1188,7 @@ describe("NotificationBackground", () => {
         const formData = [mock<FormData>()];
         jest.spyOn(autofillService, "getFormsWithPasswordFields").mockReturnValueOnce(formData);
 
-        sendExtensionRuntimeMessage(message);
+        sendMockExtensionMessage(message);
         await flushPromises();
 
         expect(tabSendMessageDataSpy).toHaveBeenCalledWith(
@@ -1222,7 +1222,7 @@ describe("NotificationBackground", () => {
           data: { skipNotification: true },
         };
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(getAuthStatusSpy).not.toHaveBeenCalled();
@@ -1237,7 +1237,7 @@ describe("NotificationBackground", () => {
         };
         getAuthStatusSpy.mockResolvedValueOnce(AuthenticationStatus.LoggedOut);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(getAuthStatusSpy).toHaveBeenCalled();
@@ -1253,7 +1253,7 @@ describe("NotificationBackground", () => {
         getAuthStatusSpy.mockResolvedValueOnce(AuthenticationStatus.Locked);
         notificationBackground["notificationQueue"] = [mock<AddLoginQueueMessage>()];
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(pushUnlockVaultToQueueSpy).not.toHaveBeenCalled();
@@ -1267,7 +1267,7 @@ describe("NotificationBackground", () => {
         };
         getAuthStatusSpy.mockResolvedValueOnce(AuthenticationStatus.Locked);
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(pushUnlockVaultToQueueSpy).toHaveBeenCalledWith("example.com", sender.tab);
@@ -1292,7 +1292,7 @@ describe("NotificationBackground", () => {
         };
         notificationBackground["notificationQueue"] = [];
 
-        sendExtensionRuntimeMessage(message);
+        sendMockExtensionMessage(message);
         await flushPromises();
 
         expect(doNotificationQueueCheckSpy).not.toHaveBeenCalled();
@@ -1309,7 +1309,7 @@ describe("NotificationBackground", () => {
           mock<AddLoginQueueMessage>({ tab: createChromeTabMock({ id: 2 }) }),
         ];
 
-        sendExtensionRuntimeMessage(message, sender);
+        sendMockExtensionMessage(message, sender);
         await flushPromises();
 
         expect(doNotificationQueueCheckSpy).toHaveBeenCalledWith(tab);
@@ -1325,7 +1325,7 @@ describe("NotificationBackground", () => {
         ];
         getTabFromCurrentWindowSpy.mockResolvedValueOnce(currenTab);
 
-        sendExtensionRuntimeMessage(message, mock<chrome.runtime.MessageSender>({ tab: null }));
+        sendMockExtensionMessage(message, mock<chrome.runtime.MessageSender>({ tab: null }));
         await flushPromises();
 
         expect(getTabFromCurrentWindowSpy).toHaveBeenCalledWith();
@@ -1340,7 +1340,7 @@ describe("NotificationBackground", () => {
         };
         const openUnlockWindowSpy = jest.spyOn(notificationBackground as any, "openUnlockPopout");
 
-        sendExtensionRuntimeMessage(message);
+        sendMockExtensionMessage(message);
         await flushPromises();
 
         expect(openUnlockWindowSpy).toHaveBeenCalled();
@@ -1363,7 +1363,7 @@ describe("NotificationBackground", () => {
           .spyOn(environmentService as any, "environment$", "get")
           .mockReturnValue(new BehaviorSubject(env).asObservable());
 
-        sendExtensionRuntimeMessage(message);
+        sendMockExtensionMessage(message);
         await flushPromises();
 
         expect(environmentServiceSpy).toHaveBeenCalled();
diff --git a/apps/browser/src/autofill/background/overlay.background.spec.ts b/apps/browser/src/autofill/background/overlay.background.spec.ts
index 05d63b21d19..c469eb7dbbc 100644
--- a/apps/browser/src/autofill/background/overlay.background.spec.ts
+++ b/apps/browser/src/autofill/background/overlay.background.spec.ts
@@ -43,7 +43,7 @@ import {
   createPageDetailMock,
   createPortSpyMock,
 } from "../spec/autofill-mocks";
-import { flushPromises, sendExtensionRuntimeMessage, sendPortMessage } from "../spec/testing-utils";
+import { flushPromises, sendMockExtensionMessage, sendPortMessage } from "../spec/testing-utils";
 import {
   AutofillOverlayElement,
   AutofillOverlayPort,
@@ -550,7 +550,7 @@ describe("OverlayBackground", () => {
           jest.spyOn(BrowserApi, "getTabFromCurrentWindowId").mockResolvedValueOnce(sender.tab);
           jest.spyOn(BrowserApi, "tabSendMessageData").mockImplementation();
 
-          sendExtensionRuntimeMessage({ command: "openAutofillOverlay" });
+          sendMockExtensionMessage({ command: "openAutofillOverlay" });
           await flushPromises();
 
           expect(BrowserApi.tabSendMessageData).toHaveBeenCalledWith(
@@ -576,9 +576,9 @@ describe("OverlayBackground", () => {
           overlayBackground["expiredPorts"] = [port1, port2];
           const sender = mock<chrome.runtime.MessageSender>({ tab: { id: 1 } });
           const focusedFieldData = createFocusedFieldDataMock({ tabId: 2 });
-          sendExtensionRuntimeMessage({ command: "updateFocusedFieldData", focusedFieldData });
+          sendMockExtensionMessage({ command: "updateFocusedFieldData", focusedFieldData });
 
-          sendExtensionRuntimeMessage(
+          sendMockExtensionMessage(
             {
               command: "autofillOverlayElementClosed",
               overlayElement: AutofillOverlayElement.Button,
@@ -591,7 +591,7 @@ describe("OverlayBackground", () => {
         });
 
         it("disconnects the button element port", () => {
-          sendExtensionRuntimeMessage({
+          sendMockExtensionMessage({
             command: "autofillOverlayElementClosed",
             overlayElement: AutofillOverlayElement.Button,
           });
@@ -601,7 +601,7 @@ describe("OverlayBackground", () => {
         });
 
         it("disconnects the list element port", () => {
-          sendExtensionRuntimeMessage({
+          sendMockExtensionMessage({
             command: "autofillOverlayElementClosed",
             overlayElement: AutofillOverlayElement.List,
           });
@@ -622,7 +622,7 @@ describe("OverlayBackground", () => {
         });
 
         it("will not open the add edit popout window if the message does not have a login cipher provided", () => {
-          sendExtensionRuntimeMessage({ command: "autofillOverlayAddNewVaultItem" }, sender);
+          sendMockExtensionMessage({ command: "autofillOverlayAddNewVaultItem" }, sender);
 
           expect(overlayBackground["cipherService"].setAddEditCipherInfo).not.toHaveBeenCalled();
           expect(overlayBackground["openAddEditVaultItemPopout"]).not.toHaveBeenCalled();
@@ -631,7 +631,7 @@ describe("OverlayBackground", () => {
         it("will open the add edit popout window after creating a new cipher", async () => {
           jest.spyOn(BrowserApi, "sendMessage");
 
-          sendExtensionRuntimeMessage(
+          sendMockExtensionMessage(
             {
               command: "autofillOverlayAddNewVaultItem",
               login: {
@@ -661,7 +661,7 @@ describe("OverlayBackground", () => {
         });
 
         it("will set the overlayVisibility property", async () => {
-          sendExtensionRuntimeMessage({ command: "getAutofillOverlayVisibility" });
+          sendMockExtensionMessage({ command: "getAutofillOverlayVisibility" });
           await flushPromises();
 
           expect(await overlayBackground["getOverlayVisibility"]()).toBe(
@@ -672,7 +672,7 @@ describe("OverlayBackground", () => {
         it("returns the overlayVisibility property", async () => {
           const sendMessageSpy = jest.fn();
 
-          sendExtensionRuntimeMessage(
+          sendMockExtensionMessage(
             { command: "getAutofillOverlayVisibility" },
             undefined,
             sendMessageSpy,
@@ -689,7 +689,7 @@ describe("OverlayBackground", () => {
         });
 
         it("will check if the overlay list is focused if the list port is open", () => {
-          sendExtensionRuntimeMessage({ command: "checkAutofillOverlayFocused" });
+          sendMockExtensionMessage({ command: "checkAutofillOverlayFocused" });
 
           expect(listPortSpy.postMessage).toHaveBeenCalledWith({
             command: "checkAutofillOverlayListFocused",
@@ -702,7 +702,7 @@ describe("OverlayBackground", () => {
         it("will check if the overlay button is focused if the list port is not open", () => {
           overlayBackground["overlayListPort"] = undefined;
 
-          sendExtensionRuntimeMessage({ command: "checkAutofillOverlayFocused" });
+          sendMockExtensionMessage({ command: "checkAutofillOverlayFocused" });
 
           expect(buttonPortSpy.postMessage).toHaveBeenCalledWith({
             command: "checkAutofillOverlayButtonFocused",
@@ -717,7 +717,7 @@ describe("OverlayBackground", () => {
         it("will send a `focusOverlayList` message to the overlay list port", async () => {
           await initOverlayElementPorts({ initList: true, initButton: false });
 
-          sendExtensionRuntimeMessage({ command: "focusAutofillOverlayList" });
+          sendMockExtensionMessage({ command: "focusAutofillOverlayList" });
 
           expect(listPortSpy.postMessage).toHaveBeenCalledWith({ command: "focusOverlayList" });
         });
@@ -737,7 +737,7 @@ describe("OverlayBackground", () => {
         });
 
         it("ignores updating the position if the overlay element type is not provided", () => {
-          sendExtensionRuntimeMessage({ command: "updateAutofillOverlayPosition" });
+          sendMockExtensionMessage({ command: "updateAutofillOverlayPosition" });
 
           expect(listPortSpy.postMessage).not.toHaveBeenCalledWith({
             command: "updateIframePosition",
@@ -752,9 +752,9 @@ describe("OverlayBackground", () => {
         it("skips updating the position if the most recently focused field is different than the message sender", () => {
           const sender = mock<chrome.runtime.MessageSender>({ tab: { id: 1 } });
           const focusedFieldData = createFocusedFieldDataMock({ tabId: 2 });
-          sendExtensionRuntimeMessage({ command: "updateFocusedFieldData", focusedFieldData });
+          sendMockExtensionMessage({ command: "updateFocusedFieldData", focusedFieldData });
 
-          sendExtensionRuntimeMessage({ command: "updateAutofillOverlayPosition" }, sender);
+          sendMockExtensionMessage({ command: "updateAutofillOverlayPosition" }, sender);
 
           expect(listPortSpy.postMessage).not.toHaveBeenCalledWith({
             command: "updateIframePosition",
@@ -768,9 +768,9 @@ describe("OverlayBackground", () => {
 
         it("updates the overlay button's position", () => {
           const focusedFieldData = createFocusedFieldDataMock();
-          sendExtensionRuntimeMessage({ command: "updateFocusedFieldData", focusedFieldData });
+          sendMockExtensionMessage({ command: "updateFocusedFieldData", focusedFieldData });
 
-          sendExtensionRuntimeMessage({
+          sendMockExtensionMessage({
             command: "updateAutofillOverlayPosition",
             overlayElement: AutofillOverlayElement.Button,
           });
@@ -785,9 +785,9 @@ describe("OverlayBackground", () => {
           const focusedFieldData = createFocusedFieldDataMock({
             focusedFieldRects: { top: 1, left: 2, height: 35, width: 4 },
           });
-          sendExtensionRuntimeMessage({ command: "updateFocusedFieldData", focusedFieldData });
+          sendMockExtensionMessage({ command: "updateFocusedFieldData", focusedFieldData });
 
-          sendExtensionRuntimeMessage({
+          sendMockExtensionMessage({
             command: "updateAutofillOverlayPosition",
             overlayElement: AutofillOverlayElement.Button,
           });
@@ -802,9 +802,9 @@ describe("OverlayBackground", () => {
           const focusedFieldData = createFocusedFieldDataMock({
             focusedFieldRects: { top: 1, left: 2, height: 50, width: 4 },
           });
-          sendExtensionRuntimeMessage({ command: "updateFocusedFieldData", focusedFieldData });
+          sendMockExtensionMessage({ command: "updateFocusedFieldData", focusedFieldData });
 
-          sendExtensionRuntimeMessage({
+          sendMockExtensionMessage({
             command: "updateAutofillOverlayPosition",
             overlayElement: AutofillOverlayElement.Button,
           });
@@ -819,9 +819,9 @@ describe("OverlayBackground", () => {
           const focusedFieldData = createFocusedFieldDataMock({
             focusedFieldStyles: { paddingRight: "20px", paddingLeft: "6px" },
           });
-          sendExtensionRuntimeMessage({ command: "updateFocusedFieldData", focusedFieldData });
+          sendMockExtensionMessage({ command: "updateFocusedFieldData", focusedFieldData });
 
-          sendExtensionRuntimeMessage({
+          sendMockExtensionMessage({
             command: "updateAutofillOverlayPosition",
             overlayElement: AutofillOverlayElement.Button,
           });
@@ -835,13 +835,13 @@ describe("OverlayBackground", () => {
         it("will post a message to the overlay list facilitating an update of the list's position", () => {
           const sender = mock<chrome.runtime.MessageSender>({ tab: { id: 1 } });
           const focusedFieldData = createFocusedFieldDataMock();
-          sendExtensionRuntimeMessage({ command: "updateFocusedFieldData", focusedFieldData });
+          sendMockExtensionMessage({ command: "updateFocusedFieldData", focusedFieldData });
 
           overlayBackground["updateOverlayPosition"](
             { overlayElement: AutofillOverlayElement.List },
             sender,
           );
-          sendExtensionRuntimeMessage({
+          sendMockExtensionMessage({
             command: "updateAutofillOverlayPosition",
             overlayElement: AutofillOverlayElement.List,
           });
@@ -863,7 +863,7 @@ describe("OverlayBackground", () => {
             command: "updateAutofillOverlayHidden",
           };
 
-          sendExtensionRuntimeMessage(message);
+          sendMockExtensionMessage(message);
 
           expect(buttonPortSpy.postMessage).not.toHaveBeenCalledWith(message);
           expect(listPortSpy.postMessage).not.toHaveBeenCalledWith(message);
@@ -872,7 +872,7 @@ describe("OverlayBackground", () => {
         it("posts a message to the overlay button and list with the display value", () => {
           const message = { command: "updateAutofillOverlayHidden", display: "none" };
 
-          sendExtensionRuntimeMessage(message);
+          sendMockExtensionMessage(message);
 
           expect(overlayBackground["overlayButtonPort"].postMessage).toHaveBeenCalledWith({
             command: "updateOverlayHidden",
@@ -903,7 +903,7 @@ describe("OverlayBackground", () => {
         });
 
         it("stores the page details provided by the message by the tab id of the sender", () => {
-          sendExtensionRuntimeMessage(
+          sendMockExtensionMessage(
             { command: "collectPageDetailsResponse", details: pageDetails1 },
             sender,
           );
@@ -924,7 +924,7 @@ describe("OverlayBackground", () => {
             [sender.frameId, { frameId: sender.frameId, tab: sender.tab, details: pageDetails1 }],
           ]);
 
-          sendExtensionRuntimeMessage(
+          sendMockExtensionMessage(
             { command: "collectPageDetailsResponse", details: pageDetails2 },
             secondFrameSender,
           );
@@ -967,7 +967,7 @@ describe("OverlayBackground", () => {
             },
           };
 
-          sendExtensionRuntimeMessage(message);
+          sendMockExtensionMessage(message);
           await flushPromises();
 
           expect(getAuthStatusSpy).toHaveBeenCalled();
@@ -984,7 +984,7 @@ describe("OverlayBackground", () => {
           };
           jest.spyOn(BrowserApi, "getTabFromCurrentWindowId").mockResolvedValueOnce(sender.tab);
 
-          sendExtensionRuntimeMessage(message);
+          sendMockExtensionMessage(message);
           await flushPromises();
 
           expect(getAuthStatusSpy).toHaveBeenCalled();
@@ -1007,7 +1007,7 @@ describe("OverlayBackground", () => {
           };
           jest.spyOn(overlayBackground as any, "updateOverlayCiphers").mockImplementation();
 
-          sendExtensionRuntimeMessage(message);
+          sendMockExtensionMessage(message);
 
           expect(overlayBackground["updateOverlayCiphers"]).toHaveBeenCalled();
         });
@@ -1020,7 +1020,7 @@ describe("OverlayBackground", () => {
           };
           jest.spyOn(overlayBackground as any, "updateOverlayCiphers").mockImplementation();
 
-          sendExtensionRuntimeMessage(message);
+          sendMockExtensionMessage(message);
 
           expect(overlayBackground["updateOverlayCiphers"]).toHaveBeenCalled();
         });
diff --git a/apps/browser/src/autofill/content/autofill-init.spec.ts b/apps/browser/src/autofill/content/autofill-init.spec.ts
index 13515f6de28..4ea66edb3e1 100644
--- a/apps/browser/src/autofill/content/autofill-init.spec.ts
+++ b/apps/browser/src/autofill/content/autofill-init.spec.ts
@@ -9,7 +9,7 @@ import AutofillOverlayContentService from "../services/autofill-overlay-content.
 import {
   flushPromises,
   mockQuerySelectorAllDefinedCall,
-  sendExtensionRuntimeMessage,
+  sendMockExtensionMessage,
 } from "../spec/testing-utils";
 import { RedirectFocusDirection } from "../utils/autofill-overlay.enum";
 
@@ -174,7 +174,7 @@ describe("AutofillInit", () => {
             .spyOn(autofillInit["collectAutofillContentService"], "getPageDetails")
             .mockResolvedValue(pageDetails);
 
-          sendExtensionRuntimeMessage(message, sender, sendResponse);
+          sendMockExtensionMessage(message, sender, sendResponse);
           await flushPromises();
 
           expect(chrome.runtime.sendMessage).toHaveBeenCalledWith({
@@ -200,7 +200,7 @@ describe("AutofillInit", () => {
             .spyOn(autofillInit["collectAutofillContentService"], "getPageDetails")
             .mockResolvedValue(pageDetails);
 
-          sendExtensionRuntimeMessage(
+          sendMockExtensionMessage(
             { command: "collectPageDetailsImmediately" },
             sender,
             sendResponse,
@@ -233,7 +233,7 @@ describe("AutofillInit", () => {
             pageDetailsUrl: "https://a-different-url.com",
           };
 
-          sendExtensionRuntimeMessage(message);
+          sendMockExtensionMessage(message);
           await flushPromises();
 
           expect(autofillInit["insertAutofillContentService"].fillForm).not.toHaveBeenCalledWith(
@@ -242,7 +242,7 @@ describe("AutofillInit", () => {
         });
 
         it("calls the InsertAutofillContentService to fill the form", async () => {
-          sendExtensionRuntimeMessage({
+          sendMockExtensionMessage({
             command: "fillForm",
             fillScript,
             pageDetailsUrl: window.location.href,
@@ -256,7 +256,7 @@ describe("AutofillInit", () => {
 
         it("removes the overlay when filling the form", async () => {
           const blurAndRemoveOverlaySpy = jest.spyOn(autofillInit as any, "blurAndRemoveOverlay");
-          sendExtensionRuntimeMessage({
+          sendMockExtensionMessage({
             command: "fillForm",
             fillScript,
             pageDetailsUrl: window.location.href,
@@ -273,7 +273,7 @@ describe("AutofillInit", () => {
             .spyOn(autofillInit["autofillOverlayContentService"], "focusMostRecentOverlayField")
             .mockImplementation();
 
-          sendExtensionRuntimeMessage({
+          sendMockExtensionMessage({
             command: "fillForm",
             fillScript,
             pageDetailsUrl: window.location.href,
@@ -297,7 +297,7 @@ describe("AutofillInit", () => {
             .spyOn(newAutofillInit["insertAutofillContentService"], "fillForm")
             .mockImplementation();
 
-          sendExtensionRuntimeMessage({
+          sendMockExtensionMessage({
             command: "fillForm",
             fillScript,
             pageDetailsUrl: window.location.href,
@@ -333,13 +333,13 @@ describe("AutofillInit", () => {
           const newAutofillInit = new AutofillInit(undefined);
           newAutofillInit.init();
 
-          sendExtensionRuntimeMessage(message);
+          sendMockExtensionMessage(message);
 
           expect(newAutofillInit["autofillOverlayContentService"]).toBe(undefined);
         });
 
         it("opens the autofill overlay", () => {
-          sendExtensionRuntimeMessage(message);
+          sendMockExtensionMessage(message);
 
           expect(
             autofillInit["autofillOverlayContentService"].openAutofillOverlay,
@@ -362,7 +362,7 @@ describe("AutofillInit", () => {
           newAutofillInit.init();
           jest.spyOn(newAutofillInit as any, "removeAutofillOverlay");
 
-          sendExtensionRuntimeMessage({
+          sendMockExtensionMessage({
             command: "closeAutofillOverlay",
             data: { forceCloseOverlay: false },
           });
@@ -371,7 +371,7 @@ describe("AutofillInit", () => {
         });
 
         it("removes the autofill overlay if the message flags a forced closure", () => {
-          sendExtensionRuntimeMessage({
+          sendMockExtensionMessage({
             command: "closeAutofillOverlay",
             data: { forceCloseOverlay: true },
           });
@@ -384,7 +384,7 @@ describe("AutofillInit", () => {
         it("ignores the message if a field is currently focused", () => {
           autofillInit["autofillOverlayContentService"].isFieldCurrentlyFocused = true;
 
-          sendExtensionRuntimeMessage({ command: "closeAutofillOverlay" });
+          sendMockExtensionMessage({ command: "closeAutofillOverlay" });
 
           expect(
             autofillInit["autofillOverlayContentService"].removeAutofillOverlayList,
@@ -397,7 +397,7 @@ describe("AutofillInit", () => {
         it("removes the autofill overlay list if the overlay is currently filling", () => {
           autofillInit["autofillOverlayContentService"].isCurrentlyFilling = true;
 
-          sendExtensionRuntimeMessage({ command: "closeAutofillOverlay" });
+          sendMockExtensionMessage({ command: "closeAutofillOverlay" });
 
           expect(
             autofillInit["autofillOverlayContentService"].removeAutofillOverlayList,
@@ -408,7 +408,7 @@ describe("AutofillInit", () => {
         });
 
         it("removes the entire overlay if the overlay is not currently filling", () => {
-          sendExtensionRuntimeMessage({ command: "closeAutofillOverlay" });
+          sendMockExtensionMessage({ command: "closeAutofillOverlay" });
 
           expect(
             autofillInit["autofillOverlayContentService"].removeAutofillOverlayList,
@@ -424,13 +424,13 @@ describe("AutofillInit", () => {
           const newAutofillInit = new AutofillInit(undefined);
           newAutofillInit.init();
 
-          sendExtensionRuntimeMessage({ command: "addNewVaultItemFromOverlay" });
+          sendMockExtensionMessage({ command: "addNewVaultItemFromOverlay" });
 
           expect(newAutofillInit["autofillOverlayContentService"]).toBe(undefined);
         });
 
         it("will add a new vault item", () => {
-          sendExtensionRuntimeMessage({ command: "addNewVaultItemFromOverlay" });
+          sendMockExtensionMessage({ command: "addNewVaultItemFromOverlay" });
 
           expect(autofillInit["autofillOverlayContentService"].addNewVaultItem).toHaveBeenCalled();
         });
@@ -448,13 +448,13 @@ describe("AutofillInit", () => {
           const newAutofillInit = new AutofillInit(undefined);
           newAutofillInit.init();
 
-          sendExtensionRuntimeMessage(message);
+          sendMockExtensionMessage(message);
 
           expect(newAutofillInit["autofillOverlayContentService"]).toBe(undefined);
         });
 
         it("redirects the overlay focus", () => {
-          sendExtensionRuntimeMessage(message);
+          sendMockExtensionMessage(message);
 
           expect(
             autofillInit["autofillOverlayContentService"].redirectOverlayFocusOut,
@@ -474,13 +474,13 @@ describe("AutofillInit", () => {
           const newAutofillInit = new AutofillInit(undefined);
           newAutofillInit.init();
 
-          sendExtensionRuntimeMessage(message);
+          sendMockExtensionMessage(message);
 
           expect(newAutofillInit["autofillOverlayContentService"]).toBe(undefined);
         });
 
         it("updates whether the overlay ciphers are populated", () => {
-          sendExtensionRuntimeMessage(message);
+          sendMockExtensionMessage(message);
 
           expect(autofillInit["autofillOverlayContentService"].isOverlayCiphersPopulated).toEqual(
             message.data.isOverlayCiphersPopulated,
@@ -494,7 +494,7 @@ describe("AutofillInit", () => {
           newAutofillInit.init();
           jest.spyOn(newAutofillInit as any, "removeAutofillOverlay");
 
-          sendExtensionRuntimeMessage({ command: "bgUnlockPopoutOpened" });
+          sendMockExtensionMessage({ command: "bgUnlockPopoutOpened" });
 
           expect(newAutofillInit["autofillOverlayContentService"]).toBe(undefined);
           expect(newAutofillInit["removeAutofillOverlay"]).not.toHaveBeenCalled();
@@ -504,7 +504,7 @@ describe("AutofillInit", () => {
           jest.spyOn(autofillInit["autofillOverlayContentService"], "blurMostRecentOverlayField");
           jest.spyOn(autofillInit as any, "removeAutofillOverlay");
 
-          sendExtensionRuntimeMessage({ command: "bgUnlockPopoutOpened" });
+          sendMockExtensionMessage({ command: "bgUnlockPopoutOpened" });
 
           expect(
             autofillInit["autofillOverlayContentService"].blurMostRecentOverlayField,
@@ -519,7 +519,7 @@ describe("AutofillInit", () => {
           newAutofillInit.init();
           jest.spyOn(newAutofillInit as any, "removeAutofillOverlay");
 
-          sendExtensionRuntimeMessage({ command: "bgVaultItemRepromptPopoutOpened" });
+          sendMockExtensionMessage({ command: "bgVaultItemRepromptPopoutOpened" });
 
           expect(newAutofillInit["autofillOverlayContentService"]).toBe(undefined);
           expect(newAutofillInit["removeAutofillOverlay"]).not.toHaveBeenCalled();
@@ -529,7 +529,7 @@ describe("AutofillInit", () => {
           jest.spyOn(autofillInit["autofillOverlayContentService"], "blurMostRecentOverlayField");
           jest.spyOn(autofillInit as any, "removeAutofillOverlay");
 
-          sendExtensionRuntimeMessage({ command: "bgVaultItemRepromptPopoutOpened" });
+          sendMockExtensionMessage({ command: "bgVaultItemRepromptPopoutOpened" });
 
           expect(
             autofillInit["autofillOverlayContentService"].blurMostRecentOverlayField,
@@ -545,7 +545,7 @@ describe("AutofillInit", () => {
         });
 
         it("skips attempting to update the overlay visibility if the autofillOverlayVisibility data value is not present", () => {
-          sendExtensionRuntimeMessage({
+          sendMockExtensionMessage({
             command: "updateAutofillOverlayVisibility",
             data: {},
           });
@@ -563,7 +563,7 @@ describe("AutofillInit", () => {
             },
           };
 
-          sendExtensionRuntimeMessage(message);
+          sendMockExtensionMessage(message);
 
           expect(autofillInit["autofillOverlayContentService"].autofillOverlayVisibility).toEqual(
             message.data.autofillOverlayVisibility,
diff --git a/apps/browser/src/autofill/content/content-message-handler.spec.ts b/apps/browser/src/autofill/content/content-message-handler.spec.ts
index 11880592b6a..226fcb4bd61 100644
--- a/apps/browser/src/autofill/content/content-message-handler.spec.ts
+++ b/apps/browser/src/autofill/content/content-message-handler.spec.ts
@@ -2,7 +2,7 @@ import { mock } from "jest-mock-extended";
 
 import { VaultOnboardingMessages } from "@bitwarden/common/vault/enums/vault-onboarding.enum";
 
-import { postWindowMessage, sendExtensionRuntimeMessage } from "../spec/testing-utils";
+import { postWindowMessage, sendMockExtensionMessage } from "../spec/testing-utils";
 
 describe("ContentMessageHandler", () => {
   const sendMessageSpy = jest.spyOn(chrome.runtime, "sendMessage");
@@ -92,13 +92,13 @@ describe("ContentMessageHandler", () => {
 
   describe("handled extension messages", () => {
     it("ignores the message to the extension background if it is not present in the forwardCommands list", () => {
-      sendExtensionRuntimeMessage({ command: "someOtherCommand" });
+      sendMockExtensionMessage({ command: "someOtherCommand" });
 
       expect(sendMessageSpy).not.toHaveBeenCalled();
     });
 
     it("forwards the message to the extension background if it is present in the forwardCommands list", () => {
-      sendExtensionRuntimeMessage({ command: "bgUnlockPopoutOpened" });
+      sendMockExtensionMessage({ command: "bgUnlockPopoutOpened" });
 
       expect(sendMessageSpy).toHaveBeenCalledTimes(1);
       expect(sendMessageSpy).toHaveBeenCalledWith({ command: "bgUnlockPopoutOpened" });
diff --git a/apps/browser/src/autofill/spec/testing-utils.ts b/apps/browser/src/autofill/spec/testing-utils.ts
index 6d07e6606e0..5b0db5ebd6f 100644
--- a/apps/browser/src/autofill/spec/testing-utils.ts
+++ b/apps/browser/src/autofill/spec/testing-utils.ts
@@ -15,7 +15,7 @@ function postWindowMessage(data: any, origin = "https://localhost/", source = wi
   globalThis.dispatchEvent(new MessageEvent("message", { data, origin, source }));
 }
 
-function sendExtensionRuntimeMessage(
+function sendMockExtensionMessage(
   message: any,
   sender?: chrome.runtime.MessageSender,
   sendResponse?: CallableFunction,
@@ -130,7 +130,7 @@ export {
   triggerTestFailure,
   flushPromises,
   postWindowMessage,
-  sendExtensionRuntimeMessage,
+  sendMockExtensionMessage,
   triggerRuntimeOnConnectEvent,
   sendPortMessage,
   triggerPortOnDisconnectEvent,
diff --git a/apps/browser/src/platform/offscreen-document/offscreen-document.spec.ts b/apps/browser/src/platform/offscreen-document/offscreen-document.spec.ts
index 933cd08c2ea..4065f2e46d7 100644
--- a/apps/browser/src/platform/offscreen-document/offscreen-document.spec.ts
+++ b/apps/browser/src/platform/offscreen-document/offscreen-document.spec.ts
@@ -1,4 +1,4 @@
-import { flushPromises, sendExtensionRuntimeMessage } from "../../autofill/spec/testing-utils";
+import { flushPromises, sendMockExtensionMessage } from "../../autofill/spec/testing-utils";
 import { BrowserApi } from "../browser/browser-api";
 import BrowserClipboardService from "../services/browser-clipboard.service";
 
@@ -21,7 +21,7 @@ describe("OffscreenDocument", () => {
 
   describe("extension message handlers", () => {
     it("ignores messages that do not have a handler registered with the corresponding command", () => {
-      sendExtensionRuntimeMessage({ command: "notAValidCommand" });
+      sendMockExtensionMessage({ command: "notAValidCommand" });
 
       expect(browserClipboardServiceCopySpy).not.toHaveBeenCalled();
       expect(browserClipboardServiceReadSpy).not.toHaveBeenCalled();
@@ -31,7 +31,7 @@ describe("OffscreenDocument", () => {
       const error = new Error("test error");
       browserClipboardServiceCopySpy.mockRejectedValueOnce(new Error("test error"));
 
-      sendExtensionRuntimeMessage({ command: "offscreenCopyToClipboard", text: "test" });
+      sendMockExtensionMessage({ command: "offscreenCopyToClipboard", text: "test" });
       await flushPromises();
 
       expect(browserClipboardServiceCopySpy).toHaveBeenCalled();
@@ -45,7 +45,7 @@ describe("OffscreenDocument", () => {
       it("copies the message text", async () => {
         const text = "test";
 
-        sendExtensionRuntimeMessage({ command: "offscreenCopyToClipboard", text });
+        sendMockExtensionMessage({ command: "offscreenCopyToClipboard", text });
         await flushPromises();
 
         expect(browserClipboardServiceCopySpy).toHaveBeenCalledWith(window, text);
@@ -54,7 +54,7 @@ describe("OffscreenDocument", () => {
 
     describe("handleOffscreenReadFromClipboard", () => {
       it("reads the value from the clipboard service", async () => {
-        sendExtensionRuntimeMessage({ command: "offscreenReadFromClipboard" });
+        sendMockExtensionMessage({ command: "offscreenReadFromClipboard" });
         await flushPromises();
 
         expect(browserClipboardServiceReadSpy).toHaveBeenCalledWith(window);
diff --git a/apps/browser/src/vault/fido2/background/fido2.background.spec.ts b/apps/browser/src/vault/fido2/background/fido2.background.spec.ts
index 5da51618ac5..2cf6d3011ae 100644
--- a/apps/browser/src/vault/fido2/background/fido2.background.spec.ts
+++ b/apps/browser/src/vault/fido2/background/fido2.background.spec.ts
@@ -12,7 +12,7 @@ import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault
 import { createPortSpyMock } from "../../../autofill/spec/autofill-mocks";
 import {
   flushPromises,
-  sendExtensionRuntimeMessage,
+  sendMockExtensionMessage,
   triggerPortOnDisconnectEvent,
   triggerRuntimeOnConnectEvent,
 } from "../../../autofill/spec/testing-utils";
@@ -263,7 +263,7 @@ describe("Fido2Background", () => {
     it("ignores messages that do not have a handler associated with a command within the message", () => {
       const message = mock<Fido2ExtensionMessage>({ command: "nonexistentCommand" });
 
-      sendExtensionRuntimeMessage(message);
+      sendMockExtensionMessage(message);
 
       expect(abortManagerMock.abort).not.toHaveBeenCalled();
     });
@@ -274,7 +274,7 @@ describe("Fido2Background", () => {
       const sendResponse = jest.fn();
       fido2ClientService.createCredential.mockRejectedValue(new Error("error"));
 
-      sendExtensionRuntimeMessage(message, sender, sendResponse);
+      sendMockExtensionMessage(message, sender, sendResponse);
       await flushPromises();
 
       expect(sendResponse).toHaveBeenCalledWith({ error: { message: "error" } });
@@ -287,7 +287,7 @@ describe("Fido2Background", () => {
           abortedRequestId: "123",
         });
 
-        sendExtensionRuntimeMessage(message);
+        sendMockExtensionMessage(message);
         await flushPromises();
 
         expect(abortManagerMock.abort).toHaveBeenCalledWith(message.abortedRequestId);
@@ -302,7 +302,7 @@ describe("Fido2Background", () => {
           data: mock<CreateCredentialParams>(),
         });
 
-        sendExtensionRuntimeMessage(message, senderMock);
+        sendMockExtensionMessage(message, senderMock);
         await flushPromises();
 
         expect(fido2ClientService.createCredential).toHaveBeenCalledWith(
@@ -323,7 +323,7 @@ describe("Fido2Background", () => {
           data: mock<AssertCredentialParams>(),
         });
 
-        sendExtensionRuntimeMessage(message, senderMock);
+        sendMockExtensionMessage(message, senderMock);
         await flushPromises();
 
         expect(fido2ClientService.assertCredential).toHaveBeenCalledWith(

From e29025df28767dd420033b0c994613fb35b55529 Mon Sep 17 00:00:00 2001
From: Jake Fink <jfink@bitwarden.com>
Date: Thu, 30 May 2024 12:03:17 -0400
Subject: [PATCH 038/138] [PM-5951] Migrate org invite state (#9014)

* use deep linked url for org invite instead of separate state

* remove organization invite state & fix tests

* clear login redirect for SSO JIT users since they are accepted when setting MP

* create accept org invite service and consolidate components in module

* finish switch to accept org invite service

* move logic to accept org service

* the rest of the owl

* clear org invite along with deep linked route

* pr feedback

* fix test and add error to catch null invite

* pr feedback

* clear stored invite if it doesn't match provided one
---
 .../app/auth/accept-organization.component.ts | 244 -----------------
 apps/web/src/app/auth/auth.module.ts          |   3 +-
 .../accept/accept-emergency.component.ts      |   6 +-
 .../login-decryption-options.component.ts     |  15 +-
 .../web/src/app/auth/login/login.component.ts | 105 ++++----
 .../accept-organization.component.html        |   2 +-
 .../accept-organization.component.ts          |  94 +++++++
 .../accept-organization.module.ts             |  13 +
 .../accept-organization.service.spec.ts       | 185 +++++++++++++
 .../accept-organization.service.ts            | 248 ++++++++++++++++++
 .../organization-invite.ts                    |  30 +++
 .../register-form/register-form.component.ts  |  14 +
 .../src/app/auth/set-password.component.ts    |  25 +-
 .../trial-initiation.component.spec.ts        |  69 ++---
 .../trial-initiation.component.ts             |  59 +++--
 .../src/app/auth/update-password.component.ts |  64 +----
 .../src/app/common/base.accept.component.ts   |  11 +-
 apps/web/src/app/core/router.service.ts       |   2 +-
 apps/web/src/app/oss-routing.module.ts        |   4 +-
 .../src/app/shared/loose-components.module.ts |   3 -
 .../manage/accept-provider.component.ts       |   6 +-
 .../src/auth/components/login.component.ts    |   8 +-
 .../src/auth/components/register.component.ts |  10 +-
 .../components/update-password.component.ts   |   5 +-
 .../policy/policy-api.service.abstraction.ts  |   3 +-
 .../admin-console/models/data/policy.data.ts  |   5 +
 .../services/policy/policy-api.service.ts     |   4 +-
 ...rd-reset-enrollment.service.abstraction.ts |   6 +
 .../platform/abstractions/state.service.ts    |   2 -
 .../platform/models/domain/global-state.ts    |   1 -
 .../src/platform/services/state.service.ts    |  17 --
 .../src/platform/state/state-definitions.ts   |   1 +
 32 files changed, 797 insertions(+), 467 deletions(-)
 delete mode 100644 apps/web/src/app/auth/accept-organization.component.ts
 rename apps/web/src/app/auth/{ => organization-invite}/accept-organization.component.html (97%)
 create mode 100644 apps/web/src/app/auth/organization-invite/accept-organization.component.ts
 create mode 100644 apps/web/src/app/auth/organization-invite/accept-organization.module.ts
 create mode 100644 apps/web/src/app/auth/organization-invite/accept-organization.service.spec.ts
 create mode 100644 apps/web/src/app/auth/organization-invite/accept-organization.service.ts
 create mode 100644 apps/web/src/app/auth/organization-invite/organization-invite.ts

diff --git a/apps/web/src/app/auth/accept-organization.component.ts b/apps/web/src/app/auth/accept-organization.component.ts
deleted file mode 100644
index 52e3b644940..00000000000
--- a/apps/web/src/app/auth/accept-organization.component.ts
+++ /dev/null
@@ -1,244 +0,0 @@
-import { Component } from "@angular/core";
-import { ActivatedRoute, Params, Router } from "@angular/router";
-
-import { ApiService } from "@bitwarden/common/abstractions/api.service";
-import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
-import { OrganizationUserService } from "@bitwarden/common/admin-console/abstractions/organization-user/organization-user.service";
-import {
-  OrganizationUserAcceptInitRequest,
-  OrganizationUserAcceptRequest,
-} from "@bitwarden/common/admin-console/abstractions/organization-user/requests";
-import { PolicyApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/policy/policy-api.service.abstraction";
-import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
-import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
-import { OrganizationKeysRequest } from "@bitwarden/common/admin-console/models/request/organization-keys.request";
-import { CryptoService } from "@bitwarden/common/platform/abstractions/crypto.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
-import { OrgKey } from "@bitwarden/common/types/key";
-
-import { BaseAcceptComponent } from "../common/base.accept.component";
-
-@Component({
-  selector: "app-accept-organization",
-  templateUrl: "accept-organization.component.html",
-})
-export class AcceptOrganizationComponent extends BaseAcceptComponent {
-  orgName: string;
-
-  protected requiredParameters: string[] = ["organizationId", "organizationUserId", "token"];
-
-  constructor(
-    router: Router,
-    platformUtilsService: PlatformUtilsService,
-    i18nService: I18nService,
-    route: ActivatedRoute,
-    stateService: StateService,
-    private cryptoService: CryptoService,
-    private policyApiService: PolicyApiServiceAbstraction,
-    private policyService: PolicyService,
-    private logService: LogService,
-    private organizationApiService: OrganizationApiServiceAbstraction,
-    private organizationUserService: OrganizationUserService,
-    private messagingService: MessagingService,
-    private apiService: ApiService,
-  ) {
-    super(router, platformUtilsService, i18nService, route, stateService);
-  }
-
-  async authedHandler(qParams: Params): Promise<void> {
-    const initOrganization =
-      qParams.initOrganization != null && qParams.initOrganization.toLocaleLowerCase() === "true";
-    if (initOrganization) {
-      this.actionPromise = this.acceptInitOrganizationFlow(qParams);
-    } else {
-      const needsReAuth = (await this.stateService.getOrganizationInvitation()) == null;
-      if (needsReAuth) {
-        // Accepting an org invite requires authentication from a logged out state
-        this.messagingService.send("logout", { redirect: false });
-        await this.prepareOrganizationInvitation(qParams);
-        return;
-      }
-
-      // User has already logged in and passed the Master Password policy check
-      this.actionPromise = this.acceptFlow(qParams);
-    }
-
-    await this.actionPromise;
-    await this.apiService.refreshIdentityToken();
-    await this.stateService.setOrganizationInvitation(null);
-    this.platformUtilService.showToast(
-      "success",
-      this.i18nService.t("inviteAccepted"),
-      initOrganization
-        ? this.i18nService.t("inviteInitAcceptedDesc")
-        : this.i18nService.t("inviteAcceptedDesc"),
-      { timeout: 10000 },
-    );
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    this.router.navigate(["/vault"]);
-  }
-
-  async unauthedHandler(qParams: Params): Promise<void> {
-    await this.prepareOrganizationInvitation(qParams);
-
-    // In certain scenarios, we want to accelerate the user through the accept org invite process
-    // For example, if the user has a BW account already, we want them to be taken to login instead of creation.
-    await this.accelerateInviteAcceptIfPossible(qParams);
-  }
-
-  private async acceptInitOrganizationFlow(qParams: Params): Promise<any> {
-    return this.prepareAcceptInitRequest(qParams).then((request) =>
-      this.organizationUserService.postOrganizationUserAcceptInit(
-        qParams.organizationId,
-        qParams.organizationUserId,
-        request,
-      ),
-    );
-  }
-
-  private async acceptFlow(qParams: Params): Promise<any> {
-    return this.prepareAcceptRequest(qParams).then((request) =>
-      this.organizationUserService.postOrganizationUserAccept(
-        qParams.organizationId,
-        qParams.organizationUserId,
-        request,
-      ),
-    );
-  }
-
-  private async prepareAcceptInitRequest(
-    qParams: Params,
-  ): Promise<OrganizationUserAcceptInitRequest> {
-    const request = new OrganizationUserAcceptInitRequest();
-    request.token = qParams.token;
-
-    const [encryptedOrgKey, orgKey] = await this.cryptoService.makeOrgKey<OrgKey>();
-    const [orgPublicKey, encryptedOrgPrivateKey] = await this.cryptoService.makeKeyPair(orgKey);
-    const collection = await this.cryptoService.encrypt(
-      this.i18nService.t("defaultCollection"),
-      orgKey,
-    );
-
-    request.key = encryptedOrgKey.encryptedString;
-    request.keys = new OrganizationKeysRequest(
-      orgPublicKey,
-      encryptedOrgPrivateKey.encryptedString,
-    );
-    request.collectionName = collection.encryptedString;
-
-    return request;
-  }
-
-  private async prepareAcceptRequest(qParams: Params): Promise<OrganizationUserAcceptRequest> {
-    const request = new OrganizationUserAcceptRequest();
-    request.token = qParams.token;
-
-    if (await this.performResetPasswordAutoEnroll(qParams)) {
-      const response = await this.organizationApiService.getKeys(qParams.organizationId);
-
-      if (response == null) {
-        throw new Error(this.i18nService.t("resetPasswordOrgKeysError"));
-      }
-
-      const publicKey = Utils.fromB64ToArray(response.publicKey);
-
-      // RSA Encrypt user's encKey.key with organization public key
-      const userKey = await this.cryptoService.getUserKey();
-      const encryptedKey = await this.cryptoService.rsaEncrypt(userKey.key, publicKey);
-
-      // Add reset password key to accept request
-      request.resetPasswordKey = encryptedKey.encryptedString;
-    }
-    return request;
-  }
-
-  private async performResetPasswordAutoEnroll(qParams: Params): Promise<boolean> {
-    let policyList: Policy[] = null;
-    try {
-      const policies = await this.policyApiService.getPoliciesByToken(
-        qParams.organizationId,
-        qParams.token,
-        qParams.email,
-        qParams.organizationUserId,
-      );
-      policyList = Policy.fromListResponse(policies);
-    } catch (e) {
-      this.logService.error(e);
-    }
-
-    if (policyList != null) {
-      const result = this.policyService.getResetPasswordPolicyOptions(
-        policyList,
-        qParams.organizationId,
-      );
-      // Return true if policy enabled and auto-enroll enabled
-      return result[1] && result[0].autoEnrollEnabled;
-    }
-
-    return false;
-  }
-
-  private async prepareOrganizationInvitation(qParams: Params): Promise<void> {
-    this.orgName = qParams.organizationName;
-    if (this.orgName != null) {
-      // Fix URL encoding of space issue with Angular
-      this.orgName = this.orgName.replace(/\+/g, " ");
-    }
-    await this.stateService.setOrganizationInvitation(qParams);
-  }
-
-  private async accelerateInviteAcceptIfPossible(qParams: Params): Promise<void> {
-    // Extract the query params we need to make routing acceleration decisions
-    const orgSsoIdentifier = qParams.orgSsoIdentifier;
-    const orgUserHasExistingUser = this.stringToNullOrBool(qParams.orgUserHasExistingUser);
-
-    // if orgUserHasExistingUser is null, short circuit for backwards compatibility w/ older servers
-    if (orgUserHasExistingUser == null) {
-      return;
-    }
-
-    // if user exists, send user to login
-    if (orgUserHasExistingUser) {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.router.navigate(["/login"], {
-        queryParams: { email: qParams.email },
-      });
-      return;
-    }
-
-    // no user exists; so either sign in via SSO and JIT provision one or simply register.
-
-    if (orgSsoIdentifier) {
-      // We only send sso org identifier if the org has SSO enabled and the SSO policy required.
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.router.navigate(["/sso"], {
-        queryParams: { email: qParams.email, identifier: orgSsoIdentifier },
-      });
-      return;
-    }
-
-    // if SSO is disabled OR if sso is enabled but the SSO login required policy is not enabled
-    // then send user to create account
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    this.router.navigate(["/register"], {
-      queryParams: { email: qParams.email, fromOrgInvite: true },
-    });
-    return;
-  }
-
-  private stringToNullOrBool(s: string | undefined): boolean | null {
-    if (s === undefined) {
-      return null;
-    }
-    return s.toLowerCase() === "true";
-  }
-}
diff --git a/apps/web/src/app/auth/auth.module.ts b/apps/web/src/app/auth/auth.module.ts
index 056b9f161f9..6aa671558a0 100644
--- a/apps/web/src/app/auth/auth.module.ts
+++ b/apps/web/src/app/auth/auth.module.ts
@@ -1,9 +1,10 @@
 import { NgModule } from "@angular/core";
 
+import { AcceptOrganizationInviteModule } from "./organization-invite/accept-organization.module";
 import { AuthSettingsModule } from "./settings/settings.module";
 
 @NgModule({
-  imports: [AuthSettingsModule],
+  imports: [AuthSettingsModule, AcceptOrganizationInviteModule],
   declarations: [],
   providers: [],
   exports: [AuthSettingsModule],
diff --git a/apps/web/src/app/auth/emergency-access/accept/accept-emergency.component.ts b/apps/web/src/app/auth/emergency-access/accept/accept-emergency.component.ts
index 8ff847c3a22..5a92815c91f 100644
--- a/apps/web/src/app/auth/emergency-access/accept/accept-emergency.component.ts
+++ b/apps/web/src/app/auth/emergency-access/accept/accept-emergency.component.ts
@@ -1,9 +1,9 @@
 import { Component } from "@angular/core";
 import { ActivatedRoute, Params, Router } from "@angular/router";
 
+import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
 
 import { BaseAcceptComponent } from "../../../common/base.accept.component";
 import { SharedModule } from "../../../shared";
@@ -27,10 +27,10 @@ export class AcceptEmergencyComponent extends BaseAcceptComponent {
     platformUtilsService: PlatformUtilsService,
     i18nService: I18nService,
     route: ActivatedRoute,
-    stateService: StateService,
+    authService: AuthService,
     private emergencyAccessService: EmergencyAccessService,
   ) {
-    super(router, platformUtilsService, i18nService, route, stateService);
+    super(router, platformUtilsService, i18nService, route, authService);
   }
 
   async authedHandler(qParams: Params): Promise<void> {
diff --git a/apps/web/src/app/auth/login/login-decryption-options/login-decryption-options.component.ts b/apps/web/src/app/auth/login/login-decryption-options/login-decryption-options.component.ts
index 2c97bd227f9..991fe8b5971 100644
--- a/apps/web/src/app/auth/login/login-decryption-options/login-decryption-options.component.ts
+++ b/apps/web/src/app/auth/login/login-decryption-options/login-decryption-options.component.ts
@@ -1,14 +1,27 @@
-import { Component } from "@angular/core";
+import { Component, inject } from "@angular/core";
 
 import { BaseLoginDecryptionOptionsComponent } from "@bitwarden/angular/auth/components/base-login-decryption-options.component";
+
+import { RouterService } from "../../../core";
+import { AcceptOrganizationInviteService } from "../../organization-invite/accept-organization.service";
 @Component({
   selector: "web-login-decryption-options",
   templateUrl: "login-decryption-options.component.html",
 })
 export class LoginDecryptionOptionsComponent extends BaseLoginDecryptionOptionsComponent {
+  protected routerService = inject(RouterService);
+  protected acceptOrganizationInviteService = inject(AcceptOrganizationInviteService);
+
   override async createUser(): Promise<void> {
     try {
       await super.createUser();
+
+      // Invites from TDE orgs go through here, but the invite is
+      // accepted while being enrolled in admin recovery. So we need to clear
+      // the redirect and stored org invite.
+      await this.routerService.getAndClearLoginRedirectUrl();
+      await this.acceptOrganizationInviteService.clearOrganizationInvitation();
+
       await this.router.navigate(["/vault"]);
     } catch (error) {
       this.validationService.showError(error);
diff --git a/apps/web/src/app/auth/login/login.component.ts b/apps/web/src/app/auth/login/login.component.ts
index 9f628b9389e..51d46f46a42 100644
--- a/apps/web/src/app/auth/login/login.component.ts
+++ b/apps/web/src/app/auth/login/login.component.ts
@@ -15,12 +15,10 @@ import { InternalPolicyService } from "@bitwarden/common/admin-console/abstracti
 import { PolicyData } from "@bitwarden/common/admin-console/models/data/policy.data";
 import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
 import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
-import { PolicyResponse } from "@bitwarden/common/admin-console/models/response/policy.response";
 import { DevicesApiServiceAbstraction } from "@bitwarden/common/auth/abstractions/devices-api.service.abstraction";
 import { SsoLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/sso-login.service.abstraction";
 import { WebAuthnLoginServiceAbstraction } from "@bitwarden/common/auth/abstractions/webauthn/webauthn-login.service.abstraction";
 import { AuthResult } from "@bitwarden/common/auth/models/domain/auth-result";
-import { ListResponse } from "@bitwarden/common/models/response/list.response";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
 import { CryptoFunctionService } from "@bitwarden/common/platform/abstractions/crypto-function.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
@@ -32,6 +30,8 @@ import { PasswordStrengthServiceAbstraction } from "@bitwarden/common/tools/pass
 
 import { flagEnabled } from "../../../utils/flags";
 import { RouterService, StateService } from "../../core";
+import { AcceptOrganizationInviteService } from "../organization-invite/accept-organization.service";
+import { OrganizationInvite } from "../organization-invite/organization-invite";
 
 @Component({
   selector: "app-login",
@@ -41,10 +41,11 @@ import { RouterService, StateService } from "../../core";
 export class LoginComponent extends BaseLoginComponent implements OnInit {
   showResetPasswordAutoEnrollWarning = false;
   enforcedPasswordPolicyOptions: MasterPasswordPolicyOptions;
-  policies: ListResponse<PolicyResponse>;
+  policies: Policy[];
   showPasswordless = false;
 
   constructor(
+    private acceptOrganizationInviteService: AcceptOrganizationInviteService,
     devicesApiService: DevicesApiServiceAbstraction,
     appIdService: AppIdService,
     loginStrategyService: LoginStrategyServiceAbstraction,
@@ -112,37 +113,10 @@ export class LoginComponent extends BaseLoginComponent implements OnInit {
       await super.ngOnInit();
     });
 
-    const invite = await this.stateService.getOrganizationInvitation();
-    if (invite != null) {
-      let policyList: Policy[] = null;
-      try {
-        this.policies = await this.policyApiService.getPoliciesByToken(
-          invite.organizationId,
-          invite.token,
-          invite.email,
-          invite.organizationUserId,
-        );
-        policyList = Policy.fromListResponse(this.policies);
-      } catch (e) {
-        this.logService.error(e);
-      }
-
-      if (policyList != null) {
-        const resetPasswordPolicy = this.policyService.getResetPasswordPolicyOptions(
-          policyList,
-          invite.organizationId,
-        );
-        // Set to true if policy enabled and auto-enroll enabled
-        this.showResetPasswordAutoEnrollWarning =
-          resetPasswordPolicy[1] && resetPasswordPolicy[0].autoEnrollEnabled;
-
-        this.policyService
-          .masterPasswordPolicyOptions$(policyList)
-          .pipe(takeUntil(this.destroy$))
-          .subscribe((enforcedPasswordPolicyOptions) => {
-            this.enforcedPasswordPolicyOptions = enforcedPasswordPolicyOptions;
-          });
-      }
+    // If there's an existing org invite, use it to get the password policies
+    const orgInvite = await this.acceptOrganizationInviteService.getOrganizationInvite();
+    if (orgInvite != null) {
+      await this.initPasswordPolicies(orgInvite);
     }
   }
 
@@ -166,50 +140,69 @@ export class LoginComponent extends BaseLoginComponent implements OnInit {
         )
       ) {
         const policiesData: { [id: string]: PolicyData } = {};
-        this.policies.data.map((p) => (policiesData[p.id] = new PolicyData(p)));
+        this.policies.map((p) => (policiesData[p.id] = PolicyData.fromPolicy(p)));
         await this.policyService.replace(policiesData);
-        // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-        // eslint-disable-next-line @typescript-eslint/no-floating-promises
-        this.router.navigate(["update-password"]);
+        await this.router.navigate(["update-password"]);
         return;
       }
     }
 
     this.loginEmailService.clearValues();
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    this.router.navigate([this.successRoute]);
+    await this.router.navigate([this.successRoute]);
   }
 
-  goToHint() {
+  async goToHint() {
     this.setLoginEmailValues();
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    this.router.navigateByUrl("/hint");
+    await this.router.navigateByUrl("/hint");
   }
 
-  goToRegister() {
+  async goToRegister() {
     const email = this.formGroup.value.email;
 
     if (email) {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.router.navigate(["/register"], { queryParams: { email: email } });
+      await this.router.navigate(["/register"], { queryParams: { email: email } });
       return;
     }
 
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    this.router.navigate(["/register"]);
+    await this.router.navigate(["/register"]);
   }
 
-  protected override handleMigrateEncryptionKey(result: AuthResult): boolean {
+  protected override async handleMigrateEncryptionKey(result: AuthResult): Promise<boolean> {
     if (!result.requiresEncryptionKeyMigration) {
       return false;
     }
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    this.router.navigate(["migrate-legacy-encryption"]);
+    await this.router.navigate(["migrate-legacy-encryption"]);
     return true;
   }
+
+  private async initPasswordPolicies(invite: OrganizationInvite): Promise<void> {
+    try {
+      this.policies = await this.policyApiService.getPoliciesByToken(
+        invite.organizationId,
+        invite.token,
+        invite.email,
+        invite.organizationUserId,
+      );
+    } catch (e) {
+      this.logService.error(e);
+    }
+
+    if (this.policies == null) {
+      return;
+    }
+    const resetPasswordPolicy = this.policyService.getResetPasswordPolicyOptions(
+      this.policies,
+      invite.organizationId,
+    );
+    // Set to true if policy enabled and auto-enroll enabled
+    this.showResetPasswordAutoEnrollWarning =
+      resetPasswordPolicy[1] && resetPasswordPolicy[0].autoEnrollEnabled;
+
+    this.policyService
+      .masterPasswordPolicyOptions$(this.policies)
+      .pipe(takeUntil(this.destroy$))
+      .subscribe((enforcedPasswordPolicyOptions) => {
+        this.enforcedPasswordPolicyOptions = enforcedPasswordPolicyOptions;
+      });
+  }
 }
diff --git a/apps/web/src/app/auth/accept-organization.component.html b/apps/web/src/app/auth/organization-invite/accept-organization.component.html
similarity index 97%
rename from apps/web/src/app/auth/accept-organization.component.html
rename to apps/web/src/app/auth/organization-invite/accept-organization.component.html
index 3aef47df22b..f9dd3da5ed9 100644
--- a/apps/web/src/app/auth/accept-organization.component.html
+++ b/apps/web/src/app/auth/organization-invite/accept-organization.component.html
@@ -18,7 +18,7 @@
       <div class="card d-block">
         <div class="card-body">
           <p class="text-center">
-            {{ orgName }}
+            {{ orgName$ | async }}
             <strong class="d-block mt-2">{{ email }}</strong>
           </p>
           <p>{{ "joinOrganizationDesc" | i18n }}</p>
diff --git a/apps/web/src/app/auth/organization-invite/accept-organization.component.ts b/apps/web/src/app/auth/organization-invite/accept-organization.component.ts
new file mode 100644
index 00000000000..fa5507b216f
--- /dev/null
+++ b/apps/web/src/app/auth/organization-invite/accept-organization.component.ts
@@ -0,0 +1,94 @@
+import { Component } from "@angular/core";
+import { ActivatedRoute, Params, Router } from "@angular/router";
+
+import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+
+import { BaseAcceptComponent } from "../../common/base.accept.component";
+
+import { AcceptOrganizationInviteService } from "./accept-organization.service";
+import { OrganizationInvite } from "./organization-invite";
+
+@Component({
+  templateUrl: "accept-organization.component.html",
+})
+export class AcceptOrganizationComponent extends BaseAcceptComponent {
+  orgName$ = this.acceptOrganizationInviteService.orgName$;
+  protected requiredParameters: string[] = ["organizationId", "organizationUserId", "token"];
+
+  constructor(
+    router: Router,
+    platformUtilsService: PlatformUtilsService,
+    i18nService: I18nService,
+    route: ActivatedRoute,
+    authService: AuthService,
+    private acceptOrganizationInviteService: AcceptOrganizationInviteService,
+  ) {
+    super(router, platformUtilsService, i18nService, route, authService);
+  }
+
+  async authedHandler(qParams: Params): Promise<void> {
+    const invite = OrganizationInvite.fromParams(qParams);
+    const success = await this.acceptOrganizationInviteService.validateAndAcceptInvite(invite);
+
+    if (!success) {
+      return;
+    }
+
+    this.platformUtilService.showToast(
+      "success",
+      this.i18nService.t("inviteAccepted"),
+      invite.initOrganization
+        ? this.i18nService.t("inviteInitAcceptedDesc")
+        : this.i18nService.t("inviteAcceptedDesc"),
+      { timeout: 10000 },
+    );
+
+    await this.router.navigate(["/vault"]);
+  }
+
+  async unauthedHandler(qParams: Params): Promise<void> {
+    const invite = OrganizationInvite.fromParams(qParams);
+    await this.acceptOrganizationInviteService.setOrganizationInvitation(invite);
+    await this.accelerateInviteAcceptIfPossible(invite);
+  }
+
+  /**
+   * In certain scenarios, we want to accelerate the user through the accept org invite process
+   * For example, if the user has a BW account already, we want them to be taken to login instead of creation.
+   */
+  private async accelerateInviteAcceptIfPossible(invite: OrganizationInvite): Promise<void> {
+    // if orgUserHasExistingUser is null, we can't determine the user's status
+    // so we don't want to accelerate the process
+    if (invite.orgUserHasExistingUser == null) {
+      return;
+    }
+
+    // if user exists, send user to login
+    if (invite.orgUserHasExistingUser) {
+      await this.router.navigate(["/login"], {
+        queryParams: { email: invite.email },
+      });
+      return;
+    }
+
+    if (invite.orgSsoIdentifier) {
+      // We only send sso org identifier if the org has SSO enabled and the SSO policy required.
+      // Will JIT provision the user.
+      // Note: If the organization has Admin Recovery enabled, the user will be accepted into the org
+      // upon enrollment. The user should not be returned here.
+      await this.router.navigate(["/sso"], {
+        queryParams: { email: invite.email, identifier: invite.orgSsoIdentifier },
+      });
+      return;
+    }
+
+    // if SSO is disabled OR if sso is enabled but the SSO login required policy is not enabled
+    // then send user to create account
+    await this.router.navigate(["/register"], {
+      queryParams: { email: invite.email, fromOrgInvite: true },
+    });
+    return;
+  }
+}
diff --git a/apps/web/src/app/auth/organization-invite/accept-organization.module.ts b/apps/web/src/app/auth/organization-invite/accept-organization.module.ts
new file mode 100644
index 00000000000..3dc0e144891
--- /dev/null
+++ b/apps/web/src/app/auth/organization-invite/accept-organization.module.ts
@@ -0,0 +1,13 @@
+import { NgModule } from "@angular/core";
+
+import { SharedModule } from "../../shared";
+
+import { AcceptOrganizationComponent } from "./accept-organization.component";
+import { AcceptOrganizationInviteService } from "./accept-organization.service";
+
+@NgModule({
+  declarations: [AcceptOrganizationComponent],
+  imports: [SharedModule],
+  providers: [AcceptOrganizationInviteService],
+})
+export class AcceptOrganizationInviteModule {}
diff --git a/apps/web/src/app/auth/organization-invite/accept-organization.service.spec.ts b/apps/web/src/app/auth/organization-invite/accept-organization.service.spec.ts
new file mode 100644
index 00000000000..97a17a5997f
--- /dev/null
+++ b/apps/web/src/app/auth/organization-invite/accept-organization.service.spec.ts
@@ -0,0 +1,185 @@
+import { FakeGlobalStateProvider } from "@bitwarden/common/../spec/fake-state-provider";
+import { MockProxy, mock } from "jest-mock-extended";
+
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
+import { OrganizationUserService } from "@bitwarden/common/admin-console/abstractions/organization-user/organization-user.service";
+import { PolicyApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/policy/policy-api.service.abstraction";
+import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
+import { PolicyType } from "@bitwarden/common/admin-console/enums";
+import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
+import { ResetPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/reset-password-policy-options";
+import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
+import { CryptoService } from "@bitwarden/common/platform/abstractions/crypto.service";
+import { EncryptService } from "@bitwarden/common/platform/abstractions/encrypt.service";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
+import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { FakeGlobalState } from "@bitwarden/common/spec/fake-state";
+import { OrgKey } from "@bitwarden/common/types/key";
+
+import { I18nService } from "../../core/i18n.service";
+
+import {
+  AcceptOrganizationInviteService,
+  ORGANIZATION_INVITE,
+} from "./accept-organization.service";
+import { OrganizationInvite } from "./organization-invite";
+
+describe("AcceptOrganizationInviteService", () => {
+  let sut: AcceptOrganizationInviteService;
+  let apiService: MockProxy<ApiService>;
+  let authService: MockProxy<AuthService>;
+  let cryptoService: MockProxy<CryptoService>;
+  let encryptService: MockProxy<EncryptService>;
+  let policyApiService: MockProxy<PolicyApiServiceAbstraction>;
+  let policyService: MockProxy<PolicyService>;
+  let logService: MockProxy<LogService>;
+  let organizationApiService: MockProxy<OrganizationApiServiceAbstraction>;
+  let organizationUserService: MockProxy<OrganizationUserService>;
+  let i18nService: MockProxy<I18nService>;
+  let globalStateProvider: FakeGlobalStateProvider;
+  let globalState: FakeGlobalState<OrganizationInvite>;
+
+  beforeEach(() => {
+    apiService = mock();
+    authService = mock();
+    cryptoService = mock();
+    encryptService = mock();
+    policyApiService = mock();
+    policyService = mock();
+    logService = mock();
+    organizationApiService = mock();
+    organizationUserService = mock();
+    i18nService = mock();
+    globalStateProvider = new FakeGlobalStateProvider();
+    globalState = globalStateProvider.getFake(ORGANIZATION_INVITE);
+
+    sut = new AcceptOrganizationInviteService(
+      apiService,
+      authService,
+      cryptoService,
+      encryptService,
+      policyApiService,
+      policyService,
+      logService,
+      organizationApiService,
+      organizationUserService,
+      i18nService,
+      globalStateProvider,
+    );
+  });
+
+  describe("validateAndAcceptInvite", () => {
+    it("initializes an organization when given an invite where initOrganization is true", async () => {
+      cryptoService.makeOrgKey.mockResolvedValue([
+        { encryptedString: "string" } as EncString,
+        "orgPrivateKey" as unknown as OrgKey,
+      ]);
+      cryptoService.makeKeyPair.mockResolvedValue([
+        "orgPublicKey",
+        { encryptedString: "string" } as EncString,
+      ]);
+      encryptService.encrypt.mockResolvedValue({ encryptedString: "string" } as EncString);
+      const invite = createOrgInvite({ initOrganization: true });
+
+      const result = await sut.validateAndAcceptInvite(invite);
+
+      expect(result).toBe(true);
+      expect(organizationUserService.postOrganizationUserAcceptInit).toHaveBeenCalled();
+      expect(apiService.refreshIdentityToken).toHaveBeenCalled();
+      expect(globalState.nextMock).toHaveBeenCalledWith(null);
+      expect(organizationUserService.postOrganizationUserAccept).not.toHaveBeenCalled();
+      expect(authService.logOut).not.toHaveBeenCalled();
+    });
+
+    it("logs out the user and stores the invite when a master password policy check is required", async () => {
+      const invite = createOrgInvite();
+      policyApiService.getPoliciesByToken.mockResolvedValue([
+        {
+          type: PolicyType.MasterPassword,
+          enabled: true,
+        } as Policy,
+      ]);
+
+      const result = await sut.validateAndAcceptInvite(invite);
+
+      expect(result).toBe(false);
+      expect(authService.logOut).toHaveBeenCalled();
+      expect(globalState.nextMock).toHaveBeenCalledWith(invite);
+    });
+
+    it("clears the stored invite when a master password policy check is required but the stored invite doesn't match the provided one", async () => {
+      const storedInvite = createOrgInvite({ email: "wrongemail@example.com" });
+      const providedInvite = createOrgInvite();
+      await globalState.update(() => storedInvite);
+      policyApiService.getPoliciesByToken.mockResolvedValue([
+        {
+          type: PolicyType.MasterPassword,
+          enabled: true,
+        } as Policy,
+      ]);
+
+      const result = await sut.validateAndAcceptInvite(providedInvite);
+
+      expect(result).toBe(false);
+      expect(authService.logOut).toHaveBeenCalled();
+      expect(globalState.nextMock).toHaveBeenCalledWith(providedInvite);
+    });
+
+    it("accepts the invitation request when the organization doesn't have a master password policy", async () => {
+      const invite = createOrgInvite();
+      policyApiService.getPoliciesByToken.mockResolvedValue([]);
+
+      const result = await sut.validateAndAcceptInvite(invite);
+
+      expect(result).toBe(true);
+      expect(organizationUserService.postOrganizationUserAccept).toHaveBeenCalled();
+      expect(apiService.refreshIdentityToken).toHaveBeenCalled();
+      expect(globalState.nextMock).toHaveBeenCalledWith(null);
+      expect(organizationUserService.postOrganizationUserAcceptInit).not.toHaveBeenCalled();
+      expect(authService.logOut).not.toHaveBeenCalled();
+    });
+
+    it("accepts the invitation request when the org has a master password policy, but the user has already passed it", async () => {
+      const invite = createOrgInvite();
+      policyApiService.getPoliciesByToken.mockResolvedValue([
+        {
+          type: PolicyType.MasterPassword,
+          enabled: true,
+        } as Policy,
+      ]);
+      // an existing invite means the user has already passed the master password policy
+      await globalState.update(() => invite);
+
+      policyService.getResetPasswordPolicyOptions.mockReturnValue([
+        {
+          autoEnrollEnabled: false,
+        } as ResetPasswordPolicyOptions,
+        false,
+      ]);
+
+      const result = await sut.validateAndAcceptInvite(invite);
+
+      expect(result).toBe(true);
+      expect(organizationUserService.postOrganizationUserAccept).toHaveBeenCalled();
+      expect(organizationUserService.postOrganizationUserAcceptInit).not.toHaveBeenCalled();
+      expect(authService.logOut).not.toHaveBeenCalled();
+    });
+  });
+});
+
+function createOrgInvite(custom: Partial<OrganizationInvite> = {}): OrganizationInvite {
+  return Object.assign(
+    {
+      email: "user@example.com",
+      initOrganization: false,
+      orgSsoIdentifier: null,
+      orgUserHasExistingUser: false,
+      organizationId: "organizationId",
+      organizationName: "organizationName",
+      organizationUserId: "organizationUserId",
+      token: "token",
+    },
+    custom,
+  );
+}
diff --git a/apps/web/src/app/auth/organization-invite/accept-organization.service.ts b/apps/web/src/app/auth/organization-invite/accept-organization.service.ts
new file mode 100644
index 00000000000..e43023c37d7
--- /dev/null
+++ b/apps/web/src/app/auth/organization-invite/accept-organization.service.ts
@@ -0,0 +1,248 @@
+import { Injectable } from "@angular/core";
+import { BehaviorSubject, firstValueFrom, map } from "rxjs";
+
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
+import { OrganizationUserService } from "@bitwarden/common/admin-console/abstractions/organization-user/organization-user.service";
+import {
+  OrganizationUserAcceptRequest,
+  OrganizationUserAcceptInitRequest,
+} from "@bitwarden/common/admin-console/abstractions/organization-user/requests";
+import { PolicyApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/policy/policy-api.service.abstraction";
+import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
+import { PolicyType } from "@bitwarden/common/admin-console/enums";
+import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
+import { OrganizationKeysRequest } from "@bitwarden/common/admin-console/models/request/organization-keys.request";
+import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
+import { CryptoService } from "@bitwarden/common/platform/abstractions/crypto.service";
+import { EncryptService } from "@bitwarden/common/platform/abstractions/encrypt.service";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
+import {
+  GlobalState,
+  GlobalStateProvider,
+  KeyDefinition,
+  ORGANIZATION_INVITE_DISK,
+} from "@bitwarden/common/platform/state";
+import { OrgKey } from "@bitwarden/common/types/key";
+
+import { OrganizationInvite } from "./organization-invite";
+
+// We're storing the organization invite for 2 reasons:
+// 1. If the org requires a MP policy check, we need to keep track that the user has already been redirected when they return.
+// 2. The MP policy check happens on login/register flows, we need to store the token to retrieve the policies then.
+export const ORGANIZATION_INVITE = new KeyDefinition<OrganizationInvite>(
+  ORGANIZATION_INVITE_DISK,
+  "organizationInvite",
+  {
+    deserializer: (invite) => OrganizationInvite.fromJSON(invite),
+  },
+);
+
+@Injectable()
+export class AcceptOrganizationInviteService {
+  private organizationInvitationState: GlobalState<OrganizationInvite>;
+  private orgNameSubject: BehaviorSubject<string> = new BehaviorSubject<string>(null);
+  private policyCache: Policy[];
+
+  // Fix URL encoding of space issue with Angular
+  orgName$ = this.orgNameSubject.pipe(map((orgName) => orgName.replace(/\+/g, " ")));
+
+  constructor(
+    private readonly apiService: ApiService,
+    private readonly authService: AuthService,
+    private readonly cryptoService: CryptoService,
+    private readonly encryptService: EncryptService,
+    private readonly policyApiService: PolicyApiServiceAbstraction,
+    private readonly policyService: PolicyService,
+    private readonly logService: LogService,
+    private readonly organizationApiService: OrganizationApiServiceAbstraction,
+    private readonly organizationUserService: OrganizationUserService,
+    private readonly i18nService: I18nService,
+    private readonly globalStateProvider: GlobalStateProvider,
+  ) {
+    this.organizationInvitationState = this.globalStateProvider.get(ORGANIZATION_INVITE);
+  }
+
+  /** Returns the currently stored organization invite */
+  async getOrganizationInvite(): Promise<OrganizationInvite> {
+    return await firstValueFrom(this.organizationInvitationState.state$);
+  }
+
+  /**
+   * Stores a new organization invite
+   * @param invite an organization invite
+   * @throws if the invite is nullish
+   */
+  async setOrganizationInvitation(invite: OrganizationInvite): Promise<void> {
+    if (invite == null) {
+      throw new Error("Invite cannot be null. Use clearOrganizationInvitation instead.");
+    }
+    await this.organizationInvitationState.update(() => invite);
+  }
+
+  /** Clears the currently stored organization invite */
+  async clearOrganizationInvitation(): Promise<void> {
+    await this.organizationInvitationState.update(() => null);
+  }
+
+  /**
+   * Validates and accepts the organization invitation if possible.
+   * Note: Users might need to pass a MP policy check before accepting an invite to an existing organization. If the user
+   * has not passed this check, they will be logged out and the invite will be stored for later use.
+   * @param invite an organization invite
+   * @returns a promise that resolves a boolean indicating if the invite was accepted.
+   */
+  async validateAndAcceptInvite(invite: OrganizationInvite): Promise<boolean> {
+    if (invite == null) {
+      throw new Error("Invite cannot be null.");
+    }
+
+    // Creation of a new org
+    if (invite.initOrganization) {
+      await this.acceptAndInitOrganization(invite);
+      return true;
+    }
+
+    // Accepting an org invite from existing org
+    if (await this.masterPasswordPolicyCheckRequired(invite)) {
+      await this.setOrganizationInvitation(invite);
+      this.authService.logOut(() => {
+        /* Do nothing */
+      });
+      return false;
+    }
+
+    // We know the user has already logged in and passed a MP policy check
+    await this.accept(invite);
+    return true;
+  }
+
+  private async acceptAndInitOrganization(invite: OrganizationInvite): Promise<void> {
+    await this.prepareAcceptAndInitRequest(invite).then((request) =>
+      this.organizationUserService.postOrganizationUserAcceptInit(
+        invite.organizationId,
+        invite.organizationUserId,
+        request,
+      ),
+    );
+    await this.apiService.refreshIdentityToken();
+    await this.clearOrganizationInvitation();
+  }
+
+  private async prepareAcceptAndInitRequest(
+    invite: OrganizationInvite,
+  ): Promise<OrganizationUserAcceptInitRequest> {
+    const request = new OrganizationUserAcceptInitRequest();
+    request.token = invite.token;
+
+    const [encryptedOrgKey, orgKey] = await this.cryptoService.makeOrgKey<OrgKey>();
+    const [orgPublicKey, encryptedOrgPrivateKey] = await this.cryptoService.makeKeyPair(orgKey);
+    const collection = await this.encryptService.encrypt(
+      this.i18nService.t("defaultCollection"),
+      orgKey,
+    );
+
+    request.key = encryptedOrgKey.encryptedString;
+    request.keys = new OrganizationKeysRequest(
+      orgPublicKey,
+      encryptedOrgPrivateKey.encryptedString,
+    );
+    request.collectionName = collection.encryptedString;
+
+    return request;
+  }
+
+  private async accept(invite: OrganizationInvite): Promise<void> {
+    await this.prepareAcceptRequest(invite).then((request) =>
+      this.organizationUserService.postOrganizationUserAccept(
+        invite.organizationId,
+        invite.organizationUserId,
+        request,
+      ),
+    );
+
+    await this.apiService.refreshIdentityToken();
+    await this.clearOrganizationInvitation();
+  }
+
+  private async prepareAcceptRequest(
+    invite: OrganizationInvite,
+  ): Promise<OrganizationUserAcceptRequest> {
+    const request = new OrganizationUserAcceptRequest();
+    request.token = invite.token;
+
+    if (await this.resetPasswordEnrollRequired(invite)) {
+      const response = await this.organizationApiService.getKeys(invite.organizationId);
+
+      if (response == null) {
+        throw new Error(this.i18nService.t("resetPasswordOrgKeysError"));
+      }
+
+      const publicKey = Utils.fromB64ToArray(response.publicKey);
+
+      // RSA Encrypt user's encKey.key with organization public key
+      const userKey = await this.cryptoService.getUserKey();
+      const encryptedKey = await this.cryptoService.rsaEncrypt(userKey.key, publicKey);
+
+      // Add reset password key to accept request
+      request.resetPasswordKey = encryptedKey.encryptedString;
+    }
+    return request;
+  }
+
+  private async resetPasswordEnrollRequired(invite: OrganizationInvite): Promise<boolean> {
+    const policies = await this.getPolicies(invite);
+
+    if (policies == null || policies.length === 0) {
+      return false;
+    }
+
+    const result = this.policyService.getResetPasswordPolicyOptions(
+      policies,
+      invite.organizationId,
+    );
+    // Return true if policy enabled and auto-enroll enabled
+    return result[1] && result[0].autoEnrollEnabled;
+  }
+
+  private async masterPasswordPolicyCheckRequired(invite: OrganizationInvite): Promise<boolean> {
+    const policies = await this.getPolicies(invite);
+
+    if (policies == null || policies.length === 0) {
+      return false;
+    }
+    const hasMasterPasswordPolicy = policies.some(
+      (p) => p.type === PolicyType.MasterPassword && p.enabled,
+    );
+
+    let storedInvite = await this.getOrganizationInvite();
+    if (storedInvite?.email !== invite.email) {
+      // clear stored invites if the email doesn't match
+      await this.clearOrganizationInvitation();
+      storedInvite = null;
+    }
+    // if we don't have an org invite stored, we know the user hasn't been redirected yet to check the MP policy
+    const hasNotCheckedMasterPasswordYet = storedInvite == null;
+    return hasMasterPasswordPolicy && hasNotCheckedMasterPasswordYet;
+  }
+
+  private async getPolicies(invite: OrganizationInvite): Promise<Policy[] | null> {
+    // if policies are not cached, fetch them
+    if (this.policyCache == null) {
+      try {
+        this.policyCache = await this.policyApiService.getPoliciesByToken(
+          invite.organizationId,
+          invite.token,
+          invite.email,
+          invite.organizationUserId,
+        );
+      } catch (e) {
+        this.logService.error(e);
+      }
+    }
+
+    return this.policyCache;
+  }
+}
diff --git a/apps/web/src/app/auth/organization-invite/organization-invite.ts b/apps/web/src/app/auth/organization-invite/organization-invite.ts
new file mode 100644
index 00000000000..9a0bbf83348
--- /dev/null
+++ b/apps/web/src/app/auth/organization-invite/organization-invite.ts
@@ -0,0 +1,30 @@
+import { Params } from "@angular/router";
+import { Jsonify } from "type-fest";
+
+export class OrganizationInvite {
+  email: string;
+  initOrganization: boolean;
+  orgSsoIdentifier: string;
+  orgUserHasExistingUser: boolean;
+  organizationId: string;
+  organizationName: string;
+  organizationUserId: string;
+  token: string;
+
+  static fromJSON(json: Jsonify<OrganizationInvite>) {
+    return Object.assign(new OrganizationInvite(), json);
+  }
+
+  static fromParams(params: Params): OrganizationInvite {
+    return Object.assign(new OrganizationInvite(), {
+      email: params.email,
+      initOrganization: params.initOrganization?.toLocaleLowerCase() === "true",
+      orgSsoIdentifier: params.orgSsoIdentifier,
+      orgUserHasExistingUser: params.orgUserHasExistingUser?.toLocaleLowerCase() === "true",
+      organizationId: params.organizationId,
+      organizationName: params.organizationName,
+      organizationUserId: params.organizationUserId,
+      token: params.token,
+    });
+  }
+}
diff --git a/apps/web/src/app/auth/register-form/register-form.component.ts b/apps/web/src/app/auth/register-form/register-form.component.ts
index 6c1b3122c6e..4532cf14050 100644
--- a/apps/web/src/app/auth/register-form/register-form.component.ts
+++ b/apps/web/src/app/auth/register-form/register-form.component.ts
@@ -10,6 +10,7 @@ import { AuditService } from "@bitwarden/common/abstractions/audit.service";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
 import { ReferenceEventRequest } from "@bitwarden/common/models/request/reference-event.request";
+import { RegisterRequest } from "@bitwarden/common/models/request/register.request";
 import { CryptoService } from "@bitwarden/common/platform/abstractions/crypto.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
@@ -19,6 +20,8 @@ import { StateService } from "@bitwarden/common/platform/abstractions/state.serv
 import { PasswordGenerationServiceAbstraction } from "@bitwarden/common/tools/generator/password";
 import { DialogService } from "@bitwarden/components";
 
+import { AcceptOrganizationInviteService } from "../organization-invite/accept-organization.service";
+
 @Component({
   selector: "app-register-form",
   templateUrl: "./register-form.component.html",
@@ -48,6 +51,7 @@ export class RegisterFormComponent extends BaseRegisterComponent {
     logService: LogService,
     auditService: AuditService,
     dialogService: DialogService,
+    acceptOrgInviteService: AcceptOrganizationInviteService,
   ) {
     super(
       formValidationErrorService,
@@ -65,6 +69,16 @@ export class RegisterFormComponent extends BaseRegisterComponent {
       auditService,
       dialogService,
     );
+    super.modifyRegisterRequest = async (request: RegisterRequest) => {
+      // Org invites are deep linked. Non-existent accounts are redirected to the register page.
+      // Org user id and token are included here only for validation and two factor purposes.
+      const orgInvite = await acceptOrgInviteService.getOrganizationInvite();
+      if (orgInvite != null) {
+        request.organizationUserId = orgInvite.organizationUserId;
+        request.token = orgInvite.token;
+      }
+      // Invite is accepted after login (on deep link redirect).
+    };
   }
 
   async ngOnInit() {
diff --git a/apps/web/src/app/auth/set-password.component.ts b/apps/web/src/app/auth/set-password.component.ts
index accde2e9a09..ccd329dd640 100644
--- a/apps/web/src/app/auth/set-password.component.ts
+++ b/apps/web/src/app/auth/set-password.component.ts
@@ -1,9 +1,30 @@
-import { Component } from "@angular/core";
+import { Component, inject } from "@angular/core";
 
 import { SetPasswordComponent as BaseSetPasswordComponent } from "@bitwarden/angular/auth/components/set-password.component";
+import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
+import { MasterKey, UserKey } from "@bitwarden/common/types/key";
+
+import { RouterService } from "../core";
+
+import { AcceptOrganizationInviteService } from "./organization-invite/accept-organization.service";
 
 @Component({
   selector: "app-set-password",
   templateUrl: "set-password.component.html",
 })
-export class SetPasswordComponent extends BaseSetPasswordComponent {}
+export class SetPasswordComponent extends BaseSetPasswordComponent {
+  routerService = inject(RouterService);
+  acceptOrganizationInviteService = inject(AcceptOrganizationInviteService);
+
+  protected override async onSetPasswordSuccess(
+    masterKey: MasterKey,
+    userKey: [UserKey, EncString],
+    keyPair: [string, EncString],
+  ): Promise<void> {
+    await super.onSetPasswordSuccess(masterKey, userKey, keyPair);
+    // SSO JIT accepts org invites when setting their MP, meaning
+    // we can clear the deep linked url for accepting it.
+    await this.routerService.getAndClearLoginRedirectUrl();
+    await this.acceptOrganizationInviteService.clearOrganizationInvitation();
+  }
+}
diff --git a/apps/web/src/app/auth/trial-initiation/trial-initiation.component.spec.ts b/apps/web/src/app/auth/trial-initiation/trial-initiation.component.spec.ts
index 9879743a589..a7916ae946d 100644
--- a/apps/web/src/app/auth/trial-initiation/trial-initiation.component.spec.ts
+++ b/apps/web/src/app/auth/trial-initiation/trial-initiation.component.spec.ts
@@ -12,15 +12,16 @@ import { I18nPipe } from "@bitwarden/angular/platform/pipes/i18n.pipe";
 import { PolicyApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/policy/policy-api.service.abstraction";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
 import { MasterPasswordPolicyOptions } from "@bitwarden/common/admin-console/models/domain/master-password-policy-options";
-import { PolicyResponse } from "@bitwarden/common/admin-console/models/response/policy.response";
+import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { PlanType } from "@bitwarden/common/billing/enums";
-import { ListResponse } from "@bitwarden/common/models/response/list.response";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
 
 import { RouterService } from "../../core";
 import { SharedModule } from "../../shared";
+import { AcceptOrganizationInviteService } from "../organization-invite/accept-organization.service";
+import { OrganizationInvite } from "../organization-invite/organization-invite";
 
 import { TrialInitiationComponent } from "./trial-initiation.component";
 import { VerticalStepperComponent } from "./vertical-stepper/vertical-stepper.component";
@@ -36,12 +37,16 @@ describe("TrialInitiationComponent", () => {
   let stateServiceMock: MockProxy<StateService>;
   let policyApiServiceMock: MockProxy<PolicyApiServiceAbstraction>;
   let policyServiceMock: MockProxy<PolicyService>;
+  let routerServiceMock: MockProxy<RouterService>;
+  let acceptOrgInviteServiceMock: MockProxy<AcceptOrganizationInviteService>;
 
   beforeEach(() => {
     // only define services directly that we want to mock return values in this component
     stateServiceMock = mock<StateService>();
     policyApiServiceMock = mock<PolicyApiServiceAbstraction>();
     policyServiceMock = mock<PolicyService>();
+    routerServiceMock = mock<RouterService>();
+    acceptOrgInviteServiceMock = mock<AcceptOrganizationInviteService>();
 
     // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
     // eslint-disable-next-line @typescript-eslint/no-floating-promises
@@ -81,7 +86,11 @@ describe("TrialInitiationComponent", () => {
         },
         {
           provide: RouterService,
-          useValue: mock<RouterService>(),
+          useValue: routerServiceMock,
+        },
+        {
+          provide: AcceptOrganizationInviteService,
+          useValue: acceptOrgInviteServiceMock,
         },
       ],
       schemas: [NO_ERRORS_SCHEMA], // Allows child components to be ignored (such as register component)
@@ -100,8 +109,8 @@ describe("TrialInitiationComponent", () => {
 
   // These tests demonstrate mocking service calls
   describe("onInit() enforcedPolicyOptions", () => {
-    it("should not set enforcedPolicyOptions if state service returns no invite", async () => {
-      stateServiceMock.getOrganizationInvitation.mockReturnValueOnce(null);
+    it("should not set enforcedPolicyOptions if there isn't an org invite in deep linked url", async () => {
+      acceptOrgInviteServiceMock.getOrganizationInvite.mockResolvedValueOnce(null);
       // Need to recreate component with new service mock
       fixture = TestBed.createComponent(TrialInitiationComponent);
       component = fixture.componentInstance;
@@ -109,37 +118,31 @@ describe("TrialInitiationComponent", () => {
 
       expect(component.enforcedPolicyOptions).toBe(undefined);
     });
-    it("should set enforcedPolicyOptions if state service returns an invite", async () => {
+    it("should set enforcedPolicyOptions if the deep linked url has an org invite", async () => {
       // Set up service method mocks
-      stateServiceMock.getOrganizationInvitation.mockReturnValueOnce(
-        Promise.resolve({
-          organizationId: testOrgId,
-          token: "token",
-          email: "testEmail",
-          organizationUserId: "123",
-        }),
-      );
+      acceptOrgInviteServiceMock.getOrganizationInvite.mockResolvedValueOnce({
+        organizationId: testOrgId,
+        token: "token",
+        email: "testEmail",
+        organizationUserId: "123",
+      } as OrganizationInvite);
       policyApiServiceMock.getPoliciesByToken.mockReturnValueOnce(
-        Promise.resolve({
-          data: [
-            {
-              id: "345",
-              organizationId: testOrgId,
-              type: 1,
-              data: [
-                {
-                  minComplexity: 4,
-                  minLength: 10,
-                  requireLower: null,
-                  requireNumbers: null,
-                  requireSpecial: null,
-                  requireUpper: null,
-                },
-              ],
-              enabled: true,
+        Promise.resolve([
+          {
+            id: "345",
+            organizationId: testOrgId,
+            type: 1,
+            data: {
+              minComplexity: 4,
+              minLength: 10,
+              requireLower: null,
+              requireNumbers: null,
+              requireSpecial: null,
+              requireUpper: null,
             },
-          ],
-        } as ListResponse<PolicyResponse>),
+            enabled: true,
+          },
+        ] as Policy[]),
       );
       policyServiceMock.masterPasswordPolicyOptions$.mockReturnValue(
         of({
diff --git a/apps/web/src/app/auth/trial-initiation/trial-initiation.component.ts b/apps/web/src/app/auth/trial-initiation/trial-initiation.component.ts
index 52a4120b1a0..d02b2c9e2ea 100644
--- a/apps/web/src/app/auth/trial-initiation/trial-initiation.component.ts
+++ b/apps/web/src/app/auth/trial-initiation/trial-initiation.component.ts
@@ -14,13 +14,14 @@ import { ProductType } from "@bitwarden/common/enums";
 import { ReferenceEventRequest } from "@bitwarden/common/models/request/reference-event.request";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
 
 import {
   OrganizationCreatedEvent,
   SubscriptionProduct,
   TrialOrganizationType,
 } from "../../billing/accounts/trial-initiation/trial-billing-step.component";
+import { AcceptOrganizationInviteService } from "../organization-invite/accept-organization.service";
+import { OrganizationInvite } from "../organization-invite/organization-invite";
 
 import { RouterService } from "./../../core/router.service";
 import { VerticalStepperComponent } from "./vertical-stepper/vertical-stepper.component";
@@ -121,12 +122,12 @@ export class TrialInitiationComponent implements OnInit, OnDestroy {
     protected router: Router,
     private formBuilder: UntypedFormBuilder,
     private titleCasePipe: TitleCasePipe,
-    private stateService: StateService,
     private logService: LogService,
     private policyApiService: PolicyApiServiceAbstraction,
     private policyService: PolicyService,
     private i18nService: I18nService,
     private routerService: RouterService,
+    private acceptOrgInviteService: AcceptOrganizationInviteService,
   ) {}
 
   async ngOnInit(): Promise<void> {
@@ -180,30 +181,10 @@ export class TrialInitiationComponent implements OnInit, OnDestroy {
         : "Password Manager trial from marketing website";
     });
 
-    const invite = await this.stateService.getOrganizationInvitation();
-    if (invite != null) {
-      try {
-        const policies = await this.policyApiService.getPoliciesByToken(
-          invite.organizationId,
-          invite.token,
-          invite.email,
-          invite.organizationUserId,
-        );
-        if (policies.data != null) {
-          this.policies = Policy.fromListResponse(policies);
-        }
-      } catch (e) {
-        this.logService.error(e);
-      }
-    }
-
-    if (this.policies != null) {
-      this.policyService
-        .masterPasswordPolicyOptions$(this.policies)
-        .pipe(takeUntil(this.destroy$))
-        .subscribe((enforcedPasswordPolicyOptions) => {
-          this.enforcedPolicyOptions = enforcedPasswordPolicyOptions;
-        });
+    // If there's a deep linked org invite, use it to get the password policies
+    const orgInvite = await this.acceptOrgInviteService.getOrganizationInvite();
+    if (orgInvite != null) {
+      await this.initPasswordPolicies(orgInvite);
     }
 
     this.orgInfoFormGroup.controls.name.valueChanges
@@ -304,5 +285,31 @@ export class TrialInitiationComponent implements OnInit, OnDestroy {
     }
   }
 
+  private async initPasswordPolicies(invite: OrganizationInvite): Promise<void> {
+    if (invite == null) {
+      return;
+    }
+
+    try {
+      this.policies = await this.policyApiService.getPoliciesByToken(
+        invite.organizationId,
+        invite.token,
+        invite.email,
+        invite.organizationUserId,
+      );
+    } catch (e) {
+      this.logService.error(e);
+    }
+
+    if (this.policies != null) {
+      this.policyService
+        .masterPasswordPolicyOptions$(this.policies)
+        .pipe(takeUntil(this.destroy$))
+        .subscribe((enforcedPasswordPolicyOptions) => {
+          this.enforcedPolicyOptions = enforcedPasswordPolicyOptions;
+        });
+    }
+  }
+
   protected readonly SubscriptionProduct = SubscriptionProduct;
 }
diff --git a/apps/web/src/app/auth/update-password.component.ts b/apps/web/src/app/auth/update-password.component.ts
index b8cfb47db1a..da62a6812f1 100644
--- a/apps/web/src/app/auth/update-password.component.ts
+++ b/apps/web/src/app/auth/update-password.component.ts
@@ -1,60 +1,24 @@
-import { Component } from "@angular/core";
-import { Router } from "@angular/router";
+import { Component, inject } from "@angular/core";
 
 import { UpdatePasswordComponent as BaseUpdatePasswordComponent } from "@bitwarden/angular/auth/components/update-password.component";
-import { ApiService } from "@bitwarden/common/abstractions/api.service";
-import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
-import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
-import { KdfConfigService } from "@bitwarden/common/auth/abstractions/kdf-config.service";
-import { InternalMasterPasswordServiceAbstraction } from "@bitwarden/common/auth/abstractions/master-password.service.abstraction";
-import { UserVerificationService } from "@bitwarden/common/auth/abstractions/user-verification/user-verification.service.abstraction";
-import { CryptoService } from "@bitwarden/common/platform/abstractions/crypto.service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
-import { PasswordGenerationServiceAbstraction } from "@bitwarden/common/tools/generator/password";
-import { DialogService } from "@bitwarden/components";
+
+import { RouterService } from "../core";
+
+import { AcceptOrganizationInviteService } from "./organization-invite/accept-organization.service";
 
 @Component({
   selector: "app-update-password",
   templateUrl: "update-password.component.html",
 })
 export class UpdatePasswordComponent extends BaseUpdatePasswordComponent {
-  constructor(
-    router: Router,
-    i18nService: I18nService,
-    platformUtilsService: PlatformUtilsService,
-    passwordGenerationService: PasswordGenerationServiceAbstraction,
-    policyService: PolicyService,
-    cryptoService: CryptoService,
-    messagingService: MessagingService,
-    apiService: ApiService,
-    logService: LogService,
-    stateService: StateService,
-    userVerificationService: UserVerificationService,
-    dialogService: DialogService,
-    kdfConfigService: KdfConfigService,
-    masterPasswordService: InternalMasterPasswordServiceAbstraction,
-    accountService: AccountService,
-  ) {
-    super(
-      router,
-      i18nService,
-      platformUtilsService,
-      passwordGenerationService,
-      policyService,
-      cryptoService,
-      messagingService,
-      apiService,
-      stateService,
-      userVerificationService,
-      logService,
-      dialogService,
-      kdfConfigService,
-      masterPasswordService,
-      accountService,
-    );
+  private routerService = inject(RouterService);
+  private acceptOrganizationInviteService = inject(AcceptOrganizationInviteService);
+
+  override async cancel() {
+    // clearing the login redirect url so that the user
+    // does not join the organization if they cancel
+    await this.routerService.getAndClearLoginRedirectUrl();
+    await this.acceptOrganizationInviteService.clearOrganizationInvitation();
+    await super.cancel();
   }
 }
diff --git a/apps/web/src/app/common/base.accept.component.ts b/apps/web/src/app/common/base.accept.component.ts
index cad1d90088c..7c35751aea6 100644
--- a/apps/web/src/app/common/base.accept.component.ts
+++ b/apps/web/src/app/common/base.accept.component.ts
@@ -1,11 +1,12 @@
 import { Directive, OnInit } from "@angular/core";
 import { ActivatedRoute, Params, Router } from "@angular/router";
-import { Subject } from "rxjs";
+import { Subject, firstValueFrom } from "rxjs";
 import { first, switchMap, takeUntil } from "rxjs/operators";
 
+import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
+import { AuthenticationStatus } from "@bitwarden/common/auth/enums/authentication-status";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
 
 @Directive()
 export abstract class BaseAcceptComponent implements OnInit {
@@ -25,7 +26,7 @@ export abstract class BaseAcceptComponent implements OnInit {
     protected platformUtilService: PlatformUtilsService,
     protected i18nService: I18nService,
     protected route: ActivatedRoute,
-    protected stateService: StateService,
+    protected authService: AuthService,
   ) {}
 
   abstract authedHandler(qParams: Params): Promise<void>;
@@ -41,10 +42,10 @@ export abstract class BaseAcceptComponent implements OnInit {
           );
           let errorMessage: string = null;
           if (!error) {
-            this.authed = await this.stateService.getIsAuthenticated();
             this.email = qParams.email;
 
-            if (this.authed) {
+            const status = await firstValueFrom(this.authService.activeAccountStatus$);
+            if (status !== AuthenticationStatus.LoggedOut) {
               try {
                 await this.authedHandler(qParams);
               } catch (e) {
diff --git a/apps/web/src/app/core/router.service.ts b/apps/web/src/app/core/router.service.ts
index caebb227337..c0c1ec26407 100644
--- a/apps/web/src/app/core/router.service.ts
+++ b/apps/web/src/app/core/router.service.ts
@@ -92,7 +92,7 @@ export class RouterService {
   /**
    * Fetch and clear persisted LoginRedirectUrl if present in state
    */
-  async getAndClearLoginRedirectUrl(): Promise<string> | undefined {
+  async getAndClearLoginRedirectUrl(): Promise<string | undefined> {
     const persistedPreLoginUrl = await firstValueFrom(this.deepLinkRedirectUrlState.state$);
 
     if (!Utils.isNullOrEmpty(persistedPreLoginUrl)) {
diff --git a/apps/web/src/app/oss-routing.module.ts b/apps/web/src/app/oss-routing.module.ts
index 93d68d31b38..e543a6f0835 100644
--- a/apps/web/src/app/oss-routing.module.ts
+++ b/apps/web/src/app/oss-routing.module.ts
@@ -17,7 +17,6 @@ import { FamiliesForEnterpriseSetupComponent } from "./admin-console/organizatio
 import { VerifyRecoverDeleteProviderComponent } from "./admin-console/providers/verify-recover-delete-provider.component";
 import { CreateOrganizationComponent } from "./admin-console/settings/create-organization.component";
 import { SponsoredFamiliesComponent } from "./admin-console/settings/sponsored-families.component";
-import { AcceptOrganizationComponent } from "./auth/accept-organization.component";
 import { deepLinkGuard } from "./auth/guards/deep-link.guard";
 import { HintComponent } from "./auth/hint.component";
 import { LockComponent } from "./auth/lock.component";
@@ -25,6 +24,7 @@ import { LoginDecryptionOptionsComponent } from "./auth/login/login-decryption-o
 import { LoginViaAuthRequestComponent } from "./auth/login/login-via-auth-request.component";
 import { LoginViaWebAuthnComponent } from "./auth/login/login-via-webauthn/login-via-webauthn.component";
 import { LoginComponent } from "./auth/login/login.component";
+import { AcceptOrganizationComponent } from "./auth/organization-invite/accept-organization.component";
 import { RecoverDeleteComponent } from "./auth/recover-delete.component";
 import { RecoverTwoFactorComponent } from "./auth/recover-two-factor.component";
 import { RemovePasswordComponent } from "./auth/remove-password.component";
@@ -120,8 +120,8 @@ const routes: Routes = [
       { path: "verify-email", component: VerifyEmailTokenComponent },
       {
         path: "accept-organization",
-        component: AcceptOrganizationComponent,
         canActivate: [deepLinkGuard()],
+        component: AcceptOrganizationComponent,
         data: { titleId: "joinOrganization", doNotSaveUrl: false },
       },
       {
diff --git a/apps/web/src/app/shared/loose-components.module.ts b/apps/web/src/app/shared/loose-components.module.ts
index cf273ee6825..79478d0cae6 100644
--- a/apps/web/src/app/shared/loose-components.module.ts
+++ b/apps/web/src/app/shared/loose-components.module.ts
@@ -20,7 +20,6 @@ import { ProvidersComponent } from "../admin-console/providers/providers.compone
 import { VerifyRecoverDeleteProviderComponent } from "../admin-console/providers/verify-recover-delete-provider.component";
 import { SponsoredFamiliesComponent } from "../admin-console/settings/sponsored-families.component";
 import { SponsoringOrgRowComponent } from "../admin-console/settings/sponsoring-org-row.component";
-import { AcceptOrganizationComponent } from "../auth/accept-organization.component";
 import { HintComponent } from "../auth/hint.component";
 import { LockComponent } from "../auth/lock.component";
 import { RecoverDeleteComponent } from "../auth/recover-delete.component";
@@ -120,7 +119,6 @@ import { SharedModule } from "./shared.module";
   ],
   declarations: [
     AcceptFamilySponsorshipComponent,
-    AcceptOrganizationComponent,
     AccountComponent,
     AddEditComponent,
     AddEditCustomFieldsComponent,
@@ -193,7 +191,6 @@ import { SharedModule } from "./shared.module";
   exports: [
     UserVerificationModule,
     PremiumBadgeComponent,
-    AcceptOrganizationComponent,
     AccountComponent,
     AddEditComponent,
     AddEditCustomFieldsComponent,
diff --git a/bitwarden_license/bit-web/src/app/admin-console/providers/manage/accept-provider.component.ts b/bitwarden_license/bit-web/src/app/admin-console/providers/manage/accept-provider.component.ts
index d9d553d2833..2c6742611d7 100644
--- a/bitwarden_license/bit-web/src/app/admin-console/providers/manage/accept-provider.component.ts
+++ b/bitwarden_license/bit-web/src/app/admin-console/providers/manage/accept-provider.component.ts
@@ -3,9 +3,9 @@ import { ActivatedRoute, Params, Router } from "@angular/router";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { ProviderUserAcceptRequest } from "@bitwarden/common/admin-console/models/request/provider/provider-user-accept.request";
+import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
 import { BaseAcceptComponent } from "@bitwarden/web-vault/app/common/base.accept.component";
 
 @Component({
@@ -23,11 +23,11 @@ export class AcceptProviderComponent extends BaseAcceptComponent {
     router: Router,
     i18nService: I18nService,
     route: ActivatedRoute,
-    stateService: StateService,
+    authService: AuthService,
     private apiService: ApiService,
     platformUtilService: PlatformUtilsService,
   ) {
-    super(router, platformUtilService, i18nService, route, stateService);
+    super(router, platformUtilService, i18nService, route, authService);
   }
 
   async authedHandler(qParams: Params) {
diff --git a/libs/angular/src/auth/components/login.component.ts b/libs/angular/src/auth/components/login.component.ts
index bcdf747406e..cfef72c435c 100644
--- a/libs/angular/src/auth/components/login.component.ts
+++ b/libs/angular/src/auth/components/login.component.ts
@@ -155,7 +155,7 @@ export class LoginComponent extends CaptchaProtectedComponent implements OnInit,
 
       if (this.handleCaptchaRequired(response)) {
         return;
-      } else if (this.handleMigrateEncryptionKey(response)) {
+      } else if (await this.handleMigrateEncryptionKey(response)) {
         return;
       } else if (response.requiresTwoFactor) {
         if (this.onSuccessfulLoginTwoFactorNavigate != null) {
@@ -218,9 +218,7 @@ export class LoginComponent extends CaptchaProtectedComponent implements OnInit,
     }
 
     this.setLoginEmailValues();
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    this.router.navigate(["/login-with-device"]);
+    await this.router.navigate(["/login-with-device"]);
   }
 
   async launchSsoBrowser(clientId: string, ssoRedirectUri: string) {
@@ -310,7 +308,7 @@ export class LoginComponent extends CaptchaProtectedComponent implements OnInit,
 
   // Legacy accounts used the master key to encrypt data. Migration is required
   // but only performed on web
-  protected handleMigrateEncryptionKey(result: AuthResult): boolean {
+  protected async handleMigrateEncryptionKey(result: AuthResult): Promise<boolean> {
     if (!result.requiresEncryptionKeyMigration) {
       return false;
     }
diff --git a/libs/angular/src/auth/components/register.component.ts b/libs/angular/src/auth/components/register.component.ts
index 2ba76692902..e3197355dc3 100644
--- a/libs/angular/src/auth/components/register.component.ts
+++ b/libs/angular/src/auth/components/register.component.ts
@@ -78,6 +78,10 @@ export class RegisterComponent extends CaptchaProtectedComponent implements OnIn
 
   protected captchaBypassToken: string = null;
 
+  // allows for extending classes to modify the register request before sending
+  // currently used by web to add organization invitation details
+  protected modifyRegisterRequest: (request: RegisterRequest) => Promise<void>;
+
   constructor(
     protected formValidationErrorService: FormValidationErrorsService,
     protected formBuilder: UntypedFormBuilder,
@@ -290,10 +294,8 @@ export class RegisterComponent extends CaptchaProtectedComponent implements OnIn
       kdfConfig.iterations,
     );
     request.keys = new KeysRequest(keys[0], keys[1].encryptedString);
-    const orgInvite = await this.stateService.getOrganizationInvitation();
-    if (orgInvite != null && orgInvite.token != null && orgInvite.organizationUserId != null) {
-      request.token = orgInvite.token;
-      request.organizationUserId = orgInvite.organizationUserId;
+    if (this.modifyRegisterRequest) {
+      await this.modifyRegisterRequest(request);
     }
     return request;
   }
diff --git a/libs/angular/src/auth/components/update-password.component.ts b/libs/angular/src/auth/components/update-password.component.ts
index 3b709b3e7f7..62e0359038c 100644
--- a/libs/angular/src/auth/components/update-password.component.ts
+++ b/libs/angular/src/auth/components/update-password.component.ts
@@ -72,10 +72,7 @@ export class UpdatePasswordComponent extends BaseChangePasswordComponent {
   }
 
   async cancel() {
-    await this.stateService.setOrganizationInvitation(null);
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    this.router.navigate(["/vault"]);
+    await this.router.navigate(["/vault"]);
   }
 
   async setupSubmitActions(): Promise<boolean> {
diff --git a/libs/common/src/admin-console/abstractions/policy/policy-api.service.abstraction.ts b/libs/common/src/admin-console/abstractions/policy/policy-api.service.abstraction.ts
index 1e941fd6544..c601aad0607 100644
--- a/libs/common/src/admin-console/abstractions/policy/policy-api.service.abstraction.ts
+++ b/libs/common/src/admin-console/abstractions/policy/policy-api.service.abstraction.ts
@@ -1,6 +1,7 @@
 import { ListResponse } from "../../../models/response/list.response";
 import { PolicyType } from "../../enums";
 import { MasterPasswordPolicyOptions } from "../../models/domain/master-password-policy-options";
+import { Policy } from "../../models/domain/policy";
 import { PolicyRequest } from "../../models/request/policy.request";
 import { PolicyResponse } from "../../models/response/policy.response";
 
@@ -13,7 +14,7 @@ export class PolicyApiServiceAbstraction {
     token: string,
     email: string,
     organizationUserId: string,
-  ) => Promise<ListResponse<PolicyResponse>>;
+  ) => Promise<Policy[] | undefined>;
 
   getMasterPasswordPolicyOptsForOrgUser: (orgId: string) => Promise<MasterPasswordPolicyOptions>;
   putPolicy: (organizationId: string, type: PolicyType, request: PolicyRequest) => Promise<any>;
diff --git a/libs/common/src/admin-console/models/data/policy.data.ts b/libs/common/src/admin-console/models/data/policy.data.ts
index 35846f20726..54185c84da9 100644
--- a/libs/common/src/admin-console/models/data/policy.data.ts
+++ b/libs/common/src/admin-console/models/data/policy.data.ts
@@ -1,5 +1,6 @@
 import { PolicyId } from "../../../types/guid";
 import { PolicyType } from "../../enums";
+import { Policy } from "../domain/policy";
 import { PolicyResponse } from "../response/policy.response";
 
 export class PolicyData {
@@ -20,4 +21,8 @@ export class PolicyData {
     this.data = response.data;
     this.enabled = response.enabled;
   }
+
+  static fromPolicy(policy: Policy): PolicyData {
+    return Object.assign(new PolicyData(), policy);
+  }
 }
diff --git a/libs/common/src/admin-console/services/policy/policy-api.service.ts b/libs/common/src/admin-console/services/policy/policy-api.service.ts
index c7f093286e1..086bbea1d21 100644
--- a/libs/common/src/admin-console/services/policy/policy-api.service.ts
+++ b/libs/common/src/admin-console/services/policy/policy-api.service.ts
@@ -47,7 +47,7 @@ export class PolicyApiService implements PolicyApiServiceAbstraction {
     token: string,
     email: string,
     organizationUserId: string,
-  ): Promise<ListResponse<PolicyResponse>> {
+  ): Promise<Policy[] | undefined> {
     const r = await this.apiService.send(
       "GET",
       "/organizations/" +
@@ -63,7 +63,7 @@ export class PolicyApiService implements PolicyApiServiceAbstraction {
       false,
       true,
     );
-    return new ListResponse(r, PolicyResponse);
+    return Policy.fromListResponse(new ListResponse(r, PolicyResponse));
   }
 
   private async getMasterPasswordPolicyResponseForOrgUser(
diff --git a/libs/common/src/auth/abstractions/password-reset-enrollment.service.abstraction.ts b/libs/common/src/auth/abstractions/password-reset-enrollment.service.abstraction.ts
index 40892785673..7785798f5cd 100644
--- a/libs/common/src/auth/abstractions/password-reset-enrollment.service.abstraction.ts
+++ b/libs/common/src/auth/abstractions/password-reset-enrollment.service.abstraction.ts
@@ -3,11 +3,15 @@ import { UserKey } from "../../types/key";
 export abstract class PasswordResetEnrollmentServiceAbstraction {
   /*
    * Checks the user's enrollment status and enrolls them if required
+   * NOTE: Will also enroll the user in the organization if in the
+   * invited status
    */
   abstract enrollIfRequired(organizationSsoIdentifier: string): Promise<void>;
 
   /**
    * Enroll current user in password reset
+   * NOTE: Will also enroll the user in the organization if in the
+   * invited status
    * @param organizationId - Organization in which to enroll the user
    * @returns Promise that resolves when the user is enrolled
    * @throws Error if the action fails
@@ -16,6 +20,8 @@ export abstract class PasswordResetEnrollmentServiceAbstraction {
 
   /**
    * Enroll user in password reset
+   * NOTE: Will also enroll the user in the organization if in the
+   * invited status
    * @param organizationId - Organization in which to enroll the user
    * @param userId - User to enroll
    * @param userKey - User's symmetric key
diff --git a/libs/common/src/platform/abstractions/state.service.ts b/libs/common/src/platform/abstractions/state.service.ts
index b2ea27ecb05..b73a0ec7843 100644
--- a/libs/common/src/platform/abstractions/state.service.ts
+++ b/libs/common/src/platform/abstractions/state.service.ts
@@ -101,8 +101,6 @@ export abstract class StateService<T extends Account = Account> {
   setLastSync: (value: string, options?: StorageOptions) => Promise<void>;
   getMinimizeOnCopyToClipboard: (options?: StorageOptions) => Promise<boolean>;
   setMinimizeOnCopyToClipboard: (value: boolean, options?: StorageOptions) => Promise<void>;
-  getOrganizationInvitation: (options?: StorageOptions) => Promise<any>;
-  setOrganizationInvitation: (value: any, options?: StorageOptions) => Promise<void>;
   getPasswordGenerationOptions: (options?: StorageOptions) => Promise<PasswordGeneratorOptions>;
   setPasswordGenerationOptions: (
     value: PasswordGeneratorOptions,
diff --git a/libs/common/src/platform/models/domain/global-state.ts b/libs/common/src/platform/models/domain/global-state.ts
index 2d48f09e925..f4b22702df4 100644
--- a/libs/common/src/platform/models/domain/global-state.ts
+++ b/libs/common/src/platform/models/domain/global-state.ts
@@ -1,5 +1,4 @@
 export class GlobalState {
-  organizationInvitation?: any;
   enableBrowserIntegration?: boolean;
   enableBrowserIntegrationFingerprint?: boolean;
   enableDuckDuckGoBrowserIntegration?: boolean;
diff --git a/libs/common/src/platform/services/state.service.ts b/libs/common/src/platform/services/state.service.ts
index 0339baa3fa3..6906c031903 100644
--- a/libs/common/src/platform/services/state.service.ts
+++ b/libs/common/src/platform/services/state.service.ts
@@ -474,23 +474,6 @@ export class StateService<
     );
   }
 
-  async getOrganizationInvitation(options?: StorageOptions): Promise<any> {
-    return (
-      await this.getGlobals(this.reconcileOptions(options, await this.defaultInMemoryOptions()))
-    )?.organizationInvitation;
-  }
-
-  async setOrganizationInvitation(value: any, options?: StorageOptions): Promise<void> {
-    const globals = await this.getGlobals(
-      this.reconcileOptions(options, await this.defaultInMemoryOptions()),
-    );
-    globals.organizationInvitation = value;
-    await this.saveGlobals(
-      globals,
-      this.reconcileOptions(options, await this.defaultInMemoryOptions()),
-    );
-  }
-
   async getPasswordGenerationOptions(options?: StorageOptions): Promise<PasswordGeneratorOptions> {
     return (
       await this.getAccount(this.reconcileOptions(options, await this.defaultOnDiskLocalOptions()))
diff --git a/libs/common/src/platform/state/state-definitions.ts b/libs/common/src/platform/state/state-definitions.ts
index 986c51f4b7d..f3427429430 100644
--- a/libs/common/src/platform/state/state-definitions.ts
+++ b/libs/common/src/platform/state/state-definitions.ts
@@ -63,6 +63,7 @@ export const TOKEN_DISK_LOCAL = new StateDefinition("tokenDiskLocal", "disk", {
 export const TOKEN_MEMORY = new StateDefinition("token", "memory");
 export const TWO_FACTOR_MEMORY = new StateDefinition("twoFactor", "memory");
 export const USER_DECRYPTION_OPTIONS_DISK = new StateDefinition("userDecryptionOptions", "disk");
+export const ORGANIZATION_INVITE_DISK = new StateDefinition("organizationInvite", "disk");
 export const VAULT_TIMEOUT_SETTINGS_DISK_LOCAL = new StateDefinition(
   "vaultTimeoutSettings",
   "disk",

From c37006c564a5b9ee1b984e65cbf1d012841faa67 Mon Sep 17 00:00:00 2001
From: pixls <github@dev.snack.supply>
Date: Thu, 30 May 2024 13:32:25 -0400
Subject: [PATCH 039/138] Change website default value to empty string. (#9127)

Fastmail API returns and error when passed a null value in forDomain.
Empty string is the preferred blank option.

Co-authored-by: yara <ybeadenkopf@fastmailteam.com>
---
 .../generator/username/email-forwarders/fastmail-forwarder.ts | 4 +++-
 .../src/tools/generator/username/forwarders/fastmail.ts       | 2 +-
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/libs/common/src/tools/generator/username/email-forwarders/fastmail-forwarder.ts b/libs/common/src/tools/generator/username/email-forwarders/fastmail-forwarder.ts
index e8ea19afc95..85a7cf1c906 100644
--- a/libs/common/src/tools/generator/username/email-forwarders/fastmail-forwarder.ts
+++ b/libs/common/src/tools/generator/username/email-forwarders/fastmail-forwarder.ts
@@ -14,6 +14,8 @@ export class FastmailForwarder implements Forwarder {
       throw "Unable to obtain Fastmail masked email account ID.";
     }
 
+    const forDomain = (options.website || "");
+
     const requestInit: RequestInit = {
       redirect: "manual",
       cache: "no-store",
@@ -35,7 +37,7 @@ export class FastmailForwarder implements Forwarder {
               "new-masked-email": {
                 state: "enabled",
                 description: "",
-                forDomain: options.website,
+                forDomain: forDomain,
                 emailPrefix: options.fastmail.prefix,
               },
             },
diff --git a/libs/common/src/tools/generator/username/forwarders/fastmail.ts b/libs/common/src/tools/generator/username/forwarders/fastmail.ts
index e6ab28b59e3..0236e658fbe 100644
--- a/libs/common/src/tools/generator/username/forwarders/fastmail.ts
+++ b/libs/common/src/tools/generator/username/forwarders/fastmail.ts
@@ -12,7 +12,7 @@ import { Forwarders } from "../options/constants";
 import { EmailPrefixOptions, ApiOptions } from "../options/forwarder-options";
 
 export const DefaultFastmailOptions: ApiOptions & EmailPrefixOptions = Object.freeze({
-  website: null,
+  website: "",
   domain: "",
   prefix: "",
   token: "",

From d0914ac81f275910780627ea8779d780d7bde105 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E2=9C=A8=20Audrey=20=E2=9C=A8?= <ajensen@bitwarden.com>
Date: Thu, 30 May 2024 14:16:32 -0400
Subject: [PATCH 040/138] Revert "Change website default value to empty string.
 (#9127)" (#9437)

This reverts commit c37006c564a5b9ee1b984e65cbf1d012841faa67.
---
 .../generator/username/email-forwarders/fastmail-forwarder.ts | 4 +---
 .../src/tools/generator/username/forwarders/fastmail.ts       | 2 +-
 2 files changed, 2 insertions(+), 4 deletions(-)

diff --git a/libs/common/src/tools/generator/username/email-forwarders/fastmail-forwarder.ts b/libs/common/src/tools/generator/username/email-forwarders/fastmail-forwarder.ts
index 85a7cf1c906..e8ea19afc95 100644
--- a/libs/common/src/tools/generator/username/email-forwarders/fastmail-forwarder.ts
+++ b/libs/common/src/tools/generator/username/email-forwarders/fastmail-forwarder.ts
@@ -14,8 +14,6 @@ export class FastmailForwarder implements Forwarder {
       throw "Unable to obtain Fastmail masked email account ID.";
     }
 
-    const forDomain = (options.website || "");
-
     const requestInit: RequestInit = {
       redirect: "manual",
       cache: "no-store",
@@ -37,7 +35,7 @@ export class FastmailForwarder implements Forwarder {
               "new-masked-email": {
                 state: "enabled",
                 description: "",
-                forDomain: forDomain,
+                forDomain: options.website,
                 emailPrefix: options.fastmail.prefix,
               },
             },
diff --git a/libs/common/src/tools/generator/username/forwarders/fastmail.ts b/libs/common/src/tools/generator/username/forwarders/fastmail.ts
index 0236e658fbe..e6ab28b59e3 100644
--- a/libs/common/src/tools/generator/username/forwarders/fastmail.ts
+++ b/libs/common/src/tools/generator/username/forwarders/fastmail.ts
@@ -12,7 +12,7 @@ import { Forwarders } from "../options/constants";
 import { EmailPrefixOptions, ApiOptions } from "../options/forwarder-options";
 
 export const DefaultFastmailOptions: ApiOptions & EmailPrefixOptions = Object.freeze({
-  website: "",
+  website: null,
   domain: "",
   prefix: "",
   token: "",

From 0ef5ab79c64825d4299e85df9f43496687d8b263 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E2=9C=A8=20Audrey=20=E2=9C=A8?= <ajensen@bitwarden.com>
Date: Thu, 30 May 2024 14:20:07 -0400
Subject: [PATCH 041/138] Revert "Revert "Change website default value to empty
 string. (#9127)" (#9437)" (#9438)

This reverts commit d0914ac81f275910780627ea8779d780d7bde105.
---
 .../generator/username/email-forwarders/fastmail-forwarder.ts | 4 +++-
 .../src/tools/generator/username/forwarders/fastmail.ts       | 2 +-
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/libs/common/src/tools/generator/username/email-forwarders/fastmail-forwarder.ts b/libs/common/src/tools/generator/username/email-forwarders/fastmail-forwarder.ts
index e8ea19afc95..85a7cf1c906 100644
--- a/libs/common/src/tools/generator/username/email-forwarders/fastmail-forwarder.ts
+++ b/libs/common/src/tools/generator/username/email-forwarders/fastmail-forwarder.ts
@@ -14,6 +14,8 @@ export class FastmailForwarder implements Forwarder {
       throw "Unable to obtain Fastmail masked email account ID.";
     }
 
+    const forDomain = (options.website || "");
+
     const requestInit: RequestInit = {
       redirect: "manual",
       cache: "no-store",
@@ -35,7 +37,7 @@ export class FastmailForwarder implements Forwarder {
               "new-masked-email": {
                 state: "enabled",
                 description: "",
-                forDomain: options.website,
+                forDomain: forDomain,
                 emailPrefix: options.fastmail.prefix,
               },
             },
diff --git a/libs/common/src/tools/generator/username/forwarders/fastmail.ts b/libs/common/src/tools/generator/username/forwarders/fastmail.ts
index e6ab28b59e3..0236e658fbe 100644
--- a/libs/common/src/tools/generator/username/forwarders/fastmail.ts
+++ b/libs/common/src/tools/generator/username/forwarders/fastmail.ts
@@ -12,7 +12,7 @@ import { Forwarders } from "../options/constants";
 import { EmailPrefixOptions, ApiOptions } from "../options/forwarder-options";
 
 export const DefaultFastmailOptions: ApiOptions & EmailPrefixOptions = Object.freeze({
-  website: null,
+  website: "",
   domain: "",
   prefix: "",
   token: "",

From bb277565df9b0c80fa9e4c71a577a5738bcb70a3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E2=9C=A8=20Audrey=20=E2=9C=A8?= <ajensen@bitwarden.com>
Date: Thu, 30 May 2024 14:34:36 -0400
Subject: [PATCH 042/138] fix lint failure (#9440)

---
 .../generator/username/email-forwarders/fastmail-forwarder.ts   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/libs/common/src/tools/generator/username/email-forwarders/fastmail-forwarder.ts b/libs/common/src/tools/generator/username/email-forwarders/fastmail-forwarder.ts
index 85a7cf1c906..09e518c3d70 100644
--- a/libs/common/src/tools/generator/username/email-forwarders/fastmail-forwarder.ts
+++ b/libs/common/src/tools/generator/username/email-forwarders/fastmail-forwarder.ts
@@ -14,7 +14,7 @@ export class FastmailForwarder implements Forwarder {
       throw "Unable to obtain Fastmail masked email account ID.";
     }
 
-    const forDomain = (options.website || "");
+    const forDomain = options.website || "";
 
     const requestInit: RequestInit = {
       redirect: "manual",

From 41fbac715187a05cdb83dfa3a897ee87c9b04667 Mon Sep 17 00:00:00 2001
From: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
Date: Thu, 30 May 2024 21:12:43 +0200
Subject: [PATCH 043/138] [PM-7173] Update autofill settings [Nav changes]
 (#9318)

* Introduce additional options heading

Text will be needed for the UI changes later on anyway

* Move enableContextMenuItem from options.component to autofill.component

* Move copy TOTP automatically from options.component to autofill.component

* Move clearClipboard from options.component to autofill.component

* Move showCardsCurrentTab from options.component to autofill.component

* Move showIdentitiesCurrentTab from options.component to autofill.component

* Remove options.component as all controls have been migrated

Delete options.component
Import within AppModule
Delete obsolete route
Remove animation/page transition
Remove button from settings.component.html

---------

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
---
 apps/browser/src/_locales/en/messages.json    |   3 +
 .../popup/settings/autofill.component.html    |  78 ++++++++++
 .../popup/settings/autofill.component.ts      |  59 +++++++-
 .../src/popup/app-routing.animations.ts       |   3 -
 apps/browser/src/popup/app-routing.module.ts  |   7 -
 apps/browser/src/popup/app.module.ts          |   2 -
 .../src/popup/settings/options.component.html | 135 ------------------
 .../src/popup/settings/options.component.ts   | 126 ----------------
 .../popup/settings/settings.component.html    |   8 --
 9 files changed, 139 insertions(+), 282 deletions(-)
 delete mode 100644 apps/browser/src/popup/settings/options.component.html
 delete mode 100644 apps/browser/src/popup/settings/options.component.ts

diff --git a/apps/browser/src/_locales/en/messages.json b/apps/browser/src/_locales/en/messages.json
index 8d0f6fe31eb..426f570d643 100644
--- a/apps/browser/src/_locales/en/messages.json
+++ b/apps/browser/src/_locales/en/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
diff --git a/apps/browser/src/autofill/popup/settings/autofill.component.html b/apps/browser/src/autofill/popup/settings/autofill.component.html
index 56c67fba093..30e00d4e641 100644
--- a/apps/browser/src/autofill/popup/settings/autofill.component.html
+++ b/apps/browser/src/autofill/popup/settings/autofill.component.html
@@ -122,6 +122,54 @@
     </div>
   </div>
   <div class="box">
+    <h2 class="box-header">{{ "additionalOptions" | i18n }}</h2>
+    <div class="box-content">
+      <div class="box-content-row box-content-row-checkbox" appBoxRow>
+        <label for="context-menu">{{ "enableContextMenuItem" | i18n }}</label>
+        <input
+          id="context-menu"
+          type="checkbox"
+          aria-describedby="context-menuHelp"
+          (change)="updateContextMenuItem()"
+          [(ngModel)]="enableContextMenuItem"
+        />
+      </div>
+    </div>
+    <div id="context-menuHelp" class="box-footer">
+      {{
+        accountSwitcherEnabled ? ("contextMenuItemDescAlt" | i18n) : ("contextMenuItemDesc" | i18n)
+      }}
+    </div>
+    <div class="box-content">
+      <div class="box-content-row box-content-row-checkbox" appBoxRow>
+        <label for="totp">{{ "enableAutoTotpCopy" | i18n }}</label>
+        <input
+          id="totp"
+          type="checkbox"
+          aria-describedby="totpHelp"
+          (change)="updateAutoTotpCopy()"
+          [(ngModel)]="enableAutoTotpCopy"
+        />
+      </div>
+    </div>
+    <div id="totpHelp" class="box-footer">{{ "disableAutoTotpCopyDesc" | i18n }}</div>
+    <div class="box-content">
+      <div class="box-content-row" appBoxRow>
+        <label for="clearClipboard">{{ "clearClipboard" | i18n }}</label>
+        <select
+          id="clearClipboard"
+          name="ClearClipboard"
+          aria-describedby="clearClipboardHelp"
+          [(ngModel)]="clearClipboard"
+          (change)="saveClearClipboard()"
+        >
+          <option *ngFor="let o of clearClipboardOptions" [ngValue]="o.value">
+            {{ o.name }}
+          </option>
+        </select>
+      </div>
+    </div>
+    <div id="clearClipboardHelp" class="box-footer">{{ "clearClipboardDesc" | i18n }}</div>
     <div class="box-content">
       <div class="box-content-row" appBoxRow>
         <label for="defaultUriMatch">{{ "defaultUriMatchDetection" | i18n }}</label>
@@ -139,5 +187,35 @@
     <div id="defaultUriMatchHelp" class="box-footer">
       {{ "defaultUriMatchDetectionDesc" | i18n }}
     </div>
+    <div class="box-content">
+      <div class="box-content-row box-content-row-checkbox" appBoxRow>
+        <label for="showCardsCurrentTab">{{ "showCardsCurrentTab" | i18n }}</label>
+        <input
+          id="showCardsCurrentTab"
+          type="checkbox"
+          aria-describedby="showCardsCurrentTabHelp"
+          (change)="updateShowCardsCurrentTab()"
+          [(ngModel)]="showCardsCurrentTab"
+        />
+      </div>
+    </div>
+    <div id="showCardsCurrentTabHelp" class="box-footer">
+      {{ "showCardsCurrentTabDesc" | i18n }}
+    </div>
+    <div class="box-content">
+      <div class="box-content-row box-content-row-checkbox" appBoxRow>
+        <label for="showIdentitiesCurrentTab">{{ "showIdentitiesCurrentTab" | i18n }}</label>
+        <input
+          id="showIdentitiesCurrentTab"
+          type="checkbox"
+          aria-describedby="showIdentitiesCurrentTabHelp"
+          (change)="updateShowIdentitiesCurrentTab()"
+          [(ngModel)]="showIdentitiesCurrentTab"
+        />
+      </div>
+    </div>
+    <div id="showIdentitiesCurrentTabHelp" class="box-footer">
+      {{ "showIdentitiesCurrentTabDesc" | i18n }}
+    </div>
   </div>
 </main>
diff --git a/apps/browser/src/autofill/popup/settings/autofill.component.ts b/apps/browser/src/autofill/popup/settings/autofill.component.ts
index 1c6583331f4..7b8a1c32b44 100644
--- a/apps/browser/src/autofill/popup/settings/autofill.component.ts
+++ b/apps/browser/src/autofill/popup/settings/autofill.component.ts
@@ -4,13 +4,18 @@ import { firstValueFrom } from "rxjs";
 import { AutofillOverlayVisibility } from "@bitwarden/common/autofill/constants";
 import { AutofillSettingsServiceAbstraction } from "@bitwarden/common/autofill/services/autofill-settings.service";
 import { DomainSettingsService } from "@bitwarden/common/autofill/services/domain-settings.service";
-import { InlineMenuVisibilitySetting } from "@bitwarden/common/autofill/types";
+import {
+  InlineMenuVisibilitySetting,
+  ClearClipboardDelaySetting,
+} from "@bitwarden/common/autofill/types";
 import {
   UriMatchStrategy,
   UriMatchStrategySetting,
 } from "@bitwarden/common/models/domain/domain-service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
 import { DialogService } from "@bitwarden/components";
 
 import { BrowserApi } from "../../../platform/browser/browser-api";
@@ -30,8 +35,14 @@ export class AutofillComponent implements OnInit {
   enableAutoFillOnPageLoad = false;
   autoFillOnPageLoadDefault = false;
   autoFillOnPageLoadOptions: any[];
+  enableContextMenuItem = false;
+  enableAutoTotpCopy = false; // TODO: Does it matter if this is set to false or true?
+  clearClipboard: ClearClipboardDelaySetting;
+  clearClipboardOptions: any[];
   defaultUriMatch: UriMatchStrategySetting = UriMatchStrategy.Domain;
   uriMatchOptions: any[];
+  showCardsCurrentTab = false;
+  showIdentitiesCurrentTab = false;
   autofillKeyboardHelperText: string;
   accountSwitcherEnabled = false;
 
@@ -42,6 +53,8 @@ export class AutofillComponent implements OnInit {
     private autofillService: AutofillService,
     private dialogService: DialogService,
     private autofillSettingsService: AutofillSettingsServiceAbstraction,
+    private messagingService: MessagingService,
+    private vaultSettingsService: VaultSettingsService,
   ) {
     this.autoFillOverlayVisibilityOptions = [
       {
@@ -61,6 +74,15 @@ export class AutofillComponent implements OnInit {
       { name: i18nService.t("autoFillOnPageLoadYes"), value: true },
       { name: i18nService.t("autoFillOnPageLoadNo"), value: false },
     ];
+    this.clearClipboardOptions = [
+      { name: i18nService.t("never"), value: null },
+      { name: i18nService.t("tenSeconds"), value: 10 },
+      { name: i18nService.t("twentySeconds"), value: 20 },
+      { name: i18nService.t("thirtySeconds"), value: 30 },
+      { name: i18nService.t("oneMinute"), value: 60 },
+      { name: i18nService.t("twoMinutes"), value: 120 },
+      { name: i18nService.t("fiveMinutes"), value: 300 },
+    ];
     this.uriMatchOptions = [
       { name: i18nService.t("baseDomain"), value: UriMatchStrategy.Domain },
       { name: i18nService.t("host"), value: UriMatchStrategy.Host },
@@ -95,6 +117,14 @@ export class AutofillComponent implements OnInit {
       this.autofillSettingsService.autofillOnPageLoadDefault$,
     );
 
+    this.enableContextMenuItem = await firstValueFrom(
+      this.autofillSettingsService.enableContextMenu$,
+    );
+
+    this.enableAutoTotpCopy = await firstValueFrom(this.autofillSettingsService.autoCopyTotp$);
+
+    this.clearClipboard = await firstValueFrom(this.autofillSettingsService.clearClipboardDelay$);
+
     const defaultUriMatch = await firstValueFrom(
       this.domainSettingsService.defaultUriMatchStrategy$,
     );
@@ -102,6 +132,12 @@ export class AutofillComponent implements OnInit {
 
     const command = await this.platformUtilsService.getAutofillKeyboardShortcut();
     await this.setAutofillKeyboardHelperText(command);
+
+    this.showCardsCurrentTab = await firstValueFrom(this.vaultSettingsService.showCardsCurrentTab$);
+
+    this.showIdentitiesCurrentTab = await firstValueFrom(
+      this.vaultSettingsService.showIdentitiesCurrentTab$,
+    );
   }
 
   async updateAutoFillOverlayVisibility() {
@@ -241,4 +277,25 @@ export class AutofillComponent implements OnInit {
   async privacyPermissionGranted(): Promise<boolean> {
     return await BrowserApi.permissionsGranted(["privacy"]);
   }
+
+  async updateContextMenuItem() {
+    await this.autofillSettingsService.setEnableContextMenu(this.enableContextMenuItem);
+    this.messagingService.send("bgUpdateContextMenu");
+  }
+
+  async updateAutoTotpCopy() {
+    await this.autofillSettingsService.setAutoCopyTotp(this.enableAutoTotpCopy);
+  }
+
+  async saveClearClipboard() {
+    await this.autofillSettingsService.setClearClipboardDelay(this.clearClipboard);
+  }
+
+  async updateShowCardsCurrentTab() {
+    await this.vaultSettingsService.setShowCardsCurrentTab(this.showCardsCurrentTab);
+  }
+
+  async updateShowIdentitiesCurrentTab() {
+    await this.vaultSettingsService.setShowIdentitiesCurrentTab(this.showIdentitiesCurrentTab);
+  }
 }
diff --git a/apps/browser/src/popup/app-routing.animations.ts b/apps/browser/src/popup/app-routing.animations.ts
index b2fa53caba8..065331bd414 100644
--- a/apps/browser/src/popup/app-routing.animations.ts
+++ b/apps/browser/src/popup/app-routing.animations.ts
@@ -196,9 +196,6 @@ export const routerTransition = trigger("routerTransition", [
   transition("vault-settings => sync", inSlideLeft),
   transition("sync => vault-settings", outSlideRight),
 
-  transition("tabs => options", inSlideLeft),
-  transition("options => tabs", outSlideRight),
-
   // Appearance settings
   transition("tabs => appearance", inSlideLeft),
   transition("appearance => tabs", outSlideRight),
diff --git a/apps/browser/src/popup/app-routing.module.ts b/apps/browser/src/popup/app-routing.module.ts
index 9e0377a2f9a..934bf0759a2 100644
--- a/apps/browser/src/popup/app-routing.module.ts
+++ b/apps/browser/src/popup/app-routing.module.ts
@@ -65,7 +65,6 @@ import { VaultSettingsComponent } from "../vault/popup/settings/vault-settings.c
 
 import { extensionRefreshRedirect, extensionRefreshSwap } from "./extension-refresh-route-utils";
 import { debounceNavigationGuard } from "./services/debounce-navigation.service";
-import { OptionsComponent } from "./settings/options.component";
 import { TabsV2Component } from "./tabs-v2.component";
 import { TabsComponent } from "./tabs.component";
 
@@ -309,12 +308,6 @@ const routes: Routes = [
     canActivate: [AuthGuard],
     data: { state: "premium" },
   },
-  {
-    path: "options",
-    component: OptionsComponent,
-    canActivate: [AuthGuard],
-    data: { state: "options" },
-  },
   {
     path: "appearance",
     component: AppearanceComponent,
diff --git a/apps/browser/src/popup/app.module.ts b/apps/browser/src/popup/app.module.ts
index e16c33de3ae..86f4d9fa768 100644
--- a/apps/browser/src/popup/app.module.ts
+++ b/apps/browser/src/popup/app.module.ts
@@ -82,7 +82,6 @@ import { AppRoutingModule } from "./app-routing.module";
 import { AppComponent } from "./app.component";
 import { UserVerificationComponent } from "./components/user-verification.component";
 import { ServicesModule } from "./services/services.module";
-import { OptionsComponent } from "./settings/options.component";
 import { TabsV2Component } from "./tabs-v2.component";
 import { TabsComponent } from "./tabs.component";
 
@@ -149,7 +148,6 @@ import "../platform/popup/locales";
     LoginComponent,
     LoginViaAuthRequestComponent,
     LoginDecryptionOptionsComponent,
-    OptionsComponent,
     NotificationsSettingsComponent,
     AppearanceComponent,
     GeneratorComponent,
diff --git a/apps/browser/src/popup/settings/options.component.html b/apps/browser/src/popup/settings/options.component.html
deleted file mode 100644
index 0382eb5b866..00000000000
--- a/apps/browser/src/popup/settings/options.component.html
+++ /dev/null
@@ -1,135 +0,0 @@
-<header>
-  <div class="left">
-    <button type="button" routerLink="/tabs/settings">
-      <span class="header-icon"><i class="bwi bwi-angle-left" aria-hidden="true"></i></span>
-      <span>{{ "back" | i18n }}</span>
-    </button>
-  </div>
-  <h1 class="center">
-    <span class="title">{{ "options" | i18n }}</span>
-  </h1>
-  <div class="right"></div>
-</header>
-<main tabindex="-1">
-  <div class="box">
-    <h2>
-      <button
-        type="button"
-        class="box-header-expandable"
-        (click)="showGeneral = !showGeneral"
-        [attr.aria-expanded]="showGeneral"
-      >
-        <i *ngIf="!showGeneral" class="bwi bwi-angle-right bwi-sm icon" aria-hidden="true"></i>
-        <i *ngIf="showGeneral" class="bwi bwi-angle-down bwi-sm icon" aria-hidden="true"></i>
-        {{ "general" | i18n }}
-      </button>
-    </h2>
-  </div>
-  <ng-container *ngIf="showGeneral">
-    <div class="box" *ngIf="showClearClipboard">
-      <div class="box-content">
-        <div class="box-content-row" appBoxRow>
-          <label for="clearClipboard">{{ "clearClipboard" | i18n }}</label>
-          <select
-            id="clearClipboard"
-            name="ClearClipboard"
-            aria-describedby="clearClipboardHelp"
-            [(ngModel)]="clearClipboard"
-            (change)="saveClearClipboard()"
-          >
-            <option *ngFor="let o of clearClipboardOptions" [ngValue]="o.value">
-              {{ o.name }}
-            </option>
-          </select>
-        </div>
-      </div>
-      <div id="clearClipboardHelp" class="box-footer">{{ "clearClipboardDesc" | i18n }}</div>
-    </div>
-    <div class="box">
-      <div class="box-content">
-        <div class="box-content-row box-content-row-checkbox" appBoxRow>
-          <label for="totp">{{ "enableAutoTotpCopy" | i18n }}</label>
-          <input
-            id="totp"
-            type="checkbox"
-            aria-describedby="totpHelp"
-            (change)="updateAutoTotpCopy()"
-            [(ngModel)]="enableAutoTotpCopy"
-          />
-        </div>
-      </div>
-      <div id="totpHelp" class="box-footer">{{ "disableAutoTotpCopyDesc" | i18n }}</div>
-    </div>
-    <div class="box">
-      <div class="box-content">
-        <div class="box-content-row box-content-row-checkbox" appBoxRow>
-          <label for="context-menu">{{ "enableContextMenuItem" | i18n }}</label>
-          <input
-            id="context-menu"
-            type="checkbox"
-            aria-describedby="context-menuHelp"
-            (change)="updateContextMenuItem()"
-            [(ngModel)]="enableContextMenuItem"
-          />
-        </div>
-      </div>
-      <div id="context-menuHelp" class="box-footer">
-        {{
-          accountSwitcherEnabled
-            ? ("contextMenuItemDescAlt" | i18n)
-            : ("contextMenuItemDesc" | i18n)
-        }}
-      </div>
-    </div>
-  </ng-container>
-  <div class="box box-section-divider">
-    <h2>
-      <button
-        type="button"
-        class="box-header-expandable"
-        (click)="showDisplay = !showDisplay"
-        [attr.aria-expanded]="showDisplay"
-      >
-        <i *ngIf="!showDisplay" class="bwi bwi-angle-right bwi-sm icon" aria-hidden="true"></i>
-        <i *ngIf="showDisplay" class="bwi bwi-angle-down bwi-sm icon" aria-hidden="true"></i>
-        {{ "display" | i18n }}
-      </button>
-    </h2>
-  </div>
-  <ng-container *ngIf="showDisplay">
-    <div class="box">
-      <div class="box-content">
-        <div class="box-content-row box-content-row-checkbox" appBoxRow>
-          <label for="showCardsCurrentTab">{{ "showCardsCurrentTab" | i18n }}</label>
-          <input
-            id="showCardsCurrentTab"
-            type="checkbox"
-            aria-describedby="showCardsCurrentTabHelp"
-            (change)="updateShowCardsCurrentTab()"
-            [(ngModel)]="showCardsCurrentTab"
-          />
-        </div>
-      </div>
-      <div id="showCardsCurrentTabHelp" class="box-footer">
-        {{ "showCardsCurrentTabDesc" | i18n }}
-      </div>
-    </div>
-    <div class="box">
-      <div class="box-content">
-        <div class="box-content-row box-content-row-checkbox" appBoxRow>
-          <label for="showIdentitiesCurrentTab">{{ "showIdentitiesCurrentTab" | i18n }}</label>
-          <input
-            id="showIdentitiesCurrentTab"
-            type="checkbox"
-            aria-describedby="showIdentitiesCurrentTabHelp"
-            (change)="updateShowIdentitiesCurrentTab()"
-            [(ngModel)]="showIdentitiesCurrentTab"
-          />
-        </div>
-      </div>
-      <div id="showIdentitiesCurrentTabHelp" class="box-footer">
-        {{ "showIdentitiesCurrentTabDesc" | i18n }}
-      </div>
-    </div>
-  </ng-container>
-</main>
diff --git a/apps/browser/src/popup/settings/options.component.ts b/apps/browser/src/popup/settings/options.component.ts
deleted file mode 100644
index cfcc81bb22c..00000000000
--- a/apps/browser/src/popup/settings/options.component.ts
+++ /dev/null
@@ -1,126 +0,0 @@
-import { Component, OnInit } from "@angular/core";
-import { firstValueFrom } from "rxjs";
-
-import { AutofillSettingsServiceAbstraction } from "@bitwarden/common/autofill/services/autofill-settings.service";
-import { DomainSettingsService } from "@bitwarden/common/autofill/services/domain-settings.service";
-import { ClearClipboardDelaySetting } from "@bitwarden/common/autofill/types";
-import {
-  UriMatchStrategy,
-  UriMatchStrategySetting,
-} from "@bitwarden/common/models/domain/domain-service";
-import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
-import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
-
-import { enableAccountSwitching } from "../../platform/flags";
-
-@Component({
-  selector: "app-options",
-  templateUrl: "options.component.html",
-})
-export class OptionsComponent implements OnInit {
-  enableAutoFillOnPageLoad = false;
-  autoFillOnPageLoadDefault = false;
-  autoFillOnPageLoadOptions: any[];
-  enableAutoTotpCopy = false; // TODO: Does it matter if this is set to false or true?
-  enableContextMenuItem = false;
-  showCardsCurrentTab = false;
-  showIdentitiesCurrentTab = false;
-  showClearClipboard = true;
-  defaultUriMatch: UriMatchStrategySetting = UriMatchStrategy.Domain;
-  uriMatchOptions: any[];
-  clearClipboard: ClearClipboardDelaySetting;
-  clearClipboardOptions: any[];
-  showGeneral = true;
-  showDisplay = true;
-  accountSwitcherEnabled = false;
-
-  constructor(
-    private messagingService: MessagingService,
-    private autofillSettingsService: AutofillSettingsServiceAbstraction,
-    private domainSettingsService: DomainSettingsService,
-    i18nService: I18nService,
-    private vaultSettingsService: VaultSettingsService,
-  ) {
-    this.uriMatchOptions = [
-      { name: i18nService.t("baseDomain"), value: UriMatchStrategy.Domain },
-      { name: i18nService.t("host"), value: UriMatchStrategy.Host },
-      { name: i18nService.t("startsWith"), value: UriMatchStrategy.StartsWith },
-      { name: i18nService.t("regEx"), value: UriMatchStrategy.RegularExpression },
-      { name: i18nService.t("exact"), value: UriMatchStrategy.Exact },
-      { name: i18nService.t("never"), value: UriMatchStrategy.Never },
-    ];
-    this.clearClipboardOptions = [
-      { name: i18nService.t("never"), value: null },
-      { name: i18nService.t("tenSeconds"), value: 10 },
-      { name: i18nService.t("twentySeconds"), value: 20 },
-      { name: i18nService.t("thirtySeconds"), value: 30 },
-      { name: i18nService.t("oneMinute"), value: 60 },
-      { name: i18nService.t("twoMinutes"), value: 120 },
-      { name: i18nService.t("fiveMinutes"), value: 300 },
-    ];
-    this.autoFillOnPageLoadOptions = [
-      { name: i18nService.t("autoFillOnPageLoadYes"), value: true },
-      { name: i18nService.t("autoFillOnPageLoadNo"), value: false },
-    ];
-
-    this.accountSwitcherEnabled = enableAccountSwitching();
-  }
-
-  async ngOnInit() {
-    this.enableAutoFillOnPageLoad = await firstValueFrom(
-      this.autofillSettingsService.autofillOnPageLoad$,
-    );
-
-    this.autoFillOnPageLoadDefault = await firstValueFrom(
-      this.autofillSettingsService.autofillOnPageLoadDefault$,
-    );
-
-    this.enableContextMenuItem = await firstValueFrom(
-      this.autofillSettingsService.enableContextMenu$,
-    );
-
-    this.showCardsCurrentTab = await firstValueFrom(this.vaultSettingsService.showCardsCurrentTab$);
-    this.showIdentitiesCurrentTab = await firstValueFrom(
-      this.vaultSettingsService.showIdentitiesCurrentTab$,
-    );
-
-    this.enableAutoTotpCopy = await firstValueFrom(this.autofillSettingsService.autoCopyTotp$);
-
-    const defaultUriMatch = await firstValueFrom(
-      this.domainSettingsService.defaultUriMatchStrategy$,
-    );
-    this.defaultUriMatch = defaultUriMatch == null ? UriMatchStrategy.Domain : defaultUriMatch;
-
-    this.clearClipboard = await firstValueFrom(this.autofillSettingsService.clearClipboardDelay$);
-  }
-
-  async updateContextMenuItem() {
-    await this.autofillSettingsService.setEnableContextMenu(this.enableContextMenuItem);
-    this.messagingService.send("bgUpdateContextMenu");
-  }
-
-  async updateAutoTotpCopy() {
-    await this.autofillSettingsService.setAutoCopyTotp(this.enableAutoTotpCopy);
-  }
-
-  async updateAutoFillOnPageLoad() {
-    await this.autofillSettingsService.setAutofillOnPageLoad(this.enableAutoFillOnPageLoad);
-  }
-
-  async updateAutoFillOnPageLoadDefault() {
-    await this.autofillSettingsService.setAutofillOnPageLoadDefault(this.autoFillOnPageLoadDefault);
-  }
-
-  async updateShowCardsCurrentTab() {
-    await this.vaultSettingsService.setShowCardsCurrentTab(this.showCardsCurrentTab);
-  }
-
-  async updateShowIdentitiesCurrentTab() {
-    await this.vaultSettingsService.setShowIdentitiesCurrentTab(this.showIdentitiesCurrentTab);
-  }
-
-  async saveClearClipboard() {
-    await this.autofillSettingsService.setClearClipboardDelay(this.clearClipboard);
-  }
-}
diff --git a/apps/browser/src/tools/popup/settings/settings.component.html b/apps/browser/src/tools/popup/settings/settings.component.html
index 7dba3d0a3de..c547229653e 100644
--- a/apps/browser/src/tools/popup/settings/settings.component.html
+++ b/apps/browser/src/tools/popup/settings/settings.component.html
@@ -42,14 +42,6 @@
         <div class="row-main">{{ "vault" | i18n }}</div>
         <i class="bwi bwi-angle-right bwi-lg row-sub-icon" aria-hidden="true"></i>
       </button>
-      <button
-        type="button"
-        class="box-content-row box-content-row-flex text-default"
-        routerLink="/options"
-      >
-        <div class="row-main">{{ "options" | i18n }}</div>
-        <i class="bwi bwi-angle-right bwi-lg row-sub-icon" aria-hidden="true"></i>
-      </button>
       <button
         type="button"
         class="box-content-row box-content-row-flex text-default"

From 90e7e16df64e5a562baeb7622bd3680a47751913 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E2=9C=A8=20Audrey=20=E2=9C=A8?= <ajensen@bitwarden.com>
Date: Thu, 30 May 2024 15:37:40 -0400
Subject: [PATCH 044/138] move state provider extensions to tools folder
 (#9436)

---
 .../history/local-generator-history.service.ts     |  8 ++++----
 libs/common/src/tools/generator/key-definitions.ts |  6 +++---
 .../username/forwarder-generator-strategy.spec.ts  |  2 +-
 .../username/forwarder-generator-strategy.ts       | 14 +++++++-------
 .../state/buffered-key-definition.spec.ts          |  2 +-
 .../state/buffered-key-definition.ts               |  4 ++--
 .../{generator => }/state/buffered-state.spec.ts   |  6 +++---
 .../tools/{generator => }/state/buffered-state.ts  |  2 +-
 .../{generator => }/state/classified-format.ts     |  0
 .../state/data-packer.abstraction.ts               |  0
 .../state/padded-data-packer.spec.ts               |  0
 .../{generator => }/state/padded-data-packer.ts    |  2 +-
 .../state/secret-classifier.spec.ts                |  0
 .../{generator => }/state/secret-classifier.ts     |  0
 .../state/secret-key-definition.spec.ts            |  2 +-
 .../{generator => }/state/secret-key-definition.ts |  4 ++--
 .../{generator => }/state/secret-state.spec.ts     |  8 ++++----
 .../tools/{generator => }/state/secret-state.ts    |  6 +++---
 .../state/user-encryptor.abstraction.ts            |  4 ++--
 .../state/user-key-encryptor.spec.ts               | 14 +++++++-------
 .../{generator => }/state/user-key-encryptor.ts    |  8 ++++----
 21 files changed, 46 insertions(+), 46 deletions(-)
 rename libs/common/src/tools/{generator => }/state/buffered-key-definition.spec.ts (97%)
 rename libs/common/src/tools/{generator => }/state/buffered-key-definition.ts (97%)
 rename libs/common/src/tools/{generator => }/state/buffered-state.spec.ts (99%)
 rename libs/common/src/tools/{generator => }/state/buffered-state.ts (99%)
 rename libs/common/src/tools/{generator => }/state/classified-format.ts (100%)
 rename libs/common/src/tools/{generator => }/state/data-packer.abstraction.ts (100%)
 rename libs/common/src/tools/{generator => }/state/padded-data-packer.spec.ts (100%)
 rename libs/common/src/tools/{generator => }/state/padded-data-packer.ts (98%)
 rename libs/common/src/tools/{generator => }/state/secret-classifier.spec.ts (100%)
 rename libs/common/src/tools/{generator => }/state/secret-classifier.ts (100%)
 rename libs/common/src/tools/{generator => }/state/secret-key-definition.spec.ts (99%)
 rename libs/common/src/tools/{generator => }/state/secret-key-definition.ts (97%)
 rename libs/common/src/tools/{generator => }/state/secret-state.spec.ts (97%)
 rename libs/common/src/tools/{generator => }/state/secret-state.ts (97%)
 rename libs/common/src/tools/{generator => }/state/user-encryptor.abstraction.ts (93%)
 rename libs/common/src/tools/{generator => }/state/user-key-encryptor.spec.ts (90%)
 rename libs/common/src/tools/{generator => }/state/user-key-encryptor.ts (87%)

diff --git a/libs/common/src/tools/generator/history/local-generator-history.service.ts b/libs/common/src/tools/generator/history/local-generator-history.service.ts
index dd93e630cab..85aa599946f 100644
--- a/libs/common/src/tools/generator/history/local-generator-history.service.ts
+++ b/libs/common/src/tools/generator/history/local-generator-history.service.ts
@@ -4,12 +4,12 @@ import { CryptoService } from "../../../platform/abstractions/crypto.service";
 import { EncryptService } from "../../../platform/abstractions/encrypt.service";
 import { SingleUserState, StateProvider } from "../../../platform/state";
 import { UserId } from "../../../types/guid";
+import { BufferedState } from "../../state/buffered-state";
+import { PaddedDataPacker } from "../../state/padded-data-packer";
+import { SecretState } from "../../state/secret-state";
+import { UserKeyEncryptor } from "../../state/user-key-encryptor";
 import { GeneratorHistoryService } from "../abstractions/generator-history.abstraction";
 import { GENERATOR_HISTORY, GENERATOR_HISTORY_BUFFER } from "../key-definitions";
-import { BufferedState } from "../state/buffered-state";
-import { PaddedDataPacker } from "../state/padded-data-packer";
-import { SecretState } from "../state/secret-state";
-import { UserKeyEncryptor } from "../state/user-key-encryptor";
 
 import { GeneratedCredential } from "./generated-credential";
 import { LegacyPasswordHistoryDecryptor } from "./legacy-password-history-decryptor";
diff --git a/libs/common/src/tools/generator/key-definitions.ts b/libs/common/src/tools/generator/key-definitions.ts
index 1ce2ec8ad12..ccf1ca0d520 100644
--- a/libs/common/src/tools/generator/key-definitions.ts
+++ b/libs/common/src/tools/generator/key-definitions.ts
@@ -1,6 +1,9 @@
 import { Jsonify } from "type-fest";
 
 import { GENERATOR_DISK, UserKeyDefinition } from "../../platform/state";
+import { BufferedKeyDefinition } from "../state/buffered-key-definition";
+import { SecretClassifier } from "../state/secret-classifier";
+import { SecretKeyDefinition } from "../state/secret-key-definition";
 
 import { GeneratedCredential } from "./history/generated-credential";
 import { LegacyPasswordHistoryDecryptor } from "./history/legacy-password-history-decryptor";
@@ -8,9 +11,6 @@ import { GeneratorNavigation } from "./navigation/generator-navigation";
 import { PassphraseGenerationOptions } from "./passphrase/passphrase-generation-options";
 import { GeneratedPasswordHistory } from "./password/generated-password-history";
 import { PasswordGenerationOptions } from "./password/password-generation-options";
-import { BufferedKeyDefinition } from "./state/buffered-key-definition";
-import { SecretClassifier } from "./state/secret-classifier";
-import { SecretKeyDefinition } from "./state/secret-key-definition";
 import { CatchallGenerationOptions } from "./username/catchall-generator-options";
 import { EffUsernameGenerationOptions } from "./username/eff-username-generator-options";
 import {
diff --git a/libs/common/src/tools/generator/username/forwarder-generator-strategy.spec.ts b/libs/common/src/tools/generator/username/forwarder-generator-strategy.spec.ts
index d3bec745f14..7c1b4b91913 100644
--- a/libs/common/src/tools/generator/username/forwarder-generator-strategy.spec.ts
+++ b/libs/common/src/tools/generator/username/forwarder-generator-strategy.spec.ts
@@ -11,9 +11,9 @@ import { EncryptService } from "../../../platform/abstractions/encrypt.service";
 import { StateProvider } from "../../../platform/state";
 import { UserId } from "../../../types/guid";
 import { UserKey } from "../../../types/key";
+import { BufferedState } from "../../state/buffered-state";
 import { DefaultPolicyEvaluator } from "../default-policy-evaluator";
 import { DUCK_DUCK_GO_FORWARDER, DUCK_DUCK_GO_BUFFER } from "../key-definitions";
-import { BufferedState } from "../state/buffered-state";
 
 import { ForwarderGeneratorStrategy } from "./forwarder-generator-strategy";
 import { DefaultDuckDuckGoOptions } from "./forwarders/duck-duck-go";
diff --git a/libs/common/src/tools/generator/username/forwarder-generator-strategy.ts b/libs/common/src/tools/generator/username/forwarder-generator-strategy.ts
index 1abefcc23c4..28ebcba4fd9 100644
--- a/libs/common/src/tools/generator/username/forwarder-generator-strategy.ts
+++ b/libs/common/src/tools/generator/username/forwarder-generator-strategy.ts
@@ -5,16 +5,16 @@ import { CryptoService } from "../../../platform/abstractions/crypto.service";
 import { EncryptService } from "../../../platform/abstractions/encrypt.service";
 import { SingleUserState, StateProvider, UserKeyDefinition } from "../../../platform/state";
 import { UserId } from "../../../types/guid";
+import { BufferedKeyDefinition } from "../../state/buffered-key-definition";
+import { BufferedState } from "../../state/buffered-state";
+import { PaddedDataPacker } from "../../state/padded-data-packer";
+import { SecretClassifier } from "../../state/secret-classifier";
+import { SecretKeyDefinition } from "../../state/secret-key-definition";
+import { SecretState } from "../../state/secret-state";
+import { UserKeyEncryptor } from "../../state/user-key-encryptor";
 import { GeneratorStrategy } from "../abstractions";
 import { DefaultPolicyEvaluator } from "../default-policy-evaluator";
 import { NoPolicy } from "../no-policy";
-import { BufferedKeyDefinition } from "../state/buffered-key-definition";
-import { BufferedState } from "../state/buffered-state";
-import { PaddedDataPacker } from "../state/padded-data-packer";
-import { SecretClassifier } from "../state/secret-classifier";
-import { SecretKeyDefinition } from "../state/secret-key-definition";
-import { SecretState } from "../state/secret-state";
-import { UserKeyEncryptor } from "../state/user-key-encryptor";
 
 import { ApiOptions } from "./options/forwarder-options";
 
diff --git a/libs/common/src/tools/generator/state/buffered-key-definition.spec.ts b/libs/common/src/tools/state/buffered-key-definition.spec.ts
similarity index 97%
rename from libs/common/src/tools/generator/state/buffered-key-definition.spec.ts
rename to libs/common/src/tools/state/buffered-key-definition.spec.ts
index b056cba3971..709b9618555 100644
--- a/libs/common/src/tools/generator/state/buffered-key-definition.spec.ts
+++ b/libs/common/src/tools/state/buffered-key-definition.spec.ts
@@ -1,4 +1,4 @@
-import { GENERATOR_DISK, UserKeyDefinition } from "../../../platform/state";
+import { GENERATOR_DISK, UserKeyDefinition } from "../../platform/state";
 
 import { BufferedKeyDefinition } from "./buffered-key-definition";
 
diff --git a/libs/common/src/tools/generator/state/buffered-key-definition.ts b/libs/common/src/tools/state/buffered-key-definition.ts
similarity index 97%
rename from libs/common/src/tools/generator/state/buffered-key-definition.ts
rename to libs/common/src/tools/state/buffered-key-definition.ts
index 1f112808392..879c9d76e38 100644
--- a/libs/common/src/tools/generator/state/buffered-key-definition.ts
+++ b/libs/common/src/tools/state/buffered-key-definition.ts
@@ -1,6 +1,6 @@
-import { UserKeyDefinition, UserKeyDefinitionOptions } from "../../../platform/state";
+import { UserKeyDefinition, UserKeyDefinitionOptions } from "../../platform/state";
 // eslint-disable-next-line -- `StateDefinition` used as an argument
-import { StateDefinition } from "../../../platform/state/state-definition";
+import { StateDefinition } from "../../platform/state/state-definition";
 
 /** A set of options for customizing the behavior of a {@link BufferedKeyDefinition}
  */
diff --git a/libs/common/src/tools/generator/state/buffered-state.spec.ts b/libs/common/src/tools/state/buffered-state.spec.ts
similarity index 99%
rename from libs/common/src/tools/generator/state/buffered-state.spec.ts
rename to libs/common/src/tools/state/buffered-state.spec.ts
index 46e132c1bde..09419207caf 100644
--- a/libs/common/src/tools/generator/state/buffered-state.spec.ts
+++ b/libs/common/src/tools/state/buffered-state.spec.ts
@@ -5,9 +5,9 @@ import {
   FakeStateProvider,
   awaitAsync,
   trackEmissions,
-} from "../../../../spec";
-import { GENERATOR_DISK, KeyDefinition } from "../../../platform/state";
-import { UserId } from "../../../types/guid";
+} from "../../../spec";
+import { GENERATOR_DISK, KeyDefinition } from "../../platform/state";
+import { UserId } from "../../types/guid";
 
 import { BufferedKeyDefinition } from "./buffered-key-definition";
 import { BufferedState } from "./buffered-state";
diff --git a/libs/common/src/tools/generator/state/buffered-state.ts b/libs/common/src/tools/state/buffered-state.ts
similarity index 99%
rename from libs/common/src/tools/generator/state/buffered-state.ts
rename to libs/common/src/tools/state/buffered-state.ts
index bb4de645e9c..3956072a443 100644
--- a/libs/common/src/tools/generator/state/buffered-state.ts
+++ b/libs/common/src/tools/state/buffered-state.ts
@@ -5,7 +5,7 @@ import {
   SingleUserState,
   CombinedState,
   StateUpdateOptions,
-} from "../../../platform/state";
+} from "../../platform/state";
 
 import { BufferedKeyDefinition } from "./buffered-key-definition";
 
diff --git a/libs/common/src/tools/generator/state/classified-format.ts b/libs/common/src/tools/state/classified-format.ts
similarity index 100%
rename from libs/common/src/tools/generator/state/classified-format.ts
rename to libs/common/src/tools/state/classified-format.ts
diff --git a/libs/common/src/tools/generator/state/data-packer.abstraction.ts b/libs/common/src/tools/state/data-packer.abstraction.ts
similarity index 100%
rename from libs/common/src/tools/generator/state/data-packer.abstraction.ts
rename to libs/common/src/tools/state/data-packer.abstraction.ts
diff --git a/libs/common/src/tools/generator/state/padded-data-packer.spec.ts b/libs/common/src/tools/state/padded-data-packer.spec.ts
similarity index 100%
rename from libs/common/src/tools/generator/state/padded-data-packer.spec.ts
rename to libs/common/src/tools/state/padded-data-packer.spec.ts
diff --git a/libs/common/src/tools/generator/state/padded-data-packer.ts b/libs/common/src/tools/state/padded-data-packer.ts
similarity index 98%
rename from libs/common/src/tools/generator/state/padded-data-packer.ts
rename to libs/common/src/tools/state/padded-data-packer.ts
index d1573e5cb79..9731dab930e 100644
--- a/libs/common/src/tools/generator/state/padded-data-packer.ts
+++ b/libs/common/src/tools/state/padded-data-packer.ts
@@ -1,6 +1,6 @@
 import { Jsonify } from "type-fest";
 
-import { Utils } from "../../../platform/misc/utils";
+import { Utils } from "../../platform/misc/utils";
 
 import { DataPacker as DataPackerAbstraction } from "./data-packer.abstraction";
 
diff --git a/libs/common/src/tools/generator/state/secret-classifier.spec.ts b/libs/common/src/tools/state/secret-classifier.spec.ts
similarity index 100%
rename from libs/common/src/tools/generator/state/secret-classifier.spec.ts
rename to libs/common/src/tools/state/secret-classifier.spec.ts
diff --git a/libs/common/src/tools/generator/state/secret-classifier.ts b/libs/common/src/tools/state/secret-classifier.ts
similarity index 100%
rename from libs/common/src/tools/generator/state/secret-classifier.ts
rename to libs/common/src/tools/state/secret-classifier.ts
diff --git a/libs/common/src/tools/generator/state/secret-key-definition.spec.ts b/libs/common/src/tools/state/secret-key-definition.spec.ts
similarity index 99%
rename from libs/common/src/tools/generator/state/secret-key-definition.spec.ts
rename to libs/common/src/tools/state/secret-key-definition.spec.ts
index a347268b0b4..33b2ec01d26 100644
--- a/libs/common/src/tools/generator/state/secret-key-definition.spec.ts
+++ b/libs/common/src/tools/state/secret-key-definition.spec.ts
@@ -1,4 +1,4 @@
-import { GENERATOR_DISK, UserKeyDefinitionOptions } from "../../../platform/state";
+import { GENERATOR_DISK, UserKeyDefinitionOptions } from "../../platform/state";
 
 import { SecretClassifier } from "./secret-classifier";
 import { SecretKeyDefinition } from "./secret-key-definition";
diff --git a/libs/common/src/tools/generator/state/secret-key-definition.ts b/libs/common/src/tools/state/secret-key-definition.ts
similarity index 97%
rename from libs/common/src/tools/generator/state/secret-key-definition.ts
rename to libs/common/src/tools/state/secret-key-definition.ts
index 22496d878e6..c33bb966850 100644
--- a/libs/common/src/tools/generator/state/secret-key-definition.ts
+++ b/libs/common/src/tools/state/secret-key-definition.ts
@@ -1,6 +1,6 @@
-import { UserKeyDefinitionOptions, UserKeyDefinition } from "../../../platform/state";
+import { UserKeyDefinitionOptions, UserKeyDefinition } from "../../platform/state";
 // eslint-disable-next-line -- `StateDefinition` used as an argument
-import { StateDefinition } from "../../../platform/state/state-definition";
+import { StateDefinition } from "../../platform/state/state-definition";
 import { ClassifiedFormat } from "./classified-format";
 import { SecretClassifier } from "./secret-classifier";
 
diff --git a/libs/common/src/tools/generator/state/secret-state.spec.ts b/libs/common/src/tools/state/secret-state.spec.ts
similarity index 97%
rename from libs/common/src/tools/generator/state/secret-state.spec.ts
rename to libs/common/src/tools/state/secret-state.spec.ts
index 1f5e14dde93..a3d22c14bf6 100644
--- a/libs/common/src/tools/generator/state/secret-state.spec.ts
+++ b/libs/common/src/tools/state/secret-state.spec.ts
@@ -7,10 +7,10 @@ import {
   makeEncString,
   mockAccountServiceWith,
   awaitAsync,
-} from "../../../../spec";
-import { EncString } from "../../../platform/models/domain/enc-string";
-import { GENERATOR_DISK } from "../../../platform/state";
-import { UserId } from "../../../types/guid";
+} from "../../../spec";
+import { EncString } from "../../platform/models/domain/enc-string";
+import { GENERATOR_DISK } from "../../platform/state";
+import { UserId } from "../../types/guid";
 
 import { SecretClassifier } from "./secret-classifier";
 import { SecretKeyDefinition } from "./secret-key-definition";
diff --git a/libs/common/src/tools/generator/state/secret-state.ts b/libs/common/src/tools/state/secret-state.ts
similarity index 97%
rename from libs/common/src/tools/generator/state/secret-state.ts
rename to libs/common/src/tools/state/secret-state.ts
index dc4ee119a60..6713b56ea10 100644
--- a/libs/common/src/tools/generator/state/secret-state.ts
+++ b/libs/common/src/tools/state/secret-state.ts
@@ -1,13 +1,13 @@
 import { Observable, map, concatMap, share, ReplaySubject, timer } from "rxjs";
 
-import { EncString } from "../../../platform/models/domain/enc-string";
+import { EncString } from "../../platform/models/domain/enc-string";
 import {
   SingleUserState,
   StateProvider,
   StateUpdateOptions,
   CombinedState,
-} from "../../../platform/state";
-import { UserId } from "../../../types/guid";
+} from "../../platform/state";
+import { UserId } from "../../types/guid";
 
 import { ClassifiedFormat } from "./classified-format";
 import { SecretKeyDefinition } from "./secret-key-definition";
diff --git a/libs/common/src/tools/generator/state/user-encryptor.abstraction.ts b/libs/common/src/tools/state/user-encryptor.abstraction.ts
similarity index 93%
rename from libs/common/src/tools/generator/state/user-encryptor.abstraction.ts
rename to libs/common/src/tools/state/user-encryptor.abstraction.ts
index 76539a0edf2..7638ac1658b 100644
--- a/libs/common/src/tools/generator/state/user-encryptor.abstraction.ts
+++ b/libs/common/src/tools/state/user-encryptor.abstraction.ts
@@ -1,7 +1,7 @@
 import { Jsonify } from "type-fest";
 
-import { EncString } from "../../../platform/models/domain/enc-string";
-import { UserId } from "../../../types/guid";
+import { EncString } from "../../platform/models/domain/enc-string";
+import { UserId } from "../../types/guid";
 
 /** A classification strategy that protects a type's secrets with
  *  user-specific information. The specific kind of information is
diff --git a/libs/common/src/tools/generator/state/user-key-encryptor.spec.ts b/libs/common/src/tools/state/user-key-encryptor.spec.ts
similarity index 90%
rename from libs/common/src/tools/generator/state/user-key-encryptor.spec.ts
rename to libs/common/src/tools/state/user-key-encryptor.spec.ts
index 072f7bd8f34..fac9fc1fca5 100644
--- a/libs/common/src/tools/generator/state/user-key-encryptor.spec.ts
+++ b/libs/common/src/tools/state/user-key-encryptor.spec.ts
@@ -1,12 +1,12 @@
 import { mock } from "jest-mock-extended";
 
-import { CryptoService } from "../../../platform/abstractions/crypto.service";
-import { EncryptService } from "../../../platform/abstractions/encrypt.service";
-import { EncString } from "../../../platform/models/domain/enc-string";
-import { SymmetricCryptoKey } from "../../../platform/models/domain/symmetric-crypto-key";
-import { CsprngArray } from "../../../types/csprng";
-import { UserId } from "../../../types/guid";
-import { UserKey } from "../../../types/key";
+import { CryptoService } from "../../platform/abstractions/crypto.service";
+import { EncryptService } from "../../platform/abstractions/encrypt.service";
+import { EncString } from "../../platform/models/domain/enc-string";
+import { SymmetricCryptoKey } from "../../platform/models/domain/symmetric-crypto-key";
+import { CsprngArray } from "../../types/csprng";
+import { UserId } from "../../types/guid";
+import { UserKey } from "../../types/key";
 
 import { DataPacker } from "./data-packer.abstraction";
 import { UserKeyEncryptor } from "./user-key-encryptor";
diff --git a/libs/common/src/tools/generator/state/user-key-encryptor.ts b/libs/common/src/tools/state/user-key-encryptor.ts
similarity index 87%
rename from libs/common/src/tools/generator/state/user-key-encryptor.ts
rename to libs/common/src/tools/state/user-key-encryptor.ts
index 27724d820d0..ef4ac5aeb70 100644
--- a/libs/common/src/tools/generator/state/user-key-encryptor.ts
+++ b/libs/common/src/tools/state/user-key-encryptor.ts
@@ -1,9 +1,9 @@
 import { Jsonify } from "type-fest";
 
-import { CryptoService } from "../../../platform/abstractions/crypto.service";
-import { EncryptService } from "../../../platform/abstractions/encrypt.service";
-import { EncString } from "../../../platform/models/domain/enc-string";
-import { UserId } from "../../../types/guid";
+import { CryptoService } from "../../platform/abstractions/crypto.service";
+import { EncryptService } from "../../platform/abstractions/encrypt.service";
+import { EncString } from "../../platform/models/domain/enc-string";
+import { UserId } from "../../types/guid";
 
 import { DataPacker } from "./data-packer.abstraction";
 import { UserEncryptor } from "./user-encryptor.abstraction";

From de92720d7e8406c7984d7642e0d5296d5ce548d8 Mon Sep 17 00:00:00 2001
From: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
Date: Thu, 30 May 2024 21:38:31 +0200
Subject: [PATCH 045/138] [PM-7289] Create generator libraries (#9432)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* Create and register @bitwarden/generator-core

- Create libs/tools/generator/core
- Register new library within tsconfigs
- Register new library within eslint.configs

* Create and register @bitwarden/generator-extensions

- Create libs/tools/generator/extensions
- Register new library within tsconfigs
- Register new library within eslint.configs

* Create and register @bitwarden/generator-components

- Create libs/tools/generator/components
- Register new library within tsconfigs
- Register new library within eslint.configs

* Update libs/tools/generator/components/package.json

Co-authored-by: ✨ Audrey ✨ <ajensen@bitwarden.com>

* Update libs/tools/generator/extensions/package.json

Co-authored-by: ✨ Audrey ✨ <ajensen@bitwarden.com>

* Add empty barrel files for new libs

* Fix extension of test.environment

---------

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
Co-authored-by: ✨ Audrey ✨ <ajensen@bitwarden.com>
---
 .eslintrc.json                                | 32 +++++++++++++++++++
 apps/browser/tsconfig.json                    |  3 ++
 apps/desktop/tsconfig.json                    |  3 ++
 apps/web/tsconfig.json                        |  3 ++
 bitwarden_license/bit-common/tsconfig.json    |  3 ++
 bitwarden_license/bit-web/tsconfig.json       |  3 ++
 jest.config.js                                |  1 +
 libs/shared/tsconfig.libs.json                |  3 ++
 .../tools/generator/components/jest.config.js | 13 ++++++++
 libs/tools/generator/components/package.json  | 24 ++++++++++++++
 libs/tools/generator/components/src/index.ts  |  0
 libs/tools/generator/components/tsconfig.json |  5 +++
 .../generator/components/tsconfig.spec.json   |  3 ++
 libs/tools/generator/core/jest.config.js      | 13 ++++++++
 libs/tools/generator/core/package.json        | 23 +++++++++++++
 libs/tools/generator/core/src/index.ts        |  0
 libs/tools/generator/core/tsconfig.json       |  5 +++
 libs/tools/generator/core/tsconfig.spec.json  |  3 ++
 .../tools/generator/extensions/jest.config.js | 13 ++++++++
 libs/tools/generator/extensions/package.json  | 24 ++++++++++++++
 libs/tools/generator/extensions/src/index.ts  |  0
 libs/tools/generator/extensions/tsconfig.json |  5 +++
 .../generator/extensions/tsconfig.spec.json   |  3 ++
 tsconfig.eslint.json                          |  3 ++
 tsconfig.json                                 |  3 ++
 25 files changed, 191 insertions(+)
 create mode 100644 libs/tools/generator/components/jest.config.js
 create mode 100644 libs/tools/generator/components/package.json
 create mode 100644 libs/tools/generator/components/src/index.ts
 create mode 100644 libs/tools/generator/components/tsconfig.json
 create mode 100644 libs/tools/generator/components/tsconfig.spec.json
 create mode 100644 libs/tools/generator/core/jest.config.js
 create mode 100644 libs/tools/generator/core/package.json
 create mode 100644 libs/tools/generator/core/src/index.ts
 create mode 100644 libs/tools/generator/core/tsconfig.json
 create mode 100644 libs/tools/generator/core/tsconfig.spec.json
 create mode 100644 libs/tools/generator/extensions/jest.config.js
 create mode 100644 libs/tools/generator/extensions/package.json
 create mode 100644 libs/tools/generator/extensions/src/index.ts
 create mode 100644 libs/tools/generator/extensions/tsconfig.json
 create mode 100644 libs/tools/generator/extensions/tsconfig.spec.json

diff --git a/.eslintrc.json b/.eslintrc.json
index ce9c4a33426..1a3849aee30 100644
--- a/.eslintrc.json
+++ b/.eslintrc.json
@@ -97,6 +97,11 @@
                   // Node
                   "./libs/node/**/*",
 
+                  //Generator
+                  "./libs/tools/generator/components/**/*",
+                  "./libs/tools/generator/core/**/*",
+                  "./libs/tools/generator/extensions/**/*",
+
                   // Import/export
                   "./libs/importer/**/*",
                   "./libs/tools/export/vault-export/vault-export-core/**/*"
@@ -182,6 +187,33 @@
         ]
       }
     },
+    {
+      "files": ["libs/tools/generator/components/src/**/*.ts"],
+      "rules": {
+        "no-restricted-imports": [
+          "error",
+          { "patterns": ["@bitwarden/generator-components/*", "src/**/*"] }
+        ]
+      }
+    },
+    {
+      "files": ["libs/tools/generator/core/src/**/*.ts"],
+      "rules": {
+        "no-restricted-imports": [
+          "error",
+          { "patterns": ["@bitwarden/generator-core/*", "src/**/*"] }
+        ]
+      }
+    },
+    {
+      "files": ["libs/tools/generator/extensions/src/**/*.ts"],
+      "rules": {
+        "no-restricted-imports": [
+          "error",
+          { "patterns": ["@bitwarden/generator-extensions/*", "src/**/*"] }
+        ]
+      }
+    },
     {
       "files": ["libs/tools/export/vault-export/vault-export-core/src/**/*.ts"],
       "rules": {
diff --git a/apps/browser/tsconfig.json b/apps/browser/tsconfig.json
index eb2c02fd3fd..39f9c8211c7 100644
--- a/apps/browser/tsconfig.json
+++ b/apps/browser/tsconfig.json
@@ -19,6 +19,9 @@
       "@bitwarden/billing": ["../../libs/billing/src"],
       "@bitwarden/common/*": ["../../libs/common/src/*"],
       "@bitwarden/components": ["../../libs/components/src"],
+      "@bitwarden/generator-components": ["../../libs/tools/generator/components/src"],
+      "@bitwarden/generator-core": ["../../libs/tools/generator/core/src"],
+      "@bitwarden/generator-extensions": ["../../libs/tools/generator/extensions/src"],
       "@bitwarden/vault-export-core": [
         "../../libs/tools/export/vault-export/vault-export-core/src"
       ],
diff --git a/apps/desktop/tsconfig.json b/apps/desktop/tsconfig.json
index eb054ba80ba..ad8112db485 100644
--- a/apps/desktop/tsconfig.json
+++ b/apps/desktop/tsconfig.json
@@ -17,6 +17,9 @@
       "@bitwarden/billing": ["../../libs/billing/src"],
       "@bitwarden/common/*": ["../../libs/common/src/*"],
       "@bitwarden/components": ["../../libs/components/src"],
+      "@bitwarden/generator-components": ["../../libs/tools/generator/components/src"],
+      "@bitwarden/generator-core": ["../../libs/tools/generator/core/src"],
+      "@bitwarden/generator-extensions": ["../../libs/tools/generator/extensions/src"],
       "@bitwarden/vault-export-core": [
         "../../libs/tools/export/vault-export/vault-export-core/src"
       ],
diff --git a/apps/web/tsconfig.json b/apps/web/tsconfig.json
index f6ea012c368..cd3e969e2d5 100644
--- a/apps/web/tsconfig.json
+++ b/apps/web/tsconfig.json
@@ -12,6 +12,9 @@
       "@bitwarden/billing": ["../../libs/billing/src"],
       "@bitwarden/common/*": ["../../libs/common/src/*"],
       "@bitwarden/components": ["../../libs/components/src"],
+      "@bitwarden/generator-components": ["../../libs/tools/generator/components/src"],
+      "@bitwarden/generator-core": ["../../libs/tools/generator/core/src"],
+      "@bitwarden/generator-extensions": ["../../libs/tools/generator/extensions/src"],
       "@bitwarden/vault-export-core": [
         "../../libs/tools/export/vault-export/vault-export-core/src"
       ],
diff --git a/bitwarden_license/bit-common/tsconfig.json b/bitwarden_license/bit-common/tsconfig.json
index afe66845c6a..1c81cd9a1ee 100644
--- a/bitwarden_license/bit-common/tsconfig.json
+++ b/bitwarden_license/bit-common/tsconfig.json
@@ -11,6 +11,9 @@
       "@bitwarden/billing": ["../../libs/billing/src"],
       "@bitwarden/common/*": ["../../libs/common/src/*"],
       "@bitwarden/components": ["../../libs/components/src"],
+      "@bitwarden/generator-components": ["../../libs/tools/generator/components/src"],
+      "@bitwarden/generator-core": ["../../libs/tools/generator/core/src"],
+      "@bitwarden/generator-extensions": ["../../libs/tools/generator/extensions/src"],
       "@bitwarden/vault-export-core": [
         "../../libs/tools/export/vault-export/vault-export-core/src"
       ],
diff --git a/bitwarden_license/bit-web/tsconfig.json b/bitwarden_license/bit-web/tsconfig.json
index 05517df57c8..26f8e655390 100644
--- a/bitwarden_license/bit-web/tsconfig.json
+++ b/bitwarden_license/bit-web/tsconfig.json
@@ -12,6 +12,9 @@
       "@bitwarden/billing": ["../../libs/billing/src"],
       "@bitwarden/common/*": ["../../libs/common/src/*"],
       "@bitwarden/components": ["../../libs/components/src"],
+      "@bitwarden/generator-components": ["../../libs/tools/generator/components/src"],
+      "@bitwarden/generator-core": ["../../libs/tools/generator/core/src"],
+      "@bitwarden/generator-extensions": ["../../libs/tools/generator/extensions/src"],
       "@bitwarden/vault-export-core": [
         "../../libs/tools/export/vault-export/vault-export-core/src"
       ],
diff --git a/jest.config.js b/jest.config.js
index e2c50553d8e..f4e97262a39 100644
--- a/jest.config.js
+++ b/jest.config.js
@@ -31,6 +31,7 @@ module.exports = {
     "<rootDir>/libs/common/jest.config.js",
     "<rootDir>/libs/components/jest.config.js",
     "<rootDir>/libs/tools/export/vault-export/vault-export-core/jest.config.js",
+    "<rootDir>/libs/tools/generator/core/jest.config.js",
     "<rootDir>/libs/importer/jest.config.js",
     "<rootDir>/libs/platform/jest.config.js",
     "<rootDir>/libs/node/jest.config.js",
diff --git a/libs/shared/tsconfig.libs.json b/libs/shared/tsconfig.libs.json
index 517b2a4d164..5b24a772c15 100644
--- a/libs/shared/tsconfig.libs.json
+++ b/libs/shared/tsconfig.libs.json
@@ -10,6 +10,9 @@
       "@bitwarden/billing": ["../billing/src"],
       "@bitwarden/common/*": ["../common/src/*"],
       "@bitwarden/components": ["../components/src"],
+      "@bitwarden/generator-components": ["../tools/generator/components/src"],
+      "@bitwarden/generator-core": ["../tools/generator/core/src"],
+      "@bitwarden/generator-extensions": ["../tools/generator/extensions/src"],
       "@bitwarden/vault-export-core": ["../tools/export/vault-export/vault-export-core/src"],
       "@bitwarden/vault-export-ui": ["../tools/export/vault-export/vault-export-ui/src"],
       "@bitwarden/importer/core": ["../importer/src"],
diff --git a/libs/tools/generator/components/jest.config.js b/libs/tools/generator/components/jest.config.js
new file mode 100644
index 00000000000..4a09c6360b4
--- /dev/null
+++ b/libs/tools/generator/components/jest.config.js
@@ -0,0 +1,13 @@
+const { pathsToModuleNameMapper } = require("ts-jest");
+
+const { compilerOptions } = require("../../../shared/tsconfig.libs.json");
+
+/** @type {import('jest').Config} */
+module.exports = {
+  testMatch: ["**/+(*.)+(spec).+(ts)"],
+  preset: "ts-jest",
+  testEnvironment: "../../../shared/test.environment.ts",
+  moduleNameMapper: pathsToModuleNameMapper(compilerOptions?.paths || {}, {
+    prefix: "<rootDir>/../../../",
+  }),
+};
diff --git a/libs/tools/generator/components/package.json b/libs/tools/generator/components/package.json
new file mode 100644
index 00000000000..d37eefac2ca
--- /dev/null
+++ b/libs/tools/generator/components/package.json
@@ -0,0 +1,24 @@
+{
+  "name": "@bitwarden/generator-components",
+  "version": "0.0.0",
+  "description": "Angular components for the Bitwarden generators",
+  "keywords": [
+    "bitwarden"
+  ],
+  "author": "Bitwarden Inc.",
+  "homepage": "https://bitwarden.com",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/bitwarden/clients"
+  },
+  "license": "GPL-3.0",
+  "scripts": {
+    "clean": "rimraf dist",
+    "build": "npm run clean && tsc",
+    "build:watch": "npm run clean && tsc -watch"
+  },
+  "dependencies": {
+    "@bitwarden/common": "file:../../../common",
+    "@bitwarden/generator-core": "file:../core"
+  }
+}
diff --git a/libs/tools/generator/components/src/index.ts b/libs/tools/generator/components/src/index.ts
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/libs/tools/generator/components/tsconfig.json b/libs/tools/generator/components/tsconfig.json
new file mode 100644
index 00000000000..c52bfd7b0df
--- /dev/null
+++ b/libs/tools/generator/components/tsconfig.json
@@ -0,0 +1,5 @@
+{
+  "extends": "../../../shared/tsconfig.libs",
+  "include": ["src"],
+  "exclude": ["node_modules", "dist"]
+}
diff --git a/libs/tools/generator/components/tsconfig.spec.json b/libs/tools/generator/components/tsconfig.spec.json
new file mode 100644
index 00000000000..fc8520e7376
--- /dev/null
+++ b/libs/tools/generator/components/tsconfig.spec.json
@@ -0,0 +1,3 @@
+{
+  "extends": "./tsconfig.json"
+}
diff --git a/libs/tools/generator/core/jest.config.js b/libs/tools/generator/core/jest.config.js
new file mode 100644
index 00000000000..91d379b0c36
--- /dev/null
+++ b/libs/tools/generator/core/jest.config.js
@@ -0,0 +1,13 @@
+const { pathsToModuleNameMapper } = require("ts-jest");
+
+const { compilerOptions } = require("../../../shared/tsconfig.libs");
+
+/** @type {import('jest').Config} */
+module.exports = {
+  testMatch: ["**/+(*.)+(spec).+(ts)"],
+  preset: "ts-jest",
+  testEnvironment: "../../../shared/test.environment.ts",
+  moduleNameMapper: pathsToModuleNameMapper(compilerOptions?.paths || {}, {
+    prefix: "<rootDir>/../../../",
+  }),
+};
diff --git a/libs/tools/generator/core/package.json b/libs/tools/generator/core/package.json
new file mode 100644
index 00000000000..5484cf0968b
--- /dev/null
+++ b/libs/tools/generator/core/package.json
@@ -0,0 +1,23 @@
+{
+  "name": "@bitwarden/generator-core",
+  "version": "0.0.0",
+  "description": "TODO",
+  "keywords": [
+    "bitwarden"
+  ],
+  "author": "Bitwarden Inc.",
+  "homepage": "https://bitwarden.com",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/bitwarden/clients"
+  },
+  "license": "GPL-3.0",
+  "scripts": {
+    "clean": "rimraf dist",
+    "build": "npm run clean && tsc",
+    "build:watch": "npm run clean && tsc -watch"
+  },
+  "dependencies": {
+    "@bitwarden/common": "file:../../../common"
+  }
+}
diff --git a/libs/tools/generator/core/src/index.ts b/libs/tools/generator/core/src/index.ts
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/libs/tools/generator/core/tsconfig.json b/libs/tools/generator/core/tsconfig.json
new file mode 100644
index 00000000000..c52bfd7b0df
--- /dev/null
+++ b/libs/tools/generator/core/tsconfig.json
@@ -0,0 +1,5 @@
+{
+  "extends": "../../../shared/tsconfig.libs",
+  "include": ["src"],
+  "exclude": ["node_modules", "dist"]
+}
diff --git a/libs/tools/generator/core/tsconfig.spec.json b/libs/tools/generator/core/tsconfig.spec.json
new file mode 100644
index 00000000000..fc8520e7376
--- /dev/null
+++ b/libs/tools/generator/core/tsconfig.spec.json
@@ -0,0 +1,3 @@
+{
+  "extends": "./tsconfig.json"
+}
diff --git a/libs/tools/generator/extensions/jest.config.js b/libs/tools/generator/extensions/jest.config.js
new file mode 100644
index 00000000000..91d379b0c36
--- /dev/null
+++ b/libs/tools/generator/extensions/jest.config.js
@@ -0,0 +1,13 @@
+const { pathsToModuleNameMapper } = require("ts-jest");
+
+const { compilerOptions } = require("../../../shared/tsconfig.libs");
+
+/** @type {import('jest').Config} */
+module.exports = {
+  testMatch: ["**/+(*.)+(spec).+(ts)"],
+  preset: "ts-jest",
+  testEnvironment: "../../../shared/test.environment.ts",
+  moduleNameMapper: pathsToModuleNameMapper(compilerOptions?.paths || {}, {
+    prefix: "<rootDir>/../../../",
+  }),
+};
diff --git a/libs/tools/generator/extensions/package.json b/libs/tools/generator/extensions/package.json
new file mode 100644
index 00000000000..5a48f2e6008
--- /dev/null
+++ b/libs/tools/generator/extensions/package.json
@@ -0,0 +1,24 @@
+{
+  "name": "@bitwarden/generator-extensions",
+  "version": "0.0.0",
+  "description": "TODO",
+  "keywords": [
+    "bitwarden"
+  ],
+  "author": "Bitwarden Inc.",
+  "homepage": "https://bitwarden.com",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/bitwarden/clients"
+  },
+  "license": "GPL-3.0",
+  "scripts": {
+    "clean": "rimraf dist",
+    "build": "npm run clean && tsc",
+    "build:watch": "npm run clean && tsc -watch"
+  },
+  "dependencies": {
+    "@bitwarden/common": "file:../../../common",
+    "@bitwarden/generator-core": "file:../core"
+  }
+}
diff --git a/libs/tools/generator/extensions/src/index.ts b/libs/tools/generator/extensions/src/index.ts
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/libs/tools/generator/extensions/tsconfig.json b/libs/tools/generator/extensions/tsconfig.json
new file mode 100644
index 00000000000..c52bfd7b0df
--- /dev/null
+++ b/libs/tools/generator/extensions/tsconfig.json
@@ -0,0 +1,5 @@
+{
+  "extends": "../../../shared/tsconfig.libs",
+  "include": ["src"],
+  "exclude": ["node_modules", "dist"]
+}
diff --git a/libs/tools/generator/extensions/tsconfig.spec.json b/libs/tools/generator/extensions/tsconfig.spec.json
new file mode 100644
index 00000000000..fc8520e7376
--- /dev/null
+++ b/libs/tools/generator/extensions/tsconfig.spec.json
@@ -0,0 +1,3 @@
+{
+  "extends": "./tsconfig.json"
+}
diff --git a/tsconfig.eslint.json b/tsconfig.eslint.json
index ccb483f9b6f..a2c932672b6 100644
--- a/tsconfig.eslint.json
+++ b/tsconfig.eslint.json
@@ -21,6 +21,9 @@
       "@bitwarden/billing": ["./libs/billing/src"],
       "@bitwarden/common/*": ["./libs/common/src/*"],
       "@bitwarden/components": ["./libs/components/src"],
+      "@bitwarden/generator-components": ["./libs/tools/generator/components/src"],
+      "@bitwarden/generator-core": ["./libs/tools/generator/core/src"],
+      "@bitwarden/generator-extensions": ["./libs/tools/generator/extensions/src"],
       "@bitwarden/vault-export-core": [".libs/tools/export/vault-export/vault-export-core/src"],
       "@bitwarden/vault-export-ui": [".libs/tools/export/vault-export/vault-export-ui/src"],
       "@bitwarden/importer/core": ["./libs/importer/src"],
diff --git a/tsconfig.json b/tsconfig.json
index 6b9e3d960ee..8085b9f8324 100644
--- a/tsconfig.json
+++ b/tsconfig.json
@@ -22,6 +22,9 @@
       "@bitwarden/billing": ["./libs/billing/src"],
       "@bitwarden/common/*": ["./libs/common/src/*"],
       "@bitwarden/components": ["./libs/components/src"],
+      "@bitwarden/generator-components": ["./libs/tools/generator/components/src"],
+      "@bitwarden/generator-core": ["./libs/tools/generator/core/src"],
+      "@bitwarden/generator-extensions": ["./libs/tools/generator/extensions/src"],
       "@bitwarden/vault-export-core": ["./libs/tools/export/vault-export/vault-export-core/src"],
       "@bitwarden/vault-export-ui": ["./libs/tools/export/vault-export/vault-export-ui/src"],
       "@bitwarden/importer/core": ["./libs/importer/src"],

From 93e7a6ae87d88a0d893ac65e812cb85d4451aeb6 Mon Sep 17 00:00:00 2001
From: Justin Baur <19896123+justindbaur@users.noreply.github.com>
Date: Thu, 30 May 2024 16:01:24 -0400
Subject: [PATCH 046/138] [PM-8436] [PM-8483] Support Asymmetric Mac Encryption
 Types in EncString (#9441)

* Support Asymmetric Mac Encryption Types in EncString

* Add EncString Tests
---
 .../platform/models/domain/enc-string.spec.ts | 20 +++++++++++++++++++
 .../src/platform/models/domain/enc-string.ts  |  5 +++++
 2 files changed, 25 insertions(+)

diff --git a/libs/common/src/platform/models/domain/enc-string.spec.ts b/libs/common/src/platform/models/domain/enc-string.spec.ts
index b8db7efb71c..4275c623502 100644
--- a/libs/common/src/platform/models/domain/enc-string.spec.ts
+++ b/libs/common/src/platform/models/domain/enc-string.spec.ts
@@ -55,6 +55,26 @@ describe("EncString", () => {
           encryptionType: 3,
         });
       });
+
+      const cases = [
+        "aXY=|Y3Q=", // AesCbc256_B64 w/out header
+        "aXY=|Y3Q=|cnNhQ3Q=", // AesCbc128_HmacSha256_B64 w/out header
+        "0.QmFzZTY0UGFydA==|QmFzZTY0UGFydA==", // AesCbc256_B64 with header
+        "1.QmFzZTY0UGFydA==|QmFzZTY0UGFydA==|QmFzZTY0UGFydA==", // AesCbc128_HmacSha256_B64
+        "2.QmFzZTY0UGFydA==|QmFzZTY0UGFydA==|QmFzZTY0UGFydA==", // AesCbc256_HmacSha256_B64
+        "3.QmFzZTY0UGFydA==", // Rsa2048_OaepSha256_B64
+        "4.QmFzZTY0UGFydA==", // Rsa2048_OaepSha1_B64
+        "5.QmFzZTY0UGFydA==|QmFzZTY0UGFydA==", // Rsa2048_OaepSha256_HmacSha256_B64
+        "6.QmFzZTY0UGFydA==|QmFzZTY0UGFydA==", // Rsa2048_OaepSha1_HmacSha256_B64
+      ];
+
+      it.each(cases)("can retrieve data bytes for %s", (encryptedString) => {
+        const encString = new EncString(encryptedString);
+
+        const dataBytes = encString.dataBytes;
+        expect(dataBytes).not.toBeNull();
+        expect(dataBytes.length).toBeGreaterThan(0);
+      });
     });
 
     describe("decrypt", () => {
diff --git a/libs/common/src/platform/models/domain/enc-string.ts b/libs/common/src/platform/models/domain/enc-string.ts
index aeb1038d5aa..5b99c216ad3 100644
--- a/libs/common/src/platform/models/domain/enc-string.ts
+++ b/libs/common/src/platform/models/domain/enc-string.ts
@@ -97,6 +97,11 @@ export class EncString implements Encrypted {
       case EncryptionType.Rsa2048_OaepSha1_B64:
         this.data = encPieces[0];
         break;
+      case EncryptionType.Rsa2048_OaepSha256_HmacSha256_B64:
+      case EncryptionType.Rsa2048_OaepSha1_HmacSha256_B64:
+        this.data = encPieces[0];
+        this.mac = encPieces[1];
+        break;
       default:
         return;
     }

From 85843c8baabd8aac47fc3c181dc8b9a22799b66c Mon Sep 17 00:00:00 2001
From: Todd Martin <106564991+trmartin4@users.noreply.github.com>
Date: Thu, 30 May 2024 18:25:17 -0400
Subject: [PATCH 047/138] [PM-6805] Update minimum supported macOS desktop
 version to 12 (#9439)

---
 apps/desktop/electron-builder.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/desktop/electron-builder.json b/apps/desktop/electron-builder.json
index ef0927296a0..39c62998a67 100644
--- a/apps/desktop/electron-builder.json
+++ b/apps/desktop/electron-builder.json
@@ -127,7 +127,7 @@
     "entitlementsLoginHelper": "resources/entitlements.mas.loginhelper.plist",
     "hardenedRuntime": false,
     "extendInfo": {
-      "LSMinimumSystemVersion": "10.15.0",
+      "LSMinimumSystemVersion": "12",
       "ElectronTeamID": "LTZ2PFU5D6"
     }
   },

From 868e0a5ac9d8651135549a1868af85e8fe30f9a4 Mon Sep 17 00:00:00 2001
From: Will Martin <contact@willmartian.com>
Date: Thu, 30 May 2024 18:42:26 -0400
Subject: [PATCH 048/138] [PM-6788][PM-7755] add babel/preset-env and
 browserslist (#9383)

* add babel present-env and browserslist

---------

Co-authored-by: Oscar Hinton <Hinton@users.noreply.github.com>
---
 .browserslistrc                  |    1 +
 apps/browser/webpack.config.js   |    3 +-
 apps/desktop/webpack.renderer.js |    3 +-
 apps/web/webpack.config.js       |    3 +-
 babel.config.json                |    4 +
 package-lock.json                | 1468 +++++++++++++++++-------------
 package.json                     |    4 +
 7 files changed, 822 insertions(+), 664 deletions(-)
 create mode 100644 .browserslistrc
 create mode 100644 babel.config.json

diff --git a/.browserslistrc b/.browserslistrc
new file mode 100644
index 00000000000..ff3f1ffc4c7
--- /dev/null
+++ b/.browserslistrc
@@ -0,0 +1 @@
+> 0.5%, last 3 major versions, Firefox ESR, not dead
diff --git a/apps/browser/webpack.config.js b/apps/browser/webpack.config.js
index 2756ab4395f..a0b86f06d5d 100644
--- a/apps/browser/webpack.config.js
+++ b/apps/browser/webpack.config.js
@@ -66,8 +66,7 @@ const moduleRules = [
       {
         loader: "babel-loader",
         options: {
-          configFile: false,
-          plugins: ["@angular/compiler-cli/linker/babel"],
+          configFile: "../../babel.config.json",
         },
       },
     ],
diff --git a/apps/desktop/webpack.renderer.js b/apps/desktop/webpack.renderer.js
index 1ebeadef055..dc3cdf1fef5 100644
--- a/apps/desktop/webpack.renderer.js
+++ b/apps/desktop/webpack.renderer.js
@@ -24,8 +24,7 @@ const common = {
           {
             loader: "babel-loader",
             options: {
-              configFile: false,
-              plugins: ["@angular/compiler-cli/linker/babel"],
+              configFile: "../../babel.config.json",
             },
           },
         ],
diff --git a/apps/web/webpack.config.js b/apps/web/webpack.config.js
index 815a8aff9e3..f22d98f081d 100644
--- a/apps/web/webpack.config.js
+++ b/apps/web/webpack.config.js
@@ -68,8 +68,7 @@ const moduleRules = [
       {
         loader: "babel-loader",
         options: {
-          configFile: false,
-          plugins: ["@angular/compiler-cli/linker/babel"],
+          configFile: "../../babel.config.json",
         },
       },
     ],
diff --git a/babel.config.json b/babel.config.json
new file mode 100644
index 00000000000..7f4611dec02
--- /dev/null
+++ b/babel.config.json
@@ -0,0 +1,4 @@
+{
+  "presets": ["@babel/preset-env"],
+  "plugins": ["@angular/compiler-cli/linker/babel"]
+}
diff --git a/package-lock.json b/package-lock.json
index 9f59c4a60f6..ee7ccb13cdc 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -80,6 +80,8 @@
         "@angular/cli": "16.2.11",
         "@angular/compiler-cli": "16.2.12",
         "@angular/elements": "16.2.12",
+        "@babel/core": "^7.24.6",
+        "@babel/preset-env": "^7.24.6",
         "@compodoc/compodoc": "1.1.23",
         "@electron/notarize": "2.3.0",
         "@electron/rebuild": "3.6.0",
@@ -122,7 +124,9 @@
         "@webcomponents/custom-elements": "1.6.0",
         "@yao-pkg/pkg": "^5.11.5",
         "autoprefixer": "10.4.19",
+        "babel-loader": "^9.1.3",
         "base64-loader": "1.0.0",
+        "browserslist": "^4.23.0",
         "chromatic": "10.9.6",
         "concurrently": "8.2.2",
         "copy-webpack-plugin": "12.0.2",
@@ -596,6 +600,125 @@
         "semver": "bin/semver.js"
       }
     },
+    "node_modules/@angular-devkit/build-angular/node_modules/@babel/preset-env": {
+      "version": "7.22.9",
+      "resolved": "https://registry.npmjs.org/@babel/preset-env/-/preset-env-7.22.9.tgz",
+      "integrity": "sha512-wNi5H/Emkhll/bqPjsjQorSykrlfY5OWakd6AulLvMEytpKasMVUpVy8RL4qBIBs5Ac6/5i0/Rv0b/Fg6Eag/g==",
+      "dev": true,
+      "dependencies": {
+        "@babel/compat-data": "^7.22.9",
+        "@babel/helper-compilation-targets": "^7.22.9",
+        "@babel/helper-plugin-utils": "^7.22.5",
+        "@babel/helper-validator-option": "^7.22.5",
+        "@babel/plugin-bugfix-safari-id-destructuring-collision-in-function-expression": "^7.22.5",
+        "@babel/plugin-bugfix-v8-spread-parameters-in-optional-chaining": "^7.22.5",
+        "@babel/plugin-proposal-private-property-in-object": "7.21.0-placeholder-for-preset-env.2",
+        "@babel/plugin-syntax-async-generators": "^7.8.4",
+        "@babel/plugin-syntax-class-properties": "^7.12.13",
+        "@babel/plugin-syntax-class-static-block": "^7.14.5",
+        "@babel/plugin-syntax-dynamic-import": "^7.8.3",
+        "@babel/plugin-syntax-export-namespace-from": "^7.8.3",
+        "@babel/plugin-syntax-import-assertions": "^7.22.5",
+        "@babel/plugin-syntax-import-attributes": "^7.22.5",
+        "@babel/plugin-syntax-import-meta": "^7.10.4",
+        "@babel/plugin-syntax-json-strings": "^7.8.3",
+        "@babel/plugin-syntax-logical-assignment-operators": "^7.10.4",
+        "@babel/plugin-syntax-nullish-coalescing-operator": "^7.8.3",
+        "@babel/plugin-syntax-numeric-separator": "^7.10.4",
+        "@babel/plugin-syntax-object-rest-spread": "^7.8.3",
+        "@babel/plugin-syntax-optional-catch-binding": "^7.8.3",
+        "@babel/plugin-syntax-optional-chaining": "^7.8.3",
+        "@babel/plugin-syntax-private-property-in-object": "^7.14.5",
+        "@babel/plugin-syntax-top-level-await": "^7.14.5",
+        "@babel/plugin-syntax-unicode-sets-regex": "^7.18.6",
+        "@babel/plugin-transform-arrow-functions": "^7.22.5",
+        "@babel/plugin-transform-async-generator-functions": "^7.22.7",
+        "@babel/plugin-transform-async-to-generator": "^7.22.5",
+        "@babel/plugin-transform-block-scoped-functions": "^7.22.5",
+        "@babel/plugin-transform-block-scoping": "^7.22.5",
+        "@babel/plugin-transform-class-properties": "^7.22.5",
+        "@babel/plugin-transform-class-static-block": "^7.22.5",
+        "@babel/plugin-transform-classes": "^7.22.6",
+        "@babel/plugin-transform-computed-properties": "^7.22.5",
+        "@babel/plugin-transform-destructuring": "^7.22.5",
+        "@babel/plugin-transform-dotall-regex": "^7.22.5",
+        "@babel/plugin-transform-duplicate-keys": "^7.22.5",
+        "@babel/plugin-transform-dynamic-import": "^7.22.5",
+        "@babel/plugin-transform-exponentiation-operator": "^7.22.5",
+        "@babel/plugin-transform-export-namespace-from": "^7.22.5",
+        "@babel/plugin-transform-for-of": "^7.22.5",
+        "@babel/plugin-transform-function-name": "^7.22.5",
+        "@babel/plugin-transform-json-strings": "^7.22.5",
+        "@babel/plugin-transform-literals": "^7.22.5",
+        "@babel/plugin-transform-logical-assignment-operators": "^7.22.5",
+        "@babel/plugin-transform-member-expression-literals": "^7.22.5",
+        "@babel/plugin-transform-modules-amd": "^7.22.5",
+        "@babel/plugin-transform-modules-commonjs": "^7.22.5",
+        "@babel/plugin-transform-modules-systemjs": "^7.22.5",
+        "@babel/plugin-transform-modules-umd": "^7.22.5",
+        "@babel/plugin-transform-named-capturing-groups-regex": "^7.22.5",
+        "@babel/plugin-transform-new-target": "^7.22.5",
+        "@babel/plugin-transform-nullish-coalescing-operator": "^7.22.5",
+        "@babel/plugin-transform-numeric-separator": "^7.22.5",
+        "@babel/plugin-transform-object-rest-spread": "^7.22.5",
+        "@babel/plugin-transform-object-super": "^7.22.5",
+        "@babel/plugin-transform-optional-catch-binding": "^7.22.5",
+        "@babel/plugin-transform-optional-chaining": "^7.22.6",
+        "@babel/plugin-transform-parameters": "^7.22.5",
+        "@babel/plugin-transform-private-methods": "^7.22.5",
+        "@babel/plugin-transform-private-property-in-object": "^7.22.5",
+        "@babel/plugin-transform-property-literals": "^7.22.5",
+        "@babel/plugin-transform-regenerator": "^7.22.5",
+        "@babel/plugin-transform-reserved-words": "^7.22.5",
+        "@babel/plugin-transform-shorthand-properties": "^7.22.5",
+        "@babel/plugin-transform-spread": "^7.22.5",
+        "@babel/plugin-transform-sticky-regex": "^7.22.5",
+        "@babel/plugin-transform-template-literals": "^7.22.5",
+        "@babel/plugin-transform-typeof-symbol": "^7.22.5",
+        "@babel/plugin-transform-unicode-escapes": "^7.22.5",
+        "@babel/plugin-transform-unicode-property-regex": "^7.22.5",
+        "@babel/plugin-transform-unicode-regex": "^7.22.5",
+        "@babel/plugin-transform-unicode-sets-regex": "^7.22.5",
+        "@babel/preset-modules": "^0.1.5",
+        "@babel/types": "^7.22.5",
+        "babel-plugin-polyfill-corejs2": "^0.4.4",
+        "babel-plugin-polyfill-corejs3": "^0.8.2",
+        "babel-plugin-polyfill-regenerator": "^0.5.1",
+        "core-js-compat": "^3.31.0",
+        "semver": "^6.3.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      },
+      "peerDependencies": {
+        "@babel/core": "^7.0.0-0"
+      }
+    },
+    "node_modules/@angular-devkit/build-angular/node_modules/@babel/preset-env/node_modules/semver": {
+      "version": "6.3.1",
+      "resolved": "https://registry.npmjs.org/semver/-/semver-6.3.1.tgz",
+      "integrity": "sha512-BR7VvDCVHO+q2xBEWskxS6DJE1qRnb7DxzUrogb71CWoSficBxYsiAGd+Kl0mmq/MprG9yArRkyrQxTO6XjMzA==",
+      "dev": true,
+      "bin": {
+        "semver": "bin/semver.js"
+      }
+    },
+    "node_modules/@angular-devkit/build-angular/node_modules/@babel/preset-modules": {
+      "version": "0.1.6",
+      "resolved": "https://registry.npmjs.org/@babel/preset-modules/-/preset-modules-0.1.6.tgz",
+      "integrity": "sha512-ID2yj6K/4lKfhuU3+EX4UvNbIt7eACFbHmNUjzA+ep+B5971CknnA/9DEWKbRokfbbtblxxxXFJJrH47UEAMVg==",
+      "dev": true,
+      "dependencies": {
+        "@babel/helper-plugin-utils": "^7.0.0",
+        "@babel/plugin-proposal-unicode-property-regex": "^7.4.4",
+        "@babel/plugin-transform-dotall-regex": "^7.4.4",
+        "@babel/types": "^7.4.4",
+        "esutils": "^2.0.2"
+      },
+      "peerDependencies": {
+        "@babel/core": "^7.0.0-0 || ^8.0.0-0 <8.0.0"
+      }
+    },
     "node_modules/@angular-devkit/build-angular/node_modules/@types/retry": {
       "version": "0.12.0",
       "resolved": "https://registry.npmjs.org/@types/retry/-/retry-0.12.0.tgz",
@@ -1818,11 +1941,11 @@
       }
     },
     "node_modules/@babel/code-frame": {
-      "version": "7.24.2",
-      "resolved": "https://registry.npmjs.org/@babel/code-frame/-/code-frame-7.24.2.tgz",
-      "integrity": "sha512-y5+tLQyV8pg3fsiln67BVLD1P13Eg4lh5RW9mF0zUuvLrv9uIQ4MCL+CRT+FTsBlBjcIan6PGsLcBN0m3ClUyQ==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/code-frame/-/code-frame-7.24.6.tgz",
+      "integrity": "sha512-ZJhac6FkEd1yhG2AHOmfcXG4ceoLltoCVJjN5XsWN9BifBQr+cHJbWi0h68HZuSORq+3WtJ2z0hwF2NG1b5kcA==",
       "dependencies": {
-        "@babel/highlight": "^7.24.2",
+        "@babel/highlight": "^7.24.6",
         "picocolors": "^1.0.0"
       },
       "engines": {
@@ -1830,28 +1953,28 @@
       }
     },
     "node_modules/@babel/compat-data": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/compat-data/-/compat-data-7.24.1.tgz",
-      "integrity": "sha512-Pc65opHDliVpRHuKfzI+gSA4zcgr65O4cl64fFJIWEEh8JoHIHh0Oez1Eo8Arz8zq/JhgKodQaxEwUPRtZylVA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/compat-data/-/compat-data-7.24.6.tgz",
+      "integrity": "sha512-aC2DGhBq5eEdyXWqrDInSqQjO0k8xtPRf5YylULqx8MCd6jBtzqfta/3ETMRpuKIc5hyswfO80ObyA1MvkCcUQ==",
       "engines": {
         "node": ">=6.9.0"
       }
     },
     "node_modules/@babel/core": {
-      "version": "7.24.3",
-      "resolved": "https://registry.npmjs.org/@babel/core/-/core-7.24.3.tgz",
-      "integrity": "sha512-5FcvN1JHw2sHJChotgx8Ek0lyuh4kCKelgMTTqhYJJtloNvUfpAFMeNQUtdlIaktwrSV9LtCdqwk48wL2wBacQ==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/core/-/core-7.24.6.tgz",
+      "integrity": "sha512-qAHSfAdVyFmIvl0VHELib8xar7ONuSHrE2hLnsaWkYNTI68dmi1x8GYDhJjMI/e7XWal9QBlZkwbOnkcw7Z8gQ==",
       "dependencies": {
         "@ampproject/remapping": "^2.2.0",
-        "@babel/code-frame": "^7.24.2",
-        "@babel/generator": "^7.24.1",
-        "@babel/helper-compilation-targets": "^7.23.6",
-        "@babel/helper-module-transforms": "^7.23.3",
-        "@babel/helpers": "^7.24.1",
-        "@babel/parser": "^7.24.1",
-        "@babel/template": "^7.24.0",
-        "@babel/traverse": "^7.24.1",
-        "@babel/types": "^7.24.0",
+        "@babel/code-frame": "^7.24.6",
+        "@babel/generator": "^7.24.6",
+        "@babel/helper-compilation-targets": "^7.24.6",
+        "@babel/helper-module-transforms": "^7.24.6",
+        "@babel/helpers": "^7.24.6",
+        "@babel/parser": "^7.24.6",
+        "@babel/template": "^7.24.6",
+        "@babel/traverse": "^7.24.6",
+        "@babel/types": "^7.24.6",
         "convert-source-map": "^2.0.0",
         "debug": "^4.1.0",
         "gensync": "^1.0.0-beta.2",
@@ -1867,11 +1990,11 @@
       }
     },
     "node_modules/@babel/core/node_modules/@babel/generator": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/generator/-/generator-7.24.1.tgz",
-      "integrity": "sha512-DfCRfZsBcrPEHUfuBMgbJ1Ut01Y/itOs+hY2nFLgqsqXd52/iSiVq5TITtUasIUgm+IIKdY2/1I7auiQOEeC9A==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/generator/-/generator-7.24.6.tgz",
+      "integrity": "sha512-S7m4eNa6YAPJRHmKsLHIDJhNAGNKoWNiWefz1MBbpnt8g9lvMDl1hir4P9bo/57bQEmuwEhnRU/AMWsD0G/Fbg==",
       "dependencies": {
-        "@babel/types": "^7.24.0",
+        "@babel/types": "^7.24.6",
         "@jridgewell/gen-mapping": "^0.3.5",
         "@jridgewell/trace-mapping": "^0.3.25",
         "jsesc": "^2.5.1"
@@ -1880,14 +2003,57 @@
         "node": ">=6.9.0"
       }
     },
-    "node_modules/@babel/core/node_modules/@babel/template": {
-      "version": "7.24.0",
-      "resolved": "https://registry.npmjs.org/@babel/template/-/template-7.24.0.tgz",
-      "integrity": "sha512-Bkf2q8lMB0AFpX0NFEqSbx1OkTHf0f+0j82mkw+ZpzBnkk7e9Ql0891vlfgi+kHwOk8tQjiQHpqh4LaSa0fKEA==",
+    "node_modules/@babel/core/node_modules/@babel/helper-split-export-declaration": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-split-export-declaration/-/helper-split-export-declaration-7.24.6.tgz",
+      "integrity": "sha512-CvLSkwXGWnYlF9+J3iZUvwgAxKiYzK3BWuo+mLzD/MDGOZDj7Gq8+hqaOkMxmJwmlv0iu86uH5fdADd9Hxkymw==",
       "dependencies": {
-        "@babel/code-frame": "^7.23.5",
-        "@babel/parser": "^7.24.0",
-        "@babel/types": "^7.24.0"
+        "@babel/types": "^7.24.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/core/node_modules/@babel/helpers": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helpers/-/helpers-7.24.6.tgz",
+      "integrity": "sha512-V2PI+NqnyFu1i0GyTd/O/cTpxzQCYioSkUIRmgo7gFEHKKCg5w46+r/A6WeUR1+P3TeQ49dspGPNd/E3n9AnnA==",
+      "dependencies": {
+        "@babel/template": "^7.24.6",
+        "@babel/types": "^7.24.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/core/node_modules/@babel/template": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/template/-/template-7.24.6.tgz",
+      "integrity": "sha512-3vgazJlLwNXi9jhrR1ef8qiB65L1RK90+lEQwv4OxveHnqC3BfmnHdgySwRLzf6akhlOYenT+b7AfWq+a//AHw==",
+      "dependencies": {
+        "@babel/code-frame": "^7.24.6",
+        "@babel/parser": "^7.24.6",
+        "@babel/types": "^7.24.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/core/node_modules/@babel/traverse": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/traverse/-/traverse-7.24.6.tgz",
+      "integrity": "sha512-OsNjaJwT9Zn8ozxcfoBc+RaHdj3gFmCmYoQLUII1o6ZrUwku0BMg80FoOTPx+Gi6XhcQxAYE4xyjPTo4SxEQqw==",
+      "dependencies": {
+        "@babel/code-frame": "^7.24.6",
+        "@babel/generator": "^7.24.6",
+        "@babel/helper-environment-visitor": "^7.24.6",
+        "@babel/helper-function-name": "^7.24.6",
+        "@babel/helper-hoist-variables": "^7.24.6",
+        "@babel/helper-split-export-declaration": "^7.24.6",
+        "@babel/parser": "^7.24.6",
+        "@babel/types": "^7.24.6",
+        "debug": "^4.3.1",
+        "globals": "^11.1.0"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -1934,24 +2100,24 @@
       }
     },
     "node_modules/@babel/helper-builder-binary-assignment-operator-visitor": {
-      "version": "7.22.15",
-      "resolved": "https://registry.npmjs.org/@babel/helper-builder-binary-assignment-operator-visitor/-/helper-builder-binary-assignment-operator-visitor-7.22.15.tgz",
-      "integrity": "sha512-QkBXwGgaoC2GtGZRoma6kv7Szfv06khvhFav67ZExau2RaXzy8MpHSMO2PNoP2XtmQphJQRHFfg77Bq731Yizw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-builder-binary-assignment-operator-visitor/-/helper-builder-binary-assignment-operator-visitor-7.24.6.tgz",
+      "integrity": "sha512-+wnfqc5uHiMYtvRX7qu80Toef8BXeh4HHR1SPeonGb1SKPniNEd4a/nlaJJMv/OIEYvIVavvo0yR7u10Gqz0Iw==",
       "dev": true,
       "dependencies": {
-        "@babel/types": "^7.22.15"
+        "@babel/types": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
       }
     },
     "node_modules/@babel/helper-compilation-targets": {
-      "version": "7.23.6",
-      "resolved": "https://registry.npmjs.org/@babel/helper-compilation-targets/-/helper-compilation-targets-7.23.6.tgz",
-      "integrity": "sha512-9JB548GZoQVmzrFgp8o7KxdgkTGm6xs9DW0o/Pim72UDjzr5ObUQ6ZzYPqA+g9OTS2bBQoctLJrky0RDCAWRgQ==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-compilation-targets/-/helper-compilation-targets-7.24.6.tgz",
+      "integrity": "sha512-VZQ57UsDGlX/5fFA7GkVPplZhHsVc+vuErWgdOiysI9Ksnw0Pbbd6pnPiR/mmJyKHgyIW0c7KT32gmhiF+cirg==",
       "dependencies": {
-        "@babel/compat-data": "^7.23.5",
-        "@babel/helper-validator-option": "^7.23.5",
+        "@babel/compat-data": "^7.24.6",
+        "@babel/helper-validator-option": "^7.24.6",
         "browserslist": "^4.22.2",
         "lru-cache": "^5.1.1",
         "semver": "^6.3.1"
@@ -1969,19 +2135,19 @@
       }
     },
     "node_modules/@babel/helper-create-class-features-plugin": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/helper-create-class-features-plugin/-/helper-create-class-features-plugin-7.24.1.tgz",
-      "integrity": "sha512-1yJa9dX9g//V6fDebXoEfEsxkZHk3Hcbm+zLhyu6qVgYFLvmTALTeV+jNU9e5RnYtioBrGEOdoI2joMSNQ/+aA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-create-class-features-plugin/-/helper-create-class-features-plugin-7.24.6.tgz",
+      "integrity": "sha512-djsosdPJVZE6Vsw3kk7IPRWethP94WHGOhQTc67SNXE0ZzMhHgALw8iGmYS0TD1bbMM0VDROy43od7/hN6WYcA==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-annotate-as-pure": "^7.22.5",
-        "@babel/helper-environment-visitor": "^7.22.20",
-        "@babel/helper-function-name": "^7.23.0",
-        "@babel/helper-member-expression-to-functions": "^7.23.0",
-        "@babel/helper-optimise-call-expression": "^7.22.5",
-        "@babel/helper-replace-supers": "^7.24.1",
-        "@babel/helper-skip-transparent-expression-wrappers": "^7.22.5",
-        "@babel/helper-split-export-declaration": "^7.22.6",
+        "@babel/helper-annotate-as-pure": "^7.24.6",
+        "@babel/helper-environment-visitor": "^7.24.6",
+        "@babel/helper-function-name": "^7.24.6",
+        "@babel/helper-member-expression-to-functions": "^7.24.6",
+        "@babel/helper-optimise-call-expression": "^7.24.6",
+        "@babel/helper-replace-supers": "^7.24.6",
+        "@babel/helper-skip-transparent-expression-wrappers": "^7.24.6",
+        "@babel/helper-split-export-declaration": "^7.24.6",
         "semver": "^6.3.1"
       },
       "engines": {
@@ -1991,6 +2157,30 @@
         "@babel/core": "^7.0.0"
       }
     },
+    "node_modules/@babel/helper-create-class-features-plugin/node_modules/@babel/helper-annotate-as-pure": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-annotate-as-pure/-/helper-annotate-as-pure-7.24.6.tgz",
+      "integrity": "sha512-DitEzDfOMnd13kZnDqns1ccmftwJTS9DMkyn9pYTxulS7bZxUxpMly3Nf23QQ6NwA4UB8lAqjbqWtyvElEMAkg==",
+      "dev": true,
+      "dependencies": {
+        "@babel/types": "^7.24.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-create-class-features-plugin/node_modules/@babel/helper-split-export-declaration": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-split-export-declaration/-/helper-split-export-declaration-7.24.6.tgz",
+      "integrity": "sha512-CvLSkwXGWnYlF9+J3iZUvwgAxKiYzK3BWuo+mLzD/MDGOZDj7Gq8+hqaOkMxmJwmlv0iu86uH5fdADd9Hxkymw==",
+      "dev": true,
+      "dependencies": {
+        "@babel/types": "^7.24.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
     "node_modules/@babel/helper-create-class-features-plugin/node_modules/semver": {
       "version": "6.3.1",
       "resolved": "https://registry.npmjs.org/semver/-/semver-6.3.1.tgz",
@@ -2001,12 +2191,12 @@
       }
     },
     "node_modules/@babel/helper-create-regexp-features-plugin": {
-      "version": "7.22.15",
-      "resolved": "https://registry.npmjs.org/@babel/helper-create-regexp-features-plugin/-/helper-create-regexp-features-plugin-7.22.15.tgz",
-      "integrity": "sha512-29FkPLFjn4TPEa3RE7GpW+qbE8tlsu3jntNYNfcGsc49LphF1PQIiD+vMZ1z1xVOKt+93khA9tc2JBs3kBjA7w==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-create-regexp-features-plugin/-/helper-create-regexp-features-plugin-7.24.6.tgz",
+      "integrity": "sha512-C875lFBIWWwyv6MHZUG9HmRrlTDgOsLWZfYR0nW69gaKJNe0/Mpxx5r0EID2ZdHQkdUmQo2t0uNckTL08/1BgA==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-annotate-as-pure": "^7.22.5",
+        "@babel/helper-annotate-as-pure": "^7.24.6",
         "regexpu-core": "^5.3.1",
         "semver": "^6.3.1"
       },
@@ -2017,6 +2207,18 @@
         "@babel/core": "^7.0.0"
       }
     },
+    "node_modules/@babel/helper-create-regexp-features-plugin/node_modules/@babel/helper-annotate-as-pure": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-annotate-as-pure/-/helper-annotate-as-pure-7.24.6.tgz",
+      "integrity": "sha512-DitEzDfOMnd13kZnDqns1ccmftwJTS9DMkyn9pYTxulS7bZxUxpMly3Nf23QQ6NwA4UB8lAqjbqWtyvElEMAkg==",
+      "dev": true,
+      "dependencies": {
+        "@babel/types": "^7.24.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
     "node_modules/@babel/helper-create-regexp-features-plugin/node_modules/semver": {
       "version": "6.3.1",
       "resolved": "https://registry.npmjs.org/semver/-/semver-6.3.1.tgz",
@@ -2027,9 +2229,9 @@
       }
     },
     "node_modules/@babel/helper-define-polyfill-provider": {
-      "version": "0.6.1",
-      "resolved": "https://registry.npmjs.org/@babel/helper-define-polyfill-provider/-/helper-define-polyfill-provider-0.6.1.tgz",
-      "integrity": "sha512-o7SDgTJuvx5vLKD6SFvkydkSMBvahDKGiNJzG22IZYXhiqoe9efY7zocICBgzHV4IRg5wdgl2nEL/tulKIEIbA==",
+      "version": "0.6.2",
+      "resolved": "https://registry.npmjs.org/@babel/helper-define-polyfill-provider/-/helper-define-polyfill-provider-0.6.2.tgz",
+      "integrity": "sha512-LV76g+C502biUK6AyZ3LK10vDpDyCzZnhZFXkH1L75zHPj68+qc8Zfpx2th+gzwA2MzyK+1g/3EPl62yFnVttQ==",
       "dev": true,
       "dependencies": {
         "@babel/helper-compilation-targets": "^7.22.6",
@@ -2043,82 +2245,82 @@
       }
     },
     "node_modules/@babel/helper-environment-visitor": {
-      "version": "7.22.20",
-      "resolved": "https://registry.npmjs.org/@babel/helper-environment-visitor/-/helper-environment-visitor-7.22.20.tgz",
-      "integrity": "sha512-zfedSIzFhat/gFhWfHtgWvlec0nqB9YEIVrpuwjruLlXfUSnA8cJB0miHKwqDnQ7d32aKo2xt88/xZptwxbfhA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-environment-visitor/-/helper-environment-visitor-7.24.6.tgz",
+      "integrity": "sha512-Y50Cg3k0LKLMjxdPjIl40SdJgMB85iXn27Vk/qbHZCFx/o5XO3PSnpi675h1KEmmDb6OFArfd5SCQEQ5Q4H88g==",
       "engines": {
         "node": ">=6.9.0"
       }
     },
     "node_modules/@babel/helper-function-name": {
-      "version": "7.23.0",
-      "resolved": "https://registry.npmjs.org/@babel/helper-function-name/-/helper-function-name-7.23.0.tgz",
-      "integrity": "sha512-OErEqsrxjZTJciZ4Oo+eoZqeW9UIiOcuYKRJA4ZAgV9myA+pOXhhmpfNCKjEH/auVfEYVFJ6y1Tc4r0eIApqiw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-function-name/-/helper-function-name-7.24.6.tgz",
+      "integrity": "sha512-xpeLqeeRkbxhnYimfr2PC+iA0Q7ljX/d1eZ9/inYbmfG2jpl8Lu3DyXvpOAnrS5kxkfOWJjioIMQsaMBXFI05w==",
       "dependencies": {
-        "@babel/template": "^7.22.15",
-        "@babel/types": "^7.23.0"
+        "@babel/template": "^7.24.6",
+        "@babel/types": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
       }
     },
     "node_modules/@babel/helper-function-name/node_modules/@babel/template": {
-      "version": "7.24.0",
-      "resolved": "https://registry.npmjs.org/@babel/template/-/template-7.24.0.tgz",
-      "integrity": "sha512-Bkf2q8lMB0AFpX0NFEqSbx1OkTHf0f+0j82mkw+ZpzBnkk7e9Ql0891vlfgi+kHwOk8tQjiQHpqh4LaSa0fKEA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/template/-/template-7.24.6.tgz",
+      "integrity": "sha512-3vgazJlLwNXi9jhrR1ef8qiB65L1RK90+lEQwv4OxveHnqC3BfmnHdgySwRLzf6akhlOYenT+b7AfWq+a//AHw==",
       "dependencies": {
-        "@babel/code-frame": "^7.23.5",
-        "@babel/parser": "^7.24.0",
-        "@babel/types": "^7.24.0"
+        "@babel/code-frame": "^7.24.6",
+        "@babel/parser": "^7.24.6",
+        "@babel/types": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
       }
     },
     "node_modules/@babel/helper-hoist-variables": {
-      "version": "7.22.5",
-      "resolved": "https://registry.npmjs.org/@babel/helper-hoist-variables/-/helper-hoist-variables-7.22.5.tgz",
-      "integrity": "sha512-wGjk9QZVzvknA6yKIUURb8zY3grXCcOZt+/7Wcy8O2uctxhplmUPkOdlgoNhmdVee2c92JXbf1xpMtVNbfoxRw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-hoist-variables/-/helper-hoist-variables-7.24.6.tgz",
+      "integrity": "sha512-SF/EMrC3OD7dSta1bLJIlrsVxwtd0UpjRJqLno6125epQMJ/kyFmpTT4pbvPbdQHzCHg+biQ7Syo8lnDtbR+uA==",
       "dependencies": {
-        "@babel/types": "^7.22.5"
+        "@babel/types": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
       }
     },
     "node_modules/@babel/helper-member-expression-to-functions": {
-      "version": "7.23.0",
-      "resolved": "https://registry.npmjs.org/@babel/helper-member-expression-to-functions/-/helper-member-expression-to-functions-7.23.0.tgz",
-      "integrity": "sha512-6gfrPwh7OuT6gZyJZvd6WbTfrqAo7vm4xCzAXOusKqq/vWdKXphTpj5klHKNmRUU6/QRGlBsyU9mAIPaWHlqJA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-member-expression-to-functions/-/helper-member-expression-to-functions-7.24.6.tgz",
+      "integrity": "sha512-OTsCufZTxDUsv2/eDXanw/mUZHWOxSbEmC3pP8cgjcy5rgeVPWWMStnv274DV60JtHxTk0adT0QrCzC4M9NWGg==",
       "dev": true,
       "dependencies": {
-        "@babel/types": "^7.23.0"
+        "@babel/types": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
       }
     },
     "node_modules/@babel/helper-module-imports": {
-      "version": "7.24.3",
-      "resolved": "https://registry.npmjs.org/@babel/helper-module-imports/-/helper-module-imports-7.24.3.tgz",
-      "integrity": "sha512-viKb0F9f2s0BCS22QSF308z/+1YWKV/76mwt61NBzS5izMzDPwdq1pTrzf+Li3npBWX9KdQbkeCt1jSAM7lZqg==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-module-imports/-/helper-module-imports-7.24.6.tgz",
+      "integrity": "sha512-a26dmxFJBF62rRO9mmpgrfTLsAuyHk4e1hKTUkD/fcMfynt8gvEKwQPQDVxWhca8dHoDck+55DFt42zV0QMw5g==",
       "dependencies": {
-        "@babel/types": "^7.24.0"
+        "@babel/types": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
       }
     },
     "node_modules/@babel/helper-module-transforms": {
-      "version": "7.23.3",
-      "resolved": "https://registry.npmjs.org/@babel/helper-module-transforms/-/helper-module-transforms-7.23.3.tgz",
-      "integrity": "sha512-7bBs4ED9OmswdfDzpz4MpWgSrV7FXlc3zIagvLFjS5H+Mk7Snr21vQ6QwrsoCGMfNC4e4LQPdoULEt4ykz0SRQ==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-module-transforms/-/helper-module-transforms-7.24.6.tgz",
+      "integrity": "sha512-Y/YMPm83mV2HJTbX1Qh2sjgjqcacvOlhbzdCCsSlblOKjSYmQqEbO6rUniWQyRo9ncyfjT8hnUjlG06RXDEmcA==",
       "dependencies": {
-        "@babel/helper-environment-visitor": "^7.22.20",
-        "@babel/helper-module-imports": "^7.22.15",
-        "@babel/helper-simple-access": "^7.22.5",
-        "@babel/helper-split-export-declaration": "^7.22.6",
-        "@babel/helper-validator-identifier": "^7.22.20"
+        "@babel/helper-environment-visitor": "^7.24.6",
+        "@babel/helper-module-imports": "^7.24.6",
+        "@babel/helper-simple-access": "^7.24.6",
+        "@babel/helper-split-export-declaration": "^7.24.6",
+        "@babel/helper-validator-identifier": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -2127,35 +2329,46 @@
         "@babel/core": "^7.0.0"
       }
     },
+    "node_modules/@babel/helper-module-transforms/node_modules/@babel/helper-split-export-declaration": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-split-export-declaration/-/helper-split-export-declaration-7.24.6.tgz",
+      "integrity": "sha512-CvLSkwXGWnYlF9+J3iZUvwgAxKiYzK3BWuo+mLzD/MDGOZDj7Gq8+hqaOkMxmJwmlv0iu86uH5fdADd9Hxkymw==",
+      "dependencies": {
+        "@babel/types": "^7.24.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
     "node_modules/@babel/helper-optimise-call-expression": {
-      "version": "7.22.5",
-      "resolved": "https://registry.npmjs.org/@babel/helper-optimise-call-expression/-/helper-optimise-call-expression-7.22.5.tgz",
-      "integrity": "sha512-HBwaojN0xFRx4yIvpwGqxiV2tUfl7401jlok564NgB9EHS1y6QT17FmKWm4ztqjeVdXLuC4fSvHc5ePpQjoTbw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-optimise-call-expression/-/helper-optimise-call-expression-7.24.6.tgz",
+      "integrity": "sha512-3SFDJRbx7KuPRl8XDUr8O7GAEB8iGyWPjLKJh/ywP/Iy9WOmEfMrsWbaZpvBu2HSYn4KQygIsz0O7m8y10ncMA==",
       "dev": true,
       "dependencies": {
-        "@babel/types": "^7.22.5"
+        "@babel/types": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
       }
     },
     "node_modules/@babel/helper-plugin-utils": {
-      "version": "7.24.0",
-      "resolved": "https://registry.npmjs.org/@babel/helper-plugin-utils/-/helper-plugin-utils-7.24.0.tgz",
-      "integrity": "sha512-9cUznXMG0+FxRuJfvL82QlTqIzhVW9sL0KjMPHhAOOvpQGL8QtdxnBKILjBqxlHyliz0yCa1G903ZXI/FuHy2w==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-plugin-utils/-/helper-plugin-utils-7.24.6.tgz",
+      "integrity": "sha512-MZG/JcWfxybKwsA9N9PmtF2lOSFSEMVCpIRrbxccZFLJPrJciJdG/UhSh5W96GEteJI2ARqm5UAHxISwRDLSNg==",
       "engines": {
         "node": ">=6.9.0"
       }
     },
     "node_modules/@babel/helper-remap-async-to-generator": {
-      "version": "7.22.20",
-      "resolved": "https://registry.npmjs.org/@babel/helper-remap-async-to-generator/-/helper-remap-async-to-generator-7.22.20.tgz",
-      "integrity": "sha512-pBGyV4uBqOns+0UvhsTO8qgl8hO89PmiDYv+/COyp1aeMcmfrfruz+/nCMFiYyFF/Knn0yfrC85ZzNFjembFTw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-remap-async-to-generator/-/helper-remap-async-to-generator-7.24.6.tgz",
+      "integrity": "sha512-1Qursq9ArRZPAMOZf/nuzVW8HgJLkTB9y9LfP4lW2MVp4e9WkLJDovfKBxoDcCk6VuzIxyqWHyBoaCtSRP10yg==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-annotate-as-pure": "^7.22.5",
-        "@babel/helper-environment-visitor": "^7.22.20",
-        "@babel/helper-wrap-function": "^7.22.20"
+        "@babel/helper-annotate-as-pure": "^7.24.6",
+        "@babel/helper-environment-visitor": "^7.24.6",
+        "@babel/helper-wrap-function": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -2164,15 +2377,27 @@
         "@babel/core": "^7.0.0"
       }
     },
-    "node_modules/@babel/helper-replace-supers": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/helper-replace-supers/-/helper-replace-supers-7.24.1.tgz",
-      "integrity": "sha512-QCR1UqC9BzG5vZl8BMicmZ28RuUBnHhAMddD8yHFHDRH9lLTZ9uUPehX8ctVPT8l0TKblJidqcgUUKGVrePleQ==",
+    "node_modules/@babel/helper-remap-async-to-generator/node_modules/@babel/helper-annotate-as-pure": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-annotate-as-pure/-/helper-annotate-as-pure-7.24.6.tgz",
+      "integrity": "sha512-DitEzDfOMnd13kZnDqns1ccmftwJTS9DMkyn9pYTxulS7bZxUxpMly3Nf23QQ6NwA4UB8lAqjbqWtyvElEMAkg==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-environment-visitor": "^7.22.20",
-        "@babel/helper-member-expression-to-functions": "^7.23.0",
-        "@babel/helper-optimise-call-expression": "^7.22.5"
+        "@babel/types": "^7.24.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-replace-supers": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-replace-supers/-/helper-replace-supers-7.24.6.tgz",
+      "integrity": "sha512-mRhfPwDqDpba8o1F8ESxsEkJMQkUF8ZIWrAc0FtWhxnjfextxMWxr22RtFizxxSYLjVHDeMgVsRq8BBZR2ikJQ==",
+      "dev": true,
+      "dependencies": {
+        "@babel/helper-environment-visitor": "^7.24.6",
+        "@babel/helper-member-expression-to-functions": "^7.24.6",
+        "@babel/helper-optimise-call-expression": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -2182,23 +2407,23 @@
       }
     },
     "node_modules/@babel/helper-simple-access": {
-      "version": "7.22.5",
-      "resolved": "https://registry.npmjs.org/@babel/helper-simple-access/-/helper-simple-access-7.22.5.tgz",
-      "integrity": "sha512-n0H99E/K+Bika3++WNL17POvo4rKWZ7lZEp1Q+fStVbUi8nxPQEBOlTmCOxW/0JsS56SKKQ+ojAe2pHKJHN35w==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-simple-access/-/helper-simple-access-7.24.6.tgz",
+      "integrity": "sha512-nZzcMMD4ZhmB35MOOzQuiGO5RzL6tJbsT37Zx8M5L/i9KSrukGXWTjLe1knIbb/RmxoJE9GON9soq0c0VEMM5g==",
       "dependencies": {
-        "@babel/types": "^7.22.5"
+        "@babel/types": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
       }
     },
     "node_modules/@babel/helper-skip-transparent-expression-wrappers": {
-      "version": "7.22.5",
-      "resolved": "https://registry.npmjs.org/@babel/helper-skip-transparent-expression-wrappers/-/helper-skip-transparent-expression-wrappers-7.22.5.tgz",
-      "integrity": "sha512-tK14r66JZKiC43p8Ki33yLBVJKlQDFoA8GYN67lWCDCqoL6EMMSuM9b+Iff2jHaM/RRFYl7K+iiru7hbRqNx8Q==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-skip-transparent-expression-wrappers/-/helper-skip-transparent-expression-wrappers-7.24.6.tgz",
+      "integrity": "sha512-jhbbkK3IUKc4T43WadP96a27oYti9gEf1LdyGSP2rHGH77kwLwfhO7TgwnWvxxQVmke0ImmCSS47vcuxEMGD3Q==",
       "dev": true,
       "dependencies": {
-        "@babel/types": "^7.22.5"
+        "@babel/types": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -2208,6 +2433,7 @@
       "version": "7.22.6",
       "resolved": "https://registry.npmjs.org/@babel/helper-split-export-declaration/-/helper-split-export-declaration-7.22.6.tgz",
       "integrity": "sha512-AsUnxuLhRYsisFiaJwvp1QF+I3KjD5FOxut14q/GzovUe6orHLesW2C7d754kRm53h5gqrz6sFl6sxc4BVtE/g==",
+      "dev": true,
       "dependencies": {
         "@babel/types": "^7.22.5"
       },
@@ -2216,52 +2442,52 @@
       }
     },
     "node_modules/@babel/helper-string-parser": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/helper-string-parser/-/helper-string-parser-7.24.1.tgz",
-      "integrity": "sha512-2ofRCjnnA9y+wk8b9IAREroeUP02KHp431N2mhKniy2yKIDKpbrHv9eXwm8cBeWQYcJmzv5qKCu65P47eCF7CQ==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-string-parser/-/helper-string-parser-7.24.6.tgz",
+      "integrity": "sha512-WdJjwMEkmBicq5T9fm/cHND3+UlFa2Yj8ALLgmoSQAJZysYbBjw+azChSGPN4DSPLXOcooGRvDwZWMcF/mLO2Q==",
       "engines": {
         "node": ">=6.9.0"
       }
     },
     "node_modules/@babel/helper-validator-identifier": {
-      "version": "7.22.20",
-      "resolved": "https://registry.npmjs.org/@babel/helper-validator-identifier/-/helper-validator-identifier-7.22.20.tgz",
-      "integrity": "sha512-Y4OZ+ytlatR8AI+8KZfKuL5urKp7qey08ha31L8b3BwewJAoJamTzyvxPR/5D+KkdJCGPq/+8TukHBlY10FX9A==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-validator-identifier/-/helper-validator-identifier-7.24.6.tgz",
+      "integrity": "sha512-4yA7s865JHaqUdRbnaxarZREuPTHrjpDT+pXoAZ1yhyo6uFnIEpS8VMu16siFOHDpZNKYv5BObhsB//ycbICyw==",
       "engines": {
         "node": ">=6.9.0"
       }
     },
     "node_modules/@babel/helper-validator-option": {
-      "version": "7.23.5",
-      "resolved": "https://registry.npmjs.org/@babel/helper-validator-option/-/helper-validator-option-7.23.5.tgz",
-      "integrity": "sha512-85ttAOMLsr53VgXkTbkx8oA6YTfT4q7/HzXSLEYmjcSTJPMPQtvq1BD79Byep5xMUYbGRzEpDsjUf3dyp54IKw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-validator-option/-/helper-validator-option-7.24.6.tgz",
+      "integrity": "sha512-Jktc8KkF3zIkePb48QO+IapbXlSapOW9S+ogZZkcO6bABgYAxtZcjZ/O005111YLf+j4M84uEgwYoidDkXbCkQ==",
       "engines": {
         "node": ">=6.9.0"
       }
     },
     "node_modules/@babel/helper-wrap-function": {
-      "version": "7.22.20",
-      "resolved": "https://registry.npmjs.org/@babel/helper-wrap-function/-/helper-wrap-function-7.22.20.tgz",
-      "integrity": "sha512-pms/UwkOpnQe/PDAEdV/d7dVCoBbB+R4FvYoHGZz+4VPcg7RtYy2KP7S2lbuWM6FCSgob5wshfGESbC/hzNXZw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-wrap-function/-/helper-wrap-function-7.24.6.tgz",
+      "integrity": "sha512-f1JLrlw/jbiNfxvdrfBgio/gRBk3yTAEJWirpAkiJG2Hb22E7cEYKHWo0dFPTv/niPovzIdPdEDetrv6tC6gPQ==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-function-name": "^7.22.5",
-        "@babel/template": "^7.22.15",
-        "@babel/types": "^7.22.19"
+        "@babel/helper-function-name": "^7.24.6",
+        "@babel/template": "^7.24.6",
+        "@babel/types": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
       }
     },
     "node_modules/@babel/helper-wrap-function/node_modules/@babel/template": {
-      "version": "7.24.0",
-      "resolved": "https://registry.npmjs.org/@babel/template/-/template-7.24.0.tgz",
-      "integrity": "sha512-Bkf2q8lMB0AFpX0NFEqSbx1OkTHf0f+0j82mkw+ZpzBnkk7e9Ql0891vlfgi+kHwOk8tQjiQHpqh4LaSa0fKEA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/template/-/template-7.24.6.tgz",
+      "integrity": "sha512-3vgazJlLwNXi9jhrR1ef8qiB65L1RK90+lEQwv4OxveHnqC3BfmnHdgySwRLzf6akhlOYenT+b7AfWq+a//AHw==",
       "dev": true,
       "dependencies": {
-        "@babel/code-frame": "^7.23.5",
-        "@babel/parser": "^7.24.0",
-        "@babel/types": "^7.24.0"
+        "@babel/code-frame": "^7.24.6",
+        "@babel/parser": "^7.24.6",
+        "@babel/types": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -2271,6 +2497,7 @@
       "version": "7.24.1",
       "resolved": "https://registry.npmjs.org/@babel/helpers/-/helpers-7.24.1.tgz",
       "integrity": "sha512-BpU09QqEe6ZCHuIHFphEFgvNSrubve1FtyMton26ekZ85gRGi6LrTF7zArARp2YvyFxloeiRmtSCq5sjh1WqIg==",
+      "dev": true,
       "dependencies": {
         "@babel/template": "^7.24.0",
         "@babel/traverse": "^7.24.1",
@@ -2284,6 +2511,7 @@
       "version": "7.24.0",
       "resolved": "https://registry.npmjs.org/@babel/template/-/template-7.24.0.tgz",
       "integrity": "sha512-Bkf2q8lMB0AFpX0NFEqSbx1OkTHf0f+0j82mkw+ZpzBnkk7e9Ql0891vlfgi+kHwOk8tQjiQHpqh4LaSa0fKEA==",
+      "dev": true,
       "dependencies": {
         "@babel/code-frame": "^7.23.5",
         "@babel/parser": "^7.24.0",
@@ -2294,11 +2522,11 @@
       }
     },
     "node_modules/@babel/highlight": {
-      "version": "7.24.2",
-      "resolved": "https://registry.npmjs.org/@babel/highlight/-/highlight-7.24.2.tgz",
-      "integrity": "sha512-Yac1ao4flkTxTteCDZLEvdxg2fZfz1v8M4QpaGypq/WPDqg3ijHYbDfs+LG5hvzSoqaSZ9/Z9lKSP3CjZjv+pA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/highlight/-/highlight-7.24.6.tgz",
+      "integrity": "sha512-2YnuOp4HAk2BsBrJJvYCbItHx0zWscI1C3zgWkz+wDyD9I7GIVrfnLyrR4Y1VR+7p+chAEcrgRQYZAGIKMV7vQ==",
       "dependencies": {
-        "@babel/helper-validator-identifier": "^7.22.20",
+        "@babel/helper-validator-identifier": "^7.24.6",
         "chalk": "^2.4.2",
         "js-tokens": "^4.0.0",
         "picocolors": "^1.0.0"
@@ -2372,9 +2600,9 @@
       }
     },
     "node_modules/@babel/parser": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/parser/-/parser-7.24.1.tgz",
-      "integrity": "sha512-Zo9c7N3xdOIQrNip7Lc9wvRPzlRtovHVE4lkz8WEDr7uYh/GMQhSiIgFxGIArRHYdJE5kxtZjAf8rT0xhdLCzg==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/parser/-/parser-7.24.6.tgz",
+      "integrity": "sha512-eNZXdfU35nJC2h24RznROuOpO94h6x8sg9ju0tT9biNtLZ2vuP8SduLqqV+/8+cebSLV9SJEAN5Z3zQbJG/M+Q==",
       "bin": {
         "parser": "bin/babel-parser.js"
       },
@@ -2382,13 +2610,29 @@
         "node": ">=6.0.0"
       }
     },
-    "node_modules/@babel/plugin-bugfix-safari-id-destructuring-collision-in-function-expression": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-bugfix-safari-id-destructuring-collision-in-function-expression/-/plugin-bugfix-safari-id-destructuring-collision-in-function-expression-7.24.1.tgz",
-      "integrity": "sha512-y4HqEnkelJIOQGd+3g1bTeKsA5c6qM7eOn7VggGVbBc0y8MLSKHacwcIE2PplNlQSj0PqS9rrXL/nkPVK+kUNg==",
+    "node_modules/@babel/plugin-bugfix-firefox-class-in-computed-class-key": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-bugfix-firefox-class-in-computed-class-key/-/plugin-bugfix-firefox-class-in-computed-class-key-7.24.6.tgz",
+      "integrity": "sha512-bYndrJ6Ph6Ar+GaB5VAc0JPoP80bQCm4qon6JEzXfRl5QZyQ8Ur1K6k7htxWmPA5z+k7JQvaMUrtXlqclWYzKw==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-environment-visitor": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      },
+      "peerDependencies": {
+        "@babel/core": "^7.0.0"
+      }
+    },
+    "node_modules/@babel/plugin-bugfix-safari-id-destructuring-collision-in-function-expression": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-bugfix-safari-id-destructuring-collision-in-function-expression/-/plugin-bugfix-safari-id-destructuring-collision-in-function-expression-7.24.6.tgz",
+      "integrity": "sha512-iVuhb6poq5ikqRq2XWU6OQ+R5o9wF+r/or9CeUyovgptz0UlnK4/seOQ1Istu/XybYjAhQv1FRSSfHHufIku5Q==",
+      "dev": true,
+      "dependencies": {
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -2398,14 +2642,14 @@
       }
     },
     "node_modules/@babel/plugin-bugfix-v8-spread-parameters-in-optional-chaining": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-bugfix-v8-spread-parameters-in-optional-chaining/-/plugin-bugfix-v8-spread-parameters-in-optional-chaining-7.24.1.tgz",
-      "integrity": "sha512-Hj791Ii4ci8HqnaKHAlLNs+zaLXb0EzSDhiAWp5VNlyvCNymYfacs64pxTxbH1znW/NcArSmwpmG9IKE/TUVVQ==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-bugfix-v8-spread-parameters-in-optional-chaining/-/plugin-bugfix-v8-spread-parameters-in-optional-chaining-7.24.6.tgz",
+      "integrity": "sha512-c8TER5xMDYzzFcGqOEp9l4hvB7dcbhcGjcLVwxWfe4P5DOafdwjsBJZKsmv+o3aXh7NhopvayQIovHrh2zSRUQ==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0",
-        "@babel/helper-skip-transparent-expression-wrappers": "^7.22.5",
-        "@babel/plugin-transform-optional-chaining": "^7.24.1"
+        "@babel/helper-plugin-utils": "^7.24.6",
+        "@babel/helper-skip-transparent-expression-wrappers": "^7.24.6",
+        "@babel/plugin-transform-optional-chaining": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -2602,12 +2846,12 @@
       }
     },
     "node_modules/@babel/plugin-syntax-import-assertions": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-syntax-import-assertions/-/plugin-syntax-import-assertions-7.24.1.tgz",
-      "integrity": "sha512-IuwnI5XnuF189t91XbxmXeCDz3qs6iDRO7GJ++wcfgeXNs/8FmIlKcpDSXNVyuLQxlwvskmI3Ct73wUODkJBlQ==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-syntax-import-assertions/-/plugin-syntax-import-assertions-7.24.6.tgz",
+      "integrity": "sha512-BE6o2BogJKJImTmGpkmOic4V0hlRRxVtzqxiSPa8TIFxyhi4EFjHm08nq1M4STK4RytuLMgnSz0/wfflvGFNOg==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -2617,12 +2861,12 @@
       }
     },
     "node_modules/@babel/plugin-syntax-import-attributes": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-syntax-import-attributes/-/plugin-syntax-import-attributes-7.24.1.tgz",
-      "integrity": "sha512-zhQTMH0X2nVLnb04tz+s7AMuasX8U0FnpE+nHTOhSOINjWMnopoZTxtIKsd45n4GQ/HIZLyfIpoul8e2m0DnRA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-syntax-import-attributes/-/plugin-syntax-import-attributes-7.24.6.tgz",
+      "integrity": "sha512-D+CfsVZousPXIdudSII7RGy52+dYRtbyKAZcvtQKq/NpsivyMVduepzcLqG5pMBugtMdedxdC8Ramdpcne9ZWQ==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -2804,12 +3048,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-arrow-functions": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-arrow-functions/-/plugin-transform-arrow-functions-7.24.1.tgz",
-      "integrity": "sha512-ngT/3NkRhsaep9ck9uj2Xhv9+xB1zShY3tM3g6om4xxCELwCDN4g4Aq5dRn48+0hasAql7s2hdBOysCfNpr4fw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-arrow-functions/-/plugin-transform-arrow-functions-7.24.6.tgz",
+      "integrity": "sha512-jSSSDt4ZidNMggcLx8SaKsbGNEfIl0PHx/4mFEulorE7bpYLbN0d3pDW3eJ7Y5Z3yPhy3L3NaPCYyTUY7TuugQ==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -2819,14 +3063,14 @@
       }
     },
     "node_modules/@babel/plugin-transform-async-generator-functions": {
-      "version": "7.24.3",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-async-generator-functions/-/plugin-transform-async-generator-functions-7.24.3.tgz",
-      "integrity": "sha512-Qe26CMYVjpQxJ8zxM1340JFNjZaF+ISWpr1Kt/jGo+ZTUzKkfw/pphEWbRCb+lmSM6k/TOgfYLvmbHkUQ0asIg==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-async-generator-functions/-/plugin-transform-async-generator-functions-7.24.6.tgz",
+      "integrity": "sha512-VEP2o4iR2DqQU6KPgizTW2mnMx6BG5b5O9iQdrW9HesLkv8GIA8x2daXBQxw1MrsIkFQGA/iJ204CKoQ8UcnAA==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-environment-visitor": "^7.22.20",
-        "@babel/helper-plugin-utils": "^7.24.0",
-        "@babel/helper-remap-async-to-generator": "^7.22.20",
+        "@babel/helper-environment-visitor": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6",
+        "@babel/helper-remap-async-to-generator": "^7.24.6",
         "@babel/plugin-syntax-async-generators": "^7.8.4"
       },
       "engines": {
@@ -2854,12 +3098,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-block-scoped-functions": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-block-scoped-functions/-/plugin-transform-block-scoped-functions-7.24.1.tgz",
-      "integrity": "sha512-TWWC18OShZutrv9C6mye1xwtam+uNi2bnTOCBUd5sZxyHOiWbU6ztSROofIMrK84uweEZC219POICK/sTYwfgg==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-block-scoped-functions/-/plugin-transform-block-scoped-functions-7.24.6.tgz",
+      "integrity": "sha512-XNW7jolYHW9CwORrZgA/97tL/k05qe/HL0z/qqJq1mdWhwwCM6D4BJBV7wAz9HgFziN5dTOG31znkVIzwxv+vw==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -2869,12 +3113,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-block-scoping": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-block-scoping/-/plugin-transform-block-scoping-7.24.1.tgz",
-      "integrity": "sha512-h71T2QQvDgM2SmT29UYU6ozjMlAt7s7CSs5Hvy8f8cf/GM/Z4a2zMfN+fjVGaieeCrXR3EdQl6C4gQG+OgmbKw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-block-scoping/-/plugin-transform-block-scoping-7.24.6.tgz",
+      "integrity": "sha512-S/t1Xh4ehW7sGA7c1j/hiOBLnEYCp/c2sEG4ZkL8kI1xX9tW2pqJTCHKtdhe/jHKt8nG0pFCrDHUXd4DvjHS9w==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -2884,13 +3128,13 @@
       }
     },
     "node_modules/@babel/plugin-transform-class-properties": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-class-properties/-/plugin-transform-class-properties-7.24.1.tgz",
-      "integrity": "sha512-OMLCXi0NqvJfORTaPQBwqLXHhb93wkBKZ4aNwMl6WtehO7ar+cmp+89iPEQPqxAnxsOKTaMcs3POz3rKayJ72g==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-class-properties/-/plugin-transform-class-properties-7.24.6.tgz",
+      "integrity": "sha512-j6dZ0Z2Z2slWLR3kt9aOmSIrBvnntWjMDN/TVcMPxhXMLmJVqX605CBRlcGI4b32GMbfifTEsdEjGjiE+j/c3A==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-create-class-features-plugin": "^7.24.1",
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-create-class-features-plugin": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -2900,13 +3144,13 @@
       }
     },
     "node_modules/@babel/plugin-transform-class-static-block": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-class-static-block/-/plugin-transform-class-static-block-7.24.1.tgz",
-      "integrity": "sha512-FUHlKCn6J3ERiu8Dv+4eoz7w8+kFLSyeVG4vDAikwADGjUCoHw/JHokyGtr8OR4UjpwPVivyF+h8Q5iv/JmrtA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-class-static-block/-/plugin-transform-class-static-block-7.24.6.tgz",
+      "integrity": "sha512-1QSRfoPI9RoLRa8Mnakc6v3e0gJxiZQTYrMfLn+mD0sz5+ndSzwymp2hDcYJTyT0MOn0yuWzj8phlIvO72gTHA==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-create-class-features-plugin": "^7.24.1",
-        "@babel/helper-plugin-utils": "^7.24.0",
+        "@babel/helper-create-class-features-plugin": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6",
         "@babel/plugin-syntax-class-static-block": "^7.14.5"
       },
       "engines": {
@@ -2917,18 +3161,18 @@
       }
     },
     "node_modules/@babel/plugin-transform-classes": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-classes/-/plugin-transform-classes-7.24.1.tgz",
-      "integrity": "sha512-ZTIe3W7UejJd3/3R4p7ScyyOoafetUShSf4kCqV0O7F/RiHxVj/wRaRnQlrGwflvcehNA8M42HkAiEDYZu2F1Q==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-classes/-/plugin-transform-classes-7.24.6.tgz",
+      "integrity": "sha512-+fN+NO2gh8JtRmDSOB6gaCVo36ha8kfCW1nMq2Gc0DABln0VcHN4PrALDvF5/diLzIRKptC7z/d7Lp64zk92Fg==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-annotate-as-pure": "^7.22.5",
-        "@babel/helper-compilation-targets": "^7.23.6",
-        "@babel/helper-environment-visitor": "^7.22.20",
-        "@babel/helper-function-name": "^7.23.0",
-        "@babel/helper-plugin-utils": "^7.24.0",
-        "@babel/helper-replace-supers": "^7.24.1",
-        "@babel/helper-split-export-declaration": "^7.22.6",
+        "@babel/helper-annotate-as-pure": "^7.24.6",
+        "@babel/helper-compilation-targets": "^7.24.6",
+        "@babel/helper-environment-visitor": "^7.24.6",
+        "@babel/helper-function-name": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6",
+        "@babel/helper-replace-supers": "^7.24.6",
+        "@babel/helper-split-export-declaration": "^7.24.6",
         "globals": "^11.1.0"
       },
       "engines": {
@@ -2938,14 +3182,38 @@
         "@babel/core": "^7.0.0-0"
       }
     },
-    "node_modules/@babel/plugin-transform-computed-properties": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-computed-properties/-/plugin-transform-computed-properties-7.24.1.tgz",
-      "integrity": "sha512-5pJGVIUfJpOS+pAqBQd+QMaTD2vCL/HcePooON6pDpHgRp4gNRmzyHTPIkXntwKsq3ayUFVfJaIKPw2pOkOcTw==",
+    "node_modules/@babel/plugin-transform-classes/node_modules/@babel/helper-annotate-as-pure": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-annotate-as-pure/-/helper-annotate-as-pure-7.24.6.tgz",
+      "integrity": "sha512-DitEzDfOMnd13kZnDqns1ccmftwJTS9DMkyn9pYTxulS7bZxUxpMly3Nf23QQ6NwA4UB8lAqjbqWtyvElEMAkg==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0",
-        "@babel/template": "^7.24.0"
+        "@babel/types": "^7.24.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/plugin-transform-classes/node_modules/@babel/helper-split-export-declaration": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-split-export-declaration/-/helper-split-export-declaration-7.24.6.tgz",
+      "integrity": "sha512-CvLSkwXGWnYlF9+J3iZUvwgAxKiYzK3BWuo+mLzD/MDGOZDj7Gq8+hqaOkMxmJwmlv0iu86uH5fdADd9Hxkymw==",
+      "dev": true,
+      "dependencies": {
+        "@babel/types": "^7.24.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/plugin-transform-computed-properties": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-computed-properties/-/plugin-transform-computed-properties-7.24.6.tgz",
+      "integrity": "sha512-cRzPobcfRP0ZtuIEkA8QzghoUpSB3X3qSH5W2+FzG+VjWbJXExtx0nbRqwumdBN1x/ot2SlTNQLfBCnPdzp6kg==",
+      "dev": true,
+      "dependencies": {
+        "@babel/helper-plugin-utils": "^7.24.6",
+        "@babel/template": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -2955,26 +3223,26 @@
       }
     },
     "node_modules/@babel/plugin-transform-computed-properties/node_modules/@babel/template": {
-      "version": "7.24.0",
-      "resolved": "https://registry.npmjs.org/@babel/template/-/template-7.24.0.tgz",
-      "integrity": "sha512-Bkf2q8lMB0AFpX0NFEqSbx1OkTHf0f+0j82mkw+ZpzBnkk7e9Ql0891vlfgi+kHwOk8tQjiQHpqh4LaSa0fKEA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/template/-/template-7.24.6.tgz",
+      "integrity": "sha512-3vgazJlLwNXi9jhrR1ef8qiB65L1RK90+lEQwv4OxveHnqC3BfmnHdgySwRLzf6akhlOYenT+b7AfWq+a//AHw==",
       "dev": true,
       "dependencies": {
-        "@babel/code-frame": "^7.23.5",
-        "@babel/parser": "^7.24.0",
-        "@babel/types": "^7.24.0"
+        "@babel/code-frame": "^7.24.6",
+        "@babel/parser": "^7.24.6",
+        "@babel/types": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
       }
     },
     "node_modules/@babel/plugin-transform-destructuring": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-destructuring/-/plugin-transform-destructuring-7.24.1.tgz",
-      "integrity": "sha512-ow8jciWqNxR3RYbSNVuF4U2Jx130nwnBnhRw6N6h1bOejNkABmcI5X5oz29K4alWX7vf1C+o6gtKXikzRKkVdw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-destructuring/-/plugin-transform-destructuring-7.24.6.tgz",
+      "integrity": "sha512-YLW6AE5LQpk5npNXL7i/O+U9CE4XsBCuRPgyjl1EICZYKmcitV+ayuuUGMJm2lC1WWjXYszeTnIxF/dq/GhIZQ==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -2984,13 +3252,13 @@
       }
     },
     "node_modules/@babel/plugin-transform-dotall-regex": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-dotall-regex/-/plugin-transform-dotall-regex-7.24.1.tgz",
-      "integrity": "sha512-p7uUxgSoZwZ2lPNMzUkqCts3xlp8n+o05ikjy7gbtFJSt9gdU88jAmtfmOxHM14noQXBxfgzf2yRWECiNVhTCw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-dotall-regex/-/plugin-transform-dotall-regex-7.24.6.tgz",
+      "integrity": "sha512-rCXPnSEKvkm/EjzOtLoGvKseK+dS4kZwx1HexO3BtRtgL0fQ34awHn34aeSHuXtZY2F8a1X8xqBBPRtOxDVmcA==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-create-regexp-features-plugin": "^7.22.15",
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-create-regexp-features-plugin": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3000,12 +3268,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-duplicate-keys": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-duplicate-keys/-/plugin-transform-duplicate-keys-7.24.1.tgz",
-      "integrity": "sha512-msyzuUnvsjsaSaocV6L7ErfNsa5nDWL1XKNnDePLgmz+WdU4w/J8+AxBMrWfi9m4IxfL5sZQKUPQKDQeeAT6lA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-duplicate-keys/-/plugin-transform-duplicate-keys-7.24.6.tgz",
+      "integrity": "sha512-/8Odwp/aVkZwPFJMllSbawhDAO3UJi65foB00HYnK/uXvvCPm0TAXSByjz1mpRmp0q6oX2SIxpkUOpPFHk7FLA==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3015,12 +3283,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-dynamic-import": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-dynamic-import/-/plugin-transform-dynamic-import-7.24.1.tgz",
-      "integrity": "sha512-av2gdSTyXcJVdI+8aFZsCAtR29xJt0S5tas+Ef8NvBNmD1a+N/3ecMLeMBgfcK+xzsjdLDT6oHt+DFPyeqUbDA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-dynamic-import/-/plugin-transform-dynamic-import-7.24.6.tgz",
+      "integrity": "sha512-vpq8SSLRTBLOHUZHSnBqVo0AKX3PBaoPs2vVzYVWslXDTDIpwAcCDtfhUcHSQQoYoUvcFPTdC8TZYXu9ZnLT/w==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0",
+        "@babel/helper-plugin-utils": "^7.24.6",
         "@babel/plugin-syntax-dynamic-import": "^7.8.3"
       },
       "engines": {
@@ -3031,13 +3299,13 @@
       }
     },
     "node_modules/@babel/plugin-transform-exponentiation-operator": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-exponentiation-operator/-/plugin-transform-exponentiation-operator-7.24.1.tgz",
-      "integrity": "sha512-U1yX13dVBSwS23DEAqU+Z/PkwE9/m7QQy8Y9/+Tdb8UWYaGNDYwTLi19wqIAiROr8sXVum9A/rtiH5H0boUcTw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-exponentiation-operator/-/plugin-transform-exponentiation-operator-7.24.6.tgz",
+      "integrity": "sha512-EemYpHtmz0lHE7hxxxYEuTYOOBZ43WkDgZ4arQ4r+VX9QHuNZC+WH3wUWmRNvR8ECpTRne29aZV6XO22qpOtdA==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-builder-binary-assignment-operator-visitor": "^7.22.15",
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-builder-binary-assignment-operator-visitor": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3047,12 +3315,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-export-namespace-from": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-export-namespace-from/-/plugin-transform-export-namespace-from-7.24.1.tgz",
-      "integrity": "sha512-Ft38m/KFOyzKw2UaJFkWG9QnHPG/Q/2SkOrRk4pNBPg5IPZ+dOxcmkK5IyuBcxiNPyyYowPGUReyBvrvZs7IlQ==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-export-namespace-from/-/plugin-transform-export-namespace-from-7.24.6.tgz",
+      "integrity": "sha512-inXaTM1SVrIxCkIJ5gqWiozHfFMStuGbGJAxZFBoHcRRdDP0ySLb3jH6JOwmfiinPwyMZqMBX+7NBDCO4z0NSA==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0",
+        "@babel/helper-plugin-utils": "^7.24.6",
         "@babel/plugin-syntax-export-namespace-from": "^7.8.3"
       },
       "engines": {
@@ -3079,13 +3347,13 @@
       }
     },
     "node_modules/@babel/plugin-transform-for-of": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-for-of/-/plugin-transform-for-of-7.24.1.tgz",
-      "integrity": "sha512-OxBdcnF04bpdQdR3i4giHZNZQn7cm8RQKcSwA17wAAqEELo1ZOwp5FFgeptWUQXFyT9kwHo10aqqauYkRZPCAg==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-for-of/-/plugin-transform-for-of-7.24.6.tgz",
+      "integrity": "sha512-n3Sf72TnqK4nw/jziSqEl1qaWPbCRw2CziHH+jdRYvw4J6yeCzsj4jdw8hIntOEeDGTmHVe2w4MVL44PN0GMzg==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0",
-        "@babel/helper-skip-transparent-expression-wrappers": "^7.22.5"
+        "@babel/helper-plugin-utils": "^7.24.6",
+        "@babel/helper-skip-transparent-expression-wrappers": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3095,14 +3363,14 @@
       }
     },
     "node_modules/@babel/plugin-transform-function-name": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-function-name/-/plugin-transform-function-name-7.24.1.tgz",
-      "integrity": "sha512-BXmDZpPlh7jwicKArQASrj8n22/w6iymRnvHYYd2zO30DbE277JO20/7yXJT3QxDPtiQiOxQBbZH4TpivNXIxA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-function-name/-/plugin-transform-function-name-7.24.6.tgz",
+      "integrity": "sha512-sOajCu6V0P1KPljWHKiDq6ymgqB+vfo3isUS4McqW1DZtvSVU2v/wuMhmRmkg3sFoq6GMaUUf8W4WtoSLkOV/Q==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-compilation-targets": "^7.23.6",
-        "@babel/helper-function-name": "^7.23.0",
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-compilation-targets": "^7.24.6",
+        "@babel/helper-function-name": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3112,12 +3380,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-json-strings": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-json-strings/-/plugin-transform-json-strings-7.24.1.tgz",
-      "integrity": "sha512-U7RMFmRvoasscrIFy5xA4gIp8iWnWubnKkKuUGJjsuOH7GfbMkB+XZzeslx2kLdEGdOJDamEmCqOks6e8nv8DQ==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-json-strings/-/plugin-transform-json-strings-7.24.6.tgz",
+      "integrity": "sha512-Uvgd9p2gUnzYJxVdBLcU0KurF8aVhkmVyMKW4MIY1/BByvs3EBpv45q01o7pRTVmTvtQq5zDlytP3dcUgm7v9w==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0",
+        "@babel/helper-plugin-utils": "^7.24.6",
         "@babel/plugin-syntax-json-strings": "^7.8.3"
       },
       "engines": {
@@ -3128,12 +3396,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-literals": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-literals/-/plugin-transform-literals-7.24.1.tgz",
-      "integrity": "sha512-zn9pwz8U7nCqOYIiBaOxoQOtYmMODXTJnkxG4AtX8fPmnCRYWBOHD0qcpwS9e2VDSp1zNJYpdnFMIKb8jmwu6g==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-literals/-/plugin-transform-literals-7.24.6.tgz",
+      "integrity": "sha512-f2wHfR2HF6yMj+y+/y07+SLqnOSwRp8KYLpQKOzS58XLVlULhXbiYcygfXQxJlMbhII9+yXDwOUFLf60/TL5tw==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3143,12 +3411,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-logical-assignment-operators": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-logical-assignment-operators/-/plugin-transform-logical-assignment-operators-7.24.1.tgz",
-      "integrity": "sha512-OhN6J4Bpz+hIBqItTeWJujDOfNP+unqv/NJgyhlpSqgBTPm37KkMmZV6SYcOj+pnDbdcl1qRGV/ZiIjX9Iy34w==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-logical-assignment-operators/-/plugin-transform-logical-assignment-operators-7.24.6.tgz",
+      "integrity": "sha512-EKaWvnezBCMkRIHxMJSIIylzhqK09YpiJtDbr2wsXTwnO0TxyjMUkaw4RlFIZMIS0iDj0KyIg7H7XCguHu/YDA==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0",
+        "@babel/helper-plugin-utils": "^7.24.6",
         "@babel/plugin-syntax-logical-assignment-operators": "^7.10.4"
       },
       "engines": {
@@ -3159,12 +3427,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-member-expression-literals": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-member-expression-literals/-/plugin-transform-member-expression-literals-7.24.1.tgz",
-      "integrity": "sha512-4ojai0KysTWXzHseJKa1XPNXKRbuUrhkOPY4rEGeR+7ChlJVKxFa3H3Bz+7tWaGKgJAXUWKOGmltN+u9B3+CVg==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-member-expression-literals/-/plugin-transform-member-expression-literals-7.24.6.tgz",
+      "integrity": "sha512-9g8iV146szUo5GWgXpRbq/GALTnY+WnNuRTuRHWWFfWGbP9ukRL0aO/jpu9dmOPikclkxnNsjY8/gsWl6bmZJQ==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3174,13 +3442,13 @@
       }
     },
     "node_modules/@babel/plugin-transform-modules-amd": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-modules-amd/-/plugin-transform-modules-amd-7.24.1.tgz",
-      "integrity": "sha512-lAxNHi4HVtjnHd5Rxg3D5t99Xm6H7b04hUS7EHIXcUl2EV4yl1gWdqZrNzXnSrHveL9qMdbODlLF55mvgjAfaQ==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-modules-amd/-/plugin-transform-modules-amd-7.24.6.tgz",
+      "integrity": "sha512-eAGogjZgcwqAxhyFgqghvoHRr+EYRQPFjUXrTYKBRb5qPnAVxOOglaxc4/byHqjvq/bqO2F3/CGwTHsgKJYHhQ==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-module-transforms": "^7.23.3",
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-module-transforms": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3190,13 +3458,13 @@
       }
     },
     "node_modules/@babel/plugin-transform-modules-commonjs": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-modules-commonjs/-/plugin-transform-modules-commonjs-7.24.1.tgz",
-      "integrity": "sha512-szog8fFTUxBfw0b98gEWPaEqF42ZUD/T3bkynW/wtgx2p/XCP55WEsb+VosKceRSd6njipdZvNogqdtI4Q0chw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-modules-commonjs/-/plugin-transform-modules-commonjs-7.24.6.tgz",
+      "integrity": "sha512-JEV8l3MHdmmdb7S7Cmx6rbNEjRCgTQMZxllveHO0mx6uiclB0NflCawlQQ6+o5ZrwjUBYPzHm2XoK4wqGVUFuw==",
       "dependencies": {
-        "@babel/helper-module-transforms": "^7.23.3",
-        "@babel/helper-plugin-utils": "^7.24.0",
-        "@babel/helper-simple-access": "^7.22.5"
+        "@babel/helper-module-transforms": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6",
+        "@babel/helper-simple-access": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3206,15 +3474,15 @@
       }
     },
     "node_modules/@babel/plugin-transform-modules-systemjs": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-modules-systemjs/-/plugin-transform-modules-systemjs-7.24.1.tgz",
-      "integrity": "sha512-mqQ3Zh9vFO1Tpmlt8QPnbwGHzNz3lpNEMxQb1kAemn/erstyqw1r9KeOlOfo3y6xAnFEcOv2tSyrXfmMk+/YZA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-modules-systemjs/-/plugin-transform-modules-systemjs-7.24.6.tgz",
+      "integrity": "sha512-xg1Z0J5JVYxtpX954XqaaAT6NpAY6LtZXvYFCJmGFJWwtlz2EmJoR8LycFRGNE8dBKizGWkGQZGegtkV8y8s+w==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-hoist-variables": "^7.22.5",
-        "@babel/helper-module-transforms": "^7.23.3",
-        "@babel/helper-plugin-utils": "^7.24.0",
-        "@babel/helper-validator-identifier": "^7.22.20"
+        "@babel/helper-hoist-variables": "^7.24.6",
+        "@babel/helper-module-transforms": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6",
+        "@babel/helper-validator-identifier": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3224,13 +3492,13 @@
       }
     },
     "node_modules/@babel/plugin-transform-modules-umd": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-modules-umd/-/plugin-transform-modules-umd-7.24.1.tgz",
-      "integrity": "sha512-tuA3lpPj+5ITfcCluy6nWonSL7RvaG0AOTeAuvXqEKS34lnLzXpDb0dcP6K8jD0zWZFNDVly90AGFJPnm4fOYg==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-modules-umd/-/plugin-transform-modules-umd-7.24.6.tgz",
+      "integrity": "sha512-esRCC/KsSEUvrSjv5rFYnjZI6qv4R1e/iHQrqwbZIoRJqk7xCvEUiN7L1XrmW5QSmQe3n1XD88wbgDTWLbVSyg==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-module-transforms": "^7.23.3",
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-module-transforms": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3240,13 +3508,13 @@
       }
     },
     "node_modules/@babel/plugin-transform-named-capturing-groups-regex": {
-      "version": "7.22.5",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-named-capturing-groups-regex/-/plugin-transform-named-capturing-groups-regex-7.22.5.tgz",
-      "integrity": "sha512-YgLLKmS3aUBhHaxp5hi1WJTgOUb/NCuDHzGT9z9WTt3YG+CPRhJs6nprbStx6DnWM4dh6gt7SU3sZodbZ08adQ==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-named-capturing-groups-regex/-/plugin-transform-named-capturing-groups-regex-7.24.6.tgz",
+      "integrity": "sha512-6DneiCiu91wm3YiNIGDWZsl6GfTTbspuj/toTEqLh9d4cx50UIzSdg+T96p8DuT7aJOBRhFyaE9ZvTHkXrXr6Q==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-create-regexp-features-plugin": "^7.22.5",
-        "@babel/helper-plugin-utils": "^7.22.5"
+        "@babel/helper-create-regexp-features-plugin": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3256,12 +3524,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-new-target": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-new-target/-/plugin-transform-new-target-7.24.1.tgz",
-      "integrity": "sha512-/rurytBM34hYy0HKZQyA0nHbQgQNFm4Q/BOc9Hflxi2X3twRof7NaE5W46j4kQitm7SvACVRXsa6N/tSZxvPug==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-new-target/-/plugin-transform-new-target-7.24.6.tgz",
+      "integrity": "sha512-f8liz9JG2Va8A4J5ZBuaSdwfPqN6axfWRK+y66fjKYbwf9VBLuq4WxtinhJhvp1w6lamKUwLG0slK2RxqFgvHA==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3271,12 +3539,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-nullish-coalescing-operator": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-nullish-coalescing-operator/-/plugin-transform-nullish-coalescing-operator-7.24.1.tgz",
-      "integrity": "sha512-iQ+caew8wRrhCikO5DrUYx0mrmdhkaELgFa+7baMcVuhxIkN7oxt06CZ51D65ugIb1UWRQ8oQe+HXAVM6qHFjw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-nullish-coalescing-operator/-/plugin-transform-nullish-coalescing-operator-7.24.6.tgz",
+      "integrity": "sha512-+QlAiZBMsBK5NqrBWFXCYeXyiU1y7BQ/OYaiPAcQJMomn5Tyg+r5WuVtyEuvTbpV7L25ZSLfE+2E9ywj4FD48A==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0",
+        "@babel/helper-plugin-utils": "^7.24.6",
         "@babel/plugin-syntax-nullish-coalescing-operator": "^7.8.3"
       },
       "engines": {
@@ -3287,12 +3555,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-numeric-separator": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-numeric-separator/-/plugin-transform-numeric-separator-7.24.1.tgz",
-      "integrity": "sha512-7GAsGlK4cNL2OExJH1DzmDeKnRv/LXq0eLUSvudrehVA5Rgg4bIrqEUW29FbKMBRT0ztSqisv7kjP+XIC4ZMNw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-numeric-separator/-/plugin-transform-numeric-separator-7.24.6.tgz",
+      "integrity": "sha512-6voawq8T25Jvvnc4/rXcWZQKKxUNZcKMS8ZNrjxQqoRFernJJKjE3s18Qo6VFaatG5aiX5JV1oPD7DbJhn0a4Q==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0",
+        "@babel/helper-plugin-utils": "^7.24.6",
         "@babel/plugin-syntax-numeric-separator": "^7.10.4"
       },
       "engines": {
@@ -3303,15 +3571,15 @@
       }
     },
     "node_modules/@babel/plugin-transform-object-rest-spread": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-object-rest-spread/-/plugin-transform-object-rest-spread-7.24.1.tgz",
-      "integrity": "sha512-XjD5f0YqOtebto4HGISLNfiNMTTs6tbkFf2TOqJlYKYmbo+mN9Dnpl4SRoofiziuOWMIyq3sZEUqLo3hLITFEA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-object-rest-spread/-/plugin-transform-object-rest-spread-7.24.6.tgz",
+      "integrity": "sha512-OKmi5wiMoRW5Smttne7BwHM8s/fb5JFs+bVGNSeHWzwZkWXWValR1M30jyXo1s/RaqgwwhEC62u4rFH/FBcBPg==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-compilation-targets": "^7.23.6",
-        "@babel/helper-plugin-utils": "^7.24.0",
+        "@babel/helper-compilation-targets": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6",
         "@babel/plugin-syntax-object-rest-spread": "^7.8.3",
-        "@babel/plugin-transform-parameters": "^7.24.1"
+        "@babel/plugin-transform-parameters": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3321,13 +3589,13 @@
       }
     },
     "node_modules/@babel/plugin-transform-object-super": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-object-super/-/plugin-transform-object-super-7.24.1.tgz",
-      "integrity": "sha512-oKJqR3TeI5hSLRxudMjFQ9re9fBVUU0GICqM3J1mi8MqlhVr6hC/ZN4ttAyMuQR6EZZIY6h/exe5swqGNNIkWQ==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-object-super/-/plugin-transform-object-super-7.24.6.tgz",
+      "integrity": "sha512-N/C76ihFKlZgKfdkEYKtaRUtXZAgK7sOY4h2qrbVbVTXPrKGIi8aww5WGe/+Wmg8onn8sr2ut6FXlsbu/j6JHg==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0",
-        "@babel/helper-replace-supers": "^7.24.1"
+        "@babel/helper-plugin-utils": "^7.24.6",
+        "@babel/helper-replace-supers": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3337,12 +3605,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-optional-catch-binding": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-optional-catch-binding/-/plugin-transform-optional-catch-binding-7.24.1.tgz",
-      "integrity": "sha512-oBTH7oURV4Y+3EUrf6cWn1OHio3qG/PVwO5J03iSJmBg6m2EhKjkAu/xuaXaYwWW9miYtvbWv4LNf0AmR43LUA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-optional-catch-binding/-/plugin-transform-optional-catch-binding-7.24.6.tgz",
+      "integrity": "sha512-L5pZ+b3O1mSzJ71HmxSCmTVd03VOT2GXOigug6vDYJzE5awLI7P1g0wFcdmGuwSDSrQ0L2rDOe/hHws8J1rv3w==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0",
+        "@babel/helper-plugin-utils": "^7.24.6",
         "@babel/plugin-syntax-optional-catch-binding": "^7.8.3"
       },
       "engines": {
@@ -3353,13 +3621,13 @@
       }
     },
     "node_modules/@babel/plugin-transform-optional-chaining": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-optional-chaining/-/plugin-transform-optional-chaining-7.24.1.tgz",
-      "integrity": "sha512-n03wmDt+987qXwAgcBlnUUivrZBPZ8z1plL0YvgQalLm+ZE5BMhGm94jhxXtA1wzv1Cu2aaOv1BM9vbVttrzSg==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-optional-chaining/-/plugin-transform-optional-chaining-7.24.6.tgz",
+      "integrity": "sha512-cHbqF6l1QP11OkYTYQ+hhVx1E017O5ZcSPXk9oODpqhcAD1htsWG2NpHrrhthEO2qZomLK0FXS+u7NfrkF5aOQ==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0",
-        "@babel/helper-skip-transparent-expression-wrappers": "^7.22.5",
+        "@babel/helper-plugin-utils": "^7.24.6",
+        "@babel/helper-skip-transparent-expression-wrappers": "^7.24.6",
         "@babel/plugin-syntax-optional-chaining": "^7.8.3"
       },
       "engines": {
@@ -3370,12 +3638,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-parameters": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-parameters/-/plugin-transform-parameters-7.24.1.tgz",
-      "integrity": "sha512-8Jl6V24g+Uw5OGPeWNKrKqXPDw2YDjLc53ojwfMcKwlEoETKU9rU0mHUtcg9JntWI/QYzGAXNWEcVHZ+fR+XXg==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-parameters/-/plugin-transform-parameters-7.24.6.tgz",
+      "integrity": "sha512-ST7guE8vLV+vI70wmAxuZpIKzVjvFX9Qs8bl5w6tN/6gOypPWUmMQL2p7LJz5E63vEGrDhAiYetniJFyBH1RkA==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3385,13 +3653,13 @@
       }
     },
     "node_modules/@babel/plugin-transform-private-methods": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-private-methods/-/plugin-transform-private-methods-7.24.1.tgz",
-      "integrity": "sha512-tGvisebwBO5em4PaYNqt4fkw56K2VALsAbAakY0FjTYqJp7gfdrgr7YX76Or8/cpik0W6+tj3rZ0uHU9Oil4tw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-private-methods/-/plugin-transform-private-methods-7.24.6.tgz",
+      "integrity": "sha512-T9LtDI0BgwXOzyXrvgLTT8DFjCC/XgWLjflczTLXyvxbnSR/gpv0hbmzlHE/kmh9nOvlygbamLKRo6Op4yB6aw==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-create-class-features-plugin": "^7.24.1",
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-create-class-features-plugin": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3401,14 +3669,14 @@
       }
     },
     "node_modules/@babel/plugin-transform-private-property-in-object": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-private-property-in-object/-/plugin-transform-private-property-in-object-7.24.1.tgz",
-      "integrity": "sha512-pTHxDVa0BpUbvAgX3Gat+7cSciXqUcY9j2VZKTbSB6+VQGpNgNO9ailxTGHSXlqOnX1Hcx1Enme2+yv7VqP9bg==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-private-property-in-object/-/plugin-transform-private-property-in-object-7.24.6.tgz",
+      "integrity": "sha512-Qu/ypFxCY5NkAnEhCF86Mvg3NSabKsh/TPpBVswEdkGl7+FbsYHy1ziRqJpwGH4thBdQHh8zx+z7vMYmcJ7iaQ==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-annotate-as-pure": "^7.22.5",
-        "@babel/helper-create-class-features-plugin": "^7.24.1",
-        "@babel/helper-plugin-utils": "^7.24.0",
+        "@babel/helper-annotate-as-pure": "^7.24.6",
+        "@babel/helper-create-class-features-plugin": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6",
         "@babel/plugin-syntax-private-property-in-object": "^7.14.5"
       },
       "engines": {
@@ -3418,13 +3686,25 @@
         "@babel/core": "^7.0.0-0"
       }
     },
-    "node_modules/@babel/plugin-transform-property-literals": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-property-literals/-/plugin-transform-property-literals-7.24.1.tgz",
-      "integrity": "sha512-LetvD7CrHmEx0G442gOomRr66d7q8HzzGGr4PMHGr+5YIm6++Yke+jxj246rpvsbyhJwCLxcTn6zW1P1BSenqA==",
+    "node_modules/@babel/plugin-transform-private-property-in-object/node_modules/@babel/helper-annotate-as-pure": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-annotate-as-pure/-/helper-annotate-as-pure-7.24.6.tgz",
+      "integrity": "sha512-DitEzDfOMnd13kZnDqns1ccmftwJTS9DMkyn9pYTxulS7bZxUxpMly3Nf23QQ6NwA4UB8lAqjbqWtyvElEMAkg==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/types": "^7.24.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/plugin-transform-property-literals": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-property-literals/-/plugin-transform-property-literals-7.24.6.tgz",
+      "integrity": "sha512-oARaglxhRsN18OYsnPTpb8TcKQWDYNsPNmTnx5++WOAsUJ0cSC/FZVlIJCKvPbU4yn/UXsS0551CFKJhN0CaMw==",
+      "dev": true,
+      "dependencies": {
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3434,12 +3714,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-regenerator": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-regenerator/-/plugin-transform-regenerator-7.24.1.tgz",
-      "integrity": "sha512-sJwZBCzIBE4t+5Q4IGLaaun5ExVMRY0lYwos/jNecjMrVCygCdph3IKv0tkP5Fc87e/1+bebAmEAGBfnRD+cnw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-regenerator/-/plugin-transform-regenerator-7.24.6.tgz",
+      "integrity": "sha512-SMDxO95I8WXRtXhTAc8t/NFQUT7VYbIWwJCJgEli9ml4MhqUMh4S6hxgH6SmAC3eAQNWCDJFxcFeEt9w2sDdXg==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0",
+        "@babel/helper-plugin-utils": "^7.24.6",
         "regenerator-transform": "^0.15.2"
       },
       "engines": {
@@ -3450,12 +3730,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-reserved-words": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-reserved-words/-/plugin-transform-reserved-words-7.24.1.tgz",
-      "integrity": "sha512-JAclqStUfIwKN15HrsQADFgeZt+wexNQ0uLhuqvqAUFoqPMjEcFCYZBhq0LUdz6dZK/mD+rErhW71fbx8RYElg==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-reserved-words/-/plugin-transform-reserved-words-7.24.6.tgz",
+      "integrity": "sha512-DcrgFXRRlK64dGE0ZFBPD5egM2uM8mgfrvTMOSB2yKzOtjpGegVYkzh3s1zZg1bBck3nkXiaOamJUqK3Syk+4A==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3494,12 +3774,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-shorthand-properties": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-shorthand-properties/-/plugin-transform-shorthand-properties-7.24.1.tgz",
-      "integrity": "sha512-LyjVB1nsJ6gTTUKRjRWx9C1s9hE7dLfP/knKdrfeH9UPtAGjYGgxIbFfx7xyLIEWs7Xe1Gnf8EWiUqfjLhInZA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-shorthand-properties/-/plugin-transform-shorthand-properties-7.24.6.tgz",
+      "integrity": "sha512-xnEUvHSMr9eOWS5Al2YPfc32ten7CXdH7Zwyyk7IqITg4nX61oHj+GxpNvl+y5JHjfN3KXE2IV55wAWowBYMVw==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3509,13 +3789,13 @@
       }
     },
     "node_modules/@babel/plugin-transform-spread": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-spread/-/plugin-transform-spread-7.24.1.tgz",
-      "integrity": "sha512-KjmcIM+fxgY+KxPVbjelJC6hrH1CgtPmTvdXAfn3/a9CnWGSTY7nH4zm5+cjmWJybdcPSsD0++QssDsjcpe47g==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-spread/-/plugin-transform-spread-7.24.6.tgz",
+      "integrity": "sha512-h/2j7oIUDjS+ULsIrNZ6/TKG97FgmEk1PXryk/HQq6op4XUUUwif2f69fJrzK0wza2zjCS1xhXmouACaWV5uPA==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0",
-        "@babel/helper-skip-transparent-expression-wrappers": "^7.22.5"
+        "@babel/helper-plugin-utils": "^7.24.6",
+        "@babel/helper-skip-transparent-expression-wrappers": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3525,12 +3805,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-sticky-regex": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-sticky-regex/-/plugin-transform-sticky-regex-7.24.1.tgz",
-      "integrity": "sha512-9v0f1bRXgPVcPrngOQvLXeGNNVLc8UjMVfebo9ka0WF3/7+aVUHmaJVT3sa0XCzEFioPfPHZiOcYG9qOsH63cw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-sticky-regex/-/plugin-transform-sticky-regex-7.24.6.tgz",
+      "integrity": "sha512-fN8OcTLfGmYv7FnDrsjodYBo1DhPL3Pze/9mIIE2MGCT1KgADYIOD7rEglpLHZj8PZlC/JFX5WcD+85FLAQusw==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3540,12 +3820,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-template-literals": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-template-literals/-/plugin-transform-template-literals-7.24.1.tgz",
-      "integrity": "sha512-WRkhROsNzriarqECASCNu/nojeXCDTE/F2HmRgOzi7NGvyfYGq1NEjKBK3ckLfRgGc6/lPAqP0vDOSw3YtG34g==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-template-literals/-/plugin-transform-template-literals-7.24.6.tgz",
+      "integrity": "sha512-BJbEqJIcKwrqUP+KfUIkxz3q8VzXe2R8Wv8TaNgO1cx+nNavxn/2+H8kp9tgFSOL6wYPPEgFvU6IKS4qoGqhmg==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3555,12 +3835,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-typeof-symbol": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-typeof-symbol/-/plugin-transform-typeof-symbol-7.24.1.tgz",
-      "integrity": "sha512-CBfU4l/A+KruSUoW+vTQthwcAdwuqbpRNB8HQKlZABwHRhsdHZ9fezp4Sn18PeAlYxTNiLMlx4xUBV3AWfg1BA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-typeof-symbol/-/plugin-transform-typeof-symbol-7.24.6.tgz",
+      "integrity": "sha512-IshCXQ+G9JIFJI7bUpxTE/oA2lgVLAIK8q1KdJNoPXOpvRaNjMySGuvLfBw/Xi2/1lLo953uE8hyYSDW3TSYig==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3588,12 +3868,12 @@
       }
     },
     "node_modules/@babel/plugin-transform-unicode-escapes": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-unicode-escapes/-/plugin-transform-unicode-escapes-7.24.1.tgz",
-      "integrity": "sha512-RlkVIcWT4TLI96zM660S877E7beKlQw7Ig+wqkKBiWfj0zH5Q4h50q6er4wzZKRNSYpfo6ILJ+hrJAGSX2qcNw==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-unicode-escapes/-/plugin-transform-unicode-escapes-7.24.6.tgz",
+      "integrity": "sha512-bKl3xxcPbkQQo5eX9LjjDpU2xYHeEeNQbOhj0iPvetSzA+Tu9q/o5lujF4Sek60CM6MgYvOS/DJuwGbiEYAnLw==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3603,13 +3883,13 @@
       }
     },
     "node_modules/@babel/plugin-transform-unicode-property-regex": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-unicode-property-regex/-/plugin-transform-unicode-property-regex-7.24.1.tgz",
-      "integrity": "sha512-Ss4VvlfYV5huWApFsF8/Sq0oXnGO+jB+rijFEFugTd3cwSObUSnUi88djgR5528Csl0uKlrI331kRqe56Ov2Ng==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-unicode-property-regex/-/plugin-transform-unicode-property-regex-7.24.6.tgz",
+      "integrity": "sha512-8EIgImzVUxy15cZiPii9GvLZwsy7Vxc+8meSlR3cXFmBIl5W5Tn9LGBf7CDKkHj4uVfNXCJB8RsVfnmY61iedA==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-create-regexp-features-plugin": "^7.22.15",
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-create-regexp-features-plugin": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3619,13 +3899,13 @@
       }
     },
     "node_modules/@babel/plugin-transform-unicode-regex": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-unicode-regex/-/plugin-transform-unicode-regex-7.24.1.tgz",
-      "integrity": "sha512-2A/94wgZgxfTsiLaQ2E36XAOdcZmGAaEEgVmxQWwZXWkGhvoHbaqXcKnU8zny4ycpu3vNqg0L/PcCiYtHtA13g==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-unicode-regex/-/plugin-transform-unicode-regex-7.24.6.tgz",
+      "integrity": "sha512-pssN6ExsvxaKU638qcWb81RrvvgZom3jDgU/r5xFZ7TONkZGFf4MhI2ltMb8OcQWhHyxgIavEU+hgqtbKOmsPA==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-create-regexp-features-plugin": "^7.22.15",
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-create-regexp-features-plugin": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3635,13 +3915,13 @@
       }
     },
     "node_modules/@babel/plugin-transform-unicode-sets-regex": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-unicode-sets-regex/-/plugin-transform-unicode-sets-regex-7.24.1.tgz",
-      "integrity": "sha512-fqj4WuzzS+ukpgerpAoOnMfQXwUHFxXUZUE84oL2Kao2N8uSlvcpnAidKASgsNgzZHBsHWvcm8s9FPWUhAb8fA==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-unicode-sets-regex/-/plugin-transform-unicode-sets-regex-7.24.6.tgz",
+      "integrity": "sha512-quiMsb28oXWIDK0gXLALOJRXLgICLiulqdZGOaPPd0vRT7fQp74NtdADAVu+D8s00C+0Xs0MxVP0VKF/sZEUgw==",
       "dev": true,
       "dependencies": {
-        "@babel/helper-create-regexp-features-plugin": "^7.22.15",
-        "@babel/helper-plugin-utils": "^7.24.0"
+        "@babel/helper-create-regexp-features-plugin": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6"
       },
       "engines": {
         "node": ">=6.9.0"
@@ -3651,25 +3931,27 @@
       }
     },
     "node_modules/@babel/preset-env": {
-      "version": "7.22.9",
-      "resolved": "https://registry.npmjs.org/@babel/preset-env/-/preset-env-7.22.9.tgz",
-      "integrity": "sha512-wNi5H/Emkhll/bqPjsjQorSykrlfY5OWakd6AulLvMEytpKasMVUpVy8RL4qBIBs5Ac6/5i0/Rv0b/Fg6Eag/g==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/preset-env/-/preset-env-7.24.6.tgz",
+      "integrity": "sha512-CrxEAvN7VxfjOG8JNF2Y/eMqMJbZPZ185amwGUBp8D9USK90xQmv7dLdFSa+VbD7fdIqcy/Mfv7WtzG8+/qxKg==",
       "dev": true,
       "dependencies": {
-        "@babel/compat-data": "^7.22.9",
-        "@babel/helper-compilation-targets": "^7.22.9",
-        "@babel/helper-plugin-utils": "^7.22.5",
-        "@babel/helper-validator-option": "^7.22.5",
-        "@babel/plugin-bugfix-safari-id-destructuring-collision-in-function-expression": "^7.22.5",
-        "@babel/plugin-bugfix-v8-spread-parameters-in-optional-chaining": "^7.22.5",
+        "@babel/compat-data": "^7.24.6",
+        "@babel/helper-compilation-targets": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6",
+        "@babel/helper-validator-option": "^7.24.6",
+        "@babel/plugin-bugfix-firefox-class-in-computed-class-key": "^7.24.6",
+        "@babel/plugin-bugfix-safari-id-destructuring-collision-in-function-expression": "^7.24.6",
+        "@babel/plugin-bugfix-v8-spread-parameters-in-optional-chaining": "^7.24.6",
+        "@babel/plugin-bugfix-v8-static-class-fields-redefine-readonly": "^7.24.6",
         "@babel/plugin-proposal-private-property-in-object": "7.21.0-placeholder-for-preset-env.2",
         "@babel/plugin-syntax-async-generators": "^7.8.4",
         "@babel/plugin-syntax-class-properties": "^7.12.13",
         "@babel/plugin-syntax-class-static-block": "^7.14.5",
         "@babel/plugin-syntax-dynamic-import": "^7.8.3",
         "@babel/plugin-syntax-export-namespace-from": "^7.8.3",
-        "@babel/plugin-syntax-import-assertions": "^7.22.5",
-        "@babel/plugin-syntax-import-attributes": "^7.22.5",
+        "@babel/plugin-syntax-import-assertions": "^7.24.6",
+        "@babel/plugin-syntax-import-attributes": "^7.24.6",
         "@babel/plugin-syntax-import-meta": "^7.10.4",
         "@babel/plugin-syntax-json-strings": "^7.8.3",
         "@babel/plugin-syntax-logical-assignment-operators": "^7.10.4",
@@ -3681,59 +3963,58 @@
         "@babel/plugin-syntax-private-property-in-object": "^7.14.5",
         "@babel/plugin-syntax-top-level-await": "^7.14.5",
         "@babel/plugin-syntax-unicode-sets-regex": "^7.18.6",
-        "@babel/plugin-transform-arrow-functions": "^7.22.5",
-        "@babel/plugin-transform-async-generator-functions": "^7.22.7",
-        "@babel/plugin-transform-async-to-generator": "^7.22.5",
-        "@babel/plugin-transform-block-scoped-functions": "^7.22.5",
-        "@babel/plugin-transform-block-scoping": "^7.22.5",
-        "@babel/plugin-transform-class-properties": "^7.22.5",
-        "@babel/plugin-transform-class-static-block": "^7.22.5",
-        "@babel/plugin-transform-classes": "^7.22.6",
-        "@babel/plugin-transform-computed-properties": "^7.22.5",
-        "@babel/plugin-transform-destructuring": "^7.22.5",
-        "@babel/plugin-transform-dotall-regex": "^7.22.5",
-        "@babel/plugin-transform-duplicate-keys": "^7.22.5",
-        "@babel/plugin-transform-dynamic-import": "^7.22.5",
-        "@babel/plugin-transform-exponentiation-operator": "^7.22.5",
-        "@babel/plugin-transform-export-namespace-from": "^7.22.5",
-        "@babel/plugin-transform-for-of": "^7.22.5",
-        "@babel/plugin-transform-function-name": "^7.22.5",
-        "@babel/plugin-transform-json-strings": "^7.22.5",
-        "@babel/plugin-transform-literals": "^7.22.5",
-        "@babel/plugin-transform-logical-assignment-operators": "^7.22.5",
-        "@babel/plugin-transform-member-expression-literals": "^7.22.5",
-        "@babel/plugin-transform-modules-amd": "^7.22.5",
-        "@babel/plugin-transform-modules-commonjs": "^7.22.5",
-        "@babel/plugin-transform-modules-systemjs": "^7.22.5",
-        "@babel/plugin-transform-modules-umd": "^7.22.5",
-        "@babel/plugin-transform-named-capturing-groups-regex": "^7.22.5",
-        "@babel/plugin-transform-new-target": "^7.22.5",
-        "@babel/plugin-transform-nullish-coalescing-operator": "^7.22.5",
-        "@babel/plugin-transform-numeric-separator": "^7.22.5",
-        "@babel/plugin-transform-object-rest-spread": "^7.22.5",
-        "@babel/plugin-transform-object-super": "^7.22.5",
-        "@babel/plugin-transform-optional-catch-binding": "^7.22.5",
-        "@babel/plugin-transform-optional-chaining": "^7.22.6",
-        "@babel/plugin-transform-parameters": "^7.22.5",
-        "@babel/plugin-transform-private-methods": "^7.22.5",
-        "@babel/plugin-transform-private-property-in-object": "^7.22.5",
-        "@babel/plugin-transform-property-literals": "^7.22.5",
-        "@babel/plugin-transform-regenerator": "^7.22.5",
-        "@babel/plugin-transform-reserved-words": "^7.22.5",
-        "@babel/plugin-transform-shorthand-properties": "^7.22.5",
-        "@babel/plugin-transform-spread": "^7.22.5",
-        "@babel/plugin-transform-sticky-regex": "^7.22.5",
-        "@babel/plugin-transform-template-literals": "^7.22.5",
-        "@babel/plugin-transform-typeof-symbol": "^7.22.5",
-        "@babel/plugin-transform-unicode-escapes": "^7.22.5",
-        "@babel/plugin-transform-unicode-property-regex": "^7.22.5",
-        "@babel/plugin-transform-unicode-regex": "^7.22.5",
-        "@babel/plugin-transform-unicode-sets-regex": "^7.22.5",
-        "@babel/preset-modules": "^0.1.5",
-        "@babel/types": "^7.22.5",
-        "babel-plugin-polyfill-corejs2": "^0.4.4",
-        "babel-plugin-polyfill-corejs3": "^0.8.2",
-        "babel-plugin-polyfill-regenerator": "^0.5.1",
+        "@babel/plugin-transform-arrow-functions": "^7.24.6",
+        "@babel/plugin-transform-async-generator-functions": "^7.24.6",
+        "@babel/plugin-transform-async-to-generator": "^7.24.6",
+        "@babel/plugin-transform-block-scoped-functions": "^7.24.6",
+        "@babel/plugin-transform-block-scoping": "^7.24.6",
+        "@babel/plugin-transform-class-properties": "^7.24.6",
+        "@babel/plugin-transform-class-static-block": "^7.24.6",
+        "@babel/plugin-transform-classes": "^7.24.6",
+        "@babel/plugin-transform-computed-properties": "^7.24.6",
+        "@babel/plugin-transform-destructuring": "^7.24.6",
+        "@babel/plugin-transform-dotall-regex": "^7.24.6",
+        "@babel/plugin-transform-duplicate-keys": "^7.24.6",
+        "@babel/plugin-transform-dynamic-import": "^7.24.6",
+        "@babel/plugin-transform-exponentiation-operator": "^7.24.6",
+        "@babel/plugin-transform-export-namespace-from": "^7.24.6",
+        "@babel/plugin-transform-for-of": "^7.24.6",
+        "@babel/plugin-transform-function-name": "^7.24.6",
+        "@babel/plugin-transform-json-strings": "^7.24.6",
+        "@babel/plugin-transform-literals": "^7.24.6",
+        "@babel/plugin-transform-logical-assignment-operators": "^7.24.6",
+        "@babel/plugin-transform-member-expression-literals": "^7.24.6",
+        "@babel/plugin-transform-modules-amd": "^7.24.6",
+        "@babel/plugin-transform-modules-commonjs": "^7.24.6",
+        "@babel/plugin-transform-modules-systemjs": "^7.24.6",
+        "@babel/plugin-transform-modules-umd": "^7.24.6",
+        "@babel/plugin-transform-named-capturing-groups-regex": "^7.24.6",
+        "@babel/plugin-transform-new-target": "^7.24.6",
+        "@babel/plugin-transform-nullish-coalescing-operator": "^7.24.6",
+        "@babel/plugin-transform-numeric-separator": "^7.24.6",
+        "@babel/plugin-transform-object-rest-spread": "^7.24.6",
+        "@babel/plugin-transform-object-super": "^7.24.6",
+        "@babel/plugin-transform-optional-catch-binding": "^7.24.6",
+        "@babel/plugin-transform-optional-chaining": "^7.24.6",
+        "@babel/plugin-transform-parameters": "^7.24.6",
+        "@babel/plugin-transform-private-methods": "^7.24.6",
+        "@babel/plugin-transform-private-property-in-object": "^7.24.6",
+        "@babel/plugin-transform-property-literals": "^7.24.6",
+        "@babel/plugin-transform-regenerator": "^7.24.6",
+        "@babel/plugin-transform-reserved-words": "^7.24.6",
+        "@babel/plugin-transform-shorthand-properties": "^7.24.6",
+        "@babel/plugin-transform-spread": "^7.24.6",
+        "@babel/plugin-transform-sticky-regex": "^7.24.6",
+        "@babel/plugin-transform-template-literals": "^7.24.6",
+        "@babel/plugin-transform-typeof-symbol": "^7.24.6",
+        "@babel/plugin-transform-unicode-escapes": "^7.24.6",
+        "@babel/plugin-transform-unicode-property-regex": "^7.24.6",
+        "@babel/plugin-transform-unicode-regex": "^7.24.6",
+        "@babel/plugin-transform-unicode-sets-regex": "^7.24.6",
+        "@babel/preset-modules": "0.1.6-no-external-plugins",
+        "babel-plugin-polyfill-corejs2": "^0.4.10",
+        "babel-plugin-polyfill-corejs3": "^0.10.4",
+        "babel-plugin-polyfill-regenerator": "^0.6.1",
         "core-js-compat": "^3.31.0",
         "semver": "^6.3.1"
       },
@@ -3744,6 +4025,64 @@
         "@babel/core": "^7.0.0-0"
       }
     },
+    "node_modules/@babel/preset-env/node_modules/@babel/plugin-bugfix-v8-static-class-fields-redefine-readonly": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-bugfix-v8-static-class-fields-redefine-readonly/-/plugin-bugfix-v8-static-class-fields-redefine-readonly-7.24.6.tgz",
+      "integrity": "sha512-z8zEjYmwBUHN/pCF3NuWBhHQjJCrd33qAi8MgANfMrAvn72k2cImT8VjK9LJFu4ysOLJqhfkYYb3MvwANRUNZQ==",
+      "dev": true,
+      "dependencies": {
+        "@babel/helper-environment-visitor": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      },
+      "peerDependencies": {
+        "@babel/core": "^7.0.0"
+      }
+    },
+    "node_modules/@babel/preset-env/node_modules/@babel/plugin-transform-async-to-generator": {
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-async-to-generator/-/plugin-transform-async-to-generator-7.24.6.tgz",
+      "integrity": "sha512-NTBA2SioI3OsHeIn6sQmhvXleSl9T70YY/hostQLveWs0ic+qvbA3fa0kwAwQ0OA/XGaAerNZRQGJyRfhbJK4g==",
+      "dev": true,
+      "dependencies": {
+        "@babel/helper-module-imports": "^7.24.6",
+        "@babel/helper-plugin-utils": "^7.24.6",
+        "@babel/helper-remap-async-to-generator": "^7.24.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      },
+      "peerDependencies": {
+        "@babel/core": "^7.0.0-0"
+      }
+    },
+    "node_modules/@babel/preset-env/node_modules/babel-plugin-polyfill-corejs3": {
+      "version": "0.10.4",
+      "resolved": "https://registry.npmjs.org/babel-plugin-polyfill-corejs3/-/babel-plugin-polyfill-corejs3-0.10.4.tgz",
+      "integrity": "sha512-25J6I8NGfa5YkCDogHRID3fVCadIR8/pGl1/spvCkzb6lVn6SR3ojpx9nOn9iEBcUsjY24AmdKm5khcfKdylcg==",
+      "dev": true,
+      "dependencies": {
+        "@babel/helper-define-polyfill-provider": "^0.6.1",
+        "core-js-compat": "^3.36.1"
+      },
+      "peerDependencies": {
+        "@babel/core": "^7.4.0 || ^8.0.0-0 <8.0.0"
+      }
+    },
+    "node_modules/@babel/preset-env/node_modules/babel-plugin-polyfill-regenerator": {
+      "version": "0.6.2",
+      "resolved": "https://registry.npmjs.org/babel-plugin-polyfill-regenerator/-/babel-plugin-polyfill-regenerator-0.6.2.tgz",
+      "integrity": "sha512-2R25rQZWP63nGwaAswvDazbPXfrM3HwVoBXK6HcqeKrSrL/JqcC/rDcf95l4r7LXLyxDXc8uQDa064GubtCABg==",
+      "dev": true,
+      "dependencies": {
+        "@babel/helper-define-polyfill-provider": "^0.6.2"
+      },
+      "peerDependencies": {
+        "@babel/core": "^7.4.0 || ^8.0.0-0 <8.0.0"
+      }
+    },
     "node_modules/@babel/preset-env/node_modules/semver": {
       "version": "6.3.1",
       "resolved": "https://registry.npmjs.org/semver/-/semver-6.3.1.tgz",
@@ -3771,14 +4110,12 @@
       }
     },
     "node_modules/@babel/preset-modules": {
-      "version": "0.1.6",
-      "resolved": "https://registry.npmjs.org/@babel/preset-modules/-/preset-modules-0.1.6.tgz",
-      "integrity": "sha512-ID2yj6K/4lKfhuU3+EX4UvNbIt7eACFbHmNUjzA+ep+B5971CknnA/9DEWKbRokfbbtblxxxXFJJrH47UEAMVg==",
+      "version": "0.1.6-no-external-plugins",
+      "resolved": "https://registry.npmjs.org/@babel/preset-modules/-/preset-modules-0.1.6-no-external-plugins.tgz",
+      "integrity": "sha512-HrcgcIESLm9aIR842yhJ5RWan/gebQUJ6E/E5+rf0y9o6oj7w0Br+sWuL6kEQ/o/AdfvR1Je9jG18/gnpwjEyA==",
       "dev": true,
       "dependencies": {
         "@babel/helper-plugin-utils": "^7.0.0",
-        "@babel/plugin-proposal-unicode-property-regex": "^7.4.4",
-        "@babel/plugin-transform-dotall-regex": "^7.4.4",
         "@babel/types": "^7.4.4",
         "esutils": "^2.0.2"
       },
@@ -3978,6 +4315,7 @@
       "version": "7.24.1",
       "resolved": "https://registry.npmjs.org/@babel/traverse/-/traverse-7.24.1.tgz",
       "integrity": "sha512-xuU6o9m68KeqZbQuDt2TcKSxUw/mrsvavlEqQ1leZ/B+C9tk6E4sRWy97WaXgvq5E+nU3cXMxv3WKOCanVMCmQ==",
+      "dev": true,
       "dependencies": {
         "@babel/code-frame": "^7.24.1",
         "@babel/generator": "^7.24.1",
@@ -3998,6 +4336,7 @@
       "version": "7.24.1",
       "resolved": "https://registry.npmjs.org/@babel/generator/-/generator-7.24.1.tgz",
       "integrity": "sha512-DfCRfZsBcrPEHUfuBMgbJ1Ut01Y/itOs+hY2nFLgqsqXd52/iSiVq5TITtUasIUgm+IIKdY2/1I7auiQOEeC9A==",
+      "dev": true,
       "dependencies": {
         "@babel/types": "^7.24.0",
         "@jridgewell/gen-mapping": "^0.3.5",
@@ -4009,12 +4348,12 @@
       }
     },
     "node_modules/@babel/types": {
-      "version": "7.24.0",
-      "resolved": "https://registry.npmjs.org/@babel/types/-/types-7.24.0.tgz",
-      "integrity": "sha512-+j7a5c253RfKh8iABBhywc8NSfP5LURe7Uh4qpsh6jc+aLJguvmIUBdjSdEMQv2bENrCR5MfRdjGo7vzS/ob7w==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/types/-/types-7.24.6.tgz",
+      "integrity": "sha512-WaMsgi6Q8zMgMth93GvWPXkhAIEobfsIkLTacoVZoK1J0CevIPGYY2Vo5YvJGqyHqXM6P4ppOYGsIRU8MM9pFQ==",
       "dependencies": {
-        "@babel/helper-string-parser": "^7.23.4",
-        "@babel/helper-validator-identifier": "^7.22.20",
+        "@babel/helper-string-parser": "^7.24.6",
+        "@babel/helper-validator-identifier": "^7.24.6",
         "to-fast-properties": "^2.0.0"
       },
       "engines": {
@@ -4366,20 +4705,6 @@
         "semver": "bin/semver.js"
       }
     },
-    "node_modules/@compodoc/compodoc/node_modules/@babel/preset-modules": {
-      "version": "0.1.6-no-external-plugins",
-      "resolved": "https://registry.npmjs.org/@babel/preset-modules/-/preset-modules-0.1.6-no-external-plugins.tgz",
-      "integrity": "sha512-HrcgcIESLm9aIR842yhJ5RWan/gebQUJ6E/E5+rf0y9o6oj7w0Br+sWuL6kEQ/o/AdfvR1Je9jG18/gnpwjEyA==",
-      "dev": true,
-      "dependencies": {
-        "@babel/helper-plugin-utils": "^7.0.0",
-        "@babel/types": "^7.4.4",
-        "esutils": "^2.0.2"
-      },
-      "peerDependencies": {
-        "@babel/core": "^7.0.0-0 || ^8.0.0-0 <8.0.0"
-      }
-    },
     "node_modules/@compodoc/compodoc/node_modules/ajv": {
       "version": "8.11.0",
       "resolved": "https://registry.npmjs.org/ajv/-/ajv-8.11.0.tgz",
@@ -8417,165 +8742,6 @@
         "url": "https://opencollective.com/storybook"
       }
     },
-    "node_modules/@storybook/cli/node_modules/@babel/plugin-transform-async-to-generator": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-async-to-generator/-/plugin-transform-async-to-generator-7.24.1.tgz",
-      "integrity": "sha512-AawPptitRXp1y0n4ilKcGbRYWfbbzFWz2NqNu7dacYDtFtz0CMjG64b3LQsb3KIgnf4/obcUL78hfaOS7iCUfw==",
-      "dev": true,
-      "dependencies": {
-        "@babel/helper-module-imports": "^7.24.1",
-        "@babel/helper-plugin-utils": "^7.24.0",
-        "@babel/helper-remap-async-to-generator": "^7.22.20"
-      },
-      "engines": {
-        "node": ">=6.9.0"
-      },
-      "peerDependencies": {
-        "@babel/core": "^7.0.0-0"
-      }
-    },
-    "node_modules/@storybook/cli/node_modules/@babel/preset-env": {
-      "version": "7.24.3",
-      "resolved": "https://registry.npmjs.org/@babel/preset-env/-/preset-env-7.24.3.tgz",
-      "integrity": "sha512-fSk430k5c2ff8536JcPvPWK4tZDwehWLGlBp0wrsBUjZVdeQV6lePbwKWZaZfK2vnh/1kQX1PzAJWsnBmVgGJA==",
-      "dev": true,
-      "dependencies": {
-        "@babel/compat-data": "^7.24.1",
-        "@babel/helper-compilation-targets": "^7.23.6",
-        "@babel/helper-plugin-utils": "^7.24.0",
-        "@babel/helper-validator-option": "^7.23.5",
-        "@babel/plugin-bugfix-safari-id-destructuring-collision-in-function-expression": "^7.24.1",
-        "@babel/plugin-bugfix-v8-spread-parameters-in-optional-chaining": "^7.24.1",
-        "@babel/plugin-bugfix-v8-static-class-fields-redefine-readonly": "^7.24.1",
-        "@babel/plugin-proposal-private-property-in-object": "7.21.0-placeholder-for-preset-env.2",
-        "@babel/plugin-syntax-async-generators": "^7.8.4",
-        "@babel/plugin-syntax-class-properties": "^7.12.13",
-        "@babel/plugin-syntax-class-static-block": "^7.14.5",
-        "@babel/plugin-syntax-dynamic-import": "^7.8.3",
-        "@babel/plugin-syntax-export-namespace-from": "^7.8.3",
-        "@babel/plugin-syntax-import-assertions": "^7.24.1",
-        "@babel/plugin-syntax-import-attributes": "^7.24.1",
-        "@babel/plugin-syntax-import-meta": "^7.10.4",
-        "@babel/plugin-syntax-json-strings": "^7.8.3",
-        "@babel/plugin-syntax-logical-assignment-operators": "^7.10.4",
-        "@babel/plugin-syntax-nullish-coalescing-operator": "^7.8.3",
-        "@babel/plugin-syntax-numeric-separator": "^7.10.4",
-        "@babel/plugin-syntax-object-rest-spread": "^7.8.3",
-        "@babel/plugin-syntax-optional-catch-binding": "^7.8.3",
-        "@babel/plugin-syntax-optional-chaining": "^7.8.3",
-        "@babel/plugin-syntax-private-property-in-object": "^7.14.5",
-        "@babel/plugin-syntax-top-level-await": "^7.14.5",
-        "@babel/plugin-syntax-unicode-sets-regex": "^7.18.6",
-        "@babel/plugin-transform-arrow-functions": "^7.24.1",
-        "@babel/plugin-transform-async-generator-functions": "^7.24.3",
-        "@babel/plugin-transform-async-to-generator": "^7.24.1",
-        "@babel/plugin-transform-block-scoped-functions": "^7.24.1",
-        "@babel/plugin-transform-block-scoping": "^7.24.1",
-        "@babel/plugin-transform-class-properties": "^7.24.1",
-        "@babel/plugin-transform-class-static-block": "^7.24.1",
-        "@babel/plugin-transform-classes": "^7.24.1",
-        "@babel/plugin-transform-computed-properties": "^7.24.1",
-        "@babel/plugin-transform-destructuring": "^7.24.1",
-        "@babel/plugin-transform-dotall-regex": "^7.24.1",
-        "@babel/plugin-transform-duplicate-keys": "^7.24.1",
-        "@babel/plugin-transform-dynamic-import": "^7.24.1",
-        "@babel/plugin-transform-exponentiation-operator": "^7.24.1",
-        "@babel/plugin-transform-export-namespace-from": "^7.24.1",
-        "@babel/plugin-transform-for-of": "^7.24.1",
-        "@babel/plugin-transform-function-name": "^7.24.1",
-        "@babel/plugin-transform-json-strings": "^7.24.1",
-        "@babel/plugin-transform-literals": "^7.24.1",
-        "@babel/plugin-transform-logical-assignment-operators": "^7.24.1",
-        "@babel/plugin-transform-member-expression-literals": "^7.24.1",
-        "@babel/plugin-transform-modules-amd": "^7.24.1",
-        "@babel/plugin-transform-modules-commonjs": "^7.24.1",
-        "@babel/plugin-transform-modules-systemjs": "^7.24.1",
-        "@babel/plugin-transform-modules-umd": "^7.24.1",
-        "@babel/plugin-transform-named-capturing-groups-regex": "^7.22.5",
-        "@babel/plugin-transform-new-target": "^7.24.1",
-        "@babel/plugin-transform-nullish-coalescing-operator": "^7.24.1",
-        "@babel/plugin-transform-numeric-separator": "^7.24.1",
-        "@babel/plugin-transform-object-rest-spread": "^7.24.1",
-        "@babel/plugin-transform-object-super": "^7.24.1",
-        "@babel/plugin-transform-optional-catch-binding": "^7.24.1",
-        "@babel/plugin-transform-optional-chaining": "^7.24.1",
-        "@babel/plugin-transform-parameters": "^7.24.1",
-        "@babel/plugin-transform-private-methods": "^7.24.1",
-        "@babel/plugin-transform-private-property-in-object": "^7.24.1",
-        "@babel/plugin-transform-property-literals": "^7.24.1",
-        "@babel/plugin-transform-regenerator": "^7.24.1",
-        "@babel/plugin-transform-reserved-words": "^7.24.1",
-        "@babel/plugin-transform-shorthand-properties": "^7.24.1",
-        "@babel/plugin-transform-spread": "^7.24.1",
-        "@babel/plugin-transform-sticky-regex": "^7.24.1",
-        "@babel/plugin-transform-template-literals": "^7.24.1",
-        "@babel/plugin-transform-typeof-symbol": "^7.24.1",
-        "@babel/plugin-transform-unicode-escapes": "^7.24.1",
-        "@babel/plugin-transform-unicode-property-regex": "^7.24.1",
-        "@babel/plugin-transform-unicode-regex": "^7.24.1",
-        "@babel/plugin-transform-unicode-sets-regex": "^7.24.1",
-        "@babel/preset-modules": "0.1.6-no-external-plugins",
-        "babel-plugin-polyfill-corejs2": "^0.4.10",
-        "babel-plugin-polyfill-corejs3": "^0.10.4",
-        "babel-plugin-polyfill-regenerator": "^0.6.1",
-        "core-js-compat": "^3.31.0",
-        "semver": "^6.3.1"
-      },
-      "engines": {
-        "node": ">=6.9.0"
-      },
-      "peerDependencies": {
-        "@babel/core": "^7.0.0-0"
-      }
-    },
-    "node_modules/@storybook/cli/node_modules/@babel/preset-env/node_modules/semver": {
-      "version": "6.3.1",
-      "resolved": "https://registry.npmjs.org/semver/-/semver-6.3.1.tgz",
-      "integrity": "sha512-BR7VvDCVHO+q2xBEWskxS6DJE1qRnb7DxzUrogb71CWoSficBxYsiAGd+Kl0mmq/MprG9yArRkyrQxTO6XjMzA==",
-      "dev": true,
-      "bin": {
-        "semver": "bin/semver.js"
-      }
-    },
-    "node_modules/@storybook/cli/node_modules/@babel/preset-modules": {
-      "version": "0.1.6-no-external-plugins",
-      "resolved": "https://registry.npmjs.org/@babel/preset-modules/-/preset-modules-0.1.6-no-external-plugins.tgz",
-      "integrity": "sha512-HrcgcIESLm9aIR842yhJ5RWan/gebQUJ6E/E5+rf0y9o6oj7w0Br+sWuL6kEQ/o/AdfvR1Je9jG18/gnpwjEyA==",
-      "dev": true,
-      "dependencies": {
-        "@babel/helper-plugin-utils": "^7.0.0",
-        "@babel/types": "^7.4.4",
-        "esutils": "^2.0.2"
-      },
-      "peerDependencies": {
-        "@babel/core": "^7.0.0-0 || ^8.0.0-0 <8.0.0"
-      }
-    },
-    "node_modules/@storybook/cli/node_modules/babel-plugin-polyfill-corejs3": {
-      "version": "0.10.4",
-      "resolved": "https://registry.npmjs.org/babel-plugin-polyfill-corejs3/-/babel-plugin-polyfill-corejs3-0.10.4.tgz",
-      "integrity": "sha512-25J6I8NGfa5YkCDogHRID3fVCadIR8/pGl1/spvCkzb6lVn6SR3ojpx9nOn9iEBcUsjY24AmdKm5khcfKdylcg==",
-      "dev": true,
-      "dependencies": {
-        "@babel/helper-define-polyfill-provider": "^0.6.1",
-        "core-js-compat": "^3.36.1"
-      },
-      "peerDependencies": {
-        "@babel/core": "^7.4.0 || ^8.0.0-0 <8.0.0"
-      }
-    },
-    "node_modules/@storybook/cli/node_modules/babel-plugin-polyfill-regenerator": {
-      "version": "0.6.1",
-      "resolved": "https://registry.npmjs.org/babel-plugin-polyfill-regenerator/-/babel-plugin-polyfill-regenerator-0.6.1.tgz",
-      "integrity": "sha512-JfTApdE++cgcTWjsiCQlLyFBMbTUft9ja17saCc93lgV33h4tuCVj7tlvu//qpLwaG+3yEz7/KhahGrUMkVq9g==",
-      "dev": true,
-      "dependencies": {
-        "@babel/helper-define-polyfill-provider": "^0.6.1"
-      },
-      "peerDependencies": {
-        "@babel/core": "^7.4.0 || ^8.0.0-0 <8.0.0"
-      }
-    },
     "node_modules/@storybook/cli/node_modules/commander": {
       "version": "6.2.1",
       "resolved": "https://registry.npmjs.org/commander/-/commander-6.2.1.tgz",
@@ -8750,20 +8916,6 @@
         "@babel/core": "^7.0.0-0"
       }
     },
-    "node_modules/@storybook/codemod/node_modules/@babel/preset-modules": {
-      "version": "0.1.6-no-external-plugins",
-      "resolved": "https://registry.npmjs.org/@babel/preset-modules/-/preset-modules-0.1.6-no-external-plugins.tgz",
-      "integrity": "sha512-HrcgcIESLm9aIR842yhJ5RWan/gebQUJ6E/E5+rf0y9o6oj7w0Br+sWuL6kEQ/o/AdfvR1Je9jG18/gnpwjEyA==",
-      "dev": true,
-      "dependencies": {
-        "@babel/helper-plugin-utils": "^7.0.0",
-        "@babel/types": "^7.4.4",
-        "esutils": "^2.0.2"
-      },
-      "peerDependencies": {
-        "@babel/core": "^7.0.0-0 || ^8.0.0-0 <8.0.0"
-      }
-    },
     "node_modules/@storybook/codemod/node_modules/babel-plugin-polyfill-corejs3": {
       "version": "0.10.4",
       "resolved": "https://registry.npmjs.org/babel-plugin-polyfill-corejs3/-/babel-plugin-polyfill-corejs3-0.10.4.tgz",
diff --git a/package.json b/package.json
index 64499943194..69112739f34 100644
--- a/package.json
+++ b/package.json
@@ -41,6 +41,8 @@
     "@angular/cli": "16.2.11",
     "@angular/compiler-cli": "16.2.12",
     "@angular/elements": "16.2.12",
+    "@babel/core": "^7.24.6",
+    "@babel/preset-env": "^7.24.6",
     "@compodoc/compodoc": "1.1.23",
     "@electron/notarize": "2.3.0",
     "@electron/rebuild": "3.6.0",
@@ -83,7 +85,9 @@
     "@webcomponents/custom-elements": "1.6.0",
     "@yao-pkg/pkg": "^5.11.5",
     "autoprefixer": "10.4.19",
+    "babel-loader": "^9.1.3",
     "base64-loader": "1.0.0",
+    "browserslist": "^4.23.0",
     "chromatic": "10.9.6",
     "concurrently": "8.2.2",
     "copy-webpack-plugin": "12.0.2",

From 748ce19f180b9b8f7213c7962b17ee76cdf26973 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Fri, 31 May 2024 06:18:08 +0000
Subject: [PATCH 049/138] Autosync the updated translations (#9448)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/web/src/locales/af/messages.json    |  3 +++
 apps/web/src/locales/ar/messages.json    |  3 +++
 apps/web/src/locales/az/messages.json    |  3 +++
 apps/web/src/locales/be/messages.json    |  3 +++
 apps/web/src/locales/bg/messages.json    |  3 +++
 apps/web/src/locales/bn/messages.json    |  3 +++
 apps/web/src/locales/bs/messages.json    |  3 +++
 apps/web/src/locales/ca/messages.json    |  3 +++
 apps/web/src/locales/cs/messages.json    |  3 +++
 apps/web/src/locales/cy/messages.json    |  3 +++
 apps/web/src/locales/da/messages.json    |  3 +++
 apps/web/src/locales/de/messages.json    |  3 +++
 apps/web/src/locales/el/messages.json    |  3 +++
 apps/web/src/locales/en_GB/messages.json |  3 +++
 apps/web/src/locales/en_IN/messages.json |  3 +++
 apps/web/src/locales/eo/messages.json    |  3 +++
 apps/web/src/locales/es/messages.json    |  3 +++
 apps/web/src/locales/et/messages.json    |  3 +++
 apps/web/src/locales/eu/messages.json    |  3 +++
 apps/web/src/locales/fa/messages.json    |  3 +++
 apps/web/src/locales/fi/messages.json    |  7 +++++--
 apps/web/src/locales/fil/messages.json   |  3 +++
 apps/web/src/locales/fr/messages.json    |  3 +++
 apps/web/src/locales/gl/messages.json    |  3 +++
 apps/web/src/locales/he/messages.json    |  3 +++
 apps/web/src/locales/hi/messages.json    |  3 +++
 apps/web/src/locales/hr/messages.json    |  3 +++
 apps/web/src/locales/hu/messages.json    |  3 +++
 apps/web/src/locales/id/messages.json    |  3 +++
 apps/web/src/locales/it/messages.json    |  3 +++
 apps/web/src/locales/ja/messages.json    |  3 +++
 apps/web/src/locales/ka/messages.json    |  3 +++
 apps/web/src/locales/km/messages.json    |  3 +++
 apps/web/src/locales/kn/messages.json    |  3 +++
 apps/web/src/locales/ko/messages.json    |  3 +++
 apps/web/src/locales/lv/messages.json    | 25 +++++++++++++-----------
 apps/web/src/locales/ml/messages.json    |  3 +++
 apps/web/src/locales/mr/messages.json    |  3 +++
 apps/web/src/locales/my/messages.json    |  3 +++
 apps/web/src/locales/nb/messages.json    |  3 +++
 apps/web/src/locales/ne/messages.json    |  3 +++
 apps/web/src/locales/nl/messages.json    |  3 +++
 apps/web/src/locales/nn/messages.json    |  3 +++
 apps/web/src/locales/or/messages.json    |  3 +++
 apps/web/src/locales/pl/messages.json    |  3 +++
 apps/web/src/locales/pt_BR/messages.json |  3 +++
 apps/web/src/locales/pt_PT/messages.json |  3 +++
 apps/web/src/locales/ro/messages.json    |  3 +++
 apps/web/src/locales/ru/messages.json    |  3 +++
 apps/web/src/locales/si/messages.json    |  3 +++
 apps/web/src/locales/sk/messages.json    |  3 +++
 apps/web/src/locales/sl/messages.json    |  3 +++
 apps/web/src/locales/sr/messages.json    |  3 +++
 apps/web/src/locales/sr_CS/messages.json |  3 +++
 apps/web/src/locales/sv/messages.json    |  3 +++
 apps/web/src/locales/te/messages.json    |  3 +++
 apps/web/src/locales/th/messages.json    |  3 +++
 apps/web/src/locales/tr/messages.json    |  3 +++
 apps/web/src/locales/uk/messages.json    |  3 +++
 apps/web/src/locales/vi/messages.json    |  3 +++
 apps/web/src/locales/zh_CN/messages.json |  3 +++
 apps/web/src/locales/zh_TW/messages.json |  3 +++
 62 files changed, 199 insertions(+), 13 deletions(-)

diff --git a/apps/web/src/locales/af/messages.json b/apps/web/src/locales/af/messages.json
index 06a957e8833..0bbcde1f493 100644
--- a/apps/web/src/locales/af/messages.json
+++ b/apps/web/src/locales/af/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Toegangsvlak"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Uitgeteken"
   },
diff --git a/apps/web/src/locales/ar/messages.json b/apps/web/src/locales/ar/messages.json
index e5f0fbe933b..92d90de8ded 100644
--- a/apps/web/src/locales/ar/messages.json
+++ b/apps/web/src/locales/ar/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "تم تسجيل الخروج"
   },
diff --git a/apps/web/src/locales/az/messages.json b/apps/web/src/locales/az/messages.json
index 963ea19cc74..71f7f573d65 100644
--- a/apps/web/src/locales/az/messages.json
+++ b/apps/web/src/locales/az/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Müraciət səviyyəsi"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Çıxış edildi"
   },
diff --git a/apps/web/src/locales/be/messages.json b/apps/web/src/locales/be/messages.json
index 8ec953ead5d..3127daed942 100644
--- a/apps/web/src/locales/be/messages.json
+++ b/apps/web/src/locales/be/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Вы выйшлі"
   },
diff --git a/apps/web/src/locales/bg/messages.json b/apps/web/src/locales/bg/messages.json
index 17f37b27775..a1be0b8fdf1 100644
--- a/apps/web/src/locales/bg/messages.json
+++ b/apps/web/src/locales/bg/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Ниво на достъп"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Бяхте отписани"
   },
diff --git a/apps/web/src/locales/bn/messages.json b/apps/web/src/locales/bn/messages.json
index edf5b44ba56..525586cc863 100644
--- a/apps/web/src/locales/bn/messages.json
+++ b/apps/web/src/locales/bn/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Logged out"
   },
diff --git a/apps/web/src/locales/bs/messages.json b/apps/web/src/locales/bs/messages.json
index b4a453bafe7..84dc065cec5 100644
--- a/apps/web/src/locales/bs/messages.json
+++ b/apps/web/src/locales/bs/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Logged out"
   },
diff --git a/apps/web/src/locales/ca/messages.json b/apps/web/src/locales/ca/messages.json
index a759371fd4e..24f5f561e56 100644
--- a/apps/web/src/locales/ca/messages.json
+++ b/apps/web/src/locales/ca/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Nivell d'accés"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Sessió tancada"
   },
diff --git a/apps/web/src/locales/cs/messages.json b/apps/web/src/locales/cs/messages.json
index 63be12e4052..7b08b7ef2f2 100644
--- a/apps/web/src/locales/cs/messages.json
+++ b/apps/web/src/locales/cs/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Úroveň přístupu"
   },
+  "accessing": {
+    "message": "Přistupování"
+  },
   "loggedOut": {
     "message": "Odhlášení"
   },
diff --git a/apps/web/src/locales/cy/messages.json b/apps/web/src/locales/cy/messages.json
index 2b5bdb55473..a9b33e0e14f 100644
--- a/apps/web/src/locales/cy/messages.json
+++ b/apps/web/src/locales/cy/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Logged out"
   },
diff --git a/apps/web/src/locales/da/messages.json b/apps/web/src/locales/da/messages.json
index 9f689aa000d..f4031107f1c 100644
--- a/apps/web/src/locales/da/messages.json
+++ b/apps/web/src/locales/da/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Adgangsniveau"
   },
+  "accessing": {
+    "message": "Tilgår"
+  },
   "loggedOut": {
     "message": "Logget ud"
   },
diff --git a/apps/web/src/locales/de/messages.json b/apps/web/src/locales/de/messages.json
index 008e0261d88..ecb3bf97291 100644
--- a/apps/web/src/locales/de/messages.json
+++ b/apps/web/src/locales/de/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Zugriffsebene"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Ausgeloggt"
   },
diff --git a/apps/web/src/locales/el/messages.json b/apps/web/src/locales/el/messages.json
index deed63f8e1a..42cc702f271 100644
--- a/apps/web/src/locales/el/messages.json
+++ b/apps/web/src/locales/el/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Αποσυνδεθήκατε"
   },
diff --git a/apps/web/src/locales/en_GB/messages.json b/apps/web/src/locales/en_GB/messages.json
index 77e378f8bed..93f1832301a 100644
--- a/apps/web/src/locales/en_GB/messages.json
+++ b/apps/web/src/locales/en_GB/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Logged out"
   },
diff --git a/apps/web/src/locales/en_IN/messages.json b/apps/web/src/locales/en_IN/messages.json
index f71834e6d81..f1fa51236e5 100644
--- a/apps/web/src/locales/en_IN/messages.json
+++ b/apps/web/src/locales/en_IN/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Logged out"
   },
diff --git a/apps/web/src/locales/eo/messages.json b/apps/web/src/locales/eo/messages.json
index 8c518ab273e..8e0b58c3f1c 100644
--- a/apps/web/src/locales/eo/messages.json
+++ b/apps/web/src/locales/eo/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Adiaŭita"
   },
diff --git a/apps/web/src/locales/es/messages.json b/apps/web/src/locales/es/messages.json
index 69d7a5ddbbe..8eed13491ee 100644
--- a/apps/web/src/locales/es/messages.json
+++ b/apps/web/src/locales/es/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Nivel de acceso"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Sesión terminada"
   },
diff --git a/apps/web/src/locales/et/messages.json b/apps/web/src/locales/et/messages.json
index a601c437b15..27f15dc4745 100644
--- a/apps/web/src/locales/et/messages.json
+++ b/apps/web/src/locales/et/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Välja logitud"
   },
diff --git a/apps/web/src/locales/eu/messages.json b/apps/web/src/locales/eu/messages.json
index 0e8fc63c3aa..3bb6a81998c 100644
--- a/apps/web/src/locales/eu/messages.json
+++ b/apps/web/src/locales/eu/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Saioa itxita"
   },
diff --git a/apps/web/src/locales/fa/messages.json b/apps/web/src/locales/fa/messages.json
index d12af42e3b6..42e1ff68cc5 100644
--- a/apps/web/src/locales/fa/messages.json
+++ b/apps/web/src/locales/fa/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "خارج شد"
   },
diff --git a/apps/web/src/locales/fi/messages.json b/apps/web/src/locales/fi/messages.json
index 53b9723509a..3b0e8b4b844 100644
--- a/apps/web/src/locales/fi/messages.json
+++ b/apps/web/src/locales/fi/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Käyttöoikeustaso"
   },
+  "accessing": {
+    "message": "Avataan"
+  },
   "loggedOut": {
     "message": "Kirjauduttu ulos"
   },
@@ -8290,9 +8293,9 @@
     "message": "Pysy haavoittuvuuksien edellä tehostamalla valvontaa päivittämällä maksulliseen tilaukseeen."
   },
   "approveAllRequests": {
-    "message": "Approve all requests"
+    "message": "Hyväksy kaikki pyynnöt"
   },
   "allLoginRequestsApproved": {
-    "message": "All login requests approved"
+    "message": "Kaikki kirjautumispyynnöt hyväksyttiin"
   }
 }
diff --git a/apps/web/src/locales/fil/messages.json b/apps/web/src/locales/fil/messages.json
index 96d7398e4e3..1a9f2d67823 100644
--- a/apps/web/src/locales/fil/messages.json
+++ b/apps/web/src/locales/fil/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Naka-log out"
   },
diff --git a/apps/web/src/locales/fr/messages.json b/apps/web/src/locales/fr/messages.json
index a915955960b..189571f70d0 100644
--- a/apps/web/src/locales/fr/messages.json
+++ b/apps/web/src/locales/fr/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Niveau d'accès"
   },
+  "accessing": {
+    "message": "Accès en cours"
+  },
   "loggedOut": {
     "message": "Déconnecté"
   },
diff --git a/apps/web/src/locales/gl/messages.json b/apps/web/src/locales/gl/messages.json
index 59167b94d9d..99c15045cc9 100644
--- a/apps/web/src/locales/gl/messages.json
+++ b/apps/web/src/locales/gl/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Logged out"
   },
diff --git a/apps/web/src/locales/he/messages.json b/apps/web/src/locales/he/messages.json
index 3ab0bf2dc14..f84612ef46b 100644
--- a/apps/web/src/locales/he/messages.json
+++ b/apps/web/src/locales/he/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "בוצעה יציאה"
   },
diff --git a/apps/web/src/locales/hi/messages.json b/apps/web/src/locales/hi/messages.json
index 04d2d691c3a..65a353768a5 100644
--- a/apps/web/src/locales/hi/messages.json
+++ b/apps/web/src/locales/hi/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Logged out"
   },
diff --git a/apps/web/src/locales/hr/messages.json b/apps/web/src/locales/hr/messages.json
index e88ba8016f3..7f939ba90ca 100644
--- a/apps/web/src/locales/hr/messages.json
+++ b/apps/web/src/locales/hr/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Odjavljen/a"
   },
diff --git a/apps/web/src/locales/hu/messages.json b/apps/web/src/locales/hu/messages.json
index af4e018159a..9226307792f 100644
--- a/apps/web/src/locales/hu/messages.json
+++ b/apps/web/src/locales/hu/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Hozzáférési szint"
   },
+  "accessing": {
+    "message": "Elérés"
+  },
   "loggedOut": {
     "message": "Megtörtént a kijelentkezés."
   },
diff --git a/apps/web/src/locales/id/messages.json b/apps/web/src/locales/id/messages.json
index d1d81cc3382..a767d3bcb0a 100644
--- a/apps/web/src/locales/id/messages.json
+++ b/apps/web/src/locales/id/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Keluar"
   },
diff --git a/apps/web/src/locales/it/messages.json b/apps/web/src/locales/it/messages.json
index 02d01034ef9..d7869336003 100644
--- a/apps/web/src/locales/it/messages.json
+++ b/apps/web/src/locales/it/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Livello di accesso"
   },
+  "accessing": {
+    "message": "Accedendo a"
+  },
   "loggedOut": {
     "message": "Uscito"
   },
diff --git a/apps/web/src/locales/ja/messages.json b/apps/web/src/locales/ja/messages.json
index f4bd38e6554..b8016fb1f80 100644
--- a/apps/web/src/locales/ja/messages.json
+++ b/apps/web/src/locales/ja/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "アクセスレベル"
   },
+  "accessing": {
+    "message": "アクセス中"
+  },
   "loggedOut": {
     "message": "ログアウトしました"
   },
diff --git a/apps/web/src/locales/ka/messages.json b/apps/web/src/locales/ka/messages.json
index 6c0a32b6672..c1cb6d9a96a 100644
--- a/apps/web/src/locales/ka/messages.json
+++ b/apps/web/src/locales/ka/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "გამოსვლა"
   },
diff --git a/apps/web/src/locales/km/messages.json b/apps/web/src/locales/km/messages.json
index 59167b94d9d..99c15045cc9 100644
--- a/apps/web/src/locales/km/messages.json
+++ b/apps/web/src/locales/km/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Logged out"
   },
diff --git a/apps/web/src/locales/kn/messages.json b/apps/web/src/locales/kn/messages.json
index ef3d2f4d180..3d369d33fc7 100644
--- a/apps/web/src/locales/kn/messages.json
+++ b/apps/web/src/locales/kn/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "ಲಾಗ್ ಔಟ್"
   },
diff --git a/apps/web/src/locales/ko/messages.json b/apps/web/src/locales/ko/messages.json
index df54ad4d32e..6a7b32983b6 100644
--- a/apps/web/src/locales/ko/messages.json
+++ b/apps/web/src/locales/ko/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "접근 권한"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "로그아웃됨"
   },
diff --git a/apps/web/src/locales/lv/messages.json b/apps/web/src/locales/lv/messages.json
index febb28d0565..61edf711b4d 100644
--- a/apps/web/src/locales/lv/messages.json
+++ b/apps/web/src/locales/lv/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Piekļuves līmenis"
   },
+  "accessing": {
+    "message": "Piekļūst"
+  },
   "loggedOut": {
     "message": "Atteicies"
   },
@@ -833,7 +836,7 @@
     "message": "Nederīga galvenā parole"
   },
   "invalidFilePassword": {
-    "message": "Nederīga datnes parole, lūgums izmantot to paroli, kas tika ievadīta izdošanas datnes izveidošanas brīdī."
+    "message": "Nederīga datnes parole, lūgums izmantot to paroli, kas tika ievadīta izgūšanas datnes izveidošanas brīdī."
   },
   "lockNow": {
     "message": "Aizslēgt"
@@ -1057,10 +1060,10 @@
     "message": "Apstiprināt noslēpumu izgūšanu"
   },
   "exportWarningDesc": {
-    "message": "Šī izguve satur glabātavas datus nešifrētā veidā. Izdoto datni nevajadzētu glabāt vai sūtīt nedrošos veidos (piemēram, e-pastā). Izdzēst to uzreiz pēc izmantošanas."
+    "message": "Šī izguve satur glabātavas datus nešifrētā veidā. Izgūto datni nevajadzētu glabāt vai sūtīt nedrošos veidos (piemēram, e-pastā). Tā ir jāizdzēš uzreiz pēc izmantošanas."
   },
   "exportSecretsWarningDesc": {
-    "message": "Šī izguve satur noslēpumu datus nešifrētā veidā. Izdoto datni nevajadzētu glabāt vai sūtīt nedrošos veidos (piemēram, e-pastā). Izdzēst to uzreiz pēc izmantošanas."
+    "message": "Šī izguve satur noslēpumu datus nešifrētā veidā. Izgūto datni nevajadzētu glabāt vai sūtīt nedrošos veidos (piemēram, e-pastā). Tā ir jāizdzēš uzreiz pēc izmantošanas."
   },
   "encExportKeyWarningDesc": {
     "message": "Šī izguve šifrē datus ar konta šifrēšanas atslēgu. Ja tā jebkad tiks mainīta, izvadi vajadzētu veikt vēlreiz, jo vairs nebūs iespējams atšifrēt šo datni."
@@ -1084,10 +1087,10 @@
     "message": "Datnes veids"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "Šī datņu izdošana būs aizsargāta ar paroli, un būs nepieciešama datnes parole, lai to atšifrētu."
+    "message": "Šī datņu izgūšana būs aizsargāta ar paroli, un būs nepieciešama datnes parole, lai to atšifrētu."
   },
   "exportPasswordDescription": {
-    "message": "Šī parole tiks izmantota, lai izdotu un ievietotu šo datni"
+    "message": "Šī parole tiks izmantota, lai izgūtu un ievietotu šo datni"
   },
   "confirmMasterPassword": {
     "message": "Apstiprināt galveno paroli"
@@ -1102,13 +1105,13 @@
     "message": "Apstiprināt datnes paroli"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Izmantot konta šifrēšanas atslēgu, kas iegūta no lietotājvārda un galvenās paroles, lai šifrētu izdošanu un atļautu ievietošanu tikai pašreizējā Bitwarden kontā."
+    "message": "Jāizmanto konta šifrēšanas atslēga, kas iegūta no lietotājvārda un galvenās paroles, lai šifrētu izguvi un atļautu ievietošanu tikai pašreizējā Bitwarden kontā."
   },
   "passwordProtectedOptionDescription": {
-    "message": "Uzstādīt paroli, lai šifrētu izdošanu un tad to ievietotu jebkurā Bitwarden kontā, izmantojot atšifrēšanas paroli."
+    "message": "Uzstādīt paroli, lai šifrētu izguvi un tad to ievietotu jebkurā Bitwarden kontā, izmantojot atšifrēšanas paroli."
   },
   "exportTypeHeading": {
-    "message": "Izdošanas veids"
+    "message": "Izgūšanas veids"
   },
   "accountRestricted": {
     "message": "Konts ir ierobežots"
@@ -5681,10 +5684,10 @@
     "message": "Sesijai iestājās noildze. Lūgums mēģināt pieteikties vēlreiz."
   },
   "exportingPersonalVaultTitle": {
-    "message": "Izdod personīgo glabātavu"
+    "message": "Izgūst personīgo glabātavu"
   },
   "exportingOrganizationVaultTitle": {
-    "message": "Izdod apvienības glabātavu"
+    "message": "Izgūst apvienības glabātavu"
   },
   "exportingIndividualVaultDescription": {
     "message": "Tiks izgūti tikai atsevišķi glabātavas vienumi, kas ir saistīti ar $EMAIL$. Apvienības glabātavas vienumi netiks iekļauti. Tiks izgūta tikai glabātavas vienumu informācija, un saistītie pielikumi netiks iekļauti.",
@@ -5696,7 +5699,7 @@
     }
   },
   "exportingOrganizationVaultDesc": {
-    "message": "Tiks izdota tikai apvienības glabātava, kas ir saistīta ar $ORGANIZATION$. Atsevišķu glabātavu vai citu apvienību vienumi netiks iekļauti.",
+    "message": "Tiks izgūta tikai apvienības glabātava, kas ir saistīta ar $ORGANIZATION$. Atsevišķu glabātavu vai citu apvienību vienumi netiks iekļauti.",
     "placeholders": {
       "organization": {
         "content": "$1",
diff --git a/apps/web/src/locales/ml/messages.json b/apps/web/src/locales/ml/messages.json
index 36067eec14f..ca944a6bc2f 100644
--- a/apps/web/src/locales/ml/messages.json
+++ b/apps/web/src/locales/ml/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "ലോഗ് ഔട്ട് ചെയ്തിരിക്കുന്നു"
   },
diff --git a/apps/web/src/locales/mr/messages.json b/apps/web/src/locales/mr/messages.json
index 59167b94d9d..99c15045cc9 100644
--- a/apps/web/src/locales/mr/messages.json
+++ b/apps/web/src/locales/mr/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Logged out"
   },
diff --git a/apps/web/src/locales/my/messages.json b/apps/web/src/locales/my/messages.json
index 59167b94d9d..99c15045cc9 100644
--- a/apps/web/src/locales/my/messages.json
+++ b/apps/web/src/locales/my/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Logged out"
   },
diff --git a/apps/web/src/locales/nb/messages.json b/apps/web/src/locales/nb/messages.json
index 13a5eaf0f44..15d8a6aeef7 100644
--- a/apps/web/src/locales/nb/messages.json
+++ b/apps/web/src/locales/nb/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Logget av"
   },
diff --git a/apps/web/src/locales/ne/messages.json b/apps/web/src/locales/ne/messages.json
index e0c227c3578..c67c7570a11 100644
--- a/apps/web/src/locales/ne/messages.json
+++ b/apps/web/src/locales/ne/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Logged out"
   },
diff --git a/apps/web/src/locales/nl/messages.json b/apps/web/src/locales/nl/messages.json
index 2c6e1803227..70a171bf756 100644
--- a/apps/web/src/locales/nl/messages.json
+++ b/apps/web/src/locales/nl/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Toegangsniveau"
   },
+  "accessing": {
+    "message": "Toegang verkrijgen"
+  },
   "loggedOut": {
     "message": "Uitgelogd"
   },
diff --git a/apps/web/src/locales/nn/messages.json b/apps/web/src/locales/nn/messages.json
index 903acc72e10..b9231eac28a 100644
--- a/apps/web/src/locales/nn/messages.json
+++ b/apps/web/src/locales/nn/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Logged out"
   },
diff --git a/apps/web/src/locales/or/messages.json b/apps/web/src/locales/or/messages.json
index 59167b94d9d..99c15045cc9 100644
--- a/apps/web/src/locales/or/messages.json
+++ b/apps/web/src/locales/or/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Logged out"
   },
diff --git a/apps/web/src/locales/pl/messages.json b/apps/web/src/locales/pl/messages.json
index 621a81147ed..1cd176861cf 100644
--- a/apps/web/src/locales/pl/messages.json
+++ b/apps/web/src/locales/pl/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Poziom dostępu"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Wylogowano"
   },
diff --git a/apps/web/src/locales/pt_BR/messages.json b/apps/web/src/locales/pt_BR/messages.json
index 9b6f32309d7..b7a248ff691 100644
--- a/apps/web/src/locales/pt_BR/messages.json
+++ b/apps/web/src/locales/pt_BR/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Nível de acesso"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Sessão encerrada"
   },
diff --git a/apps/web/src/locales/pt_PT/messages.json b/apps/web/src/locales/pt_PT/messages.json
index 341c12de976..30d8dad0ca6 100644
--- a/apps/web/src/locales/pt_PT/messages.json
+++ b/apps/web/src/locales/pt_PT/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Nível de acesso"
   },
+  "accessing": {
+    "message": "A aceder"
+  },
   "loggedOut": {
     "message": "Sessão terminada"
   },
diff --git a/apps/web/src/locales/ro/messages.json b/apps/web/src/locales/ro/messages.json
index 4995ca9f2b0..50b7329f760 100644
--- a/apps/web/src/locales/ro/messages.json
+++ b/apps/web/src/locales/ro/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Deconectat"
   },
diff --git a/apps/web/src/locales/ru/messages.json b/apps/web/src/locales/ru/messages.json
index 6e433fb2a8e..c331541cfd9 100644
--- a/apps/web/src/locales/ru/messages.json
+++ b/apps/web/src/locales/ru/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Уровень доступа"
   },
+  "accessing": {
+    "message": "Доступ"
+  },
   "loggedOut": {
     "message": "Вы вышли из хранилища"
   },
diff --git a/apps/web/src/locales/si/messages.json b/apps/web/src/locales/si/messages.json
index a1410974d79..2e9b80899c1 100644
--- a/apps/web/src/locales/si/messages.json
+++ b/apps/web/src/locales/si/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Logged out"
   },
diff --git a/apps/web/src/locales/sk/messages.json b/apps/web/src/locales/sk/messages.json
index 85a8d39fd91..73f52e77637 100644
--- a/apps/web/src/locales/sk/messages.json
+++ b/apps/web/src/locales/sk/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Úroveň prístupu"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Odhlásený"
   },
diff --git a/apps/web/src/locales/sl/messages.json b/apps/web/src/locales/sl/messages.json
index d9364aa29c5..56f6a14c394 100644
--- a/apps/web/src/locales/sl/messages.json
+++ b/apps/web/src/locales/sl/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Odjavljen"
   },
diff --git a/apps/web/src/locales/sr/messages.json b/apps/web/src/locales/sr/messages.json
index 0c23abb5ccd..be4ceddfe97 100644
--- a/apps/web/src/locales/sr/messages.json
+++ b/apps/web/src/locales/sr/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Ниво приступа"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Одјављено"
   },
diff --git a/apps/web/src/locales/sr_CS/messages.json b/apps/web/src/locales/sr_CS/messages.json
index d3fef41494b..12dd9c91e8c 100644
--- a/apps/web/src/locales/sr_CS/messages.json
+++ b/apps/web/src/locales/sr_CS/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Odjavljeni ste"
   },
diff --git a/apps/web/src/locales/sv/messages.json b/apps/web/src/locales/sv/messages.json
index 64a3007043e..16d838f3ccf 100644
--- a/apps/web/src/locales/sv/messages.json
+++ b/apps/web/src/locales/sv/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Åtkomstnivå"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Utloggad"
   },
diff --git a/apps/web/src/locales/te/messages.json b/apps/web/src/locales/te/messages.json
index 59167b94d9d..99c15045cc9 100644
--- a/apps/web/src/locales/te/messages.json
+++ b/apps/web/src/locales/te/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Logged out"
   },
diff --git a/apps/web/src/locales/th/messages.json b/apps/web/src/locales/th/messages.json
index b7b7d7887f5..ed1fb050472 100644
--- a/apps/web/src/locales/th/messages.json
+++ b/apps/web/src/locales/th/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Access level"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "ออกจากระบบ"
   },
diff --git a/apps/web/src/locales/tr/messages.json b/apps/web/src/locales/tr/messages.json
index b40091486e5..4c7862da277 100644
--- a/apps/web/src/locales/tr/messages.json
+++ b/apps/web/src/locales/tr/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Erişim seviyesi"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Çıkış yapıldı"
   },
diff --git a/apps/web/src/locales/uk/messages.json b/apps/web/src/locales/uk/messages.json
index 0b1843a84c3..a937da85ee8 100644
--- a/apps/web/src/locales/uk/messages.json
+++ b/apps/web/src/locales/uk/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Рівень доступу"
   },
+  "accessing": {
+    "message": "Доступ"
+  },
   "loggedOut": {
     "message": "Ви вийшли"
   },
diff --git a/apps/web/src/locales/vi/messages.json b/apps/web/src/locales/vi/messages.json
index 5a7c513faed..55a34e2f2ab 100644
--- a/apps/web/src/locales/vi/messages.json
+++ b/apps/web/src/locales/vi/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "Cấp độ truy cập"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "Đã đăng xuất"
   },
diff --git a/apps/web/src/locales/zh_CN/messages.json b/apps/web/src/locales/zh_CN/messages.json
index 7babb5dadef..7bc150dd9b9 100644
--- a/apps/web/src/locales/zh_CN/messages.json
+++ b/apps/web/src/locales/zh_CN/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "访问权限等级"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "已注销"
   },
diff --git a/apps/web/src/locales/zh_TW/messages.json b/apps/web/src/locales/zh_TW/messages.json
index 61cad90e3ae..b4abbc7f3e2 100644
--- a/apps/web/src/locales/zh_TW/messages.json
+++ b/apps/web/src/locales/zh_TW/messages.json
@@ -581,6 +581,9 @@
   "accessLevel": {
     "message": "存取等級"
   },
+  "accessing": {
+    "message": "Accessing"
+  },
   "loggedOut": {
     "message": "已登出"
   },

From 9a456cc3130649713c3704ad014cf1d2fc7a08c2 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Fri, 31 May 2024 06:29:57 +0000
Subject: [PATCH 050/138] Autosync the updated translations (#9447)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/desktop/src/locales/af/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/ar/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/az/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/be/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/bg/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/bn/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/bs/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/ca/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/cs/messages.json    | 44 +++++++++++++++++-
 apps/desktop/src/locales/cy/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/da/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/de/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/el/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/en_GB/messages.json | 42 +++++++++++++++++
 apps/desktop/src/locales/en_IN/messages.json | 42 +++++++++++++++++
 apps/desktop/src/locales/eo/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/es/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/et/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/eu/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/fa/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/fi/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/fil/messages.json   | 42 +++++++++++++++++
 apps/desktop/src/locales/fr/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/gl/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/he/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/hi/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/hr/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/hu/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/id/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/it/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/ja/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/ka/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/km/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/kn/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/ko/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/lt/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/lv/messages.json    | 48 ++++++++++++++++++--
 apps/desktop/src/locales/me/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/ml/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/mr/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/my/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/nb/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/ne/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/nl/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/nn/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/or/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/pl/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/pt_BR/messages.json | 42 +++++++++++++++++
 apps/desktop/src/locales/pt_PT/messages.json | 42 +++++++++++++++++
 apps/desktop/src/locales/ro/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/ru/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/si/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/sk/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/sl/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/sr/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/sv/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/te/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/th/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/tr/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/uk/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/vi/messages.json    | 42 +++++++++++++++++
 apps/desktop/src/locales/zh_CN/messages.json | 42 +++++++++++++++++
 apps/desktop/src/locales/zh_TW/messages.json | 42 +++++++++++++++++
 63 files changed, 2650 insertions(+), 4 deletions(-)

diff --git a/apps/desktop/src/locales/af/messages.json b/apps/desktop/src/locales/af/messages.json
index 28efbc7de4e..27d0977a2e1 100644
--- a/apps/desktop/src/locales/af/messages.json
+++ b/apps/desktop/src/locales/af/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Wagwoord bygewerk",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Stuur Kluis Uit"
   },
   "fileFormat": {
     "message": "Lêerformaat"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha-bronadres",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Vergrendel"
   },
diff --git a/apps/desktop/src/locales/ar/messages.json b/apps/desktop/src/locales/ar/messages.json
index 25a91b95b6c..a800840dd4a 100644
--- a/apps/desktop/src/locales/ar/messages.json
+++ b/apps/desktop/src/locales/ar/messages.json
@@ -1299,12 +1299,42 @@
     "message": "تم تحديث كلمة المرور",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "تصدير الخزنة"
   },
   "fileFormat": {
     "message": "صيغة الملف"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "رابط hCaptcha",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "مقفل"
   },
diff --git a/apps/desktop/src/locales/az/messages.json b/apps/desktop/src/locales/az/messages.json
index c26e49d743c..e0bcf2df5d4 100644
--- a/apps/desktop/src/locales/az/messages.json
+++ b/apps/desktop/src/locales/az/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Parol güncəlləndi",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Anbarı xaricə köçür"
   },
   "fileFormat": {
     "message": "Fayl formatı"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha ünvanı",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Kilidli"
   },
diff --git a/apps/desktop/src/locales/be/messages.json b/apps/desktop/src/locales/be/messages.json
index 0371f3bcebb..4adb3be3e5a 100644
--- a/apps/desktop/src/locales/be/messages.json
+++ b/apps/desktop/src/locales/be/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Пароль абноўлены",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Экспартаваць сховішча"
   },
   "fileFormat": {
     "message": "Фармат файла"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "URL-адрас hCaptcha",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Заблакіравана"
   },
diff --git a/apps/desktop/src/locales/bg/messages.json b/apps/desktop/src/locales/bg/messages.json
index 071399419c7..7471bebe029 100644
--- a/apps/desktop/src/locales/bg/messages.json
+++ b/apps/desktop/src/locales/bg/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Обновена парола",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Изнасяне от"
+  },
   "exportVault": {
     "message": "Изнасяне на трезора"
   },
   "fileFormat": {
     "message": "Формат на файла"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Изнесеният файл ще бъде защитен с парола, която ще бъде необходима за дешифриране на файла."
+  },
+  "filePassword": {
+    "message": "Парола на файла"
+  },
+  "exportPasswordDescription": {
+    "message": "Парола ще се използва при изнасянето и при внасянето на този файл"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Използвайте ключа си за шифриране, който се получава чрез комбиниране на потребителското име на регистрацията Ви и главната парола. С него изнасянето ще се шифрира и внасянето ще бъда възможно само в текущата регистрация в Битуорден."
+  },
+  "passwordProtected": {
+    "message": "Защита с парола"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Задайте парола за файла, за да шифровате изнесените данни. Ще можете да внесете данните във всяка регистрация в Битуорден използвайки паролата за дешифриране."
+  },
+  "exportTypeHeading": {
+    "message": "Вид изнасяне"
+  },
+  "accountRestricted": {
+    "message": "Регистрацията е ограничена"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "Дънните в полетата „Парола на файла“ и „Потвърждаване на паролата на файла“ не съвпадат."
+  },
   "hCaptchaUrl": {
     "message": "Адрес за hCaptcha",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Изнасяне на трезора на организацията"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Ще бъдат изнесени само записите от трезора свързан с $ORGANIZATION$. Записите в отделните лични трезори и тези в други организации няма да бъдат включени.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Заключено"
   },
diff --git a/apps/desktop/src/locales/bn/messages.json b/apps/desktop/src/locales/bn/messages.json
index a6f0e712063..71749add465 100644
--- a/apps/desktop/src/locales/bn/messages.json
+++ b/apps/desktop/src/locales/bn/messages.json
@@ -1299,12 +1299,42 @@
     "message": "পাসওয়ার্ড হালনাগাদকৃত",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "ভল্ট রফতানি"
   },
   "fileFormat": {
     "message": "ফাইলের ধরণ"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/bs/messages.json b/apps/desktop/src/locales/bs/messages.json
index 1a489ea397d..a11dbb7e9b9 100644
--- a/apps/desktop/src/locales/bs/messages.json
+++ b/apps/desktop/src/locales/bs/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Lozinka ažurirana",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Izvezi trezor"
   },
   "fileFormat": {
     "message": "Format datoteke"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/ca/messages.json b/apps/desktop/src/locales/ca/messages.json
index e55128ceeb4..abee9ac2ff0 100644
--- a/apps/desktop/src/locales/ca/messages.json
+++ b/apps/desktop/src/locales/ca/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Contrasenya actualitzada",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Exporta caixa forta"
   },
   "fileFormat": {
     "message": "Format de fitxer"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "Url hCaptcha",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Bloquejat"
   },
diff --git a/apps/desktop/src/locales/cs/messages.json b/apps/desktop/src/locales/cs/messages.json
index b5f2a4f5f0c..bcb08de2bea 100644
--- a/apps/desktop/src/locales/cs/messages.json
+++ b/apps/desktop/src/locales/cs/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Heslo bylo aktualizováno",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Exportovat z"
+  },
   "exportVault": {
     "message": "Exportovat trezor"
   },
   "fileFormat": {
     "message": "Formát souboru"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Tento soubor exportu bude chráněn heslem a k dešifrování bude vyžadovat heslo souboru."
+  },
+  "filePassword": {
+    "message": "Heslo souboru"
+  },
+  "exportPasswordDescription": {
+    "message": "Toto heslo bude použito pro export a import tohoto souboru"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Pro zašifrování exportu a omezení importu pouze na aktuální účet Bitwardenu použijte šifrovací klíč Vašeho účtu odvozený z uživatelského jména a hlavního hesla."
+  },
+  "passwordProtected": {
+    "message": "Chráněno heslem"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Nastavte heslo pro šifrování exportu a importujte ho do libovolného účtu Bitwardenu pomocí hesla pro dešifrování."
+  },
+  "exportTypeHeading": {
+    "message": "Typ exportu"
+  },
+  "accountRestricted": {
+    "message": "Účet je omezený"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "\"Heslo souboru\" a \"Potvrzení hesla souboru\" se neshodují."
+  },
   "hCaptchaUrl": {
     "message": "URL hCaptcha",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exportování trezoru organizace"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Exportován bude jen trezor organizace přidružený k položce $ORGANIZATION$. Osobní položky trezoru a položky z jiných organizací nebudou zahrnuty.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Uzamčeno"
   },
@@ -2379,7 +2421,7 @@
     "message": "Tento požadavek již není platný."
   },
   "approveLoginRequestDesc": {
-    "message": "Použijte toto zařízení pro schvalování žádostí o přihlášení z jiných zařízení."
+    "message": "Použije toto zařízení pro schvalování žádostí o přihlášení z jiných zařízení."
   },
   "confirmLoginAtemptForMail": {
     "message": "Potvrďte pokus o přihlášení z $EMAIL$",
diff --git a/apps/desktop/src/locales/cy/messages.json b/apps/desktop/src/locales/cy/messages.json
index aeb76cba552..5085234b826 100644
--- a/apps/desktop/src/locales/cy/messages.json
+++ b/apps/desktop/src/locales/cy/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/da/messages.json b/apps/desktop/src/locales/da/messages.json
index 8965c8e2a12..e851f1df451 100644
--- a/apps/desktop/src/locales/da/messages.json
+++ b/apps/desktop/src/locales/da/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Adgangskode opdateret",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Eksportér fra"
+  },
   "exportVault": {
     "message": "Eksportér boks"
   },
   "fileFormat": {
     "message": "Filformat"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Denne fileksport vil være adgangskodebeskyttet og kræve filadgangskoden at dekryptere."
+  },
+  "filePassword": {
+    "message": "Filadgangskode"
+  },
+  "exportPasswordDescription": {
+    "message": "Denne adgangskode vil blive brugt ved eksport og import af denne fil"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Brug kontokrypteringsnøglen, dannet af kontobrugernavn og Hovedadgangskode, for at kryptere eksporten og hindre import til andre end den aktuelle Bitwarden-konto."
+  },
+  "passwordProtected": {
+    "message": "Adgangskodebeskyttet"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Opsæt en adgangskode til både at kryptere eksporten samt dekryptere denne ved import til enhver Bitwarden-konto."
+  },
+  "exportTypeHeading": {
+    "message": "Eksporttype"
+  },
+  "accountRestricted": {
+    "message": "Konto begrænset"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“Filadgangskode” og “Bekræft filadgangskode“ matcher ikke."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha-URL",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Eksport af organisationsboks"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Kun organisationsboksen tilknyttet $ORGANIZATION$ eksporteres. Emner i individuelle bokse eller andre organisationer medtages ikke.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Låst"
   },
diff --git a/apps/desktop/src/locales/de/messages.json b/apps/desktop/src/locales/de/messages.json
index d544b10bb64..46f2e5e7f63 100644
--- a/apps/desktop/src/locales/de/messages.json
+++ b/apps/desktop/src/locales/de/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Passwort aktualisiert",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export aus"
+  },
   "exportVault": {
     "message": "Tresor exportieren"
   },
   "fileFormat": {
     "message": "Dateiformat"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Dieser Datei-Export ist passwortgeschützt und erfordert das Dateipasswort zum Entschlüsseln."
+  },
+  "filePassword": {
+    "message": "Dateipasswort"
+  },
+  "exportPasswordDescription": {
+    "message": "Dieses Passwort wird zum Exportieren und Importieren dieser Datei verwendet"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Verwende den Verschlüsselungscode deines Kontos, abgeleitet vom Benutzernamen und Master-Passwort, um den Export zu verschlüsseln und den Import auf das aktuelle Bitwarden-Konto zu beschränken."
+  },
+  "passwordProtected": {
+    "message": "Passwortgeschützt"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Lege ein Dateipasswort fest, um den Export zu verschlüsseln und importiere ihn in ein beliebiges Bitwarden-Konto, wobei das Passwort zum Entschlüsseln genutzt wird."
+  },
+  "exportTypeHeading": {
+    "message": "Exporttyp"
+  },
+  "accountRestricted": {
+    "message": "Konto eingeschränkt"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "„Dateipasswort“ und „Dateipasswort bestätigen“ stimmen nicht überein."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha URL",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Tresor der Organisation wird exportiert"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Nur der mit $ORGANIZATION$ verbundene Organisationstresor wird exportiert. Einträge in persönlichen Tresoren oder anderen Organisationen werden nicht berücksichtigt.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Gesperrt"
   },
diff --git a/apps/desktop/src/locales/el/messages.json b/apps/desktop/src/locales/el/messages.json
index 03c7d2183c0..af932beb008 100644
--- a/apps/desktop/src/locales/el/messages.json
+++ b/apps/desktop/src/locales/el/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Ο Κωδικός Ενημερώθηκε",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Εξαγωγή Vault"
   },
   "fileFormat": {
     "message": "Μορφή Αρχείου"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Κλειδωμένο"
   },
diff --git a/apps/desktop/src/locales/en_GB/messages.json b/apps/desktop/src/locales/en_GB/messages.json
index 5e337875324..45b724e47e4 100644
--- a/apps/desktop/src/locales/en_GB/messages.json
+++ b/apps/desktop/src/locales/en_GB/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha URL",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organisation vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organisation vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organisations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/en_IN/messages.json b/apps/desktop/src/locales/en_IN/messages.json
index efc49892145..da4dca84e4a 100644
--- a/apps/desktop/src/locales/en_IN/messages.json
+++ b/apps/desktop/src/locales/en_IN/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organisation vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organisation vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organisations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/eo/messages.json b/apps/desktop/src/locales/eo/messages.json
index 0b6c91a9212..55e9daa72b3 100644
--- a/apps/desktop/src/locales/eo/messages.json
+++ b/apps/desktop/src/locales/eo/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/es/messages.json b/apps/desktop/src/locales/es/messages.json
index a6a8b2a8027..130c18b391e 100644
--- a/apps/desktop/src/locales/es/messages.json
+++ b/apps/desktop/src/locales/es/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Contraseña actualizada",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Exportar caja fuerte"
   },
   "fileFormat": {
     "message": "Formato de archivo"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Bloqueado"
   },
diff --git a/apps/desktop/src/locales/et/messages.json b/apps/desktop/src/locales/et/messages.json
index 7217568b510..d26fc652131 100644
--- a/apps/desktop/src/locales/et/messages.json
+++ b/apps/desktop/src/locales/et/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Parool on uuendatud",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Ekspordi hoidla"
   },
   "fileFormat": {
     "message": "Failivorming"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Lukustatud"
   },
diff --git a/apps/desktop/src/locales/eu/messages.json b/apps/desktop/src/locales/eu/messages.json
index 0f41c667e91..82406869f5a 100644
--- a/apps/desktop/src/locales/eu/messages.json
+++ b/apps/desktop/src/locales/eu/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Pasahitza eguneratu da",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Esportatu kutxa gotorra"
   },
   "fileFormat": {
     "message": "Fitxategiaren formatua"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Blokeatuta"
   },
diff --git a/apps/desktop/src/locales/fa/messages.json b/apps/desktop/src/locales/fa/messages.json
index f5a5c3575ce..3c5fb785b7f 100644
--- a/apps/desktop/src/locales/fa/messages.json
+++ b/apps/desktop/src/locales/fa/messages.json
@@ -1299,12 +1299,42 @@
     "message": "کلمه عبور به‌روزرسانی شد",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "برون ریزی گاوصندوق"
   },
   "fileFormat": {
     "message": "فرمت پرونده"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "نشانی اینترنتی hCaptcha",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "قفل شده"
   },
diff --git a/apps/desktop/src/locales/fi/messages.json b/apps/desktop/src/locales/fi/messages.json
index 893da1309f3..08447614433 100644
--- a/apps/desktop/src/locales/fi/messages.json
+++ b/apps/desktop/src/locales/fi/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Salasana vaihdettiin",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Vie lähteestä"
+  },
   "exportVault": {
     "message": "Vie holvi"
   },
   "fileFormat": {
     "message": "Tiedostomuoto"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Tämä vientitiedosto suojataan salasanalla, joka on syötettävä ja salauksen purkamiseksi."
+  },
+  "filePassword": {
+    "message": "Tiedoston salasana"
+  },
+  "exportPasswordDescription": {
+    "message": "Tätä salasanaa käytetään tämän tiedoston viennissä ja tuonnissa"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Salaa vienti ja rajoita tuonti vain nykyiselle Bitwarden-tilille tilisi käyttäjätunnukseen ja pääsalasanaan pohjautuvalla salausavaimella."
+  },
+  "passwordProtected": {
+    "message": "Salasanasuojattu"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Salaa vientitiedosto salasanalla, joka mahdollistaa sen tuonnin mille tahansa Bitwarden-tilille."
+  },
+  "exportTypeHeading": {
+    "message": "Viennin tyyppi"
+  },
+  "accountRestricted": {
+    "message": "Tiliä on rajoitettu"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "\"Tiedoston salasana\" ja \"Vahvista tiedoston salasana\" eivät täsmää."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha-URL",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Organisaation holvin vienti"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Vain organisaatioon $ORGANIZATION$ liitetyn holvin kohteet viedään. Yksityisen holvin ja muiden organisaatioiden kohteita ei sisällytetä.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Lukittu"
   },
diff --git a/apps/desktop/src/locales/fil/messages.json b/apps/desktop/src/locales/fil/messages.json
index e45770ab180..0180d46959e 100644
--- a/apps/desktop/src/locales/fil/messages.json
+++ b/apps/desktop/src/locales/fil/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Na-update ang password",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "I-export vault"
   },
   "fileFormat": {
     "message": "Format ng file"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Naka-lock"
   },
diff --git a/apps/desktop/src/locales/fr/messages.json b/apps/desktop/src/locales/fr/messages.json
index 163bc548acf..ef8f783dd31 100644
--- a/apps/desktop/src/locales/fr/messages.json
+++ b/apps/desktop/src/locales/fr/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Mot de passe mis à jour",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Exporter le coffre"
   },
   "fileFormat": {
     "message": "Format de fichier"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "URL hCaptcha",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Verrouillé"
   },
diff --git a/apps/desktop/src/locales/gl/messages.json b/apps/desktop/src/locales/gl/messages.json
index c489ab72602..7b9cd9ef0f1 100644
--- a/apps/desktop/src/locales/gl/messages.json
+++ b/apps/desktop/src/locales/gl/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/he/messages.json b/apps/desktop/src/locales/he/messages.json
index 7a28b04d2e0..0f664ed02e7 100644
--- a/apps/desktop/src/locales/he/messages.json
+++ b/apps/desktop/src/locales/he/messages.json
@@ -1299,12 +1299,42 @@
     "message": "הסיסמה עודכנה",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "יצוא כספת"
   },
   "fileFormat": {
     "message": "תבנית קובץ"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "כתובת אתר hCaptcha",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "נָעוּל"
   },
diff --git a/apps/desktop/src/locales/hi/messages.json b/apps/desktop/src/locales/hi/messages.json
index 3e752df95eb..765510dc32e 100644
--- a/apps/desktop/src/locales/hi/messages.json
+++ b/apps/desktop/src/locales/hi/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/hr/messages.json b/apps/desktop/src/locales/hr/messages.json
index be3c7c28e37..d1d4a4672b5 100644
--- a/apps/desktop/src/locales/hr/messages.json
+++ b/apps/desktop/src/locales/hr/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Lozinka ažurirana",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Izvezi trezor"
   },
   "fileFormat": {
     "message": "Format datoteke"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Zaključano"
   },
diff --git a/apps/desktop/src/locales/hu/messages.json b/apps/desktop/src/locales/hu/messages.json
index 927fe859009..869b92167f6 100644
--- a/apps/desktop/src/locales/hu/messages.json
+++ b/apps/desktop/src/locales/hu/messages.json
@@ -1299,12 +1299,42 @@
     "message": "A jelszó frissítésre került.",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Exportálás innen:"
+  },
   "exportVault": {
     "message": "Széf exportálása"
   },
   "fileFormat": {
     "message": "Fájlformátum"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Ez a fájl exportálás jelszóval védett és a visszafejtéshez a fájl jelszó megadása szükséges."
+  },
+  "filePassword": {
+    "message": "Fájl jelszó"
+  },
+  "exportPasswordDescription": {
+    "message": "Ezt a jelszó kerül használatba a fájl exportálására és importálására."
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Használjuk a fiók felhasználónevéből és mesterjelszavából származó fióktitkosítási kulcsot az exportálás titkosításához és az importálást csak az aktuális Bitwarden fiókra korlátozzuk."
+  },
+  "passwordProtected": {
+    "message": "Jelszóval védett"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Állítsunk be egy fájl jelszót az exportálás titkosításához és importáljuk azt bármely Bitwarden fiókba a visszafejtéshez használt jelszó használatával."
+  },
+  "exportTypeHeading": {
+    "message": "Exportálási típus"
+  },
+  "accountRestricted": {
+    "message": "Korlátozott fiók"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "A “Fájl jelszó”  és a  “Fájl jelszó megerősítés“ nem egyezik."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha webcím",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Szervezeti széf exportálása"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Csak $ORGANIZATION$ névvel társított szervezeti széf kerül exportálásra. Ebbe nem kerülnek be a személyes és más szervezeti széf elemek.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Lezárva"
   },
diff --git a/apps/desktop/src/locales/id/messages.json b/apps/desktop/src/locales/id/messages.json
index 46735671f04..cc25a1c73ff 100644
--- a/apps/desktop/src/locales/id/messages.json
+++ b/apps/desktop/src/locales/id/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Kata Sandi telah Diperbarui",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Ekspor Brankas"
   },
   "fileFormat": {
     "message": "File Format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Terkunci"
   },
diff --git a/apps/desktop/src/locales/it/messages.json b/apps/desktop/src/locales/it/messages.json
index 7ab75fd9815..b016dc5e480 100644
--- a/apps/desktop/src/locales/it/messages.json
+++ b/apps/desktop/src/locales/it/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password aggiornata",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Esporta da"
+  },
   "exportVault": {
     "message": "Esporta cassaforte"
   },
   "fileFormat": {
     "message": "Formato file"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Questo file esportato sarà protetto e richiederà la password del file per decifrarlo."
+  },
+  "filePassword": {
+    "message": "Password del file"
+  },
+  "exportPasswordDescription": {
+    "message": "La password sarà utilizzata per importare ed esportare questo file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Usa la chiave di crittografia dell'account, derivata dal nome utente e dalla password principale del tuo account, per crittografare il file di esportazione e limitare l'importazione solo all'account Bitwarden corrente."
+  },
+  "passwordProtected": {
+    "message": "Protetto da password"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Imposta una password del file per crittografare il file esportato e importarlo in qualsiasi account Bitwarden usando la password per decrittografarlo."
+  },
+  "exportTypeHeading": {
+    "message": "Tipo di esportazione"
+  },
+  "accountRestricted": {
+    "message": "Account limitato"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "Le due password del file non corrispondono."
+  },
   "hCaptchaUrl": {
     "message": "URL hCaptcha",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Esportando cassaforte dell'organizzazione"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Solo la cassaforte dell'organizzazione associata a $ORGANIZATION$ sarà esportata. Elementi nelle casseforti individuali o in altre organizzazioni non saranno inclusi.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Bloccato"
   },
diff --git a/apps/desktop/src/locales/ja/messages.json b/apps/desktop/src/locales/ja/messages.json
index e5a3fbcfb93..0be6aea461f 100644
--- a/apps/desktop/src/locales/ja/messages.json
+++ b/apps/desktop/src/locales/ja/messages.json
@@ -1299,12 +1299,42 @@
     "message": "パスワード更新日",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "エクスポート元"
+  },
   "exportVault": {
     "message": "保管庫のエクスポート"
   },
   "fileFormat": {
     "message": "ファイル形式"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "エクスポートするファイルはパスワードで保護され、復号するにはファイルパスワードが必要になります。"
+  },
+  "filePassword": {
+    "message": "ファイルパスワード"
+  },
+  "exportPasswordDescription": {
+    "message": "このパスワードはこのファイルのエクスポートとインポート時に使用します"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "アカウントのユーザー名とマスターパスワードから得られる暗号化キーを使用してエクスポートするデータを暗号化し、現在の Bitwarden アカウントのみがインポートできるよう制限します。"
+  },
+  "passwordProtected": {
+    "message": "パスワード保護あり"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "エクスポートを暗号化するためのファイルパスワードを設定します。そのパスワードを使用して、任意の Bitwarden アカウントにインポートします。"
+  },
+  "exportTypeHeading": {
+    "message": "エクスポートの種類"
+  },
+  "accountRestricted": {
+    "message": "アカウント制限"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "「ファイルパスワード」と「ファイルパスワードの確認」が一致しません。"
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha URL",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "組織保管庫のエクスポート"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "$ORGANIZATION$ に関連付けられた組織保管庫のみがエクスポートされます。個々の保管庫または他の組織にあるアイテムは含まれません。",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "ロック中"
   },
diff --git a/apps/desktop/src/locales/ka/messages.json b/apps/desktop/src/locales/ka/messages.json
index c489ab72602..7b9cd9ef0f1 100644
--- a/apps/desktop/src/locales/ka/messages.json
+++ b/apps/desktop/src/locales/ka/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/km/messages.json b/apps/desktop/src/locales/km/messages.json
index c489ab72602..7b9cd9ef0f1 100644
--- a/apps/desktop/src/locales/km/messages.json
+++ b/apps/desktop/src/locales/km/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/kn/messages.json b/apps/desktop/src/locales/kn/messages.json
index 8379628c437..63f2d0326d0 100644
--- a/apps/desktop/src/locales/kn/messages.json
+++ b/apps/desktop/src/locales/kn/messages.json
@@ -1299,12 +1299,42 @@
     "message": "ಪಾಸ್ವರ್ಡ್ ನವೀಕರಿಸಲಾಗಿದೆ",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "ರಫ್ತು ವಾಲ್ಟ್"
   },
   "fileFormat": {
     "message": "ಕಡತದ ಮಾದರಿ"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/ko/messages.json b/apps/desktop/src/locales/ko/messages.json
index 5b1bcafa425..1a5e6353520 100644
--- a/apps/desktop/src/locales/ko/messages.json
+++ b/apps/desktop/src/locales/ko/messages.json
@@ -1299,12 +1299,42 @@
     "message": "비밀번호 업데이트됨",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "보관함 내보내기"
   },
   "fileFormat": {
     "message": "파일 형식"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha URL",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "잠김"
   },
diff --git a/apps/desktop/src/locales/lt/messages.json b/apps/desktop/src/locales/lt/messages.json
index e24f4b78f8a..edb15332c22 100644
--- a/apps/desktop/src/locales/lt/messages.json
+++ b/apps/desktop/src/locales/lt/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Slaptažodis atnaujintas",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Eksportuoti saugyklą"
   },
   "fileFormat": {
     "message": "Failo formatas"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha nuoroda",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Užrakinta"
   },
diff --git a/apps/desktop/src/locales/lv/messages.json b/apps/desktop/src/locales/lv/messages.json
index d93dc9e8599..4a91e491a54 100644
--- a/apps/desktop/src/locales/lv/messages.json
+++ b/apps/desktop/src/locales/lv/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Parole atjaunināta",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Izgūt no"
+  },
   "exportVault": {
     "message": "Izgūt glabātavas saturu"
   },
   "fileFormat": {
     "message": "Datnes veids"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Šī datņu izgūšana būs aizsargāta ar paroli, un būs nepieciešama datnes parole, lai to atšifrētu."
+  },
+  "filePassword": {
+    "message": "Datnes parole"
+  },
+  "exportPasswordDescription": {
+    "message": "Šī parole tiks izmantota, lai izgūtu un ievietotu šo datni"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Jāizmanto konta šifrēšanas atslēga, kas iegūta no lietotājvārda un galvenās paroles, lai šifrētu izguvi un atļautu ievietošanu tikai pašreizējā Bitwarden kontā."
+  },
+  "passwordProtected": {
+    "message": "Aizsargāts ar paroli"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Uzstādīt paroli, lai šifrētu izguvi un tad to ievietotu jebkurā Bitwarden kontā, izmantojot atšifrēšanas paroli."
+  },
+  "exportTypeHeading": {
+    "message": "Izgūšanas veids"
+  },
+  "accountRestricted": {
+    "message": "Konts ir ierobežots"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "\"Datnes parole\" un \"Apstiprināt datnes paroli\" vērtības nesakrīt."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha URL",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -1347,7 +1377,7 @@
     "message": "Apstiprināt glabātavas satura izgūšanu"
   },
   "exportWarningDesc": {
-    "message": "Šī izguve satur glabātavas datus nešifrētā veidā. Izdoto datni nevajadzētu glabāt vai sūtīt nedrošos veidos (piemēram, e-pastā). Izdzēst to uzreiz pēc izmantošanas."
+    "message": "Šī izguve satur glabātavas datus nešifrētā veidā. Izdoto datni nevajadzētu glabāt vai sūtīt nedrošos veidos (piemēram, e-pastā). Tā ir jāizdzēš uzreiz pēc izmantošanas."
   },
   "encExportKeyWarningDesc": {
     "message": "Šī izguve šifrē datus ar konta šifrēšanas atslēgu. Ja tā jebkad tiks mainīta, izvadi vajadzētu veikt vēlreiz, jo vairs nebūs iespējams atšifrēt šo datni."
@@ -2060,7 +2090,7 @@
     "message": "Sesijai iestājās noildze. Lūgums mēģināt pieteikties vēlreiz."
   },
   "exportingPersonalVaultTitle": {
-    "message": "Izdod personīgo glabātavu"
+    "message": "Izgūst personīgo glabātavu"
   },
   "exportingIndividualVaultDescription": {
     "message": "Tiks izgūti tikai atsevišķi glabātavas vienumi, kas ir saistīti ar $EMAIL$. Apvienības glabātavas vienumi netiks iekļauti. Tiks izgūta tikai glabātavas vienumu informācija, un saistītie pielikumi netiks iekļauti.",
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Izgūst apvienības glabātavu"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Tiks izgūta tikai apvienības glabātava, kas ir saistīta ar $ORGANIZATION$. Atsevišķu glabātavu vai citu apvienību vienumi netiks iekļauti.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Aizslēgta"
   },
@@ -2685,7 +2727,7 @@
     "message": "Kļūda izguves datnes atšifrēšanā. Izmantotā atslēga neatbilst tai, kas tika izmantota satura izgūšanai."
   },
   "invalidFilePassword": {
-    "message": "Nederīga datnes parole, lūgums izmantot to paroli, kas tika ievadīta izdošanas datnes izveidošanas brīdī."
+    "message": "Nederīga datnes parole, lūgums izmantot to paroli, kas tika ievadīta izgūšanas datnes izveidošanas brīdī."
   },
   "importDestination": {
     "message": "Ievietošanas galamērķis"
diff --git a/apps/desktop/src/locales/me/messages.json b/apps/desktop/src/locales/me/messages.json
index a19623dbf9e..400fc1bba9e 100644
--- a/apps/desktop/src/locales/me/messages.json
+++ b/apps/desktop/src/locales/me/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Lozinka ažurirana",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Izvezi trezor"
   },
   "fileFormat": {
     "message": "Format datoteke"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/ml/messages.json b/apps/desktop/src/locales/ml/messages.json
index d1a20855478..fec41cd119c 100644
--- a/apps/desktop/src/locales/ml/messages.json
+++ b/apps/desktop/src/locales/ml/messages.json
@@ -1299,12 +1299,42 @@
     "message": "പാസ്‍വേഡ് പുതുക്കി",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "വാൾട് എക്സ്പോർട്"
   },
   "fileFormat": {
     "message": "ഫയൽ ഫോർമാറ്റ്"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/mr/messages.json b/apps/desktop/src/locales/mr/messages.json
index c489ab72602..7b9cd9ef0f1 100644
--- a/apps/desktop/src/locales/mr/messages.json
+++ b/apps/desktop/src/locales/mr/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/my/messages.json b/apps/desktop/src/locales/my/messages.json
index 2f19a2f513f..54f943a72c8 100644
--- a/apps/desktop/src/locales/my/messages.json
+++ b/apps/desktop/src/locales/my/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/nb/messages.json b/apps/desktop/src/locales/nb/messages.json
index 5af3025f0e5..1f6c7fed646 100644
--- a/apps/desktop/src/locales/nb/messages.json
+++ b/apps/desktop/src/locales/nb/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Passordet ble oppdatert den",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Eksporter hvelvet"
   },
   "fileFormat": {
     "message": "Filformat"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Låst"
   },
diff --git a/apps/desktop/src/locales/ne/messages.json b/apps/desktop/src/locales/ne/messages.json
index 6f6f7d95989..a766c4bb6e5 100644
--- a/apps/desktop/src/locales/ne/messages.json
+++ b/apps/desktop/src/locales/ne/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/nl/messages.json b/apps/desktop/src/locales/nl/messages.json
index 7d5132c872f..f3fe4886abc 100644
--- a/apps/desktop/src/locales/nl/messages.json
+++ b/apps/desktop/src/locales/nl/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Wachtwoord bijgewerkt",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Exporteren vanuit"
+  },
   "exportVault": {
     "message": "Kluis exporteren"
   },
   "fileFormat": {
     "message": "Bestandsindeling"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "We beveiligen deze bestandsexport met een wachtwoord beveiligd, je hebt het bestandswachtwoord nodig om het te decoderen."
+  },
+  "filePassword": {
+    "message": "Bestandswachtwoord"
+  },
+  "exportPasswordDescription": {
+    "message": "We gebruiken dit wachtwoord bij het exporteren en importeren van dit bestand"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Gebruik de encryptiesleutel van je account, afgeleid van je gebruikersnaam en hoodfwachtwoord, om de export te versleutelen en importeren te beperken tot het huidige Bitwarden-account."
+  },
+  "passwordProtected": {
+    "message": "Beveiligd met wachtwoord"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Stel een bestandswachtwoord in om de export te versleutelen en te importeren naar een willekeurig Bitwarden-account met het wachtwoord voor decoderen."
+  },
+  "exportTypeHeading": {
+    "message": "Exporttype"
+  },
+  "accountRestricted": {
+    "message": "Account beperkt"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "\"Bestandswachtwoord\" en \"Bestandswachtwoord bevestigen\" komen niet overeen."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha-URL",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Organisatiekluis exporteren"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Exporteert alleen de organisatiekluis van $ORGANIZATION$. Geen persoonlijke kluis-items of items van andere organisaties.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Vergrendeld"
   },
diff --git a/apps/desktop/src/locales/nn/messages.json b/apps/desktop/src/locales/nn/messages.json
index 0de15cbe56b..10016168346 100644
--- a/apps/desktop/src/locales/nn/messages.json
+++ b/apps/desktop/src/locales/nn/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "Filformat"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha-nettadresse",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/or/messages.json b/apps/desktop/src/locales/or/messages.json
index bcc358730ae..8146636277b 100644
--- a/apps/desktop/src/locales/or/messages.json
+++ b/apps/desktop/src/locales/or/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/pl/messages.json b/apps/desktop/src/locales/pl/messages.json
index 237d94faa38..01fe7622e71 100644
--- a/apps/desktop/src/locales/pl/messages.json
+++ b/apps/desktop/src/locales/pl/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Hasło zostało zaktualizowane",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Eksportuj z"
+  },
   "exportVault": {
     "message": "Eksportuj sejf"
   },
   "fileFormat": {
     "message": "Format pliku"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Plik będzie chroniony hasłem, które będzie wymagane do odszyfrowania pliku."
+  },
+  "filePassword": {
+    "message": "Hasło do pliku"
+  },
+  "exportPasswordDescription": {
+    "message": "Hasło będzie używane do eksportowania i importowania pliku"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Użyj klucza szyfrowania konta, pochodzącego z nazwy użytkownika konta i hasła głównego, aby zaszyfrować eksport i ograniczyć import tylko do bieżącego konta Bitwarden."
+  },
+  "passwordProtected": {
+    "message": "Chroniona hasłem"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Ustaw hasło dla pliku, aby zaszyfrować eksport i zaimportować je na dowolne konto Bitwarden przy użyciu hasła do odszyfrowania."
+  },
+  "exportTypeHeading": {
+    "message": "Rodzaj eksportu"
+  },
+  "accountRestricted": {
+    "message": "Konto ograniczone"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“Hasło pliku” i “Potwierdź hasło pliku“ nie pasują do siebie."
+  },
   "hCaptchaUrl": {
     "message": "Adres URL hCaptcha",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Eksportowanie sejfu organizacji"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Tylko sejf organizacji powiązany z $ORGANIZATION$ zostanie wyeksportowany. Pozycje w poszczególnych sejfach lub innych organizacji nie będą uwzględnione.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Zablokowany"
   },
diff --git a/apps/desktop/src/locales/pt_BR/messages.json b/apps/desktop/src/locales/pt_BR/messages.json
index 225bef63126..77ae4a5592b 100644
--- a/apps/desktop/src/locales/pt_BR/messages.json
+++ b/apps/desktop/src/locales/pt_BR/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Senha atualizada",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Exportar cofre"
   },
   "fileFormat": {
     "message": "Formato do arquivo"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Bloqueado"
   },
diff --git a/apps/desktop/src/locales/pt_PT/messages.json b/apps/desktop/src/locales/pt_PT/messages.json
index b2ff16748ec..5596e6ee45e 100644
--- a/apps/desktop/src/locales/pt_PT/messages.json
+++ b/apps/desktop/src/locales/pt_PT/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Palavra-passe atualizada a",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Exportar de"
+  },
   "exportVault": {
     "message": "Exportar cofre"
   },
   "fileFormat": {
     "message": "Formato do ficheiro"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "A exportação deste ficheiro será protegida por uma palavra-passe e exigirá a palavra-passe do ficheiro para ser desencriptada."
+  },
+  "filePassword": {
+    "message": "Palavra-passe do ficheiro"
+  },
+  "exportPasswordDescription": {
+    "message": "Esta palavra-passe será utilizada para exportar e importar este ficheiro"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Utilize a chave de encriptação da sua conta, derivada do nome de utilizador e da palavra-passe mestra da sua conta, para encriptar a exportação e restringir a importação apenas à conta Bitwarden atual."
+  },
+  "passwordProtected": {
+    "message": "Protegido por palavra-passe"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Defina uma palavra-passe do ficheiro para encriptar a exportação e importe-a para qualquer conta Bitwarden utilizando a palavra-passe de desencriptação."
+  },
+  "exportTypeHeading": {
+    "message": "Tipo de exportação"
+  },
+  "accountRestricted": {
+    "message": "Conta restringida"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "\"Palavra-passe do ficheiro\" e \"Confirmar palavra-passe do ficheiro\" não correspondem."
+  },
   "hCaptchaUrl": {
     "message": "URL do hCaptcha",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "A exportar o cofre da organização"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Apenas o cofre da organização associado a $ORGANIZATION$ será exportado. Os itens em cofres individuais ou noutras organizações não serão incluídos.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Bloqueado"
   },
diff --git a/apps/desktop/src/locales/ro/messages.json b/apps/desktop/src/locales/ro/messages.json
index 27c9bcd1229..9ffe8da928c 100644
--- a/apps/desktop/src/locales/ro/messages.json
+++ b/apps/desktop/src/locales/ro/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Parolă actualizată",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export de seif"
   },
   "fileFormat": {
     "message": "Format de fișier"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "Url-ul hCaptcha",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Blocat"
   },
diff --git a/apps/desktop/src/locales/ru/messages.json b/apps/desktop/src/locales/ru/messages.json
index e6e621ed55f..665a18d1cb7 100644
--- a/apps/desktop/src/locales/ru/messages.json
+++ b/apps/desktop/src/locales/ru/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Пароль обновлен",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Экспорт из"
+  },
   "exportVault": {
     "message": "Экспорт хранилища"
   },
   "fileFormat": {
     "message": "Формат файла"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Экспорт этого файла будет защищен паролем, и для расшифровки потребуется пароль файла."
+  },
+  "filePassword": {
+    "message": "Пароль к файлу"
+  },
+  "exportPasswordDescription": {
+    "message": "Этот пароль будет использоваться для экспорта и импорта этого файла"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Использовать ключ шифрования вашего аккаунта, полученный из имени пользователя и мастер-пароля, для шифрования экспорта и ограничения импорта только для текущего аккаунта Bitwarden."
+  },
+  "passwordProtected": {
+    "message": "Пароль защищен"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Установите пароль файла для шифрования экспорта и импортируйте его в любую учетную запись Bitwarden, используя пароль для расшифровки."
+  },
+  "exportTypeHeading": {
+    "message": "Тип экспорта"
+  },
+  "accountRestricted": {
+    "message": "Ограничено аккаунтом"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "\"Пароль к файлу\" и \"Подтверждение пароля к файлу\" не совпадают."
+  },
   "hCaptchaUrl": {
     "message": "URL hCaptcha",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Экспорт хранилища организации"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Будет экспортировано только хранилище организации, связанное с $ORGANIZATION$. Элементы из личных хранилищ и из других организаций включены не будут.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Заблокировано"
   },
diff --git a/apps/desktop/src/locales/si/messages.json b/apps/desktop/src/locales/si/messages.json
index 829febb7a93..b2c744761fe 100644
--- a/apps/desktop/src/locales/si/messages.json
+++ b/apps/desktop/src/locales/si/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/sk/messages.json b/apps/desktop/src/locales/sk/messages.json
index f6ab99455c4..af48e2ed529 100644
--- a/apps/desktop/src/locales/sk/messages.json
+++ b/apps/desktop/src/locales/sk/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Heslo bolo aktualizované",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Exportovať z"
+  },
   "exportVault": {
     "message": "Export trezoru"
   },
   "fileFormat": {
     "message": "Formát Súboru"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Tento exportovaný súbor bude chránený heslom a na dešifrovanie bude potrebné heslo súboru."
+  },
+  "filePassword": {
+    "message": "Heslo súboru"
+  },
+  "exportPasswordDescription": {
+    "message": "Toto heslo sa použije na export a import tohto súboru"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Na zašifrovanie exportu a obmedzenie importu len na aktuálny účet Bitwarden použite šifrovací kľúč účtu odvodený z používateľského mena a hlavného hesla účtu."
+  },
+  "passwordProtected": {
+    "message": "Chránené heslom"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Nastavte heslo súboru na zašifrovanie exportu a importujte ho do akéhokoľvek účtu Bitwarden pomocou hesla na dešifrovanie."
+  },
+  "exportTypeHeading": {
+    "message": "Typ exportu"
+  },
+  "accountRestricted": {
+    "message": "Obmedzený účet"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "\"Heslo súboru\" a \"Potvrdiť heslo súboru\" sa nezhodujú."
+  },
   "hCaptchaUrl": {
     "message": "URL hCaptcha",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exportovanie trezora organizácie"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Exportované budú iba položky trezora organizácie spojené s $ORGANIZATION$. Položky osobného trezora a položky z iných organizácií nebudú zahrnuté.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Zamknutý"
   },
diff --git a/apps/desktop/src/locales/sl/messages.json b/apps/desktop/src/locales/sl/messages.json
index 968f34ad747..9bdec66f19c 100644
--- a/apps/desktop/src/locales/sl/messages.json
+++ b/apps/desktop/src/locales/sl/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Geslo je bilo posodobljeno",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Izvoz trezorja"
   },
   "fileFormat": {
     "message": "Format datoteke"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/sr/messages.json b/apps/desktop/src/locales/sr/messages.json
index 7967e25b3f6..de403629d14 100644
--- a/apps/desktop/src/locales/sr/messages.json
+++ b/apps/desktop/src/locales/sr/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Лозинка ажурирана",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Извоз сефа"
   },
   "fileFormat": {
     "message": "Формат датотеке"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Закључано"
   },
diff --git a/apps/desktop/src/locales/sv/messages.json b/apps/desktop/src/locales/sv/messages.json
index 6e731f777c5..e7dddd64aaa 100644
--- a/apps/desktop/src/locales/sv/messages.json
+++ b/apps/desktop/src/locales/sv/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Lösenordet uppdaterades",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Exportera valv"
   },
   "fileFormat": {
     "message": "Filformat"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha-URL",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Låst"
   },
diff --git a/apps/desktop/src/locales/te/messages.json b/apps/desktop/src/locales/te/messages.json
index c489ab72602..7b9cd9ef0f1 100644
--- a/apps/desktop/src/locales/te/messages.json
+++ b/apps/desktop/src/locales/te/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/th/messages.json b/apps/desktop/src/locales/th/messages.json
index dce9013765f..cfc701aa5aa 100644
--- a/apps/desktop/src/locales/th/messages.json
+++ b/apps/desktop/src/locales/th/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password Updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export Vault"
   },
   "fileFormat": {
     "message": "File Format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Locked"
   },
diff --git a/apps/desktop/src/locales/tr/messages.json b/apps/desktop/src/locales/tr/messages.json
index ad828189877..224bf36cfd7 100644
--- a/apps/desktop/src/locales/tr/messages.json
+++ b/apps/desktop/src/locales/tr/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Parola güncelleme",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Kasayı dışa aktar"
   },
   "fileFormat": {
     "message": "Dosya biçimi"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha adresi",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Kilitli"
   },
diff --git a/apps/desktop/src/locales/uk/messages.json b/apps/desktop/src/locales/uk/messages.json
index 6503f3c19ab..dc5672ed69a 100644
--- a/apps/desktop/src/locales/uk/messages.json
+++ b/apps/desktop/src/locales/uk/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Пароль оновлено",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Експортувати сховище"
   },
   "fileFormat": {
     "message": "Формат файлу"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "URL-адреса hCaptcha",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Заблоковано"
   },
diff --git a/apps/desktop/src/locales/vi/messages.json b/apps/desktop/src/locales/vi/messages.json
index 1a0689b1329..0fa1d7253af 100644
--- a/apps/desktop/src/locales/vi/messages.json
+++ b/apps/desktop/src/locales/vi/messages.json
@@ -1299,12 +1299,42 @@
     "message": "Password Updated",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export Vault"
   },
   "fileFormat": {
     "message": "File Format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "Url hCaptcha",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "Đã khóa"
   },
diff --git a/apps/desktop/src/locales/zh_CN/messages.json b/apps/desktop/src/locales/zh_CN/messages.json
index 35cb9ec07ba..27686559fda 100644
--- a/apps/desktop/src/locales/zh_CN/messages.json
+++ b/apps/desktop/src/locales/zh_CN/messages.json
@@ -1299,12 +1299,42 @@
     "message": "密码更新于",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "导出密码库"
   },
   "fileFormat": {
     "message": "文件格式"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha URL",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "已锁定"
   },
diff --git a/apps/desktop/src/locales/zh_TW/messages.json b/apps/desktop/src/locales/zh_TW/messages.json
index 9ff900a41e2..099865217c0 100644
--- a/apps/desktop/src/locales/zh_TW/messages.json
+++ b/apps/desktop/src/locales/zh_TW/messages.json
@@ -1299,12 +1299,42 @@
     "message": "密碼更新於",
     "description": "ex. Date this password was updated"
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "匯出密碼庫"
   },
   "fileFormat": {
     "message": "檔案格式"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtected": {
+    "message": "Password protected"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "hCaptchaUrl": {
     "message": "hCaptcha URL",
     "description": "hCaptcha is the name of a website, should not be translated"
@@ -2071,6 +2101,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "locked": {
     "message": "已鎖定"
   },

From 0dc51baf797731bee00ce70f3760c03c4283d3ac Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Fri, 31 May 2024 06:31:27 +0000
Subject: [PATCH 051/138] Autosync the updated translations (#9449)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/browser/src/_locales/ar/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/az/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/be/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/bg/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/bn/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/bs/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/ca/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/cs/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/cy/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/da/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/de/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/el/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/en_GB/messages.json | 42 ++++++++++++++++
 apps/browser/src/_locales/en_IN/messages.json | 42 ++++++++++++++++
 apps/browser/src/_locales/es/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/et/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/eu/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/fa/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/fi/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/fil/messages.json   | 42 ++++++++++++++++
 apps/browser/src/_locales/fr/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/gl/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/he/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/hi/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/hr/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/hu/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/id/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/it/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/ja/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/ka/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/km/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/kn/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/ko/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/lt/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/lv/messages.json    | 48 ++++++++++++++++--
 apps/browser/src/_locales/ml/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/mr/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/my/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/nb/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/ne/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/nl/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/nn/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/or/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/pl/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/pt_BR/messages.json | 42 ++++++++++++++++
 apps/browser/src/_locales/pt_PT/messages.json | 42 ++++++++++++++++
 apps/browser/src/_locales/ro/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/ru/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/si/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/sk/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/sl/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/sr/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/sv/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/te/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/th/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/tr/messages.json    | 50 +++++++++++++++++--
 apps/browser/src/_locales/uk/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/vi/messages.json    | 42 ++++++++++++++++
 apps/browser/src/_locales/zh_CN/messages.json | 42 ++++++++++++++++
 apps/browser/src/_locales/zh_TW/messages.json | 42 ++++++++++++++++
 60 files changed, 2527 insertions(+), 7 deletions(-)

diff --git a/apps/browser/src/_locales/ar/messages.json b/apps/browser/src/_locales/ar/messages.json
index c4a07015412..c4251626401 100644
--- a/apps/browser/src/_locales/ar/messages.json
+++ b/apps/browser/src/_locales/ar/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "إلغاء القفل"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "إظهار خيارات قائمة السياق"
   },
@@ -799,12 +802,39 @@
     "message": "داكن مُشمس",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "تصدير الخزنة"
   },
   "fileFormat": {
     "message": "صيغة الملف"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "تحذير",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "خطأ"
   },
diff --git a/apps/browser/src/_locales/az/messages.json b/apps/browser/src/_locales/az/messages.json
index 8b3632da1ba..76615435f7b 100644
--- a/apps/browser/src/_locales/az/messages.json
+++ b/apps/browser/src/_locales/az/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Kilidi aç"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Konteks menyu seçimlərini göstər"
   },
@@ -799,12 +802,39 @@
     "message": "Günəşli tünd",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Anbarı xaricə köçür"
   },
   "fileFormat": {
     "message": "Fayl formatı"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "XƏBƏRDARLIQ",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Xəta"
   },
diff --git a/apps/browser/src/_locales/be/messages.json b/apps/browser/src/_locales/be/messages.json
index 5409816accf..6ee3fffdfa5 100644
--- a/apps/browser/src/_locales/be/messages.json
+++ b/apps/browser/src/_locales/be/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Разблакіраваць"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Паказваць параметры кантэкстнага меню"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Экспартаваць сховішча"
   },
   "fileFormat": {
     "message": "Фармат файла"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "ПАПЯРЭДЖАННЕ",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Памылка"
   },
diff --git a/apps/browser/src/_locales/bg/messages.json b/apps/browser/src/_locales/bg/messages.json
index e6f6cfc14d8..337467ddfe9 100644
--- a/apps/browser/src/_locales/bg/messages.json
+++ b/apps/browser/src/_locales/bg/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Отключване"
   },
+  "additionalOptions": {
+    "message": "Допълнителни настройки"
+  },
   "enableContextMenuItem": {
     "message": "Показване на опции в контекстното меню"
   },
@@ -799,12 +802,39 @@
     "message": "Преекспонирано тъмен",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Изнасяне от"
+  },
   "exportVault": {
     "message": "Изнасяне на трезора"
   },
   "fileFormat": {
     "message": "Формат на файла"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Изнесеният файл ще бъде защитен с парола, която ще бъде необходима за дешифриране на файла."
+  },
+  "filePassword": {
+    "message": "Парола на файла"
+  },
+  "exportPasswordDescription": {
+    "message": "Парола ще се използва при изнасянето и при внасянето на този файл"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Използвайте ключа си за шифриране, който се получава чрез комбиниране на потребителското име на регистрацията Ви и главната парола. С него изнасянето ще се шифрира и внасянето ще бъда възможно само в текущата регистрация в Битуорден."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Задайте парола за файла, за да шифровате изнесените данни. Ще можете да внесете данните във всяка регистрация в Битуорден използвайки паролата за дешифриране."
+  },
+  "exportTypeHeading": {
+    "message": "Вид изнасяне"
+  },
+  "accountRestricted": {
+    "message": "Регистрацията е ограничена"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "Дънните в полетата „Парола на файла“ и „Потвърждаване на паролата на файла“ не съвпадат."
+  },
   "warning": {
     "message": "ВНИМАНИЕ",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Изнасяне на трезора на организацията"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Ще бъдат изнесени само записите от трезора свързан с $ORGANIZATION$. Записите в отделните лични трезори и тези в други организации няма да бъдат включени.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Грешка"
   },
diff --git a/apps/browser/src/_locales/bn/messages.json b/apps/browser/src/_locales/bn/messages.json
index 1635de5bb8b..541bebd427b 100644
--- a/apps/browser/src/_locales/bn/messages.json
+++ b/apps/browser/src/_locales/bn/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "ভল্ট রফতানি"
   },
   "fileFormat": {
     "message": "ফাইলের ধরণ"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "সতর্কতা",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/bs/messages.json b/apps/browser/src/_locales/bs/messages.json
index db55f4784e4..cd82d91cefc 100644
--- a/apps/browser/src/_locales/bs/messages.json
+++ b/apps/browser/src/_locales/bs/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "WARNING",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/ca/messages.json b/apps/browser/src/_locales/ca/messages.json
index 01f66bffd64..fe2a25e6595 100644
--- a/apps/browser/src/_locales/ca/messages.json
+++ b/apps/browser/src/_locales/ca/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Desbloqueja"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Mostra les opcions del menú contextual"
   },
@@ -799,12 +802,39 @@
     "message": "Solaritzat fosc",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Exporta caixa forta"
   },
   "fileFormat": {
     "message": "Format de fitxer"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "ADVERTIMENT",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/cs/messages.json b/apps/browser/src/_locales/cs/messages.json
index 2939bba1468..3b9507fdf21 100644
--- a/apps/browser/src/_locales/cs/messages.json
+++ b/apps/browser/src/_locales/cs/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Odemknout"
   },
+  "additionalOptions": {
+    "message": "Další volby"
+  },
   "enableContextMenuItem": {
     "message": "Zobrazit volby v kontextovém menu"
   },
@@ -799,12 +802,39 @@
     "message": "Tmavý (solarizovaný)",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Exportovat z"
+  },
   "exportVault": {
     "message": "Exportovat trezor"
   },
   "fileFormat": {
     "message": "Formát souboru"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Tento soubor exportu bude chráněn heslem a k dešifrování bude vyžadovat heslo souboru."
+  },
+  "filePassword": {
+    "message": "Heslo souboru"
+  },
+  "exportPasswordDescription": {
+    "message": "Toto heslo bude použito pro export a import tohoto souboru"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Pro zašifrování exportu a omezení importu pouze na aktuální účet Bitwardenu použijte šifrovací klíč Vašeho účtu odvozený z uživatelského jména a hlavního hesla."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Nastavte heslo pro šifrování exportu a importujte ho do libovolného účtu Bitwardenu pomocí hesla pro dešifrování."
+  },
+  "exportTypeHeading": {
+    "message": "Typ exportu"
+  },
+  "accountRestricted": {
+    "message": "Účet je omezený"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "\"Heslo souboru\" a \"Potvrzení hesla souboru\" se neshodují."
+  },
   "warning": {
     "message": "VAROVÁNÍ",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exportování trezoru organizace"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Exportován bude jen trezor organizace přidružený k položce $ORGANIZATION$. Osobní položky trezoru a položky z jiných organizací nebudou zahrnuty.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Chyba"
   },
diff --git a/apps/browser/src/_locales/cy/messages.json b/apps/browser/src/_locales/cy/messages.json
index 58f7bc95446..6bfa7de69f3 100644
--- a/apps/browser/src/_locales/cy/messages.json
+++ b/apps/browser/src/_locales/cy/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Datgloi"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Allforio'r gell"
   },
   "fileFormat": {
     "message": "Fformat y ffeil"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "RHYBUDD",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Gwall"
   },
diff --git a/apps/browser/src/_locales/da/messages.json b/apps/browser/src/_locales/da/messages.json
index 8f27f95be02..32266ceb31f 100644
--- a/apps/browser/src/_locales/da/messages.json
+++ b/apps/browser/src/_locales/da/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Oplås"
   },
+  "additionalOptions": {
+    "message": "Yderligere indstillinger"
+  },
   "enableContextMenuItem": {
     "message": "Vis indstillinger i kontekstmenuen"
   },
@@ -799,12 +802,39 @@
     "message": "Solariseret mørk",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Eksportér fra"
+  },
   "exportVault": {
     "message": "Eksportér boks"
   },
   "fileFormat": {
     "message": "Filformat"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Denne fileksport vil være adgangskodebeskyttet og kræve filadgangskoden at dekryptere."
+  },
+  "filePassword": {
+    "message": "Filadgangskode"
+  },
+  "exportPasswordDescription": {
+    "message": "Denne adgangskode vil blive brugt ved eksport og import af denne fil"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Brug kontokrypteringsnøglen, dannet af kontobrugernavn og Hovedadgangskode, for at kryptere eksporten og hindre import til andre end den aktuelle Bitwarden-konto."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Opsæt en adgangskode til både at kryptere eksporten samt dekryptere denne ved import til enhver Bitwarden-konto."
+  },
+  "exportTypeHeading": {
+    "message": "Eksporttype"
+  },
+  "accountRestricted": {
+    "message": "Konto begrænset"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“Filadgangskode” og “Bekræft filadgangskode“ matcher ikke."
+  },
   "warning": {
     "message": "ADVARSEL",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Eksport af organisationsboks"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Kun organisationsboksen tilknyttet $ORGANIZATION$ eksporteres. Emner i individuelle bokse eller andre organisationer medtages ikke.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Fejl"
   },
diff --git a/apps/browser/src/_locales/de/messages.json b/apps/browser/src/_locales/de/messages.json
index 8a7c3e0067d..05c731aa37a 100644
--- a/apps/browser/src/_locales/de/messages.json
+++ b/apps/browser/src/_locales/de/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Entsperren"
   },
+  "additionalOptions": {
+    "message": "Weitere Optionen"
+  },
   "enableContextMenuItem": {
     "message": "Kontextmenüoptionen anzeigen"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized Dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export aus"
+  },
   "exportVault": {
     "message": "Tresor exportieren"
   },
   "fileFormat": {
     "message": "Dateiformat"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Dieser Datei-Export ist passwortgeschützt und erfordert das Dateipasswort zum Entschlüsseln."
+  },
+  "filePassword": {
+    "message": "Dateipasswort"
+  },
+  "exportPasswordDescription": {
+    "message": "Dieses Passwort wird zum Exportieren und Importieren dieser Datei verwendet"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Verwende den Verschlüsselungscode deines Kontos, abgeleitet vom Benutzernamen und Master-Passwort, um den Export zu verschlüsseln und den Import auf das aktuelle Bitwarden-Konto zu beschränken."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Lege ein Dateipasswort fest, um den Export zu verschlüsseln und importiere ihn in ein beliebiges Bitwarden-Konto, wobei das Passwort zum Entschlüsseln genutzt wird."
+  },
+  "exportTypeHeading": {
+    "message": "Exporttyp"
+  },
+  "accountRestricted": {
+    "message": "Konto eingeschränkt"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "„Dateipasswort“ und „Dateipasswort bestätigen“ stimmen nicht überein."
+  },
   "warning": {
     "message": "ACHTUNG",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Tresor der Organisation wird exportiert"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Nur der mit $ORGANIZATION$ verbundene Organisationstresor wird exportiert. Einträge in persönlichen Tresoren oder anderen Organisationen werden nicht berücksichtigt.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Fehler"
   },
diff --git a/apps/browser/src/_locales/el/messages.json b/apps/browser/src/_locales/el/messages.json
index 365f8475a07..da376f6c6a0 100644
--- a/apps/browser/src/_locales/el/messages.json
+++ b/apps/browser/src/_locales/el/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Ξεκλείδωμα"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Εμφάνιση επιλογών μενού περιβάλλοντος"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized Σκούρο",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Εξαγωγή Vault"
   },
   "fileFormat": {
     "message": "Μορφή αρχείου"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "ΠΡΟΕΙΔΟΠΟΙΗΣΗ",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Σφάλμα"
   },
diff --git a/apps/browser/src/_locales/en_GB/messages.json b/apps/browser/src/_locales/en_GB/messages.json
index ffde447604b..0ff4085900c 100644
--- a/apps/browser/src/_locales/en_GB/messages.json
+++ b/apps/browser/src/_locales/en_GB/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "WARNING",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organisation vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organisation vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organisations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/en_IN/messages.json b/apps/browser/src/_locales/en_IN/messages.json
index 3ceedc40deb..bb1ae5f7318 100644
--- a/apps/browser/src/_locales/en_IN/messages.json
+++ b/apps/browser/src/_locales/en_IN/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Solarised Dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "WARNING",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organisation vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organisation vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organisations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/es/messages.json b/apps/browser/src/_locales/es/messages.json
index 3550fa68c03..1134f941513 100644
--- a/apps/browser/src/_locales/es/messages.json
+++ b/apps/browser/src/_locales/es/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Desbloquear"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Mostrar las opciones de menú contextuales"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized Dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Exportar desde"
+  },
   "exportVault": {
     "message": "Exportar caja fuerte"
   },
   "fileFormat": {
     "message": "Formato de archivo"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Esta exportación de archivo estará protegida por contraseña y requerirá la contraseña del archivo para descifrarla."
+  },
+  "filePassword": {
+    "message": "Contraseña del archivo"
+  },
+  "exportPasswordDescription": {
+    "message": "Esta contraseña se utilizará para exportar e importar este archivo"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Utiliza la clave de cifrado de tu cuenta, derivada del nombre de usuario y la contraseña maestra de tu cuenta, para cifrar la exportación y restringir la importación solo a la cuenta actual de Bitwarden."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Establece una contraseña de archivo para cifrar la exportación e importarlo a cualquier cuenta de Bitwarden utilizando la contraseña para el descifrado."
+  },
+  "exportTypeHeading": {
+    "message": "Tipo de exportación"
+  },
+  "accountRestricted": {
+    "message": "Cuenta restringida"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "\"Contraseña de archivo\" y \"Confirmar contraseña de archivo\" no coinciden."
+  },
   "warning": {
     "message": "ADVERTENCIA",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exportando caja fuerte de la organización"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Solo se exportará la caja fuerte de la organización asociada a $ORGANIZATION$. Los elementos en las cajas fuertes individuales o de otras organizaciones no serán incluidos.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/et/messages.json b/apps/browser/src/_locales/et/messages.json
index 8fb5274c52f..03267c79d7b 100644
--- a/apps/browser/src/_locales/et/messages.json
+++ b/apps/browser/src/_locales/et/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Lukusta lahti"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Kuva parema kliki menüü valikud"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized tume",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Ekspordi hoidla"
   },
   "fileFormat": {
     "message": "Failivorming"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "HOIATUS",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Viga"
   },
diff --git a/apps/browser/src/_locales/eu/messages.json b/apps/browser/src/_locales/eu/messages.json
index 60339f16b14..3d0e37f4147 100644
--- a/apps/browser/src/_locales/eu/messages.json
+++ b/apps/browser/src/_locales/eu/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Erakutsi laster-menuko aukerak"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized iluna",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Esportatu kutxa gotorra"
   },
   "fileFormat": {
     "message": "Fitxategiaren formatua"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "KONTUZ",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Akatsa"
   },
diff --git a/apps/browser/src/_locales/fa/messages.json b/apps/browser/src/_locales/fa/messages.json
index a493a1c24bf..5b55561a6a8 100644
--- a/apps/browser/src/_locales/fa/messages.json
+++ b/apps/browser/src/_locales/fa/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "باز کردن قفل"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "نمایش گزینه‌های منوی زمینه"
   },
@@ -799,12 +802,39 @@
     "message": "تاریک خورشیدی",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "برون ریزی گاوصندوق"
   },
   "fileFormat": {
     "message": "فرمت پرونده"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "اخطار",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "خطا"
   },
diff --git a/apps/browser/src/_locales/fi/messages.json b/apps/browser/src/_locales/fi/messages.json
index 05d2d3ed952..42251e9e42b 100644
--- a/apps/browser/src/_locales/fi/messages.json
+++ b/apps/browser/src/_locales/fi/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Avaa"
   },
+  "additionalOptions": {
+    "message": "Lisäasetukset"
+  },
   "enableContextMenuItem": {
     "message": "Näytä sisältövalikon valinnat"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized, tumma",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Vie lähteestä"
+  },
   "exportVault": {
     "message": "Vie holvi"
   },
   "fileFormat": {
     "message": "Tiedostomuoto"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Tämä vientitiedosto suojataan salasanalla, joka on syötettävä ja salauksen purkamiseksi."
+  },
+  "filePassword": {
+    "message": "Tiedoston salasana"
+  },
+  "exportPasswordDescription": {
+    "message": "Tätä salasanaa käytetään tämän tiedoston viennissä ja tuonnissa"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Salaa vienti ja rajoita tuonti vain nykyiselle Bitwarden-tilille tilisi käyttäjätunnukseen ja pääsalasanaan pohjautuvalla salausavaimella."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Salaa vientitiedosto salasanalla, joka mahdollistaa sen tuonnin mille tahansa Bitwarden-tilille."
+  },
+  "exportTypeHeading": {
+    "message": "Viennin tyyppi"
+  },
+  "accountRestricted": {
+    "message": "Rajoitettu tilille"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "\"Tiedoston salasana\" ja \"Vahvista tiedoston salasana\" eivät täsmää."
+  },
   "warning": {
     "message": "VAROITUS",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Organisaation holvin vienti"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Vain organisaatioon $ORGANIZATION$ liitetyn holvin kohteet viedään. Yksityisen holvin ja muiden organisaatioiden kohteita ei sisällytetä.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Virhe"
   },
diff --git a/apps/browser/src/_locales/fil/messages.json b/apps/browser/src/_locales/fil/messages.json
index 061da97446b..86f8209e1cd 100644
--- a/apps/browser/src/_locales/fil/messages.json
+++ b/apps/browser/src/_locales/fil/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "I-unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Ipakita ang mga opsyon ng menu ng konteksto"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "I-export vault"
   },
   "fileFormat": {
     "message": "Format ng file"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "BABALA",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Mali"
   },
diff --git a/apps/browser/src/_locales/fr/messages.json b/apps/browser/src/_locales/fr/messages.json
index c062390f228..53df48d0004 100644
--- a/apps/browser/src/_locales/fr/messages.json
+++ b/apps/browser/src/_locales/fr/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Déverrouiller"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Afficher les options du menu contextuel"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized Dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Exporter le coffre"
   },
   "fileFormat": {
     "message": "Format de fichier"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "AVERTISSEMENT",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Erreur"
   },
diff --git a/apps/browser/src/_locales/gl/messages.json b/apps/browser/src/_locales/gl/messages.json
index b92e05269eb..dd29c8a071c 100644
--- a/apps/browser/src/_locales/gl/messages.json
+++ b/apps/browser/src/_locales/gl/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Desbloquear"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Solarizado escuro",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Exportar caixa forte"
   },
   "fileFormat": {
     "message": "Formato de ficheiro"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "ADVERTENCIA",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Erro"
   },
diff --git a/apps/browser/src/_locales/he/messages.json b/apps/browser/src/_locales/he/messages.json
index fd49f7e55e8..c191df36bf8 100644
--- a/apps/browser/src/_locales/he/messages.json
+++ b/apps/browser/src/_locales/he/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "יצוא כספת"
   },
   "fileFormat": {
     "message": "פורמט קובץ"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "אזהרה",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "שגיאה"
   },
diff --git a/apps/browser/src/_locales/hi/messages.json b/apps/browser/src/_locales/hi/messages.json
index 48c55b30a83..d6ac94bec32 100644
--- a/apps/browser/src/_locales/hi/messages.json
+++ b/apps/browser/src/_locales/hi/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "संदर्भ मेनू विकल्प दिखाएं"
   },
@@ -799,12 +802,39 @@
     "message": "सौरीकृत अंधेरा",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export Vault"
   },
   "fileFormat": {
     "message": "File Format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "चेतावनी",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "एरर"
   },
diff --git a/apps/browser/src/_locales/hr/messages.json b/apps/browser/src/_locales/hr/messages.json
index ac452af85ee..8b9f96fa5c4 100644
--- a/apps/browser/src/_locales/hr/messages.json
+++ b/apps/browser/src/_locales/hr/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Otključaj"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Prikaži opcije kotekstualnog izbornika"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized Dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Izvezi trezor"
   },
   "fileFormat": {
     "message": "Format datoteke"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "UPOZORENJE",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Pogreška"
   },
diff --git a/apps/browser/src/_locales/hu/messages.json b/apps/browser/src/_locales/hu/messages.json
index 8b937375a63..8ff50ea4f08 100644
--- a/apps/browser/src/_locales/hu/messages.json
+++ b/apps/browser/src/_locales/hu/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Feloldás"
   },
+  "additionalOptions": {
+    "message": "Kiegészítő opciók"
+  },
   "enableContextMenuItem": {
     "message": "Helyi menü opciók megjelenítése"
   },
@@ -799,12 +802,39 @@
     "message": "Szolarizált sötét",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Exportálás innen:"
+  },
   "exportVault": {
     "message": "Széf exportálása"
   },
   "fileFormat": {
     "message": "Fájlformátum"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Ez a fájl exportálás jelszóval védett és a visszafejtéshez a fájl jelszó megadása szükséges."
+  },
+  "filePassword": {
+    "message": "Fájl jelszó"
+  },
+  "exportPasswordDescription": {
+    "message": "Ezt a jelszó kerül használatba a fájl exportálására és importálására."
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Használjuk a fiók felhasználónevéből és mesterjelszavából származó fióktitkosítási kulcsot az exportálás titkosításához és az importálást csak az aktuális Bitwarden fiókra korlátozzuk."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Állítsunk be egy fájl jelszót az exportálás titkosításához és importáljuk azt bármely Bitwarden fiókba a visszafejtéshez használt jelszó használatával."
+  },
+  "exportTypeHeading": {
+    "message": "Exportálási típus"
+  },
+  "accountRestricted": {
+    "message": "Korlátozott fiók"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "A “Fájl jelszó”  és a  “Fájl jelszó megerősítés“ nem egyezik."
+  },
   "warning": {
     "message": "FIGYELEM",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Szervezeti széf exportálása"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Csak $ORGANIZATION$ névvel társított szervezeti széf kerül exportálásra. Ebbe nem kerülnek be a személyes és más szervezeti széf elemek.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Hiba"
   },
diff --git a/apps/browser/src/_locales/id/messages.json b/apps/browser/src/_locales/id/messages.json
index b151dbbf21f..19770da2782 100644
--- a/apps/browser/src/_locales/id/messages.json
+++ b/apps/browser/src/_locales/id/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Gelap Solarized",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Ekspor Brankas"
   },
   "fileFormat": {
     "message": "Format Berkas"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "PERINGATAN",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Galat"
   },
diff --git a/apps/browser/src/_locales/it/messages.json b/apps/browser/src/_locales/it/messages.json
index 938eb7671e0..614068b1f4d 100644
--- a/apps/browser/src/_locales/it/messages.json
+++ b/apps/browser/src/_locales/it/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Sblocca"
   },
+  "additionalOptions": {
+    "message": "Opzioni aggiuntive"
+  },
   "enableContextMenuItem": {
     "message": "Mostra opzioni nel menu contestuale"
   },
@@ -799,12 +802,39 @@
     "message": "Scuro solarizzato",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Esporta da"
+  },
   "exportVault": {
     "message": "Esporta cassaforte"
   },
   "fileFormat": {
     "message": "Formato file"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Questo file esportato sarà protetto e richiederà la password del file per decifrarlo."
+  },
+  "filePassword": {
+    "message": "Password del file"
+  },
+  "exportPasswordDescription": {
+    "message": "La password sarà utilizzata per importare ed esportare questo file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Usa la chiave di crittografia dell'account, derivata dal nome utente e dalla password principale del tuo account, per crittografare il file di esportazione e limitare l'importazione solo all'account Bitwarden corrente."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Imposta una password del file per crittografare il file esportato e importarlo in qualsiasi account Bitwarden usando la password per decrittografarlo."
+  },
+  "exportTypeHeading": {
+    "message": "Tipo di esportazione"
+  },
+  "accountRestricted": {
+    "message": "Account limitato"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "Le due password del file non corrispondono."
+  },
   "warning": {
     "message": "ATTENZIONE",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Esportando cassaforte dell'organizzazione"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Solo la cassaforte dell'organizzazione associata a $ORGANIZATION$ sarà esportata. Elementi nelle casseforti individuali o in altre organizzazioni non saranno inclusi.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Errore"
   },
diff --git a/apps/browser/src/_locales/ja/messages.json b/apps/browser/src/_locales/ja/messages.json
index cb78bd7fda5..9113b95a7d3 100644
--- a/apps/browser/src/_locales/ja/messages.json
+++ b/apps/browser/src/_locales/ja/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "ロック解除"
   },
+  "additionalOptions": {
+    "message": "追加オプション"
+  },
   "enableContextMenuItem": {
     "message": "コンテキストメニューオプションを表示"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized ダーク",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "エクスポート元"
+  },
   "exportVault": {
     "message": "保管庫のエクスポート"
   },
   "fileFormat": {
     "message": "ファイル形式"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "エクスポートするファイルはパスワードで保護され、復号するにはファイルパスワードが必要になります。"
+  },
+  "filePassword": {
+    "message": "ファイルパスワード"
+  },
+  "exportPasswordDescription": {
+    "message": "このパスワードはこのファイルのエクスポートとインポート時に使用します"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "アカウントのユーザー名とマスターパスワードから得られる暗号化キーを使用してエクスポートするデータを暗号化し、現在の Bitwarden アカウントのみがインポートできるよう制限します。"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "エクスポートを暗号化するためのファイルパスワードを設定します。そのパスワードを使用して、任意の Bitwarden アカウントにインポートします。"
+  },
+  "exportTypeHeading": {
+    "message": "エクスポートの種類"
+  },
+  "accountRestricted": {
+    "message": "アカウント制限"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "「ファイルパスワード」と「ファイルパスワードの確認」が一致しません。"
+  },
   "warning": {
     "message": "警告",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "組織保管庫のエクスポート"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "$ORGANIZATION$ に関連付けられた組織保管庫のみがエクスポートされます。個々の保管庫または他の組織にあるアイテムは含まれません。",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "エラー"
   },
diff --git a/apps/browser/src/_locales/ka/messages.json b/apps/browser/src/_locales/ka/messages.json
index 62347f4acf4..6abd24dafc8 100644
--- a/apps/browser/src/_locales/ka/messages.json
+++ b/apps/browser/src/_locales/ka/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "WARNING",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/km/messages.json b/apps/browser/src/_locales/km/messages.json
index 64f3623b5af..c3f03166b25 100644
--- a/apps/browser/src/_locales/km/messages.json
+++ b/apps/browser/src/_locales/km/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "WARNING",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/kn/messages.json b/apps/browser/src/_locales/kn/messages.json
index 7556ee6afd6..e5e1f708f66 100644
--- a/apps/browser/src/_locales/kn/messages.json
+++ b/apps/browser/src/_locales/kn/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "ಡಾರ್ಕ್ ಸೌರ",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "ರಫ್ತು ವಾಲ್ಟ್"
   },
   "fileFormat": {
     "message": "ಕಡತದ ಮಾದರಿ"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "ಎಚ್ಚರಿಕೆ",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/ko/messages.json b/apps/browser/src/_locales/ko/messages.json
index 86295d469a7..552446ef766 100644
--- a/apps/browser/src/_locales/ko/messages.json
+++ b/apps/browser/src/_locales/ko/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "잠금 해제"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized Dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "보관함 내보내기"
   },
   "fileFormat": {
     "message": "파일 형식"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "경고",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "오류"
   },
diff --git a/apps/browser/src/_locales/lt/messages.json b/apps/browser/src/_locales/lt/messages.json
index 6f0fc1bbb62..e44efc99da1 100644
--- a/apps/browser/src/_locales/lt/messages.json
+++ b/apps/browser/src/_locales/lt/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Atrakinti"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Rodyti kontekstinio meniu pasririnkimus"
   },
@@ -799,12 +802,39 @@
     "message": "Saulėtas tamsą",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Eksportuoti saugyklą"
   },
   "fileFormat": {
     "message": "Failo formatas"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "ĮSPĖJIMAS",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Klaida"
   },
diff --git a/apps/browser/src/_locales/lv/messages.json b/apps/browser/src/_locales/lv/messages.json
index a7b50ae2a47..ac202682bab 100644
--- a/apps/browser/src/_locales/lv/messages.json
+++ b/apps/browser/src/_locales/lv/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Atslēgt"
   },
+  "additionalOptions": {
+    "message": "Papildu iespējas"
+  },
   "enableContextMenuItem": {
     "message": "Rādīt konteksta izvēlnes iespējas"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized Dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Izgūt no"
+  },
   "exportVault": {
     "message": "Izgūt glabātavas saturu"
   },
   "fileFormat": {
     "message": "Datnes veids"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Šī datņu izgūšana būs aizsargāta ar paroli, un būs nepieciešama datnes parole, lai to atšifrētu."
+  },
+  "filePassword": {
+    "message": "Datnes parole"
+  },
+  "exportPasswordDescription": {
+    "message": "Šī parole tiks izmantota, lai izgūtu un ievietotu šo datni"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Jāizmanto konta šifrēšanas atslēga, kas iegūta no lietotājvārda un galvenās paroles, lai šifrētu izguvi un atļautu ievietošanu tikai pašreizējā Bitwarden kontā."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Uzstādīt paroli, lai šifrētu izguvi un tad to ievietotu jebkurā Bitwarden kontā, izmantojot atšifrēšanas paroli."
+  },
+  "exportTypeHeading": {
+    "message": "Izgūšanas veids"
+  },
+  "accountRestricted": {
+    "message": "Konts ir ierobežots"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "\"Datnes parole\" un \"Apstiprināt datnes paroli\" vērtības nesakrīt."
+  },
   "warning": {
     "message": "UZMANĪBU",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -813,7 +843,7 @@
     "message": "Apstiprināt glabātavas satura izgūšanu"
   },
   "exportWarningDesc": {
-    "message": "Šī izguve satur glabātavas datus nešifrētā veidā. Izdoto datni nevajadzētu glabāt vai sūtīt nedrošos veidos (piemēram, e-pastā). Izdzēst to uzreiz pēc izmantošanas."
+    "message": "Šī izguve satur glabātavas datus nešifrētā veidā. Izgūto datni nevajadzētu glabāt vai sūtīt nedrošos veidos (piemēram, e-pastā). Tā ir jāizdzēš uzreiz pēc izmantošanas."
   },
   "encExportKeyWarningDesc": {
     "message": "Šī izguve šifrē datus ar konta šifrēšanas atslēgu. Ja tā jebkad tiks mainīta, izvadi vajadzētu veikt vēlreiz, jo vairs nebūs iespējams atšifrēt šo datni."
@@ -2171,7 +2201,7 @@
     "message": "Sesijai iestājās noildze. Lūgums mēģināt pieteikties vēlreiz."
   },
   "exportingPersonalVaultTitle": {
-    "message": "Izdod personīgo glabātavu"
+    "message": "Izgūst personīgo glabātavu"
   },
   "exportingIndividualVaultDescription": {
     "message": "Tiks izgūti tikai atsevišķi glabātavas vienumi, kas ir saistīti ar $EMAIL$. Apvienības glabātavas vienumi netiks iekļauti. Tiks izgūta tikai glabātavas vienumu informācija, un saistītie pielikumi netiks iekļauti.",
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Izgūst apvienības glabātavu"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Tiks izgūta tikai apvienības glabātava, kas ir saistīta ar $ORGANIZATION$. Atsevišķu glabātavu vai citu apvienību vienumi netiks iekļauti.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Kļūda"
   },
@@ -2907,7 +2949,7 @@
     "message": "Kļūda izguves datnes atšifrēšanā. Izmantotā atslēga neatbilst tai, kas tika izmantota satura izgūšanai."
   },
   "invalidFilePassword": {
-    "message": "Nederīga datnes parole, lūgums izmantot to paroli, kas tika ievadīta izdošanas datnes izveidošanas brīdī."
+    "message": "Nederīga datnes parole, lūgums izmantot to paroli, kas tika ievadīta izgūšanas datnes izveidošanas brīdī."
   },
   "importDestination": {
     "message": "Ievietošanas galamērķis"
diff --git a/apps/browser/src/_locales/ml/messages.json b/apps/browser/src/_locales/ml/messages.json
index fba3e5486a5..d2a9b2db389 100644
--- a/apps/browser/src/_locales/ml/messages.json
+++ b/apps/browser/src/_locales/ml/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "വാൾട് എക്സ്പോർട്"
   },
   "fileFormat": {
     "message": "ഫയൽ ഫോർമാറ്റ്"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "മുന്നറിയിപ്പ്",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/mr/messages.json b/apps/browser/src/_locales/mr/messages.json
index fe984cb8302..6407be2c68d 100644
--- a/apps/browser/src/_locales/mr/messages.json
+++ b/apps/browser/src/_locales/mr/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "WARNING",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/my/messages.json b/apps/browser/src/_locales/my/messages.json
index 64f3623b5af..c3f03166b25 100644
--- a/apps/browser/src/_locales/my/messages.json
+++ b/apps/browser/src/_locales/my/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "WARNING",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/nb/messages.json b/apps/browser/src/_locales/nb/messages.json
index 6993e1f648c..d2feb8798e5 100644
--- a/apps/browser/src/_locales/nb/messages.json
+++ b/apps/browser/src/_locales/nb/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Lås opp"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Vis alternativer for kontekstmeny"
   },
@@ -799,12 +802,39 @@
     "message": "Solarisert mørk",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Eksporter hvelvet"
   },
   "fileFormat": {
     "message": "Filformat"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "ADVARSEL",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Feil"
   },
diff --git a/apps/browser/src/_locales/ne/messages.json b/apps/browser/src/_locales/ne/messages.json
index 64f3623b5af..c3f03166b25 100644
--- a/apps/browser/src/_locales/ne/messages.json
+++ b/apps/browser/src/_locales/ne/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "WARNING",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/nl/messages.json b/apps/browser/src/_locales/nl/messages.json
index 36a8ad9470a..07c69ec596c 100644
--- a/apps/browser/src/_locales/nl/messages.json
+++ b/apps/browser/src/_locales/nl/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Ontgrendelen"
   },
+  "additionalOptions": {
+    "message": "Extra instellingen"
+  },
   "enableContextMenuItem": {
     "message": "Contextmenu-opties weergeven"
   },
@@ -799,12 +802,39 @@
     "message": "Overbelicht donker",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Exporteren vanuit"
+  },
   "exportVault": {
     "message": "Kluis exporteren"
   },
   "fileFormat": {
     "message": "Bestandsindeling"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "We beveiligen deze bestandsexport met een wachtwoord beveiligd, je hebt het bestandswachtwoord nodig om het te decoderen."
+  },
+  "filePassword": {
+    "message": "Bestandswachtwoord"
+  },
+  "exportPasswordDescription": {
+    "message": "We gebruiken dit wachtwoord bij het exporteren en importeren van dit bestand"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Gebruik de encryptiesleutel van je account, afgeleid van je gebruikersnaam en hoodfwachtwoord, om de export te versleutelen en importeren te beperken tot het huidige Bitwarden-account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Stel een bestandswachtwoord in om de export te versleutelen en te importeren naar een willekeurig Bitwarden-account met het wachtwoord voor decoderen."
+  },
+  "exportTypeHeading": {
+    "message": "Exporttype"
+  },
+  "accountRestricted": {
+    "message": "Account beperkt"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "\"Bestandswachtwoord\" en \"Bestandswachtwoord bevestigen\" komen niet overeen."
+  },
   "warning": {
     "message": "WAARSCHUWING",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Organisatiekluis exporteren"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Exporteert alleen de organisatiekluis van $ORGANIZATION$. Geen persoonlijke kluis-items of items van andere organisaties.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Fout"
   },
diff --git a/apps/browser/src/_locales/nn/messages.json b/apps/browser/src/_locales/nn/messages.json
index 64f3623b5af..c3f03166b25 100644
--- a/apps/browser/src/_locales/nn/messages.json
+++ b/apps/browser/src/_locales/nn/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "WARNING",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/or/messages.json b/apps/browser/src/_locales/or/messages.json
index 64f3623b5af..c3f03166b25 100644
--- a/apps/browser/src/_locales/or/messages.json
+++ b/apps/browser/src/_locales/or/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "WARNING",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/pl/messages.json b/apps/browser/src/_locales/pl/messages.json
index d5e3940682f..c9959508c95 100644
--- a/apps/browser/src/_locales/pl/messages.json
+++ b/apps/browser/src/_locales/pl/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Odblokuj"
   },
+  "additionalOptions": {
+    "message": "Dodatkowe opcje"
+  },
   "enableContextMenuItem": {
     "message": "Pokaż opcje menu kontekstowego"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized Dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Eksportuj z"
+  },
   "exportVault": {
     "message": "Eksportuj sejf"
   },
   "fileFormat": {
     "message": "Format pliku"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Plik będzie chroniony hasłem, które będzie wymagane do odszyfrowania pliku."
+  },
+  "filePassword": {
+    "message": "Hasło do pliku"
+  },
+  "exportPasswordDescription": {
+    "message": "Hasło będzie używane do eksportowania i importowania pliku"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Użyj klucza szyfrowania konta, pochodzącego z nazwy użytkownika konta i hasła głównego, aby zaszyfrować eksport i ograniczyć import tylko do bieżącego konta Bitwarden."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Ustaw hasło dla pliku, aby zaszyfrować eksport i zaimportować je na dowolne konto Bitwarden przy użyciu hasła do odszyfrowania."
+  },
+  "exportTypeHeading": {
+    "message": "Rodzaj eksportu"
+  },
+  "accountRestricted": {
+    "message": "Konto ograniczone"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“Hasło pliku” i “Potwierdź hasło pliku“ nie pasują do siebie."
+  },
   "warning": {
     "message": "UWAGA",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Eksportowanie sejfu organizacji"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Tylko sejf organizacji powiązany z $ORGANIZATION$ zostanie wyeksportowany. Pozycje w poszczególnych sejfach lub innych organizacji nie będą uwzględnione.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Błąd"
   },
diff --git a/apps/browser/src/_locales/pt_BR/messages.json b/apps/browser/src/_locales/pt_BR/messages.json
index 0a65acf9586..7f247311df6 100644
--- a/apps/browser/src/_locales/pt_BR/messages.json
+++ b/apps/browser/src/_locales/pt_BR/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Desbloquear"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Mostrar opções de menu de contexto"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized (escuro)",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Exportar Cofre"
   },
   "fileFormat": {
     "message": "Formato de arquivo"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "AVISO",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Erro"
   },
diff --git a/apps/browser/src/_locales/pt_PT/messages.json b/apps/browser/src/_locales/pt_PT/messages.json
index 7f4b488fa37..bcbddaff0a2 100644
--- a/apps/browser/src/_locales/pt_PT/messages.json
+++ b/apps/browser/src/_locales/pt_PT/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Desbloquear"
   },
+  "additionalOptions": {
+    "message": "Opções adicionais"
+  },
   "enableContextMenuItem": {
     "message": "Mostrar opções do menu de contexto"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized (escuro)",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Exportar de"
+  },
   "exportVault": {
     "message": "Exportar cofre"
   },
   "fileFormat": {
     "message": "Formato do ficheiro"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "A exportação deste ficheiro será protegida por uma palavra-passe e exigirá a palavra-passe do ficheiro para ser desencriptada."
+  },
+  "filePassword": {
+    "message": "Palavra-passe do ficheiro"
+  },
+  "exportPasswordDescription": {
+    "message": "Esta palavra-passe será utilizada para exportar e importar este ficheiro"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Utilize a chave de encriptação da sua conta, derivada do nome de utilizador e da palavra-passe mestra da sua conta, para encriptar a exportação e restringir a importação apenas à conta Bitwarden atual."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Defina uma palavra-passe do ficheiro para encriptar a exportação e importe-a para qualquer conta Bitwarden utilizando a palavra-passe de desencriptação."
+  },
+  "exportTypeHeading": {
+    "message": "Tipo de exportação"
+  },
+  "accountRestricted": {
+    "message": "Conta restringida"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "\"Palavra-passe do ficheiro\" e \"Confirmar palavra-passe do ficheiro\" não correspondem."
+  },
   "warning": {
     "message": "AVISO",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "A exportar o cofre da organização"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Apenas o cofre da organização associado a $ORGANIZATION$ será exportado. Os itens em cofres individuais ou noutras organizações não serão incluídos.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Erro"
   },
diff --git a/apps/browser/src/_locales/ro/messages.json b/apps/browser/src/_locales/ro/messages.json
index 7c5cd8a3acd..a9dae9496b6 100644
--- a/apps/browser/src/_locales/ro/messages.json
+++ b/apps/browser/src/_locales/ro/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Deblocare"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Afișați opțiunile meniului contextual"
   },
@@ -799,12 +802,39 @@
     "message": "Întuneric solarizat",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export seif"
   },
   "fileFormat": {
     "message": "Format fișier"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "AVERTISMENT",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Eroare"
   },
diff --git a/apps/browser/src/_locales/ru/messages.json b/apps/browser/src/_locales/ru/messages.json
index cbabda5066a..438a04e9639 100644
--- a/apps/browser/src/_locales/ru/messages.json
+++ b/apps/browser/src/_locales/ru/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Разблокировать"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Показать опции контекстного меню"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Экспорт из"
+  },
   "exportVault": {
     "message": "Экспорт хранилища"
   },
   "fileFormat": {
     "message": "Формат файла"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Экспорт этого файла будет защищен паролем, и для расшифровки потребуется пароль файла."
+  },
+  "filePassword": {
+    "message": "Пароль к файлу"
+  },
+  "exportPasswordDescription": {
+    "message": "Этот пароль будет использоваться для экспорта и импорта этого файла"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Использовать ключ шифрования вашего аккаунта, полученный из имени пользователя и мастер-пароля, для шифрования экспорта и ограничения импорта только для текущего аккаунта Bitwarden."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Установите пароль файла для шифрования экспорта и импортируйте его в любую учетную запись Bitwarden, используя пароль для расшифровки."
+  },
+  "exportTypeHeading": {
+    "message": "Тип экспорта"
+  },
+  "accountRestricted": {
+    "message": "Ограничено аккаунтом"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "\"Пароль к файлу\" и \"Подтверждение пароля к файлу\" не совпадают."
+  },
   "warning": {
     "message": "ВНИМАНИЕ",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Экспорт хранилища организации"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Будет экспортировано только хранилище организации, связанное с $ORGANIZATION$. Элементы из личных хранилищ и из других организаций включены не будут.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Ошибка"
   },
diff --git a/apps/browser/src/_locales/si/messages.json b/apps/browser/src/_locales/si/messages.json
index b9078c4c0f8..9fa1bb2339c 100644
--- a/apps/browser/src/_locales/si/messages.json
+++ b/apps/browser/src/_locales/si/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "අඳුරු අඳුරු",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "අපනයන සුරක්ෂිතාගාරය"
   },
   "fileFormat": {
     "message": "ගොනු ආකෘතිය"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "අවවාදයයි",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/sk/messages.json b/apps/browser/src/_locales/sk/messages.json
index 63bc7a317c0..b9d7ec78cda 100644
--- a/apps/browser/src/_locales/sk/messages.json
+++ b/apps/browser/src/_locales/sk/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Odomknúť"
   },
+  "additionalOptions": {
+    "message": "Ďalšie možnosti"
+  },
   "enableContextMenuItem": {
     "message": "Zobraziť možnosti kontextovej ponuky"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized –⁠ tmavý",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Exportovať z"
+  },
   "exportVault": {
     "message": "Export trezoru"
   },
   "fileFormat": {
     "message": "Formát Súboru"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "Tento exportovaný súbor bude chránený heslom a na dešifrovanie bude potrebné heslo súboru."
+  },
+  "filePassword": {
+    "message": "Heslo súboru"
+  },
+  "exportPasswordDescription": {
+    "message": "Toto heslo sa použije na export a import tohto súboru"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Na zašifrovanie exportu a obmedzenie importu len na aktuálny účet Bitwarden použite šifrovací kľúč účtu odvodený z používateľského mena a hlavného hesla účtu."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Nastavte heslo súboru na zašifrovanie exportu a importujte ho do akéhokoľvek účtu Bitwarden pomocou hesla na dešifrovanie."
+  },
+  "exportTypeHeading": {
+    "message": "Typ exportu"
+  },
+  "accountRestricted": {
+    "message": "Obmedzený účet"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "\"Heslo súboru\" a \"Potvrdiť heslo súboru\" sa nezhodujú."
+  },
   "warning": {
     "message": "UPOZORNENIE",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exportovanie trezora organizácie"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Exportované budú iba položky trezora organizácie spojené s $ORGANIZATION$. Položky osobného trezora a položky z iných organizácií nebudú zahrnuté.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Chyba"
   },
diff --git a/apps/browser/src/_locales/sl/messages.json b/apps/browser/src/_locales/sl/messages.json
index c12a31436fd..7333c0d91cc 100644
--- a/apps/browser/src/_locales/sl/messages.json
+++ b/apps/browser/src/_locales/sl/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Prikaži možnosti kontekstnega menuja"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Izvoz trezorja"
   },
   "fileFormat": {
     "message": "Format datoteke"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "OPOZORILO",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Napaka"
   },
diff --git a/apps/browser/src/_locales/sr/messages.json b/apps/browser/src/_locales/sr/messages.json
index 941b38132a4..3d15f246499 100644
--- a/apps/browser/src/_locales/sr/messages.json
+++ b/apps/browser/src/_locales/sr/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Откључај"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Прикажи контекстни мени"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized црно",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Извоз сефа"
   },
   "fileFormat": {
     "message": "Формат датотеке"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "УПОЗОРЕЊЕ",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Грешка"
   },
diff --git a/apps/browser/src/_locales/sv/messages.json b/apps/browser/src/_locales/sv/messages.json
index 585d8e2d9a0..210f2358e04 100644
--- a/apps/browser/src/_locales/sv/messages.json
+++ b/apps/browser/src/_locales/sv/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Lås upp"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Visa alternativ för snabbmenyn"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized mörk",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Exportera valv"
   },
   "fileFormat": {
     "message": "Filformat"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "VARNING",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Fel"
   },
diff --git a/apps/browser/src/_locales/te/messages.json b/apps/browser/src/_locales/te/messages.json
index 64f3623b5af..c3f03166b25 100644
--- a/apps/browser/src/_locales/te/messages.json
+++ b/apps/browser/src/_locales/te/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Show context menu options"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export vault"
   },
   "fileFormat": {
     "message": "File format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "WARNING",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/th/messages.json b/apps/browser/src/_locales/th/messages.json
index bd708d0d6e4..f6fc2f4c1de 100644
--- a/apps/browser/src/_locales/th/messages.json
+++ b/apps/browser/src/_locales/th/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Unlock"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "แสดงตัวเลือกเมนูบริบท"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized Dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Export Vault"
   },
   "fileFormat": {
     "message": "File Format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "คำเตือน",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Error"
   },
diff --git a/apps/browser/src/_locales/tr/messages.json b/apps/browser/src/_locales/tr/messages.json
index 596e779913a..4bee651cdbe 100644
--- a/apps/browser/src/_locales/tr/messages.json
+++ b/apps/browser/src/_locales/tr/messages.json
@@ -185,7 +185,7 @@
     "message": "Tarayıcınızın uzantı sitesine gitmek ister misiniz?"
   },
   "continueToBrowserExtensionStoreDesc": {
-    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+    "message": "Bitwarden'ı başkalarına da tanımak ister misiniz? Tarayıcınızın uzantı mağazasını ziyaret edip Bitwarden'ı değerlendirin."
   },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Ana parolanızı Bitwarden web uygulamasında değiştirebilirsiniz."
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Kilidi aç"
   },
+  "additionalOptions": {
+    "message": "Ek seçenekler"
+  },
   "enableContextMenuItem": {
     "message": "Bağlam menüsü seçeneklerini göster"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized koyu",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Kasayı dışa aktar"
   },
   "fileFormat": {
     "message": "Dosya biçimi"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "Dosya parolası"
+  },
+  "exportPasswordDescription": {
+    "message": "Bu parola, bu dosyayı dışa ve içe aktarmak için kullanılacaktır"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Dışa aktarmayı şifrelemek ve içe aktarmayı yalnızca mevcut Bitwarden hesabıyla kısıtlamak için, hesabınızın kullanıcı adı ve ana parolasından türetilen hesap şifreleme anahtarınızı kullanın."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Dışa aktardığınız dosyayı şifrelemek ve bir Bitwarden hesabına içe aktarmak için kullanacağınız parolayı belirleyin."
+  },
+  "exportTypeHeading": {
+    "message": "Dışa aktarma türü"
+  },
+  "accountRestricted": {
+    "message": "Hesap kısıtlı"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "\"Dosya parolası\" ile \"Dosya parolasını onaylayın\" eşleşmiyor."
+  },
   "warning": {
     "message": "UYARI",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Kuruluş kasasını dışa aktarma"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Hata"
   },
@@ -2548,7 +2590,7 @@
     "message": "Creating account on"
   },
   "checkYourEmail": {
-    "message": "Check your email"
+    "message": "E-postanızı kontrol edin"
   },
   "followTheLinkInTheEmailSentTo": {
     "message": "Follow the link in the email sent to"
@@ -2560,10 +2602,10 @@
     "message": "No email?"
   },
   "goBack": {
-    "message": "Go back"
+    "message": "Geri dönüp"
   },
   "toEditYourEmailAddress": {
-    "message": "to edit your email address."
+    "message": "e-posta adresinizi düzenleyin."
   },
   "eu": {
     "message": "AB",
diff --git a/apps/browser/src/_locales/uk/messages.json b/apps/browser/src/_locales/uk/messages.json
index 43861e99e93..571206dbb81 100644
--- a/apps/browser/src/_locales/uk/messages.json
+++ b/apps/browser/src/_locales/uk/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Розблокувати"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Показувати в контекстному меню"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized темна",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Експортувати сховище"
   },
   "fileFormat": {
     "message": "Формат файлу"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "ПОПЕРЕДЖЕННЯ",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Помилка"
   },
diff --git a/apps/browser/src/_locales/vi/messages.json b/apps/browser/src/_locales/vi/messages.json
index 3d6bd434b1a..c8469e97dc6 100644
--- a/apps/browser/src/_locales/vi/messages.json
+++ b/apps/browser/src/_locales/vi/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "Mở khóa"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "Hiển thị tuỳ chọn menu ngữ cảnh"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized Dark",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "Xuất kho lưu trữ"
   },
   "fileFormat": {
     "message": "File Format"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "CẢNH BÁO",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "Lỗi"
   },
diff --git a/apps/browser/src/_locales/zh_CN/messages.json b/apps/browser/src/_locales/zh_CN/messages.json
index f8464f892f8..76181730097 100644
--- a/apps/browser/src/_locales/zh_CN/messages.json
+++ b/apps/browser/src/_locales/zh_CN/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "解锁​​​​"
   },
+  "additionalOptions": {
+    "message": "附加选项"
+  },
   "enableContextMenuItem": {
     "message": "显示上下文菜单选项"
   },
@@ -799,12 +802,39 @@
     "message": "过曝暗",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "导出自"
+  },
   "exportVault": {
     "message": "导出密码库"
   },
   "fileFormat": {
     "message": "文件格式"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "此文件导出将受密码保护，需要文件密码才能解密。"
+  },
+  "filePassword": {
+    "message": "文件密码"
+  },
+  "exportPasswordDescription": {
+    "message": "此密码将用于导出和导入此文件"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "使用衍生自您账户的用户名和主密码的加密密钥，以加密此导出并限制只能导入到当前的 Bitwarden 账户。"
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "设置一个密码用来加密导出的数据，并使用此密码解密以导入到任意 Bitwarden 账户。"
+  },
+  "exportTypeHeading": {
+    "message": "导出类型"
+  },
+  "accountRestricted": {
+    "message": "账户受限"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "「文件密码」与「确认文件密码」不一致。"
+  },
   "warning": {
     "message": "警告",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "正在导出组织密码库"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "仅会导出与 $ORGANIZATION$ 关联的组织密码库数据。不包括个人密码库和其他组织中的项目。",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "错误"
   },
diff --git a/apps/browser/src/_locales/zh_TW/messages.json b/apps/browser/src/_locales/zh_TW/messages.json
index a3a7bbfb686..79d8b51382e 100644
--- a/apps/browser/src/_locales/zh_TW/messages.json
+++ b/apps/browser/src/_locales/zh_TW/messages.json
@@ -762,6 +762,9 @@
   "notificationUnlock": {
     "message": "解鎖"
   },
+  "additionalOptions": {
+    "message": "Additional options"
+  },
   "enableContextMenuItem": {
     "message": "顯示內容選單選項"
   },
@@ -799,12 +802,39 @@
     "message": "Solarized Dark 主題",
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
+  "exportFrom": {
+    "message": "Export from"
+  },
   "exportVault": {
     "message": "匯出密碼庫"
   },
   "fileFormat": {
     "message": "檔案格式"
   },
+  "fileEncryptedExportWarningDesc": {
+    "message": "This file export will be password protected and require the file password to decrypt."
+  },
+  "filePassword": {
+    "message": "File password"
+  },
+  "exportPasswordDescription": {
+    "message": "This password will be used to export and import this file"
+  },
+  "accountRestrictedOptionDescription": {
+    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+  },
+  "passwordProtectedOptionDescription": {
+    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+  },
+  "exportTypeHeading": {
+    "message": "Export type"
+  },
+  "accountRestricted": {
+    "message": "Account restricted"
+  },
+  "filePasswordAndConfirmFilePasswordDoNotMatch": {
+    "message": "“File password”  and “Confirm file password“ do not match."
+  },
   "warning": {
     "message": "警告",
     "description": "WARNING (should stay in capitalized letters if the language permits)"
@@ -2182,6 +2212,18 @@
       }
     }
   },
+  "exportingOrganizationVaultTitle": {
+    "message": "Exporting organization vault"
+  },
+  "exportingOrganizationVaultDesc": {
+    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "placeholders": {
+      "organization": {
+        "content": "$1",
+        "example": "ACME Moving Co."
+      }
+    }
+  },
   "error": {
     "message": "錯誤"
   },

From 4798cd0a95dc9f437f271e5b08c0cb6270110c1a Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Fri, 31 May 2024 06:31:47 +0000
Subject: [PATCH 052/138] Autosync the updated translations (#9450)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/web/src/locales/zh_CN/messages.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/web/src/locales/zh_CN/messages.json b/apps/web/src/locales/zh_CN/messages.json
index 7bc150dd9b9..7196fa26e34 100644
--- a/apps/web/src/locales/zh_CN/messages.json
+++ b/apps/web/src/locales/zh_CN/messages.json
@@ -582,7 +582,7 @@
     "message": "访问权限等级"
   },
   "accessing": {
-    "message": "Accessing"
+    "message": "访问中"
   },
   "loggedOut": {
     "message": "已注销"

From f3e780a6787458d540422a694e4209d5163fa5c3 Mon Sep 17 00:00:00 2001
From: Bitwarden DevOps
 <106330231+bitwarden-devops-bot@users.noreply.github.com>
Date: Fri, 31 May 2024 10:30:37 -0400
Subject: [PATCH 053/138] Bumped client version(s) (#9458)

---
 apps/browser/package.json         | 2 +-
 apps/browser/src/manifest.json    | 2 +-
 apps/browser/src/manifest.v3.json | 2 +-
 package-lock.json                 | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/apps/browser/package.json b/apps/browser/package.json
index 25912c4832f..14c1ed6b1db 100644
--- a/apps/browser/package.json
+++ b/apps/browser/package.json
@@ -1,6 +1,6 @@
 {
   "name": "@bitwarden/browser",
-  "version": "2024.5.1",
+  "version": "2024.5.2",
   "scripts": {
     "build": "cross-env MANIFEST_VERSION=3 webpack",
     "build:mv2": "webpack",
diff --git a/apps/browser/src/manifest.json b/apps/browser/src/manifest.json
index 0c1bd2905ad..ab81bd7686c 100644
--- a/apps/browser/src/manifest.json
+++ b/apps/browser/src/manifest.json
@@ -2,7 +2,7 @@
   "manifest_version": 2,
   "name": "__MSG_extName__",
   "short_name": "__MSG_appName__",
-  "version": "2024.5.1",
+  "version": "2024.5.2",
   "description": "__MSG_extDesc__",
   "default_locale": "en",
   "author": "Bitwarden Inc.",
diff --git a/apps/browser/src/manifest.v3.json b/apps/browser/src/manifest.v3.json
index 952396758df..b3967d6b04a 100644
--- a/apps/browser/src/manifest.v3.json
+++ b/apps/browser/src/manifest.v3.json
@@ -3,7 +3,7 @@
   "minimum_chrome_version": "102.0",
   "name": "__MSG_extName__",
   "short_name": "__MSG_appName__",
-  "version": "2024.5.1",
+  "version": "2024.5.2",
   "description": "__MSG_extDesc__",
   "default_locale": "en",
   "author": "Bitwarden Inc.",
diff --git a/package-lock.json b/package-lock.json
index ee7ccb13cdc..856972271e6 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -197,7 +197,7 @@
     },
     "apps/browser": {
       "name": "@bitwarden/browser",
-      "version": "2024.5.1"
+      "version": "2024.5.2"
     },
     "apps/cli": {
       "name": "@bitwarden/cli",

From b784fe75933efa9104421a94c5e5692d864a55bf Mon Sep 17 00:00:00 2001
From: Oscar Hinton <Hinton@users.noreply.github.com>
Date: Fri, 31 May 2024 17:30:34 +0200
Subject: [PATCH 054/138] Remove unused dependency `@tsconfig/node16` (#9429)

I was reviewing node related dependencies, and @tsconfig/node16 references node16. Since it's unused it's better to remove it than upgrading it.
---
 apps/desktop/native-messaging-test-runner/package-lock.json | 1 -
 apps/desktop/native-messaging-test-runner/package.json      | 1 -
 2 files changed, 2 deletions(-)

diff --git a/apps/desktop/native-messaging-test-runner/package-lock.json b/apps/desktop/native-messaging-test-runner/package-lock.json
index 747d8ec9811..3e29d658160 100644
--- a/apps/desktop/native-messaging-test-runner/package-lock.json
+++ b/apps/desktop/native-messaging-test-runner/package-lock.json
@@ -18,7 +18,6 @@
         "yargs": "17.7.2"
       },
       "devDependencies": {
-        "@tsconfig/node16": "1.0.4",
         "@types/node": "18.19.29",
         "@types/node-ipc": "9.2.3",
         "typescript": "4.7.4"
diff --git a/apps/desktop/native-messaging-test-runner/package.json b/apps/desktop/native-messaging-test-runner/package.json
index 72b2587a4ae..b538834ccb2 100644
--- a/apps/desktop/native-messaging-test-runner/package.json
+++ b/apps/desktop/native-messaging-test-runner/package.json
@@ -23,7 +23,6 @@
     "yargs": "17.7.2"
   },
   "devDependencies": {
-    "@tsconfig/node16": "1.0.4",
     "@types/node": "18.19.29",
     "@types/node-ipc": "9.2.3",
     "typescript": "4.7.4"

From 0e7ed8dd7f8030fd048e54bb9639647984595c4f Mon Sep 17 00:00:00 2001
From: Justin Baur <19896123+justindbaur@users.noreply.github.com>
Date: Fri, 31 May 2024 12:10:23 -0400
Subject: [PATCH 055/138] [PM-8210] Discourage Active User in `CryptoService`
 (#9364)

* Add Helper For Preparing a Record For Use in `forkJoin`

* Update & Test CryptoService Changes

* Delete Unused Code

* Update DeviceTrustService

* Update CipherService

* Make `userPublicKey$` Public

* Rename convertValues File

* Update libs/common/src/platform/abstractions/crypto.service.ts

Co-authored-by: Andreas Coroiu <acoroiu@bitwarden.com>

* Add `convertValues` Tests

* Add Doc Comments

* Convert to `function`'s

Co-authored-by: Andreas Coroiu <acoroiu@bitwarden.com>

* Fix Test Typos

* Add param doc

* Update Test Name

* Add `@throws` Docs

---------

Co-authored-by: Andreas Coroiu <acoroiu@bitwarden.com>
---
 .../device-trust.service.implementation.ts    |   2 +-
 .../services/device-trust.service.spec.ts     |   6 +-
 .../platform/abstractions/crypto.service.ts   | 116 ++++--
 .../src/platform/misc/convert-values.spec.ts  |  74 ++++
 .../src/platform/misc/convert-values.ts       |  23 ++
 .../platform/services/crypto.service.spec.ts  | 336 ++++++++++++++++-
 .../src/platform/services/crypto.service.ts   | 354 ++++++++++++------
 .../services/key-state/org-keys.state.spec.ts |  91 +----
 .../services/key-state/org-keys.state.ts      |  47 +--
 .../key-state/provider-keys.state.spec.ts     |  59 +--
 .../services/key-state/provider-keys.state.ts |  36 +-
 .../services/key-state/user-key.state.spec.ts |  86 +----
 .../services/key-state/user-key.state.ts      |  43 +--
 .../src/vault/services/cipher.service.ts      |  26 +-
 14 files changed, 799 insertions(+), 500 deletions(-)
 create mode 100644 libs/common/src/platform/misc/convert-values.spec.ts
 create mode 100644 libs/common/src/platform/misc/convert-values.ts

diff --git a/libs/common/src/auth/services/device-trust.service.implementation.ts b/libs/common/src/auth/services/device-trust.service.implementation.ts
index dd98ce2b446..242a7480958 100644
--- a/libs/common/src/auth/services/device-trust.service.implementation.ts
+++ b/libs/common/src/auth/services/device-trust.service.implementation.ts
@@ -175,7 +175,7 @@ export class DeviceTrustService implements DeviceTrustServiceAbstraction {
     }
 
     // At this point of rotating their keys, they should still have their old user key in state
-    const oldUserKey = await firstValueFrom(this.cryptoService.activeUserKey$);
+    const oldUserKey = await firstValueFrom(this.cryptoService.userKey$(userId));
 
     const deviceIdentifier = await this.appIdService.getAppId();
     const secretVerificationRequest = new SecretVerificationRequest();
diff --git a/libs/common/src/auth/services/device-trust.service.spec.ts b/libs/common/src/auth/services/device-trust.service.spec.ts
index f61bce563f3..1527870cb49 100644
--- a/libs/common/src/auth/services/device-trust.service.spec.ts
+++ b/libs/common/src/auth/services/device-trust.service.spec.ts
@@ -595,7 +595,7 @@ describe("deviceTrustService", () => {
         const fakeNewUserKeyData = new Uint8Array(64);
         fakeNewUserKeyData.fill(FakeNewUserKeyMarker, 0, 1);
         fakeNewUserKey = new SymmetricCryptoKey(fakeNewUserKeyData) as UserKey;
-        cryptoService.activeUserKey$ = of(fakeNewUserKey);
+        cryptoService.userKey$.mockReturnValue(of(fakeNewUserKey));
       });
 
       it("throws an error when a null user id is passed in", async () => {
@@ -631,7 +631,9 @@ describe("deviceTrustService", () => {
           fakeOldUserKeyData.fill(FakeOldUserKeyMarker, 0, 1);
 
           // Mock the retrieval of a user key that differs from the new one passed into the method
-          cryptoService.activeUserKey$ = of(new SymmetricCryptoKey(fakeOldUserKeyData) as UserKey);
+          cryptoService.userKey$.mockReturnValue(
+            of(new SymmetricCryptoKey(fakeOldUserKeyData) as UserKey),
+          );
 
           appIdService.getAppId.mockResolvedValue("test_device_identifier");
 
diff --git a/libs/common/src/platform/abstractions/crypto.service.ts b/libs/common/src/platform/abstractions/crypto.service.ts
index 7d59afb8bd7..c2ecec6a098 100644
--- a/libs/common/src/platform/abstractions/crypto.service.ts
+++ b/libs/common/src/platform/abstractions/crypto.service.ts
@@ -4,16 +4,43 @@ import { ProfileOrganizationResponse } from "../../admin-console/models/response
 import { ProfileProviderOrganizationResponse } from "../../admin-console/models/response/profile-provider-organization.response";
 import { ProfileProviderResponse } from "../../admin-console/models/response/profile-provider.response";
 import { KdfConfig } from "../../auth/models/domain/kdf-config";
-import { OrganizationId, ProviderId, UserId } from "../../types/guid";
-import { UserKey, MasterKey, OrgKey, ProviderKey, CipherKey } from "../../types/key";
+import { OrganizationId, UserId } from "../../types/guid";
+import {
+  UserKey,
+  MasterKey,
+  OrgKey,
+  ProviderKey,
+  CipherKey,
+  UserPrivateKey,
+  UserPublicKey,
+} from "../../types/key";
 import { KeySuffixOptions, HashPurpose } from "../enums";
 import { EncArrayBuffer } from "../models/domain/enc-array-buffer";
 import { EncString } from "../models/domain/enc-string";
 import { SymmetricCryptoKey } from "../models/domain/symmetric-crypto-key";
 
-export abstract class CryptoService {
-  abstract activeUserKey$: Observable<UserKey>;
+/**
+ * An object containing all the users key needed to decrypt a users personal and organization vaults.
+ */
+export type CipherDecryptionKeys = {
+  /**
+   * A users {@link UserKey} that is useful for decrypted ciphers in the users personal vault.
+   */
+  userKey: UserKey;
 
+  /**
+   * A users decrypted organization keys.
+   */
+  orgKeys: Record<OrganizationId, OrgKey>;
+};
+
+export abstract class CryptoService {
+  /**
+   * Retrieves a stream of the given users {@see UserKey} values. Can emit null if the user does not have a user key, e.g. the user
+   * is in a locked or logged out state.
+   * @param userId The user id of the user to get the {@see UserKey} for.
+   */
+  abstract userKey$(userId: UserId): Observable<UserKey>;
   /**
    * Returns the an observable key for the given user id.
    *
@@ -46,6 +73,8 @@ export abstract class CryptoService {
    * Retrieves the user key
    * @param userId The desired user
    * @returns The user key
+   *
+   * @deprecated Use {@link userKey$} with a required {@link UserId} instead.
    */
   abstract getUserKey(userId?: string): Promise<UserKey>;
 
@@ -174,19 +203,20 @@ export abstract class CryptoService {
     providerOrgs: ProfileProviderOrganizationResponse[],
     userId: UserId,
   ): Promise<void>;
+  /**
+   * Retrieves a stream of the active users organization keys,
+   * will NOT emit any value if there is no active user.
+   *
+   * @deprecated Use {@link orgKeys$} with a required {@link UserId} instead.
+   */
   abstract activeUserOrgKeys$: Observable<Record<OrganizationId, OrgKey>>;
   /**
    * Returns the organization's symmetric key
-   * @deprecated Use the observable activeUserOrgKeys$ and `map` to the desired orgKey instead
+   * @deprecated Use the observable userOrgKeys$ and `map` to the desired {@link OrgKey} instead
    * @param orgId The desired organization
    * @returns The organization's symmetric key
    */
   abstract getOrgKey(orgId: string): Promise<OrgKey>;
-  /**
-   * @deprecated Use the observable activeUserOrgKeys$ instead
-   * @returns A record of the organization Ids to their symmetric keys
-   */
-  abstract getOrgKeys(): Promise<Record<string, SymmetricCryptoKey>>;
   /**
    * Uses the org key to derive a new symmetric key for encrypting data
    * @param orgKey The organization's symmetric key
@@ -194,12 +224,6 @@ export abstract class CryptoService {
   abstract makeDataEncKey<T extends UserKey | OrgKey>(
     key: T,
   ): Promise<[SymmetricCryptoKey, EncString]>;
-  /**
-   * Stores the encrypted provider keys and clears any decrypted
-   * provider keys currently in memory
-   * @param providers The providers to set keys for
-   */
-  abstract activeUserProviderKeys$: Observable<Record<ProviderId, ProviderKey>>;
 
   /**
    * Stores the provider keys for a given user.
@@ -212,16 +236,6 @@ export abstract class CryptoService {
    * @returns The provider's symmetric key
    */
   abstract getProviderKey(providerId: string): Promise<ProviderKey>;
-  /**
-   * @returns A record of the provider Ids to their symmetric keys
-   */
-  abstract getProviderKeys(): Promise<Record<ProviderId, ProviderKey>>;
-  /**
-   * Returns the public key from memory. If not available, extracts it
-   * from the private key and stores it in memory
-   * @returns The user's public key
-   */
-  abstract getPublicKey(): Promise<Uint8Array>;
   /**
    * Creates a new organization key and encrypts it with the user's public key.
    * This method can also return Provider keys for creating new Provider users.
@@ -239,8 +253,22 @@ export abstract class CryptoService {
    * Returns the private key from memory. If not available, decrypts it
    * from storage and stores it in memory
    * @returns The user's private key
+   *
+   * @throws An error if there is no user currently active.
+   *
+   * @deprecated Use {@link userPrivateKey$} instead.
    */
   abstract getPrivateKey(): Promise<Uint8Array>;
+
+  /**
+   * Gets an observable stream of the given users decrypted private key, will emit null if the user
+   * doesn't have a UserKey to decrypt the encrypted private key or null if the user doesn't have an
+   * encrypted private key at all.
+   *
+   * @param userId The user id of the user to get the data for.
+   */
+  abstract userPrivateKey$(userId: UserId): Observable<UserPrivateKey>;
+
   /**
    * Generates a fingerprint phrase for the user based on their public key
    * @param fingerprintMaterial Fingerprint material
@@ -300,6 +328,8 @@ export abstract class CryptoService {
    * Initialize all necessary crypto keys needed for a new account.
    * Warning! This completely replaces any existing keys!
    * @returns The user's newly created  public key, private key, and encrypted private key
+   *
+   * @throws An error if there is no user currently active.
    */
   abstract initAccount(): Promise<{
     userKey: UserKey;
@@ -345,4 +375,38 @@ export abstract class CryptoService {
     encBuffer: EncArrayBuffer,
     key: SymmetricCryptoKey,
   ): Promise<Uint8Array>;
+
+  /**
+   * Retrieves all the keys needed for decrypting Ciphers
+   * @param userId The user id of the keys to retrieve or null if the user is not Unlocked
+   * @param legacySupport `true` if you need to support retrieving the legacy version of the users key, `false` if
+   * you do not need legacy support. Use `true` by necessity only. Defaults to `false`. Legacy support is for users
+   * that may not have updated to use the new {@link UserKey} yet.
+   *
+   * @throws If an invalid user id is passed in.
+   */
+  abstract cipherDecryptionKeys$(
+    userId: UserId,
+    legacySupport?: boolean,
+  ): Observable<CipherDecryptionKeys | null>;
+
+  /**
+   * Gets an observable of org keys for the given user.
+   * @param userId The user id of the user of which to get the keys for.
+   * @return An observable stream of the users organization keys if they are unlocked, or null if the user is not unlocked.
+   * The observable will stay alive through locks/unlocks.
+   *
+   * @throws If an invalid user id is passed in.
+   */
+  abstract orgKeys$(userId: UserId): Observable<Record<OrganizationId, OrgKey> | null>;
+
+  /**
+   * Gets an observable stream of the users public key. If the user is does not have
+   * a {@link UserKey} or {@link UserPrivateKey} that is decryptable, this will emit null.
+   *
+   * @param userId The user id of the user of which to get the public key for.
+   *
+   * @throws If an invalid user id is passed in.
+   */
+  abstract userPublicKey$(userId: UserId): Observable<UserPublicKey>;
 }
diff --git a/libs/common/src/platform/misc/convert-values.spec.ts b/libs/common/src/platform/misc/convert-values.spec.ts
new file mode 100644
index 00000000000..61e98635c65
--- /dev/null
+++ b/libs/common/src/platform/misc/convert-values.spec.ts
@@ -0,0 +1,74 @@
+import { forkJoin, lastValueFrom, of, switchMap } from "rxjs";
+
+import { convertValues } from "./convert-values";
+
+describe("convertValues", () => {
+  it("returns null if given null", async () => {
+    const output = await lastValueFrom(
+      of<Record<string, number>>(null).pipe(convertValues((k, v) => of(v + 1))),
+    );
+
+    expect(output).toEqual(null);
+  });
+
+  it("returns empty record if given empty record", async () => {
+    const output = await lastValueFrom(
+      of<Record<string, number>>({}).pipe(convertValues((k, v) => of(v + 1))),
+    );
+
+    expect(output).toEqual({});
+  });
+
+  const cases: { it: string; input: Record<string, number>; output: Record<string, number> }[] = [
+    {
+      it: "converts single entry to observable",
+      input: {
+        one: 1,
+      },
+      output: {
+        one: 2,
+      },
+    },
+    {
+      it: "converts multiple entries to observable",
+      input: {
+        one: 1,
+        two: 2,
+        three: 3,
+      },
+      output: {
+        one: 2,
+        two: 3,
+        three: 4,
+      },
+    },
+  ];
+
+  it.each(cases)("$it", async ({ input, output: expectedOutput }) => {
+    const output = await lastValueFrom(
+      of(input).pipe(
+        convertValues((key, value) => of(value + 1)),
+        switchMap((values) => forkJoin(values)),
+      ),
+    );
+
+    expect(output).toEqual(expectedOutput);
+  });
+
+  it("converts async functions to observable", async () => {
+    const output = await lastValueFrom(
+      of({
+        one: 1,
+        two: 2,
+      }).pipe(
+        convertValues(async (key, value) => await Promise.resolve(value + 1)),
+        switchMap((values) => forkJoin(values)),
+      ),
+    );
+
+    expect(output).toEqual({
+      one: 2,
+      two: 3,
+    });
+  });
+});
diff --git a/libs/common/src/platform/misc/convert-values.ts b/libs/common/src/platform/misc/convert-values.ts
new file mode 100644
index 00000000000..7a1087ec360
--- /dev/null
+++ b/libs/common/src/platform/misc/convert-values.ts
@@ -0,0 +1,23 @@
+import { ObservableInput, OperatorFunction, map } from "rxjs";
+
+/**
+ * Converts a record of keys and values into a record preserving the original key and converting each value into an {@link ObservableInput}.
+ * @param project A function to project a given key and value pair into an {@link ObservableInput}
+ */
+export function convertValues<TKey extends PropertyKey, TInput, TOutput>(
+  project: (key: TKey, value: TInput) => ObservableInput<TOutput>,
+): OperatorFunction<Record<TKey, TInput>, Record<TKey, ObservableInput<TOutput>>> {
+  return map((inputRecord) => {
+    if (inputRecord == null) {
+      return null;
+    }
+
+    // Can't use TKey in here, have to use `PropertyKey`
+    const result: Record<PropertyKey, ObservableInput<TOutput>> = {};
+    for (const [key, value] of Object.entries(inputRecord) as [TKey, TInput][]) {
+      result[key] = project(key, value);
+    }
+
+    return result;
+  });
+}
diff --git a/libs/common/src/platform/services/crypto.service.spec.ts b/libs/common/src/platform/services/crypto.service.spec.ts
index 8bb12894196..1b88922ca54 100644
--- a/libs/common/src/platform/services/crypto.service.spec.ts
+++ b/libs/common/src/platform/services/crypto.service.spec.ts
@@ -1,15 +1,22 @@
 import { mock } from "jest-mock-extended";
-import { firstValueFrom, of, tap } from "rxjs";
+import { bufferCount, firstValueFrom, lastValueFrom, of, take, tap } from "rxjs";
 
 import { PinServiceAbstraction } from "../../../../auth/src/common/abstractions";
+import {
+  awaitAsync,
+  makeEncString,
+  makeStaticByteArray,
+  makeSymmetricCryptoKey,
+} from "../../../spec";
 import { FakeAccountService, mockAccountServiceWith } from "../../../spec/fake-account-service";
 import { FakeActiveUserState, FakeSingleUserState } from "../../../spec/fake-state";
 import { FakeStateProvider } from "../../../spec/fake-state-provider";
+import { EncryptedOrganizationKeyData } from "../../admin-console/models/data/encrypted-organization-key.data";
 import { KdfConfigService } from "../../auth/abstractions/kdf-config.service";
 import { FakeMasterPasswordService } from "../../auth/services/master-password/fake-master-password.service";
 import { VAULT_TIMEOUT } from "../../services/vault-timeout/vault-timeout-settings.state";
 import { CsprngArray } from "../../types/csprng";
-import { UserId } from "../../types/guid";
+import { OrganizationId, UserId } from "../../types/guid";
 import { UserKey, MasterKey } from "../../types/key";
 import { VaultTimeoutStringType } from "../../types/vault-timeout.type";
 import { CryptoFunctionService } from "../abstractions/crypto-function.service";
@@ -18,8 +25,9 @@ import { KeyGenerationService } from "../abstractions/key-generation.service";
 import { LogService } from "../abstractions/log.service";
 import { PlatformUtilsService } from "../abstractions/platform-utils.service";
 import { StateService } from "../abstractions/state.service";
+import { Encrypted } from "../interfaces/encrypted";
 import { Utils } from "../misc/utils";
-import { EncString } from "../models/domain/enc-string";
+import { EncString, EncryptedString } from "../models/domain/enc-string";
 import { SymmetricCryptoKey } from "../models/domain/symmetric-crypto-key";
 import { CryptoService } from "../services/crypto.service";
 import { UserKeyDefinition } from "../state";
@@ -340,4 +348,326 @@ describe("cryptoService", () => {
       });
     });
   });
+
+  describe("userPrivateKey$", () => {
+    type SetupKeysParams = {
+      makeMasterKey: boolean;
+      makeUserKey: boolean;
+    };
+
+    function setupKeys({ makeMasterKey, makeUserKey }: SetupKeysParams): [UserKey, MasterKey] {
+      const userKeyState = stateProvider.singleUser.getFake(mockUserId, USER_KEY);
+      const fakeMasterKey = makeMasterKey ? makeSymmetricCryptoKey<MasterKey>(64) : null;
+      masterPasswordService.masterKeySubject.next(fakeMasterKey);
+      userKeyState.stateSubject.next([mockUserId, null]);
+      const fakeUserKey = makeUserKey ? makeSymmetricCryptoKey<UserKey>(64) : null;
+      userKeyState.stateSubject.next([mockUserId, fakeUserKey]);
+      return [fakeUserKey, fakeMasterKey];
+    }
+
+    it("will return users decrypted private key when user has a user key and encrypted private key set", async () => {
+      const [userKey] = setupKeys({
+        makeMasterKey: false,
+        makeUserKey: true,
+      });
+
+      const userEncryptedPrivateKeyState = stateProvider.singleUser.getFake(
+        mockUserId,
+        USER_ENCRYPTED_PRIVATE_KEY,
+      );
+
+      const fakeEncryptedUserPrivateKey = makeEncString("1");
+
+      userEncryptedPrivateKeyState.stateSubject.next([
+        mockUserId,
+        fakeEncryptedUserPrivateKey.encryptedString,
+      ]);
+
+      // Decryption of the user private key
+      const fakeDecryptedUserPrivateKey = makeStaticByteArray(10, 1);
+      encryptService.decryptToBytes.mockResolvedValue(fakeDecryptedUserPrivateKey);
+
+      const fakeUserPublicKey = makeStaticByteArray(10, 2);
+      cryptoFunctionService.rsaExtractPublicKey.mockResolvedValue(fakeUserPublicKey);
+
+      const userPrivateKey = await firstValueFrom(cryptoService.userPrivateKey$(mockUserId));
+
+      expect(encryptService.decryptToBytes).toHaveBeenCalledWith(
+        fakeEncryptedUserPrivateKey,
+        userKey,
+      );
+
+      expect(userPrivateKey).toBe(fakeDecryptedUserPrivateKey);
+    });
+
+    it("returns null user private key when no user key is found", async () => {
+      setupKeys({ makeMasterKey: false, makeUserKey: false });
+
+      const userPrivateKey = await firstValueFrom(cryptoService.userPrivateKey$(mockUserId));
+
+      expect(encryptService.decryptToBytes).not.toHaveBeenCalled();
+
+      expect(userPrivateKey).toBeFalsy();
+    });
+
+    it("returns null when user does not have a private key set", async () => {
+      setupKeys({ makeUserKey: true, makeMasterKey: false });
+
+      const encryptedUserPrivateKeyState = stateProvider.singleUser.getFake(
+        mockUserId,
+        USER_ENCRYPTED_PRIVATE_KEY,
+      );
+      encryptedUserPrivateKeyState.stateSubject.next([mockUserId, null]);
+
+      const userPrivateKey = await firstValueFrom(cryptoService.userPrivateKey$(mockUserId));
+      expect(userPrivateKey).toBeFalsy();
+    });
+  });
+
+  describe("cipherDecryptionKeys$", () => {
+    function fakePrivateKeyDecryption(encryptedPrivateKey: Encrypted, key: SymmetricCryptoKey) {
+      const output = new Uint8Array(64);
+      output.set(encryptedPrivateKey.dataBytes);
+      output.set(
+        key.key.subarray(0, 64 - encryptedPrivateKey.dataBytes.length),
+        encryptedPrivateKey.dataBytes.length,
+      );
+      return output;
+    }
+
+    function fakeOrgKeyDecryption(encryptedString: EncString, userPrivateKey: Uint8Array) {
+      const output = new Uint8Array(64);
+      output.set(encryptedString.dataBytes);
+      output.set(
+        userPrivateKey.subarray(0, 64 - encryptedString.dataBytes.length),
+        encryptedString.dataBytes.length,
+      );
+      return output;
+    }
+
+    const org1Id = "org1" as OrganizationId;
+
+    type UpdateKeysParams = {
+      userKey: UserKey;
+      encryptedPrivateKey: EncString;
+      orgKeys: Record<string, EncryptedOrganizationKeyData>;
+      providerKeys: Record<string, EncryptedString>;
+    };
+
+    function updateKeys(keys: Partial<UpdateKeysParams> = {}) {
+      if ("userKey" in keys) {
+        const userKeyState = stateProvider.singleUser.getFake(mockUserId, USER_KEY);
+        userKeyState.stateSubject.next([mockUserId, keys.userKey]);
+      }
+
+      if ("encryptedPrivateKey" in keys) {
+        const userEncryptedPrivateKey = stateProvider.singleUser.getFake(
+          mockUserId,
+          USER_ENCRYPTED_PRIVATE_KEY,
+        );
+        userEncryptedPrivateKey.stateSubject.next([
+          mockUserId,
+          keys.encryptedPrivateKey.encryptedString,
+        ]);
+      }
+
+      if ("orgKeys" in keys) {
+        const orgKeysState = stateProvider.singleUser.getFake(
+          mockUserId,
+          USER_ENCRYPTED_ORGANIZATION_KEYS,
+        );
+        orgKeysState.stateSubject.next([mockUserId, keys.orgKeys]);
+      }
+
+      if ("providerKeys" in keys) {
+        const providerKeysState = stateProvider.singleUser.getFake(
+          mockUserId,
+          USER_ENCRYPTED_PROVIDER_KEYS,
+        );
+        providerKeysState.stateSubject.next([mockUserId, keys.providerKeys]);
+      }
+
+      encryptService.decryptToBytes.mockImplementation((encryptedPrivateKey, userKey) => {
+        // TOOD: Branch between provider and private key?
+        return Promise.resolve(fakePrivateKeyDecryption(encryptedPrivateKey, userKey));
+      });
+
+      encryptService.rsaDecrypt.mockImplementation((data, privateKey) => {
+        return Promise.resolve(fakeOrgKeyDecryption(data, privateKey));
+      });
+    }
+
+    it("returns decryption keys when there are no org or provider keys set", async () => {
+      updateKeys({
+        userKey: makeSymmetricCryptoKey<UserKey>(64),
+        encryptedPrivateKey: makeEncString("privateKey"),
+      });
+
+      const decryptionKeys = await firstValueFrom(cryptoService.cipherDecryptionKeys$(mockUserId));
+
+      expect(decryptionKeys).not.toBeNull();
+      expect(decryptionKeys.userKey).not.toBeNull();
+      expect(decryptionKeys.orgKeys).toEqual({});
+    });
+
+    it("returns decryption keys when there are org keys", async () => {
+      updateKeys({
+        userKey: makeSymmetricCryptoKey<UserKey>(64),
+        encryptedPrivateKey: makeEncString("privateKey"),
+        orgKeys: {
+          [org1Id]: { type: "organization", key: makeEncString("org1Key").encryptedString },
+        },
+      });
+
+      const decryptionKeys = await firstValueFrom(cryptoService.cipherDecryptionKeys$(mockUserId));
+
+      expect(decryptionKeys).not.toBeNull();
+      expect(decryptionKeys.userKey).not.toBeNull();
+      expect(decryptionKeys.orgKeys).not.toBeNull();
+      expect(Object.keys(decryptionKeys.orgKeys)).toHaveLength(1);
+      expect(decryptionKeys.orgKeys[org1Id]).not.toBeNull();
+      const orgKey = decryptionKeys.orgKeys[org1Id];
+      expect(orgKey.keyB64).toContain("org1Key");
+    });
+
+    it("returns decryption keys when there is an empty record for provider keys", async () => {
+      updateKeys({
+        userKey: makeSymmetricCryptoKey<UserKey>(64),
+        encryptedPrivateKey: makeEncString("privateKey"),
+        orgKeys: {
+          [org1Id]: { type: "organization", key: makeEncString("org1Key").encryptedString },
+        },
+        providerKeys: {},
+      });
+
+      const decryptionKeys = await firstValueFrom(cryptoService.cipherDecryptionKeys$(mockUserId));
+
+      expect(decryptionKeys).not.toBeNull();
+      expect(decryptionKeys.userKey).not.toBeNull();
+      expect(decryptionKeys.orgKeys).not.toBeNull();
+      expect(Object.keys(decryptionKeys.orgKeys)).toHaveLength(1);
+      expect(decryptionKeys.orgKeys[org1Id]).not.toBeNull();
+      const orgKey = decryptionKeys.orgKeys[org1Id];
+      expect(orgKey.keyB64).toContain("org1Key");
+    });
+
+    it("returns decryption keys when some of the org keys are providers", async () => {
+      const org2Id = "org2Id" as OrganizationId;
+      updateKeys({
+        userKey: makeSymmetricCryptoKey<UserKey>(64),
+        encryptedPrivateKey: makeEncString("privateKey"),
+        orgKeys: {
+          [org1Id]: { type: "organization", key: makeEncString("org1Key").encryptedString },
+          [org2Id]: {
+            type: "provider",
+            key: makeEncString("provider1Key").encryptedString,
+            providerId: "provider1",
+          },
+        },
+        providerKeys: {
+          provider1: makeEncString("provider1Key").encryptedString,
+        },
+      });
+
+      const decryptionKeys = await firstValueFrom(cryptoService.cipherDecryptionKeys$(mockUserId));
+
+      expect(decryptionKeys).not.toBeNull();
+      expect(decryptionKeys.userKey).not.toBeNull();
+      expect(decryptionKeys.orgKeys).not.toBeNull();
+      expect(Object.keys(decryptionKeys.orgKeys)).toHaveLength(2);
+
+      const orgKey = decryptionKeys.orgKeys[org1Id];
+      expect(orgKey).not.toBeNull();
+      expect(orgKey.keyB64).toContain("org1Key");
+
+      const org2Key = decryptionKeys.orgKeys[org2Id];
+      expect(org2Key).not.toBeNull();
+      expect(org2Key.keyB64).toContain("provider1Key");
+    });
+
+    it("returns a stream that pays attention to updates of all data", async () => {
+      // Start listening until there have been 6 emissions
+      const promise = lastValueFrom(
+        cryptoService.cipherDecryptionKeys$(mockUserId).pipe(bufferCount(6), take(1)),
+      );
+
+      // User has their UserKey set
+      const initialUserKey = makeSymmetricCryptoKey<UserKey>(64);
+      updateKeys({
+        userKey: initialUserKey,
+      });
+
+      // Because switchMap is a little to good at its job
+      await awaitAsync();
+
+      // User has their private key set
+      const initialPrivateKey = makeEncString("userPrivateKey");
+      updateKeys({
+        encryptedPrivateKey: initialPrivateKey,
+      });
+
+      // Because switchMap is a little to good at its job
+      await awaitAsync();
+
+      // Current architecture requires that provider keys are set before org keys
+      updateKeys({
+        providerKeys: {},
+      });
+
+      // Because switchMap is a little to good at its job
+      await awaitAsync();
+
+      // User has their org keys set
+      updateKeys({
+        orgKeys: {
+          [org1Id]: { type: "organization", key: makeEncString("org1Key").encryptedString },
+        },
+      });
+
+      // Out of band user key update
+      const updatedUserKey = makeSymmetricCryptoKey<UserKey>(64);
+      updateKeys({
+        userKey: updatedUserKey,
+      });
+
+      const emittedValues = await promise;
+
+      // They start with no data
+      expect(emittedValues[0]).toBeNull();
+
+      // They get their user key set
+      expect(emittedValues[1]).toEqual({
+        userKey: initialUserKey,
+        orgKeys: null,
+      });
+
+      // Once a private key is set we will attempt org key decryption, even if org keys haven't been set
+      expect(emittedValues[2]).toEqual({
+        userKey: initialUserKey,
+        orgKeys: {},
+      });
+
+      // Will emit again when providers alone are set, but this won't change the output until orgs are set
+      expect(emittedValues[3]).toEqual({
+        userKey: initialUserKey,
+        orgKeys: {},
+      });
+
+      // Expect org keys to get emitted
+      expect(emittedValues[4]).toEqual({
+        userKey: initialUserKey,
+        orgKeys: {
+          [org1Id]: expect.anything(),
+        },
+      });
+
+      // Expect out of band user key update
+      expect(emittedValues[5]).toEqual({
+        userKey: updatedUserKey,
+        orgKeys: {
+          [org1Id]: expect.anything(),
+        },
+      });
+    });
+  });
 });
diff --git a/libs/common/src/platform/services/crypto.service.ts b/libs/common/src/platform/services/crypto.service.ts
index 7595d5a3e32..bef5922a312 100644
--- a/libs/common/src/platform/services/crypto.service.ts
+++ b/libs/common/src/platform/services/crypto.service.ts
@@ -1,8 +1,18 @@
 import * as bigInt from "big-integer";
-import { Observable, combineLatest, filter, firstValueFrom, map, zip } from "rxjs";
+import {
+  NEVER,
+  Observable,
+  combineLatest,
+  firstValueFrom,
+  forkJoin,
+  map,
+  of,
+  switchMap,
+} from "rxjs";
 
 import { PinServiceAbstraction } from "../../../../auth/src/common/abstractions";
 import { EncryptedOrganizationKeyData } from "../../admin-console/models/data/encrypted-organization-key.data";
+import { BaseEncryptedOrganizationKey } from "../../admin-console/models/domain/encrypted-organization-key";
 import { ProfileOrganizationResponse } from "../../admin-console/models/response/profile-organization.response";
 import { ProfileProviderOrganizationResponse } from "../../admin-console/models/response/profile-provider-organization.response";
 import { ProfileProviderResponse } from "../../admin-console/models/response/profile-provider.response";
@@ -25,55 +35,37 @@ import {
 } from "../../types/key";
 import { VaultTimeoutStringType } from "../../types/vault-timeout.type";
 import { CryptoFunctionService } from "../abstractions/crypto-function.service";
-import { CryptoService as CryptoServiceAbstraction } from "../abstractions/crypto.service";
+import {
+  CipherDecryptionKeys,
+  CryptoService as CryptoServiceAbstraction,
+} from "../abstractions/crypto.service";
 import { EncryptService } from "../abstractions/encrypt.service";
 import { KeyGenerationService } from "../abstractions/key-generation.service";
 import { LogService } from "../abstractions/log.service";
 import { PlatformUtilsService } from "../abstractions/platform-utils.service";
 import { StateService } from "../abstractions/state.service";
 import { KeySuffixOptions, HashPurpose, EncryptionType } from "../enums";
-import { sequentialize } from "../misc/sequentialize";
+import { convertValues } from "../misc/convert-values";
 import { EFFLongWordList } from "../misc/wordlist";
 import { EncArrayBuffer } from "../models/domain/enc-array-buffer";
 import { EncString, EncryptedString } from "../models/domain/enc-string";
 import { SymmetricCryptoKey } from "../models/domain/symmetric-crypto-key";
-import { ActiveUserState, DerivedState, StateProvider } from "../state";
+import { ActiveUserState, StateProvider } from "../state";
 
-import {
-  USER_ENCRYPTED_ORGANIZATION_KEYS,
-  USER_ORGANIZATION_KEYS,
-} from "./key-state/org-keys.state";
-import { USER_ENCRYPTED_PROVIDER_KEYS, USER_PROVIDER_KEYS } from "./key-state/provider-keys.state";
+import { USER_ENCRYPTED_ORGANIZATION_KEYS } from "./key-state/org-keys.state";
+import { USER_ENCRYPTED_PROVIDER_KEYS } from "./key-state/provider-keys.state";
 import {
   USER_ENCRYPTED_PRIVATE_KEY,
   USER_EVER_HAD_USER_KEY,
-  USER_PRIVATE_KEY,
-  USER_PUBLIC_KEY,
   USER_KEY,
 } from "./key-state/user-key.state";
 
 export class CryptoService implements CryptoServiceAbstraction {
-  private readonly activeUserKeyState: ActiveUserState<UserKey>;
   private readonly activeUserEverHadUserKey: ActiveUserState<boolean>;
-  private readonly activeUserEncryptedOrgKeysState: ActiveUserState<
-    Record<OrganizationId, EncryptedOrganizationKeyData>
-  >;
-  private readonly activeUserOrgKeysState: DerivedState<Record<OrganizationId, OrgKey>>;
-  private readonly activeUserEncryptedProviderKeysState: ActiveUserState<
-    Record<ProviderId, EncryptedString>
-  >;
-  private readonly activeUserProviderKeysState: DerivedState<Record<ProviderId, ProviderKey>>;
-  private readonly activeUserEncryptedPrivateKeyState: ActiveUserState<EncryptedString>;
-  private readonly activeUserPrivateKeyState: DerivedState<UserPrivateKey>;
-  private readonly activeUserPublicKeyState: DerivedState<UserPublicKey>;
 
-  readonly activeUserKey$: Observable<UserKey>;
+  readonly everHadUserKey$: Observable<boolean>;
 
   readonly activeUserOrgKeys$: Observable<Record<OrganizationId, OrgKey>>;
-  readonly activeUserProviderKeys$: Observable<Record<ProviderId, ProviderKey>>;
-  readonly activeUserPrivateKey$: Observable<UserPrivateKey>;
-  readonly activeUserPublicKey$: Observable<UserPublicKey>;
-  readonly everHadUserKey$: Observable<boolean>;
 
   constructor(
     protected pinService: PinServiceAbstraction,
@@ -89,60 +81,12 @@ export class CryptoService implements CryptoServiceAbstraction {
     protected kdfConfigService: KdfConfigService,
   ) {
     // User Key
-    this.activeUserKeyState = stateProvider.getActive(USER_KEY);
-    this.activeUserKey$ = this.activeUserKeyState.state$;
     this.activeUserEverHadUserKey = stateProvider.getActive(USER_EVER_HAD_USER_KEY);
     this.everHadUserKey$ = this.activeUserEverHadUserKey.state$.pipe(map((x) => x ?? false));
 
-    // User Asymmetric Key Pair
-    this.activeUserEncryptedPrivateKeyState = stateProvider.getActive(USER_ENCRYPTED_PRIVATE_KEY);
-    this.activeUserPrivateKeyState = stateProvider.getDerived(
-      zip(this.activeUserEncryptedPrivateKeyState.state$, this.activeUserKey$).pipe(
-        filter(([, userKey]) => !!userKey),
-      ),
-      USER_PRIVATE_KEY,
-      {
-        encryptService: this.encryptService,
-      },
+    this.activeUserOrgKeys$ = this.stateProvider.activeUserId$.pipe(
+      switchMap((userId) => (userId != null ? this.orgKeys$(userId) : NEVER)),
     );
-    this.activeUserPrivateKey$ = this.activeUserPrivateKeyState.state$; // may be null
-    this.activeUserPublicKeyState = stateProvider.getDerived(
-      this.activeUserPrivateKey$.pipe(filter((key) => key != null)),
-      USER_PUBLIC_KEY,
-      {
-        cryptoFunctionService: this.cryptoFunctionService,
-      },
-    );
-    this.activeUserPublicKey$ = this.activeUserPublicKeyState.state$; // may be null
-
-    // Provider keys
-    this.activeUserEncryptedProviderKeysState = stateProvider.getActive(
-      USER_ENCRYPTED_PROVIDER_KEYS,
-    );
-    this.activeUserProviderKeysState = stateProvider.getDerived(
-      zip(
-        this.activeUserEncryptedProviderKeysState.state$.pipe(filter((keys) => keys != null)),
-        this.activeUserPrivateKey$,
-      ).pipe(filter(([, privateKey]) => !!privateKey)),
-      USER_PROVIDER_KEYS,
-      { encryptService: this.encryptService },
-    );
-    this.activeUserProviderKeys$ = this.activeUserProviderKeysState.state$; // null handled by `derive` function
-
-    // Organization keys
-    this.activeUserEncryptedOrgKeysState = stateProvider.getActive(
-      USER_ENCRYPTED_ORGANIZATION_KEYS,
-    );
-    this.activeUserOrgKeysState = stateProvider.getDerived(
-      zip(
-        this.activeUserEncryptedOrgKeysState.state$.pipe(filter((keys) => keys != null)),
-        this.activeUserPrivateKey$,
-        this.activeUserProviderKeys$,
-      ).pipe(filter(([, privateKey]) => !!privateKey)),
-      USER_ORGANIZATION_KEYS,
-      { encryptService: this.encryptService },
-    );
-    this.activeUserOrgKeys$ = this.activeUserOrgKeysState.state$; // null handled by `derive` function
   }
 
   async setUserKey(key: UserKey, userId?: UserId): Promise<void> {
@@ -157,8 +101,14 @@ export class CryptoService implements CryptoServiceAbstraction {
   }
 
   async refreshAdditionalKeys(): Promise<void> {
-    const key = await this.getUserKey();
-    await this.setUserKey(key);
+    const activeUserId = await firstValueFrom(this.stateProvider.activeUserId$);
+
+    if (activeUserId == null) {
+      throw new Error("Can only refresh keys while there is an active user.");
+    }
+
+    const key = await this.getUserKey(activeUserId);
+    await this.setUserKey(key, activeUserId);
   }
 
   getInMemoryUserKeyFor$(userId: UserId): Observable<UserKey> {
@@ -399,12 +349,12 @@ export class CryptoService implements CryptoServiceAbstraction {
   }
 
   async getOrgKey(orgId: OrganizationId): Promise<OrgKey> {
-    return (await firstValueFrom(this.activeUserOrgKeys$))[orgId];
-  }
-
-  @sequentialize(() => "getOrgKeys")
-  async getOrgKeys(): Promise<Record<string, OrgKey>> {
-    return await firstValueFrom(this.activeUserOrgKeys$);
+    const activeUserId = await firstValueFrom(this.stateProvider.activeUserId$);
+    if (activeUserId == null) {
+      throw new Error("A user must be active to retrieve an org key");
+    }
+    const orgKeys = await firstValueFrom(this.orgKeys$(activeUserId));
+    return orgKeys[orgId];
   }
 
   async makeDataEncKey<T extends OrgKey | UserKey>(
@@ -438,17 +388,16 @@ export class CryptoService implements CryptoServiceAbstraction {
     });
   }
 
+  // TODO: Deprecate in favor of observable
   async getProviderKey(providerId: ProviderId): Promise<ProviderKey> {
     if (providerId == null) {
       return null;
     }
 
-    return (await firstValueFrom(this.activeUserProviderKeys$))[providerId] ?? null;
-  }
+    const activeUserId = await firstValueFrom(this.stateProvider.activeUserId$);
+    const providerKeys = await firstValueFrom(this.providerKeys$(activeUserId));
 
-  @sequentialize(() => "getProviderKeys")
-  async getProviderKeys(): Promise<Record<ProviderId, ProviderKey>> {
-    return await firstValueFrom(this.activeUserProviderKeys$);
+    return providerKeys[providerId] ?? null;
   }
 
   private async clearProviderKeys(userId: UserId): Promise<void> {
@@ -459,13 +408,11 @@ export class CryptoService implements CryptoServiceAbstraction {
     await this.stateProvider.setUserState(USER_ENCRYPTED_PROVIDER_KEYS, null, userId);
   }
 
-  async getPublicKey(): Promise<Uint8Array> {
-    return await firstValueFrom(this.activeUserPublicKey$);
-  }
-
-  async makeOrgKey<T extends OrgKey | ProviderKey>(): Promise<[EncString, T]> {
+  // TODO: Make userId required
+  async makeOrgKey<T extends OrgKey | ProviderKey>(userId?: UserId): Promise<[EncString, T]> {
     const shareKey = await this.keyGenerationService.createKey(512);
-    const publicKey = await this.getPublicKey();
+    userId ??= await firstValueFrom(this.stateProvider.activeUserId$);
+    const publicKey = await firstValueFrom(this.userPublicKey$(userId));
     const encShareKey = await this.rsaEncrypt(shareKey.key, publicKey);
     return [encShareKey, shareKey as T];
   }
@@ -481,13 +428,22 @@ export class CryptoService implements CryptoServiceAbstraction {
   }
 
   async getPrivateKey(): Promise<Uint8Array> {
-    return await firstValueFrom(this.activeUserPrivateKey$);
+    const activeUserId = await firstValueFrom(this.stateProvider.activeUserId$);
+
+    if (activeUserId == null) {
+      throw new Error("User must be active while attempting to retrieve private key.");
+    }
+
+    return await firstValueFrom(this.userPrivateKey$(activeUserId));
   }
 
+  // TODO: Make public key required
   async getFingerprint(fingerprintMaterial: string, publicKey?: Uint8Array): Promise<string[]> {
     if (publicKey == null) {
-      publicKey = await this.getPublicKey();
+      const activeUserId = await firstValueFrom(this.stateProvider.activeUserId$);
+      publicKey = await firstValueFrom(this.userPublicKey$(activeUserId));
     }
+
     if (publicKey === null) {
       throw new Error("No public key available.");
     }
@@ -671,16 +627,15 @@ export class CryptoService implements CryptoServiceAbstraction {
 
     try {
       const encPrivateKey = await firstValueFrom(
-        this.stateProvider.getUserState$(USER_ENCRYPTED_PRIVATE_KEY, userId),
+        this.stateProvider.getUser(userId, USER_ENCRYPTED_PRIVATE_KEY).state$,
       );
+
       if (encPrivateKey == null) {
         return false;
       }
 
       // Can decrypt private key
-      const privateKey = await USER_PRIVATE_KEY.derive([encPrivateKey, key], {
-        encryptService: this.encryptService,
-      });
+      const privateKey = await this.decryptPrivateKey(encPrivateKey, key);
 
       if (privateKey == null) {
         // failed to decrypt
@@ -688,9 +643,7 @@ export class CryptoService implements CryptoServiceAbstraction {
       }
 
       // Can successfully derive public key
-      const publicKey = await USER_PUBLIC_KEY.derive(privateKey, {
-        cryptoFunctionService: this.cryptoFunctionService,
-      });
+      const publicKey = await this.derivePublicKey(privateKey);
 
       if (publicKey == null) {
         // failed to decrypt
@@ -712,8 +665,15 @@ export class CryptoService implements CryptoServiceAbstraction {
     publicKey: string;
     privateKey: EncString;
   }> {
+    const activeUserId = await firstValueFrom(this.stateProvider.activeUserId$);
+
+    if (activeUserId == null) {
+      throw new Error("Cannot initilize an account if one is not active.");
+    }
+
     // Verify user key doesn't exist
-    const existingUserKey = await this.getUserKey();
+    const existingUserKey = await this.getUserKey(activeUserId);
+
     if (existingUserKey != null) {
       this.logService.error("Tried to initialize account with existing user key.");
       throw new Error("Cannot initialize account, keys already exist.");
@@ -721,8 +681,10 @@ export class CryptoService implements CryptoServiceAbstraction {
 
     const userKey = (await this.keyGenerationService.createKey(512)) as UserKey;
     const [publicKey, privateKey] = await this.makeKeyPair(userKey);
-    await this.setUserKey(userKey);
-    await this.activeUserEncryptedPrivateKeyState.update(() => privateKey.encryptedString);
+    await this.setUserKey(userKey, activeUserId);
+    await this.stateProvider
+      .getUser(activeUserId, USER_ENCRYPTED_PRIVATE_KEY)
+      .update(() => privateKey.encryptedString);
 
     return {
       userKey,
@@ -925,4 +887,178 @@ export class CryptoService implements CryptoServiceAbstraction {
 
     return this.encryptService.decryptToBytes(encBuffer, key);
   }
+
+  userKey$(userId: UserId) {
+    return this.stateProvider.getUser(userId, USER_KEY).state$;
+  }
+
+  private userKeyWithLegacySupport$(userId: UserId) {
+    return this.userKey$(userId).pipe(
+      switchMap((userKey) => {
+        if (userKey != null) {
+          return of(userKey);
+        }
+
+        // Legacy path
+        return this.masterPasswordService.masterKey$(userId).pipe(
+          switchMap(async (masterKey) => {
+            if (!(await this.validateUserKey(masterKey as unknown as UserKey, userId))) {
+              // We don't have a UserKey or a valid MasterKey
+              return null;
+            }
+
+            // The master key is valid meaning, the org keys and such are encrypted with this key
+            return masterKey as unknown as UserKey;
+          }),
+        );
+      }),
+    );
+  }
+
+  userPublicKey$(userId: UserId) {
+    return this.userPrivateKey$(userId).pipe(
+      switchMap(async (pk) => await this.derivePublicKey(pk)),
+    );
+  }
+
+  private async derivePublicKey(privateKey: UserPrivateKey) {
+    return (await this.cryptoFunctionService.rsaExtractPublicKey(privateKey)) as UserPublicKey;
+  }
+
+  userPrivateKey$(userId: UserId): Observable<UserPrivateKey> {
+    return this.userPrivateKeyHelper$(userId, false).pipe(map((keys) => keys?.userPrivateKey));
+  }
+
+  private userPrivateKeyHelper$(userId: UserId, legacySupport: boolean) {
+    const userKey$ = legacySupport ? this.userKeyWithLegacySupport$(userId) : this.userKey$(userId);
+    return userKey$.pipe(
+      switchMap((userKey) => {
+        if (userKey == null) {
+          return of(null);
+        }
+
+        return this.stateProvider.getUser(userId, USER_ENCRYPTED_PRIVATE_KEY).state$.pipe(
+          switchMap(
+            async (encryptedPrivateKey) =>
+              await this.decryptPrivateKey(encryptedPrivateKey, userKey),
+          ),
+          // Combine outerscope info with user private key
+          map((userPrivateKey) => ({
+            userKey,
+            userPrivateKey,
+          })),
+        );
+      }),
+    );
+  }
+
+  private async decryptPrivateKey(encryptedPrivateKey: EncryptedString, key: SymmetricCryptoKey) {
+    if (encryptedPrivateKey == null) {
+      return null;
+    }
+
+    return (await this.encryptService.decryptToBytes(
+      new EncString(encryptedPrivateKey),
+      key,
+    )) as UserPrivateKey;
+  }
+
+  providerKeys$(userId: UserId) {
+    return this.userPrivateKey$(userId).pipe(
+      switchMap((userPrivateKey) => {
+        if (userPrivateKey == null) {
+          return of(null);
+        }
+
+        return this.providerKeysHelper$(userId, userPrivateKey);
+      }),
+    );
+  }
+
+  /**
+   * A helper for decrypting provider keys that requires a user id and that users decrypted private key
+   * this is helpful for when you may have already grabbed the user private key and don't want to redo
+   * that work to get the provider keys.
+   */
+  private providerKeysHelper$(
+    userId: UserId,
+    userPrivateKey: UserPrivateKey,
+  ): Observable<Record<ProviderId, ProviderKey>> {
+    return this.stateProvider.getUser(userId, USER_ENCRYPTED_PROVIDER_KEYS).state$.pipe(
+      // Convert each value in the record to it's own decryption observable
+      convertValues(async (_, value) => {
+        const decrypted = await this.encryptService.rsaDecrypt(
+          new EncString(value),
+          userPrivateKey,
+        );
+        return new SymmetricCryptoKey(decrypted) as ProviderKey;
+      }),
+      // switchMap since there are no side effects
+      switchMap((encryptedProviderKeys) => {
+        if (encryptedProviderKeys == null) {
+          return of(null);
+        }
+
+        // Can't give an empty record to forkJoin
+        if (Object.keys(encryptedProviderKeys).length === 0) {
+          return of({});
+        }
+
+        return forkJoin(encryptedProviderKeys);
+      }),
+    );
+  }
+
+  orgKeys$(userId: UserId) {
+    return this.cipherDecryptionKeys$(userId).pipe(map((keys) => keys?.orgKeys));
+  }
+
+  cipherDecryptionKeys$(
+    userId: UserId,
+    legacySupport: boolean = false,
+  ): Observable<CipherDecryptionKeys | null> {
+    return this.userPrivateKeyHelper$(userId, legacySupport).pipe(
+      switchMap((userKeys) => {
+        if (userKeys == null) {
+          return of(null);
+        }
+
+        const userPrivateKey = userKeys.userPrivateKey;
+
+        if (userPrivateKey == null) {
+          // We can't do any org based decryption
+          return of({ userKey: userKeys.userKey, orgKeys: null });
+        }
+
+        return combineLatest([
+          this.stateProvider.getUser(userId, USER_ENCRYPTED_ORGANIZATION_KEYS).state$,
+          this.providerKeysHelper$(userId, userPrivateKey),
+        ]).pipe(
+          switchMap(async ([encryptedOrgKeys, providerKeys]) => {
+            const result: Record<OrganizationId, OrgKey> = {};
+            for (const orgId of Object.keys(encryptedOrgKeys ?? {}) as OrganizationId[]) {
+              if (result[orgId] != null) {
+                continue;
+              }
+              const encrypted = BaseEncryptedOrganizationKey.fromData(encryptedOrgKeys[orgId]);
+
+              let decrypted: OrgKey;
+
+              if (BaseEncryptedOrganizationKey.isProviderEncrypted(encrypted)) {
+                decrypted = await encrypted.decrypt(this.encryptService, providerKeys);
+              } else {
+                decrypted = await encrypted.decrypt(this.encryptService, userPrivateKey);
+              }
+
+              result[orgId] = decrypted;
+            }
+
+            return result;
+          }),
+          // Combine them back together
+          map((orgKeys) => ({ userKey: userKeys.userKey, orgKeys: orgKeys })),
+        );
+      }),
+    );
+  }
 }
diff --git a/libs/common/src/platform/services/key-state/org-keys.state.spec.ts b/libs/common/src/platform/services/key-state/org-keys.state.spec.ts
index 98e0139cc4d..79f24b61bb7 100644
--- a/libs/common/src/platform/services/key-state/org-keys.state.spec.ts
+++ b/libs/common/src/platform/services/key-state/org-keys.state.spec.ts
@@ -1,11 +1,6 @@
-import { mock } from "jest-mock-extended";
+import { makeEncString } from "../../../../spec";
 
-import { makeEncString, makeStaticByteArray } from "../../../../spec";
-import { OrgKey, UserPrivateKey } from "../../../types/key";
-import { EncryptService } from "../../abstractions/encrypt.service";
-import { SymmetricCryptoKey } from "../../models/domain/symmetric-crypto-key";
-
-import { USER_ENCRYPTED_ORGANIZATION_KEYS, USER_ORGANIZATION_KEYS } from "./org-keys.state";
+import { USER_ENCRYPTED_ORGANIZATION_KEYS } from "./org-keys.state";
 
 describe("encrypted org keys", () => {
   const sut = USER_ENCRYPTED_ORGANIZATION_KEYS;
@@ -28,85 +23,3 @@ describe("encrypted org keys", () => {
     expect(result).toEqual(encryptedOrgKeys);
   });
 });
-
-describe("derived decrypted org keys", () => {
-  const encryptService = mock<EncryptService>();
-  const userPrivateKey = makeStaticByteArray(64, 3) as UserPrivateKey;
-  const sut = USER_ORGANIZATION_KEYS;
-
-  afterEach(() => {
-    jest.resetAllMocks();
-  });
-
-  it("should deserialize org keys", async () => {
-    const decryptedOrgKeys = {
-      "org-id-1": new SymmetricCryptoKey(makeStaticByteArray(64, 1)) as OrgKey,
-      "org-id-2": new SymmetricCryptoKey(makeStaticByteArray(64, 2)) as OrgKey,
-    };
-
-    const result = sut.deserialize(JSON.parse(JSON.stringify(decryptedOrgKeys)));
-
-    expect(result).toEqual(decryptedOrgKeys);
-  });
-
-  it("should derive org keys", async () => {
-    const encryptedOrgKeys = {
-      "org-id-1": {
-        type: "organization",
-        key: makeEncString().encryptedString,
-      },
-      "org-id-2": {
-        type: "organization",
-        key: makeEncString().encryptedString,
-      },
-    };
-
-    const decryptedOrgKeys = {
-      "org-id-1": new SymmetricCryptoKey(makeStaticByteArray(64, 1)) as OrgKey,
-      "org-id-2": new SymmetricCryptoKey(makeStaticByteArray(64, 2)) as OrgKey,
-    };
-
-    // TODO: How to not have to mock these decryptions. They are internal concerns of EncryptedOrganizationKey
-    encryptService.rsaDecrypt.mockResolvedValueOnce(decryptedOrgKeys["org-id-1"].key);
-    encryptService.rsaDecrypt.mockResolvedValueOnce(decryptedOrgKeys["org-id-2"].key);
-
-    const result = await sut.derive([encryptedOrgKeys, userPrivateKey, {}], { encryptService });
-
-    expect(result).toEqual(decryptedOrgKeys);
-  });
-
-  it("should derive org keys from providers", async () => {
-    const encryptedOrgKeys = {
-      "org-id-1": {
-        type: "provider",
-        key: makeEncString().encryptedString,
-        providerId: "provider-id-1",
-      },
-      "org-id-2": {
-        type: "provider",
-        key: makeEncString().encryptedString,
-        providerId: "provider-id-2",
-      },
-    };
-
-    const providerKeys = {
-      "provider-id-1": new SymmetricCryptoKey(makeStaticByteArray(64, 1)),
-      "provider-id-2": new SymmetricCryptoKey(makeStaticByteArray(64, 2)),
-    };
-
-    const decryptedOrgKeys = {
-      "org-id-1": new SymmetricCryptoKey(makeStaticByteArray(64, 1)) as OrgKey,
-      "org-id-2": new SymmetricCryptoKey(makeStaticByteArray(64, 2)) as OrgKey,
-    };
-
-    // TODO: How to not have to mock these decryptions. They are internal concerns of ProviderEncryptedOrganizationKey
-    encryptService.decryptToBytes.mockResolvedValueOnce(decryptedOrgKeys["org-id-1"].key);
-    encryptService.decryptToBytes.mockResolvedValueOnce(decryptedOrgKeys["org-id-2"].key);
-
-    const result = await sut.derive([encryptedOrgKeys, userPrivateKey, providerKeys], {
-      encryptService,
-    });
-
-    expect(result).toEqual(decryptedOrgKeys);
-  });
-});
diff --git a/libs/common/src/platform/services/key-state/org-keys.state.ts b/libs/common/src/platform/services/key-state/org-keys.state.ts
index 8a42e242b12..81cf3411f11 100644
--- a/libs/common/src/platform/services/key-state/org-keys.state.ts
+++ b/libs/common/src/platform/services/key-state/org-keys.state.ts
@@ -1,10 +1,6 @@
 import { EncryptedOrganizationKeyData } from "../../../admin-console/models/data/encrypted-organization-key.data";
-import { BaseEncryptedOrganizationKey } from "../../../admin-console/models/domain/encrypted-organization-key";
-import { OrganizationId, ProviderId } from "../../../types/guid";
-import { OrgKey, ProviderKey, UserPrivateKey } from "../../../types/key";
-import { EncryptService } from "../../abstractions/encrypt.service";
-import { SymmetricCryptoKey } from "../../models/domain/symmetric-crypto-key";
-import { CRYPTO_DISK, CRYPTO_MEMORY, DeriveDefinition, UserKeyDefinition } from "../../state";
+import { OrganizationId } from "../../../types/guid";
+import { CRYPTO_DISK, UserKeyDefinition } from "../../state";
 
 export const USER_ENCRYPTED_ORGANIZATION_KEYS = UserKeyDefinition.record<
   EncryptedOrganizationKeyData,
@@ -13,42 +9,3 @@ export const USER_ENCRYPTED_ORGANIZATION_KEYS = UserKeyDefinition.record<
   deserializer: (obj) => obj,
   clearOn: ["logout"],
 });
-
-export const USER_ORGANIZATION_KEYS = new DeriveDefinition<
-  [
-    Record<OrganizationId, EncryptedOrganizationKeyData>,
-    UserPrivateKey,
-    Record<ProviderId, ProviderKey>,
-  ],
-  Record<OrganizationId, OrgKey>,
-  { encryptService: EncryptService }
->(CRYPTO_MEMORY, "organizationKeys", {
-  deserializer: (obj) => {
-    const result: Record<OrganizationId, OrgKey> = {};
-    for (const orgId of Object.keys(obj ?? {}) as OrganizationId[]) {
-      result[orgId] = SymmetricCryptoKey.fromJSON(obj[orgId]) as OrgKey;
-    }
-    return result;
-  },
-  derive: async ([encryptedOrgKeys, privateKey, providerKeys], { encryptService }) => {
-    const result: Record<OrganizationId, OrgKey> = {};
-    for (const orgId of Object.keys(encryptedOrgKeys ?? {}) as OrganizationId[]) {
-      if (result[orgId] != null) {
-        continue;
-      }
-      const encrypted = BaseEncryptedOrganizationKey.fromData(encryptedOrgKeys[orgId]);
-
-      let decrypted: OrgKey;
-
-      if (BaseEncryptedOrganizationKey.isProviderEncrypted(encrypted)) {
-        decrypted = await encrypted.decrypt(encryptService, providerKeys);
-      } else {
-        decrypted = await encrypted.decrypt(encryptService, privateKey);
-      }
-
-      result[orgId] = decrypted;
-    }
-
-    return result;
-  },
-});
diff --git a/libs/common/src/platform/services/key-state/provider-keys.state.spec.ts b/libs/common/src/platform/services/key-state/provider-keys.state.spec.ts
index ca84d4a6ea1..a8be2893e7d 100644
--- a/libs/common/src/platform/services/key-state/provider-keys.state.spec.ts
+++ b/libs/common/src/platform/services/key-state/provider-keys.state.spec.ts
@@ -1,13 +1,6 @@
-import { mock } from "jest-mock-extended";
+import { makeEncString } from "../../../../spec";
 
-import { makeEncString, makeStaticByteArray } from "../../../../spec";
-import { ProviderId } from "../../../types/guid";
-import { ProviderKey, UserPrivateKey } from "../../../types/key";
-import { EncryptService } from "../../abstractions/encrypt.service";
-import { EncryptedString } from "../../models/domain/enc-string";
-import { SymmetricCryptoKey } from "../../models/domain/symmetric-crypto-key";
-
-import { USER_ENCRYPTED_PROVIDER_KEYS, USER_PROVIDER_KEYS } from "./provider-keys.state";
+import { USER_ENCRYPTED_PROVIDER_KEYS } from "./provider-keys.state";
 
 describe("encrypted provider keys", () => {
   const sut = USER_ENCRYPTED_PROVIDER_KEYS;
@@ -23,51 +16,3 @@ describe("encrypted provider keys", () => {
     expect(result).toEqual(encryptedProviderKeys);
   });
 });
-
-describe("derived decrypted provider keys", () => {
-  const encryptService = mock<EncryptService>();
-  const userPrivateKey = makeStaticByteArray(64, 0) as UserPrivateKey;
-  const sut = USER_PROVIDER_KEYS;
-
-  afterEach(() => {
-    jest.resetAllMocks();
-  });
-
-  it("should deserialize provider keys", async () => {
-    const decryptedProviderKeys = {
-      "provider-id-1": new SymmetricCryptoKey(makeStaticByteArray(64, 1)) as ProviderKey,
-      "provider-id-2": new SymmetricCryptoKey(makeStaticByteArray(64, 2)) as ProviderKey,
-    };
-
-    const result = sut.deserialize(JSON.parse(JSON.stringify(decryptedProviderKeys)));
-
-    expect(result).toEqual(decryptedProviderKeys);
-  });
-
-  it("should derive provider keys", async () => {
-    const encryptedProviderKeys = {
-      "provider-id-1": makeEncString().encryptedString,
-      "provider-id-2": makeEncString().encryptedString,
-    };
-
-    const decryptedProviderKeys = {
-      "provider-id-1": new SymmetricCryptoKey(makeStaticByteArray(64, 1)) as ProviderKey,
-      "provider-id-2": new SymmetricCryptoKey(makeStaticByteArray(64, 2)) as ProviderKey,
-    };
-
-    encryptService.rsaDecrypt.mockResolvedValueOnce(decryptedProviderKeys["provider-id-1"].key);
-    encryptService.rsaDecrypt.mockResolvedValueOnce(decryptedProviderKeys["provider-id-2"].key);
-
-    const result = await sut.derive([encryptedProviderKeys, userPrivateKey], { encryptService });
-
-    expect(result).toEqual(decryptedProviderKeys);
-  });
-
-  it("should handle null input values", async () => {
-    const encryptedProviderKeys: Record<ProviderId, EncryptedString> = null;
-
-    const result = await sut.derive([encryptedProviderKeys, userPrivateKey], { encryptService });
-
-    expect(result).toEqual({});
-  });
-});
diff --git a/libs/common/src/platform/services/key-state/provider-keys.state.ts b/libs/common/src/platform/services/key-state/provider-keys.state.ts
index dfda71be213..c0d9e3a1eab 100644
--- a/libs/common/src/platform/services/key-state/provider-keys.state.ts
+++ b/libs/common/src/platform/services/key-state/provider-keys.state.ts
@@ -1,9 +1,6 @@
 import { ProviderId } from "../../../types/guid";
-import { ProviderKey, UserPrivateKey } from "../../../types/key";
-import { EncryptService } from "../../abstractions/encrypt.service";
-import { EncString, EncryptedString } from "../../models/domain/enc-string";
-import { SymmetricCryptoKey } from "../../models/domain/symmetric-crypto-key";
-import { CRYPTO_DISK, CRYPTO_MEMORY, DeriveDefinition, UserKeyDefinition } from "../../state";
+import { EncryptedString } from "../../models/domain/enc-string";
+import { CRYPTO_DISK, UserKeyDefinition } from "../../state";
 
 export const USER_ENCRYPTED_PROVIDER_KEYS = UserKeyDefinition.record<EncryptedString, ProviderId>(
   CRYPTO_DISK,
@@ -13,32 +10,3 @@ export const USER_ENCRYPTED_PROVIDER_KEYS = UserKeyDefinition.record<EncryptedSt
     clearOn: ["logout"],
   },
 );
-
-export const USER_PROVIDER_KEYS = new DeriveDefinition<
-  [Record<ProviderId, EncryptedString>, UserPrivateKey],
-  Record<ProviderId, ProviderKey>,
-  { encryptService: EncryptService }
->(CRYPTO_MEMORY, "providerKeys", {
-  deserializer: (obj) => {
-    const result: Record<ProviderId, ProviderKey> = {};
-    for (const providerId of Object.keys(obj ?? {}) as ProviderId[]) {
-      result[providerId] = SymmetricCryptoKey.fromJSON(obj[providerId]) as ProviderKey;
-    }
-    return result;
-  },
-  derive: async ([encryptedProviderKeys, privateKey], { encryptService }) => {
-    const result: Record<ProviderId, ProviderKey> = {};
-    for (const providerId of Object.keys(encryptedProviderKeys ?? {}) as ProviderId[]) {
-      if (result[providerId] != null) {
-        continue;
-      }
-      const encrypted = new EncString(encryptedProviderKeys[providerId]);
-      const decrypted = await encryptService.rsaDecrypt(encrypted, privateKey);
-      const providerKey = new SymmetricCryptoKey(decrypted) as ProviderKey;
-
-      result[providerId] = providerKey;
-    }
-
-    return result;
-  },
-});
diff --git a/libs/common/src/platform/services/key-state/user-key.state.spec.ts b/libs/common/src/platform/services/key-state/user-key.state.spec.ts
index 63273f1c795..6154fba8f44 100644
--- a/libs/common/src/platform/services/key-state/user-key.state.spec.ts
+++ b/libs/common/src/platform/services/key-state/user-key.state.spec.ts
@@ -1,19 +1,8 @@
-import { mock } from "jest-mock-extended";
-
-import { makeStaticByteArray } from "../../../../spec";
-import { UserKey, UserPrivateKey, UserPublicKey } from "../../../types/key";
-import { CryptoFunctionService } from "../../abstractions/crypto-function.service";
-import { EncryptService } from "../../abstractions/encrypt.service";
 import { EncryptionType } from "../../enums";
 import { Utils } from "../../misc/utils";
 import { EncString } from "../../models/domain/enc-string";
 
-import {
-  USER_ENCRYPTED_PRIVATE_KEY,
-  USER_EVER_HAD_USER_KEY,
-  USER_PRIVATE_KEY,
-  USER_PUBLIC_KEY,
-} from "./user-key.state";
+import { USER_ENCRYPTED_PRIVATE_KEY, USER_EVER_HAD_USER_KEY } from "./user-key.state";
 
 function makeEncString(data?: string) {
   data ??= Utils.newGuid();
@@ -43,76 +32,3 @@ describe("Encrypted private key", () => {
     expect(result).toEqual(encryptedPrivateKey);
   });
 });
-
-describe("User public key", () => {
-  const sut = USER_PUBLIC_KEY;
-  const userPrivateKey = makeStaticByteArray(64, 1) as UserPrivateKey;
-  const userPublicKey = makeStaticByteArray(64, 2) as UserPublicKey;
-
-  it("should deserialize user public key", () => {
-    const userPublicKey = makeStaticByteArray(64, 1);
-
-    const result = sut.deserialize(JSON.parse(JSON.stringify(userPublicKey)));
-
-    expect(result).toEqual(userPublicKey);
-  });
-
-  it("should derive user public key", async () => {
-    const cryptoFunctionService = mock<CryptoFunctionService>();
-    cryptoFunctionService.rsaExtractPublicKey.mockResolvedValue(userPublicKey);
-
-    const result = await sut.derive(userPrivateKey, { cryptoFunctionService });
-
-    expect(result).toEqual(userPublicKey);
-  });
-});
-
-describe("Derived decrypted private key", () => {
-  const sut = USER_PRIVATE_KEY;
-  const userKey = mock<UserKey>();
-  const encryptedPrivateKey = makeEncString().encryptedString;
-  const decryptedPrivateKey = makeStaticByteArray(64, 1);
-
-  afterEach(() => {
-    jest.resetAllMocks();
-  });
-
-  it("should deserialize decrypted private key", () => {
-    const decryptedPrivateKey = makeStaticByteArray(64, 1);
-
-    const result = sut.deserialize(JSON.parse(JSON.stringify(decryptedPrivateKey)));
-
-    expect(result).toEqual(decryptedPrivateKey);
-  });
-
-  it("should derive decrypted private key", async () => {
-    const encryptService = mock<EncryptService>();
-    encryptService.decryptToBytes.mockResolvedValue(decryptedPrivateKey);
-
-    const result = await sut.derive([encryptedPrivateKey, userKey], {
-      encryptService,
-    });
-
-    expect(result).toEqual(decryptedPrivateKey);
-  });
-
-  it("should handle null encryptedPrivateKey", async () => {
-    const encryptService = mock<EncryptService>();
-
-    const result = await sut.derive([null, userKey], {
-      encryptService,
-    });
-
-    expect(result).toEqual(null);
-  });
-
-  it("should handle null userKey", async () => {
-    const encryptService = mock<EncryptService>();
-
-    const result = await sut.derive([encryptedPrivateKey, null], {
-      encryptService,
-    });
-
-    expect(result).toEqual(null);
-  });
-});
diff --git a/libs/common/src/platform/services/key-state/user-key.state.ts b/libs/common/src/platform/services/key-state/user-key.state.ts
index c2b84d6a247..cd124321f61 100644
--- a/libs/common/src/platform/services/key-state/user-key.state.ts
+++ b/libs/common/src/platform/services/key-state/user-key.state.ts
@@ -1,9 +1,7 @@
-import { UserPrivateKey, UserPublicKey, UserKey } from "../../../types/key";
-import { CryptoFunctionService } from "../../abstractions/crypto-function.service";
-import { EncryptService } from "../../abstractions/encrypt.service";
-import { EncString, EncryptedString } from "../../models/domain/enc-string";
+import { UserKey } from "../../../types/key";
+import { EncryptedString } from "../../models/domain/enc-string";
 import { SymmetricCryptoKey } from "../../models/domain/symmetric-crypto-key";
-import { CRYPTO_DISK, DeriveDefinition, CRYPTO_MEMORY, UserKeyDefinition } from "../../state";
+import { CRYPTO_DISK, CRYPTO_MEMORY, UserKeyDefinition } from "../../state";
 
 export const USER_EVER_HAD_USER_KEY = new UserKeyDefinition<boolean>(
   CRYPTO_DISK,
@@ -23,41 +21,6 @@ export const USER_ENCRYPTED_PRIVATE_KEY = new UserKeyDefinition<EncryptedString>
   },
 );
 
-export const USER_PRIVATE_KEY = new DeriveDefinition<
-  [EncryptedString, UserKey],
-  UserPrivateKey,
-  { encryptService: EncryptService }
->(CRYPTO_MEMORY, "privateKey", {
-  deserializer: (obj) => new Uint8Array(Object.values(obj)) as UserPrivateKey,
-  derive: async ([encPrivateKeyString, userKey], { encryptService }) => {
-    if (encPrivateKeyString == null || userKey == null) {
-      return null;
-    }
-
-    const encPrivateKey = new EncString(encPrivateKeyString);
-    const privateKey = (await encryptService.decryptToBytes(
-      encPrivateKey,
-      userKey,
-    )) as UserPrivateKey;
-    return privateKey;
-  },
-});
-
-export const USER_PUBLIC_KEY = DeriveDefinition.from<
-  UserPrivateKey,
-  UserPublicKey,
-  { cryptoFunctionService: CryptoFunctionService }
->([USER_PRIVATE_KEY, "publicKey"], {
-  deserializer: (obj) => new Uint8Array(Object.values(obj)) as UserPublicKey,
-  derive: async (privateKey, { cryptoFunctionService }) => {
-    if (privateKey == null) {
-      return null;
-    }
-
-    return (await cryptoFunctionService.rsaExtractPublicKey(privateKey)) as UserPublicKey;
-  },
-});
-
 export const USER_KEY = new UserKeyDefinition<UserKey>(CRYPTO_MEMORY, "userKey", {
   deserializer: (obj) => SymmetricCryptoKey.fromJSON(obj) as UserKey,
   clearOn: ["logout", "lock"],
diff --git a/libs/common/src/vault/services/cipher.service.ts b/libs/common/src/vault/services/cipher.service.ts
index 4648a8cc40b..9b9841169fa 100644
--- a/libs/common/src/vault/services/cipher.service.ts
+++ b/libs/common/src/vault/services/cipher.service.ts
@@ -135,8 +135,7 @@ export class CipherService implements CipherServiceAbstraction {
     this.addEditCipherInfo$ = this.addEditCipherInfoState.state$;
   }
 
-  async setDecryptedCipherCache(value: CipherView[]) {
-    const userId = await firstValueFrom(this.stateProvider.activeUserId$);
+  async setDecryptedCipherCache(value: CipherView[], userId: UserId) {
     // Sometimes we might prematurely decrypt the vault and that will result in no ciphers
     // if we cache it then we may accidentally return it when it's not right, we'd rather try decryption again.
     // We still want to set null though, that is the indicator that the cache isn't valid and we should do decryption.
@@ -367,9 +366,15 @@ export class CipherService implements CipherServiceAbstraction {
       return await this.getDecryptedCiphers();
     }
 
-    decCiphers = await this.decryptCiphers(await this.getAll());
+    const activeUserId = await firstValueFrom(this.stateProvider.activeUserId$);
 
-    await this.setDecryptedCipherCache(decCiphers);
+    if (activeUserId == null) {
+      return [];
+    }
+
+    decCiphers = await this.decryptCiphers(await this.getAll(), activeUserId);
+
+    await this.setDecryptedCipherCache(decCiphers, activeUserId);
     return decCiphers;
   }
 
@@ -377,10 +382,10 @@ export class CipherService implements CipherServiceAbstraction {
     return Object.values(await firstValueFrom(this.cipherViews$));
   }
 
-  private async decryptCiphers(ciphers: Cipher[]) {
-    const orgKeys = await this.cryptoService.getOrgKeys();
-    const userKey = await this.cryptoService.getUserKeyWithLegacySupport();
-    if (Object.keys(orgKeys).length === 0 && userKey == null) {
+  private async decryptCiphers(ciphers: Cipher[], userId: UserId) {
+    const keys = await firstValueFrom(this.cryptoService.cipherDecryptionKeys$(userId, true));
+
+    if (keys == null || (keys.userKey == null && Object.keys(keys.orgKeys).length === 0)) {
       // return early if there are no keys to decrypt with
       return;
     }
@@ -398,7 +403,10 @@ export class CipherService implements CipherServiceAbstraction {
     const decCiphers = (
       await Promise.all(
         Object.entries(grouped).map(([orgId, groupedCiphers]) =>
-          this.encryptService.decryptItems(groupedCiphers, orgKeys[orgId] ?? userKey),
+          this.encryptService.decryptItems(
+            groupedCiphers,
+            keys.orgKeys[orgId as OrganizationId] ?? keys.userKey,
+          ),
         ),
       )
     )

From fb577a448ea402bb02e5fa5d690119c06723d6a6 Mon Sep 17 00:00:00 2001
From: Bitwarden DevOps
 <106330231+bitwarden-devops-bot@users.noreply.github.com>
Date: Fri, 31 May 2024 13:36:04 -0400
Subject: [PATCH 056/138] Bumped client version(s) (#9464)

---
 apps/desktop/package.json          | 2 +-
 apps/desktop/src/package-lock.json | 4 ++--
 apps/desktop/src/package.json      | 2 +-
 package-lock.json                  | 2 +-
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/apps/desktop/package.json b/apps/desktop/package.json
index 90d9841a618..f84f3e59498 100644
--- a/apps/desktop/package.json
+++ b/apps/desktop/package.json
@@ -1,7 +1,7 @@
 {
   "name": "@bitwarden/desktop",
   "description": "A secure and free password manager for all of your devices.",
-  "version": "2024.5.0",
+  "version": "2024.5.1",
   "keywords": [
     "bitwarden",
     "password",
diff --git a/apps/desktop/src/package-lock.json b/apps/desktop/src/package-lock.json
index 508c42fa720..39899a1e6bb 100644
--- a/apps/desktop/src/package-lock.json
+++ b/apps/desktop/src/package-lock.json
@@ -1,12 +1,12 @@
 {
   "name": "@bitwarden/desktop",
-  "version": "2024.5.0",
+  "version": "2024.5.1",
   "lockfileVersion": 3,
   "requires": true,
   "packages": {
     "": {
       "name": "@bitwarden/desktop",
-      "version": "2024.5.0",
+      "version": "2024.5.1",
       "license": "GPL-3.0",
       "dependencies": {
         "@bitwarden/desktop-native": "file:../desktop_native",
diff --git a/apps/desktop/src/package.json b/apps/desktop/src/package.json
index ea4b95491cb..9efd5bad9f8 100644
--- a/apps/desktop/src/package.json
+++ b/apps/desktop/src/package.json
@@ -2,7 +2,7 @@
   "name": "@bitwarden/desktop",
   "productName": "Bitwarden",
   "description": "A secure and free password manager for all of your devices.",
-  "version": "2024.5.0",
+  "version": "2024.5.1",
   "author": "Bitwarden Inc. <hello@bitwarden.com> (https://bitwarden.com)",
   "homepage": "https://bitwarden.com",
   "license": "GPL-3.0",
diff --git a/package-lock.json b/package-lock.json
index 856972271e6..a1acd1ea8d9 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -237,7 +237,7 @@
     },
     "apps/desktop": {
       "name": "@bitwarden/desktop",
-      "version": "2024.5.0",
+      "version": "2024.5.1",
       "hasInstallScript": true,
       "license": "GPL-3.0"
     },

From 00c305dff363405c367ef4f112b098da757aca00 Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Fri, 31 May 2024 13:21:45 -0500
Subject: [PATCH 057/138] Browser - Add `jest-preset-angular` (#9412)

* add "jest-preset-angular/setup-jest" to browser app

* use flushPromises rather than await a dummy promise

* move the import of `page-script` into beforeAll rather than the describe scope

* invoke the sendMessage callback rather than relying on a promise comparison
---
 .../autofill/content/autofill-init.spec.ts    |  2 +-
 apps/browser/src/autofill/utils/index.spec.ts | 25 +++++++++++++++----
 .../page-script.webauthn-supported.spec.ts    |  4 ++-
 apps/browser/test.setup.ts                    |  2 ++
 4 files changed, 26 insertions(+), 7 deletions(-)

diff --git a/apps/browser/src/autofill/content/autofill-init.spec.ts b/apps/browser/src/autofill/content/autofill-init.spec.ts
index 4ea66edb3e1..302b520e336 100644
--- a/apps/browser/src/autofill/content/autofill-init.spec.ts
+++ b/apps/browser/src/autofill/content/autofill-init.spec.ts
@@ -144,7 +144,7 @@ describe("AutofillInit", () => {
         .mockResolvedValue(pageDetails);
 
       const response = await autofillInit["handleExtensionMessage"](message, sender, sendResponse);
-      await Promise.resolve(response);
+      await flushPromises();
 
       expect(response).toBe(true);
       expect(sendResponse).toHaveBeenCalledWith(pageDetails);
diff --git a/apps/browser/src/autofill/utils/index.spec.ts b/apps/browser/src/autofill/utils/index.spec.ts
index af67d416015..dcb5aa64696 100644
--- a/apps/browser/src/autofill/utils/index.spec.ts
+++ b/apps/browser/src/autofill/utils/index.spec.ts
@@ -37,14 +37,29 @@ describe("generateRandomCustomElementName", () => {
 });
 
 describe("sendExtensionMessage", () => {
-  it("sends a message to the extention", () => {
-    const extensionMessageResponse = sendExtensionMessage("updateAutofillOverlayHidden", {
+  it("sends a message to the extension", async () => {
+    const extensionMessagePromise = sendExtensionMessage("updateAutofillOverlayHidden", {
       display: "none",
     });
-    jest.spyOn(chrome.runtime, "sendMessage");
 
-    expect(chrome.runtime.sendMessage).toHaveBeenCalled();
-    expect(extensionMessageResponse).toEqual(Promise.resolve({}));
+    // Jest doesn't give anyway to select the typed overload of "sendMessage",
+    // a cast is needed to get the correct spy type.
+    const sendMessageSpy = jest.spyOn(chrome.runtime, "sendMessage") as unknown as jest.SpyInstance<
+      void,
+      [message: string, responseCallback: (response: string) => void],
+      unknown
+    >;
+
+    expect(sendMessageSpy).toHaveBeenCalled();
+
+    const [latestCall] = sendMessageSpy.mock.calls;
+    const responseCallback = latestCall[1];
+
+    responseCallback("sendMessageResponse");
+
+    const response = await extensionMessagePromise;
+
+    expect(response).toEqual("sendMessageResponse");
   });
 });
 
diff --git a/apps/browser/src/vault/fido2/content/page-script.webauthn-supported.spec.ts b/apps/browser/src/vault/fido2/content/page-script.webauthn-supported.spec.ts
index c235d53cb05..3044d51fa72 100644
--- a/apps/browser/src/vault/fido2/content/page-script.webauthn-supported.spec.ts
+++ b/apps/browser/src/vault/fido2/content/page-script.webauthn-supported.spec.ts
@@ -53,7 +53,9 @@ describe("Fido2 page script with native WebAuthn support", () => {
   const mockCredentialAssertResult = createAssertCredentialResultMock();
   setupMockedWebAuthnSupport();
 
-  require("./page-script");
+  beforeAll(() => {
+    require("./page-script");
+  });
 
   afterEach(() => {
     jest.resetModules();
diff --git a/apps/browser/test.setup.ts b/apps/browser/test.setup.ts
index 4800b4c17f3..5435c6fd7fe 100644
--- a/apps/browser/test.setup.ts
+++ b/apps/browser/test.setup.ts
@@ -1,3 +1,5 @@
+import "jest-preset-angular/setup-jest";
+
 // Add chrome storage api
 const QUOTA_BYTES = 10;
 const storage = {

From 107ac5dc38c0858d8ba60e2750627b5230dabfd2 Mon Sep 17 00:00:00 2001
From: Opeyemi <Alaoopeyemi101@gmail.com>
Date: Fri, 31 May 2024 20:58:10 +0100
Subject: [PATCH 058/138] Upgrade to macos-13 runner (#9457)

---
 .github/workflows/build-cli.yml            |  2 +-
 .github/workflows/build-desktop.yml        | 28 +++++++---------------
 .github/workflows/release-desktop-beta.yml | 21 +++++-----------
 3 files changed, 15 insertions(+), 36 deletions(-)

diff --git a/.github/workflows/build-cli.yml b/.github/workflows/build-cli.yml
index 47ebaf5189c..6809d950c4e 100644
--- a/.github/workflows/build-cli.yml
+++ b/.github/workflows/build-cli.yml
@@ -65,7 +65,7 @@ jobs:
         os:
          [
           { base: "linux", distro: "ubuntu-22.04" },
-          { base: "mac", distro: "macos-11" }
+          { base: "mac", distro: "macos-13" }
          ]
         license_type:
          [
diff --git a/.github/workflows/build-desktop.yml b/.github/workflows/build-desktop.yml
index e73f882bb40..bebf7b5646c 100644
--- a/.github/workflows/build-desktop.yml
+++ b/.github/workflows/build-desktop.yml
@@ -444,10 +444,7 @@ jobs:
 
   macos-build:
     name: MacOS Build
-    # Note, this workflow is running on macOS 11 to maintain compatibility with macOS 10.15 Catalina, 
-    # as the newer versions will case the native modules to be incompatible with older macOS systems
-    # This version should stay pinned until we drop support for macOS 10.15, or we drop the native modules
-    runs-on: macos-11
+    runs-on: macos-13
     needs: setup
     env:
       _PACKAGE_VERSION: ${{ needs.setup.outputs.package_version }}
@@ -605,10 +602,7 @@ jobs:
 
   macos-package-github:
     name: MacOS Package GitHub Release Assets
-    # Note, this workflow is running on macOS 11 to maintain compatibility with macOS 10.15 Catalina, 
-    # as the newer versions will case the native modules to be incompatible with older macOS systems
-    # This version should stay pinned until we drop support for macOS 10.15, or we drop the native modules
-    runs-on: macos-11
+    runs-on: macos-13
     needs:
       - browser-build
       - macos-build
@@ -814,10 +808,7 @@ jobs:
 
   macos-package-mas:
     name: MacOS Package Prod Release Asset
-    # Note, this workflow is running on macOS 11 to maintain compatibility with macOS 10.15 Catalina, 
-    # as the newer versions will case the native modules to be incompatible with older macOS systems
-    # This version should stay pinned until we drop support for macOS 10.15, or we drop the native modules
-    runs-on: macos-11
+    runs-on: macos-13
     needs:
       - browser-build
       - macos-build
@@ -1014,11 +1005,7 @@ jobs:
 
   macos-package-dev:
     name: MacOS Package Dev Release Asset
-    if: false  # We need to look into how code signing works for dev
-    # Note, this workflow is running on macOS 11 to maintain compatibility with macOS 10.15 Catalina, 
-    # as the newer versions will case the native modules to be incompatible with older macOS systems
-    # This version should stay pinned until we drop support for macOS 10.15, or we drop the native modules
-    runs-on: macos-11
+    runs-on: macos-13
     needs:
       - browser-build
       - macos-build
@@ -1188,14 +1175,15 @@ jobs:
           APPLE_ID_PASSWORD: ${{ secrets.APPLE_ID_PASSWORD }}
 
       - name: Zip masdev asset
-        working-directory: ./dist/mas-dev-universal
-        run: zip -r Bitwarden-${{ env.PACKAGE_VERSION }}-masdev-universal.zip Bitwarden.app
+        run: |
+          cd dist/mas-dev-universal
+          zip -r Bitwarden-${{ env._PACKAGE_VERSION }}-masdev-universal.zip Bitwarden.app
 
       - name: Upload masdev artifact
         uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4.3.1
         with:
           name: Bitwarden-${{ env._PACKAGE_VERSION }}-masdev-universal.zip
-          path: apps/desktop/dist/mas-universal/Bitwarden-${{ env._PACKAGE_VERSION }}-masdev-universal.zip
+          path: apps/desktop/dist/mas-dev-universal/Bitwarden-${{ env._PACKAGE_VERSION }}-masdev-universal.zip
           if-no-files-found: error
 
 
diff --git a/.github/workflows/release-desktop-beta.yml b/.github/workflows/release-desktop-beta.yml
index 46f4ffad57d..55f822e6237 100644
--- a/.github/workflows/release-desktop-beta.yml
+++ b/.github/workflows/release-desktop-beta.yml
@@ -393,10 +393,7 @@ jobs:
 
   macos-build:
     name: MacOS Build
-    # Note, this workflow is running on macOS 11 to maintain compatibility with macOS 10.15 Catalina, 
-    # as the newer versions will case the native modules to be incompatible with older macOS systems
-    # This version should stay pinned until we drop support for macOS 10.15, or we drop the native modules
-    runs-on: macos-11
+    runs-on: macos-13
     needs: setup
     env:
       _PACKAGE_VERSION: ${{ needs.setup.outputs.release-version }}
@@ -457,7 +454,7 @@ jobs:
 
           az keyvault secret show --id https://bitwarden-ci.vault.azure.net/certificates/bitwarden-desktop-key |
             jq -r .value | base64 -d > $HOME/certificates/bitwarden-desktop-key.p12
-          
+
           az keyvault secret show --id https://bitwarden-ci.vault.azure.net/certificates/appstore-app-cert |
             jq -r .value | base64 -d > $HOME/certificates/appstore-app-cert.p12
 
@@ -525,10 +522,7 @@ jobs:
 
   macos-package-github:
     name: MacOS Package GitHub Release Assets
-    # Note, this workflow is running on macOS 11 to maintain compatibility with macOS 10.15 Catalina, 
-    # as the newer versions will case the native modules to be incompatible with older macOS systems
-    # This version should stay pinned until we drop support for macOS 10.15, or we drop the native modules  
-    runs-on: macos-11
+    runs-on: macos-13
     needs:
       - setup
       - macos-build
@@ -596,7 +590,7 @@ jobs:
 
           az keyvault secret show --id https://bitwarden-ci.vault.azure.net/certificates/bitwarden-desktop-key |
             jq -r .value | base64 -d > $HOME/certificates/bitwarden-desktop-key.p12
-          
+
           az keyvault secret show --id https://bitwarden-ci.vault.azure.net/certificates/appstore-app-cert |
             jq -r .value | base64 -d > $HOME/certificates/appstore-app-cert.p12
 
@@ -738,10 +732,7 @@ jobs:
 
   macos-package-mas:
     name: MacOS Package Prod Release Asset
-    # Note, this workflow is running on macOS 11 to maintain compatibility with macOS 10.15 Catalina, 
-    # as the newer versions will case the native modules to be incompatible with older macOS systems
-    # This version should stay pinned until we drop support for macOS 10.15, or we drop the native modules    
-    runs-on: macos-11
+    runs-on: macos-13
     needs:
       - setup
       - macos-build
@@ -804,7 +795,7 @@ jobs:
 
           az keyvault secret show --id https://bitwarden-ci.vault.azure.net/certificates/bitwarden-desktop-key |
             jq -r .value | base64 -d > $HOME/certificates/bitwarden-desktop-key.p12
-          
+
           az keyvault secret show --id https://bitwarden-ci.vault.azure.net/certificates/appstore-app-cert |
             jq -r .value | base64 -d > $HOME/certificates/appstore-app-cert.p12
 

From b457962850bbed9b9018002f26c53ee04982eab0 Mon Sep 17 00:00:00 2001
From: Will Martin <contact@willmartian.com>
Date: Fri, 31 May 2024 17:59:39 -0400
Subject: [PATCH 059/138] [PM-6788] enable bugfixes in babel/preset-env (#9465)

* enable bugfixes in babel/preset-env
---
 babel.config.json | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/babel.config.json b/babel.config.json
index 7f4611dec02..4d817f0abf4 100644
--- a/babel.config.json
+++ b/babel.config.json
@@ -1,4 +1,11 @@
 {
-  "presets": ["@babel/preset-env"],
+  "presets": [
+    [
+      "@babel/preset-env",
+      {
+        "bugfixes": true
+      }
+    ]
+  ],
   "plugins": ["@angular/compiler-cli/linker/babel"]
 }

From 0d492b4454f3e5672ae0c4a25ea1600ec44ee6ff Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Anders=20=C3=85berg?= <anders@andersaberg.com>
Date: Sat, 1 Jun 2024 19:07:36 +0200
Subject: [PATCH 060/138] Fix PM-8134: Change b64 to b64url (#9193)

---
 .../request/webauthn-login-attestation-response.request.ts    | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/web/src/app/auth/core/services/webauthn-login/request/webauthn-login-attestation-response.request.ts b/apps/web/src/app/auth/core/services/webauthn-login/request/webauthn-login-attestation-response.request.ts
index ef3d657f2f9..f7c391b0ee2 100644
--- a/apps/web/src/app/auth/core/services/webauthn-login/request/webauthn-login-attestation-response.request.ts
+++ b/apps/web/src/app/auth/core/services/webauthn-login/request/webauthn-login-attestation-response.request.ts
@@ -20,8 +20,8 @@ export class WebauthnLoginAttestationResponseRequest extends WebauthnLoginAuthen
     }
 
     this.response = {
-      attestationObject: Utils.fromBufferToB64(credential.response.attestationObject),
-      clientDataJson: Utils.fromBufferToB64(credential.response.clientDataJSON),
+      attestationObject: Utils.fromBufferToUrlB64(credential.response.attestationObject),
+      clientDataJson: Utils.fromBufferToUrlB64(credential.response.clientDataJSON),
     };
   }
 }

From f172612b1951966de878a4978136d4d8c9c4c9d8 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Sun, 2 Jun 2024 09:30:49 +0000
Subject: [PATCH 061/138] Autosync the updated translations (#9470)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/browser/src/_locales/az/messages.json    | 24 +++++++-------
 apps/browser/src/_locales/de/messages.json    |  2 +-
 apps/browser/src/_locales/lt/messages.json    | 32 +++++++++----------
 apps/browser/src/_locales/sv/messages.json    |  8 ++---
 apps/browser/src/_locales/uk/messages.json    | 24 +++++++-------
 apps/browser/src/_locales/zh_CN/messages.json |  4 +--
 6 files changed, 47 insertions(+), 47 deletions(-)

diff --git a/apps/browser/src/_locales/az/messages.json b/apps/browser/src/_locales/az/messages.json
index 76615435f7b..129aac00ee2 100644
--- a/apps/browser/src/_locales/az/messages.json
+++ b/apps/browser/src/_locales/az/messages.json
@@ -763,7 +763,7 @@
     "message": "Kilidi aç"
   },
   "additionalOptions": {
-    "message": "Additional options"
+    "message": "Əlavə seçimlər"
   },
   "enableContextMenuItem": {
     "message": "Konteks menyu seçimlərini göstər"
@@ -803,7 +803,7 @@
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
   "exportFrom": {
-    "message": "Export from"
+    "message": "Buradan xaricə köçür"
   },
   "exportVault": {
     "message": "Anbarı xaricə köçür"
@@ -812,28 +812,28 @@
     "message": "Fayl formatı"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "This file export will be password protected and require the file password to decrypt."
+    "message": "Bu faylın xaricə köçürülməsi, parolla qorunacaq və şifrəsini açmaq üçün fayl parolu tələb olunacaq."
   },
   "filePassword": {
-    "message": "File password"
+    "message": "Fayl parolu"
   },
   "exportPasswordDescription": {
-    "message": "This password will be used to export and import this file"
+    "message": "Bu parol, bu faylı daxilə və xaricə köçürmək üçün istifadə olunacaq"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+    "message": "Xaricə köçürməni şifrələmək və daxilə köçürməni yalnız mövcud Bitwarden hesabı ilə məhdudlaşdırmaq üçün hesabınızın istifadəçi adı və Ana Parolundan əldə edilən hesab şifrələmə açarınızı istifadə edin."
   },
   "passwordProtectedOptionDescription": {
-    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+    "message": "Xaricə köçürməni şifrələmək üçün bir fayl parolu təyin edin və şifrəni açma parolunu istifadə edərək bunu istənilən Bitwarden hesabına köçürün."
   },
   "exportTypeHeading": {
-    "message": "Export type"
+    "message": "Xaricə köçürmə növü"
   },
   "accountRestricted": {
-    "message": "Account restricted"
+    "message": "Hesab məhdudlaşdırıldı"
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
-    "message": "“File password”  and “Confirm file password“ do not match."
+    "message": "\"Fayl parolu\" və \"Fayl parolunu təsdiqlə\" uyuşmur."
   },
   "warning": {
     "message": "XƏBƏRDARLIQ",
@@ -2213,10 +2213,10 @@
     }
   },
   "exportingOrganizationVaultTitle": {
-    "message": "Exporting organization vault"
+    "message": "Təşkilat anbarını xaricə köçürmə"
   },
   "exportingOrganizationVaultDesc": {
-    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "message": "Yalnız $ORGANIZATION$ ilə əlaqələndirilmiş təşkilat anbarı ixrac ediləcək. Fərdi anbardakı və digər təşkilat elementlər daxil edilmir.",
     "placeholders": {
       "organization": {
         "content": "$1",
diff --git a/apps/browser/src/_locales/de/messages.json b/apps/browser/src/_locales/de/messages.json
index 05c731aa37a..bec6702ae28 100644
--- a/apps/browser/src/_locales/de/messages.json
+++ b/apps/browser/src/_locales/de/messages.json
@@ -821,7 +821,7 @@
     "message": "Dieses Passwort wird zum Exportieren und Importieren dieser Datei verwendet"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Verwende den Verschlüsselungscode deines Kontos, abgeleitet vom Benutzernamen und Master-Passwort, um den Export zu verschlüsseln und den Import auf das aktuelle Bitwarden-Konto zu beschränken."
+    "message": "Verwende den Verschlüsselungsschlüssel deines Kontos, abgeleitet vom Benutzernamen und Master-Passwort, um den Export zu verschlüsseln und den Import auf das aktuelle Bitwarden-Konto zu beschränken."
   },
   "passwordProtectedOptionDescription": {
     "message": "Lege ein Dateipasswort fest, um den Export zu verschlüsseln und importiere ihn in ein beliebiges Bitwarden-Konto, wobei das Passwort zum Entschlüsseln genutzt wird."
diff --git a/apps/browser/src/_locales/lt/messages.json b/apps/browser/src/_locales/lt/messages.json
index e44efc99da1..5b426e47d15 100644
--- a/apps/browser/src/_locales/lt/messages.json
+++ b/apps/browser/src/_locales/lt/messages.json
@@ -423,7 +423,7 @@
     "message": "Kita"
   },
   "unlockMethods": {
-    "message": "Unlock options"
+    "message": "Atrakinti parinktis"
   },
   "unlockMethodNeededToChangeTimeoutActionDesc": {
     "message": "Nustatyk atrakinimo būdą, kad pakeistum saugyklos laiko limito veiksmą."
@@ -432,10 +432,10 @@
     "message": "Nustatykite nustatymuose atrakinimo metodą"
   },
   "sessionTimeoutHeader": {
-    "message": "Session timeout"
+    "message": "Baigėsi seanso laikas"
   },
   "otherOptions": {
-    "message": "Other options"
+    "message": "Kitos parinktys"
   },
   "rateExtension": {
     "message": "Įvertinkite šį plėtinį"
@@ -2274,7 +2274,7 @@
     "message": "Sugeneruoti el. pašto slapyvardį su išorine persiuntimo paslauga."
   },
   "forwarderError": {
-    "message": "$SERVICENAME$ error: $ERRORMESSAGE$",
+    "message": "„$SERVICENAME$“ klaida: $ERRORMESSAGE$.",
     "description": "Reports an error returned by a forwarding service to the user.",
     "placeholders": {
       "servicename": {
@@ -2288,11 +2288,11 @@
     }
   },
   "forwarderGeneratedBy": {
-    "message": "Generated by Bitwarden.",
+    "message": "Sugeneravo „Bitwarden“.",
     "description": "Displayed with the address on the forwarding service's configuration screen."
   },
   "forwarderGeneratedByWithWebsite": {
-    "message": "Website: $WEBSITE$. Generated by Bitwarden.",
+    "message": "Svetainė: $WEBSITE$. Sugeneravo „Bitwarden“.",
     "description": "Displayed with the address on the forwarding service's configuration screen.",
     "placeholders": {
       "WEBSITE": {
@@ -2302,7 +2302,7 @@
     }
   },
   "forwaderInvalidToken": {
-    "message": "Invalid $SERVICENAME$ API token",
+    "message": "Netinkamas „$SERVICENAME$“ API prieigos raktas.",
     "description": "Displayed when the user's API token is empty or rejected by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2312,7 +2312,7 @@
     }
   },
   "forwaderInvalidTokenWithMessage": {
-    "message": "Invalid $SERVICENAME$ API token: $ERRORMESSAGE$",
+    "message": "Netinkamas „$SERVICENAME$“ API prieigos raktas: $ERRORMESSAGE$.",
     "description": "Displayed when the user's API token is rejected by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -2326,7 +2326,7 @@
     }
   },
   "forwarderNoAccountId": {
-    "message": "Unable to obtain $SERVICENAME$ masked email account ID.",
+    "message": "Nepavyksta gauti „$SERVICENAME$“ užmaskuoto el. pašto paskyros ID.",
     "description": "Displayed when the forwarding service fails to return an account ID.",
     "placeholders": {
       "servicename": {
@@ -2336,7 +2336,7 @@
     }
   },
   "forwarderNoDomain": {
-    "message": "Invalid $SERVICENAME$ domain.",
+    "message": "Netinkamas „$SERVICENAME$“ domenas.",
     "description": "Displayed when the domain is empty or domain authorization failed at the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2346,7 +2346,7 @@
     }
   },
   "forwarderNoUrl": {
-    "message": "Invalid $SERVICENAME$ url.",
+    "message": "Netinkamas „$SERVICENAME$“ URL.",
     "description": "Displayed when the url of the forwarding service wasn't supplied.",
     "placeholders": {
       "servicename": {
@@ -2356,7 +2356,7 @@
     }
   },
   "forwarderUnknownError": {
-    "message": "Unknown $SERVICENAME$ error occurred.",
+    "message": "Įvyko nežinoma „$SERVICENAME$“ klaida.",
     "description": "Displayed when the forwarding service failed due to an unknown error.",
     "placeholders": {
       "servicename": {
@@ -2366,7 +2366,7 @@
     }
   },
   "forwarderUnknownForwarder": {
-    "message": "Unknown forwarder: '$SERVICENAME$'.",
+    "message": "Nežinomas persiuntėjas: „$SERVICENAME$“.",
     "description": "Displayed when the forwarding service is not supported.",
     "placeholders": {
       "servicename": {
@@ -3287,13 +3287,13 @@
     "message": "Administratoriaus konsolės"
   },
   "accountSecurity": {
-    "message": "Account security"
+    "message": "Paskyros saugumas"
   },
   "notifications": {
-    "message": "Notifications"
+    "message": "Pranešimai"
   },
   "appearance": {
-    "message": "Appearance"
+    "message": "Išvaizda"
   },
   "errorAssigningTargetCollection": {
     "message": "Klaida priskiriant tikslinę kolekciją."
diff --git a/apps/browser/src/_locales/sv/messages.json b/apps/browser/src/_locales/sv/messages.json
index 210f2358e04..deb7fda04b3 100644
--- a/apps/browser/src/_locales/sv/messages.json
+++ b/apps/browser/src/_locales/sv/messages.json
@@ -763,7 +763,7 @@
     "message": "Lås upp"
   },
   "additionalOptions": {
-    "message": "Additional options"
+    "message": "Ytterligare alternativ"
   },
   "enableContextMenuItem": {
     "message": "Visa alternativ för snabbmenyn"
@@ -803,7 +803,7 @@
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
   "exportFrom": {
-    "message": "Export from"
+    "message": "Exportera från"
   },
   "exportVault": {
     "message": "Exportera valv"
@@ -815,7 +815,7 @@
     "message": "This file export will be password protected and require the file password to decrypt."
   },
   "filePassword": {
-    "message": "File password"
+    "message": "Fillösenord"
   },
   "exportPasswordDescription": {
     "message": "This password will be used to export and import this file"
@@ -827,7 +827,7 @@
     "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
   },
   "exportTypeHeading": {
-    "message": "Export type"
+    "message": "Exporttyp"
   },
   "accountRestricted": {
     "message": "Account restricted"
diff --git a/apps/browser/src/_locales/uk/messages.json b/apps/browser/src/_locales/uk/messages.json
index 571206dbb81..a97d9626a4f 100644
--- a/apps/browser/src/_locales/uk/messages.json
+++ b/apps/browser/src/_locales/uk/messages.json
@@ -763,7 +763,7 @@
     "message": "Розблокувати"
   },
   "additionalOptions": {
-    "message": "Additional options"
+    "message": "Додаткові налаштування"
   },
   "enableContextMenuItem": {
     "message": "Показувати в контекстному меню"
@@ -803,7 +803,7 @@
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
   "exportFrom": {
-    "message": "Export from"
+    "message": "Експортувати з"
   },
   "exportVault": {
     "message": "Експортувати сховище"
@@ -812,28 +812,28 @@
     "message": "Формат файлу"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "This file export will be password protected and require the file password to decrypt."
+    "message": "Цей експортований файл буде захищений паролем, який необхідно ввести для його розшифрування."
   },
   "filePassword": {
-    "message": "File password"
+    "message": "Пароль файлу"
   },
   "exportPasswordDescription": {
-    "message": "This password will be used to export and import this file"
+    "message": "Цей пароль буде використано для експортування та імпортування цього файлу"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+    "message": "Використовуйте ключ шифрування свого облікового запису, створений на основі імені користувача й головного пароля, щоб зашифрувати експортовані дані та обмежити можливість імпортування лише до поточного облікового запису Bitwarden."
   },
   "passwordProtectedOptionDescription": {
-    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+    "message": "Встановіть пароль файлу, щоб зашифрувати експортовані дані та імпортувати до будь-якого облікового запису Bitwarden за допомогою цього пароля."
   },
   "exportTypeHeading": {
-    "message": "Export type"
+    "message": "Тип експорту"
   },
   "accountRestricted": {
-    "message": "Account restricted"
+    "message": "Обмежено обліковим записом"
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
-    "message": "“File password”  and “Confirm file password“ do not match."
+    "message": "Пароль файлу та підтвердження пароля відрізняються."
   },
   "warning": {
     "message": "ПОПЕРЕДЖЕННЯ",
@@ -2213,10 +2213,10 @@
     }
   },
   "exportingOrganizationVaultTitle": {
-    "message": "Exporting organization vault"
+    "message": "Експортування сховища організації"
   },
   "exportingOrganizationVaultDesc": {
-    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "message": "Буде експортовано лише сховище організації, пов'язане з $ORGANIZATION$. Елементи особистих сховищ або інших організацій не будуть включені.",
     "placeholders": {
       "organization": {
         "content": "$1",
diff --git a/apps/browser/src/_locales/zh_CN/messages.json b/apps/browser/src/_locales/zh_CN/messages.json
index 76181730097..609275567b8 100644
--- a/apps/browser/src/_locales/zh_CN/messages.json
+++ b/apps/browser/src/_locales/zh_CN/messages.json
@@ -821,10 +821,10 @@
     "message": "此密码将用于导出和导入此文件"
   },
   "accountRestrictedOptionDescription": {
-    "message": "使用衍生自您账户的用户名和主密码的加密密钥，以加密此导出并限制只能导入到当前的 Bitwarden 账户。"
+    "message": "使用衍生自您账户的用户名和主密码的账户加密密钥，以加密此导出并限制只能导入到当前的 Bitwarden 账户。"
   },
   "passwordProtectedOptionDescription": {
-    "message": "设置一个密码用来加密导出的数据，并使用此密码解密以导入到任意 Bitwarden 账户。"
+    "message": "设置一个文件密码用来加密此导出，并使用此密码解密以导入到任意 Bitwarden 账户。"
   },
   "exportTypeHeading": {
     "message": "导出类型"

From c72e8df619b67fd3cceb8bd37368ef3379cb2f9d Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Sun, 2 Jun 2024 09:31:23 +0000
Subject: [PATCH 062/138] Autosync the updated translations (#9471)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/web/src/locales/zh_CN/messages.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/web/src/locales/zh_CN/messages.json b/apps/web/src/locales/zh_CN/messages.json
index 7196fa26e34..652a1f3d671 100644
--- a/apps/web/src/locales/zh_CN/messages.json
+++ b/apps/web/src/locales/zh_CN/messages.json
@@ -2105,7 +2105,7 @@
     "message": "Bitwarden 家庭版计划。"
   },
   "addons": {
-    "message": "附加项目"
+    "message": "插件"
   },
   "premiumAccess": {
     "message": "高级会员"

From 3835a9ddaf5b33ef49021dac018c47b121044847 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Sun, 2 Jun 2024 09:32:32 +0000
Subject: [PATCH 063/138] Autosync the updated translations (#9472)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/desktop/src/locales/az/messages.json    | 24 ++++++++++----------
 apps/desktop/src/locales/de/messages.json    |  2 +-
 apps/desktop/src/locales/sv/messages.json    |  2 +-
 apps/desktop/src/locales/uk/messages.json    | 24 ++++++++++----------
 apps/desktop/src/locales/zh_CN/messages.json | 24 ++++++++++----------
 5 files changed, 38 insertions(+), 38 deletions(-)

diff --git a/apps/desktop/src/locales/az/messages.json b/apps/desktop/src/locales/az/messages.json
index e0bcf2df5d4..0143e6c2745 100644
--- a/apps/desktop/src/locales/az/messages.json
+++ b/apps/desktop/src/locales/az/messages.json
@@ -1300,7 +1300,7 @@
     "description": "ex. Date this password was updated"
   },
   "exportFrom": {
-    "message": "Export from"
+    "message": "Buradan xaricə köçür"
   },
   "exportVault": {
     "message": "Anbarı xaricə köçür"
@@ -1309,31 +1309,31 @@
     "message": "Fayl formatı"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "This file export will be password protected and require the file password to decrypt."
+    "message": "Bu faylın xaricə köçürülməsi, parolla qorunacaq və şifrəsini açmaq üçün fayl parolu tələb olunacaq."
   },
   "filePassword": {
-    "message": "File password"
+    "message": "Fayl parolu"
   },
   "exportPasswordDescription": {
-    "message": "This password will be used to export and import this file"
+    "message": "Bu parol, bu faylı daxilə və xaricə köçürmək üçün istifadə olunacaq"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+    "message": "Xaricə köçürməni şifrələmək və daxilə köçürməni yalnız mövcud Bitwarden hesabı ilə məhdudlaşdırmaq üçün hesabınızın istifadəçi adı və Ana Parolundan əldə edilən hesab şifrələmə açarınızı istifadə edin."
   },
   "passwordProtected": {
-    "message": "Password protected"
+    "message": "Parolla qorunan"
   },
   "passwordProtectedOptionDescription": {
-    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+    "message": "Xaricə köçürməni şifrələmək üçün bir fayl parolu təyin edin və şifrəni açma parolunu istifadə edərək bunu istənilən Bitwarden hesabına köçürün."
   },
   "exportTypeHeading": {
-    "message": "Export type"
+    "message": "Xaricə köçürmə növü"
   },
   "accountRestricted": {
-    "message": "Account restricted"
+    "message": "Hesab məhdudlaşdırıldı"
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
-    "message": "“File password”  and “Confirm file password“ do not match."
+    "message": "\"Fayl parolu\" və \"Fayl parolunu təsdiqlə\" uyuşmur."
   },
   "hCaptchaUrl": {
     "message": "hCaptcha ünvanı",
@@ -2102,10 +2102,10 @@
     }
   },
   "exportingOrganizationVaultTitle": {
-    "message": "Exporting organization vault"
+    "message": "Təşkilat anbarını xaricə köçürmə"
   },
   "exportingOrganizationVaultDesc": {
-    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "message": "Yalnız $ORGANIZATION$ ilə əlaqələndirilmiş təşkilat anbarı ixrac ediləcək. Fərdi anbardakı və digər təşkilat elementlər daxil edilmir.",
     "placeholders": {
       "organization": {
         "content": "$1",
diff --git a/apps/desktop/src/locales/de/messages.json b/apps/desktop/src/locales/de/messages.json
index 46f2e5e7f63..e5abc443723 100644
--- a/apps/desktop/src/locales/de/messages.json
+++ b/apps/desktop/src/locales/de/messages.json
@@ -1318,7 +1318,7 @@
     "message": "Dieses Passwort wird zum Exportieren und Importieren dieser Datei verwendet"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Verwende den Verschlüsselungscode deines Kontos, abgeleitet vom Benutzernamen und Master-Passwort, um den Export zu verschlüsseln und den Import auf das aktuelle Bitwarden-Konto zu beschränken."
+    "message": "Verwende den Verschlüsselungsschlüssel deines Kontos, abgeleitet vom Benutzernamen und Master-Passwort, um den Export zu verschlüsseln und den Import auf das aktuelle Bitwarden-Konto zu beschränken."
   },
   "passwordProtected": {
     "message": "Passwortgeschützt"
diff --git a/apps/desktop/src/locales/sv/messages.json b/apps/desktop/src/locales/sv/messages.json
index e7dddd64aaa..9bae4e883dc 100644
--- a/apps/desktop/src/locales/sv/messages.json
+++ b/apps/desktop/src/locales/sv/messages.json
@@ -1300,7 +1300,7 @@
     "description": "ex. Date this password was updated"
   },
   "exportFrom": {
-    "message": "Export from"
+    "message": "Exportera från"
   },
   "exportVault": {
     "message": "Exportera valv"
diff --git a/apps/desktop/src/locales/uk/messages.json b/apps/desktop/src/locales/uk/messages.json
index dc5672ed69a..546005db20c 100644
--- a/apps/desktop/src/locales/uk/messages.json
+++ b/apps/desktop/src/locales/uk/messages.json
@@ -1300,7 +1300,7 @@
     "description": "ex. Date this password was updated"
   },
   "exportFrom": {
-    "message": "Export from"
+    "message": "Експортувати з"
   },
   "exportVault": {
     "message": "Експортувати сховище"
@@ -1309,31 +1309,31 @@
     "message": "Формат файлу"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "This file export will be password protected and require the file password to decrypt."
+    "message": "Цей експортований файл буде захищений паролем, який необхідно ввести для його розшифрування."
   },
   "filePassword": {
-    "message": "File password"
+    "message": "Пароль файлу"
   },
   "exportPasswordDescription": {
-    "message": "This password will be used to export and import this file"
+    "message": "Цей пароль буде використано для експортування та імпортування цього файлу"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+    "message": "Використовуйте ключ шифрування свого облікового запису, створений на основі імені користувача й головного пароля, щоб зашифрувати експортовані дані та обмежити можливість імпортування лише до поточного облікового запису Bitwarden."
   },
   "passwordProtected": {
-    "message": "Password protected"
+    "message": "Захищено паролем"
   },
   "passwordProtectedOptionDescription": {
-    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+    "message": "Встановіть пароль файлу, щоб зашифрувати експортовані дані та імпортувати до будь-якого облікового запису Bitwarden за допомогою цього пароля."
   },
   "exportTypeHeading": {
-    "message": "Export type"
+    "message": "Тип експорту"
   },
   "accountRestricted": {
-    "message": "Account restricted"
+    "message": "Обмежено обліковим записом"
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
-    "message": "“File password”  and “Confirm file password“ do not match."
+    "message": "Пароль файлу та підтвердження пароля відрізняються."
   },
   "hCaptchaUrl": {
     "message": "URL-адреса hCaptcha",
@@ -2102,10 +2102,10 @@
     }
   },
   "exportingOrganizationVaultTitle": {
-    "message": "Exporting organization vault"
+    "message": "Експортування сховища організації"
   },
   "exportingOrganizationVaultDesc": {
-    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "message": "Буде експортовано лише сховище організації, пов'язане з $ORGANIZATION$. Елементи особистих сховищ або інших організацій не будуть включені.",
     "placeholders": {
       "organization": {
         "content": "$1",
diff --git a/apps/desktop/src/locales/zh_CN/messages.json b/apps/desktop/src/locales/zh_CN/messages.json
index 27686559fda..22b96d6e4b6 100644
--- a/apps/desktop/src/locales/zh_CN/messages.json
+++ b/apps/desktop/src/locales/zh_CN/messages.json
@@ -1300,7 +1300,7 @@
     "description": "ex. Date this password was updated"
   },
   "exportFrom": {
-    "message": "Export from"
+    "message": "导出自"
   },
   "exportVault": {
     "message": "导出密码库"
@@ -1309,31 +1309,31 @@
     "message": "文件格式"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "This file export will be password protected and require the file password to decrypt."
+    "message": "此文件导出将受密码保护，需要文件密码才能解密。"
   },
   "filePassword": {
-    "message": "File password"
+    "message": "文件密码"
   },
   "exportPasswordDescription": {
-    "message": "This password will be used to export and import this file"
+    "message": "此密码将用于导出和导入此文件"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+    "message": "使用衍生自您账户的用户名和主密码的账户加密密钥，以加密此导出并限制只能导入到当前的 Bitwarden 账户。"
   },
   "passwordProtected": {
-    "message": "Password protected"
+    "message": "密码保护"
   },
   "passwordProtectedOptionDescription": {
-    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+    "message": "设置一个文件密码用来加密此导出，并使用此密码解密以导入到任意 Bitwarden 账户。"
   },
   "exportTypeHeading": {
-    "message": "Export type"
+    "message": "导出类型"
   },
   "accountRestricted": {
-    "message": "Account restricted"
+    "message": "账户受限"
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
-    "message": "“File password”  and “Confirm file password“ do not match."
+    "message": "「文件密码」与「确认文件密码」不一致。"
   },
   "hCaptchaUrl": {
     "message": "hCaptcha URL",
@@ -2102,10 +2102,10 @@
     }
   },
   "exportingOrganizationVaultTitle": {
-    "message": "Exporting organization vault"
+    "message": "正在导出组织密码库"
   },
   "exportingOrganizationVaultDesc": {
-    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "message": "仅会导出与 $ORGANIZATION$ 关联的组织密码库数据。不包括个人密码库和其他组织中的项目。",
     "placeholders": {
       "organization": {
         "content": "$1",

From 2358443102666f9fa8d9b8b511cef3d90a53b054 Mon Sep 17 00:00:00 2001
From: Vincent Salucci <26154748+vincentsalucci@users.noreply.github.com>
Date: Sun, 2 Jun 2024 19:52:19 -0500
Subject: [PATCH 064/138] [AC-1679] Approve all pending device authorizations
 (#9407)

* feat: update service container for required service injection, refs AC-1679

* feat: complete approve all command, refs AC-1679

* fix: cast service container to access bit services, refs AC-1679

* fix: override service container from base program, refs AC-1679

* fix: prettier, refs AC-1679

* feat: replace hardcoded strings with i18n translations (future-proofing), refs AC-1679

* chore: remove i18n references, refs AC-1679

* fix: update approve-all and deny-all commands to match desired input, refs AC-1679
---
 .../device-approval/approve-all.command.ts    | 47 ++++++++++++++++++-
 .../device-approval.program.ts                | 15 ++++--
 .../bit-cli/src/service-container.ts          | 19 +++++++-
 bitwarden_license/bit-cli/tsconfig.json       |  3 +-
 .../src/admin-console/auth-requests/index.ts  |  2 +
 5 files changed, 79 insertions(+), 7 deletions(-)

diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/approve-all.command.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/approve-all.command.ts
index a3a6c4943f8..3214a0fc41e 100644
--- a/bitwarden_license/bit-cli/src/admin-console/device-approval/approve-all.command.ts
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/approve-all.command.ts
@@ -1,9 +1,52 @@
+import { firstValueFrom } from "rxjs";
+
+import { OrganizationAuthRequestService } from "@bitwarden/bit-common/admin-console/auth-requests";
 import { Response } from "@bitwarden/cli/models/response";
+import { MessageResponse } from "@bitwarden/cli/models/response/message.response";
+import { OrganizationService } from "@bitwarden/common/admin-console/services/organization/organization.service";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
 
 export class ApproveAllCommand {
-  constructor() {}
+  constructor(
+    private organizationAuthRequestService: OrganizationAuthRequestService,
+    private organizationService: OrganizationService,
+  ) {}
 
   async run(organizationId: string): Promise<Response> {
-    throw new Error("Not implemented");
+    if (organizationId != null) {
+      organizationId = organizationId.toLowerCase();
+    }
+
+    if (!Utils.isGuid(organizationId)) {
+      return Response.badRequest("`" + organizationId + "` is not a GUID.");
+    }
+
+    const organization = await firstValueFrom(this.organizationService.get$(organizationId));
+    if (!organization?.canManageUsersPassword) {
+      return Response.error(
+        "You do not have permission to approve pending device authorization requests.",
+      );
+    }
+
+    try {
+      const pendingApprovals =
+        await this.organizationAuthRequestService.listPendingRequests(organizationId);
+      if (pendingApprovals.length == 0) {
+        const res = new MessageResponse(
+          "No pending device authorization requests to approve.",
+          null,
+        );
+        return Response.success(res);
+      }
+
+      await this.organizationAuthRequestService.approvePendingRequests(
+        organizationId,
+        pendingApprovals,
+      );
+
+      return Response.success();
+    } catch (e) {
+      return Response.error(e);
+    }
   }
 }
diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
index 152dd48c7b7..bf337be93d6 100644
--- a/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
@@ -3,6 +3,8 @@ import { program, Command } from "commander";
 import { BaseProgram } from "@bitwarden/cli/base-program";
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 
+import { ServiceContainer } from "../../service-container";
+
 import { ApproveAllCommand } from "./approve-all.command";
 import { ApproveCommand } from "./approve.command";
 import { DenyAllCommand } from "./deny-all.command";
@@ -10,6 +12,10 @@ import { DenyCommand } from "./deny.command";
 import { ListCommand } from "./list.command";
 
 export class DeviceApprovalProgram extends BaseProgram {
+  constructor(protected serviceContainer: ServiceContainer) {
+    super(serviceContainer);
+  }
+
   register() {
     program.addCommand(this.deviceApprovalCommand());
   }
@@ -53,14 +59,17 @@ export class DeviceApprovalProgram extends BaseProgram {
   }
 
   private approveAllCommand(): Command {
-    return new Command("approveAll")
+    return new Command("approve-all")
       .description("Approve all pending requests for an organization")
       .argument("<organizationId>")
       .action(async (organizationId: string) => {
         await this.exitIfFeatureFlagDisabled(FeatureFlag.BulkDeviceApproval);
         await this.exitIfLocked();
 
-        const cmd = new ApproveAllCommand();
+        const cmd = new ApproveAllCommand(
+          this.serviceContainer.organizationAuthRequestService,
+          this.serviceContainer.organizationService,
+        );
         const response = await cmd.run(organizationId);
         this.processResponse(response);
       });
@@ -81,7 +90,7 @@ export class DeviceApprovalProgram extends BaseProgram {
   }
 
   private denyAllCommand(): Command {
-    return new Command("denyAll")
+    return new Command("deny-all")
       .description("Deny all pending requests for an organization")
       .argument("<organizationId>")
       .action(async (organizationId: string) => {
diff --git a/bitwarden_license/bit-cli/src/service-container.ts b/bitwarden_license/bit-cli/src/service-container.ts
index 369d54113d6..995e14531d7 100644
--- a/bitwarden_license/bit-cli/src/service-container.ts
+++ b/bitwarden_license/bit-cli/src/service-container.ts
@@ -1,7 +1,24 @@
+import {
+  OrganizationAuthRequestService,
+  OrganizationAuthRequestApiService,
+} from "@bitwarden/bit-common/admin-console/auth-requests";
 import { ServiceContainer as OssServiceContainer } from "@bitwarden/cli/service-container";
 
 /**
  * Instantiates services and makes them available for dependency injection.
  * Any Bitwarden-licensed services should be registered here.
  */
-export class ServiceContainer extends OssServiceContainer {}
+export class ServiceContainer extends OssServiceContainer {
+  organizationAuthRequestApiService: OrganizationAuthRequestApiService;
+  organizationAuthRequestService: OrganizationAuthRequestService;
+
+  constructor() {
+    super();
+    this.organizationAuthRequestApiService = new OrganizationAuthRequestApiService(this.apiService);
+    this.organizationAuthRequestService = new OrganizationAuthRequestService(
+      this.organizationAuthRequestApiService,
+      this.cryptoService,
+      this.organizationUserService,
+    );
+  }
+}
diff --git a/bitwarden_license/bit-cli/tsconfig.json b/bitwarden_license/bit-cli/tsconfig.json
index 1989aa08f9b..e8a57e5eb04 100644
--- a/bitwarden_license/bit-cli/tsconfig.json
+++ b/bitwarden_license/bit-cli/tsconfig.json
@@ -21,7 +21,8 @@
       "@bitwarden/vault-export-core": [
         "../../libs/tools/export/vault-export/vault-export-core/src"
       ],
-      "@bitwarden/node/*": ["../../libs/node/src/*"]
+      "@bitwarden/node/*": ["../../libs/node/src/*"],
+      "@bitwarden/bit-common/*": ["../../bitwarden_license/bit-common/src/*"]
     }
   },
   "include": ["src", "src/**/*.spec.ts"]
diff --git a/bitwarden_license/bit-common/src/admin-console/auth-requests/index.ts b/bitwarden_license/bit-common/src/admin-console/auth-requests/index.ts
index d8c4bacd697..517dc8699b5 100644
--- a/bitwarden_license/bit-common/src/admin-console/auth-requests/index.ts
+++ b/bitwarden_license/bit-common/src/admin-console/auth-requests/index.ts
@@ -1,2 +1,4 @@
 export * from "./pending-organization-auth-request.response";
 export * from "./organization-auth-request.service";
+export * from "./organization-auth-request-api.service";
+export * from "./pending-auth-request.view";

From 13bccc5a63f021db3626250eba8a0ba8a4078063 Mon Sep 17 00:00:00 2001
From: Thomas Rittson <31796059+eliykat@users.noreply.github.com>
Date: Mon, 3 Jun 2024 11:15:01 +1000
Subject: [PATCH 065/138] [AC-2632] Device approvals ListCommand (#9389)

---
 .../device-approval.program.ts                |  5 ++-
 .../device-approval/list.command.ts           | 37 ++++++++++++++++++-
 .../pending-auth-request.response.ts          | 26 +++++++++++++
 3 files changed, 65 insertions(+), 3 deletions(-)
 create mode 100644 bitwarden_license/bit-cli/src/admin-console/device-approval/pending-auth-request.response.ts

diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
index bf337be93d6..290bbb6fa83 100644
--- a/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
@@ -38,7 +38,10 @@ export class DeviceApprovalProgram extends BaseProgram {
         await this.exitIfFeatureFlagDisabled(FeatureFlag.BulkDeviceApproval);
         await this.exitIfLocked();
 
-        const cmd = new ListCommand();
+        const cmd = new ListCommand(
+          this.serviceContainer.organizationAuthRequestService,
+          this.serviceContainer.organizationService,
+        );
         const response = await cmd.run(organizationId);
         this.processResponse(response);
       });
diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/list.command.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/list.command.ts
index 11fb6ec3ee2..10da11b35cb 100644
--- a/bitwarden_license/bit-cli/src/admin-console/device-approval/list.command.ts
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/list.command.ts
@@ -1,9 +1,42 @@
+import { firstValueFrom } from "rxjs";
+
+import { OrganizationAuthRequestService } from "@bitwarden/bit-common/admin-console/auth-requests";
 import { Response } from "@bitwarden/cli/models/response";
+import { ListResponse } from "@bitwarden/cli/models/response/list.response";
+import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
+
+import { PendingAuthRequestResponse } from "./pending-auth-request.response";
 
 export class ListCommand {
-  constructor() {}
+  constructor(
+    private organizationAuthRequestService: OrganizationAuthRequestService,
+    private organizationService: OrganizationService,
+  ) {}
 
   async run(organizationId: string): Promise<Response> {
-    throw new Error("Not implemented");
+    if (organizationId != null) {
+      organizationId = organizationId.toLowerCase();
+    }
+
+    if (!Utils.isGuid(organizationId)) {
+      return Response.badRequest("`" + organizationId + "` is not a GUID.");
+    }
+
+    const organization = await firstValueFrom(this.organizationService.get$(organizationId));
+    if (!organization?.canManageUsersPassword) {
+      return Response.error(
+        "You do not have permission to approve pending device authorization requests.",
+      );
+    }
+
+    try {
+      const requests =
+        await this.organizationAuthRequestService.listPendingRequests(organizationId);
+      const res = new ListResponse(requests.map((r) => new PendingAuthRequestResponse(r)));
+      return Response.success(res);
+    } catch (e) {
+      return Response.error(e);
+    }
   }
 }
diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/pending-auth-request.response.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/pending-auth-request.response.ts
new file mode 100644
index 00000000000..991b3fb8e58
--- /dev/null
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/pending-auth-request.response.ts
@@ -0,0 +1,26 @@
+import { PendingAuthRequestView } from "@bitwarden/bit-common/admin-console/auth-requests/";
+import { BaseResponse } from "@bitwarden/cli/models/response/base.response";
+
+export class PendingAuthRequestResponse implements BaseResponse {
+  object = "auth-request";
+
+  id: string;
+  userId: string;
+  organizationUserId: string;
+  email: string;
+  requestDeviceIdentifier: string;
+  requestDeviceType: string;
+  requestIpAddress: string;
+  creationDate: Date;
+
+  constructor(authRequest: PendingAuthRequestView) {
+    this.id = authRequest.id;
+    this.userId = authRequest.userId;
+    this.organizationUserId = authRequest.organizationUserId;
+    this.email = authRequest.email;
+    this.requestDeviceIdentifier = authRequest.requestDeviceIdentifier;
+    this.requestDeviceType = authRequest.requestDeviceType;
+    this.requestIpAddress = authRequest.requestIpAddress;
+    this.creationDate = authRequest.creationDate;
+  }
+}

From 01648e2cc39b9c2eb916dc2cb415d309cda8b309 Mon Sep 17 00:00:00 2001
From: Jared Snider <116684653+JaredSnider-Bitwarden@users.noreply.github.com>
Date: Mon, 3 Jun 2024 10:15:11 -0400
Subject: [PATCH 066/138] Auth/PM-8358 - User Verification dialog & form input
 fix for empty submit displaying wrong error (#9363)

* PM-8358 - UserVerificatonFormInput - fix incorrect init logic. We needed to execute the processSecretChanges logic to convert null into { type: 0, secret: null }  (VerificationWithSecret) for all non-biometric verification flows. .

* PM-8358 - UserVerificationService - verifyUser(...) - throw error if called with null. It should only happen if a dev makes a mistake in theory.
---
 .../user-verification-form-input.component.ts                 | 4 ++--
 .../services/user-verification/user-verification.service.ts   | 4 ++++
 2 files changed, 6 insertions(+), 2 deletions(-)

diff --git a/libs/auth/src/angular/user-verification/user-verification-form-input.component.ts b/libs/auth/src/angular/user-verification/user-verification-form-input.component.ts
index 8cb40d94524..8c62136d63c 100644
--- a/libs/auth/src/angular/user-verification/user-verification-form-input.component.ts
+++ b/libs/auth/src/angular/user-verification/user-verification-form-input.component.ts
@@ -197,8 +197,8 @@ export class UserVerificationFormInputComponent implements ControlValueAccessor,
       }
     }
 
-    // Don't bother executing secret changes if biometrics verification is active.
-    if (this.activeClientVerificationOption === ActiveClientVerificationOption.Biometrics) {
+    // Executing secret changes for all non biometrics verification. Biometrics doesn't have a user entered secret.
+    if (this.activeClientVerificationOption !== ActiveClientVerificationOption.Biometrics) {
       this.processSecretChanges(this.secret.value);
     }
 
diff --git a/libs/common/src/auth/services/user-verification/user-verification.service.ts b/libs/common/src/auth/services/user-verification/user-verification.service.ts
index 7561023a277..85640519ec3 100644
--- a/libs/common/src/auth/services/user-verification/user-verification.service.ts
+++ b/libs/common/src/auth/services/user-verification/user-verification.service.ts
@@ -140,6 +140,10 @@ export class UserVerificationService implements UserVerificationServiceAbstracti
    * @param verification User-supplied verification data (OTP, MP, PIN, or biometrics)
    */
   async verifyUser(verification: Verification): Promise<boolean> {
+    if (verification == null) {
+      throw new Error("Verification is required.");
+    }
+
     const [userId, email] = await firstValueFrom(
       this.accountService.activeAccount$.pipe(map((a) => [a?.id, a?.email])),
     );

From 748eb002232fce0d6959755afc2f5c6fb04e4313 Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Mon, 3 Jun 2024 09:20:14 -0500
Subject: [PATCH 067/138] [PM-6826] Vault filter refresh (#9365)

* add initial type filter

- use `bit-select` while the chip component is being developed

* get cipherTypes$ from service

- integrate with user settings

* initial add of folder selection

* initial add of vault selection

* initial add of collections filter

* update `VaultPopupListFilterService` to `VaultPopupListFiltersService`

* integrate hasFilterApplied$

* intermediate commit of integration to the filters component

* do not return the tree when the value is null

* return null when the updated option is null

* update vault-popup-list to conform to the chip select structure

* integration of bit-chip-select

* move "no folder" option to the end of the list

* show danger icon for deactivated organizations

* show deactivated warning when the filtered org is disabled

* update documentation

* use pascal case for constants

* store filter values as full objects rather than just id

- This allows secondary logic to be applied when filters are selected

* move filter form into service to be the source of truth

* fix tests after adding "jest-preset-angular/setup-jest"

* remove logic to have dynamic cipher type filters

* use ProductType enum

* invert conditional for less nesting

* prefer `decryptedCollections$` over getAllDecrypted

* update comments

* use a `filterFunction$` observable rather than having to pass filters back to the service

* fix children testing

* remove check for no folder

* reset filter form when filter component is destroyed

* add takeUntilDestroyed for organization valueChanges

* allow takeUntilDestroyed to use internal destroy ref

- The associated unit tests needed to be configured with TestBed rather than just `new Service()` for this to work

* use controls object for type safety
---
 apps/browser/src/_locales/en/messages.json    |  11 +-
 .../vault-list-filters.component.html         |  39 ++
 .../vault-list-filters.component.ts           |  28 ++
 .../components/vault/vault-v2.component.html  |  18 +-
 .../components/vault/vault-v2.component.ts    |   4 +
 .../vault-popup-items.service.spec.ts         |  26 ++
 .../services/vault-popup-items.service.ts     |  48 ++-
 .../vault-popup-list-filters.service.spec.ts  | 298 ++++++++++++++
 .../vault-popup-list-filters.service.ts       | 371 ++++++++++++++++++
 .../src/chip-select/chip-select.component.ts  |   4 +-
 .../src/icon/icons/deactivated-org.ts         |  32 ++
 libs/components/src/icon/icons/index.ts       |   1 +
 12 files changed, 868 insertions(+), 12 deletions(-)
 create mode 100644 apps/browser/src/vault/popup/components/vault-v2/vault-list-filters/vault-list-filters.component.html
 create mode 100644 apps/browser/src/vault/popup/components/vault-v2/vault-list-filters/vault-list-filters.component.ts
 create mode 100644 apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
 create mode 100644 apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
 create mode 100644 libs/components/src/icon/icons/deactivated-org.ts

diff --git a/apps/browser/src/_locales/en/messages.json b/apps/browser/src/_locales/en/messages.json
index 426f570d643..8d81b344482 100644
--- a/apps/browser/src/_locales/en/messages.json
+++ b/apps/browser/src/_locales/en/messages.json
@@ -224,7 +224,7 @@
   },
   "continueToAuthenticatorPageDesc": {
     "message": "Bitwarden Authenticator allows you to store authenticator keys and generate TOTP codes for 2-step verification flows. Learn more on the bitwarden.com website"
-  },  
+  },
   "bitwardenSecretsManager": {
     "message": "Bitwarden Secrets Manager"
   },
@@ -3333,5 +3333,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-filters/vault-list-filters.component.html b/apps/browser/src/vault/popup/components/vault-v2/vault-list-filters/vault-list-filters.component.html
new file mode 100644
index 00000000000..6136db59f46
--- /dev/null
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-filters/vault-list-filters.component.html
@@ -0,0 +1,39 @@
+<form [formGroup]="filterForm" class="tw-flex tw-flex-wrap tw-gap-2 tw-mb-6 tw-mt-2">
+  <ng-container *ngIf="organizations$ | async as organizations">
+    <bit-chip-select
+      *ngIf="organizations.length"
+      formControlName="organization"
+      placeholderIcon="bwi-vault"
+      [placeholderText]="'vault' | i18n"
+      [options]="organizations"
+    >
+    </bit-chip-select>
+  </ng-container>
+  <ng-container *ngIf="collections$ | async as collections">
+    <bit-chip-select
+      *ngIf="collections.length"
+      formControlName="collection"
+      placeholderIcon="bwi-collection"
+      [placeholderText]="'collections' | i18n"
+      [options]="collections"
+    >
+    </bit-chip-select>
+  </ng-container>
+  <ng-container *ngIf="folders$ | async as folders">
+    <bit-chip-select
+      *ngIf="folders.length"
+      placeholderIcon="bwi-folder"
+      formControlName="folder"
+      [placeholderText]="'folder' | i18n"
+      [options]="folders"
+    >
+    </bit-chip-select>
+  </ng-container>
+  <bit-chip-select
+    formControlName="cipherType"
+    placeholderIcon="bwi-list"
+    [placeholderText]="'types' | i18n"
+    [options]="cipherTypes"
+  >
+  </bit-chip-select>
+</form>
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-filters/vault-list-filters.component.ts b/apps/browser/src/vault/popup/components/vault-v2/vault-list-filters/vault-list-filters.component.ts
new file mode 100644
index 00000000000..886e1a966a8
--- /dev/null
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-filters/vault-list-filters.component.ts
@@ -0,0 +1,28 @@
+import { CommonModule } from "@angular/common";
+import { Component, OnDestroy } from "@angular/core";
+import { ReactiveFormsModule } from "@angular/forms";
+
+import { JslibModule } from "@bitwarden/angular/jslib.module";
+import { ChipSelectComponent } from "@bitwarden/components";
+
+import { VaultPopupListFiltersService } from "../../../services/vault-popup-list-filters.service";
+
+@Component({
+  standalone: true,
+  selector: "app-vault-list-filters",
+  templateUrl: "./vault-list-filters.component.html",
+  imports: [CommonModule, JslibModule, ChipSelectComponent, ReactiveFormsModule],
+})
+export class VaultListFiltersComponent implements OnDestroy {
+  protected filterForm = this.vaultPopupListFiltersService.filterForm;
+  protected organizations$ = this.vaultPopupListFiltersService.organizations$;
+  protected collections$ = this.vaultPopupListFiltersService.collections$;
+  protected folders$ = this.vaultPopupListFiltersService.folders$;
+  protected cipherTypes = this.vaultPopupListFiltersService.cipherTypes;
+
+  constructor(private vaultPopupListFiltersService: VaultPopupListFiltersService) {}
+
+  ngOnDestroy(): void {
+    this.vaultPopupListFiltersService.resetFilterForm();
+  }
+}
diff --git a/apps/browser/src/vault/popup/components/vault/vault-v2.component.html b/apps/browser/src/vault/popup/components/vault/vault-v2.component.html
index 7d83d9f26cc..4d75685f538 100644
--- a/apps/browser/src/vault/popup/components/vault/vault-v2.component.html
+++ b/apps/browser/src/vault/popup/components/vault/vault-v2.component.html
@@ -22,13 +22,13 @@
   </div>
 
   <ng-container *ngIf="!(showEmptyState$ | async)">
-    <!-- TODO: Filter/search Section in PM-6824 and PM-6826.-->
-
     <app-vault-v2-search (searchTextChanged)="handleSearchTextChange($event)">
     </app-vault-v2-search>
 
+    <app-vault-list-filters></app-vault-list-filters>
+
     <div
-      *ngIf="showNoResultsState$ | async"
+      *ngIf="(showNoResultsState$ | async) && !(showDeactivatedOrg$ | async)"
       class="tw-flex tw-flex-col tw-h-full tw-justify-center"
     >
       <bit-no-items>
@@ -37,7 +37,17 @@
       </bit-no-items>
     </div>
 
-    <ng-container *ngIf="!(showNoResultsState$ | async)">
+    <div
+      *ngIf="showDeactivatedOrg$ | async"
+      class="tw-flex tw-flex-col tw-h-full tw-justify-center"
+    >
+      <bit-no-items [icon]="deactivatedIcon">
+        <ng-container slot="title">{{ "organizationIsDeactivated" | i18n }}</ng-container>
+        <ng-container slot="description">{{ "contactYourOrgAdmin" | i18n }}</ng-container>
+      </bit-no-items>
+    </div>
+
+    <ng-container *ngIf="!(showNoResultsState$ | async) && !(showDeactivatedOrg$ | async)">
       <app-autofill-vault-list-items></app-autofill-vault-list-items>
       <app-vault-list-items-container
         [title]="'favorites' | i18n"
diff --git a/apps/browser/src/vault/popup/components/vault/vault-v2.component.ts b/apps/browser/src/vault/popup/components/vault/vault-v2.component.ts
index 36b41beb29d..5e9487ac880 100644
--- a/apps/browser/src/vault/popup/components/vault/vault-v2.component.ts
+++ b/apps/browser/src/vault/popup/components/vault/vault-v2.component.ts
@@ -11,6 +11,7 @@ import { PopupHeaderComponent } from "../../../../platform/popup/layout/popup-he
 import { PopupPageComponent } from "../../../../platform/popup/layout/popup-page.component";
 import { VaultPopupItemsService } from "../../services/vault-popup-items.service";
 import { AutofillVaultListItemsComponent, VaultListItemsContainerComponent } from "../vault-v2";
+import { VaultListFiltersComponent } from "../vault-v2/vault-list-filters/vault-list-filters.component";
 import { VaultV2SearchComponent } from "../vault-v2/vault-search/vault-v2-search.component";
 
 @Component({
@@ -27,6 +28,7 @@ import { VaultV2SearchComponent } from "../vault-v2/vault-search/vault-v2-search
     CommonModule,
     AutofillVaultListItemsComponent,
     VaultListItemsContainerComponent,
+    VaultListFiltersComponent,
     ButtonModule,
     RouterLink,
     VaultV2SearchComponent,
@@ -38,8 +40,10 @@ export class VaultV2Component implements OnInit, OnDestroy {
 
   protected showEmptyState$ = this.vaultPopupItemsService.emptyVault$;
   protected showNoResultsState$ = this.vaultPopupItemsService.noFilteredResults$;
+  protected showDeactivatedOrg$ = this.vaultPopupItemsService.showDeactivatedOrg$;
 
   protected vaultIcon = Icons.Vault;
+  protected deactivatedIcon = Icons.DeactivatedOrg;
 
   constructor(
     private vaultPopupItemsService: VaultPopupItemsService,
diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
index fedf666dbf3..a450b8acffd 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
@@ -2,6 +2,7 @@ import { mock } from "jest-mock-extended";
 import { BehaviorSubject } from "rxjs";
 
 import { SearchService } from "@bitwarden/common/abstractions/search.service";
+import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { CipherId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
@@ -12,6 +13,7 @@ import { BrowserApi } from "../../../platform/browser/browser-api";
 import BrowserPopupUtils from "../../../platform/popup/browser-popup-utils";
 
 import { VaultPopupItemsService } from "./vault-popup-items.service";
+import { VaultPopupListFiltersService } from "./vault-popup-list-filters.service";
 
 describe("VaultPopupItemsService", () => {
   let service: VaultPopupItemsService;
@@ -20,6 +22,8 @@ describe("VaultPopupItemsService", () => {
 
   const cipherServiceMock = mock<CipherService>();
   const vaultSettingsServiceMock = mock<VaultSettingsService>();
+  const organizationServiceMock = mock<OrganizationService>();
+  const vaultPopupListFiltersServiceMock = mock<VaultPopupListFiltersService>();
   const searchService = mock<SearchService>();
 
   beforeEach(() => {
@@ -40,6 +44,18 @@ describe("VaultPopupItemsService", () => {
     cipherServiceMock.filterCiphersForUrl.mockImplementation(async () => autoFillCiphers);
     vaultSettingsServiceMock.showCardsCurrentTab$ = new BehaviorSubject(false).asObservable();
     vaultSettingsServiceMock.showIdentitiesCurrentTab$ = new BehaviorSubject(false).asObservable();
+
+    vaultPopupListFiltersServiceMock.filters$ = new BehaviorSubject({
+      organization: null,
+      collection: null,
+      cipherType: null,
+      folder: null,
+    });
+    // Return all ciphers, `filterFunction$` will be tested in `VaultPopupListFiltersService`
+    vaultPopupListFiltersServiceMock.filterFunction$ = new BehaviorSubject(
+      (ciphers: CipherView[]) => ciphers,
+    );
+
     jest.spyOn(BrowserPopupUtils, "inPopout").mockReturnValue(false);
     jest
       .spyOn(BrowserApi, "getTabFromCurrentWindow")
@@ -47,6 +63,8 @@ describe("VaultPopupItemsService", () => {
     service = new VaultPopupItemsService(
       cipherServiceMock,
       vaultSettingsServiceMock,
+      vaultPopupListFiltersServiceMock,
+      organizationServiceMock,
       searchService,
     );
   });
@@ -55,6 +73,8 @@ describe("VaultPopupItemsService", () => {
     service = new VaultPopupItemsService(
       cipherServiceMock,
       vaultSettingsServiceMock,
+      vaultPopupListFiltersServiceMock,
+      organizationServiceMock,
       searchService,
     );
     expect(service).toBeTruthy();
@@ -87,6 +107,8 @@ describe("VaultPopupItemsService", () => {
       service = new VaultPopupItemsService(
         cipherServiceMock,
         vaultSettingsServiceMock,
+        vaultPopupListFiltersServiceMock,
+        organizationServiceMock,
         searchService,
       );
 
@@ -117,6 +139,8 @@ describe("VaultPopupItemsService", () => {
       service = new VaultPopupItemsService(
         cipherServiceMock,
         vaultSettingsServiceMock,
+        vaultPopupListFiltersServiceMock,
+        organizationServiceMock,
         searchService,
       );
 
@@ -228,6 +252,8 @@ describe("VaultPopupItemsService", () => {
       service = new VaultPopupItemsService(
         cipherServiceMock,
         vaultSettingsServiceMock,
+        vaultPopupListFiltersServiceMock,
+        organizationServiceMock,
         searchService,
       );
       service.emptyVault$.subscribe((empty) => {
diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
index 9a66ada08c5..f9c37f6f7da 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
@@ -2,6 +2,8 @@ import { Injectable } from "@angular/core";
 import {
   BehaviorSubject,
   combineLatest,
+  distinctUntilKeyChanged,
+  from,
   map,
   Observable,
   of,
@@ -12,6 +14,7 @@ import {
 } from "rxjs";
 
 import { SearchService } from "@bitwarden/common/abstractions/search.service";
+import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
@@ -20,6 +23,8 @@ import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { BrowserApi } from "../../../platform/browser/browser-api";
 import BrowserPopupUtils from "../../../platform/popup/browser-popup-utils";
 
+import { MY_VAULT_ID, VaultPopupListFiltersService } from "./vault-popup-list-filters.service";
+
 /**
  * Service for managing the various item lists on the new Vault tab in the browser popup.
  */
@@ -72,7 +77,15 @@ export class VaultPopupItemsService {
     shareReplay({ refCount: false, bufferSize: 1 }),
   );
 
-  private _filteredCipherList$ = combineLatest([this._cipherList$, this.searchText$]).pipe(
+  private _filteredCipherList$: Observable<CipherView[]> = combineLatest([
+    this._cipherList$,
+    this.searchText$,
+    this.vaultPopupListFiltersService.filterFunction$,
+  ]).pipe(
+    map(([ciphers, searchText, filterFunction]): [CipherView[], string] => [
+      filterFunction(ciphers),
+      searchText,
+    ]),
     switchMap(([ciphers, searchText]) =>
       this.searchService.searchCiphers(searchText, null, ciphers),
     ),
@@ -137,10 +150,19 @@ export class VaultPopupItemsService {
 
   /**
    * Observable that indicates whether a filter is currently applied to the ciphers.
-   * @todo Implement filter/search functionality in PM-6824 and PM-6826.
    */
-  hasFilterApplied$: Observable<boolean> = this.searchText$.pipe(
-    switchMap((text) => this.searchService.isSearchable(text)),
+  hasFilterApplied$ = combineLatest([
+    this.searchText$,
+    this.vaultPopupListFiltersService.filters$,
+  ]).pipe(
+    switchMap(([searchText, filters]) => {
+      return from(this.searchService.isSearchable(searchText)).pipe(
+        map(
+          (isSearchable) =>
+            isSearchable || Object.values(filters).some((filter) => filter !== null),
+        ),
+      );
+    }),
   );
 
   /**
@@ -156,15 +178,31 @@ export class VaultPopupItemsService {
 
   /**
    * Observable that indicates whether there are no ciphers to show with the current filter.
-   * @todo Implement filter/search functionality in PM-6824 and PM-6826.
    */
   noFilteredResults$: Observable<boolean> = this._filteredCipherList$.pipe(
     map((ciphers) => !ciphers.length),
   );
 
+  /** Observable that indicates when the user should see the deactivated org state */
+  showDeactivatedOrg$: Observable<boolean> = combineLatest([
+    this.vaultPopupListFiltersService.filters$.pipe(distinctUntilKeyChanged("organization")),
+    this.organizationService.organizations$,
+  ]).pipe(
+    map(([filters, orgs]) => {
+      if (!filters.organization || filters.organization.id === MY_VAULT_ID) {
+        return false;
+      }
+
+      const org = orgs.find((o) => o.id === filters.organization.id);
+      return org ? !org.enabled : false;
+    }),
+  );
+
   constructor(
     private cipherService: CipherService,
     private vaultSettingsService: VaultSettingsService,
+    private vaultPopupListFiltersService: VaultPopupListFiltersService,
+    private organizationService: OrganizationService,
     private searchService: SearchService,
   ) {}
 
diff --git a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
new file mode 100644
index 00000000000..eba8f94f12e
--- /dev/null
+++ b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
@@ -0,0 +1,298 @@
+import { TestBed } from "@angular/core/testing";
+import { FormBuilder } from "@angular/forms";
+import { BehaviorSubject, skipWhile } from "rxjs";
+
+import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
+import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
+import { CollectionService } from "@bitwarden/common/vault/abstractions/collection.service";
+import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
+import { CipherType } from "@bitwarden/common/vault/enums";
+import { Collection } from "@bitwarden/common/vault/models/domain/collection";
+import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { CollectionView } from "@bitwarden/common/vault/models/view/collection.view";
+import { FolderView } from "@bitwarden/common/vault/models/view/folder.view";
+
+import { MY_VAULT_ID, VaultPopupListFiltersService } from "./vault-popup-list-filters.service";
+
+describe("VaultPopupListFiltersService", () => {
+  let service: VaultPopupListFiltersService;
+  const memberOrganizations$ = new BehaviorSubject<{ name: string; id: string }[]>([]);
+  const folderViews$ = new BehaviorSubject([]);
+  const cipherViews$ = new BehaviorSubject({});
+  const decryptedCollections$ = new BehaviorSubject<CollectionView[]>([]);
+
+  const collectionService = {
+    decryptedCollections$,
+    getAllNested: () => Promise.resolve([]),
+  } as unknown as CollectionService;
+
+  const folderService = {
+    folderViews$,
+  } as unknown as FolderService;
+
+  const cipherService = {
+    cipherViews$,
+  } as unknown as CipherService;
+
+  const organizationService = {
+    memberOrganizations$,
+  } as unknown as OrganizationService;
+
+  const i18nService = {
+    t: (key: string) => key,
+  } as I18nService;
+
+  beforeEach(() => {
+    memberOrganizations$.next([]);
+    decryptedCollections$.next([]);
+
+    collectionService.getAllNested = () => Promise.resolve([]);
+    TestBed.configureTestingModule({
+      providers: [
+        {
+          provide: FolderService,
+          useValue: folderService,
+        },
+        {
+          provide: CipherService,
+          useValue: cipherService,
+        },
+        {
+          provide: OrganizationService,
+          useValue: organizationService,
+        },
+        {
+          provide: I18nService,
+          useValue: i18nService,
+        },
+        {
+          provide: CollectionService,
+          useValue: collectionService,
+        },
+        { provide: FormBuilder, useClass: FormBuilder },
+      ],
+    });
+
+    service = TestBed.inject(VaultPopupListFiltersService);
+  });
+
+  describe("cipherTypes", () => {
+    it("returns all cipher types", () => {
+      expect(service.cipherTypes.map((c) => c.value)).toEqual([
+        CipherType.Login,
+        CipherType.Card,
+        CipherType.Identity,
+        CipherType.SecureNote,
+      ]);
+    });
+  });
+
+  describe("organizations$", () => {
+    it('does not add "myVault" to the list of organizations when there are no organizations', (done) => {
+      memberOrganizations$.next([]);
+
+      service.organizations$.subscribe((organizations) => {
+        expect(organizations.map((o) => o.label)).toEqual([]);
+        done();
+      });
+    });
+
+    it('adds "myVault" to the list of organizations when there are other organizations', (done) => {
+      memberOrganizations$.next([{ name: "bobby's org", id: "1234-3323-23223" }]);
+
+      service.organizations$.subscribe((organizations) => {
+        expect(organizations.map((o) => o.label)).toEqual(["myVault", "bobby's org"]);
+        done();
+      });
+    });
+
+    it("sorts organizations by name", (done) => {
+      memberOrganizations$.next([
+        { name: "bobby's org", id: "1234-3323-23223" },
+        { name: "alice's org", id: "2223-4343-99888" },
+      ]);
+
+      service.organizations$.subscribe((organizations) => {
+        expect(organizations.map((o) => o.label)).toEqual([
+          "myVault",
+          "alice's org",
+          "bobby's org",
+        ]);
+        done();
+      });
+    });
+  });
+
+  describe("collections$", () => {
+    const testCollection = {
+      id: "14cbf8e9-7a2a-4105-9bf6-b15c01203cef",
+      name: "Test collection",
+      organizationId: "3f860945-b237-40bc-a51e-b15c01203ccf",
+    } as CollectionView;
+
+    const testCollection2 = {
+      id: "b15c0120-7a2a-4105-9bf6-b15c01203ceg",
+      name: "Test collection 2",
+      organizationId: "1203ccf-2432-123-acdd-b15c01203ccf",
+    } as CollectionView;
+
+    const testCollections = [testCollection, testCollection2];
+
+    beforeEach(() => {
+      decryptedCollections$.next(testCollections);
+
+      collectionService.getAllNested = () =>
+        Promise.resolve(
+          testCollections.map((c) => ({
+            children: [],
+            node: c,
+            parent: null,
+          })),
+        );
+    });
+
+    it("returns all collections", (done) => {
+      service.collections$.subscribe((collections) => {
+        expect(collections.map((c) => c.label)).toEqual(["Test collection", "Test collection 2"]);
+        done();
+      });
+    });
+
+    it("filters out collections that do not belong to an organization", () => {
+      service.filterForm.patchValue({
+        organization: { id: testCollection2.organizationId } as Organization,
+      });
+
+      service.collections$.subscribe((collections) => {
+        expect(collections.map((c) => c.label)).toEqual(["Test collection 2"]);
+      });
+    });
+  });
+
+  describe("folders$", () => {
+    it('returns no folders when "No Folder" is the only option', (done) => {
+      folderViews$.next([{ id: null, name: "No Folder" }]);
+
+      service.folders$.subscribe((folders) => {
+        expect(folders).toEqual([]);
+        done();
+      });
+    });
+
+    it('moves "No Folder" to the end of the list', (done) => {
+      folderViews$.next([
+        { id: null, name: "No Folder" },
+        { id: "2345", name: "Folder 2" },
+        { id: "1234", name: "Folder 1" },
+      ]);
+
+      service.folders$.subscribe((folders) => {
+        expect(folders.map((f) => f.label)).toEqual(["Folder 1", "Folder 2", "itemsWithNoFolder"]);
+        done();
+      });
+    });
+
+    it("returns all folders when MyVault is selected", (done) => {
+      service.filterForm.patchValue({
+        organization: { id: MY_VAULT_ID } as Organization,
+      });
+
+      folderViews$.next([
+        { id: "1234", name: "Folder 1" },
+        { id: "2345", name: "Folder 2" },
+      ]);
+
+      service.folders$.subscribe((folders) => {
+        expect(folders.map((f) => f.label)).toEqual(["Folder 1", "Folder 2"]);
+        done();
+      });
+    });
+
+    it("returns folders that have ciphers within the selected organization", (done) => {
+      service.folders$.pipe(skipWhile((folders) => folders.length === 2)).subscribe((folders) => {
+        expect(folders.map((f) => f.label)).toEqual(["Folder 1"]);
+        done();
+      });
+
+      service.filterForm.patchValue({
+        organization: { id: "1234" } as Organization,
+      });
+
+      folderViews$.next([
+        { id: "1234", name: "Folder 1" },
+        { id: "2345", name: "Folder 2" },
+      ]);
+
+      cipherViews$.next({
+        "1": { folderId: "1234", organizationId: "1234" },
+        "2": { folderId: "2345", organizationId: "56789" },
+      });
+    });
+  });
+
+  describe("filterFunction$", () => {
+    const ciphers = [
+      { type: CipherType.Login, collectionIds: [], organizationId: null },
+      { type: CipherType.Card, collectionIds: ["1234"], organizationId: "8978" },
+      { type: CipherType.Identity, collectionIds: [], folderId: "5432", organizationId: null },
+      { type: CipherType.SecureNote, collectionIds: [], organizationId: null },
+    ] as CipherView[];
+
+    it("filters by cipherType", (done) => {
+      service.filterFunction$.subscribe((filterFunction) => {
+        expect(filterFunction(ciphers)).toEqual([ciphers[0]]);
+        done();
+      });
+
+      service.filterForm.patchValue({ cipherType: CipherType.Login });
+    });
+
+    it("filters by collection", (done) => {
+      const collection = { id: "1234" } as Collection;
+
+      service.filterFunction$.subscribe((filterFunction) => {
+        expect(filterFunction(ciphers)).toEqual([ciphers[1]]);
+        done();
+      });
+
+      service.filterForm.patchValue({ collection });
+    });
+
+    it("filters by folder", (done) => {
+      const folder = { id: "5432" } as FolderView;
+
+      service.filterFunction$.subscribe((filterFunction) => {
+        expect(filterFunction(ciphers)).toEqual([ciphers[2]]);
+        done();
+      });
+
+      service.filterForm.patchValue({ folder });
+    });
+
+    describe("organizationId", () => {
+      it("filters out ciphers that belong to an organization when MyVault is selected", (done) => {
+        const organization = { id: MY_VAULT_ID } as Organization;
+
+        service.filterFunction$.subscribe((filterFunction) => {
+          expect(filterFunction(ciphers)).toEqual([ciphers[0], ciphers[2], ciphers[3]]);
+          done();
+        });
+
+        service.filterForm.patchValue({ organization });
+      });
+
+      it("filters out ciphers that do not belong to the selected organization", (done) => {
+        const organization = { id: "8978" } as Organization;
+
+        service.filterFunction$.subscribe((filterFunction) => {
+          expect(filterFunction(ciphers)).toEqual([ciphers[1]]);
+          done();
+        });
+
+        service.filterForm.patchValue({ organization });
+      });
+    });
+  });
+});
diff --git a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
new file mode 100644
index 00000000000..f3522aa8e33
--- /dev/null
+++ b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
@@ -0,0 +1,371 @@
+import { Injectable } from "@angular/core";
+import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
+import { FormBuilder } from "@angular/forms";
+import {
+  Observable,
+  combineLatest,
+  distinctUntilChanged,
+  map,
+  startWith,
+  switchMap,
+  tap,
+} from "rxjs";
+
+import { DynamicTreeNode } from "@bitwarden/angular/vault/vault-filter/models/dynamic-tree-node.model";
+import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
+import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { ProductType } from "@bitwarden/common/enums";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
+import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
+import { CollectionService } from "@bitwarden/common/vault/abstractions/collection.service";
+import { FolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
+import { CipherType } from "@bitwarden/common/vault/enums";
+import { Collection } from "@bitwarden/common/vault/models/domain/collection";
+import { ITreeNodeObject, TreeNode } from "@bitwarden/common/vault/models/domain/tree-node";
+import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { CollectionView } from "@bitwarden/common/vault/models/view/collection.view";
+import { FolderView } from "@bitwarden/common/vault/models/view/folder.view";
+import { ServiceUtils } from "@bitwarden/common/vault/service-utils";
+import { ChipSelectOption } from "@bitwarden/components";
+
+/** All available cipher filters */
+export type PopupListFilter = {
+  organization: Organization | null;
+  collection: Collection | null;
+  folder: FolderView | null;
+  cipherType: CipherType | null;
+};
+
+/** Delimiter that denotes a level of nesting  */
+const NESTING_DELIMITER = "/";
+
+/** Id assigned to the "My vault" organization */
+export const MY_VAULT_ID = "MyVault";
+
+const INITIAL_FILTERS: PopupListFilter = {
+  organization: null,
+  collection: null,
+  folder: null,
+  cipherType: null,
+};
+
+@Injectable({
+  providedIn: "root",
+})
+export class VaultPopupListFiltersService {
+  /**
+   * UI form for all filters
+   */
+  filterForm = this.formBuilder.group<PopupListFilter>(INITIAL_FILTERS);
+
+  /**
+   * Observable for `filterForm` value
+   */
+  filters$ = this.filterForm.valueChanges.pipe(
+    startWith(INITIAL_FILTERS),
+  ) as Observable<PopupListFilter>;
+
+  /**
+   * Static list of ciphers views used in synchronous context
+   */
+  private cipherViews: CipherView[] = [];
+
+  /**
+   * Observable of cipher views
+   */
+  private cipherViews$: Observable<CipherView[]> = this.cipherService.cipherViews$.pipe(
+    tap((cipherViews) => {
+      this.cipherViews = Object.values(cipherViews);
+    }),
+    map((ciphers) => Object.values(ciphers)),
+  );
+
+  constructor(
+    private folderService: FolderService,
+    private cipherService: CipherService,
+    private organizationService: OrganizationService,
+    private i18nService: I18nService,
+    private collectionService: CollectionService,
+    private formBuilder: FormBuilder,
+  ) {
+    this.filterForm.controls.organization.valueChanges
+      .pipe(takeUntilDestroyed())
+      .subscribe(this.validateOrganizationChange.bind(this));
+  }
+
+  /**
+   * Observable whose value is a function that filters an array of `CipherView` objects based on the current filters
+   */
+  filterFunction$: Observable<(ciphers: CipherView[]) => CipherView[]> = this.filters$.pipe(
+    map(
+      (filters) => (ciphers: CipherView[]) =>
+        ciphers.filter((cipher) => {
+          if (filters.cipherType !== null && cipher.type !== filters.cipherType) {
+            return false;
+          }
+
+          if (
+            filters.collection !== null &&
+            !cipher.collectionIds.includes(filters.collection.id)
+          ) {
+            return false;
+          }
+
+          if (filters.folder !== null && cipher.folderId !== filters.folder.id) {
+            return false;
+          }
+
+          const isMyVault = filters.organization?.id === MY_VAULT_ID;
+
+          if (isMyVault) {
+            if (cipher.organizationId !== null) {
+              return false;
+            }
+          } else if (filters.organization !== null) {
+            if (cipher.organizationId !== filters.organization.id) {
+              return false;
+            }
+          }
+
+          return true;
+        }),
+    ),
+  );
+
+  /**
+   * All available cipher types
+   */
+  readonly cipherTypes: ChipSelectOption<CipherType>[] = [
+    {
+      value: CipherType.Login,
+      label: this.i18nService.t("logins"),
+      icon: "bwi-globe",
+    },
+    {
+      value: CipherType.Card,
+      label: this.i18nService.t("cards"),
+      icon: "bwi-credit-card",
+    },
+    {
+      value: CipherType.Identity,
+      label: this.i18nService.t("identities"),
+      icon: "bwi-id-card",
+    },
+    {
+      value: CipherType.SecureNote,
+      label: this.i18nService.t("notes"),
+      icon: "bwi-sticky-note",
+    },
+  ];
+
+  /** Resets `filterForm` to the original state */
+  resetFilterForm(): void {
+    this.filterForm.reset(INITIAL_FILTERS);
+  }
+
+  /**
+   * Organization array structured to be directly passed to `ChipSelectComponent`
+   */
+  organizations$: Observable<ChipSelectOption<Organization>[]> =
+    this.organizationService.memberOrganizations$.pipe(
+      map((orgs) => orgs.sort(Utils.getSortFunction(this.i18nService, "name"))),
+      map((orgs) => {
+        if (!orgs.length) {
+          return [];
+        }
+
+        return [
+          // When the user is a member of an organization, make  the "My Vault" option available
+          {
+            value: { id: MY_VAULT_ID } as Organization,
+            label: this.i18nService.t("myVault"),
+            icon: "bwi-user",
+          },
+          ...orgs.map((org) => {
+            let icon = "bwi-business";
+
+            if (!org.enabled) {
+              // Show a warning icon if the organization is deactivated
+              icon = "bwi-exclamation-triangle tw-text-danger";
+            } else if (org.planProductType === ProductType.Families) {
+              // Show a family icon if the organization is a family org
+              icon = "bwi-family";
+            }
+
+            return {
+              value: org,
+              label: org.name,
+              icon,
+            };
+          }),
+        ];
+      }),
+    );
+
+  /**
+   * Folder array structured to be directly passed to `ChipSelectComponent`
+   */
+  folders$: Observable<ChipSelectOption<string>[]> = combineLatest([
+    this.filters$.pipe(
+      distinctUntilChanged(
+        (previousFilter, currentFilter) =>
+          // Only update the collections when the organizationId filter changes
+          previousFilter.organization?.id === currentFilter.organization?.id,
+      ),
+    ),
+    this.folderService.folderViews$,
+    this.cipherViews$,
+  ]).pipe(
+    map(([filters, folders, cipherViews]): [PopupListFilter, FolderView[], CipherView[]] => {
+      if (folders.length === 1 && folders[0].id === null) {
+        // Do not display folder selections when only the "no folder" option is available.
+        return [filters, [], cipherViews];
+      }
+
+      // Sort folders by alphabetic name
+      folders.sort(Utils.getSortFunction(this.i18nService, "name"));
+      let arrangedFolders = folders;
+
+      const noFolder = folders.find((f) => f.id === null);
+
+      if (noFolder) {
+        // Update `name` of the "no folder" option to "Items with no folder"
+        noFolder.name = this.i18nService.t("itemsWithNoFolder");
+
+        // Move the "no folder" option to the end of the list
+        arrangedFolders = [...folders.filter((f) => f.id !== null), noFolder];
+      }
+      return [filters, arrangedFolders, cipherViews];
+    }),
+    map(([filters, folders, cipherViews]) => {
+      const organizationId = filters.organization?.id ?? null;
+
+      // When no org or "My vault" is selected, return all folders
+      if (organizationId === null || organizationId === MY_VAULT_ID) {
+        return folders;
+      }
+
+      const orgCiphers = cipherViews.filter((c) => c.organizationId === organizationId);
+
+      // Return only the folders that have ciphers within the filtered organization
+      return folders.filter((f) => orgCiphers.some((oc) => oc.folderId === f.id));
+    }),
+    map((folders) => {
+      const nestedFolders = this.getAllFoldersNested(folders);
+      return new DynamicTreeNode<FolderView>({
+        fullList: folders,
+        nestedList: nestedFolders,
+      });
+    }),
+    map((folders) => folders.nestedList.map(this.convertToChipSelectOption.bind(this))),
+  );
+
+  /**
+   * Collection array structured to be directly passed to `ChipSelectComponent`
+   */
+  collections$: Observable<ChipSelectOption<string>[]> = combineLatest([
+    this.filters$.pipe(
+      distinctUntilChanged(
+        (previousFilter, currentFilter) =>
+          // Only update the collections when the organizationId filter changes
+          previousFilter.organization?.id === currentFilter.organization?.id,
+      ),
+    ),
+    this.collectionService.decryptedCollections$,
+  ]).pipe(
+    map(([filters, allCollections]) => {
+      const organizationId = filters.organization?.id ?? null;
+      // When the organization filter is selected, filter out collections that do not belong to the selected organization
+      const collections =
+        organizationId === null
+          ? allCollections
+          : allCollections.filter((c) => c.organizationId === organizationId);
+
+      return collections;
+    }),
+    switchMap(async (collections) => {
+      const nestedCollections = await this.collectionService.getAllNested(collections);
+
+      return new DynamicTreeNode<CollectionView>({
+        fullList: collections,
+        nestedList: nestedCollections,
+      });
+    }),
+    map((collections) => collections.nestedList.map(this.convertToChipSelectOption.bind(this))),
+  );
+
+  /**
+   * Converts the given item into the `ChipSelectOption` structure
+   */
+  private convertToChipSelectOption<T extends ITreeNodeObject>(
+    item: TreeNode<T>,
+  ): ChipSelectOption<T> {
+    return {
+      value: item.node,
+      label: item.node.name,
+      icon: "bwi-folder", // Organization & Folder icons are the same
+      children: item.children
+        ? item.children.map(this.convertToChipSelectOption.bind(this))
+        : undefined,
+    };
+  }
+
+  /**
+   * Returns a nested folder structure based on the input FolderView array
+   */
+  private getAllFoldersNested(folders: FolderView[]): TreeNode<FolderView>[] {
+    const nodes: TreeNode<FolderView>[] = [];
+
+    folders.forEach((f) => {
+      const folderCopy = new FolderView();
+      folderCopy.id = f.id;
+      folderCopy.revisionDate = f.revisionDate;
+
+      // Remove "/" from beginning and end of the folder name
+      // then split the folder name by the delimiter
+      const parts = f.name != null ? f.name.replace(/^\/+|\/+$/g, "").split(NESTING_DELIMITER) : [];
+      ServiceUtils.nestedTraverse(nodes, 0, parts, folderCopy, null, NESTING_DELIMITER);
+    });
+
+    return nodes;
+  }
+
+  /**
+   * Validate collection & folder filters when the organization filter changes
+   */
+  private validateOrganizationChange(organization: Organization | null): void {
+    if (!organization) {
+      return;
+    }
+
+    const currentFilters = this.filterForm.getRawValue();
+
+    // When the organization filter changes and a collection is already selected,
+    // reset the collection filter if the collection does not belong to the new organization filter
+    if (currentFilters.collection && currentFilters.collection.organizationId !== organization.id) {
+      this.filterForm.get("collection").setValue(null);
+    }
+
+    // When the organization filter changes and a folder is already selected,
+    // reset the folder filter if the folder does not belong to the new organization filter
+    if (
+      currentFilters.folder &&
+      currentFilters.folder.id !== null &&
+      organization.id !== MY_VAULT_ID
+    ) {
+      // Get all ciphers that belong to the new organization
+      const orgCiphers = this.cipherViews.filter((c) => c.organizationId === organization.id);
+
+      // Find any ciphers within the organization that belong to the current folder
+      const newOrgContainsFolder = orgCiphers.some(
+        (oc) => oc.folderId === currentFilters.folder.id,
+      );
+
+      // If the new organization does not contain the current folder, reset the folder filter
+      if (!newOrgContainsFolder) {
+        this.filterForm.get("folder").setValue(null);
+      }
+    }
+  }
+}
diff --git a/libs/components/src/chip-select/chip-select.component.ts b/libs/components/src/chip-select/chip-select.component.ts
index e91ee16f978..ff2282b72ae 100644
--- a/libs/components/src/chip-select/chip-select.component.ts
+++ b/libs/components/src/chip-select/chip-select.component.ts
@@ -108,7 +108,7 @@ export class ChipSelectComponent<T = unknown> implements ControlValueAccessor {
    */
   private findOption(tree: ChipSelectOption<T>, value: T): ChipSelectOption<T> | null {
     let result = null;
-    if (tree.value === value) {
+    if (tree.value !== null && tree.value === value) {
       return tree;
     }
 
@@ -183,7 +183,7 @@ export class ChipSelectComponent<T = unknown> implements ControlValueAccessor {
       return;
     }
 
-    this.notifyOnChange(option?.value);
+    this.notifyOnChange(option?.value ?? null);
   }
 
   /** Implemented as part of NG_VALUE_ACCESSOR */
diff --git a/libs/components/src/icon/icons/deactivated-org.ts b/libs/components/src/icon/icons/deactivated-org.ts
new file mode 100644
index 00000000000..9bb9577669e
--- /dev/null
+++ b/libs/components/src/icon/icons/deactivated-org.ts
@@ -0,0 +1,32 @@
+import { svgIcon } from "../icon";
+
+export const DeactivatedOrg = svgIcon`
+<svg width="138" height="118" viewBox="0 0 138 118" fill="none" xmlns="http://www.w3.org/2000/svg">
+  <g clip-path="url(#clip0_2929_17380)">
+    <path class="tw-stroke-text-headers" d="M80.0852 15.889V11.7504C80.0852 9.75243 78.6181 8.18262 76.7509 8.18262H53.1445C51.2773 8.18262 49.8102 9.75243 49.8102 11.7504V16.0317"  stroke-width="2" stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-text-headers" d="M73.3568 7.06126V3.568C73.3568 1.75668 71.8648 0.333496 69.9658 0.333496H59.9285C58.0295 0.333496 56.5374 1.75668 56.5374 3.568V7.06126"  stroke-width="2" stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-text-headers" d="M41.9611 29.8517V20.5736C41.9611 18.658 43.4441 17.1528 45.3315 17.1528H84.5637C86.4511 17.1528 87.9341 18.658 87.9341 20.5736V83.2728"  stroke-width="2" stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-text-headers" d="M12.8074 103.493V32.9262C12.8074 31.0004 14.3311 29.4873 16.2703 29.4873H56.4389C58.3781 29.4873 59.9018 31.0004 59.9018 32.9262V103.493"  stroke-width="2" stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-text-headers" d="M36.3545 39.5791V94.5225"  stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-text-headers" d="M47.5677 39.5791V94.5225"  stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-text-headers" d="M78.9634 26.1235V37.3365"  stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-text-headers" d="M78.9634 45.1851V56.398"  stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-text-headers" d="M78.9634 64.2476V75.4605"  stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-text-headers" d="M78.9634 83.3091V94.522"  stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-text-headers" d="M69.9932 26.1235V37.3365"  stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-text-headers" d="M69.9932 45.1851V56.398"  stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-text-headers" d="M69.9932 64.2476V75.4605"  stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-text-headers" d="M69.9932 83.3091V94.522"  stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-text-headers" d="M24.0202 39.5791V94.5225"  stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-text-headers" d="M0.473145 104.614H75.3408"  stroke-width="2" stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-fill-danger-600" fill-rule="evenodd" clip-rule="evenodd" d="M121.425 111.921L99.1265 73.2989C98.3006 71.8685 96.236 71.8685 95.4101 73.2989L73.1119 111.921C72.286 113.351 73.3183 115.139 74.97 115.139H119.567C121.218 115.139 122.251 113.351 121.425 111.921ZM101.604 71.8685C99.6771 68.5308 94.8595 68.5308 92.9325 71.8685L70.6343 110.49C68.7073 113.828 71.116 118 74.97 118H119.567C123.421 118 125.829 113.828 123.902 110.49L101.604 71.8685Z"/>
+    <path class="tw-fill-danger-600" d="M98.2704 84.3848C98.8321 84.3848 99.2836 84.8473 99.2701 85.4088L98.8811 101.584C98.8681 102.127 98.4243 102.56 97.8814 102.56H96.6544C96.1118 102.56 95.6682 102.127 95.6547 101.585L95.254 85.4095C95.24 84.8477 95.6917 84.3848 96.2537 84.3848H98.2704Z" />
+    <circle class="tw-fill-danger-600" cx="97.2682" cy="106.556" r="2.14565" />
+  </g>
+  <defs>
+    <clipPath id="clip0_2929_17380">
+      <rect width="138" height="118" class="tw-fill-danger-600"/>
+    </clipPath>
+  </defs>
+</svg>
+`;
diff --git a/libs/components/src/icon/icons/index.ts b/libs/components/src/icon/icons/index.ts
index 0e0ce4d909e..9de81f19913 100644
--- a/libs/components/src/icon/icons/index.ts
+++ b/libs/components/src/icon/icons/index.ts
@@ -1,3 +1,4 @@
+export * from "./deactivated-org";
 export * from "./search";
 export * from "./no-access";
 export * from "./vault";

From aee9720a6dc25482791f9310854ee289a4203792 Mon Sep 17 00:00:00 2001
From: DanHillesheim <79476558+DanHillesheim@users.noreply.github.com>
Date: Mon, 3 Jun 2024 08:34:51 -0600
Subject: [PATCH 068/138] Revert "Vault - Trial initiation content updates"
 (#9421)

---
 .../content/enterprise-content.component.html |  19 ++---
 .../enterprise1-content.component.html        |  66 ++++++++++--------
 .../enterprise2-content.component.html        |  66 ++++++++++--------
 .../content/teams1-content.component.html     |   5 +-
 .../content/teams2-content.component.html     |  40 ++++++++---
 .../register-layout/vault-signup-badges.png   | Bin 20376 -> 65051 bytes
 6 files changed, 113 insertions(+), 83 deletions(-)

diff --git a/apps/web/src/app/auth/trial-initiation/content/enterprise-content.component.html b/apps/web/src/app/auth/trial-initiation/content/enterprise-content.component.html
index 4abb44db4f0..f57fb7a3510 100644
--- a/apps/web/src/app/auth/trial-initiation/content/enterprise-content.component.html
+++ b/apps/web/src/app/auth/trial-initiation/content/enterprise-content.component.html
@@ -1,8 +1,8 @@
-<h1 class="tw-text-3xl !tw-text-alt2">Start your 7-day free trial of Bitwarden</h1>
+<h1 class="tw-text-3xl !tw-text-alt2">Start your 7-day Enterprise free trial</h1>
 <div class="tw-pt-20">
   <h2 class="tw-text-2xl">
-    Strengthen business security with the password manager designed for seamless administration and
-    employee usability.
+    Bitwarden is the most trusted password manager designed for seamless administration and employee
+    usability.
   </h2>
 </div>
 <ul class="tw-mt-12 tw-flex tw-flex-col tw-gap-10 tw-text-2xl tw-text-main tw-list-none tw-pl-0">
@@ -15,14 +15,14 @@
   <li class="tw-flex tw-items-center">
     <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
     ><span class="tw-flex-auto"
-      >Strengthen employee security practices through centralized administrative control and
+      >Strengthen company-wide security through centralized administrative control and
       policies</span
     >
   </li>
   <li class="tw-flex tw-items-center">
     <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
     ><span class="tw-flex-auto"
-      >Streamline user onboarding and automate account provisioning with turnkey SSO and SCIM
+      >Streamline user onboarding and automate account provisioning with flexible SSO and SCIM
       integrations</span
     >
   </li>
@@ -35,14 +35,7 @@
   <li class="tw-flex tw-items-center">
     <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
     ><span class="tw-flex-auto"
-      >Save time and increase productivity with autofill and instant device syncing</span
-    >
-  </li>
-  <li class="tw-flex tw-items-center">
-    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
-    ><span class="tw-flex-auto"
-      >Empower employees to secure their digital life at home, at work, and on the go by offering a
-      free Families plan to all Enterprise users</span
+      >Give all Enterprise users the gift of 360º security with a free Families plan</span
     >
   </li>
 </ul>
diff --git a/apps/web/src/app/auth/trial-initiation/content/enterprise1-content.component.html b/apps/web/src/app/auth/trial-initiation/content/enterprise1-content.component.html
index 120748d4c0d..f57fb7a3510 100644
--- a/apps/web/src/app/auth/trial-initiation/content/enterprise1-content.component.html
+++ b/apps/web/src/app/auth/trial-initiation/content/enterprise1-content.component.html
@@ -1,34 +1,44 @@
-<h1 class="tw-text-3xl !tw-text-alt2">The Password Manager Trusted by Millions</h1>
-<div class="tw-pt-32">
-  <h2 class="tw-text-2xl">Everything enterprises need out of a password manager:</h2>
+<h1 class="tw-text-3xl !tw-text-alt2">Start your 7-day Enterprise free trial</h1>
+<div class="tw-pt-20">
+  <h2 class="tw-text-2xl">
+    Bitwarden is the most trusted password manager designed for seamless administration and employee
+    usability.
+  </h2>
 </div>
 <ul class="tw-mt-12 tw-flex tw-flex-col tw-gap-10 tw-text-2xl tw-text-main tw-list-none tw-pl-0">
-  <li><i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Secure password sharing</li>
-  <li>
-    <i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Easy, flexible SSO and SCIM integrations
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Instantly and securely share credentials with the groups and individuals who need them</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Strengthen company-wide security through centralized administrative control and
+      policies</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Streamline user onboarding and automate account provisioning with flexible SSO and SCIM
+      integrations</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Migrate to Bitwarden in minutes with comprehensive import options</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Give all Enterprise users the gift of 360º security with a free Families plan</span
+    >
   </li>
-  <li><i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Free families plan for users</li>
-  <li><i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Quick import and migration tools</li>
-  <li><i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Simple, streamlined user experience</li>
-  <li><i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Priority support and trainers</li>
 </ul>
 <div class="tw-mt-28 tw-flex tw-flex-col tw-items-center tw-gap-5">
-  <app-logo-cnet-5-stars></app-logo-cnet-5-stars>
-  <div class="tw-flex tw-items-end tw-gap-8">
-    <review-logo
-      logoClass="tw-w-8"
-      logoSrc="../../images/register-layout/g2-logo.svg"
-      logoAlt="G2 Logo"
-    ></review-logo>
-    <review-logo
-      logoClass="tw-w-28"
-      logoSrc="../../images/register-layout/capterra-logo.svg"
-      logoAlt="Capterra Logo"
-    ></review-logo>
-    <review-logo
-      logoClass="tw-w-28"
-      logoSrc="../../images/register-layout/get-app-logo.svg"
-      logoAlt="Get App Logo"
-    ></review-logo>
-  </div>
+  <app-logo-badges></app-logo-badges>
 </div>
diff --git a/apps/web/src/app/auth/trial-initiation/content/enterprise2-content.component.html b/apps/web/src/app/auth/trial-initiation/content/enterprise2-content.component.html
index 120748d4c0d..f57fb7a3510 100644
--- a/apps/web/src/app/auth/trial-initiation/content/enterprise2-content.component.html
+++ b/apps/web/src/app/auth/trial-initiation/content/enterprise2-content.component.html
@@ -1,34 +1,44 @@
-<h1 class="tw-text-3xl !tw-text-alt2">The Password Manager Trusted by Millions</h1>
-<div class="tw-pt-32">
-  <h2 class="tw-text-2xl">Everything enterprises need out of a password manager:</h2>
+<h1 class="tw-text-3xl !tw-text-alt2">Start your 7-day Enterprise free trial</h1>
+<div class="tw-pt-20">
+  <h2 class="tw-text-2xl">
+    Bitwarden is the most trusted password manager designed for seamless administration and employee
+    usability.
+  </h2>
 </div>
 <ul class="tw-mt-12 tw-flex tw-flex-col tw-gap-10 tw-text-2xl tw-text-main tw-list-none tw-pl-0">
-  <li><i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Secure password sharing</li>
-  <li>
-    <i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Easy, flexible SSO and SCIM integrations
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Instantly and securely share credentials with the groups and individuals who need them</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Strengthen company-wide security through centralized administrative control and
+      policies</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Streamline user onboarding and automate account provisioning with flexible SSO and SCIM
+      integrations</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Migrate to Bitwarden in minutes with comprehensive import options</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Give all Enterprise users the gift of 360º security with a free Families plan</span
+    >
   </li>
-  <li><i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Free families plan for users</li>
-  <li><i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Quick import and migration tools</li>
-  <li><i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Simple, streamlined user experience</li>
-  <li><i class="bwi bwi-lg bwi-check-circle tw-mr-4"></i>Priority support and trainers</li>
 </ul>
 <div class="tw-mt-28 tw-flex tw-flex-col tw-items-center tw-gap-5">
-  <app-logo-cnet-5-stars></app-logo-cnet-5-stars>
-  <div class="tw-flex tw-items-end tw-gap-8">
-    <review-logo
-      logoClass="tw-w-8"
-      logoSrc="../../images/register-layout/g2-logo.svg"
-      logoAlt="G2 Logo"
-    ></review-logo>
-    <review-logo
-      logoClass="tw-w-28"
-      logoSrc="../../images/register-layout/capterra-logo.svg"
-      logoAlt="Capterra Logo"
-    ></review-logo>
-    <review-logo
-      logoClass="tw-w-28"
-      logoSrc="../../images/register-layout/get-app-logo.svg"
-      logoAlt="Get App Logo"
-    ></review-logo>
-  </div>
+  <app-logo-badges></app-logo-badges>
 </div>
diff --git a/apps/web/src/app/auth/trial-initiation/content/teams1-content.component.html b/apps/web/src/app/auth/trial-initiation/content/teams1-content.component.html
index 42f99be26b8..f51c370bebd 100644
--- a/apps/web/src/app/auth/trial-initiation/content/teams1-content.component.html
+++ b/apps/web/src/app/auth/trial-initiation/content/teams1-content.component.html
@@ -1,6 +1,5 @@
-<h1 class="tw-text-4xl !tw-text-alt2">Start your 7-day free trial for Teams</h1>
-<div class="tw-flex tw-flex-col tw-items-center tw-justify-center tw-pt-16"></div>
-<div class="tw-pt-10">
+<h1 class="tw-text-3xl !tw-text-alt2">Start your 7-day free trial for Teams</h1>
+<div class="tw-pt-20">
   <h2 class="tw-text-2xl">
     Strengthen business security with an easy-to-use password manager your team will love.
   </h2>
diff --git a/apps/web/src/app/auth/trial-initiation/content/teams2-content.component.html b/apps/web/src/app/auth/trial-initiation/content/teams2-content.component.html
index 3145e20d4f8..f51c370bebd 100644
--- a/apps/web/src/app/auth/trial-initiation/content/teams2-content.component.html
+++ b/apps/web/src/app/auth/trial-initiation/content/teams2-content.component.html
@@ -1,17 +1,35 @@
-<h1 class="tw-text-4xl !tw-text-alt2">Start Your Free Trial Now</h1>
-<div class="tw-pt-32">
+<h1 class="tw-text-3xl !tw-text-alt2">Start your 7-day free trial for Teams</h1>
+<div class="tw-pt-20">
   <h2 class="tw-text-2xl">
-    Millions of individuals, teams, and organizations worldwide trust Bitwarden for secure password
-    storage and sharing.
+    Strengthen business security with an easy-to-use password manager your team will love.
   </h2>
 </div>
-<ul class="tw-mt-12 tw-flex tw-flex-col tw-gap-10 tw-text-2xl tw-text-main">
-  <li>Collaborate and share securely</li>
-  <li>Deploy and manage quickly and easily</li>
-  <li>Access anywhere on any device</li>
-  <li>Create your account to get started</li>
+<ul class="tw-mt-12 tw-flex tw-flex-col tw-gap-10 tw-text-2xl tw-text-main tw-list-none tw-pl-0">
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Instantly and securely share credentials with the groups and individuals who need them</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Migrate to Bitwarden in minutes with comprehensive import options</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Save time and increase productivity with autofill and instant device syncing</span
+    >
+  </li>
+  <li class="tw-flex tw-items-center">
+    <i class="bwi bwi-lg bwi-check-circle tw-mr-4 tw-flex-none"></i
+    ><span class="tw-flex-auto"
+      >Enhance security practices across your team with easy user management</span
+    >
+  </li>
 </ul>
 <div class="tw-mt-28 tw-flex tw-flex-col tw-items-center tw-gap-5">
-  <app-logo-forbes></app-logo-forbes>
-  <app-logo-us-news></app-logo-us-news>
+  <app-logo-badges></app-logo-badges>
 </div>
diff --git a/apps/web/src/images/register-layout/vault-signup-badges.png b/apps/web/src/images/register-layout/vault-signup-badges.png
index 7a80ffaebb9ad3d6ba162b5237f0b465205f974d..c8a7ae2f48f809b91e02b315262b4eda93cc1cd1 100644
GIT binary patch
literal 65051
zcmYIv19YTKv~4mIPt1-dw(W^++qR8~?PQXPZB1<3wryLl^WV4bU8{rcPQLGSovMBI
z*|jT7PDT_C1`7rR1O!f8Oh^F)1k4He`vVjN@OvZIlnd|&w4Io`BM1n1*w+`RwOPgs
z@I_EZ1yKQz$_bof;1e)YerbLXkeZkuZ~EXMAn(=ULi|c@pl2E2UMPpygTCS?G%OOo
z71q|*!&^tEK(Pb14e19SOtEik;7G^xU;(hp;hOg0t*xG#66-X>pWc;q`O>uFQH57t
z&p6_j8?9^Fdl&ERleeCzLxhbNYcu`~5jQ9vdD+)nwLxOEXV3$%%mC#afuI6CK(PM*
zJW?<skzsr3|MwyFy9eg~o^;H%y4o&25ep}vlD|;+al)AKbkR#)<jUon)i;3!nG^{W
zEH_!s7J{J4sZIU=D*}Rtby0C!?$41D@-xUX|6mBfD^a3pX{C1q|1%yj%dhF_31*7Y
z!*afKa>e=d^$#bjRYPZ|?>86#_0d-#&9d)!@N#8VUG$O0a?_kx9UT_*u!i=q0Qz5O
z=tUohQxgp}H7dzenh-p#E+VysQQJpHAi??$S!Ihhdc6nM>^?h*qE=dKuPX31(kssA
zOeT{J_iS>0di){45Qn|v;}-?vl%QdI)gT%Tib6lxe(M7y1(DFx7==O4i(DQa!l4Z}
zg^J+Mfgg24p<aSSsYDCu@sh9WZ4+a=r(m=K4aVwtI#0BAJdG_R+b`DAKU&qEPEAui
zfMRLtH8hu`i~F#<7xJ)fY5}yD{y^T>??-&zYCzN@=77T#IhP+eZg34dr_=GO)S9V}
zfu&{H(^~?9e5(l@J?yQ4929twRO-yr-EQjB!7IM~&D?T0v_%;jFK=z@^XsGxKj_az
zFkEEE@^bdAqHIHB8X*oJe5Pz=Gooy8;LYN36qUUk)yDJzqq&@b;2LrWSb!c1URfq>
zCMN>k6hghl)ncOl&37_UQ7N}q8n1_boV5<m#`clpH%o&D7*vp_;57Zn?0JhEh0+l}
z{S@kK>+iw()IVq_bM+Su^Z)|}p`nVtBpvBI7AjT2-BtGqx!}Mt#Sh20?+dig(>F9M
zQ?j@gJj~>=%mL}j0VGG~F-_Ic$d&PKsT1DY60%a>Ur*ZpUR~_k<0U@m>mTGVQA(CC
zTNaJi9}~&B{+(<qfjQ7a?k~hrfM5&ROaCm>I^m6Nk>fqPF(Jd^-UDda1OvV*8D*h7
z-EJvbuHD%j$|-!GmNNeh9sUPrvP4C2SFC+Wi~~2c8|^{t<#-C_uV%_$Qp|R$W4c%8
zj@u!_$mRyoB6+~fsAv0lV&s!s_yg15iw;9^9uCaRu&I}q*IA;(Il_+1Y`tis47p+p
zDsUiSb?|SnqO;heL}R}Hbv;_}T&k?V{`d{vt599QkHk(q=2g4Ylp<LEL~|e4hhrfd
z#~r9hknK&kwLaNxgp2M7Acf3V`|};O5;%s)C2+y|H@H-gkEt5j?(Hr03~qXSz$wnb
z&d#nk(pOVmUxV~6(Eo_*c~|!BM=+5SH8iq`$vaqLl~oIk@Zs4;$_qCsB@41?4k7{@
zHAZeMqEoVsESj6x&mD5yT78BPeTPs1MHsB5QJN3CyPrzb<4Jb_(yAx@XAi9=`@t&#
zn$kQU1jzIa97tdsL9E&@tQZKFnwpx1YnpjmdwWK8JnIRW+};qHZ!Uzqw4kuPMkwHN
zIa=y>m#f%#LF<vM1s0CqU+#PO%Df^3Dl#s2nOY+XRN4*r2Niy92jyCYd!#P%(r|`^
zMnRCmyM4HZ=#;DyO^5X3{7-P8QC=h&0?`kEg$kO|<lQNU;9)8m?G^&MBang|aeLGl
zAPz|JPJKa7iqSa+4EY%Z+*!m-fdrPd>|^0)#j;<gYPo;}%qs_@lnjUOHu6N+ajh(`
zUr|Vi6&EA<<zf-p!v$ZcpI?`Y3jAS6#ImH`@9JzripUK8%oIUFIQPAL;lra`>}^59
zn98GGKu|wU@GuE#F?hwc@I*8`xneH4!kmTGk}E1h&9xqY)YWV=pSCT+BU@$v-@xBy
z!3tVRyexnH6bu<F!VT0#@hppZO34zH!cvV4E?=Zkm5)&a_})Fj#>=(-nA^`Tj4Us+
zxyW>hR9PG@tSs;Q3_=2m>s8uz2%N{&BTsO22;jU0d0w9)9t=w88t_%X7cXWIdZsKv
z;!U&>?vN%v7^*kE6O)oM`bsRgFx(J1r}9X$e|rT@Po4q&`D>6HA^;YMe<5^aQC%T<
zka-%-GXsCaHu4m_MD2kv*Cw}ecciLaHtlt>cNFMK+5u-twYy$@bOfN*dSi=ENcaL~
zhnqP}9Cjx#-ik<!8jGcDJP)VSZ=258+=11cRg!;b+uz>akoEbiDgKerJGH(23)=j~
zv<VV@!9qJFX9OR{acdIhd{CW|0FI1|9Gl*QAsIZ(z{{&LWnnDcRhoF8j3?MbgmlG>
z3fsGfw|K$puK_EiL}AGt^j$*O9f*4Z*T?It$^{G5$h)`?0T6c#Wu^1U)?9X{58Cvw
z32bjQW)%MZnJHFmR(8ILwENPSxEaVv4ZC{!)!7M~az@cwrD$OsMh;dml*%%zKaoNj
zMB_Nk6Ph!*tH`Mj=%r|pFXZ4w2>HsArQ3h=xLjj}#4t(GIzB&m3-$MP_s*+Jw8snQ
zRREz*hg?NGg%t1aT&X&4dy6Z>^2f`#=96bXummNz1_lR<=gKH3#80~@-CN8&)z~>X
z1uB%i<$5>rDgy@x7|T$BMx1CghXFjlz{CYy359x#+_QrS`WFEFnJyj0)YR%QD(&+6
zSiuEeuyw8J6EIy<qBFSP7J+GLapyS#OvOyI<0WJ6C`(2grwANAEEgA7-g#bb-t}$O
zk8G9OF38?J7SoB0Kanxg@?|0{%(g3H+_RhlIZs{>XUph$dDS5@J^~a9^;lRs$!LPR
zWHG<p@qaVme?@>GM_wjqxfC(7Fn~2bQc&oh-tO}Qm=RhA`|BorK%_!Hk9@0wI}SUI
zWr8AVk|%o4y>xooIK8`6E3Y?95wTv00BCDXo@lnny#?u_`u(QHT9Z3A@B%#7*U)NL
zhYE8Q+9<+2JjSbWzn|yCcdxFd4Yk@`@)qNEF-W204^<iVTcN2$kM_unjI5x->vAkq
z4u0(qi=#3!%g<AZAbiDGHKmfMsi5J+n1ORvaQL_co2q{ksEMF>iEE)kX_%k10KPDs
z30#zu@}zp-P|f)BUU^zmW$Ig8KS5b-9=`X|(?zE&sZncpXq0+b!BSCCwXs;RpIKQ~
zFiV`L@0!x7{s!+t;(QJ(itHTkPoT%9bfx{%Al!q9Ny&6vozhG19;%`#Vk1BAP_T8j
z=hv5yy5<gm`eGMUjrd|Q_hl;aw)uWM<@3xty#yez2_a4w%T>u570+2oBN8n3YnlqC
zQveDIil^g0;9B$H`ZvGdArbQI^Ipu>b5l{Hh(yP+=BH~tG2R+o0=y+0Mi8`HoQ_jB
zm8;kV$oS%zs9D)K2bG!~!)K0pV5KO(<}RK>XGp*i`3RP)5~cDt6-qQ4UN<lxZU=M4
zDD=<l2(N9K(e2LW1i@e_g9GQ3snglgG=p%(vtYr$f9@5&wh77=<cxaVx{~($E6%{B
zwnISRyshiIJF)Ibx(a`^DET5|`5T@BrgeJARBft8XsklYxO}bI23um(qyMXz+@vhA
zj}*mA?~-d0DxWsL(?bC>4%dj655o!X(r|S{O}#0X!=lZUs-JRZxc^jmbk0(tQqSmd
ze`N9RIZCs!#{CrDjQQDSu$#V$S~e?K?|I}?3M;;~rO7Y%0tXitO<?Xh-#Z5M*+bfx
zA2<jReGH;g1UUogE=Fxq=IT}Sz)=|c(KRxlyw*0dAVGUueln3Um~PWg?=CDRM7-0-
zQWYEUJ-nrLgl$gDM->J*2&YbG3#}a@IZrbS3+THWSm11`s(I(TJ3CjiRlau0RKYbM
z(KuY7p8+A#4Q1N3oItP>l8yM4&_>T!rc;xhkhK;EU1qg1;id$aii>~?S({Tw-E5&j
z$MIh%0tLmCAC0VaLlX-S{XA<0hpu>kQx$+qH#saUMpRCWJy8OD#1k9$?pkC&QwBI!
zRj)DWyTr@-Ck1Gnv2HZ@l*n}__BcCES$7V`xq$C~=G+YmOC}Q$QjQp{F23B094l-X
zkO;2|l1+9-c=>~8yakR#4Prf2%PC1;=G>enRluHY=(&X_Jzur^>u~-Tlu%Cc{a*GR
zg6rX2$8JD&5%99Mp%JouvsYrr?qRt>Q7kmjAx2!l!6{SgCySXAm@f8OW;|Lc2^fCB
zpw$^Tu;v01?tMgL<Z!;vmsKN}{DcIQfi?~W*j)08oc`8~mj{|?FF#-`#H?8CEsIx-
z5+(6emOfJDOqWExvwWS{I)|ZSr)~LPi--<TFVNsb1kIUwVIwAAR&WFgoUjlt(L5gU
zlz)@288uSd0s+BJKq}WPk|y(BDwy{+H!v_@F_Ld@=j_a|k|{y*`Eh6<B=R>JOb>9-
z|IhZ5z-pys-KbRr?j%QaapJD7iB$geK83-s{MuiipR9AaUEF86JZn!lV=TWw$@&el
z$&qH((n=~r2MNfAQ@noV(9kr7&QzRPRUlz!`NcwY*c+#`?dklgzEk^`BF{f45=rV2
zpr4|p-{lATph9_W>$mWJpHr11L9!dPM_ysrZ=t)^;*A098t{PFKm0EV3hoEfvdi9S
zfc!t=sD!QiRs_Mq9q?X%86U@OqZ1=2MxM;eA8oI~rMA%oLzbpvuv=;UlitqgK4~@M
z;hR^bU0);t`ya_@1e$#U-Y!Z!;s8+`Y(f#Y7cwCa`mG()hFk?pZ9Zu)eIZnYV$7nz
z?7zfDwief8vw!bVX^quEiWPu?T!P*kW2z4pb2VUX54E>#=a)sp0x#@1nxmqkf1X6B
z_0#p*kBS|hOCd$}@yF-O(ruuW>$th?^hA)2dJ;zoBew|YODC%ehNg(%fK8}MjMJ1`
zpi(}CjtCbKa-s%Od#-N*f(4?Nxx$fbN`$%&@0bV1d6JVp&I$7;>Mji~;h3|e@)U-^
z3YC|4y&lsU`nn(lq_WFT=Sy&x$U1<j#y`_8aHosHhtcQN-iMh6Cqi#aHM>`AE*DxK
z0yZ8T0)xmuyGb0Cq6oyY%{O14^QjIHjS9IB)WaN*!)$ah{3kBm(Dc4w2nin_3n#W>
z^kh5vga{FNVj39mB3N*KaENCUXYas@7-gq`JS-5KQW8<`i(tsLUms4QN0KQ2T6Mbg
zqOWy+A_9}gn~2wZ(phh!-0opHcbZMkW5ys?5zcxZo+<f75zkgqD0}u23#}D{@R7qv
z?+433zQ$!Ta2fj?P?$vRi--!OS~tmlMLEZl?GYXT%Mm<I*aX29*Hb3#AHp$M^JP2r
zpx#mqolg5$3)V}(KZb#yo@RL3og@KLIL4KU<z~c<)F;;Rit@gcFoTjO@8WO_5Fi5t
z3*%(k9C8m=`uk^s>g%S4NC4n13w*$WQdpA>0i>p2yxt!?R4PlwG12miM#1`#vo))J
zF9yUPc>+P{R|lc`c6N63E4(^uwI3Z@bjNY}DgOPL?XNYTQv?a;77OLUGPo<#iWouY
zeDDDJE(mv6;9ViyH^*?2+Dny`ATkundDHw=L4iehKtRp{23u2WsXq1&fQ}jP2UHVM
zG_h(EOn5XEzQQyGLt0CKFxOx=|1k5S@&>M61KkNgnl_fnqglc~^0-stn5IG_2W*@Z
zPUThxfE55pFuRSmbw{t+yPUTAix)$>dh@EMJf{h$Y2AO`0MMOokPYWcBKeUxfizN9
zuxL)SnNrPs$^qFy#6^OIpH!cWORh9I4+Z91n0Ocv?IH`Z;~saa|0#6$vdjyT(G#PB
zqiK3Vx~Z0gC09lDbj2KGzhk2yVIaW=*9iId66OywGblr_P1EeZ{t6x@BtF35wcn;8
z2yduV>%b9-0>Bi^JgFX!)Ss$#+W!CqQ#1*Qi0s4&OUA{=8`R+z=t!q=<FT?Xz>p+n
zIUmok$ttEdk0|TJt7L==C7-3BBvjuT?cSQ<GV(7}1m5p4AfjY=gOb4^I|N5cdQ*eM
zrX(aL0xLE(SWu7P+7g!5o{=qr=jxo<>{hiHDmf|)>H}pMWBqBKKtQ1#)yJC$&chRE
zZm&QWeX^LC5GrNjoq#<;Ubmx5vHJ`-M)wGDuhDP8qDeNCKOwRi8R=+>!bRi5LdsMp
zZ|`@b_+O+$=i67O`b9jn(-uTlS&DTrygeSeIxQEHq~*74vp~OlJiopih!=DI;H2}<
z*;Oo4h^tP>P%33EwotYa*qK_wEXh>_{SEAkYJSyWEkog|nu;#*pg6%uBvEk<3S3cZ
z;w7ck`MV}zRkI*AyB)5H19O6moJpD4(h7)bsSjdJ#j4Kkr8k)=ki=LeX6Zncjd(a(
zz(k`;WLnY5o7Riilv!)`#E0!g^(sD@=PUaV1h&E32PYPF=UqPSc4vFyr51||lp;)O
zV=pM~AR#Lq<l!C#g?cp0aqZ0IYk`3{j50bc8NdMb9iovh93s+j&h$+aG&nhkdmM<I
zPz{>u)tV*DR&2>3CSD-4$;M*69ALvZhQpwn?APiT@Ot+!awhu}5!g%($IJU%7r|kB
zQ=}QsNGbeOHa37APVBM8KMXqE?wh1fV59dZ1laX6JPzu{#hP)SL@QK@#CY(qkSOLn
z_mIUX0IA!duwc(b{CP<nXJW9hxgs4hvK_fW=tCYzHxT62=rx8OuqgH=N)#k0enN*O
z-{YcV!H07d%NNMdpq@XGYH>%T*6S?oiiSpQg=<Id-&_qV9#4-i7iSw%b$|_w-T;fX
z%pl%-soC7$M{R9wdi}Gs>V^i^6<!Jo%v+xqIC*)FIuW3-u*2?i!~EuQA(Dl+9@${2
z)JaSJ*LL^7I#UJa{8FQ$p$H%}M~JZvmGR~un565as}*K{Gx%(B&6H;XT=l`j%0`AV
z6r6(tBQU^*K<pnPkt3D;zNIcDXarZ_&dn)k%JlTQ6+;MAn>+Z45v#E&^`GkEIc9HD
zGDwOSDF{m-3Jh=q<&$zD(KFTSxjf0ihhj2_Z&KHrEpSj!u-|~ZfUN9OGo+e+SA7&U
zgUMk@FOf#^F9dR{%h`e{zyT8o1So?7CDV+F!AYtmvWXkQguvDkyzfp8;|rB~N_e{<
zG=j?IMUfikBBMi(0Qtr9Lv&(&<{I2cx86N=u5*TGC%0fkWdmLFA_3(Nw{uAJktDZw
z>Pb|lkdR9&fG|S2E-#V<eI5OB+;zTri#ls6)p9?iUWn9k3+MY4xN_~ruZFoTHsyBI
zUpQVhnISzLhhf{AqBO>#s^fCa{g?3`VY-7cbpG?{9Ui<FFNy0+^$=On<J6orC%OQC
zAaFubfGm-y5vW@dH7;!|sCW<y?gjQ?;LjV-RXV&=_8AzQo6TK`1?MR*fa7Q*8yFzs
zT|q79RF^URT__DVsV~blz_fL1DlF{fhJqcK=R&AHpAy&VaK^Wgo_L7U|CU);2*$az
z+O;ww!MiSB;S3y95%a|YRTi`QJnQ~@tF;uiY=x4@hN4oHTi;I<hMF26f7(B|irZZ}
z^#wU!eF0dj0;NVLtHofc8J_u(MEt(;${`XU@h2Wpp1}3R4S&FV_4$qF00kWJLceU4
zxD+DGx$TR;E4orrGQk?}27xf5mKCT`Oic>ZFUpYt5z-g!7we8>Qqg@!0(njMrHO-)
z^53WPoKcpRM?@vPc=q7}g@t$jD5qT=YVdJ;^cYX4o+064)A6jRX+}&G33TKr4Ew|P
z0)Cfj6p$zJS=L{j&6Z)8s+JizWC%-sc8`D6kFimNb(9&`4vl%rD@q&gqx*6BUi+6d
za4-l6=i{m7Nk8q?#aBX%twbtG;?@t&7TzzW4tq-|S7NT$C1X=#nKSo6sJt$Yo|o(%
z6o6=df-2rqBu!{%Blff54t4;0-q1mLjNn3-+tNi-)s&3-`Ar)~=i@tsla;yBn0W7c
zGa@e@7wX{0Gc->Sh?1OrU1RU+_m(h2O#f6{SfRyaIDO-SZ?^_+Sebtv_BDo(Tv%Cw
zbrH*z9+pV*Uyn^GqT|X!xjJqYg8R79t0M-T{@?@;FfsE4%*?QSZ*Q%DCT1I&Eg*$+
zEsFd@Xv!inb~;t>io5rX`bdpZ{d$og3kTT&rdT$b7WlcOK#97WvJ)0kBiZCv7+RZF
z%%@wua6XPv{dWWWuk3fll<cH~D=1ZeK#39e4-)Kc^VF`CCQ7_9I&$k=Zs;%uO;D0>
z|1f-BWRe>wBZnc}%eZ?j7k_ekJ5|`5KFH$h)vet$mOli~LE@Prt_4$yf&&CIh^=0D
zpHiTv*cclZxb5B(m?+n4v{)4g7iv)Sv6Q&o7TQ(mj5`?usjg-yXpli+72mW?rQ6PV
z5US<ucXZfWM#qaDVH`f^6{A*-9j>K%Nl|hTTN>1?$xI%uK@Zp>Ep^U;H)ox1SvcBX
zg#BA+lEU58JZtQ<Z1D&@5>kdITa(O!#@wA)&yYpUkrE|d0ZhTKoL`x@PcO!`BS}E@
zQvW_3VX918ahWxap(a#T?7f{RF0WdWpxr_UsOp)?S8-l|bMy0ymMH1DJvOLy7_+(H
zGx3dt4daOq4+C2z)GPwgC9J3^d51vYbj${dUK12p=ZiZb&32!>Jn|Lc<_NR%9jA8B
zBP?oI5)8$1`f|RBXKSEX1f1F*hDiRh>5OYj>u`VV^KxkRX=vAw<R&r@gsZpjHm7oh
z?V9;<iI-QpXoykkV={x4@l^ftnGbpl@GTdLqf3=3p~r_&DkmmuJB9;j2`OO^@OgVG
zR$c9nN0cc%2s?A$7jUP<#N|yXywfNE)M|C81(F_lfq%S&&0nb7c<)$nP&T{CWHX((
z+}?UX7+!VvK+v6FU{c?m|2Bw6ZMj1S;`o0-Q#QFmdCqUEW5W>B!XXRm30p1hGZugb
z2ZZf>BtJ{z9tPpgk;D6tk6C>okuQYn1OKMWI2`Sdh{%CPNv|58OMS2qVToIuGb_0Q
zD~dL*HiQ-CQkoALIJexi_Uu@@HtJYC<st=lbSE7|CFSTq<~&`LApekg%mEMziPg-V
z!wy4=OJo42ncr}!3h~|>6&S8$0HGsgJ1;89N<;1?SE7Jd2`L!1v;>U6MEdBG8Z4n1
zX;jccncK-`W#yC<&i8pb-*4TrOw4dp3IGhO#gLa&F{BH5z~YILXp-ZfTd6sU<MXJv
zDg=SNmwSCvQ_D8{1d$m*Cnwl91iYTV_1H*H#7pItZZ?8w(S<Tte{vFhKeq+P-nTKt
zy(Zzr_HJn91#Erfu22ZDxWR7?prD|7a!Ee75<bW2S0<X}2qLj~!ESv%lnHphJ94>R
zczeA*z&*xFt4&du$-OA+B(YDD{Wp0dqw2pw-)!m@P~MZWS429f*w@Tw+fNfmmZ3!@
zlOW42(fW$i#rNAPb<xZcRoT$Wq}(s)1&q4j@dTJ}()AT+J~EEQgvwM%)Lrhm&sC`)
zm36*@?6*f4-n;moaoOY1p{P*GG<zV)2{)%Sxs}9g5I}l92W!w2X)#EVuDG0QYWz6I
z;UcJ1RHjng0WDCY(P>~@<UDK^)-aO!o01SbG62Cs){()WAPU9v7n;*R21__1{MnZO
z`n2axEQ6guPRl}xPJ2w8sMrX)xS~S-eXm&y%~=fbc%y&_;^8zvAn4!0uFSco(|M!|
zZ$-^bXZ@4y_zMQ@Ng|yldW8n_D1B8vB8+OKPQWVy9$}FiDs3c(u8+S0N&9^=4?I*?
z`Lgcz^ezZJT`<w0%+_8>t=Up`<+RKBN?p&mrfaoJZz1w9Outpua;@m=WM&3Ut@y)~
z{teoHB`G2CjG%F7VL-!)Tss!`#GO>%rp!(Y7tim!Jxh$2<C)|DvD>v$5|6X+Xnz(K
zP4YA*Uc1d5p_lhfMRsgD$c9l?yW@95-sT|257nItS>GMx1F2|=vlHr0xg22q2%gRn
zjlqMbH2Vxh*YWmn5e)Ds<dFnw`2jyL=(^*7G8D~JcPso&%CTFh6U)ezRwPpItH%jH
z=PDQ+GmC(hHyv^7;<{fk!OjA?Y(;?WxR^D_Y?`ZPRj_g(dzzHM8RSA4+#ZkXt))IV
z+W8r1eZ%kJyJD0utwIMwRkjvZW;RpY!OswqU7TH+u@c~JFXwb0)A<p-Ra8io1dq3b
zk(r5ihlZ=~eDiiXM2eFGln}n;A4xwEg5V?A7#I0)=@svM5yOp8wW8eNr#ctr6DWRB
z4VG@0VQBSEC2$HWM5tST1ia;yzgCWiZRUAgJM}UZuoItmF}`Eb3Lc1n$QU1OlRCJh
zJX)0{IOozt!Hki8`Q}Kra18rD6Yfq{I5ryyv3)rKrgYo(cEx9*#9=mYWvT-D7^Zy#
zgS#i|qPgBD(ooiAR$&H5i<KN$3+2?9xCxJw&6bTdw@2nR@0#j(aSyaQVA2-G)UT4Q
zE-F^DOAT5u9Jw+D4p-)CqBxG~B_0}H0)#f)ZjmS$Rg&gf-J}z??WJhj%6-ypGB7rL
zFg@>GWbrYem}-k<Dxm8ctRlB9^N46DA%doKhQ|XLP%+_g3nVdlrTY@yz2oX_G4f3g
zhriX(GkoAzSt<iQa5W?jPY2oumppfH7A`o5t@)UMLY{n?g1Qo&E|znd$}a{4HVOv{
z0tWFj)t?hO?Ib#%FgD?aqm_gH8hOdl3HmAJNJR~Jm3|F8N%(k6osGi}k9gdPk+C$;
z$c~gT0EjA98hvWER6^&G4vudGJB>=-58S92w1V||40E=f{3dpo*q*2&XR#mE&%1PL
z5u5!Es+EE?K8+Wu)Mbt9hy)<oW!m4BC$vZG^Czwds&br1O@`pahRhcWS&;j#Kb}VM
z-PDh!I-;icD>PXLb$zSo)qjT#^Z56B&;3IyyS~`F76BK+u)k#S88h>Gm~WgaX326r
zo3~t?h{CSLY3TQdPoVo!>Z;HQw&P6dxnAe6vT*H0F}SkxQqun&CphwN2l6hkj9X~d
zm{8QwQgw2Za6t2$<ZHTP(D;k6+(j`_WLWfW5CMZSGS}`z-@u;7r#VrQWy?qo;Py<m
zTKXO1`wD3f4ec>{szMPHAbD8$DV;ksBi%}GdhMI?;KA3%RE~hdSb%+ZV;=t5&I0g^
z&gwl{=G&S^naz_kmvXCUWj>DoSqUy3BHiD7+IYV*8#Q&rn?Y|a<g3Jp_&f(*l7xH7
z>*L?acHVdRLv=X(r{&?eL=_e~naz=^&1wjR<40H1@Aa#3E?XlpNFs#%1vrb`$3)qJ
zPA=w(5M@VRF<qJ5#k*$TooYm#k0&?A7G~R68;kSVY;=*w^GJDo-x%YxtUq)%KLcy8
z16uM-PYdIJ8NqUrX+C6iJ<<7!)A47b#RtU-4Gz&qK0BSS)T<%aZH5<xH*R8)Bmr1O
zA`zPo-|xzrit5u}m+OXb6b;~!=s2JL^d;U6(3Afu$!2$lX!1fE36jjld?no<;<d#_
z2@o9)le<6t9iQgfMN2G&?5t$)&ZSIwWc?cEYM-xGCbv81u0~=kJ4Z0P+tJ=KOk3pB
zmt?tUw|jsa7#sv`uR|itr9`d@&r+(Iq+Mm5rgFvS1~{D172+?F*bgt(XpWy|&CC>*
ztMy<hfkC<5S*o$5JDD$uYT%`bYRH2sGm*yHo{BTn`HQ+QT5CG#qba41HLlMe;=cW#
ztcxU(gloh(C1KBWymvLWwK$f3uUAuI4PBB@--KaJR~L9;fD+YbXwNXDU)iB3iygqZ
zVwSGBx5mzUc1;ur$<4YP4I2dqO<nf(u&;442TbSnXb6g)q4mc8sx}lPaqwK33N)}=
zkI(%TxqW;Qj!6WW?V4r+0iMV#_I5N^&I|v}gK@s`0@8?o;N!z9T>190Eu<b`u04`W
z9=^OA9P#ejJC=nmDK9bbGcH^RBizbD9cWWvjVc{gt*0R1guCTS@%u%vFkh}FV#|?=
zw1}3G&dgsVdOD!?JT7(ZO}}HB7mxwqxZKPEFI6RviZ<jMiZ@G6W!zc&RhSJ|cLmZ*
zf3#d{n!{dik?|zMj)2XLD2>g=+&uC3KFto;K&rt=T(`<U-xFNjFwh(jLlGQEX;B-L
zWT?sBzUbL=H2Uu>h0Td&kc{T|RNyx^0{sv$G5svDmAe)grrc-K&;_iQf!1Qh#3#fN
zr_;Ot3UcImeWfdwXoXL-EYvVqWYWh~@+Y_wHiFk{2|-)r@`oR^J*&O;egC1Ak0jCt
zEr!4g+!jXN5fY#Ev$i@}Jt{zPet&(OE{in}g+JHW1-e(X)K9^0PyL09mGiK;xnV{d
z<ilP|FfV1|VUsS`S|49>b}>pEz=C2^tsnaEILCf`ZH~Jyi#a4|3YhcDzz-0KMaEIn
z8v6(=r6PjD!h>%_fXRer#h^0L*`LohD-uv%9kAG=7;!2!JES5*Nc$pW4D;9q;qgX|
zqdPj8&sL+i)LR+3cp4f+(-uTv^g9s%N^ZImwj#oari!c=1kMNHk0`@*4hYE(5D}!6
zAP9Q(1%dP=##!RMp;&X)ib3>Gsj;L%Pj==I6RHN@k|BU!>z_sJ5ibjkW+5!Z9m{*h
z4-aJ6&3bG-3b8m2K^-Q^v7DjwTYLKw;AMzUV2|Le&rLhSiYED+z0h`uh=fIN?SuJK
zi3v`)PmTiiOfy;0Xtf1Xu^Zt!REiNhs}?IWjb(8s3Gv7^Tk5)vxgO7YCp)R>HKN}(
z-XWh(R^8Pa^&`3ycUS7iBDP4vLnqvNU!13NDiBs0Y=T~#EqmwZ(VpQ_2^LG`wQYSQ
z!hKq-cZ2V@FAjp&{2)##RjBF0jB!^R`A^Zu<yw@6wXR7C?MGSz7jLZ_t%8B-b=OLZ
zo=$0QZf=doxJSbI+4(txo1CtF`a*-8g^BYSLpJO`5Z$3v3<#iP+-vkllcHp{l)X!P
zEx-lcd)LNbt1>eR@GG&|^}NbGoUdLdRB3NZfy@T%Qk&gaMKOG32sSC2*Lk1RA)>w&
zAxHF-^mui{@r?Q*ojrsr#vd^&mRPvn$$T2odxd2dMLpQXlB&Qb6`RJ1?<c?~L{|J5
zZ0}V7No+4KA$8iDYrD$X#{}0@$tpb&qVR_>9EouYDDHeK(Z(3@*pv_5Y8|$3<tptn
zY!dB7SXh9kf!yK3F;Sw^n65M?^rkkX1M0khoRP9ij{Ma8>SNJo`|c10f!BSKjhp%M
zaam*a`4+TR^ZT##1UI*qR;cL;R*yz&%IELLjQM2<9dC|FO7-FTDQiWJhy2D0s9}6F
zkGC1(hTD1uKM5&0u{Pi7Hw{WP<jrqJh(c0H4u~T*v+jn{$JjXpm^{D|sk~;1oacOL
zP>8<K_(_#CLhpFER{0{-5;}jAO#1b&LOPky8H>$IkN#$FWd8I?Je1===smu=#_ZTZ
zsYC&ZrPNre+rgfen3>vgnvS83?+!EDsVaFq4d|Nj)(;cPO>49<Tz$}HciT&uvtKOG
z&B_Ee(K$1g0RMwe2H(n!H#PgHx0BUocKZ`*DSko}T+xH~+@S*bDuiMB&HjGjx+=)d
zjMhk-gpTjJKAb=9Pv#^r%re3F`s*-j^DR~R2wWPh*O6^(Ui?+AW{Z|i8h>!PUJ8nt
z6?a>Aau}qrv+?8?qwbiC0eD{>;PH4pB0qN0>up!D`oq!YHQ8u+byhA~;L?x)cVOVq
zow%)XttQUb>J}Dt+Q4~fe{cpq?bG;2B!hd>^x+Kj;LGY0;!f~Y5~OU9NH2C(VDwGv
zQ@H!yMSj?4ar7XW#U6K*u*XmR!Vco$Am2klze3E3!B3fASoYie=G>#`Fdb@_@X0{Y
zemu9I_VjVd!tT3E8_yI*u=l&xV*(N|#bCJMG7e+BWoAnjMp^hXu6VOGi-?hv)f+EK
zY4d58%%cZQm?R2+?z^oQ_vD_-A+2^mma6q!8h(-DOXf_@2Ih)r)wu3yqv0AxXMRYe
zA{cBcg(9kC2Ic<js(cIb^V{3YrAbQfI3#EauPXs<sG~TAX+p@Iz-ys%(3A6A`F%;-
zTchNHSn%}xNK#LFiS3rp)-0_5Oit||ySq1KEbm^=+mF65$;JDb&1CD1C?-|Uox{{!
zrm-UL+(gFG!~vj>L!t8naB8$a8zjJKmwmG^U#i5~JmG7}x;3+3Rt-k{-G~4u1v}M|
zRV9=|g6N!F!Sv{t{ca{m(ven+RwsDUQ-#M;`*-HlQbzgwiT4d{xra`;czK8Y+duk(
z2N&~qJlX=`=-ol2_i~T1h~Z<1h9iHd4DCKfd>2iI*Z!>da6Ot11D0M=r<ua=*lacu
z(Htog=|aperG7pCGd7w{HS;M5N6RmfEP|i0<aWCw_jaEhfHUgHF=XfD6eEo1@Ruoy
zw!S}*H=22g(%hOY<rqmGCKrM`TO7^L-qk9O)iG|&%@n4$x&mQFAKWt`W*n{+LlPIu
zby#!at=w!&(&tddD${IKX-N@8MG6qk;H(1`9#AgRP=D~^T3XF>1zN9`CPW$QHX1(>
zVPNh!^1Ok&F>Q!t+{UZZH3;~Oh<_@z`tw3!JWFMCiF^5Ldq6n$!-xO#Hj>h1+wizw
zlt(~%gmu(TDsHs`w$htKCEZ*)*(Gp8)9oJLD1e#}$_4E*U5N#)l5<J-)-d4iV^Kj!
z>fi4v3uNw(^%`AUUS%_fYBufZh^3ZKAqa*Lb{d__h@i4Q+m;V$yVn6{eR%O<3!%_+
zlT0VkmXdEu^*04~3mL6e89E=nUIv688|A(Mf1Bfz-#+rQXIJqh1eV+V$l|92_V+a-
zQ%K*f!=qlKx5j0CP<v)**4$A;X&|HXhO1rapHDaMbc$}D)Xg{?u;9}>$WM)hkmMQc
zF~`fqvng$eKQ|EP^u-S-RbdU08x06-e|YEN7C5&tI1~>*xL#}|<bqLmM-cNc7Fko(
z5;+<q7QU+(uvn}e&7*DS-b%BtdxBJDe8^$aYsk7d^abE$#66v{m7dk7k-NX*B|=bY
z2BTef?L#=n8dz%_kt+y&vc*UhQ&5tY$q5ZwY&xrT+~}IWn9lqD^A`{BaK0YLz|RwC
z{%7Joi+H!3`nZl!thoBdOlz2u(4y2+#$KvA-#LNH=>U5T4Sl6u#Amm2ejfCa+K1(+
z+v-^KAkvScT^#tb#*y`-rY!g40qte=k~VPeWWF@Txr4&tWPKQAs!iPxm6+T=BDY`a
z-3Imgsw+jlD#0~Tp+x?3?#l~B{~g^ah5L($=<A@e34h)Xnh{(Cemf8Bx=nJk`GXqd
z@K?<UvZCpVx5c94Gm4^jdySBgleBj;(L_ls@<d((RoT8&wcuMD_q}cKaBu&>N*hw|
zmDKjGdHK!lV4mK)66s|wo}J?aE`OPO#)*fHP`7?ullx{h!+o=*>)nAeh3ZJT;g@af
zf){=!&G+=TJLzP^!ueDg9y%^|j3$IsE`^4qYEv$@sfR4NbY-2}X7L-h@RM2H3!9fZ
z+7EH32o|~dNd1(<x|5Z%LOH(9x`qZ785}N+@Ne`Yxrnh8>w~eeAGtuD5^lh}xi*xZ
zz`zhZTh53?<imzHI3STL>4)e{XqjI~*}T>iwet$kZ@#sJ68Iz#$0=SpF|&zUqIhzE
z8;~m_Cr+1ctFf71Y-m}=_k>6kO+fdG+8=@5KR3L)wR4s}uUz0fwA2vz=g(bZbI?y%
z{nA<49?=+^7ajZS>+2=otLnSAvF0D4BTiMn<btX&K-+yUrE%$m-}YEtTpCh1&ABCh
zY#0Buzq*pg;q~Y-Y9)=rmiXY;sK`|cmtb%O8qi4Zv1FPJZeai0PeK@Ce$H$<d{bT<
zeWN8!>zR&c`=t^V1uHt#>uJ(Bi8C$0zO>xEFaXgE7X}JMqwcK<-lMhL--!^)<)PR(
za7tj}0Yb<HsYKBZavIa)ub||Y+T6Wf!$Z|6A*lR`iWUHRtU~7U{;YP(YMugO;{l*0
zg;F||ke1gpS5(St!P{EQ?R377!sCTm_&L76K*C6AKr62IQ3PWpxp@b-w=I|43Uwqa
zM>q#>y(L>BNrF^$sm&U)QfKnBR0TCv@%((6d?i2UITKjy51<$h;}E51_Q0Z^;N0gr
zF;E2%9XdRSc-~L!Me*~E7~TI6I(s<t4_CC3$l`|2<;<17CXJY0%@OqQ!0i4-yeLa=
zwVF~SyML7YY{8`SsY-~CdZa3zYfHdfd<C;FM~aijJcz<#P+~Nkh!lYW?!Nwxhh{p*
zw(fK)QIIQPe5j>pG1$A}e{z`MPUmz+XDL$-N>W~ES*g<nx&hf%g2$qU_t=?$pxGM`
zQt};NUw@n3;|+|neljI_zR5=$6>0G4&isMrfUx9bc^8BNW=_WoUc%i|l2FnF*g8ag
zczYULZ&Hn|*8u>Mi8BMpD9HLGyuQW~?!D8$IJw**r2%XZOs3<s^hvE|d>Az9!7cTc
zf8QcI7CI54v$zAY$z)q_Io*BoQ|g!0Jiiv~*Y>eKHE7Ei*+Ag0eYLs0C|i?nHd?|C
zxzD&hf^k$zai!&|@@oh~JSd%5Xd_#zCAPWd=N5J}iOxBcMPS@;EbO`kN(5{_b10c)
z;9UUAwclYFN&4-jv8NFPTN{!njrK_zSQp}<2IwR8S6q*our!2k{~1ee*ZZ_fH*^AB
zXUXriD|-F;7-0%fw`dRu^pax?qfCdGsHrGFS4=Lj5{hrH>O07vFFgoOwEoOgg`e~J
zgAkmUF$yb?wlweX$3&C2`%qaC=E{AHI1i&f>+IinRADIn1Di8gWr@l9&6q$2@4mhS
z06;OI-78c|nR`7Si&nD{)w9b(DdKy*H75#)Ceo>*)1<LYTRv`e6ODbo%K{yfl8gr=
z<nd)9_oaZx1#AVZ1X`NEEd1j3R;O&%zdt_&<)EfRVC^^4I4K0VZj_&oW~;8)=?yiS
zRLYPHBDO89u%fW%LsYK~QWs_oA`o$Ad9&`COgBM!_(R6xP8TZz&beHP%KG{S#E*l&
z9NdhI3drO`2qC2k?JOtG=ADeQ@@*gC^OpHXtcFt`FXu~9^Pd%hVrs?2=+h0uokg;f
z7e^cQd711gc^byUmSG)f;6Z*}Ki}?7@t-zdXCoVkrh!dJ-qn5MtyKbYyh-CJhudkU
zbeWMY@mGa*{yKdy5I;rQ|0~TZ6Cs)wp(=e+;k7l!A9jLmQFj1`9M}A@$2MO=CAcp=
zHdIWj#Tj9cb}vJ}C_T=|CJwtmmL>|OKtk{JQrBQ4b_1dxC;YD2<ub=@vyy<9014>t
z!Oh^j&(oOHRZ}l1H<j@m)a%F79!l6-1dqrcd@B^|eIZ|N4p9G&+Sqp)&XLJMoCqfW
zHz`t2AXmmN4SkCDR8BEJdiPxvViicI-0BZEXbWsMgDRv<Kg=0qg)ocLQ?x0S$RQCB
zTq$yU=k_ixNT2uer^`Gsc)EWQ6Qk;S-SSLmH>J=XAl|+8l`uWIY)mQ$h0)eU>8!Vi
z`3u>JL1l77qt7Y^yh_H=mW*b}b{psoC7LZMw|%BoCH$7n+`3D3#5~Y$bL!V4hEGK_
zz2}r%e8>0skiPi|gMc6#6HYLD4AjkcYO6YvCd5r(B5tk3$VVeDU!(<&)PCZM{{6(Z
zP6I=Hxu|%tt=MoU*p3;i{DCDJoe^7_mzry?agy|nBxxAB^K~qf20OGDiBqbw2k1kf
zM-OR&o*D@LrEloNEScNX4A<lXuD+d%s4yhkPoTJ>ILRt~J#9Pc!2M5iqO}PTyd&02
z)d?Ctrpy1cL0mce0un;<b|_~5%(s(}&d#AuR0rAg*HmbfY!_eJV~-Xd7`SF6MRl4a
z!Q10{NIYLOt&+9X@C)vf=_+q}OZwjdev;8Dn<tb99BrV>w#N_jyH$^Yq7Ncth-v2r
z4{UP&#2C==ZU42q_Dy_Rex|-J9aWl30-7<85Y>7_!|5u)XoZqlqbZ{ute@#K{b{Ek
z@lbh8PqS>vP5g?W&LAyjG+7`Qln+N@&;c4QL{bgx20I+0RJ*KY<BdhYsL4~eV`P7P
zwUGp=z<o9nq8+v5-&R$Dy93<K1MTk-G^(TV%|l<YyKcsZ&SI<A--4nAjN2{$X=#>9
zz0W@mJi!zKkuhmU`TZwHfQ!fBFg1vQvZ}-L(r4M3h>)nprx!i1L=m`zg&S#c3!Ip=
zOO;uwK>SJg4=s-Q$_mVAO-<cn2qfb08JuG8Fn_>$&5WMRJ<A(BWCgGM%kJI7`r5J1
z`;l}iQyserCap!DSXnS8(+bn!ifu2i-a5_gxQ~tp8IogA5=pScLY2&4%Q<iNbY{F4
z2vkqSWXGCmMZ`U2UclIlU;}Qy2~x-liMbIwd@n^$!jvHJIDF;PNx62inQ2z{o~wvw
z*!P2tFZsJ*@@WX%hVCcmOK(J-YIvm7!TCNeR^LL$c~|zK`CXD==LAj*C{Qc;dNSWX
zMK;h_n#Sxkv2)M-rC&z-lwjxD<#%Ie9Q+yQD>JSALGDF8KgQDGCeMAg0&np>x3&VH
zb+ys*!zD+5iW|kzMwR7EdJpLil|?ok$w2<&H7nLOT9Y)#&upO%sZ^=b%t`xZW>|`#
zNZ`tjj#@Zvk9D2XbuLZRyQ)_dPFM2b1z+gT#5ohdCt*|iwSl+E?)u;Icj+RTES6(s
z$II^TYc0;AlQH3x4w$<wh#-OjQAMf3qJv`Re-%n|;QP5FvVRK5%K%SjL|hwg&|}dE
zQ#crk#`KV7`Q|B^UD^Ku{m%OI{BjcHWj}(JK=q$CPHqu6Ohd>|Mu;Kh;24xBWVS0X
zZsYU5^g%5;C$};d+#Ui)`)WSGj><aA79^CGd~actBI+;lZt=pF9I^1yF2@j(8#vTU
z#uO$_0p*4jytcJ7-s*8XG}Wv*8cZJQWL0=c1@w0eV~`$zfnmGrGQ(6_PqZ-t&C5l>
z$Saf9R#vD?8yQwkPU$}bRxW+sgioY2V3fQWj;`djfIH3#JCQ}mnqi=k7SYk<c}n6)
z3?i%Hn@ckSb9Qr>ciBTYRpYDjdsFfhGc1Kp;%k@7n8QJLWf$rZjzSw8E(H1tMib+I
zmF?SIoCB(q@9ckC;PO=*W+ViQ<ca(Py)_Jfqd%Az@nP@omMyqBXi@YJQ{qsaHfJ>=
z)GZTneyX$3ce<g?p;M8gj19>9?tl$EsK9Jl?u*;z@lJZN?rUa;8&1gSahAXFhCYtf
zyFT8=xYxJa^)tbGr|(yPfauF3k&{o9{ow{rN^gee<NW~|gPwu5+)|q}7pwKM%|Gp0
z(y07WlO61{44kUWRi`eHc6xIlufXXAVp&@cxsr+ZGmis<EN`osfqy}og5sCg;b=nI
zD8$zlCpNHr47hI!iXVfSi=m%@3F)ah=4ngK`p(T2U}s=!`2*v-GE!z>$CBMWf%dAH
zaw?<a{e^cer8GMRV@9R(+m3U<D%L`KJFyjJo`Sh;B85C`vXH#%d)#LAkl7xI(umHz
z)f^qga_C_k@-m%s4?TEjG;Ro2xbEk%2KgGq-Fei>yi}1z?DHwms;eKy&EbKw_^0yc
zcbo+4(dE^=K+M8>BLU5xd9*}ksW=Wi$e6D8IrZa~)UD&+eh(Gd4U1LzK=qR3?V;;s
z8Dt{wU%^$i7iK`!HWpT}#9<X6YD`>Q{<Hu=yvop&=sXXn(Pp!MEQYuD4uN-q{@plt
z1lf9a$%Q7!LYXqp?K;=vHYSUm1dP77^Ol+3c`wDM#HtiRrBwwkC8FfSz`RPh<Ci)K
zM}M1r(3#b0e9minJvOU&ZXQK29M;c`SA#omd^K{;0@Z_k;K3}8FC&5eShqyd=O1iq
z0o1zT!ci&6^^V^u)o1sPle(P&Nt%zCTCDD7w&^-N_=2tVNtAf%JgvX;?N(t5+UQR!
zy4hbZtK7<LO@}4-7ZJ#e5dG$`ymN{rmg9k-9PDBnkUrIFeGBW4+%D3n5=C!Zyp0;<
z+i*5~<*MKSW3Y24DqN!EI-ENxm@nz+Zm<tDeH4rA-?=y9fo;ttX?mPK+?e~z4!|d&
zIeUaz<Lj^@occZiTpF5nDS2Cov6_%7l}oH%UaKU_URbsc&H~d7Xhi<~*sobc>P01<
zD?NhF?c~U{*q2bCFjfRQz9B!$U+6Z=G=}5QOB}tIVe<PhJ1Yx>Pf$@}OoUIM<cs!_
zamgDjvw)`=F{r{ly<0G&#_VCC;t3rul&Y+l8H+x;cdJ=?wKxfMI-_b65)hpuUn6+D
z?f}3o<#Bpp5r7QjLJ#AnCI`gBrS+8u-@!Q2QoVD=+1)hcESybDWVT}~6u%CPp-Tf@
zR-@Kbf*!S2+n7-eG~>08>5dv_X9E@qy3^4Ho!}6w=MnvK@K<)S=Sm5frjp5N<@Do{
zQA%moJNkKpdIp-H4|**z;<U**4||^_r`nwj1LCMr`EMpwnGk737>W9#=z-7~o~Fcx
zLB?(hGi{^XNjl<=(Hn&AibS&l9we0QRft@o81mRX4jEJ9WN6VJ2t(3-^@07pK<sZi
z(0YSXXCsFq+9zfqC)TudiCnB(@6TVmkv(NszLYHA7akoUXr~s4n9nFO3fyMZK-PYP
z&k}-W*jcUiAOR}6x#fs1D;+F~rB^}_L$}El{U^43L)EnFLla)NEKXJ%Aes;Oy{To5
z`M1&^%*4Oqj_H$53MmzMG+2T!D+8**F1Y6qlx;Q2D0#7%z_Mu62m(3b!qHv&`}lbn
z?CoR|<i*tcW2*<~tB}uI9!iMwBOfcumE0WX=qWh6QGa}D1TQU>tBQI}bFb86gz0Y=
zKTm*>OF2zga&mTal0qOvL1XSb4teyVFQs!6g>l%Ev|VL;LI%WfEHKoN*P1wb7)?kM
zjPVuAO>CL`fCSGwS&lIAJOINkp4i*k@-q<TLBjf5f2Tu9WD^={Dj=)nm2RYGWu3vb
zzH=1{6&SQH1LJ^YEb&KReT5}14R}IChmzxCYnv#+I^zc#<8p9^ZYG36wv_NzQ*#PN
zw>7!*C^F^bJ}OYFovO3{UQ(LGaI#Pt)WBO&Z8^znTA^|~e70Pxi;-{_1k`GW(f_l<
zMHV^yFf(GJfn8c(z8mj~_=Sx@djTT><J@%>RV4xihCrJsEaQfQ6HdU?**!B^l$R2c
z*3F6<q)&+)&==lkn#VeKOoo)_o?(HxB1gFpKUuha_&7+Uo?&pq?FqBJrQ_!=5~YOR
zZuw)jgGF-TGEoR$TTE!l@vR&&zvZaD=qR7zy~QMDvB?B25&gDmU9!D~nBm}DaeZqx
zTP4_q_$0PkD1o7+!OD!me<Bmbl;NZP0y8)Gh@IERle{qIj4sThAEp&^U4#L_)d;*m
z0W{4tBOw-w$YdTX>Ulr`R?#k%+UI?JwazB`?|fOR)mf_z(L`papMTHntf{@>vP2^O
z621z&%fEB-hP+b1FR|#TZWMdzX_M%ODYG0@gJ^>oUkhikOJt~vSvZR%A0;T^gT$31
z$h0AH3dTcV`}fZPUid(X*A-fYG#Ak+u8elRU2>3G8Hb23ZA`g%Mt3)r><2VGP)f<Q
z9ymR0%ku3V*Ho8n_PitiRh8~8lXElQj4N$O1c9*9XdP8Bs+ua5TIf`D&h-ee-aXn1
zrA)f38dv&Q2P9D`2Uaxkl44PK{2J6L`1jG^sL4J`=ac>!qGVrHTvTL*-C_&iaUh>a
z=aS7muoRWe_>>vrl^taVHeifjxi+K~pA<2H#e_eATuF2@+uipz6~NyF9{QemZQ_bf
z7fG9D`e&^sMWo?~{%WG;yRE^O-fr@A5I<w-)Q@vx7RDU=XFa#_ndA0g%lC%6<HfRm
z!wdPgL#=7X>iXznmker_VX81~bbGS&modx!@0HPvqBp(O?gTYD!(?eB;T8k<Br60~
zxq&~F1;*gWjyPv$!~|315(UpZ)WH;fPRERM>UROb3ZmvqTl}P4{d2!{Yfku3naLFn
z7c6uWj#a^gPZEc$64P^o9nM9_T`rOWajoY^rlhbU4A7{$Hb@PP3a!<eP*W33{Jbh$
zSk@|(bS|CEUWJ32_~STO)yw6?Na|T2-hPt{{FX8p|IOLe?&&1F%=jYT91}Ezij~ZX
zh(s9OD<_1gY)Yt`SuS%B%0XP%lxi+<c68)N8in<f&g^s+IcQxP0l-|WI%w3oQ1Q37
zSCCKO@Zg+FWU-7q@Ry>1B~VG1>uBrHb9;TzZi5XB3fTpo8jyyuyx8FZu$ukk`F|vx
zRa9Kf5``lqI01rdaCd^cySux)JHcTX+}+(Bf;$9vhv4oO{2u<x8*A~voH^ZHy=(8U
z8m28!iDvfdvU`o7|5L<1C=bi?u~boxJ<lys+*9!wp-Y#y@ybkA9LtgI%i!NHuZ5U#
zJmY$G=oRQdgfrN1!^KNz_}(0EVD`arB)t@Q(-!b!Zr|ncIi+3HAO_xWlC&=~2eFs0
zcWe}62tGBqED+py-outaG!fuIaQFYC+ut@1ymZ*}+cHUAHb!H_<A&~z{<imb(05)^
zo_dcjhTmzmvvM6y(%`X8cyY&f*6e^C_pPtWw|~dhXMt(nM!l*KWjqsg2sU6n4Z?82
ziiVoEC{W*lFP5<*=3ja%i|sO$&Q~~N=bZ6b*-mP{a?IRN669)I-b%Wc!Te&uOO~Ay
zMS)wXSwP#A)?^aeGaKj>W~Z%gYzT5aR5;9yOu!(&SZ~w>0p?q!ieH1ql7fa^oc%wU
zapq)ohZKxtu;RZuT_<)VVL>}EZFq{7J{npZWrtD<z@KbD+JZ4GCS6S?UO!`2R_((H
z895(M%TsF8iq;qiGaTI#xY-`%-<bc4_N#81IM5aGCX+b)BUN-~J$98|qF6>M;gQ6r
z!zW;x!BGh5QJgy4Tw~j{HfG065vJ>O63k|I0R`qipIDqC>hHjy<v-in0w11B1y)3K
zu&&p9FS@L?+c|(v=W-q}YGvV}A<p80ug~!EGLg(_PIu@}hJSCz9^|0;N5a&$&(=eI
z^n_)s%Y(wL;DClncpd9ryKeDx<Rcs%?4;?XD`U+OjQg$dN9pv>ZUG9GL^wfl?qF}W
z9!|R*{2-l9@1~<FB9?x0YHx-p{{f>7+E-_r2sG!i_n<fV$sV}tuiUB|#;=N}D8r4C
zYbfZbo(F8#d~6kov|OkXxf(iAI<1(%j~>#7Cv09YOo31g`I^{HmP=w1afG>sTXt7}
z;NNxdZl<JZ#h#rDPA8a%5Si{pAML499e9*`>U5t`)pMRMmm05YzwNDm@TO-mKQ7Pi
zVK4WWPY>3ABWcW41^qFW$d2xH^o#a#t%SKe8G0DGKqZ`s@C<(W00*t)u+PqfG*x3F
zij7Ig*T&nv@gT*Kw5It}1n9@f34zCX;G^OpXgUSSYJ}4vEktqAJfeb~?qVd?;)*8O
zFLjpH)YH5+rmMfRb^tnHVU%pn_=<xjkje^;IcAx)u2N~J9d0C($pE58iRyEIaHher
z$^xUsTn@$JvKgfak&{Bg1ZKS^<SwVusE&UU{6w5qbGCO2kUP0`*4N!UHVHviH<D4K
zIm~5GU#H8(h_CXQ%V1TFCF9b1eJxqHe9t?}(3OqpB5k);@}}A)$<jF-5t?i_#G^nt
z<Gv-a>t?IfnTY&t@HVWBjL4pMxI^@|6>N~&9In6e#v6j#64!lQVO-9ZV13_u-H>BF
zG92t(L`L?crwR-?hs#-*P+}ZT{*~Nxeh%;t6vH69Vc3T|)o3t-VI@e_ZgJt(zR0n>
zOR3xMYr~%2Aa<#@n36jGsnGYgtIyT+2kC&9bf(a+2j0=C>*%A!MtGOgJJuE-D*I8L
z{&4;4d0aN%%h*{mCr4-D7mtRiGELP0JXY0yd#z6Qk)6h2qJyII&R{@TV)J~>WvetJ
z_`4|H!MN7yBvx?|4-Km3aNR`KK@*eHc{s<i=Q$4b{NNrI%#(M6+39_+gOsoxq+l?Q
z3&cL^-UE6V0gELH(Yawrt^{8VL$ZR4M6~4s5mMSoN!9s+Lsa0cm42YuVD?rU67?WC
zjXbYDm-9`b8{wocaj|jA)x#9%P8osS>;s<0w%+n7IJvy8lt3;ib!?`Gkgh>cKd+1W
zhoFgHCvVoKe@??!+CbkY|8uJgjAXGL=W|)2g{Z967WqLo8Nm_8!i*VUbEIOmMkT#O
za{Al{#W3U+7<si@`gw%j!>nNPD_zwVsU{w;{eVH4hVd8BtUMX97_buscsZ4egl<x9
z+{#5a^Bc(Y!%Vile5Jtju(l>7+&pc<1{LK@Liz0`B7HXcMlh*pBqP&@1NeF37Jqw_
zc{rVxH-Uxlu5fZF%H%Mw0r&(!H4x~nc6l+O_#?!cJJ{Wg2b@81q@_af8e3XA<U~2U
zXYJru-WUV=-MtD<Gqp~c;0Gr-B@Qmf2fI>}pKkxm#33m6)FGs?<`z6N>h|fN36Ak<
z|8xh45^qW*Q6^A{`~Ts_+{k4<Xj7urML3tiBlDJ>-Fo>+$~F0*0d(=|Iu(OpTenZA
zhzj<1iVQ7tHFh7RH7}WoJyFGJ5(Yo=$3iNmFctuUE`dB0hl)gngaS06;4(nJ?_EQ=
zz}}@og`M*~EBbMTACE4$C-WLs+KUa|)Fjz;f0QBaVMOXxkTpb!fZCdo)nZqfu%ZVm
zA!-5ZNsKB1*aF*-F^=5|H}_0*8gL~;2%R%=xFa>o79=L%bC7y^#}eKM^v-?6NBu<g
z%|tqF<VNM87({EVP*I{3g`@Rs>9`nw<O5)bGDMLfCbA*}1On(!RIlGNR{3_&08v|S
zkha(0VHrNnZuiJ}$$9vGAURpkYWXOHOxFK)-*(-^MVJ)CSL=;7x7w!uz2tWiEiu;V
z<-MrO1+SCPInUtuIGVLa6Q4@<6T9L@$>)$LF&(j`?)YTE81`dUH5ChI8@}__v{rN5
zf>A<DSProKf1)-y<<A$sp~$Nu%xg3kd%uhdV+<n6eBy%?qK#HF4%ZZYm{0xT`KhV{
z10+ADlF8y#o*dw98Kq3>qqWYmzNWnvH<`}~XcbYDakG&{M+?SqsJ{M_yc(Jk&WH{@
z4o}*=#LEbsT2v#S(4Ae06bSwPC(AcvYu?dN)77397cTh>c;(s!$@JpF3-U`o&4J&%
z{eg@h5g9Qlsljk9>Obpl-P+Hr_V$<mj#}}hL`pIIg%W)ith#bZM&N0Ao$qk=-Wus8
z=c)h?(PWFEXZu6Fuj#l+70e1yiC$jB_|$yON~8f}1&fM~XpkK78}ts(m|h&8hxcXs
z9~Pe!5#%V;N40PvKE17d>r8Gq^$(UU+f$Ipq7V=$$Z9YWmWaIx{DS)*>mryz++Q2i
zyc_qDBgXXE#opnUM9NRa1uo%LJ2Qi<r$!+zXrZA1Prc-%kFMxshYS)<)3LFN;CiJ&
ze|;STW{p#Rk9>vBLUQ$KY(>(@vD>T32jSGB@gRI(@u>Gw!csDkK<_OF9I^d9Tdm=%
z1g<S6XjK07hVz2WFc1!!<@Ot1$PAOA5ona+d4~efwKAw;*i)d<K24)<jP{?<?frf2
z6^(T>poKQjy~pSBhgRGe1dJ0{%w*&LG-MfUuAGKD2h$gFSkP&;yJs=qdUYj}Mr^W{
zPnWl&?%!B7DTi&WR_eizdNwvT<cFsPO<r#~L{Q(7s^-n%jutRMa)be<SJyG`p>eDA
z#@^x@UL<t<C}S#>?YN0feyMWzBy_;db9sy(o*znW7=2I&sK`>@=Yp3!U$%|&ED|Iz
zIEp)mU4R~*+eNexdw+WdCo50B`$<kO#(Ts}e{`$X7TLlT<R=Ak@-m2Z`uta62&oZG
z;Wrn&wLtz(kzgQ?$FDxNvlT`<NW2M~(QV{da1j!v(q59TArP(6(DxqIfHTBrcj+-1
zvV8e#WpI=B$6&+r0`cv!a&SaoXz9B7c_oW{t{?!>Et241Qoa{Hh(2$z8CAl5Z9b9W
zOTP)PL*~!LS&bW{BV3*^DkVQUc1%<{odCip#l&y;+_cb+%9P3i0gujohQcL`u_2<H
zHx}{?3^lQbmld4%b}xI<={(+eu4ik4DnIy*FE`%0-ns~wt!F<tAJ4{?O0{q?{VZI_
zCP$~V_r1DNH)mw+2~_x9D3umAO(L1=unW2%KcR(YH8*R(O6PX{SW{!Kz;Ov&w?xM*
zl*zeOG-L)FZM?@7B3w?^slpP8^$P9p*S&|0)G9%!!fY>BD*`7d$Bi~qQjBLL0Y(x?
zxj;6Igh=0VqT{96p6PgC3)o>KL?!`eCtqIht$d*p1%*IZqcjhDQk7OxAU=mLouLJn
z`_^bOhd5pPIN~ehH_3fIFKyR?F+={4DI#`~l>fdYQP`y`UZor|1`1&(`V109qi}&d
z89IHR`&DQl&?b;#x|`BV6ybqKMj&kMgTvj6!uQ<t@U`K5dOxcxo6MG4rxAI3-J`dd
z7t+~DGzup&Fi^;9{r5}30au~>(WDVFXco!ek3G^AX#ejIiMNSu^}l9t`|_t=AtRfK
zRp*#5{qc=Sn`F>xwO339^ArAw)b`A$U=0I-20ATkY1J$O{q0U4rOkVEeTi6en1Q&_
znZyi$bh@P6JURlMcf7)_o5UA(5(Tm{rlM_3kXI;NsxEs0-F-$r0~rC@y$(jWYnW{1
zp@9ww)X>Zbt(am%b2Exl2`J8}N*##aHtJ>`$rcy}+5_UAWsr1CN)jG+&=ymWz@<~!
zh71me!)&?pK$N#))g$7&jf}}-M=qXGaFig%elxc~Auw6R&-dO+JITiC-K&o9pSuy3
zgm4#4Sg4<nfZ^v>RVe283mulV0Gxkirhvdn8D??zlu<cG0t<;<yoq1oP@M%g;B6mB
zE#S*zT>ho6^R>}h(^WT5E~-fWRM$s0&~cwGmAar@iJX3WZJ1oO5e^{YIRGsq92U0^
z9L{E@Do^-(Z+<hT6LG!W@Rkw1PHV=%u_pGP>#cEWt7MfB8FDL2+4;h$sV}x#BXFY~
zteP;RYLjbm-gL7!*w-IG(d@?aU3Nxl7(SQp)5+|VUb5;hZcUa-^NoTiK`E=%+^UWY
zQ||3Gir8=A3_}|`BeJIY^Cxr#N{GRLkulfy{Op~dFzgb4_b`|xS?#*v^LQOBkubev
zdkuoyYy#3B|NS%La>c!18iXi`2p@_q6L%zzDh`WMe?pFzl%iy|4pI~&5ULD~CLWFn
z^9M4t!58qJ5yR+6pH1iONKojTp_>pf+H(U60YMJw0)f0~&m!yQ&H+@gyYiI(ur$z?
z2?gS@X~zCi%ER-v%ao7DM-UYv3|9MlV;)D0upCuv?`lJwVLj-BVfg2)!Xxf}uGM#N
z-j<#zEEy!{p}Sr3)N~`A?wV>aLnO=m)X{ean3~OZ@9e*8TSRozWsy>o2#aI}Yvgj8
zas{H^9hMk*`Rwzr2{^K80)oAEKn=SS-@M4C)!{|b+ek!6Xm>x(-6kPN@fgM9_RXcS
zk#r@K&G~D1B6VI-m|W@L*;2=NHY|IQR(sEX52rF);R`>FF7%GLn#Hmx^hD1)80C`k
z>e=(|Ur7uU#CHMe-Zn7K?QO*U;nX&bGAQ8`NSwBM-L8H6XSU}lLZyoY>;pZs;<npQ
z_`cp0Bcx1l`~$6VMPq^C*Vlw-H3B!_$nlnmAIigzrxPR>+MN{Mc*@U&NQcUP<Hsj&
z?cV_JFzJd;yUS-Fs*O6uP=ob_`MayldbL&#y_Rnzk(17U#RchtnEY2PO&pALtejp7
zRk*l&lxs2RCc>EovYY`fr+R+i<w1NKOB0-(SBdMN!5)-NPZa4ILo#1(xQ+3m!`L$p
z7D~(}>poPp31v5r*2`}_RTUqtX{hN&A%IDuRGv1{<Y3+KdiyTW|EpLfK)5oJMKUm%
zDD7duf1C>HeR=IrqBjK#`l+?_NBIlp4=VJB0|3Cb{xY%B?C*FlZ9VDy_4Jf|jH4sq
zH_{DFtO5gi6i{-6=5w|C3PK&FZacdHM(R&%0Ca%im@||Lgz$vJ3nQc(BajKvg@OK-
zMAE_OrpmCQx3~A)z`Q>HK5D@GE_nq}v6Zu$D=Mq-1((dzvl-0+h%~#4s-GK7Z?B1x
zezJ>SegZyva=YeyhP*|6d*2u8%P3y-Uf{flJ62Oy-|W3F%#{!D0FagpA+O#Z*|HOr
z(UK_=L=+U_j8?qBz2=`}>x@nU<MYkl7->X@+N68X`)wteOE4z^_f$4~(!RPWs8x~x
zc#B=*sZ&$a@Xbp7qXaG?;I2V+Gqx{0@b!6$3bX%!7?$1XfOOpP;_|Y=RUpH~%}%l6
zJB1@({xcYZ1%fi+j~V9`hDNOyiOcB{9qq(2q(s8)N*b#zf*)pe_BH4o_(JavQlZlP
zL_o}i3~eymy*~d{cvb6txyUb%ltbadE0jCvGzRL!@GNs{vOW`i9p4uc7A5n3K2(kM
z4Wa;fcx;WxzCp68b`&ze875mOQ*FN-o+mSFlL0NWVED8~e%RBv9V6wUj5P1_9x33n
ze)<1r74_3}2+uX#zGS9Go>x&J*UTjc^8VOX*5#Xrnaka6_-6HrSP;SvXYAUHQXfqh
z=5LuAuuhLILdCp@g))+p)#8rhDU>CS%BLD4^f5%xfuA;3XXJDoT&YHGpDPqJ8uiHd
z_;|A~^)oN7mF>aQU7dXY(URcezGu1|DRDs$>AM@+8*(``*T=LlqfSi!37!04s`%>=
zDHpx;YcD<H;?iQa+NP4?&Po*6%Nn&g1O+|L{Q>Tpa&yn<R>jRrqQ>(c-znc=4<D+g
zFdBNJ3Gmh%P6yWfGu$))IFbQ?=LB%tJMMcS0N5E|y>)oN>-ydk#m2_QW%u`KudqA^
zQ1>8l&@ueCUnwFtEUyod^#nz4XF;7H&OkE+C09}cu|?*}@ksKcP0GqQ3Mem&e4`e$
zCi|rYC#X-oZ36!uA4!*}6oNtLgHv%u<9{beeAAT2+aw2F+$wzW>EU`8mzE74XQ9b=
zwR?<K0AvJUk>UNp!XiWEW6ra7+T?>-%kKx8Tx$2k?|3`{>Te<uIHVal`UwV-J*)Md
zkRaHkqcLCCN1^&lb7){0o&Ne*`m4BD#;v;#RJPoJ^0yI7%tJ-^&d)6~7l3_=kZ&G-
z)U>n|>K`CrqZa7Uw*V3Q=3$V2HxgJbbexc<ESTHV_PkTQp_TvS?dhCUs)?DWn}yeW
z|M%k^K9@lvR3A`<gfuju1|#788h}4av%<#1^ULyi`7G<7HT`pGVU7QmyH?x}*$GG=
zTn_O;UCx!Uc5w}+52XWkAP9&9^n$Rky?BpceE=DUsx0`Cxeu05$BC{gHaboqh95IY
zTMYPONsHAef3|UQQGWF!(7%HJxx4~^Dt<gQ+Wuazy#9qmu^bQYORKYIZfF>=&ixxp
zJA_hq%+0kH(Xn1&mL0(7=+G1sKSVD)raf2u*xLSnaoUz;|Jq~BP@lWFskh6qyx?k&
zTni0s_eOT9r~pqY2+@&TYr^T19YPrD))*$iq7@piwrcEcKMu0TS>Z2zjPFX6+cexd
z?N5l%VYT<c6msV00036~&g!1KREd%_R7PWZV?=dxa%!7&A%{Fud|M<>q5$+B*3Wew
z*^A9KG&MD?*Orig@p-zY1EiqH9wXZx@!RD>>F~Um&%lxk`)|pu3at*g2;u<=HlwCM
zxjI$`<stD{@eeIAqb&q*h6o7~1uz`wmDnX>m3%n$^RnIaV0jlC^(K|PE>Qs5aHRXD
z76^ENlC?r8SLE_#^j!gzz_o>3i@_JLrzJ|f#P&2urL2F?dS&z6H}uu3c#<;s<nA^?
z2m#nwN&a)*ImD%D|7Ht^mF3*|s8oDZi0IH5mQ`*j&X*6}>KBfa0nl0G3#`NsFGuGz
zuOjM0{Wa4MGbwuMHC#RCw7y(Oiiwf)JpYq~fJ~bgkW8fZtKxlwLO{3!9>i{;+oi$3
zf4=A4YinahE83nfmrp(Kcq6c)hUM4O<;FV{hmSx8{L_$^v=@CBu(4{gnKi^iSVd?B
zI;C+6q^o0p!$B92NypS@Md`mzmP}v*ivx|ufTGs$o9F2Y&ntLTP^*DkwCFF40XQ$<
zyco8pWom#ahxU0ysWb64pXYX6Vl22EelrmxEdh8P=_r&tfl)lk2or?Dz<%VqN$B%%
zDho3sZyAqK=eRvU^bWY7_#2)49UY%6$c_Ox>(F3=av>d{ADwe4m0N|-ugqe-ED{Lt
zK({^3dQiQ|`2yl}&Fq{6!W9FzPf@_dR10{OO}5WFnfWW^rBF9A6kP!zuz%-kq8GiC
ze3gtf9M<B35f<=AU!s&I${C8)I?{(5ft%34yDIJ_;NMK9;<agG+kn*qH8Nl#fZF)!
z(<i&zBj<SXm?I>O0tsU_PT+}%t<Z88>Yuqthq3#8^fOrDKlEL&l|yeCi#TST(G5_N
zNTmcap-jyO2WIxv{96nnR;~VS5$PF@z&Z5&WP3Y4e~MY<hiNo|;M7m_xH`H&IDZ=V
zd3)P5n2S}A=C{6HUu8Vy)|pe6OM3&v8zX4nPUom)7yL=h5_#K|HfPU@_<W-_Ciisl
z8k2v27xW5hdt!~L-su}3z0ZqeJg|8xQh{CKh8QEu=avSK8{wCNADyd>HY;`u0FxqB
zYqI%1U$p_=9)vGy{%N!N!Ta%sZ=-`-pO$$2`Q=_Boy}gt1!%!f0b(r<tgY<}A(Mjv
zLKr@kYGrrg*b00i$@x?rY@u{oV7lGoth&{DE$-_Rf&^etZEFLGZ%r*S5XrBWHBVW?
zV?KYa)a@*2di|puUSOEQ{e*pZ>y*OcjT{Vz380{_f`zctj<(Pms2zUw=tNBRKtll!
z7dl^NDMy)W5&~fT<Z5p|byeJowRyl2mG%E=Jk}uXc>Xo4EYc&DtH`XGKDZ9`vA1pO
zWNquISum+%JEv<r!}A5#VzxLq@^l45J46EW{%{T#xDWP*DVhQYcz2QMJ+0Zsyy&A3
zb^xIR8np)K=^h`1|M~Qi*wQPC3!pw@;&H=t1wx-oAh8ep;14c*xJK7|xZ;He(fy{@
z{*B!Ed?gwjiX+H{Mu`_D&K!Zmj)L#Q#_gSwo-Fuje33zsQE1o5<eHRM{Kv3O{rLUH
z#9(Pchset0F=XfhLAUAXqP$2yx}ZN|g=`FOovE+&g&G(azn7j}v_KASc8{J!Rhb&E
z0XsOC#X$reXb_@>y?ugw73RKl5{JyADe97%#p)9+JB<Vt0WJ@)Ued<z-qYW=cx7|N
z`)~Abt_wY9HpRMCkyFkmrzaPkDKi&mVD)D2eOineIfy{nGBmT9-(N~qN+8fpO#_33
z{~p~QF9L)onGE*u{CuN;V_<J><F#g#NVpkzkW8vkg3BE|Mu|+}(x)yBv&IT|RO_&0
zH8_6_P{4eoF!-fic`eh<z}vaDSU*PRjaRUJbFd68jm0YT;9&e$s~C|mFW2sL8QyBG
z26mrLOTeqGBS9US0g)$Lmu|L1{kw2D8b4qbIa_ZJu{OYc`yA5G!23<JFm&{rsZ@fL
zJJU5YF&scA=<V(mEf_+4C$>%g7G|<qYE)d#B+$~<zU;i;2#SbkxN%o5Tk4}{qDf`#
zPa_IW0gvasKK69J4&)FG@*Sp1VBg&6cJh332LNtg0WyH=IX|f|y0+LaOrB?&yj+AZ
zp6mTLzw%nALl|-9Tx(8tb`#A}_jML!yJ5;Y-UqBS*0fH%u%C`WAB3U|gR0|D3#Fg3
z_-jInH?k4l%d`5=UyDEG=86!8EGC2kXwxrg#1UKm3(Xy@46mOsg2jy|=HcJ!PuHnf
zNJxy=Om%(fl<P}X3TmgEaZXMzZ%y$x*X~UVT&ppAqcN_=^P7NJV$`g8A&;z(5b^4o
z_Eej>q4{#PdzlhVD92ce`45OjmI_UYiIF6#@Lti#?VkSqd41x&NiRjY2F6?^3R@-m
z%{YZdtCE}jMiv%<E>Co6te;Zoe#NreM_Yu@T<}K={jY+e^Z+O;Iz2tNPB-E5P?RaC
zIM%`jA07W2r>3S-m5MNOg9eanr0YmYqlH*no~kXib99_r!RP28jX08=(%%?=!UQ~h
zsGlaB+b$pFfXW&Qy-KUQ7a;bQ3qEn2Rm2o4mVHGCeKBMZ%>oKw!{zwP>hJsOD3VE4
zJ&mWab}qVQU6z~+Ro_JLy8UHH#YPGANvVMBr+M!9Kt$OsmmT>uDJSqd3Wd<Ith;GC
z{{)U>fBH$SUUw{Y82fK(lw+1+T{1~|eqe9fR9<z%Lhq$tA|od)405v*MVKtDx1;_e
z?1WL6ofq6Ao0B}&xC0j#)(+h2Z5J9Qs_gCUZGC_4L(WBQ_yUc%pomIA-1BeiK<6?Z
zl@<bKfd14=L)<{d0Vp3dFVJ1i*XV=`C$n9Et|Y@wgU`Ww!FO8S76jmpWh|HcBp2es
zGkp!zz1dQS3T7LP&R_XWkHG2*vr1Uo1K`+PKOfy@HITnJ5h;t|(NW7a`sJ-FFV?E*
zCA*j}kJo{v*>W>dPft&c-sJ|H%X7XO-Zw}{ND2$n#b`e>DhM*hKiV~vKaX?N<Yg&f
zhWh)}krl<@qPbN2E}6|&KiEd$1p%~8!;3B-wdZ>fToo=hHd*AMZzvcX`&xK_wXEZM
zsqqdUXpJM&>pN(&znn%rS$F+_+y8*cSk3E`{H7U9UIYLUbIjvJprD}>rUR3~@wCdw
z_`Vl-z{NqjajowD!@SL+kiTJIf(V1&)19+xbV&872Prx3Q4P{=daf<FKzZu7ujykh
z(oTvYxc(H2NwCm5oueenSJGT*pbv);>F$a$)0#;i^hzL4O14sTLt#iLtx~Mj0xXYV
zBIZ;aY$bKn@DPdqgnNv_A9+)R>;&qqm~g!qeQQ&oX>?UCXoLaQjhDbhwwaic1WJ{z
zol8S~YioEBd<mkXsrEV)nyaOxjc(h)vm53-;2Ja~z7FP1dL}ARh6keGE*w2@@*Q64
zvn9&k`T1q@&Crk)ux86(MKfgFyu7%2dU|JynB@Z+v+R8aO5uhnj^IX|ivmpxPOPo1
zNeG0AeE29BO{x&(%<!R*y<fHKbU@U(7J=594N@B{!q;*oPjv#!k9$v9#5EybFDN8}
z3Ber?ucC*x$h8MQopK(C_wr9+Q!X-F?Vug^Ucr3!cp$gtJgp^0g%#tsase?jjO7ON
zpydXOeA@s*Khh|CB53V*{@UN7bmKDEf?V&5btM#9E3dY=by!MSp0}tV6z_z5IrBkS
zhJE69ETdEQLAvuX+(s)HhaI9w2DfXyU9-S^qocx%&M;7<C)_6R8+X$6R*6OfBa5|0
zMu)Zsymn{$XgY_tjO}`<@>M3wj&7a%NayrUr!Q5Z?8I+^tDY~C@Z)4irkg!k`KPJN
zJkT;r5f|c~G{|6wR)4f!`iZIeD%%QWat(rz#rR0zmh&YIg~leUO($3~oe2!r0Stp+
z6)kJ(o5|Rx)9G2*c-5Q#YYfbQpf~PO<7V(j`n*aanVs(nO&}%ox36U8YaKEIK6fNg
zNkhwz!l(!=P8A5p4JgEqJcK6+r-e+ja0!vM311JmA-N@8_~!+D_756zeLQgwuy#3H
z50Bz~!Rn+|i|47b$<T-m-R*pfM*MWs?l+|LRD+>cWYJR~>E4TD#wnYbZ}Py#i|yo#
z{EULlYMY>A`7e55I;bBYZstlI#tM9Z=}A20?B)s~EGz6};=dAL>|gV|zXbXya<lPR
zSYFMR*TKqeAFH$TJ}YN1LWI%c`~1@hKENy$xE*87k{DqGDuA=KC&tmd#yHZ51fd_L
zIth&x8$M}d2^0%KQqiJd3<EpePoJ4Yw&ZT4_9*4e#ZW5(y99J!nZLsNkx`-M9`q2C
z^#LSG_6SfTugC!1;Kmzb?WZu-691`2r|!^K6F?PnQ>r&ZjZjG=no~MX{!~Qxj#&PZ
zVbpMCxA5Q-riUSdMsP%I9zSdwTC@*Dej;|uUYS}D3Z~>BfBR<P=`kuSu4z+V%NT%h
zl)l`zf8*)lJb$4R)If1RueVI&AQg_`?!$ZgJZ(5(li`SiTA)Cg??fu7h;=scZ1w5W
zE)$u8f&#JPe%*eiXWSBZ_-|-v*aYqKyA03iyt))j^s_S?1%Nbfz%QG*(gfgT1Jat#
z#Y`rE=nT^7DhZK^MU&Yu?@319=dj?o!A_C~#uOm#Ox}@t9e{Y9DNr`~y4Yr4fq&tz
z_YD`<<@}D7O;<*XKt5O^5gXLe;&SQ{?4nL#DT9Fwg0tTqpjk3D9K=9V5wlY_&s9)<
zysO$^X3Gjp-_q%aqb2GNrPMdZE66_5V3t+YizT9YBy-esoHxcG^(<yiJu{%D78MLu
zu@SFsG#-HurZ@;BAs=m(2UM)|cFjhvv&EVXy@rIxAt3Is3d7E>4>(jv7d!z8K}bkM
zAJE1FV#uoq&7JdSEw=BGkS3lDoN`cdb2Bri_3jf)U#bD!THIU|^-qEzU_W}7q>Pe4
zsDHNiTO4op;yzsMHeKg0NM{ud|MQ8Rx*XCE0LG(4^UyIcAo0HZ=3^9baS=b==<EMe
zbV|Y_dHhGqIvk<^2&xnE5WGGdw=`!v4mK*_$Bze9BC#s3JQ{8y1F5FBi^s_YyZtlo
z!?sgiH#Lxtfdav1LR&DfzgXAOJYdL!)?Pxs0l~7$D-tf=WbUW_hl!f(ynu991aHip
z#NmfSp!UaN?_S+-ZaKg)^oI>2)G<h5C;hWv3_+y9E4LpqGU*`rBvNG_2|0eU#H8K^
zOjihXxwA6<JC%nUEqEf?2e6s_rE9UKnzTVDz+e!Q8pr)*OY7F#qs;W!+S@GUw-$xB
zZ0RyIk%gRiD#q4`(9o_NqScsj3TtnLJjcfK<uux85@KR8!v0?!?UNl9vXKzDo}Qc~
z@opvx3bS@d-u)klUVx`8JXxR!Nq}sGVu<$Eu5i^Z&lOiY1jSLdxVWgd)jZ{KEpA50
zbYQzbw(uQ}PU|<d_udeF>U7`G+hNm}aCQz+NKh{Jvj%V6DS1N#T*EN4W-&XNvIU%G
zvz<Pp&JXH?gCF~jOg_)8LzFQwSIV{I4dHDb2QkxiwTkjo@GV-}beIfe5s$aWAbh-;
zOcsX~GNQe)C30^c!RP2yq65HC@lLoW6OD{V>*axu{#?K1(^tusL}i-nFOw@$(>6x#
zJDy>bOkM4IJV12Xdgrd1H}}f^))YjUBoHK5Wn-Q9u3rLEMw*Z?Fu*IW=l;WZw6wGe
z8d73r<dJw22mGxIZyz3S&-?%s%vM!rQc=>&I3@Adu?L-vM?a36!qP<fz)`?w?ynGY
z<RXyJ;3QcTN5Hh19`T7KEKGc{#T4Hls~}50UjYct=a;Jd7lYd}4&9}C6Am|tAkmKj
zM~kZ&D3s83G#MdR{Mng`$BYmmQYK!h@uUk%`a--+;eo5wL_6^(ZUiXb@bt-ZLm=|1
zIv()`qp}2SkcfzyQRs94$}|05t_t~YP{>I_k7S-*E(S&IiBs7kN&z#%o}RMZbPsYL
z4_UFI^m#ga#%WMC(vgu;?5A-S4g1fp76k&Kd2=FtWo&C8{o3v`>*FMsljT7{xKN*`
z{`8jQr?Gv7TS7xQkI^Fh&Zv8ye?k)9JQ8v&<Sinwg4VQ+SHzGgY@-sn90Tow{{=z-
zK?vH11-ZcCbUNPQ$xH=Pa)JKdJbC~Yk*#{Pss(6POm0&{r@R2&HeH{mU?;jOwvpG|
zhsQjj9(Yn3hlNJQq%>5-*Ls}L5^v?tblTB5p=lfY6A6JC4#tw(17j;+n?&a-@gO0@
zNoUDqv%bVhG*Bj7zTQww?~kCQHQEdU>>2WJv_d)3NCxADd^?}1588f+jRJR&3LN2W
zK$hJ3qO>NV<>#?mzha@=bCv7Zvz2h+sTUOxWo^&dgQXuPu~=F^tu)U51wNc4r^59U
zWea9xWczpXpoS)#>|g;~^*VzvGi3qa{HWy(@GPrty}SiOwg8R<;3rhTP0H<>;?u-&
zvkGyPtw6#lLiUgRq#`h7kK`}&^PU*46eC2$V51_waO3ClI><5-N;)3j+yPZU3)7zG
z2u)l-9&(#tLAA%K`mmDQLE`PozW8sd$9i5|yc+2p1BZI2iXcgn(M^Tkx+#@#Ue^|t
z%=A+_rY9ARh-$cB9+2J?ae>^=Ts9c|%$e?P5Wr_YZWxDZhqPZ1jp$tZn=G%x6xky_
zeBt}&rnS1kAUW)vKmmg+ohoE19jdo4t$k|tmd#E7$UbIBc==o97Bmr3mYNRdiLyh+
zxz7O!#+K10m(XGgj`dz&?F)3C*B^%ZsDjZU!}S#3=`HV)4s*N8hPDU&Leabn0JdEL
z@>Gt1(~y)qfr69SJ`psAITA_+XMF<Rp{*+`>(XhH)jZpZe<b_ltKzIkNi2!+eJ60K
zLZR3q5T4CX;owD(n)_I)R1)|C8Ff&xeR2YpK>Z`xGn@D8L*5e~@Qec|Cp&HFZcgVu
z12B^;#gfrLsg?~N%Xq{cE$PMrl(K%wx14)U@e*b5%3%}5Jt0di6f6ga+%BbH%ufd%
z_QJ*j*aGX}Fm|QeQiTGTYF9U(04b9}Kw{}ZkzwRv^79*bu{SV~N>V1?@v<robaUad
zX=8H;)u)cslbul50?k6O^HBwU@q{h4K~2r>dy8x~cu*!2pQI1$Ohzk0NX`jEH03eF
z2s$&~W)d=bwj03g)S~wy>Zlo1Y<IuhYB0gI?`^Pq8KDaMWV;amb_x$x-URLtu(YVi
zgppoIf4Bvll6}W9ceNBQTnFWt=`ueA2{f|HaM$$Le?AkSW|%&}j9=Hyvt#73#PS<2
z*e2PeV(LtH>^VnwL>t}Juj(EuotWtF{-7zfb{=dL@yg>fNk47HzwZ_La~)|VjP)Xu
z75V%!F!ga^Q`!~hVweG);9w}6Q8N=-jTi>L0w=uWHaD<3ks8`s@ve1SMQGfnXgNWu
zD;aA~JLx(#ACWVNQT#COyPs-~+=(eeh`aLTy>9Aco@i9l_MA#2phFx<5{{{6c|(wq
ziRK;43-!O5$n@^(0<}@gWhp=57?3F>X4rahCEFg<MK`)AB*-xWX2>Yq^u^?n5uYb{
zI9uciJUGP4?uRxFV6W0XY*0ULn=)H2t0609^1$=!@ICn+9N5=etfRyYMs(x*((?a}
z+m}}bcwQIdefHHw%w!wRhu7jpN2@j59?r-9l1Y_-Jx%eD5H7{4lh?Y|X_WXbzrYl8
zyR!j%3a~}h-<pR>s#Y3|G~()k1#^#!@F#?JL4_6kv^pLBzy+O3ID{e_qjko14Qq!8
zIJx+GA_(~RkE?hSgpy7KNJe)92`Nq2v-!D!{);hvIiW9>BLpsc6%Kpd4l@|j^-zG9
zF!;iJ<`W=B0iqlX4+YE@cIdt0kV^7+IL(Ffw1?d<C`*h6ruwVljBm)U)I(^#Pz(j4
zOZz?iQnkoWc-WCbIg#AXJxq=aeP3CL;6;0!$P<2~9W`t=ekOfr-L64&9{t&0bdWQS
z%~exiO7GRS+t0k*_&$6mh7vuHeA?3ysZE{xYxuG$bq-caao;#3d(^l&rBHG1T?uQM
zQ}akA8zzcl=qu`I)bldU9gU7i*D(;(5foC4b!(@KZ2ikguuPJl?CN8-5>CsR6XA9)
zKFR*wD&R?;awpzq%h9xA)EumJ7L6EveXm+JRsIFYrCF`Fu~%xh@)*Xu6g%BMMqt6d
zJ-(ZmejW}_0i8lP;MypeSm9<&rTfxkLxjar9`)PVVsin1@9)hLY$)32sZ4>;5``Az
z^!{I00Isj*YUAfLyTt}=1I$z;_mfeRcn7;^REAL1nRdSURP62$rE=fjr{|Up3@s7T
zUdcCgngU)LfDfx2NIqF^PNY<!0S$<hag>toC@$y*{K6$$a{(by)jl)xH@6ft7Q-7<
zKo%Ec6ghVt0B_ozzkUX0kY(4pX)`JpcKrf;VLdoKM1<8+C*KMX;4v4!ak`u)+(j_J
zg&CiRo)@tjjK}>gO1_`5o%W>sO1Jl$qj=O)@d}Y7*@=8~4ADr(3M3l!$%x2qhs&`T
z=QjZZ8PyOphmwuf_+)Y)j-tOTmJ-bf;$Eoq)YOy+l|InYBrs#<juy0%04U(2Z%#4C
zoAU=v4PuFXI6cE6;Vl(COhUi4pc~LunA&iWA>j(n{;f3yEdQeCUpZBl(M^`KME$qZ
zO!f82{jWUu0nm8j(U=X2ApN)CT#@Syo-A#Rs{&q=5NTgqQ|yJ@N4Pz?z~e2y`1k2f
zwL(aW?S6F4>$OggQxxx;zlz<aY6ibRDs9;mxfWi(r64+XupJsSCdY|LRtdqC#&Zb#
zKKh+kj%ZBlg!h=x1lB`~U`x!;#)0J+rkI}>?V_(@^SmqnhRWO1+n@Bj2VmOrL*XO_
z8Tu_>JoA77CT_~m-=ex8>v$4M6=OD}juXcw+a*Prk-bT&s89h}C~BhPQHGI_bOMv{
zL*Y#Uk!Td=+SwWRs~9j6VEgMWQ~aw86=Y_z5!)Qim{1Di_u?uuGXS9N;PItQZ)!8^
zvU3Tr^nL=Q+NoUi?@q_7@>l0Ibxpm%Z7P5EcXc(Gv@fm6deDI22*3u0ohl0?$($A#
z(rs-5ewXph7xg-(c>E%Veeq#&V0=q|K5us8c^3i2c0gMIxdA!T>^(R_vOTe6E|K9!
z68@yA{zX@Z+4`(gHiz(z++6kSJ^zz!ZGc5%Rh4Z=$c%kpB*N)RQ}>4Nakv$8m26gK
zZHX%JUNkR4kOhtIYmrVS^{ygT&(xH>$|$?{BhIK_sq%1*UN^E-7LT~?E1(zv4Frss
zV#h}%kveMR@Qyd1j_%VUhWjVozvsS)u;{OWz*qucir)xPv*m)pu!ZyZbVVOG*l_sy
zej-d(ek(#74=QZpQLR61&OmOCd;4dKmw^J@s%IP<{Q%z)LcxYrhoPEW@lGnCd-Z{U
z58XMwL;tt^^q4rmMMwd?oY~s@qhr-2wwGBA>WS9^pYAVY1T1}FhB9m2w@tYDLy75n
zMbo)iGP7eHqKyi_QwY8)F~2zq$1s{^X<%#ZDH48EUd`I5KJzw<vXwP{X=`0Ezc4(e
zr}!BWNZ#qm9%W*#MU7ODPP1*o!Lo?(XD7YA(|@FZIaN{*<7;c9HQPdsXlEu?!(LY{
z>KmFp#SZvvjRR9V1b7Smg?a|Mi9`W63o|iFmd``Qj=4gi6vd*NCagY*j8pz+B+_w7
z4G!cKXxWTQUW%TcXx#`}rGlf|scroV1>*xxd5zglOV%HZjDP-m#J@71L^MU%aLPbQ
zC|OfR3>xrx?v+pEGwzeLwJF@|hKhgu_)(x5I;n!I0hpljZhDqTB>#wxZYpjD4F@w2
z_xCT{3Yl1_$A0^pxV&z#Kg<D+blO8qeMYj{izS8diP!TIs{*B-i9O(q;b8@aymbR@
zUC9kjL%9vtGuh6qo_<LbjW&w@KR&sg=ak_?2|g4MxF84yGSC2G1Qxe!L2i9%sWR1Z
z0$mXuG&IY9LP!>Kcko`^;&qdp;^D*gU^I|%aZb;GFQPeJZ9vc9Xqrjubg#=|PWfEY
z9}IzRFejmF?mmH+@!m#q%0z==7+ke3+T5NIaCzG4XEL&TgY$=P(5|*Kf8;P6kkXeA
z(Wgdf5K)xnLIIRtHj>_ThBwZ9&7cpC%tO`RKp6=tM{J&p=JvW!KUjMz3MfSa^BU0V
z(u9o6WMi0CjKIDlC=&d~$d5$sgP*MnoJa(jX)?(%v5v2{mjpzBhBUlH_yXlwaiT)a
z8Fm=QvezI&+_BK1`+9i`!TA!O4tu3R7H!~SepdMCYD8_~bc2?4gTn7Q{S>j(^2ug5
zk?mb;SNL!};^!M`(~j)A%gDU$19AhseziqjN!L84n_Y3!r6DX3Oex7YJhZB7KYJ&x
zIZ0#M@A4?b+-bt#$nXg)nh}ZsO7+MTw`U^A9gGT>q@IcMIcI0%WT}(YwmXg1Gw(te
z`TZ!~SB)bjfz`N$3eAxNj@hYn4r83m;NZW@w`p#u1XDqOqGyc2P~S;<ouOIfQaQz;
zuw}tYRT3;US_q&47&tFNX?4HH_@unblsOjSzJDzQ0jGg~i)u$GYAGsKAIhK-e*1bK
zWWyn8I#6pqRH6JNU0zpSwAi@P?WD8?C)ajM5*(Z?H^`>e_I7w{GGSoEnF)R!NFn%^
zp2Ae}x0ehP0+{-wTsMvCJjAz%7~jb3dAD$3z9xXIGc;;>op}1S|GOa=mkHU>XkNWp
zFN}HWZdajN3K-#vPOx6iaL_8K!^@1Mv-Qci7`~l0oCD4<#jJk0a){tgCozV$_NFwC
z-#$=6w(8&+B}0NtjE7`a{u@{x`ePT~^#rG(+AfCp;^eMYHGE|dHk#=W-_rUo^zl;c
zt3y^nO4H|;f<I!q84d}kj$&3RGh8?{?cX<l1V%(d6c}|pox}Iyo@vI+ha&ZaS7yf*
ztLWVmaR!`<*Duc8hZ)IuF;9M7V?jmrk9h4EEc(GM5e89W_&FfEb%faKr-nA1KJ+7z
zrqY<Db`#<y7G{~{L8c{R)%x{hwV0AB6d7@O@@Mxqs}{?DY8iog3#-R19d=YbSY-Zi
zohJK?mul+_LL78A>wWp;_B69tow^P^>yUT<ny0QK1*r&*)^KmxdLPk)vKJidin^`8
zq4bQgjuB<^4Y01w2}n$lkrZb`kEl1$`iYoZXEewY1-pM)tTTQAA*?;Rk&%#iv)I1c
zvSj&Q5dd%@V<+6Jnsg3x9G;gW&boFw%wUEn3DgnEgk7mHb`<G`!MAK9>WUy1t<^iY
zwK^Z~dDITBKyD{SV6dw96IN5)4}w9p2YX~^ax4+oG>2#mM(gD_;_iUHjB*e=gz&+T
z`&xdCHbck{2D7`96w(#U*2T$V+x0eFVBQl3jIiy_hf<r}gM>Gvuf)?Q9(v7!x=Y;Z
zS61Ro83k9H#AZ^J-y`Y-KVABKexX11wdEK}J;o|+7BcwbgLxS^?X>K{i;mLsT{+oj
z5`GgpxJkBP^8Wstz(Vb%0=uPzYi?*_RqAkv&`gI3T3oTz)0Y$!V#>KQibiqNcCnLa
zD&;fEyEPfpgOG7e%nS-Hd2_i@g5@MBp@7^l%;lMUD!u4x!X)H*<xnbG6A*5cVR>I8
zT-IAEo_KL-oQ?C}nu;4AOn-$oppA8a7d7rHNbr}&1|M`S_*qV(Xot(4+?c1)kWm21
z`%XkDj9-1<C~u#LR~)V(h+`UyT>z|AYG5b}9F5#A*4n(HQ2iTUxuI3w&g1CbM>7JR
zE?|gqmhX+95^fk^IL%S$cldWTqaMrOKmqXb2daFj3A1t$6C|c|L+j9zAcy@UKk__Z
zaOV+%8OSL^C{+(dUgRi~C}PN&)M=o3T+fme0>KX}6B_*3fSj)|2g>y-#JpV52LL1A
z7fTee%^FCeKcl!<sI~0*?m{4=#?A(F9_~yaQ^YCk7*)hf*Er=IsW|Ac#b?eHfPI8Z
zU<n$(N+x{wcH%M%<)vfav`F5JbVMR3FF(Pd4C715VccDp2@XORv}!h_!)BP(91Ki?
zKy8UH%SFIi`lHo1uo65otz_WXTbhg~mhH_95k~P+_cyEVF*xtUbG1xsK;h<Fgd5D-
z&sYIt2`z>2BsLr~waJ|N7BmuSPFM<_Ndy>cgcnB?(C5t8*F<^W41H=uR?)eA7?OEN
zUig@2HpZu1jQ6&vl!s@%c+|IGeW`82$D?yuPsmEz!v6GQR-3Isz?1If)uy3^zp>Kd
z{-UGy!wO{e0omB+$r^8O;!RKrc2p-SFl`j5Rq?&(wH=692RnnOV~6g8r9#GnAhN%}
z`Z7}eF+Ew7SLk9bFfb0n<8Bq}d3OVh(s|Mb=G7RA8eBww1T0mxlavXcbB5KOe*Izk
zI6t3=r2k_u&kVJL_Y_=}D%=HTHm9)O6A9cLF%(WRI`J*vFxPb-t5%IjXnrfa+AxP0
zEV+34LblYn(Gbc9P3F#<3y~s>AP`?Wg%rV@YuNFxc5{KiKF9r1Ngg!+??r$BVmKK&
zE~Q#wFI}8M`x`tgqt4b(EOe%I`5Y%2_RaD(#H!Nf6grg3X!bW2%F<$EABn&CTkVI6
z1bDX~BW*8t6vH4zS->?CpSf#gxU>=1_W^RJ+DAS1AJ+>ohSews#D@EHlaej16yND^
z>#=t3`}{?b6r2DykC-af_m;wWLqmIQQMwYYF_LgY4QPM4wiM+1`@OH<m?pN#ttMCD
zOIbM|X%`UgU{n_$1+rH<{Y)y*q%(iBf6VBxHa0er6U-}@?({bl7h{xIHMbb|gu9_6
zg2U_lMe<MwAL-X{QnRh)%$*D=gz9aTY&aRhvj~<=#BJ#q5)faEOaV3chlbVhdce~(
z`@-5c$>4Qfi8{b!yJED$cj=zYbZ>g4HqGak<!Yn;)WojC`M?j@=)}xo%9s<h!NR3d
zsW&W-cc)>_$1M8yHon|-M*epp-~@_Kq6>QJ=#TpH>QoF*GvDMoeQ<}#_6Ke?F{f*x
zkR`D~cMSvo3gm(Tg>b7MG<-&<oKKjAHM}tJ3;mmQX9yyQTqAfHW4R+PZ0Lta#F*x5
z!u<V)uUOjvd;4~_qeh9tmtm<Coe{Nqd3$qw6!mrBoplgd{PmIca%zg5R@FvzfN}JO
z>vT>*DO~GuqNzyRj_wZ@Zv#S{LIk*GuP|?C*dWxAfaRdJ`}>~43K6t3h^w<?<+2O!
z-k4D6cT&WlCF<@3nX)pBIQ{DGT|A+A=J^dj0mm@r9Sc<^c}7_=aRD*yi`V*vb2LP5
zljU#`x}y3$Q+F^?#P6hVCbfC(q}!$w<1)>NVhf*WNKCD)B!;|7Rbpu6Ri<^N1zJKn
z=BWqkrg_E3bhs+y@bcBxhjqK?KSS8Lw(cVgJS;*|p)^X+?D4>w4QZU8fA3$BF1Gl1
z+a=`)ddK!|BRt`=DG3rNU1KVeiHi(5$T`VG(Pm^TTV4V{Y?B1uiEpK${D%+MdjQ4<
zFDGt2!;hTl6#q{=We|Xdvc2&dsxcdOcy2XmKe-CdrMp=Y#m87>N%;Qu&=e#RlpJOo
zB?3%2)PrGk>HwzE0)0n<+ax?L52NbRn$|R6u-gk68;8+aw9nY%m|8Wtv)wv>Ij`?}
zQ*M^o<7?m@5i>ImnM@YaU>i1ob4lPf;UoZZ@~a=YTb+Ylp?kgUN|_tY%kUemH-fUs
z(2Qx~K6*^>K5Tdb!NJVoMx#vbmw>1O<eRO)my<msZpBb`_F~c0CKPi1km>B&G?)Z!
z^5x(_+|<xPg|!DIvF0JITrQ@Y0PG}0$kV#@kHRgJLJ&tnEo@=dhcNiW9np5NxNz+v
zd#A^Z!-tm9yfWa(Vnr_45?x|G24IG4SQNONmP4;U`tvLc7RpsMI7R?Om;(}%tinJG
zI3#mxIIvUH7@dyHsWlhc=_fLsPQxw!t(@w|_^=vXQj?B!RcyiFaj5%yNEjXoWiGGv
ztdR3+x87Dn&2R|en|O2%jH&||@kwzs^k2hcVSrUCw);)8L7tRTWQ0Wcyh(Z1z+UUs
z;BpU@eAN}YFhY#2v{0`8Wz=4$XO}c3)tiX(bx^^Z4Hlk09buoyBaRv)G(S6CCoRt+
zB*<zR1(?1rwbf)Gtn`%mqJz%M{1k=5EpKKh%zJZe?Ex<EUQuawdEsz51=e*SIGxGR
z)|QH6X79;yiF46da+F|oZOtf2-bpwq64$6{?YFUGx!S3vQhYWPhGX^urDkD0bA#m!
zj4#a#B+z!Aw=}gjjH6)?T}Hp(e=;z&Bzkm@G^r4M+S}ZW1SWjssmBGYQ3d9_&D%_V
zho*2i$OyBAMJmsnD#i!pV{ujEYy7mO>>KE3qX;CF47hu1c=aAdb|m*W+}A}f1hLDd
zOND)V>spxDaI!Jt=^0K|4}{39rzkU!F%kPGmIkvcFC?L3o0V;Sj0X$!(mw>{#{J_J
z6})mOFz7GN*@aUZEygEF`G?i38j48df|kf}9L#2z|6ADwL;lvi5B_2Aq}jH4Tgs$&
zZ3HW7Yteo~#znn1cjEjfIjY5i-~$3jf{L#9+Ej7!Oo<cMUIQpvTZTe=q!O#+Ya(^N
zNNeoC7fgxEWm-pC^0m^AqKCN(mUR{{CaJj!5v92W^fnwt_?if$)a;&S?=t}mrgM>}
zHnt?PEDWA3X%JZo7-mFPOi#+)ASB(OK+fvjfm!D{vs?!g;UK4Aur>1~JaG$X@&Pto
zF|ccq6kj_>LzfZ!QPsQ4$fc#dJtKZOaYgQNar98}y??1^80UG9-tzHb2<+h<O6+ow
zt58C3x#x7~m7HcG<h@O2;u{)C$M&xWhokYnySlsZl$YGusv8)U9Icdzv)><faDIMn
z`wFGV^Iv010>B&w538bp&V~pO`e}}_ROh%GW}7JH*B!dP?ZfSt#r=&f9?!rrzbY*$
zi(3~&jaD$aDa140Hg30oLe9R!0-_toP~_->LFA~3FCVl@Ya7Z9i;Xa728VxO6a2yG
z2+A(TVEx{+oWsW%*oUptX?O^cCo=jwI_z?(C^!fhH27V<qFR3@=kPW+fBIq|`yh|O
zbCtvvN3pz>g6{c-7T@%yeatr2up&EhNWaA)h)^g;NkeP*TX2n&i?wd6^mCi+yhQ`W
z#>)jPt#*rr11^X@<+j`DJxeSlGHdZ*DGH!y3Q))l<>JM4_|BK!$B>BU1rO28F0W#e
zXFGN9e}3$mx^xeeO;Z_@udpySLS3E*hI{smjlm}hgqujy`;4ZM=5>&xS|461E4Vw@
z%X^k9Yuv83FWrBH`CtV~hkQ@yfJwds8ajowLhNC)B9WOjbG1uD8*?nfPXjyRNwl&`
zc8Np9;Ox-<(R3DUQMGN`z7eG*2Wb$b8>CYPhOVKdQ@TMKlo(*>4(aahlunWEkVd*Y
zzUA|6?>{hRt#w}4c^vy5_=X^zz2Zw<hDG(xmuqn5Te0n5uBAHZD6vZ0R(jn{d|y9;
zQ3$$Vf-4}Lsiygh8{-2#!G(Q|{`Vg?Z%8DJP3yJdkUFgGh(wgAbuSss7ujIf6WCnX
zw_ms~rqUh*|D)6NZ}TeH*JuIZ4m7sNp&;2X`Ik!eR?;~#GItz?M3G1hH)L~lq+?-F
zV5M;0u$nJC^E--ND{rawPFpDvIJ$VF!HjCcTLTj8CBj>@!QgJGOrJZl9iNAwG6Nan
z_{GbK;3<xyrzoI+{krlMz}K^$)b)7z-cvJ@%590E8qc7LmO)OAGS<zXe|{n8R`^b|
zrm;5oM=APn0#g`Z0@$l3<E&zfBp0=uWcS#7CmNVMAB<NhU&wQ`+>QmLVPs!grH!!a
z>}KR;-%JHjbplBwzyYe7+v|C~SJGJCbn9NG*NMt&zY;_Bc~2K8T8jOSOPHMW*5(-i
zYT?mqY86`Kc>Ns=WSI=tw-oV_N~JTs;83Gh-byBHV@%*T4^*y!?Q>!zwzDTyaFGzM
zp^1HpCAFMjV9s}Q+yXL(IDFS*sn0SD%Amd&q<kH{7zVo4Y8RpV_^Hao%V2ES7>Tr=
zEItosL+5*wWx4!uCZgiKycx!-y&Ak6v%oO714!3?ii5-i<j0ArQv7{~86T1+kFAq}
z{-;(7;&<$f&9u4BM4RgQz-rg7+1j0AsJE#g*rRwq{<>bG|6}N6c}wbi)P7K0RiQn0
zi_K;4UEw(n<3n#XF`i3B;3DB82KEzEFEO*2J;S&;)6RF3$e#Lo*=@<7O8YK)=Wh0Q
zu*%zG3_|ulVO34>D(g5nAAqzKo%iz@vcpFl1#pl`fl~Un-<|j59My@?toLjSRhA^(
z-3n6c#5q;1g8S1IF-H2bvhb!z3nP=K$Hl{q!*Bo$5<$#l4#SAjeE4Fc^rhQAk{AZm
z9L$mp8f=Kviq&uc$tXvQ0#F8a1Q0S?@fQTFM!Ok4L_0^TyHWO?k7|rAxpK`lW;9~K
zj1~A7)4ZDcjYjCe{^0mT)_<}~T#CbZ-jE?x>W-N^EGI8E_I%9=CiD&XgTBT(vw(*s
zRs5L~eMiYpL!%9drv!N_m+Xu2%Q3nbG@Jid`O*?tL_k#2F6ViO-1}WsTjf$ZDqltx
z(P-75hfbD~JzY4!LBtZMq30G`ZpYp6rB3Zk#*J8?TVqyhZc0BuK;W;2BlxukvHg6_
zpkh7*2l-C%r5uInk>!J~`+PA+RrdwS9dL!;#JGtd@$j*s!21#%!jpoio)C-Iu^2D^
zEi7~|V{^lGYqH$aJewGlp7fCuDi^P)KFi;?#Y4|xry5mAuP5DM`zg(_lmWL<dW%!y
z1uc;*J??#^0#U3uo<k5gS6*@T-*fji;bY?jwfwuJEWJ7V<=z|7C;!{mQ*#TzQf(7}
z)f(FNnOyc4sn@n_5#-8!GQ@5;na`bTD93g=JaoElmCoNzs(e&pG^jw&r&cdjLA{f4
zm&j9#75r!ko0O3mLK=zYwVy<(FVXz%U}qr+)aX9w`#F=s+RqxeBHXQo8tm3W9|Ip_
zi-bH<CiCSR+JRhjN6G`9v9a-<=e1)BE+kRM3Bn|P+9;azzjlcK&&`mKRJ43f^S>Gz
z+VccMeqzB?T=9|>%@^81CMSr3pTCPYj=BMBFdfs$Z}j-Zj*d?gw47Z&AnRMsd+mI}
z;ua|J)<7&(ZRsr7rACuTpOE2oF6#3!N&>@xh<u2wzT$6#VEN2VQ!0-yyrJ=Jo(*e_
zaa2IT_E`*6ZL}`}E0HBCv4cQm+DC{0j>%DFi%}CUvU={m%Hr*POIZh{!9=cHO4H@O
zMu7-jeqi#2>jetN!m*J<bA61MK>d6}8iTV;^~#QZqTUK4$9v5Z9kT1i_ST<)1s}un
zH+FXkX7WeAWe*L<i_<A)6xRV=sbntSa8qUL@W`V@>GVrrSIwbC{9u;tx0VqSmDG8I
zg1gaO(f$nNYa}Rh^*yJzFBdNUu^?OAj;IrbU$P5b@>FQ#Hu`_*45C7z6YjUCILo>p
zCAIOHG^V#&Rs`KRi6cOifjKO`g0+vnQ~dM>4H&?Sv%Ha+kFUOk05Z4S>}J4LlW(&y
zd3$}JgaeQi4;t;(fmlB<>>-hh_=Z<ip~P95vZ0l<a06k&=}Lh5v@~ADKKgW~Sz-YZ
zzP-a4-U@m(!WYf_6L=T?ug&-7jU&emPNy0_qh^JZoWDZ$WBV#i9zFX*GSg}WQ2-|^
z?50l=g(i}-zXODytK$(8?rJYV_|Dh64G$ynWR)uLE&od&bY>LGuaG{o6>K=ctxRhi
z8}IIAZ*&-YW}dB<5k(@b^oEKpg_|?KHr-Z5HClQ;3r#JI?Lg`=S_vybveJh7DQq-l
zTcw4bsvrdwVG|mT_CP@-LSAC0UK-+&$t25i(aOdqiBWPX#My7qwwkZZ1nfjLt}m2_
zr2{cNKtp1?hk^30r3G)YTGUlORk%yC07>&^|IEyjsYv1bt4WJGoyMbiy|GpaRGC3`
zq<k30-V`1J!uQjqY7#ak#QST`mNY6k3{-)>FwY!~h<(qCn>&j5NBiT|*5LE);ey|V
z7Yl%A4%m$K#u@rhkTR;<!H@L>iS-o0V?h2M2ZzY44$xHpf_6M!m@qMpL5@;q*0+lM
zDjl{LuP%2@F_w$IKhI~%<_8uQ26NTh%u1w6?LMuxBlCHlQ#YW-Ffi+OfOo<S=d-@6
zpn9q*50gO%R@!`!!DCC%vDQJaH_%Z^zHP?f|Fwa|z>g}f5X|apIK;Q`ofJy-W+jti
zQELfd!J*s0#HS^Uze*tf>Z1(Aia?SMN5=gkNuqQ`p-@^U(M>%J_iE+ofiFZ9$&+JN
z?P#*p?-vF!YGMmVrKI$xZZdNW?9d!7FUj4?I*e|)56kP47uY$)xr@Un8=A;0Zy^Hl
zkx5kFLkjw~AxZ665lNK=MR}#1e>EcDG(_d$5K=#?&L|c+>h~HUDlX(03N27EwUzzY
za5^Z>97xT<=Xo^)wV^*;+-|RG70*wXnHoa(H&rq?%$BXihA%(D;tO@V!*9epmr`;w
z7Qq!pnl3b%7=G4lk`Ko_Sb)M>*JO96eh!oxKL^Pac3ObX%y0Vr+!6rlSF<FQxnfT(
z?&>j2sH>k)@KTb3f`a78JT|6NF76LPE|U3k=mah5JvOr?bK+ErITtF#o;>%KO1<tS
zELHy@ysOxCJI-~-`91EL$1+;~bIx+sDOT|aClo*t^?txl4V@dr+7lcv7T38vw!G&_
z!pI<C(T@Z^bYXF*ehK|wy~XgIQ6k5O5dIZ2Rim30^22Ix*R29bv+5^*PB6Vpl@A64
zQK<lAxLxO<(~&zc{XrUrJsme3wHj7}M}}IJzzsQ85kROAFdppW{3}?;vJ(5pGCFuP
z!l5TgnX_Bn?EJVI?-d3Sl4uC0H)6w8g)ngiD<<0jNT!MJW?B;0bBhqlf)r;hWuDx4
z7TMmluK|(~X_~wU$$keO&kjj1qJC-^sSsE{N}Z_jCsRj=`)Gb_0L;mgu%+u7{3c-D
zkDu(=Iz1s^?yZ@AD7Td?(Ro{e`-8G?-?1zKG$Ectp`g}P>Mysy+pFlE!4^0#?JES!
zsuSXmGhZywy-!Y1SpzLihTy--;_Pw>{z;G4=TSLZZg0FM0yO8m4$qfdn)H(NP4IAW
z-@O2Wcg(F9mCk=TKIQFFpw7}akm(x)q&U8RH=SPE_)Hzj8XQHQM8y>nAQdS~^{rfS
z3kV>u7Abe=R!IES5(o_qy*24FrrvYsnP|SdEVVyt!M1F1`%5oDG6jXaCSp<YGpG9E
z3uF;Q-B@(E61<&9IX>#w0>v)7WqGAaYkW9wqrHI-)*HfH|HuaCw-og2xq@sq2UY>L
z38q~6-u171r-vA-X0`3E&}iKpa6}zoqg{u``Um+(+PUG!LVXQ#wO#D*;JK1hazDf=
z4gMy+ZUx_ohTsra#tKYZMpyU>PHLyhi&?T8@OWkXP{fCC^`;=;Z(tPsVonU*dw-T^
z{kezC16Td4Xmr#!N~oBk)_9Ogq3;!HfZ}i`^|MWji55ojPDVHkl3C~sg|OHcf&%*c
z=XyPwC~Si`kuZY(dOwKrw7p!%o*L=y<w_@BHEyeVOXtOXl(S=%DB=Q;&AGEf@kwsg
zGluR7;oT}b&cq3My(xtot{JJ%W#bJlztdS8`@Sj-=jqg6DMriY>TrfeIroX0R~ld2
zbl?~#3mHbO_4_Tk9c|)MWS*`xI{RrnogNW*(&T&;&l&TYqTNjY`y%en!vy}!xHVxs
z%DFSKIpBE#Ae};i9Isij)L&Vt$V~Z{hn-(bD4w{?p?sD=WK)&_!jDfgiVx=ep#Fyw
zmmM32D0DB`Vk@4mtLxVJ%;^vS8`*!hu_67}2`RCesZe05vz>WGBkSI^&>TInN5e^-
z!DYu)ApfF_=If3#U8IkH(kZyW%n>|^3(P)ANEI8s!A9f9<p(EO-%K9IpxIhfn04XD
z%r~~BU3syapUetA8TRgW+|)9VQTpFAH5i;D_h?bcnwf8%Zde&ibC&1`hgXBYwo%xs
zX^+|xWn{-+ej%cifNaR8G+}h3iv1M@4qxv;aP+gnjzS}ZEKLu9I<ACk48FEI4f#s5
zS)C_dv?`*<gKIXKr)7*3MX22<HX#w<kD0=L;$s@jTk==4r-jTYB8<~gk);iH-O%i@
z)|LLJ;%wCdD1cE^$)JU#IF<!ZU#`S10qWolN^hr+cVcC@Z3yxXws=77*%_D6C~@6J
z9vYI(3tXfsOo>A)|M~$q!hbAVA$^ubi((>sM=o;rqgj+e#QlV<Shty@t@j)YB3QC4
zj?}=0PT_N(0R5djKCayEp<bfqpDW&f!2NbIl9UGp*k#LPYUWk7uC`q5&vvI?jfI4B
z9;=#!8$+(%M(10}(%#ywdN2FkN`K`~p`xSvQL$wKw-vlLeCg_uT<Y!bH=cSYYDpEa
zn*#|$Ig>*%!yn03zxeX67^M?jA_tu*i;h;_;_d@{d4R~p$V@W7@q&QOWMXnV&#~76
zwAgrKv*LishEO9_air~R`sE*t4Uhgb^mdH`!^9}C-u@&uYohKG<~U=06^juO*$nc+
zUS8{>)tU1FJH}M#pZ5p>lj#^@Gr6gRMRu-04hx|gX3$x<H#m}T#A;L64`-#cXly7t
zymyNJ?@GPaVWDPIkbHiqfHQ*KaD2I3-alSHfoO7Ykf1+0Ytw7Qp#}6dM4`g=9(MCv
zPH_+u<T_OdeA~6$mc)2gN;L1nUy&w+VGT)YLu)rewI(@0V-2u1IXJGivuZ_4f;Qut
z-B7Ox=z%=5$A#%n$J|(YVHdl6#yW6gHw{<=3W5e`37S2R`lBm5A8-stpDEG+KyHhE
z`XV=n$v*Yy^SMs%fX>(Z!sg}no1YfjbmA^2lQQ<?u8&N>9Otwmi_ethS<lGlbojbP
zJjlrm+TtS9es^=c#@l@SBo&qCw8$S6n4Ru*Ei>>q@aRFWH!Rq5uD>E+baU*3g6Uzm
zs#{@0RA;%uDK5ylyt>(Gz}TZWRe!)+ZE~ak*x`V>3KTaH@4pbP!P3*yhxTon5kh4y
zI_^lx$pH+A3Zx?Hi(e=Z8!p-9cfFatVmgg|Pr;U-AW#7Gao<ufsK*#Fhr0&>(AzSv
z56JXr`9J#^c0Yid#d>l=Rrnp9EsxT_>G}Axw^>PMZ@5&ku)>HVuPy#2yq9?Yg!$Cq
zbv{!rkifGVQ@N3d(Ye}H^f$&Pv6>44iuupg{S$WobTq}xl8cncn_@=}AG|G?aYlN=
zI(Fd`(qxJB&w1b9Ri}`da_vNR{S~-M@z`r~HqKD047jLQC4;SXdQ4q8dCKI9O|M?0
z(vW+52rd7h&fY}<&ZL(_hLn>sd=-*HpWVMv`+1^|vxClw`ptqku#obOyuGvmMoN#!
z%F0UZ{K(8aW%>$KDDs8h!&KST{!DoUhkaY5W&#yNNLj3~TlFiu+TS5kxaYgB-ZT5I
zRo2a`_}=;-jZUo7ruee!+5m~L{qFb}P?VHA!#v*Z&&1>;xfHq;h7a6w*b|3;^*ogp
zol#&c%t&Y7XEro95BvPF0MPwKqh7m-K7x%gBfw9KZP4;Q_fU4i?4AjJj5x%2IL;q>
zvi|OI`UF?V+H70w8%`~Ph#R%yI{m8u1mb0X*3Tj4?W>vQc?oxG!y7{7)ud<g(rmb5
zvE&gckz82uqZT2t7-;lE;AA4bl`3V<GWhzPTDP|>+0*hB7>r@DX)C~)n<#|~#4vs$
zP^LY4O(D$nlmYjiv2A*Tfk|zeB`q}Bp_;g!i4k%HAGhAe1WcBs5@Or!)t4n`2MnC%
zW3!S=kYG;d*Kz7`gki)p?B_XhJcZCOIv*Qb3#~BHehxi0tL2qlF1~aYgEdS|GC@OV
z?;pgV@(G*?x{bI49c?D`BDSQV5#Y-l+#NATMoYo7p-cXWZiPd^JB*3D11Kx2xIhLe
z!$y1u!$q@4d29zm15FH7q%gxMZK0W>Y8_hNI{-ico(C3=TCH|Itqk>xWY5T$>ZgqQ
z7?oH)zf3_AHx=pFWMl#PFJ+!azO*ThU%&Rd8T{r+rHZEt{7$j^5~<U;-4_XXz>UYJ
zRFcwLZ;V#@r!x!4^#pgDRPaMdA|o+lGs8*it*3udTmZUYy&`2w&{wyQx2tLVZU}BC
zDUsuMYvFD&@$sg0Z}0vq*V?u|Ps^*Gd-<mJrbIton`p<)YE4qM5X~d8=IiFHZ86AW
zXV`G1#YJL@_O0XLErUep@AxohN?_?tjL#GgG;Y3Sz3=T!W{r>5qu;RD&pRtpFKroW
z04kjSyq@mSsogt2HnQ#wujO{0zT7G*mXaX=Hx0oWOFB!fV`_acXB<O9^sZKyzi)2r
zmbC&&|7ZwXRk~N9hy}l2&$SQYvsAGL#qx>wx4XPZnst}|+Ea_u`lPCHTV+J;goX+d
z0Y7GkB2{n9s3i*43&fVEJY*md;l9iZSc{<6jkR8l-n@D5xLf*V;YH?yBTMOnMF`ck
zRc;55Q#8fcbPIG+!qViDUuGiDM={zA0X96j+kdu&jGE1(+`C&gSbTe{UsGMZ?!pA~
z_<p$1a;z9!@q{Fvz0d??xAXyy1L1sSqs)i-?@wNG4BR>mN1uE@b^i;cD>Rg<6z4$2
zg1tY>Pn5}&QSZ$!E#*RL`#nc0*V<?fm`w9ka)8$%QJa>Ka99?=Zi)?|433M-O_rB>
z1#OwHNq9-6DNDFyMVO+my6>$20-XCg0lyG%s{0tCu;u#E#li3Ka^%(D6LbPrnGGdi
zV|F>~=H@IuH%1oTfdtvLS=<VqZ)%g7po_7)95ezj%mBKmWcg~QQB-=Be}l1;w`=(5
zS5HTn!Vf}x_REUB#ba*otTC+xK>o?R4$q5s>)o_r4-d-HYKjIE)aYgG&qr~?6Kf{9
z0)xP0P6@ccN-7a!B`hwxN_^~oK0GB_>x*p{4wr|*2A&tallv`k`E}D=fr8Rc_EB`R
zxrX|}MYkhf^$>xPBvu16Re-=T#5O=U?Ll#|gEABsq|%`O28g&6n@h`sd;CR{Ha51I
zkme|j4sS9$rGU2j$5HF)tPZHy04Ws}701hssN?RK@D|-JtA2OF!5p+!yB_0WsopZe
zjOjU!F*kJ0?XlsMtvE-!oOq_@kr;TyOqL?`2AKrvtRwV=TT*SLx)(aFXE$$$rY<E{
z)oGY$Nmm>AcJsTKv7h+3BK&im326&0I3P={kxYa;G}-WS&p?%Iv!U-sXzW(?uVlo&
z4l-z<^$`O{3%0|>mVQn2UoX@9pkKUeFM%VPl_|QxZMwktqo-D`LgXQ%SZ7?m8h1EV
z2Nl=SF>f>TxZLBgTZySuR`CDb)iZFp(`d6wEt~_1gBT<O_sgWBj>IQ^mkgLh^IsLm
ztrVp0Ek35p<ML~~G%7M8RHFNcxRm<#4bT|^kh7{UE0PTD!<QWvIJm?xnh_1d)!&@}
z*bT=+3|Jjdvr#xRYTKSIg{r?)&~WU2SIH%7ciz>WGKhaA3#-jO(k;ZOWB35f1&WRk
z<8$e=+Yi9s_NQd%sv%*)r#O%$qC%bP*l>b%Jr1(2?)7)0WN)!-WeXo~Z(lY3CQEQn
z_l__BF7oKp&PNcN#`K<NUzmq+f89_rkBLTNDI{ei02#~ib`W)b{>!h|qWt^}!k&AM
zhVQSBL|@YtmT5`~dF+H=5`r#Y(<zBoN~g!hGT$9UD;r_JnHivMe7df(jt3RBUQwNw
zMaqPwOnC`ZdH{=n?Rp)9Tm(&;8<pq31opKC9|Aat!N1JuYLR>B02UGvHUN};l#4em
z_Vrvw0rKRG&dKAQoQkLV$UB8>H4&xu;X^!$fp&*8PMhV8V5F;qtj}@%^m>y3wkIgR
zj_&-{1E`-yQ6O(zE;!Hoorb6(FjZ#3O->ZjQGnieobAn_;5X5CtnXeW@~8~z_qaWj
zi+)Q=#+Y-lolBMLrL&{fe+N(e&nh*A5}V`==?eM|k;`#`FD9P=qTd(-Yuf8LvoVH8
z)|odwAcy0z%FlgEBHK*~-~#~CgT`#ci$=MgCg|kf<fwa4ZzAOf{J<)?Yz2O<PUyAk
zU#<wmuniATbYPjAPf-nqsurGYr+I{gjr?%h0SRZTnd<Q<PKFX^hY+gsU_=b*^8d>1
z?_bpZ`p}=n#blk1f?YqKQK6);12l%QRJZ!8i5Gd{v^hXn$W#PV^}&W^F;0vtg(fZw
zvP%s~o7zjBXTG~N4W<H1+~3zmy-oc7dlX>opLQ-7yyxQ5rFY!NS|PRdEs%9|50wGb
zRula2cme|{7B<T@boU$d3!s(!pQI}|^8H!Bv}tyO>?^3)mpwj?2qhn1c@(`&1%$Y_
zbr!kvzC#oks^3B%bNkuN58}6hAKuR#8R+}HZ-iY~)sV<>E98Xv<_iPhAL4|IjQ!^d
z1FJ{AM(N)4Y+(YZ%TQ5ZIC917Z0b=o+9t2(H+$lzY_Q_3)ipDq6CN^MDk`E6{~<)y
zr6fMBY(a3m+F~T6kB~9)eK=loNsx|*Kqz+S@eT6=g7+n^=|c3+1j$jkzZ6%-%75_K
z<q-z7v;SdG(74WUcs^N-^^$U+5f;}p>_qFqs<9*Q?_o58S~r>&_(?ZMq9Fj}&`!ft
z8Xypy^$!{u63X>AD^q$4SQmUYRs<M8U&ijkdr8ZiG@d4NjM78hA?~c}0My>OFKAdL
zg%^Fk9mfMcB^Mv@X%{ZR3KtM)L6&bgoA_F>-UAho7u)V!n6WKONagw8V|hExI?(80
zd^G}Tv}s0%MC!T&$1ljEkB`aX*OP}9+1!;HuaoBubtX;lO+`U1rsvHbT+r><cy9Fx
z_;Z==Wj(7bxT`9AE}Wnz{Q)@qT;~phGhJ4*fa&7bh=&(yG?h!8o^>SXB?;jJ7Ags(
zJ-T%Kn)Kq+>m1vi{;xx-7B{fvP<`1CY-73kxm&}I@?H7rMz-cm`3=~FFor6NK6kV3
z4^xt{1=ze1OheK5Kz<P9)mSE&TiuOPFG+GakduEZ>M&@UhnfFHfm9Sp;Rjc|w+Ugt
zO4je45Tk&JMmMb5#h1sCSEPL2ff&(t`Shyy_h>PAmDt5N0@{k`L;raUM89BGJ7A7m
z6Dl91G;`)t#SB(&xIJBG{0>C3k}KAH9ZFRf!8JJw8_~qskfgk`#jX3rMe&2J;J+i!
zS7e@r6^$E>)7R~N9aqG5&m9FvYt!bd;5xEGaB-#hQvUUY$fSKP$%@3lr^=~p&3=<6
zch0N&3?bMvKN($Qp_?Q}a0A2Kvl+PbsQgIJyu`StxvkdMJXxrFOx9?1Cf<lJjD}+o
zZ81%w@s&zlXy_q8iF!Ajp>W_<f3RxqsiHEu0mRIE`d3!o)?2CZwnPTB3yY-Qkr#~J
zQdF!pp~9+P3%J?P^`;$vsn=`u#rt}k-5mx;W?(2`eHNSz`h(vi3m=<sa#2Krzw=`i
ziY~6n9s9%eE2$T2cNZLC=e6=R&~8W=7wmiXt4Vmp))T%hIy%fJYAbjW@<eZNcUMza
zM6{@({UgekvrVt$lKbNAli6#Q-&H4QPdqIne+fH2+uXW`U3)%jw@|%J@8S9`PmnrS
zXKVGaG<S--`G2#4Jc99>4Fwb30bRVa2MJq9l|;hRqjOLJb<sN2T!H>JoN&CD1}Ft<
z)%gk@Ba0yPfF#sp@mKd&P`BH{D498lFA^&QwBxD?rSS2U`|AdZnRzy9^f@PphvP|y
z`L&Pq+5BEKk0k*dG_F@enZZPb+?p{*wd2}Y%0t}wkKdwVGAFo_bJYzE-N+~H0a&8X
zqzK;uyyIgYfH6#FzgDOnZ3i^JObHruR`oJyEU?>?)Ak@u>{3ly0V%jPhr>s494<h7
z6XW2#D=?mCYbAjp76sA+A53l@D-?IXf&5+W$k5*ZF^<n8jUt2R%<~vWJh7p**IWd~
zVdMH8J*SkK417vUWH^qZC^2l4BGY^E#FrHCzDzb)mk9Ag7W2wKklnzhQ8H<dGT3tW
z(z&X`^m!FVvoC6(hX$vcyBC(CYpL06eC>dz1sF8OqDb=rb<*PKb>TTd=~+(k3Iw5i
z=R<Q}!)_0>UI}@+NEvCS?iai3GBY(bEii}>uK>y(ov>nQ$GU;|sNIdsO(Ho=ras#d
zQ;q|fS*FEqu`(UVGM1N4z8zhm1wQ-=h&OInE;P+5NhxMjl9H01&kkhzL;!?Z5P1+f
ziC$r#rla?HCz1O}j}kV1U!QXF<M+qRf=(0t{05-TVzh2BlBHoCn}F6AsONitxrq-+
zV>uE&(?VhsZ0YuA{YXJV!0~R>gEdfD5SMMTVX97HpHr51vK$RUrL<!kTNFzhI4;m)
zsYU%$I!18pyc^xtZ>K1{(xfQj_-g>73WU0Q{wo9Ho_`92X>xMdLRhvhHsgbO8H46$
z(R=BeG(V2JyXV4oauy{)-u}q)pSdCbR)C`tp?Atmu#f{)5AiU(xY)B_1~0}Fhs743
zD``FNxcWK;=ci*Bv;fED>D3n0!TD=<b=X{$(FwGjCqFQHGXugQNwb)wiIC7smSN2k
z_?{@Xth_u5i28;BiuMHt5k#c6QaF^r>yj^PAgx(+bL#U+Pghq{lm@U(K3x@zJKaue
zHjbvo!MLEx26f%6roZOp)r_;H5cUiQOmlAl2&*z9e(ew5vU>Nq23L1=C^$^1YtWe^
zZrqXb$Be+p-#j^}S~P2mKeopKp?@!)s{cU$HqlFg&s&~qy~U(5Qq|MikPo<q^nGC}
z1(O)bqM5P8mbpxf`FD5Y)~2g|D|6)w*lgU7!X|_l{0BE6?TCrJ3H+t&u9H)Sp+U#%
z+jR#wkI)hf&dS%DNG{^P;AYWjvHmxHx9A*>XP&lJ3;#8IK@*s+D8qJYS$Or<)=7Po
zlGU?hhRxNEtEWv~d7G)8$|$@^B7@KEnW}>zeJws76nDT4fNk*lBVe-m0ML<MS5No!
zZh#_H9*f#v9DI7V>x@lIjP$0?k7i)@{#w1n!VHCpv9Rn&rN=<%rfXz0j9$kMV`VU5
zRG-)B$OV<>gC|Y@rx4Te&FLcI=A%?u-Vu!a&oeghjC;|^;&_hhpG%UL`Du;JmmqgX
z9m@%oRK3Z?q5!9q0(s^OwZ&8R%>5wu-B#oF-h3T7V-hQ6-4;SJr9dBsDmH+igkecy
z#b#8l_@E#w9vD!_L@`*y+%WT1@$n)^P;dtLqtIqT1h<9JL`BJK%#&XQzBJg19X(tU
zg;F01yWeV6U;SvvF*qStW{fBW@ZohmS0s&9Gxl^Iao>#2anBt*AIhOcYSnE+4Zwc;
zcDpgi{dO;gkZEAmA;I(9@@1hQVK^ym+P+TXj5j$cbD7>OBk?{V(JB!Mm1m1mVx}FQ
zs-bDX0D`}TAMG9k0L2UbV}dt9sk$3xY|{kxs|hNV^s>80-&ZE8Bx%^g^TmrboL4>Y
z`h=GqAB_I{@??Dbt}KM`{S6n@xK^kcjl_?y4aO2<JSV-R-xp<zmyv+!g|v09va@8G
zQ6Dd9=(NwT^5>4N;4f|av^_&Ni(N$6kQ_a(P48*f|34tY*&m*McRF11LCiN_mmR{=
zfEp&Iyw!qJ-*uQ=y`J^s`#jbu8Eg6LaeUDt=G#8JLDw`iqRgZj3sU|)tsUXg{)8`0
zy0z;UCAw;f!oRkX_2UAm;eRH||0JX&C(VCT$lU;r(nFZLU&$oPBbj>Dtpau9nnz}{
zox@-j`h~>L&l|#Aq(Z3GXQ;raVy0X;OE{6+e(611>4y%b8#inn)+o-2poE94H!boM
z$MCa#Yc09Go%%Nx)i^J;AliCelB3moj%0?tXuM<6cpX794SZfBBHq$QdZCMbS8`ZC
z$7h$<Kh=I&B^)nI;$k<)h|mZFi1H?-YpnEH?s@Xiw=4Co_(^;|u;cQdN`_9zbciwR
zE$YQZqaLaDiY<PTRIbCJ91d{}z(XpX;-r3QAWEmaUFIh0r+*X{NQ~=7d+o<c_*Zgo
z+4s6-YaI_S*Kc_`k=(>UMNBGNYxsXRWj5ts;B1q?tNjdEBi+uKjazUPX*W<8w679i
zm=uF990qprRIg;tziA)Q+3)Dhd}_hJ+o-F5Be2lU&Jlbp|JCFEVE~{CzZzNnMe<mu
zee{Cc$L)L^)w%KfgiJeE-B{c6aH8;C^K8Q~dAY!`=blhxi#v|tTW@xcRP~o9S`<Ax
z4B20UWR(^kPW%~}VkD&$ed-U}<=x`l2#`3!A5OBPAH@PNqGe8_OL&Fxc#D|bQ&HK0
zkt&T!(<0}qS_GU?kJ~oPMtmuIa=m3q-lWHA3yquPzauYErqGHH%X@IGmJRvTLQId_
zXzcheWAZUVCSUT7H<NFi>BvTLCoK5WV~m`-hit_*WUpeXX_0^HcK>El^|LO(JPA9e
zx!Z}WmKP!7#V~7w0|t5|isw45hV)iW?sUetxK63)l!dj)ZTe-Jma&BVPgoc|Aopd`
z@*ULB>)g{*6z}`(MgWt=-5hBiLv?%G^Vh*~ryEiJ_+PTlo6n@=^Y##%Zd>@t&Mzsa
z8Uc;$aruRMvmSDGB5BbuHI>gx^+=Gv-u_8AxB~2ozWk8T@clqiF@FVZ35-zCYe=P#
zhX&F9Z~o#}NTCFELgf*x)JSF({t5Wf7TGcc0u5<4s!0(qd2k5zIP*dU-uGP9J~>Sx
zz<pZI)m#x;!^)-9$T>UG!_P?uz*qP;m#_1SW<2<^xQpCX6S9<i4I&j44sxyTRBnA{
zO)<Pr&?O}L{Ee7{vR4)jO{1=3hxQ&spM#v|P6iujI0hsUK<~hc>eg9#w}P2gW6N{e
zI=f<#d;r;m*uY>dZviNbyYAfv5o1vxV?6HFR^l7@J;$gS4H9mTB=jAA{&+S-VDN!)
zpQb_DP#*<wrTsLg@cHk5N8C#NPRh_I)KHnBjSYU+xrVnd-zGkogino-=f}-O&l{D!
z<_o3RVlkmFhv#UE{D{?tFt##3&N^5+aB_^5$J64%sACw*Nj<lBjWOF{*;dACW6R1{
zOjb&3a<X%tL=%jB5x@@sJz?YHS*OjSl$ty#t>1&7%CuFTts2Qm6e$X<8YHx$cXl?P
zT~%A(^*lvT?cUzT!GOx^8Wf_sBrtQ@B>x=B-%H8H15jF$kQh(WHu5}?W&4_S8cz%t
z;C}h>W~#t$?hWF@70+M5E81Vx*w_O=$^L8@3v4inP$B>j@wd>4>EM|%04U*$Lm05<
z!&I+l#ftwD^>YNQF>F*A3Ih4WexbFI_Lf<qCAuTVm35g*vKFTbF%O-#NN?55lxi8Y
zl^W9triz-Ra*}4ILZD;uhfTI^&3<&n*r|(=kIu~3gMwliUMLpnWSes~X*<al=aOaw
zk>OrwondCcrOPq2b!uQ7JZq|3toG+%D3{%2`jgDOCAXD8WJV_%Y)Gl7WM<g@i}9!6
zL=?Q-B^F8fo*BXOXZ)NV7wZr?*)_H_n+&SVYW3nAt#PB|q$pNBB#?|o!J!&sysPKc
z9-LR7z`r)Ve8N@w_VZCIX6dtDSYWRNyS#>jt7~7l8(p^1Qw!~qq=dvDU|qKf=(Mwh
zsDNsYHOL65|NXtc;x4g>@v#W|8$@xy9q?j-pIhWf3LG_sTU@I9On%{<m1XG0fg`W^
z9@gyXPxMIX*w#KRO`Lq7WhKXmGYH>XKnN2}XCx9;e7x6uZ1Jo;!>?O3YHD(R0~i9%
zqa#=Dr^i2C-qoEF0#|?-drKo_S357)0D}8UTntjGLRn@cEHPd2JszyMkw{h*84&>Z
zZBO|;ac5&-rLXAlzYa`k{EAlYMI2%c%9521RM2{@TcH~;awn%eC?NouDS}sd*2nCv
zQ|jv=s2k%RBEEv&o}$hpBc&`GIG%m7*hG@Pyo`QU3-!6;^8|Y`OaGgFEmrHQKST8?
z{I0np)A?vbQnmf~w60c<4oFZX-?h`PD%rnT`=K{6B_+gy*nd93?NU%zkft_d>=cH=
zLHp2E*yzva1N^e%bQ-7W^`9%69`;$DIr-v~<J0_+#gr!M&BWuGpcp(F8uPA)7=*N<
z?-93NIv%hUF|X&VZcs#?ZJW35sH2QY(CEhc+r1b78vBsA-CEl_-42!dgB-7wgW;Kj
zS+n7IFmU#voh#KZN3&aQi^$6I*W?y}hH&0UVu-m1w1DFsVT-Gn#Dap<01j6dAg65=
zqqdGKQ%(npXU`N=P`?iO(@=g^WT4cWa4uO>8dj$WkHf<aYQm!#lhRF@bZGHX!u6O`
z78KZkzUaG8R&d7(p^39pAQm6+Q)Rnz0HqfzZc_3$LVhfWfpf*71MMwTt4ru-G;O^t
zkaed!fihz>#j`G6Da?P@(Lm7t9gyM&ycjsfm>Cw?dmZMR+N?@;uX<d&!vpI+Vwk)N
zGDb{d1kTSJ%VT;QR9C^(w9}3mcbf*WcZbt+4>?i?{f5Z|5v_z>diQr+L!!IqM-RzD
zyKcSxbc2=e?=h-0<YAqD0ISeQ|G(CTilscLp|`g&_;ESYw=YO8NugqsIuH)fBas1{
ziiDW|>jdN;eY_lLD;oKH>^TPF0Rct<;TBkL;zPhaWp?j{Rf-YV9o23Mci)`Bl6p}~
zO5&%00FPcsD1#<3R*-wHLg^xPVAz0g>-!qXnad-szW#1nAuz5ZO1VmCmf{gMv=DYE
z66b!AXQE^2^#%vm0kB$yuL`%O*vQ@3{Nn`x_mg`Lh#*GDN&C|53bF}qfQT1qzUsH=
zjz5cPour)1zLvt4XxQ4NBLDc(9wAcgPs%j)IKO3wxSJg|S+!?NL!DOp#!GxzZ06lS
z>(DpmTwx5iqlEnbeeiOPr*i7|yJCtoX!}yuOe}lEm$p((0f3&^qJapq9=%R6oRfoc
zXcxE=g#&!7?wLT#^7eGH{n_FmlK~}4+6F_l`0yf4<n=2nx!*D&3>{|3ZFBbD2i8rh
zu)O{EN)qy1m}MPRLe`GJymn$Hwn4#&53<JCMg)%_v!seo)hiF{p2s;&yL0b5@*1Zp
z<ZyOJd6-GRiYZ0!K?xDS<1%>0%SvgIe-k?Bolfb~?3N{UQ&f}%3p6}b1o^s;F8SM^
z@_jtmU9v!L^3YMCcIK?05R`O)qGfb1h-YYGVp4O&;TYNRaz;Q+LsQ%*IIbEJ5!{s=
zr1BM2>Msam@T2*vR54zm&bBC8pGxEyASl=YBtIZ`O?jx30{s;*Q26&yDR<YhcVwKy
zwv4*j+57<q;AT4%F>e=r_ErXJA_=9}$juqC0+3H_?sYt=z4k$uRrf<vg|}8?Lbbzj
z1Z)~03LieQNI(~k(i_i`{=9s4?9-GffNti*39@>dR;e32mG1R-1TV}}HtKAZCi?KY
zt*mt}@u=!8X0`*aj50&R2*p=~Vi7)&Bi`q7_@z*ZY`zPSAZdi7AxJ}feTm<ak_*EQ
z?&SV1g)>3r?F}q-lolItMpQlorB&)niRDVxmm~u{;Ihe_#BhhJMb}4wEL=2Wg_e+7
z|8EL59F@F2)~J4p6;<Cy01#if6VE_d=RCuCNeNDpOA*1{?0&&Y>vz$rmXhoCqu|zJ
z)UZfv+UPvlYFlnSDvGveVimKHb?v9u#dAD(C<6O6@{#H7eMuK^2a9!kcSl3JWHG>0
z2PXrrSK<WbP*Dq*KC720lgIUUzR}T{!XdnSn=b^Vj%>#^M57SRH#aVuEMCs{pzZG^
zU_&~p-5t)O=35?$N1$$4cR9Ih3(SG27%;K2Ue)(*Ii1y9E)wZ8iP6>0eiBfZzpHUy
ztO>1?#|;d0P>Vi&2cEwyj{CE}Z(PIT!Qu0=S&4#$RroFTWQDZ612K*!T<!~+I)%lw
ztBd)YP7%w{>;m#*a^(_zd0&bZ0vcM!W}%%vY$o5p8LOuUo7UF3Bms)$6iOle>Zcsw
zK<U9j4_bp4mp9SZMO&YrL_VEbYT?;q?L}fqVI?ve*a~V@l_JDW*o}B{E9;>k(}a2C
zxZ}7j`#iqZv|H-|#E*{0_hi(eP$_=;!t|WP)R|&h1+%`r_o4cY<Vc1mXU=>M_py$Z
z1PFKCTt)ggSEcF_L9zPu&}l>^FqOka*9V6Bz3~O6kTK&ok>|#OWT|^eAN3kMur_ef
zVCCTv_1rtZ)84QCm~_W|_kI240TVS;lCj(hhh{Z8g|9{UAI$A8<OTK?=V<YY2u<gZ
z-(^e7R!2t%FicRXF(yo0E#B3EbFlq<?_IyUuvDwH@z^KnNg@qF!D+HRtn^x*(|hqw
zjiDi&7Wy`1&&y_F7xME?g3kJ>7}+?x+%=vFyOmeed_7LGC$e&LR5-=Gw4#(K_-SyB
zW4nsvtLIkwb@frxrNKdZZw_;Eav^VtxgPx1$Jur)+7Uv07tqoe6l?&?>(J?}=ceCl
zN@9MSPeiHCA0*klv9ZZ~j~w9991?*dRr7re>XO^=p!dw{#sGZ&C|D1}A?ag1eG31f
zme%+ReDu@y_f%)ffkq5#olbzb2!&9Uz&+6M_v>cYP3tOkF|~2xFf-c>d_lD^>rLQ4
zh5b0}uIcMdcGpq(;R3>%0!c(Sk`Qje+mm4H8*-!Wq)x*%nWrC6Ky4p>G>1PWd6^_Z
z$zQST@h!^tj)dffEa7?xRJU^XaUfSN49RnZ=TK1P{cAGZ;Z?F#0$Y-NPcHAv5tW6T
zKX<ZPuWnwmLdV#{AywwT@5is(J>P0lmp<McE}iIC*jN^)H5czoqzl#$taxEnIgaqC
z;)K4Fsww?Qj<KJ494Bt6Wk<mJmsgDhGe^xLgQBuOP%~UI<XNqnk%#3;F0HhCKrx?<
zPIY_0r{%-Yih}lz<L&D-yVXQSEBx1hi|!x1ir%22Y^VVUCnmo<fOR_^RUh+(e;9{_
z8rDF*!-WCZ*1xXR&*r0>UY1E}M>!f2Bpf2Lutt$59HpKQ>w43OOr0sHt*@}jGmuuK
zv5ppz2A=P5DsL<b>2~(O3}zy4t=9L>DaP|O@Y|0@3Az6Z6ZM+QN{*W?uv&<ne||{X
zTdMGYnMGJ@^oQb$nyh-6M8Nqa>Yehdz8o`qbA3e_UC-qZpJ?{*0h#92i8!{oRGx2&
z9-IOO)B+70tE3Bz+Xv@RCzug4Y=wkZU+t5iG|CvlzY3tB+sVh~NEKbdRbOjrpjRd)
zMpaxTcns7)nqrH$7ins@$_3X?|KQXFaEM7A{rUFLqc1LTw5wh&6qzQ?t?4T%Jp~IX
z)Bfyv?0tkJbc0XIM07q(B)X%(Wji@;s<S`BrhSfuNh%=wU3wQZlzI%JM55IJ5sC%>
zbL#-2joGiQeJ`cq|6ZKr1*3OlXQ-hnuloi}V9BJ8b)frt`|q8BDB_liI~&@AsG`3~
zv6#}8@3a$!H>Mmbf7EwG)Z_0cQXm$Ze@Fz8)qzor;$=-)U3>>RXT@<R!l8w-9`c0K
zxj)+|V5h9wuP;QC|3enkVOTj_qOq1Q$7R8Ehnb%K0$}q-hszDVfZQUP>fRvrpW6bU
zb*JhEtJL;)@T2|P_lUi3&?Q<fWK<z9Mg&psxF7RJYdbRjfJ&mJxa?B%Y6=}Mk#XQ>
zNLBC|bij-Suk(^Pl-}9;FEzxfl+*VOJFj(Jn!Wi>S$QQ@h-v%F>Y&kt7nsL$FCNu$
z`)~DHc^u6$NtJ=0|33>eVEa(C2UZuxoSgY62jICFb>HV(?{(R~{P`H|6RjW6UIB*e
zZr7CQbdX~$ottf$YIE9FOk96&m#~q!b@?3YA4_`j*GLDy=qfX+pIT*qTi%U*C^SNm
zEzX%-hS6{A_#3S(iechrX!t&fpb6teqES(MmZ$T|!L@VftHeHbfDJ>Sa-=Nrscw$G
z4}f^6M~ik**!N%-MR>P1Ffgz;O7sOd`=&%{Gf?|Zi9XyS#?$MQCd!-s+HVqcl5Pp*
zK&8|F@u+P2LMdFk<)Q{_{iU7$9Z%0>n+q3?-<QtuVd{guG#{h)2AAwpqljKrc8LbU
zia@^9t@5I#MI6k1y0Vb#jf<CWXHIo>-{z{Gqtc<DMQwl8>lPQQs4m2ZRBrZKfcNzH
zyldRz7V4jn^E>0{Aj*FT=N;SLzZg9rP}piRh;K5+Aov}Ao#*#xj(DBfam)P5jM++!
z9#M`?fQLL_Ei-^F`*&^(+j3J_HpQseon7uYusb8=uN3vPvNfa0SIVErb;WDvsY|~P
zpv{>fnR2{wj9xuQAk*od?bpV&{qkH#C^e?%(E*%#++POziYBeOO0Ip;(PwP}C>fK^
zV5IS{H0smJo}k|iS1&nYMOBSeIAMOb<<!wckWyW^v)~J$k_r#1^;&`{L9lE*TwE|Z
z(k>7IcYu6_ctV7T`wN-7I|xRDt5^Jr{N^y0wKuwGqx~!1vQowbo^!mwn^&=>j65_4
zdF-W}_#o+b2g?)!{|$`=P40S-3cxpXzJAL7h@DekAG5gMq2b=X_*d1meE;_nBYwyQ
z>-RnQHqPgA&hsDI+$AQD^Sr+pl@#%(eV@$`aPi`L2Vutj6$%HK0Ye<`SpM(d^jA=N
zQZHGzyotg_-`)Z{W#F<82!((SnfcC}Sk?<aDBpQ|%%|;aNSB(L#^`xC!a~RfO~Y=9
z4l<V3?1{d{diVQ}r*<AJLX%nj736K6%~Rv%fBxWZN746$FURA*XDUBeGYc)N*mLF@
zZ?IeR&owzch+LD31{3=X$X0qCi2Y|LiqV_oR{?fc!x+u?NZ(Js_7nw~t`aSheDM4l
zo#FR1XLT4IYAh@D{i15(F{<AJ7_3zPb8xHk)Nvu?UF~ot$n?1)18hMG6+lh~BL71O
zVJwJwWHgD&`522R+U}b?tY7VE_^R71z)}M<>eb|~>ZQER9Vby@T&SZ<{_ae5k-P`7
zis{(ioa)=iGiJ`+Tg&3t&H9Y$aDd2Crdd-14~6)u<f}luFV|fF+fu3xurEd&{a@3{
zq_2yqW4_jQ<rRA~cr_`1nD$?xpojf)0sO*vImC+1CH%XS0y%Q9@#!f4{QZHsg>pI7
z?AQ~EtyE`J(fngO2j`mvoywa<iDh*698I*P*~P^_0tiZ~h>0bd?1w(i$M;8<yXHac
z@kHl=#mY5&<f5oC&%U=?3<8l46dQQ4*zZyt^Abl>%gZiDmP9ZyCw^#lPXW;hUnzLJ
zEI?V}pI^w%V$YK!@#b+1bit70Is8e0u9>1G&UAd4famDx^&WUNp`ieX^Zn~1<nV8{
z!!UFLwg=!T#09><Dwaa5Sz=ED|Lz<{AMV`3_I^XAiy88{EnO=F6#*2sFE>>E<NdR8
zvqPbdTYl_DgOYg6UdsNPn<gm&ng4R`tQ_0XY-dqWA;MF0&K>c@eW`!cF>a7=lG>aB
zwf3CdK<f>*UNaarM+F@Mjs@}h%}7>WJ##-n$jHmYF9nynG!+T?5;{v&r#7LVnjwyq
zT0XbWtq!h^91A?mLaz+QQs_bjzzg^7ke<cN<JAUC`D4Qv|Nn^_+2tFsc{7TZoT#`W
zD>jU&tYe)YH@M{=_chCI?|r5#H4rit31K&WTH(}0;^K1a`{~G@7kdSs=i{rM7n``a
zj(4*@e?5p&=<}4xppvXDFpQX+Oi%rw4+_ge@-NpcZ#~yZJKgo{SIZia%%zb(u)X&?
zBi7SNu81^3Rl|9B9tp<F+Z3i0kvs8j9ar=C$`W5<$+tVu0Z8vad;kkP!Uj+`Xi=^o
zE*$v%T&k5e0t(_qLsyISXI%i_Q0u6beCW>ICqKR*3)6P;gY#ro9Zf1{E+~K&{~a@|
zoUr#)$o)0e!&Uqa-Mh1&D^PJGnm|x}c{wOM4%YJ&?9h=Rz>YgzZR-i>?9Vo|?+v5Z
zi>5i{G;_v*xDPEgp>Bor*q*96J^|Lj=_3=G84FU3h`W6W^?tJd{l(e~y8*5<NSV~l
zwJMdz>)NK`I5|u!Ez4xccnq)tIqG>shfc!^?%(bc+YpeEMI>9?RXNjHK7l{$N6{af
z&6_f_zaRf|?Fs;4TT<qdyxuNq7=BW|=Rd{Wcg`Qi2cBRPXqxaXh<hm_0PHHUj5M@r
zdwVPtvg2B6vXPbHZf-%b>_Hf4pkW_dA^zqKiKFV(Lg3s)*;n;;vn9;5pHJpr1|m6g
zeJOFENSOy4$2PYu+2{$fnLOYZ$*cVpWIm^7S(pb|>U2+$2vL25U&CQvZdTzN@Hm6^
z{98Z2GxFuM^t=l}eH7pu&|0TV@B67Hj_u!rK=0L1-Z@brwbp@F|E2w;MS(^LjX*NW
zE*(&6Kz~$TorD2ChO)If{JS?PnBw`Io$ay=vof|PPRCTZfzjd<e8jj8AhbL_fr7?-
zHO62sEM?<3gBG^Pe#S68n>hXML}vr=U-ep%WEkU@O9a*4JFO;nBE?K$CBKZR5;a60
zpXL@5I}@mXWImi9{T*``AlnHUqi%@KnpiBP>5n9%K_#^;(``mV?-S_Havcb{^1R%O
z6*+-n%l3z-7(2Be8<Tk|=!v8}y;aN<U=l7oDqzWccw(DxTTt>;d}#6*@gurUK*6R`
zh&ry!e`$AES0d_V#C6(B-Wn6z+5C5b=Ei#593YV15BJJSFm_^}25_sZFY9c1)TL)*
zry|KWtArB$y@m@r!u0gv$4jUuQN&riqV!y(s+|VOzQPI@T|@G+!xuun{FEaL6Mz27
z6{<g_&I`SK<l{F5MQ{<bblf|0gIxou&d*bBR_8GojBm(AyO2fMx|V)3T7BjuuVB@B
zIzqNk%f-!rL5zFLP8{xs74WPXuDeR6<<kr-7S;`b_bcsut;fm`rrv!grNI6V0+y$N
zegL;~v{=W}5?NmURuYpUyz129P}KeP-FGSu)SxKR;KkK8I9#n9ctZ=h>N%3JG&r;A
z0u~>&1lbUP?X68>Ei+gRhl^#C@UBzeJIIp7Z30J#?)7z(T77hF1*8+QfCs$HZ^o@p
z*$ve(Divj;?1f|KgSW{T(ImV!hBYiJe#{0}6tnirU_Ye7c?Qqh$_s8i#)u)#cOUk&
zN&uabT&i*`5iVGIYaRedGHJ5R;>m`K9gID1S^wpz<ukDo#tnOg*mqwm`bpzG2duaF
z?-ZSxrLX`pZ^c^dO6DOcumh3LaJCzeoZi2UYa;Wa;Dr1~&+_*v^BLSq>k6$kCK}D;
zN8mj{{<9ZUT4kzcTvsg@2D|mxac?(Mv$Y)N?c4+mf`2d0freq4n`7C_x`{AHuvXm|
zR%zpj(#sE(o(?ZJE~~xUyJ&*(aEcdj^cm;cJB0KLiZ9^_IWc?AAAMFciBu*qaz14#
z|B_sP_0QkgMtXRzQ(LPyCvwu)*Z0K!(kPk$jMlh_ZT%zhf_!}cpzn^mt3E<pntOu~
z>39aG_sGVvO|V7OiN3MG(^%L@e(7YqPIRbKj1O{5rm_ssdT5oV8UAJTlAU`y=O&#0
zxet!M=kVfctu;FIfw^Effd<b1gZIu1Q0`fo4MrnO<~{U4jQf|HFU%Un5B@5)NN>o0
z%KCipw?NKpmDiaP0j@GI8ua?T9*5L1>A2(V?giFcU_v7&Nd1M|NI4S0EhDQawpN_E
zJ{$09Xx?o*Erot(9Z9Z0^GAW!^9+WJ>3C4&_RG-<s-e8*67uOw`Vg&u){IJh|GCO=
zp}H-L7>ii6wpFFxk=&seE;z8aqZExXaXug<A6%aZPcLC<fU|^^)r>Bmq>WhM${eRh
zn|?WeypJ5E-lfLz*d2RXbIvdizhS(kkbUre6yn@0^>Bi)@UMPm`k<0rYe)>o_wbUN
z<+;9+`lZJ()9-O1yfi1S^H5hl<%XOY_|mn>?((?HRiKG{X|W>V+2(zqUxvk(c111b
zj%gvVxxfDKJ`fvkGV6F(Zk{9)h|4zpN)3=QI<H?vUzj%p!l$=I5~$dlQ;)6vduxSB
zIn|mK&k+zgjZ<f@at-VU3bgsJ*wh1r5?L4L+j0SADb9!Ue)Z^NO9Ik5|F5gJii)di
zqD8+z2+~;4;F91D3GQyeEx5Zo!GaUqo#4UU-D%w28rR0%@6Lbj!x^Vvd$4=4cCD&e
zbJnVg%>bh&+rIN`l*|c6Mbj{3E%NPc{Bq$@Y?sbnE>)XmCg0_U-0Ab^;d8hL2OV?&
zLui*p5e7c>Zr2H~wOb_}o6x6d&ElTDSgAt^L^sq}t)td3XKr=kE>&zK=JnqWwQ$EE
zrocw$e>oP$Il>Ac+oE$~_xSE_ljCo(KGB=8`A4RpitHsU12=Wnj7|~SS*}5X#gMU?
z5@C6Kp4(N(!6-T=y$gBN5Im=O=In<@WWt<j^L1ZvoyP8%O`9tXsDiLdaqO?-;fA*z
zbP7MZCnx=2I-Zc~ZQ<-OT8y5aa9P^>FXHA01BVza!@%a20j<9*0t*)~eSJ9>Zfp?_
zvkVQT9UiwaH8e8*tmzt&$L`$TNl3`bL@O)QV1sBR_;psGS1##r4Y57^@Q;&+r(@_O
zH_1|?6Pskz@ReXl2-grza5DxM_Z&!{Aic3s+2tgu!PZY($cRW+@;+RJ&gK4=hQj&A
z$@zXb8@fT~`TV?N#kLL%3m;qf#91|=1(9E{C3+*M1P_x4BMg0`dcj;wb+<!skDaSJ
z&Ou}D^5!?(!c_Qcj98Y*FHXyCEorG<-^+ArG+p<!cTbz9=%l8969tQBTZuGcEQ6^R
zn{Sjp)UX+H*rJ*EdLUw*%7aI;*g^DP`I<Mn4yC&^!{7|2ik-SQy;|P~5?m(QHEY&l
zn=TQmR|h%}Xea3GXl`JY1vWqHA$A6r+4Xfo`tOVXh~Kdw0vTl(ZsT{wLeAROWD<U_
zKodG&aizFtE}iC@EJOXyb!HBZLDP{hnbQR_27NI?)cPhAJnX#W7+1Iq68W=!GUs%b
zHXX=cz`GXNMuP^Z>diH4=}%q-!&4h|GK&wEc)DP5H@YF1sEof~zsB`8O7;(WRirpG
zScA;Y4I%3t-RYg3wY5I=9tdP#7Jxc)BK#XS^gy#8C?HN(d|>jOOsS5h&l8-N8E5Te
z4l}aQ{vOH&m^-VnAwWzNoc$zPiLAbNkn!~78hrM4R9j+qx=?)U3P$QMIT~nxJ0hAb
z(<YW!aBr_?4e?z&q<cA^iRf4I##5fUE?u6sq$b|eZt@|J%PZ`xzdT@o@yd}R?Dfq0
zg)S_sVK3O_R5Z3+)#^*cjS*2mKPx2_dnUP7V#0<@Jc(<`$1NYb3RYKXZkAP<{lm*m
z`9YUI-2P?YyRM@-6;ervf<)<Rtl3miP6(H_7C1?13@<8##0cCZS!&hda!k#@w|&z7
zphoX~fz2wRJeOYF%b!fRZb3`B(Ul&hs(sWYh1g*dw$STwO-;W77dNwA>MUJffT|vd
z{@LE-?Z>PoKU{7V%#W{#FD?+fqI(M|S)y5;<vmOyf)Icw+_B)fdaM`djT;hK!e$-$
zdbZyk|8%M6unz$jsn&04UAa#gbX*?jE@D1EeI?9Fp#HPB9d)bMYgOK<GTY=5&|){X
zZ!jKzuAa$%k5h-j2JStbQL>9%!Ei?Q^nVkr2P&^V5(j@G=qMkBtcY34`y7f>x5%bM
zF5bUywpcJI!2dndeYSrDA`AS~)cfxBF8$l_q)r|B1l$LrhGK;Z`sD@(cdKxlpEjEH
zT_-C!i@44Redk!z`ax5@zQVv9PZRJZy4?-avHdHIojha40>Tkl_v<T@prhEI_uK>M
zd-l9-9`%oXS7T524dm-{zqbv>v;Eo&^r_f*Ii=RZG6dw>zx`gwe#n(OLEfK#=nNi2
z&RS^KqB__HI#B+$>mVUk`_@pIwR@Kp8xwP-)Rgeio5${>uw+GviZRNoN4FAuH$|y|
zSN-p<*YsOux9hWwU+1_iDJ{<4e`Y;PpMGFNQv|R{OecS4R1*H+G_e2c#PsY$P|t&w
z*i&Q!A8lleR``|Vt>!1iDo<4u?s;Ovw}QL<AVBAKr>SRzv`?yP=ETP`GMp4>nFda1
z86NKOAv|td|24X|{M6A-!#9z|@tK>ExR6mt!nRnm0@;-zg))dMc8bNEXBy>>c*vRK
zW1y!3B9T2ev)$tm09uH-oXwxcOc_>g{59)M`zJcY@V=J4xg<HcZ?IVp{s#;Z+T2O)
z6hwx%d(Z4RNb03q8=QNQ{^GW=v8nG<4Al*5zJ1!z;i*x_4K$Xifae~-*gH6%40dzf
z(n?UOjM{W3Gxpi8cV^W(?19Y~ZBe|aQ03=myIC*k@6CXYZfg}e6V*CHW`<Qeeugkd
zFDB~0-i;%`aR;IY?44B#-N?=4MD2M>N|>@oz?0U_TZ<22^fPaG!pk14qy}+Mr8N4$
zJ8IP<nXn=|U4MI9$UIoB`6&ID?l$Acg;@uFKTrdF=)<xiT%@h`N~@#RKs4OK&s-TB
zub5qHK4Z)4L;QQSr!l_Vl_-dIS6W7_Mhh*SmSpcgv>Zj3zW$d5z{NdG=D@bPvAdWv
z!O#%kGHIFU6xj>SR{UTa;W9Nf{lw?Uyk!dBp584b^_Uo*##n207L6Z3F#%hC#V34Z
z_~et`C`4x|JcsVf+h%pA6QiA2`pr3lVRUM9C2Vz-icJ4ZjiyQx0$2lZZ!~QG<beXx
za)J7zZAEpLHq|a2pR*|1d0VT%`M!i~-GHvtBlY)h?|PVwHzMb?ngkq4%0TpZhdBYn
z5*S;kw332a@4YLf+1cFrim!?#+9_8qlemkUe{~D)t;*4O-<z&uez`WCPrra038}zC
zRS|<vD*p!;E0tKwcP_*nm}CpaNUtD$ChIzp0tW9u^tfmu#MS!n_8-sW+}suo3oyJM
zk1DQmidtH-_#8+S(q0I0cO6!S(NRD%m^D^#CXesO5w$X*8u9pSjM>itw<oVeUlw*X
zvyCDQP$BsJuxM+RIK<F{<>V{-kPtd<uYPHb4?2bSgv4F>ofi!dM>^{d)yyFfrOKaE
z-tuQ#s%|B34OTYOY?GS;0WnVCg7k^DQ~>nkIT@&9sg(SIV#_4a(caTy>k61b&dl;p
zzW@3Blx<Y|fmtmbCSb}e4egZIE5qVD>H0^jUn|cXrB0XO82#4OK6@I)oX*zIGS`2O
zBDcwsYyW&fxR?wbFEVUJ3q%(_KS|D#pBHW=Bd3+l*!@OAzZ#o)C3LYxKZ_SB%nm1X
zIj*iZ-<|!gy&zH9(cSa1`6`)ob5{n%lXG)p{p1~~2e~>xJ|7QfROmdlH=m99hY#Go
zwTJHKAfUNI3F?1d@#|W1QgQ2C%zcd{;BZ%#Otp*Gyb-f$19b?S+jYG=^c=rF#%b{5
zN5Y=A<0T8+DZcWXP{^zQ{C<p5uq=J4Dy7N&`p;J6m=mRxi|)Kfgjg|JxIrw$b|+YX
zNw@cai!PQZx_735Zl4TQ&%yb+GW@<}?`^V3?t21*Dh&A(6V&28;~H{*MIO}!r%w9S
ze(Y3Ai!srtW7X#&KY?*_TFTS%I|=YG4!Mt68}<`7n%UQ4Eg2*y_ott40X4Yz9(PfA
zO^)^~6+oy%xR?8n!zLUjbHHj$iM~?jtuSPN^&y4X^h+2{{g~sr*<6VsIml&iTrZ-C
zx}-3D<yF0&bs!3#(xy4?YUhw`G>wf!kxADa&ODiTwbkl(95&w<vmN(rqcQ_jFf5Xe
z)mcm}?(}<ZZ4Hf2jxq}sM3DE~Evh0e>twT1dZb*RDP)pluh<q3_TSXXvp4eI=0qji
z4S%BxNA&D^yD5~5xuyJu4#^JIG3{R!nLFd1{U*Bln=6!we@?iB8~sO2e<deFPiK_p
z`&v^Y=9%)Rr*${N2a%T4)Z!cr6-nvwXN@s+T85=Ic&@|Q-Q#J7MsI~W1hwx3WI<eB
zrAs?vo%&aPMvgQ0*h41FY<lm75y&jw!#zlRwL9IRPwPHieUQ1Cw^@x)?DdJuyfevM
zKA0<K!(q@uiSv}McH&P)G}5=C)2n1k(%DJd{f2gTDx+1?nBUi#($$mEW(6zl=sJ?f
z0$>0F@Y}M(m5r26>uuuE*!hX-bNN-uTU!2k3#ZGv!<?*|bAN=(J#FUQ3)jrHL6mn1
zx{NxVq&jk1h)^*|jEB47JrGPYt%Mp$i@1dalhR*2ie|j03AH;saOc&MrlpD2=T{dC
z^37|Ion-MK;*HLi3Y@cVN=Q!P6FNiwba15ua0c*<*u>#6zubX$?lICGz>`%nOS2{#
zD({c_5}dVQ8<W|q?!j4S9?aj~60j3R9t1MFyr24)f-F@7I-Ew8IZcJm8+`6Br`V%}
z*Y56aCZS7}C^+r`;ywE|pYO#g4DEK$P9XmE@B)Q^PVa;gQ@KW4qSzVtaA%?pVJerW
zE2y*%@WR{X<&U!7p*h||vLH$emz&)&MkW76055#FAC@Y6&eilTw+8=qV~B0>jvyrb
zZ8cUn^V_M><eMi_ZRE!@!UiipI&KcT`=2J`n)Hwsj+tfQ%HQ<&D`5%3eE<2PAdm$b
zAL$DU7HOidSbn9MXs}-S9T4IhpV@od==_ueo5s%m3Ze|I5cGrjbjC}lN;|@_GG$qR
zzE*_@mdn^dJF}QI6$pGkDTX2v^Vu(oCXkB|ja#ikGsQ%qTPym?MzS~@c^`{7O+~7{
ze8_Hwy{+^bz-P*rY#TT3?gTEv2rQP#XhZ?hp9bX?YrXt1F33OFNHlf)D6X~d(T~?C
zj?Y@u!0l>D-JUKRO>Hy?(N5__0LLmdWzEt=q6>$XWw*DES8<3eU71~8&UJ8lJTi%0
z1tUZ0un#G?0^rS_&9v`84_Pb%?5E4M!0?qb6Q)>n8%9elxU-8+I79U73SH;p@p5Fn
zlZ2PLvg>dIS_8SCUf)plK3+{ks&}^X9&A{cifbj^Ypfk%TdXJ<nGh+um#6(ZcSaj)
z`3XL@y4w=!8z~|DEe(6pow%<qF7=N0DG_QX=M&h3&yXf13W0IwGMe8JVWN)WD<A6)
zjLgjTLBgRH#Y;7y_YNqc8fM?hG-8E0Yb@C<Rm-XCn~0&+2<d2q6OAj$5pZvAE6w`&
z_^)~>=8M>1GUD*+pWt^7%o149Lg}*~)B}u!5XeMHglE|0L{xIC28XAWcG<wNz#P_?
z%!ICSI&g$rclk;V=~=XNfiN)fX0koJhKLdvfAj0kzyJB>yT5e$^q#){uV*E?IIDH7
z?5n8|5(Z<xaY<!lC&^cFKUA^@g|Q@&#jLBPA8lf4y~Ds5`(OPtig`-S3pwM4Kz5F7
zm~uayAwtKeSZS(iVG=cBsCQomsW1j^I_7I!_to<`i^ZV}*W@S{${h{fC#XUVr68<X
zNdwvwht!la4`HotZ)5{<8U97MmnRdyS#MD~61l^Q=PuJ-Y}Z->5S3Ta#~2SvN##(N
z8=cs(h1luOY)0nd&E&;{C4y^9b?OQ-Qa<S3)A5q?ZZn6V8!j^vX?zeO9Fp6qUDb4A
zf)=YN?@xf#3r^Ha|3>x|oyw607b1fo&IbPm2nTyIs(#wrz!)7Pq8TL%jDcR=-7WO}
zNJqi^rFSOa9!g_N92%8`W-**Z6Zzv*xnQe(XU$u=l5rpczl3_U+4GG5@5F6V4<W)Q
z_5AE+v>>kF{r36E&6V<=-rgmFpI_m4`phY)C}c_<bwxXWiHmfC19!A=1JtS%z^Q8^
zj^QYk#WS|~JgCnOI7v8r=lE-A+fUAcnu&RlUw#u?s+Wf{I8n+N$o&i3PMMX~>Dcy!
zmNM{x?|I>Y#kx68Lj;6mSqTPu{G5QEl-+G&Be5x8^y12t3c{3DoMb?t7-*?R4vaX;
z8zNj;nK3w6LbS)MTPZMz4`<0LXE(Ma!Gt~`@6q9dBnn^TC$66Fwz5dAmx(bk|CJXd
z9vv0E|EVYgwCZ$p|AdE2LZ#}MOksEj^jBg0g>KmLXO%x7`h<L`pm=X^D`lur3$9wQ
z@Mk~ky<QNjxl&`&EXLD)^9b}IkkNFv;0SxfptKQWsapIi`M1=;AuGI=e-usXPsBZ(
zatFo@M8F5N;kun_%amypJSqx_9zUUx;Ow3~wTZhFn|P=VC(tkiohMglD`O1AJKx_n
zq}s+~*Hi893xRN$z)McJ_njknQ!p=Yi|y&RZFtn}u$h~mgF*D!G~m-=+n+n#au_l?
zVz-8BHh;(6y5(eLk;!{Lqu(B|(9<*MTUZpE>n`Ro7mIQGYHsV)C5&(Cg}k*Tj+0d$
z5bd;Kl&KZtvMQ1WrZiABPHb(5LEnyh++q-2ZV7oJkqTsTgLSyPv|73O>lpkYuPvci
znkUIrz=1fqD$I3Ul0WCA#m^l02~+^FA(<i-W;a;N7@z|Gt*@KyGm&DkW&LORl*98o
z0S@c3GJ1s<UsaQR)h9h{oKdQ+WysqvYW3N9oC;;it_nksrD{Y(rs~s$?~5ePDM4KK
zBA^^_EFTYv-zWO^aB`=doSa>yI-2$$f>(J6)fsVImi72*NorNJ`f#q~$jSpe;ulF<
zEkK*Ew$DkeE20VXs+Z+lyw5-Cr*VN+bapM04lNB^YpmuB<NNmyHocSrZ;g9jYwUgr
z1w0xr`B`ps#oBd%hgE3}X8wK~l)rE2YHH%ND9tAJ7ZY->ROwJ+2GWL+{jn!u6^3NG
zgi+903)<oDDL&n~X~gGkdY?}mAmCyLX*0NZh(m+Nh(2slW7}s@`Pw-(9Dt*VvV5pc
z;eQYio6rD2!S%N}KpC?fX=Q9|)P{;PS}^YeWO#hDo}s-B7Z}GTAhdI_#;Qye)z6`~
zp!#*)ZiKx|=L~$dj^n2$aeLPG&Tz5@`{3ZfpGXK@J8_)lM&E3AxSl@cNBSYyqibuM
zjqQ7@)4Ht}I!N7J>wNSaXV2C)ew}yE02R&nUi#1Ixjxu#hAFj<6fM9gon)QY)hX+}
zgarH!yjLnEn&TGc)=jFo5bzR%xEX?lu)KDJi8|JXPYQ`YK^kjSWX#SkW)99e{*(VB
z;lD%QVcnT7VnqMv>w7WK%Esdw`~j~kB_pJ*)cBUBh=F_KnYaaC3W2OS+k>vqA(zzs
z-&K0U;1%OV)fhXoS6*JinZKU?3!7xAwKa8t%B}MUGo`K2B=*yt!`hVH-GILQKKGBp
z`@K)DP*@iCvpV<^uZK%FI@PkBzc{nI^^+CKtRc9myINX+qMRRZsoWzHHw)w?kH(ND
zp|tbh%6tc>E7{uI;L1@cqP_DAFWq7lIuDrJ_dOF6Z)4ku)^bP8A-)X6kNJOk1<a1P
ziZ3dQd-r!jm?dy`c+q?-<WqVBG6r0+q4>%vA_(36*%at?0ZY3v^jV_rGEf?s1*2g@
zy+fb$U_CPXV)&8-I+Qpk_ZaqTc!{!17I7q}alKBI!q}O_U@qS-rIpkkLV)?>OFBv@
z(Cm8ga1R`qv3h3<K}`H#Dspb084-rP(}=!nc0#0;r+&v6)|1g$3F&GJlDS}|p;5zP
zj_4uWzL2AHp5CT&jq5k&z*Z5U1uz;EtBw(Y4sNaiMdxvj%k$1wY)FYj=FWq(H-Iox
zwG>CX8|DAcQhYkTTavaqJR4Q2ZLTH|UtM?+FO*y9JzsH8Zf>IK-Q)oyCCP1`w(gHI
zHjJKTys{3}_c?jcBpOfc><(G6c?W+-M<)vt7KqKhM{uk6Z$Jy;42(gZGru5G>9M`d
zH)P<bQw?CMcBud%;ZzA@dFr|mo`zxWSNgZ<we>DOI|ytR%2h@czXQwVOw@TO;j;e7
zt-@SRZnyu&i34P5j_K!_y>~KXp#dX_3;}TKwTllq&`nj#Qa;O7W7lrAO4Yju;abXD
z0H+C0EqdOa8QmZJmUMrJ%cL%*Bw6oV1GT+?Sdh-@rCIc<m79fk*B>huH{mRLKlj{}
zn;6>nOqbV81#uDT@x?FaRjC`f7(}90dgt}_rr7H6ba-U^v_8V-cR8AszT$!s%uU#5
zj8k^nSP*mAuKxEID6b{#pp}&ZEQ0V>A}b7=HmMMZ$8p6YLLo~Z%iujbVi+Pi-tIal
zP1>mbh;{s8@YLPkL`CyR&}R8OjKydkX%Zh|V81^PFxB$sQrC_bYB+oU!7uI>_+ag!
z3rqg_*#E_Wmgn!ECSWkY-aWnAY*D^-syvJBsC|*jtRh#v<L<D&zJSRwU9PTZuV*(a
z@!okzdN_{C7+esSIE94I)0I_~k)58NrcSS2R20LE7rnRN&OdN=?u0d-8|rXmAB-zK
z?_EA{YXO@Y6Z6JxkvyFJpOgLhnceACHjT@<G41`Cf~avIzmOaj!F~mXO8v?3%7Z_;
z@QyZbU3~k_;qd8N0>QA=K^-1H3fY2f?oLR5l~V`ZD*WBApk}VY)=iy$IUDU?9dZo$
zCpNWeb^~`tyyxU<u3C-3Iw-H$X+0<Q9wgWt<bg4~&O3wS=UA#?n4WyZm;1#t8g<s#
zK+#K0MlbBM-LW^^zck9i;vGzJ{2VV6+Tt=!EKzz&3iaG*^J}!qoqJ<s5N96*lC|uJ
zj|VhEB8FCRw2O#{tR>j?Ps8y%i>@v<7+#di-=>ziO0}<rh0qrt9~n!C>r`@fWQMs7
z|GeT`T9ChT=(wSCY5yYxt7mhz<%bDbFTiv><&21(_2*^ReB@K|hv(8%Y*i>%Vk*+e
zA+IN;3Ov|XntV6=Pyrh^c3TV5{DCvb<@7+piJTesB4f4@ZkfnzqR(N`KaNnjOS+`o
zZpa1I-3be$pPjN4<MgcTi5v688pl!J+T!S4`l$KJ3e@k!5aJS|pSM}i71}}{9%ehb
z0>o^>vBb~*tQqfrD|<sB=6%NPAYdmGpfj}!M;y;n7#t9HwU(AfYQv@P2PV{eu)3}d
zXs>uKROmP}8V5R>cx(DV!gf#EIlqUp+AG-Yyw_=@Cn6>+K=V;6*L>RRpeY~U6p}Mm
z`9iKIN{i&AR6a;E0rIScDE@@`9B3>*xH&SJ`_0p^nUdrBhbWdNN~V81Sne~ISit7m
zGMRlUytME2yHKAG&h}k;KA-|-DoVz80ufmS5-FdXwx_#u{@HS<!KO`(SkZEA4B5Qh
zh-=3ERYLCEt&Z<O=m&^Trd=Z&F2L;m-j>MGUXllx-K>3J%K1mH=l4uSPlB_S+zKg1
zZH_Lz20qBH?m0W(i@Cp}#5EYTzeOpvMS48W@7vm9&b(*$Dpfs-=4r4%G)m?kl#-KE
zW0&d^Msh?TJDW>{O(reTtWp>6b`;4HYm4cDuheUhjMf5V1ApJt@XM@}_1lFERug^o
zQ4$UWxH5VN0VrO_i^JCj68;?HlHeDD8?ox-S|IW0BYkP`1v`A~(Z9{*vp8+*Z|YKy
z9aN|$HG>`)+}Dh^p7=A1|Bo^BVz%_vRi3)f1IukJe1G*akt?Gv`ap=d%HSy!_Njum
zm^4w(Kl56rl2*O=`ftG86FajG;7anYS6ZH@u|;&7ht<=-cI*5y>yKW=jkb7c)^J=f
zt``ul)-cyR>OlZexh2Dpkc+J)@+}a?5#YbEemtdPH@sfOp7!n--s$5e;bebA`r;&J
zjbwO&Y}SNwO5=j^^s<WmmEfzCrA);J5~Jq@>2+U!c0Cj+#DVFB0uUPAj3Kv?zg#uF
zgkem7j`aeiyT<z(xYWOX8v*a8xn_{*J}loBXd1aKKAg6i!A0N?bP>IDvWhIi{z<&v
z_(B@0I5HEr@s|*K&iutCrMFSwP&2C2&bH!D(?v@VS8~gZhowPu&ou9zi<5KX^;*OI
zlM=jWuyCID%~_>-4D9=G|HZ|Mw#=F17CC^JWUDy!jrfEDIc^cMEfO#7?}==kGF|+-
z+V;jI?X5wWzAqar^H#yETq-nOqVQ-0)nSEgUt!-~F}=8of}OstC%7XXmdCM=Z{IrX
z5pEm<NJT^BzMZCJe(1>~?$p%z^`B_7iL4R1EggTVNP-{?3Vu<a$-k-~nn}g2*MN|e
zPIE2{42-x%u^6d-Yn6A|QEK87q(9qIHLH4iKN8m*9Q0%e2kn4V4#O*9q}$^tYnj1|
z7j%`?)zt`S3&)Tr)fnaO3YLFvVkeC!L{Ct;N#MN$h73kc*;G%~O4O^%M+W%Tjnx~i
zs)m}r2!r-2$7M+`1(gmFF`ub?TZWAFCWIR+^?2?d-!-p6K55km)fY%n@cu`Xqj5y`
zWab>6f=t?oWPOtF;adx^7|hud*4Eti$93p6+Wa%o23?s&flh@i-5&3)t&w^X<{sNV
z04xEhUh_49KP|{md5!OamlsA;arLMB+j#Tr)bQ6&#&boJlar3pt%iq1OLMX!2Vwoa
zgdI9k3x?Xbd&X*BDV6>X)-w-dM*QqIYBVHg{pX%K0U_|h-Qe5K2aQJt9Y+JX$N9tJ
z7pLu{>-u#sovhU9yI4%J1pfOWIWI3>07+tFi+V=FbDd&sp$lKC6v|nyh7ymW*6TtM
zM>TETe;YQOe_AK-Uf~GQEa({u_cb~wqu}&?VZWr40XfN@Lg2Q2pwx3Ch%a|6!K2##
zu)Z0p_jrM|^pl5C;ZJq|R~f2U<L3O_C2QoGu=Y~++Z#55fKR)G;B&}ASSpWiHGk=2
zq<GM!3CoB#Z5S>SB@a6-E&d;;{ms=N8EEW*nUP<P%KIhfPtJJu#8C6>AE1x7()&9m
zRq_0zo9<moB|9qyax^&S2mS<4;^j(kf+W3THgVUt=I4ksRa4#(ZUtK;+pHxMGv!tT
zBPSjAxj3K%X>z*Y`37Ddp{V~h89@LelGwNc2arHmb3|!^6t;n+!)knLfCI5FoKN8^
zVX`g*ZCqR-L|o_wl?#Cj7&IRcnK1agCFQTpXH<TAZ9S`AXR^yL|DlwhtO*EVqNfl3
z{DqVlz)BHm0U}RfL;kc1=nBPVcO;W}GE_@ZYR`m*0T8w47K>7T++Y;l*q)$j>rHL3
zmEk(*8Q+50M_}a8fc&$3>hF057+4PRfE47sgJV~=>%V+FKiuXx7HO=NKkY$}bZw<b
zYK$pdID1?5Jqk66;$ww_kp5*xc5093s(jK`t4+=FaVKRa)P8d80U1RLLQzbByF{Ne
z*TtqaAmE8oRcC!}{rMK+LOiadLp1I*hSLOGx~X9OODa&LJcjzZuAHy1Z(@kiK=eoi
zYep~JGa?FC8}tR|&zSgb&y3K>5Mb%XUu|bPiZ#Q>OilMlkV$y|E7xR?&y0`D?XFR^
zLa#dePu9;Smi&`|DQCy?)|)Yyl7hkreA=$DJu>o$_*R3tV}}ZV4}oW)`JgBwfePX7
zm76EH`bjOV+2hzYfXb9H!b5fuB^g|1)hIXZT0DBrOyv!7RPM9d2J|sfMt(WPl+SQn
zxd-D~G5^p%i+M7dZb*^k(CJCAKTKeVe5Obq|F-@0sMz7fJ%47ETQ$#c;v>S}h)RW{
z{aF}z^`FuPsFlfV9#fh?5?D$<`tck~(}0<g*gg-yjl!}rc}$i>Ci2%W%5lnu$>oo5
zRPrwrJm68;NTC;>K8~BCp2Z7nsor2@1*|=Lp^zy3-hr{_#rw)%3Ab2#DU^8{Iq|x#
zYS5JQ^xlDGN(pu7xhkWX2qQJVRzVFBl%UXt39P<)KF8hm2L;@yqiVW+f0TAzZ|$y=
zIjhxLGo3V+3<|j4pPoC~{IF|iU_#s^1{Rkg%fR3roC;eGGNrABoAt>+H&n@Q;bx+&
zwl||4aiQM{#;vOB>+{KEX|v+NVz3SXbOxnTr_L^Y^Y7N6c`Ax9qyE`g^O^Ix@Kb?t
zy`b6&%Zv^$oh7P`%(Aa(u1${jb^zDR@?%WX8<NhqUrDcB6cZGZ4k}SA{=!4W&HbT*
zxYl8}<bs%dAc7DkWDi1vKXME|cB|XP6i4;jzodV&eZ^l$Hcs&aH+Q43-3^Xtw`!n<
z++oHlf@>%%ke)<Ft7;cT_!A0;N)>IJN9N~uD0Bztq{P^m6euAcOivS!6e3G(`p<{@
zrXp0<zn(vufG|+J;7XKkEML*WDNzTK=jdeUzTOe?{pPQ@`Z%Qfi;f(@Y*Dd*ijg>H
z3k-ymEkYuqa?HA;CG?;iSL~5eUbCj221$b@k2dA`FAI2~p`n4*7KRY?ZE-YZ6=ZJc
z1!hF%R}}dyei=jDXj8)V&Jox?V?3Aay!cH05Zv#K8dapTwBIC8r#S{=5zbXbPR6xX
z0|4{r-e<U1!qUC(OpDtz;b-)th!2sb)3~oW?mXiatfX=J=y>vX3deINvy}4ogx-dx
zwx&u@)(d9fp==;6Q%F*=$ugdZq)p+g1CoEhm4qJ|Ksy}F7RPh5@_XQcTt28Zl!oHj
zGE%F}s=2NM1ZoQO$Zt?`8_`Act5q1w=MOR~al5>x22odi#qN(#u2$PGEfoC=X+tZW
z0V(wH2+q#bi!9bOG&G^VBc~c&^s6)#?s7;0dNR(Eo#`F%k)U~jaZ__M-oPz1^v7pU
znP{Ue3}%-@Zu(Voud$bZ7}CouLTskeQYyM~wFOkDIOA~K{n;c-5FO(`8<GU2GhzMg
zILjfx&&h_0+?@s~lVidxHA6VE7M_vU|IA>IwR-K+4#+uv3o9R)dsT;H`}<vdvnR+H
zJkU2_IC@Xh<S9>^xUE;0{R7R{_w5UMys4636e=7~uvp$4DI=pC?a#6heMR&&4<TzH
zh|oN>D8K6yo6ry0*_1vyvd>KC=t=O?0Z3r3!)m<^MOp205HYXM2NAG3?v0~0Qsvak
zg(8dAA>2*L$<q(!dfk$b`I8Xn!8C3%Y8DIt>b*)0T3xf!s7g_5<CllMJzan+Cns1o
zGMabCl-5fPGuf>YNzeD6-N&5c*M~Q8$34a}j5^;C75k)8w77_tY7Y@ZhuDS$B|`i&
z+X}3N##_}6{Q#queC-XV(2IWcBT9VWzq^$Fi`B>w0mMk*1+`mfN<mL%Nc3ihAuKx)
zr)d?F!blSRyX1FkldWrR%w|kYBz%!w2$d!XKpBnHu$rCa5AwQ99UA+A!~irv5&r_Q
zT3<e7bM0u9#|mNv1n<6Rz7}a*v>oePh+qBj3$kN@+;0q$o;efVdskMjw(8NaIjd?q
zeF0BAvf!dJl_((|*Fe7=5GB#UfkIV$tFw@tmv9@u3(-I98iW6xPLLTg_($rP25&qd
zLpKW24b*H=tLAcgD$*Kmze1RQo=OKw(CD7T(WQCo5NPc+Nv^frSCbt~paX(#0M%yL
z@u#*x(i-(fu_Q$qN5GhizuE21Mr67`m5S%)<H6D5y^oN=@u?c4*!_$L1b!cw;J%(7
zLS@RR-UU7H9P{V-lh*UAWfXniH~U2CB41|x)}Gs#KCGSa|Lt-{VkW7?FZ*P8F4x@?
zF97+!zrS4(4rS!Tq*e93HP#dyO0dKp(H}2*HGgT@y*mLeo1N6dc=`&&@59A=u<T2{
z@Z@<OQ&Jn-M4BlwF+036Emoa{^3(mctyw|PM&kYtSn(Iw@5^;0f2WZ^NK1=FW=(S9
zH<kb$3QTV6wh6{%)a`%~=>n0U9YNqBjaKF6&sl}zT~4Q7ZL+cvhVaiqA$MoXNO6@r
zrT<&-UG&1>6x-k?!{8dghSmKCoRoF7+UC!m7L6JGyIItDwnjSt$$jtW*4}@oWRsRG
zCAH}GjO=r%kuPtPb{E_Uj4iuPoQ=u|;a>f-5pVyaO^)_gSw<CJ(42_9Vb;Y>Dv%$<
zS-J0*7BwZjgIXJVTo{UN?rw(Fn2ZdLdwwKhz?SOpyd%EEfKbjC#A7~QA61x-EGCxv
z_V&*OWCl?5fzU&Umpeyrzd(kP|9AAxqHwwQzBztHS{dm;b;L<49>qyu(&I-0R?ezk
z9z--+Fu!+`C|9g~i&>V!jd80t8>5T9?)!{9lT-%&3)?MyJlj_5Sim2Aym5Lk_qP}e
zDheLxHG6TD)oWJFlE>_RU6*m-GRFtFcJ!bQtKA*&x-)~;t+M-sV@P?q7ta+u8i~Pb
zz6C;bsG#oVN*`q;K|xW`Rea$Dvm?|vFeJo^v`8E6Y=s~5i{9|U|CanHBPT6x?Nzpg
zvxBt*a5U`gNB-Y})(9qSFDoxUS<%T{8ygH~u)HWXW!I}{nJrAkr_}V}`a+tcGYl;Z
zqU6T#^>2%O?(;<*Eavt)AQSpqJ$m*xNxJI%56gEX4u@SHuJ4Cd_>6!phzRq3x@|c6
zGKc!kaNDl)0ZEyXlMYEr?hPB}E>+iKS|eNd!BOL28<9>%1|Z6z{w-I17EK;kIKBtI
z0H7yX)Z$j#Q^q>T7w(SY{g(!Ri3aAgQOHQ*)FxZ&(PS#+YJ8-3!;4ZwIjX_^jU#Eu
zq*PdWk6qdTzx87W)FzMedd6nqsaj53$?X{U`t*K#|1E+@;&rkxK$2YL+^=95R0xYw
zTEYfwZr+7Up&T62Kq27{o%RWVPxw?XeD5;Qij%lfip}lSuy5dKuHY_HrCb{k6CBw?
zRUkba75Vc5X8kHzaubs$7OjrKe107Q5kUL`$rYr6#e%kdhmcB;cd4V)^MD*r0mf;t
z^+_*0jyV9{)90kr8A-2vX1;?MM;<>6%^D<AY8n-!J&@23+^y`lI@A8z42X*dZ{8qT
zyhWm*GLU4cpZ_Z_$SiB_vHSx@AT!P$=eAcn!>{zsn;5{T4OIvUxm9IwzWUK7Dwqmp
z=^osBYb|j-r!)<?!2;TF(5gcAFYGqH!aPR`9<lA@a_xXMPuQHGTcxo1GO=@?H!$e~
zJ{)%{0tyO4a_;xTatsxLy?uQNAg*w8Yj%>tBdCFn`2S}vsKraq60QhYgQr7{=kAe>
zp#77v)_P0i6=8Oz^ULFo&*vH^AzF96*Ql=UHiWvL%?7I0sb3Tw4!r?(t;f4x+#)^k
zQkBa;$=g9sLmx@lzXx#Cfo)V{gxudSRB2jA0rfxv880+xEPZ%fN=m9*2`A${5qDhP
zO65H}vwHGHk-GX1Pe%w!dX+=1z+$sSK7#5A<o0ZEg?7A;R3ZEGXP)jT&GO*H0_-x4
zEz7cQR6q*br`5gIK<jRU^C-AX^aniQ7c*5GO+uVKy2YD5R0Vh5eX+P>mC`^H#@=(2
zo8jpv@;swz=PTmTXAd@AN?NV@u}0PM40f1rbcx9gjusm3Z1ZN{=Ap>Kvf8{@nCB5M
z7nstBPw1ag5CE6B!)J9mIj)GMk`B_)(vnX-h+sONP0GAtW%>9|`HIa0$0`Ho6s3bG
zLXR}o33?~6QEN|AnRTU2heV{267K~0#6pX8K%JoHPvjHC&d;w~iL;Xp;1J=<&~&74
zZ&1Xdztv{vNYZB5#^8c?M1;&OA(+DnUUN#%M<<^4KcL}Vm}YDz!Kx*q4iU#|h%cF%
zk~Y&14u&f^5Ei33O6?9jB)<GAnFvn<0~QRjcU<ZPsQ`dANaF+?IYuB{e>k?PXH#=m
zMeZ{h8#ybI@|xM^K<QTRnQC-J=DAUHMcBX}J~v`pwzim*g#3?UHp!p;S{wah7N{qu
z;u#kW)VXv3{U%sH1PJa3EQa5Rq+vDJYZ8KZhNDk-NAXrlVOtt3>E{+USMudDI)kgP
z)Hb1W>2^`@{Y&5vHUF7ofqqG2)g}&Pw!4CeOWDZ}CY&DYME0}J8CAAE)xDXbtrn>P
zLQYJ^{@&i-$CuF{517DM3V~OIt2W;AZuowaeLnA7!g0*MTNm+E?t1tu99=~@0a(};
zdj`{Wc(osiiMvsUa*sD(c=#4Qs9oyF?G&=(zw<6i;lwW$D9%Mo?*k%~t`S(lm}<~K
zKG4l0#z=jA92f9s$Ram#IOv9+f(&v-@&_h2shWU#K8imDAKCe={WBvaAp&URXE4_w
zs8V`PlL2)07_etD++qQ{(e2qR=D3H?TaokpdPa)eh@^vO^aJ*MNbL5uy?l0FQERC=
z!YE!Gh1qLRaB*=kD_N(_8IFy&{et{)EuBfNTnW*Z5mTYfon@(diiIU*V+&|1e^w>2
z6`bI{;@92X@pG=1^lvmwrdz_AeqpwYQ1LHEU1>>4L2K<Yej!vlp;O&r!veT}>`_Vy
zPm&+E1#Rm>z#0~bxjO@4Atgj#Be_Azz4z`KJkS|fpBUsUKud}0<0nz=zHR&Lbe7X0
zmQY!Xo2P7`Ys(?5cBpES^{=`{PqWTkkzPzkAD5@n;@l)t(>|RQ5eH|l=893fjozkn
ztKOvs=we>LywZz8!T&7iYAq{EZ#tG5QoGN1zI{@0Pkm)eCI3kEE5@06(nCIiW^pqp
zYI|!td&(Ru(wAt5{;P5-1GQd<7Z%_lK6OlJ&6@a*hlJW)rw&+cbAEfk$9!@T0xBxe
z0p9RkcOkR)oVa#txm$C(213aLI{p4;4<onFzg>13OXo>iNJ}R&0fTEYGnRAovWTZW
zQZv@xJyknK+BI<NVbiK0%uq&(l}}g=M(ye}?2T##0<0&n!$B~X-)n#U`n6B`1s3a|
z%`BJ@`h|+3wzRxD3`n74L=ectE5wg;1*hK^sRS&7)U~|-COv0=dgQ8)(Ts%;(H8HK
zX|IqDgZh#|CoCp$xcp0Bf1Zqy1J>lIG@~Xrw%9!WQ>Y6({y8M~!7Z{tF6PHn7`fMi
zUEo_3pVC2YLO}t=<25uGRW2%Qz;3yQ$cp3sB9ZHEmbThya$UzvP?C~*a)>M#3wl7X
zV-H2_%lzM|`}j>u&0qqm3)LlX9XULDzFR5<aU>``DAN6dnZYF%$F7iSr+RP8`qX})
z%hu$^%Fh}n_adjgO7x7^WBRzbor!XK2KpZw#?d9Jv?4%lQMB~QkXZR`s+xiuXN}#;
z8R-`g*1=9y8?r0FNmM})^uEoW(hoL+fXDw0vg^gDj#?`XyJHGo!^!*gFU~^R9lro^
zHm*0V-T|N1vU+iPTIu{YgAtoyoNk{{JMj2=Nm5pNXC={>v(D|w2c0|sCQ~~uy*o<0
zRLI%6&PNCpy$okI??;T&J7Di*7Zw=8$kYg7gg%WC4>c~uP?(d26)w_+{cge%RmVUC
z>?M-h<wF`S!-e%np5T{jsbVFKuM?O-AZ%e<&&z9?;3)iPT&7%)CD4S(lbh@ZG9<tW
zj5x9`0y=`Wc81FT6E5D0Ozc1!O@de-1Vuj@%OkXY@4nL`2~1D_r|^Y-v|KKE(ZtEW
zeyqEuD)G=|)3+*BUut%91TN{ikL&zeaT6AE<-O%1Y;qz*Pz;61<h|q%AX?`Jd^_<4
z;>BZKY{5VGj-arTgRj)rj4ldK?W=>{uj?!)<ZlUUJ9SG7?CQW6P>jYZW%7_tiUj%k
zd~4Mt>kRbs6qeiWPXvE=?FV3Ltwhi5ql=ZRgOk%tXC%&0BVZavXBg1)u*1g>T=X6t
zrPy`e|8f`fOA^;lB@Tc2Rq)+#W@pXLm`ChWNY5LJ1$u?+(S1*Rk%1rV6J2byu`;V*
z0U5iUaM!tsRubzdkixg3UtMub01dtyslY)A{-!AYFE2(yp~TdaEa*#!uGifGgdOBy
zfB^@%v%r{$#g%ljo?No*OGBn_Z_(}hbGuUSCdiPi42shv{^{}P%5(YNPhlm-bGr4?
zMay|sX6IUR8+1-;Ww-t7U9gju_3HKL%fw5K+o%Xrm~h-5g5i1a&F5?A@^9VIG-5Cd
zu<Jp^a9qHH`b*quel3L))A!*G`e)Kjmf&m-`^f-44~Wvr5{2xvC=D9G=k9b4+eVA$
z*BbaKE+r)tm|$c0RMC$99su_Q#H)>T?*oltfuA`tJ^1d4GtgwpvG|Vz5FX^&?jD~j
zAA%O;HVF~{KW7L{YkcU)QwtXZFxPa2A>3D66_T4HpLbSPR>trUU2Hr&ih9a7hI_Zb
z^>(oO9`AgS%1e}zr{g6muvPYtA9()ZDPWKOAw!GR1{-X)$mIYN7NQ3uA#{avBA86z
zs?=I9)@^Y^u~Hz5kPuIg;2=-7AXt(b$yJnIrF7Qz|9U|2_JO(1m;T&hq%_l9>3cPb
z+)p)9f%l>ch=ujJ=-Jh3S-CKSJKn&b4;p`h{vS@pKcn^E?)+~Fp+kAVlcl<&)XXb^
l+8Kp^j_v<^x5M;?Rx}~7uV>P~`XBI-5|b0H5Z3qq{{SRq_YnX9

literal 20376
zcmXVW1yoeu*EZcLDKJQPgT&AX4Bg$`J%e<EbT=|ccL+#JcMUK|iXzR>rGy9{zyJHK
zb=O_z?z?+Gcb{|aI`LW>AbcDu93&(pd}Sqh9V8?)$jkT-7V67Ae2-2Z2?^y)OHEJV
z<&p5Mrh<w#5)Wu?ZGGd%hPk2!pRA_5iuTL3<L<;Ir}_4s2CbOt3&YFxLPX+K+}zy!
zKZgGv|3^Oo$^PH?|LFUm|8f5B)f1HMh38sH?Ee_PZ+`#r^T*3wUPbGL^8Ls6Q$5KW
zRiTZa8_&vI2q*Cu*%y(28eIEIN-yJ$&5dUj?tMGS+kEz$JdW+1?VBLS7Y#4;|5Nz<
z{CstN^$cZu5r0v_%*?k30zEwZ{nXrTU}{4#2Lt<sZ0&3-YwF+L-B}q)D5~i?jh;R}
zKKk2=#-5+=?eE|G{w=$+eSUe_-#?U?l#Wzb=;ZE$DWraSc7FS%T20$%<Hsf~$l|#?
zJ6;l`sc%+MS%an?P5{)InueKKJKhzgdV>R~db$=Cm!7Q@pOb^gWsMGwPM!m7H}?*o
z5qo13Q%5H!M(;laghaY|zZW(2tZ!`2EhzFz$b0T-O3%tK{8VNcoX9BoE;Rf@S5IGa
zYkNs~Rbpyptc!@J1#o`tXZ!H<SvCi+zO%HnGM=EKv4y>$yzIdA!tXqGS-bZS1?&O>
zk}T@B($Y%XX<U<wt2486d9`giMi$QtQxY~#6e9BeX+^SHhPICGkueFXt|69oE~~$G
z!g9)<^~7XVq<Paa<z$oxhsPLdYn`Gp+B<tb6jnF&j>g2NOvmxBByvj|TT+dW)zmfV
zct@s|H9p^5Rkru*nOL=j@K@H<i+KBLYfBdTynXZK%TOe*KxC|gt9Q7)NL_%CowMg%
z0`K#W)pYl_?14360im&HXY7SVuRg>%ngR`WcBn$a7(M+ZR#u+#<Ms_@hg?J>kB^_5
z$}AF678F3wZo2K(66b+J9db%;bxnwxyyvO*?xyIo%xG#oaE=tnK@21oUZR-aRxYa)
zvAu&T<EUQ)lbxQn?%COz9<v`hGW)VF-9PZu)nw@ExBBs^>IL!A5FHI&B%;mDCo3$5
zlRu=CJitHprkZpke#*xYuuk}VUGJyyD*tXf=iK5=>5LEItP%Z(Pe+zAG9UXtX-|Jj
ztD0+)=q6G`LQ<nrmY3D@UqAVAtZ8abGjJJcL}xY<E@)9YW~KHA^A094cOKqsZj@?X
zh7Mt_k1N$S;emDny+o^snP4XG^bG7LW<^>3<Ld<#Nt*oQFI)UgOY<+ucm6fZA;b>E
zV#z7FPuHJ{LVqST+uQLzsDC=Rm8c?bb%j^)zYeQ9KPYl%XJeaq6LUyPN?Kn<1eJr}
zT)kTe$TibTS{(gN_8)z>;5q@@+v8nLW?D<bvK)lyGdcDELjthMcJ80YK+SH2hK{L8
zoW@hnBNuX^EAcykbN?Hn?@RItiNX|swH%D(Nvu`)FBi21_ELt<A%^JMmOmacv%Q-E
zgZrhnQ9?>Qz%&d)>jVulvcWxaVk2Ib4kRCu6UcHLC6tq2;UJhJvXz4iWmV<O3;F$z
zQ~T^L3TVKymR*3@E3y2N!_E%d1lXP)+7g4?kzP)lC+6dyjCHd_4NEk=h%v>@nt`kN
z;DWN996p6ACtR{2G4h-GHoG@i1CsAtd^mvDo8hp{LtGg;q$)Typd*?CsK2C#m1{iz
zUF9rC2F)!(zu?`%C3h6h0M3`-Qg11oYeZ6t=@1zdT;l>y`9_)CHSZ$ZSi3PuVc7WN
z@5j$;K@^9ybQHT9kbQOa%eqY<as;Gr(OY$*wCt48Zx%%d<UB)uB0j0mwu?O9yG3_*
z@^$*_z*PPrUIfqQ`u^+qhegU4H@Jbh3wg9_ZBC$S3YO|xc%&(yE2_V+XlRv2?rguT
z>-#DiC#ZA>Q@>o(R2!N!By#OsXfgS!`_N3uc4&UP0*hNFt~M>TiDO#)ep_W-*~{gv
z`e&Zc`-+e+rG<PU!=GU3U0fxJDcQ9tL-nx?LMJX|wb$Hv&7(`MW7`RIZKoK0yLk-0
zV#I*3V6cXq(9j*66kt3=0ad9jKoTEysz?8tH7M1$u2Nt(pCyWI@Yh~y@Q90dHs(-X
zhTpEh9v^BmYpkIQvBS28+-xne;prrGKhW2Q`j((K!+jh@9!AL)pBN5lnJ5lqAp7)V
zxh1YdEz$hIgL%r-t95zy@|7E|k<<>W#JV80?|?YpKapeY<Hn!<9o|GR*iaSUj^4pv
z0gUBdLphyh{Be_XvrZoFYP-Kh8UUQPc`HsuSq;0X)j?>}oUOC~X*S?1jKg$@JSfLY
z5!4gVw%ejzh+!RFTgzpnUyy>nenwX<mJ;sq=A)IpI1o^L!HPG(HL_pEs47}!yTr1e
z$tUM+5@|tbPqf+BvJ9l<BRBN-OV`Kri>TZS(fLHZfKWP7g@m>)q%)T<EHnja3^0s3
z<CS|)(G}&dWL63zvlw>&<FSp@H%KR$uA?uL-I!;2QEpVGYtlg2l%ic2XlIxv;P1Gf
zy?442K9=n7Gul=_VPu>Fn<Vpe4Yq=J)ErK{T0e9m0ncI4RERd`-+z8sst_GFTsFD-
zfM6*{B4`g+EZ}IGzM7D5v9SD&KU%#h-j@F&^z*QA*fM{Sw1(9>L%`_`t<m|$q-FGv
z*f=a&p))J7X^xiH0I3Gxnv)NMho4xQ9GD0M`j{7#{T53nvD0z?#5salj=Pa^9C`kS
zDo?Y+TVMzg3197Sj{fw=jm324nS}+Gec3cEi(5UKDDBz-F~N=&aYGv#T%qHy)4`aW
zJrq)m#Z*@aP2!Wd?1|jK7dZGrzQo@P-MrT>zlj2hp69Qmvx|H(Ya`L#aOL`}WUOFN
zwv!miGSm*vS!>dM!>J8AI(U)tgR~#=&KM^wA$`$CpNazRk7nOU5s$m>iyJN1ON~qu
zUTQQS_*aB780UC_##QveM5RVC$P!ty0a^zrEt>U{*=IzX5}x@C2ln*9V}mMB5(+7M
z>;Q<$eH3?!Zv7bY`7rk?l=H=t_|{IH4JV1+A#H<#>_e}ROa1tA+85;0LOBxtxzSb7
zhSS*-g-$uzua$VrPeiIUcK%f-smHB1jwd*vM#*#<51x9#!Oeo$3M7Zw*xd3_{yLI6
zhb`(N9@tiizZ4?R*R(l6VT7qXo1aYZN#9#43{8(%Qq0U!D1QG}YRaV$)VhFlPP6~%
zuO{IvZtFwX85b_kZ@a3vOwJ#n7OCH9M#&sSfn&^?!^(SNz^|f}gwJZFVkq*U=g0h?
zy97)@VgGE$QvhM}j~7fcHI{CJzJ#T<Cq(^T?m@9}j-vps<NOo?w8!Ks5$UXNp($7k
z3xrG^GG05=wVy)&y2frB7QDIputcs0%4n#Z>+%86p%gd^O7CvZD8%C4Y2+5BIO)t1
zGyK<`_+Nj8*siv?#2z(C7@KSNJk8v@=)DQi2RXP!{^&~Z>%c4caYC^C66WT*ajf*D
zahKKt_WHW8UYg@jy=b@e)gGfO`ArbfQr?+tR!;8|sioO05&xyQ5s&cTlp=)A#qG4b
zJAe2iqY{K?Wp3`bCmnFE_xDAri|3V#uL5RUW@<H$rSV#`j8s>543>-OM{k<%#+k{7
zOdh9{x;IS!$<^l`rQXmWN{@qXhFPhosAd)>KT?+t^KF;l)lM6lPSXA?%+O${bu`~+
zj9iN&XgyI45gd0);alj^3Nub=>@f)3?aqDUYBjTPpV&Ar*!!6hXN`5-35GrF##NKY
zW7#Zj_#@bxdA(VN<RF1D(l|k5dpSiKXHpoHcSs7Y;FeiVgfY4qFBRW=Cokz=bk1O6
zgS-Bavtj*PEiL0}90@8Ob(V7S|M1O@6G(Kb<SrO10xCSzb6YqMT3_LSm7Vup`J*}}
zz%;XtTfPsJ`xUT^f*~G0>+b}|aJeP3WFb3?k79;Dws{&!)hp2ryzO&JZGWy`D$w2U
zV^KoU^Nb|LJp0BIhs!cW`J@RryLy!skq7MO%zVEJyDijkfg!B-Vumo!+_?RV@0ujD
zb((Kj?mapJBC{I~FB$;t`I&Oy=md?n(8*xyHW4vT_MmZB`2&&KYp!lO#iP@u57@(#
zim}*>Y6xd<XR@zDk#gw)KEDUX3a*D)EeTyq?pyCw8-SXdki{xjgYkfi3e+A|6_swk
z{>zj0#b>10;Vq^$zF`U@_-Q$d_`;T{IBV%k3wp80uD?c7c0Kd1Nr>seJ9}yAb9=6!
z*w3XU654EJvn|q6K_$V8Dts@6st;=UMaQ29_szoot)NDWJvxHH*Pk@&X04?x%YeEd
zyI<v~9httqFB7S&VO<o{>T-D})Na1D*wvRb*MkWtrjR3_471w!c^Tw(?%#X(xU)qK
zY%Qi-8aEgW71hv<gE7r!HHK1_;pJc+Ws!GCj~ce9Q@azCeO(cIv;?;rKn=6^>n|;;
zz@JDv?0$AU!EpH6*<YRidat#?_fB9u;G?tVzl`9-6fSIXD2IE55Ka^}$Y(hf=IQMT
zQ4CD_z~%451GJu^3n+#qOfE?(3xOJ7<FkRj1Yyk%zBC}ZqPnGk^+P7u**W@>D^nD~
zpMp0&>6Q!W6><=^kh40%ZHY^P4#QN~_sZj}1m=Q?9cYm_Ee<y=^~KR9Hcw1;Q*Y+@
zyF{>Tsu++&HU>nf;P1gN6zCS-;pPUEfIabvQkc-3*o4uV;j~yvEdH4v2?vR@3r&Qs
zAC6r32SXgR6{?D6I%QjXCFA$``om`Gt~cwVgBuN4y<>i3)NhZHmg<&j3PG8oXd$ot
zJ|}Qqu>)I}ydW4!vxNs?PiO07ef`;gl`PGhAs4tuYP{;CwAnI?K5D0OL`Y{QhbC#V
zTU5VY7Pjo%0T2ke-aoM35+R+YKZf}LmkzM_aUR*T-oMd$?^AonMVMW)qy3}e%Ob9H
zCT~S4D8m)D^6BmI()|^TVmY*_74(6!>u+0c5FsS$PfuleSt}+)ohj2qb|)~$ECck?
zlD*4FbjpTDeI2>zfnk(&bw(H|3uqvBt5;V}3)T*@E7E-~kU;W5zJ&^fSZrCfCMtjv
zHS&Du!xw5bhhEOIVQHh)jN5ORCQSTYK6xL9U9N@eV7c{TejH2mpPEdd=EYvU)%XoR
zrMFQOT;U7+2F|zQ$`}9vDa>Q&)x+2L7YI;7!EL|C<7feAeU^P9rQlX#X!Onmu4_YM
zk{4wdBbGOdL2?Q}&Fs0=&!MD2&l)L(>WeSMZAh3FsUGRKT*2o!VDfCzu#B9^$28Ki
z-VzKdl|}tm?(5+dR4V35+$KHPCb{GroeHvCcfS%65=tYt8{-l@izW-f`%Hob!tELP
zu-jki2PwT|jc=aAp7u7>D~8!f5L#!I(il4d;)qTgON4?`;{993b0OGZaQQfJRjk|B
zV%`?u`az!oku^2)76-_GmR$l%E|~?w>2p(5cfVASx4C}p{Nj|ofD<agRR&0}tF;o7
z2PPaUSAD?jdyXFw{{)6_;qI#unRNWfV|LQT<>lRM)zD>Nfj)sO#V7@n1cu5<&c^Gd
z)KV+k+SAX{qr$bjT`RyH?0|==IhW$>Pc&wI;}b0pL1r9KMic$(qPjmAg|;KWrd|)D
zajE6Wh?Gx@5d|1Y@@i>?YT=hE9<<hDOuw)Q=~aj!SG$26k-#csJC%xsJZo6+r2pfq
z&_aO5Phx>ST+8yN)URWkQG0j@wo+CA?fX945pl-1@cXwWWb>4^7&$xNqZqYYtpnO(
zl^qqIMWM)0VHPNB5Tvx5Q3+38TFO<$(f9R7w(qm$V6X0=0N>gS`W(lyF`9g0{w`f$
zr%yJjiiP`#SYC(v@z-!7$rah80~tpe@A9k6%*+uMb8M@--y8w!e+KfO6d5c6q~owY
zj;Zn&qs4Nv^bqrrIO|$ai>rK=lbP5K`dml{P`D|#wV7=VwShO|1;L0AM%II4(<j-)
zjrbSF=zRZ{Gw$Os@?zDazVIWIvWpL_BUBvCZ`CySmS~R#V~5-R%`UXKmV?uQG#GMn
z9`j;vdMAtz_&-uDBM-zO+s$dAi87p$BS?*k<Ozy^vauL4$khr94Vh|2w7hTIcWvlG
z4~b`a|8wHn^Dj#O^U-$>#3KwpNaGUT3}0N43=x@(sD_-C{1606eubzlj2s%^sEJJx
zWT2y@!&+uPInb~Z;?M|sq{9{(S~ef0+q4fhe5MosG{Z=O!(XW|nCiT)X6U&}O^2~r
z4JESCUGd<A$Nc)L0Ng!;ot8CvtMb5H0{^QMRCdeqzCr~UCXYTQOCDi_u*gFYqDEvA
zRB`6DD^=n1ZMEZM`<>as^93qwp({s0?_J(vP$ojmNDzf_W8nhpo#4;D7CSb8Y3G)H
zjx?1@wvP_JCb$)g*d~ipsskl%dhSqBne)-aESGW;<*I);dj8p&DchP=lbZ!!658hy
zCM5D)B>N^S%HoP3N6M@w%+NRJnTAi^Cg4C06cz)-mw!<Zhj82Pa6~9G22GTQ#9~*q
zFDFK{{8#G(zGEX>0GahRwgu31jgPrKMk^OB&noDZs|}kIp7cb8Uh|bRTMRqBoJJYw
z-D$CIeTIg=Krw@_Hxk6gn+1BHBcNl*QVwlm{f@*l2&}F7KPOZ`)fuqZU~vL=ZBxog
z6v|m4`yhlw_eXeufA*uk1vjThHi3mxI#MJ&@yMI-Jpr<KtPk#%FU``|AVYMs*}!e#
zsPTF@d!#a}m>sNdQiNE;NM+w_fE2#R=IFdJRL+==N_~%X50eM-rvGyAIanmQ0tZJf
z&A_$gHG$vLV7!Hp(4FIjR+UlQ<!>B#dG&pYUh5V>Om6rVyz!!p1y{}-@#`5y?Jk@6
zk$*=AaRS*tY6{CH5T3PFEWduhRkBalkVK5Udu)^oDBdPpGXQdK!0xmg%fz&xV!u_w
z5p;0tQ;F;5DN`p_GzOWt`r^a_!~a?g=#YISTO&&;cCPV`{+jsMUYD}>bpK6-;5%AD
z#0B<8ax%3erP$Ed7UXCYs+e<T3U`?+53W6VzCX7bh6}Ip>MZkNHLOswitR`OIR)9R
zEPbGw&=_OczQM2ZOi*<B8@^BmXvEPEGvhCeJ`U)(fIy{I6%g@l8-%OX@V6Ya<L)HE
zQ<>*BpQ^wfAnb?R4&VCF&eUfIV|C;8GzF@8W5$GK!RoKa=?>dv47zIP9HqaH0>6o!
z$b%~0g0n|>Lql`Ea5CDEGC(cxxs=R>;q?64Ci@@ChLClE)NwjUY9Evi^yRxyA@eC(
ztet4bg~K0p{|h`;BY&kNR%zU)_27%cjPybw=Yx}70r|-JJq1F-xp0LKAz}Fsf5muH
z-4B5HoOPmY0ra50lX#>Na#n7nO7<;kNd^~HA0ejaGwy9D9Fml(0PUPm`d=i?%!@)1
z1<S*^{s=V&l$ym7X!@%NB2#C{KKB1%Ee~=uSbkmhHXUvZI9VpU+^zlTlT=}wu$xVV
zs6Rd(n&w|-Tcv0`1ZjRDNYM+thfEk0<=WmV9IHA)lkBW>lB4W8P8Y?n^W7svUcC{b
zI@TK(d($EsD=;whYHTc}LJ-pcUYiV2JgvyY1blgyFvA9RnI=|e`(O9-@}h>{$EY0O
zPvh9|#ocUz)_p1`<CA>|m*>k=k|A^gOTxAiGdKF>GAu2XEm|o$B{KJudwb};<iC9Y
z2)-uC_^`YKMk_`rah2);R-xJ378aZNeW81Hm{@zOp<)I+QIthl*E<)DT;QWHJU|zf
z6V8yS(H!W)Azv=24QBebTJYXx0$iX8Oz1qXux;cF(WwSyDINH!-d_4()Gl1yU!t&E
zgTndbUOEp(7^xa<JNfMQ7X-$L6x)RlsD5F!JyCjp)eTqGs=~l`+tO`lhUs#EVYW(b
z9|h(XoG~zJmU1UH{F@V5Jq!iHuuuH;E8qc*ft(5jO5<;usQB?qpsyy7=*hKGJ%s-^
zXE6W*spbD^9dL)PW_o69r5CX(xXH;gQGHgzJg^4-_$PxnU+lNQEb2K{iS0)RO&ZAW
zHGZcfa8`~9|2(W39dMi`deD|CRoaz(dN!bd&$ljWlZ31<Gh`8T%Jiy~Dar~|DPNI^
zulM?lnE~*JyPI^N{$Fn52iAFJb(a51vLn82bp5lg`-T#JKX}$rG=pU8JI|+_A82P+
z!a&IajrzuaEGeWFufMsta;-wiW?ldJ0gf<b4a;u1#dCQeB;G40A^%Im1I?Vh$8@K(
zrb_Zn+EDRJtuTP?U;>y~Gv!G0!FhJqdLy73L)@4lJF}*E!=HRBY^hO_P(9#h2cy_8
z$auO4G+o8VOuD9X%4}vM>-(Agj1-1I_!jSXSCS)Jr32H!l)gdG^n+Ak{z2~F>i8me
z&fDDY7H1@-xPp5%tY!6q6?1mKH&=wI_j0;&FZ;hfxryKwkyjcB=Bqt_Ls|2eSWFdj
zs)YOlwgzX!hJ{}}w1yZd>F(tliXtHIW)Qij<_XI)1X<9l*M5yr;JUR`jvb<$jVUT_
zr}$jqvGK$**=6roEp|7z9t3xG_gP%C;MRSD_?MeHf7CHP?sQdib`slWaDg(W2UlZO
z_m%Pd<;PaTwdMx6jT9QN`PI7EYFKnb4r77x|C(MdLC<usWH<B?NA-ZP#M@{xI7n~#
z_ylEfesjkQQ5fYRM6Jb#KL-31T6th_LQp_>CmIVXLZVLCRa%pQAI6dz$I5DFu#r`^
z7QHnM%o4e02gg4F_1@YyBGIQ(SrvtpmE@FtRQjK-10n{fqcsP|H|AQ^gV-NAu%Cjs
zb@IURdzvXRHf={<A806GzmNj&AXsSn_P}TrFCqqeSbb7R>#nlI8=VrF@pYCk(OjAX
z<QaWHPSydwr954Ytdd@t^<RN%yzXA#MDO;|mPqwmA%c%35O|RbM>|#sGaJQMgZ}T9
z>0z>(k4oD#kC&2E2S)4-vTs$2sOZSh2oTIWT^lud@OVRuF8*-;q*(f;v=l5B%#1h{
z);eUyJh|jF%&Cvupts2o(uGWdbXXS?IbW^f@6?RVhqmzmct8&KGjQ-gYeLp%=avJn
z&sG#Os^NM87mN6q=)mYTp~`^P@=tlZd**m{R>>r`UhH@YwMM6$-ME~AFX8miW^C-k
z6x`SR2(|q~+XlW=s_^5Iq#9P?S=pACuu9Bi?C8?VmVq1h%c+sq<=0Ggfq)$_8>p?4
zL1zBS>7e@dQLQkl$p3cE_~BCW{RcPZpHDi#GUT|Dw&sQcR~nW@Vx$FWei$dGRN-Qs
z@tk|H|7Dk4M6?Xcb--hfEmQAQ&2SkudKNXPhiJPzs+;BCop<$oU8y1#TG!WexI=mh
zQy|>B5R_svJkRYGW%=`AJ_7DsmRtAc*a-3K9kdW7t1y8EFP&ifSH<<_st`0&shwtl
z37-BkowHE1x&lGb?nEJV;}LM<DnDe}pf7VZGz*cy@P!nbnIe@cBvSWk=P^2_m&A_O
zxM^7#uM%wHJjbWU!HO@Qbt>P{R?+N%xyC!Z?8{EbeRzV{0KTs%6~1a$iIp?P7eV|}
z%D%fiRb7;6R)OxqjAI;=39D$f!93#~9<cmngj|X}VTB+$Mx^iu-UqjoCGw0z<#7Yx
z?O^0DlOYJ>s<jj=m_1MsHw*GgEW0-o_Ib!WYB3N3b|c7oasN*bcjYg#!3OzB0ewea
zf{}mtjwOwJS{Qb_THmZhX<!7V9Zy^1&CK6KIbRpk<atW=iM?l1eOXmfrR?KKc<fnw
zJvk)e#1_JC|B=&}4khd;*9TC)P9IMec!QQ8U2O4<rbAZgh24a}Ix)o&twR8Xh>VYb
zR)Cepo2?^|W-JX86pYW7PX^Hdo3*pPL|adz`tiLXdWQfOvF!NZb<uv?kP`|UT=a_X
z^<I;q^uLSBwEwEr9D!%a{jL(^#g1zi&=Lh|qGauu0?258NW-*OLyd&TYe<)~p9$o?
zg!n9g$&bI~F<2p?Qb|W65oqrtQE-dOoGC|(v4fNQe%mHMPzm%(67lG&+QN{G#WPwz
z1K0vf<+gh`gumL5rv>&}7pqP9Ka{-wUpbz7nY-R#p!>bzUgSQF73-wW|1=b+i#Ang
zi+j+6-T&lBmy)<QO9xQCDc2oM7g^c5{zOY*CZ{QViZ8J;i9h+6z5lM#w+QT!NjH9`
z9#EOND)#@mXJdY6f&bn{njYpP%`9BH1GC;~$SdHp`4xv~J|bz!u|qPNtP!L|%aiAo
z;ImFk$Dz!WIln*s90zsZJ^TMT4{|4^3Hngz%^3F(bSSE>dAVi&;-T-y$ubfL9$$=A
z2nJ?q{Ph?UgNh(Fwv@;H*0P_s3!D0S06PUIDxH`Q(7yUFIkqNu@1e|J`n%q31!8$c
zX^{LcH{WI(@7Ts=yzuA5!#s;;M*@8C+0w1Qd|I0ir_*mY7K(tppgSd|_4)18VCSI{
z$VkM4*Y^g87nij}hlp(uX}uqBT+MNWP;z|*?SG#Qc}jg5&CI(<*UnU7RGRmlbCPC}
zDzA%~{&-?1e&pgUUbYQZrvs?JY~l7yg7!9Gm*Kz2yIc9VtqS{Ahq@28)kj@d^81O|
z5S@Wvo3P8vUXbI~Io7ArxYKvyVgNT2u(g=gb}TJK%bNUWJhY9m5XpI{v-wknb^8r~
zGS27|!F<(M@FM^KXou&2%sb2@amSkVjW*+iGHSMR#4;IV1);Bemf1fr*ZW$!y!GAJ
zLg6n_8&cNH$5pW)4(I}0olK?dtGCZC;@_z(OsoX<ms2z7-CH=~Fr@nGSGq;NQW~da
z>?88O75)yDgCmo@;Kxadw_n5RT<`XeJtwNBn*_w*2f-=M`nZ3CwhKRUS<11}w&cRG
z$2@H|-k{0Raz;0g6z+sYOAPtcWWYM_|GfLgJJtgj<K6MdhV8Y%yS6|48;i=lHygO*
zzM|0@GIv_h67lLIqNdE9%mu_Rh(7r;$aZ?8;%_QR9o%p^y78c-M_h`+jRSa?Vipzt
z;RbM*2&P%evYqp0l*D|oROlJZKtbb<g-J|x#KN%!dM=hHf9NSl3>DfAsbW&cm1X7<
z+&__cWWOvqFQ%#gP_NvZ4NkHlFjd^pPha`SqQ)T&MAOI8`z#tne(YsKu|_Gm3-=c3
z`c`7<B8oz^EF&J?keRgb#sjO(wOOHj5!tmz(zwX*QaDjEOG9fe$NyM<^;kmnt71JI
zQ6I2w9r8C^wPLu1b1X{aL<Dx*6{V`hflK<#vJOZn$Ve>PHIiSKq4dR%yr3EK!A3&?
z@O^lGJq}mK<gjY{iq@RWq_R(zC(o80-lkB_WB*Iv9JnQd8lm@>%FbRdJd&s4J+rA?
z&wvd%8^C9Jp|3YfL)?34Q8SZJY+z(<G1fnMLzbla@0;3;l>R^WjP!|+jli_v<XrPE
z#vXw`W?y0>T3E_{$ov^jqkn^SB&K7?^o0_}g1|3;?%op6$w}0|K0hd@ld~-k-Ndz_
zQ3c`ACDBA$|46;-^(XRiqF7ZkVwt{G1IoUdkVld;{UCZVj-_1th?I69z_NBHk&-Pi
zrdqXvl>wCh6I^csyp?9^(F4YQ+P61c>8e!!>@pW)5Laey#Yt1P!Wj)&+CWDChCCXU
zr9lxL*YIJTn5x+GLvf-qW`*zO?jUa&O|;(4rZO#(N~BuOc{*hETJ%sp>CS;PjB3_B
zo3@)B4XCQvHihRDI629msWEYPcp%V##0oHO%I#^h3(c>1-}c;6cO24)OaU7Y=Z}9M
zLGPTRNYc%}i+5A%eUeCpn3*KI_{$fowjcg&Vc9B9nUyGFRE2d@kq%Y02VPu;Oy3j7
zb9veTX|HyKT-EE13QnmB4o)-MsZ>P;V2}t1)DvaG{?UtwU<S6;QG0YQAJC>arL#tq
z?!H$5V%GM3L(TVBqHau2$(z4y`bBYbEAnahhZp+mA6UIYEbxl5-GtHY%@gRHE2BQm
zKw0$CZ%ix>|M^S{QU!%x>?U4q>JP&1O8IFyS~^S-$rZ7*I#fDNN|_$yLmESALs~cy
z<b;EACHN<!Dk`h(8M>OZlJ|~x4nI?a9a%i!%Iz7-(iEAwB4wN>vFE9`j3SA>6Kn?)
z<9DLbA6T+R3bA@0wklL&F+|YUijjtBKSE|?leAQH%Ju3jRMM7`6{a_qI5VWX=Nk1^
z><n)T6Nx(Mww-q2?7wK>iK7aM5ENpl(+6c%k})*whF_Ff1gekAI&OHNa_y|{Etn6S
zD{K;eKMB)yODoz^u%m|p{$RhK%+ym9&X5CIh^QW1H=PF=@=P_Zq7(nkBMFhRK|J<-
z^=_c>7^3!Wg)Hj;bzaKBFDTd=$!yY#oUU=1D*e@;d!pSDwzZ*T!#{&{Fkd$!=EnrU
zV)5t98PqSyuLweX{ly0De?%><eHzrBwtt?so$w3W@uoO0iOMFnP!$yH7+Tk1jS*cR
z+p?DvO458TOOuES+s)0|K~uRdNTzT!Qje`>8T;A!DlYj(DA7hqX!_g&__O!ZS%n}H
zVWGX@UfoB<w)MPzC-}L^WU+g2mw=R?5Pjhv`#Kc|Y3G&hSKVydJg^x40%lHifo9v_
z?kilEn*{>!Pve@UYGD&x!?D}zSK;c%u@C9l{F)uKX=4GTC+&*E^bMF!I9b^BtV+or
zz>ja>=|gT$zs=<5hFiY;CL6%EP=alb&L5UD1`K}67Mix~gA~E{MALAnS@cqJa&ics
z8GC_WzCr#J$&s_l0sovF%^_!j%hbGU4<05+9!Br#;Xg_OvhNRDcvud;hbo%pqcjx@
zbmzBdt;8uDj-&VgQY+D1!kg3^b=#|)eEN~5`0RFh?u`2;V2s8GrZ9%dWBvLe@@Ghh
z@AVcA4_u%{BbZUESvmH$1|I02ZL+w6Iu;xOO<RCVDVhQMr~QNM;9^KHF`0A!GZ~;z
zqKd5`dTlABvxmV;e}eh246O$83vWVRX<YgJ5=;}B%6yKkmL47W6s^%$J3NWgO3+Md
z_fsohoswH%z4Xo8W8^D9*SDx5RdiVYRYz4l<T2#lWqoM8$on8W{Y*61q51r7H(k?m
z$BfARjv>_H%pw542wmF+!29M?dD#utush8~5lz$1VUrxt3ELA5#034tzh9rZ$VIym
z14&usup4tDP1+xlq6e%B<c3(0`RD|1T=UzVk0_1HzF!h@EmxKtW|HkJw_FePKvyba
zHYXo6Lj)c%C;337_Rn=rU7QAKzIo-!3WZr#HgsBrT$whN+EKcN(WIyVOGV0X$+FTI
zSK>1GRU{P*TErsPHk$r|0}oE3b25F7AHs&q@_6!pA0jhEfBnKhYKCi8wzYbC##Ln~
zy%7O{f1_v(W;BpkH}Ad1TlO&MQ3bz0<TFa=YWDs!@bf8J=>XsKeZ`-K@QY{+G$CBR
zo?0FCEZ>7wX01|oom8f3duVM|SG?8xie^^5e&)uSPrtEpYM=TZ#oV`|_<0eZ_kbnZ
z7DU=>8~HWSH#60dq8U&8c?=o+Pm@ZNI?CzyHFTQc27bbXh%YJ$%#ILRm3ie9>@ytO
zyZ7_4P5u^<5F2NbA2C49R_%XiP{|PKuGKVOHWa`RM=q}Q<Z-6oFX1?DVNmXDsXSA=
z^lSM2pZ2xv`Ea<CJ{bo_SOZS2sCycJwtTqmEN(B7sy;Q&-`*J;D%Wk{xmE$$*e8Ek
zDdE-O2F0Q$>N!w`dB~PG>bXSHxoyf^1BLvF)gZZhPO1^`y`4#4$;oScP8TR6OZv8r
z&I7iRqqdsxxj^oyf$u|vkt0L-j#aB;qDwewn5zkE7`95!bv+GNX%RTaFk#80Yjm5~
zsYZaEEm1pp-frz%z9L&9P?PLtgqoqwmE)WGF6g(Lh31A{^1#d@{80Qs`>*TzPzSBy
z#n0hyT>JHp2^&gW9Fbje7r#3s{g?p~i?%}UR7mzVH6T~BRjd|4Vt7}`dF_~lj;*V&
z%!Utopy6+-w-{|GN{OWEytuw)^x(SVq~`(A0|ncN%D69x$Z-j;27;O2bWyjBQeMOC
zk-$&+jTOrDx3Y!9>?4+8n_xe9yp%}tseJ>>Ix0N<Q>3?loFTllI$o)%ulJvWraIco
z0ji$JHGO5FKKvtdL{>C~5OAGnh)BVSQuwWVZ=FtuO|Mn6O%zBQNYGMuF2NHa1T#F~
zV?FIFTPN(+_&uiF`j}E~E6w~_ZoIV4hN%;sdfS5dm@9uy>5m-1U0soWP4<0-`r1=%
zN5HEJLEbOguxq7go%3}LUMZe%EyZ$k-)!97nBF>7ZJ7^F5-Zec&bbbTknwxx+rmT}
z8vKc-W+Sc$q#DX!CaavpjO9eEPldD9Xz9hTP$dWvwM2{CSU#QC{(rM(DD(WOz`Miq
zRYeP`RTrj&{t#x*al}wzzR+K3noDM8#*Flw;6zQ|oM1eYz4VN}a(;^&?~K?nk|21_
zj3SfmhZ6(D*DX7Hx~ALqsnF*AF-3i{HO<7=<s1JhX2nnTGKQ$X^YwHSE4Z4zU)o&*
z95!=Ogv!Jp1V&v}xwdk4n;i%twPO`WOjtz*hoh|^<4xxKNkF|u3#|rKuF_JJiSZ_1
z=}sDb_Rg>-9Pe25+D(<c9{9yLW2{l4`38>>P&Lt_M#EHCw(~nM2sbMEd-^0}Cip!2
zU$IVDm=YVK8_F<=E2Fu4#5#`IG$WV3doyc{JvrCVFY8Qoc3iH?l5ZuxMxV>ogWp$N
zFAw{ZgBetv=!E&LjU&kg(#ddB@%KBKX|2P9<!zbVY!+%uoM3#`=n|Zsr4g&67e}#}
zMdDcmXrc%0YP<G9DJgJgjv?UNKJLM>*V%Y#$vgqyY&!Jbp=*<}jXRz6xSX3u7^1Yw
zcHqY~`0Z7;`c7z{Hj#*Up$L{`!3G5?-Ea{yC_RJ7<x#_8-3CMil8UGoqE@{RgI$m@
zxR@;ml#s^GP{_SB>z8GSQZLK$qC~`RbGe@JsezV$zw;xUJ`}1ZYx63j6)uk+uLARs
z)6x@_1E^LoJ~+5JT^X}c76TqZgU<k<QKo|=sJkgu^MZb?Tr6@GsycE(1&iSK!4L1J
z)2-pCa%n|t*?GS9%L;uCZF;@BfBHpxT-FUR-ruQ?;_RySi>=t67Y@u88AvU582aoc
zfDw=Bwx1y`+T}`QbkH?3o&Y)2+&58Xz)_kVv0ROa!Z)2gLqF_hQcup@_U+nXO>bWN
z{~jLhkQ`S2|CUz~vK4?dh0BX_?-Jcp2XXy$tU(trrh}mtzZWX{vxUgHT{y43)1x_l
z>-T+3SmQ>=+Twc{x`d~L^p+9ul>j}07axs}9<w}CG1{M)WT?&z$Um|LH<pXea+^qk
zvgQeWAm97#8$kWLM8LK0!CDECQ~@5-1;Pk9LKvbKg6ysGsZe(%)t~hJO9D|ds)~B+
z{@?~0(r|n70DL`GdUSqtt}PC6?ncIm&9MJBzb$^IU7>t$9FK|!57cZ-g&ayHqa=7z
zdgjNMA&afX8cGLWSsDG$hz^h-1-|v|ilJ2dT88Je5j16GOmM$!)jvQs98ip_l_Dn6
zgr^64Tz;MVr@<=VdTQYB3C_iSos)Qy*j%B?!5UA@p8>hQd0G-e7KP0!m<_M{6K)bD
zyWKN1;uNiVzEY7|NdNpnV~6UrO$ipZDK<Vc0@@-9o3mi2sc>xyA#ed0!+<Ud>o7?f
z#P$xIy6Ns=ub{>bwIex!PEjvn1n*M5r>tP8<O6$;%MVAxv=s{l<9TYTmNc4TTrAXY
z!kj|yT2!jSvC&QG@BMh7pfxvPb=Sd<mF^#r&l{s3(oSI?45dYLVMahlt_twq6O}qn
z&GixLHgF6&X^sc+d~^YYE0(MJK2629HhI-AgTM<u*`V{IO0^p8iqF-R<$AnA0(uVn
z-Cx{f-y{{hd>DNv2^K`emLoKq`)NNo%Uj*ma7rEXe&OS@0VaR;!sq-5&uqiLMp?*L
zf9FbdEAg|u#^Z%HLtvsR2g!)RR!*aeSrHTb&y|D@hU!KY)|nHJwL=FhR`^P!epV$D
zKYMBq*bB6#m_OF*nQ~VO@6CM6H9T*vqkw{&fnOnV5@A!6<G%JZN|-;>Gbb`u@cfC!
z*}tk@=#Rth_i=}$F{BBHd7r7DDT6hiC~d)%)2FSR$JWKa1w=oRI+fw)T+5ggFPkkz
ze<sD>*TA9pP^%_O<z-)dI?_b#prG6Mwi$%D`6bB|G1j#!4@4frVK4(3Igl2R-IHa(
zO4A5}A(Bqnum|E&ruLOmYc=b1T~7nlJa8m!-=6nWu5@Rdch}r*kEw&<`&2Wdg#Nv+
zHSf*Z8j!!VSMT2koeX^jOf2y?;R*FiSe|tyRXuA1&(6*HE$&I}yO)hKX_OoV74HGW
zw2KeZ>+2>XpGP7TfEH>KK8V6GwpT4Gjubzuvjfb`Dz`Mz|532db4gQ{8b4hUdTgW4
z8U3<rb#%rlHiOJ&@S>`3+(@W)g<1!KsP)|UPkT8{xyqa>b-DExd+OA6L&P^B|Meel
z-scuShkjmpZJH+LKg^LvjO`Th(HB+$U6Ohy_B!-fItg@#d}A7?;?3t-BPM_QmUxyE
z;wXqORiiOqg+=vfoI}=YWqlnU0-WY%%#}j#L&6R=z~^0+xC{gzp84!8$Y$yV5@D27
z+zr#Y0)#rhDM7n?Yuq#4bVF<%;e7aeRs#}U1qwlyYYW~Pb-GUMfc(E8=Kj3``%Axf
zAKc7xH_}TS%vZZjfz1I~!V_2az0})k5A&$`&bM01sYQwW41R4r!K;FQ<H3AJ*N&yF
z+-MFw`SOnIYBnj9nSP&O`a}_HKEk6+M{;{)0EE(br)_mq)5)P%_kE#EPvvU}j~y?d
z%hq#m>NIuPa!24x#8A<)ZqTZOGjW{nn+MU5%a@}?d6HipH0?(At-lE|l>MVt+Ykwq
zI5=&3lU_6THK_3Ewz0MEQLEbzH+x^LkT<unLi;LF!|B3baf#pT<rvV|t7uvoj8<0f
z1w@Sa48d#r;mZ724TJI!AZARRVD%fVYj}gIK4N|=Q_CQ-OolJg;-A&WN@Tx<$=4u^
zI{W#ufz5BwkA6=u_k%Azk|)oGQxy;&GgUAyPG^n-a-LC6es4kiP?U49V6H&ho7ASt
z$awF$dQ7QtOy-5xq}x)tKG=9y&|V$#D60vSZ}k~-!se(R!|Cj4COttx_?ilaT;8;W
z*pc+Or-?ART0w?usUp`{V~8RxC_n*J{v#HzSUYp3`hvI4c;2onq#J$X!#gv8pnG5t
zeyW0DwBl5FJ{@J>eEXq9F~6=+W93^N{&-ki*IWzP<q>0i3Y%mnrRmmauMD4Oz+LVV
z*D_l+_1}|4{$EmshetPur*AC+*!@PUm$BUc{(cX22Un?B{T7vQshxTCCFQGhiYThV
z&iFM>x66%D?=Gc{TDKilH~I0joj_hAY3xd~U$padC5&J&Z4jLM<K0?*(Q={oZg)O|
zI8b{@2KP~H!T%_=(%WU(ta1nT(_&cgdpdLN+jmic5mqjZzfDM(h;XLZ>M>P@Ef{KI
z2Y}y%jLvAjcDS#%2dN-0ag7mHuT2=bfk5b}lC9jt>S&>vSOY5qZ?<OYyVP=jTG)0>
zzm&Wl?A`Xs>|ltUrV&SH;WI&)L8XWlsxm|;-<>_~dmhi9kMGP5j&4r=i*)z1BgT?R
zu`hkiRrNbjiABBHp;-2-F&Q$M*`-SAQeDx4g1b}xGaujD>@rSXdBbSn+pM>AhayyB
zQKMD^O`&Z2V*@m$nQ=bv$e}0c1`JI@6N2O^f+ARzh@aoV{$*Jj<WxIA3i@A3Mlm!p
zUM+=cb!IiIDJl98hVI5u<QuFuWYY&ww?tt%FMn;LVX&GU)5XujgawFs$fsz^w-e#1
zb~1Rb$$41c(YJ5v1H`(IzOPtIw@9xw3Oci3J#foc%(W2H8PSYTLlRC8jTBfh($I!L
zHo7)Oav2+ToTKb+ed8Fc8uFOo9Ju@p{^10qk}3z~Oq?h&TQBNzg#-Mhk}kJhPcHdl
zFZYfq9{%0E!+=UsnG;h@))a5CYS*;Nm^>I<ED<XBK}M#URFtq50-8e5!sY2|5oz!*
zY}l>8$|{fKi}IGsx2c57JE(%{d=}!j=A0CwU2+qs^|%#B*x&H@_+BlH%u)6bzfbxt
zo<PF*j<fnQq;#fZF63|E+ir$0a;ygtR*%+t>l3-gG~}$)iJ>Pd=qY0gATrCbf|Rk~
zLZ=J~#k}Vsyk$zqB7*$zM2*6V&HgdzSJa*Twju*ZyI{h$y1Uocu>-;VnF9g=Ryh1A
z8d>*`HJ+A)W~k|5Juoby8T>LGhXE@hJlgOP45-bgo|XiStiCLT14&Oc*;lUkuBBr^
zR}GmRRNgLFAF8hPcU))WvqrN1cr9(tK7_)^MBk2{)8)wZn|~8!4G@$5yldoaGJ8Pp
zA|gLtffJ0wVSc8MKKRwPIy+S>*bqb>Rai=bjQTi0Hlg)N6lsMj@@pkY)#(5|e*58W
zZU4vY^@rD{iUaoj;JmlgXAgp<ob+Nv?0N;zqqp-7X<5V^#^o;L{|sImN<ZFabxAHL
z+a+kwQ7x{?`3#os6lLA>Rv#Y}ejrYK)Ub976K%^i0X1aobPX5f;4(zI%JA6%IJC1&
zoo9_dP$h^@KmXmAsXM%=Vv9;lp|Pl_FCu9De3o{p9Ctk!AI@#IcW7mjxVZ!Hn&Nkz
z<dor(J#AG=8COBrl{CL9DlmW|s)f?0Qn+*Lj7gs<<wF;g({stpls@n0DX?l-pp<i!
zlEf2BsxZm27HJ8{nxb@Frj;=^FrVWLI`<3ay~Py1uQ)vV$R%dMS&<o|c=hV^1g=)7
zI(c<HNR|9-aLOj$n1VyJAevvAiQ?b1bs+kr!6YPEldpiuaL0^rAqQ{>X&0QSEOhl5
z{Q41j!T+ghr%0D5rinSV7nSk$0We5U*%f1Kx@dgm17Tk3V!I#d(wnt$SnYf$xob@M
zoz-OwkwVcbW57;|Q-+8J4lw}lNOah(T1S!*;O*M$qJG7CW=%2lk2L9nL-+p@H#Tgq
ze5SfMWmSb7n6MmjijKHwup?_@T{G~33SPb^aT-DdGu89R?`Qzm1q1<rRE&C8AP2P!
zYKMH%dKUn2zB?`Ed;A*NU;_Jfy>XRQ?B{+#-YOb%d#xUH6LOS6Zatgmx=5=D)o*ae
zk_r8<aI1)cH)zdAABhxWDh;%veiI$N6Xr@pc3_+;Sfx~7x>8Cp6vmkPn<17<ulMk}
zzS(cl+A15^78=6}0F(l!GUx}eCD|I(BX27stu`X-UzU|+eBxx#uq1H+;49j^8JZFJ
zm&_!l5vQD&_Ui8td!OYlnT~-!?*V&=%-4cNg}o7MB0r__FL#Hi(Y1e?<?-8&eP`6!
z?C?~c8xrHS+*{#0p7a5k$?Bplcz+)o5W<%a_YFeZxXcwM*&ifJU-vxL7OAA8TEUyk
zKF@dncu2ff>bg(EnqB*Nf*8VwL#*j`Y9c8;mBtyXy=cR;xSC`$_6U4^6X<|EGr7-p
z=Wb!^wL?f27dYEJ8jiu(f_?p?si6!04??fI^qdzr%GJLsjk37rS+nRdu)XJ~aYBip
zlnd7)N132AjxL$Zicxq~8gEJdg!zmq9SD<@tkMKT1!;OV*%xkNu7JNUy`J$rkl;P&
z+6!;PUUvDMj(|osyQP7<-xiCV6yZYHE%$M^3-@sK7%AMAwDKP>i;Ud4NLs9$R!v3X
zXSbVpDz1G=(aI!eZx^Kz-an3lAIN$cs`@qpVj?nf1hZca1`Dqa)JJvAS|WzCdxChR
zSO~TX?rp`|Ref7LsSk%3y55ienb{7yS@UsAm)c-VTKySxR<0`~dtn^C+F?xdy+Pwg
zSCj~lE$S^lmiXY9y(lv7_U~5Y*^)03@1Epq5a1E^zYtv##y^b?Q71Z8Cpo7rgTasp
zXiHwC+rc~qwMY44?34UfUKGqH+agXpPP~clA{=!&&0g5U`s##oCNUg_s0`nqKqi(}
zyo9L7o}8cl;F@+!b>26W>vZHv`xq2tIN}he^?prwA_l@!wq?e-+a@FFzY{REDf}Gl
zYx;Em+57(cKH%Y#w_|1Fln}Hg>u*8hFmNrs0a^n~9R6`NIRE=oSYIE<%D=i}sIK^N
zU9UdQnjNHPB1dzucp^u-n$Qrmcq4Q_s?&F{O(kyOy~5WSB05d|4J7e!eSG%z0FE7o
z7P(7NE~zCAThH?{eN{46am=-IHUQN)HfPWiC%g~!n?m44B)`=+7*fJ;TdwTl;@OXA
zZBHf@Ai$$|Ze*^uo3{Lx&$$wR9r>M<Jadw)F_#0ub>50Z=r>2UZ3blfME);b!n~@N
zBM0`f>xoa-VD^+s_xAHc%+o1l44V<4h#!edV7&UK*Nx6o(F$l_x|wr25Z%7qU+tj#
z+~>Dbh|5)|mIgUAIRjU_+59O>&I2Rl8zToe(yGpJt&SL>FT2M~Mre+swr6JI`#5(J
zqU#wG?KHd_j8@d}3A?>EYo3bC+2O3aizq@gp%j17<!fv#IT*=74@IYu#}CAX4m6ok
zJdFSQ%cjsTJS7lEaGI<f%moGel#@6G*7_vzg9;5{Nyx)3;no_h)kKVQ=3wo5ZW6Z~
zyPz6f#DuM7<)bl_+i%d-J-1sX?W<a$x9+!R{c(t$HS9@%z8U{vSt_RSR``hyblDpp
zxsC(VPX8|x*clqXo))vi-JOO4RGf*d+}OnV2}#KzC9V(UpU%DZd-8ecnuWxt_ZHa+
z3|}&Xw4ncb9@~j#F-07f{HE{}oM+@=v!e9ZjKq|#<?Ai2O%%=GUu~jbh=%n|R0bra
z0<4h%K_M(LZP{;yRSn8F`L%)#jDf8KMjS!RD*dcI!lQlMAM2GIS0U`sL<eS?n{Oe=
zF9!qZ&si_4bIZE!Ia3e#$WMU)i^{K>xieya`CqT6pNRL*mL6-y*mV{B&q5XiMW9}=
z(0lPg?7MqxWO%bl&RnfO-z;R2vrJUNEX&+h%7-3Wg4RlQ@P**8vlKz9Z0b}E6+Cb|
zS-(iw{o$JUS50a|EJ(!f_4M?LTXl}p&)|HTsc~;2yC;Sw3{tKCrD`$*7BZ*rf)?Rn
zX~wVrbJYwDL)}&#wd@tZghF`Rns!=YDp**Vxf&Ii@I`pM5BcRk(}?VG_OBHM+MmtT
z&3|&Re{P(-`p_!lGlCTHTTHAXEl4jjr53ExwLlt1CL-$HynP{Ze=Qo8%di=@$jj!8
z5H0-;`8?xGj{08qmYgq?9Q)e1yOlWI4hBJCbNzQxF$pt1PN`UwCPXFamILMg{dgH3
zH>3?O`H;?)k#{0s$&>&eL<c(1SEg|pW~UT@;evpyE}O#MGd988vbrp@ig#IFAk2Sl
zO=Y%Y?J2UGO8k3S{d83oJGCZNe}P7fvIlM`jGyegZR}zo%gx|BKUhk$U0}a0;zm=}
zp`icUtufnAus08S<VY&Wyb@e7B!GKtwzj&ux@phrS=!MUKWEu>HU4%S9e5**`=*ew
zyll7dvyf_`GAP3Vo_=GEfRHvr7_R)B5TaYyLY*Q)ClYyX$jm@e2`!*N!p!%#Vf$}<
zxuAf!oPSm4ty;V2K0E}G^Ej8eC`vlb!Z8bkQ*do>jg)l;GcFCE=JK@!xGcY1&6UfC
zV+EyHomwSU^ZQ6`Zh+z7?%G>QuY$Rs?b$XS34wM@Q0B8j{?LaE=SFC;ErJW#Y(;jL
zDj@ms_4uvX-Q+DfmXsKUF6F;p*^p9t)_T4*tpq(PZ-+Fob`I^ia(Be%Y+1t)eK@vZ
zx!}q|^N>O2O-)Y9aF4GYa*FP8eZi1e*6fi?%Ret+#zIC0*krI2a*|r;;e_42oEB!f
zYk39KOe4JbnC3EdPCG)ws73~44#a_B$1GS+{(`6TY{Rz{aTpO=IC4Pdhq-Hdm5Bcr
zkPdJ0#(K1L9M=ePRueGpB!xAR2TF94ueL>|T;$H>KBu!=rnxYOhmNLA`iIa}fnIc+
zr%e!CjS#=M9LM(;w)+s0L()-j4)e(jI~K)rxm@UW(&@WJIy3RIbW*mgC<grkEgfe(
zAgwcE!cMP~IaHLSXdusuP|g-mEOyRX<Bz(7?xi!Gfw5lc9DRq5I`^F-Uz;EpjS+vi
z+y#Qr`{WrPeu7v!3eKTB6-p#$dqYacR!L4sCthH&V<erGNxH_;(RDfsmC2lS3l@S$
zFq{F3d2zyqrpoiY{ed@S(E;iGW5C#%;JA{`Y!b$1WhJt9PA#;ykx@J#!WU4xsrkKX
zXSup`6r95&$&@~$ES(t|Ic5o|NdslC=n6@vkG+w?(n<B%Xz4iR2~^N$Z8>p{WK5*5
z@_Aq^*sWKX;Pw({92i?mvxhim4U$>0xa<CarWPK*C-PH80Y%~i=wc1X#hQIdJ!0u7
zIEP|TjWCL~bObXcoHC!JE40&LFT+SW!dxMYmd+uxyeJdr3t$~yBsc>9l}<JflEf@e
zmLq~3C)ulsc^I6K&e4gh+RJrrlt7SqpVXb6-$7tqjWql76U5R{aSjj1P>INt`6Q!g
zln+_yG!5@W=mJS6Z0ECzS~@k*B>N$Hcj(E<opgdjCUDqqRgexUM2=32#e<IoG_~Jz
z5zd2Pu<nU-97H<bqh6q+E*%x;lu{|%I}wz<67ZN#oXMqHI^0gxF`ZE@9ar4<l(fz`
zM7P~YhcYz47x|H34btf!hs01&--+xc?YP_f6NSXNa<cq}LbAMe>8R{;cuk*B%dOJk
znXK@Cr4yelOQ$5Iqf_SYXg!0P5Tb|db!IPC!7b6hO)q9&*zC8hwORd%N;Jq`-Zm$n
zox;v}BB1errgrjq1_bACkUE0>mS2e}be7jH9hI}yOu0^{bbINf?6<IV_(S_~Tzo;F
zE)G=b{gl?(4!WhA+eDfEadtS<U7i9D6XzfqC3WO-9t4Rm$TPnE1hI77I!9C@M+&*Z
z91Z4#4wjA`Hm;VAy`rRe-A-RF$CkQIN3~ohJH}e2{H1$`RXB6>U_B3My(jVw2+ZF}
z-MC~_jehXYIaoRh&SB>yLE#|jh+j+pm5#wXvg8-A$67k7*6AH%^~MT#w9k1~?{hdF
zjio_(>|aQo=sAx^KPV*2J&}%U=irR_Od)ijbQlrbdnN3WX41ha_ju@Fv~-TV=feNJ
zPVYG0=RBv20=?wnwsW6>Ao)3|3z4fJ`7(BouO(JkI?<2{#%MZSNb#4soNN{6tr6&P
zDwiwakBsJWasGB8ou)4jK}+W_>&U&%NO#aDdZ)nB&Z!$O#CpzxAo>BR1F;-PQW0O1
z<ybmzM?=Sv6D^&<Lsfg7k)S{H&f~My8GVC}*R+$B3<$dFkix>#j6b?W9t-%+Sx!6|
zI(7_pojuXgVb+l*V3~72$j(>JR(kY9J!q*OOLK{MO)*+=+GX;XZy`A>onxw<3{}nv
zmkzZKj_oc5>(9hIBu3=wjCM{PXnGoZ;in$rEgxj?Z5FTk=Nv4ZW2qgc94(z{>sVWL
zkLygVRjPvYKBr!^Hj{5G)QU;GB-{l8>lbqBe+kLG{_<H#S8dvf8zmGHHc|#!l<2}+
z<w)LqG;nf3C#)T?7V2Xi>>POsyWZz`4Nja#enS%)h=<(x1O(A<$f^G+B=@LC+8GVo
z1vduwPjQAW<_dg~wihxl9_DSJ$|U1hIj;mxG{`#F0mgfSb!0mP1Hw5vhOB_%Jr_R`
z&xm{mlHdI=(81a{Tf27B;$928{$>tMf`~`Z%m|9X3y_u3%DIhoy0<JC?+@0Ep(LzL
z1UY)2Q(qoy`{67I20crh_k07A&lEb#J=M-jRoV%;$6&r$3EOJn{SD!jNnWa4WN-Dc
zMOs{7IvKhxS~&{V5iFVFDnIY(-b7!n_c?W@<uS7I5ePC~S?3!Q1jdavh0zan)XreY
zEot5{p5vXIOfY<l6SixTS9rtujL=iT3+245l_RSJ(QWO?;b1-JUI6&HS1zB`HGy^J
zRq~hT10vEO>FS{cI{!QB+QE(D@`B{^bdj??Gsh&ueI(jM4G)xaf^$~4Sm$)bIvL2X
z2EC`Z6FEoMA^SknDN?jR@L7!1&R<CoBxz@Ppb@A=JG32wPZO56b4kz8Mh63(s^(av
zM}<L@vNB%3H=vO`a#v6=JP+o&=Si&W8kk#Rp?f_2fR*cf?P<Br2O$td>F9?>`Flf2
zI~ab;1(psD`V`C04Bijwii}pyA>4l#zD5+T2fbxt0JU4`0arfJdJp*yBsmWYbj)AK
z(~aVsnzd78r>g^{V=x^Va-+jOp_SvMb)G^OPna;C4SL9C6cXE&rM@T7Cmv`cKY^si
z#CcB%3#_@ZhIiDUoiq<1A0VChT=_DKQT8kUgo1JyZ)@coMC)^vnD08kfQQyuPr$%L
zW%-akTls*v=c1yD#OI_2BB}p$mNys*+L6wQgbtKWgy~3J8d#o=70xLr=iQTBetanR
zJ%=WYN4*Ot_jXz^B~s;j?t{NPMlPWloPQBz@ImeTxmd$FM@>6iF_ZBFrPIfpBZ590
z@kEy&dqvZ;Xx{G{M3=k?Ay0v|&?}dBY3KM#JNa`E1Rs5@K5oVWLDvs$4UjDNMmr@w
z%<~rM$Ya;7($Temp3?FJa>W=xrw7%^)0wL7^}BRQpue;{Nj?wNK9=Tv69mc2q&?86
zxYSN*MmmR&D(7+K8R;BOic?_YYvNit0`H5H`xh*jpQyDWa6JkG=$v+@vBHlh0h&1f
z#YE8<q5$44B^xMNexP>Va;}}y3^PlPL3KkHb19=RBS(KmayACOLRr@WBD}k<U9y>g
z{7`L2t4=`S96f5rPw+h#Igoru6u6WJNt&E$Wam&`snSlyLBA(&@+`=)=0??tDu<=x
zLOF(3j`P&HWI7M9)m>9{PP9|}emzppXK=^)RS;NT6W8204+8Ty(%krsx=yu&rBhkX
zjD~J69bJB04_Z+;d3Fjc^@^R5WYwVb(|UC9|HR{MJ)eOfS|l#PwLYVf1}o61Njs^u
zWR$IqVmRDau%kAGw8W6x7`o84fc4>t2T@EW37HYq*;X($j6%rA;(yjVlZV^TY`kP2
zamQ7Vq+)Fk1da!Hzg(>y_vnrXA8C0A1$KrK5LIc#8lGnjo;rlw5d7QT`Ls3>24UPr
z*(BJsVu?jljEE8A2k_$I-6;sG*e=ULmKE9%1C?5&kPxh`ZK;ANv=l^yKx_}ezZWmb
z#g;<Pekr4{+u7#dW^I%A-JRd9rMHwP^Ugf;jFiSv?T;U@9>8tr%mS~&@=mhjJxbZ5
z{rDz%0X+~yjh%cA;QLDtQ!4{s4IQTz@<6%DX0qN?=ba7~nfL7W8Id?C*`f5~et_M{
zvsD0Ny;nmZ&g*KpkV$g}0?xU32sVovbIUUm8=5CX`yBsQcF2C*N2JsUdSYz?9OQfG
zATNQwgN%h&MCk+gnDZfasDQ;=w|1R{3{F}e<9~4FRdy(flm|x7qNebH4kfpDhx0oM
z6!*{{Un3VX2MmYs`qZK3PIJ!TS$jf2&1se$k{pf+Cvovo1l`?M#77ex>Fy&mDd&TD
zR711xdatJ+ezAzKUmh-GhoVUNU<g04%3A=XuP(|Q1G0^ph!#Bg;|7~s1PkLK>x#CD
zPd`L1oDmmqvP1Uc{)1CY<@rXZMy+)zcJ@jDwQc)H%3tS-8#w&W?4EP+3ecwLz)wH$
zCOc$5Mx68$3;UBhcXsmkb(s8tesPHwAGl(I{mz2LRJXzT7X>Ve?|C@=z?1Bd7x46u
z#vPZd4A5)kcHW%VMS!hsnWk3UGBk#j<mq(h&2kkiR9;R$@FF`TIj2hu7dwTT3QD!m
zvVpt_P})Pk7#XLh6>msmtZsnC^EuX@l?+&z%j~jf1|4^@L-u1%IiJGi%!{nOQiYkX
z8lZ2L@zaVr$Q&{p!rkFltSz~7V6&zPIxKH_0{wqw$0Yl4KN!7&<z>eN{k|<P_Cy^j
zj@eeqH~*&oB8GD=l#OW@!}7NR56ipB&Q!)E`!SykT|2(ZY2uun?TQNe`aCXkXzzhn
z;?cRMV4>DoYaZ$7N?*ihy}9GELta2W!Tw}<cD)3!X_<}-`v$<lwk(qeSqK_~^Lt>C
zUFmlE;Zu$YJ}hr3JNF#2Lz2TKVMno(-_L^nueDRCE`eV8IxCYOP!!T^VF@gX3#<v;
zY(DqE2gCBN3GNxPA9IP+D0UDpKLDuv<-H2PWOde2=1_7D-$<8P9UX|+Z5~`5Y0~5j
zyXw=Ia*u~2iex_?1mV<(V~$nP!O+3nDa(i})Xm|ZhFxb_IZ~Y*bMmctq&dstrCE5E
z9kL&DiRIa`79+lcdQg_hn<E<G5L?qx?lHscE`o(pX9-__pvPo~ynsA1G=51&6n-?C
zIfx{cIbslxus6uAgH<Pod_0Ftj2QM)l^v%SkR)dS3}2Jmadwm>M-<}G>7QtYeB+(P
z1~LV{(fl?ncOg4uKjsk>piD0-VYz`l#~3^;kH*ggfex}`PSKQ{3+y)*CK-V5L_Z;=
z*|$mPL~&QJ81|Es9kL&DNR#X&$(kb^SJ~$*v}bB2IGWQeJLCoAkm2hxzTHVLEAfyT
zITt##LwV+pGz-tN<MaZO<Zwakx}DTTyPZPvcW|yk8|o|(xUqmkcF2CrBT_6$k|Q+X
zg!TklqHJi1Anwmyv`?UuF^5y6(PYZ+J`P_KkLFfYXhvOQ(SUxix9*VSa8BSVaG!A@
zqOGiEvQ8fVn$aS`7?!t|9g-Y^I6cA>jIlW<jA;{rely#$bC)ECAWj@9o=$|EjHTm2
ruV8Q8A^R~w5Pjv=U6LGv2sVEJmxL5zyW*Q400000NkvXXu0mjf@Ec}b


From 28de91888a89b66da5c85133b5bed311127a3655 Mon Sep 17 00:00:00 2001
From: Alex Morask <144709477+amorask-bitwarden@users.noreply.github.com>
Date: Mon, 3 Jun 2024 11:01:14 -0400
Subject: [PATCH 069/138] [AC-1939] Manage provider payment information (#9415)

* Added select-payment-method.component in shared lib

Because we're going to be implementing the same functionality for providers and orgs/users, I wanted to start moving some of this shared functionality into libs so it can be accessed in both web and bit-web. Additionally, the Stripe and Braintree functionality has been moved into their own services for more central management.

* Added generalized manage-tax-information component to shared lib

* Added generalized add-account-credit-dialog component to shared libs

* Added generalized verify-bank-account component to shared libs

* Added dialog for selection of provider payment method

* Added provider-payment-method component

* Added provider-payment-method component to provider layout
---
 apps/web/src/locales/en/messages.json         |  15 +
 .../providers/providers-layout.component.html |   1 +
 .../providers/providers-routing.module.ts     |  15 +-
 .../providers/providers.module.ts             |  10 +-
 .../src/app/billing/providers/index.ts        |   8 +-
 .../provider-payment-method.component.html    |  52 +++
 .../provider-payment-method.component.ts      | 140 ++++++
 ...elect-payment-method-dialog.component.html |  18 +
 ...-select-payment-method-dialog.component.ts |  60 +++
 .../provider-subscription.component.html      |   0
 .../provider-subscription.component.ts        |   0
 .../add-account-credit-dialog.component.html  |  55 +++
 .../add-account-credit-dialog.component.ts    | 153 +++++++
 libs/angular/src/billing/components/index.ts  |   4 +
 .../manage-tax-information.component.html     |  72 ++++
 .../manage-tax-information.component.ts       | 406 ++++++++++++++++++
 .../select-payment-method.component.html      | 151 +++++++
 .../select-payment-method.component.ts        | 159 +++++++
 .../verify-bank-account.component.html        |  18 +
 .../verify-bank-account.component.ts          |  33 ++
 libs/angular/src/billing/images/cards.png     | Bin 0 -> 14418 bytes
 libs/angular/src/jslib.module.ts              |  35 +-
 .../src/services/jslib-services.module.ts     |  22 +-
 .../billilng-api.service.abstraction.ts       |  33 ++
 libs/common/src/billing/abstractions/index.ts |   7 +
 .../braintree.service.abstraction.ts          |  28 ++
 .../stripe.service.abstraction.ts             |  45 ++
 .../src/billing/models/domain/bank-account.ts |   6 +
 .../common/src/billing/models/domain/index.ts |   5 +
 .../models/domain/masked-payment-method.ts    |  17 +
 .../billing/models/domain/tax-information.ts  |  32 ++
 .../models/domain/tokenized-payment-method.ts |   6 +
 .../models/request/bit-pay-invoice.request.ts |   1 +
 .../expanded-tax-info-update.request.ts       |  14 +
 .../tokenized-payment-method.request.ts       |  14 +
 .../request/verify-bank-account.request.ts    |   9 +
 .../masked-payment-method.response.ts         |  15 +
 .../response/payment-information.response.ts  |  25 ++
 .../models/response/tax-info.response.ts      |   3 +
 .../billing/services/billing-api.service.ts   |  69 ++-
 .../payment-processors/braintree.service.ts   |  89 ++++
 .../payment-processors/stripe.service.ts      | 142 ++++++
 42 files changed, 1974 insertions(+), 13 deletions(-)
 create mode 100644 bitwarden_license/bit-web/src/app/billing/providers/payment-method/provider-payment-method.component.html
 create mode 100644 bitwarden_license/bit-web/src/app/billing/providers/payment-method/provider-payment-method.component.ts
 create mode 100644 bitwarden_license/bit-web/src/app/billing/providers/payment-method/provider-select-payment-method-dialog.component.html
 create mode 100644 bitwarden_license/bit-web/src/app/billing/providers/payment-method/provider-select-payment-method-dialog.component.ts
 rename bitwarden_license/bit-web/src/app/billing/providers/{ => subscription}/provider-subscription.component.html (100%)
 rename bitwarden_license/bit-web/src/app/billing/providers/{ => subscription}/provider-subscription.component.ts (100%)
 create mode 100644 libs/angular/src/billing/components/add-account-credit-dialog/add-account-credit-dialog.component.html
 create mode 100644 libs/angular/src/billing/components/add-account-credit-dialog/add-account-credit-dialog.component.ts
 create mode 100644 libs/angular/src/billing/components/index.ts
 create mode 100644 libs/angular/src/billing/components/manage-tax-information/manage-tax-information.component.html
 create mode 100644 libs/angular/src/billing/components/manage-tax-information/manage-tax-information.component.ts
 create mode 100644 libs/angular/src/billing/components/select-payment-method/select-payment-method.component.html
 create mode 100644 libs/angular/src/billing/components/select-payment-method/select-payment-method.component.ts
 create mode 100644 libs/angular/src/billing/components/verify-bank-account/verify-bank-account.component.html
 create mode 100644 libs/angular/src/billing/components/verify-bank-account/verify-bank-account.component.ts
 create mode 100644 libs/angular/src/billing/images/cards.png
 create mode 100644 libs/common/src/billing/abstractions/index.ts
 create mode 100644 libs/common/src/billing/abstractions/payment-processors/braintree.service.abstraction.ts
 create mode 100644 libs/common/src/billing/abstractions/payment-processors/stripe.service.abstraction.ts
 create mode 100644 libs/common/src/billing/models/domain/bank-account.ts
 create mode 100644 libs/common/src/billing/models/domain/index.ts
 create mode 100644 libs/common/src/billing/models/domain/masked-payment-method.ts
 create mode 100644 libs/common/src/billing/models/domain/tax-information.ts
 create mode 100644 libs/common/src/billing/models/domain/tokenized-payment-method.ts
 create mode 100644 libs/common/src/billing/models/request/tokenized-payment-method.request.ts
 create mode 100644 libs/common/src/billing/models/request/verify-bank-account.request.ts
 create mode 100644 libs/common/src/billing/models/response/masked-payment-method.response.ts
 create mode 100644 libs/common/src/billing/models/response/payment-information.response.ts
 create mode 100644 libs/common/src/billing/services/payment-processors/braintree.service.ts
 create mode 100644 libs/common/src/billing/services/payment-processors/stripe.service.ts

diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index c8f19318599..23d2dc75722 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -8297,5 +8297,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/bitwarden_license/bit-web/src/app/admin-console/providers/providers-layout.component.html b/bitwarden_license/bit-web/src/app/admin-console/providers/providers-layout.component.html
index d16b0a8aa2a..ffcfcd0ad81 100644
--- a/bitwarden_license/bit-web/src/app/admin-console/providers/providers-layout.component.html
+++ b/bitwarden_license/bit-web/src/app/admin-console/providers/providers-layout.component.html
@@ -33,6 +33,7 @@
       *ngIf="canAccessBilling$ | async"
     >
       <bit-nav-item [text]="'subscription' | i18n" route="billing/subscription"></bit-nav-item>
+      <bit-nav-item [text]="'paymentMethod' | i18n" route="billing/payment-method"></bit-nav-item>
     </bit-nav-group>
     <bit-nav-item
       icon="bwi-cogs"
diff --git a/bitwarden_license/bit-web/src/app/admin-console/providers/providers-routing.module.ts b/bitwarden_license/bit-web/src/app/admin-console/providers/providers-routing.module.ts
index 92782ebf910..1f03ece9075 100644
--- a/bitwarden_license/bit-web/src/app/admin-console/providers/providers-routing.module.ts
+++ b/bitwarden_license/bit-web/src/app/admin-console/providers/providers-routing.module.ts
@@ -7,8 +7,12 @@ import { ProvidersComponent } from "@bitwarden/web-vault/app/admin-console/provi
 import { FrontendLayoutComponent } from "@bitwarden/web-vault/app/layouts/frontend-layout.component";
 import { UserLayoutComponent } from "@bitwarden/web-vault/app/layouts/user-layout.component";
 
-import { ProviderSubscriptionComponent, hasConsolidatedBilling } from "../../billing/providers";
-import { ManageClientOrganizationsComponent } from "../../billing/providers/clients";
+import {
+  ManageClientOrganizationsComponent,
+  ProviderSubscriptionComponent,
+  hasConsolidatedBilling,
+  ProviderPaymentMethodComponent,
+} from "../../billing/providers";
 
 import { ClientsComponent } from "./clients/clients.component";
 import { CreateOrganizationComponent } from "./clients/create-organization.component";
@@ -118,6 +122,13 @@ const routes: Routes = [
                   titleId: "subscription",
                 },
               },
+              {
+                path: "payment-method",
+                component: ProviderPaymentMethodComponent,
+                data: {
+                  titleId: "paymentMethod",
+                },
+              },
             ],
           },
           {
diff --git a/bitwarden_license/bit-web/src/app/admin-console/providers/providers.module.ts b/bitwarden_license/bit-web/src/app/admin-console/providers/providers.module.ts
index 6399952149e..2d4b39fa8bd 100644
--- a/bitwarden_license/bit-web/src/app/admin-console/providers/providers.module.ts
+++ b/bitwarden_license/bit-web/src/app/admin-console/providers/providers.module.ts
@@ -9,13 +9,15 @@ import { OrganizationPlansComponent, TaxInfoComponent } from "@bitwarden/web-vau
 import { PaymentMethodWarningsModule } from "@bitwarden/web-vault/app/billing/shared";
 import { OssModule } from "@bitwarden/web-vault/app/oss.module";
 
-import { ProviderSubscriptionComponent } from "../../billing/providers";
 import {
   CreateClientOrganizationComponent,
-  ManageClientOrganizationsComponent,
   ManageClientOrganizationNameComponent,
+  ManageClientOrganizationsComponent,
   ManageClientOrganizationSubscriptionComponent,
-} from "../../billing/providers/clients";
+  ProviderPaymentMethodComponent,
+  ProviderSelectPaymentMethodDialogComponent,
+  ProviderSubscriptionComponent,
+} from "../../billing/providers";
 
 import { AddOrganizationComponent } from "./clients/add-organization.component";
 import { ClientsComponent } from "./clients/clients.component";
@@ -66,6 +68,8 @@ import { SetupComponent } from "./setup/setup.component";
     ManageClientOrganizationNameComponent,
     ManageClientOrganizationSubscriptionComponent,
     ProviderSubscriptionComponent,
+    ProviderSelectPaymentMethodDialogComponent,
+    ProviderPaymentMethodComponent,
   ],
   providers: [WebProviderService, ProviderPermissionsGuard],
 })
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/index.ts b/bitwarden_license/bit-web/src/app/billing/providers/index.ts
index 0d22d73e348..9b899f1741a 100644
--- a/bitwarden_license/bit-web/src/app/billing/providers/index.ts
+++ b/bitwarden_license/bit-web/src/app/billing/providers/index.ts
@@ -1,2 +1,8 @@
+export * from "./clients/create-client-organization.component";
+export * from "./clients/manage-client-organization-name.component";
+export * from "./clients/manage-client-organization-subscription.component";
+export * from "./clients/manage-client-organizations.component";
 export * from "./guards/has-consolidated-billing.guard";
-export * from "./provider-subscription.component";
+export * from "./payment-method/provider-select-payment-method-dialog.component";
+export * from "./payment-method/provider-payment-method.component";
+export * from "./subscription/provider-subscription.component";
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/payment-method/provider-payment-method.component.html b/bitwarden_license/bit-web/src/app/billing/providers/payment-method/provider-payment-method.component.html
new file mode 100644
index 00000000000..1a1e0529fc5
--- /dev/null
+++ b/bitwarden_license/bit-web/src/app/billing/providers/payment-method/provider-payment-method.component.html
@@ -0,0 +1,52 @@
+<app-header></app-header>
+<ng-container *ngIf="loading">
+  <i
+    class="bwi bwi-spinner bwi-spin text-muted"
+    title="{{ 'loading' | i18n }}"
+    aria-hidden="true"
+  ></i>
+  <span class="sr-only">{{ "loading" | i18n }}</span>
+</ng-container>
+<bit-container *ngIf="!loading">
+  <!-- Account Credit -->
+  <ng-container>
+    <h2 bitTypography="h2">
+      {{ "accountCredit" | i18n }}
+    </h2>
+    <p class="tw-text-lg tw-font-bold">{{ accountCredit | currency: "$" }}</p>
+    <p bitTypography="body1">{{ "creditAppliedDesc" | i18n }}</p>
+    <button type="button" bitButton buttonType="secondary" [bitAction]="addAccountCredit">
+      {{ "addCredit" | i18n }}
+    </button>
+  </ng-container>
+  <!-- Payment Method -->
+  <ng-container>
+    <h2 class="spaced-header">{{ "paymentMethod" | i18n }}</h2>
+    <p *ngIf="!hasPaymentMethod">{{ "noPaymentMethod" | i18n }}</p>
+    <app-verify-bank-account
+      [onSubmit]="verifyBankAccount"
+      (verificationSubmitted)="onDataUpdated()"
+      *ngIf="hasUnverifiedPaymentMethod"
+    />
+    <ng-container *ngIf="hasPaymentMethod">
+      <p>
+        <i class="bwi bwi-fw" [ngClass]="paymentMethodClass"></i>
+        {{ paymentMethodDescription }}
+      </p>
+    </ng-container>
+    <button type="button" bitButton buttonType="secondary" [bitAction]="changePaymentMethod">
+      {{ (hasPaymentMethod ? "changePaymentMethod" : "addPaymentMethod") | i18n }}
+    </button>
+  </ng-container>
+  <!-- Tax Information -->
+  <ng-container>
+    <h2 class="spaced-header">{{ "taxInformation" | i18n }}</h2>
+    <p>{{ "taxInformationDesc" | i18n }}</p>
+    <app-manage-tax-information
+      *ngIf="taxInformation"
+      [taxInformation]="taxInformation"
+      [onSubmit]="updateTaxInformation"
+      (taxInformationUpdated)="onDataUpdated()"
+    />
+  </ng-container>
+</bit-container>
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/payment-method/provider-payment-method.component.ts b/bitwarden_license/bit-web/src/app/billing/providers/payment-method/provider-payment-method.component.ts
new file mode 100644
index 00000000000..42a7dbdec05
--- /dev/null
+++ b/bitwarden_license/bit-web/src/app/billing/providers/payment-method/provider-payment-method.component.ts
@@ -0,0 +1,140 @@
+import { Component, OnDestroy, OnInit } from "@angular/core";
+import { ActivatedRoute } from "@angular/router";
+import { from, lastValueFrom, Subject, switchMap } from "rxjs";
+import { takeUntil } from "rxjs/operators";
+
+import { openAddAccountCreditDialog } from "@bitwarden/angular/billing/components";
+import { BillingApiServiceAbstraction } from "@bitwarden/common/billing/abstractions";
+import { PaymentMethodType } from "@bitwarden/common/billing/enums";
+import { MaskedPaymentMethod, TaxInformation } from "@bitwarden/common/billing/models/domain";
+import { ExpandedTaxInfoUpdateRequest } from "@bitwarden/common/billing/models/request/expanded-tax-info-update.request";
+import { VerifyBankAccountRequest } from "@bitwarden/common/billing/models/request/verify-bank-account.request";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { DialogService, ToastService } from "@bitwarden/components";
+
+import {
+  openProviderSelectPaymentMethodDialog,
+  ProviderSelectPaymentMethodDialogResultType,
+} from "./provider-select-payment-method-dialog.component";
+
+@Component({
+  selector: "app-provider-payment-method",
+  templateUrl: "./provider-payment-method.component.html",
+})
+export class ProviderPaymentMethodComponent implements OnInit, OnDestroy {
+  protected providerId: string;
+  protected loading: boolean;
+
+  protected accountCredit: number;
+  protected maskedPaymentMethod: MaskedPaymentMethod;
+  protected taxInformation: TaxInformation;
+
+  private destroy$ = new Subject<void>();
+
+  constructor(
+    private activatedRoute: ActivatedRoute,
+    private billingApiService: BillingApiServiceAbstraction,
+    private dialogService: DialogService,
+    private i18nService: I18nService,
+    private toastService: ToastService,
+  ) {}
+
+  addAccountCredit = () =>
+    openAddAccountCreditDialog(this.dialogService, {
+      data: {
+        providerId: this.providerId,
+      },
+    });
+
+  changePaymentMethod = async () => {
+    const dialogRef = openProviderSelectPaymentMethodDialog(this.dialogService, {
+      data: {
+        providerId: this.providerId,
+      },
+    });
+
+    const result = await lastValueFrom(dialogRef.closed);
+
+    if (result == ProviderSelectPaymentMethodDialogResultType.Submitted) {
+      await this.load();
+    }
+  };
+
+  async load() {
+    this.loading = true;
+    const paymentInformation = await this.billingApiService.getProviderPaymentInformation(
+      this.providerId,
+    );
+    this.accountCredit = paymentInformation.accountCredit;
+    this.maskedPaymentMethod = MaskedPaymentMethod.from(paymentInformation.paymentMethod);
+    this.taxInformation = TaxInformation.from(paymentInformation.taxInformation);
+    this.loading = false;
+  }
+
+  onDataUpdated = async () => await this.load();
+
+  updateTaxInformation = async (taxInformation: TaxInformation) => {
+    const request = ExpandedTaxInfoUpdateRequest.From(taxInformation);
+    await this.billingApiService.updateProviderTaxInformation(this.providerId, request);
+    this.toastService.showToast({
+      variant: "success",
+      title: null,
+      message: this.i18nService.t("updatedTaxInformation"),
+    });
+  };
+
+  verifyBankAccount = async (amount1: number, amount2: number) => {
+    const request = new VerifyBankAccountRequest(amount1, amount2);
+    await this.billingApiService.verifyProviderBankAccount(this.providerId, request);
+  };
+
+  ngOnInit() {
+    this.activatedRoute.params
+      .pipe(
+        switchMap(({ providerId }) => {
+          this.providerId = providerId;
+          return from(this.load());
+        }),
+        takeUntil(this.destroy$),
+      )
+      .subscribe();
+  }
+
+  ngOnDestroy() {
+    this.destroy$.next();
+    this.destroy$.complete();
+  }
+
+  protected get hasPaymentMethod(): boolean {
+    return !!this.maskedPaymentMethod;
+  }
+
+  protected get hasUnverifiedPaymentMethod(): boolean {
+    return !!this.maskedPaymentMethod && this.maskedPaymentMethod.needsVerification;
+  }
+
+  protected get paymentMethodClass(): string[] {
+    switch (this.maskedPaymentMethod.type) {
+      case PaymentMethodType.Card:
+        return ["bwi-credit-card"];
+      case PaymentMethodType.BankAccount:
+        return ["bwi-bank"];
+      case PaymentMethodType.PayPal:
+        return ["bwi-paypal tw-text-primary"];
+      default:
+        return [];
+    }
+  }
+
+  protected get paymentMethodDescription(): string {
+    let description = this.maskedPaymentMethod.description;
+    if (this.maskedPaymentMethod.type === PaymentMethodType.BankAccount) {
+      if (this.hasUnverifiedPaymentMethod) {
+        description += " - " + this.i18nService.t("unverified");
+      } else {
+        description += " - " + this.i18nService.t("verified");
+      }
+    }
+    return description;
+  }
+}
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/payment-method/provider-select-payment-method-dialog.component.html b/bitwarden_license/bit-web/src/app/billing/providers/payment-method/provider-select-payment-method-dialog.component.html
new file mode 100644
index 00000000000..03e8405a48c
--- /dev/null
+++ b/bitwarden_license/bit-web/src/app/billing/providers/payment-method/provider-select-payment-method-dialog.component.html
@@ -0,0 +1,18 @@
+<form [formGroup]="formGroup" [bitSubmit]="submit">
+  <bit-dialog dialogSize="large">
+    <span bitDialogTitle class="tw-font-semibold">
+      {{ "addPaymentMethod" | i18n }}
+    </span>
+    <ng-container bitDialogContent>
+      <app-select-payment-method [showAccountCredit]="false" />
+    </ng-container>
+    <ng-container bitDialogFooter>
+      <button bitButton bitFormButton buttonType="primary" type="submit">
+        {{ "submit" | i18n }}
+      </button>
+      <button bitButton buttonType="secondary" type="button" [bitDialogClose]="ResultType.Closed">
+        {{ "cancel" | i18n }}
+      </button>
+    </ng-container>
+  </bit-dialog>
+</form>
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/payment-method/provider-select-payment-method-dialog.component.ts b/bitwarden_license/bit-web/src/app/billing/providers/payment-method/provider-select-payment-method-dialog.component.ts
new file mode 100644
index 00000000000..09a293d12d8
--- /dev/null
+++ b/bitwarden_license/bit-web/src/app/billing/providers/payment-method/provider-select-payment-method-dialog.component.ts
@@ -0,0 +1,60 @@
+import { DIALOG_DATA, DialogConfig, DialogRef } from "@angular/cdk/dialog";
+import { Component, EventEmitter, Inject, Output, ViewChild } from "@angular/core";
+import { FormGroup } from "@angular/forms";
+
+import { SelectPaymentMethodComponent } from "@bitwarden/angular/billing/components";
+import { BillingApiServiceAbstraction } from "@bitwarden/common/billing/abstractions";
+import { TokenizedPaymentMethodRequest } from "@bitwarden/common/billing/models/request/tokenized-payment-method.request";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { DialogService, ToastService } from "@bitwarden/components";
+
+type ProviderSelectPaymentMethodDialogParams = {
+  providerId: string;
+};
+
+export enum ProviderSelectPaymentMethodDialogResultType {
+  Closed = "closed",
+  Submitted = "submitted",
+}
+
+export const openProviderSelectPaymentMethodDialog = (
+  dialogService: DialogService,
+  dialogConfig: DialogConfig<ProviderSelectPaymentMethodDialogParams>,
+) =>
+  dialogService.open<
+    ProviderSelectPaymentMethodDialogResultType,
+    ProviderSelectPaymentMethodDialogParams
+  >(ProviderSelectPaymentMethodDialogComponent, dialogConfig);
+
+@Component({
+  templateUrl: "provider-select-payment-method-dialog.component.html",
+})
+export class ProviderSelectPaymentMethodDialogComponent {
+  @ViewChild(SelectPaymentMethodComponent)
+  selectPaymentMethodComponent: SelectPaymentMethodComponent;
+  @Output() providerPaymentMethodUpdated = new EventEmitter();
+
+  protected readonly formGroup = new FormGroup({});
+  protected readonly ResultType = ProviderSelectPaymentMethodDialogResultType;
+
+  constructor(
+    private billingApiService: BillingApiServiceAbstraction,
+    @Inject(DIALOG_DATA) private dialogParams: ProviderSelectPaymentMethodDialogParams,
+    private dialogRef: DialogRef<ProviderSelectPaymentMethodDialogResultType>,
+    private i18nService: I18nService,
+    private toastService: ToastService,
+  ) {}
+
+  submit = async () => {
+    const tokenizedPaymentMethod = await this.selectPaymentMethodComponent.tokenizePaymentMethod();
+    const request = TokenizedPaymentMethodRequest.From(tokenizedPaymentMethod);
+    await this.billingApiService.updateProviderPaymentMethod(this.dialogParams.providerId, request);
+    this.providerPaymentMethodUpdated.emit();
+    this.toastService.showToast({
+      variant: "success",
+      title: null,
+      message: this.i18nService.t("updatedPaymentMethod"),
+    });
+    this.dialogRef.close(this.ResultType.Submitted);
+  };
+}
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/provider-subscription.component.html b/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.html
similarity index 100%
rename from bitwarden_license/bit-web/src/app/billing/providers/provider-subscription.component.html
rename to bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.html
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/provider-subscription.component.ts b/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.ts
similarity index 100%
rename from bitwarden_license/bit-web/src/app/billing/providers/provider-subscription.component.ts
rename to bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.ts
diff --git a/libs/angular/src/billing/components/add-account-credit-dialog/add-account-credit-dialog.component.html b/libs/angular/src/billing/components/add-account-credit-dialog/add-account-credit-dialog.component.html
new file mode 100644
index 00000000000..c9c0c296ada
--- /dev/null
+++ b/libs/angular/src/billing/components/add-account-credit-dialog/add-account-credit-dialog.component.html
@@ -0,0 +1,55 @@
+<form [formGroup]="formGroup" [bitSubmit]="submit">
+  <bit-dialog [title]="'addCredit' | i18n">
+    <ng-container bitDialogContent>
+      <p bitTypography="body1">{{ "creditDelayed" | i18n }}</p>
+      <div class="tw-grid tw-grid-cols-2">
+        <bit-radio-group formControlName="paymentMethod">
+          <bit-radio-button [value]="paymentMethodType.PayPal">
+            <bit-label> <i class="bwi bwi-paypal"></i>{{ "payPal" | i18n }}</bit-label>
+          </bit-radio-button>
+          <bit-radio-button [value]="paymentMethodType.BitPay">
+            <bit-label> <i class="bwi bwi-bitcoin"></i>{{ "bitcoin" | i18n }}</bit-label>
+          </bit-radio-button>
+        </bit-radio-group>
+      </div>
+      <div class="tw-grid tw-grid-cols-2">
+        <bit-form-field>
+          <bit-label>{{ "amount" | i18n }}</bit-label>
+          <input bitInput type="number" formControlName="creditAmount" step="0.01" required />
+          <span bitPrefix>$USD</span>
+        </bit-form-field>
+      </div>
+    </ng-container>
+    <ng-container bitDialogFooter>
+      <button type="submit" bitButton bitFormButton buttonType="primary">
+        {{ "submit" | i18n }}
+      </button>
+      <button
+        type="button"
+        bitButton
+        bitFormButton
+        buttonType="secondary"
+        [bitDialogClose]="ResultType.Closed"
+      >
+        {{ "cancel" | i18n }}
+      </button>
+    </ng-container>
+  </bit-dialog>
+</form>
+<form #payPalForm action="{{ payPalConfig.buttonAction }}" method="post" target="_top">
+  <input type="hidden" name="cmd" value="_xclick" />
+  <input type="hidden" name="business" value="{{ payPalConfig.businessId }}" />
+  <input type="hidden" name="button_subtype" value="services" />
+  <input type="hidden" name="no_note" value="1" />
+  <input type="hidden" name="no_shipping" value="1" />
+  <input type="hidden" name="rm" value="1" />
+  <input type="hidden" name="return" value="{{ payPalConfig.returnUrl }}" />
+  <input type="hidden" name="cancel_return" value="{{ payPalConfig.returnUrl }}" />
+  <input type="hidden" name="currency_code" value="USD" />
+  <input type="hidden" name="image_url" value="https://bitwarden.com/images/paypal-banner.png" />
+  <input type="hidden" name="bn" value="PP-BuyNowBF:btn_buynow_LG.gif:NonHosted" />
+  <input type="hidden" name="amount" value="{{ formGroup.get('creditAmount').value }}" />
+  <input type="hidden" name="custom" value="{{ payPalConfig.customField }}" />
+  <input type="hidden" name="item_name" value="Bitwarden Account Credit" />
+  <input type="hidden" name="item_number" value="{{ payPalConfig.subject }}" />
+</form>
diff --git a/libs/angular/src/billing/components/add-account-credit-dialog/add-account-credit-dialog.component.ts b/libs/angular/src/billing/components/add-account-credit-dialog/add-account-credit-dialog.component.ts
new file mode 100644
index 00000000000..d3c262c4b7d
--- /dev/null
+++ b/libs/angular/src/billing/components/add-account-credit-dialog/add-account-credit-dialog.component.ts
@@ -0,0 +1,153 @@
+import { DIALOG_DATA, DialogConfig, DialogRef } from "@angular/cdk/dialog";
+import { Component, ElementRef, Inject, OnInit, ViewChild } from "@angular/core";
+import { FormControl, FormGroup, Validators } from "@angular/forms";
+import { firstValueFrom } from "rxjs";
+
+import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
+import { ProviderService } from "@bitwarden/common/admin-console/abstractions/provider.service";
+import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { Provider } from "@bitwarden/common/admin-console/models/domain/provider";
+import { AccountInfo, AccountService } from "@bitwarden/common/auth/abstractions/account.service";
+import { PaymentMethodType } from "@bitwarden/common/billing/enums";
+import { BitPayInvoiceRequest } from "@bitwarden/common/billing/models/request/bit-pay-invoice.request";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { UserId } from "@bitwarden/common/types/guid";
+import { DialogService } from "@bitwarden/components";
+
+export type AddAccountCreditDialogParams = {
+  organizationId?: string;
+  providerId?: string;
+};
+
+export enum AddAccountCreditDialogResultType {
+  Closed = "closed",
+  Submitted = "submitted",
+}
+
+export const openAddAccountCreditDialog = (
+  dialogService: DialogService,
+  dialogConfig: DialogConfig<AddAccountCreditDialogParams>,
+) =>
+  dialogService.open<AddAccountCreditDialogResultType, AddAccountCreditDialogParams>(
+    AddAccountCreditDialogComponent,
+    dialogConfig,
+  );
+
+type PayPalConfig = {
+  businessId?: string;
+  buttonAction?: string;
+  returnUrl?: string;
+  customField?: string;
+  subject?: string;
+};
+
+@Component({
+  templateUrl: "./add-account-credit-dialog.component.html",
+})
+export class AddAccountCreditDialogComponent implements OnInit {
+  @ViewChild("payPalForm", { read: ElementRef, static: true }) payPalForm: ElementRef;
+  protected formGroup = new FormGroup({
+    paymentMethod: new FormControl<PaymentMethodType>(PaymentMethodType.PayPal),
+    creditAmount: new FormControl<number>(null, [Validators.required, Validators.min(0.01)]),
+  });
+  protected payPalConfig: PayPalConfig;
+  protected ResultType = AddAccountCreditDialogResultType;
+
+  private organization?: Organization;
+  private provider?: Provider;
+  private user?: { id: UserId } & AccountInfo;
+
+  constructor(
+    private accountService: AccountService,
+    private apiService: ApiService,
+    private configService: ConfigService,
+    @Inject(DIALOG_DATA) private dialogParams: AddAccountCreditDialogParams,
+    private dialogRef: DialogRef<AddAccountCreditDialogResultType>,
+    private organizationService: OrganizationService,
+    private platformUtilsService: PlatformUtilsService,
+    private providerService: ProviderService,
+  ) {
+    this.payPalConfig = process.env.PAYPAL_CONFIG as PayPalConfig;
+  }
+
+  protected readonly paymentMethodType = PaymentMethodType;
+
+  submit = async () => {
+    this.formGroup.markAllAsTouched();
+
+    if (this.formGroup.invalid) {
+      return;
+    }
+
+    if (this.formGroup.value.paymentMethod === PaymentMethodType.PayPal) {
+      this.payPalForm.nativeElement.submit();
+      return;
+    }
+
+    if (this.formGroup.value.paymentMethod === PaymentMethodType.BitPay) {
+      const request = this.getBitPayInvoiceRequest();
+      const bitPayUrl = await this.apiService.postBitPayInvoice(request);
+      this.platformUtilsService.launchUri(bitPayUrl);
+      return;
+    }
+
+    this.dialogRef.close(AddAccountCreditDialogResultType.Submitted);
+  };
+
+  async ngOnInit(): Promise<void> {
+    let payPalCustomField: string;
+
+    if (this.dialogParams.organizationId) {
+      this.formGroup.patchValue({
+        creditAmount: 20.0,
+      });
+      this.organization = await this.organizationService.get(this.dialogParams.organizationId);
+      payPalCustomField = "organization_id:" + this.organization.id;
+      this.payPalConfig.subject = this.organization.name;
+    } else if (this.dialogParams.providerId) {
+      this.formGroup.patchValue({
+        creditAmount: 20.0,
+      });
+      this.provider = await this.providerService.get(this.dialogParams.providerId);
+      payPalCustomField = "provider_id:" + this.provider.id;
+      this.payPalConfig.subject = this.provider.name;
+    } else {
+      this.formGroup.patchValue({
+        creditAmount: 10.0,
+      });
+      this.user = await firstValueFrom(this.accountService.activeAccount$);
+      payPalCustomField = "user_id:" + this.user.id;
+      this.payPalConfig.subject = this.user.email;
+    }
+
+    const region = await firstValueFrom(this.configService.cloudRegion$);
+
+    payPalCustomField += ",account_credit:1";
+    payPalCustomField += `,region:${region}`;
+
+    this.payPalConfig.customField = payPalCustomField;
+    this.payPalConfig.returnUrl = window.location.href;
+  }
+
+  getBitPayInvoiceRequest(): BitPayInvoiceRequest {
+    const request = new BitPayInvoiceRequest();
+    if (this.organization) {
+      request.name = this.organization.name;
+      request.organizationId = this.organization.id;
+    } else if (this.provider) {
+      request.name = this.provider.name;
+      request.providerId = this.provider.id;
+    } else {
+      request.email = this.user.email;
+      request.userId = this.user.id;
+    }
+
+    request.credit = true;
+    request.amount = this.formGroup.value.creditAmount;
+    request.returnUrl = window.location.href;
+
+    return request;
+  }
+}
diff --git a/libs/angular/src/billing/components/index.ts b/libs/angular/src/billing/components/index.ts
new file mode 100644
index 00000000000..748a005df83
--- /dev/null
+++ b/libs/angular/src/billing/components/index.ts
@@ -0,0 +1,4 @@
+export * from "./add-account-credit-dialog/add-account-credit-dialog.component";
+export * from "./manage-tax-information/manage-tax-information.component";
+export * from "./select-payment-method/select-payment-method.component";
+export * from "./verify-bank-account/verify-bank-account.component";
diff --git a/libs/angular/src/billing/components/manage-tax-information/manage-tax-information.component.html b/libs/angular/src/billing/components/manage-tax-information/manage-tax-information.component.html
new file mode 100644
index 00000000000..f9cfa8e0faf
--- /dev/null
+++ b/libs/angular/src/billing/components/manage-tax-information/manage-tax-information.component.html
@@ -0,0 +1,72 @@
+<form [formGroup]="formGroup" [bitSubmit]="submit">
+  <div class="tw-grid tw-grid-cols-12 tw-gap-4">
+    <div class="tw-col-span-6">
+      <bit-form-field>
+        <bit-label>{{ "country" | i18n }}</bit-label>
+        <bit-select formControlName="country">
+          <bit-option
+            *ngFor="let country of countries"
+            [value]="country.value"
+            [disabled]="country.disabled"
+            [label]="country.name"
+          ></bit-option>
+        </bit-select>
+      </bit-form-field>
+    </div>
+    <div class="tw-col-span-6">
+      <bit-form-field>
+        <bit-label>{{ "zipPostalCode" | i18n }}</bit-label>
+        <input bitInput type="text" formControlName="postalCode" autocomplete="postal-code" />
+      </bit-form-field>
+    </div>
+    <div class="tw-col-span-6" *ngIf="selectionSupportsAdditionalOptions">
+      <bit-form-control>
+        <input bitCheckbox type="checkbox" formControlName="includeTaxId" />
+        <bit-label>{{ "includeVAT" | i18n }}</bit-label>
+      </bit-form-control>
+    </div>
+  </div>
+  <div
+    class="tw-grid tw-grid-cols-12 tw-gap-4"
+    *ngIf="selectionSupportsAdditionalOptions && includeTaxIdIsSelected"
+  >
+    <div class="tw-col-span-6">
+      <bit-form-field>
+        <bit-label>{{ "taxIdNumber" | i18n }}</bit-label>
+        <input bitInput type="text" formControlName="taxId" />
+      </bit-form-field>
+    </div>
+  </div>
+  <div
+    class="tw-grid tw-grid-cols-12 tw-gap-4"
+    *ngIf="selectionSupportsAdditionalOptions && includeTaxIdIsSelected"
+  >
+    <div class="tw-col-span-6">
+      <bit-form-field disableMargin>
+        <bit-label>{{ "address1" | i18n }}</bit-label>
+        <input bitInput type="text" formControlName="line1" autocomplete="address-line1" />
+      </bit-form-field>
+    </div>
+    <div class="tw-col-span-6">
+      <bit-form-field disableMargin>
+        <bit-label>{{ "address2" | i18n }}</bit-label>
+        <input bitInput type="text" formControlName="line2" autocomplete="address-line2" />
+      </bit-form-field>
+    </div>
+    <div class="tw-col-span-6">
+      <bit-form-field>
+        <bit-label>{{ "cityTown" | i18n }}</bit-label>
+        <input bitInput type="text" formControlName="city" autocomplete="address-level2" />
+      </bit-form-field>
+    </div>
+    <div class="tw-col-span-6">
+      <bit-form-field>
+        <bit-label>{{ "stateProvince" | i18n }}</bit-label>
+        <input bitInput type="text" formControlName="state" autocomplete="address-level1" />
+      </bit-form-field>
+    </div>
+  </div>
+  <button *ngIf="!!onSubmit" bitButton bitFormButton buttonType="primary" type="submit">
+    {{ "submit" | i18n }}
+  </button>
+</form>
diff --git a/libs/angular/src/billing/components/manage-tax-information/manage-tax-information.component.ts b/libs/angular/src/billing/components/manage-tax-information/manage-tax-information.component.ts
new file mode 100644
index 00000000000..58342548ca3
--- /dev/null
+++ b/libs/angular/src/billing/components/manage-tax-information/manage-tax-information.component.ts
@@ -0,0 +1,406 @@
+import { Component, EventEmitter, Input, OnInit, Output } from "@angular/core";
+import { FormBuilder, Validators } from "@angular/forms";
+
+import { TaxInformation } from "@bitwarden/common/billing/models/domain";
+
+type Country = {
+  name: string;
+  value: string;
+  disabled: boolean;
+};
+
+@Component({
+  selector: "app-manage-tax-information",
+  templateUrl: "./manage-tax-information.component.html",
+})
+export class ManageTaxInformationComponent implements OnInit {
+  @Input({ required: true }) taxInformation: TaxInformation;
+  @Input() onSubmit?: (taxInformation: TaxInformation) => Promise<void>;
+  @Output() taxInformationUpdated = new EventEmitter();
+
+  protected formGroup = this.formBuilder.group({
+    country: ["", Validators.required],
+    postalCode: ["", Validators.required],
+    includeTaxId: false,
+    taxId: "",
+    line1: "",
+    line2: "",
+    city: "",
+    state: "",
+  });
+
+  constructor(private formBuilder: FormBuilder) {}
+
+  submit = async () => {
+    await this.onSubmit({
+      country: this.formGroup.value.country,
+      postalCode: this.formGroup.value.postalCode,
+      taxId: this.formGroup.value.taxId,
+      line1: this.formGroup.value.line1,
+      line2: this.formGroup.value.line2,
+      city: this.formGroup.value.city,
+      state: this.formGroup.value.state,
+    });
+
+    this.taxInformationUpdated.emit();
+  };
+
+  async ngOnInit() {
+    if (this.taxInformation) {
+      this.formGroup.patchValue({
+        ...this.taxInformation,
+        includeTaxId:
+          this.countrySupportsTax(this.taxInformation.country) &&
+          (!!this.taxInformation.taxId ||
+            !!this.taxInformation.line1 ||
+            !!this.taxInformation.line2 ||
+            !!this.taxInformation.city ||
+            !!this.taxInformation.state),
+      });
+    }
+  }
+
+  protected countrySupportsTax(countryCode: string) {
+    return this.taxSupportedCountryCodes.includes(countryCode);
+  }
+
+  protected get includeTaxIdIsSelected() {
+    return this.formGroup.value.includeTaxId;
+  }
+
+  protected get selectionSupportsAdditionalOptions() {
+    return (
+      this.formGroup.value.country !== "US" && this.countrySupportsTax(this.formGroup.value.country)
+    );
+  }
+
+  protected countries: Country[] = [
+    { name: "-- Select --", value: "", disabled: false },
+    { name: "United States", value: "US", disabled: false },
+    { name: "China", value: "CN", disabled: false },
+    { name: "France", value: "FR", disabled: false },
+    { name: "Germany", value: "DE", disabled: false },
+    { name: "Canada", value: "CA", disabled: false },
+    { name: "United Kingdom", value: "GB", disabled: false },
+    { name: "Australia", value: "AU", disabled: false },
+    { name: "India", value: "IN", disabled: false },
+    { name: "", value: "-", disabled: true },
+    { name: "Afghanistan", value: "AF", disabled: false },
+    { name: "Åland Islands", value: "AX", disabled: false },
+    { name: "Albania", value: "AL", disabled: false },
+    { name: "Algeria", value: "DZ", disabled: false },
+    { name: "American Samoa", value: "AS", disabled: false },
+    { name: "Andorra", value: "AD", disabled: false },
+    { name: "Angola", value: "AO", disabled: false },
+    { name: "Anguilla", value: "AI", disabled: false },
+    { name: "Antarctica", value: "AQ", disabled: false },
+    { name: "Antigua and Barbuda", value: "AG", disabled: false },
+    { name: "Argentina", value: "AR", disabled: false },
+    { name: "Armenia", value: "AM", disabled: false },
+    { name: "Aruba", value: "AW", disabled: false },
+    { name: "Austria", value: "AT", disabled: false },
+    { name: "Azerbaijan", value: "AZ", disabled: false },
+    { name: "Bahamas", value: "BS", disabled: false },
+    { name: "Bahrain", value: "BH", disabled: false },
+    { name: "Bangladesh", value: "BD", disabled: false },
+    { name: "Barbados", value: "BB", disabled: false },
+    { name: "Belarus", value: "BY", disabled: false },
+    { name: "Belgium", value: "BE", disabled: false },
+    { name: "Belize", value: "BZ", disabled: false },
+    { name: "Benin", value: "BJ", disabled: false },
+    { name: "Bermuda", value: "BM", disabled: false },
+    { name: "Bhutan", value: "BT", disabled: false },
+    { name: "Bolivia, Plurinational State of", value: "BO", disabled: false },
+    { name: "Bonaire, Sint Eustatius and Saba", value: "BQ", disabled: false },
+    { name: "Bosnia and Herzegovina", value: "BA", disabled: false },
+    { name: "Botswana", value: "BW", disabled: false },
+    { name: "Bouvet Island", value: "BV", disabled: false },
+    { name: "Brazil", value: "BR", disabled: false },
+    { name: "British Indian Ocean Territory", value: "IO", disabled: false },
+    { name: "Brunei Darussalam", value: "BN", disabled: false },
+    { name: "Bulgaria", value: "BG", disabled: false },
+    { name: "Burkina Faso", value: "BF", disabled: false },
+    { name: "Burundi", value: "BI", disabled: false },
+    { name: "Cambodia", value: "KH", disabled: false },
+    { name: "Cameroon", value: "CM", disabled: false },
+    { name: "Cape Verde", value: "CV", disabled: false },
+    { name: "Cayman Islands", value: "KY", disabled: false },
+    { name: "Central African Republic", value: "CF", disabled: false },
+    { name: "Chad", value: "TD", disabled: false },
+    { name: "Chile", value: "CL", disabled: false },
+    { name: "Christmas Island", value: "CX", disabled: false },
+    { name: "Cocos (Keeling) Islands", value: "CC", disabled: false },
+    { name: "Colombia", value: "CO", disabled: false },
+    { name: "Comoros", value: "KM", disabled: false },
+    { name: "Congo", value: "CG", disabled: false },
+    { name: "Congo, the Democratic Republic of the", value: "CD", disabled: false },
+    { name: "Cook Islands", value: "CK", disabled: false },
+    { name: "Costa Rica", value: "CR", disabled: false },
+    { name: "Côte d'Ivoire", value: "CI", disabled: false },
+    { name: "Croatia", value: "HR", disabled: false },
+    { name: "Cuba", value: "CU", disabled: false },
+    { name: "Curaçao", value: "CW", disabled: false },
+    { name: "Cyprus", value: "CY", disabled: false },
+    { name: "Czech Republic", value: "CZ", disabled: false },
+    { name: "Denmark", value: "DK", disabled: false },
+    { name: "Djibouti", value: "DJ", disabled: false },
+    { name: "Dominica", value: "DM", disabled: false },
+    { name: "Dominican Republic", value: "DO", disabled: false },
+    { name: "Ecuador", value: "EC", disabled: false },
+    { name: "Egypt", value: "EG", disabled: false },
+    { name: "El Salvador", value: "SV", disabled: false },
+    { name: "Equatorial Guinea", value: "GQ", disabled: false },
+    { name: "Eritrea", value: "ER", disabled: false },
+    { name: "Estonia", value: "EE", disabled: false },
+    { name: "Ethiopia", value: "ET", disabled: false },
+    { name: "Falkland Islands (Malvinas)", value: "FK", disabled: false },
+    { name: "Faroe Islands", value: "FO", disabled: false },
+    { name: "Fiji", value: "FJ", disabled: false },
+    { name: "Finland", value: "FI", disabled: false },
+    { name: "French Guiana", value: "GF", disabled: false },
+    { name: "French Polynesia", value: "PF", disabled: false },
+    { name: "French Southern Territories", value: "TF", disabled: false },
+    { name: "Gabon", value: "GA", disabled: false },
+    { name: "Gambia", value: "GM", disabled: false },
+    { name: "Georgia", value: "GE", disabled: false },
+    { name: "Ghana", value: "GH", disabled: false },
+    { name: "Gibraltar", value: "GI", disabled: false },
+    { name: "Greece", value: "GR", disabled: false },
+    { name: "Greenland", value: "GL", disabled: false },
+    { name: "Grenada", value: "GD", disabled: false },
+    { name: "Guadeloupe", value: "GP", disabled: false },
+    { name: "Guam", value: "GU", disabled: false },
+    { name: "Guatemala", value: "GT", disabled: false },
+    { name: "Guernsey", value: "GG", disabled: false },
+    { name: "Guinea", value: "GN", disabled: false },
+    { name: "Guinea-Bissau", value: "GW", disabled: false },
+    { name: "Guyana", value: "GY", disabled: false },
+    { name: "Haiti", value: "HT", disabled: false },
+    { name: "Heard Island and McDonald Islands", value: "HM", disabled: false },
+    { name: "Holy See (Vatican City State)", value: "VA", disabled: false },
+    { name: "Honduras", value: "HN", disabled: false },
+    { name: "Hong Kong", value: "HK", disabled: false },
+    { name: "Hungary", value: "HU", disabled: false },
+    { name: "Iceland", value: "IS", disabled: false },
+    { name: "Indonesia", value: "ID", disabled: false },
+    { name: "Iran, Islamic Republic of", value: "IR", disabled: false },
+    { name: "Iraq", value: "IQ", disabled: false },
+    { name: "Ireland", value: "IE", disabled: false },
+    { name: "Isle of Man", value: "IM", disabled: false },
+    { name: "Israel", value: "IL", disabled: false },
+    { name: "Italy", value: "IT", disabled: false },
+    { name: "Jamaica", value: "JM", disabled: false },
+    { name: "Japan", value: "JP", disabled: false },
+    { name: "Jersey", value: "JE", disabled: false },
+    { name: "Jordan", value: "JO", disabled: false },
+    { name: "Kazakhstan", value: "KZ", disabled: false },
+    { name: "Kenya", value: "KE", disabled: false },
+    { name: "Kiribati", value: "KI", disabled: false },
+    { name: "Korea, Democratic People's Republic of", value: "KP", disabled: false },
+    { name: "Korea, Republic of", value: "KR", disabled: false },
+    { name: "Kuwait", value: "KW", disabled: false },
+    { name: "Kyrgyzstan", value: "KG", disabled: false },
+    { name: "Lao People's Democratic Republic", value: "LA", disabled: false },
+    { name: "Latvia", value: "LV", disabled: false },
+    { name: "Lebanon", value: "LB", disabled: false },
+    { name: "Lesotho", value: "LS", disabled: false },
+    { name: "Liberia", value: "LR", disabled: false },
+    { name: "Libya", value: "LY", disabled: false },
+    { name: "Liechtenstein", value: "LI", disabled: false },
+    { name: "Lithuania", value: "LT", disabled: false },
+    { name: "Luxembourg", value: "LU", disabled: false },
+    { name: "Macao", value: "MO", disabled: false },
+    { name: "Macedonia, the former Yugoslav Republic of", value: "MK", disabled: false },
+    { name: "Madagascar", value: "MG", disabled: false },
+    { name: "Malawi", value: "MW", disabled: false },
+    { name: "Malaysia", value: "MY", disabled: false },
+    { name: "Maldives", value: "MV", disabled: false },
+    { name: "Mali", value: "ML", disabled: false },
+    { name: "Malta", value: "MT", disabled: false },
+    { name: "Marshall Islands", value: "MH", disabled: false },
+    { name: "Martinique", value: "MQ", disabled: false },
+    { name: "Mauritania", value: "MR", disabled: false },
+    { name: "Mauritius", value: "MU", disabled: false },
+    { name: "Mayotte", value: "YT", disabled: false },
+    { name: "Mexico", value: "MX", disabled: false },
+    { name: "Micronesia, Federated States of", value: "FM", disabled: false },
+    { name: "Moldova, Republic of", value: "MD", disabled: false },
+    { name: "Monaco", value: "MC", disabled: false },
+    { name: "Mongolia", value: "MN", disabled: false },
+    { name: "Montenegro", value: "ME", disabled: false },
+    { name: "Montserrat", value: "MS", disabled: false },
+    { name: "Morocco", value: "MA", disabled: false },
+    { name: "Mozambique", value: "MZ", disabled: false },
+    { name: "Myanmar", value: "MM", disabled: false },
+    { name: "Namibia", value: "NA", disabled: false },
+    { name: "Nauru", value: "NR", disabled: false },
+    { name: "Nepal", value: "NP", disabled: false },
+    { name: "Netherlands", value: "NL", disabled: false },
+    { name: "New Caledonia", value: "NC", disabled: false },
+    { name: "New Zealand", value: "NZ", disabled: false },
+    { name: "Nicaragua", value: "NI", disabled: false },
+    { name: "Niger", value: "NE", disabled: false },
+    { name: "Nigeria", value: "NG", disabled: false },
+    { name: "Niue", value: "NU", disabled: false },
+    { name: "Norfolk Island", value: "NF", disabled: false },
+    { name: "Northern Mariana Islands", value: "MP", disabled: false },
+    { name: "Norway", value: "NO", disabled: false },
+    { name: "Oman", value: "OM", disabled: false },
+    { name: "Pakistan", value: "PK", disabled: false },
+    { name: "Palau", value: "PW", disabled: false },
+    { name: "Palestinian Territory, Occupied", value: "PS", disabled: false },
+    { name: "Panama", value: "PA", disabled: false },
+    { name: "Papua New Guinea", value: "PG", disabled: false },
+    { name: "Paraguay", value: "PY", disabled: false },
+    { name: "Peru", value: "PE", disabled: false },
+    { name: "Philippines", value: "PH", disabled: false },
+    { name: "Pitcairn", value: "PN", disabled: false },
+    { name: "Poland", value: "PL", disabled: false },
+    { name: "Portugal", value: "PT", disabled: false },
+    { name: "Puerto Rico", value: "PR", disabled: false },
+    { name: "Qatar", value: "QA", disabled: false },
+    { name: "Réunion", value: "RE", disabled: false },
+    { name: "Romania", value: "RO", disabled: false },
+    { name: "Russian Federation", value: "RU", disabled: false },
+    { name: "Rwanda", value: "RW", disabled: false },
+    { name: "Saint Barthélemy", value: "BL", disabled: false },
+    { name: "Saint Helena, Ascension and Tristan da Cunha", value: "SH", disabled: false },
+    { name: "Saint Kitts and Nevis", value: "KN", disabled: false },
+    { name: "Saint Lucia", value: "LC", disabled: false },
+    { name: "Saint Martin (French part)", value: "MF", disabled: false },
+    { name: "Saint Pierre and Miquelon", value: "PM", disabled: false },
+    { name: "Saint Vincent and the Grenadines", value: "VC", disabled: false },
+    { name: "Samoa", value: "WS", disabled: false },
+    { name: "San Marino", value: "SM", disabled: false },
+    { name: "Sao Tome and Principe", value: "ST", disabled: false },
+    { name: "Saudi Arabia", value: "SA", disabled: false },
+    { name: "Senegal", value: "SN", disabled: false },
+    { name: "Serbia", value: "RS", disabled: false },
+    { name: "Seychelles", value: "SC", disabled: false },
+    { name: "Sierra Leone", value: "SL", disabled: false },
+    { name: "Singapore", value: "SG", disabled: false },
+    { name: "Sint Maarten (Dutch part)", value: "SX", disabled: false },
+    { name: "Slovakia", value: "SK", disabled: false },
+    { name: "Slovenia", value: "SI", disabled: false },
+    { name: "Solomon Islands", value: "SB", disabled: false },
+    { name: "Somalia", value: "SO", disabled: false },
+    { name: "South Africa", value: "ZA", disabled: false },
+    { name: "South Georgia and the South Sandwich Islands", value: "GS", disabled: false },
+    { name: "South Sudan", value: "SS", disabled: false },
+    { name: "Spain", value: "ES", disabled: false },
+    { name: "Sri Lanka", value: "LK", disabled: false },
+    { name: "Sudan", value: "SD", disabled: false },
+    { name: "Suriname", value: "SR", disabled: false },
+    { name: "Svalbard and Jan Mayen", value: "SJ", disabled: false },
+    { name: "Swaziland", value: "SZ", disabled: false },
+    { name: "Sweden", value: "SE", disabled: false },
+    { name: "Switzerland", value: "CH", disabled: false },
+    { name: "Syrian Arab Republic", value: "SY", disabled: false },
+    { name: "Taiwan", value: "TW", disabled: false },
+    { name: "Tajikistan", value: "TJ", disabled: false },
+    { name: "Tanzania, United Republic of", value: "TZ", disabled: false },
+    { name: "Thailand", value: "TH", disabled: false },
+    { name: "Timor-Leste", value: "TL", disabled: false },
+    { name: "Togo", value: "TG", disabled: false },
+    { name: "Tokelau", value: "TK", disabled: false },
+    { name: "Tonga", value: "TO", disabled: false },
+    { name: "Trinidad and Tobago", value: "TT", disabled: false },
+    { name: "Tunisia", value: "TN", disabled: false },
+    { name: "Turkey", value: "TR", disabled: false },
+    { name: "Turkmenistan", value: "TM", disabled: false },
+    { name: "Turks and Caicos Islands", value: "TC", disabled: false },
+    { name: "Tuvalu", value: "TV", disabled: false },
+    { name: "Uganda", value: "UG", disabled: false },
+    { name: "Ukraine", value: "UA", disabled: false },
+    { name: "United Arab Emirates", value: "AE", disabled: false },
+    { name: "United States Minor Outlying Islands", value: "UM", disabled: false },
+    { name: "Uruguay", value: "UY", disabled: false },
+    { name: "Uzbekistan", value: "UZ", disabled: false },
+    { name: "Vanuatu", value: "VU", disabled: false },
+    { name: "Venezuela, Bolivarian Republic of", value: "VE", disabled: false },
+    { name: "Viet Nam", value: "VN", disabled: false },
+    { name: "Virgin Islands, British", value: "VG", disabled: false },
+    { name: "Virgin Islands, U.S.", value: "VI", disabled: false },
+    { name: "Wallis and Futuna", value: "WF", disabled: false },
+    { name: "Western Sahara", value: "EH", disabled: false },
+    { name: "Yemen", value: "YE", disabled: false },
+    { name: "Zambia", value: "ZM", disabled: false },
+    { name: "Zimbabwe", value: "ZW", disabled: false },
+  ];
+
+  private taxSupportedCountryCodes: string[] = [
+    "CN",
+    "FR",
+    "DE",
+    "CA",
+    "GB",
+    "AU",
+    "IN",
+    "AD",
+    "AR",
+    "AT",
+    "BE",
+    "BO",
+    "BR",
+    "BG",
+    "CL",
+    "CO",
+    "CR",
+    "HR",
+    "CY",
+    "CZ",
+    "DK",
+    "DO",
+    "EC",
+    "EG",
+    "SV",
+    "EE",
+    "FI",
+    "GE",
+    "GR",
+    "HK",
+    "HU",
+    "IS",
+    "ID",
+    "IQ",
+    "IE",
+    "IL",
+    "IT",
+    "JP",
+    "KE",
+    "KR",
+    "LV",
+    "LI",
+    "LT",
+    "LU",
+    "MY",
+    "MT",
+    "MX",
+    "NL",
+    "NZ",
+    "NO",
+    "PE",
+    "PH",
+    "PL",
+    "PT",
+    "RO",
+    "RU",
+    "SA",
+    "RS",
+    "SG",
+    "SK",
+    "SI",
+    "ZA",
+    "ES",
+    "SE",
+    "CH",
+    "TW",
+    "TH",
+    "TR",
+    "UA",
+    "AE",
+    "UY",
+    "VE",
+    "VN",
+  ];
+}
diff --git a/libs/angular/src/billing/components/select-payment-method/select-payment-method.component.html b/libs/angular/src/billing/components/select-payment-method/select-payment-method.component.html
new file mode 100644
index 00000000000..7add3f6d35d
--- /dev/null
+++ b/libs/angular/src/billing/components/select-payment-method/select-payment-method.component.html
@@ -0,0 +1,151 @@
+<form [formGroup]="formGroup" [bitSubmit]="submit">
+  <div class="tw-mb-4 tw-text-lg">
+    <bit-radio-group formControlName="paymentMethod">
+      <bit-radio-button id="card-payment-method" [value]="PaymentMethodType.Card">
+        <bit-label>
+          <i class="bwi bwi-fw bwi-credit-card" aria-hidden="true"></i>
+          {{ "creditCard" | i18n }}
+        </bit-label>
+      </bit-radio-button>
+      <bit-radio-button
+        id="bank-payment-method"
+        [value]="PaymentMethodType.BankAccount"
+        *ngIf="showBankAccount"
+      >
+        <bit-label>
+          <i class="bwi bwi-fw bwi-bank" aria-hidden="true"></i>
+          {{ "bankAccount" | i18n }}
+        </bit-label>
+      </bit-radio-button>
+      <bit-radio-button
+        id="paypal-payment-method"
+        [value]="PaymentMethodType.PayPal"
+        *ngIf="showPayPal"
+      >
+        <bit-label>
+          <i class="bwi bwi-fw bwi-paypal" aria-hidden="true"></i>
+          {{ "payPal" | i18n }}
+        </bit-label>
+      </bit-radio-button>
+      <bit-radio-button
+        id="credit-payment-method"
+        [value]="PaymentMethodType.Credit"
+        *ngIf="showAccountCredit"
+      >
+        <bit-label>
+          <i class="bwi bwi-fw bwi-dollar" aria-hidden="true"></i>
+          {{ "accountCredit" | i18n }}
+        </bit-label>
+      </bit-radio-button>
+    </bit-radio-group>
+  </div>
+  <!-- Card -->
+  <ng-container *ngIf="usingCard">
+    <div class="tw-grid tw-grid-cols-2 tw-gap-4 tw-mb-4">
+      <div class="tw-col-span-1">
+        <label for="stripe-card-number">{{ "number" | i18n }}</label>
+        <div id="stripe-card-number" class="form-control stripe-form-control"></div>
+      </div>
+      <div class="tw-col-span-1 tw-flex tw-items-end">
+        <img
+          src="../../images/cards.png"
+          alt="Visa, MasterCard, Discover, AmEx, JCB, Diners Club, UnionPay"
+          class="tw-max-w-full"
+        />
+      </div>
+      <div class="tw-col-span-1">
+        <label for="stripe-card-expiry">{{ "expiration" | i18n }}</label>
+        <div id="stripe-card-expiry" class="form-control stripe-form-control"></div>
+      </div>
+      <div class="tw-col-span-1">
+        <div class="tw-flex">
+          <label for="stripe-card-cvc">
+            {{ "securityCode" | i18n }}
+          </label>
+          <a
+            href="https://www.cvvnumber.com/cvv.html"
+            tabindex="-1"
+            target="_blank"
+            rel="noreferrer"
+            class="ml-auto"
+            appA11yTitle="{{ 'learnMore' | i18n }}"
+          >
+            <i class="bwi bwi-question-circle" aria-hidden="true"></i>
+          </a>
+        </div>
+        <div id="stripe-card-cvc" class="form-control stripe-form-control"></div>
+      </div>
+    </div>
+  </ng-container>
+  <!-- Bank Account -->
+  <ng-container *ngIf="showBankAccount && usingBankAccount">
+    <app-callout type="warning" title="{{ 'verifyBankAccount' | i18n }}">
+      {{ "verifyBankAccountInitialDesc" | i18n }} {{ "verifyBankAccountFailureWarning" | i18n }}
+    </app-callout>
+    <div class="tw-grid tw-grid-cols-2 tw-gap-4" formGroupName="bankInformation">
+      <bit-form-field class="tw-col-span-1" disableMargin>
+        <bit-label>{{ "routingNumber" | i18n }}</bit-label>
+        <input
+          bitInput
+          id="routingNumber"
+          type="text"
+          formControlName="routingNumber"
+          required
+          appInputVerbatim
+        />
+      </bit-form-field>
+      <bit-form-field class="tw-col-span-1" disableMargin>
+        <bit-label>{{ "accountNumber" | i18n }}</bit-label>
+        <input
+          bitInput
+          id="accountNumber"
+          type="text"
+          formControlName="accountNumber"
+          required
+          appInputVerbatim
+        />
+      </bit-form-field>
+      <bit-form-field class="tw-col-span-1" disableMargin>
+        <bit-label>{{ "accountHolderName" | i18n }}</bit-label>
+        <input
+          id="accountHolderName"
+          bitInput
+          type="text"
+          formControlName="accountHolderName"
+          required
+          appInputVerbatim
+        />
+      </bit-form-field>
+      <bit-form-field class="tw-col-span-1" disableMargin>
+        <bit-label>{{ "bankAccountType" | i18n }}</bit-label>
+        <bit-select id="accountHolderType" formControlName="accountHolderType" required>
+          <bit-option [value]="''" label="-- {{ 'select' | i18n }} --"></bit-option>
+          <bit-option
+            [value]="'company'"
+            label="{{ 'bankAccountTypeCompany' | i18n }}"
+          ></bit-option>
+          <bit-option
+            [value]="'individual'"
+            label="{{ 'bankAccountTypeIndividual' | i18n }}"
+          ></bit-option>
+        </bit-select>
+      </bit-form-field>
+    </div>
+  </ng-container>
+  <!-- PayPal -->
+  <ng-container *ngIf="showPayPal && usingPayPal">
+    <div class="tw-mb-3">
+      <div id="braintree-container" class="tw-mb-1 tw-content-center"></div>
+      <small class="tw-text-muted">{{ "paypalClickSubmit" | i18n }}</small>
+    </div>
+  </ng-container>
+  <!-- Account Credit -->
+  <ng-container *ngIf="showAccountCredit && usingAccountCredit">
+    <app-callout type="note">
+      {{ "makeSureEnoughCredit" | i18n }}
+    </app-callout>
+  </ng-container>
+  <button *ngIf="!!onSubmit" bitButton bitFormButton buttonType="primary" type="submit">
+    {{ "submit" | i18n }}
+  </button>
+</form>
diff --git a/libs/angular/src/billing/components/select-payment-method/select-payment-method.component.ts b/libs/angular/src/billing/components/select-payment-method/select-payment-method.component.ts
new file mode 100644
index 00000000000..4dc39334a70
--- /dev/null
+++ b/libs/angular/src/billing/components/select-payment-method/select-payment-method.component.ts
@@ -0,0 +1,159 @@
+import { Component, Input, OnDestroy, OnInit } from "@angular/core";
+import { FormBuilder, Validators } from "@angular/forms";
+import { Subject } from "rxjs";
+import { takeUntil } from "rxjs/operators";
+
+import {
+  BillingApiServiceAbstraction,
+  BraintreeServiceAbstraction,
+  StripeServiceAbstraction,
+} from "@bitwarden/common/billing/abstractions";
+import { PaymentMethodType } from "@bitwarden/common/billing/enums";
+import { TokenizedPaymentMethod } from "@bitwarden/common/billing/models/domain";
+
+@Component({
+  selector: "app-select-payment-method",
+  templateUrl: "./select-payment-method.component.html",
+})
+export class SelectPaymentMethodComponent implements OnInit, OnDestroy {
+  @Input() protected showAccountCredit: boolean = true;
+  @Input() protected showBankAccount: boolean = true;
+  @Input() protected showPayPal: boolean = true;
+  @Input() private startWith: PaymentMethodType = PaymentMethodType.Card;
+  @Input() protected onSubmit: (tokenizedPaymentMethod: TokenizedPaymentMethod) => Promise<void>;
+
+  private destroy$ = new Subject<void>();
+
+  protected formGroup = this.formBuilder.group({
+    paymentMethod: [this.startWith],
+    bankInformation: this.formBuilder.group({
+      routingNumber: ["", [Validators.required]],
+      accountNumber: ["", [Validators.required]],
+      accountHolderName: ["", [Validators.required]],
+      accountHolderType: ["", [Validators.required]],
+    }),
+  });
+  protected PaymentMethodType = PaymentMethodType;
+
+  constructor(
+    private billingApiService: BillingApiServiceAbstraction,
+    private braintreeService: BraintreeServiceAbstraction,
+    private formBuilder: FormBuilder,
+    private stripeService: StripeServiceAbstraction,
+  ) {}
+
+  async tokenizePaymentMethod(): Promise<TokenizedPaymentMethod> {
+    const type = this.selected;
+
+    if (this.usingStripe) {
+      const clientSecret = await this.billingApiService.createSetupIntent(type);
+
+      if (this.usingBankAccount) {
+        const token = await this.stripeService.setupBankAccountPaymentMethod(clientSecret, {
+          accountHolderName: this.formGroup.value.bankInformation.accountHolderName,
+          routingNumber: this.formGroup.value.bankInformation.routingNumber,
+          accountNumber: this.formGroup.value.bankInformation.accountNumber,
+          accountHolderType: this.formGroup.value.bankInformation.accountHolderType,
+        });
+        return {
+          type,
+          token,
+        };
+      }
+
+      if (this.usingCard) {
+        const token = await this.stripeService.setupCardPaymentMethod(clientSecret);
+        return {
+          type,
+          token,
+        };
+      }
+    }
+
+    if (this.usingPayPal) {
+      const token = await this.braintreeService.requestPaymentMethod();
+      return {
+        type,
+        token,
+      };
+    }
+
+    return null;
+  }
+
+  submit = async () => {
+    const tokenizedPaymentMethod = await this.tokenizePaymentMethod();
+    await this.onSubmit(tokenizedPaymentMethod);
+  };
+
+  ngOnInit(): void {
+    this.stripeService.loadStripe(
+      {
+        cardNumber: "#stripe-card-number",
+        cardExpiry: "#stripe-card-expiry",
+        cardCvc: "#stripe-card-cvc",
+      },
+      this.startWith === PaymentMethodType.Card,
+    );
+
+    if (this.showPayPal) {
+      this.braintreeService.loadBraintree(
+        "#braintree-container",
+        this.startWith === PaymentMethodType.PayPal,
+      );
+    }
+
+    this.formGroup
+      .get("paymentMethod")
+      .valueChanges.pipe(takeUntil(this.destroy$))
+      .subscribe((type) => {
+        this.onPaymentMethodChange(type);
+      });
+  }
+
+  ngOnDestroy(): void {
+    this.destroy$.next();
+    this.destroy$.complete();
+    this.stripeService.unloadStripe();
+    if (this.showPayPal) {
+      this.braintreeService.unloadBraintree();
+    }
+  }
+
+  private onPaymentMethodChange(type: PaymentMethodType): void {
+    switch (type) {
+      case PaymentMethodType.Card: {
+        this.stripeService.mountElements();
+        break;
+      }
+      case PaymentMethodType.PayPal: {
+        this.braintreeService.createDropin();
+        break;
+      }
+    }
+  }
+
+  private get selected(): PaymentMethodType {
+    return this.formGroup.value.paymentMethod;
+  }
+
+  protected get usingAccountCredit(): boolean {
+    return this.selected === PaymentMethodType.Credit;
+  }
+
+  protected get usingBankAccount(): boolean {
+    return this.selected === PaymentMethodType.BankAccount;
+  }
+
+  protected get usingCard(): boolean {
+    return this.selected === PaymentMethodType.Card;
+  }
+
+  protected get usingPayPal(): boolean {
+    return this.selected === PaymentMethodType.PayPal;
+  }
+
+  private get usingStripe(): boolean {
+    return this.usingBankAccount || this.usingCard;
+  }
+}
diff --git a/libs/angular/src/billing/components/verify-bank-account/verify-bank-account.component.html b/libs/angular/src/billing/components/verify-bank-account/verify-bank-account.component.html
new file mode 100644
index 00000000000..f338f5b0817
--- /dev/null
+++ b/libs/angular/src/billing/components/verify-bank-account/verify-bank-account.component.html
@@ -0,0 +1,18 @@
+<app-callout type="warning" title="{{ 'verifyBankAccount' | i18n }}">
+  <p>{{ "verifyBankAccountDesc" | i18n }} {{ "verifyBankAccountFailureWarning" | i18n }}</p>
+  <form [formGroup]="formGroup" [bitSubmit]="submit">
+    <bit-form-field class="tw-mr-2 tw-w-40">
+      <bit-label>{{ "amountX" | i18n: "1" }}</bit-label>
+      <input bitInput type="number" step="1" placeholder="xx" formControlName="amount1" />
+      <span bitPrefix>$0.</span>
+    </bit-form-field>
+    <bit-form-field class="tw-mr-2 tw-w-40">
+      <bit-label>{{ "amountX" | i18n: "2" }}</bit-label>
+      <input bitInput type="number" step="1" placeholder="xx" formControlName="amount2" />
+      <span bitPrefix>$0.</span>
+    </bit-form-field>
+    <button type="submit" bitButton bitFormButton buttonType="primary">
+      {{ "submit" | i18n }}
+    </button>
+  </form>
+</app-callout>
diff --git a/libs/angular/src/billing/components/verify-bank-account/verify-bank-account.component.ts b/libs/angular/src/billing/components/verify-bank-account/verify-bank-account.component.ts
new file mode 100644
index 00000000000..c8abb65d819
--- /dev/null
+++ b/libs/angular/src/billing/components/verify-bank-account/verify-bank-account.component.ts
@@ -0,0 +1,33 @@
+import { Component, EventEmitter, Input, Output } from "@angular/core";
+import { FormBuilder, FormControl, Validators } from "@angular/forms";
+
+@Component({
+  selector: "app-verify-bank-account",
+  templateUrl: "./verify-bank-account.component.html",
+})
+export class VerifyBankAccountComponent {
+  @Input() onSubmit?: (amount1: number, amount2: number) => Promise<void>;
+  @Output() verificationSubmitted = new EventEmitter();
+
+  protected formGroup = this.formBuilder.group({
+    amount1: new FormControl<number>(null, [
+      Validators.required,
+      Validators.min(0),
+      Validators.max(99),
+    ]),
+    amount2: new FormControl<number>(null, [
+      Validators.required,
+      Validators.min(0),
+      Validators.max(99),
+    ]),
+  });
+
+  constructor(private formBuilder: FormBuilder) {}
+
+  submit = async () => {
+    if (this.onSubmit) {
+      await this.onSubmit(this.formGroup.value.amount1, this.formGroup.value.amount2);
+    }
+    this.verificationSubmitted.emit();
+  };
+}
diff --git a/libs/angular/src/billing/images/cards.png b/libs/angular/src/billing/images/cards.png
new file mode 100644
index 0000000000000000000000000000000000000000..bd43abe54c5621fae583f68b36c7d41ce3274612
GIT binary patch
literal 14418
zcmYkDby!r<_V?)=L}7pdk?tHyKuRfLknSD?q)WP_WRULePU-IM5Tv`iyLrcZ@9%lu
ze`d~eVxPU&T4&e#d;=BaKI34KU?CtN;7Ch}D<L2t!QjUqG0@<@0XemI2nc+{(&C>~
zT;`8bF?CcNZ(b_CR2{jJ{ne>VBdp>c;$~(>e6uL=MuuysWRXA}MFIuI`89!xijIQa
z3c+gvR1^ZEl^aiVV@1L@TNiCR&#8C(V~fNIKE!N)h012~iI1O_jpe9sM)+6kTeT3X
z>vMRRFJtAntgrUDyW}5I6I;=Ib0k_R$;~t$YH8DXRQ0)p$t^eMWK157t#l1>kv~mP
ztwe-7I41Y(<ka%_^rRbY5m=ZI5Rza-5#G@?6%^2We>>xUvfgW@s#LGrQk-9s&Bj5I
z4)zceHZNUa&CJX!6YtHx3W7lXzLJM<y{2J3$GPjDsdM#^+rbQ%c@jTu@JJ8n$-4x4
zjIyW8SncvXsF9<&ymC%kQ(tz?BS+zZ7^i-_C)>ZR)3-5h9ro*Uy&C5@7c4Q{R4f(f
z!1pDI8$}u8)TIs=3mJ<!ca_u|FiAx1vDQSDFxEuvc|BRqi5&zPFllJ$X^A;=oiVQP
zY)q7RcU&vj*qp4%jlxq>`fc2J_#m_N8wbR5tSdVDL7XOsEKEv@F<k14e+G;oEkddH
z_E14XDN0EgS9bW8g^HsmbhImetlQb2J})L}3}YBIy{>ue<s_7F-XUqtVgSM5ojkPo
zD)8(b@)Y6bP_IX#87VSv+y{KY{aYlR-?EzmXn1cA?3Lc4p{ak{CYm}!t=CHKcLvZT
zMT@+B5ISiT9E?Kj{LqS^UW|Wd?HVJxVvlCcl8FBCoj#fPZv{tysRlymjjM~tAf#hQ
z7Vj?XX^HB#dCP<C$6r_2iIZM?>^D;j!`8`0$+U$#B#qy?U%G1)g-tU4_^^BDB39aj
zj1e;|j$+qOAUNuhEft*b<73W_MhD0h6CnqLUb+?`>mO?(8?pZ@a`ZVM5Gc2XsbCh;
zpMReD#}G?D17c{jNjbAKhuYJ2ic-KW9ld#%68K$q4O_)51e87~OWv0+w>ID>X(%on
zyK_;VGpT?3y(}p^M%s5wyLU%RNVa+2Ic+a_geYSIG;%sZwesCF^K;mxd6_^5butk+
zSDN#D7=H3j@IB!X=-0p|<`=WD^I)$2IvwE?v#7<^VojCz>`;hbw>Y%w-${8nIcxH?
zh@_G5fDk%H+F*~NrzYCkcU2<M<Tr)<U$@(hBWzI9i&u8EY{o9%_F+d%d~A8DOQ)QP
z*D~qcvTH_Q#EBVoVHZ0Feh;K%{|G_u0p^5kox9#_DQ?^%DJSI}Z%4vX6k~qI*m=12
zn<i1=NAY{gE!=$%Pom2Me=S+Hzj{cKrheeRK+WNng$FCYonK}Em;Oh{-|k_a%}aj#
zx$oQ9Qf4XV!Kp^WtPcN<lM<v@^2fUHl~eD|y~jUd3KMxe%SS{LBC`|SA}J-&owM?S
z-1Jue-TAMHW5evN?byF2K1SL!bb#-X{*^7>x^>R49O&Ugk4rS7ELyZ`-?5X#-dhLc
z0Q~PcPAV9p2O^^^{#_hC06Pfzza{?$fdB7?lt_4^5G2Tuc>VAy%+$f(lJ3{@iDx+W
z)ouK@*2(B@NEGY*B8_aqhuiX~7y4f}+=~I#e2a@0Ef#;(2RM?2CHyd@>pe>Ql{rcc
zoR&*R#!;moy5wgk+a+P>*kRqUM+BgPCmArI4Bl%ZpJY+RzOhkF^P_)yp)aF*NnThZ
z9P~`RHKMVZ^%gujiM)B@l~r12BO*?xCa#S?<ZxMd4fsyFNMqI3sO}9+lRj-gfRW_K
zA&7Zq2PcS3lQl^`<AfVf+uH0R(Cl7`M(N4Zym~_UbdPLjFblGL%Y*JkeC(YT889(3
z!POeVZ(r9j=fuW#4DN2}TA_S4(x*w?7c0BuvNE|DOREa)#fBF6;I)@u`K%4%)JeR2
zQ$d3jGOPV+motXeKUU{r9HM|HKNkMoQGEU+RX!gy$%q|!|F>C^*?HYkT%NPzy3NX<
zeiqejNGG$-p=@32{Lyhlc$c62=Q0`Z?vZs89l5Yimrn;0=v;aqsf!X{u-xeIgAUgp
zu^Kt_kJ`oKjb#gOc3{MKH1F@-u(t);4R=6-jni*VZB|T$n(yDU9f5-HF6uC#1)t!R
zbo5z!j$XU8k;sK6*zUeYOoep(nVL!UmO~K3iEH#AYkQ)o6rTF*G-E@cv?qYPx@-?@
z#MOND`_215oEjtjN_IHL+;RL)6|B`I)1pIB<3-!!%*8W?4>(?kfIBKj@60VznVelu
z@rW5Cf51_=reWPcbKKs#<1hYa+E04QJt_I*acqke-kE4p2wl^tFp;ryMSjpX;<tsQ
zfWDJd8t+V)%sb)mC1>EAZmTi~>!j_1hs}eV^yrGX;H|Z+cYez5Z6pB5R)>u3U!0`h
z^3E9(+D}x72k?4#0-^Z)ai*kb#=0vn<MZ28JbjDxljGBsGMSGvhvy6V=o>4Gs9?*U
zf3EUgoAP$Kcg|7*hg>&Ffb*5Wm#?rX67bs<x^m6aKf@%bt5z8NGr@HSy!{4xZI9!d
zt~q~{T=zJV8ql<+QS6EoKMSD$Yq6?N=GAU&!K7>GM>%6A((_kug>+h7SO=R0@Vg5k
z4nKk<v7oaMT5p2`M6tT6H%#bVx7mFvuVCnp@{idaf4CUlT$^MYtdqdZ<R}wN$xHCY
z8}>+E?PRSH#1z;;6L$B*N=p5JXkB=8TDxbNh}E!)!i_u$?9bpGa20-TxN257@5$@-
z2zDh@(D7T2&@49;8z%Mcm>(|NGd`=bTUiHu8mxrv<pdD8wUJ>0xB*3^0Q{RnxXnN4
zuH1wpcO|b$Yq(L6KE<Ke&T@s8TJ00c-DJIiCRESHeUvwdbtFSr81piBtF~pJre=;6
zr8Fy9Fn~8aYa6YLnwk#3yikHeSp@wNV}7zY)u{?@U*rGSm-16eP)7uX+!R#m^-VZp
z*TOhsLK8i3Y3Kf8y+P6~z9GJ$Nz9I(E?3phVE&gGiW`I=HH4fm+jXM9O|#h2nzDGR
zwp`Fr20^T~fWO0br=Qr|uQTUNNb%%>$tP)E_2h<Wx|ACq-ZE(fv45R~3J$12H(V?|
z7qQtT%`Wixs9avB7^SNqL(1riq-gT7^U``{jXIU~56QPF2XIQ0WG?hJD)wF2!)Gjb
z0Pzrk*hrh+j8*F^VFM=|)3j=l59c8VN&+?Q2BBlxxAxm?hyd+C6fm$|0ikO<fT~GZ
zahFruDdzMqZ5>AsBS|nWZRfQm$(N<*vxP9wC2w2t^p4Jq<_`^brlKhygT;y=hy-?U
zBjD$W*VP|2FM^tUv-!tPgOIqnPZl-%?d1n<pBF=AfN)QmzXFq5IgrqbEz_A=xIW!Q
z%})#w@3?iY<_9BzYLWhRiJ1tn5o~d_J}Uln#wCz~&TiZ<fq^ZT`x3HB7N&zYmZLdq
zEv|Kw*UeS@Z{~{H!FE@K<>fP5Z;hUIn9JSV5xQUBj(#+HY9hDF=fJzbP8EKO`+IE!
z-1f(oN5i`cy835$8&y+mD8*IRY{3XT>Bv7Th*K((=+*G)D#8BuxIV}#`8A6`6b<dY
zZ*cDy+h3ccT(ci?IxcXlF}}ViB{hlo2z~2K;|o~=`h<TWA@_Z;+_U-+r|cQGWX1s&
z<nkaD$xz7oZ8a6Awp{gW12?SC{~6XV^C<r7=_t$I&VYCy1I@Pjr#H+jWw|?9TI~_X
zb9dhziV?de1FJMwhxX2p&(Y;Y5wn}iaLnFf`}33UXM8l_Jg=dr+-dVOYXSlCac;9+
zw~3xR5mwCwn!i<HJ~`KCrB^Yxe$_)iTnt!VaN5wXy+#R?Me6c55llh{ptITsbcMAk
z>@LY3`w84Scs-iB)pxKD_x$;4JGWK-^(?`=o6~mgMBppmm~?yn$v3uR5f3CyNiT(-
zEtSr3E^OVcpPSOx@m!QcgrriYZ@?*>)*@-<ZNs<}z=3icTV)}r#?gfhNRFS<n{tfy
zpBs@t?{P6)QEAuOE^^aVr}LHOFfuEh+IhpXLYV@(a0wTEZ(78c{S1s$NICCA#izCP
zvuqDn3d-EE1U-X-bdUQzp6rcU&-jnWG*Nr^3Yb|Wt!<EvoJqVFckBUek9L$iHP&g*
z{@ZE^E{6d0wn^%yW~Ar@Pe@m0?z=AOn<QuHX6GH9zC|20sf$}FC)~z^)IVNljQt<_
zyogXT8n21#EhlPC&+2_EwQT1ohM<8Lj)_|VR(hHR?rLTI`m#7`8si|%+8ashVDGga
zgX~E(5890ni1zyCDU14w+LNcNd1ml|OJ@WJMqV1!!*aud`P59GYJd2^Y-rjR(|ass
zb^1Y)%}l3nf}g)Hd@d65Krk)uKC!v{S)|G3%Xis$1)F3(M8Jy=l+Ro@V$%L6(%Z_C
z+ETL68kx+VEU6p_&o{BxCmrD9EZ)i{&w$~X`wWK~YH_v42PLDH@%W|ZKUXOIMK;Ts
zF`REXSPnT~cbu4Q)MPRzFLy;$&%V+cQa8N#EkGgD@`BJtCW6gOE}}9ejHqe!gL1y4
zI@_VD6DsxQb6Wx5R7vcj)ie&vf+ei6oh$|SgjL`<#+4=4v4N#H2SyRzTh6G@=6+tS
zw_lcG=!2>-St`C9|8Tc`B=0SVEnTc201D&$;75{rZSK?QminGSWGe7k|6J~-rBQV3
zwh{p*sAlh%xtFLjx`L`d*CP}9G|BWz=Q^V@3_*FDN4O?TjP{1S#6fP<a8x4Z6LE1F
z`ZoF4wxG!h&sl%HKJ(oJQ!SE^S~mvt78hAe{Y0bCq<_)#tY8P)*51t-QWxGmZ@;HB
z_Td8^=LKc`a0j(AtJxN^x}hr$?CjcouG)4w*;CQ+nWR50PL-nU1jESjaBP&vgOn7r
zvXV!x|M1V-xzyHPzn9Cd)^JIm(CfWuwND3qTTq^#(6c)yA?$JyTwPk&M>qE6ysqXj
zBR$MpwUUm|YCyyhcA$4$Ab&OCZ*P4!y8h#DI}@P5JD5X?i#3&1-Rl<?j^l%O>t4J?
z%))jpBsesWlvk&%u8-)6eF}{UL({49MB&7(Yyh3O1a(Hc(ml2ch2HnN!x0Y+qQs}s
zhQPBNm1?aH+pb+&^I$@{@Vx<Sj2KES0tsWN%Yz;$EKQJl8dcurr$nER#Uam%HaAQ!
z_j(Bvvkx_#86)gh6t-e(-ASiGGX8s;IjobnKRElgjPf!mI?+)LmiwjUV`k$c)fpP~
z8@&>D_<r282=u<lfkm^w?g`~nt>e9kj-jdu6_!yEjhgQ$Z*t|1!Xoz@s=WvD5CR4;
zz{Yxg)70cfMd)H2vk(cPy$^~FQ!e93O5}>&N>a4U2rx8(&(PUYMXbF(tHx&JE`!>r
zsc!DNC&dxvX44qCTERpnGDBxIJir(VQQ*#lCaHYpN$MmyW7jkcK2-`>SlZ$N<vkh%
z9gZSLE^VL-N{^su%6{y>K#F<pKjKP3m8k3-_o`IvUX;I5T$aIQZc7ex_F5S1Tq&mh
zU2b_pK-xs?-^!Jmd4-JpYku2h!9}Q1ei=ZB;iw7fW~MGluu481l(J}kxcJu0@A(ed
z<NfWJ7CKO<2xV>)e<y>-gwf4%KCE+RVYt~dqh=P#reuzV4YCKV!erMjHT+b*G0(aS
zZHcU{T4=OdgvFbt$KpIM+RI)+Z-=f;%hkRUVjMF3uobDF*6j80Lzondd@fFzXxC>U
zB69e%Ig7SK5oJvu>oar?A+LJTfR$iM=>HYCby5XC&%Z+tFUJGNXGQ%;OgGzv*>d+f
zSc*<!!CKM$rqE!Dbo!@A2*!IQe^Fw6G8_D9tE;PXCLb=wDy;h00xLE`=_iEU2yCe9
zADT~y@cLd&kAH&N7Iasr+uUzFkfY1!?o=(e(DrV9zRR3<r7169g=V3uVe5Bp$gX5D
z>^8eBw%fEChtG_^>%_F!VRH>CTl=xjo#NE^$6fB7;CG-2o8I=~%t`UH!-+X^7vlqG
zjyJ@}SXF-fFK6vIG(qVRbdqGBpN>74&W#G#LzGpZS09jw^43<o0E)efp0j_Np@R9h
z6R~pUCzXyA^TYmrc|6UihCmwba0!sQ9y1#mRyKT-E*%72A3^eIf@TWgGBR&bVGX$r
z+<KHkB|k9AW|={)7ToOZ5sBIivD>+>K1z`$;~vg;PzF39^xSQ_We9`vXG*LQo=sYi
zWG^k{LDLxv%J$1GSDH{EvSx!Hb8f_(Yk<VYH{X)5XDP3j&w>sDe)+VyE^(;=K`B%*
z>N8)r<1ThT*a>}yFh#_@Am~3f;OGLZ>{5KXKMy|-CTT4O4)vldzc*}8NtNnnlAP-@
z?=}KvHCLj&X+YgAcN1z|@qA6C?YV@DJ?cu4c`Mv6dT~DYHO9UI)8+P-BkXg}x*O!f
zTiL_W_KnyaAW&6p{UG%L-0{S{9xSu!aYHt*AW@aeTI+^hL<TTx&A27H>QY!eepnB<
znURr`3Qe!!CDYj^P^99pX1*cCnrAzch~`Kawcg@9dN5MV7=Fq>A<TLsNib=S+VwrP
zZj!gnR*Yy>L!ieYD6*|lYsMq%JJ{oDN?lXxV6veK1tk0I$i#UO%+~?_z(Ks!)HY;o
z@i!00tr=dC)^n_f3&CjrbqiAAA9!Ug*Gac2Ck}hQ&hD45pIFG$54}KFGJ3S2O(5de
zJz4=0nGE_yHVKqm;rKIok*Wug`+EANHkZdC_O=lA*29}D3@qCA(`dc)^^v+|yqCpX
z3w4?t<04dmXEd3pkp%8Rxg=+0fGW|&rmq2|{c!O6C06Bq5^VWxsg8VKs8qyE!S2r7
zDQC0k9U$UI6(yqj22CX}MlP?K^CU<<kNtcHrMU8ZU((OO=gei&C`TqW`+A&OC57Mr
zVY=9EWf0GJp*Caj3Cwh|+_CX+lZ*l*j91^ly=m*#vUPjo5&f9cdq=apiV7<I9&aiC
z*IqGW^5R(PqwtY320(grc`kzcN*qU>JaiQvSSuLf*X|;M?BI%@{Xt%uze;%9psVF|
zF3Se7`Rs2sONQ8yG^IZ>Kp=x3Yp;f_E+41J(mJH;36p$z`${@gw_`1j6!l#=76#Os
z?pDJ`Og_aqxB2!8zqDKcUn=d}@y0A}^@~e>`@4&CYbTQGDxg&2Jl92PpS?Cxk5WFX
z^nb@WG}sf_D~?8YkS5gCr|nce-lhJVcNO9iv)>T`Oi_AOF=d3*(J~uwqi=DP)2q}S
z*2UmEli<KL68k#*&cz_31Q=S`lEl!+a1~xwdrTaKouiF(*p`_89-P8=3>IOE*fL9q
zYiy60R?JI-6`_dviU!719KROg0BO$6+xf0Z2C%Mk(2u5MTUp*a&R>c|CZ#e%RD&rG
zil32Jk2aWFM?<xJZms{^96mhGew<`K`iQ`wkG+twdu?|8Xyd%!o#woq;)<6ZsMK||
zP-k+ZxlkI5Al*pxN<_-rz*326;`=#=vrnMQLZ%@-d_CEy9i^bpp7<dT!$9In8PnTs
zM&~`K5iO?t0$ajK;J4EL2M*UMyfzUzSX>bTKw@0Fu%BYYD#o|R=K$YDGj>r0JWS3B
z;u#p27;j%B1<EBc@OtV%`5<QC$E!alN`+sKj@<fxL{Phu*Mw*82$uA8*e>=`6gK#?
zgN&C8GHaBeQe%DS;WX5n+LPcJ+r>Pnp0B}TDK&RnMCdCuK60eFs=k{3w|r!pHl7`$
z^d;ArD09evulf%J@U9#kKdKUpdI(|iibZ|;W@!(&NM-js{3cF<mUxJ$+2I%PXF?ZI
zz3g>_=3yIJz+WGVst*pxE2GYcnwE+j0?wzR9(es8f4R<{Ua5QRH52Jh+ZgW<j|!e(
zR=zDHK3wby9_uS@c8Z>Bi&~O%VyDM7BAoHateK2T)xVvKOU00pQp5#K5J5VNlzkR-
zZSRIz0`16?P*yoUlko4f*6)g!{9J@Y@La0ne0m$d6yo{O6NBJ+-MTf#=cNXlvWIUs
zp1wwirA5>VTJLg*_M=^2tTC&#V2zy1sTc<!z1M&Wx_rW|4$u0<T_%qOVEt{?z3MRc
zKtj(gdv6@X0FinlS@@J?Y7{$!g48BiI9<x_9x{+cd)Of0boeVL#PW<^U9;lGe@5Rc
zb^8?)GORjun>MI!?)OT;cd!HQ4+@SYqxKJkapgm8KdG_$abTmZJt#3zZJ%p%fAzgo
z%AbF7d(>lmmkkC9mlpSFl_4c+*|Ev5lWky|w;LO)TDm3H9hoO#!Hl)*q{#KPgR?~P
z8TtDZT){L;Ll}`rV!HHCgy>yk@u-k*mA*7>T|37W?fF1Zl#^ccuP9}^puvt)?7s+b
zXRqrpm;2Ly=`P>z<cWB5OCYb+K1$1ySmA4>d{I(F!rubRx~-#yvQiOhx2D4;&q=Ov
zXTyIucMF#(a6FF8en&JSvgs3(F+o+jAoI5D4iY;JhIl<M;{-do`5r<wfO_8$*y@^*
zjDm&AK3S|`)pqb`TUIV&<r}Vls(lQ?t^V>m;=<#w-0$;T1$rkHW#wiRy33NeU;VAo
zdgjKZ>l89f@>OI+<vN#(t+xKxMbequUZAgnB0AA&<c3)oRj66{4CP!`Qa)hU7{Xnn
zmM4KTlAS{fqcB5hP@()y2(Er-)r)%?&0doiO_XS<Mh}WAzz{=`<c?Rs0?6yv(=5v~
zYEf^bGhi_Y3$qHyld|g64d~Hn81HOn{+K&J@eEbd6U8`&!LqFuY7g(;r8@okbm509
zVpJ!acrRe({szF9%c|-jI{xVuIA@*UtQI+7Nfis0uGuF&{JE7>mu>#@I5(2S9s>n0
zNa?Cl-0jvwoY<tOv6T#%tAYf0Tf10EkJpE{8K))`yI(a}J+<aY-j(NT;Aj~#SrOau
zsapOBT7No>hx94XjyL*Ii!b)ej%+Me97;<<BC=_wKb;R{4a|KU!kk_}0@&j^!viQ^
z{h$RKDGwMsjZ)xu80e}kU);!_K_gi?=RJM}pv(J}obRHRq+23ZJ`kw7?Cjw5GqE7g
zfvfxy8rOjRrmd6&*%7WwGM(sc{29-#Oq*RRwe8dlZ;YzgUDmPlTVBsacz)IZ0oBRa
z>w4#AQ6f@<WquB|fbFmv`@Yeevg%<jB-c??riZ8dPghQ@Z&<aI7UKfkhnspd6_oI~
z-kl7e6NF~F{!Edee;TG?E^Dp8K#SiJc42X}(pt))%w~Tq!e^|ckhAW<zEYx5cxO(8
z#rC%fM->}1AI`ake#?_Xy?<a*|2;9Zu_HpMk_t@az0M-6Sv?uEeHYl*aycP$>w3=q
zOMWB+VtjUe@B@*vgNdCZ1u9QTup~S{Cg8Ctb^Z9%_MG%|*B_|7ZlQP9z=#SXrFtEM
zASRQ{lfduJw(NGGf63)Tms_fe0$Wt=EN0&_?7jw8_;S%yVpYr1fhMk%GjrLWmnrLG
zAgb<ts(&<UyeTDK^M{oF9*1gZt1>!T-u+OI^)nE6qB+i4B48F4`GkbE_q22g4VmLA
z?dbr6nKbw3A~kiW3Cc~eKtJjr_xuZDS3_IlCL07G$t6sQ>AuEw+LOvAT+zM35zGDh
z_f%xzU0+XaSEPY}msG8}aw`k6V-f%Pg-od=>oEV|lr{3yz!7@n)3cMX)9^uWc^9VT
zmnpKc&~o3QEof~&4P!ovwjBEUNaQpK>`a98mDBF=8}~Dp!8`4g?_B)Ip0y{v1!8?~
z5@P)<7|nK@m)~eHcmMu2>*|Z_R8K|0l^n_h+uWuuE%+%*U#HtbrX`~ms64{^my=<T
z!CG5vYQV&|a}pg!Q)C`hS;QAoA<Vij(@%`rOhUUPf2vMzJ$n(#Ob{BWUO;8@Tgq3#
zUu*IYjqd!6=PMInG*uu8I_wOVex7xn5Dt~HrT5JZ)>}@2N@cnF!8Ss>{poWu(Yk2b
z|Mcn8LZt}$)-7Cg+kD<+Oa65)(u%8xrL5!Mr|75-pfsyoeTkHAP#vJ<b?$qQ3Ruy8
z)8!jO<-}2>!v<2izeUY<sGij6v};m|Me8b>H<|pUmDhWM$6J#(S=X$}j6uSK5AeDr
zls7le318ZPPbi0(hdysVu~eK7VbNU23p4raM~VCp;d~-Tgy|=)5VS`qE=Jm;_|tHZ
zDs4uPX#92GH;`gZH+m{2Kgy?@J-p8H@(Q##*<UqAmf4r+&kI@r;J2YKjM)~TR-+}a
zZLO(I=E1aP{`~m1xKGrp$@#UHH7oXu<v0u>0($zA5k`X;P~GA;B6)p9fQGRLa+7}$
z#8>|K-t^{Eps8Va=)!B#^b$RA4%ttg_g=g^-I^7$j&XX+qx&jM^~0*8=G5DLQHpoB
zj3k^v2-m!A3%i6oB3euM;eo5BulKj(^X&>ZV-(3RkRERnAbGxcia;<Me<(75mH<c=
zXw&*62T*hFqB2b*fA}%vw6iTo8?4+%?s-{(A=y)CoUhv?v7_!1wzgXVJ3M%6(;DcV
z@w!1FA(=EVDHM4q2?<uURF#nsnC)HJ9wE-SLli7QGciP&sG4Qx5K<H*U*MdnGF7Gi
z#b3pyvG9Qlz7Ra9l~_I9qao!>`$gGX`6864vABlP6?0kHD-I|W3Uy$*gUJWyM9Ge_
zNUF-lcGm|LVS!H4yB}04&G3~6sHX#pMPdaP(wz%8a|qsI-sVhgy^Z9%iFG{24Oqr+
zXY<Qvx7Lz9A+9)~ty4S^wX$atrDQPbdEfHvGxt8o)uu5ilAwc>nGjHTLotHOT}4-6
zsKIJTOEx6B#wi05(U&|iav)8WL1GAKAj=vn)&rBaMB<keB=}t`-#C`)`K9bFi9O$~
zR&E^+d_VEIr<h=3Sd`fq2v<sLrk=`zQT@U*e6<qQT6P)|V2;=&VaQvA1F*+wJcC<b
z!$Xvyi~SNS21$%WY+Upe0=1%J)op^j$U_L0xDjEx%5mcC?RvDMJ|xADDO_R(NHC<Z
zudWHsp<6m>c@drkUU?&OqemWq?8b*TYCM_Y#?RDL#cNmBdy0`!No65GjX{S23!@FH
z<+q>(Z9Iv+c1z?f->>*o-h!+h!hl_oiB@2%jY)oavvTUx)|6=mFpIMQ#Zq2gB_8UA
zWS!L6z|^gUlA$yD@f5rsJSG!A*YPD24fD9lZ{8uMi!vPvBD8rt(Idm&qj;TPwJ=6&
zIko3D1@di?`=xpDWo;zz>^{vn=`=<oB+L9ruph_X*@&{`rzDQYi!L<AQN>qwC%N7c
zy6G(FOi&Xwz*cCER<=u=YrS#;V~5(zTZ+1w5u5Mtp9XHQF=<31i2cP*Ge;Lg5-bcm
zG*YL66#NFLlf+?(@r^n1Hjt7^O0b1C5^2fYJ+^%9=UkU8(%3dtq`qP2yeE#5Ob-rH
z<1W&bO_kFYyf|vdzTJ>%N|I48Rf;xO+>d1n%WaRyh?wX@F;Mv_`hfWe3k69V7U%*N
z9>#c2Uwv@c{kTvtm>8r?Llpu{&Az#_b0%3S-5yOO5<ylalev`U)@)Y!+J>h(0AwW?
zOVuei<#5KDa~4@rj&6?#V%Ou&PwolTBk=!N@zRK*36-+4%85&+&bI&4n&(aVq&MK9
zz^twsWo1^dpCs(pOctP$lSK%gOy2cB-Tg`!0y$Ryx*W7ntt)C#2g|NiBf$zzJnQwk
z<HiDDOXBuztbZ-ESMi4_{I#g@Gf;2?vv-tp9GSbZtCs5GNKh+d7r&exnNxKcM$DP~
z>{Lithz+I6x>=O~a>QW!0|_3#CS}*BQ)*6a(DNM;A#=?XQ#2)}1!lh)=OcI*us+BX
zG1BIMs&x@x1(qUAN)8XklwSWDePI{)I`NKx9A#@WkmPGHmK==(1BJ#DRH~8e$(xx;
zDs`@5HH0fyhRO97g;WwD|Id@cPsO-U4RSh?&#L1oW{iF{1|ZWnG}Gy9cB`D8O$wnF
zwz?LJWVgAYUpYNBt)K}`weeacIya9wM0#EuIDwFjtK=hob>U2@^yl)m^$Oi4r|ik%
zU6Xx8h7Vy(ZkVrVNhFoIEFp?A-1V(na<&X@9alXyIuVit{SIspTKf@9m7I>6dM4NT
zbg#g0e%I?}BP@PKq_N=-?+E~Ar5P%28p|%h7p_sduSy9AS+_G_vo97hayx&7bK4a(
zn@IXfy%wS2V&)bX6~-l6+wjdwHv$7i36#$)2+KIE?U~WivtBHU)w+-dR9p^2GjCCu
z_1NL$(D|V6h4xc9xr+7{wTMm~w;T-jR#*^1){lkR$Yg0E0fQM$5Wltcsv&6eiAe<=
z`6B`Paies8O)>M?g^#`#DS$N`f+EV$PDRk30Z8P8)~{<og1PH!KM)QugF}RN;2G9(
ztR_JB(T(F-k??Q-W-U6P5>~^A0=CPN%s1v}qLcG(h6}$0s3%Z=Wd2jjtGWG6RH7CG
z=PvS5c*g%Z1283@w(99_^8OuZLSktCSXyS;UosFWA68`x<(iB065%!v(#{6H!9e>e
z>b4_%@BOy!cT4wte@@*I>Fd|ge>kD0o*!_Gbe^8!Gw;ZhoeTo$`jY0NSA&bnT8cb;
zAwdc`T9XVGGPv}Gr~sRNi;L`YjkxJ*)wiIuIqQ;X+B1xw)sBvK&z13uv}bsKtH4(`
zB7aJC1?Jg;fD=XZK*booI4XajtjAWY6FZ@^LXp~6Ql7><+OvJ4nrI!ov1fGPa+8!H
zp9I{`qi?7`+a0Mxr3E=aN{T^zxr@KGozLb6=J@#wbYBRTlB1ygOR#Mv6<4v3G*hSd
zKaAh;g1(36$0}m<!v~@mrWey#?nAp9KA>2RR**dGdDCCl+OB#yb&+;+kh#e2(vq|H
z(Mh(jCJH<MF=VhEVf?!bYYPooU|2Tc`(};1O-T7<luLC1(hQK<zuk5?55wuV*8uGq
zWU7*8Sv8F{Fy68bTXPAB-ZkNj2DK@x!1;_FP%7FKISmh@z@g3tZw(z>nV!&7?%{bi
zAKh2%P1Q)pYvZR<Qj+ilM?Vs0B_@_8Ux}+yfXUc?q>4v+C~!KPEKl7dLRT#;s)$KT
zIZ>CSthy04t(51)tMZcy5$5M~oISR{36)~iC9(MH)cZZnFs1-Q{MkbULKN&qG6>8K
z9s*@N>JPQ*Q!i;Nx@I^08>Miv<Ij=dyR!B7ZlEMKy?iEcPOLPI+x>X+M<(tykj#U)
zAx$m5l&juF=Af~!#5|phgLM&E-X(WUS0q0hJr@pYB(K8j?a&kl!hVv;!V4lsp^=*K
zB-Oty_JPNK6XRLwwA;Xmq_M1{!-fkig@y-uq)s|N1M+0Pz&LLG+4t7c_2lpA$6eSI
z%{7m2ZFp%QM<!vBd;u&B57vfMN9r0vTb~j3>}6DWZfXOSEmY4>2bRm1NrSk^%<A!@
z!uw~xqM+<->^1;P=3o21X>$qgg)hXv5`=JnJR5FP_{v#kFp|8)04A-QNyzfWGCL%r
z9zSbF5SsvN2bPfJhM5h<sd(w5hkr>LouUBAIR|bDE`P)s?=*1wbeZUa3M*75WF+8V
zIS@psYP-kLqP8SK>8kBgGu&#mpeS~~2h@J{sOap$b~^q+;jW<RAFWuy*TEoI=B?X#
zT&GNwQPWQ9mDU2NT<S2mHD9nML}E54+h`e)yB)Nn&*R+aw>H_zc)4EMZR;XnFVka>
zl}vLy_Zae_9MNX@U1IUYxO_Oxmku4j!?@2z1~$wNBm7I0LbqB;Fo6FqJHrsa6KTWc
zL8{iqKusD)oUWLI0nr3Ml<o+=FZr1`^;76|@uPS9%apv;B%1$!(^=oEd@?ig_QpH*
zQ2elbGASC?9m&NQ8L?r5GQuDx_GLJNQapheGgo?sVy`4Q$5E9%VB3&JjS55gk+w!l
z5zR59zxBbEHB21}B98VBDZ?Rvb&^V=>b7>&t&G`#ze>gS`)xP0pJ(8{y&7UIZ2!`C
z@khU!=(CNu@8O>o1|3<sp1WHbOH9DmzuhktRr#*I>))m=te1Uj!bQ@iW~zj+dC?bp
zLSwjpZf^U8Q2EzQaA5)^Sj}mwFC;(0?Go7Pfs>eR5;we&T59AsWI2{69g^J;3<2@X
z5eDp-r5V_RMjl+8k6B~=DEHRO$Ibm(1UHV`N7YI4@%MuX$riaoJt(~mWSHA9aB;`z
zUjJhT;EaMQ0xW0zz>hCJ)2c+#f`(WUk#PJ%A(wNpoly7`3y@uQPx-KPLV(ugfrdrx
z4(M&W9NrpZr!h<J+EM~zI~cj%Fh}UByizYy*aXH`Sui;37>CbhQFQ|eyM#DlYk~Qe
z;-@&tvX+#ChTA(4DS}SRlykmA%L%rt47E!Q=$t`RT6eb{n^C;N3)`Yr)-)NXjt8>!
zWMuFuXpBf<Y!j7Bdk{rppE3bgz&IBDItRCi0&x?mTFA}LO4LGDUTc~aDa6abPWqcj
z@7h7<BoeGGM8rFPp1l|qQ0$;5HnQb)mW8F6Q*`jsJIhE9CqWDp?{CMS3sHRF8DMcF
zkU4z4tMf0Xy?%Hj^TZZg<H>6;kth(mFBYxMT^HdD1+^^^XhNzB8(v0d_|DFx(6D}!
zSSx4S1is2Hc@r5mhNM4crk!~;f)}Fa2r_an4G^^`#355rr#@MuwmijYH?7+^#G>oM
zB|}csb^%s@8D2|I^PkU`AGg|g?<Bh^gE>Hv-3bivZu*nd^rdL`=cMzH^?frdHq7t0
z7{!=%uW*FBhtdxMz7VDEbq=qiFh43uf95!P<vsRnH0{YnncoraUMC|>J#+NqlR}!T
zP^k|>9?kPvu*koytEjJos@<0W=ROE9R)(YljTYH-1i079;B?9eidfXemg#8!GD?8d
ze~^YDcK0tsZ4+naW~N8$1Y+qv&d`MGI>yRI##gYdRP^@4-~k-C=l4oJt`Lt>46!l>
zT;r*GT>eEnYzCoJ9;y3*pZggnIogSm;=_L|IB(>t9-P`F%l=|wK+)XyQ-YA=BUBO$
z_kNZ)+<@n{?E!$^?0GGtm^cIP3%x>9%Ds4MdTlbm-jKG6A~vxktN!Md=q8pse!KLe
zu~>2BpA<19VOL3ez)ZS)U%pI^yO33VM5cqkorg8;^UNYL)+8D%J5(-Pqb^#j{WS4f
zrhjG1k4Pcm$1(n{d^3Z$0X7r+F<aW~56CG!oO6I9UE98t1II=*^rRD2k=xtoba9F(
zipx4K`=p{BIF27FmzbBhmIPkf!NRC}^U<+M`Wl_$0G!t3rPD{z2`CpR;ayIvKg(?7
zlch6KpS9$g^pbMKorw`8OPO~lTAYen#R2ur{C?*(iy#4hxP8T0KMS*AcsLt_sOk|u
zM79c*k)4Y|DpKsj^$izMu9^U)RkK_6R!0Q4p*-mbW(=OARz6RF@w*v&MT!xQ7`%7%
z2f;T_`|h`f>MU`jkgt83>5yCpcGlNyCuEGi{f?|!e;YE#K6_b7zsn!}MLE!I%k?Q)
zYZa{D#=LJikL+YcyH(J7&CMfh6R7s#O?$cj<?5i?IHxE4BT#^U1n)sn?^D7g)%op_
z7%@bZGYK1LC%EF%WVmr;Cb=|pv)pssbKST9rBJXWr_tvjBkW%epM@Itk|4QJTYG+m
zuMU~$JwY|^4E*7{W|=e9zjv#qQQytjbhI6j{;?mDbF$8iGhN!)QlqKG*kaXo_ZVzn
zPp(ZKAF?A7{yzK3%<#SF?5H`iaJjRjb}fnKcPrz0Ck~1<awvn;6;x{ey}9*}D&+yk
zcP|N61r0c5b*Pr`*91<Gp~gf<h7_g3sCMz&Bl7Xu6)rj=9A@cXrL$wN_FRO>c*diy
z*Rx|&H=}lm&s6pA--mWWHHO8pg+#bNzC{w25I>+k5G4AYEZB{t<u?4#GYvqQ$J<mq
z`BbU`mTuO6G;f8iDxyTPKeJ@wzUQZ=5te|XU&Z|Jm$-Cq#`$!n?)!<FEHqqd!aEj3
zf+eBgMpYq<YZUNi0}A-j#G7(Y?hDrT5sp}R!*jDsY2>aRVLfcTWnAc-1P~oJ&$!fP
z>q%}ne&0W6@egD()x>Krlry|0&m3d+rd*j?gg0H_9Cy;9PI2tRV55~{TV3k>wAga9
z8>6QrB4Dayann@g=zX4J0_G(O*b;S}07RxH1fn}!{te%SZ`>Y~0Rsnk1&Q;l*KW;S
zp}|6b(Gphj+%w$YED^!!6svA>h>rmyGOQQ*g^(bPfn7*a`FEyqt`@ku-a!J6=2576
zQx3RYLIfvVb#oOGxN-!Z-#dI$f5&)nT%yF_VVjFhm~5FfM(3SL5}O(yTxqYyK1vI0
zFOU5t4|Unp$r<bbKi^`;`ei1+nCbbg1)pO<e7o*USr&<4A}M0vabXSGEPM8OBFUL7
zwGZseVsMPAME(jsuIkWTrHmg5cx1ICY!khI2iPfrqk&{?_*C8o77<155!|kih$shM
zOOLSwAFOQQcx(}jP=Dx_*ZKDNuQDcZ*><Y$XW{3)4@jUQ#h$vwv+l-xjAOWkjMuS2
z`^4@YCwf`t9jARKuL*!~*z(b!_|+qom^KdRS$UFFc<fkMs<1OU!P%>O!R?zYdRJx$
z;d~Jg@No29QbRNd0rvY76N*>`OK*u})N-FJnkYmbeGj)AAV!}!qt$4OoE7FdMfy={
z$CU#DhvJe{NL>Im2M@s+atK{&Os(E)&9To8da=F+y(x45{@1?TpgQOw0$lU9PhG#Y
zjYDdR1`JorSHiKA>0<@$ajHvH5&YwvTt>|C!<M1No$yG*Q9=d<)%@daIlv!tM=h`r
z4b~z?`QQlK5AwSF@tGt6XXbx^ZBTJ4(C5>)$A$X(u81(AR5-WDQ@DGLIcW`|@a2aS
zZVk5xur4~?j;VGRc!f%jq2dpy1wepf?OvAv%fEr5h~I<k!~tP$DMtHh({xO67h1mW
zFAOUtKo|3r%ud{hTTq-V*9=y8ZgPFAQ|3Ru1NVN7R49~T`VVG2c+3{tDJ;cDrb}`?
z?HQr_;6G5aIPMdv^JQDl+#0N$+}O7b;LObt>Ojo3!`ERpBB*0a7QWi$_uBa!`+q!h
zlV{V22T5PZ&Fgo}@IZ@6O%8aN(bWrijRh^BG&cj2ei+C9Jo<TpUlkqZhfeu?EBzsV
zu>G{}cO&2B%MKx&qZH$bAKQ>~g?EZrjBRY9gOfd>YS(4hYa*VgUt~!+oC>jf+3Y$%
ze_KEeU)#QN8XDOlP?NqA^@@Lcsk;dNdSVdbAe2=uSx*M5Sg_M@*Aat$LGl!an=hIK
zN$e9m#zgt|0vQCF@Z?z=gH~nX%(AkKZ{}Hu1)nnyY&4$}JWM7+SV5-eAROznHY?Q2
z=RT7>3Lk{zX>Xf9VM1r;;e!zZY+uFT7ZKS}deA-Xk;EVPHwA-ef*tH|y9)GM2;$CG
zX21)JxNM(0U*pkxMY;PHGk?DdU?@4X%Z?PbK*PH^78AG3TC_O4<oEs$y*|4nd3(^W
zbJ+X?f$}U6Dd$uNE?2+;nB43Bho%RC1;=n;Y5%43(E$9OX^HwCKI{lHi$WMfqrZFc
zljSicw8VLm(YJ;Wy0HIY_sZ&345KHm;-dSgt%6W)*)_~U-!as5i{}0vAjf}I0H9r`
zs5k#Rb_fxKml~^o*iDpRQS`lXVy?k&YLwbXf*n7lrl6<}CwLRBi@~JTJ0>p>QH*|6
z3i7pxOP>r(!XTIa*C}l=oepx^aKDvvb-nTf_Mi9XC-U~$`mVvH4gVf8>qiOa;8Yqg
zyhCytWDsCRrWI~d+!EA^VcHHIT*}k7ziV!C&7u4!Etu?KNxE<+ON_AWj}8dlW@L<A
z*f}#ZbhYy$DLBoU9QPfYI<fzqMyGd_*sn&X4}~a;3s2qi*S?#HciWUIyZ&Ot9L)~S
zWu!{KzPkhFj~N<{har}HY4z4Kj7i4xN7uV9a3UFPUoCF_x8}ePK6aGIFIibVca@Lc
zyj~j4;=F^)F0u=Tg{K$Ww4<V<7e3SE8J%xYX7fV^LPEE$`K^dNN~2=FHLhO7o$()R
z%5iz*pQ09UOQb$ur+;aUrG?9Z7(Eb~WFu=U@^#X=%6Ssm|Ik|mHg>wlEBu%M)*RfA
z&-XNYi@3Vgzc{<Q3ZK*pnq!GTA@-A=t|5yjaB0mxuvO5MTOu-$@w=zo!yR0}l2!h*
zI`BUdmap`1b<$2hQGxl>`I4xxmDHD?Ly_zXQ}<irpmcoF`3qE(s&g#(N_T`Xe3I|g
zr>BWm&E74&Mf0vI3Wgq|?IG0q8AVeTt}5BBJMf?g^KhN5cH(HYj2TO;xb|q+nP$u5
zbc%+z?V@3}W4P)47s?=1<X?`D-o<JR=SwUr1phQeg=VD6nU)>E?8!6aQmu526=K)^
zOa2>=E~<;+$E?P<Ul@28ae6vKgkgf(&xGs<@`_XJZm6nky=3sGe~b}lRP4evP+>&2
zQzR0tT;Xb)?#r+{37d|`&a#amzkGrsHbD+6)IX-__yq~r!s>co&Qw^H?V3|O82=+R
z+S&~Bdbm2~{(JKp`Gaw@_wVTp;?~?RAC`ar4bg7t4+w(v^=I=U^9F#VST?Y2Ymj0&
zzrVHIEQ}em4+<7Bz*1U-Ur@!w*e0S9IevAlzv3Sd@U47ke2U$=54&7hO<wjzRsV>O
zCik#k(9_ssd5R^E7nwhxF-ao+45?PjCt>hd2@PwhvFw-1zB^f5%w+OiuGcT0Zq8Q0
zU$>>F-7!kvo|E1xuV%!Ib!{k#WNz#Udfa{SAi4`0?<k**NrO9bd8hJau<qJw;m&3y
z?F&%x|5L+7mi3#+#+H`aXzPldq<z?6w>Thi2mO=0!92uUsnU7;=D!gUTn!I0PmeOO
zaGSm&=)DhR7O9xsT<Z`S;r<l<YAk82Go$RPcx27~{$|2Z!cv|ts9<S{d;ViYbwBTB
z_V)eK`oY0M92tV5wAuWcwAuf3cz5?$a4k@2gL%l<3wd+*j`tq-AzUPgfFLa)CtfNF
G_5FX9HpoQ)

literal 0
HcmV?d00001

diff --git a/libs/angular/src/jslib.module.ts b/libs/angular/src/jslib.module.ts
index 5f1bf796aa9..ccb7446d863 100644
--- a/libs/angular/src/jslib.module.ts
+++ b/libs/angular/src/jslib.module.ts
@@ -2,7 +2,24 @@ import { CommonModule, DatePipe } from "@angular/common";
 import { NgModule } from "@angular/core";
 import { FormsModule, ReactiveFormsModule } from "@angular/forms";
 
-import { AutofocusDirective, ToastModule } from "@bitwarden/components";
+import {
+  AddAccountCreditDialogComponent,
+  ManageTaxInformationComponent,
+  SelectPaymentMethodComponent,
+  VerifyBankAccountComponent,
+} from "@bitwarden/angular/billing/components";
+import {
+  AsyncActionsModule,
+  AutofocusDirective,
+  ButtonModule,
+  CheckboxModule,
+  DialogModule,
+  FormFieldModule,
+  RadioButtonModule,
+  SelectModule,
+  ToastModule,
+  TypographyModule,
+} from "@bitwarden/components";
 
 import { CalloutComponent } from "./components/callout.component";
 import { A11yInvalidDirective } from "./directives/a11y-invalid.directive";
@@ -41,6 +58,14 @@ import { IconComponent } from "./vault/components/icon.component";
     CommonModule,
     FormsModule,
     ReactiveFormsModule,
+    AsyncActionsModule,
+    RadioButtonModule,
+    FormFieldModule,
+    SelectModule,
+    ButtonModule,
+    CheckboxModule,
+    DialogModule,
+    TypographyModule,
   ],
   declarations: [
     A11yInvalidDirective,
@@ -70,6 +95,10 @@ import { IconComponent } from "./vault/components/icon.component";
     UserTypePipe,
     IfFeatureDirective,
     FingerprintPipe,
+    AddAccountCreditDialogComponent,
+    ManageTaxInformationComponent,
+    SelectPaymentMethodComponent,
+    VerifyBankAccountComponent,
   ],
   exports: [
     A11yInvalidDirective,
@@ -100,6 +129,10 @@ import { IconComponent } from "./vault/components/icon.component";
     UserTypePipe,
     IfFeatureDirective,
     FingerprintPipe,
+    AddAccountCreditDialogComponent,
+    ManageTaxInformationComponent,
+    SelectPaymentMethodComponent,
+    VerifyBankAccountComponent,
   ],
   providers: [
     CreditCardNumberPipe,
diff --git a/libs/angular/src/services/jslib-services.module.ts b/libs/angular/src/services/jslib-services.module.ts
index 60f83934af7..5a5b83522d7 100644
--- a/libs/angular/src/services/jslib-services.module.ts
+++ b/libs/angular/src/services/jslib-services.module.ts
@@ -109,14 +109,20 @@ import {
   DomainSettingsService,
   DefaultDomainSettingsService,
 } from "@bitwarden/common/autofill/services/domain-settings.service";
+import {
+  BillingApiServiceAbstraction,
+  BraintreeServiceAbstraction,
+  OrganizationBillingServiceAbstraction,
+  PaymentMethodWarningsServiceAbstraction,
+  StripeServiceAbstraction,
+} from "@bitwarden/common/billing/abstractions";
 import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
-import { BillingApiServiceAbstraction } from "@bitwarden/common/billing/abstractions/billilng-api.service.abstraction";
-import { OrganizationBillingServiceAbstraction } from "@bitwarden/common/billing/abstractions/organization-billing.service";
-import { PaymentMethodWarningsServiceAbstraction } from "@bitwarden/common/billing/abstractions/payment-method-warnings-service.abstraction";
 import { DefaultBillingAccountProfileStateService } from "@bitwarden/common/billing/services/account/billing-account-profile-state.service";
 import { BillingApiService } from "@bitwarden/common/billing/services/billing-api.service";
 import { OrganizationBillingService } from "@bitwarden/common/billing/services/organization-billing.service";
 import { PaymentMethodWarningsService } from "@bitwarden/common/billing/services/payment-method-warnings.service";
+import { BraintreeService } from "@bitwarden/common/billing/services/payment-processors/braintree.service";
+import { StripeService } from "@bitwarden/common/billing/services/payment-processors/stripe.service";
 import { AppIdService as AppIdServiceAbstraction } from "@bitwarden/common/platform/abstractions/app-id.service";
 import { BroadcasterService } from "@bitwarden/common/platform/abstractions/broadcaster.service";
 import { ConfigApiServiceAbstraction } from "@bitwarden/common/platform/abstractions/config/config-api.service.abstraction";
@@ -1190,6 +1196,16 @@ const safeProviders: SafeProvider[] = [
     useClass: KdfConfigService,
     deps: [StateProvider],
   }),
+  safeProvider({
+    provide: BraintreeServiceAbstraction,
+    useClass: BraintreeService,
+    deps: [LogService],
+  }),
+  safeProvider({
+    provide: StripeServiceAbstraction,
+    useClass: StripeService,
+    deps: [LogService],
+  }),
 ];
 
 function encryptServiceFactory(
diff --git a/libs/common/src/billing/abstractions/billilng-api.service.abstraction.ts b/libs/common/src/billing/abstractions/billilng-api.service.abstraction.ts
index 063b3c370b0..117b318768e 100644
--- a/libs/common/src/billing/abstractions/billilng-api.service.abstraction.ts
+++ b/libs/common/src/billing/abstractions/billilng-api.service.abstraction.ts
@@ -1,3 +1,9 @@
+import { PaymentMethodType } from "@bitwarden/common/billing/enums";
+import { ExpandedTaxInfoUpdateRequest } from "@bitwarden/common/billing/models/request/expanded-tax-info-update.request";
+import { TokenizedPaymentMethodRequest } from "@bitwarden/common/billing/models/request/tokenized-payment-method.request";
+import { VerifyBankAccountRequest } from "@bitwarden/common/billing/models/request/verify-bank-account.request";
+import { PaymentInformationResponse } from "@bitwarden/common/billing/models/response/payment-information.response";
+
 import { SubscriptionCancellationRequest } from "../../billing/models/request/subscription-cancellation.request";
 import { OrganizationBillingMetadataResponse } from "../../billing/models/response/organization-billing-metadata.response";
 import { OrganizationBillingStatusResponse } from "../../billing/models/response/organization-billing-status.response";
@@ -13,23 +19,50 @@ export abstract class BillingApiServiceAbstraction {
     organizationId: string,
     request: SubscriptionCancellationRequest,
   ) => Promise<void>;
+
   cancelPremiumUserSubscription: (request: SubscriptionCancellationRequest) => Promise<void>;
+
   createClientOrganization: (
     providerId: string,
     request: CreateClientOrganizationRequest,
   ) => Promise<void>;
+
+  createSetupIntent: (paymentMethodType: PaymentMethodType) => Promise<string>;
+
   getBillingStatus: (id: string) => Promise<OrganizationBillingStatusResponse>;
+
   getOrganizationBillingMetadata: (
     organizationId: string,
   ) => Promise<OrganizationBillingMetadataResponse>;
+
   getOrganizationSubscription: (
     organizationId: string,
   ) => Promise<OrganizationSubscriptionResponse>;
+
   getPlans: () => Promise<ListResponse<PlanResponse>>;
+
+  getProviderPaymentInformation: (providerId: string) => Promise<PaymentInformationResponse>;
+
   getProviderSubscription: (providerId: string) => Promise<ProviderSubscriptionResponse>;
+
   updateClientOrganization: (
     providerId: string,
     organizationId: string,
     request: UpdateClientOrganizationRequest,
   ) => Promise<any>;
+
+  updateProviderPaymentMethod: (
+    providerId: string,
+    request: TokenizedPaymentMethodRequest,
+  ) => Promise<void>;
+
+  updateProviderTaxInformation: (
+    providerId: string,
+    request: ExpandedTaxInfoUpdateRequest,
+  ) => Promise<void>;
+
+  verifyProviderBankAccount: (
+    providerId: string,
+    request: VerifyBankAccountRequest,
+  ) => Promise<void>;
 }
diff --git a/libs/common/src/billing/abstractions/index.ts b/libs/common/src/billing/abstractions/index.ts
new file mode 100644
index 00000000000..08a7a28fd9c
--- /dev/null
+++ b/libs/common/src/billing/abstractions/index.ts
@@ -0,0 +1,7 @@
+export * from "./account/billing-account-profile-state.service";
+export * from "./billilng-api.service.abstraction";
+export * from "./organization-billing.service";
+export * from "./payment-method-warnings-service.abstraction";
+export * from "./payment-processors/braintree.service.abstraction";
+export * from "./payment-processors/stripe.service.abstraction";
+export * from "./provider-billing.service.abstraction";
diff --git a/libs/common/src/billing/abstractions/payment-processors/braintree.service.abstraction.ts b/libs/common/src/billing/abstractions/payment-processors/braintree.service.abstraction.ts
new file mode 100644
index 00000000000..9391ab25f54
--- /dev/null
+++ b/libs/common/src/billing/abstractions/payment-processors/braintree.service.abstraction.ts
@@ -0,0 +1,28 @@
+export abstract class BraintreeServiceAbstraction {
+  /**
+   * Utilizes the Braintree SDK to create a [Braintree drop-in]{@link https://braintree.github.io/braintree-web-drop-in/docs/current/Dropin.html} instance attached to the container ID specified as part of the {@link loadBraintree} method.
+   */
+  createDropin: () => void;
+
+  /**
+   * Loads the Bitwarden dropin.js script in the <head> element of the current page.
+   * This script attaches the Braintree SDK to the window.
+   * @param containerId - The ID of the HTML element where the Braintree drop-in will be loaded at.
+   * @param autoCreateDropin - Specifies whether the Braintree drop-in should be created when dropin.js loads.
+   */
+  loadBraintree: (containerId: string, autoCreateDropin: boolean) => void;
+
+  /**
+   * Invokes the Braintree [requestPaymentMethod]{@link https://braintree.github.io/braintree-web-drop-in/docs/current/Dropin.html#requestPaymentMethod} method
+   * in order to generate a payment method token using the active Braintree drop-in.
+   */
+  requestPaymentMethod: () => Promise<string>;
+
+  /**
+   * Removes the following elements from the <head> of the current page:
+   * - The Bitwarden dropin.js script
+   * - Any <script> elements that contain the word "paypal"
+   * - The Braintree drop-in stylesheet
+   */
+  unloadBraintree: () => void;
+}
diff --git a/libs/common/src/billing/abstractions/payment-processors/stripe.service.abstraction.ts b/libs/common/src/billing/abstractions/payment-processors/stripe.service.abstraction.ts
new file mode 100644
index 00000000000..235a2f45136
--- /dev/null
+++ b/libs/common/src/billing/abstractions/payment-processors/stripe.service.abstraction.ts
@@ -0,0 +1,45 @@
+import { BankAccount } from "@bitwarden/common/billing/models/domain";
+
+export abstract class StripeServiceAbstraction {
+  /**
+   * Loads [Stripe JS]{@link https://docs.stripe.com/js} in the <head> element of the current page and mounts
+   * Stripe credit card [elements]{@link https://docs.stripe.com/js/elements_object/create} into the HTML elements with the provided element IDS.
+   * We do this to avoid having to load the Stripe JS SDK on every page of the Web Vault given many pages contain sensitive information.
+   * @param elementIds - The ID attributes of the HTML elements used to load the Stripe JS credit card elements.
+   */
+  loadStripe: (
+    elementIds: { cardNumber: string; cardExpiry: string; cardCvc: string },
+    autoMount: boolean,
+  ) => void;
+
+  /**
+   * Re-mounts previously created Stripe credit card [elements]{@link https://docs.stripe.com/js/elements_object/create} into the HTML elements
+   * specified during the {@link loadStripe} call. This is useful for when those HTML elements are removed from the DOM by Angular.
+   */
+  mountElements: () => void;
+
+  /**
+   * Creates a Stripe [SetupIntent]{@link https://docs.stripe.com/api/setup_intents} and uses the resulting client secret
+   * to invoke the Stripe JS [confirmUsBankAccountSetup]{@link https://docs.stripe.com/js/setup_intents/confirm_us_bank_account_setup} method,
+   * thereby creating and storing a Stripe [PaymentMethod]{@link https://docs.stripe.com/api/payment_methods}.
+   * @returns The ID of the newly created PaymentMethod.
+   */
+  setupBankAccountPaymentMethod: (
+    clientSecret: string,
+    bankAccount: BankAccount,
+  ) => Promise<string>;
+
+  /**
+   * Creates a Stripe [SetupIntent]{@link https://docs.stripe.com/api/setup_intents} and uses the resulting client secret
+   * to invoke the Stripe JS [confirmCardSetup]{@link https://docs.stripe.com/js/setup_intents/confirm_card_setup} method,
+   * thereby creating and storing a Stripe [PaymentMethod]{@link https://docs.stripe.com/api/payment_methods}.
+   * @returns The ID of the newly created PaymentMethod.
+   */
+  setupCardPaymentMethod: (clientSecret: string) => Promise<string>;
+
+  /**
+   * Removes {@link https://docs.stripe.com/js} from the <head> element of the current page as well as all
+   * Stripe-managed <iframe> elements.
+   */
+  unloadStripe: () => void;
+}
diff --git a/libs/common/src/billing/models/domain/bank-account.ts b/libs/common/src/billing/models/domain/bank-account.ts
new file mode 100644
index 00000000000..449ef3e745a
--- /dev/null
+++ b/libs/common/src/billing/models/domain/bank-account.ts
@@ -0,0 +1,6 @@
+export type BankAccount = {
+  accountHolderName: string;
+  routingNumber: string;
+  accountNumber: string;
+  accountHolderType: string;
+};
diff --git a/libs/common/src/billing/models/domain/index.ts b/libs/common/src/billing/models/domain/index.ts
new file mode 100644
index 00000000000..19be9c1aeb2
--- /dev/null
+++ b/libs/common/src/billing/models/domain/index.ts
@@ -0,0 +1,5 @@
+export * from "./bank-account";
+export * from "./masked-payment-method";
+export * from "./payment-method-warning";
+export * from "./tax-information";
+export * from "./tokenized-payment-method";
diff --git a/libs/common/src/billing/models/domain/masked-payment-method.ts b/libs/common/src/billing/models/domain/masked-payment-method.ts
new file mode 100644
index 00000000000..5756f9f25c0
--- /dev/null
+++ b/libs/common/src/billing/models/domain/masked-payment-method.ts
@@ -0,0 +1,17 @@
+import { PaymentMethodType } from "@bitwarden/common/billing/enums";
+import { MaskedPaymentMethodResponse } from "@bitwarden/common/billing/models/response/masked-payment-method.response";
+
+export class MaskedPaymentMethod {
+  type: PaymentMethodType;
+  description: string;
+  needsVerification: boolean;
+
+  static from(response: MaskedPaymentMethodResponse | undefined) {
+    if (response === undefined) {
+      return null;
+    }
+    return {
+      ...response,
+    };
+  }
+}
diff --git a/libs/common/src/billing/models/domain/tax-information.ts b/libs/common/src/billing/models/domain/tax-information.ts
new file mode 100644
index 00000000000..81cbc6e8e4d
--- /dev/null
+++ b/libs/common/src/billing/models/domain/tax-information.ts
@@ -0,0 +1,32 @@
+import { TaxInfoResponse } from "@bitwarden/common/billing/models/response/tax-info.response";
+
+export class TaxInformation {
+  country: string;
+  postalCode: string;
+  taxId: string;
+  line1: string;
+  line2: string;
+  city: string;
+  state: string;
+
+  static empty(): TaxInformation {
+    return {
+      country: null,
+      postalCode: null,
+      taxId: null,
+      line1: null,
+      line2: null,
+      city: null,
+      state: null,
+    };
+  }
+
+  static from(response: TaxInfoResponse | null): TaxInformation {
+    if (response === null) {
+      return TaxInformation.empty();
+    }
+    return {
+      ...response,
+    };
+  }
+}
diff --git a/libs/common/src/billing/models/domain/tokenized-payment-method.ts b/libs/common/src/billing/models/domain/tokenized-payment-method.ts
new file mode 100644
index 00000000000..5900a1ab242
--- /dev/null
+++ b/libs/common/src/billing/models/domain/tokenized-payment-method.ts
@@ -0,0 +1,6 @@
+import { PaymentMethodType } from "@bitwarden/common/billing/enums";
+
+export type TokenizedPaymentMethod = {
+  type: PaymentMethodType;
+  token: string;
+};
diff --git a/libs/common/src/billing/models/request/bit-pay-invoice.request.ts b/libs/common/src/billing/models/request/bit-pay-invoice.request.ts
index 9042611b24c..51fb07fd47f 100644
--- a/libs/common/src/billing/models/request/bit-pay-invoice.request.ts
+++ b/libs/common/src/billing/models/request/bit-pay-invoice.request.ts
@@ -1,6 +1,7 @@
 export class BitPayInvoiceRequest {
   userId: string;
   organizationId: string;
+  providerId: string;
   credit: boolean;
   amount: number;
   returnUrl: string;
diff --git a/libs/common/src/billing/models/request/expanded-tax-info-update.request.ts b/libs/common/src/billing/models/request/expanded-tax-info-update.request.ts
index 6589b9c1df1..f06795c0805 100644
--- a/libs/common/src/billing/models/request/expanded-tax-info-update.request.ts
+++ b/libs/common/src/billing/models/request/expanded-tax-info-update.request.ts
@@ -1,3 +1,5 @@
+import { TaxInformation } from "@bitwarden/common/billing/models/domain/tax-information";
+
 import { TaxInfoUpdateRequest } from "./tax-info-update.request";
 
 export class ExpandedTaxInfoUpdateRequest extends TaxInfoUpdateRequest {
@@ -6,4 +8,16 @@ export class ExpandedTaxInfoUpdateRequest extends TaxInfoUpdateRequest {
   line2: string;
   city: string;
   state: string;
+
+  static From(taxInformation: TaxInformation): ExpandedTaxInfoUpdateRequest {
+    const request = new ExpandedTaxInfoUpdateRequest();
+    request.country = taxInformation.country;
+    request.postalCode = taxInformation.postalCode;
+    request.taxId = taxInformation.taxId;
+    request.line1 = taxInformation.line1;
+    request.line2 = taxInformation.line2;
+    request.city = taxInformation.city;
+    request.state = taxInformation.state;
+    return request;
+  }
 }
diff --git a/libs/common/src/billing/models/request/tokenized-payment-method.request.ts b/libs/common/src/billing/models/request/tokenized-payment-method.request.ts
new file mode 100644
index 00000000000..7f89b216935
--- /dev/null
+++ b/libs/common/src/billing/models/request/tokenized-payment-method.request.ts
@@ -0,0 +1,14 @@
+import { PaymentMethodType } from "@bitwarden/common/billing/enums";
+import { TokenizedPaymentMethod } from "@bitwarden/common/billing/models/domain";
+
+export class TokenizedPaymentMethodRequest {
+  type: PaymentMethodType;
+  token: string;
+
+  static From(tokenizedPaymentMethod: TokenizedPaymentMethod): TokenizedPaymentMethodRequest {
+    const request = new TokenizedPaymentMethodRequest();
+    request.type = tokenizedPaymentMethod.type;
+    request.token = tokenizedPaymentMethod.token;
+    return request;
+  }
+}
diff --git a/libs/common/src/billing/models/request/verify-bank-account.request.ts b/libs/common/src/billing/models/request/verify-bank-account.request.ts
new file mode 100644
index 00000000000..cadf4b97099
--- /dev/null
+++ b/libs/common/src/billing/models/request/verify-bank-account.request.ts
@@ -0,0 +1,9 @@
+export class VerifyBankAccountRequest {
+  amount1: number;
+  amount2: number;
+
+  constructor(amount1: number, amount2: number) {
+    this.amount1 = amount1;
+    this.amount2 = amount2;
+  }
+}
diff --git a/libs/common/src/billing/models/response/masked-payment-method.response.ts b/libs/common/src/billing/models/response/masked-payment-method.response.ts
new file mode 100644
index 00000000000..19ae1b426b0
--- /dev/null
+++ b/libs/common/src/billing/models/response/masked-payment-method.response.ts
@@ -0,0 +1,15 @@
+import { PaymentMethodType } from "@bitwarden/common/billing/enums";
+import { BaseResponse } from "@bitwarden/common/models/response/base.response";
+
+export class MaskedPaymentMethodResponse extends BaseResponse {
+  type: PaymentMethodType;
+  description: string;
+  needsVerification: boolean;
+
+  constructor(response: any) {
+    super(response);
+    this.type = this.getResponseProperty("Type");
+    this.description = this.getResponseProperty("Description");
+    this.needsVerification = this.getResponseProperty("NeedsVerification");
+  }
+}
diff --git a/libs/common/src/billing/models/response/payment-information.response.ts b/libs/common/src/billing/models/response/payment-information.response.ts
new file mode 100644
index 00000000000..a74ec8f406b
--- /dev/null
+++ b/libs/common/src/billing/models/response/payment-information.response.ts
@@ -0,0 +1,25 @@
+import { BaseResponse } from "../../../models/response/base.response";
+
+import { MaskedPaymentMethodResponse } from "./masked-payment-method.response";
+import { TaxInfoResponse } from "./tax-info.response";
+
+export class PaymentInformationResponse extends BaseResponse {
+  accountCredit: number;
+  paymentMethod?: MaskedPaymentMethodResponse;
+  taxInformation?: TaxInfoResponse;
+
+  constructor(response: any) {
+    super(response);
+    this.accountCredit = this.getResponseProperty("AccountCredit");
+
+    const paymentMethod = this.getResponseProperty("PaymentMethod");
+    if (paymentMethod) {
+      this.paymentMethod = new MaskedPaymentMethodResponse(paymentMethod);
+    }
+
+    const taxInformation = this.getResponseProperty("TaxInformation");
+    if (taxInformation) {
+      this.taxInformation = new TaxInfoResponse(taxInformation);
+    }
+  }
+}
diff --git a/libs/common/src/billing/models/response/tax-info.response.ts b/libs/common/src/billing/models/response/tax-info.response.ts
index 72a745f8fe0..4521f91171b 100644
--- a/libs/common/src/billing/models/response/tax-info.response.ts
+++ b/libs/common/src/billing/models/response/tax-info.response.ts
@@ -13,6 +13,9 @@ export class TaxInfoResponse extends BaseResponse {
   constructor(response: any) {
     super(response);
     this.taxId = this.getResponseProperty("TaxIdNumber");
+    if (!this.taxId) {
+      this.taxId = this.getResponseProperty("TaxId");
+    }
     this.taxIdType = this.getResponseProperty("TaxIdType");
     this.line1 = this.getResponseProperty("Line1");
     this.line2 = this.getResponseProperty("Line2");
diff --git a/libs/common/src/billing/services/billing-api.service.ts b/libs/common/src/billing/services/billing-api.service.ts
index d21c1c9046a..13e5205bdd9 100644
--- a/libs/common/src/billing/services/billing-api.service.ts
+++ b/libs/common/src/billing/services/billing-api.service.ts
@@ -1,10 +1,14 @@
-import { OrganizationBillingMetadataResponse } from "@bitwarden/common/billing/models/response/organization-billing-metadata.response";
-
 import { ApiService } from "../../abstractions/api.service";
-import { BillingApiServiceAbstraction } from "../../billing/abstractions/billilng-api.service.abstraction";
+import { BillingApiServiceAbstraction } from "../../billing/abstractions";
+import { PaymentMethodType } from "../../billing/enums";
+import { ExpandedTaxInfoUpdateRequest } from "../../billing/models/request/expanded-tax-info-update.request";
 import { SubscriptionCancellationRequest } from "../../billing/models/request/subscription-cancellation.request";
+import { TokenizedPaymentMethodRequest } from "../../billing/models/request/tokenized-payment-method.request";
+import { VerifyBankAccountRequest } from "../../billing/models/request/verify-bank-account.request";
+import { OrganizationBillingMetadataResponse } from "../../billing/models/response/organization-billing-metadata.response";
 import { OrganizationBillingStatusResponse } from "../../billing/models/response/organization-billing-status.response";
 import { OrganizationSubscriptionResponse } from "../../billing/models/response/organization-subscription.response";
+import { PaymentInformationResponse } from "../../billing/models/response/payment-information.response";
 import { PlanResponse } from "../../billing/models/response/plan.response";
 import { ListResponse } from "../../models/response/list.response";
 import { CreateClientOrganizationRequest } from "../models/request/create-client-organization.request";
@@ -44,6 +48,21 @@ export class BillingApiService implements BillingApiServiceAbstraction {
     );
   }
 
+  async createSetupIntent(type: PaymentMethodType) {
+    const getPath = () => {
+      switch (type) {
+        case PaymentMethodType.BankAccount: {
+          return "/setup-intent/bank-account";
+        }
+        case PaymentMethodType.Card: {
+          return "/setup-intent/card";
+        }
+      }
+    };
+    const response = await this.apiService.send("POST", getPath(), null, true, true);
+    return response as string;
+  }
+
   async getBillingStatus(id: string): Promise<OrganizationBillingStatusResponse> {
     const r = await this.apiService.send(
       "GET",
@@ -87,6 +106,17 @@ export class BillingApiService implements BillingApiServiceAbstraction {
     return new ListResponse(r, PlanResponse);
   }
 
+  async getProviderPaymentInformation(providerId: string): Promise<PaymentInformationResponse> {
+    const response = await this.apiService.send(
+      "GET",
+      "/providers/" + providerId + "/billing/payment-information",
+      null,
+      true,
+      true,
+    );
+    return new PaymentInformationResponse(response);
+  }
+
   async getProviderSubscription(providerId: string): Promise<ProviderSubscriptionResponse> {
     const r = await this.apiService.send(
       "GET",
@@ -111,4 +141,37 @@ export class BillingApiService implements BillingApiServiceAbstraction {
       false,
     );
   }
+
+  async updateProviderPaymentMethod(
+    providerId: string,
+    request: TokenizedPaymentMethodRequest,
+  ): Promise<void> {
+    return await this.apiService.send(
+      "PUT",
+      "/providers/" + providerId + "/billing/payment-method",
+      request,
+      true,
+      false,
+    );
+  }
+
+  async updateProviderTaxInformation(providerId: string, request: ExpandedTaxInfoUpdateRequest) {
+    return await this.apiService.send(
+      "PUT",
+      "/providers/" + providerId + "/billing/tax-information",
+      request,
+      true,
+      false,
+    );
+  }
+
+  async verifyProviderBankAccount(providerId: string, request: VerifyBankAccountRequest) {
+    return await this.apiService.send(
+      "POST",
+      "/providers/" + providerId + "/billing/payment-method/verify-bank-account",
+      request,
+      true,
+      false,
+    );
+  }
 }
diff --git a/libs/common/src/billing/services/payment-processors/braintree.service.ts b/libs/common/src/billing/services/payment-processors/braintree.service.ts
new file mode 100644
index 00000000000..98533a54344
--- /dev/null
+++ b/libs/common/src/billing/services/payment-processors/braintree.service.ts
@@ -0,0 +1,89 @@
+import { LogService } from "../../../platform/abstractions/log.service";
+import { BraintreeServiceAbstraction } from "../../abstractions";
+
+export class BraintreeService implements BraintreeServiceAbstraction {
+  private braintree: any;
+  private containerId: string;
+
+  constructor(private logService: LogService) {}
+
+  createDropin() {
+    window.setTimeout(() => {
+      const window$ = window as any;
+      window$.braintree.dropin.create(
+        {
+          authorization: process.env.BRAINTREE_KEY,
+          container: this.containerId,
+          paymentOptionPriority: ["paypal"],
+          paypal: {
+            flow: "vault",
+            buttonStyle: {
+              label: "pay",
+              size: "medium",
+              shape: "pill",
+              color: "blue",
+              tagline: "false",
+            },
+          },
+        },
+        (error: any, instance: any) => {
+          if (error != null) {
+            this.logService.error(error);
+            return;
+          }
+          this.braintree = instance;
+        },
+      );
+    }, 250);
+  }
+
+  loadBraintree(containerId: string, autoCreateDropin: boolean) {
+    const script = window.document.createElement("script");
+    script.id = "dropin-script";
+    script.src = `scripts/dropin.js?cache=${process.env.CACHE_TAG}`;
+    script.async = true;
+    if (autoCreateDropin) {
+      script.onload = () => this.createDropin();
+    }
+    this.containerId = containerId;
+    window.document.head.appendChild(script);
+  }
+
+  requestPaymentMethod(): Promise<string> {
+    return new Promise((resolve, reject) => {
+      this.braintree.requestPaymentMethod((error: any, payload: any) => {
+        if (error) {
+          this.logService.error(error);
+          reject(error.message);
+        } else {
+          resolve(payload.nonce as string);
+        }
+      });
+    });
+  }
+
+  unloadBraintree() {
+    const script = window.document.getElementById("dropin-script");
+    window.document.head.removeChild(script);
+    window.setTimeout(() => {
+      const scripts = Array.from(window.document.head.querySelectorAll("script")).filter(
+        (script) => script.src != null && script.src.indexOf("paypal") > -1,
+      );
+      scripts.forEach((script) => {
+        try {
+          window.document.head.removeChild(script);
+        } catch (error) {
+          this.logService.error(error);
+        }
+      });
+      const stylesheet = window.document.head.querySelector("#braintree-dropin-stylesheet");
+      if (stylesheet != null) {
+        try {
+          window.document.head.removeChild(stylesheet);
+        } catch (error) {
+          this.logService.error(error);
+        }
+      }
+    }, 500);
+  }
+}
diff --git a/libs/common/src/billing/services/payment-processors/stripe.service.ts b/libs/common/src/billing/services/payment-processors/stripe.service.ts
new file mode 100644
index 00000000000..01082e923da
--- /dev/null
+++ b/libs/common/src/billing/services/payment-processors/stripe.service.ts
@@ -0,0 +1,142 @@
+import { LogService } from "../../../platform/abstractions/log.service";
+import { StripeServiceAbstraction } from "../../abstractions";
+import { BankAccount } from "../../models/domain";
+
+export class StripeService implements StripeServiceAbstraction {
+  private stripe: any;
+  private elements: any;
+  private elementIds: {
+    cardNumber: string;
+    cardExpiry: string;
+    cardCvc: string;
+  };
+
+  constructor(private logService: LogService) {}
+
+  loadStripe(
+    elementIds: { cardNumber: string; cardExpiry: string; cardCvc: string },
+    autoMount: boolean,
+  ) {
+    this.elementIds = elementIds;
+    const script = window.document.createElement("script");
+    script.id = "stripe-script";
+    script.src = "https://js.stripe.com/v3?advancedFraudSignals=false";
+    script.onload = () => {
+      const window$ = window as any;
+      this.stripe = window$.Stripe(process.env.STRIPE_KEY);
+      this.elements = this.stripe.elements();
+      const options = this.getElementOptions();
+      setTimeout(() => {
+        this.elements.create("cardNumber", options);
+        this.elements.create("cardExpiry", options);
+        this.elements.create("cardCvc", options);
+        if (autoMount) {
+          this.mountElements();
+        }
+      }, 50);
+    };
+
+    window.document.head.appendChild(script);
+  }
+
+  mountElements() {
+    setTimeout(() => {
+      const cardNumber = this.elements.getElement("cardNumber");
+      const cardExpiry = this.elements.getElement("cardExpiry");
+      const cardCvc = this.elements.getElement("cardCvc");
+      cardNumber.mount(this.elementIds.cardNumber);
+      cardExpiry.mount(this.elementIds.cardExpiry);
+      cardCvc.mount(this.elementIds.cardCvc);
+    });
+  }
+
+  async setupBankAccountPaymentMethod(
+    clientSecret: string,
+    { accountHolderName, routingNumber, accountNumber, accountHolderType }: BankAccount,
+  ): Promise<string> {
+    const result = await this.stripe.confirmUsBankAccountSetup(clientSecret, {
+      payment_method: {
+        us_bank_account: {
+          routing_number: routingNumber,
+          account_number: accountNumber,
+          account_holder_type: accountHolderType,
+        },
+        billing_details: {
+          name: accountHolderName,
+        },
+      },
+    });
+    if (result.error || (result.setupIntent && result.setupIntent.status !== "requires_action")) {
+      this.logService.error(result.error);
+      throw result.error;
+    }
+    return result.setupIntent.payment_method as string;
+  }
+
+  async setupCardPaymentMethod(clientSecret: string): Promise<string> {
+    const cardNumber = this.elements.getElement("cardNumber");
+    const result = await this.stripe.confirmCardSetup(clientSecret, {
+      payment_method: {
+        card: cardNumber,
+      },
+    });
+    if (result.error || (result.setupIntent && result.setupIntent.status !== "succeeded")) {
+      this.logService.error(result.error);
+      throw result.error;
+    }
+    return result.setupIntent.payment_method as string;
+  }
+
+  unloadStripe() {
+    const script = window.document.getElementById("stripe-script");
+    window.document.head.removeChild(script);
+    window.setTimeout(() => {
+      const iFrames = Array.from(window.document.querySelectorAll("iframe")).filter(
+        (element) => element.src != null && element.src.indexOf("stripe") > -1,
+      );
+      iFrames.forEach((iFrame) => {
+        try {
+          window.document.body.removeChild(iFrame);
+        } catch (error) {
+          this.logService.error(error);
+        }
+      });
+    }, 500);
+  }
+
+  private getElementOptions(): any {
+    const options: any = {
+      style: {
+        base: {
+          color: null,
+          fontFamily:
+            '"Open Sans", "Helvetica Neue", Helvetica, Arial, sans-serif, ' +
+            '"Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"',
+          fontSize: "14px",
+          fontSmoothing: "antialiased",
+          "::placeholder": {
+            color: null,
+          },
+        },
+        invalid: {
+          color: null,
+        },
+      },
+      classes: {
+        focus: "is-focused",
+        empty: "is-empty",
+        invalid: "is-invalid",
+      },
+    };
+
+    const style = getComputedStyle(document.documentElement);
+    options.style.base.color = `rgb(${style.getPropertyValue("--color-text-main")})`;
+    options.style.base["::placeholder"].color = `rgb(${style.getPropertyValue(
+      "--color-text-muted",
+    )})`;
+    options.style.invalid.color = `rgb(${style.getPropertyValue("--color-text-main")})`;
+    options.style.invalid.borderColor = `rgb(${style.getPropertyValue("--color-danger-600")})`;
+
+    return options;
+  }
+}

From 010b55d39d3249cb92a2cf04f5006e5109c34c7f Mon Sep 17 00:00:00 2001
From: Alex Morask <144709477+amorask-bitwarden@users.noreply.github.com>
Date: Mon, 3 Jun 2024 11:10:54 -0400
Subject: [PATCH 070/138] Prevent Provider from viewing client organization
 payment method and billing history (#9442)

---
 .../organization-layout.component.html        |  2 +-
 .../layouts/organization-layout.component.ts  | 29 +++++++++++++--
 .../guards/organization-is-unmanaged.guard.ts | 36 +++++++++++++++++++
 .../organization-billing-routing.module.ts    |  5 +--
 4 files changed, 67 insertions(+), 5 deletions(-)
 create mode 100644 apps/web/src/app/billing/guards/organization-is-unmanaged.guard.ts

diff --git a/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.html b/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.html
index d1a48a78e11..237e2c6e30c 100644
--- a/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.html
+++ b/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.html
@@ -52,7 +52,7 @@
       *ngIf="canShowBillingTab(organization)"
     >
       <bit-nav-item [text]="'subscription' | i18n" route="billing/subscription"></bit-nav-item>
-      <ng-container *ngIf="showPaymentAndHistory$ | async">
+      <ng-container *ngIf="(showPaymentAndHistory$ | async) && (organizationIsUnmanaged$ | async)">
         <bit-nav-item [text]="'paymentMethod' | i18n" route="billing/payment-method"></bit-nav-item>
         <bit-nav-item [text]="'billingHistory' | i18n" route="billing/history"></bit-nav-item>
       </ng-container>
diff --git a/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.ts b/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.ts
index 47ca0998bbc..4383656bee1 100644
--- a/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.ts
+++ b/apps/web/src/app/admin-console/organizations/layouts/organization-layout.component.ts
@@ -1,7 +1,7 @@
 import { CommonModule } from "@angular/common";
 import { Component, OnDestroy, OnInit } from "@angular/core";
 import { ActivatedRoute, RouterModule } from "@angular/router";
-import { map, mergeMap, Observable, Subject, takeUntil } from "rxjs";
+import { combineLatest, map, mergeMap, Observable, Subject, switchMap, takeUntil } from "rxjs";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
 import {
@@ -16,7 +16,8 @@ import {
   OrganizationService,
 } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { PolicyService } from "@bitwarden/common/admin-console/abstractions/policy/policy.service.abstraction";
-import { PolicyType } from "@bitwarden/common/admin-console/enums";
+import { ProviderService } from "@bitwarden/common/admin-console/abstractions/provider.service";
+import { PolicyType, ProviderStatusType } from "@bitwarden/common/admin-console/enums";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
@@ -55,9 +56,14 @@ export class OrganizationLayoutComponent implements OnInit, OnDestroy {
   organization$: Observable<Organization>;
   showPaymentAndHistory$: Observable<boolean>;
   hideNewOrgButton$: Observable<boolean>;
+  organizationIsUnmanaged$: Observable<boolean>;
 
   private _destroy = new Subject<void>();
 
+  protected consolidatedBillingEnabled$ = this.configService.getFeatureFlag$(
+    FeatureFlag.EnableConsolidatedBilling,
+  );
+
   protected showPaymentMethodWarningBanners$ = this.configService.getFeatureFlag$(
     FeatureFlag.ShowPaymentMethodWarningBanners,
   );
@@ -68,6 +74,7 @@ export class OrganizationLayoutComponent implements OnInit, OnDestroy {
     private platformUtilsService: PlatformUtilsService,
     private configService: ConfigService,
     private policyService: PolicyService,
+    private providerService: ProviderService,
   ) {}
 
   async ngOnInit() {
@@ -94,6 +101,24 @@ export class OrganizationLayoutComponent implements OnInit, OnDestroy {
     );
 
     this.hideNewOrgButton$ = this.policyService.policyAppliesToActiveUser$(PolicyType.SingleOrg);
+
+    const provider$ = this.organization$.pipe(
+      switchMap((organization) => this.providerService.get$(organization.providerId)),
+    );
+
+    this.organizationIsUnmanaged$ = combineLatest([
+      this.consolidatedBillingEnabled$,
+      this.organization$,
+      provider$,
+    ]).pipe(
+      map(
+        ([consolidatedBillingEnabled, organization, provider]) =>
+          !consolidatedBillingEnabled ||
+          !organization.hasProvider ||
+          !provider ||
+          provider.providerStatus !== ProviderStatusType.Billable,
+      ),
+    );
   }
 
   ngOnDestroy() {
diff --git a/apps/web/src/app/billing/guards/organization-is-unmanaged.guard.ts b/apps/web/src/app/billing/guards/organization-is-unmanaged.guard.ts
new file mode 100644
index 00000000000..a915d8f8a6c
--- /dev/null
+++ b/apps/web/src/app/billing/guards/organization-is-unmanaged.guard.ts
@@ -0,0 +1,36 @@
+import { inject } from "@angular/core";
+import { ActivatedRouteSnapshot, CanActivateFn } from "@angular/router";
+
+import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
+import { ProviderService } from "@bitwarden/common/admin-console/abstractions/provider.service";
+import { ProviderStatusType } from "@bitwarden/common/admin-console/enums";
+import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
+import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
+
+export const organizationIsUnmanaged: CanActivateFn = async (route: ActivatedRouteSnapshot) => {
+  const configService = inject(ConfigService);
+  const organizationService = inject(OrganizationService);
+  const providerService = inject(ProviderService);
+
+  const consolidatedBillingEnabled = await configService.getFeatureFlag(
+    FeatureFlag.EnableConsolidatedBilling,
+  );
+
+  if (!consolidatedBillingEnabled) {
+    return true;
+  }
+
+  const organization = await organizationService.get(route.params.organizationId);
+
+  if (!organization.hasProvider) {
+    return true;
+  }
+
+  const provider = await providerService.get(organization.providerId);
+
+  if (!provider) {
+    return true;
+  }
+
+  return provider.providerStatus !== ProviderStatusType.Billable;
+};
diff --git a/apps/web/src/app/billing/organizations/organization-billing-routing.module.ts b/apps/web/src/app/billing/organizations/organization-billing-routing.module.ts
index 8ca7226b97d..4af06628754 100644
--- a/apps/web/src/app/billing/organizations/organization-billing-routing.module.ts
+++ b/apps/web/src/app/billing/organizations/organization-billing-routing.module.ts
@@ -5,6 +5,7 @@ import { canAccessBillingTab } from "@bitwarden/common/admin-console/abstraction
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 
 import { OrganizationPermissionsGuard } from "../../admin-console/organizations/guards/org-permissions.guard";
+import { organizationIsUnmanaged } from "../../billing/guards/organization-is-unmanaged.guard";
 import { WebPlatformUtilsService } from "../../core/web-platform-utils.service";
 import { PaymentMethodComponent } from "../shared";
 
@@ -29,7 +30,7 @@ const routes: Routes = [
       {
         path: "payment-method",
         component: PaymentMethodComponent,
-        canActivate: [OrganizationPermissionsGuard],
+        canActivate: [OrganizationPermissionsGuard, organizationIsUnmanaged],
         data: {
           titleId: "paymentMethod",
           organizationPermissions: (org: Organization) => org.canEditPaymentMethods,
@@ -38,7 +39,7 @@ const routes: Routes = [
       {
         path: "history",
         component: OrgBillingHistoryViewComponent,
-        canActivate: [OrganizationPermissionsGuard],
+        canActivate: [OrganizationPermissionsGuard, organizationIsUnmanaged],
         data: {
           titleId: "billingHistory",
           organizationPermissions: (org: Organization) => org.canViewBillingHistory,

From f691854387c39cad9df2be66e139a6d3a8c8c7c3 Mon Sep 17 00:00:00 2001
From: Jared Snider <116684653+JaredSnider-Bitwarden@users.noreply.github.com>
Date: Mon, 3 Jun 2024 12:36:45 -0400
Subject: [PATCH 071/138] Auth - PM-7392 & PM-7436 - Token Service - Desktop -
 Add disk fallback for secure storage failures (#8913)

* PM-7392 - EncryptSvc - add new method for detecting if a simple string is an enc string.

* PM-7392 - TokenSvc - add checks when setting and retrieving the access token to improve handling around the access token encryption.

* PM-7392 - (1) Clean up token svc (2) export access token key type for use in tests.

* PM-7392 - Get token svc tests passing; WIP more tests to come for new scenarios.

* PM-7392 - Access token secure storage to disk fallback WIP but mostly functional besides weird logout behavior.

* PM-7392 - Clean up unnecessary comment

* PM-7392 - TokenSvc - refresh token disk storage fallback

* PM-7392 - Fix token service tests in prep for adding tests for new scenarios.

* PM-7392 - TokenSvc tests - Test new setRefreshToken scenarios

* PM-7392 - TokenSvc - getRefreshToken should return null or a value - not undefined.

* PM-7392 - Fix test name.

* PM-7392 - TokenSvc tests - clean up test names that reference removed refresh token migrated flag.

* PM-7392 - getRefreshToken tests done.

* PM-7392 - Fix error quote

* PM-7392 - TokenSvc tests - setAccessToken new scenarios tested.

* PM-7392 - TokenSvc - getAccessToken - if secure storage errors add error to log.

* PM-7392 - TokenSvc tests - getAccessToken - all new scenarios tested

* PM-7392 - EncryptSvc - test new stringIsEncString method

* PM-7392 - Main.ts - fix circ dep issue.

* PM-7392 - Main.ts - remove comment.

* PM-7392 - Don't re-invent the wheel and simply use existing isSerializedEncString static method.

* PM-7392 - Enc String - (1) Add handling for Nan in parseEncryptedString (2) Added null handling to isSerializedEncString. (3) Plan to remove encrypt service implementation

Co-authored-by: Justin Baur <19896123+justindbaur@users.noreply.github.com>

* PM-7392 - Remove encrypt service method

Co-authored-by: Justin Baur <19896123+justindbaur@users.noreply.github.com>

* PM-7392 - Actually fix circ dep issues with Justin. Ty!

Co-authored-by: Justin Baur <19896123+justindbaur@users.noreply.github.com>

* PM-7392 - TokenSvc - update to use EncString instead of EncryptSvc + fix tests.

* PM-7392 - TokenSvc - (1) Remove test code (2) Refactor decryptAccessToken method to accept access token key and error on failure to pass required decryption key to method.

* PM-7392 - Per PR feedback and discussion, do not log the user out if hte refresh token cannot be found. This will allow users to continue to use the app until their access token expires and we will error on trying to refresh it. The app will then still work on a fresh login for 55 min.

* PM-7392 - API service - update doAuthRefresh error to clarify which token cannot be refreshed.

* PM-7392 - Fix SetRefreshToken case where a null input would incorrectly trigger a fallback to disk.

* PM-7392 - If the access token cannot be refreshed due to a missing refresh token or API keys, then surface an error to the user and log it so it isn't a silent failure + we get a log.

* PM-7392  - Fix CLI build errors

* PM-7392 - Per PR feedback, add missing tests (thank you Jake for writing these!)

Co-authored-by: Jake Fink <jfink@bitwarden.com>

* PM-7392 - Per PR feedback, update incorrect comment from 3 releases to 3 months.

* PM-7392 - Per PR feedback, remove links.

* PM-7392 - Per PR feedback, move tests to existing describe.

* PM-7392 - Per PR feedback, adjust all test names to match naming convention.

* PM-7392 - ApiService - refreshIdentityToken - log error before swallowing it so we have a record of it.

* PM-7392 - Fix copy for errorRefreshingAccessToken

* PM-7392 - Per PR feedback, move error handling toast responsibility to client specific app component logic reached via messaging.

* PM-7392 - Swap logout reason from enum to type.

* PM-7392 - ApiService - Stop using messaging to trigger toast to let user know about refresh access token errors; replace with client specific callback logic.

Co-authored-by: Justin Baur <19896123+justindbaur@users.noreply.github.com>
Co-authored-by: Matt Gibson <mgibson@bitwarden.com>

* PM-7392 - Per PR feedback, adjust enc string changes and tests.

* PM-7392 - Rename file to be type from enum

* PM-7392 - ToastService - we need to await the activeToast.onHidden observable so return the activeToast from the showToast.

* PM-7392 - Desktop AppComp - cleanup messaging

* PM-7392 - Move Logout reason custom type to auth/common

* PM-7392 - WIP - Enhancing logout callback to consider the logout reason + move show toast logic into logout callback

* PM-7392 - Logout callback should simply pass along the LogoutReason instead of handling it - let each client's message listener handle it.

* PM-7392 - More replacements of expired with logoutReason

* PM-7392 - More expired to logoutReason replacements

* PM-7392 - Build new handlers for displaying the logout reason for desktop & web.

* PM-7392 - Revert ToastService changes

* PM-7392 - TokenSvc - Replace messageSender with logout callback per PR feedback.

* PM-7392 - Desktop App comp - replace toast usage with simple dialog to guarantee users will see the reason for them being logged out.

* PM-7392 - Web app comp - fix issue

* PM-7392 - Desktop App comp - don't show cancel btn on simple dialogs.

* PM-7392 - Desktop App comp - Don't open n simple dialogs.

* PM-7392 - Fix browser build

* PM-7392 - Remove logout reason from CLI as each logout call handles messaging on its own.

* PM-7392 - Previously, if a security stamp was invalid, the session was marked as expired. Restore that functionality.

* PM-7392 - Update sync service logoutCallback to include optional user id.

* PM-7392 - Clean up web app comp

* PM-7392 - Web - app comp - only handle actually possible web logout scenarios.

* PM-7392 - Browser Popup app comp - restore done logging out message functionality + add new default logout message

* PM-7392 - Add optional user id to logout callbacks.

* PM-7392 - Main.background.ts - add clarifying comment.

* PM-7392 - Per feedback, use danger simple dialog type for error.

* PM-7392 - Browser Popup - add comment clarifying expectation of seeing toasts.

* PM-7392 - Consolidate invalidSecurityStamp error handling

* PM-7392 - Per PR feedback, REFRESH_ACCESS_TOKEN_ERROR_CALLBACK can be completely sync. + Refactor to method in main.background.

* PM-7392 - Per PR feedback, use a named callback for refreshAccessTokenErrorCallback in CLI

* PM-7392 - Add TODO

* PM-7392 - Re-apply bw.ts changes to new service-container.

* PM-7392 - TokenSvc - tweak error message.

* PM-7392 - Fix test

* PM-7392 - Clean up merge conflict where I duplicated dependencies.

* PM-7392 - Per discussion with product, change default logout toast to be info

* PM-7392 - After merge, add new logout reason to sync service.

* PM-7392 - Remove default logout message per discussion with product since it isn't really visible on desktop or browser.

* PM-7392 - address PR feedback.

---------

Co-authored-by: Justin Baur <19896123+justindbaur@users.noreply.github.com>
Co-authored-by: Jake Fink <jfink@bitwarden.com>
Co-authored-by: Matt Gibson <mgibson@bitwarden.com>
---
 apps/browser/src/_locales/en/messages.json    |   9 +
 .../browser/src/background/main.background.ts |  24 +-
 apps/browser/src/popup/app.component.ts       |  36 +-
 .../src/platform/services/node-api.service.ts |   9 +-
 apps/cli/src/service-container.ts             |  15 +-
 apps/desktop/src/app/app.component.ts         |  85 ++-
 apps/desktop/src/locales/en/messages.json     |  15 +
 apps/desktop/src/main.ts                      |   5 +-
 apps/desktop/src/main/window.main.ts          |   2 -
 apps/web/src/app/app.component.ts             |  42 +-
 apps/web/src/locales/en/messages.json         |   9 +
 libs/angular/src/services/injection-tokens.ts |   7 +-
 .../src/services/jslib-services.module.ts     |  27 +-
 libs/auth/src/common/index.ts                 |   1 +
 libs/auth/src/common/types/index.ts           |   1 +
 .../src/common/types/logout-reason.type.ts    |  10 +
 .../src/auth/abstractions/token.service.ts    |   8 +-
 .../auth/services/key-connector.service.ts    |   6 +-
 .../src/auth/services/token.service.spec.ts   | 646 ++++++++++++++----
 .../common/src/auth/services/token.service.ts | 193 ++++--
 .../platform/models/domain/enc-string.spec.ts |  37 +
 .../src/platform/models/domain/enc-string.ts  |  11 +-
 libs/common/src/services/api.service.ts       |  16 +-
 .../src/services/notifications.service.ts     |   6 +-
 .../vault-timeout.service.spec.ts             |   6 +-
 .../vault-timeout/vault-timeout.service.ts    |   9 +-
 .../src/vault/services/sync/sync.service.ts   |   9 +-
 libs/components/src/toast/toast.service.ts    |   2 +-
 28 files changed, 991 insertions(+), 255 deletions(-)
 create mode 100644 libs/auth/src/common/types/index.ts
 create mode 100644 libs/auth/src/common/types/logout-reason.type.ts

diff --git a/apps/browser/src/_locales/en/messages.json b/apps/browser/src/_locales/en/messages.json
index 8d81b344482..03890c4d27f 100644
--- a/apps/browser/src/_locales/en/messages.json
+++ b/apps/browser/src/_locales/en/messages.json
@@ -599,6 +599,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1744,6 +1747,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken":{
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc":{
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop sync verification"
   },
diff --git a/apps/browser/src/background/main.background.ts b/apps/browser/src/background/main.background.ts
index 274649ef130..63721466f6f 100644
--- a/apps/browser/src/background/main.background.ts
+++ b/apps/browser/src/background/main.background.ts
@@ -9,6 +9,7 @@ import {
   AuthRequestService,
   LoginEmailServiceAbstraction,
   LoginEmailService,
+  LogoutReason,
 } from "@bitwarden/auth/common";
 import { ApiService as ApiServiceAbstraction } from "@bitwarden/common/abstractions/api.service";
 import { AuditService as AuditServiceAbstraction } from "@bitwarden/common/abstractions/audit.service";
@@ -375,8 +376,17 @@ export default class MainBackground {
       }
     };
 
-    const logoutCallback = async (expired: boolean, userId?: UserId) =>
-      await this.logout(expired, userId);
+    const logoutCallback = async (logoutReason: LogoutReason, userId?: UserId) =>
+      await this.logout(logoutReason, userId);
+
+    const refreshAccessTokenErrorCallback = () => {
+      // Send toast to popup
+      this.messagingService.send("showToast", {
+        type: "error",
+        title: this.i18nService.t("errorRefreshingAccessToken"),
+        message: this.i18nService.t("errorRefreshingAccessTokenDesc"),
+      });
+    };
 
     const isDev = process.env.ENV === "development";
     this.logService = new ConsoleLogService(isDev);
@@ -523,6 +533,7 @@ export default class MainBackground {
       this.keyGenerationService,
       this.encryptService,
       this.logService,
+      logoutCallback,
     );
 
     const migrationRunner = new MigrationRunner(
@@ -608,9 +619,12 @@ export default class MainBackground {
       this.platformUtilsService,
       this.environmentService,
       this.appIdService,
+      refreshAccessTokenErrorCallback,
+      this.logService,
+      (logoutReason: LogoutReason, userId?: UserId) => this.logout(logoutReason, userId),
       this.vaultTimeoutSettingsService,
-      (expired: boolean) => this.logout(expired),
     );
+
     this.domainSettingsService = new DefaultDomainSettingsService(this.stateProvider);
     this.fileUploadService = new FileUploadService(this.logService);
     this.cipherFileUploadService = new CipherFileUploadService(
@@ -1283,7 +1297,7 @@ export default class MainBackground {
     }
   }
 
-  async logout(expired: boolean, userId?: UserId) {
+  async logout(logoutReason: LogoutReason, userId?: UserId) {
     const activeUserId = await firstValueFrom(
       this.accountService.activeAccount$.pipe(
         map((a) => a?.id),
@@ -1349,7 +1363,7 @@ export default class MainBackground {
     await logoutPromise;
 
     this.messagingService.send("doneLoggingOut", {
-      expired: expired,
+      logoutReason: logoutReason,
       userId: userBeingLoggedOut,
     });
 
diff --git a/apps/browser/src/popup/app.component.ts b/apps/browser/src/popup/app.component.ts
index 7e94e84ef5d..b70a5564ed9 100644
--- a/apps/browser/src/popup/app.component.ts
+++ b/apps/browser/src/popup/app.component.ts
@@ -2,6 +2,7 @@ import { ChangeDetectorRef, Component, NgZone, OnDestroy, OnInit } from "@angula
 import { NavigationEnd, Router, RouterOutlet } from "@angular/router";
 import { Subject, takeUntil, firstValueFrom, concatMap, filter, tap } from "rxjs";
 
+import { LogoutReason } from "@bitwarden/auth/common";
 import { AccountService } from "@bitwarden/common/auth/abstractions/account.service";
 import { AuthService } from "@bitwarden/common/auth/abstractions/auth.service";
 import { AuthenticationStatus } from "@bitwarden/common/auth/enums/authentication-status";
@@ -10,7 +11,12 @@ import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/pl
 import { MessageListener } from "@bitwarden/common/platform/messaging";
 import { UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { DialogService, SimpleDialogOptions, ToastService } from "@bitwarden/components";
+import {
+  DialogService,
+  SimpleDialogOptions,
+  ToastOptions,
+  ToastService,
+} from "@bitwarden/components";
 
 import { BrowserApi } from "../platform/browser/browser-api";
 import { BrowserStateService } from "../platform/services/abstractions/browser-state.service";
@@ -83,13 +89,10 @@ export class AppComponent implements OnInit, OnDestroy {
       .pipe(
         tap((msg: any) => {
           if (msg.command === "doneLoggingOut") {
+            // TODO: PM-8544 - why do we call logout in the popup after receiving the doneLoggingOut message? Hasn't this already completeted logout?
             this.authService.logOut(async () => {
-              if (msg.expired) {
-                this.toastService.showToast({
-                  variant: "warning",
-                  title: this.i18nService.t("loggedOut"),
-                  message: this.i18nService.t("loginExpired"),
-                });
+              if (msg.logoutReason) {
+                await this.displayLogoutReason(msg.logoutReason);
               }
             });
             this.changeDetectorRef.detectChanges();
@@ -233,4 +236,23 @@ export class AppComponent implements OnInit, OnDestroy {
       this.browserSendStateService.setBrowserSendTypeComponentState(null),
     ]);
   }
+
+  // Displaying toasts isn't super useful on the popup due to the reloads we do.
+  // However, it is visible for a moment on the FF sidebar logout.
+  private async displayLogoutReason(logoutReason: LogoutReason) {
+    let toastOptions: ToastOptions;
+    switch (logoutReason) {
+      case "invalidSecurityStamp":
+      case "sessionExpired": {
+        toastOptions = {
+          variant: "warning",
+          title: this.i18nService.t("loggedOut"),
+          message: this.i18nService.t("loginExpired"),
+        };
+        break;
+      }
+    }
+
+    this.toastService.showToast(toastOptions);
+  }
 }
diff --git a/apps/cli/src/platform/services/node-api.service.ts b/apps/cli/src/platform/services/node-api.service.ts
index 4849aef1512..c480d9d1aff 100644
--- a/apps/cli/src/platform/services/node-api.service.ts
+++ b/apps/cli/src/platform/services/node-api.service.ts
@@ -6,6 +6,7 @@ import { VaultTimeoutSettingsService } from "@bitwarden/common/abstractions/vaul
 import { TokenService } from "@bitwarden/common/auth/abstractions/token.service";
 import { AppIdService } from "@bitwarden/common/platform/abstractions/app-id.service";
 import { EnvironmentService } from "@bitwarden/common/platform/abstractions/environment.service";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { ApiService } from "@bitwarden/common/services/api.service";
 
@@ -21,8 +22,10 @@ export class NodeApiService extends ApiService {
     platformUtilsService: PlatformUtilsService,
     environmentService: EnvironmentService,
     appIdService: AppIdService,
+    refreshAccessTokenErrorCallback: () => Promise<void>,
+    logService: LogService,
+    logoutCallback: () => Promise<void>,
     vaultTimeoutSettingsService: VaultTimeoutSettingsService,
-    logoutCallback: (expired: boolean) => Promise<void>,
     customUserAgent: string = null,
   ) {
     super(
@@ -30,8 +33,10 @@ export class NodeApiService extends ApiService {
       platformUtilsService,
       environmentService,
       appIdService,
-      vaultTimeoutSettingsService,
+      refreshAccessTokenErrorCallback,
+      logService,
       logoutCallback,
+      vaultTimeoutSettingsService,
       customUserAgent,
     );
   }
diff --git a/apps/cli/src/service-container.ts b/apps/cli/src/service-container.ts
index 882791ef9c9..53039e91473 100644
--- a/apps/cli/src/service-container.ts
+++ b/apps/cli/src/service-container.ts
@@ -255,6 +255,8 @@ export class ServiceContainer {
       p = path.join(process.env.HOME, ".config/Bitwarden CLI");
     }
 
+    const logoutCallback = async () => await this.logout();
+
     this.platformUtilsService = new CliPlatformUtilsService(ClientType.Cli, packageJson);
     this.logService = new ConsoleLogService(
       this.platformUtilsService.isDev(),
@@ -337,6 +339,7 @@ export class ServiceContainer {
       this.keyGenerationService,
       this.encryptService,
       this.logService,
+      logoutCallback,
     );
 
     const migrationRunner = new MigrationRunner(
@@ -421,13 +424,19 @@ export class ServiceContainer {
       VaultTimeoutStringType.Never, // default vault timeout
     );
 
+    const refreshAccessTokenErrorCallback = () => {
+      throw new Error("Refresh Access token error");
+    };
+
     this.apiService = new NodeApiService(
       this.tokenService,
       this.platformUtilsService,
       this.environmentService,
       this.appIdService,
+      refreshAccessTokenErrorCallback,
+      this.logService,
+      logoutCallback,
       this.vaultTimeoutSettingsService,
-      async (expired: boolean) => await this.logout(),
       customUserAgent,
     );
 
@@ -485,7 +494,7 @@ export class ServiceContainer {
       this.logService,
       this.organizationService,
       this.keyGenerationService,
-      async (expired: boolean) => await this.logout(),
+      logoutCallback,
       this.stateProvider,
     );
 
@@ -660,7 +669,7 @@ export class ServiceContainer {
       this.sendApiService,
       this.userDecryptionOptionsService,
       this.avatarService,
-      async (expired: boolean) => await this.logout(),
+      logoutCallback,
       this.billingAccountProfileStateService,
       this.tokenService,
       this.authService,
diff --git a/apps/desktop/src/app/app.component.ts b/apps/desktop/src/app/app.component.ts
index 7feea649c30..561e9b2df9c 100644
--- a/apps/desktop/src/app/app.component.ts
+++ b/apps/desktop/src/app/app.component.ts
@@ -1,3 +1,4 @@
+import { DialogRef } from "@angular/cdk/dialog";
 import {
   Component,
   NgZone,
@@ -13,6 +14,7 @@ import { filter, firstValueFrom, map, Subject, takeUntil, timeout } from "rxjs";
 import { ModalRef } from "@bitwarden/angular/components/modal/modal.ref";
 import { ModalService } from "@bitwarden/angular/services/modal.service";
 import { FingerprintDialogComponent } from "@bitwarden/auth/angular";
+import { LogoutReason } from "@bitwarden/auth/common";
 import { EventUploadService } from "@bitwarden/common/abstractions/event/event-upload.service";
 import { NotificationsService } from "@bitwarden/common/abstractions/notifications.service";
 import { SearchService } from "@bitwarden/common/abstractions/search.service";
@@ -48,7 +50,7 @@ import { CollectionService } from "@bitwarden/common/vault/abstractions/collecti
 import { InternalFolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
 import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { CipherType } from "@bitwarden/common/vault/enums";
-import { DialogService, ToastService } from "@bitwarden/components";
+import { DialogService, ToastOptions, ToastService } from "@bitwarden/components";
 
 import { DeleteAccountComponent } from "../auth/delete-account.component";
 import { LoginApprovalComponent } from "../auth/login/login-approval.component";
@@ -108,6 +110,7 @@ export class AppComponent implements OnInit, OnDestroy {
   private idleTimer: number = null;
   private isIdle = false;
   private activeUserId: UserId = null;
+  private activeSimpleDialog: DialogRef<boolean> = null;
 
   private destroy$ = new Subject<void>();
 
@@ -207,7 +210,7 @@ export class AppComponent implements OnInit, OnDestroy {
             break;
           case "logout":
             this.loading = message.userId == null || message.userId === this.activeUserId;
-            await this.logOut(!!message.expired, message.userId);
+            await this.logOut(message.logoutReason, message.userId);
             this.loading = false;
             break;
           case "lockVault":
@@ -545,9 +548,73 @@ export class AppComponent implements OnInit, OnDestroy {
     this.messagingService.send("updateAppMenu", { updateRequest: updateRequest });
   }
 
+  private async displayLogoutReason(logoutReason: LogoutReason) {
+    let toastOptions: ToastOptions;
+
+    switch (logoutReason) {
+      case "invalidSecurityStamp":
+      case "sessionExpired": {
+        toastOptions = {
+          variant: "warning",
+          title: this.i18nService.t("loggedOut"),
+          message: this.i18nService.t("loginExpired"),
+        };
+        break;
+      }
+      // We don't expect these scenarios to be common, but we want the user to
+      // understand why they are being logged out before a process reload.
+      case "accessTokenUnableToBeDecrypted": {
+        // Don't create multiple dialogs if this fires multiple times
+        if (this.activeSimpleDialog) {
+          // Let the caller of this function listen for the dialog to close
+          return firstValueFrom(this.activeSimpleDialog.closed);
+        }
+
+        this.activeSimpleDialog = this.dialogService.openSimpleDialogRef({
+          title: { key: "loggedOut" },
+          content: { key: "accessTokenUnableToBeDecrypted" },
+          acceptButtonText: { key: "ok" },
+          cancelButtonText: null,
+          type: "danger",
+        });
+
+        await firstValueFrom(this.activeSimpleDialog.closed);
+        this.activeSimpleDialog = null;
+
+        break;
+      }
+      case "refreshTokenSecureStorageRetrievalFailure": {
+        // Don't create multiple dialogs if this fires multiple times
+        if (this.activeSimpleDialog) {
+          // Let the caller of this function listen for the dialog to close
+          return firstValueFrom(this.activeSimpleDialog.closed);
+        }
+
+        this.activeSimpleDialog = this.dialogService.openSimpleDialogRef({
+          title: { key: "loggedOut" },
+          content: { key: "refreshTokenSecureStorageRetrievalFailure" },
+          acceptButtonText: { key: "ok" },
+          cancelButtonText: null,
+          type: "danger",
+        });
+
+        await firstValueFrom(this.activeSimpleDialog.closed);
+        this.activeSimpleDialog = null;
+
+        break;
+      }
+    }
+
+    if (toastOptions) {
+      this.toastService.showToast(toastOptions);
+    }
+  }
+
   // Even though the userId parameter is no longer optional doesn't mean a message couldn't be
   // passing null-ish values to us.
-  private async logOut(expired: boolean, userId: UserId) {
+  private async logOut(logoutReason: LogoutReason, userId: UserId) {
+    await this.displayLogoutReason(logoutReason);
+
     const activeUserId = await firstValueFrom(
       this.accountService.activeAccount$.pipe(map((a) => a?.id)),
     );
@@ -620,15 +687,7 @@ export class AppComponent implements OnInit, OnDestroy {
     // This must come last otherwise the logout will prematurely trigger
     // a process reload before all the state service user data can be cleaned up
     if (userBeingLoggedOut === activeUserId) {
-      this.authService.logOut(async () => {
-        if (expired) {
-          this.platformUtilsService.showToast(
-            "warning",
-            this.i18nService.t("loggedOut"),
-            this.i18nService.t("loginExpired"),
-          );
-        }
-      });
+      this.authService.logOut(async () => {});
     }
   }
 
@@ -710,7 +769,7 @@ export class AppComponent implements OnInit, OnDestroy {
         // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
         // eslint-disable-next-line @typescript-eslint/no-floating-promises
         options[1] === "logOut"
-          ? this.logOut(false, userId as UserId)
+          ? this.logOut("vaultTimeout", userId as UserId)
           : await this.vaultTimeoutService.lock(userId);
       }
     }
diff --git a/apps/desktop/src/locales/en/messages.json b/apps/desktop/src/locales/en/messages.json
index 8a91771da20..9a0a2b6a2c1 100644
--- a/apps/desktop/src/locales/en/messages.json
+++ b/apps/desktop/src/locales/en/messages.json
@@ -743,6 +743,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1212,6 +1215,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken":{
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc":{
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Help"
   },
@@ -2474,6 +2483,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/main.ts b/apps/desktop/src/main.ts
index d30d6ad821b..59a306189a5 100644
--- a/apps/desktop/src/main.ts
+++ b/apps/desktop/src/main.ts
@@ -3,6 +3,7 @@ import * as path from "path";
 import { app } from "electron";
 import { Subject, firstValueFrom } from "rxjs";
 
+import { LogoutReason } from "@bitwarden/auth/common";
 import { TokenService as TokenServiceAbstraction } from "@bitwarden/common/auth/abstractions/token.service";
 import { AccountServiceImplementation } from "@bitwarden/common/auth/services/account.service";
 import { TokenService } from "@bitwarden/common/auth/services/token.service";
@@ -31,6 +32,7 @@ import { DefaultSingleUserStateProvider } from "@bitwarden/common/platform/state
 import { DefaultStateProvider } from "@bitwarden/common/platform/state/implementations/default-state.provider";
 import { StateEventRegistrarService } from "@bitwarden/common/platform/state/state-event-registrar.service";
 import { MemoryStorageService as MemoryStorageServiceForStateProviders } from "@bitwarden/common/platform/state/storage/memory-storage.service";
+import { UserId } from "@bitwarden/common/types/guid";
 /* eslint-enable import/no-restricted-paths */
 
 import { DesktopAutofillSettingsService } from "./autofill/services/desktop-autofill-settings.service";
@@ -182,6 +184,7 @@ export class Main {
       this.keyGenerationService,
       this.encryptService,
       this.logService,
+      async (logoutReason: LogoutReason, userId?: UserId) => {},
     );
 
     this.migrationRunner = new MigrationRunner(
@@ -207,11 +210,9 @@ export class Main {
     );
 
     this.desktopSettingsService = new DesktopSettingsService(stateProvider);
-
     const biometricStateService = new DefaultBiometricStateService(stateProvider);
 
     this.windowMain = new WindowMain(
-      this.stateService,
       biometricStateService,
       this.logService,
       this.storageService,
diff --git a/apps/desktop/src/main/window.main.ts b/apps/desktop/src/main/window.main.ts
index 64b4bc48d28..e82d16ee9fd 100644
--- a/apps/desktop/src/main/window.main.ts
+++ b/apps/desktop/src/main/window.main.ts
@@ -6,7 +6,6 @@ import { app, BrowserWindow, ipcMain, nativeTheme, screen, session } from "elect
 import { firstValueFrom } from "rxjs";
 
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
 import { AbstractStorageService } from "@bitwarden/common/platform/abstractions/storage.service";
 import { BiometricStateService } from "@bitwarden/common/platform/biometrics/biometric-state.service";
 
@@ -38,7 +37,6 @@ export class WindowMain {
   readonly defaultHeight = 600;
 
   constructor(
-    private stateService: StateService,
     private biometricStateService: BiometricStateService,
     private logService: LogService,
     private storageService: AbstractStorageService,
diff --git a/apps/web/src/app/app.component.ts b/apps/web/src/app/app.component.ts
index 6c71309243e..254f23eeb23 100644
--- a/apps/web/src/app/app.component.ts
+++ b/apps/web/src/app/app.component.ts
@@ -14,6 +14,7 @@ import {
   timer,
 } from "rxjs";
 
+import { LogoutReason } from "@bitwarden/auth/common";
 import { EventUploadService } from "@bitwarden/common/abstractions/event/event-upload.service";
 import { NotificationsService } from "@bitwarden/common/abstractions/notifications.service";
 import { SearchService } from "@bitwarden/common/abstractions/search.service";
@@ -40,7 +41,7 @@ import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.servi
 import { CollectionService } from "@bitwarden/common/vault/abstractions/collection.service";
 import { InternalFolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
 import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
-import { DialogService, ToastService } from "@bitwarden/components";
+import { DialogService, ToastOptions, ToastService } from "@bitwarden/components";
 
 import { PolicyListService } from "./admin-console/core/policy-list.service";
 import {
@@ -148,7 +149,7 @@ export class AppComponent implements OnDestroy, OnInit {
             this.router.navigate(["/"]);
             break;
           case "logout":
-            await this.logOut(!!message.expired, message.redirect);
+            await this.logOut(message.logoutReason, message.redirect);
             break;
           case "lockVault":
             await this.vaultTimeoutService.lock();
@@ -278,7 +279,34 @@ export class AppComponent implements OnDestroy, OnInit {
     this.destroy$.complete();
   }
 
-  private async logOut(expired: boolean, redirect = true) {
+  private async displayLogoutReason(logoutReason: LogoutReason) {
+    let toastOptions: ToastOptions;
+    switch (logoutReason) {
+      case "invalidSecurityStamp":
+      case "sessionExpired": {
+        toastOptions = {
+          variant: "warning",
+          title: this.i18nService.t("loggedOut"),
+          message: this.i18nService.t("loginExpired"),
+        };
+        break;
+      }
+      default: {
+        toastOptions = {
+          variant: "info",
+          title: this.i18nService.t("loggedOut"),
+          message: this.i18nService.t("loggedOutDesc"),
+        };
+        break;
+      }
+    }
+
+    this.toastService.showToast(toastOptions);
+  }
+
+  private async logOut(logoutReason: LogoutReason, redirect = true) {
+    await this.displayLogoutReason(logoutReason);
+
     await this.eventUploadService.uploadEvents();
     const userId = (await this.stateService.getUserId()) as UserId;
 
@@ -308,14 +336,6 @@ export class AppComponent implements OnDestroy, OnInit {
 
     await this.searchService.clearIndex();
     this.authService.logOut(async () => {
-      if (expired) {
-        this.platformUtilsService.showToast(
-          "warning",
-          this.i18nService.t("loggedOut"),
-          this.i18nService.t("loginExpired"),
-        );
-      }
-
       await this.stateService.clean({ userId: userId });
       await this.accountService.clean(userId);
 
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index 23d2dc75722..875de3980a5 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken":{
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc":{
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Warning"
   },
diff --git a/libs/angular/src/services/injection-tokens.ts b/libs/angular/src/services/injection-tokens.ts
index 17a98498d68..40405b062c6 100644
--- a/libs/angular/src/services/injection-tokens.ts
+++ b/libs/angular/src/services/injection-tokens.ts
@@ -1,6 +1,7 @@
 import { InjectionToken } from "@angular/core";
 import { Observable, Subject } from "rxjs";
 
+import { LogoutReason } from "@bitwarden/auth/common";
 import { ClientType } from "@bitwarden/common/enums";
 import {
   AbstractStorageService,
@@ -36,7 +37,7 @@ export const MEMORY_STORAGE = new SafeInjectionToken<AbstractStorageService>("ME
 export const SECURE_STORAGE = new SafeInjectionToken<AbstractStorageService>("SECURE_STORAGE");
 export const STATE_FACTORY = new SafeInjectionToken<StateFactory>("STATE_FACTORY");
 export const LOGOUT_CALLBACK = new SafeInjectionToken<
-  (expired: boolean, userId?: string) => Promise<void>
+  (logoutReason: LogoutReason, userId?: string) => Promise<void>
 >("LOGOUT_CALLBACK");
 export const LOCKED_CALLBACK = new SafeInjectionToken<(userId?: string) => Promise<void>>(
   "LOCKED_CALLBACK",
@@ -53,3 +54,7 @@ export const INTRAPROCESS_MESSAGING_SUBJECT = new SafeInjectionToken<
   Subject<Message<Record<string, unknown>>>
 >("INTRAPROCESS_MESSAGING_SUBJECT");
 export const CLIENT_TYPE = new SafeInjectionToken<ClientType>("CLIENT_TYPE");
+
+export const REFRESH_ACCESS_TOKEN_ERROR_CALLBACK = new SafeInjectionToken<() => void>(
+  "REFRESH_ACCESS_TOKEN_ERROR_CALLBACK",
+);
diff --git a/libs/angular/src/services/jslib-services.module.ts b/libs/angular/src/services/jslib-services.module.ts
index 5a5b83522d7..048c1829001 100644
--- a/libs/angular/src/services/jslib-services.module.ts
+++ b/libs/angular/src/services/jslib-services.module.ts
@@ -13,6 +13,7 @@ import {
   InternalUserDecryptionOptionsServiceAbstraction,
   UserDecryptionOptionsService,
   UserDecryptionOptionsServiceAbstraction,
+  LogoutReason,
 } from "@bitwarden/auth/common";
 import { ApiService as ApiServiceAbstraction } from "@bitwarden/common/abstractions/api.service";
 import { AuditService as AuditServiceAbstraction } from "@bitwarden/common/abstractions/audit.service";
@@ -238,6 +239,7 @@ import { SyncNotifierService } from "@bitwarden/common/vault/services/sync/sync-
 import { SyncService } from "@bitwarden/common/vault/services/sync/sync.service";
 import { TotpService } from "@bitwarden/common/vault/services/totp.service";
 import { VaultSettingsService } from "@bitwarden/common/vault/services/vault-settings/vault-settings.service";
+import { ToastService } from "@bitwarden/components";
 import {
   ImportApiService,
   ImportApiServiceAbstraction,
@@ -281,6 +283,7 @@ import {
   DEFAULT_VAULT_TIMEOUT,
   INTRAPROCESS_MESSAGING_SUBJECT,
   CLIENT_TYPE,
+  REFRESH_ACCESS_TOKEN_ERROR_CALLBACK,
 } from "./injection-tokens";
 import { ModalService } from "./modal.service";
 
@@ -322,8 +325,12 @@ const safeProviders: SafeProvider[] = [
   safeProvider({
     provide: LOGOUT_CALLBACK,
     useFactory:
-      (messagingService: MessagingServiceAbstraction) => (expired: boolean, userId?: string) =>
-        Promise.resolve(messagingService.send("logout", { expired: expired, userId: userId })),
+      (messagingService: MessagingServiceAbstraction) =>
+      async (logoutReason: LogoutReason, userId?: string) => {
+        return Promise.resolve(
+          messagingService.send("logout", { logoutReason: logoutReason, userId: userId }),
+        );
+      },
     deps: [MessagingServiceAbstraction],
   }),
   safeProvider({
@@ -532,6 +539,7 @@ const safeProviders: SafeProvider[] = [
       KeyGenerationServiceAbstraction,
       EncryptService,
       LogService,
+      LOGOUT_CALLBACK,
     ],
   }),
   safeProvider({
@@ -585,6 +593,17 @@ const safeProviders: SafeProvider[] = [
       StateProvider,
     ],
   }),
+  safeProvider({
+    provide: REFRESH_ACCESS_TOKEN_ERROR_CALLBACK,
+    useFactory: (toastService: ToastService, i18nService: I18nServiceAbstraction) => () => {
+      toastService.showToast({
+        variant: "error",
+        title: i18nService.t("errorRefreshingAccessToken"),
+        message: i18nService.t("errorRefreshingAccessTokenDesc"),
+      });
+    },
+    deps: [ToastService, I18nServiceAbstraction],
+  }),
   safeProvider({
     provide: ApiServiceAbstraction,
     useClass: ApiService,
@@ -593,8 +612,10 @@ const safeProviders: SafeProvider[] = [
       PlatformUtilsServiceAbstraction,
       EnvironmentService,
       AppIdServiceAbstraction,
-      VaultTimeoutSettingsServiceAbstraction,
+      REFRESH_ACCESS_TOKEN_ERROR_CALLBACK,
+      LogService,
       LOGOUT_CALLBACK,
+      VaultTimeoutSettingsServiceAbstraction,
     ],
   }),
   safeProvider({
diff --git a/libs/auth/src/common/index.ts b/libs/auth/src/common/index.ts
index 936666e1a81..43efd7c6387 100644
--- a/libs/auth/src/common/index.ts
+++ b/libs/auth/src/common/index.ts
@@ -3,5 +3,6 @@
  */
 export * from "./abstractions";
 export * from "./models";
+export * from "./types";
 export * from "./services";
 export * from "./utilities";
diff --git a/libs/auth/src/common/types/index.ts b/libs/auth/src/common/types/index.ts
new file mode 100644
index 00000000000..37ec426fb68
--- /dev/null
+++ b/libs/auth/src/common/types/index.ts
@@ -0,0 +1 @@
+export * from "./logout-reason.type";
diff --git a/libs/auth/src/common/types/logout-reason.type.ts b/libs/auth/src/common/types/logout-reason.type.ts
new file mode 100644
index 00000000000..71fff51064a
--- /dev/null
+++ b/libs/auth/src/common/types/logout-reason.type.ts
@@ -0,0 +1,10 @@
+export type LogoutReason =
+  | "invalidGrantError"
+  | "vaultTimeout"
+  | "invalidSecurityStamp"
+  | "logoutNotification"
+  | "keyConnectorError"
+  | "sessionExpired"
+  | "accessTokenUnableToBeDecrypted"
+  | "refreshTokenSecureStorageRetrievalFailure"
+  | "accountDeleted";
diff --git a/libs/common/src/auth/abstractions/token.service.ts b/libs/common/src/auth/abstractions/token.service.ts
index d078051f642..a88dfbb278f 100644
--- a/libs/common/src/auth/abstractions/token.service.ts
+++ b/libs/common/src/auth/abstractions/token.service.ts
@@ -70,16 +70,16 @@ export abstract class TokenService {
   /**
    * Gets the access token
    * @param userId - The optional user id to get the access token for; if not provided, the active user is used.
-   * @returns A promise that resolves with the access token or undefined.
+   * @returns A promise that resolves with the access token or null.
    */
-  getAccessToken: (userId?: UserId) => Promise<string | undefined>;
+  getAccessToken: (userId?: UserId) => Promise<string | null>;
 
   /**
    * Gets the refresh token.
    * @param userId - The optional user id to get the refresh token for; if not provided, the active user is used.
-   * @returns A promise that resolves with the refresh token or undefined.
+   * @returns A promise that resolves with the refresh token or null.
    */
-  getRefreshToken: (userId?: UserId) => Promise<string | undefined>;
+  getRefreshToken: (userId?: UserId) => Promise<string | null>;
 
   /**
    * Sets the API Key Client ID for the active user id in memory or disk based on the given vaultTimeoutAction and vaultTimeout.
diff --git a/libs/common/src/auth/services/key-connector.service.ts b/libs/common/src/auth/services/key-connector.service.ts
index 65d1030bd3a..6b81844afb4 100644
--- a/libs/common/src/auth/services/key-connector.service.ts
+++ b/libs/common/src/auth/services/key-connector.service.ts
@@ -1,5 +1,7 @@
 import { firstValueFrom } from "rxjs";
 
+import { LogoutReason } from "@bitwarden/auth/common";
+
 import { ApiService } from "../../abstractions/api.service";
 import { OrganizationService } from "../../admin-console/abstractions/organization/organization.service.abstraction";
 import { OrganizationUserType } from "../../admin-console/enums";
@@ -57,7 +59,7 @@ export class KeyConnectorService implements KeyConnectorServiceAbstraction {
     private logService: LogService,
     private organizationService: OrganizationService,
     private keyGenerationService: KeyGenerationService,
-    private logoutCallback: (expired: boolean, userId?: string) => Promise<void>,
+    private logoutCallback: (logoutReason: LogoutReason, userId?: string) => Promise<void>,
     private stateProvider: StateProvider,
   ) {
     this.usesKeyConnectorState = this.stateProvider.getActive(USES_KEY_CONNECTOR);
@@ -192,7 +194,7 @@ export class KeyConnectorService implements KeyConnectorServiceAbstraction {
     if (this.logoutCallback != null) {
       // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
       // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.logoutCallback(false);
+      this.logoutCallback("keyConnectorError");
     }
     throw new Error("Key Connector error");
   }
diff --git a/libs/common/src/auth/services/token.service.spec.ts b/libs/common/src/auth/services/token.service.spec.ts
index 9c5dd9fc91f..d7a4c527162 100644
--- a/libs/common/src/auth/services/token.service.spec.ts
+++ b/libs/common/src/auth/services/token.service.spec.ts
@@ -1,6 +1,8 @@
 import { MockProxy, mock } from "jest-mock-extended";
 import { firstValueFrom } from "rxjs";
 
+import { LogoutReason } from "@bitwarden/auth/common";
+
 import { FakeSingleUserStateProvider, FakeGlobalStateProvider } from "../../../spec";
 import { VaultTimeoutAction } from "../../enums/vault-timeout-action.enum";
 import { EncryptService } from "../../platform/abstractions/encrypt.service";
@@ -9,11 +11,18 @@ import { LogService } from "../../platform/abstractions/log.service";
 import { AbstractStorageService } from "../../platform/abstractions/storage.service";
 import { StorageLocation } from "../../platform/enums";
 import { StorageOptions } from "../../platform/models/domain/storage-options";
+import { SymmetricCryptoKey } from "../../platform/models/domain/symmetric-crypto-key";
+import { CsprngArray } from "../../types/csprng";
 import { UserId } from "../../types/guid";
 import { VaultTimeout, VaultTimeoutStringType } from "../../types/vault-timeout.type";
 
 import { ACCOUNT_ACTIVE_ACCOUNT_ID } from "./account.service";
-import { DecodedAccessToken, TokenService, TokenStorageLocation } from "./token.service";
+import {
+  AccessTokenKey,
+  DecodedAccessToken,
+  TokenService,
+  TokenStorageLocation,
+} from "./token.service";
 import {
   ACCESS_TOKEN_DISK,
   ACCESS_TOKEN_MEMORY,
@@ -36,6 +45,7 @@ describe("TokenService", () => {
   let keyGenerationService: MockProxy<KeyGenerationService>;
   let encryptService: MockProxy<EncryptService>;
   let logService: MockProxy<LogService>;
+  let logoutCallback: jest.Mock<Promise<void>, [logoutReason: LogoutReason, userId?: string]>;
 
   const memoryVaultTimeoutAction = VaultTimeoutAction.LogOut;
   const memoryVaultTimeout: VaultTimeout = 30;
@@ -46,6 +56,9 @@ describe("TokenService", () => {
   const accessTokenJwt =
     "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.n7roP8sSbfwcYdvRxZNZds27IK32TW6anorE6BORx_Q";
 
+  const encryptedAccessToken =
+    "2.rFNYSTJoljn8h6GOSNVYdQ==|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|pabwMkF/SdYKdDlow4uKxaObrAP0urmv7N7fA9bedec=";
+
   const accessTokenDecoded: DecodedAccessToken = {
     iss: "http://localhost",
     nbf: 1709324111,
@@ -93,6 +106,7 @@ describe("TokenService", () => {
     keyGenerationService = mock<KeyGenerationService>();
     encryptService = mock<EncryptService>();
     logService = mock<LogService>();
+    logoutCallback = jest.fn();
 
     const supportsSecureStorage = false; // default to false; tests will override as needed
     tokenService = createTokenService(supportsSecureStorage);
@@ -152,7 +166,7 @@ describe("TokenService", () => {
         expect(result).toEqual(true);
       });
 
-      it("should return false if no access token exists in memory, disk, or secure storage", async () => {
+      it("returns false when no access token exists in memory, disk, or secure storage", async () => {
         // Act
         const result = await firstValueFrom(tokenService.hasAccessToken$(userIdFromAccessToken));
 
@@ -162,7 +176,7 @@ describe("TokenService", () => {
     });
 
     describe("setAccessToken", () => {
-      it("should throw an error if the access token is null", async () => {
+      it("throws an error when the access token is null", async () => {
         // Act
         const result = tokenService.setAccessToken(
           null,
@@ -173,7 +187,7 @@ describe("TokenService", () => {
         await expect(result).rejects.toThrow("Access token is required.");
       });
 
-      it("should throw an error if an invalid token is passed in", async () => {
+      it("throws an error when an invalid token is passed in", async () => {
         // Act
         const result = tokenService.setAccessToken(
           "invalidToken",
@@ -216,7 +230,7 @@ describe("TokenService", () => {
       });
 
       describe("Memory storage tests", () => {
-        it("should set the access token in memory", async () => {
+        it("set the access token in memory", async () => {
           // Act
           await tokenService.setAccessToken(
             accessTokenJwt,
@@ -246,6 +260,14 @@ describe("TokenService", () => {
       });
 
       describe("Disk storage tests (secure storage supported on platform)", () => {
+        const accessTokenKey = new SymmetricCryptoKey(
+          new Uint8Array(64) as CsprngArray,
+        ) as AccessTokenKey;
+
+        const accessTokenKeyB64 = {
+          keyB64:
+            "lI7lSoejJ1HsrTkRs2Ipm0x+YcZMKpgm7WQGCNjAWmFAyGOKossXwBJvvtbxcYDZ0G0XNY8Gp7DBXZV2tWAO5w==",
+        };
         beforeEach(() => {
           const supportsSecureStorage = true;
           tokenService = createTokenService(supportsSecureStorage);
@@ -259,7 +281,7 @@ describe("TokenService", () => {
             .getFake(userIdFromAccessToken, ACCESS_TOKEN_MEMORY)
             .stateSubject.next([userIdFromAccessToken, accessTokenJwt]);
 
-          keyGenerationService.createKey.mockResolvedValue("accessTokenKey" as any);
+          keyGenerationService.createKey.mockResolvedValue(accessTokenKey);
 
           const mockEncryptedAccessToken = "encryptedAccessToken";
 
@@ -267,6 +289,11 @@ describe("TokenService", () => {
             encryptedString: mockEncryptedAccessToken,
           } as any);
 
+          // First call resolves to null to simulate no key in secure storage
+          // then resolves to the key to simulate the key being set in secure storage
+          // and retrieved successfully to ensure it was set.
+          secureStorageService.get.mockResolvedValueOnce(null).mockResolvedValue(accessTokenKeyB64);
+
           // Act
           await tokenService.setAccessToken(
             accessTokenJwt,
@@ -278,7 +305,7 @@ describe("TokenService", () => {
           // assert that the AccessTokenKey was set in secure storage
           expect(secureStorageService.save).toHaveBeenCalledWith(
             accessTokenKeySecureStorageKey,
-            "accessTokenKey",
+            accessTokenKey,
             secureStorageOptions,
           );
 
@@ -292,18 +319,85 @@ describe("TokenService", () => {
             singleUserStateProvider.getFake(userIdFromAccessToken, ACCESS_TOKEN_MEMORY).nextMock,
           ).toHaveBeenCalledWith(null);
         });
+
+        it("should fallback to disk storage for the access token if the access token cannot be set in secure storage", async () => {
+          // This tests the scenario where the access token key silently fails to be set in secure storage
+
+          // Arrange:
+          keyGenerationService.createKey.mockResolvedValue(accessTokenKey);
+
+          // First call resolves to null to simulate no key in secure storage
+          // and then resolves to no key after it should have been set
+          secureStorageService.get.mockResolvedValueOnce(null).mockResolvedValue(null);
+
+          // Act
+          await tokenService.setAccessToken(
+            accessTokenJwt,
+            diskVaultTimeoutAction,
+            diskVaultTimeout,
+          );
+          // Assert
+
+          // assert that we tried to store the AccessTokenKey in secure storage
+          expect(secureStorageService.save).toHaveBeenCalledWith(
+            accessTokenKeySecureStorageKey,
+            accessTokenKey,
+            secureStorageOptions,
+          );
+
+          // assert that we logged the error
+          expect(logService.error).toHaveBeenCalledWith(
+            "SetAccessToken: storing encrypted access token in secure storage failed. Falling back to disk storage.",
+            new Error("New Access token key unable to be retrieved from secure storage."),
+          );
+
+          // assert that the access token was put on disk unencrypted
+          expect(
+            singleUserStateProvider.getFake(userIdFromAccessToken, ACCESS_TOKEN_DISK).nextMock,
+          ).toHaveBeenCalledWith(accessTokenJwt);
+        });
+
+        it("should fallback to disk storage for the access token if secure storage errors on trying to get an existing access token key", async () => {
+          // This tests the scenario for linux users who don't have secure storage configured.
+
+          // Arrange:
+          keyGenerationService.createKey.mockResolvedValue(accessTokenKey);
+
+          // Mock linux secure storage error
+          const secureStorageError = "Secure storage error";
+          secureStorageService.get.mockRejectedValue(new Error(secureStorageError));
+
+          // Act
+          await tokenService.setAccessToken(
+            accessTokenJwt,
+            diskVaultTimeoutAction,
+            diskVaultTimeout,
+          );
+          // Assert
+
+          // assert that we logged the error
+          expect(logService.error).toHaveBeenCalledWith(
+            "SetAccessToken: storing encrypted access token in secure storage failed. Falling back to disk storage.",
+            new Error(secureStorageError),
+          );
+
+          // assert that the access token was put on disk unencrypted
+          expect(
+            singleUserStateProvider.getFake(userIdFromAccessToken, ACCESS_TOKEN_DISK).nextMock,
+          ).toHaveBeenCalledWith(accessTokenJwt);
+        });
       });
     });
 
     describe("getAccessToken", () => {
-      it("should return undefined if no user id is provided and there is no active user in global state", async () => {
+      it("returns null when no user id is provided and there is no active user in global state", async () => {
         // Act
         const result = await tokenService.getAccessToken();
         // Assert
-        expect(result).toBeUndefined();
+        expect(result).toBeNull();
       });
 
-      it("should return null if no access token is found in memory, disk, or secure storage", async () => {
+      it("returns null when no access token is found in memory, disk, or secure storage", async () => {
         // Arrange
         globalStateProvider
           .getFake(ACCOUNT_ACTIVE_ACCOUNT_ID)
@@ -317,11 +411,8 @@ describe("TokenService", () => {
 
       describe("Memory storage tests", () => {
         test.each([
-          [
-            "should get the access token from memory for the provided user id",
-            userIdFromAccessToken,
-          ],
-          ["should get the access token from memory with no user id provided", undefined],
+          ["gets the access token from memory when a user id is provided ", userIdFromAccessToken],
+          ["gets the access token from memory when no user id is provided", undefined],
         ])("%s", async (_, userId) => {
           // Arrange
           singleUserStateProvider
@@ -350,11 +441,8 @@ describe("TokenService", () => {
 
       describe("Disk storage tests (secure storage not supported on platform)", () => {
         test.each([
-          [
-            "should get the access token from disk for the specified user id",
-            userIdFromAccessToken,
-          ],
-          ["should get the access token from disk with no user id specified", undefined],
+          ["gets the access token from disk when the user id is specified", userIdFromAccessToken],
+          ["gets the access token from disk when no user id is specified", undefined],
         ])("%s", async (_, userId) => {
           // Arrange
           singleUserStateProvider
@@ -387,11 +475,11 @@ describe("TokenService", () => {
 
         test.each([
           [
-            "should get the encrypted access token from disk, decrypt it, and return it when user id is provided",
+            "gets the encrypted access token from disk, decrypts it, and returns it when a user id is provided",
             userIdFromAccessToken,
           ],
           [
-            "should get the encrypted access token from disk, decrypt it, and return it when no user id is provided",
+            "gets the encrypted access token from disk, decrypts it, and returns it when no user id is provided",
             undefined,
           ],
         ])("%s", async (_, userId) => {
@@ -423,11 +511,11 @@ describe("TokenService", () => {
 
         test.each([
           [
-            "should fallback and get the unencrypted access token from disk when there isn't an access token key in secure storage and a user id is provided",
+            "falls back and gets the unencrypted access token from disk when there isn't an access token key in secure storage and a user id is provided",
             userIdFromAccessToken,
           ],
           [
-            "should fallback and get the unencrypted access token from disk when there isn't an access token key in secure storage and no user id is provided",
+            "falls back and gets the unencrypted access token from disk when there isn't an access token key in secure storage and no user id is provided",
             undefined,
           ],
         ])("%s", async (_, userId) => {
@@ -455,11 +543,80 @@ describe("TokenService", () => {
           // Assert
           expect(result).toEqual(accessTokenJwt);
         });
+
+        it("logs the error and logs the user out when the access token key cannot be retrieved from secure storage if the access token is encrypted", async () => {
+          // This tests the intermittent windows 10/11 scenario in which the access token key was stored successfully in secure storage and the
+          // access token was encrypted with it and stored on disk successfully. However, on retrieval the access token key isn't able to
+          // retrieved for whatever reason.
+
+          // Arrange
+          singleUserStateProvider
+            .getFake(userIdFromAccessToken, ACCESS_TOKEN_MEMORY)
+            .stateSubject.next([userIdFromAccessToken, undefined]);
+
+          singleUserStateProvider
+            .getFake(userIdFromAccessToken, ACCESS_TOKEN_DISK)
+            .stateSubject.next([userIdFromAccessToken, encryptedAccessToken]);
+
+          // No access token key set
+
+          // Act
+          const result = await tokenService.getAccessToken(userIdFromAccessToken);
+
+          // Assert
+          expect(result).toBeNull();
+
+          // assert that we logged the error
+          expect(logService.error).toHaveBeenCalledWith(
+            "Access token key not found to decrypt encrypted access token. Logging user out.",
+          );
+
+          // assert that we logged the user out
+          expect(logoutCallback).toHaveBeenCalledWith(
+            "accessTokenUnableToBeDecrypted",
+            userIdFromAccessToken,
+          );
+        });
+
+        it("logs the error and logs the user out when secure storage errors on trying to get an access token key", async () => {
+          // This tests the linux scenario where users might not have secure storage support configured.
+
+          // Arrange
+          singleUserStateProvider
+            .getFake(userIdFromAccessToken, ACCESS_TOKEN_MEMORY)
+            .stateSubject.next([userIdFromAccessToken, undefined]);
+
+          singleUserStateProvider
+            .getFake(userIdFromAccessToken, ACCESS_TOKEN_DISK)
+            .stateSubject.next([userIdFromAccessToken, encryptedAccessToken]);
+
+          // Mock linux secure storage error
+          const secureStorageError = "Secure storage error";
+          secureStorageService.get.mockRejectedValue(new Error(secureStorageError));
+
+          // Act
+          const result = await tokenService.getAccessToken(userIdFromAccessToken);
+
+          // Assert
+          expect(result).toBeNull();
+
+          // assert that we logged the error
+          expect(logService.error).toHaveBeenCalledWith(
+            "Access token key retrieval failed. Unable to decrypt encrypted access token. Logging user out.",
+            new Error(secureStorageError),
+          );
+
+          // assert that we logged the user out
+          expect(logoutCallback).toHaveBeenCalledWith(
+            "accessTokenUnableToBeDecrypted",
+            userIdFromAccessToken,
+          );
+        });
       });
     });
 
     describe("clearAccessToken", () => {
-      it("should throw an error if no user id is provided and there is no active user in global state", async () => {
+      it("throws an error when no user id is provided and there is no active user in global state", async () => {
         // Act
         // note: don't await here because we want to test the error
         const result = tokenService.clearAccessToken();
@@ -475,11 +632,11 @@ describe("TokenService", () => {
 
         test.each([
           [
-            "should clear the access token from all storage locations for the provided user id",
+            "clears the access token from all storage locations when a user id is provided",
             userIdFromAccessToken,
           ],
           [
-            "should clear the access token from all storage locations for the global active user",
+            "clears the access token from all storage locations when there is a global active user",
             undefined,
           ],
         ])("%s", async (_, userId) => {
@@ -519,7 +676,7 @@ describe("TokenService", () => {
     });
 
     describe("decodeAccessToken", () => {
-      it("should throw an error if no access token provided or retrieved from state", async () => {
+      it("throws an error when no access token is provided or retrievable from state", async () => {
         // Access
         tokenService.getAccessToken = jest.fn().mockResolvedValue(null);
 
@@ -530,7 +687,7 @@ describe("TokenService", () => {
         await expect(result).rejects.toThrow("Access token not found.");
       });
 
-      it("should decode the access token", async () => {
+      it("decodes the access token when a valid one is stored", async () => {
         // Arrange
         tokenService.getAccessToken = jest.fn().mockResolvedValue(accessTokenJwt);
 
@@ -544,7 +701,7 @@ describe("TokenService", () => {
 
     describe("Data methods", () => {
       describe("getTokenExpirationDate", () => {
-        it("should throw an error if the access token cannot be decoded", async () => {
+        it("throws an error when the access token cannot be decoded", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockRejectedValue(new Error("Mock error"));
 
@@ -555,7 +712,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("Failed to decode access token: Mock error");
         });
 
-        it("should return null if the decoded access token is null", async () => {
+        it("returns null when the decoded access token is null", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockResolvedValue(null);
 
@@ -566,7 +723,7 @@ describe("TokenService", () => {
           expect(result).toBeNull();
         });
 
-        it("should return null if the decoded access token does not have an expiration date", async () => {
+        it("returns null when the decoded access token does not have an expiration date", async () => {
           // Arrange
           const accessTokenDecodedWithoutExp = { ...accessTokenDecoded };
           delete accessTokenDecodedWithoutExp.exp;
@@ -581,7 +738,7 @@ describe("TokenService", () => {
           expect(result).toBeNull();
         });
 
-        it("should return null if the decoded access token has an non numeric expiration date", async () => {
+        it("returns null when the decoded access token has a non numeric expiration date", async () => {
           // Arrange
           const accessTokenDecodedWithNonNumericExp = { ...accessTokenDecoded, exp: "non-numeric" };
           tokenService.decodeAccessToken = jest
@@ -595,7 +752,7 @@ describe("TokenService", () => {
           expect(result).toBeNull();
         });
 
-        it("should return the expiration date of the access token", async () => {
+        it("returns the expiration date of the access token when a valid access token is stored", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockResolvedValue(accessTokenDecoded);
 
@@ -608,7 +765,7 @@ describe("TokenService", () => {
       });
 
       describe("tokenSecondsRemaining", () => {
-        it("should return 0 if the tokenExpirationDate is null", async () => {
+        it("returns 0 when the tokenExpirationDate is null", async () => {
           // Arrange
           tokenService.getTokenExpirationDate = jest.fn().mockResolvedValue(null);
 
@@ -619,7 +776,7 @@ describe("TokenService", () => {
           expect(result).toEqual(0);
         });
 
-        it("should return the number of seconds remaining until the token expires", async () => {
+        it("returns the number of seconds remaining until the token expires", async () => {
           // Arrange
           // Lock the time to ensure a consistent test environment
           // otherwise we have flaky issues with set system time date and the Date.now() call.
@@ -644,7 +801,7 @@ describe("TokenService", () => {
           jest.useRealTimers();
         });
 
-        it("should return the number of seconds remaining until the token expires, considering an offset", async () => {
+        it("returns the number of seconds remaining until the token expires when given an offset", async () => {
           // Arrange
           // Lock the time to ensure a consistent test environment
           // otherwise we have flaky issues with set system time date and the Date.now() call.
@@ -672,7 +829,7 @@ describe("TokenService", () => {
       });
 
       describe("tokenNeedsRefresh", () => {
-        it("should return true if token is within the default refresh threshold (5 min)", async () => {
+        it("returns true when the token is within the default refresh threshold (5 min)", async () => {
           // Arrange
           const tokenSecondsRemaining = 60;
           tokenService.tokenSecondsRemaining = jest.fn().mockResolvedValue(tokenSecondsRemaining);
@@ -684,7 +841,7 @@ describe("TokenService", () => {
           expect(result).toEqual(true);
         });
 
-        it("should return false if token is outside the default refresh threshold (5 min)", async () => {
+        it("returns false when the token is outside the default refresh threshold (5 min)", async () => {
           // Arrange
           const tokenSecondsRemaining = 600;
           tokenService.tokenSecondsRemaining = jest.fn().mockResolvedValue(tokenSecondsRemaining);
@@ -696,7 +853,7 @@ describe("TokenService", () => {
           expect(result).toEqual(false);
         });
 
-        it("should return true if token is within the specified refresh threshold", async () => {
+        it("returns true when the token is within the specified refresh threshold", async () => {
           // Arrange
           const tokenSecondsRemaining = 60;
           tokenService.tokenSecondsRemaining = jest.fn().mockResolvedValue(tokenSecondsRemaining);
@@ -708,7 +865,7 @@ describe("TokenService", () => {
           expect(result).toEqual(true);
         });
 
-        it("should return false if token is outside the specified refresh threshold", async () => {
+        it("returns false when the token is outside the specified refresh threshold", async () => {
           // Arrange
           const tokenSecondsRemaining = 600;
           tokenService.tokenSecondsRemaining = jest.fn().mockResolvedValue(tokenSecondsRemaining);
@@ -722,7 +879,7 @@ describe("TokenService", () => {
       });
 
       describe("getUserId", () => {
-        it("should throw an error if the access token cannot be decoded", async () => {
+        it("throws an error when the access token cannot be decoded", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockRejectedValue(new Error("Mock error"));
 
@@ -733,7 +890,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("Failed to decode access token: Mock error");
         });
 
-        it("should throw an error if the decoded access token is null", async () => {
+        it("throws an error when the decoded access token is null", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockResolvedValue(null);
 
@@ -744,7 +901,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("No user id found");
         });
 
-        it("should throw an error if the decoded access token has a non-string user id", async () => {
+        it("throws an error when the decoded access token has a non-string user id", async () => {
           // Arrange
           const accessTokenDecodedWithNonStringSub = { ...accessTokenDecoded, sub: 123 };
           tokenService.decodeAccessToken = jest
@@ -758,7 +915,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("No user id found");
         });
 
-        it("should return the user id from the decoded access token", async () => {
+        it("returns the user id from the decoded access token when a valid access token is stored", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockResolvedValue(accessTokenDecoded);
 
@@ -771,7 +928,7 @@ describe("TokenService", () => {
       });
 
       describe("getUserIdFromAccessToken", () => {
-        it("should throw an error if the access token cannot be decoded", async () => {
+        it("throws an error when the access token cannot be decoded", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockRejectedValue(new Error("Mock error"));
 
@@ -782,7 +939,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("Failed to decode access token: Mock error");
         });
 
-        it("should throw an error if the decoded access token is null", async () => {
+        it("throws an error when the decoded access token is null", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockResolvedValue(null);
 
@@ -793,7 +950,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("No user id found");
         });
 
-        it("should throw an error if the decoded access token has a non-string user id", async () => {
+        it("throws an error when the decoded access token has a non-string user id", async () => {
           // Arrange
           const accessTokenDecodedWithNonStringSub = { ...accessTokenDecoded, sub: 123 };
           tokenService.decodeAccessToken = jest
@@ -807,7 +964,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("No user id found");
         });
 
-        it("should return the user id from the decoded access token", async () => {
+        it("returns the user id from the decoded access token when a valid access token is stored", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockResolvedValue(accessTokenDecoded);
 
@@ -820,7 +977,7 @@ describe("TokenService", () => {
       });
 
       describe("getEmail", () => {
-        it("should throw an error if the access token cannot be decoded", async () => {
+        it("throws an error when the access token cannot be decoded", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockRejectedValue(new Error("Mock error"));
 
@@ -831,7 +988,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("Failed to decode access token: Mock error");
         });
 
-        it("should throw an error if the decoded access token is null", async () => {
+        it("throws an error when the decoded access token is null", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockResolvedValue(null);
 
@@ -842,7 +999,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("No email found");
         });
 
-        it("should throw an error if the decoded access token has a non-string email", async () => {
+        it("throws an error when the decoded access token has a non-string email", async () => {
           // Arrange
           const accessTokenDecodedWithNonStringEmail = { ...accessTokenDecoded, email: 123 };
           tokenService.decodeAccessToken = jest
@@ -856,7 +1013,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("No email found");
         });
 
-        it("should return the email from the decoded access token", async () => {
+        it("returns the email from the decoded access token when a valid access token is stored", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockResolvedValue(accessTokenDecoded);
 
@@ -869,7 +1026,7 @@ describe("TokenService", () => {
       });
 
       describe("getEmailVerified", () => {
-        it("should throw an error if the access token cannot be decoded", async () => {
+        it("throws an error when the access token cannot be decoded", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockRejectedValue(new Error("Mock error"));
 
@@ -880,7 +1037,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("Failed to decode access token: Mock error");
         });
 
-        it("should throw an error if the decoded access token is null", async () => {
+        it("throws an error when the decoded access token is null", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockResolvedValue(null);
 
@@ -891,7 +1048,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("No email verification found");
         });
 
-        it("should throw an error if the decoded access token has a non-boolean email_verified", async () => {
+        it("throws an error when the decoded access token has a non-boolean email_verified", async () => {
           // Arrange
           const accessTokenDecodedWithNonBooleanEmailVerified = {
             ...accessTokenDecoded,
@@ -908,7 +1065,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("No email verification found");
         });
 
-        it("should return the email_verified from the decoded access token", async () => {
+        it("returns the email_verified from the decoded access token when a valid access token is stored", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockResolvedValue(accessTokenDecoded);
 
@@ -921,7 +1078,7 @@ describe("TokenService", () => {
       });
 
       describe("getName", () => {
-        it("should throw an error if the access token cannot be decoded", async () => {
+        it("throws an error when the access token cannot be decoded", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockRejectedValue(new Error("Mock error"));
 
@@ -932,7 +1089,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("Failed to decode access token: Mock error");
         });
 
-        it("should return null if the decoded access token is null", async () => {
+        it("returns null when the decoded access token is null", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockResolvedValue(null);
 
@@ -943,7 +1100,7 @@ describe("TokenService", () => {
           expect(result).toBeNull();
         });
 
-        it("should return null if the decoded access token has a non-string name", async () => {
+        it("returns null when the decoded access token has a non-string name", async () => {
           // Arrange
           const accessTokenDecodedWithNonStringName = { ...accessTokenDecoded, name: 123 };
           tokenService.decodeAccessToken = jest
@@ -957,7 +1114,7 @@ describe("TokenService", () => {
           expect(result).toBeNull();
         });
 
-        it("should return the name from the decoded access token", async () => {
+        it("returns the name from the decoded access token when a valid access token is stored", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockResolvedValue(accessTokenDecoded);
 
@@ -970,7 +1127,7 @@ describe("TokenService", () => {
       });
 
       describe("getIssuer", () => {
-        it("should throw an error if the access token cannot be decoded", async () => {
+        it("throws an error when the access token cannot be decoded", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockRejectedValue(new Error("Mock error"));
 
@@ -981,7 +1138,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("Failed to decode access token: Mock error");
         });
 
-        it("should throw an error if the decoded access token is null", async () => {
+        it("throws an error when the decoded access token is null", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockResolvedValue(null);
 
@@ -992,7 +1149,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("No issuer found");
         });
 
-        it("should throw an error if the decoded access token has a non-string iss", async () => {
+        it("throws an error when the decoded access token has a non-string iss", async () => {
           // Arrange
           const accessTokenDecodedWithNonStringIss = { ...accessTokenDecoded, iss: 123 };
           tokenService.decodeAccessToken = jest
@@ -1006,7 +1163,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("No issuer found");
         });
 
-        it("should return the issuer from the decoded access token", async () => {
+        it("returns the issuer from the decoded access token when a valid access token is stored", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockResolvedValue(accessTokenDecoded);
 
@@ -1019,7 +1176,7 @@ describe("TokenService", () => {
       });
 
       describe("getIsExternal", () => {
-        it("should throw an error if the access token cannot be decoded", async () => {
+        it("throws an error when the access token cannot be decoded", async () => {
           // Arrange
           tokenService.decodeAccessToken = jest.fn().mockRejectedValue(new Error("Mock error"));
 
@@ -1030,7 +1187,7 @@ describe("TokenService", () => {
           await expect(result).rejects.toThrow("Failed to decode access token: Mock error");
         });
 
-        it("should return false if the amr (Authentication Method Reference) claim does not contain 'external'", async () => {
+        it("returns false when the amr (Authentication Method Reference) claim does not contain 'external'", async () => {
           // Arrange
           const accessTokenDecodedWithoutExternalAmr = {
             ...accessTokenDecoded,
@@ -1047,7 +1204,7 @@ describe("TokenService", () => {
           expect(result).toEqual(false);
         });
 
-        it("should return true if the amr (Authentication Method Reference) claim contains 'external'", async () => {
+        it("returns true when the amr (Authentication Method Reference) claim contains 'external'", async () => {
           // Arrange
           const accessTokenDecodedWithExternalAmr = {
             ...accessTokenDecoded,
@@ -1073,7 +1230,7 @@ describe("TokenService", () => {
     const refreshTokenSecureStorageKey = `${userIdFromAccessToken}${refreshTokenPartialSecureStorageKey}`;
 
     describe("setRefreshToken", () => {
-      it("should throw an error if no user id is provided", async () => {
+      it("throws an error when no user id is provided", async () => {
         // Act
         // note: don't await here because we want to test the error
         const result = (tokenService as any).setRefreshToken(
@@ -1113,7 +1270,7 @@ describe("TokenService", () => {
       });
 
       describe("Memory storage tests", () => {
-        it("should set the refresh token in memory for the specified user id", async () => {
+        it("sets the refresh token in memory when given a user id", async () => {
           // Act
           await (tokenService as any).setRefreshToken(
             refreshToken,
@@ -1130,7 +1287,7 @@ describe("TokenService", () => {
       });
 
       describe("Disk storage tests (secure storage not supported on platform)", () => {
-        it("should set the refresh token in disk for the specified user id", async () => {
+        it("sets the refresh token in disk when given a user id", async () => {
           // Act
           await (tokenService as any).setRefreshToken(
             refreshToken,
@@ -1152,7 +1309,7 @@ describe("TokenService", () => {
           tokenService = createTokenService(supportsSecureStorage);
         });
 
-        it("should set the refresh token in secure storage, null out data on disk or in memory, and set a flag to indicate the token has been migrated for the specified user id", async () => {
+        it("sets the refresh token in secure storage, removes data on disk or in memory, and sets a flag to indicate the token has been migrated when given a user id", async () => {
           // Arrange:
           // For testing purposes, let's assume that the token is already in disk and memory
           singleUserStateProvider
@@ -1163,6 +1320,9 @@ describe("TokenService", () => {
             .getFake(userIdFromAccessToken, REFRESH_TOKEN_MEMORY)
             .stateSubject.next([userIdFromAccessToken, refreshToken]);
 
+          // We immediately call to get the refresh token from secure storage after setting it to ensure it was set.
+          secureStorageService.get.mockResolvedValue(refreshToken);
+
           // Act
           await (tokenService as any).setRefreshToken(
             refreshToken,
@@ -1187,18 +1347,166 @@ describe("TokenService", () => {
             singleUserStateProvider.getFake(userIdFromAccessToken, REFRESH_TOKEN_MEMORY).nextMock,
           ).toHaveBeenCalledWith(null);
         });
+
+        it("tries to set the refresh token in secure storage then falls back to disk storage when the refresh token cannot be read back out of secure storage", async () => {
+          // Arrange:
+          // We immediately call to get the refresh token from secure storage after setting it to ensure it was set.
+          // So, set it to return null to mock a failure to set the refresh token in secure storage.
+          // This mocks the windows 10/11 intermittent issue where the token is not set in secure storage successfully.
+          secureStorageService.get.mockResolvedValue(null);
+
+          // Act
+          await (tokenService as any).setRefreshToken(
+            refreshToken,
+            diskVaultTimeoutAction,
+            diskVaultTimeout,
+            userIdFromAccessToken,
+          );
+          // Assert
+
+          // assert that the refresh token was set in secure storage
+          expect(secureStorageService.save).toHaveBeenCalledWith(
+            refreshTokenSecureStorageKey,
+            refreshToken,
+            secureStorageOptions,
+          );
+
+          // assert that we tried to set the refresh token in secure storage, but it failed, so we reverted to disk storage
+          expect(
+            singleUserStateProvider.getFake(userIdFromAccessToken, REFRESH_TOKEN_DISK).nextMock,
+          ).toHaveBeenCalledWith(refreshToken);
+        });
+
+        it("tries to set the refresh token in secure storage, throws an error, then falls back to disk storage when secure storage isn't supported", async () => {
+          // Arrange:
+          // Mock the secure storage service to throw an error when trying to save the refresh token
+          // to simulate linux scenarios where a secure storage provider isn't configured.
+          secureStorageService.save.mockRejectedValue(new Error("Secure storage not supported"));
+
+          // Act
+          await (tokenService as any).setRefreshToken(
+            refreshToken,
+            diskVaultTimeoutAction,
+            diskVaultTimeout,
+            userIdFromAccessToken,
+          );
+          // Assert
+
+          // assert that the refresh token was set in secure storage
+          expect(secureStorageService.save).toHaveBeenCalledWith(
+            refreshTokenSecureStorageKey,
+            refreshToken,
+            secureStorageOptions,
+          );
+
+          // assert that we tried to set the refresh token in secure storage, but it failed, so we reverted to disk storage
+          expect(
+            singleUserStateProvider.getFake(userIdFromAccessToken, REFRESH_TOKEN_DISK).nextMock,
+          ).toHaveBeenCalledWith(refreshToken);
+        });
+
+        it("returns the unencrypted access token when secure storage retrieval fails but the access token is still pre-migration", async () => {
+          // This tests the linux scenario where users might not have secure storage support configured.
+
+          // Arrange
+          singleUserStateProvider
+            .getFake(userIdFromAccessToken, ACCESS_TOKEN_MEMORY)
+            .stateSubject.next([userIdFromAccessToken, undefined]);
+
+          singleUserStateProvider
+            .getFake(userIdFromAccessToken, ACCESS_TOKEN_DISK)
+            .stateSubject.next([userIdFromAccessToken, accessTokenJwt]);
+
+          // Mock linux secure storage error
+          const secureStorageError = "Secure storage error";
+          secureStorageService.get.mockRejectedValue(new Error(secureStorageError));
+
+          // Act
+          const result = await tokenService.getAccessToken(userIdFromAccessToken);
+
+          // Assert
+          // assert that we returned the unencrypted, pre-migration access token
+          expect(result).toBe(accessTokenJwt);
+
+          // assert that we did not log an error or log the user out
+          expect(logService.error).not.toHaveBeenCalled();
+
+          expect(logoutCallback).not.toHaveBeenCalled();
+        });
+
+        it("does not error and fallback to disk storage when passed a null value for the refresh token", async () => {
+          // Arrange
+          secureStorageService.get.mockResolvedValue(null);
+
+          // Act
+          await (tokenService as any).setRefreshToken(
+            null,
+            diskVaultTimeoutAction,
+            diskVaultTimeout,
+            userIdFromAccessToken,
+          );
+
+          // Assert
+          expect(secureStorageService.save).toHaveBeenCalledWith(
+            refreshTokenSecureStorageKey,
+            null,
+            secureStorageOptions,
+          );
+
+          expect(logService.error).not.toHaveBeenCalled();
+
+          expect(
+            singleUserStateProvider.getFake(userIdFromAccessToken, REFRESH_TOKEN_DISK).nextMock,
+          ).toHaveBeenCalledWith(null);
+
+          expect(
+            singleUserStateProvider.getFake(userIdFromAccessToken, REFRESH_TOKEN_MEMORY).nextMock,
+          ).toHaveBeenCalledWith(null);
+        });
+
+        it("logs the error and logs the user out when the access token cannot be decrypted", async () => {
+          // Arrange
+          singleUserStateProvider
+            .getFake(userIdFromAccessToken, ACCESS_TOKEN_MEMORY)
+            .stateSubject.next([userIdFromAccessToken, undefined]);
+
+          singleUserStateProvider
+            .getFake(userIdFromAccessToken, ACCESS_TOKEN_DISK)
+            .stateSubject.next([userIdFromAccessToken, encryptedAccessToken]);
+
+          secureStorageService.get.mockResolvedValue(accessTokenKeyB64);
+          encryptService.decryptToUtf8.mockRejectedValue(new Error("Decryption error"));
+
+          // Act
+          const result = await tokenService.getAccessToken(userIdFromAccessToken);
+
+          // Assert
+          expect(result).toBeNull();
+
+          // assert that we logged the error
+          expect(logService.error).toHaveBeenCalledWith(
+            "Failed to decrypt access token",
+            new Error("Decryption error"),
+          );
+
+          // assert that we logged the user out
+          expect(logoutCallback).toHaveBeenCalledWith(
+            "accessTokenUnableToBeDecrypted",
+            userIdFromAccessToken,
+          );
+        });
       });
     });
 
     describe("getRefreshToken", () => {
-      it("should return undefined if no user id is provided and there is no active user in global state", async () => {
+      it("returns null when no user id is provided and there is no active user in global state", async () => {
         // Act
         const result = await (tokenService as any).getRefreshToken();
         // Assert
-        expect(result).toBeUndefined();
+        expect(result).toBeNull();
       });
 
-      it("should return null if no refresh token is found in memory, disk, or secure storage", async () => {
+      it("returns null when no refresh token is found in memory, disk, or secure storage", async () => {
         // Arrange
         globalStateProvider
           .getFake(ACCOUNT_ACTIVE_ACCOUNT_ID)
@@ -1211,7 +1519,7 @@ describe("TokenService", () => {
       });
 
       describe("Memory storage tests", () => {
-        it("should get the refresh token from memory with no user id specified (uses global active user)", async () => {
+        it("gets the refresh token from memory when no user id is specified (uses global active user)", async () => {
           // Arrange
           singleUserStateProvider
             .getFake(userIdFromAccessToken, REFRESH_TOKEN_MEMORY)
@@ -1233,7 +1541,7 @@ describe("TokenService", () => {
           expect(result).toEqual(refreshToken);
         });
 
-        it("should get the refresh token from memory for the specified user id", async () => {
+        it("gets the refresh token from memory when a user id is specified", async () => {
           // Arrange
           singleUserStateProvider
             .getFake(userIdFromAccessToken, REFRESH_TOKEN_MEMORY)
@@ -1251,7 +1559,7 @@ describe("TokenService", () => {
       });
 
       describe("Disk storage tests (secure storage not supported on platform)", () => {
-        it("should get the refresh token from disk with no user id specified", async () => {
+        it("gets the refresh token from disk when no user id is specified", async () => {
           // Arrange
           singleUserStateProvider
             .getFake(userIdFromAccessToken, REFRESH_TOKEN_MEMORY)
@@ -1272,7 +1580,7 @@ describe("TokenService", () => {
           expect(result).toEqual(refreshToken);
         });
 
-        it("should get the refresh token from disk for the specified user id", async () => {
+        it("gets the refresh token from disk when a user id is specified", async () => {
           // Arrange
           singleUserStateProvider
             .getFake(userIdFromAccessToken, REFRESH_TOKEN_MEMORY)
@@ -1295,7 +1603,7 @@ describe("TokenService", () => {
           tokenService = createTokenService(supportsSecureStorage);
         });
 
-        it("should get the refresh token from secure storage when no user id is specified and the migration flag is set to true", async () => {
+        it("gets the refresh token from secure storage when no user id is specified", async () => {
           // Arrange
           singleUserStateProvider
             .getFake(userIdFromAccessToken, REFRESH_TOKEN_MEMORY)
@@ -1318,7 +1626,7 @@ describe("TokenService", () => {
           expect(result).toEqual(refreshToken);
         });
 
-        it("should get the refresh token from secure storage when user id is specified and the migration flag set to true", async () => {
+        it("gets the refresh token from secure storage when a user id is specified", async () => {
           // Arrange
 
           singleUserStateProvider
@@ -1337,7 +1645,7 @@ describe("TokenService", () => {
           expect(result).toEqual(refreshToken);
         });
 
-        it("should fallback and get the refresh token from disk when user id is specified and the migration flag is set to false even if the platform supports secure storage", async () => {
+        it("falls back and gets the refresh token from disk when a user id is specified even if the platform supports secure storage", async () => {
           // Arrange
           singleUserStateProvider
             .getFake(userIdFromAccessToken, REFRESH_TOKEN_MEMORY)
@@ -1357,7 +1665,7 @@ describe("TokenService", () => {
           expect(secureStorageService.get).not.toHaveBeenCalled();
         });
 
-        it("should fallback and get the refresh token from disk when no user id is specified and the migration flag is set to false even if the platform supports secure storage", async () => {
+        it("falls back and gets the refresh token from disk when no user id is specified even if the platform supports secure storage", async () => {
           // Arrange
           singleUserStateProvider
             .getFake(userIdFromAccessToken, REFRESH_TOKEN_MEMORY)
@@ -1381,11 +1689,80 @@ describe("TokenService", () => {
           // assert that secure storage was not called
           expect(secureStorageService.get).not.toHaveBeenCalled();
         });
+
+        it("returns null when the refresh token is not found in memory, on disk, or in secure storage", async () => {
+          // Arrange
+          secureStorageService.get.mockResolvedValue(null);
+
+          // Act
+          const result = await tokenService.getRefreshToken(userIdFromAccessToken);
+
+          // Assert
+          expect(result).toBeNull();
+        });
+
+        it("returns null and logs when the refresh token is not found in secure storage when it should be", async () => {
+          // This scenario mocks the case where we have intermittent windows 10/11 issues w/ secure storage not
+          // returning the refresh token when it should be there.
+          // Arrange
+          singleUserStateProvider
+            .getFake(userIdFromAccessToken, REFRESH_TOKEN_MEMORY)
+            .stateSubject.next([userIdFromAccessToken, undefined]);
+
+          singleUserStateProvider
+            .getFake(userIdFromAccessToken, REFRESH_TOKEN_DISK)
+            .stateSubject.next([userIdFromAccessToken, undefined]);
+
+          secureStorageService.get.mockResolvedValue(null);
+
+          // Act
+          const result = await tokenService.getRefreshToken(userIdFromAccessToken);
+
+          // Assert
+          expect(result).toBeNull();
+
+          expect(logService.error).toHaveBeenCalledWith(
+            "Refresh token not found in secure storage. Access token will fail to refresh upon expiration or manual refresh.",
+          );
+        });
+
+        it("logs out when retrieving the refresh token out of secure storage errors", async () => {
+          // This scenario mocks the case where linux users don't have secure storage configured.
+          // Arrange
+          singleUserStateProvider
+            .getFake(userIdFromAccessToken, REFRESH_TOKEN_MEMORY)
+            .stateSubject.next([userIdFromAccessToken, undefined]);
+
+          singleUserStateProvider
+            .getFake(userIdFromAccessToken, REFRESH_TOKEN_DISK)
+            .stateSubject.next([userIdFromAccessToken, undefined]);
+
+          const secureStorageSvcMockErrorMsg = "Secure storage retrieval error";
+
+          secureStorageService.get.mockRejectedValue(new Error(secureStorageSvcMockErrorMsg));
+
+          // Act
+          const result = await tokenService.getRefreshToken(userIdFromAccessToken);
+
+          // Assert
+          expect(result).toBeNull();
+
+          // expect that we logged an error and logged the user out
+          expect(logService.error).toHaveBeenCalledWith(
+            `Failed to retrieve refresh token from secure storage`,
+            new Error(secureStorageSvcMockErrorMsg),
+          );
+
+          expect(logoutCallback).toHaveBeenCalledWith(
+            "refreshTokenSecureStorageRetrievalFailure",
+            userIdFromAccessToken,
+          );
+        });
       });
     });
 
     describe("clearRefreshToken", () => {
-      it("should throw an error if no user id is provided", async () => {
+      it("throws an error when no user id is provided", async () => {
         // Act
         // note: don't await here because we want to test the error
         const result = (tokenService as any).clearRefreshToken();
@@ -1399,7 +1776,7 @@ describe("TokenService", () => {
           tokenService = createTokenService(supportsSecureStorage);
         });
 
-        it("should clear the refresh token from all storage locations for the specified user id", async () => {
+        it("clears the refresh token from all storage locations when given a user id", async () => {
           // Arrange
           singleUserStateProvider
             .getFake(userIdFromAccessToken, REFRESH_TOKEN_MEMORY)
@@ -1433,7 +1810,7 @@ describe("TokenService", () => {
     const clientId = "clientId";
 
     describe("setClientId", () => {
-      it("should throw an error if no user id is provided and there is no active user in global state", async () => {
+      it("throws an error when no user id is provided and there is no active user in global state", async () => {
         // Act
         // note: don't await here because we want to test the error
         const result = tokenService.setClientId(clientId, VaultTimeoutAction.Lock, null);
@@ -1470,7 +1847,7 @@ describe("TokenService", () => {
       });
 
       describe("Memory storage tests", () => {
-        it("should set the client id in memory when there is an active user in global state", async () => {
+        it("sets the client id in memory when there is an active user in global state", async () => {
           // Arrange
           globalStateProvider
             .getFake(ACCOUNT_ACTIVE_ACCOUNT_ID)
@@ -1486,7 +1863,7 @@ describe("TokenService", () => {
           ).toHaveBeenCalledWith(clientId);
         });
 
-        it("should set the client id in memory for the specified user id", async () => {
+        it("sets the client id in memory when given a user id", async () => {
           // Act
           await tokenService.setClientId(
             clientId,
@@ -1504,7 +1881,7 @@ describe("TokenService", () => {
       });
 
       describe("Disk storage tests", () => {
-        it("should set the client id in disk when there is an active user in global state", async () => {
+        it("sets the client id in disk when there is an active user in global state", async () => {
           // Arrange
           globalStateProvider
             .getFake(ACCOUNT_ACTIVE_ACCOUNT_ID)
@@ -1519,7 +1896,7 @@ describe("TokenService", () => {
           ).toHaveBeenCalledWith(clientId);
         });
 
-        it("should set the client id in disk for the specified user id", async () => {
+        it("sets the client id on disk when given a user id", async () => {
           // Act
           await tokenService.setClientId(
             clientId,
@@ -1537,14 +1914,14 @@ describe("TokenService", () => {
     });
 
     describe("getClientId", () => {
-      it("should return undefined if no user id is provided and there is no active user in global state", async () => {
+      it("returns undefined when no user id is provided and there is no active user in global state", async () => {
         // Act
         const result = await tokenService.getClientId();
         // Assert
         expect(result).toBeUndefined();
       });
 
-      it("should return null if no client id is found in memory or disk", async () => {
+      it("returns null when no client id is found in memory or disk", async () => {
         // Arrange
         globalStateProvider
           .getFake(ACCOUNT_ACTIVE_ACCOUNT_ID)
@@ -1557,7 +1934,7 @@ describe("TokenService", () => {
       });
 
       describe("Memory storage tests", () => {
-        it("should get the client id from memory with no user id specified (uses global active user)", async () => {
+        it("gets the client id from memory when no user id is specified (uses global active user)", async () => {
           // Arrange
           singleUserStateProvider
             .getFake(userIdFromAccessToken, API_KEY_CLIENT_ID_MEMORY)
@@ -1580,7 +1957,7 @@ describe("TokenService", () => {
           expect(result).toEqual(clientId);
         });
 
-        it("should get the client id from memory for the specified user id", async () => {
+        it("gets the client id from memory when given a user id", async () => {
           // Arrange
           singleUserStateProvider
             .getFake(userIdFromAccessToken, API_KEY_CLIENT_ID_MEMORY)
@@ -1599,7 +1976,7 @@ describe("TokenService", () => {
       });
 
       describe("Disk storage tests", () => {
-        it("should get the client id from disk with no user id specified", async () => {
+        it("gets the client id from disk when no user id is specified", async () => {
           // Arrange
           singleUserStateProvider
             .getFake(userIdFromAccessToken, API_KEY_CLIENT_ID_MEMORY)
@@ -1620,7 +1997,7 @@ describe("TokenService", () => {
           expect(result).toEqual(clientId);
         });
 
-        it("should get the client id from disk for the specified user id", async () => {
+        it("gets the client id from disk when a user id is specified", async () => {
           // Arrange
           singleUserStateProvider
             .getFake(userIdFromAccessToken, API_KEY_CLIENT_ID_MEMORY)
@@ -1639,7 +2016,7 @@ describe("TokenService", () => {
     });
 
     describe("clearClientId", () => {
-      it("should throw an error if no user id is provided and there is no active user in global state", async () => {
+      it("throws an error when no user id is provided and there is no active user in global state", async () => {
         // Act
         // note: don't await here because we want to test the error
         const result = (tokenService as any).clearClientId();
@@ -1647,7 +2024,7 @@ describe("TokenService", () => {
         await expect(result).rejects.toThrow("User id not found. Cannot clear client id.");
       });
 
-      it("should clear the client id from memory and disk for the specified user id", async () => {
+      it("clears the client id from memory and disk when a user id is specified", async () => {
         // Arrange
         singleUserStateProvider
           .getFake(userIdFromAccessToken, API_KEY_CLIENT_ID_MEMORY)
@@ -1669,7 +2046,7 @@ describe("TokenService", () => {
         ).toHaveBeenCalledWith(null);
       });
 
-      it("should clear the client id from memory and disk for the global active user", async () => {
+      it("clears the client id from memory and disk when there is a global active user", async () => {
         // Arrange
         singleUserStateProvider
           .getFake(userIdFromAccessToken, API_KEY_CLIENT_ID_MEMORY)
@@ -1702,7 +2079,7 @@ describe("TokenService", () => {
     const clientSecret = "clientSecret";
 
     describe("setClientSecret", () => {
-      it("should throw an error if no user id is provided and there is no active user in global state", async () => {
+      it("throws an error when no user id is provided and there is no active user in global state", async () => {
         // Act
         // note: don't await here because we want to test the error
         const result = tokenService.setClientSecret(
@@ -1747,7 +2124,7 @@ describe("TokenService", () => {
       });
 
       describe("Memory storage tests", () => {
-        it("should set the client secret in memory when there is an active user in global state", async () => {
+        it("sets the client secret in memory when there is an active user in global state", async () => {
           // Arrange
           globalStateProvider
             .getFake(ACCOUNT_ACTIVE_ACCOUNT_ID)
@@ -1767,7 +2144,7 @@ describe("TokenService", () => {
           ).toHaveBeenCalledWith(clientSecret);
         });
 
-        it("should set the client secret in memory for the specified user id", async () => {
+        it("sets the client secret in memory when a user id is specified", async () => {
           // Act
           await tokenService.setClientSecret(
             clientSecret,
@@ -1785,7 +2162,7 @@ describe("TokenService", () => {
       });
 
       describe("Disk storage tests", () => {
-        it("should set the client secret in disk when there is an active user in global state", async () => {
+        it("sets the client secret on disk when there is an active user in global state", async () => {
           // Arrange
           globalStateProvider
             .getFake(ACCOUNT_ACTIVE_ACCOUNT_ID)
@@ -1805,7 +2182,7 @@ describe("TokenService", () => {
           ).toHaveBeenCalledWith(clientSecret);
         });
 
-        it("should set the client secret in disk for the specified user id", async () => {
+        it("sets the client secret on disk when a user id is specified", async () => {
           // Act
           await tokenService.setClientSecret(
             clientSecret,
@@ -1824,14 +2201,14 @@ describe("TokenService", () => {
     });
 
     describe("getClientSecret", () => {
-      it("should return undefined if no user id is provided and there is no active user in global state", async () => {
+      it("returns undefined when no user id is provided and there is no active user in global state", async () => {
         // Act
         const result = await tokenService.getClientSecret();
         // Assert
         expect(result).toBeUndefined();
       });
 
-      it("should return null if no client secret is found in memory or disk", async () => {
+      it("returns null when no client secret is found in memory or disk", async () => {
         // Arrange
         globalStateProvider
           .getFake(ACCOUNT_ACTIVE_ACCOUNT_ID)
@@ -1844,7 +2221,7 @@ describe("TokenService", () => {
       });
 
       describe("Memory storage tests", () => {
-        it("should get the client secret from memory with no user id specified (uses global active user)", async () => {
+        it("gets the client secret from memory when no user id is specified (uses global active user)", async () => {
           // Arrange
           singleUserStateProvider
             .getFake(userIdFromAccessToken, API_KEY_CLIENT_SECRET_MEMORY)
@@ -1867,7 +2244,7 @@ describe("TokenService", () => {
           expect(result).toEqual(clientSecret);
         });
 
-        it("should get the client secret from memory for the specified user id", async () => {
+        it("gets the client secret from memory when a user id is specified", async () => {
           // Arrange
           singleUserStateProvider
             .getFake(userIdFromAccessToken, API_KEY_CLIENT_SECRET_MEMORY)
@@ -1886,7 +2263,7 @@ describe("TokenService", () => {
       });
 
       describe("Disk storage tests", () => {
-        it("should get the client secret from disk with no user id specified", async () => {
+        it("gets the client secret from disk when no user id specified", async () => {
           // Arrange
           singleUserStateProvider
             .getFake(userIdFromAccessToken, API_KEY_CLIENT_SECRET_MEMORY)
@@ -1907,7 +2284,7 @@ describe("TokenService", () => {
           expect(result).toEqual(clientSecret);
         });
 
-        it("should get the client secret from disk for the specified user id", async () => {
+        it("gets the client secret from disk when a user id is specified", async () => {
           // Arrange
           singleUserStateProvider
             .getFake(userIdFromAccessToken, API_KEY_CLIENT_SECRET_MEMORY)
@@ -1926,7 +2303,7 @@ describe("TokenService", () => {
     });
 
     describe("clearClientSecret", () => {
-      it("should throw an error if no user id is provided and there is no active user in global state", async () => {
+      it("throws an error when no user id is provided and there is no active user in global state", async () => {
         // Act
         // note: don't await here because we want to test the error
         const result = (tokenService as any).clearClientSecret();
@@ -1934,7 +2311,7 @@ describe("TokenService", () => {
         await expect(result).rejects.toThrow("User id not found. Cannot clear client secret.");
       });
 
-      it("should clear the client secret from memory and disk for the specified user id", async () => {
+      it("clears the client secret from memory and disk when a user id is specified", async () => {
         // Arrange
         singleUserStateProvider
           .getFake(userIdFromAccessToken, API_KEY_CLIENT_SECRET_MEMORY)
@@ -1958,7 +2335,7 @@ describe("TokenService", () => {
         ).toHaveBeenCalledWith(null);
       });
 
-      it("should clear the client secret from memory and disk for the global active user", async () => {
+      it("clears the client secret from memory and disk when there is a global active user", async () => {
         // Arrange
         singleUserStateProvider
           .getFake(userIdFromAccessToken, API_KEY_CLIENT_SECRET_MEMORY)
@@ -1990,7 +2367,7 @@ describe("TokenService", () => {
   });
 
   describe("setTokens", () => {
-    it("should call to set all passed in tokens after deriving user id from the access token", async () => {
+    it("calls to set all tokens after deriving user id from the access token when called with valid params", async () => {
       // Arrange
       const refreshToken = "refreshToken";
       // specific vault timeout actions and vault timeouts don't change this test so values don't matter.
@@ -2042,7 +2419,7 @@ describe("TokenService", () => {
       );
     });
 
-    it("should not try to set client id and client secret if they are not passed in", async () => {
+    it("does not try to set client id and client secret when they are not passed in", async () => {
       // Arrange
       const refreshToken = "refreshToken";
       const vaultTimeoutAction = VaultTimeoutAction.Lock;
@@ -2076,7 +2453,7 @@ describe("TokenService", () => {
       expect(tokenService.setClientSecret).not.toHaveBeenCalled();
     });
 
-    it("should throw an error if the access token is invalid", async () => {
+    it("throws an error when the access token is invalid", async () => {
       // Arrange
       const accessToken = "invalidToken";
       const refreshToken = "refreshToken";
@@ -2095,7 +2472,7 @@ describe("TokenService", () => {
       await expect(result).rejects.toThrow("JWT must have 3 parts");
     });
 
-    it("should throw an error if the access token is missing", async () => {
+    it("throws an error when the access token is missing", async () => {
       // Arrange
       const accessToken: string = null;
       const refreshToken = "refreshToken";
@@ -2150,7 +2527,7 @@ describe("TokenService", () => {
       await expect(result).rejects.toThrow("Vault Timeout Action is required.");
     });
 
-    it("should not throw an error if the refresh token is missing and it should just not set it", async () => {
+    it("does not throw an error or set the refresh token when the refresh token is missing", async () => {
       // Arrange
       const refreshToken: string = null;
       const vaultTimeoutAction = VaultTimeoutAction.Lock;
@@ -2166,7 +2543,7 @@ describe("TokenService", () => {
   });
 
   describe("clearTokens", () => {
-    it("should call to clear all tokens for the specified user id", async () => {
+    it("calls to clear all tokens when given a specified user id", async () => {
       // Arrange
       const userId = "userId" as UserId;
 
@@ -2187,7 +2564,7 @@ describe("TokenService", () => {
       expect((tokenService as any).clearClientSecret).toHaveBeenCalledWith(userId);
     });
 
-    it("should call to clear all tokens for the active user id", async () => {
+    it("calls to clear all tokens when there is an active user", async () => {
       // Arrange
       const userId = "userId" as UserId;
 
@@ -2210,7 +2587,7 @@ describe("TokenService", () => {
       expect((tokenService as any).clearClientSecret).toHaveBeenCalledWith(userId);
     });
 
-    it("should not call to clear all tokens if no user id is provided and there is no active user in global state", async () => {
+    it("does not call to clear all tokens when no user id is provided and there is no active user in global state", async () => {
       // Arrange
       tokenService.clearAccessToken = jest.fn();
       (tokenService as any).clearRefreshToken = jest.fn();
@@ -2228,7 +2605,7 @@ describe("TokenService", () => {
 
   describe("Two Factor Token methods", () => {
     describe("setTwoFactorToken", () => {
-      it("should set the email and two factor token when there hasn't been a previous record (initializing the record)", async () => {
+      it("sets the email and two factor token when there hasn't been a previous record (initializing the record)", async () => {
         // Arrange
         const email = "testUser@email.com";
         const twoFactorToken = "twoFactorTokenForTestUser";
@@ -2240,7 +2617,7 @@ describe("TokenService", () => {
         ).toHaveBeenCalledWith({ [email]: twoFactorToken });
       });
 
-      it("should set the email and two factor token when there is an initialized value already (updating the existing record)", async () => {
+      it("sets the email and two factor token when there is an initialized value already (updating the existing record)", async () => {
         // Arrange
         const email = "testUser@email.com";
         const twoFactorToken = "twoFactorTokenForTestUser";
@@ -2263,7 +2640,7 @@ describe("TokenService", () => {
     });
 
     describe("getTwoFactorToken", () => {
-      it("should return the two factor token for the given email", async () => {
+      it("returns the two factor token when given an email", async () => {
         // Arrange
         const email = "testUser";
         const twoFactorToken = "twoFactorTokenForTestUser";
@@ -2282,7 +2659,7 @@ describe("TokenService", () => {
         expect(result).toEqual(twoFactorToken);
       });
 
-      it("should not return the two factor token for an email that doesn't exist", async () => {
+      it("does not return the two factor token when given an email that doesn't exist", async () => {
         // Arrange
         const email = "testUser";
         const initialTwoFactorTokenRecord: Record<string, string> = {
@@ -2300,7 +2677,7 @@ describe("TokenService", () => {
         expect(result).toEqual(undefined);
       });
 
-      it("should return null if there is no two factor token record", async () => {
+      it("returns null when there is no two factor token record", async () => {
         // Arrange
         globalStateProvider
           .getFake(EMAIL_TWO_FACTOR_TOKEN_RECORD_DISK_LOCAL)
@@ -2315,7 +2692,7 @@ describe("TokenService", () => {
     });
 
     describe("clearTwoFactorToken", () => {
-      it("should clear the two factor token for the given email when a record exists", async () => {
+      it("clears the two factor token for the given email when a record exists", async () => {
         // Arrange
         const email = "testUser";
         const twoFactorToken = "twoFactorTokenForTestUser";
@@ -2336,7 +2713,7 @@ describe("TokenService", () => {
         ).toHaveBeenCalledWith({});
       });
 
-      it("should initialize the record if it doesn't exist and delete the value", async () => {
+      it("initializes the record and deletes the value when the record doesn't exist", async () => {
         // Arrange
         const email = "testUser";
 
@@ -2355,7 +2732,7 @@ describe("TokenService", () => {
     const mockSecurityStamp = "securityStamp";
 
     describe("setSecurityStamp", () => {
-      it("should throw an error if no user id is provided and there is no active user in global state", async () => {
+      it("throws an error deletes the value no user id is provided and there is no active user in global state", async () => {
         // Act
         // note: don't await here because we want to test the error
         const result = tokenService.setSecurityStamp(mockSecurityStamp);
@@ -2363,7 +2740,7 @@ describe("TokenService", () => {
         await expect(result).rejects.toThrow("User id not found. Cannot set security stamp.");
       });
 
-      it("should set the security stamp in memory when there is an active user in global state", async () => {
+      it("sets the security stamp in memory when there is an active user in global state", async () => {
         // Arrange
         globalStateProvider
           .getFake(ACCOUNT_ACTIVE_ACCOUNT_ID)
@@ -2378,7 +2755,7 @@ describe("TokenService", () => {
         ).toHaveBeenCalledWith(mockSecurityStamp);
       });
 
-      it("should set the security stamp in memory for the specified user id", async () => {
+      it("sets the security stamp in memory when a user id is specified", async () => {
         // Act
         await tokenService.setSecurityStamp(mockSecurityStamp, userIdFromAccessToken);
 
@@ -2390,7 +2767,7 @@ describe("TokenService", () => {
     });
 
     describe("getSecurityStamp", () => {
-      it("should throw an error if no user id is provided and there is no active user in global state", async () => {
+      it("throws an error when no user id is provided and there is no active user in global state", async () => {
         // Act
         // note: don't await here because we want to test the error
         const result = tokenService.getSecurityStamp();
@@ -2398,7 +2775,7 @@ describe("TokenService", () => {
         await expect(result).rejects.toThrow("User id not found. Cannot get security stamp.");
       });
 
-      it("should return the security stamp from memory with no user id specified (uses global active user)", async () => {
+      it("returns the security stamp from memory when no user id is specified (uses global active user)", async () => {
         // Arrange
         globalStateProvider
           .getFake(ACCOUNT_ACTIVE_ACCOUNT_ID)
@@ -2415,7 +2792,7 @@ describe("TokenService", () => {
         expect(result).toEqual(mockSecurityStamp);
       });
 
-      it("should return the security stamp from memory for the specified user id", async () => {
+      it("returns the security stamp from memory when a user id is specified", async () => {
         // Arrange
         singleUserStateProvider
           .getFake(userIdFromAccessToken, SECURITY_STAMP_MEMORY)
@@ -2601,6 +2978,7 @@ describe("TokenService", () => {
       keyGenerationService,
       encryptService,
       logService,
+      logoutCallback,
     );
   }
 });
diff --git a/libs/common/src/auth/services/token.service.ts b/libs/common/src/auth/services/token.service.ts
index 203d95429ee..38d0a77b52f 100644
--- a/libs/common/src/auth/services/token.service.ts
+++ b/libs/common/src/auth/services/token.service.ts
@@ -1,7 +1,7 @@
 import { Observable, combineLatest, firstValueFrom, map } from "rxjs";
 import { Opaque } from "type-fest";
 
-import { decodeJwtTokenToJson } from "@bitwarden/auth/common";
+import { LogoutReason, decodeJwtTokenToJson } from "@bitwarden/auth/common";
 
 import { VaultTimeoutAction } from "../../enums/vault-timeout-action.enum";
 import { EncryptService } from "../../platform/abstractions/encrypt.service";
@@ -111,7 +111,7 @@ export type DecodedAccessToken = {
  * A symmetric key for encrypting the access token before the token is stored on disk.
  * This key should be stored in secure storage.
  * */
-type AccessTokenKey = Opaque<SymmetricCryptoKey, "AccessTokenKey">;
+export type AccessTokenKey = Opaque<SymmetricCryptoKey, "AccessTokenKey">;
 
 export class TokenService implements TokenServiceAbstraction {
   private readonly accessTokenKeySecureStorageKey: string = "_accessTokenKey";
@@ -132,6 +132,7 @@ export class TokenService implements TokenServiceAbstraction {
     private keyGenerationService: KeyGenerationService,
     private encryptService: EncryptService,
     private logService: LogService,
+    private logoutCallback: (logoutReason: LogoutReason, userId?: string) => Promise<void>,
   ) {
     this.initializeState();
   }
@@ -145,10 +146,6 @@ export class TokenService implements TokenServiceAbstraction {
     ]).pipe(map(([disk, memory]) => Boolean(disk || memory)));
   }
 
-  // pivoting to an approach where we create a symmetric key we store in secure storage
-  // which is used to protect the data before persisting to disk.
-  // We will also use the same symmetric key to decrypt the data when reading from disk.
-
   private initializeState(): void {
     this.emailTwoFactorTokenRecordGlobalState = this.globalStateProvider.get(
       EMAIL_TWO_FACTOR_TOKEN_RECORD_DISK_LOCAL,
@@ -218,6 +215,14 @@ export class TokenService implements TokenServiceAbstraction {
       this.getSecureStorageOptions(userId),
     );
 
+    // We are having intermittent issues with access token keys not saving into secure storage on windows 10/11.
+    // So, let's add a check to ensure we can read the value after writing it.
+    const accessTokenKey = await this.getAccessTokenKey(userId);
+
+    if (!accessTokenKey) {
+      throw new Error("New Access token key unable to be retrieved from secure storage.");
+    }
+
     return newAccessTokenKey;
   }
 
@@ -238,6 +243,8 @@ export class TokenService implements TokenServiceAbstraction {
     }
 
     // First see if we have an accessTokenKey in secure storage and return it if we do
+    // Note: retrieving/saving data from/to secure storage on linux will throw if the
+    // distro doesn't have a secure storage provider
     let accessTokenKey: AccessTokenKey = await this.getAccessTokenKey(userId);
 
     if (!accessTokenKey) {
@@ -255,15 +262,13 @@ export class TokenService implements TokenServiceAbstraction {
   }
 
   private async decryptAccessToken(
+    accessTokenKey: AccessTokenKey,
     encryptedAccessToken: EncString,
-    userId: UserId,
   ): Promise<string | null> {
-    const accessTokenKey = await this.getAccessTokenKey(userId);
-
     if (!accessTokenKey) {
-      // If we don't have an accessTokenKey, then that means we don't have an access token as it hasn't been set yet
-      // and we have to return null here to properly indicate the user isn't logged in.
-      return null;
+      throw new Error(
+        "decryptAccessToken: Access token key required. Cannot decrypt access token.",
+      );
     }
 
     const decryptedAccessToken = await this.encryptService.decryptToUtf8(
@@ -297,17 +302,32 @@ export class TokenService implements TokenServiceAbstraction {
         // store the access token directly. Instead, we encrypt with accessTokenKey and store that
         // in secure storage.
 
-        const encryptedAccessToken: EncString = await this.encryptAccessToken(accessToken, userId);
+        try {
+          const encryptedAccessToken: EncString = await this.encryptAccessToken(
+            accessToken,
+            userId,
+          );
 
-        // Save the encrypted access token to disk
-        await this.singleUserStateProvider
-          .get(userId, ACCESS_TOKEN_DISK)
-          .update((_) => encryptedAccessToken.encryptedString);
+          // Save the encrypted access token to disk
+          await this.singleUserStateProvider
+            .get(userId, ACCESS_TOKEN_DISK)
+            .update((_) => encryptedAccessToken.encryptedString);
 
-        // TODO: PM-6408 - https://bitwarden.atlassian.net/browse/PM-6408
-        // 2024-02-20: Remove access token from memory so that we migrate to encrypt the access token over time.
-        // Remove this call to remove the access token from memory after 3 releases.
-        await this.singleUserStateProvider.get(userId, ACCESS_TOKEN_MEMORY).update((_) => null);
+          // TODO: PM-6408
+          // 2024-02-20: Remove access token from memory so that we migrate to encrypt the access token over time.
+          // Remove this call to remove the access token from memory after 3 months.
+          await this.singleUserStateProvider.get(userId, ACCESS_TOKEN_MEMORY).update((_) => null);
+        } catch (error) {
+          this.logService.error(
+            `SetAccessToken: storing encrypted access token in secure storage failed. Falling back to disk storage.`,
+            error,
+          );
+
+          // Fall back to disk storage for unecrypted access token
+          await this.singleUserStateProvider
+            .get(userId, ACCESS_TOKEN_DISK)
+            .update((_) => accessToken);
+        }
 
         return;
       }
@@ -376,11 +396,11 @@ export class TokenService implements TokenServiceAbstraction {
     await this.singleUserStateProvider.get(userId, ACCESS_TOKEN_MEMORY).update((_) => null);
   }
 
-  async getAccessToken(userId?: UserId): Promise<string | undefined> {
+  async getAccessToken(userId?: UserId): Promise<string | null> {
     userId ??= await firstValueFrom(this.activeUserIdGlobalState.state$);
 
     if (!userId) {
-      return undefined;
+      return null;
     }
 
     // Try to get the access token from memory
@@ -399,10 +419,41 @@ export class TokenService implements TokenServiceAbstraction {
     }
 
     if (this.platformSupportsSecureStorage) {
-      const accessTokenKey = await this.getAccessTokenKey(userId);
+      let accessTokenKey: AccessTokenKey;
+      try {
+        accessTokenKey = await this.getAccessTokenKey(userId);
+      } catch (error) {
+        if (EncString.isSerializedEncString(accessTokenDisk)) {
+          this.logService.error(
+            "Access token key retrieval failed. Unable to decrypt encrypted access token. Logging user out.",
+            error,
+          );
+          await this.logoutCallback("accessTokenUnableToBeDecrypted", userId);
+          return null;
+        }
+
+        // If the access token key is not found, but the access token is unencrypted then
+        // this indicates that this is the pre-migration state where the access token
+        // was stored unencrypted on disk. We can return the access token as is.
+        // Note: this is likely to only be hit for linux users who don't
+        // have a secure storage provider configured.
+        return accessTokenDisk;
+      }
 
       if (!accessTokenKey) {
-        // We know this is an unencrypted access token because we don't have an access token key
+        if (EncString.isSerializedEncString(accessTokenDisk)) {
+          // The access token is encrypted but we don't have the key to decrypt it for
+          // whatever reason so we have to log the user out.
+          this.logService.error(
+            "Access token key not found to decrypt encrypted access token. Logging user out.",
+          );
+
+          await this.logoutCallback("accessTokenUnableToBeDecrypted", userId);
+
+          return null;
+        }
+
+        // We know this is an unencrypted access token
         return accessTokenDisk;
       }
 
@@ -410,17 +461,18 @@ export class TokenService implements TokenServiceAbstraction {
         const encryptedAccessTokenEncString = new EncString(accessTokenDisk as EncryptedString);
 
         const decryptedAccessToken = await this.decryptAccessToken(
+          accessTokenKey,
           encryptedAccessTokenEncString,
-          userId,
         );
         return decryptedAccessToken;
       } catch (error) {
-        // If an error occurs during decryption, return null for logout.
+        // If an error occurs during decryption, logout and then return null.
         // We don't try to recover here since we'd like to know
         // if access token and key are getting out of sync.
-        this.logService.error(
-          `Failed to decrypt access token: ${error?.message ?? "Unknown error."}`,
-        );
+        this.logService.error(`Failed to decrypt access token`, error);
+
+        await this.logoutCallback("accessTokenUnableToBeDecrypted", userId);
+
         return null;
       }
     }
@@ -456,21 +508,49 @@ export class TokenService implements TokenServiceAbstraction {
     );
 
     switch (storageLocation) {
-      case TokenStorageLocation.SecureStorage:
-        await this.saveStringToSecureStorage(
-          userId,
-          this.refreshTokenSecureStorageKey,
-          refreshToken,
-        );
+      case TokenStorageLocation.SecureStorage: {
+        try {
+          await this.saveStringToSecureStorage(
+            userId,
+            this.refreshTokenSecureStorageKey,
+            refreshToken,
+          );
 
-        // TODO: PM-6408 - https://bitwarden.atlassian.net/browse/PM-6408
-        // 2024-02-20: Remove refresh token from memory and disk so that we migrate to secure storage over time.
-        // Remove these 2 calls to remove the refresh token from memory and disk after 3 releases.
-        await this.singleUserStateProvider.get(userId, REFRESH_TOKEN_DISK).update((_) => null);
-        await this.singleUserStateProvider.get(userId, REFRESH_TOKEN_MEMORY).update((_) => null);
+          // Check if the refresh token was able to be saved to secure storage by reading it
+          // immediately after setting it. This is needed due to intermittent silent failures on Windows 10/11.
+          const refreshTokenSecureStorage = await this.getStringFromSecureStorage(
+            userId,
+            this.refreshTokenSecureStorageKey,
+          );
+
+          // Only throw if the refresh token was not saved to secure storage
+          // If we only check for a nullish value out of secure storage without considering the input value,
+          // then we would end up falling back to disk storage if the input value was null.
+          if (refreshToken !== null && !refreshTokenSecureStorage) {
+            throw new Error("Refresh token failed to save to secure storage.");
+          }
+
+          // TODO: PM-6408
+          // 2024-02-20: Remove refresh token from memory and disk so that we migrate to secure storage over time.
+          // Remove these 2 calls to remove the refresh token from memory and disk after 3 months.
+          await this.singleUserStateProvider.get(userId, REFRESH_TOKEN_DISK).update((_) => null);
+          await this.singleUserStateProvider.get(userId, REFRESH_TOKEN_MEMORY).update((_) => null);
+        } catch (error) {
+          // This case could be hit for both Linux users who don't have secure storage configured
+          // or for Windows users who have intermittent issues with secure storage.
+          this.logService.error(
+            `SetRefreshToken: storing refresh token in secure storage failed. Falling back to disk storage.`,
+            error,
+          );
+
+          // Fall back to disk storage for refresh token
+          await this.singleUserStateProvider
+            .get(userId, REFRESH_TOKEN_DISK)
+            .update((_) => refreshToken);
+        }
 
         return;
-
+      }
       case TokenStorageLocation.Disk:
         await this.singleUserStateProvider
           .get(userId, REFRESH_TOKEN_DISK)
@@ -485,11 +565,11 @@ export class TokenService implements TokenServiceAbstraction {
     }
   }
 
-  async getRefreshToken(userId?: UserId): Promise<string | undefined> {
+  async getRefreshToken(userId?: UserId): Promise<string | null> {
     userId ??= await firstValueFrom(this.activeUserIdGlobalState.state$);
 
     if (!userId) {
-      return undefined;
+      return null;
     }
 
     // pre-secure storage migration:
@@ -507,17 +587,30 @@ export class TokenService implements TokenServiceAbstraction {
     const refreshTokenDisk = await this.getStateValueByUserIdAndKeyDef(userId, REFRESH_TOKEN_DISK);
 
     if (refreshTokenDisk != null) {
+      // This handles the scenario pre-secure storage migration where the refresh token was stored on disk.
       return refreshTokenDisk;
     }
 
     if (this.platformSupportsSecureStorage) {
-      const refreshTokenSecureStorage = await this.getStringFromSecureStorage(
-        userId,
-        this.refreshTokenSecureStorageKey,
-      );
+      try {
+        const refreshTokenSecureStorage = await this.getStringFromSecureStorage(
+          userId,
+          this.refreshTokenSecureStorageKey,
+        );
 
-      if (refreshTokenSecureStorage != null) {
-        return refreshTokenSecureStorage;
+        if (refreshTokenSecureStorage != null) {
+          return refreshTokenSecureStorage;
+        }
+
+        this.logService.error(
+          "Refresh token not found in secure storage. Access token will fail to refresh upon expiration or manual refresh.",
+        );
+      } catch (error) {
+        // This case will be hit for Linux users who don't have secure storage configured.
+
+        this.logService.error(`Failed to retrieve refresh token from secure storage`, error);
+
+        await this.logoutCallback("refreshTokenSecureStorageRetrievalFailure", userId);
       }
     }
 
diff --git a/libs/common/src/platform/models/domain/enc-string.spec.ts b/libs/common/src/platform/models/domain/enc-string.spec.ts
index 4275c623502..7583c37e1e7 100644
--- a/libs/common/src/platform/models/domain/enc-string.spec.ts
+++ b/libs/common/src/platform/models/domain/enc-string.spec.ts
@@ -179,6 +179,43 @@ describe("EncString", () => {
       it("is false if invalid", () => {
         expect(EncString.isSerializedEncString("2.iv|data")).toBe(false);
       });
+
+      it("should return false if a null string is passed in", () => {
+        // Act
+        const result = EncString.isSerializedEncString(null);
+        // Assert
+        expect(result).toBe(false);
+      });
+
+      it("should return false if an error is thrown while parsing the string", () => {
+        // Arrange
+        const value = "invalid.value";
+        // Act
+        const result = EncString.isSerializedEncString(value);
+        // Assert
+        expect(result).toBe(false);
+      });
+
+      describe("Access Token Parsing Tests", () => {
+        const encryptedAccessToken =
+          "2.rFNYSTJoljn8h6GOSNVYdQ==|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|pabwMkF/SdYKdDlow4uKxaObrAP0urmv7N7fA9bedec=";
+        const standardAccessToken =
+          "eyJhbGciOiJSUzI1NiIsImtpZCI6IkY5NjBFQzY4RThEMTBDMUEzNEE0OUYwODkwQkExQkExMDk4QUIzMjFSUzI1NiIsIng1dCI6Ii1XRHNhT2pSREJvMHBKOElrTG9ib1FtS3N5RSIsInR5cCI6ImF0K2p3dCJ9.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.pRaZphZ8pygx3gHMdsKnCHWSBFAvm6gJ5aCLKbXIfx6Zc-LtQ_CkjO17rQaXlE4MwDt_n_wMzA38SDG2WzwjJrF3rWziPJrOMEdMGXLvVHyqxh0gcIiAQXZMYq0PdCYPBSDmsRZUZqg5BXFb9ylZjC0-m-EqDgl-i6OfxaHTPBCosX4_fr4bcyZtAaoaSeY4ZWf_1T8HrEzTlEyYKepHFzWdG3e4pJKHfs4sNGfs0uiW1awMqtRIPYI1n1F--oF5Hkm6jUJOdtrCKU0mKntyF4v7YRxgXdxUDqKw08nkk11vdPFVG87kWhR6ARYBWDp4AASy66YewqGhX7BNaekSTqK7DKxzQ9Adiv4XvmNEz3JO8tQrEFfE_mz9-WZiS6PlUipCxW-UtFp093_gHZh9_xgbuTdaO1u5_8Y42v0V_69v9WgzCGQGEWZ3PPaJsARGDO7FVKdPxP2S2lWIu22gydNHhfDZrOpBGHD1FpByfd5DbhKk0JdhHEPObs8RwNEweK-jlKmQpc_8bnhXFRUeMFrDL2Q2pNrYcDOpF1crIePPcWBk2_YdcWTqYVnGewT0toJ8sGlaAuAe6uOUZkBG3sxkOttkLYQtkxJYqt54gjazJ0N0GxAc0UBUDt0JnuLqk-cuxXiQO2_vHomTf7dilPq8fvqffrtrISxDVZenceg";
+
+        it("should return false if a non-encrypted string is passed in", () => {
+          // Act
+          const result = EncString.isSerializedEncString(standardAccessToken);
+          // Assert
+          expect(result).toBe(false);
+        });
+
+        it("should return true if an encrypted string is passed in", () => {
+          // Act
+          const result = EncString.isSerializedEncString(encryptedAccessToken);
+          // Assert
+          expect(result).toBe(true);
+        });
+      });
     });
 
     it("valid", () => {
diff --git a/libs/common/src/platform/models/domain/enc-string.ts b/libs/common/src/platform/models/domain/enc-string.ts
index 5b99c216ad3..1f4c8caf39c 100644
--- a/libs/common/src/platform/models/domain/enc-string.ts
+++ b/libs/common/src/platform/models/domain/enc-string.ts
@@ -76,6 +76,7 @@ export class EncString implements Encrypted {
     }
 
     const { encType, encPieces } = EncString.parseEncryptedString(this.encryptedString);
+
     this.encryptionType = encType;
 
     if (encPieces.length !== EXPECTED_NUM_PARTS_BY_ENCRYPTION_TYPE[encType]) {
@@ -120,7 +121,7 @@ export class EncString implements Encrypted {
         encType = parseInt(headerPieces[0], null);
         encPieces = headerPieces[1].split("|");
       } catch (e) {
-        return;
+        return { encType: NaN, encPieces: [] };
       }
     } else {
       encPieces = encryptedString.split("|");
@@ -137,8 +138,16 @@ export class EncString implements Encrypted {
   }
 
   static isSerializedEncString(s: string): boolean {
+    if (s == null) {
+      return false;
+    }
+
     const { encType, encPieces } = this.parseEncryptedString(s);
 
+    if (isNaN(encType) || encPieces.length === 0) {
+      return false;
+    }
+
     return EXPECTED_NUM_PARTS_BY_ENCRYPTION_TYPE[encType] === encPieces.length;
   }
 
diff --git a/libs/common/src/services/api.service.ts b/libs/common/src/services/api.service.ts
index 8d7a53ec0e4..bae9a34c10c 100644
--- a/libs/common/src/services/api.service.ts
+++ b/libs/common/src/services/api.service.ts
@@ -1,5 +1,7 @@
 import { firstValueFrom } from "rxjs";
 
+import { LogoutReason } from "@bitwarden/auth/common";
+
 import { ApiService as ApiServiceAbstraction } from "../abstractions/api.service";
 import { VaultTimeoutSettingsService } from "../abstractions/vault-timeout/vault-timeout-settings.service";
 import { OrganizationConnectionType } from "../admin-console/enums";
@@ -116,6 +118,7 @@ import { ProfileResponse } from "../models/response/profile.response";
 import { UserKeyResponse } from "../models/response/user-key.response";
 import { AppIdService } from "../platform/abstractions/app-id.service";
 import { EnvironmentService } from "../platform/abstractions/environment.service";
+import { LogService } from "../platform/abstractions/log.service";
 import { PlatformUtilsService } from "../platform/abstractions/platform-utils.service";
 import { Utils } from "../platform/misc/utils";
 import { UserId } from "../types/guid";
@@ -157,8 +160,10 @@ export class ApiService implements ApiServiceAbstraction {
     private platformUtilsService: PlatformUtilsService,
     private environmentService: EnvironmentService,
     private appIdService: AppIdService,
+    private refreshAccessTokenErrorCallback: () => void,
+    private logService: LogService,
+    private logoutCallback: (logoutReason: LogoutReason) => Promise<void>,
     private vaultTimeoutSettingsService: VaultTimeoutSettingsService,
-    private logoutCallback: (expired: boolean) => Promise<void>,
     private customUserAgent: string = null,
   ) {
     this.device = platformUtilsService.getDevice();
@@ -247,7 +252,8 @@ export class ApiService implements ApiServiceAbstraction {
     try {
       await this.doAuthRefresh();
     } catch (e) {
-      return Promise.reject(null);
+      this.logService.error("Error refreshing access token: ", e);
+      throw e;
     }
   }
 
@@ -1720,7 +1726,9 @@ export class ApiService implements ApiServiceAbstraction {
       return this.doApiTokenRefresh();
     }
 
-    throw new Error("Cannot refresh token, no refresh token or api keys are stored");
+    this.refreshAccessTokenErrorCallback();
+
+    throw new Error("Cannot refresh access token, no refresh token or api keys are stored.");
   }
 
   protected async doRefreshToken(): Promise<void> {
@@ -1905,7 +1913,7 @@ export class ApiService implements ApiServiceAbstraction {
           responseJson != null &&
           responseJson.error === "invalid_grant")
       ) {
-        await this.logoutCallback(true);
+        await this.logoutCallback("invalidGrantError");
         return null;
       }
     }
diff --git a/libs/common/src/services/notifications.service.ts b/libs/common/src/services/notifications.service.ts
index 7dc54b849f2..cae6fedbb8b 100644
--- a/libs/common/src/services/notifications.service.ts
+++ b/libs/common/src/services/notifications.service.ts
@@ -2,6 +2,8 @@ import * as signalR from "@microsoft/signalr";
 import * as signalRMsgPack from "@microsoft/signalr-protocol-msgpack";
 import { firstValueFrom } from "rxjs";
 
+import { LogoutReason } from "@bitwarden/auth/common";
+
 import { AuthRequestServiceAbstraction } from "../../../auth/src/common/abstractions";
 import { ApiService } from "../abstractions/api.service";
 import { NotificationsService as NotificationsServiceAbstraction } from "../abstractions/notifications.service";
@@ -36,7 +38,7 @@ export class NotificationsService implements NotificationsServiceAbstraction {
     private appIdService: AppIdService,
     private apiService: ApiService,
     private environmentService: EnvironmentService,
-    private logoutCallback: (expired: boolean) => Promise<void>,
+    private logoutCallback: (logoutReason: LogoutReason) => Promise<void>,
     private stateService: StateService,
     private authService: AuthService,
     private authRequestService: AuthRequestServiceAbstraction,
@@ -188,7 +190,7 @@ export class NotificationsService implements NotificationsServiceAbstraction {
         if (isAuthenticated) {
           // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
           // eslint-disable-next-line @typescript-eslint/no-floating-promises
-          this.logoutCallback(true);
+          this.logoutCallback("logoutNotification");
         }
         break;
       case NotificationType.SyncSendCreate:
diff --git a/libs/common/src/services/vault-timeout/vault-timeout.service.spec.ts b/libs/common/src/services/vault-timeout/vault-timeout.service.spec.ts
index 51fca6e6662..6a8071af0c0 100644
--- a/libs/common/src/services/vault-timeout/vault-timeout.service.spec.ts
+++ b/libs/common/src/services/vault-timeout/vault-timeout.service.spec.ts
@@ -1,6 +1,8 @@
 import { MockProxy, any, mock } from "jest-mock-extended";
 import { BehaviorSubject, from, of } from "rxjs";
 
+import { LogoutReason } from "@bitwarden/auth/common";
+
 import { FakeAccountService, mockAccountServiceWith } from "../../../spec/fake-account-service";
 import { SearchService } from "../../abstractions/search.service";
 import { VaultTimeoutSettingsService } from "../../abstractions/vault-timeout/vault-timeout-settings.service";
@@ -36,7 +38,7 @@ describe("VaultTimeoutService", () => {
   let vaultTimeoutSettingsService: MockProxy<VaultTimeoutSettingsService>;
   let stateEventRunnerService: MockProxy<StateEventRunnerService>;
   let lockedCallback: jest.Mock<Promise<void>, [userId: string]>;
-  let loggedOutCallback: jest.Mock<Promise<void>, [expired: boolean, userId?: string]>;
+  let loggedOutCallback: jest.Mock<Promise<void>, [logoutReason: LogoutReason, userId?: string]>;
 
   let vaultTimeoutActionSubject: BehaviorSubject<VaultTimeoutAction>;
   let availableVaultTimeoutActionsSubject: BehaviorSubject<VaultTimeoutAction[]>;
@@ -190,7 +192,7 @@ describe("VaultTimeoutService", () => {
   };
 
   const expectUserToHaveLoggedOut = (userId: string) => {
-    expect(loggedOutCallback).toHaveBeenCalledWith(false, userId);
+    expect(loggedOutCallback).toHaveBeenCalledWith("vaultTimeout", userId);
   };
 
   const expectNoAction = (userId: string) => {
diff --git a/libs/common/src/services/vault-timeout/vault-timeout.service.ts b/libs/common/src/services/vault-timeout/vault-timeout.service.ts
index 5d07c0ebd32..8d8ecd68a57 100644
--- a/libs/common/src/services/vault-timeout/vault-timeout.service.ts
+++ b/libs/common/src/services/vault-timeout/vault-timeout.service.ts
@@ -1,5 +1,7 @@
 import { combineLatest, filter, firstValueFrom, map, switchMap, timeout } from "rxjs";
 
+import { LogoutReason } from "@bitwarden/auth/common";
+
 import { SearchService } from "../../abstractions/search.service";
 import { VaultTimeoutSettingsService } from "../../abstractions/vault-timeout/vault-timeout-settings.service";
 import { VaultTimeoutService as VaultTimeoutServiceAbstraction } from "../../abstractions/vault-timeout/vault-timeout.service";
@@ -34,7 +36,10 @@ export class VaultTimeoutService implements VaultTimeoutServiceAbstraction {
     private vaultTimeoutSettingsService: VaultTimeoutSettingsService,
     private stateEventRunnerService: StateEventRunnerService,
     private lockedCallback: (userId?: string) => Promise<void> = null,
-    private loggedOutCallback: (expired: boolean, userId?: string) => Promise<void> = null,
+    private loggedOutCallback: (
+      logoutReason: LogoutReason,
+      userId?: string,
+    ) => Promise<void> = null,
   ) {}
 
   async init(checkOnInterval: boolean) {
@@ -145,7 +150,7 @@ export class VaultTimeoutService implements VaultTimeoutServiceAbstraction {
 
   async logOut(userId?: string): Promise<void> {
     if (this.loggedOutCallback != null) {
-      await this.loggedOutCallback(false, userId);
+      await this.loggedOutCallback("vaultTimeout", userId);
     }
   }
 
diff --git a/libs/common/src/vault/services/sync/sync.service.ts b/libs/common/src/vault/services/sync/sync.service.ts
index 2c69f83b05e..109ecea0358 100644
--- a/libs/common/src/vault/services/sync/sync.service.ts
+++ b/libs/common/src/vault/services/sync/sync.service.ts
@@ -1,6 +1,6 @@
 import { firstValueFrom } from "rxjs";
 
-import { UserDecryptionOptionsServiceAbstraction } from "@bitwarden/auth/common";
+import { LogoutReason, UserDecryptionOptionsServiceAbstraction } from "@bitwarden/auth/common";
 
 import { ApiService } from "../../../abstractions/api.service";
 import { InternalOrganizationServiceAbstraction } from "../../../admin-console/abstractions/organization/organization.service.abstraction";
@@ -32,6 +32,7 @@ import { SendData } from "../../../tools/send/models/data/send.data";
 import { SendResponse } from "../../../tools/send/models/response/send.response";
 import { SendApiService } from "../../../tools/send/services/send-api.service.abstraction";
 import { InternalSendService } from "../../../tools/send/services/send.service.abstraction";
+import { UserId } from "../../../types/guid";
 import { CipherService } from "../../../vault/abstractions/cipher.service";
 import { FolderApiServiceAbstraction } from "../../../vault/abstractions/folder/folder-api.service.abstraction";
 import { InternalFolderService } from "../../../vault/abstractions/folder/folder.service.abstraction";
@@ -65,7 +66,7 @@ export class SyncService extends CoreSyncService {
     sendApiService: SendApiService,
     private userDecryptionOptionsService: UserDecryptionOptionsServiceAbstraction,
     private avatarService: AvatarService,
-    private logoutCallback: (expired: boolean) => Promise<void>,
+    private logoutCallback: (logoutReason: LogoutReason, userId?: UserId) => Promise<void>,
     private billingAccountProfileStateService: BillingAccountProfileStateService,
     private tokenService: TokenService,
     authService: AuthService,
@@ -147,7 +148,7 @@ export class SyncService extends CoreSyncService {
     const response = await this.apiService.getAccountRevisionDate();
     if (response < 0 && this.logoutCallback) {
       // Account was deleted, log out now
-      await this.logoutCallback(false);
+      await this.logoutCallback("accountDeleted");
     }
 
     if (new Date(response) <= lastSync) {
@@ -160,7 +161,7 @@ export class SyncService extends CoreSyncService {
     const stamp = await this.tokenService.getSecurityStamp(response.id);
     if (stamp != null && stamp !== response.securityStamp) {
       if (this.logoutCallback != null) {
-        await this.logoutCallback(true);
+        await this.logoutCallback("invalidSecurityStamp");
       }
 
       throw new Error("Stamp has changed");
diff --git a/libs/components/src/toast/toast.service.ts b/libs/components/src/toast/toast.service.ts
index 8bbff02c418..974e7546e15 100644
--- a/libs/components/src/toast/toast.service.ts
+++ b/libs/components/src/toast/toast.service.ts
@@ -18,7 +18,7 @@ export type ToastOptions = {
 export class ToastService {
   constructor(private toastrService: ToastrService) {}
 
-  showToast(options: ToastOptions) {
+  showToast(options: ToastOptions): void {
     const toastrConfig: Partial<IndividualConfig> = {
       payload: {
         message: options.message,

From 9d35a8895efa2a131455e58d7a279a5eab101157 Mon Sep 17 00:00:00 2001
From: Jared Snider <116684653+JaredSnider-Bitwarden@users.noreply.github.com>
Date: Mon, 3 Jun 2024 13:05:27 -0400
Subject: [PATCH 072/138] Auth/PM-8367 - Email Verification - Integrate
 Registration Self Hosted Env Selector + new Self Hosted Env Settings Dialog
 into Registration Start (#9361)

* PM-8367 - WIP - initial comp creation

* PM-8367 - Majority of new registration self hosted env config dialog working

* PM-8367 - RegistrationEnvSelectorComponent - add method handleSelfHostedEnvConfigDialogResult and add toast for happy path.

* PM-8367 - Add validation TODO

* PM-8367 - RegistrationSelfHostedEnvConfigDialogComponent - Add validator

* PM-8367 - RegEnvSelector - Only show self hosted if the client is browser or desktop since we will be using the selector on web as well.

* PM-8367 - Registration start comp - add env selector

* PM-8367 - Registration start - add proper import for standalone comps.

* PM-8367 - Registration Start - get storybook fixed with registration env selector

* PM-8367 - Add self hosted server to web translations only for storybook

* PM-8367 - Add more storybook examples and update docs (WIP - need to test self hosted selection)

* PM-8367 - Registration Start - update stories

* PM-8367 - Env Selector now emits selected region so that parent comps can listen to it if needed.

* PM-8367 - Registration Start - wire up handler for selectedRegionChange so that the parent comp can successfully track isSelfHost and hide / show the terms / privacy policy checkbox

* PM-8367 - TODO cleanup

* PM-8367 - Registration start docs - stage gate is two words.

* PM-8367 - Per working session with Will, move top level provided services to app level instead of module level to solve dialog null injector errors.

* PM-8367 - Storybook working for self hosted env dialog

* PM-8367 - Add dialog scroll feature to bitDialog and implement in self hosted env dialog.

* PM-8367 - Revert bit dialog changes and scroll implementation.

* PM-8367 - Tweak registration start docs

* PM-8367 - Remove unused changeDetectorRef

* PM-8367 - Add docs per PR feedback
---
 apps/browser/src/_locales/en/messages.json    |   9 +
 apps/desktop/src/locales/en/messages.json     |   9 +
 apps/web/src/locales/en/messages.json         |  33 +++
 .../registration-env-selector.component.html  |   1 +
 .../registration-env-selector.component.ts    | 110 +++++++--
 ...lf-hosted-env-config-dialog.component.html | 107 +++++++++
 ...self-hosted-env-config-dialog.component.ts | 164 +++++++++++++
 .../registration-start.component.html         |   4 +
 .../registration-start.component.ts           |   8 +
 .../registration-start/registration-start.mdx |  68 +++++-
 .../registration-start.stories.ts             | 215 +++++++++++++++---
 11 files changed, 666 insertions(+), 62 deletions(-)
 create mode 100644 libs/auth/src/angular/registration/registration-env-selector/registration-self-hosted-env-config-dialog.component.html
 create mode 100644 libs/auth/src/angular/registration/registration-env-selector/registration-self-hosted-env-config-dialog.component.ts

diff --git a/apps/browser/src/_locales/en/messages.json b/apps/browser/src/_locales/en/messages.json
index 03890c4d27f..deb7410a716 100644
--- a/apps/browser/src/_locales/en/messages.json
+++ b/apps/browser/src/_locales/en/messages.json
@@ -1110,6 +1110,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader" :{
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid" :{
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
diff --git a/apps/desktop/src/locales/en/messages.json b/apps/desktop/src/locales/en/messages.json
index 9a0a2b6a2c1..82d57c205d4 100644
--- a/apps/desktop/src/locales/en/messages.json
+++ b/apps/desktop/src/locales/en/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader" :{
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid" :{
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index 875de3980a5..d7a21ad6d6a 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -5595,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader" :{
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid" :{
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
diff --git a/libs/auth/src/angular/registration/registration-env-selector/registration-env-selector.component.html b/libs/auth/src/angular/registration/registration-env-selector/registration-env-selector.component.html
index b4dad835eec..9785bf05ab5 100644
--- a/libs/auth/src/angular/registration/registration-env-selector/registration-env-selector.component.html
+++ b/libs/auth/src/angular/registration/registration-env-selector/registration-env-selector.component.html
@@ -8,6 +8,7 @@
         [label]="regionConfig.domain"
       ></bit-option>
       <bit-option
+        *ngIf="isDesktopOrBrowserExtension"
         [value]="ServerEnvironmentType.SelfHosted"
         [label]="'selfHostedServer' | i18n"
       ></bit-option>
diff --git a/libs/auth/src/angular/registration/registration-env-selector/registration-env-selector.component.ts b/libs/auth/src/angular/registration/registration-env-selector/registration-env-selector.component.ts
index f01873dd3e2..fe41f0a3ac7 100644
--- a/libs/auth/src/angular/registration/registration-env-selector/registration-env-selector.component.ts
+++ b/libs/auth/src/angular/registration/registration-env-selector/registration-env-selector.component.ts
@@ -1,17 +1,26 @@
 import { CommonModule } from "@angular/common";
 import { Component, EventEmitter, OnDestroy, OnInit, Output } from "@angular/core";
 import { FormBuilder, FormControl, ReactiveFormsModule, Validators } from "@angular/forms";
-import { EMPTY, Subject, from, map, of, switchMap, takeUntil, tap } from "rxjs";
+import { Subject, from, map, of, pairwise, startWith, switchMap, takeUntil, tap } from "rxjs";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
+import { ClientType } from "@bitwarden/common/enums";
 import {
   Environment,
   EnvironmentService,
   Region,
   RegionConfig,
 } from "@bitwarden/common/platform/abstractions/environment.service";
-import { FormFieldModule, SelectModule } from "@bitwarden/components";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { DialogService, FormFieldModule, SelectModule, ToastService } from "@bitwarden/components";
 
+import { RegistrationSelfHostedEnvConfigDialogComponent } from "./registration-self-hosted-env-config-dialog.component";
+
+/**
+ * Component for selecting the environment to register with in the email verification registration flow.
+ * Outputs the selected region to the parent component so it can respond as necessary.
+ */
 @Component({
   standalone: true,
   selector: "auth-registration-env-selector",
@@ -19,7 +28,7 @@ import { FormFieldModule, SelectModule } from "@bitwarden/components";
   imports: [CommonModule, JslibModule, ReactiveFormsModule, FormFieldModule, SelectModule],
 })
 export class RegistrationEnvSelectorComponent implements OnInit, OnDestroy {
-  @Output() onOpenSelfHostedSettings = new EventEmitter();
+  @Output() selectedRegionChange = new EventEmitter<RegionConfig | Region.SelfHosted | null>();
 
   ServerEnvironmentType = Region;
 
@@ -33,12 +42,24 @@ export class RegistrationEnvSelectorComponent implements OnInit, OnDestroy {
 
   availableRegionConfigs: RegionConfig[] = this.environmentService.availableRegions();
 
+  private selectedRegionFromEnv: RegionConfig | Region.SelfHosted;
+
+  isDesktopOrBrowserExtension = false;
+
   private destroy$ = new Subject<void>();
 
   constructor(
     private formBuilder: FormBuilder,
     private environmentService: EnvironmentService,
-  ) {}
+    private dialogService: DialogService,
+    private i18nService: I18nService,
+    private toastService: ToastService,
+    private platformUtilsService: PlatformUtilsService,
+  ) {
+    const clientType = platformUtilsService.getClientType();
+    this.isDesktopOrBrowserExtension =
+      clientType === ClientType.Desktop || clientType === ClientType.Browser;
+  }
 
   async ngOnInit() {
     await this.initSelectedRegionAndListenForEnvChanges();
@@ -61,13 +82,17 @@ export class RegistrationEnvSelectorComponent implements OnInit, OnDestroy {
 
           return regionConfig;
         }),
-        tap((selectedRegionInitialValue: RegionConfig | Region.SelfHosted) => {
-          // This inits the form control with the selected region, but
-          // it also sets the value to self hosted if the self hosted settings are saved successfully
-          // in the client specific implementation managed by the parent component.
-          // It also resets the value to the previously selected region if the self hosted
-          // settings are closed without saving. We don't emit the event to avoid a loop.
-          this.selectedRegion.setValue(selectedRegionInitialValue, { emitEvent: false });
+        tap((selectedRegionFromEnv: RegionConfig | Region.SelfHosted) => {
+          // Only set the value if it is different from the current value.
+          if (selectedRegionFromEnv !== this.selectedRegion.value) {
+            // Don't emit to avoid triggering the selectedRegion valueChanges subscription
+            // which could loop back to this code.
+            this.selectedRegion.setValue(selectedRegionFromEnv, { emitEvent: false });
+          }
+
+          // Save this off so we can reset the value to the previously selected region
+          // if the self hosted settings are closed without saving.
+          this.selectedRegionFromEnv = selectedRegionFromEnv;
         }),
         takeUntil(this.destroy$),
       )
@@ -77,23 +102,66 @@ export class RegistrationEnvSelectorComponent implements OnInit, OnDestroy {
   private listenForSelectedRegionChanges() {
     this.selectedRegion.valueChanges
       .pipe(
-        switchMap((selectedRegionConfig: RegionConfig | Region.SelfHosted | null) => {
-          if (selectedRegionConfig === null) {
-            return of(null);
-          }
+        startWith(null), // required so that first user choice is not ignored
+        pairwise(),
+        switchMap(
+          ([prevSelectedRegion, selectedRegion]: [
+            RegionConfig | Region.SelfHosted | null,
+            RegionConfig | Region.SelfHosted | null,
+          ]) => {
+            if (selectedRegion === null) {
+              this.selectedRegionChange.emit(selectedRegion);
+              return of(null);
+            }
 
-          if (selectedRegionConfig === Region.SelfHosted) {
-            this.onOpenSelfHostedSettings.emit();
-            return EMPTY;
-          }
+            if (selectedRegion === Region.SelfHosted) {
+              return from(
+                RegistrationSelfHostedEnvConfigDialogComponent.open(this.dialogService),
+              ).pipe(
+                tap((result: boolean | undefined) =>
+                  this.handleSelfHostedEnvConfigDialogResult(result, prevSelectedRegion),
+                ),
+              );
+            }
 
-          return from(this.environmentService.setEnvironment(selectedRegionConfig.key));
-        }),
+            this.selectedRegionChange.emit(selectedRegion);
+            return from(this.environmentService.setEnvironment(selectedRegion.key));
+          },
+        ),
         takeUntil(this.destroy$),
       )
       .subscribe();
   }
 
+  private handleSelfHostedEnvConfigDialogResult(
+    result: boolean | undefined,
+    prevSelectedRegion: RegionConfig | Region.SelfHosted | null,
+  ) {
+    if (result === true) {
+      this.selectedRegionChange.emit(Region.SelfHosted);
+      this.toastService.showToast({
+        variant: "success",
+        title: null,
+        message: this.i18nService.t("environmentSaved"),
+      });
+      return;
+    }
+
+    // Reset the value to the previously selected region or the current env setting
+    // if the self hosted env settings dialog is closed without saving.
+    if (
+      (result === false || result === undefined) &&
+      prevSelectedRegion !== null &&
+      prevSelectedRegion !== Region.SelfHosted
+    ) {
+      this.selectedRegionChange.emit(prevSelectedRegion);
+      this.selectedRegion.setValue(prevSelectedRegion, { emitEvent: false });
+    } else {
+      this.selectedRegionChange.emit(this.selectedRegionFromEnv);
+      this.selectedRegion.setValue(this.selectedRegionFromEnv, { emitEvent: false });
+    }
+  }
+
   ngOnDestroy() {
     this.destroy$.next();
     this.destroy$.complete();
diff --git a/libs/auth/src/angular/registration/registration-env-selector/registration-self-hosted-env-config-dialog.component.html b/libs/auth/src/angular/registration/registration-env-selector/registration-self-hosted-env-config-dialog.component.html
new file mode 100644
index 00000000000..92c2f9f2f7a
--- /dev/null
+++ b/libs/auth/src/angular/registration/registration-env-selector/registration-self-hosted-env-config-dialog.component.html
@@ -0,0 +1,107 @@
+<form [formGroup]="formGroup" [bitSubmit]="submit">
+  <bit-dialog>
+    <span bitDialogTitle> Self-hosted environment</span>
+    <ng-container bitDialogContent>
+      <bit-form-field>
+        <bit-label>{{ "baseUrl" | i18n }}</bit-label>
+        <input
+          id="self_hosted_env_settings_form_input_base_url"
+          bitInput
+          type="text"
+          formControlName="baseUrl"
+          appAutofocus
+          appInputVerbatim
+        />
+        <bit-hint>{{ "selfHostedBaseUrlHint" | i18n }}</bit-hint>
+      </bit-form-field>
+
+      <button bitLink linkType="primary" type="button" (click)="showCustomEnv = !showCustomEnv">
+        <i
+          class="bwi bwi-fw bwi-sm"
+          [ngClass]="{ 'bwi-angle-right': !showCustomEnv, 'bwi-angle-down': showCustomEnv }"
+          aria-hidden="true"
+        ></i>
+        {{ "customEnvironment" | i18n }}
+      </button>
+
+      <ng-container *ngIf="showCustomEnv">
+        <p bitTypography="body1" class="tw-text-muted tw-mt-3">
+          {{ "selfHostedCustomEnvHeader" | i18n }}
+        </p>
+
+        <bit-form-field>
+          <bit-label>{{ "webVaultUrl" | i18n }}</bit-label>
+          <input
+            id="self_hosted_env_settings_form_input_web_vault_url"
+            bitInput
+            type="text"
+            formControlName="webVaultUrl"
+            appInputVerbatim
+          />
+        </bit-form-field>
+
+        <bit-form-field>
+          <bit-label>{{ "apiUrl" | i18n }}</bit-label>
+          <input
+            id="self_hosted_env_settings_form_input_api_url"
+            bitInput
+            type="text"
+            formControlName="apiUrl"
+            appInputVerbatim
+          />
+        </bit-form-field>
+
+        <bit-form-field>
+          <bit-label>{{ "identityUrl" | i18n }}</bit-label>
+          <input
+            id="self_hosted_env_settings_form_input_identity_url"
+            bitInput
+            type="text"
+            formControlName="identityUrl"
+            appInputVerbatim
+          />
+        </bit-form-field>
+
+        <bit-form-field>
+          <bit-label>{{ "notificationsUrl" | i18n }}</bit-label>
+          <input
+            id="self_hosted_env_settings_form_input_notifications_url"
+            bitInput
+            type="text"
+            formControlName="notificationsUrl"
+            appInputVerbatim
+          />
+        </bit-form-field>
+
+        <bit-form-field>
+          <bit-label>{{ "iconsUrl" | i18n }}</bit-label>
+          <input
+            id="self_hosted_env_settings_form_input_icons_url"
+            bitInput
+            type="text"
+            formControlName="iconsUrl"
+            appInputVerbatim
+          />
+        </bit-form-field>
+      </ng-container>
+
+      <span
+        *ngIf="showErrorSummary"
+        class="tw-block tw-text-danger tw-mt-2"
+        aria-live="assertive"
+        role="alert"
+      >
+        <i class="bwi bwi-error"></i> {{ "selfHostedEnvFormInvalid" | i18n }}
+      </span>
+    </ng-container>
+    <ng-container bitDialogFooter>
+      <button type="submit" bitButton bitFormButton buttonType="primary">
+        {{ "save" | i18n }}
+      </button>
+
+      <button type="button" bitButton bitFormButton buttonType="secondary" (click)="cancel()">
+        {{ "cancel" | i18n }}
+      </button>
+    </ng-container>
+  </bit-dialog>
+</form>
diff --git a/libs/auth/src/angular/registration/registration-env-selector/registration-self-hosted-env-config-dialog.component.ts b/libs/auth/src/angular/registration/registration-env-selector/registration-self-hosted-env-config-dialog.component.ts
new file mode 100644
index 00000000000..2bedb4b3583
--- /dev/null
+++ b/libs/auth/src/angular/registration/registration-env-selector/registration-self-hosted-env-config-dialog.component.ts
@@ -0,0 +1,164 @@
+import { DialogRef } from "@angular/cdk/dialog";
+import { CommonModule } from "@angular/common";
+import { Component, OnDestroy, OnInit } from "@angular/core";
+import {
+  AbstractControl,
+  FormBuilder,
+  FormControl,
+  FormGroup,
+  ReactiveFormsModule,
+  ValidationErrors,
+  ValidatorFn,
+} from "@angular/forms";
+import { Subject, firstValueFrom } from "rxjs";
+
+import { JslibModule } from "@bitwarden/angular/jslib.module";
+import {
+  EnvironmentService,
+  Region,
+} from "@bitwarden/common/platform/abstractions/environment.service";
+import {
+  AsyncActionsModule,
+  ButtonModule,
+  DialogModule,
+  DialogService,
+  FormFieldModule,
+  LinkModule,
+  TypographyModule,
+} from "@bitwarden/components";
+
+/**
+ * Validator for self-hosted environment settings form.
+ * It enforces that at least one URL is provided.
+ */
+function selfHostedEnvSettingsFormValidator(): ValidatorFn {
+  return (control: AbstractControl): ValidationErrors | null => {
+    const formGroup = control as FormGroup;
+    const baseUrl = formGroup.get("baseUrl")?.value;
+    const webVaultUrl = formGroup.get("webVaultUrl")?.value;
+    const apiUrl = formGroup.get("apiUrl")?.value;
+    const identityUrl = formGroup.get("identityUrl")?.value;
+    const iconsUrl = formGroup.get("iconsUrl")?.value;
+    const notificationsUrl = formGroup.get("notificationsUrl")?.value;
+
+    if (baseUrl || webVaultUrl || apiUrl || identityUrl || iconsUrl || notificationsUrl) {
+      return null; // valid
+    } else {
+      return { atLeastOneUrlIsRequired: true }; // invalid
+    }
+  };
+}
+
+/**
+ * Dialog for configuring self-hosted environment settings.
+ */
+@Component({
+  standalone: true,
+  selector: "auth-registration-self-hosted-env-config-dialog",
+  templateUrl: "registration-self-hosted-env-config-dialog.component.html",
+  imports: [
+    CommonModule,
+    JslibModule,
+    DialogModule,
+    ButtonModule,
+    LinkModule,
+    TypographyModule,
+    ReactiveFormsModule,
+    FormFieldModule,
+    AsyncActionsModule,
+  ],
+})
+export class RegistrationSelfHostedEnvConfigDialogComponent implements OnInit, OnDestroy {
+  /**
+   * Opens the dialog.
+   * @param dialogService - Dialog service.
+   * @returns Promise that resolves to true if the dialog was closed with a successful result, false otherwise.
+   */
+  static async open(dialogService: DialogService): Promise<boolean> {
+    const dialogRef = dialogService.open<boolean>(RegistrationSelfHostedEnvConfigDialogComponent, {
+      disableClose: false,
+    });
+
+    const dialogResult = await firstValueFrom(dialogRef.closed);
+
+    return dialogResult;
+  }
+
+  formGroup = this.formBuilder.group(
+    {
+      baseUrl: [null],
+      webVaultUrl: [null],
+      apiUrl: [null],
+      identityUrl: [null],
+      iconsUrl: [null],
+      notificationsUrl: [null],
+    },
+    { validators: selfHostedEnvSettingsFormValidator() },
+  );
+
+  get baseUrl(): FormControl {
+    return this.formGroup.get("baseUrl") as FormControl;
+  }
+
+  get webVaultUrl(): FormControl {
+    return this.formGroup.get("webVaultUrl") as FormControl;
+  }
+
+  get apiUrl(): FormControl {
+    return this.formGroup.get("apiUrl") as FormControl;
+  }
+
+  get identityUrl(): FormControl {
+    return this.formGroup.get("identityUrl") as FormControl;
+  }
+
+  get iconsUrl(): FormControl {
+    return this.formGroup.get("iconsUrl") as FormControl;
+  }
+
+  get notificationsUrl(): FormControl {
+    return this.formGroup.get("notificationsUrl") as FormControl;
+  }
+
+  showCustomEnv = false;
+  showErrorSummary = false;
+
+  private destroy$ = new Subject<void>();
+
+  constructor(
+    private dialogRef: DialogRef<boolean>,
+    private formBuilder: FormBuilder,
+    private environmentService: EnvironmentService,
+  ) {}
+
+  ngOnInit() {}
+
+  submit = async () => {
+    this.showErrorSummary = false;
+
+    if (this.formGroup.invalid) {
+      this.showErrorSummary = true;
+      return;
+    }
+
+    await this.environmentService.setEnvironment(Region.SelfHosted, {
+      base: this.baseUrl.value,
+      api: this.apiUrl.value,
+      identity: this.identityUrl.value,
+      webVault: this.webVaultUrl.value,
+      icons: this.iconsUrl.value,
+      notifications: this.notificationsUrl.value,
+    });
+
+    this.dialogRef.close(true);
+  };
+
+  async cancel() {
+    this.dialogRef.close(false);
+  }
+
+  ngOnDestroy() {
+    this.destroy$.next();
+    this.destroy$.complete();
+  }
+}
diff --git a/libs/auth/src/angular/registration/registration-start/registration-start.component.html b/libs/auth/src/angular/registration/registration-start/registration-start.component.html
index 8f64232f9c8..8da2eb76b55 100644
--- a/libs/auth/src/angular/registration/registration-start/registration-start.component.html
+++ b/libs/auth/src/angular/registration/registration-start/registration-start.component.html
@@ -1,5 +1,9 @@
 <ng-container *ngIf="state === RegistrationStartState.USER_DATA_ENTRY">
   <form [formGroup]="formGroup" [bitSubmit]="submit">
+    <auth-registration-env-selector
+      (selectedRegionChange)="handleSelectedRegionChange($event)"
+    ></auth-registration-env-selector>
+
     <bit-form-field>
       <bit-label>{{ "emailAddress" | i18n }}</bit-label>
       <input
diff --git a/libs/auth/src/angular/registration/registration-start/registration-start.component.ts b/libs/auth/src/angular/registration/registration-start/registration-start.component.ts
index ac7d41038fc..3674efdbf0f 100644
--- a/libs/auth/src/angular/registration/registration-start/registration-start.component.ts
+++ b/libs/auth/src/angular/registration/registration-start/registration-start.component.ts
@@ -12,6 +12,7 @@ import { ActivatedRoute } from "@angular/router";
 import { Subject, takeUntil } from "rxjs";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
+import { RegionConfig, Region } from "@bitwarden/common/platform/abstractions/environment.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import {
   AsyncActionsModule,
@@ -23,6 +24,7 @@ import {
 } from "@bitwarden/components";
 
 import { RegistrationCheckEmailIcon } from "../../icons/registration-check-email.icon";
+import { RegistrationEnvSelectorComponent } from "../registration-env-selector/registration-env-selector.component";
 
 export enum RegistrationStartState {
   USER_DATA_ENTRY = "UserDataEntry",
@@ -43,6 +45,7 @@ export enum RegistrationStartState {
     ButtonModule,
     LinkModule,
     IconModule,
+    RegistrationEnvSelectorComponent,
   ],
 })
 export class RegistrationStartComponent implements OnInit, OnDestroy {
@@ -84,6 +87,7 @@ export class RegistrationStartComponent implements OnInit, OnDestroy {
     private route: ActivatedRoute,
     private platformUtilsService: PlatformUtilsService,
   ) {
+    // TODO: this needs to update if user selects self hosted
     this.isSelfHost = platformUtilsService.isSelfHost();
   }
 
@@ -116,6 +120,10 @@ export class RegistrationStartComponent implements OnInit, OnDestroy {
     this.registrationStartStateChange.emit(this.state);
   };
 
+  handleSelectedRegionChange(region: RegionConfig | Region.SelfHosted | null) {
+    this.isSelfHost = region === Region.SelfHosted;
+  }
+
   private validateForm(): boolean {
     this.formGroup.markAllAsTouched();
 
diff --git a/libs/auth/src/angular/registration/registration-start/registration-start.mdx b/libs/auth/src/angular/registration/registration-start/registration-start.mdx
index 312425aa35e..1da14d24e4d 100644
--- a/libs/auth/src/angular/registration/registration-start/registration-start.mdx
+++ b/libs/auth/src/angular/registration/registration-start/registration-start.mdx
@@ -7,22 +7,72 @@ import * as stories from "./registration-start.stories";
 # RegistrationStart Component
 
 The Auth-owned RegistrationStartComponent is to be used for the first step in the new email
-verification stagegated registration process. It collects the user's email address (required) and
-optionally their name. On cloud environments, it requires acceptance of the terms of service and the
-privacy policy; the checkbox is hidden on self hosted environments.
+verification stage gated registration process. It collects the environment (required), the user's
+email address (required) and optionally their name. On cloud environments, it requires acceptance of
+the terms of service and the privacy policy; the checkbox is hidden on self hosted environments.
 
-### Cloud Example
+## Web Examples
 
-<Story of={stories.CloudExample} />
+Note that the self hosted option is not present in the environment selector.
 
-### Self Hosted Example
+### US Region
 
-<Story of={stories.SelfHostExample} />
+<Story of={stories.WebUSRegionExample} />
 
-### Query Param Example
+### EU Region
+
+<Story of={stories.WebEURegionExample} />
+
+### Query Params
 
 The component accepts two query parameters: `email` and `emailReadonly`. If an email is provided, it
 will be pre-filled in the email input field. If `emailReadonly` is set to `true`, the email input
 field will be set to readonly. `emailReadonly` is primarily for the organization invite flow.
 
-<Story of={stories.QueryParamsExample} />
+<Story of={stories.WebUSRegionQueryParamsExample} />
+
+## Desktop
+
+Behavior to note:
+
+- The self hosted option is present in the environment selector.
+- If you go from non-self hosted to self hosted, the terms of service and privacy policy checkbox
+  will disappear.
+
+### US Region
+
+<Story of={stories.DesktopUSRegionExample} />
+
+### EU Region
+
+<Story of={stories.DesktopEURegionExample} />
+
+### Self Hosted
+
+Note the fact that the terms of service and privacy policy checkbox is not present when the
+environment is self hosted.
+
+<Story of={stories.DesktopSelfHostExample} />
+
+## Browser Extension
+
+Behavior to note:
+
+- The self hosted option is present in the environment selector.
+- If you go from non-self hosted to self hosted, the terms of service and privacy policy checkbox
+  will disappear.
+
+### US Region
+
+<Story of={stories.BrowserExtensionUSRegionExample} />
+
+### EU Region
+
+<Story of={stories.BrowserExtensionEURegionExample} />
+
+### Self Hosted
+
+Note the fact that the terms of service and privacy policy checkbox is not present when the
+environment is self hosted.
+
+<Story of={stories.BrowserExtensionSelfHostExample} />
diff --git a/libs/auth/src/angular/registration/registration-start/registration-start.stories.ts b/libs/auth/src/angular/registration/registration-start/registration-start.stories.ts
index 099f086b963..50d1f15182e 100644
--- a/libs/auth/src/angular/registration/registration-start/registration-start.stories.ts
+++ b/libs/auth/src/angular/registration/registration-start/registration-start.stories.ts
@@ -1,10 +1,30 @@
 import { importProvidersFrom } from "@angular/core";
+import { ReactiveFormsModule } from "@angular/forms";
+import { BrowserAnimationsModule } from "@angular/platform-browser/animations";
 import { ActivatedRoute, Params } from "@angular/router";
 import { RouterTestingModule } from "@angular/router/testing";
 import { Meta, StoryObj, applicationConfig, moduleMetadata } from "@storybook/angular";
 import { of } from "rxjs";
 
+import { ClientType } from "@bitwarden/common/enums";
+import {
+  Environment,
+  EnvironmentService,
+  Region,
+  Urls,
+} from "@bitwarden/common/platform/abstractions/environment.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import {
+  AsyncActionsModule,
+  ButtonModule,
+  DialogModule,
+  FormFieldModule,
+  LinkModule,
+  SelectModule,
+  ToastOptions,
+  ToastService,
+  TypographyModule,
+} from "@bitwarden/components";
 
 import { PreloadedEnglishI18nModule } from "../../../../../../apps/web/src/app/core/tests";
 
@@ -15,52 +35,70 @@ export default {
   component: RegistrationStartComponent,
 } as Meta;
 
-const decorators = (options: { isSelfHost: boolean; queryParams: Params }) => {
+const decorators = (options: {
+  isSelfHost?: boolean;
+  queryParams?: Params;
+  clientType?: ClientType;
+  defaultRegion?: Region;
+}) => {
   return [
     moduleMetadata({
-      imports: [RouterTestingModule],
+      imports: [
+        RouterTestingModule,
+        DialogModule,
+        ReactiveFormsModule,
+        FormFieldModule,
+        SelectModule,
+        ButtonModule,
+        LinkModule,
+        TypographyModule,
+        AsyncActionsModule,
+        BrowserAnimationsModule,
+      ],
       providers: [
         {
           provide: ActivatedRoute,
-          useValue: { queryParams: of(options.queryParams) },
-        },
-        {
-          provide: PlatformUtilsService,
-          useValue: {
-            isSelfHost: () => options.isSelfHost,
-          } as Partial<PlatformUtilsService>,
+          useValue: { queryParams: of(options.queryParams || {}) },
         },
       ],
     }),
     applicationConfig({
-      providers: [importProvidersFrom(PreloadedEnglishI18nModule)],
+      providers: [
+        importProvidersFrom(PreloadedEnglishI18nModule),
+        {
+          provide: EnvironmentService,
+          useValue: {
+            environment$: of({
+              getRegion: () => options.defaultRegion || Region.US,
+            } as Partial<Environment>),
+            availableRegions: () => [
+              { key: Region.US, domain: "bitwarden.com", urls: {} },
+              { key: Region.EU, domain: "bitwarden.eu", urls: {} },
+            ],
+            setEnvironment: (region: Region, urls?: Urls) => Promise.resolve({}),
+          } as Partial<EnvironmentService>,
+        },
+        {
+          provide: PlatformUtilsService,
+          useValue: {
+            isSelfHost: () => options.isSelfHost || false,
+            getClientType: () => options.clientType || ClientType.Web,
+          } as Partial<PlatformUtilsService>,
+        },
+        {
+          provide: ToastService,
+          useValue: {
+            showToast: (options: ToastOptions) => {},
+          } as Partial<ToastService>,
+        },
+      ],
     }),
   ];
 };
 
 type Story = StoryObj<RegistrationStartComponent>;
 
-export const CloudExample: Story = {
-  render: (args) => ({
-    props: args,
-    template: `
-      <auth-registration-start></auth-registration-start>
-      `,
-  }),
-  decorators: decorators({ isSelfHost: false, queryParams: {} }),
-};
-
-export const SelfHostExample: Story = {
-  render: (args) => ({
-    props: args,
-    template: `
-      <auth-registration-start></auth-registration-start>
-      `,
-  }),
-  decorators: decorators({ isSelfHost: true, queryParams: {} }),
-};
-
-export const QueryParamsExample: Story = {
+export const WebUSRegionExample: Story = {
   render: (args) => ({
     props: args,
     template: `
@@ -68,7 +106,120 @@ export const QueryParamsExample: Story = {
       `,
   }),
   decorators: decorators({
-    isSelfHost: false,
+    clientType: ClientType.Web,
+    queryParams: {},
+    defaultRegion: Region.US,
+  }),
+};
+
+export const WebEURegionExample: Story = {
+  render: (args) => ({
+    props: args,
+    template: `
+      <auth-registration-start></auth-registration-start>
+      `,
+  }),
+  decorators: decorators({
+    clientType: ClientType.Web,
+    queryParams: {},
+    defaultRegion: Region.EU,
+  }),
+};
+
+export const WebUSRegionQueryParamsExample: Story = {
+  render: (args) => ({
+    props: args,
+    template: `
+      <auth-registration-start></auth-registration-start>
+      `,
+  }),
+  decorators: decorators({
+    clientType: ClientType.Web,
+    defaultRegion: Region.US,
     queryParams: { email: "jaredWasHere@bitwarden.com", emailReadonly: "true" },
   }),
 };
+
+export const DesktopUSRegionExample: Story = {
+  render: (args) => ({
+    props: args,
+    template: `
+      <auth-registration-start></auth-registration-start>
+      `,
+  }),
+  decorators: decorators({
+    clientType: ClientType.Desktop,
+    defaultRegion: Region.US,
+    isSelfHost: false,
+  }),
+};
+
+export const DesktopEURegionExample: Story = {
+  render: (args) => ({
+    props: args,
+    template: `
+      <auth-registration-start></auth-registration-start>
+      `,
+  }),
+  decorators: decorators({
+    clientType: ClientType.Desktop,
+    defaultRegion: Region.EU,
+    isSelfHost: false,
+  }),
+};
+
+export const DesktopSelfHostExample: Story = {
+  render: (args) => ({
+    props: args,
+    template: `
+      <auth-registration-start></auth-registration-start>
+      `,
+  }),
+  decorators: decorators({
+    clientType: ClientType.Desktop,
+    isSelfHost: true,
+    defaultRegion: Region.SelfHosted,
+  }),
+};
+
+export const BrowserExtensionUSRegionExample: Story = {
+  render: (args) => ({
+    props: args,
+    template: `
+      <auth-registration-start></auth-registration-start>
+      `,
+  }),
+  decorators: decorators({
+    clientType: ClientType.Browser,
+    defaultRegion: Region.US,
+    isSelfHost: false,
+  }),
+};
+
+export const BrowserExtensionEURegionExample: Story = {
+  render: (args) => ({
+    props: args,
+    template: `
+      <auth-registration-start></auth-registration-start>
+      `,
+  }),
+  decorators: decorators({
+    clientType: ClientType.Browser,
+    defaultRegion: Region.EU,
+    isSelfHost: false,
+  }),
+};
+
+export const BrowserExtensionSelfHostExample: Story = {
+  render: (args) => ({
+    props: args,
+    template: `
+      <auth-registration-start></auth-registration-start>
+      `,
+  }),
+  decorators: decorators({
+    clientType: ClientType.Browser,
+    isSelfHost: true,
+    defaultRegion: Region.SelfHosted,
+  }),
+};

From 99639b537f748e5da75f4106ff95634c3f2187c0 Mon Sep 17 00:00:00 2001
From: Bitwarden DevOps
 <106330231+bitwarden-devops-bot@users.noreply.github.com>
Date: Mon, 3 Jun 2024 14:10:48 -0400
Subject: [PATCH 073/138] Bumped client version(s) (#9486)

---
 apps/browser/package.json          | 2 +-
 apps/browser/src/manifest.json     | 2 +-
 apps/browser/src/manifest.v3.json  | 2 +-
 apps/cli/package.json              | 2 +-
 apps/desktop/package.json          | 2 +-
 apps/desktop/src/package-lock.json | 4 ++--
 apps/desktop/src/package.json      | 2 +-
 apps/web/package.json              | 2 +-
 package-lock.json                  | 8 ++++----
 9 files changed, 13 insertions(+), 13 deletions(-)

diff --git a/apps/browser/package.json b/apps/browser/package.json
index 14c1ed6b1db..a295a0f5bfe 100644
--- a/apps/browser/package.json
+++ b/apps/browser/package.json
@@ -1,6 +1,6 @@
 {
   "name": "@bitwarden/browser",
-  "version": "2024.5.2",
+  "version": "2024.6.0",
   "scripts": {
     "build": "cross-env MANIFEST_VERSION=3 webpack",
     "build:mv2": "webpack",
diff --git a/apps/browser/src/manifest.json b/apps/browser/src/manifest.json
index ab81bd7686c..623e5d1b145 100644
--- a/apps/browser/src/manifest.json
+++ b/apps/browser/src/manifest.json
@@ -2,7 +2,7 @@
   "manifest_version": 2,
   "name": "__MSG_extName__",
   "short_name": "__MSG_appName__",
-  "version": "2024.5.2",
+  "version": "2024.6.0",
   "description": "__MSG_extDesc__",
   "default_locale": "en",
   "author": "Bitwarden Inc.",
diff --git a/apps/browser/src/manifest.v3.json b/apps/browser/src/manifest.v3.json
index b3967d6b04a..9b7dc42732f 100644
--- a/apps/browser/src/manifest.v3.json
+++ b/apps/browser/src/manifest.v3.json
@@ -3,7 +3,7 @@
   "minimum_chrome_version": "102.0",
   "name": "__MSG_extName__",
   "short_name": "__MSG_appName__",
-  "version": "2024.5.2",
+  "version": "2024.6.0",
   "description": "__MSG_extDesc__",
   "default_locale": "en",
   "author": "Bitwarden Inc.",
diff --git a/apps/cli/package.json b/apps/cli/package.json
index d8ddde3d670..1ad09cc17a5 100644
--- a/apps/cli/package.json
+++ b/apps/cli/package.json
@@ -1,7 +1,7 @@
 {
   "name": "@bitwarden/cli",
   "description": "A secure and free password manager for all of your devices.",
-  "version": "2024.5.0",
+  "version": "2024.6.0",
   "keywords": [
     "bitwarden",
     "password",
diff --git a/apps/desktop/package.json b/apps/desktop/package.json
index f84f3e59498..129e9c43f09 100644
--- a/apps/desktop/package.json
+++ b/apps/desktop/package.json
@@ -1,7 +1,7 @@
 {
   "name": "@bitwarden/desktop",
   "description": "A secure and free password manager for all of your devices.",
-  "version": "2024.5.1",
+  "version": "2024.6.0",
   "keywords": [
     "bitwarden",
     "password",
diff --git a/apps/desktop/src/package-lock.json b/apps/desktop/src/package-lock.json
index 39899a1e6bb..34a4dc99f65 100644
--- a/apps/desktop/src/package-lock.json
+++ b/apps/desktop/src/package-lock.json
@@ -1,12 +1,12 @@
 {
   "name": "@bitwarden/desktop",
-  "version": "2024.5.1",
+  "version": "2024.6.0",
   "lockfileVersion": 3,
   "requires": true,
   "packages": {
     "": {
       "name": "@bitwarden/desktop",
-      "version": "2024.5.1",
+      "version": "2024.6.0",
       "license": "GPL-3.0",
       "dependencies": {
         "@bitwarden/desktop-native": "file:../desktop_native",
diff --git a/apps/desktop/src/package.json b/apps/desktop/src/package.json
index 9efd5bad9f8..3a629f37cb0 100644
--- a/apps/desktop/src/package.json
+++ b/apps/desktop/src/package.json
@@ -2,7 +2,7 @@
   "name": "@bitwarden/desktop",
   "productName": "Bitwarden",
   "description": "A secure and free password manager for all of your devices.",
-  "version": "2024.5.1",
+  "version": "2024.6.0",
   "author": "Bitwarden Inc. <hello@bitwarden.com> (https://bitwarden.com)",
   "homepage": "https://bitwarden.com",
   "license": "GPL-3.0",
diff --git a/apps/web/package.json b/apps/web/package.json
index 6e5355c7086..286811dd5c6 100644
--- a/apps/web/package.json
+++ b/apps/web/package.json
@@ -1,6 +1,6 @@
 {
   "name": "@bitwarden/web-vault",
-  "version": "2024.5.0",
+  "version": "2024.6.0",
   "scripts": {
     "build:oss": "webpack",
     "build:bit": "webpack -c ../../bitwarden_license/bit-web/webpack.config.js",
diff --git a/package-lock.json b/package-lock.json
index a1acd1ea8d9..77fac3fa8f1 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -197,11 +197,11 @@
     },
     "apps/browser": {
       "name": "@bitwarden/browser",
-      "version": "2024.5.2"
+      "version": "2024.6.0"
     },
     "apps/cli": {
       "name": "@bitwarden/cli",
-      "version": "2024.5.0",
+      "version": "2024.6.0",
       "license": "GPL-3.0-only",
       "dependencies": {
         "@koa/multer": "3.0.2",
@@ -237,7 +237,7 @@
     },
     "apps/desktop": {
       "name": "@bitwarden/desktop",
-      "version": "2024.5.1",
+      "version": "2024.6.0",
       "hasInstallScript": true,
       "license": "GPL-3.0"
     },
@@ -251,7 +251,7 @@
     },
     "apps/web": {
       "name": "@bitwarden/web-vault",
-      "version": "2024.5.0"
+      "version": "2024.6.0"
     },
     "libs/admin-console": {
       "name": "@bitwarden/admin-console",

From 7627afbfec06a6af5fb331491af88351d3b4c56e Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 3 Jun 2024 14:33:25 -0400
Subject: [PATCH 074/138] [deps] Platform: Update Rust crate base64 to v0.22.1
 (#9376)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 apps/desktop/desktop_native/Cargo.lock | 4 ++--
 apps/desktop/desktop_native/Cargo.toml | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/apps/desktop/desktop_native/Cargo.lock b/apps/desktop/desktop_native/Cargo.lock
index b921cab37b2..e183b4dbf23 100644
--- a/apps/desktop/desktop_native/Cargo.lock
+++ b/apps/desktop/desktop_native/Cargo.lock
@@ -83,9 +83,9 @@ dependencies = [
 
 [[package]]
 name = "base64"
-version = "0.22.0"
+version = "0.22.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "9475866fec1451be56a3c2400fd081ff546538961565ccb5b7142cbd22bc7a51"
+checksum = "72b3254f16251a8381aa12e40e3c4d2f0199f8c6508fbecb9d91f575e0fbb8c6"
 
 [[package]]
 name = "bitflags"
diff --git a/apps/desktop/desktop_native/Cargo.toml b/apps/desktop/desktop_native/Cargo.toml
index 4b2bc2e905e..a8e92806b67 100644
--- a/apps/desktop/desktop_native/Cargo.toml
+++ b/apps/desktop/desktop_native/Cargo.toml
@@ -16,7 +16,7 @@ manual_test = []
 aes = "=0.8.4"
 anyhow = "=1.0.80"
 arboard = { version = "=3.3.2", default-features = false, features = ["wayland-data-control"] }
-base64 = "=0.22.0"
+base64 = "=0.22.1"
 cbc = { version = "=0.1.2", features = ["alloc"] }
 napi = { version = "=2.16.0", features = ["async"] }
 napi-derive = "=2.16.0"

From f7b5c22ffdda6234de2cb2f265dc3bc9350ad697 Mon Sep 17 00:00:00 2001
From: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Date: Mon, 3 Jun 2024 14:37:29 -0500
Subject: [PATCH 075/138] [SM-1291] Center empty message for the access policy
 selector (#9444)

---
 .../access-policy-selector.component.html                 | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/access-policy-selector.component.html b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/access-policy-selector.component.html
index e926ba6a13d..454b497fcdb 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/access-policy-selector.component.html
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/access-policy-selector.component.html
@@ -78,9 +78,11 @@
 </bit-table>
 
 <ng-template #empty>
-  <div class="tw-mt-4 tw-text-center">
-    {{ emptyMessage }}
-  </div>
+  <tr bitRow>
+    <td bitCell colspan="3" class="tw-text-center">
+      {{ emptyMessage }}
+    </td>
+  </tr>
 </ng-template>
 
 <ng-template #buttonMode>

From edecec56dee705a473ce03dcdac6bb0e04cb308c Mon Sep 17 00:00:00 2001
From: rr-bw <102181210+rr-bw@users.noreply.github.com>
Date: Mon, 3 Jun 2024 13:56:56 -0700
Subject: [PATCH 076/138] add min-w to anon-layout (#9489)

---
 libs/auth/src/angular/anon-layout/anon-layout.component.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/libs/auth/src/angular/anon-layout/anon-layout.component.html b/libs/auth/src/angular/anon-layout/anon-layout.component.html
index 4b593d336e1..bf5edbda823 100644
--- a/libs/auth/src/angular/anon-layout/anon-layout.component.html
+++ b/libs/auth/src/angular/anon-layout/anon-layout.component.html
@@ -15,7 +15,7 @@
   </div>
   <div class="tw-mb-auto tw-max-w-md tw-mx-auto tw-flex tw-flex-col tw-items-center">
     <div
-      class="tw-rounded-xl tw-mb-9 tw-mx-auto sm:tw-bg-background sm:tw-border sm:tw-border-solid sm:tw-border-secondary-300 sm:tw-p-8"
+      class="tw-rounded-xl tw-mb-9 tw-mx-auto tw-min-w-64 sm:tw-bg-background sm:tw-border sm:tw-border-solid sm:tw-border-secondary-300 sm:tw-p-8"
     >
       <ng-content></ng-content>
     </div>

From e99fd44eed8d58bfb251892399b7670e09017ff6 Mon Sep 17 00:00:00 2001
From: Thomas Rittson <31796059+eliykat@users.noreply.github.com>
Date: Tue, 4 Jun 2024 08:26:53 +1000
Subject: [PATCH 077/138] [AC-2634] Add device-approvals approve command
 (#9476)

---
 .../device-approval/approve.command.ts        | 51 +++++++++++++++++--
 .../device-approval.program.ts                | 12 +++--
 2 files changed, 56 insertions(+), 7 deletions(-)

diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/approve.command.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/approve.command.ts
index b3a30165ce3..8efa172296c 100644
--- a/bitwarden_license/bit-cli/src/admin-console/device-approval/approve.command.ts
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/approve.command.ts
@@ -1,9 +1,54 @@
+import { firstValueFrom } from "rxjs";
+
 import { Response } from "@bitwarden/cli/models/response";
+import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
+
+import { OrganizationAuthRequestService } from "../../../../bit-common/src/admin-console/auth-requests";
 
 export class ApproveCommand {
-  constructor() {}
+  constructor(
+    private organizationService: OrganizationService,
+    private organizationAuthRequestService: OrganizationAuthRequestService,
+  ) {}
 
-  async run(id: string): Promise<Response> {
-    throw new Error("Not implemented");
+  async run(organizationId: string, id: string): Promise<Response> {
+    if (organizationId != null) {
+      organizationId = organizationId.toLowerCase();
+    }
+
+    if (!Utils.isGuid(organizationId)) {
+      return Response.badRequest("`" + organizationId + "` is not a GUID.");
+    }
+
+    if (id != null) {
+      id = id.toLowerCase();
+    }
+
+    if (!Utils.isGuid(id)) {
+      return Response.badRequest("`" + id + "` is not a GUID.");
+    }
+
+    const organization = await firstValueFrom(this.organizationService.get$(organizationId));
+    if (!organization?.canManageUsersPassword) {
+      return Response.error(
+        "You do not have permission to approve pending device authorization requests.",
+      );
+    }
+
+    try {
+      const pendingRequests =
+        await this.organizationAuthRequestService.listPendingRequests(organizationId);
+
+      const request = pendingRequests.find((r) => r.id == id);
+      if (request == null) {
+        return Response.error("Invalid request id");
+      }
+
+      await this.organizationAuthRequestService.approvePendingRequest(organizationId, request);
+      return Response.success();
+    } catch (e) {
+      return Response.error(e);
+    }
   }
 }
diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
index 290bbb6fa83..9b08fbe26cf 100644
--- a/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
@@ -49,14 +49,18 @@ export class DeviceApprovalProgram extends BaseProgram {
 
   private approveCommand(): Command {
     return new Command("approve")
-      .argument("<id>")
+      .argument("<organizationId>", "The id of the organization")
+      .argument("<requestId>", "The id of the request to approve")
       .description("Approve a pending request")
-      .action(async (id: string) => {
+      .action(async (organizationId: string, id: string) => {
         await this.exitIfFeatureFlagDisabled(FeatureFlag.BulkDeviceApproval);
         await this.exitIfLocked();
 
-        const cmd = new ApproveCommand();
-        const response = await cmd.run(id);
+        const cmd = new ApproveCommand(
+          this.serviceContainer.organizationService,
+          this.serviceContainer.organizationAuthRequestService,
+        );
+        const response = await cmd.run(organizationId, id);
         this.processResponse(response);
       });
   }

From 90812e0ef5a9abfe0f2cbafc2429919f21223fa8 Mon Sep 17 00:00:00 2001
From: Thomas Rittson <31796059+eliykat@users.noreply.github.com>
Date: Tue, 4 Jun 2024 08:34:51 +1000
Subject: [PATCH 078/138] Add device-approval deny and deny-all commands
 (#9474)

---
 .../device-approval/deny-all.command.ts       | 44 ++++++++++++++++++-
 .../device-approval/deny.command.ts           | 43 ++++++++++++++++--
 .../device-approval.program.ts                | 17 ++++---
 3 files changed, 94 insertions(+), 10 deletions(-)

diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/deny-all.command.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/deny-all.command.ts
index 521a7e8ded6..59cc4235ebf 100644
--- a/bitwarden_license/bit-cli/src/admin-console/device-approval/deny-all.command.ts
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/deny-all.command.ts
@@ -1,9 +1,49 @@
+import { firstValueFrom } from "rxjs";
+
 import { Response } from "@bitwarden/cli/models/response";
+import { MessageResponse } from "@bitwarden/cli/models/response/message.response";
+import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
+
+import { OrganizationAuthRequestService } from "../../../../bit-common/src/admin-console/auth-requests";
 
 export class DenyAllCommand {
-  constructor() {}
+  constructor(
+    private organizationService: OrganizationService,
+    private organizationAuthRequestService: OrganizationAuthRequestService,
+  ) {}
 
   async run(organizationId: string): Promise<Response> {
-    throw new Error("Not implemented");
+    if (organizationId != null) {
+      organizationId = organizationId.toLowerCase();
+    }
+
+    if (!Utils.isGuid(organizationId)) {
+      return Response.badRequest("`" + organizationId + "` is not a GUID.");
+    }
+
+    const organization = await firstValueFrom(this.organizationService.get$(organizationId));
+    if (!organization?.canManageUsersPassword) {
+      return Response.error(
+        "You do not have permission to approve pending device authorization requests.",
+      );
+    }
+
+    try {
+      const pendingRequests =
+        await this.organizationAuthRequestService.listPendingRequests(organizationId);
+      if (pendingRequests.length == 0) {
+        const res = new MessageResponse("No pending device authorization requests to deny.", null);
+        return Response.success(res);
+      }
+
+      await this.organizationAuthRequestService.denyPendingRequests(
+        organizationId,
+        ...pendingRequests.map((r) => r.id),
+      );
+      return Response.success();
+    } catch (e) {
+      return Response.error(e);
+    }
   }
 }
diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/deny.command.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/deny.command.ts
index a366bfb05a0..a9676d3fc54 100644
--- a/bitwarden_license/bit-cli/src/admin-console/device-approval/deny.command.ts
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/deny.command.ts
@@ -1,9 +1,46 @@
+import { firstValueFrom } from "rxjs";
+
 import { Response } from "@bitwarden/cli/models/response";
+import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
+
+import { OrganizationAuthRequestService } from "../../../../bit-common/src/admin-console/auth-requests";
 
 export class DenyCommand {
-  constructor() {}
+  constructor(
+    private organizationService: OrganizationService,
+    private organizationAuthRequestService: OrganizationAuthRequestService,
+  ) {}
 
-  async run(id: string): Promise<Response> {
-    throw new Error("Not implemented");
+  async run(organizationId: string, id: string): Promise<Response> {
+    if (organizationId != null) {
+      organizationId = organizationId.toLowerCase();
+    }
+
+    if (!Utils.isGuid(organizationId)) {
+      return Response.badRequest("`" + organizationId + "` is not a GUID.");
+    }
+
+    if (id != null) {
+      id = id.toLowerCase();
+    }
+
+    if (!Utils.isGuid(id)) {
+      return Response.badRequest("`" + id + "` is not a GUID.");
+    }
+
+    const organization = await firstValueFrom(this.organizationService.get$(organizationId));
+    if (!organization?.canManageUsersPassword) {
+      return Response.error(
+        "You do not have permission to approve pending device authorization requests.",
+      );
+    }
+
+    try {
+      await this.organizationAuthRequestService.denyPendingRequests(organizationId, id);
+      return Response.success();
+    } catch (e) {
+      return Response.error(e);
+    }
   }
 }
diff --git a/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts b/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
index 9b08fbe26cf..0b0f3bb0f91 100644
--- a/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
+++ b/bitwarden_license/bit-cli/src/admin-console/device-approval/device-approval.program.ts
@@ -84,14 +84,18 @@ export class DeviceApprovalProgram extends BaseProgram {
 
   private denyCommand(): Command {
     return new Command("deny")
-      .argument("<id>")
+      .argument("<organizationId>", "The id of the organization")
+      .argument("<requestId>", "The id of the request to deny")
       .description("Deny a pending request")
-      .action(async (id: string) => {
+      .action(async (organizationId: string, id: string) => {
         await this.exitIfFeatureFlagDisabled(FeatureFlag.BulkDeviceApproval);
         await this.exitIfLocked();
 
-        const cmd = new DenyCommand();
-        const response = await cmd.run(id);
+        const cmd = new DenyCommand(
+          this.serviceContainer.organizationService,
+          this.serviceContainer.organizationAuthRequestService,
+        );
+        const response = await cmd.run(organizationId, id);
         this.processResponse(response);
       });
   }
@@ -104,7 +108,10 @@ export class DeviceApprovalProgram extends BaseProgram {
         await this.exitIfFeatureFlagDisabled(FeatureFlag.BulkDeviceApproval);
         await this.exitIfLocked();
 
-        const cmd = new DenyAllCommand();
+        const cmd = new DenyAllCommand(
+          this.serviceContainer.organizationService,
+          this.serviceContainer.organizationAuthRequestService,
+        );
         const response = await cmd.run(organizationId);
         this.processResponse(response);
       });

From 24f0a7478bb93f71a36ecb2897835eccdb050b8a Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Tue, 4 Jun 2024 12:18:36 +0200
Subject: [PATCH 079/138] [deps] Platform: Update Rust crate anyhow to v1.0.86
 (#9375)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 apps/desktop/desktop_native/Cargo.lock | 4 ++--
 apps/desktop/desktop_native/Cargo.toml | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/apps/desktop/desktop_native/Cargo.lock b/apps/desktop/desktop_native/Cargo.lock
index e183b4dbf23..8617553b377 100644
--- a/apps/desktop/desktop_native/Cargo.lock
+++ b/apps/desktop/desktop_native/Cargo.lock
@@ -39,9 +39,9 @@ dependencies = [
 
 [[package]]
 name = "anyhow"
-version = "1.0.80"
+version = "1.0.86"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "5ad32ce52e4161730f7098c077cd2ed6229b5804ccf99e5366be1ab72a98b4e1"
+checksum = "b3d1d046238990b9cf5bcde22a3fb3584ee5cf65fb2765f454ed428c7a0063da"
 
 [[package]]
 name = "arboard"
diff --git a/apps/desktop/desktop_native/Cargo.toml b/apps/desktop/desktop_native/Cargo.toml
index a8e92806b67..cded3d57ef6 100644
--- a/apps/desktop/desktop_native/Cargo.toml
+++ b/apps/desktop/desktop_native/Cargo.toml
@@ -14,7 +14,7 @@ manual_test = []
 
 [dependencies]
 aes = "=0.8.4"
-anyhow = "=1.0.80"
+anyhow = "=1.0.86"
 arboard = { version = "=3.3.2", default-features = false, features = ["wayland-data-control"] }
 base64 = "=0.22.1"
 cbc = { version = "=0.1.2", features = ["alloc"] }

From be5507411ba96a39c107ffdff9a2362542c86f6e Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Tue, 4 Jun 2024 08:27:05 -0500
Subject: [PATCH 080/138] [deps] Platform: Update @types/node to v20 (#9428)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 .../package-lock.json                         |  9 +--
 .../native-messaging-test-runner/package.json |  2 +-
 package-lock.json                             | 59 +++++++++++++++++--
 package.json                                  |  2 +-
 4 files changed, 62 insertions(+), 10 deletions(-)

diff --git a/apps/desktop/native-messaging-test-runner/package-lock.json b/apps/desktop/native-messaging-test-runner/package-lock.json
index 3e29d658160..ac12731398b 100644
--- a/apps/desktop/native-messaging-test-runner/package-lock.json
+++ b/apps/desktop/native-messaging-test-runner/package-lock.json
@@ -18,7 +18,7 @@
         "yargs": "17.7.2"
       },
       "devDependencies": {
-        "@types/node": "18.19.29",
+        "@types/node": "20.14.1",
         "@types/node-ipc": "9.2.3",
         "typescript": "4.7.4"
       }
@@ -98,9 +98,10 @@
       "integrity": "sha512-vxhUy4J8lyeyinH7Azl1pdd43GJhZH/tP2weN8TntQblOY+A0XbT8DJk1/oCPuOOyg/Ja757rG0CgHcWC8OfMA=="
     },
     "node_modules/@types/node": {
-      "version": "18.19.29",
-      "resolved": "https://registry.npmjs.org/@types/node/-/node-18.19.29.tgz",
-      "integrity": "sha512-5pAX7ggTmWZdhUrhRWLPf+5oM7F80bcKVCBbr0zwEkTNzTJL2CWQjznpFgHYy6GrzkYi2Yjy7DHKoynFxqPV8g==",
+      "version": "20.14.1",
+      "resolved": "https://registry.npmjs.org/@types/node/-/node-20.14.1.tgz",
+      "integrity": "sha512-T2MzSGEu+ysB/FkWfqmhV3PLyQlowdptmmgD20C6QxsS8Fmv5SjpZ1ayXaEC0S21/h5UJ9iA6W/5vSNU5l00OA==",
+      "license": "MIT",
       "dependencies": {
         "undici-types": "~5.26.4"
       }
diff --git a/apps/desktop/native-messaging-test-runner/package.json b/apps/desktop/native-messaging-test-runner/package.json
index b538834ccb2..0f92d5b0b3d 100644
--- a/apps/desktop/native-messaging-test-runner/package.json
+++ b/apps/desktop/native-messaging-test-runner/package.json
@@ -23,7 +23,7 @@
     "yargs": "17.7.2"
   },
   "devDependencies": {
-    "@types/node": "18.19.29",
+    "@types/node": "20.14.1",
     "@types/node-ipc": "9.2.3",
     "typescript": "4.7.4"
   },
diff --git a/package-lock.json b/package-lock.json
index 77fac3fa8f1..f50f284138f 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -110,7 +110,7 @@
         "@types/koa-json": "2.0.23",
         "@types/lowdb": "1.0.15",
         "@types/lunr": "2.3.7",
-        "@types/node": "18.19.29",
+        "@types/node": "20.14.1",
         "@types/node-fetch": "2.6.4",
         "@types/node-forge": "1.3.11",
         "@types/node-ipc": "9.2.3",
@@ -8534,6 +8534,16 @@
         }
       }
     },
+    "node_modules/@storybook/angular/node_modules/@types/node": {
+      "version": "18.19.34",
+      "resolved": "https://registry.npmjs.org/@types/node/-/node-18.19.34.tgz",
+      "integrity": "sha512-eXF4pfBNV5DAMKGbI02NnDtWrQ40hAN558/2vvS4gMpMIxaf6JmD7YjnZbq0Q9TDSSkKBamime8ewRoomHdt4g==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "undici-types": "~5.26.4"
+      }
+    },
     "node_modules/@storybook/blocks": {
       "version": "7.6.17",
       "resolved": "https://registry.npmjs.org/@storybook/blocks/-/blocks-7.6.17.tgz",
@@ -8656,6 +8666,16 @@
         }
       }
     },
+    "node_modules/@storybook/builder-webpack5/node_modules/@types/node": {
+      "version": "18.19.34",
+      "resolved": "https://registry.npmjs.org/@types/node/-/node-18.19.34.tgz",
+      "integrity": "sha512-eXF4pfBNV5DAMKGbI02NnDtWrQ40hAN558/2vvS4gMpMIxaf6JmD7YjnZbq0Q9TDSSkKBamime8ewRoomHdt4g==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "undici-types": "~5.26.4"
+      }
+    },
     "node_modules/@storybook/builder-webpack5/node_modules/magic-string": {
       "version": "0.30.8",
       "resolved": "https://registry.npmjs.org/magic-string/-/magic-string-0.30.8.tgz",
@@ -9026,6 +9046,16 @@
         "url": "https://opencollective.com/storybook"
       }
     },
+    "node_modules/@storybook/core-common/node_modules/@types/node": {
+      "version": "18.19.34",
+      "resolved": "https://registry.npmjs.org/@types/node/-/node-18.19.34.tgz",
+      "integrity": "sha512-eXF4pfBNV5DAMKGbI02NnDtWrQ40hAN558/2vvS4gMpMIxaf6JmD7YjnZbq0Q9TDSSkKBamime8ewRoomHdt4g==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "undici-types": "~5.26.4"
+      }
+    },
     "node_modules/@storybook/core-events": {
       "version": "7.6.17",
       "resolved": "https://registry.npmjs.org/@storybook/core-events/-/core-events-7.6.17.tgz",
@@ -9092,6 +9122,16 @@
         "url": "https://opencollective.com/storybook"
       }
     },
+    "node_modules/@storybook/core-server/node_modules/@types/node": {
+      "version": "18.19.34",
+      "resolved": "https://registry.npmjs.org/@types/node/-/node-18.19.34.tgz",
+      "integrity": "sha512-eXF4pfBNV5DAMKGbI02NnDtWrQ40hAN558/2vvS4gMpMIxaf6JmD7YjnZbq0Q9TDSSkKBamime8ewRoomHdt4g==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "undici-types": "~5.26.4"
+      }
+    },
     "node_modules/@storybook/core-webpack": {
       "version": "7.6.17",
       "resolved": "https://registry.npmjs.org/@storybook/core-webpack/-/core-webpack-7.6.17.tgz",
@@ -9109,6 +9149,16 @@
         "url": "https://opencollective.com/storybook"
       }
     },
+    "node_modules/@storybook/core-webpack/node_modules/@types/node": {
+      "version": "18.19.34",
+      "resolved": "https://registry.npmjs.org/@types/node/-/node-18.19.34.tgz",
+      "integrity": "sha512-eXF4pfBNV5DAMKGbI02NnDtWrQ40hAN558/2vvS4gMpMIxaf6JmD7YjnZbq0Q9TDSSkKBamime8ewRoomHdt4g==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "undici-types": "~5.26.4"
+      }
+    },
     "node_modules/@storybook/csf": {
       "version": "0.1.3",
       "resolved": "https://registry.npmjs.org/@storybook/csf/-/csf-0.1.3.tgz",
@@ -10654,10 +10704,11 @@
       "dev": true
     },
     "node_modules/@types/node": {
-      "version": "18.19.29",
-      "resolved": "https://registry.npmjs.org/@types/node/-/node-18.19.29.tgz",
-      "integrity": "sha512-5pAX7ggTmWZdhUrhRWLPf+5oM7F80bcKVCBbr0zwEkTNzTJL2CWQjznpFgHYy6GrzkYi2Yjy7DHKoynFxqPV8g==",
+      "version": "20.14.1",
+      "resolved": "https://registry.npmjs.org/@types/node/-/node-20.14.1.tgz",
+      "integrity": "sha512-T2MzSGEu+ysB/FkWfqmhV3PLyQlowdptmmgD20C6QxsS8Fmv5SjpZ1ayXaEC0S21/h5UJ9iA6W/5vSNU5l00OA==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "undici-types": "~5.26.4"
       }
diff --git a/package.json b/package.json
index 69112739f34..c117febd79d 100644
--- a/package.json
+++ b/package.json
@@ -71,7 +71,7 @@
     "@types/koa-json": "2.0.23",
     "@types/lowdb": "1.0.15",
     "@types/lunr": "2.3.7",
-    "@types/node": "18.19.29",
+    "@types/node": "20.14.1",
     "@types/node-fetch": "2.6.4",
     "@types/node-forge": "1.3.11",
     "@types/node-ipc": "9.2.3",

From c4f9a031445131be791758bc135679477470107a Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Tue, 4 Jun 2024 10:15:54 -0400
Subject: [PATCH 081/138] [deps] Platform (CL): Update storybook monorepo to
 v7.6.19 (#8967)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 package-lock.json | 1905 ++++++++++++++++++++++++++++++++++++---------
 package.json      |   14 +-
 2 files changed, 1557 insertions(+), 362 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index f50f284138f..c5db91b8482 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -86,13 +86,13 @@
         "@electron/notarize": "2.3.0",
         "@electron/rebuild": "3.6.0",
         "@ngtools/webpack": "16.2.11",
-        "@storybook/addon-a11y": "7.6.17",
-        "@storybook/addon-actions": "7.6.17",
+        "@storybook/addon-a11y": "7.6.19",
+        "@storybook/addon-actions": "7.6.19",
         "@storybook/addon-designs": "7.0.9",
-        "@storybook/addon-essentials": "7.6.17",
-        "@storybook/addon-interactions": "7.6.17",
-        "@storybook/addon-links": "7.6.17",
-        "@storybook/angular": "7.6.17",
+        "@storybook/addon-essentials": "7.6.19",
+        "@storybook/addon-interactions": "7.6.19",
+        "@storybook/addon-links": "7.6.19",
+        "@storybook/angular": "7.6.19",
         "@storybook/jest": "0.2.3",
         "@storybook/testing-library": "0.2.2",
         "@types/argon2-browser": "1.18.1",
@@ -174,7 +174,7 @@
         "rimraf": "5.0.7",
         "sass": "1.74.1",
         "sass-loader": "13.3.3",
-        "storybook": "7.6.17",
+        "storybook": "7.6.19",
         "style-loader": "3.3.4",
         "tailwindcss": "3.4.3",
         "ts-jest": "29.1.2",
@@ -5764,7 +5764,8 @@
       "version": "2.1.2",
       "resolved": "https://registry.npmjs.org/@fal-works/esbuild-plugin-global-externals/-/esbuild-plugin-global-externals-2.1.2.tgz",
       "integrity": "sha512-cEee/Z+I12mZcFJshKcCqC8tuX5hG3s+d+9nZ3LabqKF1vKdF41B92pJVCBggjAGORAeOzyyDDKrZwIkLffeOQ==",
-      "dev": true
+      "dev": true,
+      "license": "MIT"
     },
     "node_modules/@figspec/components": {
       "version": "1.0.3",
@@ -8198,12 +8199,13 @@
       }
     },
     "node_modules/@storybook/addon-a11y": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/addon-a11y/-/addon-a11y-7.6.17.tgz",
-      "integrity": "sha512-UYHJAKQpJMCu4X4O/325UqozYrkhPn2VyQdwPgC+uiOKZvrtni4uRbpOspeyjC0wXH1tDbY8WZvxwvwQryYkpA==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/addon-a11y/-/addon-a11y-7.6.19.tgz",
+      "integrity": "sha512-92SOapbXukkO0RlrA0+8qa61NlCGSUFM7n5DfAA6tobIfhBAhfsEi7I9Q/0F95SCAgJoVVQdeIGKdvHjxO8DAg==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
-        "@storybook/addon-highlight": "7.6.17",
+        "@storybook/addon-highlight": "7.6.19",
         "axe-core": "^4.2.0"
       },
       "funding": {
@@ -8212,12 +8214,13 @@
       }
     },
     "node_modules/@storybook/addon-actions": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/addon-actions/-/addon-actions-7.6.17.tgz",
-      "integrity": "sha512-TBphs4v6LRfyTpFo/WINF0TkMaE3rrNog7wW5mbz6n0j8o53kDN4o9ZEcygSL5zQX43CAaghQTeDCss7ueG7ZQ==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/addon-actions/-/addon-actions-7.6.19.tgz",
+      "integrity": "sha512-ATLrA5QKFJt7tIAScRHz5T3eBQ+RG3jaZk08L7gChvyQZhei8knWwePElZ7GaWbCr9BgznQp1lQUUXq/UUblAQ==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
-        "@storybook/core-events": "7.6.17",
+        "@storybook/core-events": "7.6.19",
         "@storybook/global": "^5.0.0",
         "@types/uuid": "^9.0.1",
         "dequal": "^2.0.2",
@@ -8229,11 +8232,26 @@
         "url": "https://opencollective.com/storybook"
       }
     },
-    "node_modules/@storybook/addon-backgrounds": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/addon-backgrounds/-/addon-backgrounds-7.6.17.tgz",
-      "integrity": "sha512-7dize7x8+37PH77kmt69b0xSaeDqOcZ4fpzW6+hk53hIaCVU26eGs4+j+743Xva31eOgZWNLupUhOpUDc6SqZw==",
+    "node_modules/@storybook/addon-actions/node_modules/@storybook/core-events": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-events/-/core-events-7.6.19.tgz",
+      "integrity": "sha512-K/W6Uvum0ocZSgjbi8hiotpe+wDEHDZlvN+KlPqdh9ae9xDK8aBNBq9IelCoqM+uKO1Zj+dDfSQds7CD781DJg==",
       "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ts-dedent": "^2.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/addon-backgrounds": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/addon-backgrounds/-/addon-backgrounds-7.6.19.tgz",
+      "integrity": "sha512-Nu3LAZODRSV2e5bOroKm/Jp6BIFzwu/nJxD5OvLWkkwNCh+vDXUFbbaVrZf5xRL+fHd9iLFPtWbJQpF/w7UsCw==",
+      "dev": true,
+      "license": "MIT",
       "dependencies": {
         "@storybook/global": "^5.0.0",
         "memoizerific": "^1.11.3",
@@ -8245,12 +8263,13 @@
       }
     },
     "node_modules/@storybook/addon-controls": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/addon-controls/-/addon-controls-7.6.17.tgz",
-      "integrity": "sha512-zR0aLaUF7FtV/nMRyfniFbCls/e0DAAoXACuOAUAwNAv0lbIS8AyZZiHSmKucCvziUQ6WceeCC7+du3C+9y0rQ==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/addon-controls/-/addon-controls-7.6.19.tgz",
+      "integrity": "sha512-cl6PCNEwihDjuWIUsKTyDNKk+/IE4J3oMbSY5AZV/9Z0jJbpMV2shVm5DMZm5LhCCVcu5obWcxCIa4FMIMJAMQ==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
-        "@storybook/blocks": "7.6.17",
+        "@storybook/blocks": "7.6.19",
         "lodash": "^4.17.21",
         "ts-dedent": "^2.0.0"
       },
@@ -8287,26 +8306,27 @@
       }
     },
     "node_modules/@storybook/addon-docs": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/addon-docs/-/addon-docs-7.6.17.tgz",
-      "integrity": "sha512-FKa4Mdy7nhgvEVZJHpMkHriDzpVHbohn87zv9NCL+Ctjs1iAmzGwxEm0culszyDS1HN2ToVoY0h8CSi2RSSZqA==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/addon-docs/-/addon-docs-7.6.19.tgz",
+      "integrity": "sha512-nv+9SR/NOtM8Od2esOXHcg0NQT8Pk8BMUyGwZu5Q3MLI4JxNVEG65dY0IP2j6Knc4UtlvQTpM0f7m5xp4seHjQ==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "@jest/transform": "^29.3.1",
         "@mdx-js/react": "^2.1.5",
-        "@storybook/blocks": "7.6.17",
-        "@storybook/client-logger": "7.6.17",
-        "@storybook/components": "7.6.17",
-        "@storybook/csf-plugin": "7.6.17",
-        "@storybook/csf-tools": "7.6.17",
+        "@storybook/blocks": "7.6.19",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/components": "7.6.19",
+        "@storybook/csf-plugin": "7.6.19",
+        "@storybook/csf-tools": "7.6.19",
         "@storybook/global": "^5.0.0",
         "@storybook/mdx2-csf": "^1.0.0",
-        "@storybook/node-logger": "7.6.17",
-        "@storybook/postinstall": "7.6.17",
-        "@storybook/preview-api": "7.6.17",
-        "@storybook/react-dom-shim": "7.6.17",
-        "@storybook/theming": "7.6.17",
-        "@storybook/types": "7.6.17",
+        "@storybook/node-logger": "7.6.19",
+        "@storybook/postinstall": "7.6.19",
+        "@storybook/preview-api": "7.6.19",
+        "@storybook/react-dom-shim": "7.6.19",
+        "@storybook/theming": "7.6.19",
+        "@storybook/types": "7.6.19",
         "fs-extra": "^11.1.0",
         "remark-external-links": "^8.0.0",
         "remark-slug": "^6.0.0",
@@ -8321,25 +8341,138 @@
         "react-dom": "^16.8.0 || ^17.0.0 || ^18.0.0"
       }
     },
-    "node_modules/@storybook/addon-essentials": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/addon-essentials/-/addon-essentials-7.6.17.tgz",
-      "integrity": "sha512-qlSpamxuYfT2taF953nC9QijGF2pSbg1ewMNpdwLTj16PTZvR/d8NCDMTJujI1bDwM2m18u8Yc43ibh5LEmxCw==",
+    "node_modules/@storybook/addon-docs/node_modules/@storybook/channels": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/channels/-/channels-7.6.19.tgz",
+      "integrity": "sha512-2JGh+i95GwjtjqWqhtEh15jM5ifwbRGmXeFqkY7dpdHH50EEWafYHr2mg3opK3heVDwg0rJ/VBptkmshloXuvA==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
-        "@storybook/addon-actions": "7.6.17",
-        "@storybook/addon-backgrounds": "7.6.17",
-        "@storybook/addon-controls": "7.6.17",
-        "@storybook/addon-docs": "7.6.17",
-        "@storybook/addon-highlight": "7.6.17",
-        "@storybook/addon-measure": "7.6.17",
-        "@storybook/addon-outline": "7.6.17",
-        "@storybook/addon-toolbars": "7.6.17",
-        "@storybook/addon-viewport": "7.6.17",
-        "@storybook/core-common": "7.6.17",
-        "@storybook/manager-api": "7.6.17",
-        "@storybook/node-logger": "7.6.17",
-        "@storybook/preview-api": "7.6.17",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "qs": "^6.10.0",
+        "telejson": "^7.2.0",
+        "tiny-invariant": "^1.3.1"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/addon-docs/node_modules/@storybook/client-logger": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/client-logger/-/client-logger-7.6.19.tgz",
+      "integrity": "sha512-oGzOxbmLmciSIfd5gsxDzPmX8DttWhoYdPKxjMuCuWLTO2TWpkCWp1FTUMWO72mm/6V/FswT/aqpJJBBvdZ3RQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/global": "^5.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/addon-docs/node_modules/@storybook/core-events": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-events/-/core-events-7.6.19.tgz",
+      "integrity": "sha512-K/W6Uvum0ocZSgjbi8hiotpe+wDEHDZlvN+KlPqdh9ae9xDK8aBNBq9IelCoqM+uKO1Zj+dDfSQds7CD781DJg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ts-dedent": "^2.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/addon-docs/node_modules/@storybook/preview-api": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/preview-api/-/preview-api-7.6.19.tgz",
+      "integrity": "sha512-04hdMSQucroJT4dBjQzRd7ZwH2hij8yx2nm5qd4HYGkd1ORkvlH6GOLph4XewNJl5Um3xfzFQzBhvkqvG0WaCQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/csf": "^0.1.2",
+        "@storybook/global": "^5.0.0",
+        "@storybook/types": "7.6.19",
+        "@types/qs": "^6.9.5",
+        "dequal": "^2.0.2",
+        "lodash": "^4.17.21",
+        "memoizerific": "^1.11.3",
+        "qs": "^6.10.0",
+        "synchronous-promise": "^2.0.15",
+        "ts-dedent": "^2.0.0",
+        "util-deprecate": "^1.0.2"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/addon-docs/node_modules/@storybook/theming": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/theming/-/theming-7.6.19.tgz",
+      "integrity": "sha512-sAho13MmtA80ctOaLn8lpkQBsPyiqSdLcOPH5BWFhatQzzBQCpTAKQk+q/xGju8bNiPZ+yQBaBzbN8SfX8ceCg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@emotion/use-insertion-effect-with-fallbacks": "^1.0.0",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "memoizerific": "^1.11.3"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      },
+      "peerDependencies": {
+        "react": "^16.8.0 || ^17.0.0 || ^18.0.0",
+        "react-dom": "^16.8.0 || ^17.0.0 || ^18.0.0"
+      }
+    },
+    "node_modules/@storybook/addon-docs/node_modules/@storybook/types": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/types/-/types-7.6.19.tgz",
+      "integrity": "sha512-DeGYrRPRMGTVfT7o2rEZtRzyLT2yKTI2exgpnxbwPWEFAduZCSfzBrcBXZ/nb5B0pjA9tUNWls1YzGkJGlkhpg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@types/babel__core": "^7.0.0",
+        "@types/express": "^4.7.0",
+        "file-system-cache": "2.3.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/addon-essentials": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/addon-essentials/-/addon-essentials-7.6.19.tgz",
+      "integrity": "sha512-SC33ZEQ5YaOt9wDkrdZmwQgqPWo9om/gqnyif06eug3SwrTe9JjO5iq1PIBfQodLD9MAxr9cwBvO0NG505oszQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/addon-actions": "7.6.19",
+        "@storybook/addon-backgrounds": "7.6.19",
+        "@storybook/addon-controls": "7.6.19",
+        "@storybook/addon-docs": "7.6.19",
+        "@storybook/addon-highlight": "7.6.19",
+        "@storybook/addon-measure": "7.6.19",
+        "@storybook/addon-outline": "7.6.19",
+        "@storybook/addon-toolbars": "7.6.19",
+        "@storybook/addon-viewport": "7.6.19",
+        "@storybook/core-common": "7.6.19",
+        "@storybook/manager-api": "7.6.19",
+        "@storybook/node-logger": "7.6.19",
+        "@storybook/preview-api": "7.6.19",
         "ts-dedent": "^2.0.0"
       },
       "funding": {
@@ -8351,11 +8484,167 @@
         "react-dom": "^16.8.0 || ^17.0.0 || ^18.0.0"
       }
     },
-    "node_modules/@storybook/addon-highlight": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/addon-highlight/-/addon-highlight-7.6.17.tgz",
-      "integrity": "sha512-R1yBPUUqGn+60aJakn8q+5Zt34E/gU3n3VmgPdryP0LJUdZ5q1/RZShoVDV+yYQ40htMH6oaCv3OyyPzFAGJ6A==",
+    "node_modules/@storybook/addon-essentials/node_modules/@storybook/channels": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/channels/-/channels-7.6.19.tgz",
+      "integrity": "sha512-2JGh+i95GwjtjqWqhtEh15jM5ifwbRGmXeFqkY7dpdHH50EEWafYHr2mg3opK3heVDwg0rJ/VBptkmshloXuvA==",
       "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "qs": "^6.10.0",
+        "telejson": "^7.2.0",
+        "tiny-invariant": "^1.3.1"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/addon-essentials/node_modules/@storybook/client-logger": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/client-logger/-/client-logger-7.6.19.tgz",
+      "integrity": "sha512-oGzOxbmLmciSIfd5gsxDzPmX8DttWhoYdPKxjMuCuWLTO2TWpkCWp1FTUMWO72mm/6V/FswT/aqpJJBBvdZ3RQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/global": "^5.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/addon-essentials/node_modules/@storybook/core-events": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-events/-/core-events-7.6.19.tgz",
+      "integrity": "sha512-K/W6Uvum0ocZSgjbi8hiotpe+wDEHDZlvN+KlPqdh9ae9xDK8aBNBq9IelCoqM+uKO1Zj+dDfSQds7CD781DJg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ts-dedent": "^2.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/addon-essentials/node_modules/@storybook/manager-api": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/manager-api/-/manager-api-7.6.19.tgz",
+      "integrity": "sha512-dVCx1Q+HZEA4U08XqYljiG88BeS3I3ahnPAQLZAeWQXQRkoc9G2jMgLNPKYPIqEtq7Xrn6SRlFMIofhwWrwZpg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/csf": "^0.1.2",
+        "@storybook/global": "^5.0.0",
+        "@storybook/router": "7.6.19",
+        "@storybook/theming": "7.6.19",
+        "@storybook/types": "7.6.19",
+        "dequal": "^2.0.2",
+        "lodash": "^4.17.21",
+        "memoizerific": "^1.11.3",
+        "store2": "^2.14.2",
+        "telejson": "^7.2.0",
+        "ts-dedent": "^2.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/addon-essentials/node_modules/@storybook/preview-api": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/preview-api/-/preview-api-7.6.19.tgz",
+      "integrity": "sha512-04hdMSQucroJT4dBjQzRd7ZwH2hij8yx2nm5qd4HYGkd1ORkvlH6GOLph4XewNJl5Um3xfzFQzBhvkqvG0WaCQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/csf": "^0.1.2",
+        "@storybook/global": "^5.0.0",
+        "@storybook/types": "7.6.19",
+        "@types/qs": "^6.9.5",
+        "dequal": "^2.0.2",
+        "lodash": "^4.17.21",
+        "memoizerific": "^1.11.3",
+        "qs": "^6.10.0",
+        "synchronous-promise": "^2.0.15",
+        "ts-dedent": "^2.0.0",
+        "util-deprecate": "^1.0.2"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/addon-essentials/node_modules/@storybook/router": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/router/-/router-7.6.19.tgz",
+      "integrity": "sha512-q2/AvY8rG0znFEfbg50OIhkS5yQ6OmyzdCdztoEsDDdsbq87YPmsDj7k8Op1EkTa2T5CB8XhBOCQDtcj7gUUtg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/client-logger": "7.6.19",
+        "memoizerific": "^1.11.3",
+        "qs": "^6.10.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/addon-essentials/node_modules/@storybook/theming": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/theming/-/theming-7.6.19.tgz",
+      "integrity": "sha512-sAho13MmtA80ctOaLn8lpkQBsPyiqSdLcOPH5BWFhatQzzBQCpTAKQk+q/xGju8bNiPZ+yQBaBzbN8SfX8ceCg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@emotion/use-insertion-effect-with-fallbacks": "^1.0.0",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "memoizerific": "^1.11.3"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      },
+      "peerDependencies": {
+        "react": "^16.8.0 || ^17.0.0 || ^18.0.0",
+        "react-dom": "^16.8.0 || ^17.0.0 || ^18.0.0"
+      }
+    },
+    "node_modules/@storybook/addon-essentials/node_modules/@storybook/types": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/types/-/types-7.6.19.tgz",
+      "integrity": "sha512-DeGYrRPRMGTVfT7o2rEZtRzyLT2yKTI2exgpnxbwPWEFAduZCSfzBrcBXZ/nb5B0pjA9tUNWls1YzGkJGlkhpg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@types/babel__core": "^7.0.0",
+        "@types/express": "^4.7.0",
+        "file-system-cache": "2.3.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/addon-highlight": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/addon-highlight/-/addon-highlight-7.6.19.tgz",
+      "integrity": "sha512-/pApl0oiVU1CQ8xETRNDLDthMBjeTmvFnTRq8RJ9m0JYTrSsoyHDmj9zS4K1k9gReqijE7brslhP8d2tblBpNw==",
+      "dev": true,
+      "license": "MIT",
       "dependencies": {
         "@storybook/global": "^5.0.0"
       },
@@ -8365,13 +8654,14 @@
       }
     },
     "node_modules/@storybook/addon-interactions": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/addon-interactions/-/addon-interactions-7.6.17.tgz",
-      "integrity": "sha512-6zlX+RDQ1PlA6fp7C+hun8t7h2RXfCGs5dGrhEenp2lqnR/rYuUJRC0tmKpkZBb8kZVcbSChzkB/JYkBjBCzpQ==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/addon-interactions/-/addon-interactions-7.6.19.tgz",
+      "integrity": "sha512-lMQDu6JT2LXDWcRnIGvrKRk/W+67zOtUNpDKwoVuvM5eHVJcza5SPV6v8yXDLCHLOt7RZ15h6LT2uXabfKpcww==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "@storybook/global": "^5.0.0",
-        "@storybook/types": "7.6.17",
+        "@storybook/types": "7.6.19",
         "jest-mock": "^27.0.6",
         "polished": "^4.2.2",
         "ts-dedent": "^2.2.0"
@@ -8381,11 +8671,76 @@
         "url": "https://opencollective.com/storybook"
       }
     },
-    "node_modules/@storybook/addon-links": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/addon-links/-/addon-links-7.6.17.tgz",
-      "integrity": "sha512-iFUwKObRn0EKI0zMETsil2p9a/81rCuSMEWECsi+khkCAs1FUnD2cT6Ag5ydcNcBXsdtdfDJdtXQrkw+TSoStQ==",
+    "node_modules/@storybook/addon-interactions/node_modules/@storybook/channels": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/channels/-/channels-7.6.19.tgz",
+      "integrity": "sha512-2JGh+i95GwjtjqWqhtEh15jM5ifwbRGmXeFqkY7dpdHH50EEWafYHr2mg3opK3heVDwg0rJ/VBptkmshloXuvA==",
       "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "qs": "^6.10.0",
+        "telejson": "^7.2.0",
+        "tiny-invariant": "^1.3.1"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/addon-interactions/node_modules/@storybook/client-logger": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/client-logger/-/client-logger-7.6.19.tgz",
+      "integrity": "sha512-oGzOxbmLmciSIfd5gsxDzPmX8DttWhoYdPKxjMuCuWLTO2TWpkCWp1FTUMWO72mm/6V/FswT/aqpJJBBvdZ3RQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/global": "^5.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/addon-interactions/node_modules/@storybook/core-events": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-events/-/core-events-7.6.19.tgz",
+      "integrity": "sha512-K/W6Uvum0ocZSgjbi8hiotpe+wDEHDZlvN+KlPqdh9ae9xDK8aBNBq9IelCoqM+uKO1Zj+dDfSQds7CD781DJg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ts-dedent": "^2.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/addon-interactions/node_modules/@storybook/types": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/types/-/types-7.6.19.tgz",
+      "integrity": "sha512-DeGYrRPRMGTVfT7o2rEZtRzyLT2yKTI2exgpnxbwPWEFAduZCSfzBrcBXZ/nb5B0pjA9tUNWls1YzGkJGlkhpg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@types/babel__core": "^7.0.0",
+        "@types/express": "^4.7.0",
+        "file-system-cache": "2.3.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/addon-links": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/addon-links/-/addon-links-7.6.19.tgz",
+      "integrity": "sha512-qMIFfcsMf4olxhYUHUV2ZJhxphh6Xpf1DMd0lxKqAibfxl/sX1m0rJkyiqWSBxbCmAy/pwdgqEOJ1lpDUsJ33w==",
+      "dev": true,
+      "license": "MIT",
       "dependencies": {
         "@storybook/csf": "^0.1.2",
         "@storybook/global": "^5.0.0",
@@ -8405,10 +8760,11 @@
       }
     },
     "node_modules/@storybook/addon-measure": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/addon-measure/-/addon-measure-7.6.17.tgz",
-      "integrity": "sha512-O5vnHZNkduvZ95jf1UssbOl6ivIxzl5tv+4EpScPYId7w700bxWsJH+QX7ip6KlrCf2o3iUhmPe8bm05ghG2KA==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/addon-measure/-/addon-measure-7.6.19.tgz",
+      "integrity": "sha512-n+cfhVXXouBv9oQr3a77vvip5dTznaNoBDWMafP2ohauc8jBlAxeBwCjk5r3pyThMRIFCTG/ypZrhiJcSJT3bw==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "@storybook/global": "^5.0.0",
         "tiny-invariant": "^1.3.1"
@@ -8419,10 +8775,11 @@
       }
     },
     "node_modules/@storybook/addon-outline": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/addon-outline/-/addon-outline-7.6.17.tgz",
-      "integrity": "sha512-9o9JXDsYjNaDgz/cY5+jv694+aik/1aiRGGvsCv68e1p/ob0glkGKav4lnJe2VJqD+gCmaARoD8GOJlhoQl8JQ==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/addon-outline/-/addon-outline-7.6.19.tgz",
+      "integrity": "sha512-Tt4MrfjK5j/Mdh8nJ8ccVyh78Dy7aiEPxO31YVvr5XUkge0pDi1PX328mHRDPur0i56NM8ssVbekWBZr+9MxlA==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "@storybook/global": "^5.0.0",
         "ts-dedent": "^2.0.0"
@@ -8433,20 +8790,22 @@
       }
     },
     "node_modules/@storybook/addon-toolbars": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/addon-toolbars/-/addon-toolbars-7.6.17.tgz",
-      "integrity": "sha512-UMrchbUHiyWrh6WuGnpy34Jqzkx/63B+MSgb3CW7YsQaXz64kE0Rol0TNSznnB+mYXplcqH+ndI4r4kFsmgwDg==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/addon-toolbars/-/addon-toolbars-7.6.19.tgz",
+      "integrity": "sha512-+qGbPP2Vo/HoPiS4EJopZ127HGculCV74Hkz6ot7ob6AkYdA1yLMPzWns/ZXNIWm6ab3jV+iq+mQCM/i1qJzvA==",
       "dev": true,
+      "license": "MIT",
       "funding": {
         "type": "opencollective",
         "url": "https://opencollective.com/storybook"
       }
     },
     "node_modules/@storybook/addon-viewport": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/addon-viewport/-/addon-viewport-7.6.17.tgz",
-      "integrity": "sha512-sA0QCcf4QAMixWvn8uvRYPfkKCSl6JajJaAspoPqXSxHEpK7uwOlpg3kqFU5XJJPXD0X957M+ONgNvBzYqSpEw==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/addon-viewport/-/addon-viewport-7.6.19.tgz",
+      "integrity": "sha512-OQQtJ2kYwImbvE9QiC3I3yR0O0EBgNjq+XSaSS4ixJrvUyesfuB7Lm7RkubhEEiP4yANi9OlbzsqZelmPOnk6w==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "memoizerific": "^1.11.3"
       },
@@ -8472,24 +8831,25 @@
       }
     },
     "node_modules/@storybook/angular": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/angular/-/angular-7.6.17.tgz",
-      "integrity": "sha512-dKhY7YQrJTitdKfusxBqJHMPezq++vTwdWtKmFHveU8ALS9PJbmMUriuoBQRll9VIwS3E3Y5CyLc7524tYT+3A==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/angular/-/angular-7.6.19.tgz",
+      "integrity": "sha512-22wvG8o8dpvv1ojX3Scg2jv3qjqYTNWZ0f1E1evHfpsJAvwmtW5liJzHQUg+sjfh8NIFmPKtTGKjDF2lcCCzeA==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
-        "@storybook/builder-webpack5": "7.6.17",
-        "@storybook/cli": "7.6.17",
-        "@storybook/client-logger": "7.6.17",
-        "@storybook/core-common": "7.6.17",
-        "@storybook/core-events": "7.6.17",
-        "@storybook/core-server": "7.6.17",
-        "@storybook/core-webpack": "7.6.17",
-        "@storybook/docs-tools": "7.6.17",
+        "@storybook/builder-webpack5": "7.6.19",
+        "@storybook/cli": "7.6.19",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-common": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/core-server": "7.6.19",
+        "@storybook/core-webpack": "7.6.19",
+        "@storybook/docs-tools": "7.6.19",
         "@storybook/global": "^5.0.0",
-        "@storybook/node-logger": "7.6.17",
-        "@storybook/preview-api": "7.6.17",
-        "@storybook/telemetry": "7.6.17",
-        "@storybook/types": "7.6.17",
+        "@storybook/node-logger": "7.6.19",
+        "@storybook/preview-api": "7.6.19",
+        "@storybook/telemetry": "7.6.19",
+        "@storybook/types": "7.6.19",
         "@types/node": "^18.0.0",
         "@types/react": "^16.14.34",
         "@types/react-dom": "^16.9.14",
@@ -8534,6 +8894,97 @@
         }
       }
     },
+    "node_modules/@storybook/angular/node_modules/@storybook/channels": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/channels/-/channels-7.6.19.tgz",
+      "integrity": "sha512-2JGh+i95GwjtjqWqhtEh15jM5ifwbRGmXeFqkY7dpdHH50EEWafYHr2mg3opK3heVDwg0rJ/VBptkmshloXuvA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "qs": "^6.10.0",
+        "telejson": "^7.2.0",
+        "tiny-invariant": "^1.3.1"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/angular/node_modules/@storybook/client-logger": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/client-logger/-/client-logger-7.6.19.tgz",
+      "integrity": "sha512-oGzOxbmLmciSIfd5gsxDzPmX8DttWhoYdPKxjMuCuWLTO2TWpkCWp1FTUMWO72mm/6V/FswT/aqpJJBBvdZ3RQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/global": "^5.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/angular/node_modules/@storybook/core-events": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-events/-/core-events-7.6.19.tgz",
+      "integrity": "sha512-K/W6Uvum0ocZSgjbi8hiotpe+wDEHDZlvN+KlPqdh9ae9xDK8aBNBq9IelCoqM+uKO1Zj+dDfSQds7CD781DJg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ts-dedent": "^2.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/angular/node_modules/@storybook/preview-api": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/preview-api/-/preview-api-7.6.19.tgz",
+      "integrity": "sha512-04hdMSQucroJT4dBjQzRd7ZwH2hij8yx2nm5qd4HYGkd1ORkvlH6GOLph4XewNJl5Um3xfzFQzBhvkqvG0WaCQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/csf": "^0.1.2",
+        "@storybook/global": "^5.0.0",
+        "@storybook/types": "7.6.19",
+        "@types/qs": "^6.9.5",
+        "dequal": "^2.0.2",
+        "lodash": "^4.17.21",
+        "memoizerific": "^1.11.3",
+        "qs": "^6.10.0",
+        "synchronous-promise": "^2.0.15",
+        "ts-dedent": "^2.0.0",
+        "util-deprecate": "^1.0.2"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/angular/node_modules/@storybook/types": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/types/-/types-7.6.19.tgz",
+      "integrity": "sha512-DeGYrRPRMGTVfT7o2rEZtRzyLT2yKTI2exgpnxbwPWEFAduZCSfzBrcBXZ/nb5B0pjA9tUNWls1YzGkJGlkhpg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@types/babel__core": "^7.0.0",
+        "@types/express": "^4.7.0",
+        "file-system-cache": "2.3.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
     "node_modules/@storybook/angular/node_modules/@types/node": {
       "version": "18.19.34",
       "resolved": "https://registry.npmjs.org/@types/node/-/node-18.19.34.tgz",
@@ -8545,22 +8996,23 @@
       }
     },
     "node_modules/@storybook/blocks": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/blocks/-/blocks-7.6.17.tgz",
-      "integrity": "sha512-PsNVoe0bX1mMn4Kk3nbKZ0ItDZZ0YJnYAFJ6toAbsyBAbgzg1sce88sQinzvbn58/RT9MPKeWMPB45ZS7ggiNg==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/blocks/-/blocks-7.6.19.tgz",
+      "integrity": "sha512-/c/bVQRmyRPoviJhPrFdLfubRcrnZWTwkjxsCvrOTJ/UDOyEl0t/H8yY1mGq7KWWTdbIznnZWhAIofHnH4/Esw==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
-        "@storybook/channels": "7.6.17",
-        "@storybook/client-logger": "7.6.17",
-        "@storybook/components": "7.6.17",
-        "@storybook/core-events": "7.6.17",
+        "@storybook/channels": "7.6.19",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/components": "7.6.19",
+        "@storybook/core-events": "7.6.19",
         "@storybook/csf": "^0.1.2",
-        "@storybook/docs-tools": "7.6.17",
+        "@storybook/docs-tools": "7.6.19",
         "@storybook/global": "^5.0.0",
-        "@storybook/manager-api": "7.6.17",
-        "@storybook/preview-api": "7.6.17",
-        "@storybook/theming": "7.6.17",
-        "@storybook/types": "7.6.17",
+        "@storybook/manager-api": "7.6.19",
+        "@storybook/preview-api": "7.6.19",
+        "@storybook/theming": "7.6.19",
+        "@storybook/types": "7.6.19",
         "@types/lodash": "^4.14.167",
         "color-convert": "^2.0.1",
         "dequal": "^2.0.2",
@@ -8583,16 +9035,172 @@
         "react-dom": "^16.8.0 || ^17.0.0 || ^18.0.0"
       }
     },
-    "node_modules/@storybook/builder-manager": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/builder-manager/-/builder-manager-7.6.17.tgz",
-      "integrity": "sha512-Sj8hcDYiPCCMfeLzus37czl0zdrAxAz4IyYam2jBjVymrIrcDAFyL1OCZvnq33ft179QYQWhUs9qwzVmlR/ZWg==",
+    "node_modules/@storybook/blocks/node_modules/@storybook/channels": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/channels/-/channels-7.6.19.tgz",
+      "integrity": "sha512-2JGh+i95GwjtjqWqhtEh15jM5ifwbRGmXeFqkY7dpdHH50EEWafYHr2mg3opK3heVDwg0rJ/VBptkmshloXuvA==",
       "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "qs": "^6.10.0",
+        "telejson": "^7.2.0",
+        "tiny-invariant": "^1.3.1"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/blocks/node_modules/@storybook/client-logger": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/client-logger/-/client-logger-7.6.19.tgz",
+      "integrity": "sha512-oGzOxbmLmciSIfd5gsxDzPmX8DttWhoYdPKxjMuCuWLTO2TWpkCWp1FTUMWO72mm/6V/FswT/aqpJJBBvdZ3RQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/global": "^5.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/blocks/node_modules/@storybook/core-events": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-events/-/core-events-7.6.19.tgz",
+      "integrity": "sha512-K/W6Uvum0ocZSgjbi8hiotpe+wDEHDZlvN+KlPqdh9ae9xDK8aBNBq9IelCoqM+uKO1Zj+dDfSQds7CD781DJg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ts-dedent": "^2.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/blocks/node_modules/@storybook/manager-api": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/manager-api/-/manager-api-7.6.19.tgz",
+      "integrity": "sha512-dVCx1Q+HZEA4U08XqYljiG88BeS3I3ahnPAQLZAeWQXQRkoc9G2jMgLNPKYPIqEtq7Xrn6SRlFMIofhwWrwZpg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/csf": "^0.1.2",
+        "@storybook/global": "^5.0.0",
+        "@storybook/router": "7.6.19",
+        "@storybook/theming": "7.6.19",
+        "@storybook/types": "7.6.19",
+        "dequal": "^2.0.2",
+        "lodash": "^4.17.21",
+        "memoizerific": "^1.11.3",
+        "store2": "^2.14.2",
+        "telejson": "^7.2.0",
+        "ts-dedent": "^2.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/blocks/node_modules/@storybook/preview-api": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/preview-api/-/preview-api-7.6.19.tgz",
+      "integrity": "sha512-04hdMSQucroJT4dBjQzRd7ZwH2hij8yx2nm5qd4HYGkd1ORkvlH6GOLph4XewNJl5Um3xfzFQzBhvkqvG0WaCQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/csf": "^0.1.2",
+        "@storybook/global": "^5.0.0",
+        "@storybook/types": "7.6.19",
+        "@types/qs": "^6.9.5",
+        "dequal": "^2.0.2",
+        "lodash": "^4.17.21",
+        "memoizerific": "^1.11.3",
+        "qs": "^6.10.0",
+        "synchronous-promise": "^2.0.15",
+        "ts-dedent": "^2.0.0",
+        "util-deprecate": "^1.0.2"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/blocks/node_modules/@storybook/router": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/router/-/router-7.6.19.tgz",
+      "integrity": "sha512-q2/AvY8rG0znFEfbg50OIhkS5yQ6OmyzdCdztoEsDDdsbq87YPmsDj7k8Op1EkTa2T5CB8XhBOCQDtcj7gUUtg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/client-logger": "7.6.19",
+        "memoizerific": "^1.11.3",
+        "qs": "^6.10.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/blocks/node_modules/@storybook/theming": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/theming/-/theming-7.6.19.tgz",
+      "integrity": "sha512-sAho13MmtA80ctOaLn8lpkQBsPyiqSdLcOPH5BWFhatQzzBQCpTAKQk+q/xGju8bNiPZ+yQBaBzbN8SfX8ceCg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@emotion/use-insertion-effect-with-fallbacks": "^1.0.0",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "memoizerific": "^1.11.3"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      },
+      "peerDependencies": {
+        "react": "^16.8.0 || ^17.0.0 || ^18.0.0",
+        "react-dom": "^16.8.0 || ^17.0.0 || ^18.0.0"
+      }
+    },
+    "node_modules/@storybook/blocks/node_modules/@storybook/types": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/types/-/types-7.6.19.tgz",
+      "integrity": "sha512-DeGYrRPRMGTVfT7o2rEZtRzyLT2yKTI2exgpnxbwPWEFAduZCSfzBrcBXZ/nb5B0pjA9tUNWls1YzGkJGlkhpg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@types/babel__core": "^7.0.0",
+        "@types/express": "^4.7.0",
+        "file-system-cache": "2.3.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/builder-manager": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/builder-manager/-/builder-manager-7.6.19.tgz",
+      "integrity": "sha512-Dt5OLh97xeWh4h2mk9uG0SbCxBKHPhIiHLHAKEIDzIZBdwUhuyncVNDPHW2NlXM+S7U0/iKs2tw05waqh2lHvg==",
+      "dev": true,
+      "license": "MIT",
       "dependencies": {
         "@fal-works/esbuild-plugin-global-externals": "^2.1.2",
-        "@storybook/core-common": "7.6.17",
-        "@storybook/manager": "7.6.17",
-        "@storybook/node-logger": "7.6.17",
+        "@storybook/core-common": "7.6.19",
+        "@storybook/manager": "7.6.19",
+        "@storybook/node-logger": "7.6.19",
         "@types/ejs": "^3.1.1",
         "@types/find-cache-dir": "^3.2.1",
         "@yarnpkg/esbuild-plugin-pnp": "^3.0.0-rc.10",
@@ -8612,20 +9220,21 @@
       }
     },
     "node_modules/@storybook/builder-webpack5": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/builder-webpack5/-/builder-webpack5-7.6.17.tgz",
-      "integrity": "sha512-GMaBd8/RzivuAmWrYSt9Rga3j8WLcu5LCMYiPVs+XKXsKAC8lTkV0WRWh8Nk6wTmfzsRQ2acwFjSG5oE4ClZKA==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/builder-webpack5/-/builder-webpack5-7.6.19.tgz",
+      "integrity": "sha512-PeP66orYG0tWoWeOGNcCDKtk/kpDBFfosViCkd0Pxb6c2MtvjOuHSGWGB/9AI3hjodsoe5p9xo/SqGf7lDzpoA==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "@babel/core": "^7.23.2",
-        "@storybook/channels": "7.6.17",
-        "@storybook/client-logger": "7.6.17",
-        "@storybook/core-common": "7.6.17",
-        "@storybook/core-events": "7.6.17",
-        "@storybook/core-webpack": "7.6.17",
-        "@storybook/node-logger": "7.6.17",
-        "@storybook/preview": "7.6.17",
-        "@storybook/preview-api": "7.6.17",
+        "@storybook/channels": "7.6.19",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-common": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/core-webpack": "7.6.19",
+        "@storybook/node-logger": "7.6.19",
+        "@storybook/preview": "7.6.19",
+        "@storybook/preview-api": "7.6.19",
         "@swc/core": "^1.3.82",
         "@types/node": "^18.0.0",
         "@types/semver": "^7.3.4",
@@ -8666,6 +9275,97 @@
         }
       }
     },
+    "node_modules/@storybook/builder-webpack5/node_modules/@storybook/channels": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/channels/-/channels-7.6.19.tgz",
+      "integrity": "sha512-2JGh+i95GwjtjqWqhtEh15jM5ifwbRGmXeFqkY7dpdHH50EEWafYHr2mg3opK3heVDwg0rJ/VBptkmshloXuvA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "qs": "^6.10.0",
+        "telejson": "^7.2.0",
+        "tiny-invariant": "^1.3.1"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/builder-webpack5/node_modules/@storybook/client-logger": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/client-logger/-/client-logger-7.6.19.tgz",
+      "integrity": "sha512-oGzOxbmLmciSIfd5gsxDzPmX8DttWhoYdPKxjMuCuWLTO2TWpkCWp1FTUMWO72mm/6V/FswT/aqpJJBBvdZ3RQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/global": "^5.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/builder-webpack5/node_modules/@storybook/core-events": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-events/-/core-events-7.6.19.tgz",
+      "integrity": "sha512-K/W6Uvum0ocZSgjbi8hiotpe+wDEHDZlvN+KlPqdh9ae9xDK8aBNBq9IelCoqM+uKO1Zj+dDfSQds7CD781DJg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ts-dedent": "^2.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/builder-webpack5/node_modules/@storybook/preview-api": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/preview-api/-/preview-api-7.6.19.tgz",
+      "integrity": "sha512-04hdMSQucroJT4dBjQzRd7ZwH2hij8yx2nm5qd4HYGkd1ORkvlH6GOLph4XewNJl5Um3xfzFQzBhvkqvG0WaCQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/csf": "^0.1.2",
+        "@storybook/global": "^5.0.0",
+        "@storybook/types": "7.6.19",
+        "@types/qs": "^6.9.5",
+        "dequal": "^2.0.2",
+        "lodash": "^4.17.21",
+        "memoizerific": "^1.11.3",
+        "qs": "^6.10.0",
+        "synchronous-promise": "^2.0.15",
+        "ts-dedent": "^2.0.0",
+        "util-deprecate": "^1.0.2"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/builder-webpack5/node_modules/@storybook/types": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/types/-/types-7.6.19.tgz",
+      "integrity": "sha512-DeGYrRPRMGTVfT7o2rEZtRzyLT2yKTI2exgpnxbwPWEFAduZCSfzBrcBXZ/nb5B0pjA9tUNWls1YzGkJGlkhpg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@types/babel__core": "^7.0.0",
+        "@types/express": "^4.7.0",
+        "file-system-cache": "2.3.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
     "node_modules/@storybook/builder-webpack5/node_modules/@types/node": {
       "version": "18.19.34",
       "resolved": "https://registry.npmjs.org/@types/node/-/node-18.19.34.tgz",
@@ -8693,6 +9393,7 @@
       "resolved": "https://registry.npmjs.org/@storybook/channels/-/channels-7.6.17.tgz",
       "integrity": "sha512-GFG40pzaSxk1hUr/J/TMqW5AFDDPUSu+HkeE/oqSWJbOodBOLJzHN6CReJS6y1DjYSZLNFt1jftPWZZInG/XUA==",
       "dev": true,
+      "peer": true,
       "dependencies": {
         "@storybook/client-logger": "7.6.17",
         "@storybook/core-events": "7.6.17",
@@ -8707,23 +9408,24 @@
       }
     },
     "node_modules/@storybook/cli": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/cli/-/cli-7.6.17.tgz",
-      "integrity": "sha512-1sCo+nCqyR+nKfTcEidVu8XzNoECC7Y1l+uW38/r7s2f/TdDorXaIGAVrpjbSaXSoQpx5DxYJVaKCcQuOgqwcA==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/cli/-/cli-7.6.19.tgz",
+      "integrity": "sha512-7OVy7nPgkLfgivv6/dmvoyU6pKl9EzWFk+g9izyQHiM/jS8jOiEyn6akG8Ebj6k5pWslo5lgiXUSW+cEEZUnqQ==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "@babel/core": "^7.23.2",
         "@babel/preset-env": "^7.23.2",
         "@babel/types": "^7.23.0",
         "@ndelangen/get-tarball": "^3.0.7",
-        "@storybook/codemod": "7.6.17",
-        "@storybook/core-common": "7.6.17",
-        "@storybook/core-events": "7.6.17",
-        "@storybook/core-server": "7.6.17",
-        "@storybook/csf-tools": "7.6.17",
-        "@storybook/node-logger": "7.6.17",
-        "@storybook/telemetry": "7.6.17",
-        "@storybook/types": "7.6.17",
+        "@storybook/codemod": "7.6.19",
+        "@storybook/core-common": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/core-server": "7.6.19",
+        "@storybook/csf-tools": "7.6.19",
+        "@storybook/node-logger": "7.6.19",
+        "@storybook/telemetry": "7.6.19",
+        "@storybook/types": "7.6.19",
         "@types/semver": "^7.3.4",
         "@yarnpkg/fslib": "2.10.3",
         "@yarnpkg/libzip": "2.3.0",
@@ -8762,6 +9464,70 @@
         "url": "https://opencollective.com/storybook"
       }
     },
+    "node_modules/@storybook/cli/node_modules/@storybook/channels": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/channels/-/channels-7.6.19.tgz",
+      "integrity": "sha512-2JGh+i95GwjtjqWqhtEh15jM5ifwbRGmXeFqkY7dpdHH50EEWafYHr2mg3opK3heVDwg0rJ/VBptkmshloXuvA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "qs": "^6.10.0",
+        "telejson": "^7.2.0",
+        "tiny-invariant": "^1.3.1"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/cli/node_modules/@storybook/client-logger": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/client-logger/-/client-logger-7.6.19.tgz",
+      "integrity": "sha512-oGzOxbmLmciSIfd5gsxDzPmX8DttWhoYdPKxjMuCuWLTO2TWpkCWp1FTUMWO72mm/6V/FswT/aqpJJBBvdZ3RQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/global": "^5.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/cli/node_modules/@storybook/core-events": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-events/-/core-events-7.6.19.tgz",
+      "integrity": "sha512-K/W6Uvum0ocZSgjbi8hiotpe+wDEHDZlvN+KlPqdh9ae9xDK8aBNBq9IelCoqM+uKO1Zj+dDfSQds7CD781DJg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ts-dedent": "^2.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/cli/node_modules/@storybook/types": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/types/-/types-7.6.19.tgz",
+      "integrity": "sha512-DeGYrRPRMGTVfT7o2rEZtRzyLT2yKTI2exgpnxbwPWEFAduZCSfzBrcBXZ/nb5B0pjA9tUNWls1YzGkJGlkhpg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@types/babel__core": "^7.0.0",
+        "@types/express": "^4.7.0",
+        "file-system-cache": "2.3.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
     "node_modules/@storybook/cli/node_modules/commander": {
       "version": "6.2.1",
       "resolved": "https://registry.npmjs.org/commander/-/commander-6.2.1.tgz",
@@ -8791,6 +9557,7 @@
       "resolved": "https://registry.npmjs.org/@storybook/client-logger/-/client-logger-7.6.17.tgz",
       "integrity": "sha512-6WBYqixAXNAXlSaBWwgljWpAu10tPRBJrcFvx2gPUne58EeMM20Gi/iHYBz2kMCY+JLAgeIH7ZxInqwO8vDwiQ==",
       "dev": true,
+      "peer": true,
       "dependencies": {
         "@storybook/global": "^5.0.0"
       },
@@ -8800,18 +9567,19 @@
       }
     },
     "node_modules/@storybook/codemod": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/codemod/-/codemod-7.6.17.tgz",
-      "integrity": "sha512-JuTmf2u3C4fCnjO7o3dqRgrq3ozNYfWlrRP8xuIdvT7niMap7a396hJtSKqS10FxCgKFcMAOsRgrCalH1dWxUg==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/codemod/-/codemod-7.6.19.tgz",
+      "integrity": "sha512-bmHE0iEEgWZ65dXCmasd+GreChjPiWkXu2FEa0cJmNz/PqY12GsXGls4ke1TkNTj4gdSZnbtJxbclPZZnib2tQ==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "@babel/core": "^7.23.2",
         "@babel/preset-env": "^7.23.2",
         "@babel/types": "^7.23.0",
         "@storybook/csf": "^0.1.2",
-        "@storybook/csf-tools": "7.6.17",
-        "@storybook/node-logger": "7.6.17",
-        "@storybook/types": "7.6.17",
+        "@storybook/csf-tools": "7.6.19",
+        "@storybook/node-logger": "7.6.19",
+        "@storybook/types": "7.6.19",
         "@types/cross-spawn": "^6.0.2",
         "cross-spawn": "^7.0.3",
         "globby": "^11.0.2",
@@ -8825,140 +9593,68 @@
         "url": "https://opencollective.com/storybook"
       }
     },
-    "node_modules/@storybook/codemod/node_modules/@babel/plugin-transform-async-to-generator": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/plugin-transform-async-to-generator/-/plugin-transform-async-to-generator-7.24.1.tgz",
-      "integrity": "sha512-AawPptitRXp1y0n4ilKcGbRYWfbbzFWz2NqNu7dacYDtFtz0CMjG64b3LQsb3KIgnf4/obcUL78hfaOS7iCUfw==",
+    "node_modules/@storybook/codemod/node_modules/@storybook/channels": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/channels/-/channels-7.6.19.tgz",
+      "integrity": "sha512-2JGh+i95GwjtjqWqhtEh15jM5ifwbRGmXeFqkY7dpdHH50EEWafYHr2mg3opK3heVDwg0rJ/VBptkmshloXuvA==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
-        "@babel/helper-module-imports": "^7.24.1",
-        "@babel/helper-plugin-utils": "^7.24.0",
-        "@babel/helper-remap-async-to-generator": "^7.22.20"
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "qs": "^6.10.0",
+        "telejson": "^7.2.0",
+        "tiny-invariant": "^1.3.1"
       },
-      "engines": {
-        "node": ">=6.9.0"
-      },
-      "peerDependencies": {
-        "@babel/core": "^7.0.0-0"
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
       }
     },
-    "node_modules/@storybook/codemod/node_modules/@babel/preset-env": {
-      "version": "7.24.3",
-      "resolved": "https://registry.npmjs.org/@babel/preset-env/-/preset-env-7.24.3.tgz",
-      "integrity": "sha512-fSk430k5c2ff8536JcPvPWK4tZDwehWLGlBp0wrsBUjZVdeQV6lePbwKWZaZfK2vnh/1kQX1PzAJWsnBmVgGJA==",
+    "node_modules/@storybook/codemod/node_modules/@storybook/client-logger": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/client-logger/-/client-logger-7.6.19.tgz",
+      "integrity": "sha512-oGzOxbmLmciSIfd5gsxDzPmX8DttWhoYdPKxjMuCuWLTO2TWpkCWp1FTUMWO72mm/6V/FswT/aqpJJBBvdZ3RQ==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
-        "@babel/compat-data": "^7.24.1",
-        "@babel/helper-compilation-targets": "^7.23.6",
-        "@babel/helper-plugin-utils": "^7.24.0",
-        "@babel/helper-validator-option": "^7.23.5",
-        "@babel/plugin-bugfix-safari-id-destructuring-collision-in-function-expression": "^7.24.1",
-        "@babel/plugin-bugfix-v8-spread-parameters-in-optional-chaining": "^7.24.1",
-        "@babel/plugin-bugfix-v8-static-class-fields-redefine-readonly": "^7.24.1",
-        "@babel/plugin-proposal-private-property-in-object": "7.21.0-placeholder-for-preset-env.2",
-        "@babel/plugin-syntax-async-generators": "^7.8.4",
-        "@babel/plugin-syntax-class-properties": "^7.12.13",
-        "@babel/plugin-syntax-class-static-block": "^7.14.5",
-        "@babel/plugin-syntax-dynamic-import": "^7.8.3",
-        "@babel/plugin-syntax-export-namespace-from": "^7.8.3",
-        "@babel/plugin-syntax-import-assertions": "^7.24.1",
-        "@babel/plugin-syntax-import-attributes": "^7.24.1",
-        "@babel/plugin-syntax-import-meta": "^7.10.4",
-        "@babel/plugin-syntax-json-strings": "^7.8.3",
-        "@babel/plugin-syntax-logical-assignment-operators": "^7.10.4",
-        "@babel/plugin-syntax-nullish-coalescing-operator": "^7.8.3",
-        "@babel/plugin-syntax-numeric-separator": "^7.10.4",
-        "@babel/plugin-syntax-object-rest-spread": "^7.8.3",
-        "@babel/plugin-syntax-optional-catch-binding": "^7.8.3",
-        "@babel/plugin-syntax-optional-chaining": "^7.8.3",
-        "@babel/plugin-syntax-private-property-in-object": "^7.14.5",
-        "@babel/plugin-syntax-top-level-await": "^7.14.5",
-        "@babel/plugin-syntax-unicode-sets-regex": "^7.18.6",
-        "@babel/plugin-transform-arrow-functions": "^7.24.1",
-        "@babel/plugin-transform-async-generator-functions": "^7.24.3",
-        "@babel/plugin-transform-async-to-generator": "^7.24.1",
-        "@babel/plugin-transform-block-scoped-functions": "^7.24.1",
-        "@babel/plugin-transform-block-scoping": "^7.24.1",
-        "@babel/plugin-transform-class-properties": "^7.24.1",
-        "@babel/plugin-transform-class-static-block": "^7.24.1",
-        "@babel/plugin-transform-classes": "^7.24.1",
-        "@babel/plugin-transform-computed-properties": "^7.24.1",
-        "@babel/plugin-transform-destructuring": "^7.24.1",
-        "@babel/plugin-transform-dotall-regex": "^7.24.1",
-        "@babel/plugin-transform-duplicate-keys": "^7.24.1",
-        "@babel/plugin-transform-dynamic-import": "^7.24.1",
-        "@babel/plugin-transform-exponentiation-operator": "^7.24.1",
-        "@babel/plugin-transform-export-namespace-from": "^7.24.1",
-        "@babel/plugin-transform-for-of": "^7.24.1",
-        "@babel/plugin-transform-function-name": "^7.24.1",
-        "@babel/plugin-transform-json-strings": "^7.24.1",
-        "@babel/plugin-transform-literals": "^7.24.1",
-        "@babel/plugin-transform-logical-assignment-operators": "^7.24.1",
-        "@babel/plugin-transform-member-expression-literals": "^7.24.1",
-        "@babel/plugin-transform-modules-amd": "^7.24.1",
-        "@babel/plugin-transform-modules-commonjs": "^7.24.1",
-        "@babel/plugin-transform-modules-systemjs": "^7.24.1",
-        "@babel/plugin-transform-modules-umd": "^7.24.1",
-        "@babel/plugin-transform-named-capturing-groups-regex": "^7.22.5",
-        "@babel/plugin-transform-new-target": "^7.24.1",
-        "@babel/plugin-transform-nullish-coalescing-operator": "^7.24.1",
-        "@babel/plugin-transform-numeric-separator": "^7.24.1",
-        "@babel/plugin-transform-object-rest-spread": "^7.24.1",
-        "@babel/plugin-transform-object-super": "^7.24.1",
-        "@babel/plugin-transform-optional-catch-binding": "^7.24.1",
-        "@babel/plugin-transform-optional-chaining": "^7.24.1",
-        "@babel/plugin-transform-parameters": "^7.24.1",
-        "@babel/plugin-transform-private-methods": "^7.24.1",
-        "@babel/plugin-transform-private-property-in-object": "^7.24.1",
-        "@babel/plugin-transform-property-literals": "^7.24.1",
-        "@babel/plugin-transform-regenerator": "^7.24.1",
-        "@babel/plugin-transform-reserved-words": "^7.24.1",
-        "@babel/plugin-transform-shorthand-properties": "^7.24.1",
-        "@babel/plugin-transform-spread": "^7.24.1",
-        "@babel/plugin-transform-sticky-regex": "^7.24.1",
-        "@babel/plugin-transform-template-literals": "^7.24.1",
-        "@babel/plugin-transform-typeof-symbol": "^7.24.1",
-        "@babel/plugin-transform-unicode-escapes": "^7.24.1",
-        "@babel/plugin-transform-unicode-property-regex": "^7.24.1",
-        "@babel/plugin-transform-unicode-regex": "^7.24.1",
-        "@babel/plugin-transform-unicode-sets-regex": "^7.24.1",
-        "@babel/preset-modules": "0.1.6-no-external-plugins",
-        "babel-plugin-polyfill-corejs2": "^0.4.10",
-        "babel-plugin-polyfill-corejs3": "^0.10.4",
-        "babel-plugin-polyfill-regenerator": "^0.6.1",
-        "core-js-compat": "^3.31.0",
-        "semver": "^6.3.1"
+        "@storybook/global": "^5.0.0"
       },
-      "engines": {
-        "node": ">=6.9.0"
-      },
-      "peerDependencies": {
-        "@babel/core": "^7.0.0-0"
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
       }
     },
-    "node_modules/@storybook/codemod/node_modules/babel-plugin-polyfill-corejs3": {
-      "version": "0.10.4",
-      "resolved": "https://registry.npmjs.org/babel-plugin-polyfill-corejs3/-/babel-plugin-polyfill-corejs3-0.10.4.tgz",
-      "integrity": "sha512-25J6I8NGfa5YkCDogHRID3fVCadIR8/pGl1/spvCkzb6lVn6SR3ojpx9nOn9iEBcUsjY24AmdKm5khcfKdylcg==",
+    "node_modules/@storybook/codemod/node_modules/@storybook/core-events": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-events/-/core-events-7.6.19.tgz",
+      "integrity": "sha512-K/W6Uvum0ocZSgjbi8hiotpe+wDEHDZlvN+KlPqdh9ae9xDK8aBNBq9IelCoqM+uKO1Zj+dDfSQds7CD781DJg==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
-        "@babel/helper-define-polyfill-provider": "^0.6.1",
-        "core-js-compat": "^3.36.1"
+        "ts-dedent": "^2.0.0"
       },
-      "peerDependencies": {
-        "@babel/core": "^7.4.0 || ^8.0.0-0 <8.0.0"
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
       }
     },
-    "node_modules/@storybook/codemod/node_modules/babel-plugin-polyfill-regenerator": {
-      "version": "0.6.1",
-      "resolved": "https://registry.npmjs.org/babel-plugin-polyfill-regenerator/-/babel-plugin-polyfill-regenerator-0.6.1.tgz",
-      "integrity": "sha512-JfTApdE++cgcTWjsiCQlLyFBMbTUft9ja17saCc93lgV33h4tuCVj7tlvu//qpLwaG+3yEz7/KhahGrUMkVq9g==",
+    "node_modules/@storybook/codemod/node_modules/@storybook/types": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/types/-/types-7.6.19.tgz",
+      "integrity": "sha512-DeGYrRPRMGTVfT7o2rEZtRzyLT2yKTI2exgpnxbwPWEFAduZCSfzBrcBXZ/nb5B0pjA9tUNWls1YzGkJGlkhpg==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
-        "@babel/helper-define-polyfill-provider": "^0.6.1"
+        "@storybook/channels": "7.6.19",
+        "@types/babel__core": "^7.0.0",
+        "@types/express": "^4.7.0",
+        "file-system-cache": "2.3.0"
       },
-      "peerDependencies": {
-        "@babel/core": "^7.4.0 || ^8.0.0-0 <8.0.0"
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
       }
     },
     "node_modules/@storybook/codemod/node_modules/prettier": {
@@ -8966,6 +9662,7 @@
       "resolved": "https://registry.npmjs.org/prettier/-/prettier-2.8.8.tgz",
       "integrity": "sha512-tdN8qQGvNjw4CHbY+XXk0JgCXn9QiF21a55rBe5LJAU+kDyC4WQn4+awm2Xfk2lQMk5fKup9XgzTZtGkjBdP9Q==",
       "dev": true,
+      "license": "MIT",
       "bin": {
         "prettier": "bin-prettier.js"
       },
@@ -8976,28 +9673,20 @@
         "url": "https://github.com/prettier/prettier?sponsor=1"
       }
     },
-    "node_modules/@storybook/codemod/node_modules/semver": {
-      "version": "6.3.1",
-      "resolved": "https://registry.npmjs.org/semver/-/semver-6.3.1.tgz",
-      "integrity": "sha512-BR7VvDCVHO+q2xBEWskxS6DJE1qRnb7DxzUrogb71CWoSficBxYsiAGd+Kl0mmq/MprG9yArRkyrQxTO6XjMzA==",
-      "dev": true,
-      "bin": {
-        "semver": "bin/semver.js"
-      }
-    },
     "node_modules/@storybook/components": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/components/-/components-7.6.17.tgz",
-      "integrity": "sha512-lbh7GynMidA+CZcJnstVku6Nhs+YkqjYaZ+mKPugvlVhGVWv0DaaeQFVuZ8cJtUGJ/5FFU4Y+n+gylYUHkGBMA==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/components/-/components-7.6.19.tgz",
+      "integrity": "sha512-8Zw/RQ4crzKkUR7ojxvRIj8vktKiBBO8Nq93qv4JfDqDWrcR7cro0hOlZgmZmrzbFunBBt6WlsNNO6nVP7R4Xw==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "@radix-ui/react-select": "^1.2.2",
         "@radix-ui/react-toolbar": "^1.0.4",
-        "@storybook/client-logger": "7.6.17",
+        "@storybook/client-logger": "7.6.19",
         "@storybook/csf": "^0.1.2",
         "@storybook/global": "^5.0.0",
-        "@storybook/theming": "7.6.17",
-        "@storybook/types": "7.6.17",
+        "@storybook/theming": "7.6.19",
+        "@storybook/types": "7.6.19",
         "memoizerific": "^1.11.3",
         "use-resize-observer": "^9.1.0",
         "util-deprecate": "^1.0.2"
@@ -9011,15 +9700,101 @@
         "react-dom": "^16.8.0 || ^17.0.0 || ^18.0.0"
       }
     },
-    "node_modules/@storybook/core-common": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/core-common/-/core-common-7.6.17.tgz",
-      "integrity": "sha512-me2TP3Q9/qzqCLoDHUSsUF+VS1MHxfHbTVF6vAz0D/COTxzsxLpu9TxTbzJoBCxse6XRb6wWI1RgF1mIcjic7g==",
+    "node_modules/@storybook/components/node_modules/@storybook/channels": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/channels/-/channels-7.6.19.tgz",
+      "integrity": "sha512-2JGh+i95GwjtjqWqhtEh15jM5ifwbRGmXeFqkY7dpdHH50EEWafYHr2mg3opK3heVDwg0rJ/VBptkmshloXuvA==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
-        "@storybook/core-events": "7.6.17",
-        "@storybook/node-logger": "7.6.17",
-        "@storybook/types": "7.6.17",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "qs": "^6.10.0",
+        "telejson": "^7.2.0",
+        "tiny-invariant": "^1.3.1"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/components/node_modules/@storybook/client-logger": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/client-logger/-/client-logger-7.6.19.tgz",
+      "integrity": "sha512-oGzOxbmLmciSIfd5gsxDzPmX8DttWhoYdPKxjMuCuWLTO2TWpkCWp1FTUMWO72mm/6V/FswT/aqpJJBBvdZ3RQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/global": "^5.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/components/node_modules/@storybook/core-events": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-events/-/core-events-7.6.19.tgz",
+      "integrity": "sha512-K/W6Uvum0ocZSgjbi8hiotpe+wDEHDZlvN+KlPqdh9ae9xDK8aBNBq9IelCoqM+uKO1Zj+dDfSQds7CD781DJg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ts-dedent": "^2.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/components/node_modules/@storybook/theming": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/theming/-/theming-7.6.19.tgz",
+      "integrity": "sha512-sAho13MmtA80ctOaLn8lpkQBsPyiqSdLcOPH5BWFhatQzzBQCpTAKQk+q/xGju8bNiPZ+yQBaBzbN8SfX8ceCg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@emotion/use-insertion-effect-with-fallbacks": "^1.0.0",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "memoizerific": "^1.11.3"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      },
+      "peerDependencies": {
+        "react": "^16.8.0 || ^17.0.0 || ^18.0.0",
+        "react-dom": "^16.8.0 || ^17.0.0 || ^18.0.0"
+      }
+    },
+    "node_modules/@storybook/components/node_modules/@storybook/types": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/types/-/types-7.6.19.tgz",
+      "integrity": "sha512-DeGYrRPRMGTVfT7o2rEZtRzyLT2yKTI2exgpnxbwPWEFAduZCSfzBrcBXZ/nb5B0pjA9tUNWls1YzGkJGlkhpg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@types/babel__core": "^7.0.0",
+        "@types/express": "^4.7.0",
+        "file-system-cache": "2.3.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/core-common": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-common/-/core-common-7.6.19.tgz",
+      "integrity": "sha512-njwpGzFJrfbJr/AFxGP8KMrfPfxN85KOfSlxYnQwRm5Z0H1D/lT33LhEBf5m37gaGawHeG7KryxO6RvaioMt2Q==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/core-events": "7.6.19",
+        "@storybook/node-logger": "7.6.19",
+        "@storybook/types": "7.6.19",
         "@types/find-cache-dir": "^3.2.1",
         "@types/node": "^18.0.0",
         "@types/node-fetch": "^2.6.4",
@@ -9046,6 +9821,70 @@
         "url": "https://opencollective.com/storybook"
       }
     },
+    "node_modules/@storybook/core-common/node_modules/@storybook/channels": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/channels/-/channels-7.6.19.tgz",
+      "integrity": "sha512-2JGh+i95GwjtjqWqhtEh15jM5ifwbRGmXeFqkY7dpdHH50EEWafYHr2mg3opK3heVDwg0rJ/VBptkmshloXuvA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "qs": "^6.10.0",
+        "telejson": "^7.2.0",
+        "tiny-invariant": "^1.3.1"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/core-common/node_modules/@storybook/client-logger": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/client-logger/-/client-logger-7.6.19.tgz",
+      "integrity": "sha512-oGzOxbmLmciSIfd5gsxDzPmX8DttWhoYdPKxjMuCuWLTO2TWpkCWp1FTUMWO72mm/6V/FswT/aqpJJBBvdZ3RQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/global": "^5.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/core-common/node_modules/@storybook/core-events": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-events/-/core-events-7.6.19.tgz",
+      "integrity": "sha512-K/W6Uvum0ocZSgjbi8hiotpe+wDEHDZlvN+KlPqdh9ae9xDK8aBNBq9IelCoqM+uKO1Zj+dDfSQds7CD781DJg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ts-dedent": "^2.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/core-common/node_modules/@storybook/types": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/types/-/types-7.6.19.tgz",
+      "integrity": "sha512-DeGYrRPRMGTVfT7o2rEZtRzyLT2yKTI2exgpnxbwPWEFAduZCSfzBrcBXZ/nb5B0pjA9tUNWls1YzGkJGlkhpg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@types/babel__core": "^7.0.0",
+        "@types/express": "^4.7.0",
+        "file-system-cache": "2.3.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
     "node_modules/@storybook/core-common/node_modules/@types/node": {
       "version": "18.19.34",
       "resolved": "https://registry.npmjs.org/@types/node/-/node-18.19.34.tgz",
@@ -9061,6 +9900,7 @@
       "resolved": "https://registry.npmjs.org/@storybook/core-events/-/core-events-7.6.17.tgz",
       "integrity": "sha512-AriWMCm/k1cxlv10f+jZ1wavThTRpLaN3kY019kHWbYT9XgaSuLU67G7GPr3cGnJ6HuA6uhbzu8qtqVCd6OfXA==",
       "dev": true,
+      "peer": true,
       "dependencies": {
         "ts-dedent": "^2.0.0"
       },
@@ -9070,26 +9910,27 @@
       }
     },
     "node_modules/@storybook/core-server": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/core-server/-/core-server-7.6.17.tgz",
-      "integrity": "sha512-KWGhTTaL1Q14FolcoKKZgytlPJUbH6sbJ1Ptj/84EYWFewcnEgVs0Zlnh1VStRZg+Rd1WC1V4yVd/bbDzxrvQA==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-server/-/core-server-7.6.19.tgz",
+      "integrity": "sha512-7mKL73Wv5R2bEl0kJ6QJ9bOu5YY53Idu24QgvTnUdNsQazp2yUONBNwHIrNDnNEXm8SfCi4Mc9o0mmNRMIoiRA==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "@aw-web-design/x-default-browser": "1.4.126",
         "@discoveryjs/json-ext": "^0.5.3",
-        "@storybook/builder-manager": "7.6.17",
-        "@storybook/channels": "7.6.17",
-        "@storybook/core-common": "7.6.17",
-        "@storybook/core-events": "7.6.17",
+        "@storybook/builder-manager": "7.6.19",
+        "@storybook/channels": "7.6.19",
+        "@storybook/core-common": "7.6.19",
+        "@storybook/core-events": "7.6.19",
         "@storybook/csf": "^0.1.2",
-        "@storybook/csf-tools": "7.6.17",
+        "@storybook/csf-tools": "7.6.19",
         "@storybook/docs-mdx": "^0.1.0",
         "@storybook/global": "^5.0.0",
-        "@storybook/manager": "7.6.17",
-        "@storybook/node-logger": "7.6.17",
-        "@storybook/preview-api": "7.6.17",
-        "@storybook/telemetry": "7.6.17",
-        "@storybook/types": "7.6.17",
+        "@storybook/manager": "7.6.19",
+        "@storybook/node-logger": "7.6.19",
+        "@storybook/preview-api": "7.6.19",
+        "@storybook/telemetry": "7.6.19",
+        "@storybook/types": "7.6.19",
         "@types/detect-port": "^1.3.0",
         "@types/node": "^18.0.0",
         "@types/pretty-hrtime": "^1.0.0",
@@ -9122,6 +9963,97 @@
         "url": "https://opencollective.com/storybook"
       }
     },
+    "node_modules/@storybook/core-server/node_modules/@storybook/channels": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/channels/-/channels-7.6.19.tgz",
+      "integrity": "sha512-2JGh+i95GwjtjqWqhtEh15jM5ifwbRGmXeFqkY7dpdHH50EEWafYHr2mg3opK3heVDwg0rJ/VBptkmshloXuvA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "qs": "^6.10.0",
+        "telejson": "^7.2.0",
+        "tiny-invariant": "^1.3.1"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/core-server/node_modules/@storybook/client-logger": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/client-logger/-/client-logger-7.6.19.tgz",
+      "integrity": "sha512-oGzOxbmLmciSIfd5gsxDzPmX8DttWhoYdPKxjMuCuWLTO2TWpkCWp1FTUMWO72mm/6V/FswT/aqpJJBBvdZ3RQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/global": "^5.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/core-server/node_modules/@storybook/core-events": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-events/-/core-events-7.6.19.tgz",
+      "integrity": "sha512-K/W6Uvum0ocZSgjbi8hiotpe+wDEHDZlvN+KlPqdh9ae9xDK8aBNBq9IelCoqM+uKO1Zj+dDfSQds7CD781DJg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ts-dedent": "^2.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/core-server/node_modules/@storybook/preview-api": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/preview-api/-/preview-api-7.6.19.tgz",
+      "integrity": "sha512-04hdMSQucroJT4dBjQzRd7ZwH2hij8yx2nm5qd4HYGkd1ORkvlH6GOLph4XewNJl5Um3xfzFQzBhvkqvG0WaCQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/csf": "^0.1.2",
+        "@storybook/global": "^5.0.0",
+        "@storybook/types": "7.6.19",
+        "@types/qs": "^6.9.5",
+        "dequal": "^2.0.2",
+        "lodash": "^4.17.21",
+        "memoizerific": "^1.11.3",
+        "qs": "^6.10.0",
+        "synchronous-promise": "^2.0.15",
+        "ts-dedent": "^2.0.0",
+        "util-deprecate": "^1.0.2"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/core-server/node_modules/@storybook/types": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/types/-/types-7.6.19.tgz",
+      "integrity": "sha512-DeGYrRPRMGTVfT7o2rEZtRzyLT2yKTI2exgpnxbwPWEFAduZCSfzBrcBXZ/nb5B0pjA9tUNWls1YzGkJGlkhpg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@types/babel__core": "^7.0.0",
+        "@types/express": "^4.7.0",
+        "file-system-cache": "2.3.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
     "node_modules/@storybook/core-server/node_modules/@types/node": {
       "version": "18.19.34",
       "resolved": "https://registry.npmjs.org/@types/node/-/node-18.19.34.tgz",
@@ -9133,14 +10065,15 @@
       }
     },
     "node_modules/@storybook/core-webpack": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/core-webpack/-/core-webpack-7.6.17.tgz",
-      "integrity": "sha512-PyGrFhRM8sTONGwwLWLqBQ1HO+LBnVZ+5TOQO7ejQfdV2FWyNOzjBXm2e5jL/C6XlqiEhmL5pyHEyDBaQJQ3KA==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-webpack/-/core-webpack-7.6.19.tgz",
+      "integrity": "sha512-Ezvn54hFN99qwP8kDOQa7/IEk2V3NyJys2eg0Afqz1cy9Uc3SkL7U7hQorKOHr5+66dsryNDfJdPzM1YMKFMBQ==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
-        "@storybook/core-common": "7.6.17",
-        "@storybook/node-logger": "7.6.17",
-        "@storybook/types": "7.6.17",
+        "@storybook/core-common": "7.6.19",
+        "@storybook/node-logger": "7.6.19",
+        "@storybook/types": "7.6.19",
         "@types/node": "^18.0.0",
         "ts-dedent": "^2.0.0"
       },
@@ -9149,6 +10082,70 @@
         "url": "https://opencollective.com/storybook"
       }
     },
+    "node_modules/@storybook/core-webpack/node_modules/@storybook/channels": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/channels/-/channels-7.6.19.tgz",
+      "integrity": "sha512-2JGh+i95GwjtjqWqhtEh15jM5ifwbRGmXeFqkY7dpdHH50EEWafYHr2mg3opK3heVDwg0rJ/VBptkmshloXuvA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "qs": "^6.10.0",
+        "telejson": "^7.2.0",
+        "tiny-invariant": "^1.3.1"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/core-webpack/node_modules/@storybook/client-logger": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/client-logger/-/client-logger-7.6.19.tgz",
+      "integrity": "sha512-oGzOxbmLmciSIfd5gsxDzPmX8DttWhoYdPKxjMuCuWLTO2TWpkCWp1FTUMWO72mm/6V/FswT/aqpJJBBvdZ3RQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/global": "^5.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/core-webpack/node_modules/@storybook/core-events": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-events/-/core-events-7.6.19.tgz",
+      "integrity": "sha512-K/W6Uvum0ocZSgjbi8hiotpe+wDEHDZlvN+KlPqdh9ae9xDK8aBNBq9IelCoqM+uKO1Zj+dDfSQds7CD781DJg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ts-dedent": "^2.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/core-webpack/node_modules/@storybook/types": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/types/-/types-7.6.19.tgz",
+      "integrity": "sha512-DeGYrRPRMGTVfT7o2rEZtRzyLT2yKTI2exgpnxbwPWEFAduZCSfzBrcBXZ/nb5B0pjA9tUNWls1YzGkJGlkhpg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@types/babel__core": "^7.0.0",
+        "@types/express": "^4.7.0",
+        "file-system-cache": "2.3.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
     "node_modules/@storybook/core-webpack/node_modules/@types/node": {
       "version": "18.19.34",
       "resolved": "https://registry.npmjs.org/@types/node/-/node-18.19.34.tgz",
@@ -9169,12 +10166,13 @@
       }
     },
     "node_modules/@storybook/csf-plugin": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/csf-plugin/-/csf-plugin-7.6.17.tgz",
-      "integrity": "sha512-xTHv9BUh3bkDVCvcbmdfVF0/e96BdrEgqPJ3G3RmKbSzWLOkQ2U9yiPfHzT0KJWPhVwj12fjfZp0zunu+pcS6Q==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/csf-plugin/-/csf-plugin-7.6.19.tgz",
+      "integrity": "sha512-yUP0xfJyR8e6fmCgKoEt4c1EvslF8dZ8wtwVLE5hnC3kfs7xt8RVDiKLB/9NhYjY3mD/oOesX60HqRXDgJQHwA==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
-        "@storybook/csf-tools": "7.6.17",
+        "@storybook/csf-tools": "7.6.19",
         "unplugin": "^1.3.1"
       },
       "funding": {
@@ -9183,17 +10181,18 @@
       }
     },
     "node_modules/@storybook/csf-tools": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/csf-tools/-/csf-tools-7.6.17.tgz",
-      "integrity": "sha512-dAQtam0EBPeTJYcQPLxXgz4L9JFqD+HWbLFG9CmNIhMMjticrB0mpk1EFIS6vPXk/VsVWpBgMLD7dZlD6YMKcQ==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/csf-tools/-/csf-tools-7.6.19.tgz",
+      "integrity": "sha512-8Vzia3cHhDdGHuS3XKXJReCRxmfRq3vmTm/Te9yKZnPSAsC58CCKcMh8FNEFJ44vxYF9itKTkRutjGs+DprKLQ==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "@babel/generator": "^7.23.0",
         "@babel/parser": "^7.23.0",
         "@babel/traverse": "^7.23.2",
         "@babel/types": "^7.23.0",
         "@storybook/csf": "^0.1.2",
-        "@storybook/types": "7.6.17",
+        "@storybook/types": "7.6.19",
         "fs-extra": "^11.1.0",
         "recast": "^0.23.1",
         "ts-dedent": "^2.0.0"
@@ -9204,12 +10203,13 @@
       }
     },
     "node_modules/@storybook/csf-tools/node_modules/@babel/generator": {
-      "version": "7.24.1",
-      "resolved": "https://registry.npmjs.org/@babel/generator/-/generator-7.24.1.tgz",
-      "integrity": "sha512-DfCRfZsBcrPEHUfuBMgbJ1Ut01Y/itOs+hY2nFLgqsqXd52/iSiVq5TITtUasIUgm+IIKdY2/1I7auiQOEeC9A==",
+      "version": "7.24.6",
+      "resolved": "https://registry.npmjs.org/@babel/generator/-/generator-7.24.6.tgz",
+      "integrity": "sha512-S7m4eNa6YAPJRHmKsLHIDJhNAGNKoWNiWefz1MBbpnt8g9lvMDl1hir4P9bo/57bQEmuwEhnRU/AMWsD0G/Fbg==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
-        "@babel/types": "^7.24.0",
+        "@babel/types": "^7.24.6",
         "@jridgewell/gen-mapping": "^0.3.5",
         "@jridgewell/trace-mapping": "^0.3.25",
         "jsesc": "^2.5.1"
@@ -9218,6 +10218,70 @@
         "node": ">=6.9.0"
       }
     },
+    "node_modules/@storybook/csf-tools/node_modules/@storybook/channels": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/channels/-/channels-7.6.19.tgz",
+      "integrity": "sha512-2JGh+i95GwjtjqWqhtEh15jM5ifwbRGmXeFqkY7dpdHH50EEWafYHr2mg3opK3heVDwg0rJ/VBptkmshloXuvA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "qs": "^6.10.0",
+        "telejson": "^7.2.0",
+        "tiny-invariant": "^1.3.1"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/csf-tools/node_modules/@storybook/client-logger": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/client-logger/-/client-logger-7.6.19.tgz",
+      "integrity": "sha512-oGzOxbmLmciSIfd5gsxDzPmX8DttWhoYdPKxjMuCuWLTO2TWpkCWp1FTUMWO72mm/6V/FswT/aqpJJBBvdZ3RQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/global": "^5.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/csf-tools/node_modules/@storybook/core-events": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-events/-/core-events-7.6.19.tgz",
+      "integrity": "sha512-K/W6Uvum0ocZSgjbi8hiotpe+wDEHDZlvN+KlPqdh9ae9xDK8aBNBq9IelCoqM+uKO1Zj+dDfSQds7CD781DJg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ts-dedent": "^2.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/csf-tools/node_modules/@storybook/types": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/types/-/types-7.6.19.tgz",
+      "integrity": "sha512-DeGYrRPRMGTVfT7o2rEZtRzyLT2yKTI2exgpnxbwPWEFAduZCSfzBrcBXZ/nb5B0pjA9tUNWls1YzGkJGlkhpg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@types/babel__core": "^7.0.0",
+        "@types/express": "^4.7.0",
+        "file-system-cache": "2.3.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
     "node_modules/@storybook/docs-mdx": {
       "version": "0.1.0",
       "resolved": "https://registry.npmjs.org/@storybook/docs-mdx/-/docs-mdx-0.1.0.tgz",
@@ -9225,14 +10289,15 @@
       "dev": true
     },
     "node_modules/@storybook/docs-tools": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/docs-tools/-/docs-tools-7.6.17.tgz",
-      "integrity": "sha512-bYrLoj06adqklyLkEwD32C0Ww6t+9ZVvrJHiVT42bIhTRpFiFPAetl1a9KPHtFLnfduh4n2IxIr1jv32ThPDTA==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/docs-tools/-/docs-tools-7.6.19.tgz",
+      "integrity": "sha512-JuwV6wtm7Hb7Kb5ValChfxy4J7XngfrSQNpvwsDCSBNVcQUv2y843hvclpa26Ptfr/c7zpUX8r9FGSaMDy+2aQ==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
-        "@storybook/core-common": "7.6.17",
-        "@storybook/preview-api": "7.6.17",
-        "@storybook/types": "7.6.17",
+        "@storybook/core-common": "7.6.19",
+        "@storybook/preview-api": "7.6.19",
+        "@storybook/types": "7.6.19",
         "@types/doctrine": "^0.0.3",
         "assert": "^2.1.0",
         "doctrine": "^3.0.0",
@@ -9243,6 +10308,97 @@
         "url": "https://opencollective.com/storybook"
       }
     },
+    "node_modules/@storybook/docs-tools/node_modules/@storybook/channels": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/channels/-/channels-7.6.19.tgz",
+      "integrity": "sha512-2JGh+i95GwjtjqWqhtEh15jM5ifwbRGmXeFqkY7dpdHH50EEWafYHr2mg3opK3heVDwg0rJ/VBptkmshloXuvA==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/global": "^5.0.0",
+        "qs": "^6.10.0",
+        "telejson": "^7.2.0",
+        "tiny-invariant": "^1.3.1"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/docs-tools/node_modules/@storybook/client-logger": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/client-logger/-/client-logger-7.6.19.tgz",
+      "integrity": "sha512-oGzOxbmLmciSIfd5gsxDzPmX8DttWhoYdPKxjMuCuWLTO2TWpkCWp1FTUMWO72mm/6V/FswT/aqpJJBBvdZ3RQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/global": "^5.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/docs-tools/node_modules/@storybook/core-events": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/core-events/-/core-events-7.6.19.tgz",
+      "integrity": "sha512-K/W6Uvum0ocZSgjbi8hiotpe+wDEHDZlvN+KlPqdh9ae9xDK8aBNBq9IelCoqM+uKO1Zj+dDfSQds7CD781DJg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "ts-dedent": "^2.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/docs-tools/node_modules/@storybook/preview-api": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/preview-api/-/preview-api-7.6.19.tgz",
+      "integrity": "sha512-04hdMSQucroJT4dBjQzRd7ZwH2hij8yx2nm5qd4HYGkd1ORkvlH6GOLph4XewNJl5Um3xfzFQzBhvkqvG0WaCQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-events": "7.6.19",
+        "@storybook/csf": "^0.1.2",
+        "@storybook/global": "^5.0.0",
+        "@storybook/types": "7.6.19",
+        "@types/qs": "^6.9.5",
+        "dequal": "^2.0.2",
+        "lodash": "^4.17.21",
+        "memoizerific": "^1.11.3",
+        "qs": "^6.10.0",
+        "synchronous-promise": "^2.0.15",
+        "ts-dedent": "^2.0.0",
+        "util-deprecate": "^1.0.2"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
+    "node_modules/@storybook/docs-tools/node_modules/@storybook/types": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/types/-/types-7.6.19.tgz",
+      "integrity": "sha512-DeGYrRPRMGTVfT7o2rEZtRzyLT2yKTI2exgpnxbwPWEFAduZCSfzBrcBXZ/nb5B0pjA9tUNWls1YzGkJGlkhpg==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/channels": "7.6.19",
+        "@types/babel__core": "^7.0.0",
+        "@types/express": "^4.7.0",
+        "file-system-cache": "2.3.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
     "node_modules/@storybook/expect": {
       "version": "28.1.3-5",
       "resolved": "https://registry.npmjs.org/@storybook/expect/-/expect-28.1.3-5.tgz",
@@ -9489,10 +10645,11 @@
       "dev": true
     },
     "node_modules/@storybook/manager": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/manager/-/manager-7.6.17.tgz",
-      "integrity": "sha512-A1LDDIqMpwRzq/dqkbbiza0QI04o4ZHCl2a3UMDZUV/+QLc2nsr2DAaLk4CVL4/cIc5zGqmIcaOTvprx2YKVBw==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/manager/-/manager-7.6.19.tgz",
+      "integrity": "sha512-fZWQcf59x4P0iiBhrL74PZrqKJAPuk9sWjP8BIkGbf8wTZtUunbY5Sv4225fOL4NLJbuX9/RYLUPoxQ3nucGHA==",
       "dev": true,
+      "license": "MIT",
       "funding": {
         "type": "opencollective",
         "url": "https://opencollective.com/storybook"
@@ -9503,6 +10660,7 @@
       "resolved": "https://registry.npmjs.org/@storybook/manager-api/-/manager-api-7.6.17.tgz",
       "integrity": "sha512-IJIV1Yc6yw1dhCY4tReHCfBnUKDqEBnMyHp3mbXpsaHxnxJZrXO45WjRAZIKlQKhl/Ge1CrnznmHRCmYgqmrWg==",
       "dev": true,
+      "peer": true,
       "dependencies": {
         "@storybook/channels": "7.6.17",
         "@storybook/client-logger": "7.6.17",
@@ -9531,30 +10689,33 @@
       "dev": true
     },
     "node_modules/@storybook/node-logger": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/node-logger/-/node-logger-7.6.17.tgz",
-      "integrity": "sha512-w59MQuXhhUNrUVmVkXhMwIg2nvFWjdDczLTwYLorhfsE36CWeUOY5QCZWQy0Qf/h+jz8Uo7Evy64qn18v9C4wA==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/node-logger/-/node-logger-7.6.19.tgz",
+      "integrity": "sha512-2g29QC44Zl1jKY37DmQ0/dO7+VSKnGgPI/x0mwVwQffypSapxH3rwLLT5Q5XLHeFyD+fhRu5w9Cj4vTGynJgpA==",
       "dev": true,
+      "license": "MIT",
       "funding": {
         "type": "opencollective",
         "url": "https://opencollective.com/storybook"
       }
     },
     "node_modules/@storybook/postinstall": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/postinstall/-/postinstall-7.6.17.tgz",
-      "integrity": "sha512-WaWqB8o9vUc9aaVls+povQSVirf1Xd1LZcVhUKfAocAF3mzYUsnJsVqvnbjRj/F96UFVihOyDt9Zjl/9OvrCvQ==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/postinstall/-/postinstall-7.6.19.tgz",
+      "integrity": "sha512-s6p1vpgMfn+QGDfCK2YNdyyWKidUgb3nGicB81FANRyzYqGB//QlJlghEc2LKCIQbGIZQiwP3l8PdZQmczEJRw==",
       "dev": true,
+      "license": "MIT",
       "funding": {
         "type": "opencollective",
         "url": "https://opencollective.com/storybook"
       }
     },
     "node_modules/@storybook/preview": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/preview/-/preview-7.6.17.tgz",
-      "integrity": "sha512-LvkMYK/y6alGjwRVNDIKL1lFlbyZ0H0c8iAbcQkiMoaFiujMQyVswMDKlWcj42Upfr/B1igydiruomc+eUt0mw==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/preview/-/preview-7.6.19.tgz",
+      "integrity": "sha512-VqRPua2koOQTOteB+VvuKNXFYQ7IDEopaPpj9Nx+3kom+bqp0hWdAysWcm6CtKN2GGzBQm+5PvGibMNdawsaVg==",
       "dev": true,
+      "license": "MIT",
       "funding": {
         "type": "opencollective",
         "url": "https://opencollective.com/storybook"
@@ -9565,6 +10726,7 @@
       "resolved": "https://registry.npmjs.org/@storybook/preview-api/-/preview-api-7.6.17.tgz",
       "integrity": "sha512-wLfDdI9RWo1f2zzFe54yRhg+2YWyxLZvqdZnSQ45mTs4/7xXV5Wfbv3QNTtcdw8tT3U5KRTrN1mTfTCiRJc0Kw==",
       "dev": true,
+      "peer": true,
       "dependencies": {
         "@storybook/channels": "7.6.17",
         "@storybook/client-logger": "7.6.17",
@@ -9587,10 +10749,11 @@
       }
     },
     "node_modules/@storybook/react-dom-shim": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/react-dom-shim/-/react-dom-shim-7.6.17.tgz",
-      "integrity": "sha512-32Sa/G+WnvaPiQ1Wvjjw5UM9rr2c4GDohwCcWVv3/LJuiFPqNS6zglAtmnsrlIBnUwRBMLMh/ekCTdqMiUmfDw==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/react-dom-shim/-/react-dom-shim-7.6.19.tgz",
+      "integrity": "sha512-tpt2AC1428d1gF4fetMkpkeFZ1WdDr1CLKoLbSInWQZ7i96nbnIMIA9raR/W8ai1bo55KSz9Bq5ytC/1Pac2qQ==",
       "dev": true,
+      "license": "MIT",
       "funding": {
         "type": "opencollective",
         "url": "https://opencollective.com/storybook"
@@ -9605,6 +10768,7 @@
       "resolved": "https://registry.npmjs.org/@storybook/router/-/router-7.6.17.tgz",
       "integrity": "sha512-GnyC0j6Wi5hT4qRhSyT8NPtJfGmf82uZw97LQRWeyYu5gWEshUdM7aj40XlNiScd5cZDp0owO1idduVF2k2l2A==",
       "dev": true,
+      "peer": true,
       "dependencies": {
         "@storybook/client-logger": "7.6.17",
         "memoizerific": "^1.11.3",
@@ -9616,14 +10780,15 @@
       }
     },
     "node_modules/@storybook/telemetry": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/@storybook/telemetry/-/telemetry-7.6.17.tgz",
-      "integrity": "sha512-WOcOAmmengYnGInH98Px44F47DSpLyk20BM+Z/IIQDzfttGOLlxNqBBG1XTEhNRn+AYuk4aZ2JEed2lCjVIxcA==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/telemetry/-/telemetry-7.6.19.tgz",
+      "integrity": "sha512-rA5xum4I36M57iiD3uzmW0MOdpl0vEpHWBSAa5hK0a0ALPeY9TgAsQlI/0dSyNYJ/K7aczEEN6d4qm1NC4u10A==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
-        "@storybook/client-logger": "7.6.17",
-        "@storybook/core-common": "7.6.17",
-        "@storybook/csf-tools": "7.6.17",
+        "@storybook/client-logger": "7.6.19",
+        "@storybook/core-common": "7.6.19",
+        "@storybook/csf-tools": "7.6.19",
         "chalk": "^4.1.0",
         "detect-package-manager": "^2.0.1",
         "fetch-retry": "^5.0.2",
@@ -9635,6 +10800,20 @@
         "url": "https://opencollective.com/storybook"
       }
     },
+    "node_modules/@storybook/telemetry/node_modules/@storybook/client-logger": {
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/@storybook/client-logger/-/client-logger-7.6.19.tgz",
+      "integrity": "sha512-oGzOxbmLmciSIfd5gsxDzPmX8DttWhoYdPKxjMuCuWLTO2TWpkCWp1FTUMWO72mm/6V/FswT/aqpJJBBvdZ3RQ==",
+      "dev": true,
+      "license": "MIT",
+      "dependencies": {
+        "@storybook/global": "^5.0.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/storybook"
+      }
+    },
     "node_modules/@storybook/testing-library": {
       "version": "0.2.2",
       "resolved": "https://registry.npmjs.org/@storybook/testing-library/-/testing-library-0.2.2.tgz",
@@ -9651,6 +10830,7 @@
       "resolved": "https://registry.npmjs.org/@storybook/theming/-/theming-7.6.17.tgz",
       "integrity": "sha512-ZbaBt3KAbmBtfjNqgMY7wPMBshhSJlhodyMNQypv+95xLD/R+Az6aBYbpVAOygLaUQaQk4ar7H/Ww6lFIoiFbA==",
       "dev": true,
+      "peer": true,
       "dependencies": {
         "@emotion/use-insertion-effect-with-fallbacks": "^1.0.0",
         "@storybook/client-logger": "7.6.17",
@@ -9671,6 +10851,7 @@
       "resolved": "https://registry.npmjs.org/@storybook/types/-/types-7.6.17.tgz",
       "integrity": "sha512-GRY0xEJQ0PrL7DY2qCNUdIfUOE0Gsue6N+GBJw9ku1IUDFLJRDOF+4Dx2BvYcVCPI5XPqdWKlEyZdMdKjiQN7Q==",
       "dev": true,
+      "peer": true,
       "dependencies": {
         "@storybook/channels": "7.6.17",
         "@types/babel__core": "^7.0.0",
@@ -10282,6 +11463,7 @@
       "resolved": "https://registry.npmjs.org/@types/cross-spawn/-/cross-spawn-6.0.6.tgz",
       "integrity": "sha512-fXRhhUkG4H3TQk5dBhQ7m/JDdSNHKwR2BBia62lhwEIq9xGiQKLxd6LymNhn47SjXhsUEPmxi+PKw2OkW4LLjA==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "@types/node": "*"
       }
@@ -10305,7 +11487,8 @@
       "version": "0.0.3",
       "resolved": "https://registry.npmjs.org/@types/doctrine/-/doctrine-0.0.3.tgz",
       "integrity": "sha512-w5jZ0ee+HaPOaX25X2/2oGR/7rgAQSYII7X7pp0m9KgBfMP7uKfMfTvcpl5Dj+eDBbpxKGiqE+flqDr6XTd2RA==",
-      "dev": true
+      "dev": true,
+      "license": "MIT"
     },
     "node_modules/@types/duo_web_sdk": {
       "version": "2.7.1",
@@ -10317,7 +11500,8 @@
       "version": "3.1.5",
       "resolved": "https://registry.npmjs.org/@types/ejs/-/ejs-3.1.5.tgz",
       "integrity": "sha512-nv+GSx77ZtXiJzwKdsASqi+YQ5Z7vwHsTP0JY2SiQgjGckkBRKZnk8nIM+7oUZ1VCtuTz0+By4qVR7fqzp/Dfg==",
-      "dev": true
+      "dev": true,
+      "license": "MIT"
     },
     "node_modules/@types/emscripten": {
       "version": "1.39.10",
@@ -12206,6 +13390,7 @@
       "resolved": "https://registry.npmjs.org/@yarnpkg/esbuild-plugin-pnp/-/esbuild-plugin-pnp-3.0.0-rc.15.tgz",
       "integrity": "sha512-kYzDJO5CA9sy+on/s2aIW0411AklfCi8Ck/4QDivOqsMKpStZA2SsR+X27VTggGwpStWaLrjJcDcdDMowtG8MA==",
       "dev": true,
+      "license": "BSD-2-Clause",
       "dependencies": {
         "tslib": "^2.4.0"
       },
@@ -13229,6 +14414,7 @@
       "resolved": "https://registry.npmjs.org/assert/-/assert-2.1.0.tgz",
       "integrity": "sha512-eLHpSK/Y4nhMJ07gDaAzoX/XAKS8PSaojml3M0DM4JpV1LAi5JOJ/p6H/XWrl8L+DzVEvVCW1z3vWAaB9oTsQw==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "call-bind": "^1.0.2",
         "is-nan": "^1.3.2",
@@ -17985,7 +19171,8 @@
       "version": "0.2.1",
       "resolved": "https://registry.npmjs.org/esbuild-plugin-alias/-/esbuild-plugin-alias-0.2.1.tgz",
       "integrity": "sha512-jyfL/pwPqaFXyKnj8lP8iLk6Z0m099uXR45aSN8Av1XD4vhvQutxxPzgA2bTcAwQpa1zCXDcWOlhFgyP3GKqhQ==",
-      "dev": true
+      "dev": true,
+      "license": "MIT"
     },
     "node_modules/esbuild-register": {
       "version": "3.5.0",
@@ -23344,6 +24531,7 @@
       "resolved": "https://registry.npmjs.org/is-nan/-/is-nan-1.3.2.tgz",
       "integrity": "sha512-E+zBKpQ2t6MEo1VsonYmluk9NxGrbzpeeLC2xIViuO2EjU2xsXsBPwTr3Ykv9l08UYEVEdWeRZNouaZqF6RN0w==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "call-bind": "^1.0.0",
         "define-properties": "^1.1.3"
@@ -27154,10 +28342,11 @@
       }
     },
     "node_modules/markdown-to-jsx": {
-      "version": "7.4.5",
-      "resolved": "https://registry.npmjs.org/markdown-to-jsx/-/markdown-to-jsx-7.4.5.tgz",
-      "integrity": "sha512-c8NB0H/ig+FOWssE9be0PKsYbCDhcWEkicxMnpdfUuHbFljnen4LAdgUShOyR/PgO3/qKvt9cwfQ0U/zQvZ44A==",
+      "version": "7.4.7",
+      "resolved": "https://registry.npmjs.org/markdown-to-jsx/-/markdown-to-jsx-7.4.7.tgz",
+      "integrity": "sha512-0+ls1IQZdU6cwM1yu0ZjjiVWYtkbExSyUIFU2ZeDIFuZM1W42Mh4OlJ4nb4apX4H8smxDHRdFaoIVJGwfv5hkg==",
       "dev": true,
+      "license": "MIT",
       "engines": {
         "node": ">= 10"
       },
@@ -32285,6 +33474,7 @@
       "resolved": "https://registry.npmjs.org/react-colorful/-/react-colorful-5.6.1.tgz",
       "integrity": "sha512-1exovf0uGTGyq5mXQT0zgQ80uvj2PCwvF8zY1RN9/vbJVSjSo3fsB/4L3ObbF7u70NduSiK4xu4Y6q1MHoUGEw==",
       "dev": true,
+      "license": "MIT",
       "peerDependencies": {
         "react": ">=16.8.0",
         "react-dom": ">=16.8.0"
@@ -35096,12 +36286,13 @@
       "dev": true
     },
     "node_modules/storybook": {
-      "version": "7.6.17",
-      "resolved": "https://registry.npmjs.org/storybook/-/storybook-7.6.17.tgz",
-      "integrity": "sha512-8+EIo91bwmeFWPg1eysrxXlhIYv3OsXrznTr4+4Eq0NikqAoq6oBhtlN5K2RGS2lBVF537eN+9jTCNbR+WrzDA==",
+      "version": "7.6.19",
+      "resolved": "https://registry.npmjs.org/storybook/-/storybook-7.6.19.tgz",
+      "integrity": "sha512-xWD1C4vD/4KMffCrBBrUpsLUO/9uNpm8BVW8+Vcb30gkQDfficZ0oziWkmLexpT53VSioa24iazGXMwBqllYjQ==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
-        "@storybook/cli": "7.6.17"
+        "@storybook/cli": "7.6.19"
       },
       "bin": {
         "sb": "index.js",
@@ -36420,10 +37611,11 @@
       }
     },
     "node_modules/tocbot": {
-      "version": "4.25.0",
-      "resolved": "https://registry.npmjs.org/tocbot/-/tocbot-4.25.0.tgz",
-      "integrity": "sha512-kE5wyCQJ40hqUaRVkyQ4z5+4juzYsv/eK+aqD97N62YH0TxFhzJvo22RUQQZdO3YnXAk42ZOfOpjVdy+Z0YokA==",
-      "dev": true
+      "version": "4.28.2",
+      "resolved": "https://registry.npmjs.org/tocbot/-/tocbot-4.28.2.tgz",
+      "integrity": "sha512-/MaSa9xI6mIo84IxqqliSCtPlH0oy7sLcY9s26qPMyH/2CxtZ2vNAXYlIdEQ7kjAkCQnc0rbLygf//F5c663oQ==",
+      "dev": true,
+      "license": "MIT"
     },
     "node_modules/toidentifier": {
       "version": "1.0.1",
@@ -37421,10 +38613,11 @@
       }
     },
     "node_modules/unplugin": {
-      "version": "1.10.0",
-      "resolved": "https://registry.npmjs.org/unplugin/-/unplugin-1.10.0.tgz",
-      "integrity": "sha512-CuZtvvO8ua2Wl+9q2jEaqH6m3DoQ38N7pvBYQbbaeNlWGvK2l6GHiKi29aIHDPoSxdUzQ7Unevf1/ugil5X6Pg==",
+      "version": "1.10.1",
+      "resolved": "https://registry.npmjs.org/unplugin/-/unplugin-1.10.1.tgz",
+      "integrity": "sha512-d6Mhq8RJeGA8UfKCu54Um4lFA0eSaRa3XxdAJg8tIdxbu1ubW0hBCZUL7yI2uGyYCRndvbK8FLHzqy2XKfeMsg==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "acorn": "^8.11.3",
         "chokidar": "^3.6.0",
@@ -37440,6 +38633,7 @@
       "resolved": "https://registry.npmjs.org/chokidar/-/chokidar-3.6.0.tgz",
       "integrity": "sha512-7VT13fmjotKpGipCW9JEQAusEPE+Ei8nl6/g4FBAmIm0GOOLMua9NDDo/DWp0ZAxCr3cPq5ZpBqmPAQgDda2Pw==",
       "dev": true,
+      "license": "MIT",
       "dependencies": {
         "anymatch": "~3.1.2",
         "braces": "~3.0.2",
@@ -37463,7 +38657,8 @@
       "version": "0.6.1",
       "resolved": "https://registry.npmjs.org/webpack-virtual-modules/-/webpack-virtual-modules-0.6.1.tgz",
       "integrity": "sha512-poXpCylU7ExuvZK8z+On3kX+S8o/2dQ/SVYueKA0D4WEMXROXgY8Ez50/bQEUmvoSMMrWcrJqCHuhAbsiwg7Dg==",
-      "dev": true
+      "dev": true,
+      "license": "MIT"
     },
     "node_modules/unset-value": {
       "version": "1.0.0",
diff --git a/package.json b/package.json
index c117febd79d..9670da6f676 100644
--- a/package.json
+++ b/package.json
@@ -47,13 +47,13 @@
     "@electron/notarize": "2.3.0",
     "@electron/rebuild": "3.6.0",
     "@ngtools/webpack": "16.2.11",
-    "@storybook/addon-a11y": "7.6.17",
-    "@storybook/addon-actions": "7.6.17",
+    "@storybook/addon-a11y": "7.6.19",
+    "@storybook/addon-actions": "7.6.19",
     "@storybook/addon-designs": "7.0.9",
-    "@storybook/addon-essentials": "7.6.17",
-    "@storybook/addon-interactions": "7.6.17",
-    "@storybook/addon-links": "7.6.17",
-    "@storybook/angular": "7.6.17",
+    "@storybook/addon-essentials": "7.6.19",
+    "@storybook/addon-interactions": "7.6.19",
+    "@storybook/addon-links": "7.6.19",
+    "@storybook/angular": "7.6.19",
     "@storybook/jest": "0.2.3",
     "@storybook/testing-library": "0.2.2",
     "@types/argon2-browser": "1.18.1",
@@ -135,7 +135,7 @@
     "rimraf": "5.0.7",
     "sass": "1.74.1",
     "sass-loader": "13.3.3",
-    "storybook": "7.6.17",
+    "storybook": "7.6.19",
     "style-loader": "3.3.4",
     "tailwindcss": "3.4.3",
     "ts-jest": "29.1.2",

From 1bf3a4b6eb80d78830f8806207b6f3e58585c088 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Micha=C5=82=20Ch=C4=99ci=C5=84ski?=
 <mchecinski@bitwarden.com>
Date: Tue, 4 Jun 2024 16:25:53 +0200
Subject: [PATCH 082/138] [BRE-94] Replace `dawidd6/action-download-artifact`
 with `bitwarden/gh-actions/download-artifacts` (#9494)

---
 .github/workflows/release-desktop-beta.yml | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/release-desktop-beta.yml b/.github/workflows/release-desktop-beta.yml
index 55f822e6237..0013234faa3 100644
--- a/.github/workflows/release-desktop-beta.yml
+++ b/.github/workflows/release-desktop-beta.yml
@@ -659,7 +659,7 @@ jobs:
 
       - name: Download artifact from hotfix-rc
         if: github.ref == 'refs/heads/hotfix-rc'
-        uses: dawidd6/action-download-artifact@71072fbb1229e1317f1a8de6b04206afb461bd67 # v3.1.2
+        uses: bitwarden/gh-actions/download-artifacts@main
         with:
           workflow: build-browser.yml
           workflow_conclusion: success
@@ -668,7 +668,7 @@ jobs:
 
       - name: Download artifact from rc
         if: github.ref == 'refs/heads/rc'
-        uses: dawidd6/action-download-artifact@71072fbb1229e1317f1a8de6b04206afb461bd67 # v3.1.2
+        uses: bitwarden/gh-actions/download-artifacts@main
         with:
           workflow: build-browser.yml
           workflow_conclusion: success
@@ -677,7 +677,7 @@ jobs:
 
       - name: Download artifacts from main
         if: ${{ github.ref != 'refs/heads/rc' && github.ref != 'refs/heads/hotfix-rc' }}
-        uses: dawidd6/action-download-artifact@71072fbb1229e1317f1a8de6b04206afb461bd67 # v3.1.2
+        uses: bitwarden/gh-actions/download-artifacts@main
         with:
           workflow: build-browser.yml
           workflow_conclusion: success
@@ -864,7 +864,7 @@ jobs:
 
       - name: Download artifact from hotfix-rc
         if: github.ref == 'refs/heads/hotfix-rc'
-        uses: dawidd6/action-download-artifact@71072fbb1229e1317f1a8de6b04206afb461bd67 # v3.1.2
+        uses: bitwarden/gh-actions/download-artifacts@main
         with:
           workflow: build-browser.yml
           workflow_conclusion: success
@@ -873,7 +873,7 @@ jobs:
 
       - name: Download artifact from rc
         if: github.ref == 'refs/heads/rc'
-        uses: dawidd6/action-download-artifact@71072fbb1229e1317f1a8de6b04206afb461bd67 # v3.1.2
+        uses: bitwarden/gh-actions/download-artifacts@main
         with:
           workflow: build-browser.yml
           workflow_conclusion: success
@@ -882,7 +882,7 @@ jobs:
 
       - name: Download artifact from main
         if: ${{ github.ref != 'refs/heads/rc' && github.ref != 'refs/heads/hotfix-rc' }}
-        uses: dawidd6/action-download-artifact@71072fbb1229e1317f1a8de6b04206afb461bd67 # v3.1.2
+        uses: bitwarden/gh-actions/download-artifacts@main
         with:
           workflow: build-browser.yml
           workflow_conclusion: success

From 490e6c322d5569711bbaef7bf2201af3e198f4fa Mon Sep 17 00:00:00 2001
From: Matt Gibson <mgibson@bitwarden.com>
Date: Tue, 4 Jun 2024 10:40:41 -0400
Subject: [PATCH 083/138] Improve jest performance (#9496)

Utilizing resources based on thread availability improves performance vs fixed threading.

The linked issue for CI crashes has not been closed. Once this is solves, `runInBand` may improves performance in CI.
---
 .github/workflows/test.yml         | 6 ++++--
 libs/shared/jest.config.angular.js | 6 ++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index 3c650d8a622..12649b91ea9 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -48,10 +48,12 @@ jobs:
       # Tests in apps/ are typechecked when their app is built, so we just do it here for libs/
       # See https://bitwarden.atlassian.net/browse/EC-497
       - name: Run typechecking
-        run: npm run test:types --coverage
+        run: npm run test:types
 
       - name: Run tests
-        run: npm run test --coverage
+        # maxWorkers is a workaround for a memory leak that crashes tests in CI:
+        # https://github.com/facebook/jest/issues/9430#issuecomment-1149882002
+        run: npm test -- --coverage --maxWorkers=3
 
       - name: Report test results
         uses: dorny/test-reporter@eaa763f6ffc21c7a37837f56cd5f9737f27fc6c8 # v1.8.0
diff --git a/libs/shared/jest.config.angular.js b/libs/shared/jest.config.angular.js
index 689a04d8589..de703e27220 100644
--- a/libs/shared/jest.config.angular.js
+++ b/libs/shared/jest.config.angular.js
@@ -11,10 +11,8 @@ module.exports = {
     ".*.type.spec.ts", // ignore type tests (which are checked at compile time and not run by jest)
   ],
 
-  // Workaround for a memory leak that crashes tests in CI:
-  // https://github.com/facebook/jest/issues/9430#issuecomment-1149882002
-  // Also anecdotally improves performance when run locally
-  maxWorkers: 3,
+  // Improves on-demand performance, for watches prefer 25%, overridable by setting --maxWorkers
+  maxWorkers: "50%",
 
   transform: {
     "^.+\\.(ts|js|mjs|svg)$": [

From ed7a57810e55fcc18e665d6edf7d0493c16e7706 Mon Sep 17 00:00:00 2001
From: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com>
Date: Tue, 4 Jun 2024 10:58:09 -0400
Subject: [PATCH 084/138] [SM-1192] displaying full project name in tooltip and
 allowing more of project name in bit badge/project column (#8917)

* allowing max width adjustment on bit badge and not truncating the tooltip text on project

* suggested changes from WIll

* updating values
---
 .../app/secrets-manager/shared/secrets-list.component.html    | 3 ++-
 libs/components/src/badge/badge.directive.ts                  | 4 +++-
 2 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.html b/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.html
index f8d5d1081e0..4b629ca4885 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.html
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.html
@@ -93,8 +93,9 @@
           variant="secondary"
           class="tw-ml-1"
           [title]="project.name"
+          maxWidthClass="tw-max-w-60"
         >
-          {{ project.name | ellipsis: 32 }}
+          {{ project.name }}
         </span>
         <span *ngIf="secret.projects.length === 0" bitBadge variant="warning" class="tw-ml-1"
           ><i class="bwi bwi-fw bwi-exclamation-triangle tw-mr-1" aria-hidden="true"></i
diff --git a/libs/components/src/badge/badge.directive.ts b/libs/components/src/badge/badge.directive.ts
index acce4a18aad..ce410727065 100644
--- a/libs/components/src/badge/badge.directive.ts
+++ b/libs/components/src/badge/badge.directive.ts
@@ -49,7 +49,7 @@ export class BadgeDirective implements FocusableElement {
     ]
       .concat(styles[this.variant])
       .concat(this.hasHoverEffects ? hoverStyles[this.variant] : [])
-      .concat(this.truncate ? ["tw-truncate", "tw-max-w-40"] : []);
+      .concat(this.truncate ? ["tw-truncate", this.maxWidthClass] : []);
   }
   @HostBinding("attr.title") get title() {
     return this.truncate ? this.el.nativeElement.textContent.trim() : null;
@@ -65,6 +65,8 @@ export class BadgeDirective implements FocusableElement {
    */
   @Input() truncate = true;
 
+  @Input() maxWidthClass: `tw-max-w-${string}` = "tw-max-w-40";
+
   getFocusTarget() {
     return this.el.nativeElement;
   }

From 6fa12fea49660cf24e5e35f2108df39c06d21c2b Mon Sep 17 00:00:00 2001
From: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com>
Date: Tue, 4 Jun 2024 10:59:43 -0400
Subject: [PATCH 085/138] Removing hanging promises, and adding a guard to
 projects routing (#8891)

* Removing hanging promises, and adding a guard to projects routing

* Additional logging

* adding tests

* Trying to get Jest tests working

* coltons suggested changes
---
 .../overview/overview.component.ts            |  13 +-
 .../dialog/project-dialog.component.ts        |   4 +-
 .../guards/project-access.guard.spec.ts       | 120 +++++++++++++++++
 .../projects/guards/project-access.guard.ts   |  31 +++++
 .../project/project-people.component.ts       |   5 +-
 .../project/project-secrets.component.ts      |   7 +-
 .../projects/project/project.component.ts     |  14 --
 .../projects/projects-routing.module.ts       |   2 +
 .../secrets/dialog/secret-dialog.component.ts |   6 +-
 .../secrets/secrets.component.ts              |   7 +-
 .../service-account-dialog.component.ts       |   4 +-
 .../service-account-access.guard.spec.ts      | 122 ++++++++++++++++++
 .../guards/service-account-access.guard.ts    |  11 ++
 .../service-account.component.ts              |  23 +---
 .../shared/secrets-list.component.ts          |  15 ++-
 15 files changed, 321 insertions(+), 63 deletions(-)
 create mode 100644 bitwarden_license/bit-web/src/app/secrets-manager/projects/guards/project-access.guard.spec.ts
 create mode 100644 bitwarden_license/bit-web/src/app/secrets-manager/projects/guards/project-access.guard.ts
 create mode 100644 bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/guards/service-account-access.guard.spec.ts

diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/overview/overview.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/overview/overview.component.ts
index 95c17642538..56c02e1ed43 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/overview/overview.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/overview/overview.component.ts
@@ -17,6 +17,7 @@ import {
 
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { DialogService } from "@bitwarden/components";
 
@@ -94,6 +95,7 @@ export class OverviewComponent implements OnInit, OnDestroy {
     private platformUtilsService: PlatformUtilsService,
     private i18nService: I18nService,
     private smOnboardingTasksService: SMOnboardingTasksService,
+    private logService: LogService,
   ) {}
 
   ngOnInit() {
@@ -297,12 +299,13 @@ export class OverviewComponent implements OnInit, OnDestroy {
     SecretsListComponent.copySecretName(name, this.platformUtilsService, this.i18nService);
   }
 
-  copySecretValue(id: string) {
-    SecretsListComponent.copySecretValue(
+  async copySecretValue(id: string) {
+    await SecretsListComponent.copySecretValue(
       id,
       this.platformUtilsService,
       this.i18nService,
       this.secretService,
+      this.logService,
     );
   }
 
@@ -310,11 +313,9 @@ export class OverviewComponent implements OnInit, OnDestroy {
     SecretsListComponent.copySecretUuid(id, this.platformUtilsService, this.i18nService);
   }
 
-  protected hideOnboarding() {
+  protected async hideOnboarding() {
     this.showOnboarding = false;
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    this.saveCompletedTasks(this.organizationId, {
+    await this.saveCompletedTasks(this.organizationId, {
       importSecrets: true,
       createSecret: true,
       createProject: true,
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/projects/dialog/project-dialog.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/projects/dialog/project-dialog.component.ts
index 0b65bd0a26b..d30d5f664e2 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/projects/dialog/project-dialog.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/projects/dialog/project-dialog.component.ts
@@ -82,9 +82,7 @@ export class ProjectDialogComponent implements OnInit {
     const projectView = this.getProjectView();
     if (this.data.operation === OperationType.Add) {
       const newProject = await this.createProject(projectView);
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.router.navigate(["sm", this.data.organizationId, "projects", newProject.id]);
+      await this.router.navigate(["sm", this.data.organizationId, "projects", newProject.id]);
     } else {
       projectView.id = this.data.projectId;
       await this.updateProject(projectView);
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/projects/guards/project-access.guard.spec.ts b/bitwarden_license/bit-web/src/app/secrets-manager/projects/guards/project-access.guard.spec.ts
new file mode 100644
index 00000000000..84bc1483fd1
--- /dev/null
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/projects/guards/project-access.guard.spec.ts
@@ -0,0 +1,120 @@
+import { Component } from "@angular/core";
+import { TestBed } from "@angular/core/testing";
+import { Router } from "@angular/router";
+import { RouterTestingModule } from "@angular/router/testing";
+import { MockProxy, mock } from "jest-mock-extended";
+
+import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
+import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+
+import { RouterService } from "../../../../../../../apps/web/src/app/core/router.service";
+import { ProjectView } from "../../models/view/project.view";
+import { ProjectService } from "../project.service";
+
+import { projectAccessGuard } from "./project-access.guard";
+
+@Component({
+  template: "",
+})
+export class GuardedRouteTestComponent {}
+
+@Component({
+  template: "",
+})
+export class RedirectTestComponent {}
+
+describe("Project Redirect Guard", () => {
+  let organizationService: MockProxy<OrganizationService>;
+  let routerService: MockProxy<RouterService>;
+  let projectServiceMock: MockProxy<ProjectService>;
+  let i18nServiceMock: MockProxy<I18nService>;
+  let platformUtilsService: MockProxy<PlatformUtilsService>;
+  let router: Router;
+
+  const smOrg1 = { id: "123", canAccessSecretsManager: true } as Organization;
+  const projectView = {
+    id: "123",
+    organizationId: "123",
+    name: "project-name",
+    creationDate: Date.now.toString(),
+    revisionDate: Date.now.toString(),
+    read: true,
+    write: true,
+  } as ProjectView;
+
+  beforeEach(async () => {
+    organizationService = mock<OrganizationService>();
+    routerService = mock<RouterService>();
+    projectServiceMock = mock<ProjectService>();
+    i18nServiceMock = mock<I18nService>();
+    platformUtilsService = mock<PlatformUtilsService>();
+
+    TestBed.configureTestingModule({
+      imports: [
+        RouterTestingModule.withRoutes([
+          {
+            path: "sm/:organizationId/projects/:projectId",
+            component: GuardedRouteTestComponent,
+            canActivate: [projectAccessGuard],
+          },
+          {
+            path: "sm",
+            component: RedirectTestComponent,
+          },
+          {
+            path: "sm/:organizationId/projects",
+            component: RedirectTestComponent,
+          },
+        ]),
+      ],
+      providers: [
+        { provide: OrganizationService, useValue: organizationService },
+        { provide: RouterService, useValue: routerService },
+        { provide: ProjectService, useValue: projectServiceMock },
+        { provide: I18nService, useValue: i18nServiceMock },
+        { provide: PlatformUtilsService, useValue: platformUtilsService },
+      ],
+    });
+
+    router = TestBed.inject(Router);
+  });
+
+  it("redirects to sm/{orgId}/projects/{projectId} if project exists", async () => {
+    // Arrange
+    organizationService.getAll.mockResolvedValue([smOrg1]);
+    projectServiceMock.getByProjectId.mockReturnValue(Promise.resolve(projectView));
+
+    // Act
+    await router.navigateByUrl("sm/123/projects/123");
+
+    // Assert
+    expect(router.url).toBe("/sm/123/projects/123");
+  });
+
+  it("redirects to sm/projects if project does not exist", async () => {
+    // Arrange
+    organizationService.getAll.mockResolvedValue([smOrg1]);
+
+    // Act
+    await router.navigateByUrl("sm/123/projects/124");
+
+    // Assert
+    expect(router.url).toBe("/sm/123/projects");
+  });
+
+  it("redirects to sm/123/projects if exception occurs while looking for Project", async () => {
+    // Arrange
+    jest.spyOn(projectServiceMock, "getByProjectId").mockImplementation(() => {
+      throw new Error("Test error");
+    });
+    jest.spyOn(i18nServiceMock, "t").mockReturnValue("Project not found");
+
+    // Act
+    await router.navigateByUrl("sm/123/projects/123");
+    // Assert
+    expect(platformUtilsService.showToast).toHaveBeenCalledWith("error", null, "Project not found");
+    expect(router.url).toBe("/sm/123/projects");
+  });
+});
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/projects/guards/project-access.guard.ts b/bitwarden_license/bit-web/src/app/secrets-manager/projects/guards/project-access.guard.ts
new file mode 100644
index 00000000000..6c08fcc3aa7
--- /dev/null
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/projects/guards/project-access.guard.ts
@@ -0,0 +1,31 @@
+import { inject } from "@angular/core";
+import { ActivatedRouteSnapshot, CanActivateFn, createUrlTreeFromSnapshot } from "@angular/router";
+
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+
+import { ProjectService } from "../project.service";
+
+/**
+ * Redirects to projects list if the user doesn't have access to project.
+ */
+export const projectAccessGuard: CanActivateFn = async (route: ActivatedRouteSnapshot) => {
+  const projectService = inject(ProjectService);
+  const platformUtilsService = inject(PlatformUtilsService);
+  const i18nService = inject(I18nService);
+
+  try {
+    const project = await projectService.getByProjectId(route.params.projectId);
+    if (project) {
+      return true;
+    }
+  } catch {
+    platformUtilsService.showToast(
+      "error",
+      null,
+      i18nService.t("notFound", i18nService.t("project")),
+    );
+    return createUrlTreeFromSnapshot(route, ["/sm", route.params.organizationId, "projects"]);
+  }
+  return createUrlTreeFromSnapshot(route, ["/sm", route.params.organizationId, "projects"]);
+};
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-people.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-people.component.ts
index 835d3825a05..c49008c580b 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-people.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-people.component.ts
@@ -4,6 +4,7 @@ import { ActivatedRoute, Router } from "@angular/router";
 import { combineLatest, Subject, switchMap, takeUntil, catchError } from "rxjs";
 
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { ValidationService } from "@bitwarden/common/platform/abstractions/validation.service";
 import { DialogService } from "@bitwarden/components";
@@ -38,8 +39,9 @@ export class ProjectPeopleComponent implements OnInit, OnDestroy {
       }),
     ),
     catchError(async () => {
+      this.logService.info("Error fetching project people access policies.");
       await this.router.navigate(["/sm", this.organizationId, "projects"]);
-      return [];
+      return undefined;
     }),
   );
 
@@ -70,6 +72,7 @@ export class ProjectPeopleComponent implements OnInit, OnDestroy {
     private platformUtilsService: PlatformUtilsService,
     private i18nService: I18nService,
     private accessPolicySelectorService: AccessPolicySelectorService,
+    private logService: LogService,
   ) {}
 
   ngOnInit(): void {
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-secrets.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-secrets.component.ts
index 07d50b28ee1..21d6e576a01 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-secrets.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-secrets.component.ts
@@ -4,6 +4,7 @@ import { combineLatest, combineLatestWith, filter, Observable, startWith, switch
 
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { DialogService } from "@bitwarden/components";
 
@@ -42,6 +43,7 @@ export class ProjectSecretsComponent {
     private platformUtilsService: PlatformUtilsService,
     private i18nService: I18nService,
     private organizationService: OrganizationService,
+    private logService: LogService,
   ) {}
 
   ngOnInit() {
@@ -109,12 +111,13 @@ export class ProjectSecretsComponent {
     SecretsListComponent.copySecretName(name, this.platformUtilsService, this.i18nService);
   }
 
-  copySecretValue(id: string) {
-    SecretsListComponent.copySecretValue(
+  async copySecretValue(id: string) {
+    await SecretsListComponent.copySecretValue(
       id,
       this.platformUtilsService,
       this.i18nService,
       this.secretService,
+      this.logService,
     );
   }
 
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project.component.ts
index 742c2bea1d8..07ca32600a9 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project.component.ts
@@ -1,9 +1,7 @@
 import { Component, OnDestroy, OnInit } from "@angular/core";
 import { ActivatedRoute, Router } from "@angular/router";
 import {
-  catchError,
   combineLatest,
-  EMPTY,
   filter,
   Observable,
   startWith,
@@ -58,18 +56,6 @@ export class ProjectComponent implements OnInit, OnDestroy {
 
     this.project$ = combineLatest([this.route.params, currentProjectEdited]).pipe(
       switchMap(([params, _]) => this.projectService.getByProjectId(params.projectId)),
-      catchError(() => {
-        // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-        // eslint-disable-next-line @typescript-eslint/no-floating-promises
-        this.router.navigate(["/sm", this.organizationId, "projects"]).then(() => {
-          this.platformUtilsService.showToast(
-            "error",
-            null,
-            this.i18nService.t("notFound", this.i18nService.t("project")),
-          );
-        });
-        return EMPTY;
-      }),
     );
 
     const projectId$ = this.route.params.pipe(map((p) => p.projectId));
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/projects/projects-routing.module.ts b/bitwarden_license/bit-web/src/app/secrets-manager/projects/projects-routing.module.ts
index 6078520989a..231486703c9 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/projects/projects-routing.module.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/projects/projects-routing.module.ts
@@ -1,6 +1,7 @@
 import { NgModule } from "@angular/core";
 import { RouterModule, Routes } from "@angular/router";
 
+import { projectAccessGuard } from "./guards/project-access.guard";
 import { ProjectPeopleComponent } from "./project/project-people.component";
 import { ProjectSecretsComponent } from "./project/project-secrets.component";
 import { ProjectServiceAccountsComponent } from "./project/project-service-accounts.component";
@@ -15,6 +16,7 @@ const routes: Routes = [
   {
     path: ":projectId",
     component: ProjectComponent,
+    canActivate: [projectAccessGuard],
     children: [
       {
         path: "",
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/secrets/dialog/secret-dialog.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/dialog/secret-dialog.component.ts
index b1bd91a04fb..0287cdd4251 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/secrets/dialog/secret-dialog.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/dialog/secret-dialog.component.ts
@@ -199,7 +199,7 @@ export class SecretDialogComponent implements OnInit {
     return await this.projectService.create(this.data.organizationId, projectView);
   }
 
-  protected openDeleteSecretDialog() {
+  protected async openDeleteSecretDialog() {
     const secretListView: SecretListView[] = this.getSecretListView();
 
     const dialogRef = this.dialogService.open<unknown, SecretDeleteOperation>(
@@ -212,9 +212,7 @@ export class SecretDialogComponent implements OnInit {
     );
 
     // If the secret is deleted, chain close this dialog after the delete dialog
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    lastValueFrom(dialogRef.closed).then(
+    await lastValueFrom(dialogRef.closed).then(
       (closeData) => closeData !== undefined && this.dialogRef.close(),
     );
   }
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secrets.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secrets.component.ts
index a7413c9b59f..2717f96a686 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secrets.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secrets.component.ts
@@ -4,6 +4,7 @@ import { combineLatestWith, Observable, startWith, switchMap } from "rxjs";
 
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { DialogService } from "@bitwarden/components";
 
@@ -39,6 +40,7 @@ export class SecretsComponent implements OnInit {
     private platformUtilsService: PlatformUtilsService,
     private i18nService: I18nService,
     private organizationService: OrganizationService,
+    private logService: LogService,
   ) {}
 
   ngOnInit() {
@@ -97,12 +99,13 @@ export class SecretsComponent implements OnInit {
     SecretsListComponent.copySecretName(name, this.platformUtilsService, this.i18nService);
   }
 
-  copySecretValue(id: string) {
-    SecretsListComponent.copySecretValue(
+  async copySecretValue(id: string) {
+    await SecretsListComponent.copySecretValue(
       id,
       this.platformUtilsService,
       this.i18nService,
       this.secretService,
+      this.logService,
     );
   }
 
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/dialog/service-account-dialog.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/dialog/service-account-dialog.component.ts
index 105ca59e57f..de753d88138 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/dialog/service-account-dialog.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/dialog/service-account-dialog.component.ts
@@ -47,9 +47,7 @@ export class ServiceAccountDialogComponent {
 
   async ngOnInit() {
     if (this.data.operation == OperationType.Edit) {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.loadData();
+      await this.loadData();
     }
   }
 
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/guards/service-account-access.guard.spec.ts b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/guards/service-account-access.guard.spec.ts
new file mode 100644
index 00000000000..956935ac6ac
--- /dev/null
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/guards/service-account-access.guard.spec.ts
@@ -0,0 +1,122 @@
+import { Component } from "@angular/core";
+import { TestBed } from "@angular/core/testing";
+import { Router } from "@angular/router";
+import { RouterTestingModule } from "@angular/router/testing";
+import { MockProxy, mock } from "jest-mock-extended";
+
+import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
+import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+
+import { RouterService } from "../../../../../../../../clients/apps/web/src/app/core/router.service";
+import { ServiceAccountView } from "../../models/view/service-account.view";
+import { ServiceAccountService } from "../service-account.service";
+
+import { serviceAccountAccessGuard } from "./service-account-access.guard";
+
+@Component({
+  template: "",
+})
+export class GuardedRouteTestComponent {}
+
+@Component({
+  template: "",
+})
+export class RedirectTestComponent {}
+
+describe("Service account Redirect Guard", () => {
+  let organizationService: MockProxy<OrganizationService>;
+  let routerService: MockProxy<RouterService>;
+  let serviceAccountServiceMock: MockProxy<ServiceAccountService>;
+  let i18nServiceMock: MockProxy<I18nService>;
+  let platformUtilsService: MockProxy<PlatformUtilsService>;
+  let router: Router;
+
+  const smOrg1 = { id: "123", canAccessSecretsManager: true } as Organization;
+  const serviceAccountView = {
+    id: "123",
+    organizationId: "123",
+    name: "service-account-name",
+  } as ServiceAccountView;
+
+  beforeEach(async () => {
+    organizationService = mock<OrganizationService>();
+    routerService = mock<RouterService>();
+    serviceAccountServiceMock = mock<ServiceAccountService>();
+    i18nServiceMock = mock<I18nService>();
+    platformUtilsService = mock<PlatformUtilsService>();
+
+    TestBed.configureTestingModule({
+      imports: [
+        RouterTestingModule.withRoutes([
+          {
+            path: "sm/:organizationId/machine-accounts/:serviceAccountId",
+            component: GuardedRouteTestComponent,
+            canActivate: [serviceAccountAccessGuard],
+          },
+          {
+            path: "sm",
+            component: RedirectTestComponent,
+          },
+          {
+            path: "sm/:organizationId/machine-accounts",
+            component: RedirectTestComponent,
+          },
+        ]),
+      ],
+      providers: [
+        { provide: OrganizationService, useValue: organizationService },
+        { provide: RouterService, useValue: routerService },
+        { provide: ServiceAccountService, useValue: serviceAccountServiceMock },
+        { provide: I18nService, useValue: i18nServiceMock },
+        { provide: PlatformUtilsService, useValue: platformUtilsService },
+      ],
+    });
+
+    router = TestBed.inject(Router);
+  });
+
+  it("redirects to sm/{orgId}/machine-accounts/{serviceAccountId} if machine account exists", async () => {
+    // Arrange
+    organizationService.getAll.mockResolvedValue([smOrg1]);
+    serviceAccountServiceMock.getByServiceAccountId.mockReturnValue(
+      Promise.resolve(serviceAccountView),
+    );
+
+    // Act
+    await router.navigateByUrl("sm/123/machine-accounts/123");
+
+    // Assert
+    expect(router.url).toBe("/sm/123/machine-accounts/123");
+  });
+
+  it("redirects to sm/machine-accounts if machine account does not exist", async () => {
+    // Arrange
+    organizationService.getAll.mockResolvedValue([smOrg1]);
+
+    // Act
+    await router.navigateByUrl("sm/123/machine-accounts/124");
+
+    // Assert
+    expect(router.url).toBe("/sm/123/machine-accounts");
+  });
+
+  it("redirects to sm/123/machine-accounts if exception occurs while looking for service account", async () => {
+    // Arrange
+    jest.spyOn(serviceAccountServiceMock, "getByServiceAccountId").mockImplementation(() => {
+      throw new Error("Test error");
+    });
+    jest.spyOn(i18nServiceMock, "t").mockReturnValue("Service account not found");
+
+    // Act
+    await router.navigateByUrl("sm/123/machine-accounts/123");
+    // Assert
+    expect(platformUtilsService.showToast).toHaveBeenCalledWith(
+      "error",
+      null,
+      "Service account not found",
+    );
+    expect(router.url).toBe("/sm/123/machine-accounts");
+  });
+});
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/guards/service-account-access.guard.ts b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/guards/service-account-access.guard.ts
index c474ec44d55..b72fc5a1fe2 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/guards/service-account-access.guard.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/guards/service-account-access.guard.ts
@@ -1,6 +1,9 @@
 import { inject } from "@angular/core";
 import { ActivatedRouteSnapshot, CanActivateFn, createUrlTreeFromSnapshot } from "@angular/router";
 
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+
 import { ServiceAccountService } from "../service-account.service";
 
 /**
@@ -8,6 +11,8 @@ import { ServiceAccountService } from "../service-account.service";
  */
 export const serviceAccountAccessGuard: CanActivateFn = async (route: ActivatedRouteSnapshot) => {
   const serviceAccountService = inject(ServiceAccountService);
+  const platformUtilsService = inject(PlatformUtilsService);
+  const i18nService = inject(I18nService);
 
   try {
     const serviceAccount = await serviceAccountService.getByServiceAccountId(
@@ -18,6 +23,12 @@ export const serviceAccountAccessGuard: CanActivateFn = async (route: ActivatedR
       return true;
     }
   } catch {
+    platformUtilsService.showToast(
+      "error",
+      null,
+      i18nService.t("notFound", i18nService.t("machineAccount")),
+    );
+
     return createUrlTreeFromSnapshot(route, [
       "/sm",
       route.params.organizationId,
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/service-account.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/service-account.component.ts
index bb687c51c62..51b663acce6 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/service-account.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/service-account.component.ts
@@ -1,15 +1,6 @@
 import { Component, OnDestroy, OnInit } from "@angular/core";
 import { ActivatedRoute, Router } from "@angular/router";
-import {
-  EMPTY,
-  Subject,
-  catchError,
-  combineLatest,
-  filter,
-  startWith,
-  switchMap,
-  takeUntil,
-} from "rxjs";
+import { Subject, combineLatest, filter, startWith, switchMap, takeUntil } from "rxjs";
 
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
@@ -42,18 +33,6 @@ export class ServiceAccountComponent implements OnInit, OnDestroy {
         params.organizationId,
       ),
     ),
-    catchError(() => {
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.router.navigate(["/sm", this.organizationId, "machine-accounts"]).then(() => {
-        this.platformUtilsService.showToast(
-          "error",
-          null,
-          this.i18nService.t("notFound", this.i18nService.t("machineAccount")),
-        );
-      });
-      return EMPTY;
-    }),
   );
 
   constructor(
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.ts
index d640114e071..9fccacf6640 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.ts
@@ -3,6 +3,7 @@ import { Component, EventEmitter, Input, OnDestroy, Output } from "@angular/core
 import { Subject, takeUntil } from "rxjs";
 
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { TableDataSource } from "@bitwarden/components";
 
@@ -134,22 +135,24 @@ export class SecretsListComponent implements OnDestroy {
   /**
    * TODO: Refactor to smart component and remove
    */
-  static copySecretValue(
+  static async copySecretValue(
     id: string,
     platformUtilsService: PlatformUtilsService,
     i18nService: I18nService,
     secretService: SecretService,
+    logService: LogService,
   ) {
-    const value = secretService.getBySecretId(id).then((secret) => secret.value);
-    // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-    // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    SecretsListComponent.copyToClipboardAsync(value, platformUtilsService).then(() => {
+    try {
+      const value = await secretService.getBySecretId(id).then((secret) => secret.value);
+      platformUtilsService.copyToClipboard(value);
       platformUtilsService.showToast(
         "success",
         null,
         i18nService.t("valueCopied", i18nService.t("value")),
       );
-    });
+    } catch {
+      logService.info("Error fetching secret value.");
+    }
   }
 
   static copySecretUuid(

From 3e93fc946133aec67059abd175804c8b28c541d2 Mon Sep 17 00:00:00 2001
From: Matt Gibson <mgibson@bitwarden.com>
Date: Tue, 4 Jun 2024 11:13:04 -0400
Subject: [PATCH 086/138] Prefer UserKeyDefinitions for `getUser` state (#9487)

---
 libs/common/src/tools/state/buffered-state.spec.ts | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/libs/common/src/tools/state/buffered-state.spec.ts b/libs/common/src/tools/state/buffered-state.spec.ts
index 09419207caf..8fbb09cb38f 100644
--- a/libs/common/src/tools/state/buffered-state.spec.ts
+++ b/libs/common/src/tools/state/buffered-state.spec.ts
@@ -6,7 +6,7 @@ import {
   awaitAsync,
   trackEmissions,
 } from "../../../spec";
-import { GENERATOR_DISK, KeyDefinition } from "../../platform/state";
+import { GENERATOR_DISK, UserKeyDefinition } from "../../platform/state";
 import { UserId } from "../../types/guid";
 
 import { BufferedKeyDefinition } from "./buffered-key-definition";
@@ -16,8 +16,9 @@ const SomeUser = "SomeUser" as UserId;
 const accountService = mockAccountServiceWith(SomeUser);
 type SomeType = { foo: boolean; bar: boolean };
 
-const SOME_KEY = new KeyDefinition<SomeType>(GENERATOR_DISK, "fooBar", {
+const SOME_KEY = new UserKeyDefinition<SomeType>(GENERATOR_DISK, "fooBar", {
   deserializer: (jsonValue) => jsonValue as SomeType,
+  clearOn: [],
 });
 const BUFFER_KEY = new BufferedKeyDefinition<SomeType>(GENERATOR_DISK, "fooBar_buffer", {
   deserializer: (jsonValue) => jsonValue as SomeType,

From 3acdd9d8fde0d4875b2a61589bcbcfcb53ff03fd Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E2=9C=A8=20Audrey=20=E2=9C=A8?= <ajensen@bitwarden.com>
Date: Tue, 4 Jun 2024 11:26:20 -0400
Subject: [PATCH 087/138] [PM-7290] replace legacy abstraction with generation
 algorithms (#9435)

* replace legacy abstraction with generation algorithms
* delete mv2-based generator services
---
 .../generator/abstractions/randomizer.ts      |  39 ++
 .../legacy-password-generation.service.ts     |  10 +-
 .../legacy-username-generation.service.ts     |  12 +-
 .../passphrase-generator-strategy.spec.ts     |  34 +-
 .../passphrase-generator-strategy.ts          |  81 ++--
 .../src/tools/generator/password/index.ts     |   1 -
 .../password/password-generation.service.ts   | 409 ------------------
 .../password-generator-strategy.spec.ts       |  38 +-
 .../password/password-generator-strategy.ts   | 140 ++++--
 libs/common/src/tools/generator/policies.ts   |  48 ++
 libs/common/src/tools/generator/random.ts     |  62 +++
 .../src/tools/generator/rx-operators.ts       |  25 +-
 .../catchall-generator-strategy.spec.ts       |  27 +-
 .../username/catchall-generator-strategy.ts   |  54 ++-
 .../eff-username-generator-strategy.spec.ts   |  25 +-
 .../eff-username-generator-strategy.ts        |  47 +-
 .../forwarder-generator-strategy.spec.ts      |   2 +-
 .../username/forwarder-generator-strategy.ts  |  47 +-
 .../generator/username/forwarders/addy-io.ts  |  24 +-
 .../username/forwarders/duck-duck-go.ts       |  24 +-
 .../generator/username/forwarders/fastmail.ts |  26 +-
 .../username/forwarders/firefox-relay.ts      |  24 +-
 .../username/forwarders/forward-email.ts      |  24 +-
 .../username/forwarders/simple-login.ts       |  24 +-
 .../src/tools/generator/username/index.ts     |   1 -
 .../subaddress-generator-strategy.spec.ts     |  30 +-
 .../username/subaddress-generator-strategy.ts |  60 +--
 .../username/username-generation.service.ts   | 198 ---------
 libs/common/src/tools/generator/util.ts       |  41 ++
 .../src/tools/generator/word-options.ts       |   6 +
 30 files changed, 535 insertions(+), 1048 deletions(-)
 create mode 100644 libs/common/src/tools/generator/abstractions/randomizer.ts
 delete mode 100644 libs/common/src/tools/generator/password/password-generation.service.ts
 create mode 100644 libs/common/src/tools/generator/policies.ts
 create mode 100644 libs/common/src/tools/generator/random.ts
 delete mode 100644 libs/common/src/tools/generator/username/username-generation.service.ts
 create mode 100644 libs/common/src/tools/generator/util.ts
 create mode 100644 libs/common/src/tools/generator/word-options.ts

diff --git a/libs/common/src/tools/generator/abstractions/randomizer.ts b/libs/common/src/tools/generator/abstractions/randomizer.ts
new file mode 100644
index 00000000000..33222477593
--- /dev/null
+++ b/libs/common/src/tools/generator/abstractions/randomizer.ts
@@ -0,0 +1,39 @@
+import { WordOptions } from "../word-options";
+
+/** Entropy source for credential generation. */
+export interface Randomizer {
+  /** picks a random entry from a list.
+   *  @param list random entry source. This must have at least one entry.
+   *  @returns a promise that resolves with a random entry from the list.
+   */
+  pick<Entry>(list: Array<Entry>): Promise<Entry>;
+
+  /** picks a random word from a list.
+   *  @param list random entry source. This must have at least one entry.
+   *  @param options customizes the output word
+   *  @returns a promise that resolves with a random word from the list.
+   */
+  pickWord(list: Array<string>, options?: WordOptions): Promise<string>;
+
+  /** Shuffles a list of items
+   *  @param list random entry source. This must have at least two entries.
+   *  @param options.copy shuffles a copy of the input when this is true.
+   *    Defaults to true.
+   *  @returns a promise that resolves with the randomized list.
+   */
+  shuffle<Entry>(items: Array<Entry>): Promise<Array<Entry>>;
+
+  /** Generates a string containing random lowercase ASCII characters and numbers.
+   *  @param length the number of characters to generate
+   *  @returns a promise that resolves with the randomized string.
+   */
+  chars(length: number): Promise<string>;
+
+  /** Selects an integer value from a range by randomly choosing it from
+   *  a uniform distribution.
+   *  @param min the minimum value in the range, inclusive.
+   *  @param max the minimum value in the range, inclusive.
+   *  @returns a promise that resolves with the randomized string.
+   */
+  uniform(min: number, max: number): Promise<number>;
+}
diff --git a/libs/common/src/tools/generator/legacy-password-generation.service.ts b/libs/common/src/tools/generator/legacy-password-generation.service.ts
index db4aa9d2a99..d69d4d2dc06 100644
--- a/libs/common/src/tools/generator/legacy-password-generation.service.ts
+++ b/libs/common/src/tools/generator/legacy-password-generation.service.ts
@@ -40,11 +40,11 @@ import {
 import {
   GeneratedPasswordHistory,
   PasswordGenerationOptions,
-  PasswordGenerationService,
   PasswordGeneratorOptions,
   PasswordGeneratorPolicy,
   PasswordGeneratorStrategy,
 } from "./password";
+import { CryptoServiceRandomizer } from "./random";
 
 type MappedOptions = {
   generator: GeneratorNavigation;
@@ -60,17 +60,15 @@ export function legacyPasswordGenerationServiceFactory(
   accountService: AccountService,
   stateProvider: StateProvider,
 ): PasswordGenerationServiceAbstraction {
-  // FIXME: Once the password generation service is replaced with this service
-  // in the clients, factor out the deprecated service in its entirety.
-  const deprecatedService = new PasswordGenerationService(cryptoService, null, null);
+  const randomizer = new CryptoServiceRandomizer(cryptoService);
 
   const passwords = new DefaultGeneratorService(
-    new PasswordGeneratorStrategy(deprecatedService, stateProvider),
+    new PasswordGeneratorStrategy(randomizer, stateProvider),
     policyService,
   );
 
   const passphrases = new DefaultGeneratorService(
-    new PassphraseGeneratorStrategy(deprecatedService, stateProvider),
+    new PassphraseGeneratorStrategy(randomizer, stateProvider),
     policyService,
   );
 
diff --git a/libs/common/src/tools/generator/legacy-username-generation.service.ts b/libs/common/src/tools/generator/legacy-username-generation.service.ts
index 61c19ee3144..aaa6bc2c806 100644
--- a/libs/common/src/tools/generator/legacy-username-generation.service.ts
+++ b/libs/common/src/tools/generator/legacy-username-generation.service.ts
@@ -14,6 +14,7 @@ import { DefaultGeneratorService } from "./default-generator.service";
 import { DefaultGeneratorNavigationService } from "./navigation/default-generator-navigation.service";
 import { GeneratorNavigation } from "./navigation/generator-navigation";
 import { NoPolicy } from "./no-policy";
+import { CryptoServiceRandomizer } from "./random";
 import {
   CatchallGeneratorStrategy,
   SubaddressGeneratorStrategy,
@@ -37,7 +38,6 @@ import {
 } from "./username/options/forwarder-options";
 import { SubaddressGenerationOptions } from "./username/subaddress-generator-options";
 import { UsernameGeneratorOptions } from "./username/username-generation-options";
-import { UsernameGenerationService } from "./username/username-generation.service";
 
 type MappedOptions = {
   generator: GeneratorNavigation;
@@ -65,22 +65,20 @@ export function legacyUsernameGenerationServiceFactory(
   accountService: AccountService,
   stateProvider: StateProvider,
 ): UsernameGenerationServiceAbstraction {
-  // FIXME: Once the username generation service is replaced with this service
-  // in the clients, factor out the deprecated service in its entirety.
-  const deprecatedService = new UsernameGenerationService(cryptoService, null, null);
+  const randomizer = new CryptoServiceRandomizer(cryptoService);
 
   const effUsername = new DefaultGeneratorService(
-    new EffUsernameGeneratorStrategy(deprecatedService, stateProvider),
+    new EffUsernameGeneratorStrategy(randomizer, stateProvider),
     policyService,
   );
 
   const subaddress = new DefaultGeneratorService(
-    new SubaddressGeneratorStrategy(deprecatedService, stateProvider),
+    new SubaddressGeneratorStrategy(randomizer, stateProvider),
     policyService,
   );
 
   const catchall = new DefaultGeneratorService(
-    new CatchallGeneratorStrategy(deprecatedService, stateProvider),
+    new CatchallGeneratorStrategy(randomizer, stateProvider),
     policyService,
   );
 
diff --git a/libs/common/src/tools/generator/passphrase/passphrase-generator-strategy.spec.ts b/libs/common/src/tools/generator/passphrase/passphrase-generator-strategy.spec.ts
index 6ad1bd90dd4..429f81175a8 100644
--- a/libs/common/src/tools/generator/passphrase/passphrase-generator-strategy.spec.ts
+++ b/libs/common/src/tools/generator/passphrase/passphrase-generator-strategy.spec.ts
@@ -11,7 +11,7 @@ import { PolicyType } from "../../../admin-console/enums";
 import { Policy } from "../../../admin-console/models/domain/policy";
 import { StateProvider } from "../../../platform/state";
 import { UserId } from "../../../types/guid";
-import { PasswordGenerationServiceAbstraction } from "../abstractions/password-generation.service.abstraction";
+import { Randomizer } from "../abstractions/randomizer";
 import { PASSPHRASE_SETTINGS } from "../key-definitions";
 
 import { DisabledPassphraseGeneratorPolicy } from "./passphrase-generator-policy";
@@ -65,8 +65,8 @@ describe("Password generation strategy", () => {
   describe("durableState", () => {
     it("should use password settings key", () => {
       const provider = mock<StateProvider>();
-      const legacy = mock<PasswordGenerationServiceAbstraction>();
-      const strategy = new PassphraseGeneratorStrategy(legacy, provider);
+      const randomizer = mock<Randomizer>();
+      const strategy = new PassphraseGeneratorStrategy(randomizer, provider);
 
       strategy.durableState(SomeUser);
 
@@ -86,36 +86,14 @@ describe("Password generation strategy", () => {
 
   describe("policy", () => {
     it("should use password generator policy", () => {
-      const legacy = mock<PasswordGenerationServiceAbstraction>();
-      const strategy = new PassphraseGeneratorStrategy(legacy, null);
+      const randomizer = mock<Randomizer>();
+      const strategy = new PassphraseGeneratorStrategy(randomizer, null);
 
       expect(strategy.policy).toBe(PolicyType.PasswordGenerator);
     });
   });
 
   describe("generate()", () => {
-    it("should call the legacy service with the given options", async () => {
-      const legacy = mock<PasswordGenerationServiceAbstraction>();
-      const strategy = new PassphraseGeneratorStrategy(legacy, null);
-      const options = {
-        type: "passphrase",
-        minNumberWords: 1,
-        capitalize: true,
-        includeNumber: true,
-      };
-
-      await strategy.generate(options);
-
-      expect(legacy.generatePassphrase).toHaveBeenCalledWith(options);
-    });
-
-    it("should set the generation type to passphrase", async () => {
-      const legacy = mock<PasswordGenerationServiceAbstraction>();
-      const strategy = new PassphraseGeneratorStrategy(legacy, null);
-
-      await strategy.generate({ type: "foo" } as any);
-
-      expect(legacy.generatePassphrase).toHaveBeenCalledWith({ type: "passphrase" });
-    });
+    it.todo("should generate a password using the given options");
   });
 });
diff --git a/libs/common/src/tools/generator/passphrase/passphrase-generator-strategy.ts b/libs/common/src/tools/generator/passphrase/passphrase-generator-strategy.ts
index c7b5ff8b787..3ed6a1219ce 100644
--- a/libs/common/src/tools/generator/passphrase/passphrase-generator-strategy.ts
+++ b/libs/common/src/tools/generator/passphrase/passphrase-generator-strategy.ts
@@ -1,25 +1,20 @@
-import { BehaviorSubject, map, pipe } from "rxjs";
-
 import { GeneratorStrategy } from "..";
 import { PolicyType } from "../../../admin-console/enums";
+import { EFFLongWordList } from "../../../platform/misc/wordlist";
 import { StateProvider } from "../../../platform/state";
-import { UserId } from "../../../types/guid";
-import { PasswordGenerationServiceAbstraction } from "../abstractions/password-generation.service.abstraction";
+import { Randomizer } from "../abstractions/randomizer";
 import { PASSPHRASE_SETTINGS } from "../key-definitions";
-import { distinctIfShallowMatch, reduceCollection } from "../rx-operators";
+import { Policies } from "../policies";
+import { mapPolicyToEvaluator } from "../rx-operators";
+import { clone$PerUserId, sharedStateByUserId } from "../util";
 
 import {
   PassphraseGenerationOptions,
   DefaultPassphraseGenerationOptions,
 } from "./passphrase-generation-options";
-import { PassphraseGeneratorOptionsEvaluator } from "./passphrase-generator-options-evaluator";
-import {
-  DisabledPassphraseGeneratorPolicy,
-  PassphraseGeneratorPolicy,
-  leastPrivilege,
-} from "./passphrase-generator-policy";
+import { PassphraseGeneratorPolicy } from "./passphrase-generator-policy";
 
-/** {@link GeneratorStrategy} */
+/** Generates passphrases composed of random words */
 export class PassphraseGeneratorStrategy
   implements GeneratorStrategy<PassphraseGenerationOptions, PassphraseGeneratorPolicy>
 {
@@ -28,36 +23,48 @@ export class PassphraseGeneratorStrategy
    *  @param stateProvider provides durable state
    */
   constructor(
-    private legacy: PasswordGenerationServiceAbstraction,
+    private randomizer: Randomizer,
     private stateProvider: StateProvider,
   ) {}
 
-  /** {@link GeneratorStrategy.durableState} */
-  durableState(id: UserId) {
-    return this.stateProvider.getUser(id, PASSPHRASE_SETTINGS);
-  }
-
-  /** Gets the default options. */
-  defaults$(_: UserId) {
-    return new BehaviorSubject({ ...DefaultPassphraseGenerationOptions }).asObservable();
-  }
-
-  /** {@link GeneratorStrategy.policy} */
-  get policy() {
-    return PolicyType.PasswordGenerator;
-  }
-
-  /** {@link GeneratorStrategy.toEvaluator} */
+  // configuration
+  durableState = sharedStateByUserId(PASSPHRASE_SETTINGS, this.stateProvider);
+  defaults$ = clone$PerUserId(DefaultPassphraseGenerationOptions);
+  readonly policy = PolicyType.PasswordGenerator;
   toEvaluator() {
-    return pipe(
-      reduceCollection(leastPrivilege, DisabledPassphraseGeneratorPolicy),
-      distinctIfShallowMatch(),
-      map((policy) => new PassphraseGeneratorOptionsEvaluator(policy)),
-    );
+    return mapPolicyToEvaluator(Policies.Passphrase);
   }
 
-  /** {@link GeneratorStrategy.generate} */
-  generate(options: PassphraseGenerationOptions): Promise<string> {
-    return this.legacy.generatePassphrase({ ...options, type: "passphrase" });
+  // algorithm
+  async generate(options: PassphraseGenerationOptions): Promise<string> {
+    const o = { ...DefaultPassphraseGenerationOptions, ...options };
+    if (o.numWords == null || o.numWords <= 2) {
+      o.numWords = DefaultPassphraseGenerationOptions.numWords;
+    }
+    if (o.capitalize == null) {
+      o.capitalize = false;
+    }
+    if (o.includeNumber == null) {
+      o.includeNumber = false;
+    }
+
+    // select which word gets the number, if any
+    let luckyNumber = -1;
+    if (o.includeNumber) {
+      luckyNumber = await this.randomizer.uniform(0, o.numWords);
+    }
+
+    // generate the passphrase
+    const wordList = new Array(o.numWords);
+    for (let i = 0; i < o.numWords; i++) {
+      const word = await this.randomizer.pickWord(EFFLongWordList, {
+        titleCase: o.capitalize,
+        number: i === luckyNumber,
+      });
+
+      wordList[i] = word;
+    }
+
+    return wordList.join(o.wordSeparator);
   }
 }
diff --git a/libs/common/src/tools/generator/password/index.ts b/libs/common/src/tools/generator/password/index.ts
index e17ab8201c9..7e16a2c442a 100644
--- a/libs/common/src/tools/generator/password/index.ts
+++ b/libs/common/src/tools/generator/password/index.ts
@@ -7,5 +7,4 @@ export { PasswordGeneratorStrategy } from "./password-generator-strategy";
 // legacy interfaces
 export { PasswordGeneratorOptions } from "./password-generator-options";
 export { PasswordGenerationServiceAbstraction } from "../abstractions/password-generation.service.abstraction";
-export { PasswordGenerationService } from "./password-generation.service";
 export { GeneratedPasswordHistory } from "./generated-password-history";
diff --git a/libs/common/src/tools/generator/password/password-generation.service.ts b/libs/common/src/tools/generator/password/password-generation.service.ts
deleted file mode 100644
index e193b0fd33e..00000000000
--- a/libs/common/src/tools/generator/password/password-generation.service.ts
+++ /dev/null
@@ -1,409 +0,0 @@
-import { from } from "rxjs";
-
-import { PolicyService } from "../../../admin-console/abstractions/policy/policy.service.abstraction";
-import { PolicyType } from "../../../admin-console/enums";
-import { PasswordGeneratorPolicyOptions } from "../../../admin-console/models/domain/password-generator-policy-options";
-import { CryptoService } from "../../../platform/abstractions/crypto.service";
-import { StateService } from "../../../platform/abstractions/state.service";
-import { EFFLongWordList } from "../../../platform/misc/wordlist";
-import { EncString } from "../../../platform/models/domain/enc-string";
-import { PasswordGenerationServiceAbstraction } from "../abstractions/password-generation.service.abstraction";
-import { PassphraseGeneratorOptionsEvaluator } from "../passphrase/passphrase-generator-options-evaluator";
-
-import { GeneratedPasswordHistory } from "./generated-password-history";
-import { PasswordGeneratorOptions } from "./password-generator-options";
-import { PasswordGeneratorOptionsEvaluator } from "./password-generator-options-evaluator";
-
-const DefaultOptions: PasswordGeneratorOptions = {
-  length: 14,
-  minLength: 5,
-  ambiguous: false,
-  number: true,
-  minNumber: 1,
-  uppercase: true,
-  minUppercase: 0,
-  lowercase: true,
-  minLowercase: 0,
-  special: false,
-  minSpecial: 0,
-  type: "password",
-  numWords: 3,
-  wordSeparator: "-",
-  capitalize: false,
-  includeNumber: false,
-};
-
-const DefaultPolicy = new PasswordGeneratorPolicyOptions();
-
-const MaxPasswordsInHistory = 100;
-
-export class PasswordGenerationService implements PasswordGenerationServiceAbstraction {
-  constructor(
-    private cryptoService: CryptoService,
-    private policyService: PolicyService,
-    private stateService: StateService,
-  ) {}
-
-  async generatePassword(options: PasswordGeneratorOptions): Promise<string> {
-    if ((options.type ?? DefaultOptions.type) === "passphrase") {
-      return this.generatePassphrase({ ...DefaultOptions, ...options });
-    }
-
-    const evaluator = new PasswordGeneratorOptionsEvaluator(DefaultPolicy);
-    const o = evaluator.sanitize({ ...DefaultOptions, ...options });
-
-    const positions: string[] = [];
-    if (o.lowercase && o.minLowercase > 0) {
-      for (let i = 0; i < o.minLowercase; i++) {
-        positions.push("l");
-      }
-    }
-    if (o.uppercase && o.minUppercase > 0) {
-      for (let i = 0; i < o.minUppercase; i++) {
-        positions.push("u");
-      }
-    }
-    if (o.number && o.minNumber > 0) {
-      for (let i = 0; i < o.minNumber; i++) {
-        positions.push("n");
-      }
-    }
-    if (o.special && o.minSpecial > 0) {
-      for (let i = 0; i < o.minSpecial; i++) {
-        positions.push("s");
-      }
-    }
-    while (positions.length < o.length) {
-      positions.push("a");
-    }
-
-    // shuffle
-    await this.shuffleArray(positions);
-
-    // build out the char sets
-    let allCharSet = "";
-
-    let lowercaseCharSet = "abcdefghijkmnopqrstuvwxyz";
-    if (o.ambiguous) {
-      lowercaseCharSet += "l";
-    }
-    if (o.lowercase) {
-      allCharSet += lowercaseCharSet;
-    }
-
-    let uppercaseCharSet = "ABCDEFGHJKLMNPQRSTUVWXYZ";
-    if (o.ambiguous) {
-      uppercaseCharSet += "IO";
-    }
-    if (o.uppercase) {
-      allCharSet += uppercaseCharSet;
-    }
-
-    let numberCharSet = "23456789";
-    if (o.ambiguous) {
-      numberCharSet += "01";
-    }
-    if (o.number) {
-      allCharSet += numberCharSet;
-    }
-
-    const specialCharSet = "!@#$%^&*";
-    if (o.special) {
-      allCharSet += specialCharSet;
-    }
-
-    let password = "";
-    for (let i = 0; i < o.length; i++) {
-      let positionChars: string;
-      switch (positions[i]) {
-        case "l":
-          positionChars = lowercaseCharSet;
-          break;
-        case "u":
-          positionChars = uppercaseCharSet;
-          break;
-        case "n":
-          positionChars = numberCharSet;
-          break;
-        case "s":
-          positionChars = specialCharSet;
-          break;
-        case "a":
-          positionChars = allCharSet;
-          break;
-        default:
-          break;
-      }
-
-      const randomCharIndex = await this.cryptoService.randomNumber(0, positionChars.length - 1);
-      password += positionChars.charAt(randomCharIndex);
-    }
-
-    return password;
-  }
-
-  async generatePassphrase(options: PasswordGeneratorOptions): Promise<string> {
-    const evaluator = new PassphraseGeneratorOptionsEvaluator(DefaultPolicy);
-    const o = evaluator.sanitize({ ...DefaultOptions, ...options });
-
-    if (o.numWords == null || o.numWords <= 2) {
-      o.numWords = DefaultOptions.numWords;
-    }
-    if (o.capitalize == null) {
-      o.capitalize = false;
-    }
-    if (o.includeNumber == null) {
-      o.includeNumber = false;
-    }
-
-    const listLength = EFFLongWordList.length - 1;
-    const wordList = new Array(o.numWords);
-    for (let i = 0; i < o.numWords; i++) {
-      const wordIndex = await this.cryptoService.randomNumber(0, listLength);
-      if (o.capitalize) {
-        wordList[i] = this.capitalize(EFFLongWordList[wordIndex]);
-      } else {
-        wordList[i] = EFFLongWordList[wordIndex];
-      }
-    }
-
-    if (o.includeNumber) {
-      await this.appendRandomNumberToRandomWord(wordList);
-    }
-    return wordList.join(o.wordSeparator);
-  }
-
-  getOptions$() {
-    return from(this.getOptions());
-  }
-
-  async getOptions(): Promise<[PasswordGeneratorOptions, PasswordGeneratorPolicyOptions]> {
-    let options = await this.stateService.getPasswordGenerationOptions();
-    if (options == null) {
-      options = Object.assign({}, DefaultOptions);
-    } else {
-      options = Object.assign({}, DefaultOptions, options);
-    }
-    await this.stateService.setPasswordGenerationOptions(options);
-    const enforcedOptions = await this.enforcePasswordGeneratorPoliciesOnOptions(options);
-    options = enforcedOptions[0];
-    return [options, enforcedOptions[1]];
-  }
-
-  async enforcePasswordGeneratorPoliciesOnOptions(
-    options: PasswordGeneratorOptions,
-  ): Promise<[PasswordGeneratorOptions, PasswordGeneratorPolicyOptions]> {
-    let policy = await this.getPasswordGeneratorPolicyOptions();
-    policy = policy ?? new PasswordGeneratorPolicyOptions();
-
-    // Force default type if password/passphrase selected via policy
-    if (policy.defaultType === "password" || policy.defaultType === "passphrase") {
-      options.type = policy.defaultType;
-    }
-
-    const evaluator =
-      options.type == "password"
-        ? new PasswordGeneratorOptionsEvaluator(policy)
-        : new PassphraseGeneratorOptionsEvaluator(policy);
-
-    // Ensure the options to pass the current rules
-    const withPolicy = evaluator.applyPolicy(options);
-    const sanitized = evaluator.sanitize(withPolicy);
-
-    // callers assume this function updates the options parameter
-    const result = Object.assign(options, sanitized);
-    return [result, policy];
-  }
-
-  async getPasswordGeneratorPolicyOptions(): Promise<PasswordGeneratorPolicyOptions> {
-    const policies = await this.policyService?.getAll(PolicyType.PasswordGenerator);
-    let enforcedOptions: PasswordGeneratorPolicyOptions = null;
-
-    if (policies == null || policies.length === 0) {
-      return enforcedOptions;
-    }
-
-    policies.forEach((currentPolicy) => {
-      if (!currentPolicy.enabled || currentPolicy.data == null) {
-        return;
-      }
-
-      if (enforcedOptions == null) {
-        enforcedOptions = new PasswordGeneratorPolicyOptions();
-      }
-
-      // Password wins in multi-org collisions
-      if (currentPolicy.data.defaultType != null && enforcedOptions.defaultType !== "password") {
-        enforcedOptions.defaultType = currentPolicy.data.defaultType;
-      }
-
-      if (
-        currentPolicy.data.minLength != null &&
-        currentPolicy.data.minLength > enforcedOptions.minLength
-      ) {
-        enforcedOptions.minLength = currentPolicy.data.minLength;
-      }
-
-      if (currentPolicy.data.useUpper) {
-        enforcedOptions.useUppercase = true;
-      }
-
-      if (currentPolicy.data.useLower) {
-        enforcedOptions.useLowercase = true;
-      }
-
-      if (currentPolicy.data.useNumbers) {
-        enforcedOptions.useNumbers = true;
-      }
-
-      if (
-        currentPolicy.data.minNumbers != null &&
-        currentPolicy.data.minNumbers > enforcedOptions.numberCount
-      ) {
-        enforcedOptions.numberCount = currentPolicy.data.minNumbers;
-      }
-
-      if (currentPolicy.data.useSpecial) {
-        enforcedOptions.useSpecial = true;
-      }
-
-      if (
-        currentPolicy.data.minSpecial != null &&
-        currentPolicy.data.minSpecial > enforcedOptions.specialCount
-      ) {
-        enforcedOptions.specialCount = currentPolicy.data.minSpecial;
-      }
-
-      if (
-        currentPolicy.data.minNumberWords != null &&
-        currentPolicy.data.minNumberWords > enforcedOptions.minNumberWords
-      ) {
-        enforcedOptions.minNumberWords = currentPolicy.data.minNumberWords;
-      }
-
-      if (currentPolicy.data.capitalize) {
-        enforcedOptions.capitalize = true;
-      }
-
-      if (currentPolicy.data.includeNumber) {
-        enforcedOptions.includeNumber = true;
-      }
-    });
-
-    return enforcedOptions;
-  }
-
-  async saveOptions(options: PasswordGeneratorOptions) {
-    await this.stateService.setPasswordGenerationOptions(options);
-  }
-
-  async getHistory(): Promise<GeneratedPasswordHistory[]> {
-    const hasKey = await this.cryptoService.hasUserKey();
-    if (!hasKey) {
-      return new Array<GeneratedPasswordHistory>();
-    }
-
-    if ((await this.stateService.getDecryptedPasswordGenerationHistory()) == null) {
-      const encrypted = await this.stateService.getEncryptedPasswordGenerationHistory();
-      const decrypted = await this.decryptHistory(encrypted);
-      await this.stateService.setDecryptedPasswordGenerationHistory(decrypted);
-    }
-
-    const passwordGenerationHistory =
-      await this.stateService.getDecryptedPasswordGenerationHistory();
-    return passwordGenerationHistory != null
-      ? passwordGenerationHistory
-      : new Array<GeneratedPasswordHistory>();
-  }
-
-  async addHistory(password: string): Promise<void> {
-    // Cannot add new history if no key is available
-    const hasKey = await this.cryptoService.hasUserKey();
-    if (!hasKey) {
-      return;
-    }
-
-    const currentHistory = await this.getHistory();
-
-    // Prevent duplicates
-    if (this.matchesPrevious(password, currentHistory)) {
-      return;
-    }
-
-    currentHistory.unshift(new GeneratedPasswordHistory(password, Date.now()));
-
-    // Remove old items.
-    if (currentHistory.length > MaxPasswordsInHistory) {
-      currentHistory.pop();
-    }
-
-    const newHistory = await this.encryptHistory(currentHistory);
-    await this.stateService.setDecryptedPasswordGenerationHistory(currentHistory);
-    return await this.stateService.setEncryptedPasswordGenerationHistory(newHistory);
-  }
-
-  async clear(userId?: string): Promise<GeneratedPasswordHistory[]> {
-    await this.stateService.setEncryptedPasswordGenerationHistory(null, { userId: userId });
-    await this.stateService.setDecryptedPasswordGenerationHistory(null, { userId: userId });
-    return [];
-  }
-
-  private capitalize(str: string) {
-    return str.charAt(0).toUpperCase() + str.slice(1);
-  }
-
-  private async appendRandomNumberToRandomWord(wordList: string[]) {
-    if (wordList == null || wordList.length <= 0) {
-      return;
-    }
-    const index = await this.cryptoService.randomNumber(0, wordList.length - 1);
-    const num = await this.cryptoService.randomNumber(0, 9);
-    wordList[index] = wordList[index] + num;
-  }
-
-  private async encryptHistory(
-    history: GeneratedPasswordHistory[],
-  ): Promise<GeneratedPasswordHistory[]> {
-    if (history == null || history.length === 0) {
-      return Promise.resolve([]);
-    }
-
-    const promises = history.map(async (item) => {
-      const encrypted = await this.cryptoService.encrypt(item.password);
-      return new GeneratedPasswordHistory(encrypted.encryptedString, item.date);
-    });
-
-    return await Promise.all(promises);
-  }
-
-  private async decryptHistory(
-    history: GeneratedPasswordHistory[],
-  ): Promise<GeneratedPasswordHistory[]> {
-    if (history == null || history.length === 0) {
-      return Promise.resolve([]);
-    }
-
-    const promises = history.map(async (item) => {
-      const decrypted = await this.cryptoService.decryptToUtf8(new EncString(item.password));
-      return new GeneratedPasswordHistory(decrypted, item.date);
-    });
-
-    return await Promise.all(promises);
-  }
-
-  private matchesPrevious(password: string, history: GeneratedPasswordHistory[]): boolean {
-    if (history == null || history.length === 0) {
-      return false;
-    }
-
-    return history[history.length - 1].password === password;
-  }
-
-  // ref: https://stackoverflow.com/a/12646864/1090359
-  private async shuffleArray(array: string[]) {
-    for (let i = array.length - 1; i > 0; i--) {
-      const j = await this.cryptoService.randomNumber(0, i);
-      [array[i], array[j]] = [array[j], array[i]];
-    }
-  }
-}
diff --git a/libs/common/src/tools/generator/password/password-generator-strategy.spec.ts b/libs/common/src/tools/generator/password/password-generator-strategy.spec.ts
index a7509e8b43e..668dd818e25 100644
--- a/libs/common/src/tools/generator/password/password-generator-strategy.spec.ts
+++ b/libs/common/src/tools/generator/password/password-generator-strategy.spec.ts
@@ -12,13 +12,13 @@ import { PolicyType } from "../../../admin-console/enums";
 import { Policy } from "../../../admin-console/models/domain/policy";
 import { StateProvider } from "../../../platform/state";
 import { UserId } from "../../../types/guid";
+import { Randomizer } from "../abstractions/randomizer";
 import { PASSWORD_SETTINGS } from "../key-definitions";
 
 import { DisabledPasswordGeneratorPolicy } from "./password-generator-policy";
 
 import {
   DefaultPasswordGenerationOptions,
-  PasswordGenerationServiceAbstraction,
   PasswordGeneratorOptionsEvaluator,
   PasswordGeneratorStrategy,
 } from ".";
@@ -74,8 +74,8 @@ describe("Password generation strategy", () => {
   describe("durableState", () => {
     it("should use password settings key", () => {
       const provider = mock<StateProvider>();
-      const legacy = mock<PasswordGenerationServiceAbstraction>();
-      const strategy = new PasswordGeneratorStrategy(legacy, provider);
+      const randomizer = mock<Randomizer>();
+      const strategy = new PasswordGeneratorStrategy(randomizer, provider);
 
       strategy.durableState(SomeUser);
 
@@ -95,40 +95,14 @@ describe("Password generation strategy", () => {
 
   describe("policy", () => {
     it("should use password generator policy", () => {
-      const legacy = mock<PasswordGenerationServiceAbstraction>();
-      const strategy = new PasswordGeneratorStrategy(legacy, null);
+      const randomizer = mock<Randomizer>();
+      const strategy = new PasswordGeneratorStrategy(randomizer, null);
 
       expect(strategy.policy).toBe(PolicyType.PasswordGenerator);
     });
   });
 
   describe("generate()", () => {
-    it("should call the legacy service with the given options", async () => {
-      const legacy = mock<PasswordGenerationServiceAbstraction>();
-      const strategy = new PasswordGeneratorStrategy(legacy, null);
-      const options = {
-        type: "password",
-        minLength: 1,
-        useUppercase: true,
-        useLowercase: true,
-        useNumbers: true,
-        numberCount: 1,
-        useSpecial: true,
-        specialCount: 1,
-      };
-
-      await strategy.generate(options);
-
-      expect(legacy.generatePassword).toHaveBeenCalledWith(options);
-    });
-
-    it("should set the generation type to password", async () => {
-      const legacy = mock<PasswordGenerationServiceAbstraction>();
-      const strategy = new PasswordGeneratorStrategy(legacy, null);
-
-      await strategy.generate({ type: "foo" } as any);
-
-      expect(legacy.generatePassword).toHaveBeenCalledWith({ type: "password" });
-    });
+    it.todo("should generate a password using the given options");
   });
 });
diff --git a/libs/common/src/tools/generator/password/password-generator-strategy.ts b/libs/common/src/tools/generator/password/password-generator-strategy.ts
index 23828d7b59d..075c331e066 100644
--- a/libs/common/src/tools/generator/password/password-generator-strategy.ts
+++ b/libs/common/src/tools/generator/password/password-generator-strategy.ts
@@ -1,25 +1,19 @@
-import { BehaviorSubject, map, pipe } from "rxjs";
-
 import { GeneratorStrategy } from "..";
 import { PolicyType } from "../../../admin-console/enums";
 import { StateProvider } from "../../../platform/state";
-import { UserId } from "../../../types/guid";
-import { PasswordGenerationServiceAbstraction } from "../abstractions/password-generation.service.abstraction";
+import { Randomizer } from "../abstractions/randomizer";
 import { PASSWORD_SETTINGS } from "../key-definitions";
-import { distinctIfShallowMatch, reduceCollection } from "../rx-operators";
+import { Policies } from "../policies";
+import { mapPolicyToEvaluator } from "../rx-operators";
+import { clone$PerUserId, sharedStateByUserId } from "../util";
 
 import {
   DefaultPasswordGenerationOptions,
   PasswordGenerationOptions,
 } from "./password-generation-options";
-import { PasswordGeneratorOptionsEvaluator } from "./password-generator-options-evaluator";
-import {
-  DisabledPasswordGeneratorPolicy,
-  PasswordGeneratorPolicy,
-  leastPrivilege,
-} from "./password-generator-policy";
+import { PasswordGeneratorPolicy } from "./password-generator-policy";
 
-/** {@link GeneratorStrategy} */
+/** Generates passwords composed of random characters */
 export class PasswordGeneratorStrategy
   implements GeneratorStrategy<PasswordGenerationOptions, PasswordGeneratorPolicy>
 {
@@ -27,36 +21,108 @@ export class PasswordGeneratorStrategy
    *  @param legacy generates the password
    */
   constructor(
-    private legacy: PasswordGenerationServiceAbstraction,
+    private randomizer: Randomizer,
     private stateProvider: StateProvider,
   ) {}
 
-  /** {@link GeneratorStrategy.durableState} */
-  durableState(id: UserId) {
-    return this.stateProvider.getUser(id, PASSWORD_SETTINGS);
-  }
-
-  /** Gets the default options. */
-  defaults$(_: UserId) {
-    return new BehaviorSubject({ ...DefaultPasswordGenerationOptions }).asObservable();
-  }
-
-  /** {@link GeneratorStrategy.policy} */
-  get policy() {
-    return PolicyType.PasswordGenerator;
-  }
-
-  /** {@link GeneratorStrategy.toEvaluator} */
+  // configuration
+  durableState = sharedStateByUserId(PASSWORD_SETTINGS, this.stateProvider);
+  defaults$ = clone$PerUserId(DefaultPasswordGenerationOptions);
+  readonly policy = PolicyType.PasswordGenerator;
   toEvaluator() {
-    return pipe(
-      reduceCollection(leastPrivilege, DisabledPasswordGeneratorPolicy),
-      distinctIfShallowMatch(),
-      map((policy) => new PasswordGeneratorOptionsEvaluator(policy)),
-    );
+    return mapPolicyToEvaluator(Policies.Password);
   }
 
-  /** {@link GeneratorStrategy.generate} */
-  generate(options: PasswordGenerationOptions): Promise<string> {
-    return this.legacy.generatePassword({ ...options, type: "password" });
+  // algorithm
+  async generate(options: PasswordGenerationOptions): Promise<string> {
+    const o = { ...DefaultPasswordGenerationOptions, ...options };
+    let positions: string[] = [];
+    if (o.lowercase && o.minLowercase > 0) {
+      for (let i = 0; i < o.minLowercase; i++) {
+        positions.push("l");
+      }
+    }
+    if (o.uppercase && o.minUppercase > 0) {
+      for (let i = 0; i < o.minUppercase; i++) {
+        positions.push("u");
+      }
+    }
+    if (o.number && o.minNumber > 0) {
+      for (let i = 0; i < o.minNumber; i++) {
+        positions.push("n");
+      }
+    }
+    if (o.special && o.minSpecial > 0) {
+      for (let i = 0; i < o.minSpecial; i++) {
+        positions.push("s");
+      }
+    }
+    while (positions.length < o.length) {
+      positions.push("a");
+    }
+
+    // shuffle
+    positions = await this.randomizer.shuffle(positions);
+
+    // build out the char sets
+    let allCharSet = "";
+
+    let lowercaseCharSet = "abcdefghijkmnopqrstuvwxyz";
+    if (o.ambiguous) {
+      lowercaseCharSet += "l";
+    }
+    if (o.lowercase) {
+      allCharSet += lowercaseCharSet;
+    }
+
+    let uppercaseCharSet = "ABCDEFGHJKLMNPQRSTUVWXYZ";
+    if (o.ambiguous) {
+      uppercaseCharSet += "IO";
+    }
+    if (o.uppercase) {
+      allCharSet += uppercaseCharSet;
+    }
+
+    let numberCharSet = "23456789";
+    if (o.ambiguous) {
+      numberCharSet += "01";
+    }
+    if (o.number) {
+      allCharSet += numberCharSet;
+    }
+
+    const specialCharSet = "!@#$%^&*";
+    if (o.special) {
+      allCharSet += specialCharSet;
+    }
+
+    let password = "";
+    for (let i = 0; i < o.length; i++) {
+      let positionChars: string;
+      switch (positions[i]) {
+        case "l":
+          positionChars = lowercaseCharSet;
+          break;
+        case "u":
+          positionChars = uppercaseCharSet;
+          break;
+        case "n":
+          positionChars = numberCharSet;
+          break;
+        case "s":
+          positionChars = specialCharSet;
+          break;
+        case "a":
+          positionChars = allCharSet;
+          break;
+        default:
+          break;
+      }
+
+      const randomCharIndex = await this.randomizer.uniform(0, positionChars.length - 1);
+      password += positionChars.charAt(randomCharIndex);
+    }
+
+    return password;
   }
 }
diff --git a/libs/common/src/tools/generator/policies.ts b/libs/common/src/tools/generator/policies.ts
new file mode 100644
index 00000000000..27521f0eebe
--- /dev/null
+++ b/libs/common/src/tools/generator/policies.ts
@@ -0,0 +1,48 @@
+import { Policy as AdminPolicy } from "@bitwarden/common/admin-console/models/domain/policy";
+
+import { PassphraseGeneratorOptionsEvaluator, PassphraseGeneratorPolicy } from "./passphrase";
+import {
+  DisabledPassphraseGeneratorPolicy,
+  leastPrivilege as passphraseLeastPrivilege,
+} from "./passphrase/passphrase-generator-policy";
+import { PasswordGeneratorOptionsEvaluator, PasswordGeneratorPolicy } from "./password";
+import {
+  DisabledPasswordGeneratorPolicy,
+  leastPrivilege as passwordLeastPrivilege,
+} from "./password/password-generator-policy";
+
+/** Determines how to construct a password generator policy */
+export type PolicyConfiguration<Policy, Evaluator> = {
+  /** The value of the policy when it is not in effect. */
+  disabledValue: Policy;
+
+  /** Combines multiple policies set by the administrative console into
+   *  a single policy.
+   */
+  combine: (acc: Policy, policy: AdminPolicy) => Policy;
+
+  /** Converts policy service data into an actionable policy.
+   */
+  createEvaluator: (policy: Policy) => Evaluator;
+};
+
+const PASSPHRASE = Object.freeze({
+  disabledValue: DisabledPassphraseGeneratorPolicy,
+  combine: passphraseLeastPrivilege,
+  createEvaluator: (policy) => new PassphraseGeneratorOptionsEvaluator(policy),
+} as PolicyConfiguration<PassphraseGeneratorPolicy, PassphraseGeneratorOptionsEvaluator>);
+
+const PASSWORD = Object.freeze({
+  disabledValue: DisabledPasswordGeneratorPolicy,
+  combine: passwordLeastPrivilege,
+  createEvaluator: (policy) => new PasswordGeneratorOptionsEvaluator(policy),
+} as PolicyConfiguration<PasswordGeneratorPolicy, PasswordGeneratorOptionsEvaluator>);
+
+/** Policy configurations */
+export const Policies = Object.freeze({
+  /** Passphrase policy configuration */
+  Passphrase: PASSPHRASE,
+
+  /** Passphrase policy configuration */
+  Password: PASSWORD,
+});
diff --git a/libs/common/src/tools/generator/random.ts b/libs/common/src/tools/generator/random.ts
new file mode 100644
index 00000000000..255a5df7a79
--- /dev/null
+++ b/libs/common/src/tools/generator/random.ts
@@ -0,0 +1,62 @@
+import { CryptoService } from "@bitwarden/common/platform/abstractions/crypto.service";
+
+import { Randomizer } from "./abstractions/randomizer";
+import { WordOptions } from "./word-options";
+
+/** A randomizer backed by a CryptoService. */
+export class CryptoServiceRandomizer implements Randomizer {
+  constructor(private crypto: CryptoService) {}
+
+  async pick<Entry>(list: Array<Entry>) {
+    const index = await this.uniform(0, list.length - 1);
+    return list[index];
+  }
+
+  async pickWord(list: Array<string>, options?: WordOptions) {
+    let word = await this.pick(list);
+
+    if (options?.titleCase ?? false) {
+      word = word.charAt(0).toUpperCase() + word.slice(1);
+    }
+
+    if (options?.number ?? false) {
+      const num = await this.crypto.randomNumber(1, 9999);
+      word = word + this.zeroPad(num.toString(), 4);
+    }
+
+    return word;
+  }
+
+  // ref: https://stackoverflow.com/a/12646864/1090359
+  async shuffle<T>(items: Array<T>, options?: { copy?: boolean }) {
+    const shuffled = options?.copy ?? true ? [...items] : items;
+
+    for (let i = items.length - 1; i > 0; i--) {
+      const j = await this.uniform(0, i);
+      [items[i], items[j]] = [items[j], items[i]];
+    }
+
+    return shuffled;
+  }
+
+  async chars(length: number) {
+    let str = "";
+    const charSet = "abcdefghijklmnopqrstuvwxyz1234567890";
+    for (let i = 0; i < length; i++) {
+      const randomCharIndex = await this.uniform(0, charSet.length - 1);
+      str += charSet.charAt(randomCharIndex);
+    }
+    return str;
+  }
+
+  async uniform(min: number, max: number) {
+    return this.crypto.randomNumber(min, max);
+  }
+
+  // ref: https://stackoverflow.com/a/10073788
+  private zeroPad(number: string, width: number) {
+    return number.length >= width
+      ? number
+      : new Array(width - number.length + 1).join("0") + number;
+  }
+}
diff --git a/libs/common/src/tools/generator/rx-operators.ts b/libs/common/src/tools/generator/rx-operators.ts
index 6524ef79941..47233fa7785 100644
--- a/libs/common/src/tools/generator/rx-operators.ts
+++ b/libs/common/src/tools/generator/rx-operators.ts
@@ -1,4 +1,7 @@
-import { distinctUntilChanged, map, OperatorFunction } from "rxjs";
+import { distinctUntilChanged, map, OperatorFunction, pipe } from "rxjs";
+
+import { DefaultPolicyEvaluator } from "./default-policy-evaluator";
+import { PolicyConfiguration } from "./policies";
 
 /**
  * An observable operator that reduces an emitted collection to a single object,
@@ -36,3 +39,23 @@ export function distinctIfShallowMatch<Item>(): OperatorFunction<Item, Item> {
     return isDistinct;
   });
 }
+
+/** Maps an administrative console policy to a policy evaluator using the provided configuration.
+ *  @param configuration the configuration that constructs the evaluator.
+ */
+export function mapPolicyToEvaluator<Policy, Evaluator>(
+  configuration: PolicyConfiguration<Policy, Evaluator>,
+) {
+  return pipe(
+    reduceCollection(configuration.combine, configuration.disabledValue),
+    distinctIfShallowMatch(),
+    map(configuration.createEvaluator),
+  );
+}
+
+/** Constructs a method that maps a policy to the default (no-op) policy. */
+export function newDefaultEvaluator<Target>() {
+  return () => {
+    return pipe(map((_) => new DefaultPolicyEvaluator<Target>()));
+  };
+}
diff --git a/libs/common/src/tools/generator/username/catchall-generator-strategy.spec.ts b/libs/common/src/tools/generator/username/catchall-generator-strategy.spec.ts
index 30f11b1e89b..45e87160817 100644
--- a/libs/common/src/tools/generator/username/catchall-generator-strategy.spec.ts
+++ b/libs/common/src/tools/generator/username/catchall-generator-strategy.spec.ts
@@ -7,12 +7,13 @@ import { PolicyType } from "../../../admin-console/enums";
 import { Policy } from "../../../admin-console/models/domain/policy";
 import { StateProvider } from "../../../platform/state";
 import { UserId } from "../../../types/guid";
+import { Randomizer } from "../abstractions/randomizer";
 import { DefaultPolicyEvaluator } from "../default-policy-evaluator";
 import { CATCHALL_SETTINGS } from "../key-definitions";
 
-import { CatchallGenerationOptions, DefaultCatchallOptions } from "./catchall-generator-options";
+import { DefaultCatchallOptions } from "./catchall-generator-options";
 
-import { CatchallGeneratorStrategy, UsernameGenerationServiceAbstraction } from ".";
+import { CatchallGeneratorStrategy } from ".";
 
 const SomeUser = "some user" as UserId;
 const SomePolicy = mock<Policy>({
@@ -40,8 +41,8 @@ describe("Email subaddress list generation strategy", () => {
   describe("durableState", () => {
     it("should use password settings key", () => {
       const provider = mock<StateProvider>();
-      const legacy = mock<UsernameGenerationServiceAbstraction>();
-      const strategy = new CatchallGeneratorStrategy(legacy, provider);
+      const randomizer = mock<Randomizer>();
+      const strategy = new CatchallGeneratorStrategy(randomizer, provider);
 
       strategy.durableState(SomeUser);
 
@@ -61,26 +62,14 @@ describe("Email subaddress list generation strategy", () => {
 
   describe("policy", () => {
     it("should use password generator policy", () => {
-      const legacy = mock<UsernameGenerationServiceAbstraction>();
-      const strategy = new CatchallGeneratorStrategy(legacy, null);
+      const randomizer = mock<Randomizer>();
+      const strategy = new CatchallGeneratorStrategy(randomizer, null);
 
       expect(strategy.policy).toBe(PolicyType.PasswordGenerator);
     });
   });
 
   describe("generate()", () => {
-    it("should call the legacy service with the given options", async () => {
-      const legacy = mock<UsernameGenerationServiceAbstraction>();
-      const strategy = new CatchallGeneratorStrategy(legacy, null);
-      const options = {
-        catchallType: "website-name",
-        catchallDomain: "example.com",
-        website: "foo.com",
-      } as CatchallGenerationOptions;
-
-      await strategy.generate(options);
-
-      expect(legacy.generateCatchall).toHaveBeenCalledWith(options);
-    });
+    it.todo("generate catchall email addresses");
   });
 });
diff --git a/libs/common/src/tools/generator/username/catchall-generator-strategy.ts b/libs/common/src/tools/generator/username/catchall-generator-strategy.ts
index ee86fd9fd66..fb015a596ff 100644
--- a/libs/common/src/tools/generator/username/catchall-generator-strategy.ts
+++ b/libs/common/src/tools/generator/username/catchall-generator-strategy.ts
@@ -1,13 +1,11 @@
-import { BehaviorSubject, map, pipe } from "rxjs";
-
 import { PolicyType } from "../../../admin-console/enums";
 import { StateProvider } from "../../../platform/state";
-import { UserId } from "../../../types/guid";
 import { GeneratorStrategy } from "../abstractions";
-import { UsernameGenerationServiceAbstraction } from "../abstractions/username-generation.service.abstraction";
-import { DefaultPolicyEvaluator } from "../default-policy-evaluator";
+import { Randomizer } from "../abstractions/randomizer";
 import { CATCHALL_SETTINGS } from "../key-definitions";
 import { NoPolicy } from "../no-policy";
+import { newDefaultEvaluator } from "../rx-operators";
+import { clone$PerUserId, sharedStateByUserId } from "../util";
 
 import { CatchallGenerationOptions, DefaultCatchallOptions } from "./catchall-generator-options";
 
@@ -19,34 +17,34 @@ export class CatchallGeneratorStrategy
    *  @param usernameService generates a catchall address for a domain
    */
   constructor(
-    private usernameService: UsernameGenerationServiceAbstraction,
+    private random: Randomizer,
     private stateProvider: StateProvider,
+    private defaultOptions: CatchallGenerationOptions = DefaultCatchallOptions,
   ) {}
 
-  /** {@link GeneratorStrategy.durableState} */
-  durableState(id: UserId) {
-    return this.stateProvider.getUser(id, CATCHALL_SETTINGS);
-  }
+  // configuration
+  durableState = sharedStateByUserId(CATCHALL_SETTINGS, this.stateProvider);
+  defaults$ = clone$PerUserId(this.defaultOptions);
+  toEvaluator = newDefaultEvaluator<CatchallGenerationOptions>();
+  readonly policy = PolicyType.PasswordGenerator;
 
-  /** {@link GeneratorStrategy.defaults$} */
-  defaults$(userId: UserId) {
-    return new BehaviorSubject({ ...DefaultCatchallOptions }).asObservable();
-  }
+  // algorithm
+  async generate(options: CatchallGenerationOptions) {
+    const o = Object.assign({}, DefaultCatchallOptions, options);
 
-  /** {@link GeneratorStrategy.policy} */
-  get policy() {
-    // Uses password generator since there aren't policies
-    // specific to usernames.
-    return PolicyType.PasswordGenerator;
-  }
+    if (o.catchallDomain == null || o.catchallDomain === "") {
+      return null;
+    }
+    if (o.catchallType == null) {
+      o.catchallType = "random";
+    }
 
-  /** {@link GeneratorStrategy.toEvaluator} */
-  toEvaluator() {
-    return pipe(map((_) => new DefaultPolicyEvaluator<CatchallGenerationOptions>()));
-  }
-
-  /** {@link GeneratorStrategy.generate} */
-  generate(options: CatchallGenerationOptions) {
-    return this.usernameService.generateCatchall(options);
+    let startString = "";
+    if (o.catchallType === "random") {
+      startString = await this.random.chars(8);
+    } else if (o.catchallType === "website-name") {
+      startString = o.website;
+    }
+    return startString + "@" + o.catchallDomain;
   }
 }
diff --git a/libs/common/src/tools/generator/username/eff-username-generator-strategy.spec.ts b/libs/common/src/tools/generator/username/eff-username-generator-strategy.spec.ts
index 76e51f609cc..128b69e6734 100644
--- a/libs/common/src/tools/generator/username/eff-username-generator-strategy.spec.ts
+++ b/libs/common/src/tools/generator/username/eff-username-generator-strategy.spec.ts
@@ -7,12 +7,13 @@ import { PolicyType } from "../../../admin-console/enums";
 import { Policy } from "../../../admin-console/models/domain/policy";
 import { StateProvider } from "../../../platform/state";
 import { UserId } from "../../../types/guid";
+import { Randomizer } from "../abstractions/randomizer";
 import { DefaultPolicyEvaluator } from "../default-policy-evaluator";
 import { EFF_USERNAME_SETTINGS } from "../key-definitions";
 
 import { DefaultEffUsernameOptions } from "./eff-username-generator-options";
 
-import { EffUsernameGeneratorStrategy, UsernameGenerationServiceAbstraction } from ".";
+import { EffUsernameGeneratorStrategy } from ".";
 
 const SomeUser = "some user" as UserId;
 const SomePolicy = mock<Policy>({
@@ -40,8 +41,8 @@ describe("EFF long word list generation strategy", () => {
   describe("durableState", () => {
     it("should use password settings key", () => {
       const provider = mock<StateProvider>();
-      const legacy = mock<UsernameGenerationServiceAbstraction>();
-      const strategy = new EffUsernameGeneratorStrategy(legacy, provider);
+      const randomizer = mock<Randomizer>();
+      const strategy = new EffUsernameGeneratorStrategy(randomizer, provider);
 
       strategy.durableState(SomeUser);
 
@@ -61,26 +62,14 @@ describe("EFF long word list generation strategy", () => {
 
   describe("policy", () => {
     it("should use password generator policy", () => {
-      const legacy = mock<UsernameGenerationServiceAbstraction>();
-      const strategy = new EffUsernameGeneratorStrategy(legacy, null);
+      const randomizer = mock<Randomizer>();
+      const strategy = new EffUsernameGeneratorStrategy(randomizer, null);
 
       expect(strategy.policy).toBe(PolicyType.PasswordGenerator);
     });
   });
 
   describe("generate()", () => {
-    it("should call the legacy service with the given options", async () => {
-      const legacy = mock<UsernameGenerationServiceAbstraction>();
-      const strategy = new EffUsernameGeneratorStrategy(legacy, null);
-      const options = {
-        wordCapitalize: false,
-        wordIncludeNumber: false,
-        website: null as string,
-      };
-
-      await strategy.generate(options);
-
-      expect(legacy.generateWord).toHaveBeenCalledWith(options);
-    });
+    it.todo("generate username tests");
   });
 });
diff --git a/libs/common/src/tools/generator/username/eff-username-generator-strategy.ts b/libs/common/src/tools/generator/username/eff-username-generator-strategy.ts
index 70d1f854205..abd8e6b226c 100644
--- a/libs/common/src/tools/generator/username/eff-username-generator-strategy.ts
+++ b/libs/common/src/tools/generator/username/eff-username-generator-strategy.ts
@@ -1,13 +1,13 @@
-import { BehaviorSubject, map, pipe } from "rxjs";
+import { EFFLongWordList } from "@bitwarden/common/platform/misc/wordlist";
 
 import { PolicyType } from "../../../admin-console/enums";
 import { StateProvider } from "../../../platform/state";
-import { UserId } from "../../../types/guid";
 import { GeneratorStrategy } from "../abstractions";
-import { UsernameGenerationServiceAbstraction } from "../abstractions/username-generation.service.abstraction";
-import { DefaultPolicyEvaluator } from "../default-policy-evaluator";
+import { Randomizer } from "../abstractions/randomizer";
 import { EFF_USERNAME_SETTINGS } from "../key-definitions";
 import { NoPolicy } from "../no-policy";
+import { newDefaultEvaluator } from "../rx-operators";
+import { clone$PerUserId, sharedStateByUserId } from "../util";
 
 import {
   DefaultEffUsernameOptions,
@@ -22,34 +22,23 @@ export class EffUsernameGeneratorStrategy
    *  @param usernameService generates a username from EFF word list
    */
   constructor(
-    private usernameService: UsernameGenerationServiceAbstraction,
+    private random: Randomizer,
     private stateProvider: StateProvider,
+    private defaultOptions: EffUsernameGenerationOptions = DefaultEffUsernameOptions,
   ) {}
 
-  /** {@link GeneratorStrategy.durableState} */
-  durableState(id: UserId) {
-    return this.stateProvider.getUser(id, EFF_USERNAME_SETTINGS);
-  }
+  // configuration
+  durableState = sharedStateByUserId(EFF_USERNAME_SETTINGS, this.stateProvider);
+  defaults$ = clone$PerUserId(this.defaultOptions);
+  toEvaluator = newDefaultEvaluator<EffUsernameGenerationOptions>();
+  readonly policy = PolicyType.PasswordGenerator;
 
-  /** {@link GeneratorStrategy.defaults$} */
-  defaults$(userId: UserId) {
-    return new BehaviorSubject({ ...DefaultEffUsernameOptions }).asObservable();
-  }
-
-  /** {@link GeneratorStrategy.policy} */
-  get policy() {
-    // Uses password generator since there aren't policies
-    // specific to usernames.
-    return PolicyType.PasswordGenerator;
-  }
-
-  /** {@link GeneratorStrategy.toEvaluator} */
-  toEvaluator() {
-    return pipe(map((_) => new DefaultPolicyEvaluator<EffUsernameGenerationOptions>()));
-  }
-
-  /** {@link GeneratorStrategy.generate} */
-  generate(options: EffUsernameGenerationOptions) {
-    return this.usernameService.generateWord(options);
+  // algorithm
+  async generate(options: EffUsernameGenerationOptions) {
+    const word = await this.random.pickWord(EFFLongWordList, {
+      titleCase: options.wordCapitalize ?? DefaultEffUsernameOptions.wordCapitalize,
+      number: options.wordIncludeNumber ?? DefaultEffUsernameOptions.wordIncludeNumber,
+    });
+    return word;
   }
 }
diff --git a/libs/common/src/tools/generator/username/forwarder-generator-strategy.spec.ts b/libs/common/src/tools/generator/username/forwarder-generator-strategy.spec.ts
index 7c1b4b91913..e78b432bfb6 100644
--- a/libs/common/src/tools/generator/username/forwarder-generator-strategy.spec.ts
+++ b/libs/common/src/tools/generator/username/forwarder-generator-strategy.spec.ts
@@ -25,7 +25,7 @@ class TestForwarder extends ForwarderGeneratorStrategy<ApiOptions> {
     keyService: CryptoService,
     stateProvider: StateProvider,
   ) {
-    super(encryptService, keyService, stateProvider);
+    super(encryptService, keyService, stateProvider, { website: null, token: "" });
   }
 
   get key() {
diff --git a/libs/common/src/tools/generator/username/forwarder-generator-strategy.ts b/libs/common/src/tools/generator/username/forwarder-generator-strategy.ts
index 28ebcba4fd9..4655a3fb72a 100644
--- a/libs/common/src/tools/generator/username/forwarder-generator-strategy.ts
+++ b/libs/common/src/tools/generator/username/forwarder-generator-strategy.ts
@@ -1,4 +1,4 @@
-import { Observable, map, pipe } from "rxjs";
+import { map } from "rxjs";
 
 import { PolicyType } from "../../../admin-console/enums";
 import { CryptoService } from "../../../platform/abstractions/crypto.service";
@@ -13,8 +13,9 @@ import { SecretKeyDefinition } from "../../state/secret-key-definition";
 import { SecretState } from "../../state/secret-state";
 import { UserKeyEncryptor } from "../../state/user-key-encryptor";
 import { GeneratorStrategy } from "../abstractions";
-import { DefaultPolicyEvaluator } from "../default-policy-evaluator";
 import { NoPolicy } from "../no-policy";
+import { newDefaultEvaluator } from "../rx-operators";
+import { clone$PerUserId, sharedByUserId } from "../util";
 
 import { ApiOptions } from "./options/forwarder-options";
 
@@ -33,29 +34,25 @@ export abstract class ForwarderGeneratorStrategy<
     private readonly encryptService: EncryptService,
     private readonly keyService: CryptoService,
     private stateProvider: StateProvider,
+    private readonly defaultOptions: Options,
   ) {
     super();
-    // Uses password generator since there aren't policies
-    // specific to usernames.
-    this.policy = PolicyType.PasswordGenerator;
   }
 
-  private durableStates = new Map<UserId, SingleUserState<Options>>();
+  /** configures forwarder secret storage  */
+  protected abstract readonly key: UserKeyDefinition<Options>;
 
-  /** {@link GeneratorStrategy.durableState} */
-  durableState = (userId: UserId) => {
-    let state = this.durableStates.get(userId);
+  /** configures forwarder import buffer */
+  protected abstract readonly rolloverKey: BufferedKeyDefinition<Options, Options>;
 
-    if (!state) {
-      state = this.createState(userId);
+  // configuration
+  readonly policy = PolicyType.PasswordGenerator;
+  defaults$ = clone$PerUserId(this.defaultOptions);
+  toEvaluator = newDefaultEvaluator<Options>();
+  durableState = sharedByUserId((userId) => this.getUserSecrets(userId));
 
-      this.durableStates.set(userId, state);
-    }
-
-    return state;
-  };
-
-  private createState(userId: UserId): SingleUserState<Options> {
+  // per-user encrypted state
+  private getUserSecrets(userId: UserId): SingleUserState<Options> {
     // construct the encryptor
     const packer = new PaddedDataPacker(OPTIONS_FRAME_SIZE);
     const encryptor = new UserKeyEncryptor(this.encryptService, this.keyService, packer);
@@ -92,18 +89,4 @@ export abstract class ForwarderGeneratorStrategy<
 
     return rolloverState;
   }
-
-  /** Gets the default options. */
-  abstract defaults$: (userId: UserId) => Observable<Options>;
-
-  /** Determine where forwarder configuration is stored  */
-  protected abstract readonly key: UserKeyDefinition<Options>;
-
-  /** Determine where forwarder rollover configuration is stored  */
-  protected abstract readonly rolloverKey: BufferedKeyDefinition<Options, Options>;
-
-  /** {@link GeneratorStrategy.toEvaluator} */
-  toEvaluator = () => {
-    return pipe(map((_) => new DefaultPolicyEvaluator<Options>()));
-  };
 }
diff --git a/libs/common/src/tools/generator/username/forwarders/addy-io.ts b/libs/common/src/tools/generator/username/forwarders/addy-io.ts
index 12121749519..ecf60da195c 100644
--- a/libs/common/src/tools/generator/username/forwarders/addy-io.ts
+++ b/libs/common/src/tools/generator/username/forwarders/addy-io.ts
@@ -1,11 +1,8 @@
-import { BehaviorSubject } from "rxjs";
-
 import { ApiService } from "../../../../abstractions/api.service";
 import { CryptoService } from "../../../../platform/abstractions/crypto.service";
 import { EncryptService } from "../../../../platform/abstractions/encrypt.service";
 import { I18nService } from "../../../../platform/abstractions/i18n.service";
 import { StateProvider } from "../../../../platform/state";
-import { UserId } from "../../../../types/guid";
 import { ADDY_IO_FORWARDER, ADDY_IO_BUFFER } from "../../key-definitions";
 import { ForwarderGeneratorStrategy } from "../forwarder-generator-strategy";
 import { Forwarders } from "../options/constants";
@@ -36,25 +33,14 @@ export class AddyIoForwarder extends ForwarderGeneratorStrategy<
     keyService: CryptoService,
     stateProvider: StateProvider,
   ) {
-    super(encryptService, keyService, stateProvider);
+    super(encryptService, keyService, stateProvider, DefaultAddyIoOptions);
   }
 
-  /** {@link ForwarderGeneratorStrategy.key} */
-  get key() {
-    return ADDY_IO_FORWARDER;
-  }
+  // configuration
+  readonly key = ADDY_IO_FORWARDER;
+  readonly rolloverKey = ADDY_IO_BUFFER;
 
-  /** {@link ForwarderGeneratorStrategy.rolloverKey} */
-  get rolloverKey() {
-    return ADDY_IO_BUFFER;
-  }
-
-  /** {@link ForwarderGeneratorStrategy.defaults$} */
-  defaults$ = (userId: UserId) => {
-    return new BehaviorSubject({ ...DefaultAddyIoOptions });
-  };
-
-  /** {@link ForwarderGeneratorStrategy.generate} */
+  // request
   generate = async (options: SelfHostedApiOptions & EmailDomainOptions) => {
     if (!options.token || options.token === "") {
       const error = this.i18nService.t("forwaderInvalidToken", Forwarders.AddyIo.name);
diff --git a/libs/common/src/tools/generator/username/forwarders/duck-duck-go.ts b/libs/common/src/tools/generator/username/forwarders/duck-duck-go.ts
index 4a9040d74a9..492105dfdfd 100644
--- a/libs/common/src/tools/generator/username/forwarders/duck-duck-go.ts
+++ b/libs/common/src/tools/generator/username/forwarders/duck-duck-go.ts
@@ -1,11 +1,8 @@
-import { BehaviorSubject } from "rxjs";
-
 import { ApiService } from "../../../../abstractions/api.service";
 import { CryptoService } from "../../../../platform/abstractions/crypto.service";
 import { EncryptService } from "../../../../platform/abstractions/encrypt.service";
 import { I18nService } from "../../../../platform/abstractions/i18n.service";
 import { StateProvider } from "../../../../platform/state";
-import { UserId } from "../../../../types/guid";
 import { DUCK_DUCK_GO_FORWARDER, DUCK_DUCK_GO_BUFFER } from "../../key-definitions";
 import { ForwarderGeneratorStrategy } from "../forwarder-generator-strategy";
 import { Forwarders } from "../options/constants";
@@ -32,25 +29,14 @@ export class DuckDuckGoForwarder extends ForwarderGeneratorStrategy<ApiOptions>
     keyService: CryptoService,
     stateProvider: StateProvider,
   ) {
-    super(encryptService, keyService, stateProvider);
+    super(encryptService, keyService, stateProvider, DefaultDuckDuckGoOptions);
   }
 
-  /** {@link ForwarderGeneratorStrategy.key} */
-  get key() {
-    return DUCK_DUCK_GO_FORWARDER;
-  }
+  // configuration
+  readonly key = DUCK_DUCK_GO_FORWARDER;
+  readonly rolloverKey = DUCK_DUCK_GO_BUFFER;
 
-  /** {@link ForwarderGeneratorStrategy.rolloverKey} */
-  get rolloverKey() {
-    return DUCK_DUCK_GO_BUFFER;
-  }
-
-  /** {@link ForwarderGeneratorStrategy.defaults$} */
-  defaults$ = (userId: UserId) => {
-    return new BehaviorSubject({ ...DefaultDuckDuckGoOptions });
-  };
-
-  /** {@link ForwarderGeneratorStrategy.generate} */
+  // request
   generate = async (options: ApiOptions): Promise<string> => {
     if (!options.token || options.token === "") {
       const error = this.i18nService.t("forwaderInvalidToken", Forwarders.DuckDuckGo.name);
diff --git a/libs/common/src/tools/generator/username/forwarders/fastmail.ts b/libs/common/src/tools/generator/username/forwarders/fastmail.ts
index 0236e658fbe..0c4e0e2cfd2 100644
--- a/libs/common/src/tools/generator/username/forwarders/fastmail.ts
+++ b/libs/common/src/tools/generator/username/forwarders/fastmail.ts
@@ -1,11 +1,8 @@
-import { BehaviorSubject } from "rxjs";
-
 import { ApiService } from "../../../../abstractions/api.service";
 import { CryptoService } from "../../../../platform/abstractions/crypto.service";
 import { EncryptService } from "../../../../platform/abstractions/encrypt.service";
 import { I18nService } from "../../../../platform/abstractions/i18n.service";
 import { StateProvider } from "../../../../platform/state";
-import { UserId } from "../../../../types/guid";
 import { FASTMAIL_FORWARDER, FASTMAIL_BUFFER } from "../../key-definitions";
 import { ForwarderGeneratorStrategy } from "../forwarder-generator-strategy";
 import { Forwarders } from "../options/constants";
@@ -34,25 +31,14 @@ export class FastmailForwarder extends ForwarderGeneratorStrategy<ApiOptions & E
     keyService: CryptoService,
     stateProvider: StateProvider,
   ) {
-    super(encryptService, keyService, stateProvider);
+    super(encryptService, keyService, stateProvider, DefaultFastmailOptions);
   }
 
-  /** {@link ForwarderGeneratorStrategy.key} */
-  get key() {
-    return FASTMAIL_FORWARDER;
-  }
+  // configuration
+  readonly key = FASTMAIL_FORWARDER;
+  readonly rolloverKey = FASTMAIL_BUFFER;
 
-  /** {@link ForwarderGeneratorStrategy.defaults$} */
-  defaults$ = (userId: UserId) => {
-    return new BehaviorSubject({ ...DefaultFastmailOptions });
-  };
-
-  /** {@link ForwarderGeneratorStrategy.rolloverKey} */
-  get rolloverKey() {
-    return FASTMAIL_BUFFER;
-  }
-
-  /** {@link ForwarderGeneratorStrategy.generate} */
+  // request
   generate = async (options: ApiOptions & EmailPrefixOptions) => {
     if (!options.token || options.token === "") {
       const error = this.i18nService.t("forwaderInvalidToken", Forwarders.Fastmail.name);
@@ -76,7 +62,7 @@ export class FastmailForwarder extends ForwarderGeneratorStrategy<ApiOptions & E
               "new-masked-email": {
                 state: "enabled",
                 description: "",
-                forDomain: options.website,
+                forDomain: options.website ?? "",
                 emailPrefix: options.prefix,
               },
             },
diff --git a/libs/common/src/tools/generator/username/forwarders/firefox-relay.ts b/libs/common/src/tools/generator/username/forwarders/firefox-relay.ts
index c381d3d3f2e..1beb2dde4f8 100644
--- a/libs/common/src/tools/generator/username/forwarders/firefox-relay.ts
+++ b/libs/common/src/tools/generator/username/forwarders/firefox-relay.ts
@@ -1,11 +1,8 @@
-import { BehaviorSubject } from "rxjs";
-
 import { ApiService } from "../../../../abstractions/api.service";
 import { CryptoService } from "../../../../platform/abstractions/crypto.service";
 import { EncryptService } from "../../../../platform/abstractions/encrypt.service";
 import { I18nService } from "../../../../platform/abstractions/i18n.service";
 import { StateProvider } from "../../../../platform/state";
-import { UserId } from "../../../../types/guid";
 import { FIREFOX_RELAY_FORWARDER, FIREFOX_RELAY_BUFFER } from "../../key-definitions";
 import { ForwarderGeneratorStrategy } from "../forwarder-generator-strategy";
 import { Forwarders } from "../options/constants";
@@ -32,25 +29,14 @@ export class FirefoxRelayForwarder extends ForwarderGeneratorStrategy<ApiOptions
     keyService: CryptoService,
     stateProvider: StateProvider,
   ) {
-    super(encryptService, keyService, stateProvider);
+    super(encryptService, keyService, stateProvider, DefaultFirefoxRelayOptions);
   }
 
-  /** {@link ForwarderGeneratorStrategy.key} */
-  get key() {
-    return FIREFOX_RELAY_FORWARDER;
-  }
+  // configuration
+  readonly key = FIREFOX_RELAY_FORWARDER;
+  readonly rolloverKey = FIREFOX_RELAY_BUFFER;
 
-  /** {@link ForwarderGeneratorStrategy.rolloverKey} */
-  get rolloverKey() {
-    return FIREFOX_RELAY_BUFFER;
-  }
-
-  /** {@link ForwarderGeneratorStrategy.defaults$} */
-  defaults$ = (userId: UserId) => {
-    return new BehaviorSubject({ ...DefaultFirefoxRelayOptions });
-  };
-
-  /** {@link ForwarderGeneratorStrategy.generate} */
+  // request
   generate = async (options: ApiOptions) => {
     if (!options.token || options.token === "") {
       const error = this.i18nService.t("forwaderInvalidToken", Forwarders.FirefoxRelay.name);
diff --git a/libs/common/src/tools/generator/username/forwarders/forward-email.ts b/libs/common/src/tools/generator/username/forwarders/forward-email.ts
index af654d3917e..20dfe012915 100644
--- a/libs/common/src/tools/generator/username/forwarders/forward-email.ts
+++ b/libs/common/src/tools/generator/username/forwarders/forward-email.ts
@@ -1,12 +1,9 @@
-import { BehaviorSubject } from "rxjs";
-
 import { ApiService } from "../../../../abstractions/api.service";
 import { CryptoService } from "../../../../platform/abstractions/crypto.service";
 import { EncryptService } from "../../../../platform/abstractions/encrypt.service";
 import { I18nService } from "../../../../platform/abstractions/i18n.service";
 import { Utils } from "../../../../platform/misc/utils";
 import { StateProvider } from "../../../../platform/state";
-import { UserId } from "../../../../types/guid";
 import { FORWARD_EMAIL_FORWARDER, FORWARD_EMAIL_BUFFER } from "../../key-definitions";
 import { ForwarderGeneratorStrategy } from "../forwarder-generator-strategy";
 import { Forwarders } from "../options/constants";
@@ -36,25 +33,14 @@ export class ForwardEmailForwarder extends ForwarderGeneratorStrategy<
     keyService: CryptoService,
     stateProvider: StateProvider,
   ) {
-    super(encryptService, keyService, stateProvider);
+    super(encryptService, keyService, stateProvider, DefaultForwardEmailOptions);
   }
 
-  /** {@link ForwarderGeneratorStrategy.key} */
-  get key() {
-    return FORWARD_EMAIL_FORWARDER;
-  }
+  // configuration
+  readonly key = FORWARD_EMAIL_FORWARDER;
+  readonly rolloverKey = FORWARD_EMAIL_BUFFER;
 
-  /** {@link ForwarderGeneratorStrategy.defaults$} */
-  defaults$ = (userId: UserId) => {
-    return new BehaviorSubject({ ...DefaultForwardEmailOptions });
-  };
-
-  /** {@link ForwarderGeneratorStrategy.rolloverKey} */
-  get rolloverKey() {
-    return FORWARD_EMAIL_BUFFER;
-  }
-
-  /** {@link ForwarderGeneratorStrategy.generate} */
+  // request
   generate = async (options: ApiOptions & EmailDomainOptions) => {
     if (!options.token || options.token === "") {
       const error = this.i18nService.t("forwaderInvalidToken", Forwarders.ForwardEmail.name);
diff --git a/libs/common/src/tools/generator/username/forwarders/simple-login.ts b/libs/common/src/tools/generator/username/forwarders/simple-login.ts
index ee91a411451..593c7346419 100644
--- a/libs/common/src/tools/generator/username/forwarders/simple-login.ts
+++ b/libs/common/src/tools/generator/username/forwarders/simple-login.ts
@@ -1,11 +1,8 @@
-import { BehaviorSubject } from "rxjs";
-
 import { ApiService } from "../../../../abstractions/api.service";
 import { CryptoService } from "../../../../platform/abstractions/crypto.service";
 import { EncryptService } from "../../../../platform/abstractions/encrypt.service";
 import { I18nService } from "../../../../platform/abstractions/i18n.service";
 import { StateProvider } from "../../../../platform/state";
-import { UserId } from "../../../../types/guid";
 import { SIMPLE_LOGIN_FORWARDER, SIMPLE_LOGIN_BUFFER } from "../../key-definitions";
 import { ForwarderGeneratorStrategy } from "../forwarder-generator-strategy";
 import { Forwarders } from "../options/constants";
@@ -33,25 +30,14 @@ export class SimpleLoginForwarder extends ForwarderGeneratorStrategy<SelfHostedA
     keyService: CryptoService,
     stateProvider: StateProvider,
   ) {
-    super(encryptService, keyService, stateProvider);
+    super(encryptService, keyService, stateProvider, DefaultSimpleLoginOptions);
   }
 
-  /** {@link ForwarderGeneratorStrategy.key} */
-  get key() {
-    return SIMPLE_LOGIN_FORWARDER;
-  }
+  // configuration
+  readonly key = SIMPLE_LOGIN_FORWARDER;
+  readonly rolloverKey = SIMPLE_LOGIN_BUFFER;
 
-  /** {@link ForwarderGeneratorStrategy.rolloverKey} */
-  get rolloverKey() {
-    return SIMPLE_LOGIN_BUFFER;
-  }
-
-  /** {@link ForwarderGeneratorStrategy.defaults$} */
-  defaults$ = (userId: UserId) => {
-    return new BehaviorSubject({ ...DefaultSimpleLoginOptions });
-  };
-
-  /** {@link ForwarderGeneratorStrategy.generate} */
+  // request
   generate = async (options: SelfHostedApiOptions) => {
     if (!options.token || options.token === "") {
       const error = this.i18nService.t("forwaderInvalidToken", Forwarders.SimpleLogin.name);
diff --git a/libs/common/src/tools/generator/username/index.ts b/libs/common/src/tools/generator/username/index.ts
index 7c5ec45f748..a9d8e676086 100644
--- a/libs/common/src/tools/generator/username/index.ts
+++ b/libs/common/src/tools/generator/username/index.ts
@@ -3,4 +3,3 @@ export { CatchallGeneratorStrategy } from "./catchall-generator-strategy";
 export { SubaddressGeneratorStrategy } from "./subaddress-generator-strategy";
 export { UsernameGeneratorOptions } from "./username-generation-options";
 export { UsernameGenerationServiceAbstraction } from "../abstractions/username-generation.service.abstraction";
-export { UsernameGenerationService } from "./username-generation.service";
diff --git a/libs/common/src/tools/generator/username/subaddress-generator-strategy.spec.ts b/libs/common/src/tools/generator/username/subaddress-generator-strategy.spec.ts
index b5ac9c4cf9c..ba1d5aa2b8f 100644
--- a/libs/common/src/tools/generator/username/subaddress-generator-strategy.spec.ts
+++ b/libs/common/src/tools/generator/username/subaddress-generator-strategy.spec.ts
@@ -7,15 +7,13 @@ import { PolicyType } from "../../../admin-console/enums";
 import { Policy } from "../../../admin-console/models/domain/policy";
 import { StateProvider } from "../../../platform/state";
 import { UserId } from "../../../types/guid";
+import { Randomizer } from "../abstractions/randomizer";
 import { DefaultPolicyEvaluator } from "../default-policy-evaluator";
 import { SUBADDRESS_SETTINGS } from "../key-definitions";
 
-import {
-  DefaultSubaddressOptions,
-  SubaddressGenerationOptions,
-} from "./subaddress-generator-options";
+import { DefaultSubaddressOptions } from "./subaddress-generator-options";
 
-import { SubaddressGeneratorStrategy, UsernameGenerationServiceAbstraction } from ".";
+import { SubaddressGeneratorStrategy } from ".";
 
 const SomeUser = "some user" as UserId;
 const SomePolicy = mock<Policy>({
@@ -43,8 +41,8 @@ describe("Email subaddress list generation strategy", () => {
   describe("durableState", () => {
     it("should use password settings key", () => {
       const provider = mock<StateProvider>();
-      const legacy = mock<UsernameGenerationServiceAbstraction>();
-      const strategy = new SubaddressGeneratorStrategy(legacy, provider);
+      const randomizer = mock<Randomizer>();
+      const strategy = new SubaddressGeneratorStrategy(randomizer, provider);
 
       strategy.durableState(SomeUser);
 
@@ -64,26 +62,14 @@ describe("Email subaddress list generation strategy", () => {
 
   describe("policy", () => {
     it("should use password generator policy", () => {
-      const legacy = mock<UsernameGenerationServiceAbstraction>();
-      const strategy = new SubaddressGeneratorStrategy(legacy, null);
+      const randomizer = mock<Randomizer>();
+      const strategy = new SubaddressGeneratorStrategy(randomizer, null);
 
       expect(strategy.policy).toBe(PolicyType.PasswordGenerator);
     });
   });
 
   describe("generate()", () => {
-    it("should call the legacy service with the given options", async () => {
-      const legacy = mock<UsernameGenerationServiceAbstraction>();
-      const strategy = new SubaddressGeneratorStrategy(legacy, null);
-      const options = {
-        subaddressType: "website-name",
-        subaddressEmail: "someone@example.com",
-        website: "foo.com",
-      } as SubaddressGenerationOptions;
-
-      await strategy.generate(options);
-
-      expect(legacy.generateSubaddress).toHaveBeenCalledWith(options);
-    });
+    it.todo("generate email subaddress tests");
   });
 });
diff --git a/libs/common/src/tools/generator/username/subaddress-generator-strategy.ts b/libs/common/src/tools/generator/username/subaddress-generator-strategy.ts
index 6106d6d476f..e44735c2131 100644
--- a/libs/common/src/tools/generator/username/subaddress-generator-strategy.ts
+++ b/libs/common/src/tools/generator/username/subaddress-generator-strategy.ts
@@ -1,13 +1,11 @@
-import { BehaviorSubject, map, pipe } from "rxjs";
-
 import { PolicyType } from "../../../admin-console/enums";
 import { StateProvider } from "../../../platform/state";
-import { UserId } from "../../../types/guid";
 import { GeneratorStrategy } from "../abstractions";
-import { UsernameGenerationServiceAbstraction } from "../abstractions/username-generation.service.abstraction";
-import { DefaultPolicyEvaluator } from "../default-policy-evaluator";
+import { Randomizer } from "../abstractions/randomizer";
 import { SUBADDRESS_SETTINGS } from "../key-definitions";
 import { NoPolicy } from "../no-policy";
+import { newDefaultEvaluator } from "../rx-operators";
+import { clone$PerUserId, sharedStateByUserId } from "../util";
 
 import {
   DefaultSubaddressOptions,
@@ -26,34 +24,42 @@ export class SubaddressGeneratorStrategy
    *  @param usernameService generates an email subaddress from an email address
    */
   constructor(
-    private usernameService: UsernameGenerationServiceAbstraction,
+    private random: Randomizer,
     private stateProvider: StateProvider,
+    private defaultOptions: SubaddressGenerationOptions = DefaultSubaddressOptions,
   ) {}
 
-  /** {@link GeneratorStrategy.durableState} */
-  durableState(id: UserId) {
-    return this.stateProvider.getUser(id, SUBADDRESS_SETTINGS);
-  }
+  // configuration
+  durableState = sharedStateByUserId(SUBADDRESS_SETTINGS, this.stateProvider);
+  defaults$ = clone$PerUserId(this.defaultOptions);
+  toEvaluator = newDefaultEvaluator<SubaddressGenerationOptions>();
+  readonly policy = PolicyType.PasswordGenerator;
 
-  /** {@link GeneratorStrategy.defaults$} */
-  defaults$(userId: UserId) {
-    return new BehaviorSubject({ ...DefaultSubaddressOptions }).asObservable();
-  }
+  // algorithm
+  async generate(options: SubaddressGenerationOptions) {
+    const o = Object.assign({}, DefaultSubaddressOptions, options);
 
-  /** {@link GeneratorStrategy.policy} */
-  get policy() {
-    // Uses password generator since there aren't policies
-    // specific to usernames.
-    return PolicyType.PasswordGenerator;
-  }
+    const subaddressEmail = o.subaddressEmail;
+    if (subaddressEmail == null || subaddressEmail.length < 3) {
+      return o.subaddressEmail;
+    }
+    const atIndex = subaddressEmail.indexOf("@");
+    if (atIndex < 1 || atIndex >= subaddressEmail.length - 1) {
+      return subaddressEmail;
+    }
+    if (o.subaddressType == null) {
+      o.subaddressType = "random";
+    }
 
-  /** {@link GeneratorStrategy.toEvaluator} */
-  toEvaluator() {
-    return pipe(map((_) => new DefaultPolicyEvaluator<SubaddressGenerationOptions>()));
-  }
+    const emailBeginning = subaddressEmail.substr(0, atIndex);
+    const emailEnding = subaddressEmail.substr(atIndex + 1, subaddressEmail.length);
 
-  /** {@link GeneratorStrategy.generate} */
-  generate(options: SubaddressGenerationOptions) {
-    return this.usernameService.generateSubaddress(options);
+    let subaddressString = "";
+    if (o.subaddressType === "random") {
+      subaddressString = await this.random.chars(8);
+    } else if (o.subaddressType === "website-name") {
+      subaddressString = o.website;
+    }
+    return emailBeginning + "+" + subaddressString + "@" + emailEnding;
   }
 }
diff --git a/libs/common/src/tools/generator/username/username-generation.service.ts b/libs/common/src/tools/generator/username/username-generation.service.ts
deleted file mode 100644
index e659aacb51f..00000000000
--- a/libs/common/src/tools/generator/username/username-generation.service.ts
+++ /dev/null
@@ -1,198 +0,0 @@
-import { from } from "rxjs";
-
-import { ApiService } from "../../../abstractions/api.service";
-import { CryptoService } from "../../../platform/abstractions/crypto.service";
-import { StateService } from "../../../platform/abstractions/state.service";
-import { EFFLongWordList } from "../../../platform/misc/wordlist";
-import { UsernameGenerationServiceAbstraction } from "../abstractions/username-generation.service.abstraction";
-
-import {
-  AnonAddyForwarder,
-  DuckDuckGoForwarder,
-  FastmailForwarder,
-  FirefoxRelayForwarder,
-  ForwardEmailForwarder,
-  Forwarder,
-  ForwarderOptions,
-  SimpleLoginForwarder,
-} from "./email-forwarders";
-import { UsernameGeneratorOptions } from "./username-generation-options";
-
-const DefaultOptions: UsernameGeneratorOptions = {
-  type: "word",
-  website: null,
-  wordCapitalize: true,
-  wordIncludeNumber: true,
-  subaddressType: "random",
-  catchallType: "random",
-  forwardedService: "",
-  forwardedAnonAddyDomain: "anonaddy.me",
-  forwardedAnonAddyBaseUrl: "https://app.addy.io",
-  forwardedForwardEmailDomain: "hideaddress.net",
-  forwardedSimpleLoginBaseUrl: "https://app.simplelogin.io",
-};
-
-export class UsernameGenerationService implements UsernameGenerationServiceAbstraction {
-  constructor(
-    private cryptoService: CryptoService,
-    private stateService: StateService,
-    private apiService: ApiService,
-  ) {}
-
-  generateUsername(options: UsernameGeneratorOptions): Promise<string> {
-    if (options.type === "catchall") {
-      return this.generateCatchall(options);
-    } else if (options.type === "subaddress") {
-      return this.generateSubaddress(options);
-    } else if (options.type === "forwarded") {
-      return this.generateForwarded(options);
-    } else {
-      return this.generateWord(options);
-    }
-  }
-
-  async generateWord(options: UsernameGeneratorOptions): Promise<string> {
-    const o = Object.assign({}, DefaultOptions, options);
-
-    if (o.wordCapitalize == null) {
-      o.wordCapitalize = true;
-    }
-    if (o.wordIncludeNumber == null) {
-      o.wordIncludeNumber = true;
-    }
-
-    const wordIndex = await this.cryptoService.randomNumber(0, EFFLongWordList.length - 1);
-    let word = EFFLongWordList[wordIndex];
-    if (o.wordCapitalize) {
-      word = word.charAt(0).toUpperCase() + word.slice(1);
-    }
-    if (o.wordIncludeNumber) {
-      const num = await this.cryptoService.randomNumber(1, 9999);
-      word = word + this.zeroPad(num.toString(), 4);
-    }
-    return word;
-  }
-
-  async generateSubaddress(options: UsernameGeneratorOptions): Promise<string> {
-    const o = Object.assign({}, DefaultOptions, options);
-
-    const subaddressEmail = o.subaddressEmail;
-    if (subaddressEmail == null || subaddressEmail.length < 3) {
-      return o.subaddressEmail;
-    }
-    const atIndex = subaddressEmail.indexOf("@");
-    if (atIndex < 1 || atIndex >= subaddressEmail.length - 1) {
-      return subaddressEmail;
-    }
-    if (o.subaddressType == null) {
-      o.subaddressType = "random";
-    }
-
-    const emailBeginning = subaddressEmail.substr(0, atIndex);
-    const emailEnding = subaddressEmail.substr(atIndex + 1, subaddressEmail.length);
-
-    let subaddressString = "";
-    if (o.subaddressType === "random") {
-      subaddressString = await this.randomString(8);
-    } else if (o.subaddressType === "website-name") {
-      subaddressString = o.website;
-    }
-    return emailBeginning + "+" + subaddressString + "@" + emailEnding;
-  }
-
-  async generateCatchall(options: UsernameGeneratorOptions): Promise<string> {
-    const o = Object.assign({}, DefaultOptions, options);
-
-    if (o.catchallDomain == null || o.catchallDomain === "") {
-      return null;
-    }
-    if (o.catchallType == null) {
-      o.catchallType = "random";
-    }
-
-    let startString = "";
-    if (o.catchallType === "random") {
-      startString = await this.randomString(8);
-    } else if (o.catchallType === "website-name") {
-      startString = o.website;
-    }
-    return startString + "@" + o.catchallDomain;
-  }
-
-  async generateForwarded(options: UsernameGeneratorOptions): Promise<string> {
-    const o = Object.assign({}, DefaultOptions, options);
-
-    if (o.forwardedService == null) {
-      return null;
-    }
-
-    let forwarder: Forwarder = null;
-    const forwarderOptions = new ForwarderOptions();
-    forwarderOptions.website = o.website;
-    if (o.forwardedService === "simplelogin") {
-      forwarder = new SimpleLoginForwarder();
-      forwarderOptions.apiKey = o.forwardedSimpleLoginApiKey;
-      forwarderOptions.simplelogin.baseUrl = o.forwardedSimpleLoginBaseUrl;
-    } else if (o.forwardedService === "anonaddy") {
-      forwarder = new AnonAddyForwarder();
-      forwarderOptions.apiKey = o.forwardedAnonAddyApiToken;
-      forwarderOptions.anonaddy.domain = o.forwardedAnonAddyDomain;
-      forwarderOptions.anonaddy.baseUrl = o.forwardedAnonAddyBaseUrl;
-    } else if (o.forwardedService === "firefoxrelay") {
-      forwarder = new FirefoxRelayForwarder();
-      forwarderOptions.apiKey = o.forwardedFirefoxApiToken;
-    } else if (o.forwardedService === "fastmail") {
-      forwarder = new FastmailForwarder();
-      forwarderOptions.apiKey = o.forwardedFastmailApiToken;
-    } else if (o.forwardedService === "duckduckgo") {
-      forwarder = new DuckDuckGoForwarder();
-      forwarderOptions.apiKey = o.forwardedDuckDuckGoToken;
-    } else if (o.forwardedService === "forwardemail") {
-      forwarder = new ForwardEmailForwarder();
-      forwarderOptions.apiKey = o.forwardedForwardEmailApiToken;
-      forwarderOptions.forwardemail.domain = o.forwardedForwardEmailDomain;
-    }
-
-    if (forwarder == null) {
-      return null;
-    }
-
-    return forwarder.generate(this.apiService, forwarderOptions);
-  }
-
-  getOptions$() {
-    return from(this.getOptions());
-  }
-
-  async getOptions(): Promise<UsernameGeneratorOptions> {
-    let options = await this.stateService.getUsernameGenerationOptions();
-    if (options == null) {
-      options = Object.assign({}, DefaultOptions);
-    } else {
-      options = Object.assign({}, DefaultOptions, options);
-    }
-    await this.stateService.setUsernameGenerationOptions(options);
-    return options;
-  }
-
-  async saveOptions(options: UsernameGeneratorOptions) {
-    await this.stateService.setUsernameGenerationOptions(options);
-  }
-
-  private async randomString(length: number) {
-    let str = "";
-    const charSet = "abcdefghijklmnopqrstuvwxyz1234567890";
-    for (let i = 0; i < length; i++) {
-      const randomCharIndex = await this.cryptoService.randomNumber(0, charSet.length - 1);
-      str += charSet.charAt(randomCharIndex);
-    }
-    return str;
-  }
-
-  // ref: https://stackoverflow.com/a/10073788
-  private zeroPad(number: string, width: number) {
-    return number.length >= width
-      ? number
-      : new Array(width - number.length + 1).join("0") + number;
-  }
-}
diff --git a/libs/common/src/tools/generator/util.ts b/libs/common/src/tools/generator/util.ts
new file mode 100644
index 00000000000..ee526fc6786
--- /dev/null
+++ b/libs/common/src/tools/generator/util.ts
@@ -0,0 +1,41 @@
+import { BehaviorSubject } from "rxjs";
+
+import { SingleUserState, StateProvider, UserKeyDefinition } from "../../platform/state";
+import { UserId } from "../../types/guid";
+
+/** construct a method that outputs a copy of `defaultValue` as an observable. */
+export function clone$PerUserId<Value>(defaultValue: Value) {
+  const _subjects = new Map<UserId, BehaviorSubject<Value>>();
+
+  return (key: UserId) => {
+    let value = _subjects.get(key);
+
+    if (value === undefined) {
+      value = new BehaviorSubject({ ...defaultValue });
+      _subjects.set(key, value);
+    }
+
+    return value.asObservable();
+  };
+}
+
+/** construct a method that caches user-specific states by userid. */
+export function sharedByUserId<Value>(create: (userId: UserId) => SingleUserState<Value>) {
+  const _subjects = new Map<UserId, SingleUserState<Value>>();
+
+  return (key: UserId) => {
+    let value = _subjects.get(key);
+
+    if (value === undefined) {
+      value = create(key);
+      _subjects.set(key, value);
+    }
+
+    return value;
+  };
+}
+
+/** construct a method that loads a user-specific state from the provider. */
+export function sharedStateByUserId<Value>(key: UserKeyDefinition<Value>, provider: StateProvider) {
+  return (id: UserId) => provider.getUser<Value>(id, key);
+}
diff --git a/libs/common/src/tools/generator/word-options.ts b/libs/common/src/tools/generator/word-options.ts
new file mode 100644
index 00000000000..1c98d0bac8d
--- /dev/null
+++ b/libs/common/src/tools/generator/word-options.ts
@@ -0,0 +1,6 @@
+export type WordOptions = {
+  /** set the first letter uppercase */
+  titleCase?: boolean;
+  /** append a number */
+  number?: boolean;
+};

From 13c2c2ecaaf85fe0224ade2bcfb8fb3ed7b30396 Mon Sep 17 00:00:00 2001
From: rr-bw <102181210+rr-bw@users.noreply.github.com>
Date: Tue, 4 Jun 2024 08:38:54 -0700
Subject: [PATCH 088/138] [PM-8236] Allow for additional data properties
 (#9278)

* allow for additional properties

* create interface for DataProperties and extend AnonLayouWrapperData

* move data properties to RouterService

* add docs

* add comment

* rewrite comment
---
 apps/web/src/app/core/router.service.ts |  8 +++
 apps/web/src/app/oss-routing.module.ts  | 67 ++++++++++++++-----------
 2 files changed, 46 insertions(+), 29 deletions(-)

diff --git a/apps/web/src/app/core/router.service.ts b/apps/web/src/app/core/router.service.ts
index c0c1ec26407..2944732aee6 100644
--- a/apps/web/src/app/core/router.service.ts
+++ b/apps/web/src/app/core/router.service.ts
@@ -12,6 +12,14 @@ import {
   GlobalState,
 } from "@bitwarden/common/platform/state";
 
+/**
+ * Data properties acceptable for use in route objects (see usage in oss-routing.module.ts for example)
+ */
+export interface DataProperties {
+  titleId?: string; // sets the title of the current HTML document (shows in browser tab)
+  doNotSaveUrl?: boolean; // choose to not keep track of the previous URL in memory
+}
+
 const DEEP_LINK_REDIRECT_URL = new KeyDefinition(ROUTER_DISK, "deepLinkRedirectUrl", {
   deserializer: (value: string) => value,
 });
diff --git a/apps/web/src/app/oss-routing.module.ts b/apps/web/src/app/oss-routing.module.ts
index e543a6f0835..c7b4631fa30 100644
--- a/apps/web/src/app/oss-routing.module.ts
+++ b/apps/web/src/app/oss-routing.module.ts
@@ -40,6 +40,7 @@ import { UpdatePasswordComponent } from "./auth/update-password.component";
 import { UpdateTempPasswordComponent } from "./auth/update-temp-password.component";
 import { VerifyEmailTokenComponent } from "./auth/verify-email-token.component";
 import { VerifyRecoverDeleteComponent } from "./auth/verify-recover-delete.component";
+import { DataProperties } from "./core";
 import { FrontendLayoutComponent } from "./layouts/frontend-layout.component";
 import { UserLayoutComponent } from "./layouts/user-layout.component";
 import { DomainRulesComponent } from "./settings/domain-rules.component";
@@ -54,7 +55,7 @@ const routes: Routes = [
   {
     path: "",
     component: FrontendLayoutComponent,
-    data: { doNotSaveUrl: true },
+    data: { doNotSaveUrl: true } satisfies DataProperties,
     children: [
       {
         path: "",
@@ -66,17 +67,17 @@ const routes: Routes = [
       {
         path: "login-with-device",
         component: LoginViaAuthRequestComponent,
-        data: { titleId: "loginWithDevice" },
+        data: { titleId: "loginWithDevice" } satisfies DataProperties,
       },
       {
         path: "login-with-passkey",
         component: LoginViaWebAuthnComponent,
-        data: { titleId: "loginWithPasskey" },
+        data: { titleId: "loginWithPasskey" } satisfies DataProperties,
       },
       {
         path: "admin-approval-requested",
         component: LoginViaAuthRequestComponent,
-        data: { titleId: "adminApprovalRequested" },
+        data: { titleId: "adminApprovalRequested" } satisfies DataProperties,
       },
       { path: "2fa", component: TwoFactorComponent, canActivate: [UnauthGuard] },
       {
@@ -88,7 +89,7 @@ const routes: Routes = [
         path: "register",
         component: TrialInitiationComponent,
         canActivate: [UnauthGuard],
-        data: { titleId: "createAccount" },
+        data: { titleId: "createAccount" } satisfies DataProperties,
       },
       {
         path: "trial",
@@ -99,18 +100,18 @@ const routes: Routes = [
         path: "sso",
         component: SsoComponent,
         canActivate: [UnauthGuard],
-        data: { titleId: "enterpriseSingleSignOn" },
+        data: { titleId: "enterpriseSingleSignOn" } satisfies DataProperties,
       },
       {
         path: "set-password",
         component: SetPasswordComponent,
-        data: { titleId: "setMasterPassword" },
+        data: { titleId: "setMasterPassword" } satisfies DataProperties,
       },
       {
         path: "hint",
         component: HintComponent,
         canActivate: [UnauthGuard],
-        data: { titleId: "passwordHint" },
+        data: { titleId: "passwordHint" } satisfies DataProperties,
       },
       {
         path: "lock",
@@ -122,12 +123,12 @@ const routes: Routes = [
         path: "accept-organization",
         canActivate: [deepLinkGuard()],
         component: AcceptOrganizationComponent,
-        data: { titleId: "joinOrganization", doNotSaveUrl: false },
+        data: { titleId: "joinOrganization", doNotSaveUrl: false } satisfies DataProperties,
       },
       {
         path: "accept-emergency",
         canActivate: [deepLinkGuard()],
-        data: { titleId: "acceptEmergency", doNotSaveUrl: false },
+        data: { titleId: "acceptEmergency", doNotSaveUrl: false } satisfies DataProperties,
         loadComponent: () =>
           import("./auth/emergency-access/accept/accept-emergency.component").then(
             (mod) => mod.AcceptEmergencyComponent,
@@ -137,26 +138,26 @@ const routes: Routes = [
         path: "accept-families-for-enterprise",
         component: AcceptFamilySponsorshipComponent,
         canActivate: [deepLinkGuard()],
-        data: { titleId: "acceptFamilySponsorship", doNotSaveUrl: false },
+        data: { titleId: "acceptFamilySponsorship", doNotSaveUrl: false } satisfies DataProperties,
       },
       { path: "recover", pathMatch: "full", redirectTo: "recover-2fa" },
       {
         path: "recover-2fa",
         component: RecoverTwoFactorComponent,
         canActivate: [UnauthGuard],
-        data: { titleId: "recoverAccountTwoStep" },
+        data: { titleId: "recoverAccountTwoStep" } satisfies DataProperties,
       },
       {
         path: "recover-delete",
         component: RecoverDeleteComponent,
         canActivate: [UnauthGuard],
-        data: { titleId: "deleteAccount" },
+        data: { titleId: "deleteAccount" } satisfies DataProperties,
       },
       {
         path: "verify-recover-delete",
         component: VerifyRecoverDeleteComponent,
         canActivate: [UnauthGuard],
-        data: { titleId: "deleteAccount" },
+        data: { titleId: "deleteAccount" } satisfies DataProperties,
       },
       {
         path: "verify-recover-delete-org",
@@ -168,30 +169,30 @@ const routes: Routes = [
         path: "verify-recover-delete-provider",
         component: VerifyRecoverDeleteProviderComponent,
         canActivate: [UnauthGuard],
-        data: { titleId: "deleteAccount" },
+        data: { titleId: "deleteAccount" } satisfies DataProperties,
       },
       {
         path: "send/:sendId/:key",
         component: AccessComponent,
-        data: { title: "Bitwarden Send" },
+        data: { titleId: "Bitwarden Send" } satisfies DataProperties,
       },
       {
         path: "update-temp-password",
         component: UpdateTempPasswordComponent,
         canActivate: [AuthGuard],
-        data: { titleId: "updateTempPassword" },
+        data: { titleId: "updateTempPassword" } satisfies DataProperties,
       },
       {
         path: "update-password",
         component: UpdatePasswordComponent,
         canActivate: [AuthGuard],
-        data: { titleId: "updatePassword" },
+        data: { titleId: "updatePassword" } satisfies DataProperties,
       },
       {
         path: "remove-password",
         component: RemovePasswordComponent,
         canActivate: [AuthGuard],
-        data: { titleId: "removeMasterPassword" },
+        data: { titleId: "removeMasterPassword" } satisfies DataProperties,
       },
       {
         path: "migrate-legacy-encryption",
@@ -211,21 +212,29 @@ const routes: Routes = [
         path: "vault",
         loadChildren: () => VaultModule,
       },
-      { path: "sends", component: SendComponent, data: { titleId: "send" } },
+      {
+        path: "sends",
+        component: SendComponent,
+        data: { titleId: "send" } satisfies DataProperties,
+      },
       {
         path: "create-organization",
         component: CreateOrganizationComponent,
-        data: { titleId: "newOrganization" },
+        data: { titleId: "newOrganization" } satisfies DataProperties,
       },
       {
         path: "settings",
         children: [
           { path: "", pathMatch: "full", redirectTo: "account" },
-          { path: "account", component: AccountComponent, data: { titleId: "myAccount" } },
+          {
+            path: "account",
+            component: AccountComponent,
+            data: { titleId: "myAccount" } satisfies DataProperties,
+          },
           {
             path: "preferences",
             component: PreferencesComponent,
-            data: { titleId: "preferences" },
+            data: { titleId: "preferences" } satisfies DataProperties,
           },
           {
             path: "security",
@@ -234,7 +243,7 @@ const routes: Routes = [
           {
             path: "domain-rules",
             component: DomainRulesComponent,
-            data: { titleId: "domainRules" },
+            data: { titleId: "domainRules" } satisfies DataProperties,
           },
           {
             path: "subscription",
@@ -249,19 +258,19 @@ const routes: Routes = [
               {
                 path: "",
                 component: EmergencyAccessComponent,
-                data: { titleId: "emergencyAccess" },
+                data: { titleId: "emergencyAccess" } satisfies DataProperties,
               },
               {
                 path: ":id",
                 component: EmergencyAccessViewComponent,
-                data: { titleId: "emergencyAccess" },
+                data: { titleId: "emergencyAccess" } satisfies DataProperties,
               },
             ],
           },
           {
             path: "sponsored-families",
             component: SponsoredFamiliesComponent,
-            data: { titleId: "sponsoredFamilies" },
+            data: { titleId: "sponsoredFamilies" } satisfies DataProperties,
           },
         ],
       },
@@ -276,7 +285,7 @@ const routes: Routes = [
               import("./tools/import/import-web.component").then((mod) => mod.ImportWebComponent),
             data: {
               titleId: "importData",
-            },
+            } satisfies DataProperties,
           },
           {
             path: "export",
@@ -286,7 +295,7 @@ const routes: Routes = [
           {
             path: "generator",
             component: GeneratorComponent,
-            data: { titleId: "generator" },
+            data: { titleId: "generator" } satisfies DataProperties,
           },
         ],
       },

From 9322dacbd4d9309c52064d6da2ab9301de175cb5 Mon Sep 17 00:00:00 2001
From: vinith-kovan <156108204+vinith-kovan@users.noreply.github.com>
Date: Tue, 4 Jun 2024 23:26:20 +0530
Subject: [PATCH 089/138] [PM 5011][PM-8562] migrate user subscription
 component (#9499)

* migrate user subscription along with update license dialog

* migrate user subscription along with update license dialog

* migrate user subscription along with update license dialog
---
 .../individual/user-subscription.component.ts | 24 +++++++++----------
 1 file changed, 11 insertions(+), 13 deletions(-)

diff --git a/apps/web/src/app/billing/individual/user-subscription.component.ts b/apps/web/src/app/billing/individual/user-subscription.component.ts
index 8535f23f820..9b615f3a690 100644
--- a/apps/web/src/app/billing/individual/user-subscription.component.ts
+++ b/apps/web/src/app/billing/individual/user-subscription.component.ts
@@ -146,19 +146,17 @@ export class UserSubscriptionComponent implements OnInit {
     }
   };
 
-  adjustStorage = (add: boolean) => {
-    return async () => {
-      const dialogRef = openAdjustStorageDialog(this.dialogService, {
-        data: {
-          storageGbPrice: 4,
-          add: add,
-        },
-      });
-      const result = await lastValueFrom(dialogRef.closed);
-      if (result === AdjustStorageDialogResult.Adjusted) {
-        await this.load();
-      }
-    };
+  adjustStorage = async (add: boolean) => {
+    const dialogRef = openAdjustStorageDialog(this.dialogService, {
+      data: {
+        storageGbPrice: 4,
+        add: add,
+      },
+    });
+    const result = await lastValueFrom(dialogRef.closed);
+    if (result === AdjustStorageDialogResult.Adjusted) {
+      await this.load();
+    }
   };
 
   get subscriptionMarkedForCancel() {

From fc2953a1266a56c0feeaf0a22ef6537fadae4d5f Mon Sep 17 00:00:00 2001
From: KiruthigaManivannan
 <162679756+KiruthigaManivannan@users.noreply.github.com>
Date: Wed, 5 Jun 2024 01:25:35 +0530
Subject: [PATCH 090/138] AC-2680 Custom permission manage account recovery no
 longer auto triggers the manage users (#9477)

---
 .../components/member-dialog/member-dialog.component.html       | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.html b/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.html
index 149277b8179..2a092e26100 100644
--- a/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.html
+++ b/apps/web/src/app/admin-console/organizations/members/components/member-dialog/member-dialog.component.html
@@ -144,6 +144,7 @@
                     </bit-form-control>
                     <bit-form-control>
                       <input
+                        id="manageUsers"
                         type="checkbox"
                         bitCheckbox
                         formControlName="manageUsers"
@@ -203,6 +204,7 @@
                     </bit-form-control>
                     <bit-form-control>
                       <input
+                        id="manageUsers"
                         type="checkbox"
                         bitCheckbox
                         formControlName="manageUsers"

From d1a9d6f6138c1a467c364cf8e52525f17ba3af4f Mon Sep 17 00:00:00 2001
From: Shane Melton <smelton@bitwarden.com>
Date: Tue, 4 Jun 2024 14:09:09 -0700
Subject: [PATCH 091/138] [PM-8455] [PM-7683] Dynamic list items - Copy Action
 (#9410)

* [PM-7683] Add fullAddressForCopy helper to identity.view

* [PM-7683] Introduce CopyCipherFieldService to the Vault library

- A new CopyCipherFieldService that can be used to copy a cipher's field to the user clipboard
- A new appCopyField directive to make it easy to copy a cipher's fields in templates
- Tests for the CopyCipherFieldService

* [PM-7683] Introduce item-copy-actions.component

* [PM-7683] Fix username value in copy cipher directive

* [PM-7683] Add title to View item link

* [PM-7683] Move disabled logic into own method
---
 apps/browser/src/_locales/en/messages.json    |  65 ++++++-
 .../item-copy-actions.component.html          |  77 ++++++++
 .../item-copy-actions.component.ts            |  29 +++
 .../vault-list-items-container.component.html |  16 +-
 .../vault-list-items-container.component.ts   |   2 +
 .../src/vault/models/view/identity.view.ts    |  11 ++
 .../components/copy-cipher-field.directive.ts |  78 ++++++++
 libs/vault/src/index.ts                       |   2 +
 .../copy-cipher-field.service.spec.ts         | 170 ++++++++++++++++++
 .../src/services/copy-cipher-field.service.ts | 142 +++++++++++++++
 10 files changed, 580 insertions(+), 12 deletions(-)
 create mode 100644 apps/browser/src/vault/popup/components/vault-v2/item-copy-action/item-copy-actions.component.html
 create mode 100644 apps/browser/src/vault/popup/components/vault-v2/item-copy-action/item-copy-actions.component.ts
 create mode 100644 libs/vault/src/components/copy-cipher-field.directive.ts
 create mode 100644 libs/vault/src/services/copy-cipher-field.service.spec.ts
 create mode 100644 libs/vault/src/services/copy-cipher-field.service.ts

diff --git a/apps/browser/src/_locales/en/messages.json b/apps/browser/src/_locales/en/messages.json
index deb7410a716..3510ed10cb1 100644
--- a/apps/browser/src/_locales/en/messages.json
+++ b/apps/browser/src/_locales/en/messages.json
@@ -185,7 +185,7 @@
     "message": "Continue to browser extension store?"
   },
   "continueToBrowserExtensionStoreDesc": {
-    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."    
+    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
   },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "You can change your master password on the Bitwarden web app."
@@ -3281,7 +3281,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3291,7 +3291,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3301,6 +3331,35 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
diff --git a/apps/browser/src/vault/popup/components/vault-v2/item-copy-action/item-copy-actions.component.html b/apps/browser/src/vault/popup/components/vault-v2/item-copy-action/item-copy-actions.component.html
new file mode 100644
index 00000000000..08133c6b466
--- /dev/null
+++ b/apps/browser/src/vault/popup/components/vault-v2/item-copy-action/item-copy-actions.component.html
@@ -0,0 +1,77 @@
+<bit-item-action *ngIf="cipher.type === CipherType.Login">
+  <button
+    type="button"
+    bitIconButton="bwi-clone"
+    size="small"
+    [attr.aria-label]="'copyInfoLabel' | i18n: cipher.name"
+    [title]="'copyInfoTitle' | i18n: cipher.name"
+    [bitMenuTriggerFor]="loginOptions"
+  ></button>
+  <bit-menu #loginOptions>
+    <button type="button" bitMenuItem appCopyField="username" [cipher]="cipher">
+      {{ "copyUsername" | i18n }}
+    </button>
+    <button type="button" bitMenuItem appCopyField="password" [cipher]="cipher">
+      {{ "copyPassword" | i18n }}
+    </button>
+    <button type="button" bitMenuItem appCopyField="totp" [cipher]="cipher">
+      {{ "copyVerificationCode" | i18n }}
+    </button>
+  </bit-menu>
+</bit-item-action>
+
+<bit-item-action *ngIf="cipher.type === CipherType.Card">
+  <button
+    type="button"
+    bitIconButton="bwi-clone"
+    size="small"
+    [attr.aria-label]="'copyInfoLabel' | i18n: cipher.name"
+    [title]="'copyInfoTitle' | i18n: cipher.name"
+    [bitMenuTriggerFor]="cardOptions"
+  ></button>
+  <bit-menu #cardOptions>
+    <button type="button" bitMenuItem appCopyField="cardNumber" [cipher]="cipher">
+      {{ "copyNumber" | i18n }}
+    </button>
+    <button type="button" bitMenuItem appCopyField="securityCode" [cipher]="cipher">
+      {{ "copySecurityCode" | i18n }}
+    </button>
+  </bit-menu>
+</bit-item-action>
+
+<bit-item-action *ngIf="cipher.type === CipherType.Identity">
+  <button
+    type="button"
+    bitIconButton="bwi-clone"
+    size="small"
+    [attr.aria-label]="'copyInfoLabel' | i18n: cipher.name"
+    [title]="'copyInfoTitle' | i18n: cipher.name"
+    [bitMenuTriggerFor]="identityOptions"
+  ></button>
+  <bit-menu #identityOptions>
+    <button type="button" bitMenuItem appCopyField="username" [cipher]="cipher">
+      {{ "copyUsername" | i18n }}
+    </button>
+    <button type="button" bitMenuItem appCopyField="email" [cipher]="cipher">
+      {{ "copyEmail" | i18n }}
+    </button>
+    <button type="button" bitMenuItem appCopyField="phone" [cipher]="cipher">
+      {{ "copyPhone" | i18n }}
+    </button>
+    <button type="button" bitMenuItem appCopyField="address" [cipher]="cipher">
+      {{ "copyAddress" | i18n }}
+    </button>
+  </bit-menu>
+</bit-item-action>
+
+<bit-item-action *ngIf="cipher.type === CipherType.SecureNote">
+  <button
+    type="button"
+    bitIconButton="bwi-clone"
+    size="small"
+    [attr.aria-label]="'copyNoteLabel' | i18n: cipher.name"
+    [title]="'copyNoteTitle' | i18n: cipher.name"
+    appCopyField="secureNote"
+    [cipher]="cipher"
+  ></button>
+</bit-item-action>
diff --git a/apps/browser/src/vault/popup/components/vault-v2/item-copy-action/item-copy-actions.component.ts b/apps/browser/src/vault/popup/components/vault-v2/item-copy-action/item-copy-actions.component.ts
new file mode 100644
index 00000000000..c89fcca3b3f
--- /dev/null
+++ b/apps/browser/src/vault/popup/components/vault-v2/item-copy-action/item-copy-actions.component.ts
@@ -0,0 +1,29 @@
+import { CommonModule } from "@angular/common";
+import { Component, Input } from "@angular/core";
+
+import { JslibModule } from "@bitwarden/angular/jslib.module";
+import { CipherType } from "@bitwarden/common/vault/enums";
+import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { IconButtonModule, ItemModule, MenuModule } from "@bitwarden/components";
+import { CopyCipherFieldDirective } from "@bitwarden/vault";
+
+@Component({
+  standalone: true,
+  selector: "app-item-copy-actions",
+  templateUrl: "item-copy-actions.component.html",
+  imports: [
+    ItemModule,
+    IconButtonModule,
+    JslibModule,
+    MenuModule,
+    CommonModule,
+    CopyCipherFieldDirective,
+  ],
+})
+export class ItemCopyActionsComponent {
+  @Input() cipher: CipherView;
+
+  protected CipherType = CipherType;
+
+  constructor() {}
+}
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
index d3bb85c710f..47725cf9dce 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
@@ -13,7 +13,12 @@
   </popup-section-header>
   <bit-item-group>
     <bit-item *ngFor="let cipher of ciphers">
-      <a bit-item-content [routerLink]="['/view-cipher']" [queryParams]="{ cipherId: cipher.id }">
+      <a
+        bit-item-content
+        [routerLink]="['/view-cipher']"
+        [queryParams]="{ cipherId: cipher.id }"
+        [appA11yTitle]="'viewItemTitle' | i18n: cipher.name"
+      >
         <app-vault-icon slot="start" [cipher]="cipher"></app-vault-icon>
         {{ cipher.name }}
         <span slot="secondary">{{ cipher.subTitle }}</span>
@@ -22,14 +27,7 @@
         <bit-item-action *ngIf="showAutoFill">
           <button type="button" bitBadge variant="primary">{{ "autoFill" | i18n }}</button>
         </bit-item-action>
-        <bit-item-action>
-          <button
-            type="button"
-            bitIconButton="bwi-clone"
-            size="small"
-            [attr.aria-label]="'copyInfo' | i18n: cipher.name"
-          ></button>
-        </bit-item-action>
+        <app-item-copy-actions [cipher]="cipher"></app-item-copy-actions>
         <bit-item-action>
           <button
             type="button"
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
index f9b34e96162..e8200cab79d 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
@@ -14,6 +14,7 @@ import {
 } from "@bitwarden/components";
 
 import { PopupSectionHeaderComponent } from "../../../../../platform/popup/popup-section-header/popup-section-header.component";
+import { ItemCopyActionsComponent } from "../item-copy-action/item-copy-actions.component";
 
 @Component({
   imports: [
@@ -27,6 +28,7 @@ import { PopupSectionHeaderComponent } from "../../../../../platform/popup/popup
     JslibModule,
     PopupSectionHeaderComponent,
     RouterLink,
+    ItemCopyActionsComponent,
   ],
   selector: "app-vault-list-items-container",
   templateUrl: "vault-list-items-container.component.html",
diff --git a/libs/common/src/vault/models/view/identity.view.ts b/libs/common/src/vault/models/view/identity.view.ts
index 21e6324abbc..02db81b9290 100644
--- a/libs/common/src/vault/models/view/identity.view.ts
+++ b/libs/common/src/vault/models/view/identity.view.ts
@@ -142,6 +142,17 @@ export class IdentityView extends ItemView {
     return addressPart2;
   }
 
+  get fullAddressForCopy(): string {
+    let address = this.fullAddress;
+    if (this.city != null || this.state != null || this.postalCode != null) {
+      address += "\n" + this.fullAddressPart2;
+    }
+    if (this.country != null) {
+      address += "\n" + this.country;
+    }
+    return address;
+  }
+
   static fromJSON(obj: Partial<Jsonify<IdentityView>>): IdentityView {
     return Object.assign(new IdentityView(), obj);
   }
diff --git a/libs/vault/src/components/copy-cipher-field.directive.ts b/libs/vault/src/components/copy-cipher-field.directive.ts
new file mode 100644
index 00000000000..2b79742c66d
--- /dev/null
+++ b/libs/vault/src/components/copy-cipher-field.directive.ts
@@ -0,0 +1,78 @@
+import { Directive, HostBinding, HostListener, Input, OnChanges } from "@angular/core";
+
+import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { CopyAction, CopyCipherFieldService } from "@bitwarden/vault";
+
+/**
+ * Directive to copy a specific field from a cipher on click. Uses the `CopyCipherFieldService` to
+ * handle the copying of the field and any necessary password re-prompting or totp generation.
+ *
+ * Automatically disables the host element if the field to copy is not available or null.
+ *
+ * @example
+ * ```html
+ * <button appCopyField="username" [cipher]="cipher">Copy Username</button>
+ * ```
+ */
+@Directive({
+  standalone: true,
+  selector: "[appCopyField]",
+})
+export class CopyCipherFieldDirective implements OnChanges {
+  @Input({
+    alias: "appCopyField",
+    required: true,
+  })
+  action: Exclude<CopyAction, "hiddenField">;
+
+  @Input({ required: true }) cipher: CipherView;
+
+  constructor(private copyCipherFieldService: CopyCipherFieldService) {}
+
+  @HostBinding("attr.disabled")
+  protected disabled: boolean | null = null;
+
+  @HostListener("click")
+  async copy() {
+    const value = this.getValueToCopy();
+    await this.copyCipherFieldService.copy(value, this.action, this.cipher);
+  }
+
+  async ngOnChanges() {
+    await this.updateDisabledState();
+  }
+
+  private async updateDisabledState() {
+    this.disabled =
+      !this.cipher ||
+      !this.getValueToCopy() ||
+      (this.action === "totp" && !(await this.copyCipherFieldService.totpAllowed(this.cipher)))
+        ? true
+        : null;
+  }
+
+  private getValueToCopy() {
+    switch (this.action) {
+      case "username":
+        return this.cipher.login?.username || this.cipher.identity?.username;
+      case "password":
+        return this.cipher.login?.password;
+      case "totp":
+        return this.cipher.login?.totp;
+      case "cardNumber":
+        return this.cipher.card?.number;
+      case "securityCode":
+        return this.cipher.card?.code;
+      case "email":
+        return this.cipher.identity?.email;
+      case "phone":
+        return this.cipher.identity?.phone;
+      case "address":
+        return this.cipher.identity?.fullAddressForCopy;
+      case "secureNote":
+        return this.cipher.notes;
+      default:
+        return null;
+    }
+  }
+}
diff --git a/libs/vault/src/index.ts b/libs/vault/src/index.ts
index bf6b7f91c23..00fa0420802 100644
--- a/libs/vault/src/index.ts
+++ b/libs/vault/src/index.ts
@@ -1 +1,3 @@
 export { PasswordRepromptService } from "./services/password-reprompt.service";
+export { CopyCipherFieldService, CopyAction } from "./services/copy-cipher-field.service";
+export { CopyCipherFieldDirective } from "./components/copy-cipher-field.directive";
diff --git a/libs/vault/src/services/copy-cipher-field.service.spec.ts b/libs/vault/src/services/copy-cipher-field.service.spec.ts
new file mode 100644
index 00000000000..57c77ebb0bd
--- /dev/null
+++ b/libs/vault/src/services/copy-cipher-field.service.spec.ts
@@ -0,0 +1,170 @@
+import { mock, MockProxy } from "jest-mock-extended";
+import { of } from "rxjs";
+
+import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
+import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
+import { EventType } from "@bitwarden/common/enums";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { TotpService } from "@bitwarden/common/vault/abstractions/totp.service";
+import { CipherRepromptType } from "@bitwarden/common/vault/enums";
+import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { LoginView } from "@bitwarden/common/vault/models/view/login.view";
+import { ToastService } from "@bitwarden/components";
+import { CopyAction, CopyCipherFieldService, PasswordRepromptService } from "@bitwarden/vault";
+
+describe("CopyCipherFieldService", () => {
+  let service: CopyCipherFieldService;
+  let platformUtilsService: MockProxy<PlatformUtilsService>;
+  let toastService: MockProxy<ToastService>;
+  let eventCollectionService: MockProxy<EventCollectionService>;
+  let passwordRepromptService: MockProxy<PasswordRepromptService>;
+  let totpService: MockProxy<TotpService>;
+  let i18nService: MockProxy<I18nService>;
+  let billingAccountProfileStateService: MockProxy<BillingAccountProfileStateService>;
+
+  beforeEach(() => {
+    platformUtilsService = mock<PlatformUtilsService>();
+    toastService = mock<ToastService>();
+    eventCollectionService = mock<EventCollectionService>();
+    passwordRepromptService = mock<PasswordRepromptService>();
+    totpService = mock<TotpService>();
+    i18nService = mock<I18nService>();
+    billingAccountProfileStateService = mock<BillingAccountProfileStateService>();
+
+    service = new CopyCipherFieldService(
+      platformUtilsService,
+      toastService,
+      eventCollectionService,
+      passwordRepromptService,
+      totpService,
+      i18nService,
+      billingAccountProfileStateService,
+    );
+  });
+
+  describe("copy", () => {
+    let cipher: CipherView;
+    let valueToCopy: string;
+    let actionType: CopyAction;
+    let skipReprompt: boolean;
+
+    beforeEach(() => {
+      cipher = mock<CipherView>();
+      valueToCopy = "test";
+      actionType = "username";
+      skipReprompt = false;
+    });
+
+    it("should return early when valueToCopy is null", async () => {
+      valueToCopy = null;
+      await service.copy(valueToCopy, actionType, cipher, skipReprompt);
+      expect(platformUtilsService.copyToClipboard).not.toHaveBeenCalled();
+    });
+
+    it("should return early when cipher.viewPassword is false", async () => {
+      cipher.viewPassword = false;
+      await service.copy(valueToCopy, actionType, cipher, skipReprompt);
+      expect(platformUtilsService.copyToClipboard).not.toHaveBeenCalled();
+    });
+
+    it("should copy value to clipboard", async () => {
+      await service.copy(valueToCopy, actionType, cipher, skipReprompt);
+      expect(platformUtilsService.copyToClipboard).toHaveBeenCalledWith(valueToCopy);
+    });
+
+    it("should show a success toast on copy", async () => {
+      i18nService.t.mockReturnValueOnce("Username").mockReturnValueOnce("Username copied");
+      await service.copy(valueToCopy, actionType, cipher, skipReprompt);
+      expect(toastService.showToast).toHaveBeenCalledWith({
+        variant: "success",
+        message: "Username copied",
+        title: null,
+      });
+      expect(i18nService.t).toHaveBeenCalledWith("username");
+      expect(i18nService.t).toHaveBeenCalledWith("valueCopied", "Username");
+    });
+
+    describe("password reprompt", () => {
+      beforeEach(() => {
+        actionType = "password";
+        cipher.reprompt = CipherRepromptType.Password;
+      });
+
+      it("should show password prompt when actionType requires it", async () => {
+        passwordRepromptService.showPasswordPrompt.mockResolvedValue(true);
+        await service.copy(valueToCopy, actionType, cipher, skipReprompt);
+        expect(passwordRepromptService.showPasswordPrompt).toHaveBeenCalled();
+      });
+
+      it("should skip password prompt when cipher.reprompt is 'None'", async () => {
+        cipher.reprompt = CipherRepromptType.None;
+        await service.copy(valueToCopy, actionType, cipher, skipReprompt);
+        expect(passwordRepromptService.showPasswordPrompt).not.toHaveBeenCalled();
+        expect(platformUtilsService.copyToClipboard).toHaveBeenCalled();
+      });
+
+      it("should skip password prompt when skipReprompt is true", async () => {
+        skipReprompt = true;
+        await service.copy(valueToCopy, actionType, cipher, skipReprompt);
+        expect(passwordRepromptService.showPasswordPrompt).not.toHaveBeenCalled();
+      });
+
+      it("should return early when password prompt is not confirmed", async () => {
+        passwordRepromptService.showPasswordPrompt.mockResolvedValue(false);
+        await service.copy(valueToCopy, actionType, cipher, skipReprompt);
+        expect(platformUtilsService.copyToClipboard).not.toHaveBeenCalled();
+      });
+    });
+
+    describe("totp", () => {
+      beforeEach(() => {
+        actionType = "totp";
+        cipher.login = new LoginView();
+        cipher.login.totp = "secret-totp";
+        cipher.reprompt = CipherRepromptType.None;
+        cipher.organizationUseTotp = false;
+      });
+
+      it("should get TOTP code when allowed from premium", async () => {
+        billingAccountProfileStateService.hasPremiumFromAnySource$ = of(true);
+        totpService.getCode.mockResolvedValue("123456");
+        await service.copy(valueToCopy, actionType, cipher, skipReprompt);
+        expect(totpService.getCode).toHaveBeenCalledWith(valueToCopy);
+        expect(platformUtilsService.copyToClipboard).toHaveBeenCalledWith("123456");
+      });
+
+      it("should get TOTP code when allowed from organization", async () => {
+        cipher.organizationUseTotp = true;
+        totpService.getCode.mockResolvedValue("123456");
+        await service.copy(valueToCopy, actionType, cipher, skipReprompt);
+        expect(totpService.getCode).toHaveBeenCalledWith(valueToCopy);
+        expect(platformUtilsService.copyToClipboard).toHaveBeenCalledWith("123456");
+      });
+
+      it("should return early when the user is not allowed to use TOTP", async () => {
+        billingAccountProfileStateService.hasPremiumFromAnySource$ = of(false);
+        await service.copy(valueToCopy, actionType, cipher, skipReprompt);
+        expect(totpService.getCode).not.toHaveBeenCalled();
+        expect(platformUtilsService.copyToClipboard).not.toHaveBeenCalled();
+      });
+
+      it("should return early when TOTP is not set", async () => {
+        cipher.login.totp = null;
+        await service.copy(valueToCopy, actionType, cipher, skipReprompt);
+        expect(totpService.getCode).not.toHaveBeenCalled();
+        expect(platformUtilsService.copyToClipboard).not.toHaveBeenCalled();
+      });
+    });
+
+    it("should collect an event when actionType has one", async () => {
+      actionType = "password";
+      skipReprompt = true;
+      await service.copy(valueToCopy, actionType, cipher, skipReprompt);
+      expect(eventCollectionService.collect).toHaveBeenCalledWith(
+        EventType.Cipher_ClientCopiedPassword,
+        cipher.id,
+      );
+    });
+  });
+});
diff --git a/libs/vault/src/services/copy-cipher-field.service.ts b/libs/vault/src/services/copy-cipher-field.service.ts
new file mode 100644
index 00000000000..9cd94f5ce63
--- /dev/null
+++ b/libs/vault/src/services/copy-cipher-field.service.ts
@@ -0,0 +1,142 @@
+import { Injectable } from "@angular/core";
+import { firstValueFrom } from "rxjs";
+
+import { EventCollectionService } from "@bitwarden/common/abstractions/event/event-collection.service";
+import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
+import { EventType } from "@bitwarden/common/enums";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { TotpService } from "@bitwarden/common/vault/abstractions/totp.service";
+import { CipherRepromptType } from "@bitwarden/common/vault/enums";
+import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { ToastService } from "@bitwarden/components";
+import { PasswordRepromptService } from "@bitwarden/vault";
+
+/**
+ * The types of fields that can be copied from a cipher.
+ */
+export type CopyAction =
+  | "username"
+  | "password"
+  | "totp"
+  | "cardNumber"
+  | "securityCode"
+  | "email"
+  | "phone"
+  | "address"
+  | "secureNote"
+  | "hiddenField";
+
+type CopyActionInfo = {
+  /**
+   * The i18n key for the type of field being copied. Will be used to display a toast message.
+   */
+  typeI18nKey: string;
+
+  /**
+   * Whether the field is protected and requires password re-prompting before being copied.
+   */
+  protected: boolean;
+
+  /**
+   * Optional event to collect when the field is copied.
+   */
+  event?: EventType;
+};
+
+const CopyActions: Record<CopyAction, CopyActionInfo> = {
+  username: { typeI18nKey: "username", protected: false },
+  password: {
+    typeI18nKey: "password",
+    protected: true,
+    event: EventType.Cipher_ClientCopiedPassword,
+  },
+  totp: { typeI18nKey: "verificationCodeTotp", protected: true },
+  cardNumber: { typeI18nKey: "number", protected: true },
+  securityCode: {
+    typeI18nKey: "securityCode",
+    protected: true,
+    event: EventType.Cipher_ClientCopiedCardCode,
+  },
+  email: { typeI18nKey: "email", protected: false },
+  phone: { typeI18nKey: "phone", protected: false },
+  address: { typeI18nKey: "address", protected: false },
+  secureNote: { typeI18nKey: "note", protected: false },
+  hiddenField: {
+    typeI18nKey: "value",
+    protected: true,
+    event: EventType.Cipher_ClientCopiedHiddenField,
+  },
+};
+
+@Injectable({
+  providedIn: "root",
+})
+export class CopyCipherFieldService {
+  constructor(
+    private platformUtilsService: PlatformUtilsService,
+    private toastService: ToastService,
+    private eventCollectionService: EventCollectionService,
+    private passwordRepromptService: PasswordRepromptService,
+    private totpService: TotpService,
+    private i18nService: I18nService,
+    private billingAccountProfileStateService: BillingAccountProfileStateService,
+  ) {}
+
+  /**
+   * Copy a field value from a cipher to the clipboard.
+   * @param valueToCopy The value to copy.
+   * @param actionType The type of field being copied.
+   * @param cipher The cipher containing the field to copy.
+   * @param skipReprompt Whether to skip password re-prompting.
+   */
+  async copy(
+    valueToCopy: string,
+    actionType: CopyAction,
+    cipher: CipherView,
+    skipReprompt: boolean = false,
+  ) {
+    const action = CopyActions[actionType];
+    if (
+      !skipReprompt &&
+      cipher.reprompt !== CipherRepromptType.None &&
+      action.protected &&
+      !(await this.passwordRepromptService.showPasswordPrompt())
+    ) {
+      return;
+    }
+
+    if (valueToCopy == null || !cipher.viewPassword) {
+      return;
+    }
+
+    if (actionType === "totp") {
+      if (!(await this.totpAllowed(cipher))) {
+        return;
+      }
+      valueToCopy = await this.totpService.getCode(valueToCopy);
+    }
+
+    this.platformUtilsService.copyToClipboard(valueToCopy);
+    this.toastService.showToast({
+      variant: "success",
+      message: this.i18nService.t("valueCopied", this.i18nService.t(action.typeI18nKey)),
+      title: null,
+    });
+
+    if (action.event !== undefined) {
+      await this.eventCollectionService.collect(action.event, cipher.id);
+    }
+  }
+
+  /**
+   * Determines if TOTP generation is allowed for a cipher and user.
+   */
+  async totpAllowed(cipher: CipherView): Promise<boolean> {
+    return (
+      (cipher?.login?.hasTotp ?? false) &&
+      (cipher.organizationUseTotp ||
+        (await firstValueFrom(this.billingAccountProfileStateService.hasPremiumFromAnySource$)))
+    );
+  }
+}

From 6eb94078f65ff9cbe1b3bf5634c27e78ddba71c0 Mon Sep 17 00:00:00 2001
From: Shane Melton <smelton@bitwarden.com>
Date: Tue, 4 Jun 2024 14:21:14 -0700
Subject: [PATCH 092/138] [PM-8456] [PM-7683] Dynamic list items - 3 dot menu
 (#9422)

* [PM-7683] Add fullAddressForCopy helper to identity.view

* [PM-7683] Introduce CopyCipherFieldService to the Vault library

- A new CopyCipherFieldService that can be used to copy a cipher's field to the user clipboard
- A new appCopyField directive to make it easy to copy a cipher's fields in templates
- Tests for the CopyCipherFieldService

* [PM-7683] Introduce item-copy-actions.component

* [PM-7683] Fix username value in copy cipher directive

* [PM-7683] Add title to View item link

* [PM-8456] Introduce initial item-more-options.component

* [PM-8456] Add logic to show/hide login menu options

* [PM-8456] Implement favorite/unfavorite menu option

* [PM-8456] Implement clone menu option

* [PM-8456] Hide launch website instead of disabling it

* [PM-8456] Ensure cipherList observable updates on cipher changes

* [PM-7683] Move disabled logic into own method

* [PM-8456] Cleanup spec file to use Angular testbed

* [PM-8456] Fix more options tooltip
---
 apps/browser/src/_locales/en/messages.json    |  14 +-
 .../autofill-vault-list-items.component.html  |   2 +-
 .../item-more-options.component.html          |  36 ++++++
 .../item-more-options.component.ts            | 122 ++++++++++++++++++
 .../vault-list-items-container.component.html |  14 +-
 .../vault-list-items-container.component.ts   |   4 +-
 .../components/vault/vault-v2.component.html  |   8 +-
 .../vault-popup-items.service.spec.ts         |  66 ++++------
 .../services/vault-popup-items.service.ts     |  10 +-
 .../src/vault/abstractions/cipher.service.ts  |   1 +
 10 files changed, 215 insertions(+), 62 deletions(-)
 create mode 100644 apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.html
 create mode 100644 apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts

diff --git a/apps/browser/src/_locales/en/messages.json b/apps/browser/src/_locales/en/messages.json
index 3510ed10cb1..c18a645c110 100644
--- a/apps/browser/src/_locales/en/messages.json
+++ b/apps/browser/src/_locales/en/messages.json
@@ -389,6 +389,9 @@
   "favorite": {
     "message": "Favorite"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
   "notes": {
     "message": "Notes"
   },
@@ -410,6 +413,9 @@
   "launch": {
     "message": "Launch"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Website"
   },
@@ -822,7 +828,7 @@
   },
   "exportPasswordDescription": {
     "message": "This password will be used to export and import this file"
-  },  
+  },
   "accountRestrictedOptionDescription": {
     "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
   },
@@ -1660,6 +1666,9 @@
   "autoFillAndSave": {
     "message": "Auto-fill and save"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Item auto-filled and URI saved"
   },
@@ -3351,6 +3360,9 @@
       }
     }
   },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
   "copyEmail": {
     "message": "Copy email"
   },
diff --git a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.html b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.html
index 0b108e8b814..83b07fc14cb 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.html
+++ b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.html
@@ -4,7 +4,7 @@
   [title]="'autofillSuggestions' | i18n"
   [showRefresh]="showRefresh"
   (onRefresh)="refreshCurrentTab()"
-  showAutoFill
+  showAutofillButton
 ></app-vault-list-items-container>
 <ng-container *ngIf="showEmptyAutofillTip$ | async">
   <bit-section>
diff --git a/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.html b/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.html
new file mode 100644
index 00000000000..1d7a2a8cd0c
--- /dev/null
+++ b/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.html
@@ -0,0 +1,36 @@
+<bit-item-action>
+  <button
+    type="button"
+    bitIconButton="bwi-ellipsis-v"
+    size="small"
+    [attr.aria-label]="'moreOptionsLabel' | i18n: cipher.name"
+    [title]="'moreOptionsTitle' | i18n: cipher.name"
+    [bitMenuTriggerFor]="moreOptions"
+  ></button>
+  <bit-menu #moreOptions>
+    <ng-container *ngIf="isLogin && !hideLoginOptions">
+      <ng-container *ngIf="autofillAllowed$ | async">
+        <button type="button" bitMenuItem>
+          {{ "autofill" | i18n }}
+        </button>
+        <button type="button" bitMenuItem *ngIf="canEdit">
+          {{ "fillAndSave" | i18n }}
+        </button>
+      </ng-container>
+      <button type="button" bitMenuItem *ngIf="this.canLaunch" (click)="launchCipher()">
+        {{ "launchWebsite" | i18n }}
+      </button>
+    </ng-container>
+    <button type="button" bitMenuItem (click)="toggleFavorite()">
+      {{ favoriteText | i18n }}
+    </button>
+    <ng-container *ngIf="canEdit">
+      <a routerLink="" bitMenuItem (click)="clone()">
+        {{ "clone" | i18n }}
+      </a>
+      <button type="button" bitMenuItem>
+        {{ "assignCollections" | i18n }}
+      </button>
+    </ng-container>
+  </bit-menu>
+</bit-item-action>
diff --git a/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts b/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts
new file mode 100644
index 00000000000..9834dc553ec
--- /dev/null
+++ b/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts
@@ -0,0 +1,122 @@
+import { CommonModule } from "@angular/common";
+import { booleanAttribute, Component, Input } from "@angular/core";
+import { Router, RouterModule } from "@angular/router";
+
+import { JslibModule } from "@bitwarden/angular/jslib.module";
+import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
+import { CipherRepromptType, CipherType } from "@bitwarden/common/vault/enums";
+import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { DialogService, IconButtonModule, ItemModule, MenuModule } from "@bitwarden/components";
+import { PasswordRepromptService } from "@bitwarden/vault";
+
+import { BrowserApi } from "../../../../../platform/browser/browser-api";
+import BrowserPopupUtils from "../../../../../platform/popup/browser-popup-utils";
+import { VaultPopupItemsService } from "../../../services/vault-popup-items.service";
+
+@Component({
+  standalone: true,
+  selector: "app-item-more-options",
+  templateUrl: "./item-more-options.component.html",
+  imports: [ItemModule, IconButtonModule, MenuModule, CommonModule, JslibModule, RouterModule],
+})
+export class ItemMoreOptionsComponent {
+  @Input({
+    required: true,
+  })
+  cipher: CipherView;
+
+  /**
+   * Flag to hide the login specific menu options. Used for login items that are
+   * already in the autofill list suggestion.
+   */
+  @Input({ transform: booleanAttribute })
+  hideLoginOptions: boolean;
+
+  protected autofillAllowed$ = this.vaultPopupItemsService.autofillAllowed$;
+
+  constructor(
+    private cipherService: CipherService,
+    private vaultPopupItemsService: VaultPopupItemsService,
+    private passwordRepromptService: PasswordRepromptService,
+    private dialogService: DialogService,
+    private router: Router,
+  ) {}
+
+  get canEdit() {
+    return this.cipher.edit;
+  }
+
+  get isLogin() {
+    return this.cipher.type === CipherType.Login;
+  }
+
+  get favoriteText() {
+    return this.cipher.favorite ? "unfavorite" : "favorite";
+  }
+
+  /**
+   * Determines if the login cipher can be launched in a new browser tab.
+   */
+  get canLaunch() {
+    return this.isLogin && this.cipher.login.canLaunch;
+  }
+
+  /**
+   * Launches the login cipher in a new browser tab.
+   */
+  async launchCipher() {
+    if (!this.canLaunch) {
+      return;
+    }
+
+    await this.cipherService.updateLastLaunchedDate(this.cipher.id);
+
+    await BrowserApi.createNewTab(this.cipher.login.launchUri);
+
+    if (BrowserPopupUtils.inPopup(window)) {
+      BrowserApi.closePopup(window);
+    }
+  }
+
+  /**
+   * Toggles the favorite status of the cipher and updates it on the server.
+   */
+  async toggleFavorite() {
+    this.cipher.favorite = !this.cipher.favorite;
+    const encryptedCipher = await this.cipherService.encrypt(this.cipher);
+    await this.cipherService.updateWithServer(encryptedCipher);
+  }
+
+  /**
+   * Navigate to the clone cipher page with the current cipher as the source.
+   * A password reprompt is attempted if the cipher requires it.
+   * A confirmation dialog is shown if the cipher has FIDO2 credentials.
+   */
+  async clone() {
+    if (
+      this.cipher.reprompt === CipherRepromptType.Password &&
+      !(await this.passwordRepromptService.showPasswordPrompt())
+    ) {
+      return;
+    }
+
+    if (this.cipher.login?.hasFido2Credentials) {
+      const confirmed = await this.dialogService.openSimpleDialog({
+        title: { key: "passkeyNotCopied" },
+        content: { key: "passkeyNotCopiedAlert" },
+        type: "info",
+      });
+
+      if (!confirmed) {
+        return;
+      }
+    }
+
+    await this.router.navigate(["/clone-cipher"], {
+      queryParams: {
+        cloneMode: true,
+        cipherId: this.cipher.id,
+      },
+    });
+  }
+}
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
index 47725cf9dce..91c1f521632 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
@@ -24,18 +24,14 @@
         <span slot="secondary">{{ cipher.subTitle }}</span>
       </a>
       <ng-container slot="end">
-        <bit-item-action *ngIf="showAutoFill">
+        <bit-item-action *ngIf="showAutofillButton">
           <button type="button" bitBadge variant="primary">{{ "autoFill" | i18n }}</button>
         </bit-item-action>
         <app-item-copy-actions [cipher]="cipher"></app-item-copy-actions>
-        <bit-item-action>
-          <button
-            type="button"
-            bitIconButton="bwi-ellipsis-v"
-            size="small"
-            [attr.aria-label]="'moreOptions' | i18n: cipher.name"
-          ></button>
-        </bit-item-action>
+        <app-item-more-options
+          [cipher]="cipher"
+          [hideLoginOptions]="showAutofillButton"
+        ></app-item-more-options>
       </ng-container>
     </bit-item>
   </bit-item-group>
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
index e8200cab79d..095d0155c67 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
@@ -15,6 +15,7 @@ import {
 
 import { PopupSectionHeaderComponent } from "../../../../../platform/popup/popup-section-header/popup-section-header.component";
 import { ItemCopyActionsComponent } from "../item-copy-action/item-copy-actions.component";
+import { ItemMoreOptionsComponent } from "../item-more-options/item-more-options.component";
 
 @Component({
   imports: [
@@ -29,6 +30,7 @@ import { ItemCopyActionsComponent } from "../item-copy-action/item-copy-actions.
     PopupSectionHeaderComponent,
     RouterLink,
     ItemCopyActionsComponent,
+    ItemMoreOptionsComponent,
   ],
   selector: "app-vault-list-items-container",
   templateUrl: "vault-list-items-container.component.html",
@@ -63,5 +65,5 @@ export class VaultListItemsContainerComponent {
    * Option to show the autofill button for each item.
    */
   @Input({ transform: booleanAttribute })
-  showAutoFill: boolean;
+  showAutofillButton: boolean;
 }
diff --git a/apps/browser/src/vault/popup/components/vault/vault-v2.component.html b/apps/browser/src/vault/popup/components/vault/vault-v2.component.html
index 4d75685f538..f99d3cbb303 100644
--- a/apps/browser/src/vault/popup/components/vault/vault-v2.component.html
+++ b/apps/browser/src/vault/popup/components/vault/vault-v2.component.html
@@ -22,10 +22,12 @@
   </div>
 
   <ng-container *ngIf="!(showEmptyState$ | async)">
-    <app-vault-v2-search (searchTextChanged)="handleSearchTextChange($event)">
-    </app-vault-v2-search>
+    <div class="tw-fixed">
+      <app-vault-v2-search (searchTextChanged)="handleSearchTextChange($event)">
+      </app-vault-v2-search>
 
-    <app-vault-list-filters></app-vault-list-filters>
+      <app-vault-list-filters></app-vault-list-filters>
+    </div>
 
     <div
       *ngIf="(showNoResultsState$ | async) && !(showDeactivatedOrg$ | async)"
diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
index a450b8acffd..aa8b7c74d10 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
@@ -1,3 +1,4 @@
+import { TestBed } from "@angular/core/testing";
 import { mock } from "jest-mock-extended";
 import { BehaviorSubject } from "rxjs";
 
@@ -16,6 +17,7 @@ import { VaultPopupItemsService } from "./vault-popup-items.service";
 import { VaultPopupListFiltersService } from "./vault-popup-list-filters.service";
 
 describe("VaultPopupItemsService", () => {
+  let testBed: TestBed;
   let service: VaultPopupItemsService;
   let allCiphers: Record<CipherId, CipherView>;
   let autoFillCiphers: CipherView[];
@@ -39,11 +41,12 @@ describe("VaultPopupItemsService", () => {
     cipherList[2].favorite = true;
     cipherList[3].favorite = true;
 
-    cipherServiceMock.cipherViews$ = new BehaviorSubject(allCiphers).asObservable();
+    cipherServiceMock.getAllDecrypted.mockResolvedValue(cipherList);
+    cipherServiceMock.ciphers$ = new BehaviorSubject(null).asObservable();
     searchService.searchCiphers.mockImplementation(async () => cipherList);
     cipherServiceMock.filterCiphersForUrl.mockImplementation(async () => autoFillCiphers);
-    vaultSettingsServiceMock.showCardsCurrentTab$ = new BehaviorSubject(false).asObservable();
-    vaultSettingsServiceMock.showIdentitiesCurrentTab$ = new BehaviorSubject(false).asObservable();
+    vaultSettingsServiceMock.showCardsCurrentTab$ = new BehaviorSubject(false);
+    vaultSettingsServiceMock.showIdentitiesCurrentTab$ = new BehaviorSubject(false);
 
     vaultPopupListFiltersServiceMock.filters$ = new BehaviorSubject({
       organization: null,
@@ -55,28 +58,26 @@ describe("VaultPopupItemsService", () => {
     vaultPopupListFiltersServiceMock.filterFunction$ = new BehaviorSubject(
       (ciphers: CipherView[]) => ciphers,
     );
-
     jest.spyOn(BrowserPopupUtils, "inPopout").mockReturnValue(false);
     jest
       .spyOn(BrowserApi, "getTabFromCurrentWindow")
       .mockResolvedValue({ url: "https://example.com" } as chrome.tabs.Tab);
-    service = new VaultPopupItemsService(
-      cipherServiceMock,
-      vaultSettingsServiceMock,
-      vaultPopupListFiltersServiceMock,
-      organizationServiceMock,
-      searchService,
-    );
+
+    testBed = TestBed.configureTestingModule({
+      providers: [
+        { provide: CipherService, useValue: cipherServiceMock },
+        { provide: VaultSettingsService, useValue: vaultSettingsServiceMock },
+        { provide: SearchService, useValue: searchService },
+        { provide: OrganizationService, useValue: organizationServiceMock },
+        { provide: VaultPopupListFiltersService, useValue: vaultPopupListFiltersServiceMock },
+      ],
+    });
+
+    service = testBed.inject(VaultPopupItemsService);
   });
 
   it("should be created", () => {
-    service = new VaultPopupItemsService(
-      cipherServiceMock,
-      vaultSettingsServiceMock,
-      vaultPopupListFiltersServiceMock,
-      organizationServiceMock,
-      searchService,
-    );
+    service = testBed.inject(VaultPopupItemsService);
     expect(service).toBeTruthy();
   });
 
@@ -100,18 +101,10 @@ describe("VaultPopupItemsService", () => {
     it("should filter ciphers for the current tab and types", (done) => {
       const currentTab = { url: "https://example.com" } as chrome.tabs.Tab;
 
-      vaultSettingsServiceMock.showCardsCurrentTab$ = new BehaviorSubject(true).asObservable();
-      vaultSettingsServiceMock.showIdentitiesCurrentTab$ = new BehaviorSubject(true).asObservable();
+      (vaultSettingsServiceMock.showCardsCurrentTab$ as BehaviorSubject<boolean>).next(true);
+      (vaultSettingsServiceMock.showIdentitiesCurrentTab$ as BehaviorSubject<boolean>).next(true);
       jest.spyOn(BrowserApi, "getTabFromCurrentWindow").mockResolvedValue(currentTab);
 
-      service = new VaultPopupItemsService(
-        cipherServiceMock,
-        vaultSettingsServiceMock,
-        vaultPopupListFiltersServiceMock,
-        organizationServiceMock,
-        searchService,
-      );
-
       service.autoFillCiphers$.subscribe((ciphers) => {
         expect(cipherServiceMock.filterCiphersForUrl.mock.calls.length).toBe(1);
         expect(cipherServiceMock.filterCiphersForUrl).toHaveBeenCalledWith(
@@ -136,14 +129,6 @@ describe("VaultPopupItemsService", () => {
         Object.values(allCiphers),
       );
 
-      service = new VaultPopupItemsService(
-        cipherServiceMock,
-        vaultSettingsServiceMock,
-        vaultPopupListFiltersServiceMock,
-        organizationServiceMock,
-        searchService,
-      );
-
       service.autoFillCiphers$.subscribe((ciphers) => {
         expect(ciphers.length).toBe(10);
 
@@ -248,14 +233,7 @@ describe("VaultPopupItemsService", () => {
 
   describe("emptyVault$", () => {
     it("should return true if there are no ciphers", (done) => {
-      cipherServiceMock.cipherViews$ = new BehaviorSubject({}).asObservable();
-      service = new VaultPopupItemsService(
-        cipherServiceMock,
-        vaultSettingsServiceMock,
-        vaultPopupListFiltersServiceMock,
-        organizationServiceMock,
-        searchService,
-      );
+      cipherServiceMock.getAllDecrypted.mockResolvedValue([]);
       service.emptyVault$.subscribe((empty) => {
         expect(empty).toBe(true);
         done();
diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
index f9c37f6f7da..3fe509dc452 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
@@ -1,4 +1,4 @@
-import { Injectable } from "@angular/core";
+import { inject, Injectable, NgZone } from "@angular/core";
 import {
   BehaviorSubject,
   combineLatest,
@@ -15,12 +15,14 @@ import {
 
 import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
+import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 
 import { BrowserApi } from "../../../platform/browser/browser-api";
+import { runInsideAngular } from "../../../platform/browser/run-inside-angular.operator";
 import BrowserPopupUtils from "../../../platform/popup/browser-popup-utils";
 
 import { MY_VAULT_ID, VaultPopupListFiltersService } from "./vault-popup-list-filters.service";
@@ -72,9 +74,11 @@ export class VaultPopupItemsService {
    * Observable that contains the list of all decrypted ciphers.
    * @private
    */
-  private _cipherList$: Observable<CipherView[]> = this.cipherService.cipherViews$.pipe(
+  private _cipherList$: Observable<CipherView[]> = this.cipherService.ciphers$.pipe(
+    runInsideAngular(inject(NgZone)), // Workaround to ensure cipher$ state provider emissions are run inside Angular
+    switchMap(() => Utils.asyncToObservable(() => this.cipherService.getAllDecrypted())),
     map((ciphers) => Object.values(ciphers)),
-    shareReplay({ refCount: false, bufferSize: 1 }),
+    shareReplay({ refCount: true, bufferSize: 1 }),
   );
 
   private _filteredCipherList$: Observable<CipherView[]> = combineLatest([
diff --git a/libs/common/src/vault/abstractions/cipher.service.ts b/libs/common/src/vault/abstractions/cipher.service.ts
index 0ea628cca11..34bc8193553 100644
--- a/libs/common/src/vault/abstractions/cipher.service.ts
+++ b/libs/common/src/vault/abstractions/cipher.service.ts
@@ -13,6 +13,7 @@ import { AddEditCipherInfo } from "../types/add-edit-cipher-info";
 
 export abstract class CipherService {
   cipherViews$: Observable<Record<CipherId, CipherView>>;
+  ciphers$: Observable<Record<CipherId, CipherData>>;
   /**
    *  An observable monitoring the add/edit cipher info saved to memory.
    */

From d0c1325f0cc79a57c947c1d5925f9173eacb8cc4 Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Tue, 4 Jun 2024 16:26:39 -0500
Subject: [PATCH 093/138] update icons for folder & collection filters (#9508)

---
 .../vault-popup-list-filters.service.spec.ts  | 23 +++++++++++++++++++
 .../vault-popup-list-filters.service.ts       | 17 +++++++++-----
 2 files changed, 34 insertions(+), 6 deletions(-)

diff --git a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
index eba8f94f12e..42626b52918 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
@@ -169,6 +169,13 @@ describe("VaultPopupListFiltersService", () => {
         expect(collections.map((c) => c.label)).toEqual(["Test collection 2"]);
       });
     });
+
+    it("sets collection icon", (done) => {
+      service.collections$.subscribe((collections) => {
+        expect(collections.every(({ icon }) => icon === "bwi-collection")).toBeTruthy();
+        done();
+      });
+    });
   });
 
   describe("folders$", () => {
@@ -210,6 +217,22 @@ describe("VaultPopupListFiltersService", () => {
       });
     });
 
+    it("sets folder icon", (done) => {
+      service.filterForm.patchValue({
+        organization: { id: MY_VAULT_ID } as Organization,
+      });
+
+      folderViews$.next([
+        { id: "1234", name: "Folder 1" },
+        { id: "2345", name: "Folder 2" },
+      ]);
+
+      service.folders$.subscribe((folders) => {
+        expect(folders.every(({ icon }) => icon === "bwi-folder")).toBeTruthy();
+        done();
+      });
+    });
+
     it("returns folders that have ciphers within the selected organization", (done) => {
       service.folders$.pipe(skipWhile((folders) => folders.length === 2)).subscribe((folders) => {
         expect(folders.map((f) => f.label)).toEqual(["Folder 1"]);
diff --git a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
index f3522aa8e33..bc42e7cb0a5 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
@@ -206,7 +206,7 @@ export class VaultPopupListFiltersService {
   /**
    * Folder array structured to be directly passed to `ChipSelectComponent`
    */
-  folders$: Observable<ChipSelectOption<string>[]> = combineLatest([
+  folders$: Observable<ChipSelectOption<FolderView>[]> = combineLatest([
     this.filters$.pipe(
       distinctUntilChanged(
         (previousFilter, currentFilter) =>
@@ -258,13 +258,15 @@ export class VaultPopupListFiltersService {
         nestedList: nestedFolders,
       });
     }),
-    map((folders) => folders.nestedList.map(this.convertToChipSelectOption.bind(this))),
+    map((folders) =>
+      folders.nestedList.map((f) => this.convertToChipSelectOption(f, "bwi-folder")),
+    ),
   );
 
   /**
    * Collection array structured to be directly passed to `ChipSelectComponent`
    */
-  collections$: Observable<ChipSelectOption<string>[]> = combineLatest([
+  collections$: Observable<ChipSelectOption<CollectionView>[]> = combineLatest([
     this.filters$.pipe(
       distinctUntilChanged(
         (previousFilter, currentFilter) =>
@@ -292,7 +294,9 @@ export class VaultPopupListFiltersService {
         nestedList: nestedCollections,
       });
     }),
-    map((collections) => collections.nestedList.map(this.convertToChipSelectOption.bind(this))),
+    map((collections) =>
+      collections.nestedList.map((c) => this.convertToChipSelectOption(c, "bwi-collection")),
+    ),
   );
 
   /**
@@ -300,13 +304,14 @@ export class VaultPopupListFiltersService {
    */
   private convertToChipSelectOption<T extends ITreeNodeObject>(
     item: TreeNode<T>,
+    icon: string,
   ): ChipSelectOption<T> {
     return {
       value: item.node,
       label: item.node.name,
-      icon: "bwi-folder", // Organization & Folder icons are the same
+      icon,
       children: item.children
-        ? item.children.map(this.convertToChipSelectOption.bind(this))
+        ? item.children.map((i) => this.convertToChipSelectOption(i, icon))
         : undefined,
     };
   }

From f059d136b22749821a0d9263719ed35a1cdbca49 Mon Sep 17 00:00:00 2001
From: Shane Melton <smelton@bitwarden.com>
Date: Tue, 4 Jun 2024 14:34:48 -0700
Subject: [PATCH 094/138] [PM-8485] [PM-7683] Dynamic list items - Org Details
 (#9466)

* [PM-7683] Add fullAddressForCopy helper to identity.view

* [PM-7683] Introduce CopyCipherFieldService to the Vault library

- A new CopyCipherFieldService that can be used to copy a cipher's field to the user clipboard
- A new appCopyField directive to make it easy to copy a cipher's fields in templates
- Tests for the CopyCipherFieldService

* [PM-7683] Introduce item-copy-actions.component

* [PM-7683] Fix username value in copy cipher directive

* [PM-7683] Add title to View item link

* [PM-8456] Introduce initial item-more-options.component

* [PM-8456] Add logic to show/hide login menu options

* [PM-8456] Implement favorite/unfavorite menu option

* [PM-8456] Implement clone menu option

* [PM-8456] Hide launch website instead of disabling it

* [PM-8456] Ensure cipherList observable updates on cipher changes

* [PM-7683] Move disabled logic into own method

* [PM-8456] Cleanup spec file to use Angular testbed

* [PM-8456] Fix more options tooltip

* [PM-8485] Introduce new PopupCipherView

* [PM-8485] Use new PopupCipherView in items service

* [PM-8485] Add org icon for items that belong to an organization

* [PM-8485] Fix tests

* [PM-8485] Remove share operator from cipherViews$
---
 apps/browser/src/_locales/en/messages.json    |  9 +++
 .../autofill-vault-list-items.component.ts    |  4 +-
 .../vault-list-items-container.component.html |  6 ++
 .../vault-list-items-container.component.ts   | 19 ++++++-
 .../vault-popup-items.service.spec.ts         | 55 ++++++++++++++++---
 .../services/vault-popup-items.service.ts     | 38 ++++++++++---
 .../vault/popup/views/popup-cipher.view.ts    | 41 ++++++++++++++
 .../src/vault/services/cipher.service.ts      | 10 +---
 8 files changed, 156 insertions(+), 26 deletions(-)
 create mode 100644 apps/browser/src/vault/popup/views/popup-cipher.view.ts

diff --git a/apps/browser/src/_locales/en/messages.json b/apps/browser/src/_locales/en/messages.json
index c18a645c110..231637d7af3 100644
--- a/apps/browser/src/_locales/en/messages.json
+++ b/apps/browser/src/_locales/en/messages.json
@@ -1437,6 +1437,15 @@
   "collections": {
     "message": "Collections"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favorites"
   },
diff --git a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts
index c00e585e739..9a4670bb4c8 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts
@@ -3,12 +3,12 @@ import { Component } from "@angular/core";
 import { combineLatest, map, Observable } from "rxjs";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { IconButtonModule, SectionComponent, TypographyModule } from "@bitwarden/components";
 
 import BrowserPopupUtils from "../../../../../platform/popup/browser-popup-utils";
 import { PopupSectionHeaderComponent } from "../../../../../platform/popup/popup-section-header/popup-section-header.component";
 import { VaultPopupItemsService } from "../../../services/vault-popup-items.service";
+import { PopupCipherView } from "../../../views/popup-cipher.view";
 import { VaultListItemsContainerComponent } from "../vault-list-items-container/vault-list-items-container.component";
 
 @Component({
@@ -30,7 +30,7 @@ export class AutofillVaultListItemsComponent {
    * The list of ciphers that can be used to autofill the current page.
    * @protected
    */
-  protected autofillCiphers$: Observable<CipherView[]> =
+  protected autofillCiphers$: Observable<PopupCipherView[]> =
     this.vaultPopupItemsService.autoFillCiphers$;
 
   /**
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
index 91c1f521632..74ee1af1ff5 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
@@ -21,6 +21,12 @@
       >
         <app-vault-icon slot="start" [cipher]="cipher"></app-vault-icon>
         {{ cipher.name }}
+        <i
+          class="bwi bwi-sm"
+          *ngIf="cipher.organizationId"
+          [ngClass]="cipher.orgIcon"
+          [appA11yTitle]="orgIconTooltip(cipher)"
+        ></i>
         <span slot="secondary">{{ cipher.subTitle }}</span>
       </a>
       <ng-container slot="end">
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
index 095d0155c67..311619fa0ff 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
@@ -3,7 +3,7 @@ import { booleanAttribute, Component, EventEmitter, Input, Output } from "@angul
 import { RouterLink } from "@angular/router";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
-import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import {
   BadgeModule,
   ButtonModule,
@@ -14,6 +14,7 @@ import {
 } from "@bitwarden/components";
 
 import { PopupSectionHeaderComponent } from "../../../../../platform/popup/popup-section-header/popup-section-header.component";
+import { PopupCipherView } from "../../../views/popup-cipher.view";
 import { ItemCopyActionsComponent } from "../item-copy-action/item-copy-actions.component";
 import { ItemMoreOptionsComponent } from "../item-more-options/item-more-options.component";
 
@@ -41,7 +42,7 @@ export class VaultListItemsContainerComponent {
    * The list of ciphers to display.
    */
   @Input()
-  ciphers: CipherView[];
+  ciphers: PopupCipherView[] = [];
 
   /**
    * Title for the vault list item section.
@@ -66,4 +67,18 @@ export class VaultListItemsContainerComponent {
    */
   @Input({ transform: booleanAttribute })
   showAutofillButton: boolean;
+
+  /**
+   * The tooltip text for the organization icon for ciphers that belong to an organization.
+   * @param cipher
+   */
+  orgIconTooltip(cipher: PopupCipherView) {
+    if (cipher.collectionIds.length > 1) {
+      return this.i18nService.t("nCollections", cipher.collectionIds.length);
+    }
+
+    return cipher.collections[0]?.name;
+  }
+
+  constructor(private i18nService: I18nService) {}
 }
diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
index aa8b7c74d10..6a7cbbfc1a9 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
@@ -4,11 +4,15 @@ import { BehaviorSubject } from "rxjs";
 
 import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
+import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { ProductType } from "@bitwarden/common/enums";
 import { CipherId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
+import { CollectionService } from "@bitwarden/common/vault/abstractions/collection.service";
 import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { CollectionView } from "@bitwarden/common/vault/models/view/collection.view";
 
 import { BrowserApi } from "../../../platform/browser/browser-api";
 import BrowserPopupUtils from "../../../platform/popup/browser-popup-utils";
@@ -22,11 +26,15 @@ describe("VaultPopupItemsService", () => {
   let allCiphers: Record<CipherId, CipherView>;
   let autoFillCiphers: CipherView[];
 
+  let mockOrg: Organization;
+  let mockCollections: CollectionView[];
+
   const cipherServiceMock = mock<CipherService>();
   const vaultSettingsServiceMock = mock<VaultSettingsService>();
   const organizationServiceMock = mock<OrganizationService>();
   const vaultPopupListFiltersServiceMock = mock<VaultPopupListFiltersService>();
   const searchService = mock<SearchService>();
+  const collectionService = mock<CollectionService>();
 
   beforeEach(() => {
     allCiphers = cipherFactory(10);
@@ -43,8 +51,10 @@ describe("VaultPopupItemsService", () => {
 
     cipherServiceMock.getAllDecrypted.mockResolvedValue(cipherList);
     cipherServiceMock.ciphers$ = new BehaviorSubject(null).asObservable();
-    searchService.searchCiphers.mockImplementation(async () => cipherList);
-    cipherServiceMock.filterCiphersForUrl.mockImplementation(async () => autoFillCiphers);
+    searchService.searchCiphers.mockImplementation(async (_, __, ciphers) => ciphers);
+    cipherServiceMock.filterCiphersForUrl.mockImplementation(async (ciphers) =>
+      ciphers.filter((c) => ["0", "1"].includes(c.id)),
+    );
     vaultSettingsServiceMock.showCardsCurrentTab$ = new BehaviorSubject(false);
     vaultSettingsServiceMock.showIdentitiesCurrentTab$ = new BehaviorSubject(false);
 
@@ -63,6 +73,20 @@ describe("VaultPopupItemsService", () => {
       .spyOn(BrowserApi, "getTabFromCurrentWindow")
       .mockResolvedValue({ url: "https://example.com" } as chrome.tabs.Tab);
 
+    mockOrg = {
+      id: "org1",
+      name: "Organization 1",
+      planProductType: ProductType.Enterprise,
+    } as Organization;
+
+    mockCollections = [
+      { id: "col1", name: "Collection 1" } as CollectionView,
+      { id: "col2", name: "Collection 2" } as CollectionView,
+    ];
+
+    organizationServiceMock.organizations$ = new BehaviorSubject([mockOrg]);
+    collectionService.decryptedCollections$ = new BehaviorSubject(mockCollections);
+
     testBed = TestBed.configureTestingModule({
       providers: [
         { provide: CipherService, useValue: cipherServiceMock },
@@ -70,17 +94,35 @@ describe("VaultPopupItemsService", () => {
         { provide: SearchService, useValue: searchService },
         { provide: OrganizationService, useValue: organizationServiceMock },
         { provide: VaultPopupListFiltersService, useValue: vaultPopupListFiltersServiceMock },
+        { provide: CollectionService, useValue: collectionService },
       ],
     });
 
     service = testBed.inject(VaultPopupItemsService);
   });
 
+  afterEach(() => {
+    jest.clearAllMocks();
+  });
+
   it("should be created", () => {
     service = testBed.inject(VaultPopupItemsService);
     expect(service).toBeTruthy();
   });
 
+  it("should merge cipher views with collections and organization", (done) => {
+    const cipherList = Object.values(allCiphers);
+    cipherList[0].organizationId = "org1";
+    cipherList[0].collectionIds = ["col1", "col2"];
+
+    service.autoFillCiphers$.subscribe((ciphers) => {
+      expect(ciphers[0].organization).toEqual(mockOrg);
+      expect(ciphers[0].collections).toContain(mockCollections[0]);
+      expect(ciphers[0].collections).toContain(mockCollections[1]);
+      done();
+    });
+  });
+
   describe("autoFillCiphers$", () => {
     it("should return empty array if there is no current tab", (done) => {
       jest.spyOn(BrowserApi, "getTabFromCurrentWindow").mockResolvedValue(null);
@@ -144,19 +186,18 @@ describe("VaultPopupItemsService", () => {
     });
 
     it("should filter autoFillCiphers$ down to search term", (done) => {
-      const cipherList = Object.values(allCiphers);
       const searchText = "Login";
 
-      searchService.searchCiphers.mockImplementation(async () => {
-        return cipherList.filter((cipher) => {
+      searchService.searchCiphers.mockImplementation(async (q, _, ciphers) => {
+        return ciphers.filter((cipher) => {
           return cipher.name.includes(searchText);
         });
       });
 
-      // there is only 1 Login returned for filteredCiphers. but two results expected because of other autofill types
+      // there is only 1 Login returned for filteredCiphers.
       service.autoFillCiphers$.subscribe((ciphers) => {
         expect(ciphers[0].name.includes(searchText)).toBe(true);
-        expect(ciphers.length).toBe(2);
+        expect(ciphers.length).toBe(1);
         done();
       });
     });
diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
index 3fe509dc452..eacb8e013ef 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
@@ -16,7 +16,9 @@ import {
 import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
+import { CollectionId, OrganizationId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
+import { CollectionService } from "@bitwarden/common/vault/abstractions/collection.service";
 import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
@@ -24,6 +26,7 @@ import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
 import { BrowserApi } from "../../../platform/browser/browser-api";
 import { runInsideAngular } from "../../../platform/browser/run-inside-angular.operator";
 import BrowserPopupUtils from "../../../platform/popup/browser-popup-utils";
+import { PopupCipherView } from "../views/popup-cipher.view";
 
 import { MY_VAULT_ID, VaultPopupListFiltersService } from "./vault-popup-list-filters.service";
 
@@ -74,14 +77,33 @@ export class VaultPopupItemsService {
    * Observable that contains the list of all decrypted ciphers.
    * @private
    */
-  private _cipherList$: Observable<CipherView[]> = this.cipherService.ciphers$.pipe(
+  private _cipherList$: Observable<PopupCipherView[]> = this.cipherService.ciphers$.pipe(
     runInsideAngular(inject(NgZone)), // Workaround to ensure cipher$ state provider emissions are run inside Angular
     switchMap(() => Utils.asyncToObservable(() => this.cipherService.getAllDecrypted())),
     map((ciphers) => Object.values(ciphers)),
+    switchMap((ciphers) =>
+      combineLatest([
+        this.organizationService.organizations$,
+        this.collectionService.decryptedCollections$,
+      ]).pipe(
+        map(([organizations, collections]) => {
+          const orgMap = Object.fromEntries(organizations.map((org) => [org.id, org]));
+          const collectionMap = Object.fromEntries(collections.map((col) => [col.id, col]));
+          return ciphers.map(
+            (cipher) =>
+              new PopupCipherView(
+                cipher,
+                cipher.collectionIds?.map((colId) => collectionMap[colId as CollectionId]),
+                orgMap[cipher.organizationId as OrganizationId],
+              ),
+          );
+        }),
+      ),
+    ),
     shareReplay({ refCount: true, bufferSize: 1 }),
   );
 
-  private _filteredCipherList$: Observable<CipherView[]> = combineLatest([
+  private _filteredCipherList$: Observable<PopupCipherView[]> = combineLatest([
     this._cipherList$,
     this.searchText$,
     this.vaultPopupListFiltersService.filterFunction$,
@@ -90,8 +112,9 @@ export class VaultPopupItemsService {
       filterFunction(ciphers),
       searchText,
     ]),
-    switchMap(([ciphers, searchText]) =>
-      this.searchService.searchCiphers(searchText, null, ciphers),
+    switchMap(
+      ([ciphers, searchText]) =>
+        this.searchService.searchCiphers(searchText, null, ciphers) as Promise<PopupCipherView[]>,
     ),
     shareReplay({ refCount: true, bufferSize: 1 }),
   );
@@ -102,7 +125,7 @@ export class VaultPopupItemsService {
    *
    * See {@link refreshCurrentTab} to trigger re-evaluation of the current tab.
    */
-  autoFillCiphers$: Observable<CipherView[]> = combineLatest([
+  autoFillCiphers$: Observable<PopupCipherView[]> = combineLatest([
     this._filteredCipherList$,
     this._otherAutoFillTypes$,
     this._currentAutofillTab$,
@@ -121,7 +144,7 @@ export class VaultPopupItemsService {
    * List of favorite ciphers that are not currently suggested for autofill.
    * Ciphers are sorted by last used date, then by name.
    */
-  favoriteCiphers$: Observable<CipherView[]> = combineLatest([
+  favoriteCiphers$: Observable<PopupCipherView[]> = combineLatest([
     this.autoFillCiphers$,
     this._filteredCipherList$,
   ]).pipe(
@@ -138,7 +161,7 @@ export class VaultPopupItemsService {
    * List of all remaining ciphers that are not currently suggested for autofill or marked as favorite.
    * Ciphers are sorted by name.
    */
-  remainingCiphers$: Observable<CipherView[]> = combineLatest([
+  remainingCiphers$: Observable<PopupCipherView[]> = combineLatest([
     this.autoFillCiphers$,
     this.favoriteCiphers$,
     this._filteredCipherList$,
@@ -208,6 +231,7 @@ export class VaultPopupItemsService {
     private vaultPopupListFiltersService: VaultPopupListFiltersService,
     private organizationService: OrganizationService,
     private searchService: SearchService,
+    private collectionService: CollectionService,
   ) {}
 
   /**
diff --git a/apps/browser/src/vault/popup/views/popup-cipher.view.ts b/apps/browser/src/vault/popup/views/popup-cipher.view.ts
new file mode 100644
index 00000000000..4707eb9eb0f
--- /dev/null
+++ b/apps/browser/src/vault/popup/views/popup-cipher.view.ts
@@ -0,0 +1,41 @@
+import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { ProductType } from "@bitwarden/common/enums";
+import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
+import { CollectionView } from "@bitwarden/common/vault/models/view/collection.view";
+
+/**
+ * Extended cipher view for the popup. Includes the associated collections and organization
+ * if applicable.
+ */
+export class PopupCipherView extends CipherView {
+  collections?: CollectionView[];
+  organization?: Organization;
+
+  constructor(
+    cipher: CipherView,
+    collections: CollectionView[] = null,
+    organization: Organization = null,
+  ) {
+    super();
+    Object.assign(this, cipher);
+    this.collections = collections;
+    this.organization = organization;
+  }
+
+  /**
+   * Get the bwi icon for the cipher according to the organization type.
+   */
+  get orgIcon(): "bwi-family" | "bwi-business" | null {
+    switch (this.organization?.planProductType) {
+      case ProductType.Free:
+      case ProductType.Families:
+        return "bwi-family";
+      case ProductType.Teams:
+      case ProductType.Enterprise:
+      case ProductType.TeamsStarter:
+        return "bwi-business";
+      default:
+        return null;
+    }
+  }
+}
diff --git a/libs/common/src/vault/services/cipher.service.ts b/libs/common/src/vault/services/cipher.service.ts
index 9b9841169fa..ff99c8b1d84 100644
--- a/libs/common/src/vault/services/cipher.service.ts
+++ b/libs/common/src/vault/services/cipher.service.ts
@@ -1,4 +1,4 @@
-import { firstValueFrom, map, Observable, share, skipWhile, switchMap } from "rxjs";
+import { firstValueFrom, map, Observable, skipWhile, switchMap } from "rxjs";
 import { SemVer } from "semver";
 
 import { ApiService } from "../../abstractions/api.service";
@@ -125,13 +125,7 @@ export class CipherService implements CipherServiceAbstraction {
       switchMap(() => this.encryptedCiphersState.state$),
       map((ciphers) => ciphers ?? {}),
     );
-    this.cipherViews$ = this.decryptedCiphersState.state$.pipe(
-      map((views) => views ?? {}),
-
-      share({
-        resetOnRefCountZero: true,
-      }),
-    );
+    this.cipherViews$ = this.decryptedCiphersState.state$.pipe(map((views) => views ?? {}));
     this.addEditCipherInfo$ = this.addEditCipherInfoState.state$;
   }
 

From 90ca4345b3fdbab4dcb10176f90a188453d60df2 Mon Sep 17 00:00:00 2001
From: rr-bw <102181210+rr-bw@users.noreply.github.com>
Date: Tue, 4 Jun 2024 14:45:10 -0700
Subject: [PATCH 095/138] Larger min-w to anonlayout content container (#9502)

* add larger min-w to content container

* increase min-w
---
 .../anon-layout/anon-layout.component.html     |  6 ++++--
 .../angular/anon-layout/anon-layout.stories.ts | 18 ++++++++++++++++++
 2 files changed, 22 insertions(+), 2 deletions(-)

diff --git a/libs/auth/src/angular/anon-layout/anon-layout.component.html b/libs/auth/src/angular/anon-layout/anon-layout.component.html
index bf5edbda823..b6eeb70d5d5 100644
--- a/libs/auth/src/angular/anon-layout/anon-layout.component.html
+++ b/libs/auth/src/angular/anon-layout/anon-layout.component.html
@@ -13,9 +13,11 @@
     </h1>
     <p *ngIf="subtitle" bitTypography="body1">{{ subtitle }}</p>
   </div>
-  <div class="tw-mb-auto tw-max-w-md tw-mx-auto tw-flex tw-flex-col tw-items-center">
+  <div
+    class="tw-mb-auto tw-min-w-full tw-max-w-md tw-mx-auto tw-flex tw-flex-col tw-items-center sm:tw-min-w-[28rem]"
+  >
     <div
-      class="tw-rounded-xl tw-mb-9 tw-mx-auto tw-min-w-64 sm:tw-bg-background sm:tw-border sm:tw-border-solid sm:tw-border-secondary-300 sm:tw-p-8"
+      class="tw-rounded-xl tw-mb-9 tw-mx-auto tw-min-w-full sm:tw-bg-background sm:tw-border sm:tw-border-solid sm:tw-border-secondary-300 sm:tw-p-8"
     >
       <ng-content></ng-content>
     </div>
diff --git a/libs/auth/src/angular/anon-layout/anon-layout.stories.ts b/libs/auth/src/angular/anon-layout/anon-layout.stories.ts
index 82ca846afbf..c9054fb5e63 100644
--- a/libs/auth/src/angular/anon-layout/anon-layout.stories.ts
+++ b/libs/auth/src/angular/anon-layout/anon-layout.stories.ts
@@ -119,6 +119,24 @@ export const WithLongContent: Story = {
   }),
 };
 
+export const WithThinPrimaryContent: Story = {
+  render: (args) => ({
+    props: args,
+    template:
+      // Projected content (the <div>'s) and styling is just a sample and can be replaced with any content/styling.
+      `
+      <auth-anon-layout [title]="title" [subtitle]="subtitle" [showReadonlyHostname]="showReadonlyHostname">
+        <div class="text-center">Lorem ipsum</div>
+
+        <div slot="secondary" class="text-center">
+          <div class="tw-font-bold tw-mb-2">Secondary Projected Content (optional)</div>
+          <button bitButton>Perform Action</button>
+        </div>
+      </auth-anon-layout>
+    `,
+  }),
+};
+
 export const WithIcon: Story = {
   render: (args) => ({
     props: args,

From 3154d219259e080be25c92217cc84d413d9af82c Mon Sep 17 00:00:00 2001
From: Matt Gibson <mgibson@bitwarden.com>
Date: Tue, 4 Jun 2024 18:42:04 -0400
Subject: [PATCH 096/138] [PM-8285] Resolve app id race (#9501)

* Do not update appId if it is not null

* Prefer linear transformations to side-effect-based changes

This leaves us open to repeat emits due to updates, but distinct until changed stops those.

Tracker improvements are due to passed in observables with replay causing immediate emits when `expectingEmission`s. This converts to a cold observable that only emits when the tracked observable does _after_ subscribing.

* Prefer while

* PR review
---
 libs/common/spec/observable-tracker.ts        | 31 ++++---
 .../platform/services/app-id.service.spec.ts  | 82 +++++++++++--------
 .../src/platform/services/app-id.service.ts   | 22 +++--
 3 files changed, 80 insertions(+), 55 deletions(-)

diff --git a/libs/common/spec/observable-tracker.ts b/libs/common/spec/observable-tracker.ts
index 16fad869c3b..9bf0475bee2 100644
--- a/libs/common/spec/observable-tracker.ts
+++ b/libs/common/spec/observable-tracker.ts
@@ -1,10 +1,11 @@
-import { Observable, Subscription, firstValueFrom, throwError, timeout } from "rxjs";
+import { Observable, Subject, Subscription, firstValueFrom, throwError, timeout } from "rxjs";
 
 /** Test class to enable async awaiting of observable emissions */
 export class ObservableTracker<T> {
   private subscription: Subscription;
+  private emissionReceived = new Subject<T>();
   emissions: T[] = [];
-  constructor(private observable: Observable<T>) {
+  constructor(observable: Observable<T>) {
     this.emissions = this.trackEmissions(observable);
   }
 
@@ -21,7 +22,7 @@ export class ObservableTracker<T> {
    */
   async expectEmission(msTimeout = 50): Promise<T> {
     return await firstValueFrom(
-      this.observable.pipe(
+      this.emissionReceived.pipe(
         timeout({
           first: msTimeout,
           with: () => throwError(() => new Error("Timeout exceeded waiting for another emission.")),
@@ -34,40 +35,38 @@ export class ObservableTracker<T> {
    * @param count The number of emissions to wait for
    */
   async pauseUntilReceived(count: number, msTimeout = 50): Promise<T[]> {
-    for (let i = 0; i < count - this.emissions.length; i++) {
+    while (this.emissions.length < count) {
       await this.expectEmission(msTimeout);
     }
     return this.emissions;
   }
 
-  private trackEmissions<T>(observable: Observable<T>): T[] {
+  private trackEmissions(observable: Observable<T>): T[] {
     const emissions: T[] = [];
     this.subscription = observable.subscribe((value) => {
-      switch (value) {
-        case undefined:
-        case null:
-          emissions.push(value);
-          return;
-        default:
-          // process by type
-          break;
+      if (value == null) {
+        this.emissionReceived.next(null);
+        return;
       }
 
       switch (typeof value) {
         case "string":
         case "number":
         case "boolean":
-          emissions.push(value);
+          this.emissionReceived.next(value);
           break;
         case "symbol":
           // Cheating types to make symbols work at all
-          emissions.push(value.toString() as T);
+          this.emissionReceived.next(value as T);
           break;
         default: {
-          emissions.push(clone(value));
+          this.emissionReceived.next(clone(value));
         }
       }
     });
+    this.emissionReceived.subscribe((value) => {
+      emissions.push(value);
+    });
     return emissions;
   }
 }
diff --git a/libs/common/src/platform/services/app-id.service.spec.ts b/libs/common/src/platform/services/app-id.service.spec.ts
index 10fb153fdaa..62806204db0 100644
--- a/libs/common/src/platform/services/app-id.service.spec.ts
+++ b/libs/common/src/platform/services/app-id.service.spec.ts
@@ -1,20 +1,23 @@
-import { FakeGlobalStateProvider } from "../../../spec";
+import { FakeGlobalState, FakeGlobalStateProvider, ObservableTracker } from "../../../spec";
 import { Utils } from "../misc/utils";
 
 import { ANONYMOUS_APP_ID_KEY, APP_ID_KEY, AppIdService } from "./app-id.service";
 
 describe("AppIdService", () => {
-  const globalStateProvider = new FakeGlobalStateProvider();
-  const appIdState = globalStateProvider.getFake(APP_ID_KEY);
-  const anonymousAppIdState = globalStateProvider.getFake(ANONYMOUS_APP_ID_KEY);
+  let globalStateProvider: FakeGlobalStateProvider;
+  let appIdState: FakeGlobalState<string>;
+  let anonymousAppIdState: FakeGlobalState<string>;
   let sut: AppIdService;
 
   beforeEach(() => {
+    globalStateProvider = new FakeGlobalStateProvider();
+    appIdState = globalStateProvider.getFake(APP_ID_KEY);
+    anonymousAppIdState = globalStateProvider.getFake(ANONYMOUS_APP_ID_KEY);
     sut = new AppIdService(globalStateProvider);
   });
 
   afterEach(() => {
-    jest.restoreAllMocks();
+    jest.resetAllMocks();
   });
 
   describe("getAppId", () => {
@@ -26,19 +29,18 @@ describe("AppIdService", () => {
       expect(appId).toBe("existingAppId");
     });
 
-    it.each([null, undefined])(
-      "uses the util function to create a new id when it AppId does not exist",
-      async (value) => {
-        appIdState.stateSubject.next(value);
-        const spy = jest.spyOn(Utils, "newGuid");
+    it("creates a new appId only once", async () => {
+      appIdState.stateSubject.next(null);
 
-        await sut.getAppId();
+      const appIds: string[] = [];
+      const promises = [async () => appIds.push(await sut.getAppId())];
+      promises.push(async () => appIds.push(await sut.getAppId()));
+      await Promise.all(promises);
 
-        expect(spy).toHaveBeenCalledTimes(1);
-      },
-    );
+      expect(appIds[0]).toBe(appIds[1]);
+    });
 
-    it.each([null, undefined])("returns a new appId when it does not exist", async (value) => {
+    it.each([null, undefined])("returns a new appId when %s", async (value) => {
       appIdState.stateSubject.next(value);
 
       const appId = await sut.getAppId();
@@ -46,16 +48,23 @@ describe("AppIdService", () => {
       expect(appId).toMatch(Utils.guidRegex);
     });
 
-    it.each([null, undefined])(
-      "stores the new guid when it an existing one is not found",
-      async (value) => {
-        appIdState.stateSubject.next(value);
+    it.each([null, undefined])("stores the new guid when %s", async (value) => {
+      appIdState.stateSubject.next(value);
 
-        const appId = await sut.getAppId();
+      const appId = await sut.getAppId();
 
-        expect(appIdState.nextMock).toHaveBeenCalledWith(appId);
-      },
-    );
+      expect(appIdState.nextMock).toHaveBeenCalledWith(appId);
+    });
+
+    it("emits only once when creating a new appId", async () => {
+      appIdState.stateSubject.next(null);
+
+      const tracker = new ObservableTracker(sut.appId$);
+      const appId = await sut.getAppId();
+
+      expect(tracker.emissions).toEqual([appId]);
+      await expect(tracker.pauseUntilReceived(2, 50)).rejects.toThrow("Timeout exceeded");
+    });
   });
 
   describe("getAnonymousAppId", () => {
@@ -67,17 +76,16 @@ describe("AppIdService", () => {
       expect(appId).toBe("existingAppId");
     });
 
-    it.each([null, undefined])(
-      "uses the util function to create a new id when it AppId does not exist",
-      async (value) => {
-        anonymousAppIdState.stateSubject.next(value);
-        const spy = jest.spyOn(Utils, "newGuid");
+    it("creates a new anonymousAppId only once", async () => {
+      anonymousAppIdState.stateSubject.next(null);
 
-        await sut.getAnonymousAppId();
+      const appIds: string[] = [];
+      const promises = [async () => appIds.push(await sut.getAnonymousAppId())];
+      promises.push(async () => appIds.push(await sut.getAnonymousAppId()));
+      await Promise.all(promises);
 
-        expect(spy).toHaveBeenCalledTimes(1);
-      },
-    );
+      expect(appIds[0]).toBe(appIds[1]);
+    });
 
     it.each([null, undefined])("returns a new appId when it does not exist", async (value) => {
       anonymousAppIdState.stateSubject.next(value);
@@ -97,5 +105,15 @@ describe("AppIdService", () => {
         expect(anonymousAppIdState.nextMock).toHaveBeenCalledWith(appId);
       },
     );
+
+    it("emits only once when creating a new anonymousAppId", async () => {
+      anonymousAppIdState.stateSubject.next(null);
+
+      const tracker = new ObservableTracker(sut.anonymousAppId$);
+      const appId = await sut.getAnonymousAppId();
+
+      expect(tracker.emissions).toEqual([appId]);
+      await expect(tracker.pauseUntilReceived(2, 50)).rejects.toThrow("Timeout exceeded");
+    });
   });
 });
diff --git a/libs/common/src/platform/services/app-id.service.ts b/libs/common/src/platform/services/app-id.service.ts
index 630e629749e..56e9516bce7 100644
--- a/libs/common/src/platform/services/app-id.service.ts
+++ b/libs/common/src/platform/services/app-id.service.ts
@@ -1,4 +1,4 @@
-import { Observable, filter, firstValueFrom, tap } from "rxjs";
+import { Observable, concatMap, distinctUntilChanged, firstValueFrom, share } from "rxjs";
 
 import { AppIdService as AppIdServiceAbstraction } from "../abstractions/app-id.service";
 import { Utils } from "../misc/utils";
@@ -19,20 +19,28 @@ export class AppIdService implements AppIdServiceAbstraction {
     const appIdState = globalStateProvider.get(APP_ID_KEY);
     const anonymousAppIdState = globalStateProvider.get(ANONYMOUS_APP_ID_KEY);
     this.appId$ = appIdState.state$.pipe(
-      tap(async (appId) => {
+      concatMap(async (appId) => {
         if (!appId) {
-          await appIdState.update(() => Utils.newGuid());
+          return await appIdState.update(() => Utils.newGuid(), {
+            shouldUpdate: (v) => v == null,
+          });
         }
+        return appId;
       }),
-      filter((appId) => !!appId),
+      distinctUntilChanged(),
+      share(),
     );
     this.anonymousAppId$ = anonymousAppIdState.state$.pipe(
-      tap(async (appId) => {
+      concatMap(async (appId) => {
         if (!appId) {
-          await anonymousAppIdState.update(() => Utils.newGuid());
+          return await anonymousAppIdState.update(() => Utils.newGuid(), {
+            shouldUpdate: (v) => v == null,
+          });
         }
+        return appId;
       }),
-      filter((appId) => !!appId),
+      distinctUntilChanged(),
+      share(),
     );
   }
 

From 7e86c0afd4ffeb6e0a91b4ed942f8b923904ea23 Mon Sep 17 00:00:00 2001
From: vinith-kovan <156108204+vinith-kovan@users.noreply.github.com>
Date: Wed, 5 Jun 2024 13:45:08 +0530
Subject: [PATCH 097/138] [PM-5014] Download license component migration
 (#8443)

* Download license component migration

* download license dialog component migration

* download license dialog component migration
---
 .../download-license.component.html           | 68 ++++++++--------
 .../download-license.component.ts             | 79 +++++++++++--------
 .../organization-billing.module.ts            |  4 +-
 ...nization-subscription-cloud.component.html |  7 --
 ...ganization-subscription-cloud.component.ts |  9 ++-
 5 files changed, 86 insertions(+), 81 deletions(-)

diff --git a/apps/web/src/app/billing/organizations/download-license.component.html b/apps/web/src/app/billing/organizations/download-license.component.html
index 0997462ce92..33a534bacf7 100644
--- a/apps/web/src/app/billing/organizations/download-license.component.html
+++ b/apps/web/src/app/billing/organizations/download-license.component.html
@@ -1,39 +1,35 @@
-<form #form class="card" (ngSubmit)="submit()" [appApiAction]="formPromise" ngNativeValidate>
-  <div class="card-body">
-    <button type="button" class="close" appA11yTitle="{{ 'cancel' | i18n }}" (click)="cancel()">
-      <span aria-hidden="true">&times;</span>
-    </button>
-    <h3 class="card-body-header">{{ "downloadLicense" | i18n }}</h3>
-    <div class="row">
-      <div class="form-group col-6">
-        <div class="d-flex">
-          <label for="installationId">{{ "enterInstallationId" | i18n }}</label>
-          <a
-            class="ml-auto"
-            target="_blank"
-            rel="noreferrer"
-            appA11yTitle="{{ 'learnMore' | i18n }}"
-            href="https://bitwarden.com/help/licensing-on-premise/#organization-account-sharing"
-          >
-            <i class="bwi bwi-question-circle" aria-hidden="true"></i>
-          </a>
+<form [formGroup]="licenseForm" [bitSubmit]="submit">
+  <bit-dialog>
+    <span bitDialogTitle>{{ "downloadLicense" | i18n }}</span>
+    <ng-container bitDialogContent>
+      <div class="tw-grid tw-grid-cols-12 tw-gap-4">
+        <div class="tw-col-span-8">
+          <bit-form-field>
+            <bit-label
+              >{{ "enterInstallationId" | i18n }}
+              <a
+                bitLink
+                class="tw-ml-auto"
+                target="_blank"
+                rel="noreferrer"
+                appA11yTitle="{{ 'learnMore' | i18n }}"
+                href="https://bitwarden.com/help/licensing-on-premise/#organization-account-sharing"
+              >
+                <i class="bwi bwi-question-circle" aria-hidden="true"></i>
+              </a>
+            </bit-label>
+            <input type="text" bitInput formControlName="installationId" />
+          </bit-form-field>
         </div>
-        <input
-          id="installationId"
-          class="form-control"
-          type="text"
-          name="InstallationId"
-          [(ngModel)]="installationId"
-          required
-        />
       </div>
-    </div>
-    <button type="submit" class="btn btn-primary btn-submit" [disabled]="form.loading">
-      <i class="bwi bwi-spinner bwi-spin" title="{{ 'loading' | i18n }}" aria-hidden="true"></i>
-      <span>{{ "submit" | i18n }}</span>
-    </button>
-    <button type="button" class="btn btn-outline-secondary" (click)="cancel()">
-      {{ "cancel" | i18n }}
-    </button>
-  </div>
+    </ng-container>
+    <ng-container bitDialogFooter>
+      <button bitButton bitFormButton buttonType="primary" type="submit">
+        {{ "submit" | i18n }}
+      </button>
+      <button bitButton [bitAction]="cancel" bitFormButton buttonType="secondary" type="button">
+        {{ "cancel" | i18n }}
+      </button>
+    </ng-container>
+  </bit-dialog>
 </form>
diff --git a/apps/web/src/app/billing/organizations/download-license.component.ts b/apps/web/src/app/billing/organizations/download-license.component.ts
index 88a37a28aab..6b3a93548b4 100644
--- a/apps/web/src/app/billing/organizations/download-license.component.ts
+++ b/apps/web/src/app/billing/organizations/download-license.component.ts
@@ -1,50 +1,61 @@
-import { Component, EventEmitter, Input, Output } from "@angular/core";
+import { DialogConfig, DIALOG_DATA, DialogRef } from "@angular/cdk/dialog";
+import { Component, Inject } from "@angular/core";
+import { FormBuilder, Validators } from "@angular/forms";
 
 import { OrganizationApiServiceAbstraction } from "@bitwarden/common/admin-console/abstractions/organization/organization-api.service.abstraction";
 import { FileDownloadService } from "@bitwarden/common/platform/abstractions/file-download/file-download.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
+import { DialogService } from "@bitwarden/components";
+
+export enum DownloadLicenseDialogResult {
+  Cancelled = "cancelled",
+  Downloaded = "downloaded",
+}
+type DownloadLicenseDialogData = {
+  /** current organization id */
+  organizationId: string;
+};
 
 @Component({
-  selector: "app-download-license",
   templateUrl: "download-license.component.html",
 })
-export class DownloadLicenseComponent {
-  @Input() organizationId: string;
-  @Output() onDownloaded = new EventEmitter();
-  @Output() onCanceled = new EventEmitter();
-
-  installationId: string;
-  formPromise: Promise<unknown>;
-
+export class DownloadLicenceDialogComponent {
+  licenseForm = this.formBuilder.group({
+    installationId: ["", [Validators.required]],
+  });
   constructor(
+    @Inject(DIALOG_DATA) protected data: DownloadLicenseDialogData,
+    private dialogRef: DialogRef,
     private fileDownloadService: FileDownloadService,
-    private logService: LogService,
     private organizationApiService: OrganizationApiServiceAbstraction,
+    protected formBuilder: FormBuilder,
   ) {}
 
-  async submit() {
-    if (this.installationId == null || this.installationId === "") {
+  submit = async () => {
+    this.licenseForm.markAllAsTouched();
+    const installationId = this.licenseForm.get("installationId").value;
+    if (installationId == null || installationId === "") {
       return;
     }
-
-    try {
-      this.formPromise = this.organizationApiService.getLicense(
-        this.organizationId,
-        this.installationId,
-      );
-      const license = await this.formPromise;
-      const licenseString = JSON.stringify(license, null, 2);
-      this.fileDownloadService.download({
-        fileName: "bitwarden_organization_license.json",
-        blobData: licenseString,
-      });
-      this.onDownloaded.emit();
-    } catch (e) {
-      this.logService.error(e);
-    }
-  }
-
-  cancel() {
-    this.onCanceled.emit();
+    const license = await this.organizationApiService.getLicense(
+      this.data.organizationId,
+      installationId,
+    );
+    const licenseString = JSON.stringify(license, null, 2);
+    this.fileDownloadService.download({
+      fileName: "bitwarden_organization_license.json",
+      blobData: licenseString,
+    });
+    this.dialogRef.close(DownloadLicenseDialogResult.Downloaded);
+  };
+  /**
+   * Strongly typed helper to open a DownloadLicenceDialogComponent
+   * @param dialogService Instance of the dialog service that will be used to open the dialog
+   * @param config Configuration for the dialog
+   */
+  static open(dialogService: DialogService, config: DialogConfig<DownloadLicenseDialogData>) {
+    return dialogService.open<DownloadLicenseDialogResult>(DownloadLicenceDialogComponent, config);
   }
+  cancel = () => {
+    this.dialogRef.close(DownloadLicenseDialogResult.Cancelled);
+  };
 }
diff --git a/apps/web/src/app/billing/organizations/organization-billing.module.ts b/apps/web/src/app/billing/organizations/organization-billing.module.ts
index 490ebafbff0..a95efe32e47 100644
--- a/apps/web/src/app/billing/organizations/organization-billing.module.ts
+++ b/apps/web/src/app/billing/organizations/organization-billing.module.ts
@@ -8,7 +8,7 @@ import { AdjustSubscription } from "./adjust-subscription.component";
 import { BillingSyncApiKeyComponent } from "./billing-sync-api-key.component";
 import { BillingSyncKeyComponent } from "./billing-sync-key.component";
 import { ChangePlanComponent } from "./change-plan.component";
-import { DownloadLicenseComponent } from "./download-license.component";
+import { DownloadLicenceDialogComponent } from "./download-license.component";
 import { OrgBillingHistoryViewComponent } from "./organization-billing-history-view.component";
 import { OrganizationBillingRoutingModule } from "./organization-billing-routing.module";
 import { OrganizationPlansComponent } from "./organization-plans.component";
@@ -32,7 +32,7 @@ import { SubscriptionStatusComponent } from "./subscription-status.component";
     BillingSyncApiKeyComponent,
     BillingSyncKeyComponent,
     ChangePlanComponent,
-    DownloadLicenseComponent,
+    DownloadLicenceDialogComponent,
     OrganizationSubscriptionCloudComponent,
     OrganizationSubscriptionSelfhostComponent,
     OrgBillingHistoryViewComponent,
diff --git a/apps/web/src/app/billing/organizations/organization-subscription-cloud.component.html b/apps/web/src/app/billing/organizations/organization-subscription-cloud.component.html
index 25ac3a7a155..e11cf602ad2 100644
--- a/apps/web/src/app/billing/organizations/organization-subscription-cloud.component.html
+++ b/apps/web/src/app/billing/organizations/organization-subscription-cloud.component.html
@@ -246,13 +246,6 @@
         {{ (hasBillingSyncToken ? "manageBillingSync" : "setUpBillingSync") | i18n }}
       </button>
     </div>
-    <div class="tw-mt-3" *ngIf="showDownloadLicense">
-      <app-download-license
-        [organizationId]="organizationId"
-        (onDownloaded)="closeDownloadLicense()"
-        (onCanceled)="closeDownloadLicense()"
-      ></app-download-license>
-    </div>
     <ng-container *ngIf="userOrg.canEditSubscription">
       <h2 bitTypography="h2" class="tw-mt-7">{{ "additionalOptions" | i18n }}</h2>
       <p bitTypography="body1">
diff --git a/apps/web/src/app/billing/organizations/organization-subscription-cloud.component.ts b/apps/web/src/app/billing/organizations/organization-subscription-cloud.component.ts
index a0db7b5a200..b6282f1e7b1 100644
--- a/apps/web/src/app/billing/organizations/organization-subscription-cloud.component.ts
+++ b/apps/web/src/app/billing/organizations/organization-subscription-cloud.component.ts
@@ -29,6 +29,7 @@ import {
 } from "../shared/offboarding-survey.component";
 
 import { BillingSyncApiKeyComponent } from "./billing-sync-api-key.component";
+import { DownloadLicenceDialogComponent } from "./download-license.component";
 import { ManageBilling } from "./icons/manage-billing.icon";
 import { SecretsManagerSubscriptionOptions } from "./sm-adjust-subscription.component";
 
@@ -354,8 +355,12 @@ export class OrganizationSubscriptionCloudComponent implements OnInit, OnDestroy
     this.showChangePlan = false;
   }
 
-  downloadLicense() {
-    this.showDownloadLicense = !this.showDownloadLicense;
+  async downloadLicense() {
+    DownloadLicenceDialogComponent.open(this.dialogService, {
+      data: {
+        organizationId: this.organizationId,
+      },
+    });
   }
 
   async manageBillingSync() {

From cb0927ac5d9e338cf0282dbb4ea01211698f3b3a Mon Sep 17 00:00:00 2001
From: Jason Ng <jng@bitwarden.com>
Date: Wed, 5 Jun 2024 10:06:52 -0400
Subject: [PATCH 098/138] [PM-8553] browser v2 search bar defects (#9506)

* update no results icon and no results scrolling
* update v2 search so the term persist when the user clicks into an item and exits the item
---
 .../vault-search/vault-v2-search.component.ts | 35 ++++++++++++++-----
 .../components/vault/vault-v2.component.html  | 13 +++----
 .../components/vault/vault-v2.component.ts    |  5 +--
 .../services/vault-popup-items.service.ts     |  9 ++---
 libs/components/src/icon/icons/index.ts       |  1 +
 libs/components/src/icon/icons/no-results.ts  | 18 ++++++++++
 6 files changed, 56 insertions(+), 25 deletions(-)
 create mode 100644 libs/components/src/icon/icons/no-results.ts

diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-search/vault-v2-search.component.ts b/apps/browser/src/vault/popup/components/vault-v2/vault-search/vault-v2-search.component.ts
index 321717285a9..e6100321607 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-search/vault-v2-search.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-search/vault-v2-search.component.ts
@@ -1,12 +1,14 @@
 import { CommonModule } from "@angular/common";
-import { Component, Output, EventEmitter } from "@angular/core";
+import { Component } from "@angular/core";
 import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
 import { FormsModule } from "@angular/forms";
-import { Subject, debounceTime } from "rxjs";
+import { Subject, Subscription, debounceTime, filter } from "rxjs";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { SearchModule } from "@bitwarden/components";
 
+import { VaultPopupItemsService } from "../../../services/vault-popup-items.service";
+
 const SearchTextDebounceInterval = 200;
 
 @Component({
@@ -17,19 +19,34 @@ const SearchTextDebounceInterval = 200;
 })
 export class VaultV2SearchComponent {
   searchText: string;
-  @Output() searchTextChanged = new EventEmitter<string>();
 
   private searchText$ = new Subject<string>();
 
-  constructor() {
-    this.searchText$
-      .pipe(debounceTime(SearchTextDebounceInterval), takeUntilDestroyed())
-      .subscribe((data) => {
-        this.searchTextChanged.emit(data);
-      });
+  constructor(private vaultPopupItemsService: VaultPopupItemsService) {
+    this.subscribeToLatestSearchText();
+    this.subscribeToApplyFilter();
   }
 
   onSearchTextChanged() {
     this.searchText$.next(this.searchText);
   }
+
+  subscribeToLatestSearchText(): Subscription {
+    return this.vaultPopupItemsService.latestSearchText$
+      .pipe(
+        takeUntilDestroyed(),
+        filter((data) => !!data),
+      )
+      .subscribe((text) => {
+        this.searchText = text;
+      });
+  }
+
+  subscribeToApplyFilter(): Subscription {
+    return this.searchText$
+      .pipe(debounceTime(SearchTextDebounceInterval), takeUntilDestroyed())
+      .subscribe((data) => {
+        this.vaultPopupItemsService.applyFilter(data);
+      });
+  }
 }
diff --git a/apps/browser/src/vault/popup/components/vault/vault-v2.component.html b/apps/browser/src/vault/popup/components/vault/vault-v2.component.html
index f99d3cbb303..9f38fd61fab 100644
--- a/apps/browser/src/vault/popup/components/vault/vault-v2.component.html
+++ b/apps/browser/src/vault/popup/components/vault/vault-v2.component.html
@@ -22,18 +22,15 @@
   </div>
 
   <ng-container *ngIf="!(showEmptyState$ | async)">
-    <div class="tw-fixed">
-      <app-vault-v2-search (searchTextChanged)="handleSearchTextChange($event)">
-      </app-vault-v2-search>
+    <app-vault-v2-search> </app-vault-v2-search>
 
-      <app-vault-list-filters></app-vault-list-filters>
-    </div>
+    <app-vault-list-filters></app-vault-list-filters>
 
     <div
       *ngIf="(showNoResultsState$ | async) && !(showDeactivatedOrg$ | async)"
-      class="tw-flex tw-flex-col tw-h-full tw-justify-center"
+      class="tw-flex tw-flex-col tw-justify-center tw-h-auto tw-pt-12"
     >
-      <bit-no-items>
+      <bit-no-items [icon]="noResultsIcon">
         <ng-container slot="title">{{ "noItemsMatchSearch" | i18n }}</ng-container>
         <ng-container slot="description">{{ "clearFiltersOrTryAnother" | i18n }}</ng-container>
       </bit-no-items>
@@ -41,7 +38,7 @@
 
     <div
       *ngIf="showDeactivatedOrg$ | async"
-      class="tw-flex tw-flex-col tw-h-full tw-justify-center"
+      class="tw-flex tw-flex-col tw-justify-center tw-h-auto tw-pt-12"
     >
       <bit-no-items [icon]="deactivatedIcon">
         <ng-container slot="title">{{ "organizationIsDeactivated" | i18n }}</ng-container>
diff --git a/apps/browser/src/vault/popup/components/vault/vault-v2.component.ts b/apps/browser/src/vault/popup/components/vault/vault-v2.component.ts
index 5e9487ac880..5e91f196a30 100644
--- a/apps/browser/src/vault/popup/components/vault/vault-v2.component.ts
+++ b/apps/browser/src/vault/popup/components/vault/vault-v2.component.ts
@@ -44,6 +44,7 @@ export class VaultV2Component implements OnInit, OnDestroy {
 
   protected vaultIcon = Icons.Vault;
   protected deactivatedIcon = Icons.DeactivatedOrg;
+  protected noResultsIcon = Icons.NoResults;
 
   constructor(
     private vaultPopupItemsService: VaultPopupItemsService,
@@ -54,10 +55,6 @@ export class VaultV2Component implements OnInit, OnDestroy {
 
   ngOnDestroy(): void {}
 
-  handleSearchTextChange(searchText: string) {
-    this.vaultPopupItemsService.applyFilter(searchText);
-  }
-
   addCipher() {
     // TODO: Add currently filtered organization to query params if available
     void this.router.navigate(["/add-cipher"], {});
diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
index eacb8e013ef..ab98722d060 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
@@ -38,7 +38,8 @@ import { MY_VAULT_ID, VaultPopupListFiltersService } from "./vault-popup-list-fi
 })
 export class VaultPopupItemsService {
   private _refreshCurrentTab$ = new Subject<void>();
-  private searchText$ = new BehaviorSubject<string>("");
+  private _searchText$ = new BehaviorSubject<string>("");
+  latestSearchText$: Observable<string> = this._searchText$.asObservable();
 
   /**
    * Observable that contains the list of other cipher types that should be shown
@@ -105,7 +106,7 @@ export class VaultPopupItemsService {
 
   private _filteredCipherList$: Observable<PopupCipherView[]> = combineLatest([
     this._cipherList$,
-    this.searchText$,
+    this._searchText$,
     this.vaultPopupListFiltersService.filterFunction$,
   ]).pipe(
     map(([ciphers, searchText, filterFunction]): [CipherView[], string] => [
@@ -179,7 +180,7 @@ export class VaultPopupItemsService {
    * Observable that indicates whether a filter is currently applied to the ciphers.
    */
   hasFilterApplied$ = combineLatest([
-    this.searchText$,
+    this._searchText$,
     this.vaultPopupListFiltersService.filters$,
   ]).pipe(
     switchMap(([searchText, filters]) => {
@@ -242,7 +243,7 @@ export class VaultPopupItemsService {
   }
 
   applyFilter(newSearchText: string) {
-    this.searchText$.next(newSearchText);
+    this._searchText$.next(newSearchText);
   }
 
   /**
diff --git a/libs/components/src/icon/icons/index.ts b/libs/components/src/icon/icons/index.ts
index 9de81f19913..ea583031f61 100644
--- a/libs/components/src/icon/icons/index.ts
+++ b/libs/components/src/icon/icons/index.ts
@@ -2,3 +2,4 @@ export * from "./deactivated-org";
 export * from "./search";
 export * from "./no-access";
 export * from "./vault";
+export * from "./no-results";
diff --git a/libs/components/src/icon/icons/no-results.ts b/libs/components/src/icon/icons/no-results.ts
new file mode 100644
index 00000000000..f68e67f88ce
--- /dev/null
+++ b/libs/components/src/icon/icons/no-results.ts
@@ -0,0 +1,18 @@
+import { svgIcon } from "../icon";
+
+export const NoResults = svgIcon`
+<svg width="98" height="96" viewBox="0 0 98 96" fill="none" xmlns="http://www.w3.org/2000/svg">
+    <path class="tw-stroke-primary-700" d="M8.8545 86.7919L56.9901 86.7919C60.2321 86.7919 62.8603 84.1637 62.8603 80.9217L62.8603 32.2678C62.8603 30.7472 62.2702 29.2859 61.2143 28.1916L47.5536 14.0345C46.4473 12.8881 44.9225 12.2405 43.3293 12.2405L8.85451 12.2405C5.61249 12.2405 2.98431 14.8687 2.98431 18.1107L2.98431 80.9217C2.98431 84.1637 5.61248 86.7919 8.8545 86.7919Z" stroke-width="1.76106"/>
+    <path class="tw-fill-background tw-stroke-primary-700" d="M18.8335 76.8125L66.9691 76.8125C70.2111 76.8125 72.8393 74.1844 72.8393 70.9423L72.8393 21.8271C72.8393 20.3144 72.2554 18.8601 71.2093 17.7675L57.5349 3.48471C56.4276 2.32814 54.8959 1.67408 53.2947 1.67408L18.8335 1.67407C15.5915 1.67407 12.9633 4.30225 12.9633 7.54427L12.9633 70.9423C12.9633 74.1844 15.5915 76.8125 18.8335 76.8125Z" stroke-width="1.76106"/>
+    <path class="tw-stroke-primary-700" d="M54.3484 2.26123L54.3484 14.0016C54.3484 17.2436 56.9766 19.8718 60.2186 19.8718L72.546 19.8718" stroke-width="1.76106"/>
+    <path class="tw-stroke-success-600" d="M20.0914 15.9861L43.5722 15.9861" stroke-width="0.880529" stroke-linecap="round" stroke-dasharray="11.74 4.7"/>
+    <path class="tw-stroke-success-600"  d="M20.0914 30.8945L51.2034 30.8945" stroke-width="0.880529" stroke-linecap="round" stroke-dasharray="11.74 4.7"/>
+    <path class="tw-stroke-success-600" d="M20.0914 45.803L45.9203 45.803" stroke-width="0.880529" stroke-linecap="round" stroke-dasharray="11.74 4.7"/>
+    <path class="tw-stroke-success-600" d="M20.0914 60.7112L45.9203 60.7112" stroke-width="0.880529" stroke-linecap="round" stroke-dasharray="11.74 4.7"/>
+    <path class="tw-fill-background tw-stroke-primary-700" d="M85.4233 53.9449C81.9863 66.772 68.6684 74.3484 55.6768 70.8674C42.6853 67.3863 34.9398 54.1659 38.3768 41.3388C41.8138 28.5117 55.1318 20.9353 68.1234 24.4163C81.1149 27.8974 88.8604 41.1178 85.4233 53.9449Z" stroke-width="1.76106" stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-success-600" d="M55.1859 41.5395C55.1859 41.5395 55.2828 39.2314 57.5434 37.273C58.8998 36.084 60.5145 35.7692 61.9678 35.7343C63.2919 35.6993 64.4868 35.9441 65.1649 36.3288C66.3921 36.9583 68.7497 38.462 68.7497 41.7144C68.7497 45.1416 66.6828 46.6804 64.3576 48.394C62.0324 50.1076 62.3667 52.3385 62.3667 54.227" stroke-width="1.76106" stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-fill-success-600 tw-stroke-secondary-600" d="M62.2727 59.2015C62.759 59.2015 63.1533 58.8073 63.1533 58.321C63.1533 57.8347 62.759 57.4404 62.2727 57.4404C61.7864 57.4404 61.3922 57.8347 61.3922 58.321C61.3922 58.8073 61.7864 59.2015 62.2727 59.2015Z"/>
+    <path class="tw-fill-secondary-300 tw-stroke-primary-700" d="M96.0333 89.0621L95.4703 89.5329C94.2269 90.5728 92.3758 90.4078 91.3359 89.1644L78.2766 73.5488L74.79 69.3798C74.4843 69.0105 74.6096 68.4514 75.0271 68.2155C76.7198 67.2592 78.097 65.9974 78.8894 65.1364C79.1502 64.853 79.6089 64.8477 79.856 65.1431L83.3425 69.3121L96.4018 84.9277C97.4418 86.1712 97.2768 88.0222 96.0333 89.0621Z" stroke-width="1.76106" stroke-linecap="round" stroke-linejoin="round"/>
+</svg>
+
+`;

From 1aaa88a64d4d48aa75868980eb4c280b672057c3 Mon Sep 17 00:00:00 2001
From: Justin Baur <19896123+justindbaur@users.noreply.github.com>
Date: Wed, 5 Jun 2024 10:48:12 -0400
Subject: [PATCH 099/138] [PM-7837] Move `SyncService` to Platform Ownership
 (#9055)

* Move

* Update  References In Unowned Files

* Update  References In Vault Files

* Update Web AppComponent

* Add Import
---
 .../browser/src/background/main.background.ts | 13 ++-
 .../src/popup/services/services.module.ts     |  2 +-
 .../components/vault/current-tab.component.ts |  2 +-
 .../vault/vault-filter.component.ts           |  2 +-
 .../vault/popup/settings/sync.component.ts    |  2 +-
 apps/cli/src/service-container.ts             | 10 +--
 apps/cli/src/vault/sync.command.ts            |  2 +-
 apps/desktop/src/app/app.component.ts         |  2 +-
 apps/desktop/src/app/services/init.service.ts |  2 +-
 .../src/vault/app/vault/vault.component.ts    |  2 +-
 apps/web/src/app/app.component.ts             |  2 +-
 .../src/app/layouts/user-layout.component.ts  |  2 +-
 .../organization-options.component.ts         |  2 +-
 .../vault/individual-vault/vault.component.ts |  2 +-
 .../app/vault/org-vault/vault.component.ts    |  2 +-
 .../vault/settings/purge-vault.component.ts   |  2 +-
 .../src/services/jslib-services.module.ts     | 22 ++---
 libs/common/src/abstractions/api.service.ts   |  2 +-
 .../sync/default-sync.service.ts}             | 89 ++++++++++---------
 libs/common/src/platform/sync/index.ts        |  2 +
 libs/common/src/platform/sync/internal.ts     |  1 +
 .../sync}/sync-event-args.ts                  |  2 +-
 .../sync}/sync.response.ts                    | 17 ++--
 libs/common/src/platform/sync/sync.service.ts | 58 ++++++++++++
 libs/common/src/services/api.service.ts       |  2 +-
 .../src/services/notifications.service.ts     |  2 +-
 .../sync/sync-notifier.service.abstraction.ts |  8 --
 .../sync/sync.service.abstraction.ts          | 21 +----
 .../services/sync/sync-notifier.service.ts    | 18 ----
 29 files changed, 152 insertions(+), 143 deletions(-)
 rename libs/common/src/{vault/services/sync/sync.service.ts => platform/sync/default-sync.service.ts} (74%)
 create mode 100644 libs/common/src/platform/sync/index.ts
 rename libs/common/src/{vault/types => platform/sync}/sync-event-args.ts (94%)
 rename libs/common/src/{vault/models/response => platform/sync}/sync.response.ts (69%)
 create mode 100644 libs/common/src/platform/sync/sync.service.ts
 delete mode 100644 libs/common/src/vault/abstractions/sync/sync-notifier.service.abstraction.ts
 delete mode 100644 libs/common/src/vault/services/sync/sync-notifier.service.ts

diff --git a/apps/browser/src/background/main.background.ts b/apps/browser/src/background/main.background.ts
index 63721466f6f..a8654c92f03 100644
--- a/apps/browser/src/background/main.background.ts
+++ b/apps/browser/src/background/main.background.ts
@@ -136,6 +136,9 @@ import { DefaultStateProvider } from "@bitwarden/common/platform/state/implement
 import { InlineDerivedStateProvider } from "@bitwarden/common/platform/state/implementations/inline-derived-state";
 import { StateEventRegistrarService } from "@bitwarden/common/platform/state/state-event-registrar.service";
 /* eslint-enable import/no-restricted-paths */
+import { SyncService } from "@bitwarden/common/platform/sync";
+// eslint-disable-next-line no-restricted-imports -- Needed for service creation
+import { DefaultSyncService } from "@bitwarden/common/platform/sync/internal";
 import { DefaultThemeStateService } from "@bitwarden/common/platform/theming/theme-state.service";
 import { ApiService } from "@bitwarden/common/services/api.service";
 import { AuditService } from "@bitwarden/common/services/audit.service";
@@ -166,8 +169,6 @@ import { CollectionService as CollectionServiceAbstraction } from "@bitwarden/co
 import { CipherFileUploadService as CipherFileUploadServiceAbstraction } from "@bitwarden/common/vault/abstractions/file-upload/cipher-file-upload.service";
 import { FolderApiServiceAbstraction } from "@bitwarden/common/vault/abstractions/folder/folder-api.service.abstraction";
 import { InternalFolderService as InternalFolderServiceAbstraction } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
-import { SyncNotifierService as SyncNotifierServiceAbstraction } from "@bitwarden/common/vault/abstractions/sync/sync-notifier.service.abstraction";
-import { SyncService as SyncServiceAbstraction } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { TotpService as TotpServiceAbstraction } from "@bitwarden/common/vault/abstractions/totp.service";
 import { VaultSettingsService as VaultSettingsServiceAbstraction } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
@@ -176,8 +177,6 @@ import { CollectionService } from "@bitwarden/common/vault/services/collection.s
 import { CipherFileUploadService } from "@bitwarden/common/vault/services/file-upload/cipher-file-upload.service";
 import { FolderApiService } from "@bitwarden/common/vault/services/folder/folder-api.service";
 import { FolderService } from "@bitwarden/common/vault/services/folder/folder.service";
-import { SyncNotifierService } from "@bitwarden/common/vault/services/sync/sync-notifier.service";
-import { SyncService } from "@bitwarden/common/vault/services/sync/sync.service";
 import { TotpService } from "@bitwarden/common/vault/services/totp.service";
 import { VaultSettingsService } from "@bitwarden/common/vault/services/vault-settings/vault-settings.service";
 import {
@@ -268,7 +267,7 @@ export default class MainBackground {
   collectionService: CollectionServiceAbstraction;
   vaultTimeoutService: VaultTimeoutService;
   vaultTimeoutSettingsService: VaultTimeoutSettingsServiceAbstraction;
-  syncService: SyncServiceAbstraction;
+  syncService: SyncService;
   passwordGenerationService: PasswordGenerationServiceAbstraction;
   passwordStrengthService: PasswordStrengthServiceAbstraction;
   totpService: TotpServiceAbstraction;
@@ -306,7 +305,6 @@ export default class MainBackground {
   policyApiService: PolicyApiServiceAbstraction;
   sendApiService: SendApiServiceAbstraction;
   userVerificationApiService: UserVerificationApiServiceAbstraction;
-  syncNotifierService: SyncNotifierServiceAbstraction;
   fido2UserInterfaceService: Fido2UserInterfaceServiceAbstraction;
   fido2AuthenticatorService: Fido2AuthenticatorServiceAbstraction;
   fido2ClientService: Fido2ClientServiceAbstraction;
@@ -638,7 +636,6 @@ export default class MainBackground {
       this.i18nService,
       this.stateProvider,
     );
-    this.syncNotifierService = new SyncNotifierService();
 
     this.autofillSettingsService = new AutofillSettingsService(
       this.stateProvider,
@@ -827,7 +824,7 @@ export default class MainBackground {
         messageListener,
       );
     } else {
-      this.syncService = new SyncService(
+      this.syncService = new DefaultSyncService(
         this.masterPasswordService,
         this.accountService,
         this.apiService,
diff --git a/apps/browser/src/popup/services/services.module.ts b/apps/browser/src/popup/services/services.module.ts
index ace9af3dfa8..d61fa3b19c0 100644
--- a/apps/browser/src/popup/services/services.module.ts
+++ b/apps/browser/src/popup/services/services.module.ts
@@ -80,11 +80,11 @@ import {
 } from "@bitwarden/common/platform/state";
 // eslint-disable-next-line import/no-restricted-paths -- Used for dependency injection
 import { InlineDerivedStateProvider } from "@bitwarden/common/platform/state/implementations/inline-derived-state";
+import { SyncService } from "@bitwarden/common/platform/sync";
 import { VaultTimeoutStringType } from "@bitwarden/common/types/vault-timeout.type";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CollectionService } from "@bitwarden/common/vault/abstractions/collection.service";
 import { FolderService as FolderServiceAbstraction } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { TotpService as TotpServiceAbstraction } from "@bitwarden/common/vault/abstractions/totp.service";
 import { TotpService } from "@bitwarden/common/vault/services/totp.service";
 import { DialogService, ToastService } from "@bitwarden/components";
diff --git a/apps/browser/src/vault/popup/components/vault/current-tab.component.ts b/apps/browser/src/vault/popup/components/vault/current-tab.component.ts
index 4d2674fd703..24ca030284f 100644
--- a/apps/browser/src/vault/popup/components/vault/current-tab.component.ts
+++ b/apps/browser/src/vault/popup/components/vault/current-tab.component.ts
@@ -14,8 +14,8 @@ import { ConfigService } from "@bitwarden/common/platform/abstractions/config/co
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
+import { SyncService } from "@bitwarden/common/platform/sync";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { CipherRepromptType } from "@bitwarden/common/vault/enums/cipher-reprompt-type";
diff --git a/apps/browser/src/vault/popup/components/vault/vault-filter.component.ts b/apps/browser/src/vault/popup/components/vault/vault-filter.component.ts
index deb4434df47..b46b4cf9ff2 100644
--- a/apps/browser/src/vault/popup/components/vault/vault-filter.component.ts
+++ b/apps/browser/src/vault/popup/components/vault/vault-filter.component.ts
@@ -9,8 +9,8 @@ import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { BroadcasterService } from "@bitwarden/common/platform/abstractions/broadcaster.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
+import { SyncService } from "@bitwarden/common/platform/sync";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { TreeNode } from "@bitwarden/common/vault/models/domain/tree-node";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
diff --git a/apps/browser/src/vault/popup/settings/sync.component.ts b/apps/browser/src/vault/popup/settings/sync.component.ts
index 3fe4de9eb51..16f388804bb 100644
--- a/apps/browser/src/vault/popup/settings/sync.component.ts
+++ b/apps/browser/src/vault/popup/settings/sync.component.ts
@@ -2,7 +2,7 @@ import { Component, OnInit } from "@angular/core";
 
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
+import { SyncService } from "@bitwarden/common/platform/sync";
 
 @Component({
   selector: "app-sync",
diff --git a/apps/cli/src/service-container.ts b/apps/cli/src/service-container.ts
index 53039e91473..ff4eb52b84e 100644
--- a/apps/cli/src/service-container.ts
+++ b/apps/cli/src/service-container.ts
@@ -97,6 +97,9 @@ import { DefaultStateProvider } from "@bitwarden/common/platform/state/implement
 import { StateEventRegistrarService } from "@bitwarden/common/platform/state/state-event-registrar.service";
 import { MemoryStorageService as MemoryStorageServiceForStateProviders } from "@bitwarden/common/platform/state/storage/memory-storage.service";
 /* eslint-enable import/no-restricted-paths */
+import { SyncService } from "@bitwarden/common/platform/sync";
+// eslint-disable-next-line no-restricted-imports -- Needed for service construction
+import { DefaultSyncService } from "@bitwarden/common/platform/sync/internal";
 import { AuditService } from "@bitwarden/common/services/audit.service";
 import { EventCollectionService } from "@bitwarden/common/services/event/event-collection.service";
 import { EventUploadService } from "@bitwarden/common/services/event/event-upload.service";
@@ -120,8 +123,6 @@ import { CollectionService } from "@bitwarden/common/vault/services/collection.s
 import { CipherFileUploadService } from "@bitwarden/common/vault/services/file-upload/cipher-file-upload.service";
 import { FolderApiService } from "@bitwarden/common/vault/services/folder/folder-api.service";
 import { FolderService } from "@bitwarden/common/vault/services/folder/folder.service";
-import { SyncNotifierService } from "@bitwarden/common/vault/services/sync/sync-notifier.service";
-import { SyncService } from "@bitwarden/common/vault/services/sync/sync.service";
 import { TotpService } from "@bitwarden/common/vault/services/totp.service";
 import {
   ImportApiService,
@@ -216,7 +217,6 @@ export class ServiceContainer {
   folderApiService: FolderApiService;
   userVerificationApiService: UserVerificationApiService;
   organizationApiService: OrganizationApiServiceAbstraction;
-  syncNotifierService: SyncNotifierService;
   sendApiService: SendApiService;
   devicesApiService: DevicesApiServiceAbstraction;
   deviceTrustService: DeviceTrustServiceAbstraction;
@@ -440,8 +440,6 @@ export class ServiceContainer {
       customUserAgent,
     );
 
-    this.syncNotifierService = new SyncNotifierService();
-
     this.organizationApiService = new OrganizationApiService(this.apiService, this.syncService);
 
     this.containerService = new ContainerService(this.cryptoService, this.encryptService);
@@ -648,7 +646,7 @@ export class ServiceContainer {
 
     this.avatarService = new AvatarService(this.apiService, this.stateProvider);
 
-    this.syncService = new SyncService(
+    this.syncService = new DefaultSyncService(
       this.masterPasswordService,
       this.accountService,
       this.apiService,
diff --git a/apps/cli/src/vault/sync.command.ts b/apps/cli/src/vault/sync.command.ts
index 073b9b5df48..c3c6f637538 100644
--- a/apps/cli/src/vault/sync.command.ts
+++ b/apps/cli/src/vault/sync.command.ts
@@ -1,4 +1,4 @@
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
+import { SyncService } from "@bitwarden/common/platform/sync";
 
 import { Response } from "../models/response";
 import { MessageResponse } from "../models/response/message.response";
diff --git a/apps/desktop/src/app/app.component.ts b/apps/desktop/src/app/app.component.ts
index 561e9b2df9c..e4fdd17dc15 100644
--- a/apps/desktop/src/app/app.component.ts
+++ b/apps/desktop/src/app/app.component.ts
@@ -42,13 +42,13 @@ import { SystemService } from "@bitwarden/common/platform/abstractions/system.se
 import { BiometricStateService } from "@bitwarden/common/platform/biometrics/biometric-state.service";
 import { clearCaches } from "@bitwarden/common/platform/misc/sequentialize";
 import { StateEventRunnerService } from "@bitwarden/common/platform/state";
+import { SyncService } from "@bitwarden/common/platform/sync";
 import { PasswordGenerationServiceAbstraction } from "@bitwarden/common/tools/generator/password";
 import { UserId } from "@bitwarden/common/types/guid";
 import { VaultTimeout, VaultTimeoutStringType } from "@bitwarden/common/types/vault-timeout.type";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CollectionService } from "@bitwarden/common/vault/abstractions/collection.service";
 import { InternalFolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { DialogService, ToastOptions, ToastService } from "@bitwarden/components";
 
diff --git a/apps/desktop/src/app/services/init.service.ts b/apps/desktop/src/app/services/init.service.ts
index 0452e9be837..8793587300f 100644
--- a/apps/desktop/src/app/services/init.service.ts
+++ b/apps/desktop/src/app/services/init.service.ts
@@ -15,10 +15,10 @@ import { PlatformUtilsService as PlatformUtilsServiceAbstraction } from "@bitwar
 import { StateService as StateServiceAbstraction } from "@bitwarden/common/platform/abstractions/state.service";
 import { ContainerService } from "@bitwarden/common/platform/services/container.service";
 import { UserAutoUnlockKeyService } from "@bitwarden/common/platform/services/user-auto-unlock-key.service";
+import { SyncService as SyncServiceAbstraction } from "@bitwarden/common/platform/sync";
 import { EventUploadService } from "@bitwarden/common/services/event/event-upload.service";
 import { VaultTimeoutService } from "@bitwarden/common/services/vault-timeout/vault-timeout.service";
 import { UserId } from "@bitwarden/common/types/guid";
-import { SyncService as SyncServiceAbstraction } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 
 import { I18nRendererService } from "../../platform/services/i18n.renderer.service";
 import { NativeMessagingService } from "../../services/native-messaging.service";
diff --git a/apps/desktop/src/vault/app/vault/vault.component.ts b/apps/desktop/src/vault/app/vault/vault.component.ts
index 208bbc70f03..37992ecea0e 100644
--- a/apps/desktop/src/vault/app/vault/vault.component.ts
+++ b/apps/desktop/src/vault/app/vault/vault.component.ts
@@ -23,7 +23,7 @@ import { BroadcasterService } from "@bitwarden/common/platform/abstractions/broa
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
+import { SyncService } from "@bitwarden/common/platform/sync";
 import { TotpService } from "@bitwarden/common/vault/abstractions/totp.service";
 import { CipherType } from "@bitwarden/common/vault/enums";
 import { CipherRepromptType } from "@bitwarden/common/vault/enums/cipher-reprompt-type";
diff --git a/apps/web/src/app/app.component.ts b/apps/web/src/app/app.component.ts
index 254f23eeb23..c9fbf359f0f 100644
--- a/apps/web/src/app/app.component.ts
+++ b/apps/web/src/app/app.component.ts
@@ -35,12 +35,12 @@ import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/pl
 import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
 import { BiometricStateService } from "@bitwarden/common/platform/biometrics/biometric-state.service";
 import { StateEventRunnerService } from "@bitwarden/common/platform/state";
+import { SyncService } from "@bitwarden/common/platform/sync";
 import { PasswordGenerationServiceAbstraction } from "@bitwarden/common/tools/generator/password";
 import { UserId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CollectionService } from "@bitwarden/common/vault/abstractions/collection.service";
 import { InternalFolderService } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { DialogService, ToastOptions, ToastService } from "@bitwarden/components";
 
 import { PolicyListService } from "./admin-console/core/policy-list.service";
diff --git a/apps/web/src/app/layouts/user-layout.component.ts b/apps/web/src/app/layouts/user-layout.component.ts
index 1ce8d4d2278..757b8220f3a 100644
--- a/apps/web/src/app/layouts/user-layout.component.ts
+++ b/apps/web/src/app/layouts/user-layout.component.ts
@@ -10,7 +10,7 @@ import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abs
 import { FeatureFlag } from "@bitwarden/common/enums/feature-flag.enum";
 import { ConfigService } from "@bitwarden/common/platform/abstractions/config/config.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
+import { SyncService } from "@bitwarden/common/platform/sync";
 import { IconModule, LayoutComponent, NavigationModule } from "@bitwarden/components";
 
 import { PaymentMethodWarningsModule } from "../billing/shared";
diff --git a/apps/web/src/app/vault/individual-vault/vault-filter/components/organization-options.component.ts b/apps/web/src/app/vault/individual-vault/vault-filter/components/organization-options.component.ts
index 8dd63e62ddb..5a138c3147b 100644
--- a/apps/web/src/app/vault/individual-vault/vault-filter/components/organization-options.component.ts
+++ b/apps/web/src/app/vault/individual-vault/vault-filter/components/organization-options.component.ts
@@ -13,7 +13,7 @@ import { Policy } from "@bitwarden/common/admin-console/models/domain/policy";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
+import { SyncService } from "@bitwarden/common/platform/sync";
 import { DialogService } from "@bitwarden/components";
 
 import { OrganizationUserResetPasswordService } from "../../../../admin-console/organizations/members/services/organization-user-reset-password/organization-user-reset-password.service";
diff --git a/apps/web/src/app/vault/individual-vault/vault.component.ts b/apps/web/src/app/vault/individual-vault/vault.component.ts
index ca04b3aa51f..ae3a0657788 100644
--- a/apps/web/src/app/vault/individual-vault/vault.component.ts
+++ b/apps/web/src/app/vault/individual-vault/vault.component.ts
@@ -45,9 +45,9 @@ import { LogService } from "@bitwarden/common/platform/abstractions/log.service"
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
+import { SyncService } from "@bitwarden/common/platform/sync";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CollectionService } from "@bitwarden/common/vault/abstractions/collection.service";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { TotpService } from "@bitwarden/common/vault/abstractions/totp.service";
 import { CipherRepromptType } from "@bitwarden/common/vault/enums/cipher-reprompt-type";
 import { CollectionData } from "@bitwarden/common/vault/models/data/collection.data";
diff --git a/apps/web/src/app/vault/org-vault/vault.component.ts b/apps/web/src/app/vault/org-vault/vault.component.ts
index 514cb8150d1..dfdce5c818e 100644
--- a/apps/web/src/app/vault/org-vault/vault.component.ts
+++ b/apps/web/src/app/vault/org-vault/vault.component.ts
@@ -48,10 +48,10 @@ import { LogService } from "@bitwarden/common/platform/abstractions/log.service"
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
+import { SyncService } from "@bitwarden/common/platform/sync";
 import { OrganizationId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CollectionService } from "@bitwarden/common/vault/abstractions/collection.service";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { TotpService } from "@bitwarden/common/vault/abstractions/totp.service";
 import { CipherRepromptType } from "@bitwarden/common/vault/enums/cipher-reprompt-type";
 import { TreeNode } from "@bitwarden/common/vault/models/domain/tree-node";
diff --git a/apps/web/src/app/vault/settings/purge-vault.component.ts b/apps/web/src/app/vault/settings/purge-vault.component.ts
index 869cbaab1b4..9a677af7b5d 100644
--- a/apps/web/src/app/vault/settings/purge-vault.component.ts
+++ b/apps/web/src/app/vault/settings/purge-vault.component.ts
@@ -8,7 +8,7 @@ import { UserVerificationService } from "@bitwarden/common/auth/abstractions/use
 import { Verification } from "@bitwarden/common/auth/types/verification";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { SyncService } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
+import { SyncService } from "@bitwarden/common/platform/sync";
 import { DialogService } from "@bitwarden/components";
 
 export interface PurgeVaultDialogData {
diff --git a/libs/angular/src/services/jslib-services.module.ts b/libs/angular/src/services/jslib-services.module.ts
index 048c1829001..8c676bdb9d9 100644
--- a/libs/angular/src/services/jslib-services.module.ts
+++ b/libs/angular/src/services/jslib-services.module.ts
@@ -187,6 +187,9 @@ import { DefaultStateProvider } from "@bitwarden/common/platform/state/implement
 import { StateEventRegistrarService } from "@bitwarden/common/platform/state/state-event-registrar.service";
 import { StateEventRunnerService } from "@bitwarden/common/platform/state/state-event-runner.service";
 /* eslint-enable import/no-restricted-paths */
+import { SyncService } from "@bitwarden/common/platform/sync";
+// eslint-disable-next-line no-restricted-imports -- Needed for DI
+import { DefaultSyncService } from "@bitwarden/common/platform/sync/internal";
 import {
   DefaultThemeStateService,
   ThemeStateService,
@@ -226,8 +229,6 @@ import {
   FolderService as FolderServiceAbstraction,
   InternalFolderService,
 } from "@bitwarden/common/vault/abstractions/folder/folder.service.abstraction";
-import { SyncNotifierService as SyncNotifierServiceAbstraction } from "@bitwarden/common/vault/abstractions/sync/sync-notifier.service.abstraction";
-import { SyncService as SyncServiceAbstraction } from "@bitwarden/common/vault/abstractions/sync/sync.service.abstraction";
 import { TotpService as TotpServiceAbstraction } from "@bitwarden/common/vault/abstractions/totp.service";
 import { VaultSettingsService as VaultSettingsServiceAbstraction } from "@bitwarden/common/vault/abstractions/vault-settings/vault-settings.service";
 import { CipherService } from "@bitwarden/common/vault/services/cipher.service";
@@ -235,8 +236,6 @@ import { CollectionService } from "@bitwarden/common/vault/services/collection.s
 import { CipherFileUploadService } from "@bitwarden/common/vault/services/file-upload/cipher-file-upload.service";
 import { FolderApiService } from "@bitwarden/common/vault/services/folder/folder-api.service";
 import { FolderService } from "@bitwarden/common/vault/services/folder/folder.service";
-import { SyncNotifierService } from "@bitwarden/common/vault/services/sync/sync-notifier.service";
-import { SyncService } from "@bitwarden/common/vault/services/sync/sync.service";
 import { TotpService } from "@bitwarden/common/vault/services/totp.service";
 import { VaultSettingsService } from "@bitwarden/common/vault/services/vault-settings/vault-settings.service";
 import { ToastService } from "@bitwarden/components";
@@ -644,8 +643,8 @@ const safeProviders: SafeProvider[] = [
     deps: [ApiServiceAbstraction, FileUploadServiceAbstraction, InternalSendService],
   }),
   safeProvider({
-    provide: SyncServiceAbstraction,
-    useClass: SyncService,
+    provide: SyncService,
+    useClass: DefaultSyncService,
     deps: [
       InternalMasterPasswordServiceAbstraction,
       AccountServiceAbstraction,
@@ -796,7 +795,7 @@ const safeProviders: SafeProvider[] = [
     useClass: devFlagEnabled("noopNotifications") ? NoopNotificationsService : NotificationsService,
     deps: [
       LogService,
-      SyncServiceAbstraction,
+      SyncService,
       AppIdServiceAbstraction,
       ApiServiceAbstraction,
       EnvironmentService,
@@ -942,12 +941,7 @@ const safeProviders: SafeProvider[] = [
     // it depends on SyncService so that new data can be retrieved through the sync
     // rather than updating the OrganizationService directly. Instead OrganizationService
     // subscribes to sync notifications and will update itself based on that.
-    deps: [ApiServiceAbstraction, SyncServiceAbstraction],
-  }),
-  safeProvider({
-    provide: SyncNotifierServiceAbstraction,
-    useClass: SyncNotifierService,
-    deps: [],
+    deps: [ApiServiceAbstraction, SyncService],
   }),
   safeProvider({
     provide: DefaultConfigService,
@@ -1122,7 +1116,7 @@ const safeProviders: SafeProvider[] = [
       EncryptService,
       I18nServiceAbstraction,
       OrganizationApiServiceAbstraction,
-      SyncServiceAbstraction,
+      SyncService,
     ],
   }),
   safeProvider({
diff --git a/libs/common/src/abstractions/api.service.ts b/libs/common/src/abstractions/api.service.ts
index 73e4f74e63f..ed43849d62b 100644
--- a/libs/common/src/abstractions/api.service.ts
+++ b/libs/common/src/abstractions/api.service.ts
@@ -103,6 +103,7 @@ import { EventResponse } from "../models/response/event.response";
 import { ListResponse } from "../models/response/list.response";
 import { ProfileResponse } from "../models/response/profile.response";
 import { UserKeyResponse } from "../models/response/user-key.response";
+import { SyncResponse } from "../platform/sync";
 import { UserId } from "../types/guid";
 import { AttachmentRequest } from "../vault/models/request/attachment.request";
 import { CipherBulkDeleteRequest } from "../vault/models/request/cipher-bulk-delete.request";
@@ -124,7 +125,6 @@ import {
   CollectionResponse,
 } from "../vault/models/response/collection.response";
 import { OptionalCipherResponse } from "../vault/models/response/optional-cipher.response";
-import { SyncResponse } from "../vault/models/response/sync.response";
 
 /**
  * @deprecated The `ApiService` class is deprecated and calls should be extracted into individual
diff --git a/libs/common/src/vault/services/sync/sync.service.ts b/libs/common/src/platform/sync/default-sync.service.ts
similarity index 74%
rename from libs/common/src/vault/services/sync/sync.service.ts
rename to libs/common/src/platform/sync/default-sync.service.ts
index 109ecea0358..5058288487f 100644
--- a/libs/common/src/vault/services/sync/sync.service.ts
+++ b/libs/common/src/platform/sync/default-sync.service.ts
@@ -1,50 +1,53 @@
 import { firstValueFrom } from "rxjs";
 
-import { LogoutReason, UserDecryptionOptionsServiceAbstraction } from "@bitwarden/auth/common";
+import { UserDecryptionOptionsServiceAbstraction } from "../../../../auth/src/common/abstractions";
+import { LogoutReason } from "../../../../auth/src/common/types";
+import { ApiService } from "../../abstractions/api.service";
+import { InternalOrganizationServiceAbstraction } from "../../admin-console/abstractions/organization/organization.service.abstraction";
+import { InternalPolicyService } from "../../admin-console/abstractions/policy/policy.service.abstraction";
+import { ProviderService } from "../../admin-console/abstractions/provider.service";
+import { OrganizationUserType } from "../../admin-console/enums";
+import { OrganizationData } from "../../admin-console/models/data/organization.data";
+import { PolicyData } from "../../admin-console/models/data/policy.data";
+import { ProviderData } from "../../admin-console/models/data/provider.data";
+import { PolicyResponse } from "../../admin-console/models/response/policy.response";
+import { AccountService } from "../../auth/abstractions/account.service";
+import { AuthService } from "../../auth/abstractions/auth.service";
+import { AvatarService } from "../../auth/abstractions/avatar.service";
+import { KeyConnectorService } from "../../auth/abstractions/key-connector.service";
+import { InternalMasterPasswordServiceAbstraction } from "../../auth/abstractions/master-password.service.abstraction";
+import { TokenService } from "../../auth/abstractions/token.service";
+import { ForceSetPasswordReason } from "../../auth/models/domain/force-set-password-reason";
+import { DomainSettingsService } from "../../autofill/services/domain-settings.service";
+import { BillingAccountProfileStateService } from "../../billing/abstractions";
+import { DomainsResponse } from "../../models/response/domains.response";
+import { ProfileResponse } from "../../models/response/profile.response";
+import { SendData } from "../../tools/send/models/data/send.data";
+import { SendResponse } from "../../tools/send/models/response/send.response";
+import { SendApiService } from "../../tools/send/services/send-api.service.abstraction";
+import { InternalSendService } from "../../tools/send/services/send.service.abstraction";
+import { UserId } from "../../types/guid";
+import { CipherService } from "../../vault/abstractions/cipher.service";
+import { CollectionService } from "../../vault/abstractions/collection.service";
+import { FolderApiServiceAbstraction } from "../../vault/abstractions/folder/folder-api.service.abstraction";
+import { InternalFolderService } from "../../vault/abstractions/folder/folder.service.abstraction";
+import { CipherData } from "../../vault/models/data/cipher.data";
+import { CollectionData } from "../../vault/models/data/collection.data";
+import { FolderData } from "../../vault/models/data/folder.data";
+import { CipherResponse } from "../../vault/models/response/cipher.response";
+import { CollectionDetailsResponse } from "../../vault/models/response/collection.response";
+import { FolderResponse } from "../../vault/models/response/folder.response";
+import { CryptoService } from "../abstractions/crypto.service";
+import { LogService } from "../abstractions/log.service";
+import { StateService } from "../abstractions/state.service";
+import { MessageSender } from "../messaging";
+import { sequentialize } from "../misc/sequentialize";
 
-import { ApiService } from "../../../abstractions/api.service";
-import { InternalOrganizationServiceAbstraction } from "../../../admin-console/abstractions/organization/organization.service.abstraction";
-import { InternalPolicyService } from "../../../admin-console/abstractions/policy/policy.service.abstraction";
-import { ProviderService } from "../../../admin-console/abstractions/provider.service";
-import { OrganizationUserType } from "../../../admin-console/enums";
-import { OrganizationData } from "../../../admin-console/models/data/organization.data";
-import { PolicyData } from "../../../admin-console/models/data/policy.data";
-import { ProviderData } from "../../../admin-console/models/data/provider.data";
-import { PolicyResponse } from "../../../admin-console/models/response/policy.response";
-import { AccountService } from "../../../auth/abstractions/account.service";
-import { AuthService } from "../../../auth/abstractions/auth.service";
-import { AvatarService } from "../../../auth/abstractions/avatar.service";
-import { KeyConnectorService } from "../../../auth/abstractions/key-connector.service";
-import { InternalMasterPasswordServiceAbstraction } from "../../../auth/abstractions/master-password.service.abstraction";
-import { TokenService } from "../../../auth/abstractions/token.service";
-import { ForceSetPasswordReason } from "../../../auth/models/domain/force-set-password-reason";
-import { DomainSettingsService } from "../../../autofill/services/domain-settings.service";
-import { BillingAccountProfileStateService } from "../../../billing/abstractions/account/billing-account-profile-state.service";
-import { DomainsResponse } from "../../../models/response/domains.response";
-import { ProfileResponse } from "../../../models/response/profile.response";
-import { CryptoService } from "../../../platform/abstractions/crypto.service";
-import { LogService } from "../../../platform/abstractions/log.service";
-import { StateService } from "../../../platform/abstractions/state.service";
-import { MessageSender } from "../../../platform/messaging";
-import { sequentialize } from "../../../platform/misc/sequentialize";
-import { CoreSyncService } from "../../../platform/sync/core-sync.service";
-import { SendData } from "../../../tools/send/models/data/send.data";
-import { SendResponse } from "../../../tools/send/models/response/send.response";
-import { SendApiService } from "../../../tools/send/services/send-api.service.abstraction";
-import { InternalSendService } from "../../../tools/send/services/send.service.abstraction";
-import { UserId } from "../../../types/guid";
-import { CipherService } from "../../../vault/abstractions/cipher.service";
-import { FolderApiServiceAbstraction } from "../../../vault/abstractions/folder/folder-api.service.abstraction";
-import { InternalFolderService } from "../../../vault/abstractions/folder/folder.service.abstraction";
-import { CipherData } from "../../../vault/models/data/cipher.data";
-import { FolderData } from "../../../vault/models/data/folder.data";
-import { CipherResponse } from "../../../vault/models/response/cipher.response";
-import { FolderResponse } from "../../../vault/models/response/folder.response";
-import { CollectionService } from "../../abstractions/collection.service";
-import { CollectionData } from "../../models/data/collection.data";
-import { CollectionDetailsResponse } from "../../models/response/collection.response";
+import { CoreSyncService } from "./core-sync.service";
+
+export class DefaultSyncService extends CoreSyncService {
+  syncInProgress = false;
 
-export class SyncService extends CoreSyncService {
   constructor(
     private masterPasswordService: InternalMasterPasswordServiceAbstraction,
     accountService: AccountService,
diff --git a/libs/common/src/platform/sync/index.ts b/libs/common/src/platform/sync/index.ts
new file mode 100644
index 00000000000..641d591ff09
--- /dev/null
+++ b/libs/common/src/platform/sync/index.ts
@@ -0,0 +1,2 @@
+export { SyncService } from "./sync.service";
+export { SyncResponse } from "./sync.response";
diff --git a/libs/common/src/platform/sync/internal.ts b/libs/common/src/platform/sync/internal.ts
index f515e90a07e..d74f200e0da 100644
--- a/libs/common/src/platform/sync/internal.ts
+++ b/libs/common/src/platform/sync/internal.ts
@@ -1 +1,2 @@
+export { DefaultSyncService } from "./default-sync.service";
 export { CoreSyncService } from "./core-sync.service";
diff --git a/libs/common/src/vault/types/sync-event-args.ts b/libs/common/src/platform/sync/sync-event-args.ts
similarity index 94%
rename from libs/common/src/vault/types/sync-event-args.ts
rename to libs/common/src/platform/sync/sync-event-args.ts
index 4f7d870a58f..10b7b7c4101 100644
--- a/libs/common/src/vault/types/sync-event-args.ts
+++ b/libs/common/src/platform/sync/sync-event-args.ts
@@ -1,4 +1,4 @@
-import { SyncResponse } from "../models/response/sync.response";
+import { SyncResponse } from "./sync.response";
 
 type SyncStatus = "Started" | "Completed";
 
diff --git a/libs/common/src/vault/models/response/sync.response.ts b/libs/common/src/platform/sync/sync.response.ts
similarity index 69%
rename from libs/common/src/vault/models/response/sync.response.ts
rename to libs/common/src/platform/sync/sync.response.ts
index 42778a8cef9..9e7173d3ebb 100644
--- a/libs/common/src/vault/models/response/sync.response.ts
+++ b/libs/common/src/platform/sync/sync.response.ts
@@ -1,12 +1,11 @@
-import { PolicyResponse } from "../../../admin-console/models/response/policy.response";
-import { BaseResponse } from "../../../models/response/base.response";
-import { DomainsResponse } from "../../../models/response/domains.response";
-import { ProfileResponse } from "../../../models/response/profile.response";
-import { SendResponse } from "../../../tools/send/models/response/send.response";
-
-import { CipherResponse } from "./cipher.response";
-import { CollectionDetailsResponse } from "./collection.response";
-import { FolderResponse } from "./folder.response";
+import { PolicyResponse } from "../../admin-console/models/response/policy.response";
+import { BaseResponse } from "../../models/response/base.response";
+import { DomainsResponse } from "../../models/response/domains.response";
+import { ProfileResponse } from "../../models/response/profile.response";
+import { SendResponse } from "../../tools/send/models/response/send.response";
+import { CipherResponse } from "../../vault/models/response/cipher.response";
+import { CollectionDetailsResponse } from "../../vault/models/response/collection.response";
+import { FolderResponse } from "../../vault/models/response/folder.response";
 
 export class SyncResponse extends BaseResponse {
   profile?: ProfileResponse;
diff --git a/libs/common/src/platform/sync/sync.service.ts b/libs/common/src/platform/sync/sync.service.ts
new file mode 100644
index 00000000000..741657d5353
--- /dev/null
+++ b/libs/common/src/platform/sync/sync.service.ts
@@ -0,0 +1,58 @@
+import {
+  SyncCipherNotification,
+  SyncFolderNotification,
+  SyncSendNotification,
+} from "../../models/response/notification.response";
+
+/**
+ * A class encapsulating sync operations and data.
+ */
+export abstract class SyncService {
+  /**
+   * A boolean indicating if a sync is currently in progress via this instance and this instance only.
+   *
+   * @deprecated Trusting this property is not safe as it only tells if the current instance is currently
+   * doing a sync operation but does not tell if another instance of SyncService is doing a sync operation.
+   */
+  abstract syncInProgress: boolean;
+
+  /**
+   * Gets the date of the last sync for the currently active user.
+   *
+   * @returns The date of the last sync or null if there is no active user or the active user has not synced before.
+   */
+  abstract getLastSync(): Promise<Date>;
+
+  /**
+   * Updates a users last sync date.
+   * @param date The date to be set as the users last sync date.
+   * @param userId The userId of the user to update the last sync date for.
+   */
+  abstract setLastSync(date: Date, userId?: string): Promise<void>;
+
+  /**
+   * Optionally does a full sync operation including going to the server to gather the source
+   * of truth and set that data to state.
+   * @param forceSync A boolean dictating if a sync should be forced. If `true` a sync will happen
+   * as long as the current user is authenticated. If `false` it will only sync if either a sync
+   * has not happened before or the last sync date for the active user is before their account
+   * revision date. Try to always use `false` if possible.
+   *
+   * @param allowThrowOnError A boolean dictating whether or not caught errors should be rethrown.
+   * `true` if they can be rethrown, `false` if they should not be rethrown.
+   */
+  abstract fullSync(forceSync: boolean, allowThrowOnError?: boolean): Promise<boolean>;
+
+  abstract syncUpsertFolder(
+    notification: SyncFolderNotification,
+    isEdit: boolean,
+  ): Promise<boolean>;
+  abstract syncDeleteFolder(notification: SyncFolderNotification): Promise<boolean>;
+  abstract syncUpsertCipher(
+    notification: SyncCipherNotification,
+    isEdit: boolean,
+  ): Promise<boolean>;
+  abstract syncDeleteCipher(notification: SyncFolderNotification): Promise<boolean>;
+  abstract syncUpsertSend(notification: SyncSendNotification, isEdit: boolean): Promise<boolean>;
+  abstract syncDeleteSend(notification: SyncSendNotification): Promise<boolean>;
+}
diff --git a/libs/common/src/services/api.service.ts b/libs/common/src/services/api.service.ts
index bae9a34c10c..61cfcb25837 100644
--- a/libs/common/src/services/api.service.ts
+++ b/libs/common/src/services/api.service.ts
@@ -121,6 +121,7 @@ import { EnvironmentService } from "../platform/abstractions/environment.service
 import { LogService } from "../platform/abstractions/log.service";
 import { PlatformUtilsService } from "../platform/abstractions/platform-utils.service";
 import { Utils } from "../platform/misc/utils";
+import { SyncResponse } from "../platform/sync";
 import { UserId } from "../types/guid";
 import { AttachmentRequest } from "../vault/models/request/attachment.request";
 import { CipherBulkDeleteRequest } from "../vault/models/request/cipher-bulk-delete.request";
@@ -142,7 +143,6 @@ import {
   CollectionResponse,
 } from "../vault/models/response/collection.response";
 import { OptionalCipherResponse } from "../vault/models/response/optional-cipher.response";
-import { SyncResponse } from "../vault/models/response/sync.response";
 
 /**
  * @deprecated The `ApiService` class is deprecated and calls should be extracted into individual
diff --git a/libs/common/src/services/notifications.service.ts b/libs/common/src/services/notifications.service.ts
index cae6fedbb8b..51589f52fae 100644
--- a/libs/common/src/services/notifications.service.ts
+++ b/libs/common/src/services/notifications.service.ts
@@ -21,8 +21,8 @@ import { EnvironmentService } from "../platform/abstractions/environment.service
 import { LogService } from "../platform/abstractions/log.service";
 import { MessagingService } from "../platform/abstractions/messaging.service";
 import { StateService } from "../platform/abstractions/state.service";
+import { SyncService } from "../platform/sync/sync.service";
 import { UserId } from "../types/guid";
-import { SyncService } from "../vault/abstractions/sync/sync.service.abstraction";
 
 export class NotificationsService implements NotificationsServiceAbstraction {
   private signalrConnection: signalR.HubConnection;
diff --git a/libs/common/src/vault/abstractions/sync/sync-notifier.service.abstraction.ts b/libs/common/src/vault/abstractions/sync/sync-notifier.service.abstraction.ts
deleted file mode 100644
index f519850aa66..00000000000
--- a/libs/common/src/vault/abstractions/sync/sync-notifier.service.abstraction.ts
+++ /dev/null
@@ -1,8 +0,0 @@
-import { Observable } from "rxjs";
-
-import { SyncEventArgs } from "../../types/sync-event-args";
-
-export abstract class SyncNotifierService {
-  sync$: Observable<SyncEventArgs>;
-  next: (event: SyncEventArgs) => void;
-}
diff --git a/libs/common/src/vault/abstractions/sync/sync.service.abstraction.ts b/libs/common/src/vault/abstractions/sync/sync.service.abstraction.ts
index cfe73317555..1a1b8e7c758 100644
--- a/libs/common/src/vault/abstractions/sync/sync.service.abstraction.ts
+++ b/libs/common/src/vault/abstractions/sync/sync.service.abstraction.ts
@@ -1,19 +1,2 @@
-import {
-  SyncCipherNotification,
-  SyncFolderNotification,
-  SyncSendNotification,
-} from "../../../models/response/notification.response";
-
-export abstract class SyncService {
-  syncInProgress: boolean;
-
-  getLastSync: () => Promise<Date>;
-  setLastSync: (date: Date, userId?: string) => Promise<any>;
-  fullSync: (forceSync: boolean, allowThrowOnError?: boolean) => Promise<boolean>;
-  syncUpsertFolder: (notification: SyncFolderNotification, isEdit: boolean) => Promise<boolean>;
-  syncDeleteFolder: (notification: SyncFolderNotification) => Promise<boolean>;
-  syncUpsertCipher: (notification: SyncCipherNotification, isEdit: boolean) => Promise<boolean>;
-  syncDeleteCipher: (notification: SyncFolderNotification) => Promise<boolean>;
-  syncUpsertSend: (notification: SyncSendNotification, isEdit: boolean) => Promise<boolean>;
-  syncDeleteSend: (notification: SyncSendNotification) => Promise<boolean>;
-}
+// TEMP: Re-export of original SyncService location to allow for team specific PR's
+export { SyncService } from "../../../platform/sync";
diff --git a/libs/common/src/vault/services/sync/sync-notifier.service.ts b/libs/common/src/vault/services/sync/sync-notifier.service.ts
deleted file mode 100644
index 870ccfb849c..00000000000
--- a/libs/common/src/vault/services/sync/sync-notifier.service.ts
+++ /dev/null
@@ -1,18 +0,0 @@
-import { Subject } from "rxjs";
-
-import { SyncNotifierService as SyncNotifierServiceAbstraction } from "../../abstractions/sync/sync-notifier.service.abstraction";
-import { SyncEventArgs } from "../../types/sync-event-args";
-
-/**
- * This class should most likely have 0 dependencies because it will hopefully
- * be rolled into SyncService once upon a time.
- */
-export class SyncNotifierService implements SyncNotifierServiceAbstraction {
-  private _sync = new Subject<SyncEventArgs>();
-
-  sync$ = this._sync.asObservable();
-
-  next(event: SyncEventArgs): void {
-    this._sync.next(event);
-  }
-}

From 1cfbcf4ee09b0285767dc5607fb1df99eab88c33 Mon Sep 17 00:00:00 2001
From: Shane Melton <smelton@bitwarden.com>
Date: Wed, 5 Jun 2024 08:10:36 -0700
Subject: [PATCH 100/138] [PM-8334] Sort ciphers after autofill (#9511)

* [PM-8334] Add localData$ to CipherService and watch it for updates

* Fix leftover tw-fixed class

* [PM-8334] Fix tests
---
 .../vault-popup-items.service.spec.ts         | 32 ++++++++++++++++++-
 .../services/vault-popup-items.service.ts     |  7 ++--
 .../src/vault/abstractions/cipher.service.ts  |  3 ++
 3 files changed, 39 insertions(+), 3 deletions(-)

diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
index 6a7cbbfc1a9..b7091eb87bf 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.spec.ts
@@ -6,6 +6,7 @@ import { SearchService } from "@bitwarden/common/abstractions/search.service";
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
 import { ProductType } from "@bitwarden/common/enums";
+import { ObservableTracker } from "@bitwarden/common/spec";
 import { CipherId } from "@bitwarden/common/types/guid";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CollectionService } from "@bitwarden/common/vault/abstractions/collection.service";
@@ -50,7 +51,8 @@ describe("VaultPopupItemsService", () => {
     cipherList[3].favorite = true;
 
     cipherServiceMock.getAllDecrypted.mockResolvedValue(cipherList);
-    cipherServiceMock.ciphers$ = new BehaviorSubject(null).asObservable();
+    cipherServiceMock.ciphers$ = new BehaviorSubject(null);
+    cipherServiceMock.localData$ = new BehaviorSubject(null);
     searchService.searchCiphers.mockImplementation(async (_, __, ciphers) => ciphers);
     cipherServiceMock.filterCiphersForUrl.mockImplementation(async (ciphers) =>
       ciphers.filter((c) => ["0", "1"].includes(c.id)),
@@ -123,6 +125,34 @@ describe("VaultPopupItemsService", () => {
     });
   });
 
+  it("should update cipher list when cipherService.ciphers$ emits", async () => {
+    const tracker = new ObservableTracker(service.autoFillCiphers$);
+
+    await tracker.expectEmission();
+
+    (cipherServiceMock.ciphers$ as BehaviorSubject<any>).next(null);
+
+    await tracker.expectEmission();
+
+    // Should only emit twice
+    expect(tracker.emissions.length).toBe(2);
+    await expect(tracker.pauseUntilReceived(3)).rejects.toThrow("Timeout exceeded");
+  });
+
+  it("should update cipher list when cipherService.localData$ emits", async () => {
+    const tracker = new ObservableTracker(service.autoFillCiphers$);
+
+    await tracker.expectEmission();
+
+    (cipherServiceMock.localData$ as BehaviorSubject<any>).next(null);
+
+    await tracker.expectEmission();
+
+    // Should only emit twice
+    expect(tracker.emissions.length).toBe(2);
+    await expect(tracker.pauseUntilReceived(3)).rejects.toThrow("Timeout exceeded");
+  });
+
   describe("autoFillCiphers$", () => {
     it("should return empty array if there is no current tab", (done) => {
       jest.spyOn(BrowserApi, "getTabFromCurrentWindow").mockResolvedValue(null);
diff --git a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
index ab98722d060..189ce2c09f9 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-items.service.ts
@@ -5,6 +5,7 @@ import {
   distinctUntilKeyChanged,
   from,
   map,
+  merge,
   Observable,
   of,
   shareReplay,
@@ -78,10 +79,12 @@ export class VaultPopupItemsService {
    * Observable that contains the list of all decrypted ciphers.
    * @private
    */
-  private _cipherList$: Observable<PopupCipherView[]> = this.cipherService.ciphers$.pipe(
+  private _cipherList$: Observable<PopupCipherView[]> = merge(
+    this.cipherService.ciphers$,
+    this.cipherService.localData$,
+  ).pipe(
     runInsideAngular(inject(NgZone)), // Workaround to ensure cipher$ state provider emissions are run inside Angular
     switchMap(() => Utils.asyncToObservable(() => this.cipherService.getAllDecrypted())),
-    map((ciphers) => Object.values(ciphers)),
     switchMap((ciphers) =>
       combineLatest([
         this.organizationService.organizations$,
diff --git a/libs/common/src/vault/abstractions/cipher.service.ts b/libs/common/src/vault/abstractions/cipher.service.ts
index 34bc8193553..2c0676f6442 100644
--- a/libs/common/src/vault/abstractions/cipher.service.ts
+++ b/libs/common/src/vault/abstractions/cipher.service.ts
@@ -1,5 +1,7 @@
 import { Observable } from "rxjs";
 
+import { LocalData } from "@bitwarden/common/vault/models/data/local.data";
+
 import { UriMatchStrategySetting } from "../../models/domain/domain-service";
 import { SymmetricCryptoKey } from "../../platform/models/domain/symmetric-crypto-key";
 import { CipherId, CollectionId, OrganizationId } from "../../types/guid";
@@ -14,6 +16,7 @@ import { AddEditCipherInfo } from "../types/add-edit-cipher-info";
 export abstract class CipherService {
   cipherViews$: Observable<Record<CipherId, CipherView>>;
   ciphers$: Observable<Record<CipherId, CipherData>>;
+  localData$: Observable<Record<CipherId, LocalData>>;
   /**
    *  An observable monitoring the add/edit cipher info saved to memory.
    */

From 419c107f87a9b1d57cfc27f643913b9b60330c27 Mon Sep 17 00:00:00 2001
From: Will Martin <contact@willmartian.com>
Date: Wed, 5 Jun 2024 11:39:40 -0400
Subject: [PATCH 101/138] [CL-243] honor initial disabled state in
 `bitFormButton` (#9510)

* honor initial disabled state

* update story
---
 libs/components/src/async-actions/form-button.directive.ts | 4 ++--
 libs/components/src/async-actions/in-forms.stories.ts      | 1 +
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/libs/components/src/async-actions/form-button.directive.ts b/libs/components/src/async-actions/form-button.directive.ts
index 5fe40423644..4e0facf17b2 100644
--- a/libs/components/src/async-actions/form-button.directive.ts
+++ b/libs/components/src/async-actions/form-button.directive.ts
@@ -40,13 +40,13 @@ export class BitFormButtonDirective implements OnDestroy {
         if (this.type === "submit") {
           buttonComponent.loading = loading;
         } else {
-          buttonComponent.disabled = loading;
+          buttonComponent.disabled = this.disabled || loading;
         }
       });
 
       submitDirective.disabled$.pipe(takeUntil(this.destroy$)).subscribe((disabled) => {
         if (this.disabled !== false) {
-          buttonComponent.disabled = disabled;
+          buttonComponent.disabled = this.disabled || disabled;
         }
       });
     }
diff --git a/libs/components/src/async-actions/in-forms.stories.ts b/libs/components/src/async-actions/in-forms.stories.ts
index ff060c6a7de..ec6005dd607 100644
--- a/libs/components/src/async-actions/in-forms.stories.ts
+++ b/libs/components/src/async-actions/in-forms.stories.ts
@@ -33,6 +33,7 @@ const template = `
     <button class="tw-mr-2" type="submit" buttonType="primary" bitButton bitFormButton>Submit</button>
     <button class="tw-mr-2" type="button" buttonType="secondary" bitButton bitFormButton>Cancel</button>
     <button class="tw-mr-2" type="button" buttonType="danger" bitButton bitFormButton [bitAction]="delete">Delete</button>
+    <button class="tw-mr-2" type="button" buttonType="secondary" bitButton bitFormButton [disabled]="true">Disabled</button>
     <button class="tw-mr-2" type="button" buttonType="secondary" bitIconButton="bwi-star" bitFormButton [bitAction]="delete">Delete</button>
   </form>`;
 

From 24fb3f71f1689d0df46bbc9fad756b6427d32f83 Mon Sep 17 00:00:00 2001
From: vinith-kovan <156108204+vinith-kovan@users.noreply.github.com>
Date: Wed, 5 Jun 2024 22:29:51 +0530
Subject: [PATCH 102/138] [PM-2057] update two factor email dialog (#8974)

* migrating two factor email component

* two factor email component migration

* two factor email component migration

* two factor email component migration
---
 .../settings/two-factor-email.component.html  | 150 ++++++------------
 .../settings/two-factor-email.component.ts    |  77 ++++++---
 .../settings/two-factor-setup.component.ts    |  12 +-
 3 files changed, 118 insertions(+), 121 deletions(-)

diff --git a/apps/web/src/app/auth/settings/two-factor-email.component.html b/apps/web/src/app/auth/settings/two-factor-email.component.html
index 93a6b0bb18a..cf1dba98842 100644
--- a/apps/web/src/app/auth/settings/two-factor-email.component.html
+++ b/apps/web/src/app/auth/settings/two-factor-email.component.html
@@ -1,101 +1,53 @@
-<div class="modal fade" role="dialog" aria-modal="true" aria-labelledby="2faEmailTitle">
-  <div class="modal-dialog" role="document">
-    <div class="modal-content">
-      <div class="modal-header">
-        <h1 class="modal-title" id="2faEmailTitle">
-          {{ "twoStepLogin" | i18n }}
-          <small>{{ "emailTitle" | i18n }}</small>
-        </h1>
-        <button
-          type="button"
-          class="close"
-          data-dismiss="modal"
-          appA11yTitle="{{ 'close' | i18n }}"
-        >
-          <span aria-hidden="true">&times;</span>
-        </button>
-      </div>
-      <form
-        #form
-        (ngSubmit)="submit()"
-        [appApiAction]="formPromise"
-        ngNativeValidate
-        *ngIf="authed"
-      >
-        <div class="modal-body">
-          <ng-container *ngIf="enabled">
-            <app-callout type="success" title="{{ 'enabled' | i18n }}" icon="bwi bwi-check-circle">
-              {{ "twoStepLoginProviderEnabled" | i18n }}
-            </app-callout>
-            <strong>{{ "email" | i18n }}:</strong> {{ email }}
-          </ng-container>
-          <ng-container *ngIf="!enabled">
-            <p class="d-flex">
-              <span class="mr-3">{{ "twoFactorEmailDesc" | i18n }}</span>
-              <img class="float-right ml-auto mfaType1" alt="Email logo" />
-            </p>
-            <div class="form-group">
-              <label for="email">1. {{ "twoFactorEmailEnterEmail" | i18n }}</label>
-              <input
-                id="email"
-                type="text"
-                name="Email"
-                class="form-control"
-                [(ngModel)]="email"
-                required
-                inputmode="email"
-                appInputVerbatim="false"
-              />
-            </div>
-            <div class="mb-3 d-flex">
-              <button
-                #sendBtn
-                type="button"
-                class="btn btn-outline-primary btn-sm btn-submit align-self-start"
-                (click)="sendEmail()"
-                [appApiAction]="emailPromise"
-                [disabled]="$any(sendBtn).loading"
-              >
-                <i
-                  class="bwi bwi-spinner bwi-spin"
-                  title="{{ 'loading' | i18n }}"
-                  aria-hidden="true"
-                ></i>
-                <span>{{ "sendEmail" | i18n }}</span>
-              </button>
-              <span class="text-success ml-3" *ngIf="sentEmail">
-                {{ "verificationCodeEmailSent" | i18n: sentEmail }}
-              </span>
-            </div>
-            <div class="form-group">
-              <label for="token">2. {{ "twoFactorEmailEnterCode" | i18n }}</label>
-              <input
-                id="token"
-                type="text"
-                name="Token"
-                class="form-control"
-                [(ngModel)]="token"
-                required
-                appInputVerbatim
-              />
-            </div>
-          </ng-container>
-        </div>
-        <div class="modal-footer">
-          <button type="submit" class="btn btn-primary btn-submit" [disabled]="form.loading">
-            <i
-              class="bwi bwi-spinner bwi-spin"
-              title="{{ 'loading' | i18n }}"
-              aria-hidden="true"
-            ></i>
-            <span *ngIf="!enabled">{{ "enable" | i18n }}</span>
-            <span *ngIf="enabled">{{ "disable" | i18n }}</span>
-          </button>
-          <button type="button" class="btn btn-outline-secondary" data-dismiss="modal">
-            {{ "close" | i18n }}
+<form [formGroup]="formGroup" [bitSubmit]="submit" *ngIf="authed">
+  <bit-dialog>
+    <span bitDialogTitle>
+      {{ "twoStepLogin" | i18n }}
+      <span bitTypography="body1">{{ "emailTitle" | i18n }}</span>
+    </span>
+    <ng-container bitDialogContent>
+      <ng-container *ngIf="enabled">
+        <app-callout type="success" title="{{ 'enabled' | i18n }}" icon="bwi bwi-check-circle">
+          {{ "twoStepLoginProviderEnabled" | i18n }}
+        </app-callout>
+        <strong>{{ "email" | i18n }}:</strong> {{ email }}
+      </ng-container>
+      <ng-container *ngIf="!enabled">
+        <p class="tw-flex">
+          <span class="tw-mr-3">{{ "twoFactorEmailDesc" | i18n }}</span>
+          <img class="tw-float-right tw-ml-auto mfaType1" alt="Email logo" />
+        </p>
+        <bit-form-field>
+          <bit-label>1. {{ "twoFactorEmailEnterEmail" | i18n }}</bit-label>
+          <input
+            bitInput
+            type="text"
+            formControlName="email"
+            inputmode="email"
+            appInputVerbatim="false"
+          />
+        </bit-form-field>
+        <div class="tw-mb-3 tw-flex">
+          <button bitButton type="button" buttonType="primary" [bitAction]="sendEmail">
+            {{ "sendEmail" | i18n }}
           </button>
+          <span class="tw-text-success tw-ml-3" *ngIf="sentEmail">
+            {{ "verificationCodeEmailSent" | i18n: sentEmail }}
+          </span>
         </div>
-      </form>
-    </div>
-  </div>
-</div>
+        <bit-form-field>
+          <bit-label>2. {{ "twoFactorEmailEnterCode" | i18n }}</bit-label>
+          <input bitInput type="text" formControlName="token" appInputVerbatim />
+        </bit-form-field>
+      </ng-container>
+    </ng-container>
+    <ng-container bitDialogFooter>
+      <button bitButton bitFormButton type="submit" buttonType="primary">
+        <span *ngIf="!enabled">{{ "enable" | i18n }}</span>
+        <span *ngIf="enabled">{{ "disable" | i18n }}</span>
+      </button>
+      <button bitButton bitFormButton type="button" buttonType="secondary" bitDialogClose>
+        {{ "close" | i18n }}
+      </button>
+    </ng-container>
+  </bit-dialog>
+</form>
diff --git a/apps/web/src/app/auth/settings/two-factor-email.component.ts b/apps/web/src/app/auth/settings/two-factor-email.component.ts
index 7a2e6de5801..8a5c0292230 100644
--- a/apps/web/src/app/auth/settings/two-factor-email.component.ts
+++ b/apps/web/src/app/auth/settings/two-factor-email.component.ts
@@ -1,4 +1,6 @@
-import { Component } from "@angular/core";
+import { DIALOG_DATA, DialogConfig, DialogRef } from "@angular/cdk/dialog";
+import { Component, EventEmitter, Inject, Output } from "@angular/core";
+import { FormBuilder, Validators } from "@angular/forms";
 import { firstValueFrom, map } from "rxjs";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
@@ -19,18 +21,22 @@ import { TwoFactorBaseComponent } from "./two-factor-base.component";
 @Component({
   selector: "app-two-factor-email",
   templateUrl: "two-factor-email.component.html",
+  outputs: ["onUpdated"],
 })
 export class TwoFactorEmailComponent extends TwoFactorBaseComponent {
+  @Output() onChangeStatus: EventEmitter<boolean> = new EventEmitter();
   type = TwoFactorProviderType.Email;
-  email: string;
-  token: string;
   sentEmail: string;
   formPromise: Promise<TwoFactorEmailResponse>;
   emailPromise: Promise<unknown>;
-
   override componentName = "app-two-factor-email";
+  formGroup = this.formBuilder.group({
+    token: [null],
+    email: ["", [Validators.email, Validators.required]],
+  });
 
   constructor(
+    @Inject(DIALOG_DATA) protected data: AuthResponse<TwoFactorEmailResponse>,
     apiService: ApiService,
     i18nService: I18nService,
     platformUtilsService: PlatformUtilsService,
@@ -38,6 +44,8 @@ export class TwoFactorEmailComponent extends TwoFactorBaseComponent {
     userVerificationService: UserVerificationService,
     private accountService: AccountService,
     dialogService: DialogService,
+    private formBuilder: FormBuilder,
+    private dialogRef: DialogRef,
   ) {
     super(
       apiService,
@@ -48,31 +56,49 @@ export class TwoFactorEmailComponent extends TwoFactorBaseComponent {
       dialogService,
     );
   }
+  get token() {
+    return this.formGroup.get("token").value;
+  }
+  set token(value: string) {
+    this.formGroup.get("token").setValue(value);
+  }
+  get email() {
+    return this.formGroup.get("email").value;
+  }
+  set email(value: string) {
+    this.formGroup.get("email").setValue(value);
+  }
+
+  async ngOnInit() {
+    await this.auth(this.data);
+  }
 
   auth(authResponse: AuthResponse<TwoFactorEmailResponse>) {
     super.auth(authResponse);
     return this.processResponse(authResponse.response);
   }
 
-  submit() {
+  submit = async () => {
     if (this.enabled) {
-      return super.disable(this.formPromise);
+      await this.disableEmail();
+      this.onChangeStatus.emit(false);
     } else {
-      return this.enable();
+      await this.enable();
+      this.onChangeStatus.emit(true);
     }
+  };
+
+  private disableEmail() {
+    return super.disable(this.formPromise);
   }
 
-  async sendEmail() {
-    try {
-      const request = await this.buildRequestModel(TwoFactorEmailRequest);
-      request.email = this.email;
-      this.emailPromise = this.apiService.postTwoFactorEmailSetup(request);
-      await this.emailPromise;
-      this.sentEmail = this.email;
-    } catch (e) {
-      this.logService.error(e);
-    }
-  }
+  sendEmail = async () => {
+    const request = await this.buildRequestModel(TwoFactorEmailRequest);
+    request.email = this.email;
+    this.emailPromise = this.apiService.postTwoFactorEmailSetup(request);
+    await this.emailPromise;
+    this.sentEmail = this.email;
+  };
 
   protected async enable() {
     const request = await this.buildRequestModel(UpdateTwoFactorEmailRequest);
@@ -86,6 +112,10 @@ export class TwoFactorEmailComponent extends TwoFactorBaseComponent {
     });
   }
 
+  onClose = () => {
+    this.dialogRef.close(this.enabled);
+  };
+
   private async processResponse(response: TwoFactorEmailResponse) {
     this.token = null;
     this.email = response.email;
@@ -96,4 +126,15 @@ export class TwoFactorEmailComponent extends TwoFactorBaseComponent {
       );
     }
   }
+  /**
+   * Strongly typed helper to open a TwoFactorEmailComponentComponent
+   * @param dialogService Instance of the dialog service that will be used to open the dialog
+   * @param config Configuration for the dialog
+   */
+  static open(
+    dialogService: DialogService,
+    config: DialogConfig<AuthResponse<TwoFactorEmailResponse>>,
+  ) {
+    return dialogService.open<boolean>(TwoFactorEmailComponent, config);
+  }
 }
diff --git a/apps/web/src/app/auth/settings/two-factor-setup.component.ts b/apps/web/src/app/auth/settings/two-factor-setup.component.ts
index dc7871baf94..dd4c69aa277 100644
--- a/apps/web/src/app/auth/settings/two-factor-setup.component.ts
+++ b/apps/web/src/app/auth/settings/two-factor-setup.component.ts
@@ -1,3 +1,4 @@
+import { DialogRef } from "@angular/cdk/dialog";
 import { Component, OnDestroy, OnInit, Type, ViewChild, ViewContainerRef } from "@angular/core";
 import { firstValueFrom, lastValueFrom, Observable, Subject, takeUntil } from "rxjs";
 
@@ -178,11 +179,14 @@ export class TwoFactorSetupComponent implements OnInit, OnDestroy {
         if (!result) {
           return;
         }
-        const emailComp = await this.openModal(this.emailModalRef, TwoFactorEmailComponent);
-        await emailComp.auth(result);
-        emailComp.onUpdated.pipe(takeUntil(this.destroy$)).subscribe((enabled: boolean) => {
-          this.updateStatus(enabled, TwoFactorProviderType.Email);
+        const authComp: DialogRef<boolean, any> = TwoFactorEmailComponent.open(this.dialogService, {
+          data: result,
         });
+        authComp.componentInstance.onChangeStatus
+          .pipe(takeUntil(this.destroy$))
+          .subscribe((enabled: boolean) => {
+            this.updateStatus(enabled, TwoFactorProviderType.Email);
+          });
         break;
       }
       case TwoFactorProviderType.WebAuthn: {

From 1cec69e3776b4bb47f9adbe5c0546399fa4dbadb Mon Sep 17 00:00:00 2001
From: vinith-kovan <156108204+vinith-kovan@users.noreply.github.com>
Date: Wed, 5 Jun 2024 22:44:33 +0530
Subject: [PATCH 103/138] [PM 2164] api-key component migration (#8562)

* api-key component migration

* api-key component migration

* api-key component migration

* api-key component migration
---
 .../settings/account.component.ts             |  44 +++----
 .../settings/security/api-key.component.html  | 114 +++++++-----------
 .../settings/security/api-key.component.ts    |  60 +++++----
 .../security/security-keys.component.ts       |  46 +++----
 4 files changed, 126 insertions(+), 138 deletions(-)

diff --git a/apps/web/src/app/admin-console/organizations/settings/account.component.ts b/apps/web/src/app/admin-console/organizations/settings/account.component.ts
index 41cf9b9e8f5..5e083de9cc0 100644
--- a/apps/web/src/app/admin-console/organizations/settings/account.component.ts
+++ b/apps/web/src/app/admin-console/organizations/settings/account.component.ts
@@ -216,31 +216,33 @@ export class AccountComponent {
   };
 
   async viewApiKey() {
-    await this.modalService.openViewRef(ApiKeyComponent, this.apiKeyModalRef, (comp) => {
-      comp.keyType = "organization";
-      comp.entityId = this.organizationId;
-      comp.postKey = this.organizationApiService.getOrCreateApiKey.bind(
-        this.organizationApiService,
-      );
-      comp.scope = "api.organization";
-      comp.grantType = "client_credentials";
-      comp.apiKeyTitle = "apiKey";
-      comp.apiKeyWarning = "apiKeyWarning";
-      comp.apiKeyDescription = "apiKeyDesc";
+    await ApiKeyComponent.open(this.dialogService, {
+      data: {
+        keyType: "organization",
+        entityId: this.organizationId,
+        postKey: this.organizationApiService.getOrCreateApiKey.bind(this.organizationApiService),
+        scope: "api.organization",
+        grantType: "client_credentials",
+        apiKeyTitle: "apiKey",
+        apiKeyWarning: "apiKeyWarning",
+        apiKeyDescription: "apiKeyDesc",
+      },
     });
   }
 
   async rotateApiKey() {
-    await this.modalService.openViewRef(ApiKeyComponent, this.rotateApiKeyModalRef, (comp) => {
-      comp.keyType = "organization";
-      comp.isRotation = true;
-      comp.entityId = this.organizationId;
-      comp.postKey = this.organizationApiService.rotateApiKey.bind(this.organizationApiService);
-      comp.scope = "api.organization";
-      comp.grantType = "client_credentials";
-      comp.apiKeyTitle = "apiKey";
-      comp.apiKeyWarning = "apiKeyWarning";
-      comp.apiKeyDescription = "apiKeyRotateDesc";
+    await ApiKeyComponent.open(this.dialogService, {
+      data: {
+        keyType: "organization",
+        isRotation: true,
+        entityId: this.organizationId,
+        postKey: this.organizationApiService.rotateApiKey.bind(this.organizationApiService),
+        scope: "api.organization",
+        grantType: "client_credentials",
+        apiKeyTitle: "apiKey",
+        apiKeyWarning: "apiKeyWarning",
+        apiKeyDescription: "apiKeyRotateDesc",
+      },
     });
   }
 }
diff --git a/apps/web/src/app/auth/settings/security/api-key.component.html b/apps/web/src/app/auth/settings/security/api-key.component.html
index 1402a993881..118b17643cc 100644
--- a/apps/web/src/app/auth/settings/security/api-key.component.html
+++ b/apps/web/src/app/auth/settings/security/api-key.component.html
@@ -1,72 +1,42 @@
-<div class="modal fade" role="dialog" aria-modal="true" aria-labelledby="apiKeyTitle">
-  <div class="modal-dialog modal-dialog-scrollable" role="document">
-    <form
-      class="modal-content"
-      #form
-      (ngSubmit)="submit()"
-      [appApiAction]="formPromise"
-      ngNativeValidate
-    >
-      <div class="modal-header">
-        <h1 class="modal-title" id="apiKeyTitle">{{ apiKeyTitle | i18n }}</h1>
-        <button
-          type="button"
-          class="close"
-          data-dismiss="modal"
-          appA11yTitle="{{ 'close' | i18n }}"
-        >
-          <span aria-hidden="true">&times;</span>
-        </button>
-      </div>
-      <div class="modal-body">
-        <p>{{ apiKeyDescription | i18n }}</p>
-        <app-user-verification
-          [(ngModel)]="masterPassword"
-          ngDefaultControl
-          name="secret"
-          *ngIf="!clientSecret"
-        >
-        </app-user-verification>
-
-        <app-callout type="warning" *ngIf="clientSecret">{{ apiKeyWarning | i18n }}</app-callout>
-        <app-callout
-          type="info"
-          title="{{ 'oauth2ClientCredentials' | i18n }}"
-          icon="bwi bwi-key"
-          *ngIf="clientSecret"
-        >
-          <p class="mb-1">
-            <strong>client_id:</strong><br />
-            <code>{{ clientId }}</code>
-          </p>
-          <p class="mb-1">
-            <strong>client_secret:</strong><br />
-            <code>{{ clientSecret }}</code>
-          </p>
-          <p class="mb-1">
-            <strong>scope:</strong><br />
-            <code>{{ scope }}</code>
-          </p>
-          <p class="mb-0">
-            <strong>grant_type:</strong><br />
-            <code>{{ grantType }}</code>
-          </p>
-        </app-callout>
-      </div>
-      <div class="modal-footer">
-        <button
-          type="submit"
-          class="btn btn-primary btn-submit"
-          [disabled]="form.loading"
-          *ngIf="!clientSecret"
-        >
-          <i class="bwi bwi-spinner bwi-spin" title="{{ 'loading' | i18n }}" aria-hidden="true"></i>
-          <span>{{ (isRotation ? "rotateApiKey" : "viewApiKey") | i18n }}</span>
-        </button>
-        <button type="button" class="btn btn-outline-secondary" data-dismiss="modal">
-          {{ "close" | i18n }}
-        </button>
-      </div>
-    </form>
-  </div>
-</div>
+<form [formGroup]="formGroup" [bitSubmit]="submit">
+  <bit-dialog>
+    <span bitDialogTitle>{{ data.apiKeyTitle | i18n }}</span>
+    <div bitDialogContent>
+      <p bitTypography="body1">{{ data.apiKeyDescription | i18n }}</p>
+      <app-user-verification-form-input formControlName="masterPassword" *ngIf="!clientSecret">
+      </app-user-verification-form-input>
+      <app-callout type="warning" *ngIf="clientSecret">{{ data.apiKeyWarning | i18n }}</app-callout>
+      <app-callout
+        type="info"
+        title="{{ 'oauth2ClientCredentials' | i18n }}"
+        icon="bwi bwi-key"
+        *ngIf="clientSecret"
+      >
+        <p bitTypography="body1" class="tw-mb-1">
+          <strong>client_id:</strong><br />
+          <code>{{ clientId }}</code>
+        </p>
+        <p bitTypography="body1" class="tw-mb-1">
+          <strong>client_secret:</strong><br />
+          <code>{{ clientSecret }}</code>
+        </p>
+        <p bitTypography="body1" class="tw-mb-1">
+          <strong>scope:</strong><br />
+          <code>{{ data.scope }}</code>
+        </p>
+        <p bitTypography="body1" class="tw-mb-0">
+          <strong>grant_type:</strong><br />
+          <code>{{ data.grantType }}</code>
+        </p>
+      </app-callout>
+    </div>
+    <div bitDialogFooter>
+      <button type="submit" buttonType="primary" *ngIf="!clientSecret" bitButton bitFormButton>
+        <span>{{ (data.isRotation ? "rotateApiKey" : "viewApiKey") | i18n }}</span>
+      </button>
+      <button type="button" bitButton bitFormButton bitDialogClose>
+        {{ "close" | i18n }}
+      </button>
+    </div>
+  </bit-dialog>
+</form>
diff --git a/apps/web/src/app/auth/settings/security/api-key.component.ts b/apps/web/src/app/auth/settings/security/api-key.component.ts
index 9d005562725..d171bc35617 100644
--- a/apps/web/src/app/auth/settings/security/api-key.component.ts
+++ b/apps/web/src/app/auth/settings/security/api-key.component.ts
@@ -1,46 +1,58 @@
-import { Component } from "@angular/core";
+import { DIALOG_DATA, DialogConfig } from "@angular/cdk/dialog";
+import { Component, Inject } from "@angular/core";
+import { FormBuilder, Validators } from "@angular/forms";
 
 import { UserVerificationService } from "@bitwarden/common/auth/abstractions/user-verification/user-verification.service.abstraction";
 import { SecretVerificationRequest } from "@bitwarden/common/auth/models/request/secret-verification.request";
 import { ApiKeyResponse } from "@bitwarden/common/auth/models/response/api-key.response";
 import { Verification } from "@bitwarden/common/auth/types/verification";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
+import { DialogService } from "@bitwarden/components";
 
-@Component({
-  selector: "app-api-key",
-  templateUrl: "api-key.component.html",
-})
-export class ApiKeyComponent {
+export type ApiKeyDialogData = {
   keyType: string;
-  isRotation: boolean;
-  postKey: (entityId: string, request: SecretVerificationRequest) => Promise<ApiKeyResponse>;
+  isRotation?: boolean;
   entityId: string;
+  postKey: (entityId: string, request: SecretVerificationRequest) => Promise<ApiKeyResponse>;
   scope: string;
   grantType: string;
   apiKeyTitle: string;
   apiKeyWarning: string;
   apiKeyDescription: string;
-
-  masterPassword: Verification;
-  formPromise: Promise<ApiKeyResponse>;
+};
+@Component({
+  selector: "app-api-key",
+  templateUrl: "api-key.component.html",
+})
+export class ApiKeyComponent {
   clientId: string;
   clientSecret: string;
 
+  formGroup = this.formBuilder.group({
+    masterPassword: [null as Verification, [Validators.required]],
+  });
   constructor(
+    @Inject(DIALOG_DATA) protected data: ApiKeyDialogData,
+    private formBuilder: FormBuilder,
     private userVerificationService: UserVerificationService,
-    private logService: LogService,
   ) {}
 
-  async submit() {
-    try {
-      this.formPromise = this.userVerificationService
-        .buildRequest(this.masterPassword)
-        .then((request) => this.postKey(this.entityId, request));
-      const response = await this.formPromise;
-      this.clientSecret = response.apiKey;
-      this.clientId = `${this.keyType}.${this.entityId}`;
-    } catch (e) {
-      this.logService.error(e);
+  submit = async () => {
+    if (this.formGroup.invalid) {
+      this.formGroup.markAllAsTouched();
+      return;
     }
-  }
+    const response = await this.userVerificationService
+      .buildRequest(this.formGroup.value.masterPassword)
+      .then((request) => this.data.postKey(this.data.entityId, request));
+    this.clientSecret = response.apiKey;
+    this.clientId = `${this.data.keyType}.${this.data.entityId}`;
+  };
+  /**
+   * Strongly typed helper to open a ApiKeyComponent
+   * @param dialogService Instance of the dialog service that will be used to open the dialog
+   * @param config Configuration for the dialog
+   */
+  static open = (dialogService: DialogService, config: DialogConfig<ApiKeyDialogData>) => {
+    return dialogService.open(ApiKeyComponent, config);
+  };
 }
diff --git a/apps/web/src/app/auth/settings/security/security-keys.component.ts b/apps/web/src/app/auth/settings/security/security-keys.component.ts
index e29417fad74..8de629dc83e 100644
--- a/apps/web/src/app/auth/settings/security/security-keys.component.ts
+++ b/apps/web/src/app/auth/settings/security/security-keys.component.ts
@@ -1,9 +1,9 @@
 import { Component, OnInit, ViewChild, ViewContainerRef } from "@angular/core";
 
-import { ModalService } from "@bitwarden/angular/services/modal.service";
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { UserVerificationService } from "@bitwarden/common/auth/abstractions/user-verification/user-verification.service.abstraction";
 import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
+import { DialogService } from "@bitwarden/components";
 
 import { ApiKeyComponent } from "./api-key.component";
 
@@ -22,8 +22,8 @@ export class SecurityKeysComponent implements OnInit {
   constructor(
     private userVerificationService: UserVerificationService,
     private stateService: StateService,
-    private modalService: ModalService,
     private apiService: ApiService,
+    private dialogService: DialogService,
   ) {}
 
   async ngOnInit() {
@@ -32,30 +32,34 @@ export class SecurityKeysComponent implements OnInit {
 
   async viewUserApiKey() {
     const entityId = await this.stateService.getUserId();
-    await this.modalService.openViewRef(ApiKeyComponent, this.viewUserApiKeyModalRef, (comp) => {
-      comp.keyType = "user";
-      comp.entityId = entityId;
-      comp.postKey = this.apiService.postUserApiKey.bind(this.apiService);
-      comp.scope = "api";
-      comp.grantType = "client_credentials";
-      comp.apiKeyTitle = "apiKey";
-      comp.apiKeyWarning = "userApiKeyWarning";
-      comp.apiKeyDescription = "userApiKeyDesc";
+    await ApiKeyComponent.open(this.dialogService, {
+      data: {
+        keyType: "user",
+        entityId: entityId,
+        postKey: this.apiService.postUserApiKey.bind(this.apiService),
+        scope: "api",
+        grantType: "client_credentials",
+        apiKeyTitle: "apiKey",
+        apiKeyWarning: "userApiKeyWarning",
+        apiKeyDescription: "userApiKeyDesc",
+      },
     });
   }
 
   async rotateUserApiKey() {
     const entityId = await this.stateService.getUserId();
-    await this.modalService.openViewRef(ApiKeyComponent, this.rotateUserApiKeyModalRef, (comp) => {
-      comp.keyType = "user";
-      comp.isRotation = true;
-      comp.entityId = entityId;
-      comp.postKey = this.apiService.postUserRotateApiKey.bind(this.apiService);
-      comp.scope = "api";
-      comp.grantType = "client_credentials";
-      comp.apiKeyTitle = "apiKey";
-      comp.apiKeyWarning = "userApiKeyWarning";
-      comp.apiKeyDescription = "apiKeyRotateDesc";
+    await ApiKeyComponent.open(this.dialogService, {
+      data: {
+        keyType: "user",
+        isRotation: true,
+        entityId: entityId,
+        postKey: this.apiService.postUserRotateApiKey.bind(this.apiService),
+        scope: "api",
+        grantType: "client_credentials",
+        apiKeyTitle: "apiKey",
+        apiKeyWarning: "userApiKeyWarning",
+        apiKeyDescription: "apiKeyRotateDesc",
+      },
     });
   }
 }

From 6e557338730479766bacb8595efe787c271d7a1b Mon Sep 17 00:00:00 2001
From: KiruthigaManivannan
 <162679756+KiruthigaManivannan@users.noreply.github.com>
Date: Wed, 5 Jun 2024 23:22:04 +0530
Subject: [PATCH 104/138] PM-4951 Migrate Recover Two Factor Component (#9170)

* PM-4951 Migrate Recover Two Factor Component

* PM-4951 Addressed review comments

* PM-4951 Addressed review comments

* update route

* add type safety to data properties

---------

Co-authored-by: rr-bw <102181210+rr-bw@users.noreply.github.com>
---
 .../auth/recover-two-factor.component.html    | 112 ++++++------------
 .../app/auth/recover-two-factor.component.ts  |  60 +++++-----
 apps/web/src/app/oss-routing.module.ts        |  34 +++++-
 3 files changed, 97 insertions(+), 109 deletions(-)

diff --git a/apps/web/src/app/auth/recover-two-factor.component.html b/apps/web/src/app/auth/recover-two-factor.component.html
index 11d281b742b..e3641765800 100644
--- a/apps/web/src/app/auth/recover-two-factor.component.html
+++ b/apps/web/src/app/auth/recover-two-factor.component.html
@@ -1,76 +1,40 @@
-<form #form (ngSubmit)="submit()" [appApiAction]="formPromise" class="container" ngNativeValidate>
-  <div class="row justify-content-md-center mt-5">
-    <div class="col-5">
-      <p class="lead text-center mb-4">{{ "recoverAccountTwoStep" | i18n }}</p>
-      <div class="card">
-        <div class="card-body">
-          <p>
-            {{ "recoverAccountTwoStepDesc" | i18n }}
-            <a
-              href="https://bitwarden.com/help/lost-two-step-device/"
-              target="_blank"
-              rel="noreferrer"
-              >{{ "learnMore" | i18n }}</a
-            >
-          </p>
-          <div class="form-group">
-            <label for="email">{{ "emailAddress" | i18n }}</label>
-            <input
-              id="email"
-              class="form-control"
-              type="text"
-              name="Email"
-              [(ngModel)]="email"
-              required
-              appAutofocus
-              inputmode="email"
-              appInputVerbatim="false"
-            />
-          </div>
-          <div class="form-group">
-            <label for="masterPassword">{{ "masterPass" | i18n }}</label>
-            <input
-              id="masterPassword"
-              type="password"
-              name="MasterPassword"
-              class="form-control"
-              [(ngModel)]="masterPassword"
-              required
-              appInputVerbatim
-            />
-          </div>
-          <div class="form-group">
-            <label for="recoveryCode">{{ "recoveryCodeTitle" | i18n }}</label>
-            <input
-              id="recoveryCode"
-              class="text-monospace form-control"
-              type="text"
-              name="RecoveryCode"
-              [(ngModel)]="recoveryCode"
-              required
-              appInputVerbatim
-            />
-          </div>
-          <hr />
-          <div class="d-flex">
-            <button
-              type="submit"
-              class="btn btn-primary btn-block btn-submit"
-              [disabled]="form.loading"
-            >
-              <span>{{ "submit" | i18n }}</span>
-              <i
-                class="bwi bwi-spinner bwi-spin"
-                title="{{ 'loading' | i18n }}"
-                aria-hidden="true"
-              ></i>
-            </button>
-            <a routerLink="/login" class="btn btn-outline-secondary btn-block ml-2 mt-0">
-              {{ "cancel" | i18n }}
-            </a>
-          </div>
-        </div>
-      </div>
-    </div>
+<form [formGroup]="formGroup" [bitSubmit]="submit">
+  <p bitTypography="body1">
+    {{ "recoverAccountTwoStepDesc" | i18n }}
+    <a
+      bitLink
+      href="https://bitwarden.com/help/lost-two-step-device/"
+      target="_blank"
+      rel="noreferrer"
+      >{{ "learnMore" | i18n }}</a
+    >
+  </p>
+  <bit-form-field>
+    <bit-label>{{ "emailAddress" | i18n }}</bit-label>
+    <input
+      bitInput
+      type="text"
+      formControlName="email"
+      appAutofocus
+      inputmode="email"
+      appInputVerbatim="false"
+    />
+  </bit-form-field>
+  <bit-form-field>
+    <bit-label>{{ "masterPass" | i18n }}</bit-label>
+    <input bitInput type="password" formControlName="masterPassword" appInputVerbatim />
+  </bit-form-field>
+  <bit-form-field>
+    <bit-label>{{ "recoveryCodeTitle" | i18n }}</bit-label>
+    <input bitInput type="text" formControlName="recoveryCode" appInputVerbatim />
+  </bit-form-field>
+  <hr />
+  <div class="tw-flex tw-gap-2">
+    <button type="submit" bitButton bitFormButton buttonType="primary" [block]="true">
+      {{ "submit" | i18n }}
+    </button>
+    <a bitButton buttonType="secondary" routerLink="/login" [block]="true">
+      {{ "cancel" | i18n }}
+    </a>
   </div>
 </form>
diff --git a/apps/web/src/app/auth/recover-two-factor.component.ts b/apps/web/src/app/auth/recover-two-factor.component.ts
index 145c46c8df5..4996dbe0a50 100644
--- a/apps/web/src/app/auth/recover-two-factor.component.ts
+++ b/apps/web/src/app/auth/recover-two-factor.component.ts
@@ -1,4 +1,5 @@
 import { Component } from "@angular/core";
+import { FormControl, FormGroup, Validators } from "@angular/forms";
 import { Router } from "@angular/router";
 
 import { LoginStrategyServiceAbstraction } from "@bitwarden/auth/common";
@@ -6,7 +7,6 @@ import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { TwoFactorRecoveryRequest } from "@bitwarden/common/auth/models/request/two-factor-recovery.request";
 import { CryptoService } from "@bitwarden/common/platform/abstractions/crypto.service";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 
 @Component({
@@ -14,10 +14,11 @@ import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/pl
   templateUrl: "recover-two-factor.component.html",
 })
 export class RecoverTwoFactorComponent {
-  email: string;
-  masterPassword: string;
-  recoveryCode: string;
-  formPromise: Promise<any>;
+  protected formGroup = new FormGroup({
+    email: new FormControl(null, [Validators.required]),
+    masterPassword: new FormControl(null, [Validators.required]),
+    recoveryCode: new FormControl(null, [Validators.required]),
+  });
 
   constructor(
     private router: Router,
@@ -26,31 +27,32 @@ export class RecoverTwoFactorComponent {
     private i18nService: I18nService,
     private cryptoService: CryptoService,
     private loginStrategyService: LoginStrategyServiceAbstraction,
-    private logService: LogService,
   ) {}
 
-  async submit() {
-    try {
-      const request = new TwoFactorRecoveryRequest();
-      request.recoveryCode = this.recoveryCode.replace(/\s/g, "").toLowerCase();
-      request.email = this.email.trim().toLowerCase();
-      const key = await this.loginStrategyService.makePreloginKey(
-        this.masterPassword,
-        request.email,
-      );
-      request.masterPasswordHash = await this.cryptoService.hashMasterKey(this.masterPassword, key);
-      this.formPromise = this.apiService.postTwoFactorRecover(request);
-      await this.formPromise;
-      this.platformUtilsService.showToast(
-        "success",
-        null,
-        this.i18nService.t("twoStepRecoverDisabled"),
-      );
-      // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-      // eslint-disable-next-line @typescript-eslint/no-floating-promises
-      this.router.navigate(["/"]);
-    } catch (e) {
-      this.logService.error(e);
-    }
+  get email(): string {
+    return this.formGroup.value.email;
   }
+
+  get masterPassword(): string {
+    return this.formGroup.value.masterPassword;
+  }
+
+  get recoveryCode(): string {
+    return this.formGroup.value.recoveryCode;
+  }
+
+  submit = async () => {
+    const request = new TwoFactorRecoveryRequest();
+    request.recoveryCode = this.recoveryCode.replace(/\s/g, "").toLowerCase();
+    request.email = this.email.trim().toLowerCase();
+    const key = await this.loginStrategyService.makePreloginKey(this.masterPassword, request.email);
+    request.masterPasswordHash = await this.cryptoService.hashMasterKey(this.masterPassword, key);
+    await this.apiService.postTwoFactorRecover(request);
+    this.platformUtilsService.showToast(
+      "success",
+      null,
+      this.i18nService.t("twoStepRecoverDisabled"),
+    );
+    await this.router.navigate(["/"]);
+  };
 }
diff --git a/apps/web/src/app/oss-routing.module.ts b/apps/web/src/app/oss-routing.module.ts
index c7b4631fa30..8509e987eb4 100644
--- a/apps/web/src/app/oss-routing.module.ts
+++ b/apps/web/src/app/oss-routing.module.ts
@@ -7,7 +7,9 @@ import {
   redirectGuard,
   tdeDecryptionRequiredGuard,
   UnauthGuard,
+  unauthGuardFn,
 } from "@bitwarden/angular/auth/guards";
+import { AnonLayoutWrapperComponent, AnonLayoutWrapperData } from "@bitwarden/auth/angular";
 
 import { flagEnabled, Flags } from "../utils/flags";
 
@@ -40,6 +42,7 @@ import { UpdatePasswordComponent } from "./auth/update-password.component";
 import { UpdateTempPasswordComponent } from "./auth/update-temp-password.component";
 import { VerifyEmailTokenComponent } from "./auth/verify-email-token.component";
 import { VerifyRecoverDeleteComponent } from "./auth/verify-recover-delete.component";
+import { EnvironmentSelectorComponent } from "./components/environment-selector/environment-selector.component";
 import { DataProperties } from "./core";
 import { FrontendLayoutComponent } from "./layouts/frontend-layout.component";
 import { UserLayoutComponent } from "./layouts/user-layout.component";
@@ -141,12 +144,6 @@ const routes: Routes = [
         data: { titleId: "acceptFamilySponsorship", doNotSaveUrl: false } satisfies DataProperties,
       },
       { path: "recover", pathMatch: "full", redirectTo: "recover-2fa" },
-      {
-        path: "recover-2fa",
-        component: RecoverTwoFactorComponent,
-        canActivate: [UnauthGuard],
-        data: { titleId: "recoverAccountTwoStep" } satisfies DataProperties,
-      },
       {
         path: "recover-delete",
         component: RecoverDeleteComponent,
@@ -203,6 +200,31 @@ const routes: Routes = [
       },
     ],
   },
+  {
+    path: "",
+    component: AnonLayoutWrapperComponent,
+    children: [
+      {
+        path: "recover-2fa",
+        canActivate: [unauthGuardFn()],
+        children: [
+          {
+            path: "",
+            component: RecoverTwoFactorComponent,
+          },
+          {
+            path: "",
+            component: EnvironmentSelectorComponent,
+            outlet: "environment-selector",
+          },
+        ],
+        data: {
+          pageTitle: "recoverAccountTwoStep",
+          titleId: "recoverAccountTwoStep",
+        } satisfies DataProperties & AnonLayoutWrapperData,
+      },
+    ],
+  },
   {
     path: "",
     component: UserLayoutComponent,

From bf51469404a6fe97c11723c02511a6029f59e2ae Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E2=9C=A8=20Audrey=20=E2=9C=A8?= <ajensen@bitwarden.com>
Date: Wed, 5 Jun 2024 14:58:28 -0400
Subject: [PATCH 105/138] specify generator algorithm during TDE (#9519)

---
 .../src/auth/components/login-via-auth-request.component.ts  | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/libs/angular/src/auth/components/login-via-auth-request.component.ts b/libs/angular/src/auth/components/login-via-auth-request.component.ts
index 401abab3b19..f898fa4ee8d 100644
--- a/libs/angular/src/auth/components/login-via-auth-request.component.ts
+++ b/libs/angular/src/auth/components/login-via-auth-request.component.ts
@@ -246,7 +246,10 @@ export class LoginViaAuthRequestComponent
 
     const deviceIdentifier = await this.appIdService.getAppId();
     const publicKey = Utils.fromBufferToB64(this.authRequestKeyPair.publicKey);
-    const accessCode = await this.passwordGenerationService.generatePassword({ length: 25 });
+    const accessCode = await this.passwordGenerationService.generatePassword({
+      type: "password",
+      length: 25,
+    });
 
     this.fingerprintPhrase = (
       await this.cryptoService.getFingerprint(this.email, this.authRequestKeyPair.publicKey)

From d3f1992ad59940f3046125e0c1ca072beacdb177 Mon Sep 17 00:00:00 2001
From: Victoria League <vleague@bitwarden.com>
Date: Wed, 5 Jun 2024 15:07:00 -0400
Subject: [PATCH 106/138] [CL-294] Make section-header work across clients
 (#9386)

---
 .../popup-section-header.component.html       |  11 --
 .../popup-section-header.component.ts         |  13 --
 .../popup-section-header.stories.ts           | 104 ------------
 apps/browser/src/popup/app.module.ts          |   2 -
 .../autofill-vault-list-items.component.html  |   8 +-
 .../autofill-vault-list-items.component.ts    |  10 +-
 .../vault-list-items-container.component.html |  10 +-
 .../vault-list-items-container.component.ts   |   4 +-
 libs/components/src/section/index.ts          |   1 +
 .../src/section/section-header.component.html |   8 +
 .../src/section/section-header.component.ts   |  16 ++
 libs/components/src/section/section.mdx       |  89 ++++++++++
 .../components/src/section/section.stories.ts | 155 +++++++++++++++++-
 13 files changed, 281 insertions(+), 150 deletions(-)
 delete mode 100644 apps/browser/src/platform/popup/popup-section-header/popup-section-header.component.html
 delete mode 100644 apps/browser/src/platform/popup/popup-section-header/popup-section-header.component.ts
 delete mode 100644 apps/browser/src/platform/popup/popup-section-header/popup-section-header.stories.ts
 create mode 100644 libs/components/src/section/section-header.component.html
 create mode 100644 libs/components/src/section/section-header.component.ts
 create mode 100644 libs/components/src/section/section.mdx

diff --git a/apps/browser/src/platform/popup/popup-section-header/popup-section-header.component.html b/apps/browser/src/platform/popup/popup-section-header/popup-section-header.component.html
deleted file mode 100644
index 4fdbb823120..00000000000
--- a/apps/browser/src/platform/popup/popup-section-header/popup-section-header.component.html
+++ /dev/null
@@ -1,11 +0,0 @@
-<div class="tw-flex tw-justify-between tw-items-end tw-gap-1 tw-px-1 tw-pb-1">
-  <div class="tw-flex tw-items-center tw-gap-1">
-    <h2 bitTypography="h6" noMargin class="tw-mb-0 tw-text-headers">
-      {{ title }}
-    </h2>
-    <ng-content select="[slot=title-suffix]"></ng-content>
-  </div>
-  <div class="tw-text-muted has-[button]:-tw-mb-1">
-    <ng-content select="[slot=end]"></ng-content>
-  </div>
-</div>
diff --git a/apps/browser/src/platform/popup/popup-section-header/popup-section-header.component.ts b/apps/browser/src/platform/popup/popup-section-header/popup-section-header.component.ts
deleted file mode 100644
index b33a2a0f330..00000000000
--- a/apps/browser/src/platform/popup/popup-section-header/popup-section-header.component.ts
+++ /dev/null
@@ -1,13 +0,0 @@
-import { Component, Input } from "@angular/core";
-
-import { TypographyModule } from "@bitwarden/components";
-
-@Component({
-  standalone: true,
-  selector: "popup-section-header",
-  templateUrl: "./popup-section-header.component.html",
-  imports: [TypographyModule],
-})
-export class PopupSectionHeaderComponent {
-  @Input() title: string;
-}
diff --git a/apps/browser/src/platform/popup/popup-section-header/popup-section-header.stories.ts b/apps/browser/src/platform/popup/popup-section-header/popup-section-header.stories.ts
deleted file mode 100644
index f5cb472a59c..00000000000
--- a/apps/browser/src/platform/popup/popup-section-header/popup-section-header.stories.ts
+++ /dev/null
@@ -1,104 +0,0 @@
-import { Meta, moduleMetadata, StoryObj } from "@storybook/angular";
-
-import {
-  CardComponent,
-  IconButtonModule,
-  SectionComponent,
-  TypographyModule,
-} from "@bitwarden/components";
-
-import { PopupSectionHeaderComponent } from "./popup-section-header.component";
-
-export default {
-  title: "Browser/Popup Section Header",
-  component: PopupSectionHeaderComponent,
-  args: {
-    title: "Title",
-  },
-  decorators: [
-    moduleMetadata({
-      imports: [SectionComponent, CardComponent, TypographyModule, IconButtonModule],
-    }),
-  ],
-} as Meta<PopupSectionHeaderComponent>;
-
-type Story = StoryObj<PopupSectionHeaderComponent>;
-
-export const OnlyTitle: Story = {
-  render: (args) => ({
-    props: args,
-    template: `
-      <popup-section-header [title]="title"></popup-section-header>
-    `,
-  }),
-  args: {
-    title: "Only Title",
-  },
-};
-
-export const TrailingText: Story = {
-  render: (args) => ({
-    props: args,
-    template: `
-      <popup-section-header [title]="title">
-        <span bitTypography="body2" slot="end">13</span>
-      </popup-section-header>
-    `,
-  }),
-  args: {
-    title: "Trailing Text",
-  },
-};
-
-export const TailingIcon: Story = {
-  render: (args) => ({
-    props: args,
-    template: `
-      <popup-section-header [title]="title">
-        <button bitIconButton="bwi-star" size="small" slot="end"></button>
-      </popup-section-header>
-    `,
-  }),
-  args: {
-    title: "Trailing Icon",
-  },
-};
-
-export const TitleSuffix: Story = {
-  render: (args) => ({
-    props: args,
-    template: `
-      <popup-section-header [title]="title">
-        <button bitIconButton="bwi-refresh" size="small" slot="title-suffix"></button>
-      </popup-section-header>
-    `,
-  }),
-  args: {
-    title: "Title Suffix",
-  },
-};
-
-export const WithSections: Story = {
-  render: () => ({
-    template: `
-      <div class="tw-bg-background-alt tw-p-2">
-        <bit-section>
-          <popup-section-header title="Section 1">
-            <button bitIconButton="bwi-star" size="small" slot="end"></button>
-          </popup-section-header>
-          <bit-card>
-            <h3 bitTypography="h3">Card 1 Content</h3>
-          </bit-card>
-        </bit-section>
-        <bit-section>
-          <popup-section-header title="Section 2">
-            <button bitIconButton="bwi-star" size="small" slot="end"></button>
-          </popup-section-header>
-          <bit-card>
-            <h3 bitTypography="h3">Card 2 Content</h3>
-          </bit-card>
-        </bit-section>
-      </div>
-    `,
-  }),
-};
diff --git a/apps/browser/src/popup/app.module.ts b/apps/browser/src/popup/app.module.ts
index 86f4d9fa768..3c7f45e55f7 100644
--- a/apps/browser/src/popup/app.module.ts
+++ b/apps/browser/src/popup/app.module.ts
@@ -46,7 +46,6 @@ import { PopupFooterComponent } from "../platform/popup/layout/popup-footer.comp
 import { PopupHeaderComponent } from "../platform/popup/layout/popup-header.component";
 import { PopupPageComponent } from "../platform/popup/layout/popup-page.component";
 import { PopupTabNavigationComponent } from "../platform/popup/layout/popup-tab-navigation.component";
-import { PopupSectionHeaderComponent } from "../platform/popup/popup-section-header/popup-section-header.component";
 import { FilePopoutCalloutComponent } from "../tools/popup/components/file-popout-callout.component";
 import { GeneratorComponent } from "../tools/popup/generator/generator.component";
 import { PasswordGeneratorHistoryComponent } from "../tools/popup/generator/password-generator-history.component";
@@ -119,7 +118,6 @@ import "../platform/popup/locales";
     PopupFooterComponent,
     PopupHeaderComponent,
     UserVerificationDialogComponent,
-    PopupSectionHeaderComponent,
     CurrentAccountComponent,
   ],
   declarations: [
diff --git a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.html b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.html
index 83b07fc14cb..e52018ab27f 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.html
+++ b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.html
@@ -8,17 +8,19 @@
 ></app-vault-list-items-container>
 <ng-container *ngIf="showEmptyAutofillTip$ | async">
   <bit-section>
-    <popup-section-header [title]="'autofillSuggestions' | i18n">
+    <bit-section-header>
+      <h2 bitTypography="h6">
+        {{ "autofillSuggestions" | i18n }}
+      </h2>
       <button
         *ngIf="showRefresh"
         bitIconButton="bwi-refresh"
         size="small"
-        slot="title-suffix"
         type="button"
         [appA11yTitle]="'refresh' | i18n"
         (click)="refreshCurrentTab()"
       ></button>
-    </popup-section-header>
+    </bit-section-header>
     <span class="tw-text-muted tw-px-1" bitTypography="body2">{{
       "autofillSuggestionsTip" | i18n
     }}</span>
diff --git a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts
index 9a4670bb4c8..1b9876759f0 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts
@@ -3,10 +3,14 @@ import { Component } from "@angular/core";
 import { combineLatest, map, Observable } from "rxjs";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
-import { IconButtonModule, SectionComponent, TypographyModule } from "@bitwarden/components";
+import {
+  IconButtonModule,
+  SectionComponent,
+  SectionHeaderComponent,
+  TypographyModule,
+} from "@bitwarden/components";
 
 import BrowserPopupUtils from "../../../../../platform/popup/browser-popup-utils";
-import { PopupSectionHeaderComponent } from "../../../../../platform/popup/popup-section-header/popup-section-header.component";
 import { VaultPopupItemsService } from "../../../services/vault-popup-items.service";
 import { PopupCipherView } from "../../../views/popup-cipher.view";
 import { VaultListItemsContainerComponent } from "../vault-list-items-container/vault-list-items-container.component";
@@ -19,7 +23,7 @@ import { VaultListItemsContainerComponent } from "../vault-list-items-container/
     TypographyModule,
     VaultListItemsContainerComponent,
     JslibModule,
-    PopupSectionHeaderComponent,
+    SectionHeaderComponent,
     IconButtonModule,
   ],
   selector: "app-autofill-vault-list-items",
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
index 74ee1af1ff5..c2c345fd757 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
@@ -1,16 +1,18 @@
 <bit-section *ngIf="ciphers?.length > 0">
-  <popup-section-header [title]="title">
-    <span bitTypography="body2" slot="end">{{ ciphers.length }}</span>
+  <bit-section-header>
+    <h2 bitTypography="h6">
+      {{ title }}
+    </h2>
     <button
       *ngIf="showRefresh"
       bitIconButton="bwi-refresh"
       type="button"
       size="small"
-      slot="title-suffix"
       (click)="onRefresh.emit()"
       [appA11yTitle]="'refresh' | i18n"
     ></button>
-  </popup-section-header>
+    <span bitTypography="body2" slot="end">{{ ciphers.length }}</span>
+  </bit-section-header>
   <bit-item-group>
     <bit-item *ngFor="let cipher of ciphers">
       <a
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
index 311619fa0ff..59e3a3c3a1a 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
@@ -10,10 +10,10 @@ import {
   IconButtonModule,
   ItemModule,
   SectionComponent,
+  SectionHeaderComponent,
   TypographyModule,
 } from "@bitwarden/components";
 
-import { PopupSectionHeaderComponent } from "../../../../../platform/popup/popup-section-header/popup-section-header.component";
 import { PopupCipherView } from "../../../views/popup-cipher.view";
 import { ItemCopyActionsComponent } from "../item-copy-action/item-copy-actions.component";
 import { ItemMoreOptionsComponent } from "../item-more-options/item-more-options.component";
@@ -28,7 +28,7 @@ import { ItemMoreOptionsComponent } from "../item-more-options/item-more-options
     SectionComponent,
     TypographyModule,
     JslibModule,
-    PopupSectionHeaderComponent,
+    SectionHeaderComponent,
     RouterLink,
     ItemCopyActionsComponent,
     ItemMoreOptionsComponent,
diff --git a/libs/components/src/section/index.ts b/libs/components/src/section/index.ts
index ea2aa32a22f..9a0983e18e4 100644
--- a/libs/components/src/section/index.ts
+++ b/libs/components/src/section/index.ts
@@ -1 +1,2 @@
 export * from "./section.component";
+export * from "./section-header.component";
diff --git a/libs/components/src/section/section-header.component.html b/libs/components/src/section/section-header.component.html
new file mode 100644
index 00000000000..d17022d5eb7
--- /dev/null
+++ b/libs/components/src/section/section-header.component.html
@@ -0,0 +1,8 @@
+<div class="tw-flex tw-justify-between tw-items-end tw-gap-1">
+  <div class="[&>*]:tw-mb-0 [&>*]:tw-text-headers tw-flex tw-items-center tw-gap-1">
+    <ng-content></ng-content>
+  </div>
+  <div class="tw-text-muted has-[button]:-tw-mb-1">
+    <ng-content select="[slot=end]"></ng-content>
+  </div>
+</div>
diff --git a/libs/components/src/section/section-header.component.ts b/libs/components/src/section/section-header.component.ts
new file mode 100644
index 00000000000..9f7b1a21f16
--- /dev/null
+++ b/libs/components/src/section/section-header.component.ts
@@ -0,0 +1,16 @@
+import { Component } from "@angular/core";
+
+import { TypographyModule } from "../typography";
+
+@Component({
+  standalone: true,
+  selector: "bit-section-header",
+  templateUrl: "./section-header.component.html",
+  imports: [TypographyModule],
+  host: {
+    class:
+      // apply bottom and x padding when a `bit-card` or `bit-item` is the immediate sibling, or nested in the immediate sibling
+      "tw-block has-[+_*_bit-card]:tw-pb-1 has-[+_bit-card]:tw-pb-1 has-[+_*_bit-item]:tw-pb-1 has-[+_bit-item]:tw-pb-1 has-[+_*_bit-card]:tw-px-1 has-[+_bit-card]:tw-px-1 has-[+_*_bit-item]:tw-px-1 has-[+_bit-item]:tw-px-1",
+  },
+})
+export class SectionHeaderComponent {}
diff --git a/libs/components/src/section/section.mdx b/libs/components/src/section/section.mdx
new file mode 100644
index 00000000000..33e640e4f06
--- /dev/null
+++ b/libs/components/src/section/section.mdx
@@ -0,0 +1,89 @@
+import { Meta, Story, Primary, Controls, Canvas } from "@storybook/addon-docs";
+
+import * as stories from "./section.stories";
+
+<Meta of={stories} />
+
+```ts
+import { SectionComponent, SectionHeaderComponent } from "@bitwarden/components";
+```
+
+# Section
+
+Sections are simple containers that apply a responsive bottom margin and utilize the semantic
+`section` HTML element.
+
+<Canvas>
+  <Story of={stories.Default} />
+</Canvas>
+
+## Section Header
+
+Sections often contain a heading. Use `bit-section-header` inside of the `bit-section`.
+
+```html
+<bit-section>
+  <bit-section-header>
+    <h1 bitTypography="h1">I'm a section header</h2>
+  </bit-section-header>
+  <div>Section content here!</div>
+</bit-section>
+```
+
+### Section Header Padding
+
+When placed inside of a section with a `bit-card` or `bit-item` as the immediate next sibling (or
+nested in the immediate next sibling), the section header will automatically apply bottom and x-axis
+padding to align the header with the border radius of the card/item.
+
+```html
+<bit-section>
+  <bit-section-header>
+    <h2 bitTypography="h6">I'm a section header</h2>
+    <button bitIconButton="bwi-star" size="small" slot="end"></button>
+  </bit-section-header>
+  <bit-card>
+    <h3 bitTypography="h3">I'm card content</h3>
+  </bit-card>
+</bit-section>
+```
+
+<Canvas>
+  <Story of={stories.HeaderWithPadding} />
+</Canvas>
+
+If placed inside of a section without a `bit-card` or `bit-item`, or with a `bit-card`/`bit-item`
+that is not a descendant of the immediate next sibling, the padding is not applied.
+
+<Canvas>
+  <Story of={stories.HeaderWithoutPadding} />
+</Canvas>
+
+### Section Header Content Slots
+
+`bit-section-header` contains the following slots to help position the content:
+
+| Slot         | Description                     |
+| ------------ | ------------------------------- |
+| default      | title text of the header        |
+| `slot="end"` | placed at the end of the header |
+
+#### Default slot
+
+Anything passed to the default slot will display as part of the title. The title should be a
+`bitTypography` element, usually an `h2` styled as an `h6`.
+
+Title suffixes (typically an icon or icon button) can be added as well. A gap is automatically
+applied between the children of the default slot.
+
+<Canvas>
+  <Story of={stories.HeaderVariants} />
+</Canvas>
+
+#### End slot
+
+The `end` slot will typically be used for text or an icon button.
+
+<Canvas>
+  <Story of={stories.HeaderEndSlotVariants} />
+</Canvas>
diff --git a/libs/components/src/section/section.stories.ts b/libs/components/src/section/section.stories.ts
index 65b6a67d476..0f720d1dba0 100644
--- a/libs/components/src/section/section.stories.ts
+++ b/libs/components/src/section/section.stories.ts
@@ -1,15 +1,24 @@
 import { Meta, StoryObj, componentWrapperDecorator, moduleMetadata } from "@storybook/angular";
 
+import { CardComponent } from "../card";
+import { IconButtonModule } from "../icon-button";
+import { ItemModule } from "../item";
 import { TypographyModule } from "../typography";
 
-import { SectionComponent } from "./section.component";
+import { SectionComponent, SectionHeaderComponent } from "./";
 
 export default {
   title: "Component Library/Section",
   component: SectionComponent,
   decorators: [
     moduleMetadata({
-      imports: [TypographyModule],
+      imports: [
+        TypographyModule,
+        SectionHeaderComponent,
+        CardComponent,
+        IconButtonModule,
+        ItemModule,
+      ],
     }),
     componentWrapperDecorator((story) => `<div class="tw-text-main">${story}</div>`),
   ],
@@ -17,19 +26,149 @@ export default {
 
 type Story = StoryObj<SectionComponent>;
 
-/** Sections are simple containers that apply a responsive bottom margin. They often contain a heading. */
 export const Default: Story = {
-  render: (args) => ({
-    props: args,
-    template: `
+  render: () => ({
+    template: /*html*/ `
         <bit-section>
+          <bit-section-header>
             <h2 bitTypography="h2">Foo</h2>
-            <p bitTypography="body1">Lorem ipsum dolor sit amet, consectetur adipiscing elit. Cras vitae congue risus. Interdum et malesuada fames ac ante ipsum primis in faucibus. Nunc elementum odio nibh, eget pellentesque sem ornare vitae. Etiam vel ante et velit fringilla egestas a sed sem. Fusce molestie nisl et nisi accumsan dapibus. Interdum et malesuada fames ac ante ipsum primis in faucibus. Sed eu risus ex. </p>
+          </bit-section-header>
+          <p bitTypography="body1">Lorem ipsum dolor sit amet, consectetur adipiscing elit. Cras vitae congue risus. Interdum et malesuada fames ac ante ipsum primis in faucibus. Nunc elementum odio nibh, eget pellentesque sem ornare vitae. Etiam vel ante et velit fringilla egestas a sed sem. Fusce molestie nisl et nisi accumsan dapibus. Interdum et malesuada fames ac ante ipsum primis in faucibus. Sed eu risus ex. </p>
         </bit-section>
         <bit-section>
+          <bit-section-header>
             <h2 bitTypography="h2">Bar</h2>
-            <p bitTypography="body1">Lorem ipsum dolor sit amet, consectetur adipiscing elit. Cras vitae congue risus. Interdum et malesuada fames ac ante ipsum primis in faucibus. Nunc elementum odio nibh, eget pellentesque sem ornare vitae. Etiam vel ante et velit fringilla egestas a sed sem. Fusce molestie nisl et nisi accumsan dapibus. Interdum et malesuada fames ac ante ipsum primis in faucibus. Sed eu risus ex. </p>
+          </bit-section-header>
+          <p bitTypography="body1">Lorem ipsum dolor sit amet, consectetur adipiscing elit. Cras vitae congue risus. Interdum et malesuada fames ac ante ipsum primis in faucibus. Nunc elementum odio nibh, eget pellentesque sem ornare vitae. Etiam vel ante et velit fringilla egestas a sed sem. Fusce molestie nisl et nisi accumsan dapibus. Interdum et malesuada fames ac ante ipsum primis in faucibus. Sed eu risus ex. </p>
         </bit-section>
     `,
   }),
 };
+
+export const HeaderVariants: Story = {
+  render: () => ({
+    template: /*html*/ `
+      <bit-section-header>
+        <h2 bitTypography="h6">
+          Title only
+        </h2>
+       </bit-section-header>
+      <bit-section-header>
+        <h2 bitTypography="h6">
+          Title with icon button suffix
+        </h2>
+        <button bitIconButton="bwi-refresh" size="small"></button>
+      </bit-section-header>
+    `,
+  }),
+};
+
+export const HeaderEndSlotVariants: Story = {
+  render: () => ({
+    template: /*html*/ `
+      <bit-section-header>
+        <h2 bitTypography="h6">
+          Title with end slot text
+        </h2>
+        <span bitTypography="body2" slot="end">13</span>
+      </bit-section-header>
+      <bit-section-header>
+        <h2 bitTypography="h6">
+          Title with end slot icon button
+        </h2>
+        <button bitIconButton="bwi-star" size="small" slot="end"></button>
+      </bit-section-header>
+    `,
+  }),
+};
+
+export const HeaderWithPadding: Story = {
+  render: () => ({
+    template: /*html*/ `
+      <div class="tw-bg-background-alt tw-p-2">
+        <bit-section>
+          <bit-section-header>
+            <h2 bitTypography="h6">
+              Card as immediate sibling
+            </h2>
+            <button bitIconButton="bwi-star" size="small" slot="end"></button>
+          </bit-section-header>
+          <bit-card>
+            <h3 bitTypography="h3">bit-section-header has padding</h3>
+          </bit-card>
+        </bit-section>
+        <bit-section>
+          <bit-section-header>
+            <h2 bitTypography="h6">
+              Card nested in immediate sibling
+            </h2>
+            <button bitIconButton="bwi-star" size="small" slot="end"></button>
+          </bit-section-header>
+          <div>
+            <bit-card>
+              <h3 bitTypography="h3">bit-section-header has padding</h3>
+            </bit-card>
+          </div>
+        </bit-section>
+        <bit-section>
+          <bit-section-header>
+            <h2 bitTypography="h6">
+              Item as immediate sibling
+            </h2>
+            <button bitIconButton="bwi-star" size="small" slot="end"></button>
+          </bit-section-header>
+          <bit-item>
+            <bit-item-content bitTypography="body1">bit-section-header has padding</bit-item-content>
+          </bit-item>
+        </bit-section>
+        <bit-section>
+          <bit-section-header>
+            <h2 bitTypography="h6">
+              Item nested in immediate sibling
+            </h2>
+            <button bitIconButton="bwi-star" size="small" slot="end"></button>
+          </bit-section-header>
+          <bit-item-group>
+            <bit-item>
+              <bit-item-content bitTypography="body1">bit-section-header has padding</bit-item-content>
+            </bit-item>
+          </bit-item-group>
+        </bit-section>
+      </div>
+    `,
+  }),
+};
+
+export const HeaderWithoutPadding: Story = {
+  render: () => ({
+    template: /*html*/ `
+      <div class="tw-bg-background-alt tw-p-2">
+        <bit-section>
+          <bit-section-header>
+            <h2 bitTypography="h6">
+              No card or item used
+            </h2>
+            <button bitIconButton="bwi-star" size="small" slot="end"></button>
+          </bit-section-header>
+          <div>
+            <h3 bitTypography="h3">just a div, so bit-section-header has no padding</h3>
+          </div>
+        </bit-section>
+        <bit-section>
+          <bit-section-header>
+            <h2 bitTypography="h6">
+              Card nested in non-immediate sibling
+            </h2>
+            <button bitIconButton="bwi-star" size="small" slot="end"></button>
+          </bit-section-header>
+          <div class="tw-text-main">
+            a div here
+          </div>
+          <bit-card>
+            <h3 bitTypography="h3">bit-section-header has no padding</h3>
+          </bit-card>
+        </bit-section>
+      </div>
+    `,
+  }),
+};

From 917c5fff5bc151de6b36ccd65cf045e9ce74d1ae Mon Sep 17 00:00:00 2001
From: Jake Fink <jfink@bitwarden.com>
Date: Wed, 5 Jun 2024 16:05:12 -0400
Subject: [PATCH 107/138] remove extra unused method (#9500)

---
 .../abstractions/login-strategy.service.ts    |  9 ----
 .../login-strategy.service.ts                 | 44 -------------------
 2 files changed, 53 deletions(-)

diff --git a/libs/auth/src/common/abstractions/login-strategy.service.ts b/libs/auth/src/common/abstractions/login-strategy.service.ts
index eae6dc2a275..a46636532bf 100644
--- a/libs/auth/src/common/abstractions/login-strategy.service.ts
+++ b/libs/auth/src/common/abstractions/login-strategy.service.ts
@@ -3,7 +3,6 @@ import { Observable } from "rxjs";
 import { AuthenticationType } from "@bitwarden/common/auth/enums/authentication-type";
 import { AuthResult } from "@bitwarden/common/auth/models/domain/auth-result";
 import { TokenTwoFactorRequest } from "@bitwarden/common/auth/models/request/identity-token/token-two-factor.request";
-import { AuthRequestResponse } from "@bitwarden/common/auth/models/response/auth-request.response";
 import { MasterKey } from "@bitwarden/common/types/key";
 
 import {
@@ -72,12 +71,4 @@ export abstract class LoginStrategyServiceAbstraction {
    * Creates a master key from the provided master password and email.
    */
   makePreloginKey: (masterPassword: string, email: string) => Promise<MasterKey>;
-  /**
-   * Sends a response to an auth request.
-   */
-  passwordlessLogin: (
-    id: string,
-    key: string,
-    requestApproved: boolean,
-  ) => Promise<AuthRequestResponse>;
 }
diff --git a/libs/auth/src/common/services/login-strategies/login-strategy.service.ts b/libs/auth/src/common/services/login-strategies/login-strategy.service.ts
index f425bc697c5..7169fd69e93 100644
--- a/libs/auth/src/common/services/login-strategies/login-strategy.service.ts
+++ b/libs/auth/src/common/services/login-strategies/login-strategy.service.ts
@@ -24,8 +24,6 @@ import {
   PBKDF2KdfConfig,
 } from "@bitwarden/common/auth/models/domain/kdf-config";
 import { TokenTwoFactorRequest } from "@bitwarden/common/auth/models/request/identity-token/token-two-factor.request";
-import { PasswordlessAuthRequest } from "@bitwarden/common/auth/models/request/passwordless-auth.request";
-import { AuthRequestResponse } from "@bitwarden/common/auth/models/response/auth-request.response";
 import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
 import { PreloginRequest } from "@bitwarden/common/models/request/prelogin.request";
 import { ErrorResponse } from "@bitwarden/common/models/response/error.response";
@@ -39,7 +37,6 @@ import { MessagingService } from "@bitwarden/common/platform/abstractions/messag
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
 import { KdfType } from "@bitwarden/common/platform/enums/kdf-type.enum";
-import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { GlobalState, GlobalStateProvider } from "@bitwarden/common/platform/state";
 import { DeviceTrustServiceAbstraction } from "@bitwarden/common/src/auth/abstractions/device-trust.service.abstraction";
 import { PasswordStrengthServiceAbstraction } from "@bitwarden/common/tools/password-strength";
@@ -263,47 +260,6 @@ export class LoginStrategyService implements LoginStrategyServiceAbstraction {
     return await this.cryptoService.makeMasterKey(masterPassword, email, kdfConfig);
   }
 
-  // TODO: move to auth request service
-  async passwordlessLogin(
-    id: string,
-    key: string,
-    requestApproved: boolean,
-  ): Promise<AuthRequestResponse> {
-    const pubKey = Utils.fromB64ToArray(key);
-
-    const userId = (await firstValueFrom(this.accountService.activeAccount$)).id;
-    const masterKey = await firstValueFrom(this.masterPasswordService.masterKey$(userId));
-    let keyToEncrypt;
-    let encryptedMasterKeyHash = null;
-
-    if (masterKey) {
-      keyToEncrypt = masterKey.encKey;
-
-      // Only encrypt the master password hash if masterKey exists as
-      // we won't have a masterKeyHash without a masterKey
-      const masterKeyHash = await firstValueFrom(this.masterPasswordService.masterKeyHash$(userId));
-      if (masterKeyHash != null) {
-        encryptedMasterKeyHash = await this.cryptoService.rsaEncrypt(
-          Utils.fromUtf8ToArray(masterKeyHash),
-          pubKey,
-        );
-      }
-    } else {
-      const userKey = await this.cryptoService.getUserKey();
-      keyToEncrypt = userKey.key;
-    }
-
-    const encryptedKey = await this.cryptoService.rsaEncrypt(keyToEncrypt, pubKey);
-
-    const request = new PasswordlessAuthRequest(
-      encryptedKey.encryptedString,
-      encryptedMasterKeyHash?.encryptedString,
-      await this.appIdService.getAppId(),
-      requestApproved,
-    );
-    return await this.apiService.putAuthRequest(id, request);
-  }
-
   private async clearCache(): Promise<void> {
     await this.currentAuthnTypeState.update((_) => null);
     await this.loginStrategyCacheState.update((_) => null);

From ce69b25d546fb4f5e6164aae674a146b3548b5a6 Mon Sep 17 00:00:00 2001
From: Cesar Gonzalez <cesar.a.gonzalezcs@gmail.com>
Date: Wed, 5 Jun 2024 15:14:34 -0500
Subject: [PATCH 108/138] [PM-8519] Inline menu fails to update credentials
 after saving credentials when unlocking extension (#9462)

* Add Back Foreground & Background Derived State

* Do Dependency Injection

* Defend `map` Calls

* Remove Folder Change

* Add Helper For Preparing a Record For Use in `forkJoin`

* Update & Test CryptoService Changes

* Delete Unused Code

* Update DeviceTrustService

* Update CipherService

* Make `userPublicKey$` Public

* Rename convertValues File

* Switch to `MonoTypeOperatorFunction`

* Remove Unnecessary `async`

* Remove Unnecessary Mock

* Update libs/common/src/platform/abstractions/crypto.service.ts

Co-authored-by: Andreas Coroiu <acoroiu@bitwarden.com>

* Add `convertValues` Tests

* Add Doc Comments

* Convert to `function`'s

Co-authored-by: Andreas Coroiu <acoroiu@bitwarden.com>

* Fix Test Typos

* Add param doc

* Update Test Name

* Add `@throws` Docs

* [PM-8519] Inline Menu fails to Update Credentials After Saving New Cipher When Unlocking Extension

* Revert "Merge branch 'reintroduce-foreground-background-derived' into autofill/pm-8519-inline-menu-fails-to-update-credentials-after-saving-credentials-when-unlocking-extension"

This reverts commit 53b060dac108cf008ae1ab8f9a1199431496697b, reversing
changes made to 15b9a237b82aa6276856596e02a032379e9fe73e.

---------

Co-authored-by: Justin Baur <19896123+justindbaur@users.noreply.github.com>
Co-authored-by: Andreas Coroiu <acoroiu@bitwarden.com>
---
 .../abstractions/overlay.background.ts        |  2 ++
 .../background/overlay.background.spec.ts     | 34 ++++++++-----------
 .../autofill/background/overlay.background.ts |  2 ++
 3 files changed, 18 insertions(+), 20 deletions(-)

diff --git a/apps/browser/src/autofill/background/abstractions/overlay.background.ts b/apps/browser/src/autofill/background/abstractions/overlay.background.ts
index c9b230fe18c..aa62194af5c 100644
--- a/apps/browser/src/autofill/background/abstractions/overlay.background.ts
+++ b/apps/browser/src/autofill/background/abstractions/overlay.background.ts
@@ -77,7 +77,9 @@ type OverlayBackgroundExtensionMessageHandlers = {
   updateFocusedFieldData: ({ message, sender }: BackgroundOnMessageHandlerParams) => void;
   collectPageDetailsResponse: ({ message, sender }: BackgroundOnMessageHandlerParams) => void;
   unlockCompleted: ({ message }: BackgroundMessageParam) => void;
+  addedCipher: () => void;
   addEditCipherSubmitted: () => void;
+  editedCipher: () => void;
   deletedCipher: () => void;
 };
 
diff --git a/apps/browser/src/autofill/background/overlay.background.spec.ts b/apps/browser/src/autofill/background/overlay.background.spec.ts
index c469eb7dbbc..df4867640f4 100644
--- a/apps/browser/src/autofill/background/overlay.background.spec.ts
+++ b/apps/browser/src/autofill/background/overlay.background.spec.ts
@@ -1000,29 +1000,23 @@ describe("OverlayBackground", () => {
         });
       });
 
-      describe("addEditCipherSubmitted message handler", () => {
-        it("updates the overlay ciphers", () => {
-          const message = {
-            command: "addEditCipherSubmitted",
-          };
-          jest.spyOn(overlayBackground as any, "updateOverlayCiphers").mockImplementation();
+      describe("extension messages that trigger an update of the inline menu ciphers", () => {
+        const extensionMessages = [
+          "addedCipher",
+          "addEditCipherSubmitted",
+          "editedCipher",
+          "deletedCipher",
+        ];
 
-          sendMockExtensionMessage(message);
-
-          expect(overlayBackground["updateOverlayCiphers"]).toHaveBeenCalled();
+        beforeEach(() => {
+          jest.spyOn(overlayBackground, "updateOverlayCiphers").mockImplementation();
         });
-      });
 
-      describe("deletedCipher message handler", () => {
-        it("updates the overlay ciphers", () => {
-          const message = {
-            command: "deletedCipher",
-          };
-          jest.spyOn(overlayBackground as any, "updateOverlayCiphers").mockImplementation();
-
-          sendMockExtensionMessage(message);
-
-          expect(overlayBackground["updateOverlayCiphers"]).toHaveBeenCalled();
+        extensionMessages.forEach((message) => {
+          it(`triggers an update of the overlay ciphers when the ${message} message is received`, () => {
+            sendMockExtensionMessage({ command: message });
+            expect(overlayBackground.updateOverlayCiphers).toHaveBeenCalled();
+          });
         });
       });
     });
diff --git a/apps/browser/src/autofill/background/overlay.background.ts b/apps/browser/src/autofill/background/overlay.background.ts
index 56f6a3a2158..bf954c3419f 100644
--- a/apps/browser/src/autofill/background/overlay.background.ts
+++ b/apps/browser/src/autofill/background/overlay.background.ts
@@ -72,7 +72,9 @@ class OverlayBackground implements OverlayBackgroundInterface {
     updateFocusedFieldData: ({ message, sender }) => this.setFocusedFieldData(message, sender),
     collectPageDetailsResponse: ({ message, sender }) => this.storePageDetails(message, sender),
     unlockCompleted: ({ message }) => this.unlockCompleted(message),
+    addedCipher: () => this.updateOverlayCiphers(),
     addEditCipherSubmitted: () => this.updateOverlayCiphers(),
+    editedCipher: () => this.updateOverlayCiphers(),
     deletedCipher: () => this.updateOverlayCiphers(),
   };
   private readonly overlayButtonPortMessageHandlers: OverlayButtonPortMessageHandlers = {

From 472a7a9d4dd88947f97bacfedd3e1ab783f9cf94 Mon Sep 17 00:00:00 2001
From: Will Martin <contact@willmartian.com>
Date: Wed, 5 Jun 2024 17:17:24 -0400
Subject: [PATCH 109/138] [CL-302] respect bottom padding in scrollable
 popup-layout (#9514)

---
 .../src/platform/popup/layout/popup-page.component.html       | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/browser/src/platform/popup/layout/popup-page.component.html b/apps/browser/src/platform/popup/layout/popup-page.component.html
index ece6be4c63e..b3dcd626ae3 100644
--- a/apps/browser/src/platform/popup/layout/popup-page.component.html
+++ b/apps/browser/src/platform/popup/layout/popup-page.component.html
@@ -1,6 +1,6 @@
 <ng-content select="[slot=header]"></ng-content>
-<main class="tw-bg-background-alt tw-p-3 tw-flex-1 tw-overflow-y-auto tw-h-full">
-  <div class="tw-max-w-screen-sm tw-mx-auto tw-h-full">
+<main class="tw-bg-background-alt tw-flex-1 tw-overflow-y-auto tw-h-full">
+  <div class="tw-max-w-screen-sm tw-mx-auto tw-p-3 tw-overflow-y-auto tw-h-full">
     <ng-content></ng-content>
   </div>
 </main>

From 37a07b9fd8ff4df534e88682c7c860966e0c63ce Mon Sep 17 00:00:00 2001
From: Jason Ng <jng@bitwarden.com>
Date: Wed, 5 Jun 2024 18:05:40 -0400
Subject: [PATCH 110/138] [PM-8627] No Results Icon light/dark theme colors
 (#9522)

* update no results icon for light/dark theme
---
 libs/components/src/icon/icons/no-results.ts | 22 ++++++++++----------
 1 file changed, 11 insertions(+), 11 deletions(-)

diff --git a/libs/components/src/icon/icons/no-results.ts b/libs/components/src/icon/icons/no-results.ts
index f68e67f88ce..02e03f4c4ec 100644
--- a/libs/components/src/icon/icons/no-results.ts
+++ b/libs/components/src/icon/icons/no-results.ts
@@ -2,17 +2,17 @@ import { svgIcon } from "../icon";
 
 export const NoResults = svgIcon`
 <svg width="98" height="96" viewBox="0 0 98 96" fill="none" xmlns="http://www.w3.org/2000/svg">
-    <path class="tw-stroke-primary-700" d="M8.8545 86.7919L56.9901 86.7919C60.2321 86.7919 62.8603 84.1637 62.8603 80.9217L62.8603 32.2678C62.8603 30.7472 62.2702 29.2859 61.2143 28.1916L47.5536 14.0345C46.4473 12.8881 44.9225 12.2405 43.3293 12.2405L8.85451 12.2405C5.61249 12.2405 2.98431 14.8687 2.98431 18.1107L2.98431 80.9217C2.98431 84.1637 5.61248 86.7919 8.8545 86.7919Z" stroke-width="1.76106"/>
-    <path class="tw-fill-background tw-stroke-primary-700" d="M18.8335 76.8125L66.9691 76.8125C70.2111 76.8125 72.8393 74.1844 72.8393 70.9423L72.8393 21.8271C72.8393 20.3144 72.2554 18.8601 71.2093 17.7675L57.5349 3.48471C56.4276 2.32814 54.8959 1.67408 53.2947 1.67408L18.8335 1.67407C15.5915 1.67407 12.9633 4.30225 12.9633 7.54427L12.9633 70.9423C12.9633 74.1844 15.5915 76.8125 18.8335 76.8125Z" stroke-width="1.76106"/>
-    <path class="tw-stroke-primary-700" d="M54.3484 2.26123L54.3484 14.0016C54.3484 17.2436 56.9766 19.8718 60.2186 19.8718L72.546 19.8718" stroke-width="1.76106"/>
-    <path class="tw-stroke-success-600" d="M20.0914 15.9861L43.5722 15.9861" stroke-width="0.880529" stroke-linecap="round" stroke-dasharray="11.74 4.7"/>
-    <path class="tw-stroke-success-600"  d="M20.0914 30.8945L51.2034 30.8945" stroke-width="0.880529" stroke-linecap="round" stroke-dasharray="11.74 4.7"/>
-    <path class="tw-stroke-success-600" d="M20.0914 45.803L45.9203 45.803" stroke-width="0.880529" stroke-linecap="round" stroke-dasharray="11.74 4.7"/>
-    <path class="tw-stroke-success-600" d="M20.0914 60.7112L45.9203 60.7112" stroke-width="0.880529" stroke-linecap="round" stroke-dasharray="11.74 4.7"/>
-    <path class="tw-fill-background tw-stroke-primary-700" d="M85.4233 53.9449C81.9863 66.772 68.6684 74.3484 55.6768 70.8674C42.6853 67.3863 34.9398 54.1659 38.3768 41.3388C41.8138 28.5117 55.1318 20.9353 68.1234 24.4163C81.1149 27.8974 88.8604 41.1178 85.4233 53.9449Z" stroke-width="1.76106" stroke-linecap="round" stroke-linejoin="round"/>
-    <path class="tw-stroke-success-600" d="M55.1859 41.5395C55.1859 41.5395 55.2828 39.2314 57.5434 37.273C58.8998 36.084 60.5145 35.7692 61.9678 35.7343C63.2919 35.6993 64.4868 35.9441 65.1649 36.3288C66.3921 36.9583 68.7497 38.462 68.7497 41.7144C68.7497 45.1416 66.6828 46.6804 64.3576 48.394C62.0324 50.1076 62.3667 52.3385 62.3667 54.227" stroke-width="1.76106" stroke-linecap="round" stroke-linejoin="round"/>
-    <path class="tw-fill-success-600 tw-stroke-secondary-600" d="M62.2727 59.2015C62.759 59.2015 63.1533 58.8073 63.1533 58.321C63.1533 57.8347 62.759 57.4404 62.2727 57.4404C61.7864 57.4404 61.3922 57.8347 61.3922 58.321C61.3922 58.8073 61.7864 59.2015 62.2727 59.2015Z"/>
-    <path class="tw-fill-secondary-300 tw-stroke-primary-700" d="M96.0333 89.0621L95.4703 89.5329C94.2269 90.5728 92.3758 90.4078 91.3359 89.1644L78.2766 73.5488L74.79 69.3798C74.4843 69.0105 74.6096 68.4514 75.0271 68.2155C76.7198 67.2592 78.097 65.9974 78.8894 65.1364C79.1502 64.853 79.6089 64.8477 79.856 65.1431L83.3425 69.3121L96.4018 84.9277C97.4418 86.1712 97.2768 88.0222 96.0333 89.0621Z" stroke-width="1.76106" stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-text-headers" d="M8.8545 86.7919L56.9901 86.7919C60.2321 86.7919 62.8603 84.1637 62.8603 80.9217L62.8603 32.2678C62.8603 30.7472 62.2702 29.2859 61.2143 28.1916L47.5536 14.0345C46.4473 12.8881 44.9225 12.2405 43.3293 12.2405L8.85451 12.2405C5.61249 12.2405 2.98431 14.8687 2.98431 18.1107L2.98431 80.9217C2.98431 84.1637 5.61248 86.7919 8.8545 86.7919Z" stroke-width="1.76106"/>
+    <path class="tw-fill-background tw-stroke-text-headers" d="M18.8335 76.8125L66.9691 76.8125C70.2111 76.8125 72.8393 74.1844 72.8393 70.9423L72.8393 21.8271C72.8393 20.3144 72.2554 18.8601 71.2093 17.7675L57.5349 3.48471C56.4276 2.32814 54.8959 1.67408 53.2947 1.67408L18.8335 1.67407C15.5915 1.67407 12.9633 4.30225 12.9633 7.54427L12.9633 70.9423C12.9633 74.1844 15.5915 76.8125 18.8335 76.8125Z" stroke-width="1.76106"/>
+    <path class="tw-stroke-text-headers" d="M54.3484 2.26123L54.3484 14.0016C54.3484 17.2436 56.9766 19.8718 60.2186 19.8718L72.546 19.8718" stroke-width="1.76106"/>
+    <path class="tw-stroke-info-600" d="M20.0914 15.9861L43.5722 15.9861" stroke-width="0.880529" stroke-linecap="round" stroke-dasharray="11.74 4.7"/>
+    <path class="tw-stroke-info-600"  d="M20.0914 30.8945L51.2034 30.8945" stroke-width="0.880529" stroke-linecap="round" stroke-dasharray="11.74 4.7"/>
+    <path class="tw-stroke-info-600" d="M20.0914 45.803L45.9203 45.803" stroke-width="0.880529" stroke-linecap="round" stroke-dasharray="11.74 4.7"/>
+    <path class="tw-stroke-info-600" d="M20.0914 60.7112L45.9203 60.7112" stroke-width="0.880529" stroke-linecap="round" stroke-dasharray="11.74 4.7"/>
+    <path class="tw-fill-background tw-stroke-text-headers" d="M85.4233 53.9449C81.9863 66.772 68.6684 74.3484 55.6768 70.8674C42.6853 67.3863 34.9398 54.1659 38.3768 41.3388C41.8138 28.5117 55.1318 20.9353 68.1234 24.4163C81.1149 27.8974 88.8604 41.1178 85.4233 53.9449Z" stroke-width="1.76106" stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-stroke-info-600" d="M55.1859 41.5395C55.1859 41.5395 55.2828 39.2314 57.5434 37.273C58.8998 36.084 60.5145 35.7692 61.9678 35.7343C63.2919 35.6993 64.4868 35.9441 65.1649 36.3288C66.3921 36.9583 68.7497 38.462 68.7497 41.7144C68.7497 45.1416 66.6828 46.6804 64.3576 48.394C62.0324 50.1076 62.3667 52.3385 62.3667 54.227" stroke-width="1.76106" stroke-linecap="round" stroke-linejoin="round"/>
+    <path class="tw-fill-info-600 tw-stroke-secondary-600" d="M62.2727 59.2015C62.759 59.2015 63.1533 58.8073 63.1533 58.321C63.1533 57.8347 62.759 57.4404 62.2727 57.4404C61.7864 57.4404 61.3922 57.8347 61.3922 58.321C61.3922 58.8073 61.7864 59.2015 62.2727 59.2015Z"/>
+    <path class="tw-fill-secondary-300 tw-stroke-text-headers" d="M96.0333 89.0621L95.4703 89.5329C94.2269 90.5728 92.3758 90.4078 91.3359 89.1644L78.2766 73.5488L74.79 69.3798C74.4843 69.0105 74.6096 68.4514 75.0271 68.2155C76.7198 67.2592 78.097 65.9974 78.8894 65.1364C79.1502 64.853 79.6089 64.8477 79.856 65.1431L83.3425 69.3121L96.4018 84.9277C97.4418 86.1712 97.2768 88.0222 96.0333 89.0621Z" stroke-width="1.76106" stroke-linecap="round" stroke-linejoin="round"/>
 </svg>
 
 `;

From 474a5a8c2237198ed9b5bac95f0ec3342e6b1227 Mon Sep 17 00:00:00 2001
From: Thomas Rittson <31796059+eliykat@users.noreply.github.com>
Date: Thu, 6 Jun 2024 09:06:27 +1000
Subject: [PATCH 111/138] Add bit-cli directory to cli build workflow (#9491)

---
 .github/workflows/build-cli.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/build-cli.yml b/.github/workflows/build-cli.yml
index 6809d950c4e..5e333b3b58a 100644
--- a/.github/workflows/build-cli.yml
+++ b/.github/workflows/build-cli.yml
@@ -13,6 +13,7 @@ on:
       - '!*.md'
       - '!*.txt'
       - '.github/workflows/build-cli.yml'
+      - 'bitwarden_license/bit-cli/**'
   push:
     branches:
       - 'main'
@@ -25,6 +26,7 @@ on:
       - '!*.md'
       - '!*.txt'
       - '.github/workflows/build-cli.yml'
+      - 'bitwarden_license/bit-cli/**'
   workflow_dispatch:
     inputs: {}
 

From 323b59de7119401ce19b8f8d6b1e2423bb950a23 Mon Sep 17 00:00:00 2001
From: Maciej Zieniuk <167752252+mzieniukbw@users.noreply.github.com>
Date: Thu, 6 Jun 2024 09:40:51 +0200
Subject: [PATCH 112/138] SM-1213 Add Bitwarden Secrets Manager tip to CLI help
 (#9307)

* SM-1213 Add Bitwarden Secrets Manager tip to help

* SM-1213: Moved SM tip before examples
---
 apps/cli/src/program.ts | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/apps/cli/src/program.ts b/apps/cli/src/program.ts
index e0311beb247..597b388a05b 100644
--- a/apps/cli/src/program.ts
+++ b/apps/cli/src/program.ts
@@ -83,6 +83,11 @@ export class Program extends BaseProgram {
     });
 
     program.on("--help", () => {
+      writeLn(
+        chalk.yellowBright(
+          "\n  Tip: Managing and retrieving secrets for dev environments is easier with Bitwarden Secrets Manager. Learn more under https://bitwarden.com/products/secrets-manager/",
+        ),
+      );
       writeLn("\n  Examples:");
       writeLn("");
       writeLn("    bw login");

From d8a86cdb7ee07acfdf231cede2f71467319275a9 Mon Sep 17 00:00:00 2001
From: KiruthigaManivannan
 <162679756+KiruthigaManivannan@users.noreply.github.com>
Date: Thu, 6 Jun 2024 18:18:13 +0530
Subject: [PATCH 113/138] PM-8478 Defect Visually more padding needed around
 bit avatar (#9481)

---
 apps/web/src/app/auth/settings/account/profile.component.html | 1 +
 1 file changed, 1 insertion(+)

diff --git a/apps/web/src/app/auth/settings/account/profile.component.html b/apps/web/src/app/auth/settings/account/profile.component.html
index db6ab2b6588..88f73945f26 100644
--- a/apps/web/src/app/auth/settings/account/profile.component.html
+++ b/apps/web/src/app/auth/settings/account/profile.component.html
@@ -23,6 +23,7 @@
         <dynamic-avatar text="{{ profile | userName }}" [id]="profile.id" [size]="'large'">
         </dynamic-avatar>
         <button
+          class="tw-ml-3"
           type="button"
           buttonType="secondary"
           bitButton

From f2bd16a0c41d889600aa534001f83902ac741c08 Mon Sep 17 00:00:00 2001
From: KiruthigaManivannan
 <162679756+KiruthigaManivannan@users.noreply.github.com>
Date: Thu, 6 Jun 2024 18:45:17 +0530
Subject: [PATCH 114/138] PM-1938 Migrate Accept Emergency Component (#9177)

* PM-1938 Migrate Accept Emergency Component

* PM-1938 Updated OSS routing module

* PM-1938 Updated anon layout path and removed width

* PM-1938 Addressed review comments

* PM-1938 - Move canActivate up a level.

* PM-1938 - Consolidate routing after merging in main.

---------

Co-authored-by: Jared Snider <116684653+JaredSnider-Bitwarden@users.noreply.github.com>
Co-authored-by: Jared Snider <jsnider@bitwarden.com>
---
 .../accept/accept-emergency.component.html    | 64 +++++++++----------
 apps/web/src/app/oss-routing.module.ts        | 32 +++++++---
 2 files changed, 52 insertions(+), 44 deletions(-)

diff --git a/apps/web/src/app/auth/emergency-access/accept/accept-emergency.component.html b/apps/web/src/app/auth/emergency-access/accept/accept-emergency.component.html
index 4690a4e63a5..3e1db406316 100644
--- a/apps/web/src/app/auth/emergency-access/accept/accept-emergency.component.html
+++ b/apps/web/src/app/auth/emergency-access/accept/accept-emergency.component.html
@@ -1,45 +1,39 @@
-<div class="mt-5 d-flex justify-content-center" *ngIf="loading">
+<div class="tw-mt-5 tw-flex tw-justify-center" *ngIf="loading">
   <div>
-    <img class="mb-4 logo logo-themed" alt="Bitwarden" />
-    <p class="text-center">
+    <p class="tw-text-center">
       <i
-        class="bwi bwi-spinner bwi-spin bwi-2x text-muted"
+        class="bwi bwi-spinner bwi-spin bwi-2x tw-text-muted"
         title="{{ 'loading' | i18n }}"
         aria-hidden="true"
       ></i>
-      <span class="sr-only">{{ "loading" | i18n }}</span>
+      <span class="tw-sr-only">{{ "loading" | i18n }}</span>
     </p>
   </div>
 </div>
-<div class="container" *ngIf="!loading && !authed">
-  <div class="row justify-content-md-center mt-5">
-    <div class="col-5">
-      <p class="lead text-center mb-4">{{ "emergencyAccess" | i18n }}</p>
-      <div class="card d-block">
-        <div class="card-body">
-          <p class="text-center">
-            {{ name }}
-          </p>
-          <p>{{ "acceptEmergencyAccess" | i18n }}</p>
-          <hr />
-          <div class="d-flex">
-            <a
-              routerLink="/login"
-              [queryParams]="{ email: email }"
-              class="btn btn-primary btn-block"
-            >
-              {{ "logIn" | i18n }}
-            </a>
-            <a
-              routerLink="/register"
-              [queryParams]="{ email: email }"
-              class="btn btn-primary btn-block ml-2 mt-0"
-            >
-              {{ "createAccount" | i18n }}
-            </a>
-          </div>
-        </div>
-      </div>
-    </div>
+<div *ngIf="!loading && !authed">
+  <p bitTypography="body1" class="tw-text-center">
+    {{ name }}
+  </p>
+  <p bitTypography="body1">{{ "acceptEmergencyAccess" | i18n }}</p>
+  <hr />
+  <div class="tw-flex tw-gap-2">
+    <a
+      bitButton
+      buttonType="primary"
+      routerLink="/login"
+      [queryParams]="{ email: email }"
+      [block]="true"
+    >
+      {{ "logIn" | i18n }}
+    </a>
+    <a
+      bitButton
+      buttonType="primary"
+      routerLink="/register"
+      [queryParams]="{ email: email }"
+      [block]="true"
+    >
+      {{ "createAccount" | i18n }}
+    </a>
   </div>
 </div>
diff --git a/apps/web/src/app/oss-routing.module.ts b/apps/web/src/app/oss-routing.module.ts
index 8509e987eb4..77e51172269 100644
--- a/apps/web/src/app/oss-routing.module.ts
+++ b/apps/web/src/app/oss-routing.module.ts
@@ -128,15 +128,6 @@ const routes: Routes = [
         component: AcceptOrganizationComponent,
         data: { titleId: "joinOrganization", doNotSaveUrl: false } satisfies DataProperties,
       },
-      {
-        path: "accept-emergency",
-        canActivate: [deepLinkGuard()],
-        data: { titleId: "acceptEmergency", doNotSaveUrl: false } satisfies DataProperties,
-        loadComponent: () =>
-          import("./auth/emergency-access/accept/accept-emergency.component").then(
-            (mod) => mod.AcceptEmergencyComponent,
-          ),
-      },
       {
         path: "accept-families-for-enterprise",
         component: AcceptFamilySponsorshipComponent,
@@ -223,6 +214,29 @@ const routes: Routes = [
           titleId: "recoverAccountTwoStep",
         } satisfies DataProperties & AnonLayoutWrapperData,
       },
+      {
+        path: "accept-emergency",
+        canActivate: [deepLinkGuard()],
+        children: [
+          {
+            path: "",
+            data: {
+              pageTitle: "emergencyAccess",
+              titleId: "acceptEmergency",
+              doNotSaveUrl: false,
+            } satisfies DataProperties & AnonLayoutWrapperData,
+            loadComponent: () =>
+              import("./auth/emergency-access/accept/accept-emergency.component").then(
+                (mod) => mod.AcceptEmergencyComponent,
+              ),
+          },
+          {
+            path: "",
+            component: EnvironmentSelectorComponent,
+            outlet: "environment-selector",
+          },
+        ],
+      },
     ],
   },
   {

From d58103dfb1de14e02e79009638d2ac5f26a016ac Mon Sep 17 00:00:00 2001
From: KiruthigaManivannan
 <162679756+KiruthigaManivannan@users.noreply.github.com>
Date: Thu, 6 Jun 2024 18:57:04 +0530
Subject: [PATCH 115/138] AC-2702 Defect Full Header name is not visible for
 require sso component (#9479)

---
 .../organizations/policies/policy-edit.component.html         | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/apps/web/src/app/admin-console/organizations/policies/policy-edit.component.html b/apps/web/src/app/admin-console/organizations/policies/policy-edit.component.html
index 063a8759e6f..69b81ae5571 100644
--- a/apps/web/src/app/admin-console/organizations/policies/policy-edit.component.html
+++ b/apps/web/src/app/admin-console/organizations/policies/policy-edit.component.html
@@ -1,7 +1,5 @@
 <form [formGroup]="formGroup" [bitSubmit]="submit" [appApiAction]="formPromise">
-  <bit-dialog [loading]="loading">
-    <span bitDialogTitle>{{ "editPolicy" | i18n }} - {{ policy.name | i18n }}</span>
-
+  <bit-dialog [loading]="loading" [title]="'editPolicy' | i18n" [subtitle]="policy.name | i18n">
     <ng-container bitDialogContent>
       <div *ngIf="loading">
         <i

From a1442194ae188fa8351e5b2862db41ebf68a380a Mon Sep 17 00:00:00 2001
From: KiruthigaManivannan
 <162679756+KiruthigaManivannan@users.noreply.github.com>
Date: Thu, 6 Jun 2024 19:23:02 +0530
Subject: [PATCH 116/138] PM-2047 Migrated Change Avatar component (#8522)

* PM-2047 Migrated Change Avatar component

* PM-2047 Addressed the review comments

* PM-2047 Changed the file name

* PM-2047 Removed form promise
---
 .../change-avatar-dialog.component.html       | 61 ++++++++++++++
 ...t.ts => change-avatar-dialog.component.ts} | 51 +++++------
 .../account/change-avatar.component.html      | 84 -------------------
 .../settings/account/profile.component.html   |  1 -
 .../settings/account/profile.component.ts     | 32 +++----
 .../src/app/shared/loose-components.module.ts |  6 +-
 6 files changed, 101 insertions(+), 134 deletions(-)
 create mode 100644 apps/web/src/app/auth/settings/account/change-avatar-dialog.component.html
 rename apps/web/src/app/auth/settings/account/{change-avatar.component.ts => change-avatar-dialog.component.ts} (78%)
 delete mode 100644 apps/web/src/app/auth/settings/account/change-avatar.component.html

diff --git a/apps/web/src/app/auth/settings/account/change-avatar-dialog.component.html b/apps/web/src/app/auth/settings/account/change-avatar-dialog.component.html
new file mode 100644
index 00000000000..fd65192beea
--- /dev/null
+++ b/apps/web/src/app/auth/settings/account/change-avatar-dialog.component.html
@@ -0,0 +1,61 @@
+<bit-dialog dialogSize="large" [title]="'customizeAvatar' | i18n">
+  <ng-container bitDialogContent>
+    <div class="tw-text-center" *ngIf="loading">
+      <i class="bwi bwi-spinner bwi-spin" title="{{ 'loading' | i18n }}" aria-hidden="true"></i>
+      {{ "loading" | i18n }}
+    </div>
+    <app-callout type="error" *ngIf="error">
+      {{ error }}
+    </app-callout>
+    <p class="tw-text-lg">{{ "pickAnAvatarColor" | i18n }}</p>
+    <div class="tw-flex tw-flex-wrap tw-justify-center tw-gap-8">
+      <ng-container *ngFor="let c of defaultColorPalette">
+        <selectable-avatar
+          appStopClick
+          (select)="setSelection(c.color)"
+          [selected]="c.selected"
+          [title]="c.name"
+          text="{{ profile | userName }}"
+          [color]="c.color"
+          [border]="true"
+        >
+        </selectable-avatar>
+      </ng-container>
+      <span>
+        <span
+          [tabIndex]="0"
+          (keyup.enter)="showCustomPicker()"
+          (click)="showCustomPicker()"
+          title="{{ 'customColor' | i18n }}"
+          [ngClass]="{
+            '!tw-outline-[3px] tw-outline-primary-600 hover:tw-outline-[3px] hover:tw-outline-primary-600':
+              customColorSelected
+          }"
+          class="tw-relative tw-flex tw-h-24 tw-w-24 tw-cursor-pointer tw-place-content-center tw-content-center tw-justify-center tw-rounded-full tw-border tw-border-solid tw-border-secondary-600 tw-outline tw-outline-0 tw-outline-offset-1 hover:tw-outline-1 hover:tw-outline-primary-300 focus:tw-outline-2 focus:tw-outline-primary-600"
+          [style.background-color]="customColor$ | async"
+        >
+          <i
+            [style.color]="customTextColor$ | async"
+            class="bwi bwi-pencil tw-m-auto tw-text-3xl"
+          ></i>
+          <input
+            tabindex="-1"
+            class="tw-absolute tw-bottom-0 tw-right-0 tw-h-px tw-w-px tw-border-none tw-bg-transparent tw-opacity-0"
+            #colorPicker
+            type="color"
+            [ngModel]="customColor$ | async"
+            (ngModelChange)="customColor$.next($event)"
+          />
+        </span>
+      </span>
+    </div>
+  </ng-container>
+  <ng-container bitDialogFooter>
+    <button bitButton type="submit" buttonType="primary" [disabled]="loading" [bitAction]="submit">
+      {{ "save" | i18n }}
+    </button>
+    <button bitButton type="button" buttonType="secondary" bitDialogClose>
+      {{ "close" | i18n }}
+    </button>
+  </ng-container>
+</bit-dialog>
diff --git a/apps/web/src/app/auth/settings/account/change-avatar.component.ts b/apps/web/src/app/auth/settings/account/change-avatar-dialog.component.ts
similarity index 78%
rename from apps/web/src/app/auth/settings/account/change-avatar.component.ts
rename to apps/web/src/app/auth/settings/account/change-avatar-dialog.component.ts
index bbcbaf6820f..6946f8b94bb 100644
--- a/apps/web/src/app/auth/settings/account/change-avatar.component.ts
+++ b/apps/web/src/app/auth/settings/account/change-avatar-dialog.component.ts
@@ -1,11 +1,10 @@
+import { DIALOG_DATA, DialogConfig, DialogRef } from "@angular/cdk/dialog";
 import {
   Component,
   ElementRef,
-  EventEmitter,
-  Input,
+  Inject,
   OnDestroy,
   OnInit,
-  Output,
   ViewChild,
   ViewEncapsulation,
 } from "@angular/core";
@@ -14,20 +13,20 @@ import { BehaviorSubject, debounceTime, firstValueFrom, Subject, takeUntil } fro
 import { AvatarService } from "@bitwarden/common/auth/abstractions/avatar.service";
 import { ProfileResponse } from "@bitwarden/common/models/response/profile.response";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
+import { DialogService } from "@bitwarden/components";
+
+type ChangeAvatarDialogData = {
+  profile: ProfileResponse;
+};
 
 @Component({
-  selector: "app-change-avatar",
-  templateUrl: "change-avatar.component.html",
+  templateUrl: "change-avatar-dialog.component.html",
   encapsulation: ViewEncapsulation.None,
 })
-export class ChangeAvatarComponent implements OnInit, OnDestroy {
-  @Input() profile: ProfileResponse;
-
-  @Output() changeColor: EventEmitter<string | null> = new EventEmitter();
-  @Output() onSaved = new EventEmitter();
+export class ChangeAvatarDialogComponent implements OnInit, OnDestroy {
+  profile: ProfileResponse;
 
   @ViewChild("colorPicker") colorPickerElement: ElementRef<HTMLElement>;
 
@@ -52,11 +51,14 @@ export class ChangeAvatarComponent implements OnInit, OnDestroy {
   private destroy$ = new Subject<void>();
 
   constructor(
+    @Inject(DIALOG_DATA) protected data: ChangeAvatarDialogData,
     private i18nService: I18nService,
     private platformUtilsService: PlatformUtilsService,
-    private logService: LogService,
     private avatarService: AvatarService,
-  ) {}
+    private dialogRef: DialogRef,
+  ) {
+    this.profile = data.profile;
+  }
 
   async ngOnInit() {
     //localize the default colors
@@ -88,20 +90,15 @@ export class ChangeAvatarComponent implements OnInit, OnDestroy {
     Utils.stringToColor(this.profile.name.toString());
   }
 
-  async submit() {
-    try {
-      if (Utils.validateHexColor(this.currentSelection) || this.currentSelection == null) {
-        await this.avatarService.setAvatarColor(this.currentSelection);
-        this.changeColor.emit(this.currentSelection);
-        this.platformUtilsService.showToast("success", null, this.i18nService.t("avatarUpdated"));
-      } else {
-        this.platformUtilsService.showToast("error", null, this.i18nService.t("errorOccurred"));
-      }
-    } catch (e) {
-      this.logService.error(e);
+  submit = async () => {
+    if (Utils.validateHexColor(this.currentSelection) || this.currentSelection == null) {
+      await this.avatarService.setAvatarColor(this.currentSelection);
+      this.dialogRef.close();
+      this.platformUtilsService.showToast("success", null, this.i18nService.t("avatarUpdated"));
+    } else {
       this.platformUtilsService.showToast("error", null, this.i18nService.t("errorOccurred"));
     }
-  }
+  };
 
   async ngOnDestroy() {
     this.destroy$.next();
@@ -131,6 +128,10 @@ export class ChangeAvatarComponent implements OnInit, OnDestroy {
       }
     }
   }
+
+  static open(dialogService: DialogService, config: DialogConfig<ChangeAvatarDialogData>) {
+    return dialogService.open(ChangeAvatarDialogComponent, config);
+  }
 }
 
 export class NamedAvatarColor {
diff --git a/apps/web/src/app/auth/settings/account/change-avatar.component.html b/apps/web/src/app/auth/settings/account/change-avatar.component.html
deleted file mode 100644
index 3a974241d5f..00000000000
--- a/apps/web/src/app/auth/settings/account/change-avatar.component.html
+++ /dev/null
@@ -1,84 +0,0 @@
-<!-- Please remove this disable statement when editing this file! -->
-<!-- eslint-disable tailwindcss/no-custom-classname -->
-<div class="modal fade" role="dialog" aria-modal="true" aria-labelledby="customizeTitle">
-  <div class="modal-dialog modal-dialog-scrollable tw-w-[600px] tw-max-w-none" role="document">
-    <div class="modal-content">
-      <div class="modal-header">
-        <h2 class="modal-title" id="customizeTitle">{{ "customizeAvatar" | i18n }}</h2>
-        <button
-          type="button"
-          class="close"
-          data-dismiss="modal"
-          appA11yTitle="{{ 'close' | i18n }}"
-        >
-          <span aria-hidden="true">&times;</span>
-        </button>
-      </div>
-      <div class="modal-body">
-        <div class="card-body text-center" *ngIf="loading">
-          <i class="bwi bwi-spinner bwi-spin" title="{{ 'loading' | i18n }}" aria-hidden="true"></i>
-          {{ "loading" | i18n }}
-        </div>
-        <app-callout type="error" *ngIf="error">
-          {{ error }}
-        </app-callout>
-        <p class="tw-text-lg">{{ "pickAnAvatarColor" | i18n }}</p>
-        <div class="tw-flex tw-flex-wrap tw-justify-center tw-gap-8">
-          <ng-container *ngFor="let c of defaultColorPalette">
-            <selectable-avatar
-              appStopClick
-              (select)="setSelection(c.color)"
-              [selected]="c.selected"
-              [title]="c.name"
-              text="{{ profile | userName }}"
-              [color]="c.color"
-              [border]="true"
-            >
-            </selectable-avatar>
-          </ng-container>
-          <span>
-            <span
-              [tabIndex]="0"
-              (keyup.enter)="showCustomPicker()"
-              (click)="showCustomPicker()"
-              title="{{ 'customColor' | i18n }}"
-              [ngClass]="{
-                '!tw-outline-[3px] tw-outline-primary-600 hover:tw-outline-[3px] hover:tw-outline-primary-600':
-                  customColorSelected
-              }"
-              class="tw-outline-solid tw-bg-white tw-relative tw-flex tw-h-24 tw-w-24 tw-cursor-pointer tw-place-content-center tw-content-center tw-justify-center tw-rounded-full tw-border tw-border-solid tw-border-secondary-600 tw-outline tw-outline-0 tw-outline-offset-1 hover:tw-outline-1 hover:tw-outline-primary-300 focus:tw-outline-2 focus:tw-outline-primary-600"
-              [style.background-color]="customColor$ | async"
-            >
-              <i
-                [style.color]="customTextColor$ | async"
-                class="bwi bwi-pencil tw-m-auto tw-text-3xl"
-              ></i>
-              <input
-                tabindex="-1"
-                class="tw-absolute tw-bottom-0 tw-right-0 tw-h-px tw-w-px tw-border-none tw-bg-transparent tw-opacity-0"
-                #colorPicker
-                type="color"
-                [ngModel]="customColor$ | async"
-                (ngModelChange)="customColor$.next($event)"
-              />
-            </span>
-          </span>
-        </div>
-      </div>
-      <div class="modal-footer">
-        <button
-          type="submit"
-          class="btn btn-primary btn-submit"
-          [disabled]="loading"
-          (click)="submit()"
-        >
-          <i class="bwi bwi-spinner bwi-spin" title="{{ 'loading' | i18n }}" aria-hidden="true"></i>
-          <span>{{ "save" | i18n }}</span>
-        </button>
-        <button type="button" class="btn btn-outline-secondary" data-dismiss="modal">
-          {{ "close" | i18n }}
-        </button>
-      </div>
-    </div>
-  </div>
-</div>
diff --git a/apps/web/src/app/auth/settings/account/profile.component.html b/apps/web/src/app/auth/settings/account/profile.component.html
index 88f73945f26..4464824c63e 100644
--- a/apps/web/src/app/auth/settings/account/profile.component.html
+++ b/apps/web/src/app/auth/settings/account/profile.component.html
@@ -45,4 +45,3 @@
   </div>
   <button bitButton bitFormButton type="submit" buttonType="primary">{{ "save" | i18n }}</button>
 </form>
-<ng-template #avatarModalTemplate></ng-template>
diff --git a/apps/web/src/app/auth/settings/account/profile.component.ts b/apps/web/src/app/auth/settings/account/profile.component.ts
index 64c5687c0b8..33463b689c9 100644
--- a/apps/web/src/app/auth/settings/account/profile.component.ts
+++ b/apps/web/src/app/auth/settings/account/profile.component.ts
@@ -1,28 +1,25 @@
-import { ViewChild, ViewContainerRef, Component, OnDestroy, OnInit } from "@angular/core";
+import { Component, OnInit } from "@angular/core";
 import { FormControl, FormGroup } from "@angular/forms";
 import { Subject, takeUntil } from "rxjs";
 
-import { ModalService } from "@bitwarden/angular/services/modal.service";
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
 import { UpdateProfileRequest } from "@bitwarden/common/auth/models/request/update-profile.request";
 import { ProfileResponse } from "@bitwarden/common/models/response/profile.response";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
+import { DialogService } from "@bitwarden/components";
 
-import { ChangeAvatarComponent } from "./change-avatar.component";
+import { ChangeAvatarDialogComponent } from "./change-avatar-dialog.component";
 
 @Component({
   selector: "app-profile",
   templateUrl: "profile.component.html",
 })
-export class ProfileComponent implements OnInit, OnDestroy {
+export class ProfileComponent implements OnInit {
   loading = true;
   profile: ProfileResponse;
   fingerprintMaterial: string;
-
-  @ViewChild("avatarModalTemplate", { read: ViewContainerRef, static: true })
-  avatarModalRef: ViewContainerRef;
   private destroy$ = new Subject<void>();
 
   protected formGroup = new FormGroup({
@@ -35,7 +32,7 @@ export class ProfileComponent implements OnInit, OnDestroy {
     private i18nService: I18nService,
     private platformUtilsService: PlatformUtilsService,
     private stateService: StateService,
-    private modalService: ModalService,
+    private dialogService: DialogService,
   ) {}
 
   async ngOnInit() {
@@ -53,24 +50,17 @@ export class ProfileComponent implements OnInit, OnDestroy {
       });
   }
 
+  openChangeAvatar = async () => {
+    ChangeAvatarDialogComponent.open(this.dialogService, {
+      data: { profile: this.profile },
+    });
+  };
+
   async ngOnDestroy() {
     this.destroy$.next();
     this.destroy$.complete();
   }
 
-  openChangeAvatar = async () => {
-    const modalOpened = await this.modalService.openViewRef(
-      ChangeAvatarComponent,
-      this.avatarModalRef,
-      (modal) => {
-        modal.profile = this.profile;
-        modal.changeColor.pipe(takeUntil(this.destroy$)).subscribe(() => {
-          modalOpened[0].close();
-        });
-      },
-    );
-  };
-
   submit = async () => {
     const request = new UpdateProfileRequest(
       this.formGroup.get("name").value,
diff --git a/apps/web/src/app/shared/loose-components.module.ts b/apps/web/src/app/shared/loose-components.module.ts
index 79478d0cae6..b8cfbd34013 100644
--- a/apps/web/src/app/shared/loose-components.module.ts
+++ b/apps/web/src/app/shared/loose-components.module.ts
@@ -28,7 +28,7 @@ import { RegisterFormModule } from "../auth/register-form/register-form.module";
 import { RemovePasswordComponent } from "../auth/remove-password.component";
 import { SetPasswordComponent } from "../auth/set-password.component";
 import { AccountComponent } from "../auth/settings/account/account.component";
-import { ChangeAvatarComponent } from "../auth/settings/account/change-avatar.component";
+import { ChangeAvatarDialogComponent } from "../auth/settings/account/change-avatar-dialog.component";
 import { ChangeEmailComponent } from "../auth/settings/account/change-email.component";
 import { DangerZoneComponent } from "../auth/settings/account/danger-zone.component";
 import { DeauthorizeSessionsComponent } from "../auth/settings/account/deauthorize-sessions.component";
@@ -156,7 +156,7 @@ import { SharedModule } from "./shared.module";
     PreferencesComponent,
     PremiumBadgeComponent,
     ProfileComponent,
-    ChangeAvatarComponent,
+    ChangeAvatarDialogComponent,
     ProvidersComponent,
     PurgeVaultComponent,
     RecoverDeleteComponent,
@@ -230,7 +230,7 @@ import { SharedModule } from "./shared.module";
     PreferencesComponent,
     PremiumBadgeComponent,
     ProfileComponent,
-    ChangeAvatarComponent,
+    ChangeAvatarDialogComponent,
     ProvidersComponent,
     PurgeVaultComponent,
     RecoverDeleteComponent,

From 6fadee7cb4391da0d55e7c298f324faf6f719d1d Mon Sep 17 00:00:00 2001
From: KiruthigaManivannan
 <162679756+KiruthigaManivannan@users.noreply.github.com>
Date: Thu, 6 Jun 2024 19:23:29 +0530
Subject: [PATCH 117/138] PM-2055 Update Two Factor Authenticator Dialog
 (#8972)

* PM-2055 Update Two Factor Authenticator Dialog

* PM-2055 Added close to disable two factor

* PM-2055 Added a event emitter to capture enabled status
---
 .../two-factor-authenticator.component.html   | 189 ++++++++----------
 .../two-factor-authenticator.component.ts     |  43 +++-
 .../settings/two-factor-setup.component.html  |   1 -
 .../settings/two-factor-setup.component.ts    |  11 +-
 4 files changed, 119 insertions(+), 125 deletions(-)

diff --git a/apps/web/src/app/auth/settings/two-factor-authenticator.component.html b/apps/web/src/app/auth/settings/two-factor-authenticator.component.html
index e17714cca79..a7efaed731e 100644
--- a/apps/web/src/app/auth/settings/two-factor-authenticator.component.html
+++ b/apps/web/src/app/auth/settings/two-factor-authenticator.component.html
@@ -1,109 +1,80 @@
-<div class="modal fade" role="dialog" aria-modal="true" aria-labelledby="2faAuthenticatorTitle">
-  <div class="modal-dialog" role="document">
-    <div class="modal-content">
-      <div class="modal-header">
-        <h1 class="modal-title" id="2faAuthenticatorTitle">
-          {{ "twoStepLogin" | i18n }}
-          <small>{{ "authenticatorAppTitle" | i18n }}</small>
-        </h1>
-        <button
-          type="button"
-          class="close"
-          data-dismiss="modal"
-          appA11yTitle="{{ 'close' | i18n }}"
-        >
-          <span aria-hidden="true">&times;</span>
-        </button>
-      </div>
-      <form
-        #form
-        (ngSubmit)="submit()"
-        [appApiAction]="formPromise"
-        ngNativeValidate
-        *ngIf="authed"
-      >
-        <div class="modal-body">
-          <ng-container *ngIf="!enabled">
-            <img class="float-right mfaType0" alt="Authenticator app logo" />
-            <p>{{ "twoStepAuthenticatorDesc" | i18n }}</p>
-            <p>
-              <strong>1. {{ "twoStepAuthenticatorDownloadApp" | i18n }}</strong>
-            </p>
-          </ng-container>
-          <ng-container *ngIf="enabled">
-            <app-callout type="success" title="{{ 'enabled' | i18n }}" icon="bwi bwi-check-circle">
-              <p>{{ "twoStepLoginProviderEnabled" | i18n }}</p>
-              {{ "twoStepAuthenticatorReaddDesc" | i18n }}
-            </app-callout>
-            <img class="float-right mfaType0" alt="Authenticator app logo" />
-            <p>{{ "twoStepAuthenticatorNeedApp" | i18n }}</p>
-          </ng-container>
-          <ul class="bwi-ul">
-            <li>
-              <i class="bwi bwi-li bwi-apple"></i>{{ "iosDevices" | i18n }}:
-              <a
-                href="https://itunes.apple.com/us/app/authy/id494168017?mt=8"
-                target="_blank"
-                rel="noreferrer"
-                >Authy</a
-              >
-            </li>
-            <li>
-              <i class="bwi bwi-li bwi-android"></i>{{ "androidDevices" | i18n }}:
-              <a
-                href="https://play.google.com/store/apps/details?id=com.authy.authy"
-                target="_blank"
-                rel="noreferrer"
-                >Authy</a
-              >
-            </li>
-            <li>
-              <i class="bwi bwi-li bwi-windows"></i>{{ "windowsDevices" | i18n }}:
-              <a
-                href="https://www.microsoft.com/p/authenticator/9wzdncrfj3rj"
-                target="_blank"
-                rel="noreferrer"
-                >Microsoft Authenticator</a
-              >
-            </li>
-          </ul>
-          <p>{{ "twoStepAuthenticatorAppsRecommended" | i18n }}</p>
-          <p *ngIf="!enabled">
-            <strong>2. {{ "twoStepAuthenticatorScanCode" | i18n }}</strong>
-          </p>
-          <hr *ngIf="enabled" />
-          <p class="text-center" [ngClass]="{ 'mb-0': enabled }">
-            <canvas id="qr"></canvas><br />
-            <code appA11yTitle="{{ 'key' | i18n }}">{{ key }}</code>
-          </p>
-          <ng-container *ngIf="!enabled">
-            <label for="token">3. {{ "twoStepAuthenticatorEnterCode" | i18n }}</label>
-            <input
-              id="token"
-              type="text"
-              name="Token"
-              class="form-control"
-              [(ngModel)]="token"
-              required
-              appInputVerbatim
-            />
-          </ng-container>
-        </div>
-        <div class="modal-footer">
-          <button type="submit" class="btn btn-primary btn-submit" [disabled]="form.loading">
-            <i
-              class="bwi bwi-spinner bwi-spin"
-              title="{{ 'loading' | i18n }}"
-              aria-hidden="true"
-            ></i>
-            <span *ngIf="!enabled">{{ "enable" | i18n }}</span>
-            <span *ngIf="enabled">{{ "disable" | i18n }}</span>
-          </button>
-          <button type="button" class="btn btn-outline-secondary" data-dismiss="modal">
-            {{ "close" | i18n }}
-          </button>
-        </div>
-      </form>
-    </div>
-  </div>
-</div>
+<form *ngIf="authed" [formGroup]="formGroup" [bitSubmit]="submit">
+  <bit-dialog dialogSize="default">
+    <span bitDialogTitle
+      >{{ "twoStepLogin" | i18n }}
+      <span bitTypography="body1">{{ "authenticatorAppTitle" | i18n }}</span>
+    </span>
+    <ng-container bitDialogContent>
+      <ng-container *ngIf="!enabled">
+        <img class="float-right mfaType0" alt="Authenticator app logo" />
+        <p bitTypography="body1">{{ "twoStepAuthenticatorDesc" | i18n }}</p>
+        <p bitTypography="body1" class="tw-font-bold">
+          1. {{ "twoStepAuthenticatorDownloadApp" | i18n }}
+        </p>
+      </ng-container>
+      <ng-container *ngIf="enabled">
+        <app-callout type="success" title="{{ 'enabled' | i18n }}" icon="bwi bwi-check-circle">
+          <p bitTypography="body1">{{ "twoStepLoginProviderEnabled" | i18n }}</p>
+          {{ "twoStepAuthenticatorReaddDesc" | i18n }}
+        </app-callout>
+        <img class="float-right mfaType0" alt="Authenticator app logo" />
+        <p bitTypography="body1">{{ "twoStepAuthenticatorNeedApp" | i18n }}</p>
+      </ng-container>
+      <ul class="bwi-ul">
+        <li>
+          <i class="bwi bwi-li bwi-apple"></i>{{ "iosDevices" | i18n }}:
+          <a
+            bitLink
+            href="https://itunes.apple.com/us/app/authy/id494168017?mt=8"
+            target="_blank"
+            rel="noreferrer"
+            >Authy</a
+          >
+        </li>
+        <li>
+          <i class="bwi bwi-li bwi-android"></i>{{ "androidDevices" | i18n }}:
+          <a
+            bitLink
+            href="https://play.google.com/store/apps/details?id=com.authy.authy"
+            target="_blank"
+            rel="noreferrer"
+            >Authy</a
+          >
+        </li>
+        <li>
+          <i class="bwi bwi-li bwi-windows"></i>{{ "windowsDevices" | i18n }}:
+          <a
+            bitLink
+            href="https://www.microsoft.com/p/authenticator/9wzdncrfj3rj"
+            target="_blank"
+            rel="noreferrer"
+            >Microsoft Authenticator</a
+          >
+        </li>
+      </ul>
+      <p bitTypography="body1">{{ "twoStepAuthenticatorAppsRecommended" | i18n }}</p>
+      <p *ngIf="!enabled" bitTypography="body1" class="tw-font-bold">
+        2. {{ "twoStepAuthenticatorScanCode" | i18n }}
+      </p>
+      <hr *ngIf="enabled" />
+      <p class="text-center" [ngClass]="{ 'mb-0': enabled }">
+        <canvas id="qr"></canvas><br />
+        <code appA11yTitle="{{ 'key' | i18n }}">{{ key }}</code>
+      </p>
+      <ng-container *ngIf="!enabled">
+        <bit-form-field>
+          <bit-label>3. {{ "twoStepAuthenticatorEnterCode" | i18n }}</bit-label>
+          <input bitInput type="text" formControlName="token" appInputVerbatim />
+        </bit-form-field>
+      </ng-container>
+    </ng-container>
+    <ng-container bitDialogFooter>
+      <button bitButton bitFormButton type="submit" buttonType="primary">
+        {{ (enabled ? "disable" : "enable") | i18n }}
+      </button>
+      <button bitButton bitFormButton type="button" buttonType="secondary" [bitAction]="close">
+        {{ "close" | i18n }}
+      </button>
+    </ng-container>
+  </bit-dialog>
+</form>
diff --git a/apps/web/src/app/auth/settings/two-factor-authenticator.component.ts b/apps/web/src/app/auth/settings/two-factor-authenticator.component.ts
index 88b695eb728..17cdbb595f7 100644
--- a/apps/web/src/app/auth/settings/two-factor-authenticator.component.ts
+++ b/apps/web/src/app/auth/settings/two-factor-authenticator.component.ts
@@ -1,4 +1,6 @@
-import { Component, OnDestroy, OnInit } from "@angular/core";
+import { DIALOG_DATA, DialogConfig, DialogRef } from "@angular/cdk/dialog";
+import { Component, EventEmitter, Inject, OnDestroy, OnInit, Output } from "@angular/core";
+import { FormControl, FormGroup, Validators } from "@angular/forms";
 import { firstValueFrom, map } from "rxjs";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
@@ -38,15 +40,21 @@ export class TwoFactorAuthenticatorComponent
   extends TwoFactorBaseComponent
   implements OnInit, OnDestroy
 {
+  @Output() onChangeStatus = new EventEmitter<boolean>();
   type = TwoFactorProviderType.Authenticator;
   key: string;
-  token: string;
   formPromise: Promise<TwoFactorAuthenticatorResponse>;
 
   override componentName = "app-two-factor-authenticator";
   private qrScript: HTMLScriptElement;
 
+  protected formGroup = new FormGroup({
+    token: new FormControl(null, [Validators.required]),
+  });
+
   constructor(
+    @Inject(DIALOG_DATA) protected data: AuthResponse<TwoFactorAuthenticatorResponse>,
+    private dialogRef: DialogRef,
     apiService: ApiService,
     i18nService: I18nService,
     userVerificationService: UserVerificationService,
@@ -68,8 +76,9 @@ export class TwoFactorAuthenticatorComponent
     this.qrScript.async = true;
   }
 
-  ngOnInit() {
+  async ngOnInit() {
     window.document.body.appendChild(this.qrScript);
+    await this.auth(this.data);
   }
 
   ngOnDestroy() {
@@ -81,17 +90,24 @@ export class TwoFactorAuthenticatorComponent
     return this.processResponse(authResponse.response);
   }
 
-  submit() {
+  submit = async () => {
     if (this.enabled) {
-      return super.disable(this.formPromise);
+      await this.disableAuthentication(this.formPromise);
+      this.onChangeStatus.emit(this.enabled);
+      this.close();
     } else {
-      return this.enable();
+      await this.enable();
+      this.onChangeStatus.emit(this.enabled);
     }
+  };
+
+  private async disableAuthentication(promise: Promise<unknown>) {
+    return super.disable(promise);
   }
 
   protected async enable() {
     const request = await this.buildRequestModel(UpdateTwoFactorAuthenticatorRequest);
-    request.token = this.token;
+    request.token = this.formGroup.value.token;
     request.key = this.key;
 
     return super.enable(async () => {
@@ -102,7 +118,7 @@ export class TwoFactorAuthenticatorComponent
   }
 
   private async processResponse(response: TwoFactorAuthenticatorResponse) {
-    this.token = null;
+    this.formGroup.get("token").setValue(null);
     this.enabled = response.enabled;
     this.key = response.key;
     const email = await firstValueFrom(
@@ -121,4 +137,15 @@ export class TwoFactorAuthenticatorComponent
       });
     }, 100);
   }
+
+  close = () => {
+    this.dialogRef.close(this.enabled);
+  };
+
+  static open(
+    dialogService: DialogService,
+    config: DialogConfig<AuthResponse<TwoFactorAuthenticatorResponse>>,
+  ) {
+    return dialogService.open<boolean>(TwoFactorAuthenticatorComponent, config);
+  }
 }
diff --git a/apps/web/src/app/auth/settings/two-factor-setup.component.html b/apps/web/src/app/auth/settings/two-factor-setup.component.html
index a20bb345664..28baf72f885 100644
--- a/apps/web/src/app/auth/settings/two-factor-setup.component.html
+++ b/apps/web/src/app/auth/settings/two-factor-setup.component.html
@@ -80,7 +80,6 @@
   </ul>
 </bit-container>
 
-<ng-template #authenticatorTemplate></ng-template>
 <ng-template #duoTemplate></ng-template>
 <ng-template #emailTemplate></ng-template>
 <ng-template #yubikeyTemplate></ng-template>
diff --git a/apps/web/src/app/auth/settings/two-factor-setup.component.ts b/apps/web/src/app/auth/settings/two-factor-setup.component.ts
index dd4c69aa277..34a7e32089f 100644
--- a/apps/web/src/app/auth/settings/two-factor-setup.component.ts
+++ b/apps/web/src/app/auth/settings/two-factor-setup.component.ts
@@ -34,8 +34,6 @@ import { TwoFactorYubiKeyComponent } from "./two-factor-yubikey.component";
   templateUrl: "two-factor-setup.component.html",
 })
 export class TwoFactorSetupComponent implements OnInit, OnDestroy {
-  @ViewChild("authenticatorTemplate", { read: ViewContainerRef, static: true })
-  authenticatorModalRef: ViewContainerRef;
   @ViewChild("yubikeyTemplate", { read: ViewContainerRef, static: true })
   yubikeyModalRef: ViewContainerRef;
   @ViewChild("duoTemplate", { read: ViewContainerRef, static: true }) duoModalRef: ViewContainerRef;
@@ -137,12 +135,11 @@ export class TwoFactorSetupComponent implements OnInit, OnDestroy {
         if (!result) {
           return;
         }
-        const authComp = await this.openModal(
-          this.authenticatorModalRef,
-          TwoFactorAuthenticatorComponent,
+        const authComp: DialogRef<boolean, any> = TwoFactorAuthenticatorComponent.open(
+          this.dialogService,
+          { data: result },
         );
-        await authComp.auth(result);
-        authComp.onUpdated.pipe(takeUntil(this.destroy$)).subscribe((enabled: boolean) => {
+        authComp.componentInstance.onChangeStatus.subscribe((enabled: boolean) => {
           this.updateStatus(enabled, TwoFactorProviderType.Authenticator);
         });
         break;

From c06211829f034c05e1c7077ce8c11777e137cd18 Mon Sep 17 00:00:00 2001
From: vinith-kovan <156108204+vinith-kovan@users.noreply.github.com>
Date: Thu, 6 Jun 2024 19:29:54 +0530
Subject: [PATCH 118/138] [PM 5023] migrate payment component (#8345)

* payment component migration

* payment component migration

* payment component migration
---
 .../app/billing/shared/payment.component.html | 266 +++++++-----------
 .../app/billing/shared/payment.component.ts   |  63 +++--
 2 files changed, 149 insertions(+), 180 deletions(-)

diff --git a/apps/web/src/app/billing/shared/payment.component.html b/apps/web/src/app/billing/shared/payment.component.html
index db6f4f311b1..d76de65e507 100644
--- a/apps/web/src/app/billing/shared/payment.component.html
+++ b/apps/web/src/app/billing/shared/payment.component.html
@@ -1,163 +1,113 @@
-<div class="mb-4 text-lg" *ngIf="showOptions && showMethods">
-  <div class="form-check form-check-inline mr-4">
-    <input
-      class="form-check-input"
-      type="radio"
-      name="Method"
-      id="method-card"
-      [value]="paymentMethodType.Card"
-      [(ngModel)]="method"
-      (change)="changeMethod()"
-    />
-    <label class="form-check-label" for="method-card">
-      <i class="bwi bwi-fw bwi-credit-card" aria-hidden="true"></i> {{ "creditCard" | i18n }}</label
-    >
-  </div>
-  <div class="form-check form-check-inline mr-4" *ngIf="!hideBank">
-    <input
-      class="form-check-input"
-      type="radio"
-      name="Method"
-      id="method-bank"
-      [value]="paymentMethodType.BankAccount"
-      [(ngModel)]="method"
-      (change)="changeMethod()"
-    />
-    <label class="form-check-label" for="method-bank">
-      <i class="bwi bwi-fw bwi-bank" aria-hidden="true"></i> {{ "bankAccount" | i18n }}</label
-    >
-  </div>
-  <div class="form-check form-check-inline" *ngIf="!hidePaypal">
-    <input
-      class="form-check-input"
-      type="radio"
-      name="Method"
-      id="method-paypal"
-      [value]="paymentMethodType.PayPal"
-      [(ngModel)]="method"
-      (change)="changeMethod()"
-    />
-    <label class="form-check-label" for="method-paypal">
-      <i class="bwi bwi-fw bwi-paypal" aria-hidden="true"></i> PayPal</label
-    >
-  </div>
-  <div class="form-check form-check-inline" *ngIf="!hideCredit">
-    <input
-      class="form-check-input"
-      type="radio"
-      name="Method"
-      id="method-credit"
-      [value]="paymentMethodType.Credit"
-      [(ngModel)]="method"
-      (change)="changeMethod()"
-    />
-    <label class="form-check-label" for="method-credit">
-      <i class="bwi bwi-fw bwi-dollar" aria-hidden="true"></i> {{ "accountCredit" | i18n }}</label
-    >
-  </div>
-</div>
-<ng-container *ngIf="showMethods && method === paymentMethodType.Card">
-  <div class="row">
-    <div [ngClass]="trialFlow ? 'col-5' : 'col-4'" class="form-group">
-      <label for="stripe-card-number-element">{{ "number" | i18n }}</label>
-      <div id="stripe-card-number-element" class="form-control stripe-form-control"></div>
-    </div>
-    <div *ngIf="!trialFlow" class="form-group col-8 d-flex align-items-end">
-      <img
-        src="../../images/cards.png"
-        alt="Visa, MasterCard, Discover, AmEx, JCB, Diners Club, UnionPay"
-        width="323"
-        height="32"
-      />
-    </div>
-    <div [ngClass]="trialFlow ? 'col-3' : 'col-4'" class="form-group">
-      <label for="stripe-card-expiry-element">{{ "expiration" | i18n }}</label>
-      <div id="stripe-card-expiry-element" class="form-control stripe-form-control"></div>
-    </div>
-    <div class="form-group col-4">
-      <div class="d-flex">
-        <label for="stripe-card-cvc-element">
-          {{ "securityCode" | i18n }}
-        </label>
-        <a
-          href="https://www.cvvnumber.com/cvv.html"
-          tabindex="-1"
-          target="_blank"
-          rel="noreferrer"
-          class="ml-auto"
-          appA11yTitle="{{ 'learnMore' | i18n }}"
+<div [formGroup]="paymentForm">
+  <div class="tw-mb-4 tw-text-lg" *ngIf="showOptions && showMethods">
+    <bit-radio-group formControlName="method">
+      <bit-radio-button id="method-card" [value]="paymentMethodType.Card">
+        <bit-label>
+          <i class="bwi bwi-fw bwi-credit-card" aria-hidden="true"></i>
+          {{ "creditCard" | i18n }}</bit-label
         >
-          <i class="bwi bwi-question-circle" aria-hidden="true"></i>
-        </a>
+      </bit-radio-button>
+      <bit-radio-button id="method-bank" [value]="paymentMethodType.BankAccount" *ngIf="!hideBank">
+        <bit-label>
+          <i class="bwi bwi-fw bwi-bank" aria-hidden="true"></i>
+          {{ "bankAccount" | i18n }}</bit-label
+        >
+      </bit-radio-button>
+      <bit-radio-button id="method-paypal" [value]="paymentMethodType.PayPal" *ngIf="!hidePaypal">
+        <bit-label> <i class="bwi bwi-fw bwi-paypal" aria-hidden="true"></i> PayPal</bit-label>
+      </bit-radio-button>
+      <bit-radio-button id="method-credit" [value]="paymentMethodType.Credit" *ngIf="!hideCredit">
+        <bit-label>
+          <i class="bwi bwi-fw bwi-dollar" aria-hidden="true"></i>
+          {{ "accountCredit" | i18n }}</bit-label
+        >
+      </bit-radio-button>
+    </bit-radio-group>
+  </div>
+  <ng-container *ngIf="showMethods && method === paymentMethodType.Card">
+    <div class="tw-grid tw-grid-cols-12 tw-gap-4 tw-mb-4">
+      <div [ngClass]="trialFlow ? 'tw-col-span-5' : 'tw-col-span-4'">
+        <label for="stripe-card-number-element">{{ "number" | i18n }}</label>
+        <div id="stripe-card-number-element" class="form-control stripe-form-control"></div>
+      </div>
+      <div *ngIf="!trialFlow" class="tw-col-span-8 tw-flex tw-items-end">
+        <img
+          src="../../images/cards.png"
+          alt="Visa, MasterCard, Discover, AmEx, JCB, Diners Club, UnionPay"
+          width="323"
+          height="32"
+        />
+      </div>
+      <div [ngClass]="trialFlow ? 'tw-col-span-3' : 'tw-col-span-4'">
+        <label for="stripe-card-expiry-element">{{ "expiration" | i18n }}</label>
+        <div id="stripe-card-expiry-element" class="form-control stripe-form-control"></div>
+      </div>
+      <div class="tw-col-span-4">
+        <div class="tw-flex">
+          <label for="stripe-card-cvc-element">
+            {{ "securityCode" | i18n }}
+          </label>
+          <a
+            href="https://www.cvvnumber.com/cvv.html"
+            tabindex="-1"
+            target="_blank"
+            rel="noreferrer"
+            class="ml-auto"
+            appA11yTitle="{{ 'learnMore' | i18n }}"
+          >
+            <i class="bwi bwi-question-circle" aria-hidden="true"></i>
+          </a>
+        </div>
+        <div id="stripe-card-cvc-element" class="form-control stripe-form-control"></div>
       </div>
-      <div id="stripe-card-cvc-element" class="form-control stripe-form-control"></div>
     </div>
-  </div>
-</ng-container>
-<ng-container *ngIf="showMethods && method === paymentMethodType.BankAccount">
-  <app-callout type="warning" title="{{ 'verifyBankAccount' | i18n }}">
-    {{ "verifyBankAccountInitialDesc" | i18n }} {{ "verifyBankAccountFailureWarning" | i18n }}
-  </app-callout>
-  <div class="row">
-    <div class="form-group col-6">
-      <label for="routing_number">{{ "routingNumber" | i18n }}</label>
-      <input
-        id="routing_number"
-        class="form-control"
-        type="text"
-        name="routing_number"
-        [(ngModel)]="bank.routing_number"
-        required
-        appInputVerbatim
-      />
+  </ng-container>
+  <ng-container *ngIf="showMethods && method === paymentMethodType.BankAccount">
+    <app-callout type="warning" title="{{ 'verifyBankAccount' | i18n }}">
+      {{ "verifyBankAccountInitialDesc" | i18n }} {{ "verifyBankAccountFailureWarning" | i18n }}
+    </app-callout>
+    <div class="tw-grid tw-grid-cols-12 tw-gap-4" formGroupName="bank">
+      <bit-form-field class="tw-col-span-6">
+        <bit-label>{{ "routingNumber" | i18n }}</bit-label>
+        <input bitInput type="text" formControlName="routing_number" required appInputVerbatim />
+      </bit-form-field>
+      <bit-form-field class="tw-col-span-6">
+        <bit-label>{{ "accountNumber" | i18n }}</bit-label>
+        <input bitInput type="text" formControlName="account_number" required appInputVerbatim />
+      </bit-form-field>
+      <bit-form-field class="tw-col-span-6">
+        <bit-label>{{ "accountHolderName" | i18n }}</bit-label>
+        <input
+          bitInput
+          type="text"
+          formControlName="account_holder_name"
+          required
+          appInputVerbatim
+        />
+      </bit-form-field>
+
+      <bit-form-field class="tw-col-span-6">
+        <bit-label>{{ "bankAccountType" | i18n }}</bit-label>
+        <bit-select formControlName="account_holder_type" required>
+          <bit-option value="" label="-- {{ 'select' | i18n }} --"></bit-option>
+          <bit-option value="company" label="{{ 'bankAccountTypeCompany' | i18n }}"></bit-option>
+          <bit-option
+            value="individual"
+            label="{{ 'bankAccountTypeIndividual' | i18n }}"
+          ></bit-option>
+        </bit-select>
+      </bit-form-field>
     </div>
-    <div class="form-group col-6">
-      <label for="account_number">{{ "accountNumber" | i18n }}</label>
-      <input
-        id="account_number"
-        class="form-control"
-        type="text"
-        name="account_number"
-        [(ngModel)]="bank.account_number"
-        required
-        appInputVerbatim
-      />
+  </ng-container>
+  <ng-container *ngIf="showMethods && method === paymentMethodType.PayPal">
+    <div class="tw-mb-3">
+      <div id="bt-dropin-container" class="tw-mb-1"></div>
+      <small class="tw-text-muted">{{ "paypalClickSubmit" | i18n }}</small>
     </div>
-    <div class="form-group col-6">
-      <label for="account_holder_name">{{ "accountHolderName" | i18n }}</label>
-      <input
-        id="account_holder_name"
-        class="form-control"
-        type="text"
-        name="account_holder_name"
-        [(ngModel)]="bank.account_holder_name"
-        required
-      />
-    </div>
-    <div class="form-group col-6">
-      <label for="account_holder_type">{{ "bankAccountType" | i18n }}</label>
-      <select
-        id="account_holder_type"
-        class="form-control"
-        name="account_holder_type"
-        [(ngModel)]="bank.account_holder_type"
-        required
-      >
-        <option value="">-- {{ "select" | i18n }} --</option>
-        <option value="company">{{ "bankAccountTypeCompany" | i18n }}</option>
-        <option value="individual">{{ "bankAccountTypeIndividual" | i18n }}</option>
-      </select>
-    </div>
-  </div>
-</ng-container>
-<ng-container *ngIf="showMethods && method === paymentMethodType.PayPal">
-  <div class="mb-3">
-    <div id="bt-dropin-container" class="mb-1"></div>
-    <small class="text-muted">{{ "paypalClickSubmit" | i18n }}</small>
-  </div>
-</ng-container>
-<ng-container *ngIf="showMethods && method === paymentMethodType.Credit">
-  <app-callout type="note">
-    {{ "makeSureEnoughCredit" | i18n }}
-  </app-callout>
-</ng-container>
+  </ng-container>
+  <ng-container *ngIf="showMethods && method === paymentMethodType.Credit">
+    <app-callout type="note">
+      {{ "makeSureEnoughCredit" | i18n }}
+    </app-callout>
+  </ng-container>
+</div>
diff --git a/apps/web/src/app/billing/shared/payment.component.ts b/apps/web/src/app/billing/shared/payment.component.ts
index 652bed7801d..95b25a74e4e 100644
--- a/apps/web/src/app/billing/shared/payment.component.ts
+++ b/apps/web/src/app/billing/shared/payment.component.ts
@@ -1,4 +1,5 @@
 import { Component, Input, OnDestroy, OnInit } from "@angular/core";
+import { FormControl, FormGroup, Validators } from "@angular/forms";
 import { Subject, takeUntil } from "rxjs";
 
 import { AbstractThemingService } from "@bitwarden/angular/platform/services/theming/theming.service.abstraction";
@@ -17,23 +18,34 @@ import { SharedModule } from "../../shared";
 export class PaymentComponent implements OnInit, OnDestroy {
   @Input() showMethods = true;
   @Input() showOptions = true;
-  @Input() method = PaymentMethodType.Card;
   @Input() hideBank = false;
   @Input() hidePaypal = false;
   @Input() hideCredit = false;
   @Input() trialFlow = false;
 
+  @Input()
+  set method(value: PaymentMethodType) {
+    this._method = value;
+    this.paymentForm?.controls.method.setValue(value, { emitEvent: false });
+  }
+
+  get method(): PaymentMethodType {
+    return this._method;
+  }
+  private _method: PaymentMethodType = PaymentMethodType.Card;
+
   private destroy$ = new Subject<void>();
-
-  bank: any = {
-    routing_number: null,
-    account_number: null,
-    account_holder_name: null,
-    account_holder_type: "",
-    currency: "USD",
-    country: "US",
-  };
-
+  protected paymentForm = new FormGroup({
+    method: new FormControl(this.method),
+    bank: new FormGroup({
+      routing_number: new FormControl(null, [Validators.required]),
+      account_number: new FormControl(null, [Validators.required]),
+      account_holder_name: new FormControl(null, [Validators.required]),
+      account_holder_type: new FormControl("", [Validators.required]),
+      currency: new FormControl("USD"),
+      country: new FormControl("US"),
+    }),
+  });
   paymentMethodType = PaymentMethodType;
 
   private btScript: HTMLScriptElement;
@@ -85,7 +97,6 @@ export class PaymentComponent implements OnInit, OnDestroy {
       invalid: "is-invalid",
     };
   }
-
   async ngOnInit() {
     if (!this.showOptions) {
       this.hidePaypal = this.method !== PaymentMethodType.PayPal;
@@ -97,6 +108,13 @@ export class PaymentComponent implements OnInit, OnDestroy {
     if (!this.hidePaypal) {
       window.document.head.appendChild(this.btScript);
     }
+    this.paymentForm
+      .get("method")
+      .valueChanges.pipe(takeUntil(this.destroy$))
+      .subscribe((v) => {
+        this.method = v;
+        this.changeMethod();
+      });
   }
 
   ngOnDestroy() {
@@ -140,7 +158,6 @@ export class PaymentComponent implements OnInit, OnDestroy {
 
   changeMethod() {
     this.btInstance = null;
-
     if (this.method === PaymentMethodType.PayPal) {
       window.setTimeout(() => {
         (window as any).braintree.dropin.create(
@@ -209,15 +226,17 @@ export class PaymentComponent implements OnInit, OnDestroy {
               }
             });
         } else {
-          this.stripe.createToken("bank_account", this.bank).then((result: any) => {
-            if (result.error) {
-              reject(result.error.message);
-            } else if (result.token && result.token.id != null) {
-              resolve([result.token.id, this.method]);
-            } else {
-              reject();
-            }
-          });
+          this.stripe
+            .createToken("bank_account", this.paymentForm.get("bank").value)
+            .then((result: any) => {
+              if (result.error) {
+                reject(result.error.message);
+              } else if (result.token && result.token.id != null) {
+                resolve([result.token.id, this.method]);
+              } else {
+                reject();
+              }
+            });
         }
       }
     });

From 47e66bfeb40dd3197b8cca01fa3410ebaac7ed3e Mon Sep 17 00:00:00 2001
From: KiruthigaManivannan
 <162679756+KiruthigaManivannan@users.noreply.github.com>
Date: Thu, 6 Jun 2024 20:05:21 +0530
Subject: [PATCH 119/138] AC-2723 Defect Range Too large error toast on
 reporting events is not being displayed (#9478)

---
 .../common/base.events.component.ts           | 20 ++++++++-----------
 1 file changed, 8 insertions(+), 12 deletions(-)

diff --git a/apps/web/src/app/admin-console/common/base.events.component.ts b/apps/web/src/app/admin-console/common/base.events.component.ts
index e14bb62a35d..12c051271e1 100644
--- a/apps/web/src/app/admin-console/common/base.events.component.ts
+++ b/apps/web/src/app/admin-console/common/base.events.component.ts
@@ -97,19 +97,15 @@ export abstract class BaseEventsComponent {
     this.loading = true;
     let events: EventView[] = [];
     let promise: Promise<any>;
-    try {
-      promise = this.loadAndParseEvents(
-        dates[0],
-        dates[1],
-        clearExisting ? null : this.continuationToken,
-      );
+    promise = this.loadAndParseEvents(
+      dates[0],
+      dates[1],
+      clearExisting ? null : this.continuationToken,
+    );
 
-      const result = await promise;
-      this.continuationToken = result.continuationToken;
-      events = result.events;
-    } catch (e) {
-      this.logService.error(`Handled exception: ${e}`);
-    }
+    const result = await promise;
+    this.continuationToken = result.continuationToken;
+    events = result.events;
 
     if (!clearExisting && this.events != null && this.events.length > 0) {
       this.events = this.events.concat(events);

From a7b45a44e340ebd2366a6b4f44c01ec70ef61eb2 Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Thu, 6 Jun 2024 09:39:21 -0500
Subject: [PATCH 120/138] [PM-8594] use singular version of the copy for
 filters (#9509)

* use singular for collection and type

* use singular verbiage for cipher type

* use type translations for singularity
---
 .../vault-list-filters/vault-list-filters.component.html  | 4 ++--
 .../popup/services/vault-popup-list-filters.service.ts    | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-filters/vault-list-filters.component.html b/apps/browser/src/vault/popup/components/vault-v2/vault-list-filters/vault-list-filters.component.html
index 6136db59f46..afb7dd40066 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-filters/vault-list-filters.component.html
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-filters/vault-list-filters.component.html
@@ -14,7 +14,7 @@
       *ngIf="collections.length"
       formControlName="collection"
       placeholderIcon="bwi-collection"
-      [placeholderText]="'collections' | i18n"
+      [placeholderText]="'collection' | i18n"
       [options]="collections"
     >
     </bit-chip-select>
@@ -32,7 +32,7 @@
   <bit-chip-select
     formControlName="cipherType"
     placeholderIcon="bwi-list"
-    [placeholderText]="'types' | i18n"
+    [placeholderText]="'type' | i18n"
     [options]="cipherTypes"
   >
   </bit-chip-select>
diff --git a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
index bc42e7cb0a5..69a7039e2ac 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
@@ -139,22 +139,22 @@ export class VaultPopupListFiltersService {
   readonly cipherTypes: ChipSelectOption<CipherType>[] = [
     {
       value: CipherType.Login,
-      label: this.i18nService.t("logins"),
+      label: this.i18nService.t("typeLogin"),
       icon: "bwi-globe",
     },
     {
       value: CipherType.Card,
-      label: this.i18nService.t("cards"),
+      label: this.i18nService.t("typeCard"),
       icon: "bwi-credit-card",
     },
     {
       value: CipherType.Identity,
-      label: this.i18nService.t("identities"),
+      label: this.i18nService.t("typeIdentity"),
       icon: "bwi-id-card",
     },
     {
       value: CipherType.SecureNote,
-      label: this.i18nService.t("notes"),
+      label: this.i18nService.t("note"),
       icon: "bwi-sticky-note",
     },
   ];

From 0f9f7f4df6bccab8db60ae9634d44097e98cd04d Mon Sep 17 00:00:00 2001
From: cyprain-okeke <108260115+cyprain-okeke@users.noreply.github.com>
Date: Thu, 6 Jun 2024 15:53:52 +0100
Subject: [PATCH 121/138] [AC-2721][Defect] Apply Subscription Status Updates
 in Provider Subscription details (#9484)

* Add status banner to the provider subscription page

* Add the isexpired method

* Add the unpaid status banner
---
 .../providers/providers.module.ts             |   2 +
 .../provider-subscription.component.html      |  24 +--
 .../subscription-status.component.html        |  32 +++
 .../subscription-status.component.ts          | 188 ++++++++++++++++++
 .../provider-subscription-response.ts         |   8 +
 5 files changed, 231 insertions(+), 23 deletions(-)
 create mode 100644 bitwarden_license/bit-web/src/app/billing/providers/subscription/subscription-status.component.html
 create mode 100644 bitwarden_license/bit-web/src/app/billing/providers/subscription/subscription-status.component.ts

diff --git a/bitwarden_license/bit-web/src/app/admin-console/providers/providers.module.ts b/bitwarden_license/bit-web/src/app/admin-console/providers/providers.module.ts
index 2d4b39fa8bd..baa3e5e1bbd 100644
--- a/bitwarden_license/bit-web/src/app/admin-console/providers/providers.module.ts
+++ b/bitwarden_license/bit-web/src/app/admin-console/providers/providers.module.ts
@@ -18,6 +18,7 @@ import {
   ProviderSelectPaymentMethodDialogComponent,
   ProviderSubscriptionComponent,
 } from "../../billing/providers";
+import { SubscriptionStatusComponent } from "../../billing/providers/subscription/subscription-status.component";
 
 import { AddOrganizationComponent } from "./clients/add-organization.component";
 import { ClientsComponent } from "./clients/clients.component";
@@ -70,6 +71,7 @@ import { SetupComponent } from "./setup/setup.component";
     ProviderSubscriptionComponent,
     ProviderSelectPaymentMethodDialogComponent,
     ProviderPaymentMethodComponent,
+    SubscriptionStatusComponent,
   ],
   providers: [WebProviderService, ProviderPermissionsGuard],
 })
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.html b/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.html
index fdcb8a67018..47f8aa375c6 100644
--- a/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.html
+++ b/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.html
@@ -1,32 +1,10 @@
 <app-header></app-header>
-
 <bit-container>
   <ng-container *ngIf="!firstLoaded && loading">
     <i class="bwi bwi-spinner bwi-spin text-muted" title="{{ 'loading' | i18n }}"></i>
     <span class="sr-only">{{ "loading" | i18n }}</span>
   </ng-container>
-
-  <ng-container *ngIf="subscription && firstLoaded">
-    <bit-callout type="warning" title="{{ 'canceled' | i18n }}" *ngIf="false">
-      {{ "subscriptionCanceled" | i18n }}</bit-callout
-    >
-
-    <dl class="tw-grid tw-grid-flow-col tw-grid-rows-2">
-      <dt>{{ "billingPlan" | i18n }}</dt>
-      <dd>{{ "providerPlan" | i18n }}</dd>
-      <ng-container *ngIf="subscription">
-        <dt>{{ "status" | i18n }}</dt>
-        <dd>
-          <span class="tw-capitalize">{{ subscription.status }}</span>
-        </dd>
-        <dt [ngClass]="{ 'tw-text-danger': isExpired }">{{ "nextCharge" | i18n }}</dt>
-        <dd [ngClass]="{ 'tw-text-danger': isExpired }">
-          {{ subscription.currentPeriodEndDate | date: "mediumDate" }}
-        </dd>
-      </ng-container>
-    </dl>
-  </ng-container>
-
+  <app-subscription-status [providerSubscriptionResponse]="subscription"> </app-subscription-status>
   <ng-container>
     <div class="tw-flex-col">
       <strong class="tw-block tw-border-0 tw-border-b tw-border-solid tw-border-secondary-300 pb-2"
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/subscription/subscription-status.component.html b/bitwarden_license/bit-web/src/app/billing/providers/subscription/subscription-status.component.html
new file mode 100644
index 00000000000..0c80d3ef693
--- /dev/null
+++ b/bitwarden_license/bit-web/src/app/billing/providers/subscription/subscription-status.component.html
@@ -0,0 +1,32 @@
+<ng-container>
+  <bit-callout *ngIf="data.callout" [type]="data.callout.severity" [title]="data.callout.header">
+    <p>{{ data.callout.body }}</p>
+    <button
+      *ngIf="data.callout.showReinstatementButton"
+      bitButton
+      buttonType="secondary"
+      [bitAction]="requestReinstatement"
+      type="button"
+    >
+      {{ "reinstateSubscription" | i18n }}
+    </button>
+  </bit-callout>
+  <dl class="tw-grid tw-grid-flow-col tw-grid-rows-2">
+    <dt>{{ "billingPlan" | i18n }}</dt>
+    <dd>{{ "providerPlan" | i18n }}</dd>
+    <ng-container *ngIf="data.status && data.date">
+      <dt>{{ data.status.label }}</dt>
+      <dd>
+        <span class="tw-capitalize">
+          {{ displayedStatus }}
+        </span>
+      </dd>
+      <dt [ngClass]="{ 'tw-text-danger': isExpired }">
+        {{ data.date.label | titlecase }}
+      </dt>
+      <dd [ngClass]="{ 'tw-text-danger': isExpired }">
+        {{ data.date.value | date: "mediumDate" }}
+      </dd>
+    </ng-container>
+  </dl>
+</ng-container>
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/subscription/subscription-status.component.ts b/bitwarden_license/bit-web/src/app/billing/providers/subscription/subscription-status.component.ts
new file mode 100644
index 00000000000..fa9a892254e
--- /dev/null
+++ b/bitwarden_license/bit-web/src/app/billing/providers/subscription/subscription-status.component.ts
@@ -0,0 +1,188 @@
+import { DatePipe } from "@angular/common";
+import { Component, EventEmitter, Input, Output } from "@angular/core";
+
+import { ProviderSubscriptionResponse } from "@bitwarden/common/billing/models/response/provider-subscription-response";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
+
+type ComponentData = {
+  status?: {
+    label: string;
+    value: string;
+  };
+  date?: {
+    label: string;
+    value: string;
+  };
+  callout?: {
+    severity: "danger" | "warning";
+    header: string;
+    body: string;
+    showReinstatementButton: boolean;
+  };
+};
+
+@Component({
+  selector: "app-subscription-status",
+  templateUrl: "subscription-status.component.html",
+})
+export class SubscriptionStatusComponent {
+  @Input({ required: true }) providerSubscriptionResponse: ProviderSubscriptionResponse;
+  @Output() reinstatementRequested = new EventEmitter<void>();
+
+  constructor(
+    private datePipe: DatePipe,
+    private i18nService: I18nService,
+  ) {}
+
+  get displayedStatus(): string {
+    return this.data.status.value;
+  }
+
+  get planName() {
+    return this.providerSubscriptionResponse.plans[0];
+  }
+
+  get status(): string {
+    return this.subscription.status;
+  }
+
+  get isExpired() {
+    return this.subscription.status !== "active";
+  }
+
+  get subscription() {
+    return this.providerSubscriptionResponse;
+  }
+
+  get data(): ComponentData {
+    const defaultStatusLabel = this.i18nService.t("status");
+
+    const nextChargeDateLabel = this.i18nService.t("nextCharge");
+    const subscriptionExpiredDateLabel = this.i18nService.t("subscriptionExpired");
+    const cancellationDateLabel = this.i18nService.t("cancellationDate");
+
+    switch (this.status) {
+      case "free": {
+        return {};
+      }
+      case "trialing": {
+        return {
+          status: {
+            label: defaultStatusLabel,
+            value: this.i18nService.t("trial"),
+          },
+          date: {
+            label: nextChargeDateLabel,
+            value: this.subscription.currentPeriodEndDate.toDateString(),
+          },
+        };
+      }
+      case "active": {
+        return {
+          status: {
+            label: defaultStatusLabel,
+            value: this.i18nService.t("active"),
+          },
+          date: {
+            label: nextChargeDateLabel,
+            value: this.subscription.currentPeriodEndDate.toDateString(),
+          },
+        };
+      }
+      case "past_due": {
+        const pastDueText = this.i18nService.t("pastDue");
+        const suspensionDate = this.datePipe.transform(
+          this.subscription.suspensionDate,
+          "mediumDate",
+        );
+        const calloutBody =
+          this.subscription.collectionMethod === "charge_automatically"
+            ? this.i18nService.t(
+                "pastDueWarningForChargeAutomatically",
+                this.subscription.gracePeriod,
+                suspensionDate,
+              )
+            : this.i18nService.t(
+                "pastDueWarningForSendInvoice",
+                this.subscription.gracePeriod,
+                suspensionDate,
+              );
+        return {
+          status: {
+            label: defaultStatusLabel,
+            value: pastDueText,
+          },
+          date: {
+            label: subscriptionExpiredDateLabel,
+            value: this.subscription.unpaidPeriodEndDate,
+          },
+          callout: {
+            severity: "warning",
+            header: pastDueText,
+            body: calloutBody,
+            showReinstatementButton: false,
+          },
+        };
+      }
+      case "unpaid": {
+        return {
+          status: {
+            label: defaultStatusLabel,
+            value: this.i18nService.t("unpaid"),
+          },
+          date: {
+            label: subscriptionExpiredDateLabel,
+            value: this.subscription.currentPeriodEndDate.toDateString(),
+          },
+          callout: {
+            severity: "danger",
+            header: this.i18nService.t("unpaidInvoice"),
+            body: this.i18nService.t("toReactivateYourSubscription"),
+            showReinstatementButton: false,
+          },
+        };
+      }
+      case "pending_cancellation": {
+        const pendingCancellationText = this.i18nService.t("pendingCancellation");
+        return {
+          status: {
+            label: defaultStatusLabel,
+            value: pendingCancellationText,
+          },
+          date: {
+            label: cancellationDateLabel,
+            value: this.subscription.currentPeriodEndDate.toDateString(),
+          },
+          callout: {
+            severity: "warning",
+            header: pendingCancellationText,
+            body: this.i18nService.t("subscriptionPendingCanceled"),
+            showReinstatementButton: true,
+          },
+        };
+      }
+      case "incomplete_expired":
+      case "canceled": {
+        const canceledText = this.i18nService.t("canceled");
+        return {
+          status: {
+            label: defaultStatusLabel,
+            value: canceledText,
+          },
+          date: {
+            label: cancellationDateLabel,
+            value: this.subscription.currentPeriodEndDate.toDateString(),
+          },
+          callout: {
+            severity: "danger",
+            header: canceledText,
+            body: this.i18nService.t("subscriptionCanceled"),
+            showReinstatementButton: false,
+          },
+        };
+      }
+    }
+  }
+
+  requestReinstatement = () => this.reinstatementRequested.emit();
+}
diff --git a/libs/common/src/billing/models/response/provider-subscription-response.ts b/libs/common/src/billing/models/response/provider-subscription-response.ts
index 522c5187254..9f6823f71fe 100644
--- a/libs/common/src/billing/models/response/provider-subscription-response.ts
+++ b/libs/common/src/billing/models/response/provider-subscription-response.ts
@@ -4,6 +4,10 @@ export class ProviderSubscriptionResponse extends BaseResponse {
   status: string;
   currentPeriodEndDate: Date;
   discountPercentage?: number | null;
+  collectionMethod: string;
+  unpaidPeriodEndDate?: string;
+  gracePeriod?: number | null;
+  suspensionDate?: string;
   plans: Plans[] = [];
 
   constructor(response: any) {
@@ -11,6 +15,10 @@ export class ProviderSubscriptionResponse extends BaseResponse {
     this.status = this.getResponseProperty("status");
     this.currentPeriodEndDate = new Date(this.getResponseProperty("currentPeriodEndDate"));
     this.discountPercentage = this.getResponseProperty("discountPercentage");
+    this.collectionMethod = this.getResponseProperty("collectionMethod");
+    this.unpaidPeriodEndDate = this.getResponseProperty("unpaidPeriodEndDate");
+    this.gracePeriod = this.getResponseProperty("gracePeriod");
+    this.suspensionDate = this.getResponseProperty("suspensionDate");
     const plans = this.getResponseProperty("plans");
     if (plans != null) {
       this.plans = plans.map((i: any) => new Plans(i));

From c8eac6fa1213ae65134007300790d25ceeaf5af1 Mon Sep 17 00:00:00 2001
From: KiruthigaManivannan
 <162679756+KiruthigaManivannan@users.noreply.github.com>
Date: Thu, 6 Jun 2024 20:46:59 +0530
Subject: [PATCH 122/138] PM-4977 Migrate Preferences component (#8663)

* PM-4977 Migrate Preferences component

* PM-4977 Addressed the review comments

* PM-4977 Updated css in preferences html

* PM-4977 Removed the class applied on bit-hint
---
 .../app/settings/preferences.component.html   | 185 +++++++-----------
 .../src/app/settings/preferences.component.ts |   4 +-
 2 files changed, 77 insertions(+), 112 deletions(-)

diff --git a/apps/web/src/app/settings/preferences.component.html b/apps/web/src/app/settings/preferences.component.html
index 828c251989f..984ae7536a5 100644
--- a/apps/web/src/app/settings/preferences.component.html
+++ b/apps/web/src/app/settings/preferences.component.html
@@ -1,106 +1,77 @@
 <app-header></app-header>
 
 <bit-container>
-  <p>{{ "preferencesDesc" | i18n }}</p>
-  <form [formGroup]="form" (ngSubmit)="submit()" ngNativeValidate>
-    <div class="row">
-      <div class="col-6">
-        <app-callout type="info" *ngIf="vaultTimeoutPolicyCallout | async as policy">
-          <span *ngIf="policy.timeout && policy.action">
-            {{
-              "vaultTimeoutPolicyWithActionInEffect"
-                | i18n: policy.timeout.hours : policy.timeout.minutes : (policy.action | i18n)
-            }}
-          </span>
-          <span *ngIf="policy.timeout && !policy.action">
-            {{ "vaultTimeoutPolicyInEffect" | i18n: policy.timeout.hours : policy.timeout.minutes }}
-          </span>
-          <span *ngIf="!policy.timeout && policy.action">
-            {{ "vaultTimeoutActionPolicyInEffect" | i18n: (policy.action | i18n) }}
-          </span>
-        </app-callout>
-        <app-vault-timeout-input
-          [vaultTimeoutOptions]="vaultTimeoutOptions"
-          [formControl]="form.controls.vaultTimeout"
-          ngDefaultControl
-        >
-        </app-vault-timeout-input>
-      </div>
-    </div>
+  <p bitTypography="body1">{{ "preferencesDesc" | i18n }}</p>
+  <form [formGroup]="form" [bitSubmit]="submit" class="tw-w-1/2">
+    <app-callout type="info" *ngIf="vaultTimeoutPolicyCallout | async as policy">
+      <span *ngIf="policy.timeout && policy.action">
+        {{
+          "vaultTimeoutPolicyWithActionInEffect"
+            | i18n: policy.timeout.hours : policy.timeout.minutes : (policy.action | i18n)
+        }}
+      </span>
+      <span *ngIf="policy.timeout && !policy.action">
+        {{ "vaultTimeoutPolicyInEffect" | i18n: policy.timeout.hours : policy.timeout.minutes }}
+      </span>
+      <span *ngIf="!policy.timeout && policy.action">
+        {{ "vaultTimeoutActionPolicyInEffect" | i18n: (policy.action | i18n) }}
+      </span>
+    </app-callout>
+    <app-vault-timeout-input
+      [vaultTimeoutOptions]="vaultTimeoutOptions"
+      [formControl]="form.controls.vaultTimeout"
+      ngDefaultControl
+    >
+    </app-vault-timeout-input>
     <ng-container *ngIf="availableVaultTimeoutActions$ | async as availableVaultTimeoutActions">
-      <div *ngIf="availableVaultTimeoutActions.length > 1" class="form-group">
-        <label>{{ "vaultTimeoutAction" | i18n }}</label>
-        <div
+      <bit-radio-group
+        formControlName="vaultTimeoutAction"
+        *ngIf="availableVaultTimeoutActions.length > 1"
+      >
+        <bit-label>{{ "vaultTimeoutAction" | i18n }}</bit-label>
+        <bit-radio-button
           *ngIf="availableVaultTimeoutActions.includes(VaultTimeoutAction.Lock)"
-          class="form-check form-check-block"
+          id="vaultTimeoutActionLock"
+          [value]="VaultTimeoutAction.Lock"
         >
-          <input
-            class="form-check-input"
-            type="radio"
-            name="vaultTimeoutAction"
-            id="vaultTimeoutActionLock"
-            value="{{ VaultTimeoutAction.Lock }}"
-            formControlName="vaultTimeoutAction"
-          />
-          <label class="form-check-label" for="vaultTimeoutActionLock">
-            {{ "lock" | i18n }}
-            <small>{{ "vaultTimeoutActionLockDesc" | i18n }}</small>
-          </label>
-        </div>
-        <div
+          <bit-label>{{ "lock" | i18n }}</bit-label>
+          <bit-hint>{{ "vaultTimeoutActionLockDesc" | i18n }}</bit-hint>
+        </bit-radio-button>
+        <bit-radio-button
           *ngIf="availableVaultTimeoutActions.includes(VaultTimeoutAction.LogOut)"
-          class="form-check mt-2 form-check-block"
+          id="vaultTimeoutActionLogOut"
+          [value]="VaultTimeoutAction.LogOut"
         >
-          <input
-            class="form-check-input"
-            type="radio"
-            name="vaultTimeoutAction"
-            id="vaultTimeoutActionLogOut"
-            value="{{ VaultTimeoutAction.LogOut }}"
-            formControlName="vaultTimeoutAction"
-          />
-          <label class="form-check-label" for="vaultTimeoutActionLogOut">
-            {{ "logOut" | i18n }}
-            <small>{{ "vaultTimeoutActionLogOutDesc" | i18n }}</small>
-          </label>
-        </div>
-      </div>
+          <bit-label>{{ "logOut" | i18n }}</bit-label>
+          <bit-hint>{{ "vaultTimeoutActionLogOutDesc" | i18n }}</bit-hint>
+        </bit-radio-button>
+      </bit-radio-group>
     </ng-container>
-    <div class="row">
-      <div class="col-6">
-        <div class="form-group">
-          <div class="d-flex">
-            <label for="locale">{{ "language" | i18n }}</label>
-            <a
-              class="ml-auto"
-              href="https://bitwarden.com/help/localization/"
-              target="_blank"
-              rel="noreferrer"
-              appA11yTitle="{{ 'learnMore' | i18n }}"
-            >
-              <i class="bwi bwi-question-circle" aria-hidden="true"></i>
-            </a>
-          </div>
-          <select id="locale" name="Locale" formControlName="locale" class="form-control">
-            <option *ngFor="let o of localeOptions" [ngValue]="o.value">{{ o.name }}</option>
-          </select>
-          <small class="form-text text-muted">{{ "languageDesc" | i18n }}</small>
-        </div>
-      </div>
-    </div>
-    <div class="form-group">
-      <div class="form-check">
-        <input
-          class="form-check-input"
-          type="checkbox"
-          id="enableFavicons"
-          name="enableFavicons"
-          formControlName="enableFavicons"
-        />
-        <label class="form-check-label" for="enableFavicons">
-          {{ "enableFavicon" | i18n }}
-        </label>
+    <bit-form-field>
+      <bit-label
+        >{{ "language" | i18n }}
         <a
+          bitLink
+          class="tw-float-right"
+          href="https://bitwarden.com/help/localization/"
+          target="_blank"
+          rel="noreferrer"
+          appA11yTitle="{{ 'learnMore' | i18n }}"
+        >
+          <i class="bwi bwi-question-circle" aria-hidden="true"></i>
+        </a>
+      </bit-label>
+      <bit-select formControlName="locale" id="locale">
+        <bit-option *ngFor="let o of localeOptions" [value]="o.value" [label]="o.name"></bit-option>
+      </bit-select>
+      <bit-hint>{{ "languageDesc" | i18n }}</bit-hint>
+    </bit-form-field>
+    <bit-form-control>
+      <input type="checkbox" bitCheckbox formControlName="enableFavicons" />
+      <bit-label
+        >{{ "enableFavicon" | i18n }}
+        <a
+          bitLink
           href="https://bitwarden.com/help/website-icons/"
           target="_blank"
           rel="noreferrer"
@@ -108,22 +79,16 @@
         >
           <i class="bwi bwi-question-circle" aria-hidden="true"></i>
         </a>
-      </div>
-      <small class="form-text text-muted">{{ "faviconDesc" | i18n }}</small>
-    </div>
-    <div class="row">
-      <div class="col-6">
-        <div class="form-group">
-          <label for="theme">{{ "theme" | i18n }}</label>
-          <select id="theme" name="theme" formControlName="theme" class="form-control">
-            <option *ngFor="let o of themeOptions" [ngValue]="o.value">{{ o.name }}</option>
-          </select>
-          <small class="form-text text-muted">{{ "themeDesc" | i18n }}</small>
-        </div>
-      </div>
-    </div>
-    <button type="submit" class="btn btn-primary">
-      {{ "save" | i18n }}
-    </button>
+      </bit-label>
+      <bit-hint>{{ "faviconDesc" | i18n }}</bit-hint>
+    </bit-form-control>
+    <bit-form-field>
+      <bit-label>{{ "theme" | i18n }}</bit-label>
+      <bit-select formControlName="theme" id="theme">
+        <bit-option *ngFor="let o of themeOptions" [value]="o.value" [label]="o.name"></bit-option>
+      </bit-select>
+      <bit-hint>{{ "themeDesc" | i18n }}</bit-hint>
+    </bit-form-field>
+    <button bitButton bitFormButton type="submit" buttonType="primary">{{ "save" | i18n }}</button>
   </form>
 </bit-container>
diff --git a/apps/web/src/app/settings/preferences.component.ts b/apps/web/src/app/settings/preferences.component.ts
index a6443b453ef..1092a31d5c2 100644
--- a/apps/web/src/app/settings/preferences.component.ts
+++ b/apps/web/src/app/settings/preferences.component.ts
@@ -158,7 +158,7 @@ export class PreferencesComponent implements OnInit {
     this.form.setValue(initialFormValues, { emitEvent: false });
   }
 
-  async submit() {
+  submit = async () => {
     if (!this.form.controls.vaultTimeout.valid) {
       this.platformUtilsService.showToast(
         "error",
@@ -188,7 +188,7 @@ export class PreferencesComponent implements OnInit {
         this.i18nService.t("preferencesUpdated"),
       );
     }
-  }
+  };
 
   ngOnDestroy() {
     this.destroy$.next();

From 7d12d1a74fdcaa5c791a6e95e229c41e61ccf26f Mon Sep 17 00:00:00 2001
From: Alex Morask <144709477+amorask-bitwarden@users.noreply.github.com>
Date: Thu, 6 Jun 2024 13:22:15 -0400
Subject: [PATCH 123/138] Fix spacing for provider unassigned seats hint'
 (#9460)

---
 .../create-client-organization.component.html | 14 ++++++-
 .../create-client-organization.component.ts   | 40 ++++++++++++++++---
 ...t-organization-subscription.component.html | 20 +++++-----
 ...ent-organization-subscription.component.ts |  8 ++--
 .../manage-client-organizations.component.ts  |  2 -
 .../provider-subscription.component.ts        |  4 +-
 .../provider-subscription-response.ts         |  6 +--
 7 files changed, 65 insertions(+), 29 deletions(-)

diff --git a/bitwarden_license/bit-web/src/app/billing/providers/clients/create-client-organization.component.html b/bitwarden_license/bit-web/src/app/billing/providers/clients/create-client-organization.component.html
index 87169b6d9c0..110990d709d 100644
--- a/bitwarden_license/bit-web/src/app/billing/providers/clients/create-client-organization.component.html
+++ b/bitwarden_license/bit-web/src/app/billing/providers/clients/create-client-organization.component.html
@@ -1,5 +1,5 @@
 <form [formGroup]="formGroup" [bitSubmit]="submit">
-  <bit-dialog dialogSize="large">
+  <bit-dialog dialogSize="large" [loading]="loading">
     <span bitDialogTitle class="tw-font-semibold">
       {{ "newClientOrganization" | i18n }}
     </span>
@@ -49,11 +49,21 @@
         </bit-form-field>
       </div>
       <div class="tw-grid tw-grid-flow-col tw-grid-cols-2 tw-gap-4">
-        <bit-form-field>
+        <bit-form-field disableMargin>
           <bit-label>
             {{ "seats" | i18n }}
           </bit-label>
           <input type="text" bitInput formControlName="seats" />
+          <bit-hint
+            class="tw-text-muted tw-grid tw-grid-flow-col tw-gap-1 tw-grid-cols-1 tw-grid-rows-2"
+            *ngIf="unassignedSeatsForSelectedPlan > 0"
+          >
+            <span class="tw-col-span-1"
+              >{{ unassignedSeatsForSelectedPlan }}
+              {{ "unassignedSeatsDescription" | i18n | lowercase }}</span
+            >
+            <span class="tw-col-span-1">0 {{ "purchaseSeatDescription" | i18n | lowercase }}</span>
+          </bit-hint>
         </bit-form-field>
       </div>
     </div>
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/clients/create-client-organization.component.ts b/bitwarden_license/bit-web/src/app/billing/providers/clients/create-client-organization.component.ts
index 8427572516a..13d74136cf4 100644
--- a/bitwarden_license/bit-web/src/app/billing/providers/clients/create-client-organization.component.ts
+++ b/bitwarden_license/bit-web/src/app/billing/providers/clients/create-client-organization.component.ts
@@ -2,11 +2,12 @@ import { DIALOG_DATA, DialogConfig, DialogRef } from "@angular/cdk/dialog";
 import { Component, Inject, OnInit } from "@angular/core";
 import { FormBuilder, Validators } from "@angular/forms";
 
+import { BillingApiServiceAbstraction } from "@bitwarden/common/billing/abstractions/billilng-api.service.abstraction";
 import { PlanType } from "@bitwarden/common/billing/enums";
 import { PlanResponse } from "@bitwarden/common/billing/models/response/plan.response";
+import { ProviderPlanResponse } from "@bitwarden/common/billing/models/response/provider-subscription-response";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
-import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { DialogService } from "@bitwarden/components";
+import { DialogService, ToastService } from "@bitwarden/components";
 
 import { WebProviderService } from "../../../admin-console/providers/services/web-provider.service";
 
@@ -33,6 +34,7 @@ type PlanCard = {
   name: string;
   cost: number;
   type: PlanType;
+  plan: PlanResponse;
   selected: boolean;
 };
 
@@ -41,20 +43,24 @@ type PlanCard = {
   templateUrl: "./create-client-organization.component.html",
 })
 export class CreateClientOrganizationComponent implements OnInit {
-  protected ResultType = CreateClientOrganizationResultType;
   protected formGroup = this.formBuilder.group({
     clientOwnerEmail: ["", [Validators.required, Validators.email]],
     organizationName: ["", Validators.required],
     seats: [null, [Validators.required, Validators.min(1)]],
   });
+  protected loading = true;
   protected planCards: PlanCard[];
+  protected ResultType = CreateClientOrganizationResultType;
+
+  private providerPlans: ProviderPlanResponse[];
 
   constructor(
+    private billingApiService: BillingApiServiceAbstraction,
     @Inject(DIALOG_DATA) private dialogParams: CreateClientOrganizationParams,
     private dialogRef: DialogRef<CreateClientOrganizationResultType>,
     private formBuilder: FormBuilder,
     private i18nService: I18nService,
-    private platformUtilsService: PlatformUtilsService,
+    private toastService: ToastService,
     private webProviderService: WebProviderService,
   ) {}
 
@@ -92,6 +98,11 @@ export class CreateClientOrganizationComponent implements OnInit {
   }
 
   async ngOnInit(): Promise<void> {
+    const subscription = await this.billingApiService.getProviderSubscription(
+      this.dialogParams.providerId,
+    );
+    this.providerPlans = subscription?.plans ?? [];
+
     const teamsPlan = this.dialogParams.plans.find((plan) => plan.type === PlanType.TeamsMonthly);
     const enterprisePlan = this.dialogParams.plans.find(
       (plan) => plan.type === PlanType.EnterpriseMonthly,
@@ -102,15 +113,19 @@ export class CreateClientOrganizationComponent implements OnInit {
         name: this.i18nService.t("planNameTeams"),
         cost: teamsPlan.PasswordManager.seatPrice * 0.65, // 35% off for MSPs,
         type: teamsPlan.type,
+        plan: teamsPlan,
         selected: true,
       },
       {
         name: this.i18nService.t("planNameEnterprise"),
         cost: enterprisePlan.PasswordManager.seatPrice * 0.65, // 35% off for MSPs,
         type: enterprisePlan.type,
+        plan: enterprisePlan,
         selected: false,
       },
     ];
+
+    this.loading = false;
   }
 
   protected selectPlan(name: string) {
@@ -135,8 +150,23 @@ export class CreateClientOrganizationComponent implements OnInit {
       this.formGroup.value.seats,
     );
 
-    this.platformUtilsService.showToast("success", null, this.i18nService.t("createdNewClient"));
+    this.toastService.showToast({
+      variant: "success",
+      title: null,
+      message: this.i18nService.t("createdNewClient"),
+    });
 
     this.dialogRef.close(this.ResultType.Submitted);
   };
+
+  protected get unassignedSeatsForSelectedPlan(): number {
+    if (this.loading || !this.planCards) {
+      return 0;
+    }
+    const selectedPlan = this.planCards.find((planCard) => planCard.selected).plan;
+    const selectedProviderPlan = this.providerPlans.find(
+      (providerPlan) => providerPlan.planName === selectedPlan.name,
+    );
+    return selectedProviderPlan.seatMinimum - selectedProviderPlan.assignedSeats;
+  }
 }
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/clients/manage-client-organization-subscription.component.html b/bitwarden_license/bit-web/src/app/billing/providers/clients/manage-client-organization-subscription.component.html
index d1e4fe8b1f3..8181c285c28 100644
--- a/bitwarden_license/bit-web/src/app/billing/providers/clients/manage-client-organization-subscription.component.html
+++ b/bitwarden_license/bit-web/src/app/billing/providers/clients/manage-client-organization-subscription.component.html
@@ -7,22 +7,20 @@
     <p>
       {{ "manageSeatsDescription" | i18n }}
     </p>
-    <bit-form-field>
+    <bit-form-field disableMargin>
       <bit-label>
         {{ "assignedSeats" | i18n }}
       </bit-label>
       <input id="assignedSeats" type="number" bitInput required [(ngModel)]="assignedSeats" />
+      <bit-hint class="tw-text-muted" *ngIf="remainingOpenSeats > 0">
+        <div class="tw-grid tw-grid-flow-col tw-gap-1 tw-grid-cols-1 tw-grid-rows-2">
+          <span class="tw-col-span-1"
+            >{{ unassignedSeats }} {{ "unassignedSeatsDescription" | i18n | lowercase }}</span
+          >
+          <span class="tw-col-span-1">0 {{ "purchaseSeatDescription" | i18n | lowercase }}</span>
+        </div>
+      </bit-hint>
     </bit-form-field>
-    <ng-container *ngIf="remainingOpenSeats > 0">
-      <p>
-        <small class="tw-text-muted">{{ unassignedSeats }}</small>
-        <small class="tw-text-muted">{{ "unassignedSeatsDescription" | i18n }}</small>
-      </p>
-      <p>
-        <small class="tw-text-muted">{{ AdditionalSeatPurchased }}</small>
-        <small class="tw-text-muted">{{ "purchaseSeatDescription" | i18n }}</small>
-      </p>
-    </ng-container>
   </div>
   <ng-container bitDialogFooter>
     <button
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/clients/manage-client-organization-subscription.component.ts b/bitwarden_license/bit-web/src/app/billing/providers/clients/manage-client-organization-subscription.component.ts
index 3b054767778..496a8b18cb4 100644
--- a/bitwarden_license/bit-web/src/app/billing/providers/clients/manage-client-organization-subscription.component.ts
+++ b/bitwarden_license/bit-web/src/app/billing/providers/clients/manage-client-organization-subscription.component.ts
@@ -4,7 +4,7 @@ import { Component, Inject, OnInit } from "@angular/core";
 import { ProviderOrganizationOrganizationDetailsResponse } from "@bitwarden/common/admin-console/models/response/provider/provider-organization.response";
 import { BillingApiServiceAbstraction as BillingApiService } from "@bitwarden/common/billing/abstractions/billilng-api.service.abstraction";
 import { UpdateClientOrganizationRequest } from "@bitwarden/common/billing/models/request/update-client-organization.request";
-import { Plans } from "@bitwarden/common/billing/models/response/provider-subscription-response";
+import { ProviderPlanResponse } from "@bitwarden/common/billing/models/response/provider-subscription-response";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
 import { DialogService } from "@bitwarden/components";
@@ -83,7 +83,7 @@ export class ManageClientOrganizationSubscriptionComponent implements OnInit {
     this.dialogRef.close();
   }
 
-  getPurchasedSeatsByPlan(planName: string, plans: Plans[]): number {
+  getPurchasedSeatsByPlan(planName: string, plans: ProviderPlanResponse[]): number {
     const plan = plans.find((plan) => plan.planName === planName);
     if (plan) {
       return plan.purchasedSeats;
@@ -92,7 +92,7 @@ export class ManageClientOrganizationSubscriptionComponent implements OnInit {
     }
   }
 
-  getAssignedByPlan(planName: string, plans: Plans[]): number {
+  getAssignedByPlan(planName: string, plans: ProviderPlanResponse[]): number {
     const plan = plans.find((plan) => plan.planName === planName);
     if (plan) {
       return plan.assignedSeats;
@@ -101,7 +101,7 @@ export class ManageClientOrganizationSubscriptionComponent implements OnInit {
     }
   }
 
-  getProviderSeatMinimumByPlan(planName: string, plans: Plans[]) {
+  getProviderSeatMinimumByPlan(planName: string, plans: ProviderPlanResponse[]) {
     const plan = plans.find((plan) => plan.planName === planName);
     if (plan) {
       return plan.seatMinimum;
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/clients/manage-client-organizations.component.ts b/bitwarden_license/bit-web/src/app/billing/providers/clients/manage-client-organizations.component.ts
index 800766daf49..77621fec330 100644
--- a/bitwarden_license/bit-web/src/app/billing/providers/clients/manage-client-organizations.component.ts
+++ b/bitwarden_license/bit-web/src/app/billing/providers/clients/manage-client-organizations.component.ts
@@ -158,6 +158,4 @@ export class ManageClientOrganizationsComponent extends BaseClientsComponent {
 
     await this.load();
   };
-  protected readonly openManageClientOrganizationNameDialog =
-    openManageClientOrganizationNameDialog;
 }
diff --git a/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.ts b/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.ts
index 8ede48576fa..ca405747bf1 100644
--- a/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.ts
+++ b/bitwarden_license/bit-web/src/app/billing/providers/subscription/provider-subscription.component.ts
@@ -4,7 +4,7 @@ import { Subject, concatMap, takeUntil } from "rxjs";
 
 import { BillingApiServiceAbstraction } from "@bitwarden/common/billing/abstractions/billilng-api.service.abstraction";
 import {
-  Plans,
+  ProviderPlanResponse,
   ProviderSubscriptionResponse,
 } from "@bitwarden/common/billing/models/response/provider-subscription-response";
 
@@ -75,7 +75,7 @@ export class ProviderSubscriptionComponent {
     return totalSeats > 1 ? totalSeats.toString() : "";
   }
 
-  sumCost(plans: Plans[]): number {
+  sumCost(plans: ProviderPlanResponse[]): number {
     return plans.reduce((acc, plan) => acc + plan.cost, 0);
   }
 
diff --git a/libs/common/src/billing/models/response/provider-subscription-response.ts b/libs/common/src/billing/models/response/provider-subscription-response.ts
index 9f6823f71fe..fb8818fb39d 100644
--- a/libs/common/src/billing/models/response/provider-subscription-response.ts
+++ b/libs/common/src/billing/models/response/provider-subscription-response.ts
@@ -4,11 +4,11 @@ export class ProviderSubscriptionResponse extends BaseResponse {
   status: string;
   currentPeriodEndDate: Date;
   discountPercentage?: number | null;
+  plans: ProviderPlanResponse[] = [];
   collectionMethod: string;
   unpaidPeriodEndDate?: string;
   gracePeriod?: number | null;
   suspensionDate?: string;
-  plans: Plans[] = [];
 
   constructor(response: any) {
     super(response);
@@ -21,12 +21,12 @@ export class ProviderSubscriptionResponse extends BaseResponse {
     this.suspensionDate = this.getResponseProperty("suspensionDate");
     const plans = this.getResponseProperty("plans");
     if (plans != null) {
-      this.plans = plans.map((i: any) => new Plans(i));
+      this.plans = plans.map((i: any) => new ProviderPlanResponse(i));
     }
   }
 }
 
-export class Plans extends BaseResponse {
+export class ProviderPlanResponse extends BaseResponse {
   planName: string;
   seatMinimum: number;
   assignedSeats: number;

From 79968c2d326a7045f386ab25f18eb3c563b25c42 Mon Sep 17 00:00:00 2001
From: Shane Melton <smelton@bitwarden.com>
Date: Thu, 6 Jun 2024 10:43:55 -0700
Subject: [PATCH 124/138] [PM-8335] Show autofill suggestion when no autofill
 login items present (#9521)

---
 .../autofill-vault-list-items.component.html  | 21 +------------------
 .../autofill-vault-list-items.component.ts    |  8 +++++--
 .../vault-list-items-container.component.html |  5 ++++-
 .../vault-list-items-container.component.ts   |  7 +++++++
 4 files changed, 18 insertions(+), 23 deletions(-)

diff --git a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.html b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.html
index e52018ab27f..52ae387e8b9 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.html
+++ b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.html
@@ -4,25 +4,6 @@
   [title]="'autofillSuggestions' | i18n"
   [showRefresh]="showRefresh"
   (onRefresh)="refreshCurrentTab()"
+  [description]="(showEmptyAutofillTip$ | async) ? ('autofillSuggestionsTip' | i18n) : null"
   showAutofillButton
 ></app-vault-list-items-container>
-<ng-container *ngIf="showEmptyAutofillTip$ | async">
-  <bit-section>
-    <bit-section-header>
-      <h2 bitTypography="h6">
-        {{ "autofillSuggestions" | i18n }}
-      </h2>
-      <button
-        *ngIf="showRefresh"
-        bitIconButton="bwi-refresh"
-        size="small"
-        type="button"
-        [appA11yTitle]="'refresh' | i18n"
-        (click)="refreshCurrentTab()"
-      ></button>
-    </bit-section-header>
-    <span class="tw-text-muted tw-px-1" bitTypography="body2">{{
-      "autofillSuggestionsTip" | i18n
-    }}</span>
-  </bit-section>
-</ng-container>
diff --git a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts
index 1b9876759f0..eb8737d5139 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/autofill-vault-list-items/autofill-vault-list-items.component.ts
@@ -3,6 +3,7 @@ import { Component } from "@angular/core";
 import { combineLatest, map, Observable } from "rxjs";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
+import { CipherType } from "@bitwarden/common/vault/enums";
 import {
   IconButtonModule,
   SectionComponent,
@@ -45,7 +46,7 @@ export class AutofillVaultListItemsComponent {
 
   /**
    * Observable that determines whether the empty autofill tip should be shown.
-   * The tip is shown when there are no ciphers to autofill, no filter is applied, and autofill is allowed in
+   * The tip is shown when there are no login ciphers to autofill, no filter is applied, and autofill is allowed in
    * the current context (e.g. not in a popout).
    * @protected
    */
@@ -54,7 +55,10 @@ export class AutofillVaultListItemsComponent {
     this.autofillCiphers$,
     this.vaultPopupItemsService.autofillAllowed$,
   ]).pipe(
-    map(([hasFilter, ciphers, canAutoFill]) => !hasFilter && canAutoFill && ciphers.length === 0),
+    map(
+      ([hasFilter, ciphers, canAutoFill]) =>
+        !hasFilter && canAutoFill && ciphers.filter((c) => c.type == CipherType.Login).length === 0,
+    ),
   );
 
   constructor(private vaultPopupItemsService: VaultPopupItemsService) {
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
index c2c345fd757..7b8fdf7a8e5 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.html
@@ -1,4 +1,4 @@
-<bit-section *ngIf="ciphers?.length > 0">
+<bit-section *ngIf="ciphers?.length > 0 || description">
   <bit-section-header>
     <h2 bitTypography="h6">
       {{ title }}
@@ -13,6 +13,9 @@
     ></button>
     <span bitTypography="body2" slot="end">{{ ciphers.length }}</span>
   </bit-section-header>
+  <div *ngIf="description" class="tw-text-muted tw-px-1 tw-mb-2" bitTypography="body2">
+    {{ description }}
+  </div>
   <bit-item-group>
     <bit-item *ngFor="let cipher of ciphers">
       <a
diff --git a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
index 59e3a3c3a1a..0c810756352 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/vault-list-items-container/vault-list-items-container.component.ts
@@ -50,6 +50,13 @@ export class VaultListItemsContainerComponent {
   @Input()
   title: string;
 
+  /**
+   * Optional description for the vault list item section. Will be shown below the title even when
+   * no ciphers are available.
+   */
+  @Input()
+  description: string;
+
   /**
    * Option to show a refresh button in the section header.
    */

From ba3d21094e493d85a40dcdbfd6bd5305bd5274b1 Mon Sep 17 00:00:00 2001
From: Justin Baur <19896123+justindbaur@users.noreply.github.com>
Date: Thu, 6 Jun 2024 14:26:17 -0400
Subject: [PATCH 125/138] [PM-7541] Move Last Desktop Settings (#9310)

* Clone Initial Data In `runMigrator`

- When using test cases, mutating the input data causes problems.

* Migrate `minimizeOnCopy` & `browserIntegrationEnabled`

* Update From Main

* Move Fingerprint Setting

- No Migration Yet

* Add Fingerprint to Migrations

* Convert Messaging to `async`

* Switch to calling `Boolean` for Map Function

* Catch Errors

* Remove LogService
---
 .../src/app/accounts/settings.component.ts    |  22 ++-
 apps/desktop/src/main.ts                      |  73 ++-------
 apps/desktop/src/main/messaging.main.ts       |  22 +--
 .../services/desktop-settings.service.ts      |  92 ++++++++++-
 .../src/services/native-messaging.service.ts  |   6 +-
 .../platform/abstractions/state.service.ts    |   9 --
 .../src/platform/models/domain/account.ts     |   1 -
 .../platform/models/domain/global-state.ts    |   2 -
 .../src/platform/services/state.service.ts    |  57 -------
 libs/common/src/state-migrations/migrate.ts   |   6 +-
 .../state-migrations/migration-helper.spec.ts |   8 +-
 .../66-move-final-desktop-settings.spec.ts    | 143 ++++++++++++++++++
 .../66-move-final-desktop-settings.ts         | 119 +++++++++++++++
 13 files changed, 395 insertions(+), 165 deletions(-)
 create mode 100644 libs/common/src/state-migrations/migrations/66-move-final-desktop-settings.spec.ts
 create mode 100644 libs/common/src/state-migrations/migrations/66-move-final-desktop-settings.ts

diff --git a/apps/desktop/src/app/accounts/settings.component.ts b/apps/desktop/src/app/accounts/settings.component.ts
index 6984e2da890..6b6a18958f8 100644
--- a/apps/desktop/src/app/accounts/settings.component.ts
+++ b/apps/desktop/src/app/accounts/settings.component.ts
@@ -278,7 +278,7 @@ export class SettingsComponent implements OnInit {
       approveLoginRequests:
         (await this.authRequestService.getAcceptAuthRequests(this.currentUserId)) ?? false,
       clearClipboard: await firstValueFrom(this.autofillSettingsService.clearClipboardDelay$),
-      minimizeOnCopyToClipboard: await this.stateService.getMinimizeOnCopyToClipboard(),
+      minimizeOnCopyToClipboard: await firstValueFrom(this.desktopSettingsService.minimizeOnCopy$),
       enableFavicons: await firstValueFrom(this.domainSettingsService.showFavicons$),
       enableTray: await firstValueFrom(this.desktopSettingsService.trayEnabled$),
       enableMinToTray: await firstValueFrom(this.desktopSettingsService.minimizeToTray$),
@@ -286,9 +286,12 @@ export class SettingsComponent implements OnInit {
       startToTray: await firstValueFrom(this.desktopSettingsService.startToTray$),
       openAtLogin: await firstValueFrom(this.desktopSettingsService.openAtLogin$),
       alwaysShowDock: await firstValueFrom(this.desktopSettingsService.alwaysShowDock$),
-      enableBrowserIntegration: await this.stateService.getEnableBrowserIntegration(),
-      enableBrowserIntegrationFingerprint:
-        await this.stateService.getEnableBrowserIntegrationFingerprint(),
+      enableBrowserIntegration: await firstValueFrom(
+        this.desktopSettingsService.browserIntegrationEnabled$,
+      ),
+      enableBrowserIntegrationFingerprint: await firstValueFrom(
+        this.desktopSettingsService.browserIntegrationFingerprintEnabled$,
+      ),
       enableDuckDuckGoBrowserIntegration: await firstValueFrom(
         this.desktopAutofillSettingsService.enableDuckDuckGoBrowserIntegration$,
       ),
@@ -598,7 +601,10 @@ export class SettingsComponent implements OnInit {
   }
 
   async saveMinOnCopyToClipboard() {
-    await this.stateService.setMinimizeOnCopyToClipboard(this.form.value.minimizeOnCopyToClipboard);
+    await this.desktopSettingsService.setMinimizeOnCopy(
+      this.form.value.minimizeOnCopyToClipboard,
+      this.currentUserId,
+    );
   }
 
   async saveClearClipboard() {
@@ -656,7 +662,9 @@ export class SettingsComponent implements OnInit {
       return;
     }
 
-    await this.stateService.setEnableBrowserIntegration(this.form.value.enableBrowserIntegration);
+    await this.desktopSettingsService.setBrowserIntegrationEnabled(
+      this.form.value.enableBrowserIntegration,
+    );
 
     const errorResult = await this.nativeMessagingManifestService.generate(
       this.form.value.enableBrowserIntegration,
@@ -703,7 +711,7 @@ export class SettingsComponent implements OnInit {
   }
 
   async saveBrowserIntegrationFingerprint() {
-    await this.stateService.setEnableBrowserIntegrationFingerprint(
+    await this.desktopSettingsService.setBrowserIntegrationFingerprintEnabled(
       this.form.value.enableBrowserIntegrationFingerprint,
     );
   }
diff --git a/apps/desktop/src/main.ts b/apps/desktop/src/main.ts
index 59a306189a5..738f053de73 100644
--- a/apps/desktop/src/main.ts
+++ b/apps/desktop/src/main.ts
@@ -3,23 +3,13 @@ import * as path from "path";
 import { app } from "electron";
 import { Subject, firstValueFrom } from "rxjs";
 
-import { LogoutReason } from "@bitwarden/auth/common";
-import { TokenService as TokenServiceAbstraction } from "@bitwarden/common/auth/abstractions/token.service";
 import { AccountServiceImplementation } from "@bitwarden/common/auth/services/account.service";
-import { TokenService } from "@bitwarden/common/auth/services/token.service";
 import { ClientType } from "@bitwarden/common/enums";
-import { EncryptService } from "@bitwarden/common/platform/abstractions/encrypt.service";
-import { KeyGenerationService as KeyGenerationServiceAbstraction } from "@bitwarden/common/platform/abstractions/key-generation.service";
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
 import { DefaultBiometricStateService } from "@bitwarden/common/platform/biometrics/biometric-state.service";
-import { StateFactory } from "@bitwarden/common/platform/factories/state-factory";
 import { Message, MessageSender } from "@bitwarden/common/platform/messaging";
 // eslint-disable-next-line no-restricted-imports -- For dependency creation
 import { SubjectMessageSender } from "@bitwarden/common/platform/messaging/internal";
-import { GlobalState } from "@bitwarden/common/platform/models/domain/global-state";
-import { EncryptServiceImplementation } from "@bitwarden/common/platform/services/cryptography/encrypt.service.implementation";
 import { DefaultEnvironmentService } from "@bitwarden/common/platform/services/default-environment.service";
-import { KeyGenerationService } from "@bitwarden/common/platform/services/key-generation.service";
 import { MemoryStorageService } from "@bitwarden/common/platform/services/memory-storage.service";
 import { MigrationBuilderService } from "@bitwarden/common/platform/services/migration-builder.service";
 import { MigrationRunner } from "@bitwarden/common/platform/services/migration-runner";
@@ -32,7 +22,6 @@ import { DefaultSingleUserStateProvider } from "@bitwarden/common/platform/state
 import { DefaultStateProvider } from "@bitwarden/common/platform/state/implementations/default-state.provider";
 import { StateEventRegistrarService } from "@bitwarden/common/platform/state/state-event-registrar.service";
 import { MemoryStorageService as MemoryStorageServiceForStateProviders } from "@bitwarden/common/platform/state/storage/memory-storage.service";
-import { UserId } from "@bitwarden/common/types/guid";
 /* eslint-enable import/no-restricted-paths */
 
 import { DesktopAutofillSettingsService } from "./autofill/services/desktop-autofill-settings.service";
@@ -43,18 +32,13 @@ import { PowerMonitorMain } from "./main/power-monitor.main";
 import { TrayMain } from "./main/tray.main";
 import { UpdaterMain } from "./main/updater.main";
 import { WindowMain } from "./main/window.main";
-import { Account } from "./models/account";
 import { BiometricsService, BiometricsServiceAbstraction } from "./platform/main/biometric/index";
 import { ClipboardMain } from "./platform/main/clipboard.main";
 import { DesktopCredentialStorageListener } from "./platform/main/desktop-credential-storage-listener";
-import { MainCryptoFunctionService } from "./platform/main/main-crypto-function.service";
 import { DesktopSettingsService } from "./platform/services/desktop-settings.service";
 import { ElectronLogMainService } from "./platform/services/electron-log.main.service";
-import { ELECTRON_SUPPORTS_SECURE_STORAGE } from "./platform/services/electron-platform-utils.service";
-import { ElectronStateService } from "./platform/services/electron-state.service";
 import { ElectronStorageService } from "./platform/services/electron-storage.service";
 import { I18nMainService } from "./platform/services/i18n.main.service";
-import { IllegalSecureStorageService } from "./platform/services/illegal-secure-storage.service";
 import { ElectronMainMessagingService } from "./services/electron-main-messaging.service";
 import { isMacAppStore } from "./utils";
 
@@ -65,15 +49,10 @@ export class Main {
   memoryStorageService: MemoryStorageService;
   memoryStorageForStateProviders: MemoryStorageServiceForStateProviders;
   messagingService: MessageSender;
-  stateService: StateService;
   environmentService: DefaultEnvironmentService;
-  mainCryptoFunctionService: MainCryptoFunctionService;
   desktopCredentialStorageListener: DesktopCredentialStorageListener;
   desktopSettingsService: DesktopSettingsService;
   migrationRunner: MigrationRunner;
-  tokenService: TokenServiceAbstraction;
-  keyGenerationService: KeyGenerationServiceAbstraction;
-  encryptService: EncryptService;
 
   windowMain: WindowMain;
   messagingMain: MessagingMain;
@@ -162,31 +141,6 @@ export class Main {
 
     this.environmentService = new DefaultEnvironmentService(stateProvider, accountService);
 
-    this.mainCryptoFunctionService = new MainCryptoFunctionService();
-    this.mainCryptoFunctionService.init();
-
-    this.keyGenerationService = new KeyGenerationService(this.mainCryptoFunctionService);
-
-    this.encryptService = new EncryptServiceImplementation(
-      this.mainCryptoFunctionService,
-      this.logService,
-      true, // log mac failures
-    );
-
-    // Note: secure storage service is not available and should not be called in the main background process.
-    const illegalSecureStorageService = new IllegalSecureStorageService();
-
-    this.tokenService = new TokenService(
-      singleUserStateProvider,
-      globalStateProvider,
-      ELECTRON_SUPPORTS_SECURE_STORAGE,
-      illegalSecureStorageService,
-      this.keyGenerationService,
-      this.encryptService,
-      this.logService,
-      async (logoutReason: LogoutReason, userId?: UserId) => {},
-    );
-
     this.migrationRunner = new MigrationRunner(
       this.storageService,
       this.logService,
@@ -194,21 +148,6 @@ export class Main {
       ClientType.Desktop,
     );
 
-    // TODO: this state service will have access to on disk storage, but not in memory storage.
-    // If we could get this to work using the stateService singleton that the rest of the app uses we could save
-    // ourselves from some hacks, like having to manually update the app menu vs. the menu subscribing to events.
-    this.stateService = new ElectronStateService(
-      this.storageService,
-      null,
-      this.memoryStorageService,
-      this.logService,
-      new StateFactory(GlobalState, Account),
-      accountService, // will not broadcast logouts. This is a hack until we can remove messaging dependency
-      this.environmentService,
-      this.tokenService,
-      this.migrationRunner,
-    );
-
     this.desktopSettingsService = new DesktopSettingsService(stateProvider);
     const biometricStateService = new DefaultBiometricStateService(stateProvider);
 
@@ -220,7 +159,7 @@ export class Main {
       (arg) => this.processDeepLink(arg),
       (win) => this.trayMain.setupWindowListeners(win),
     );
-    this.messagingMain = new MessagingMain(this, this.stateService, this.desktopSettingsService);
+    this.messagingMain = new MessagingMain(this, this.desktopSettingsService);
     this.updaterMain = new UpdaterMain(this.i18nService, this.windowMain);
     this.trayMain = new TrayMain(this.windowMain, this.i18nService, this.desktopSettingsService);
 
@@ -231,7 +170,13 @@ export class Main {
     );
 
     messageSubject.asObservable().subscribe((message) => {
-      this.messagingMain.onMessage(message);
+      void this.messagingMain.onMessage(message).catch((err) => {
+        this.logService.error(
+          "Error while handling message",
+          message?.command ?? "Unknown command",
+          err,
+        );
+      });
     });
 
     this.powerMonitorMain = new PowerMonitorMain(this.messagingService);
@@ -299,7 +244,7 @@ export class Main {
         await this.updaterMain.init();
 
         const [browserIntegrationEnabled, ddgIntegrationEnabled] = await Promise.all([
-          this.stateService.getEnableBrowserIntegration(),
+          firstValueFrom(this.desktopSettingsService.browserIntegrationEnabled$),
           firstValueFrom(this.desktopAutofillSettingsService.enableDuckDuckGoBrowserIntegration$),
         ]);
 
diff --git a/apps/desktop/src/main/messaging.main.ts b/apps/desktop/src/main/messaging.main.ts
index a9f80b7d207..68b1597ac45 100644
--- a/apps/desktop/src/main/messaging.main.ts
+++ b/apps/desktop/src/main/messaging.main.ts
@@ -2,8 +2,7 @@ import * as fs from "fs";
 import * as path from "path";
 
 import { app, ipcMain } from "electron";
-
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
+import { firstValueFrom } from "rxjs";
 
 import { Main } from "../main";
 import { DesktopSettingsService } from "../platform/services/desktop-settings.service";
@@ -17,7 +16,6 @@ export class MessagingMain {
 
   constructor(
     private main: Main,
-    private stateService: StateService,
     private desktopSettingsService: DesktopSettingsService,
   ) {}
 
@@ -29,10 +27,13 @@ export class MessagingMain {
       const loginSettings = app.getLoginItemSettings();
       await this.desktopSettingsService.setOpenAtLogin(loginSettings.openAtLogin);
     }
-    ipcMain.on("messagingService", async (event: any, message: any) => this.onMessage(message));
+    ipcMain.on(
+      "messagingService",
+      async (event: any, message: any) => await this.onMessage(message),
+    );
   }
 
-  onMessage(message: any) {
+  async onMessage(message: any) {
     switch (message.command) {
       case "scheduleNextSync":
         this.scheduleNextSync();
@@ -44,13 +45,14 @@ export class MessagingMain {
         this.updateTrayMenu(message.updateRequest);
         break;
       case "minimizeOnCopy":
-        // FIXME: Verify that this floating promise is intentional. If it is, add an explanatory comment and ensure there is proper error handling.
-        // eslint-disable-next-line @typescript-eslint/no-floating-promises
-        this.stateService.getMinimizeOnCopyToClipboard().then((shouldMinimize) => {
-          if (shouldMinimize && this.main.windowMain.win !== null) {
+        {
+          const shouldMinimizeOnCopy = await firstValueFrom(
+            this.desktopSettingsService.minimizeOnCopy$,
+          );
+          if (shouldMinimizeOnCopy && this.main.windowMain.win !== null) {
             this.main.windowMain.win.minimize();
           }
-        });
+        }
         break;
       case "showTray":
         this.main.trayMain.showTray();
diff --git a/apps/desktop/src/platform/services/desktop-settings.service.ts b/apps/desktop/src/platform/services/desktop-settings.service.ts
index 09ddad07c1b..ff29ce50a0f 100644
--- a/apps/desktop/src/platform/services/desktop-settings.service.ts
+++ b/apps/desktop/src/platform/services/desktop-settings.service.ts
@@ -4,7 +4,9 @@ import {
   DESKTOP_SETTINGS_DISK,
   KeyDefinition,
   StateProvider,
+  UserKeyDefinition,
 } from "@bitwarden/common/platform/state";
+import { UserId } from "@bitwarden/common/types/guid";
 
 import { WindowState } from "../models/domain/window-state";
 
@@ -48,6 +50,27 @@ const ALWAYS_ON_TOP_KEY = new KeyDefinition<boolean>(DESKTOP_SETTINGS_DISK, "alw
   deserializer: (b) => b,
 });
 
+const BROWSER_INTEGRATION_ENABLED = new KeyDefinition<boolean>(
+  DESKTOP_SETTINGS_DISK,
+  "browserIntegrationEnabled",
+  {
+    deserializer: (b) => b,
+  },
+);
+
+const BROWSER_INTEGRATION_FINGERPRINT_ENABLED = new KeyDefinition<boolean>(
+  DESKTOP_SETTINGS_DISK,
+  "browserIntegrationFingerprintEnabled",
+  {
+    deserializer: (b) => b,
+  },
+);
+
+const MINIMIZE_ON_COPY = new UserKeyDefinition<boolean>(DESKTOP_SETTINGS_DISK, "minimizeOnCopy", {
+  deserializer: (b) => b,
+  clearOn: [], // User setting, no need to clear
+});
+
 /**
  * Various settings for controlling application behavior specific to the desktop client.
  */
@@ -61,41 +84,68 @@ export class DesktopSettingsService {
   /**
    * Tha applications setting for whether or not to close the application into the system tray.
    */
-  closeToTray$ = this.closeToTrayState.state$.pipe(map((value) => value ?? false));
+  closeToTray$ = this.closeToTrayState.state$.pipe(map(Boolean));
 
   private readonly minimizeToTrayState = this.stateProvider.getGlobal(MINIMIZE_TO_TRAY_KEY);
   /**
    * The application setting for whether or not to minimize the applicaiton into the system tray.
    */
-  minimizeToTray$ = this.minimizeToTrayState.state$.pipe(map((value) => value ?? false));
+  minimizeToTray$ = this.minimizeToTrayState.state$.pipe(map(Boolean));
 
   private readonly startToTrayState = this.stateProvider.getGlobal(START_TO_TRAY_KEY);
   /**
    * The application setting for whether or not to start the application into the system tray.
    */
-  startToTray$ = this.startToTrayState.state$.pipe(map((value) => value ?? false));
+  startToTray$ = this.startToTrayState.state$.pipe(map(Boolean));
 
   private readonly trayEnabledState = this.stateProvider.getGlobal(TRAY_ENABLED_KEY);
   /**
    * Whether or not the system tray has been enabled.
    */
-  trayEnabled$ = this.trayEnabledState.state$.pipe(map((value) => value ?? false));
+  trayEnabled$ = this.trayEnabledState.state$.pipe(map(Boolean));
 
   private readonly openAtLoginState = this.stateProvider.getGlobal(OPEN_AT_LOGIN_KEY);
   /**
    * The application setting for whether or not the application should open at system login.
    */
-  openAtLogin$ = this.openAtLoginState.state$.pipe(map((value) => value ?? false));
+  openAtLogin$ = this.openAtLoginState.state$.pipe(map(Boolean));
 
   private readonly alwaysShowDockState = this.stateProvider.getGlobal(ALWAYS_SHOW_DOCK_KEY);
   /**
    * The application setting for whether or not the application should show up in the dock.
    */
-  alwaysShowDock$ = this.alwaysShowDockState.state$.pipe(map((value) => value ?? false));
+  alwaysShowDock$ = this.alwaysShowDockState.state$.pipe(map(Boolean));
 
   private readonly alwaysOnTopState = this.stateProvider.getGlobal(ALWAYS_ON_TOP_KEY);
 
-  alwaysOnTop$ = this.alwaysOnTopState.state$.pipe(map((value) => value ?? false));
+  alwaysOnTop$ = this.alwaysOnTopState.state$.pipe(map(Boolean));
+
+  private readonly browserIntegrationEnabledState = this.stateProvider.getGlobal(
+    BROWSER_INTEGRATION_ENABLED,
+  );
+
+  /**
+   * The application setting for whether or not the browser integration is enabled.
+   */
+  browserIntegrationEnabled$ = this.browserIntegrationEnabledState.state$.pipe(map(Boolean));
+
+  private readonly browserIntegrationFingerprintEnabledState = this.stateProvider.getGlobal(
+    BROWSER_INTEGRATION_FINGERPRINT_ENABLED,
+  );
+
+  /**
+   * The application setting for whether or not the fingerprint should be verified before browser communication.
+   */
+  browserIntegrationFingerprintEnabled$ =
+    this.browserIntegrationFingerprintEnabledState.state$.pipe(map(Boolean));
+
+  private readonly minimizeOnCopyState = this.stateProvider.getActive(MINIMIZE_ON_COPY);
+
+  /**
+   * The active users setting for whether or not the application should minimize itself
+   * when a value is copied to the clipboard.
+   */
+  minimizeOnCopy$ = this.minimizeOnCopyState.state$.pipe(map(Boolean));
 
   constructor(private stateProvider: StateProvider) {
     this.window$ = this.windowState.state$.pipe(
@@ -177,4 +227,32 @@ export class DesktopSettingsService {
   async setAlwaysOnTop(value: boolean) {
     await this.alwaysOnTopState.update(() => value);
   }
+
+  /**
+   * Sets a setting for whether or not the browser integration has been enabled.
+   * @param value `true` if the integration with the browser extension is enabled,
+   * `false` if it is not.
+   */
+  async setBrowserIntegrationEnabled(value: boolean) {
+    await this.browserIntegrationEnabledState.update(() => value);
+  }
+
+  /**
+   * Sets a setting for whether or not the browser fingerprint should be verified before
+   * communication with the browser integration should be done.
+   * @param value `true` if the fingerprint should be validated before use, `false` if it should not.
+   */
+  async setBrowserIntegrationFingerprintEnabled(value: boolean) {
+    await this.browserIntegrationFingerprintEnabledState.update(() => value);
+  }
+
+  /**
+   * Sets the minimize on copy value for the current user.
+   * @param value `true` if the application should minimize when a value is copied,
+   * `false` if it should not.
+   * @param userId The user id of the user to update the setting for.
+   */
+  async setMinimizeOnCopy(value: boolean, userId: UserId) {
+    await this.stateProvider.getUser(userId, MINIMIZE_ON_COPY).update(() => value);
+  }
 }
diff --git a/apps/desktop/src/services/native-messaging.service.ts b/apps/desktop/src/services/native-messaging.service.ts
index 9abd3b635ad..8dc0a57c99c 100644
--- a/apps/desktop/src/services/native-messaging.service.ts
+++ b/apps/desktop/src/services/native-messaging.service.ts
@@ -10,7 +10,6 @@ import { CryptoService } from "@bitwarden/common/platform/abstractions/crypto.se
 import { LogService } from "@bitwarden/common/platform/abstractions/log.service";
 import { MessagingService } from "@bitwarden/common/platform/abstractions/messaging.service";
 import { PlatformUtilsService } from "@bitwarden/common/platform/abstractions/platform-utils.service";
-import { StateService } from "@bitwarden/common/platform/abstractions/state.service";
 import { BiometricStateService } from "@bitwarden/common/platform/biometrics/biometric-state.service";
 import { KeySuffixOptions } from "@bitwarden/common/platform/enums";
 import { Utils } from "@bitwarden/common/platform/misc/utils";
@@ -23,6 +22,7 @@ import { BrowserSyncVerificationDialogComponent } from "../app/components/browse
 import { LegacyMessage } from "../models/native-messaging/legacy-message";
 import { LegacyMessageWrapper } from "../models/native-messaging/legacy-message-wrapper";
 import { Message } from "../models/native-messaging/message";
+import { DesktopSettingsService } from "../platform/services/desktop-settings.service";
 
 import { NativeMessageHandlerService } from "./native-message-handler.service";
 
@@ -40,7 +40,7 @@ export class NativeMessagingService {
     private platformUtilService: PlatformUtilsService,
     private logService: LogService,
     private messagingService: MessagingService,
-    private stateService: StateService,
+    private desktopSettingService: DesktopSettingsService,
     private biometricStateService: BiometricStateService,
     private nativeMessageHandler: NativeMessageHandlerService,
     private dialogService: DialogService,
@@ -78,7 +78,7 @@ export class NativeMessagingService {
         return;
       }
 
-      if (await this.stateService.getEnableBrowserIntegrationFingerprint()) {
+      if (await firstValueFrom(this.desktopSettingService.browserIntegrationFingerprintEnabled$)) {
         ipc.platform.nativeMessaging.sendMessage({
           command: "verifyFingerprint",
           appId: appId,
diff --git a/libs/common/src/platform/abstractions/state.service.ts b/libs/common/src/platform/abstractions/state.service.ts
index b73a0ec7843..6f69dca8a5a 100644
--- a/libs/common/src/platform/abstractions/state.service.ts
+++ b/libs/common/src/platform/abstractions/state.service.ts
@@ -82,13 +82,6 @@ export abstract class StateService<T extends Account = Account> {
   ) => Promise<void>;
   getDuckDuckGoSharedKey: (options?: StorageOptions) => Promise<string>;
   setDuckDuckGoSharedKey: (value: string, options?: StorageOptions) => Promise<void>;
-  getEnableBrowserIntegration: (options?: StorageOptions) => Promise<boolean>;
-  setEnableBrowserIntegration: (value: boolean, options?: StorageOptions) => Promise<void>;
-  getEnableBrowserIntegrationFingerprint: (options?: StorageOptions) => Promise<boolean>;
-  setEnableBrowserIntegrationFingerprint: (
-    value: boolean,
-    options?: StorageOptions,
-  ) => Promise<void>;
   getEncryptedPasswordGenerationHistory: (
     options?: StorageOptions,
   ) => Promise<GeneratedPasswordHistory[]>;
@@ -99,8 +92,6 @@ export abstract class StateService<T extends Account = Account> {
   getIsAuthenticated: (options?: StorageOptions) => Promise<boolean>;
   getLastSync: (options?: StorageOptions) => Promise<string>;
   setLastSync: (value: string, options?: StorageOptions) => Promise<void>;
-  getMinimizeOnCopyToClipboard: (options?: StorageOptions) => Promise<boolean>;
-  setMinimizeOnCopyToClipboard: (value: boolean, options?: StorageOptions) => Promise<void>;
   getPasswordGenerationOptions: (options?: StorageOptions) => Promise<PasswordGeneratorOptions>;
   setPasswordGenerationOptions: (
     value: PasswordGeneratorOptions,
diff --git a/libs/common/src/platform/models/domain/account.ts b/libs/common/src/platform/models/domain/account.ts
index 8c7d70948cb..8e26e4ed30e 100644
--- a/libs/common/src/platform/models/domain/account.ts
+++ b/libs/common/src/platform/models/domain/account.ts
@@ -143,7 +143,6 @@ export class AccountProfile {
 
 export class AccountSettings {
   defaultUriMatch?: UriMatchStrategySetting;
-  minimizeOnCopyToClipboard?: boolean;
   passwordGenerationOptions?: PasswordGeneratorOptions;
   usernameGenerationOptions?: UsernameGeneratorOptions;
   generatorOptions?: GeneratorOptions;
diff --git a/libs/common/src/platform/models/domain/global-state.ts b/libs/common/src/platform/models/domain/global-state.ts
index f4b22702df4..a8faeccd39a 100644
--- a/libs/common/src/platform/models/domain/global-state.ts
+++ b/libs/common/src/platform/models/domain/global-state.ts
@@ -1,5 +1,3 @@
 export class GlobalState {
-  enableBrowserIntegration?: boolean;
-  enableBrowserIntegrationFingerprint?: boolean;
   enableDuckDuckGoBrowserIntegration?: boolean;
 }
diff --git a/libs/common/src/platform/services/state.service.ts b/libs/common/src/platform/services/state.service.ts
index 6906c031903..122ade0510c 100644
--- a/libs/common/src/platform/services/state.service.ts
+++ b/libs/common/src/platform/services/state.service.ts
@@ -347,45 +347,6 @@ export class StateService<
       : await this.secureStorageService.save(DDG_SHARED_KEY, value, options);
   }
 
-  async getEnableBrowserIntegration(options?: StorageOptions): Promise<boolean> {
-    return (
-      (await this.getGlobals(this.reconcileOptions(options, await this.defaultOnDiskOptions())))
-        ?.enableBrowserIntegration ?? false
-    );
-  }
-
-  async setEnableBrowserIntegration(value: boolean, options?: StorageOptions): Promise<void> {
-    const globals = await this.getGlobals(
-      this.reconcileOptions(options, await this.defaultOnDiskOptions()),
-    );
-    globals.enableBrowserIntegration = value;
-    await this.saveGlobals(
-      globals,
-      this.reconcileOptions(options, await this.defaultOnDiskOptions()),
-    );
-  }
-
-  async getEnableBrowserIntegrationFingerprint(options?: StorageOptions): Promise<boolean> {
-    return (
-      (await this.getGlobals(this.reconcileOptions(options, await this.defaultOnDiskOptions())))
-        ?.enableBrowserIntegrationFingerprint ?? false
-    );
-  }
-
-  async setEnableBrowserIntegrationFingerprint(
-    value: boolean,
-    options?: StorageOptions,
-  ): Promise<void> {
-    const globals = await this.getGlobals(
-      this.reconcileOptions(options, await this.defaultOnDiskOptions()),
-    );
-    globals.enableBrowserIntegrationFingerprint = value;
-    await this.saveGlobals(
-      globals,
-      this.reconcileOptions(options, await this.defaultOnDiskOptions()),
-    );
-  }
-
   async setEnableDuckDuckGoBrowserIntegration(
     value: boolean,
     options?: StorageOptions,
@@ -456,24 +417,6 @@ export class StateService<
     );
   }
 
-  async getMinimizeOnCopyToClipboard(options?: StorageOptions): Promise<boolean> {
-    return (
-      (await this.getAccount(this.reconcileOptions(options, await this.defaultOnDiskOptions())))
-        ?.settings?.minimizeOnCopyToClipboard ?? false
-    );
-  }
-
-  async setMinimizeOnCopyToClipboard(value: boolean, options?: StorageOptions): Promise<void> {
-    const account = await this.getAccount(
-      this.reconcileOptions(options, await this.defaultOnDiskOptions()),
-    );
-    account.settings.minimizeOnCopyToClipboard = value;
-    await this.saveAccount(
-      account,
-      this.reconcileOptions(options, await this.defaultOnDiskOptions()),
-    );
-  }
-
   async getPasswordGenerationOptions(options?: StorageOptions): Promise<PasswordGeneratorOptions> {
     return (
       await this.getAccount(this.reconcileOptions(options, await this.defaultOnDiskLocalOptions()))
diff --git a/libs/common/src/state-migrations/migrate.ts b/libs/common/src/state-migrations/migrate.ts
index d0543fb8c3a..3d849cfbf77 100644
--- a/libs/common/src/state-migrations/migrate.ts
+++ b/libs/common/src/state-migrations/migrate.ts
@@ -63,13 +63,14 @@ import { VaultTimeoutSettingsServiceStateProviderMigrator } from "./migrations/6
 import { PasswordOptionsMigrator } from "./migrations/63-migrate-password-settings";
 import { GeneratorHistoryMigrator } from "./migrations/64-migrate-generator-history";
 import { ForwarderOptionsMigrator } from "./migrations/65-migrate-forwarder-settings";
+import { MoveFinalDesktopSettingsMigrator } from "./migrations/66-move-final-desktop-settings";
 import { MoveBiometricAutoPromptToAccount } from "./migrations/7-move-biometric-auto-prompt-to-account";
 import { MoveStateVersionMigrator } from "./migrations/8-move-state-version";
 import { MoveBrowserSettingsToGlobal } from "./migrations/9-move-browser-settings-to-global";
 import { MinVersionMigrator } from "./migrations/min-version";
 
 export const MIN_VERSION = 3;
-export const CURRENT_VERSION = 65;
+export const CURRENT_VERSION = 66;
 export type MinVersion = typeof MIN_VERSION;
 
 export function createMigrationBuilder() {
@@ -136,7 +137,8 @@ export function createMigrationBuilder() {
     .with(VaultTimeoutSettingsServiceStateProviderMigrator, 61, 62)
     .with(PasswordOptionsMigrator, 62, 63)
     .with(GeneratorHistoryMigrator, 63, 64)
-    .with(ForwarderOptionsMigrator, 64, CURRENT_VERSION);
+    .with(ForwarderOptionsMigrator, 64, 65)
+    .with(MoveFinalDesktopSettingsMigrator, 65, CURRENT_VERSION);
 }
 
 export async function currentVersion(
diff --git a/libs/common/src/state-migrations/migration-helper.spec.ts b/libs/common/src/state-migrations/migration-helper.spec.ts
index 9f6fa747478..49e6e7fe9cf 100644
--- a/libs/common/src/state-migrations/migration-helper.spec.ts
+++ b/libs/common/src/state-migrations/migration-helper.spec.ts
@@ -356,10 +356,12 @@ export async function runMigrator<
   initalData?: InitialDataHint<TUsers>,
   direction: "migrate" | "rollback" = "migrate",
 ): Promise<Record<string, unknown>> {
-  // Inject fake data at every level of the object
-  const allInjectedData = injectData(initalData, []);
+  const clonedData = JSON.parse(JSON.stringify(initalData ?? {}));
 
-  const fakeStorageService = new FakeStorageService(initalData);
+  // Inject fake data at every level of the object
+  const allInjectedData = injectData(clonedData, []);
+
+  const fakeStorageService = new FakeStorageService(clonedData);
   const helper = new MigrationHelper(
     migrator.fromVersion,
     fakeStorageService,
diff --git a/libs/common/src/state-migrations/migrations/66-move-final-desktop-settings.spec.ts b/libs/common/src/state-migrations/migrations/66-move-final-desktop-settings.spec.ts
new file mode 100644
index 00000000000..19be45640fb
--- /dev/null
+++ b/libs/common/src/state-migrations/migrations/66-move-final-desktop-settings.spec.ts
@@ -0,0 +1,143 @@
+import { runMigrator } from "../migration-helper.spec";
+
+import { MoveFinalDesktopSettingsMigrator } from "./66-move-final-desktop-settings";
+
+describe("MoveDesktopSettings", () => {
+  const sut = new MoveFinalDesktopSettingsMigrator(65, 66);
+
+  const cases: {
+    it: string;
+    preMigration: Record<string, unknown>;
+    postMigration: Record<string, unknown>;
+  }[] = [
+    {
+      it: "moves truthy values",
+      preMigration: {
+        global_account_accounts: {
+          user1: {},
+          otherUser: {},
+        },
+        user1: {
+          settings: {
+            minimizeOnCopyToClipboard: true,
+          },
+        },
+        otherUser: {
+          settings: {
+            random: "stuff",
+          },
+        },
+        global: {
+          enableBrowserIntegration: true,
+          enableBrowserIntegrationFingerprint: true,
+        },
+      },
+      postMigration: {
+        global_account_accounts: {
+          user1: {},
+          otherUser: {},
+        },
+        global: {},
+        user1: {
+          settings: {},
+        },
+        otherUser: {
+          settings: {
+            random: "stuff",
+          },
+        },
+        global_desktopSettings_browserIntegrationEnabled: true,
+        user_user1_desktopSettings_minimizeOnCopy: true,
+        global_desktopSettings_browserIntegrationFingerprintEnabled: true,
+      },
+    },
+    {
+      it: "moves falsey values",
+      preMigration: {
+        global_account_accounts: {
+          user1: {},
+          otherUser: {},
+        },
+        user1: {
+          settings: {
+            minimizeOnCopyToClipboard: false,
+          },
+        },
+        otherUser: {
+          settings: {
+            random: "stuff",
+          },
+        },
+        global: {
+          enableBrowserIntegration: false,
+          enableBrowserIntegrationFingerprint: false,
+        },
+      },
+      postMigration: {
+        global_account_accounts: {
+          user1: {},
+          otherUser: {},
+        },
+        global: {},
+        user1: {
+          settings: {},
+        },
+        otherUser: {
+          settings: {
+            random: "stuff",
+          },
+        },
+        global_desktopSettings_browserIntegrationEnabled: false,
+        user_user1_desktopSettings_minimizeOnCopy: false,
+        global_desktopSettings_browserIntegrationFingerprintEnabled: false,
+      },
+    },
+    {
+      it: "does not move non-existant values",
+      preMigration: {
+        global_account_accounts: {
+          user1: {},
+          otherUser: {},
+        },
+        user1: {
+          settings: {},
+        },
+        otherUser: {
+          settings: {
+            random: "stuff",
+          },
+        },
+        global: {},
+      },
+      postMigration: {
+        global_account_accounts: {
+          user1: {},
+          otherUser: {},
+        },
+        global: {},
+        user1: {
+          settings: {},
+        },
+        otherUser: {
+          settings: {
+            random: "stuff",
+          },
+        },
+      },
+    },
+  ];
+
+  describe("migrate", () => {
+    it.each(cases)("$it", async ({ preMigration, postMigration }) => {
+      const actualOutput = await runMigrator(sut, preMigration, "migrate");
+      expect(actualOutput).toEqual(postMigration);
+    });
+  });
+
+  describe("rollback", () => {
+    it.each(cases)("$it", async ({ postMigration, preMigration }) => {
+      const actualOutput = await runMigrator(sut, postMigration, "rollback");
+      expect(actualOutput).toEqual(preMigration);
+    });
+  });
+});
diff --git a/libs/common/src/state-migrations/migrations/66-move-final-desktop-settings.ts b/libs/common/src/state-migrations/migrations/66-move-final-desktop-settings.ts
new file mode 100644
index 00000000000..67fbc6ec00c
--- /dev/null
+++ b/libs/common/src/state-migrations/migrations/66-move-final-desktop-settings.ts
@@ -0,0 +1,119 @@
+import { KeyDefinitionLike, MigrationHelper, StateDefinitionLike } from "../migration-helper";
+import { Migrator } from "../migrator";
+
+type ExpectedGlobal = {
+  enableBrowserIntegration?: boolean;
+  enableBrowserIntegrationFingerprint?: boolean;
+};
+
+type ExpectedAccount = {
+  settings?: {
+    minimizeOnCopyToClipboard?: boolean;
+  };
+};
+
+const DESKTOP_SETTINGS_DISK: StateDefinitionLike = {
+  name: "desktopSettings",
+};
+
+const BROWSER_INTEGRATION_ENABLED: KeyDefinitionLike = {
+  key: "browserIntegrationEnabled",
+  stateDefinition: DESKTOP_SETTINGS_DISK,
+};
+
+const BROWSER_INTEGRATION_FINGERPRINT_ENABLED: KeyDefinitionLike = {
+  key: "browserIntegrationFingerprintEnabled",
+  stateDefinition: DESKTOP_SETTINGS_DISK,
+};
+
+const MINIMIZE_ON_COPY: KeyDefinitionLike = {
+  key: "minimizeOnCopy",
+  stateDefinition: DESKTOP_SETTINGS_DISK,
+};
+
+export class MoveFinalDesktopSettingsMigrator extends Migrator<65, 66> {
+  async migrate(helper: MigrationHelper): Promise<void> {
+    const legacyGlobal = await helper.get<ExpectedGlobal>("global");
+    const enableBrowserIntegrationValue = legacyGlobal?.enableBrowserIntegration;
+    const enableBrowserIntegrationFingerprintValue =
+      legacyGlobal?.enableBrowserIntegrationFingerprint;
+
+    let updatedGlobal = false;
+
+    if (enableBrowserIntegrationValue != null) {
+      await helper.setToGlobal(BROWSER_INTEGRATION_ENABLED, enableBrowserIntegrationValue);
+      delete legacyGlobal.enableBrowserIntegration;
+      updatedGlobal = true;
+    }
+
+    if (enableBrowserIntegrationValue != null) {
+      await helper.setToGlobal(
+        BROWSER_INTEGRATION_FINGERPRINT_ENABLED,
+        enableBrowserIntegrationFingerprintValue,
+      );
+      delete legacyGlobal.enableBrowserIntegrationFingerprint;
+      updatedGlobal = true;
+    }
+
+    if (updatedGlobal) {
+      await helper.set("global", legacyGlobal);
+    }
+
+    async function migrateAccount(userId: string, account: ExpectedAccount) {
+      const minimizeOnCopyToClipboardValue = account?.settings?.minimizeOnCopyToClipboard;
+
+      if (minimizeOnCopyToClipboardValue != null) {
+        await helper.setToUser(userId, MINIMIZE_ON_COPY, minimizeOnCopyToClipboardValue);
+        delete account.settings.minimizeOnCopyToClipboard;
+        await helper.set(userId, account);
+      }
+    }
+
+    const accounts = await helper.getAccounts<ExpectedAccount>();
+
+    await Promise.all(accounts.map(({ userId, account }) => migrateAccount(userId, account)));
+  }
+
+  async rollback(helper: MigrationHelper): Promise<void> {
+    const browserIntegrationEnabledValue = await helper.getFromGlobal<boolean>(
+      BROWSER_INTEGRATION_ENABLED,
+    );
+
+    const browserIntegrationFingerprintEnabled = await helper.getFromGlobal<boolean>(
+      BROWSER_INTEGRATION_FINGERPRINT_ENABLED,
+    );
+
+    if (browserIntegrationEnabledValue != null) {
+      let legacyGlobal = await helper.get<ExpectedGlobal>("global");
+      legacyGlobal ??= {};
+      legacyGlobal.enableBrowserIntegration = browserIntegrationEnabledValue;
+      await helper.set("global", legacyGlobal);
+      await helper.removeFromGlobal(BROWSER_INTEGRATION_ENABLED);
+    }
+
+    if (browserIntegrationFingerprintEnabled != null) {
+      let legacyGlobal = await helper.get<ExpectedGlobal>("global");
+      legacyGlobal ??= {};
+      legacyGlobal.enableBrowserIntegrationFingerprint = browserIntegrationFingerprintEnabled;
+      await helper.set("global", legacyGlobal);
+      await helper.removeFromGlobal(BROWSER_INTEGRATION_FINGERPRINT_ENABLED);
+    }
+
+    async function rollbackAccount(userId: string, account: ExpectedAccount) {
+      const minimizeOnCopyToClipboardValue = await helper.getFromUser<boolean>(
+        userId,
+        MINIMIZE_ON_COPY,
+      );
+
+      if (minimizeOnCopyToClipboardValue != null) {
+        account ??= { settings: {} };
+        account.settings.minimizeOnCopyToClipboard = minimizeOnCopyToClipboardValue;
+        await helper.set(userId, account);
+        await helper.removeFromUser(userId, MINIMIZE_ON_COPY);
+      }
+    }
+
+    const accounts = await helper.getAccounts();
+    await Promise.all(accounts.map(({ userId, account }) => rollbackAccount(userId, account)));
+  }
+}

From a5591dc4bc1fe1a90f175da1ad82db57671d2c10 Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Thu, 6 Jun 2024 15:28:29 -0500
Subject: [PATCH 126/138] [PM-8592] Deactivated state not showing (#9533)

* refactor vault state observables into a single variable to remove multiple subscriptions

* add clarification comment

* fix comment to be accurate
---
 .../components/vault/vault-v2.component.html  | 14 ++++---
 .../components/vault/vault-v2.component.ts    | 40 +++++++++++++++++--
 2 files changed, 44 insertions(+), 10 deletions(-)

diff --git a/apps/browser/src/vault/popup/components/vault/vault-v2.component.html b/apps/browser/src/vault/popup/components/vault/vault-v2.component.html
index 9f38fd61fab..694c0e9be52 100644
--- a/apps/browser/src/vault/popup/components/vault/vault-v2.component.html
+++ b/apps/browser/src/vault/popup/components/vault/vault-v2.component.html
@@ -11,7 +11,10 @@
     </ng-container>
   </popup-header>
 
-  <div *ngIf="showEmptyState$ | async" class="tw-flex tw-flex-col tw-h-full tw-justify-center">
+  <div
+    *ngIf="vaultState === VaultStateEnum.Empty"
+    class="tw-flex tw-flex-col tw-h-full tw-justify-center"
+  >
     <bit-no-items [icon]="vaultIcon">
       <ng-container slot="title">{{ "yourVaultIsEmpty" | i18n }}</ng-container>
       <ng-container slot="description">{{ "autofillSuggestionsTip" | i18n }}</ng-container>
@@ -21,13 +24,12 @@
     </bit-no-items>
   </div>
 
-  <ng-container *ngIf="!(showEmptyState$ | async)">
+  <ng-container *ngIf="vaultState !== VaultStateEnum.Empty">
     <app-vault-v2-search> </app-vault-v2-search>
 
     <app-vault-list-filters></app-vault-list-filters>
-
     <div
-      *ngIf="(showNoResultsState$ | async) && !(showDeactivatedOrg$ | async)"
+      *ngIf="vaultState === VaultStateEnum.NoResults"
       class="tw-flex tw-flex-col tw-justify-center tw-h-auto tw-pt-12"
     >
       <bit-no-items [icon]="noResultsIcon">
@@ -37,7 +39,7 @@
     </div>
 
     <div
-      *ngIf="showDeactivatedOrg$ | async"
+      *ngIf="vaultState === VaultStateEnum.DeactivatedOrg"
       class="tw-flex tw-flex-col tw-justify-center tw-h-auto tw-pt-12"
     >
       <bit-no-items [icon]="deactivatedIcon">
@@ -46,7 +48,7 @@
       </bit-no-items>
     </div>
 
-    <ng-container *ngIf="!(showNoResultsState$ | async) && !(showDeactivatedOrg$ | async)">
+    <ng-container *ngIf="vaultState === null">
       <app-autofill-vault-list-items></app-autofill-vault-list-items>
       <app-vault-list-items-container
         [title]="'favorites' | i18n"
diff --git a/apps/browser/src/vault/popup/components/vault/vault-v2.component.ts b/apps/browser/src/vault/popup/components/vault/vault-v2.component.ts
index 5e91f196a30..f6f6872c1c5 100644
--- a/apps/browser/src/vault/popup/components/vault/vault-v2.component.ts
+++ b/apps/browser/src/vault/popup/components/vault/vault-v2.component.ts
@@ -1,6 +1,8 @@
 import { CommonModule } from "@angular/common";
 import { Component, OnDestroy, OnInit } from "@angular/core";
+import { takeUntilDestroyed } from "@angular/core/rxjs-interop";
 import { Router, RouterLink } from "@angular/router";
+import { combineLatest } from "rxjs";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
 import { ButtonModule, Icons, NoItemsModule } from "@bitwarden/components";
@@ -14,6 +16,12 @@ import { AutofillVaultListItemsComponent, VaultListItemsContainerComponent } fro
 import { VaultListFiltersComponent } from "../vault-v2/vault-list-filters/vault-list-filters.component";
 import { VaultV2SearchComponent } from "../vault-v2/vault-search/vault-v2-search.component";
 
+enum VaultState {
+  Empty,
+  NoResults,
+  DeactivatedOrg,
+}
+
 @Component({
   selector: "app-vault",
   templateUrl: "vault-v2.component.html",
@@ -38,18 +46,42 @@ export class VaultV2Component implements OnInit, OnDestroy {
   protected favoriteCiphers$ = this.vaultPopupItemsService.favoriteCiphers$;
   protected remainingCiphers$ = this.vaultPopupItemsService.remainingCiphers$;
 
-  protected showEmptyState$ = this.vaultPopupItemsService.emptyVault$;
-  protected showNoResultsState$ = this.vaultPopupItemsService.noFilteredResults$;
-  protected showDeactivatedOrg$ = this.vaultPopupItemsService.showDeactivatedOrg$;
+  /** Visual state of the vault */
+  protected vaultState: VaultState | null = null;
 
   protected vaultIcon = Icons.Vault;
   protected deactivatedIcon = Icons.DeactivatedOrg;
   protected noResultsIcon = Icons.NoResults;
 
+  protected VaultStateEnum = VaultState;
+
   constructor(
     private vaultPopupItemsService: VaultPopupItemsService,
     private router: Router,
-  ) {}
+  ) {
+    combineLatest([
+      this.vaultPopupItemsService.emptyVault$,
+      this.vaultPopupItemsService.noFilteredResults$,
+      this.vaultPopupItemsService.showDeactivatedOrg$,
+    ])
+      .pipe(takeUntilDestroyed())
+      .subscribe(([emptyVault, noResults, deactivatedOrg]) => {
+        switch (true) {
+          case emptyVault:
+            this.vaultState = VaultState.Empty;
+            break;
+          case deactivatedOrg:
+            // The deactivated org state takes precedence over the no results state
+            this.vaultState = VaultState.DeactivatedOrg;
+            break;
+          case noResults:
+            this.vaultState = VaultState.NoResults;
+            break;
+          default:
+            this.vaultState = null;
+        }
+      });
+  }
 
   ngOnInit(): void {}
 

From 3457941634b70872f7ec481dbf07f8053e7b954e Mon Sep 17 00:00:00 2001
From: Nick Krantz <125900171+nick-livefront@users.noreply.github.com>
Date: Thu, 6 Jun 2024 15:30:02 -0500
Subject: [PATCH 127/138] show family icon for free orgs in filter chips
 (#9532)

---
 .../vault-popup-list-filters.service.spec.ts  | 70 +++++++++++++++++--
 .../vault-popup-list-filters.service.ts       |  7 +-
 2 files changed, 71 insertions(+), 6 deletions(-)

diff --git a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
index 42626b52918..907ff9af8d6 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.spec.ts
@@ -4,6 +4,7 @@ import { BehaviorSubject, skipWhile } from "rxjs";
 
 import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { Organization } from "@bitwarden/common/admin-console/models/domain/organization";
+import { ProductType } from "@bitwarden/common/enums";
 import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CollectionService } from "@bitwarden/common/vault/abstractions/collection.service";
@@ -18,7 +19,7 @@ import { MY_VAULT_ID, VaultPopupListFiltersService } from "./vault-popup-list-fi
 
 describe("VaultPopupListFiltersService", () => {
   let service: VaultPopupListFiltersService;
-  const memberOrganizations$ = new BehaviorSubject<{ name: string; id: string }[]>([]);
+  const memberOrganizations$ = new BehaviorSubject<Organization[]>([]);
   const folderViews$ = new BehaviorSubject([]);
   const cipherViews$ = new BehaviorSubject({});
   const decryptedCollections$ = new BehaviorSubject<CollectionView[]>([]);
@@ -100,7 +101,8 @@ describe("VaultPopupListFiltersService", () => {
     });
 
     it('adds "myVault" to the list of organizations when there are other organizations', (done) => {
-      memberOrganizations$.next([{ name: "bobby's org", id: "1234-3323-23223" }]);
+      const orgs = [{ name: "bobby's org", id: "1234-3323-23223" }] as Organization[];
+      memberOrganizations$.next(orgs);
 
       service.organizations$.subscribe((organizations) => {
         expect(organizations.map((o) => o.label)).toEqual(["myVault", "bobby's org"]);
@@ -109,10 +111,11 @@ describe("VaultPopupListFiltersService", () => {
     });
 
     it("sorts organizations by name", (done) => {
-      memberOrganizations$.next([
+      const orgs = [
         { name: "bobby's org", id: "1234-3323-23223" },
         { name: "alice's org", id: "2223-4343-99888" },
-      ]);
+      ] as Organization[];
+      memberOrganizations$.next(orgs);
 
       service.organizations$.subscribe((organizations) => {
         expect(organizations.map((o) => o.label)).toEqual([
@@ -123,6 +126,65 @@ describe("VaultPopupListFiltersService", () => {
         done();
       });
     });
+
+    describe("icons", () => {
+      it("sets family icon for family organizations", (done) => {
+        const orgs = [
+          {
+            name: "family org",
+            id: "1234-3323-23223",
+            enabled: true,
+            planProductType: ProductType.Families,
+          },
+        ] as Organization[];
+
+        memberOrganizations$.next(orgs);
+
+        service.organizations$.subscribe((organizations) => {
+          expect(organizations.map((o) => o.icon)).toEqual(["bwi-user", "bwi-family"]);
+          done();
+        });
+      });
+
+      it("sets family icon for free organizations", (done) => {
+        const orgs = [
+          {
+            name: "free org",
+            id: "1234-3323-23223",
+            enabled: true,
+            planProductType: ProductType.Free,
+          },
+        ] as Organization[];
+
+        memberOrganizations$.next(orgs);
+
+        service.organizations$.subscribe((organizations) => {
+          expect(organizations.map((o) => o.icon)).toEqual(["bwi-user", "bwi-family"]);
+          done();
+        });
+      });
+
+      it("sets warning icon for disabled organizations", (done) => {
+        const orgs = [
+          {
+            name: "free org",
+            id: "1234-3323-23223",
+            enabled: false,
+            planProductType: ProductType.Free,
+          },
+        ] as Organization[];
+
+        memberOrganizations$.next(orgs);
+
+        service.organizations$.subscribe((organizations) => {
+          expect(organizations.map((o) => o.icon)).toEqual([
+            "bwi-user",
+            "bwi-exclamation-triangle tw-text-danger",
+          ]);
+          done();
+        });
+      });
+    });
   });
 
   describe("collections$", () => {
diff --git a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
index 69a7039e2ac..6406e43446d 100644
--- a/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
+++ b/apps/browser/src/vault/popup/services/vault-popup-list-filters.service.ts
@@ -188,8 +188,11 @@ export class VaultPopupListFiltersService {
             if (!org.enabled) {
               // Show a warning icon if the organization is deactivated
               icon = "bwi-exclamation-triangle tw-text-danger";
-            } else if (org.planProductType === ProductType.Families) {
-              // Show a family icon if the organization is a family org
+            } else if (
+              org.planProductType === ProductType.Families ||
+              org.planProductType === ProductType.Free
+            ) {
+              // Show a family icon if the organization is a family or free org
               icon = "bwi-family";
             }
 

From c8b280748788d46ca6b288004a8ed7faae9427c0 Mon Sep 17 00:00:00 2001
From: Shane Melton <smelton@bitwarden.com>
Date: Thu, 6 Jun 2024 14:25:23 -0700
Subject: [PATCH 128/138] [PM-8665] Show toast when favorite is toggled (#9537)

---
 apps/browser/src/_locales/en/messages.json     |  6 ++++++
 .../item-more-options.component.ts             | 18 +++++++++++++++++-
 2 files changed, 23 insertions(+), 1 deletion(-)

diff --git a/apps/browser/src/_locales/en/messages.json b/apps/browser/src/_locales/en/messages.json
index 231637d7af3..f9bf1bc523e 100644
--- a/apps/browser/src/_locales/en/messages.json
+++ b/apps/browser/src/_locales/en/messages.json
@@ -392,6 +392,12 @@
   "unfavorite": {
     "message": "Unfavorite"
   },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+      "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Notes"
   },
diff --git a/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts b/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts
index 9834dc553ec..ac3acdcc8fb 100644
--- a/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts
+++ b/apps/browser/src/vault/popup/components/vault-v2/item-more-options/item-more-options.component.ts
@@ -3,10 +3,17 @@ import { booleanAttribute, Component, Input } from "@angular/core";
 import { Router, RouterModule } from "@angular/router";
 
 import { JslibModule } from "@bitwarden/angular/jslib.module";
+import { I18nService } from "@bitwarden/common/platform/abstractions/i18n.service";
 import { CipherService } from "@bitwarden/common/vault/abstractions/cipher.service";
 import { CipherRepromptType, CipherType } from "@bitwarden/common/vault/enums";
 import { CipherView } from "@bitwarden/common/vault/models/view/cipher.view";
-import { DialogService, IconButtonModule, ItemModule, MenuModule } from "@bitwarden/components";
+import {
+  DialogService,
+  IconButtonModule,
+  ItemModule,
+  MenuModule,
+  ToastService,
+} from "@bitwarden/components";
 import { PasswordRepromptService } from "@bitwarden/vault";
 
 import { BrowserApi } from "../../../../../platform/browser/browser-api";
@@ -38,8 +45,10 @@ export class ItemMoreOptionsComponent {
     private cipherService: CipherService,
     private vaultPopupItemsService: VaultPopupItemsService,
     private passwordRepromptService: PasswordRepromptService,
+    private toastService: ToastService,
     private dialogService: DialogService,
     private router: Router,
+    private i18nService: I18nService,
   ) {}
 
   get canEdit() {
@@ -85,6 +94,13 @@ export class ItemMoreOptionsComponent {
     this.cipher.favorite = !this.cipher.favorite;
     const encryptedCipher = await this.cipherService.encrypt(this.cipher);
     await this.cipherService.updateWithServer(encryptedCipher);
+    this.toastService.showToast({
+      variant: "success",
+      title: null,
+      message: this.i18nService.t(
+        this.cipher.favorite ? "itemAddedToFavorites" : "itemRemovedFromFavorites",
+      ),
+    });
   }
 
   /**

From 31c04dfd145945639bf1ed780f52c4e13780630a Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Fri, 7 Jun 2024 06:12:30 +0000
Subject: [PATCH 129/138] Autosync the updated translations (#9544)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/desktop/src/locales/af/messages.json    | 24 +++++
 apps/desktop/src/locales/ar/messages.json    | 92 ++++++++++++--------
 apps/desktop/src/locales/az/messages.json    | 24 +++++
 apps/desktop/src/locales/be/messages.json    | 24 +++++
 apps/desktop/src/locales/bg/messages.json    | 24 +++++
 apps/desktop/src/locales/bn/messages.json    | 24 +++++
 apps/desktop/src/locales/bs/messages.json    | 24 +++++
 apps/desktop/src/locales/ca/messages.json    | 24 +++++
 apps/desktop/src/locales/cs/messages.json    | 24 +++++
 apps/desktop/src/locales/cy/messages.json    | 24 +++++
 apps/desktop/src/locales/da/messages.json    | 24 +++++
 apps/desktop/src/locales/de/messages.json    | 24 +++++
 apps/desktop/src/locales/el/messages.json    | 24 +++++
 apps/desktop/src/locales/en_GB/messages.json | 24 +++++
 apps/desktop/src/locales/en_IN/messages.json | 24 +++++
 apps/desktop/src/locales/eo/messages.json    | 24 +++++
 apps/desktop/src/locales/es/messages.json    | 24 +++++
 apps/desktop/src/locales/et/messages.json    | 24 +++++
 apps/desktop/src/locales/eu/messages.json    | 24 +++++
 apps/desktop/src/locales/fa/messages.json    | 24 +++++
 apps/desktop/src/locales/fi/messages.json    | 24 +++++
 apps/desktop/src/locales/fil/messages.json   | 24 +++++
 apps/desktop/src/locales/fr/messages.json    | 24 +++++
 apps/desktop/src/locales/gl/messages.json    | 24 +++++
 apps/desktop/src/locales/he/messages.json    | 24 +++++
 apps/desktop/src/locales/hi/messages.json    | 24 +++++
 apps/desktop/src/locales/hr/messages.json    | 24 +++++
 apps/desktop/src/locales/hu/messages.json    | 24 +++++
 apps/desktop/src/locales/id/messages.json    | 24 +++++
 apps/desktop/src/locales/it/messages.json    | 24 +++++
 apps/desktop/src/locales/ja/messages.json    | 24 +++++
 apps/desktop/src/locales/ka/messages.json    | 24 +++++
 apps/desktop/src/locales/km/messages.json    | 24 +++++
 apps/desktop/src/locales/kn/messages.json    | 24 +++++
 apps/desktop/src/locales/ko/messages.json    | 24 +++++
 apps/desktop/src/locales/lt/messages.json    | 24 +++++
 apps/desktop/src/locales/lv/messages.json    | 24 +++++
 apps/desktop/src/locales/me/messages.json    | 24 +++++
 apps/desktop/src/locales/ml/messages.json    | 24 +++++
 apps/desktop/src/locales/mr/messages.json    | 24 +++++
 apps/desktop/src/locales/my/messages.json    | 24 +++++
 apps/desktop/src/locales/nb/messages.json    | 24 +++++
 apps/desktop/src/locales/ne/messages.json    | 24 +++++
 apps/desktop/src/locales/nl/messages.json    | 24 +++++
 apps/desktop/src/locales/nn/messages.json    | 24 +++++
 apps/desktop/src/locales/or/messages.json    | 24 +++++
 apps/desktop/src/locales/pl/messages.json    | 24 +++++
 apps/desktop/src/locales/pt_BR/messages.json | 24 +++++
 apps/desktop/src/locales/pt_PT/messages.json | 26 +++++-
 apps/desktop/src/locales/ro/messages.json    | 24 +++++
 apps/desktop/src/locales/ru/messages.json    | 24 +++++
 apps/desktop/src/locales/si/messages.json    | 24 +++++
 apps/desktop/src/locales/sk/messages.json    | 24 +++++
 apps/desktop/src/locales/sl/messages.json    | 24 +++++
 apps/desktop/src/locales/sr/messages.json    | 48 +++++++---
 apps/desktop/src/locales/sv/messages.json    | 24 +++++
 apps/desktop/src/locales/te/messages.json    | 24 +++++
 apps/desktop/src/locales/th/messages.json    | 24 +++++
 apps/desktop/src/locales/tr/messages.json    | 24 +++++
 apps/desktop/src/locales/uk/messages.json    | 26 +++++-
 apps/desktop/src/locales/vi/messages.json    | 24 +++++
 apps/desktop/src/locales/zh_CN/messages.json | 24 +++++
 apps/desktop/src/locales/zh_TW/messages.json | 24 +++++
 63 files changed, 1560 insertions(+), 48 deletions(-)

diff --git a/apps/desktop/src/locales/af/messages.json b/apps/desktop/src/locales/af/messages.json
index 27d0977a2e1..1c835869d63 100644
--- a/apps/desktop/src/locales/af/messages.json
+++ b/apps/desktop/src/locales/af/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Spesifiseer die basisbronadres van u selfgehuisveste Bitwarden-installasie."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Pasgemaakte omgewing"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Uitgeteken"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "U aantekensessie het verstryk."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Help"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Belangrik:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Jou hoofwagwoord kan nie herkry word as jy dit vergeet nie!"
   },
diff --git a/apps/desktop/src/locales/ar/messages.json b/apps/desktop/src/locales/ar/messages.json
index a800840dd4a..4f71977603a 100644
--- a/apps/desktop/src/locales/ar/messages.json
+++ b/apps/desktop/src/locales/ar/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "حدد عنوان URL الأساسي لتثبيت Bitwarden المستضاف محليًا."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "حدد عنوان URL الأساسي لمحالّك التي استضافت تثبيت Bitwarden على سبيل المثال: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "للتكوين المتقدم، يمكنك تحديد عنوان URL الأساسي لكل خدمة بشكل مستقل."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "يجب عليك إضافة رابط الخادم الأساسي أو على الأقل بيئة مخصصة."
+  },
   "customEnvironment": {
     "message": "بيئة مخصصة"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "الخروج"
   },
+  "loggedOutDesc": {
+    "message": "لقد خرجتَ من حسابك."
+  },
   "loginExpired": {
     "message": "انتهت صلاحية جلسة الدخول."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "خطأ في تحديث رمز الوصول"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "لم يُعثر على رمز تحديث أو مفاتيح API. الرجاء محاولة تسجيل الخروج وتسجيل الدخول مرة أخرى."
+  },
   "help": {
     "message": "المساعدة"
   },
@@ -1300,7 +1318,7 @@
     "description": "ex. Date this password was updated"
   },
   "exportFrom": {
-    "message": "Export from"
+    "message": "تصدير من"
   },
   "exportVault": {
     "message": "تصدير الخزنة"
@@ -1309,31 +1327,31 @@
     "message": "صيغة الملف"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "This file export will be password protected and require the file password to decrypt."
+    "message": "سيكون تصدير الملف هذا محميًا بكلمة مرور وسيتطلب كلمة مرور الملف لفك تشفيره."
   },
   "filePassword": {
-    "message": "File password"
+    "message": "كلمة مرور الملف"
   },
   "exportPasswordDescription": {
-    "message": "This password will be used to export and import this file"
+    "message": "ستُستخدم كلمة المرور هذه لتصدير واستيراد هذا الملف"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+    "message": "استخدم مفتاح تشفير حسابك، مشتقة من اسم المستخدم في حسابك وكلمة المرور الرئيسية، لتشفير التصدير وتقييد الاستيراد إلى حساب Bitwarden الحالي فقط."
   },
   "passwordProtected": {
-    "message": "Password protected"
+    "message": "كلمة المرور محمية"
   },
   "passwordProtectedOptionDescription": {
-    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+    "message": "تعيين كلمة مرور للملف لتشفير التصدير واستيراده إلى أي حساب Bitwarden باستخدام كلمة المرور لفك التشفير."
   },
   "exportTypeHeading": {
-    "message": "Export type"
+    "message": "نوع التصدير"
   },
   "accountRestricted": {
-    "message": "Account restricted"
+    "message": "الحساب مقيد"
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
-    "message": "“File password”  and “Confirm file password“ do not match."
+    "message": "\"كلمة مرور الملف\" و \"تأكيد كلمة مرور الملف\" غير متطابقين."
   },
   "hCaptchaUrl": {
     "message": "رابط hCaptcha",
@@ -2081,7 +2099,7 @@
     "message": "تبديل الحساب"
   },
   "alreadyHaveAccount": {
-    "message": "Already have an account?"
+    "message": "لديك حساب بالفعل؟"
   },
   "options": {
     "message": "الخيارات"
@@ -2102,10 +2120,10 @@
     }
   },
   "exportingOrganizationVaultTitle": {
-    "message": "Exporting organization vault"
+    "message": "تصدير خزنة المؤسسة"
   },
   "exportingOrganizationVaultDesc": {
-    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "message": "فقط مستودع المؤسسة المرتبط بـ $ORGANIZATION$ سيتم تصديره. لن يتم إدراج العناصر في المستودعات الفردية أو المنظمات الأخرى.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2178,7 +2196,7 @@
     "message": "إنشاء بريد إلكتروني مستعار مع خدمة إعادة توجيه خارجية."
   },
   "forwarderError": {
-    "message": "$SERVICENAME$ error: $ERRORMESSAGE$",
+    "message": "$SERVICENAME$ خطأ: $ERRORMESSAGE$",
     "description": "Reports an error returned by a forwarding service to the user.",
     "placeholders": {
       "servicename": {
@@ -2192,11 +2210,11 @@
     }
   },
   "forwarderGeneratedBy": {
-    "message": "Generated by Bitwarden.",
+    "message": "أنشئ بواسطة Bitwarden.",
     "description": "Displayed with the address on the forwarding service's configuration screen."
   },
   "forwarderGeneratedByWithWebsite": {
-    "message": "Website: $WEBSITE$. Generated by Bitwarden.",
+    "message": "الموقع: $WEBSITE$. أنشئ بواسطة Bitwarden.",
     "description": "Displayed with the address on the forwarding service's configuration screen.",
     "placeholders": {
       "WEBSITE": {
@@ -2206,7 +2224,7 @@
     }
   },
   "forwaderInvalidToken": {
-    "message": "Invalid $SERVICENAME$ API token",
+    "message": "رمز API غير صالح $SERVICENAME$",
     "description": "Displayed when the user's API token is empty or rejected by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2216,7 +2234,7 @@
     }
   },
   "forwaderInvalidTokenWithMessage": {
-    "message": "Invalid $SERVICENAME$ API token: $ERRORMESSAGE$",
+    "message": "رمز API غير صالح $SERVICENAME$: $ERRORMESSAGE$",
     "description": "Displayed when the user's API token is rejected by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -2230,7 +2248,7 @@
     }
   },
   "forwarderNoAccountId": {
-    "message": "Unable to obtain $SERVICENAME$ masked email account ID.",
+    "message": "غير قادر على الحصول على معرف البريد الإلكتروني المحجوب $SERVICENAME$.",
     "description": "Displayed when the forwarding service fails to return an account ID.",
     "placeholders": {
       "servicename": {
@@ -2240,7 +2258,7 @@
     }
   },
   "forwarderNoDomain": {
-    "message": "Invalid $SERVICENAME$ domain.",
+    "message": "نطاق $SERVICENAME$ غير صالح.",
     "description": "Displayed when the domain is empty or domain authorization failed at the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2250,7 +2268,7 @@
     }
   },
   "forwarderNoUrl": {
-    "message": "Invalid $SERVICENAME$ url.",
+    "message": "رابط $SERVICENAME$ غير صالح.",
     "description": "Displayed when the url of the forwarding service wasn't supplied.",
     "placeholders": {
       "servicename": {
@@ -2260,7 +2278,7 @@
     }
   },
   "forwarderUnknownError": {
-    "message": "Unknown $SERVICENAME$ error occurred.",
+    "message": "حدث خطأ $SERVICENAME$ غير معروف.",
     "description": "Displayed when the forwarding service failed due to an unknown error.",
     "placeholders": {
       "servicename": {
@@ -2270,7 +2288,7 @@
     }
   },
   "forwarderUnknownForwarder": {
-    "message": "Unknown forwarder: '$SERVICENAME$'.",
+    "message": "وكيل مجهول: '$SERVICENAME$'.",
     "description": "Displayed when the forwarding service is not supported.",
     "placeholders": {
       "servicename": {
@@ -2436,25 +2454,25 @@
     "message": "طلب تسجيل الدخول"
   },
   "creatingAccountOn": {
-    "message": "Creating account on"
+    "message": "إنشاء الحساب في"
   },
   "checkYourEmail": {
-    "message": "Check your email"
+    "message": "تحقق من بريدك الإلكتروني"
   },
   "followTheLinkInTheEmailSentTo": {
-    "message": "Follow the link in the email sent to"
+    "message": "اتبع الرابط الموجود في البريد الإلكتروني المرسل إلى"
   },
   "andContinueCreatingYourAccount": {
-    "message": "and continue creating your account."
+    "message": "واستمر في إنشاء حسابك."
   },
   "noEmail": {
-    "message": "No email?"
+    "message": "لا يوجد بريد إلكتروني؟"
   },
   "goBack": {
-    "message": "Go back"
+    "message": "الرجوع إلى الخلف"
   },
   "toEditYourEmailAddress": {
-    "message": "to edit your email address."
+    "message": "لتحرير عنوان بريدك الإلكتروني."
   },
   "exposedMasterPassword": {
     "message": "كلمة المرور الرئيسية مكشوفة"
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "مهم:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "لقد قمت بتسجيل الخروج لأنه لا يمكن فك تشفير الرمز المميز الخاص بك. الرجاء تسجيل الدخول مرة أخرى لحل هذه المشكلة."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "لقد قمت بتسجيل الخروج لأنه تعذر استرداد رمز التحديث الخاص بك. الرجاء تسجيل الدخول مرة أخرى لحل هذه المشكلة."
+  },
   "masterPasswordHint": {
     "message": "لا يمكن استعادة كلمة المرور الرئيسية إذا نسيتها!"
   },
@@ -2890,7 +2914,7 @@
     "message": "خطأ في تعيين مجلد الهدف."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "عرض العناصر في $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -2900,7 +2924,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "العودة إلى $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -2910,11 +2934,11 @@
     }
   },
   "back": {
-    "message": "Back",
+    "message": "رجوع",
     "description": "Button text to navigate back"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "إزالة $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
diff --git a/apps/desktop/src/locales/az/messages.json b/apps/desktop/src/locales/az/messages.json
index 0143e6c2745..dc2c5b28f8a 100644
--- a/apps/desktop/src/locales/az/messages.json
+++ b/apps/desktop/src/locales/az/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Öz-özünə sahiblik edən Bitwarden quraşdırmasının baza URL-sini müəyyənləşdirin."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Şirkət daxili sahiblik edən Bitwarden quraşdırmasının təməl URL-sini qeyd edin. Nümunə: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Qabaqcıl konfiqurasiya üçün hər xidmətin təməl URL-sini müstəqil olaraq qeyd edə bilərsiniz."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Təməl server URL-sini və ya ən azı bir özəl mühiti əlavə etməlisiniz."
+  },
   "customEnvironment": {
     "message": "Özəl mühit"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Çıxış edildi"
   },
+  "loggedOutDesc": {
+    "message": "Hesabınızdan çıxış etmisiniz."
+  },
   "loginExpired": {
     "message": "Seansın müddəti bitdi."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Müraciət tokeni təzələmə xətası"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Təzələmə tokeni və ya API açarlar tapılmadı. Lütfən çıxış edib yenidən giriş etməyə çalışın."
+  },
   "help": {
     "message": "Kömək"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Vacib:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "Müraciət tokeninizin şifrəsi açıla bilmədiyi üçün çıxış etdiniz. Bu problemi həll etmək üçün lütfən yenidən giriş edin."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "Təzələmə tokeniniz alına bilmədiyi üçün çıxış etdiniz. Bu problemi həll etmək üçün lütfən yenidən giriş edin."
+  },
   "masterPasswordHint": {
     "message": "Unutsanız, ana parolunuz bərpa edilə bilməz!"
   },
diff --git a/apps/desktop/src/locales/be/messages.json b/apps/desktop/src/locales/be/messages.json
index 4adb3be3e5a..73bd046a82d 100644
--- a/apps/desktop/src/locales/be/messages.json
+++ b/apps/desktop/src/locales/be/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Увядзіце асноўны URL-адрас вашага лакальнага размяшчэння ўсталяванага Bitwarden."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Карыстальніцкае асяроддзе"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Вы выйшлі"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Тэрмін дзеяння вашага сеансу завяршыўся."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Даведка"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Важна:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Ваш асноўны пароль немагчыма будзе аднавіць, калі вы яго забудзеце!"
   },
diff --git a/apps/desktop/src/locales/bg/messages.json b/apps/desktop/src/locales/bg/messages.json
index 7471bebe029..425380fdcea 100644
--- a/apps/desktop/src/locales/bg/messages.json
+++ b/apps/desktop/src/locales/bg/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Укажете базовия адрес за собствената ви инсталирана среда на Bitwarden."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Посочете базовия адрес на Вашата собствена инсталация на Битуорден. Пример: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "За по-детайлна настройка, може да укажете основния адрес на всяка услуга поотделно."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Трябва да добавите или основния адрес на сървъра, или поне една специална среда."
+  },
   "customEnvironment": {
     "message": "Специална среда"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Бяхте отписани"
   },
+  "loggedOutDesc": {
+    "message": "Бяхте отписан(а) от регистрацията си."
+  },
   "loginExpired": {
     "message": "Сесията ви изтече."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Грешка при опресняването на идентификатора за достъп"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Няма намерен идентификатор за опресняване или ключове за ППИ. Опитайте да се отпишете и да се впишете отново."
+  },
   "help": {
     "message": "Помощ"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Важно:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "Бяхте отписан(а), тъй като идентификаторът Ви за достъп не може да бъде дешифриран. Впишете се отново, за да отстраните проблема."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "Бяхте отписан(а), тъй като идентификаторът Ви за опресняване не може да бъде получен. Впишете се отново, за да отстраните проблема."
+  },
   "masterPasswordHint": {
     "message": "Главната парола не може да бъде възстановена, ако я забравите!"
   },
diff --git a/apps/desktop/src/locales/bn/messages.json b/apps/desktop/src/locales/bn/messages.json
index 71749add465..36a4dc85f20 100644
--- a/apps/desktop/src/locales/bn/messages.json
+++ b/apps/desktop/src/locales/bn/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "আপনার অন-প্রাঙ্গনে হোস্টকৃত Bitwarden ইনস্টলেশনটির বেস URL উল্লেখ করুন।"
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "পছন্দসই পরিবেশ"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "প্রস্থানকৃত"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "আপনার লগইন মাত্রকালটির মেয়াদ শেষ হয়ে গেছে।"
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "সাহায্য"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/bs/messages.json b/apps/desktop/src/locales/bs/messages.json
index a11dbb7e9b9..491c9413f99 100644
--- a/apps/desktop/src/locales/bs/messages.json
+++ b/apps/desktop/src/locales/bs/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Navedite osnovni URL vaše lokalne Bitwarden instalacije."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Prilagođeno okruženje"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Odjavljen"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Sesija je istekla."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Pomoć"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/ca/messages.json b/apps/desktop/src/locales/ca/messages.json
index abee9ac2ff0..2fcc36136bb 100644
--- a/apps/desktop/src/locales/ca/messages.json
+++ b/apps/desktop/src/locales/ca/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Especifiqueu l'URL base de la vostra instal·lació Bitwarden allotjada en un entorn propi."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Entorn personalitzat"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Desconnectat"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "La vostra sessió ha caducat."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Ajuda"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "La contrasenya mestra no es pot recuperar si la oblideu!"
   },
diff --git a/apps/desktop/src/locales/cs/messages.json b/apps/desktop/src/locales/cs/messages.json
index bcb08de2bea..7dc48c3bf11 100644
--- a/apps/desktop/src/locales/cs/messages.json
+++ b/apps/desktop/src/locales/cs/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Zadejte základní URL adresu vlastní hostované aplikace Bitwarden."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Zadejte základní URL adresu Vaší vlastní hostované aplikace Bitwarden. Příklad: https://bitwarden.spolecnost.cz"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Pro rozšířená nastavení můžete zadat základní URL adresu každé služby zvlášť."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Musíte přidat buď základní adresu URL serveru nebo alespoň jedno vlastní prostředí."
+  },
   "customEnvironment": {
     "message": "Vlastní prostředí"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Odhlášení"
   },
+  "loggedOutDesc": {
+    "message": "Byli jste odhlášeni ze svého účtu."
+  },
   "loginExpired": {
     "message": "Platnost přihlášení vypršela."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Chyba aktualizace přístupového tokenu"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Nebyly nalezeny žádné obnovovací tokeny nebo API klíče. Zkuste se odhlásit a znovu se přihlásit."
+  },
   "help": {
     "message": "Nápověda"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Důležité:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "Byli jste odhlášeni, protože Váš přístupový token nelze dešifrovat. Pro vyřešení tohoto problému se přihlaste znovu."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "Byli jste odhlášeni, protože Váš obnovovací token nelze získat. Pro vyřešení tohoto problému se přihlaste znovu."
+  },
   "masterPasswordHint": {
     "message": "Pokud zapomenete Vaše hlavní heslo, nebude možné jej obnovit!"
   },
diff --git a/apps/desktop/src/locales/cy/messages.json b/apps/desktop/src/locales/cy/messages.json
index 5085234b826..bec1804ae2a 100644
--- a/apps/desktop/src/locales/cy/messages.json
+++ b/apps/desktop/src/locales/cy/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Help"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/da/messages.json b/apps/desktop/src/locales/da/messages.json
index e851f1df451..333bfcd1800 100644
--- a/apps/desktop/src/locales/da/messages.json
+++ b/apps/desktop/src/locales/da/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Angiv grund-URL'en til den lokal-hostede Bitwarden-installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Tilpasset miljø"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Logget ud"
   },
+  "loggedOutDesc": {
+    "message": "Der er blevet logget ud af kontoen."
+  },
   "loginExpired": {
     "message": "Loginsessionen er udløbet."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Adgangstoken genopfriskningsfejl"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Ingen genopfriskningstoken eller API-nøgler fundet. Prøv at logge ud og dernæst ind igen."
+  },
   "help": {
     "message": "Hjælp"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Vigtigt:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "Kontoen er blevet logget ud, fordi adgangstokenet ikke kunne dekrypteres. Log ind igen for at løse problemet."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "Kontoen er blevet logget ud, fordi opfriskningstokenet ikke kunne dekrypteres. Log ind igen for at løse problemet."
+  },
   "masterPasswordHint": {
     "message": "Hovedadgangskoden kan ikke gendannes, hvis den glemmes!"
   },
diff --git a/apps/desktop/src/locales/de/messages.json b/apps/desktop/src/locales/de/messages.json
index e5abc443723..769be2a4295 100644
--- a/apps/desktop/src/locales/de/messages.json
+++ b/apps/desktop/src/locales/de/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Bitte gib die Basis-URL deiner selbst gehosteten Bitwarden-Installation an."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Gib die Basis-URL deiner vor Ort gehosteten Bitwarden-Installation an. Beispiel: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Für eine erweiterte Konfiguration kannst du die Basis-URL jedes Dienstes unabhängig voneinander angeben."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Du musst entweder die Basis-Server-URL oder mindestens eine benutzerdefinierte Umgebung hinzufügen."
+  },
   "customEnvironment": {
     "message": "Benutzerdefinierte Umgebung"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Abgemeldet"
   },
+  "loggedOutDesc": {
+    "message": "Du wurdest von deinem Konto abgemeldet."
+  },
   "loginExpired": {
     "message": "Deine Sitzung ist abgelaufen."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Zugangs-Token Aktualisierungsfehler"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Kein Aktualisierungs-Token oder API-Schlüssel gefunden. Bitte versuche dich ab- und wieder anzumelden."
+  },
   "help": {
     "message": "Hilfe"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Wichtig:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "Du wurdest abgemeldet, weil dein Zugangs-Token nicht entschlüsselt werden konnte. Bitte melde dich erneut an, um dieses Problem zu beheben."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "Du wurdest abgemeldet, weil dein Aktualisierungs-Token nicht entschlüsselt werden konnte. Bitte melde dich erneut an, um dieses Problem zu beheben."
+  },
   "masterPasswordHint": {
     "message": "Dein Master-Passwort kann nicht wiederhergestellt werden, wenn du es vergisst!"
   },
diff --git a/apps/desktop/src/locales/el/messages.json b/apps/desktop/src/locales/el/messages.json
index af932beb008..fd261a8d032 100644
--- a/apps/desktop/src/locales/el/messages.json
+++ b/apps/desktop/src/locales/el/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Καθορίστε τη βασική διεύθυνση URL, της εγκατάστασης του Bitwarden που φιλοξενείται στο χώρο σας."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Προσαρμοσμένο περιβάλλον"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Αποσύνδεση"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Η περίοδος σύνδεσης σας έχει λήξει."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Βοήθεια"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Σημαντικό:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Ο κύριος κωδικός πρόσβασης δεν μπορεί να ανακτηθεί εάν τον ξεχάσετε!"
   },
diff --git a/apps/desktop/src/locales/en_GB/messages.json b/apps/desktop/src/locales/en_GB/messages.json
index 45b724e47e4..7f28fee4b2c 100644
--- a/apps/desktop/src/locales/en_GB/messages.json
+++ b/apps/desktop/src/locales/en_GB/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premise hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Help"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/en_IN/messages.json b/apps/desktop/src/locales/en_IN/messages.json
index da4dca84e4a..b3e9a40bb38 100644
--- a/apps/desktop/src/locales/en_IN/messages.json
+++ b/apps/desktop/src/locales/en_IN/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premise hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Help"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/eo/messages.json b/apps/desktop/src/locales/eo/messages.json
index 55e9daa72b3..4a429118976 100644
--- a/apps/desktop/src/locales/eo/messages.json
+++ b/apps/desktop/src/locales/eo/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Adiaŭita"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Help"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/es/messages.json b/apps/desktop/src/locales/es/messages.json
index 130c18b391e..a3a2caf2e5a 100644
--- a/apps/desktop/src/locales/es/messages.json
+++ b/apps/desktop/src/locales/es/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Especifica la URL base de tu instalación de Bitwarden de alojamiento propio."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Entorno personalizado"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Sesión terminada"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Tu sesión ha expirado."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Ayuda"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Importante:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Tu contraseña maestra no se puede recuperar si la olvidas"
   },
diff --git a/apps/desktop/src/locales/et/messages.json b/apps/desktop/src/locales/et/messages.json
index d26fc652131..a38790c47ab 100644
--- a/apps/desktop/src/locales/et/messages.json
+++ b/apps/desktop/src/locales/et/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premise hosted bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Kohandatud keskkond"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Välja logitud"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Sessioon on aegunud."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Abi"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Tähtis:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Ülemparooli ei saa taastada, kui sa selle unustama peaksid!"
   },
diff --git a/apps/desktop/src/locales/eu/messages.json b/apps/desktop/src/locales/eu/messages.json
index 82406869f5a..a3b0f0f87b2 100644
--- a/apps/desktop/src/locales/eu/messages.json
+++ b/apps/desktop/src/locales/eu/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Bitwarden instalatzeko, zehaztu ostatatze propioaren oinarrizko URL-a."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Ingurune pertsonalizatua"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Saioa itxita"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Saioa amaitu da."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Laguntza"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/fa/messages.json b/apps/desktop/src/locales/fa/messages.json
index 3c5fb785b7f..7fe2758ec40 100644
--- a/apps/desktop/src/locales/fa/messages.json
+++ b/apps/desktop/src/locales/fa/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "نشانی اینترنتی پایه فرضی نصب Bitwarden میزبانی شده را مشخص کنید."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "محیط سفارشی"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "خارج شد"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "نشست ورود شما منقضی شده است."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "راهنما"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "مهم:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "کلمه عبور اصلی شما در صورت فراموشی قابل بازیابی نیست!"
   },
diff --git a/apps/desktop/src/locales/fi/messages.json b/apps/desktop/src/locales/fi/messages.json
index 08447614433..4586511cab4 100644
--- a/apps/desktop/src/locales/fi/messages.json
+++ b/apps/desktop/src/locales/fi/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Määritä omassa palvelinympäristössäsi suoritettavan Bitwarden-asennuksen pääverkkotunnus."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Mukautettu palvelinympäristö"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Kirjauduttu ulos"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Kirjautumisistuntosi on erääntynyt."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Ohje"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Tärkeää:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Pääsalasanasi palauttaminen ei ole mahdollista, jos unohdat sen!"
   },
diff --git a/apps/desktop/src/locales/fil/messages.json b/apps/desktop/src/locales/fil/messages.json
index 0180d46959e..d4b76de533d 100644
--- a/apps/desktop/src/locales/fil/messages.json
+++ b/apps/desktop/src/locales/fil/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Tukuyin ang base URL ng iyong on premises na naka host sa pag install ng Bitwarden."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Kapaligirang Custom"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Umalis na"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Nag-expire na ang iyong session sa login."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Tulong"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Mahalaga:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Hindi mababawi ang password ng master mo kung nakalimutan mo ito!"
   },
diff --git a/apps/desktop/src/locales/fr/messages.json b/apps/desktop/src/locales/fr/messages.json
index ef8f783dd31..a4288526277 100644
--- a/apps/desktop/src/locales/fr/messages.json
+++ b/apps/desktop/src/locales/fr/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Spécifiez l'URL de base de votre installation Bitwarden auto-hébergée."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Environnement personnalisé"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Déconnecté"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Votre session a expiré."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Aide"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important :"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Votre mot de passe principal ne peut pas être récupéré si vous l'oubliez !"
   },
diff --git a/apps/desktop/src/locales/gl/messages.json b/apps/desktop/src/locales/gl/messages.json
index 7b9cd9ef0f1..4d0d96038f6 100644
--- a/apps/desktop/src/locales/gl/messages.json
+++ b/apps/desktop/src/locales/gl/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Help"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/he/messages.json b/apps/desktop/src/locales/he/messages.json
index 0f664ed02e7..b559652ce3d 100644
--- a/apps/desktop/src/locales/he/messages.json
+++ b/apps/desktop/src/locales/he/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "הזן את כתובת השרת המקומי של Bitwarden."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "סביבה מותאמת אישית"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "בוצעה יציאה"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "תוקף החיבור שלך הסתיים."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "עזרה"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "חשוב:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/hi/messages.json b/apps/desktop/src/locales/hi/messages.json
index 765510dc32e..bc4bf462f6b 100644
--- a/apps/desktop/src/locales/hi/messages.json
+++ b/apps/desktop/src/locales/hi/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Help"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/hr/messages.json b/apps/desktop/src/locales/hr/messages.json
index d1d4a4672b5..2adc28e3ced 100644
--- a/apps/desktop/src/locales/hr/messages.json
+++ b/apps/desktop/src/locales/hr/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Navedi osnovni URL svoje lokalno smještene Bitwarden instalacije."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Prilagođeno okruženje"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Odjavljen"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Sesija je istekla."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Pomoć"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Važno:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Glavnu lozinku nije moguće oporaviti ako ju zaboraviš!"
   },
diff --git a/apps/desktop/src/locales/hu/messages.json b/apps/desktop/src/locales/hu/messages.json
index 869b92167f6..568dc954e92 100644
--- a/apps/desktop/src/locales/hu/messages.json
+++ b/apps/desktop/src/locales/hu/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "A helyileg üzemeltetett Bitwarden telepítés webcímének megadása."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Adjuk meg a helyileg tárolt Bitwarden telepítés alap webcímét. Példa: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Speciális konfigurációhoz külön-külön megadhatjuk az egyes szolgáltatások alap webcímét."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Hozzá kell adni az alapszerver webcímét vagy legalább egy egyedi környezetet."
+  },
   "customEnvironment": {
     "message": "Egyedi környezet"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Megtörtént a kijelentkezés."
   },
+  "loggedOutDesc": {
+    "message": "Megtörtént a kijelentkezés a fiókból."
+  },
   "loginExpired": {
     "message": "A bejelentkezési munkamenet lejárt."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Hozzáférési vezérjel frissítési hiba"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Nem található frissítési vezérjel vagy API kulcs. Próbáljunk meg kijelentkezni, majd újra bejelentkezni."
+  },
   "help": {
     "message": "Súgó"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Fontos:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "Megtörtént a kijelentkezés, mert a hozzáférési vezérjelet nem sikerült visszafejteni. Jelentkezzünk be újra a probléma megoldásához."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "Megtörtént a kijelentkezés, mert a hozzáférési vezérjelet nem sikerült visszafejteni. Jelentkezzünk be újra a probléma megoldásához."
+  },
   "masterPasswordHint": {
     "message": "Az elfelejtett mesterjelszó nem állítható helyre, ha elfelejtik!"
   },
diff --git a/apps/desktop/src/locales/id/messages.json b/apps/desktop/src/locales/id/messages.json
index cc25a1c73ff..545901170fd 100644
--- a/apps/desktop/src/locales/id/messages.json
+++ b/apps/desktop/src/locales/id/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premise hosted bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Lingkungan Kustom"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Keluar"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Sesi masuk Anda telah berakhir."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Bantuan"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Penting:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Kata sandi utama Anda tidak dapat dipulihkan jika Anda lupa!"
   },
diff --git a/apps/desktop/src/locales/it/messages.json b/apps/desktop/src/locales/it/messages.json
index b016dc5e480..72f2115460f 100644
--- a/apps/desktop/src/locales/it/messages.json
+++ b/apps/desktop/src/locales/it/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specifica l'URL principale della tua installazione self-hosted di Bitwarden."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specifica lo URL principale della tua installazione self-hosted di Bitwarden. Esempio: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Per la configurazione avanzata, puoi specificare lo URL di base di ciascun servizio in modo indipendente."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Devi aggiungere lo URL del server di base o almeno un ambiente personalizzato."
+  },
   "customEnvironment": {
     "message": "Ambiente personalizzato"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Uscito"
   },
+  "loggedOutDesc": {
+    "message": "Sei stato fatto uscire dal tuo account."
+  },
   "loginExpired": {
     "message": "La tua sessione è scaduta."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Errore di aggiornamento del token di accesso"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Nessun token di aggiornamento o chiave API trovati. Prova ad uscire ed entrare di nuovo."
+  },
   "help": {
     "message": "Aiuto"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Importante:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "Sei stato fatto uscire perché non è stato possibile decrittografare il tuo token di accesso. Entra di nuovo per risolvere il problema."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "Sei stato fatto uscire perché non è stato possibile recuperare il token di aggiornamento. Entra di nuovo per risolvere il problema."
+  },
   "masterPasswordHint": {
     "message": "La tua password principale non può essere recuperata se la dimentichi!"
   },
diff --git a/apps/desktop/src/locales/ja/messages.json b/apps/desktop/src/locales/ja/messages.json
index 0be6aea461f..94e96a98b37 100644
--- a/apps/desktop/src/locales/ja/messages.json
+++ b/apps/desktop/src/locales/ja/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "セルフホスティングしている Bitwarden のベース URL を指定してください。"
   },
+  "selfHostedBaseUrlHint": {
+    "message": "オンプレミスホストした Bitwarden のベース URL を指定してください。例: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "高度な設定では、各サービスのベース URL を個別に指定できます。"
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "ベース サーバー URL または少なくとも 1 つのカスタム環境を追加する必要があります。"
+  },
   "customEnvironment": {
     "message": "カスタム環境"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "ログアウトしました"
   },
+  "loggedOutDesc": {
+    "message": "アカウントからログアウトしました。"
+  },
   "loginExpired": {
     "message": "ログインセッションの有効期限が切れています。"
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "アクセストークンの更新エラー"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "リフレッシュトークンや API キーが見つかりませんでした。ログアウトして再度ログインしてください。"
+  },
   "help": {
     "message": "ヘルプ"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "重要"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "アクセストークンを復号できなかったためログアウトしました。この問題を解決するためには再度ログインしてください。"
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "リフレッシュトークンを取得できなかったためログアウトしました。この問題を解決するためには再度ログインしてください。"
+  },
   "masterPasswordHint": {
     "message": "マスターパスワードを忘れた場合は復元できません！"
   },
diff --git a/apps/desktop/src/locales/ka/messages.json b/apps/desktop/src/locales/ka/messages.json
index 7b9cd9ef0f1..4d0d96038f6 100644
--- a/apps/desktop/src/locales/ka/messages.json
+++ b/apps/desktop/src/locales/ka/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Help"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/km/messages.json b/apps/desktop/src/locales/km/messages.json
index 7b9cd9ef0f1..4d0d96038f6 100644
--- a/apps/desktop/src/locales/km/messages.json
+++ b/apps/desktop/src/locales/km/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Help"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/kn/messages.json b/apps/desktop/src/locales/kn/messages.json
index 63f2d0326d0..88e371b67fc 100644
--- a/apps/desktop/src/locales/kn/messages.json
+++ b/apps/desktop/src/locales/kn/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "ನಿಮ್ಮ ಆನ್-ಪ್ರಮೇಯ ಹೋಸ್ಟ್ ಮಾಡಿದ ಬಿಟ್‌ವಾರ್ಡೆನ್ ಸ್ಥಾಪನೆಯ ಮೂಲ URL ಅನ್ನು ನಿರ್ದಿಷ್ಟಪಡಿಸಿ."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "ಕಸ್ಟಮ್ ಪರಿಸರ"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "ಲಾಗ್ ಔಟ್"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "ನಿಮ್ಮ ಲಾಗಿನ್ ಸೆಷನ್ ಅವಧಿ ಮೀರಿದೆ."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "ಸಹಾಯ"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/ko/messages.json b/apps/desktop/src/locales/ko/messages.json
index 1a5e6353520..672e775af4e 100644
--- a/apps/desktop/src/locales/ko/messages.json
+++ b/apps/desktop/src/locales/ko/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "온-프레미스 Bitwarden이 호스팅되고 있는 서버의 기본 URL을 지정하세요."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "사용자 지정 환경"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "로그아웃됨"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "로그인 세션이 만료되었습니다."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "도움말"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "중요:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "마스터 비밀번호를 잊어버리면 복구할 수 없습니다!"
   },
diff --git a/apps/desktop/src/locales/lt/messages.json b/apps/desktop/src/locales/lt/messages.json
index edb15332c22..68698617d47 100644
--- a/apps/desktop/src/locales/lt/messages.json
+++ b/apps/desktop/src/locales/lt/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Nurodykite pagrindinį URL adresą savo patalpose esančio Bitwarden įdiegimo."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Individualizuota aplinka"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Atsijungta"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Sesijos laikas baigėsi."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Pagalba"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Svarbu:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Pagrindinis slaptažodis negali būti atkurtas, jei jį pamiršite!"
   },
diff --git a/apps/desktop/src/locales/lv/messages.json b/apps/desktop/src/locales/lv/messages.json
index 4a91e491a54..4579c68742e 100644
--- a/apps/desktop/src/locales/lv/messages.json
+++ b/apps/desktop/src/locales/lv/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Norādīt pašuzstādīta Bitwarden pamata URL."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Pielāgota vide"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Atteicies"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Pieteikšanās sesija ir beigusies."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Palīdzība"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Svarīgi:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Galvenā parole nevar tikt atgūta, ja tā ir aizmirsta!"
   },
diff --git a/apps/desktop/src/locales/me/messages.json b/apps/desktop/src/locales/me/messages.json
index 400fc1bba9e..dc8a3ebdeeb 100644
--- a/apps/desktop/src/locales/me/messages.json
+++ b/apps/desktop/src/locales/me/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Navedite osnovni URL vaše lokalne instalacije (HOST) Bitwardena."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Prilagođeno okruženje"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Odjavljen"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Vaša sesija je istekla."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Pomoć"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/ml/messages.json b/apps/desktop/src/locales/ml/messages.json
index fec41cd119c..1316189317b 100644
--- a/apps/desktop/src/locales/ml/messages.json
+++ b/apps/desktop/src/locales/ml/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "നിങ്ങളുടെ പരിസരത്ത് ചെയ്യുന്ന Bitwarden ഇൻസ്റ്റാളേഷന്റെ അടിസ്ഥാന URL വ്യക്തമാക്കുക."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "ഇഷ്‌ടാനുസൃത എൻവിയോണ്മെന്റ്"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "ലോഗ് ഔട്ട് ചെയ്തിരിക്കുന്നു"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "നിങ്ങളുടെ പ്രവർത്തന സമയം കഴിഞ്ഞിരിക്കുന്നു."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "സഹായം"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/mr/messages.json b/apps/desktop/src/locales/mr/messages.json
index 7b9cd9ef0f1..4d0d96038f6 100644
--- a/apps/desktop/src/locales/mr/messages.json
+++ b/apps/desktop/src/locales/mr/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Help"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/my/messages.json b/apps/desktop/src/locales/my/messages.json
index 54f943a72c8..1ec3bb1630d 100644
--- a/apps/desktop/src/locales/my/messages.json
+++ b/apps/desktop/src/locales/my/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Help"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/nb/messages.json b/apps/desktop/src/locales/nb/messages.json
index 1f6c7fed646..149d0f75773 100644
--- a/apps/desktop/src/locales/nb/messages.json
+++ b/apps/desktop/src/locales/nb/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Spesifiser grunn-nettadressen til din selvbetjente Bitwarden-installasjon."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Tilpasset miljø"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Logget av"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Din innloggingsøkt har utløpt."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Hjelp"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Viktig:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/ne/messages.json b/apps/desktop/src/locales/ne/messages.json
index a766c4bb6e5..3ad79ad8bf6 100644
--- a/apps/desktop/src/locales/ne/messages.json
+++ b/apps/desktop/src/locales/ne/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Help"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/nl/messages.json b/apps/desktop/src/locales/nl/messages.json
index f3fe4886abc..aafc348d908 100644
--- a/apps/desktop/src/locales/nl/messages.json
+++ b/apps/desktop/src/locales/nl/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Geef de basis-URL van jouw zelfgehoste Bitwarden-installatie."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specificeer de basis-URL van je zelfgehoste Bitwarden-installatie. Bijvoorbeeld: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Voor geavanceerde instellingen, kun je de basis-URL van iedere dienst afzonderlijk instellen."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Je moet de basisserver-URL of ten minste één aangepaste omgeving toevoegen."
+  },
   "customEnvironment": {
     "message": "Aangepaste omgeving"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Uitgelogd"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Je inlogsessie is verlopen."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Help"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Belangrijk:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Je hoofdwachtwoord kan niet hersteld worden als je het vergeet!"
   },
diff --git a/apps/desktop/src/locales/nn/messages.json b/apps/desktop/src/locales/nn/messages.json
index 10016168346..e383a118310 100644
--- a/apps/desktop/src/locales/nn/messages.json
+++ b/apps/desktop/src/locales/nn/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Logga ut"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Innloggingsøkta di har gått ut."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Hjelp"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/or/messages.json b/apps/desktop/src/locales/or/messages.json
index 8146636277b..8f2f11bc30f 100644
--- a/apps/desktop/src/locales/or/messages.json
+++ b/apps/desktop/src/locales/or/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Help"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/pl/messages.json b/apps/desktop/src/locales/pl/messages.json
index 01fe7622e71..6acefb31b80 100644
--- a/apps/desktop/src/locales/pl/messages.json
+++ b/apps/desktop/src/locales/pl/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Wpisz podstawowy adres URL hostowanej instalacji Bitwarden."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Określ bazowy adres URL swojej instalacji Bitwarden. Przykład: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Dla zaawansowanych konfiguracji możesz określić podstawowy adres URL niezależnie dla każdej usługi."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Musisz dodać podstawowy adres URL serwera lub co najmniej jedno niestandardowe środowisko."
+  },
   "customEnvironment": {
     "message": "Niestandardowe środowisko"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Wylogowano"
   },
+  "loggedOutDesc": {
+    "message": "Zostałeś wylogowany z konta."
+  },
   "loginExpired": {
     "message": "Twoja sesja wygasła."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Błąd podczas odświeżania tokenu"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Nie znaleziono tokenu odświeżającego ani kluczy API. Spróbuj wylogować się i zalogować ponownie."
+  },
   "help": {
     "message": "Pomoc"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Ważne:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "Zostałeś wylogowany, ponieważ token dostępu nie mógł zostać odszyfrowany. Zaloguj się ponownie, aby rozwiązać ten problem."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "Zostałeś wylogowany, ponieważ Twój token odświeżania nie mógł zostać pobrany. Zaloguj się ponownie, aby rozwiązać ten problem."
+  },
   "masterPasswordHint": {
     "message": "Twoje hasło główne nie może zostać odzyskane, jeśli je zapomnisz!"
   },
diff --git a/apps/desktop/src/locales/pt_BR/messages.json b/apps/desktop/src/locales/pt_BR/messages.json
index 77ae4a5592b..b9e051de18e 100644
--- a/apps/desktop/src/locales/pt_BR/messages.json
+++ b/apps/desktop/src/locales/pt_BR/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Especifique a URL de base da sua instalação local do Bitwarden."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Ambiente Personalizado"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Sessão encerrada"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "A sua sessão expirou."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Ajuda"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Importante:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "A sua senha mestra não pode ser recuperada se você esquecê-la!"
   },
diff --git a/apps/desktop/src/locales/pt_PT/messages.json b/apps/desktop/src/locales/pt_PT/messages.json
index 5596e6ee45e..a1fc775bdef 100644
--- a/apps/desktop/src/locales/pt_PT/messages.json
+++ b/apps/desktop/src/locales/pt_PT/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Especifique o URL de base da sua instalação Bitwarden hospedada no local."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Especifique o URL de base da sua instalação Bitwarden hospedada no local. Exemplo: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Para uma configuração avançada, pode especificar o URL de base de cada serviço de forma independente."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Deve adicionar o URL do servidor de base ou pelo menos um ambiente personalizado."
+  },
   "customEnvironment": {
     "message": "Ambiente personalizado"
   },
@@ -708,7 +717,7 @@
     "message": "URL do servidor da API"
   },
   "webVaultUrl": {
-    "message": "URL do servidor do cofre web"
+    "message": "URL do servidor do cofre Web"
   },
   "identityUrl": {
     "message": "URL do servidor de identidade"
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Sessão terminada"
   },
+  "loggedOutDesc": {
+    "message": "Foi terminada a sessão da sua conta."
+  },
   "loginExpired": {
     "message": "A sua sessão expirou."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Erro no acesso ao token de atualização"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Não foi encontrado nenhum token de atualização ou chaves API. Por favor, tente terminar a sessão e voltar a iniciá-la."
+  },
   "help": {
     "message": "Ajuda"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Importante:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "A sua sessão foi encerrada porque o seu token de acesso não pôde ser desencriptado. Por favor, inicie sessão novamente para resolver este problema."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "A sessão foi encerrada porque o seu token de atualização não pôde ser recuperado. Por favor, inicie sessão novamente para resolver este problema."
+  },
   "masterPasswordHint": {
     "message": "A sua palavra-passe mestra não pode ser recuperada se a esquecer!"
   },
diff --git a/apps/desktop/src/locales/ro/messages.json b/apps/desktop/src/locales/ro/messages.json
index 9ffe8da928c..65800596c86 100644
--- a/apps/desktop/src/locales/ro/messages.json
+++ b/apps/desktop/src/locales/ro/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specificați URL-ul de bază al implementări Bitwarden găzduită local."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Mediu personalizat"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Deconectat"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Sesiunea de autentificare a expirat."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Ajutor"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/ru/messages.json b/apps/desktop/src/locales/ru/messages.json
index 665a18d1cb7..2392d902289 100644
--- a/apps/desktop/src/locales/ru/messages.json
+++ b/apps/desktop/src/locales/ru/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Укажите URL Bitwarden на вашем сервере."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Укажите базовый URL вашего локального хостинга Bitwarden. Пример: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Для продвинутой конфигурации можно указать базовый URL каждой службы отдельно."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Вы должны добавить либо базовый URL сервера, либо хотя бы одно пользовательское окружение."
+  },
   "customEnvironment": {
     "message": "Пользовательское окружение"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Вы вышли из хранилища"
   },
+  "loggedOutDesc": {
+    "message": "Вы вышли из своего аккаунта."
+  },
   "loginExpired": {
     "message": "Истек срок действия вашего сеанса."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Ошибка обновления токена доступа"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Не найдены токен обновления или ключи API. Пожалуйста, попробуйте выполнить выход и повторно авторизоваться."
+  },
   "help": {
     "message": "Помощь"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Важно:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "Вы были деавторизованы, поскольку ваш токен доступа не удалось расшифровать. Чтобы решить эту проблему, авторизуйтесь снова."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "Вы были деавторизованы, поскольку ваш токен обновления не удалось получить. Чтобы решить эту проблему, авторизуйтесь снова."
+  },
   "masterPasswordHint": {
     "message": "Ваш мастер-пароль невозможно восстановить, если вы его забудете!"
   },
diff --git a/apps/desktop/src/locales/si/messages.json b/apps/desktop/src/locales/si/messages.json
index b2c744761fe..1d518c4374d 100644
--- a/apps/desktop/src/locales/si/messages.json
+++ b/apps/desktop/src/locales/si/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Help"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/sk/messages.json b/apps/desktop/src/locales/sk/messages.json
index af48e2ed529..dc6aa65d84f 100644
--- a/apps/desktop/src/locales/sk/messages.json
+++ b/apps/desktop/src/locales/sk/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Zadajte URL Bitwarden inštalácie, ktorú prevádzkujete vo vlastnom prostredí."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Zadajte základnú URL adresu lokálne hosťovanej inštalácie Bitwarden. Napríklad: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Pre rozšírenú konfiguráciu môžete zadať základnú adresu URL každej služby nezávisle."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Musíte pridať buď základnú adresu URL servera, alebo aspoň jedno vlastné prostredie."
+  },
   "customEnvironment": {
     "message": "Vlastné prostredie"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Odhlásený"
   },
+  "loggedOutDesc": {
+    "message": "Boli ste odhlásení zo svojho účtu."
+  },
   "loginExpired": {
     "message": "Platnosť prihlásenia vypršala."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Chyba obnovenia prístupového tokenu"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Nenašiel sa žiadny token obnovenia ani kľúče API. Skúste sa odhlásiť a znova prihlásiť."
+  },
   "help": {
     "message": "Nápoveď"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Dôležité:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "Boli ste odhlásení, pretože váš prístupový token nebolo možné dešifrovať. Na vyriešenie tohto problému sa znova prihláste."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "Boli ste odhlásení, pretože váš prístupový token nebolo možné načítať. Na vyriešenie tohto problému sa znova prihláste."
+  },
   "masterPasswordHint": {
     "message": "Vaše hlavné heslo sa nebude dať obnoviť, ak ho zabudnete!"
   },
diff --git a/apps/desktop/src/locales/sl/messages.json b/apps/desktop/src/locales/sl/messages.json
index 9bdec66f19c..86cb28289a9 100644
--- a/apps/desktop/src/locales/sl/messages.json
+++ b/apps/desktop/src/locales/sl/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Okolje po meri"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Odjavljen"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Vaša seja je potekla."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Pomoč"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/sr/messages.json b/apps/desktop/src/locales/sr/messages.json
index de403629d14..90b6e7292f0 100644
--- a/apps/desktop/src/locales/sr/messages.json
+++ b/apps/desktop/src/locales/sr/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Наведите основни УРЛ ваше локалне Bitwarden инсталације."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Наведите основну УРЛ адресу вашег локалног хостовања Bitwarden-а. Пример: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "За напредну конфигурацију, можете навести основну УРЛ адресу сваке услуге независно."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Морате додати или основни УРЛ сервера или бар једно прилагођено окружење."
+  },
   "customEnvironment": {
     "message": "Прилагођено окружење"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Одјављено"
   },
+  "loggedOutDesc": {
+    "message": "Одјављени сте са свог налога."
+  },
   "loginExpired": {
     "message": "Ваша сесија је истекла."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Грешка при освежавању токена приступа"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Није пронађен токен за освежавање или АПИ кључеви. Покушајте да се одјавите и поново пријавите."
+  },
   "help": {
     "message": "Помоћ"
   },
@@ -1300,7 +1318,7 @@
     "description": "ex. Date this password was updated"
   },
   "exportFrom": {
-    "message": "Export from"
+    "message": "Извоз од"
   },
   "exportVault": {
     "message": "Извоз сефа"
@@ -1309,31 +1327,31 @@
     "message": "Формат датотеке"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "This file export will be password protected and require the file password to decrypt."
+    "message": "Овај извоз ће бити заштићен лозинком и захтеваће лозинку датотеке за дешифровање."
   },
   "filePassword": {
-    "message": "File password"
+    "message": "Лозинка датотеке"
   },
   "exportPasswordDescription": {
-    "message": "This password will be used to export and import this file"
+    "message": "Ова лозинка ће се користити за извоз и увоз ове датотеке"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+    "message": "Користите кључ за шифровање вашег налога, изведен из корисничког имена и главне лозинке, да шифрујете извоз и ограничите увоз само на тренутни Bitwarden налог."
   },
   "passwordProtected": {
-    "message": "Password protected"
+    "message": "Заштићено лозинком"
   },
   "passwordProtectedOptionDescription": {
-    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+    "message": "Подесите лозинку за шифровање извоза и увоз у било који Bitwarden налог користећи лозинку за дешифровање."
   },
   "exportTypeHeading": {
-    "message": "Export type"
+    "message": "Тип извоза"
   },
   "accountRestricted": {
-    "message": "Account restricted"
+    "message": "Налог је ограничен"
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
-    "message": "“File password”  and “Confirm file password“ do not match."
+    "message": "Унете лозинке се не подударају."
   },
   "hCaptchaUrl": {
     "message": "hCaptcha Url",
@@ -2102,10 +2120,10 @@
     }
   },
   "exportingOrganizationVaultTitle": {
-    "message": "Exporting organization vault"
+    "message": "Извоз сефа организације"
   },
   "exportingOrganizationVaultDesc": {
-    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "message": "Биће извезен само сеф организације повезан са $ORGANIZATION$. Ставке у појединачним сефовима или другим организацијама неће бити укључене.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Важно:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "Одјављени сте јер ваш токен за приступ није могао да се дешифрује. Пријавите се поново да бисте решили овај проблем."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "Одјављени сте јер ваш токен за освежавање није могао да се преузме. Пријавите се поново да бисте решили овај проблем."
+  },
   "masterPasswordHint": {
     "message": "Ваша главна лозинка се не може повратити ако је заборавите!"
   },
diff --git a/apps/desktop/src/locales/sv/messages.json b/apps/desktop/src/locales/sv/messages.json
index 9bae4e883dc..6d078a34e87 100644
--- a/apps/desktop/src/locales/sv/messages.json
+++ b/apps/desktop/src/locales/sv/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Ange bas-URL:en för din \"on-premises\"-hostade Bitwarden-installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Anpassad miljö"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Utloggad"
   },
+  "loggedOutDesc": {
+    "message": "Du har blivit utloggad från ditt konto."
+  },
   "loginExpired": {
     "message": "Din inloggningssession har löpt ut."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Hjälp"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Viktigt:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Ditt huvudlösenord kan inte återställas om du glömmer det!"
   },
diff --git a/apps/desktop/src/locales/te/messages.json b/apps/desktop/src/locales/te/messages.json
index 7b9cd9ef0f1..4d0d96038f6 100644
--- a/apps/desktop/src/locales/te/messages.json
+++ b/apps/desktop/src/locales/te/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Help"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/th/messages.json b/apps/desktop/src/locales/th/messages.json
index cfc701aa5aa..827bbc8b867 100644
--- a/apps/desktop/src/locales/th/messages.json
+++ b/apps/desktop/src/locales/th/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premise hosted bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom Environment"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "ออกจากระบบแล้ว"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "เซสชันของคุณหมดอายุแล้ว"
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "ช่วยเหลือ"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/tr/messages.json b/apps/desktop/src/locales/tr/messages.json
index 224bf36cfd7..8d3d061a58e 100644
--- a/apps/desktop/src/locales/tr/messages.json
+++ b/apps/desktop/src/locales/tr/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Kurum içi barındırılan Bitwarden kurulumunuzun taban URL'sini belirtin."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Özel ortam"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Çıkış yapıldı"
   },
+  "loggedOutDesc": {
+    "message": "Hesabınızdan çıkış yapıldı."
+  },
   "loginExpired": {
     "message": "Oturumunuzun süresi doldu."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Yardım"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Önemli:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Ana parolanızı unutursanız kurtaramazsınız!"
   },
diff --git a/apps/desktop/src/locales/uk/messages.json b/apps/desktop/src/locales/uk/messages.json
index 546005db20c..0ac31300741 100644
--- a/apps/desktop/src/locales/uk/messages.json
+++ b/apps/desktop/src/locales/uk/messages.json
@@ -693,7 +693,16 @@
     "message": "Середовище власного хостингу"
   },
   "selfHostedEnvironmentFooter": {
-    "message": "Вкажіть основну URL-адресу Bitwarden, встановленого на локальному хостингу."
+    "message": "Вкажіть основну URL-адресу локально розміщеного встановлення Bitwarden."
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Вкажіть основну URL-адресу вашого локально розміщеного встановлення Bitwarden. Зразок: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Для розширеної конфігурації ви можете вказати основну URL-адресу окремо для кожної служби."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Необхідно додати URL-адресу основного сервера, або принаймні одне користувацьке середовище."
   },
   "customEnvironment": {
     "message": "Власне середовище"
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Ви вийшли"
   },
+  "loggedOutDesc": {
+    "message": "Ви вийшли з облікового запису."
+  },
   "loginExpired": {
     "message": "Тривалість вашого сеансу завершилась."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Помилка оновлення токена доступу"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Не знайдено токен оновлення або ключі API. Спробуйте вийти, а потім увійти знову."
+  },
   "help": {
     "message": "Допомога"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Важливо:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "Ви вийшли з системи, оскільки неможливо розшифрувати ваш токен доступу. Увійдіть знову, щоб виправити цю проблему."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "Ви вийшли з системи, оскільки неможливо отримати ваш токен оновлення. Увійдіть знову, щоб виправити цю проблему."
+  },
   "masterPasswordHint": {
     "message": "Головний пароль неможливо відновити, якщо ви його втратите!"
   },
diff --git a/apps/desktop/src/locales/vi/messages.json b/apps/desktop/src/locales/vi/messages.json
index 0fa1d7253af..70a920b8587 100644
--- a/apps/desktop/src/locales/vi/messages.json
+++ b/apps/desktop/src/locales/vi/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Chỉ định liên kết cơ bản của cài đặt Bitwarden tại chỗ của bạn."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Môi trường tùy chỉnh"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "Đăng xuất"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Phiên đăng nhập của bạn đã hết hạn."
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "Trợ giúp"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "Important:"
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "Your master password cannot be recovered if you forget it!"
   },
diff --git a/apps/desktop/src/locales/zh_CN/messages.json b/apps/desktop/src/locales/zh_CN/messages.json
index 22b96d6e4b6..8a80875bbf3 100644
--- a/apps/desktop/src/locales/zh_CN/messages.json
+++ b/apps/desktop/src/locales/zh_CN/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "指定您本地托管的 Bitwarden 安装的基础 URL。"
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "自定义环境"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "已注销"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "您的登录会话已过期。"
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "帮助"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "重要事项："
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "主密码忘记后，将无法恢复！"
   },
diff --git a/apps/desktop/src/locales/zh_TW/messages.json b/apps/desktop/src/locales/zh_TW/messages.json
index 099865217c0..47bcaae70e8 100644
--- a/apps/desktop/src/locales/zh_TW/messages.json
+++ b/apps/desktop/src/locales/zh_TW/messages.json
@@ -695,6 +695,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "指定您本地托管的 Bitwarden 安裝之基礎 URL。"
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "自訂環境"
   },
@@ -743,6 +752,9 @@
   "loggedOut": {
     "message": "已登出"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "您的登入會話已過期。"
   },
@@ -1212,6 +1224,12 @@
       }
     }
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "help": {
     "message": "說明"
   },
@@ -2474,6 +2492,12 @@
   "important": {
     "message": "重要："
   },
+  "accessTokenUnableToBeDecrypted": {
+    "message": "You have been logged out because your access token could not be decrypted. Please log in again to resolve this issue."
+  },
+  "refreshTokenSecureStorageRetrievalFailure": {
+    "message": "You have been logged out because your refresh token could not be retrieved. Please log in again to resolve this issue."
+  },
   "masterPasswordHint": {
     "message": "如果您忘記主密碼，沒有復原的方法！"
   },

From 9f10569e9c6eb43f83246fb7e3ba9d4801265a05 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Fri, 7 Jun 2024 06:46:25 +0000
Subject: [PATCH 130/138] Autosync the updated translations (#9545)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/web/src/locales/af/messages.json    |  71 +++++++++++--
 apps/web/src/locales/ar/messages.json    |  57 ++++++++++
 apps/web/src/locales/az/messages.json    |  59 ++++++++++-
 apps/web/src/locales/be/messages.json    |  57 ++++++++++
 apps/web/src/locales/bg/messages.json    |  57 ++++++++++
 apps/web/src/locales/bn/messages.json    |  57 ++++++++++
 apps/web/src/locales/bs/messages.json    |  57 ++++++++++
 apps/web/src/locales/ca/messages.json    |  57 ++++++++++
 apps/web/src/locales/cs/messages.json    |  57 ++++++++++
 apps/web/src/locales/cy/messages.json    |  57 ++++++++++
 apps/web/src/locales/da/messages.json    |  57 ++++++++++
 apps/web/src/locales/de/messages.json    |  59 ++++++++++-
 apps/web/src/locales/el/messages.json    |  57 ++++++++++
 apps/web/src/locales/en_GB/messages.json |  57 ++++++++++
 apps/web/src/locales/en_IN/messages.json |  57 ++++++++++
 apps/web/src/locales/eo/messages.json    |  57 ++++++++++
 apps/web/src/locales/es/messages.json    |  57 ++++++++++
 apps/web/src/locales/et/messages.json    |  57 ++++++++++
 apps/web/src/locales/eu/messages.json    |  57 ++++++++++
 apps/web/src/locales/fa/messages.json    |  57 ++++++++++
 apps/web/src/locales/fi/messages.json    |  57 ++++++++++
 apps/web/src/locales/fil/messages.json   |  57 ++++++++++
 apps/web/src/locales/fr/messages.json    |  69 ++++++++++--
 apps/web/src/locales/gl/messages.json    |  57 ++++++++++
 apps/web/src/locales/he/messages.json    |  57 ++++++++++
 apps/web/src/locales/hi/messages.json    |  57 ++++++++++
 apps/web/src/locales/hr/messages.json    |  57 ++++++++++
 apps/web/src/locales/hu/messages.json    |  57 ++++++++++
 apps/web/src/locales/id/messages.json    |  57 ++++++++++
 apps/web/src/locales/it/messages.json    |  57 ++++++++++
 apps/web/src/locales/ja/messages.json    |  57 ++++++++++
 apps/web/src/locales/ka/messages.json    |  57 ++++++++++
 apps/web/src/locales/km/messages.json    |  57 ++++++++++
 apps/web/src/locales/kn/messages.json    |  57 ++++++++++
 apps/web/src/locales/ko/messages.json    |  57 ++++++++++
 apps/web/src/locales/lv/messages.json    |  57 ++++++++++
 apps/web/src/locales/ml/messages.json    |  57 ++++++++++
 apps/web/src/locales/mr/messages.json    |  57 ++++++++++
 apps/web/src/locales/my/messages.json    |  57 ++++++++++
 apps/web/src/locales/nb/messages.json    | 129 ++++++++++++++++-------
 apps/web/src/locales/ne/messages.json    |  57 ++++++++++
 apps/web/src/locales/nl/messages.json    |  57 ++++++++++
 apps/web/src/locales/nn/messages.json    |  57 ++++++++++
 apps/web/src/locales/or/messages.json    |  57 ++++++++++
 apps/web/src/locales/pl/messages.json    |  57 ++++++++++
 apps/web/src/locales/pt_BR/messages.json |  57 ++++++++++
 apps/web/src/locales/pt_PT/messages.json |  59 ++++++++++-
 apps/web/src/locales/ro/messages.json    |  57 ++++++++++
 apps/web/src/locales/ru/messages.json    |  57 ++++++++++
 apps/web/src/locales/si/messages.json    |  57 ++++++++++
 apps/web/src/locales/sk/messages.json    |  57 ++++++++++
 apps/web/src/locales/sl/messages.json    |  57 ++++++++++
 apps/web/src/locales/sr/messages.json    |  63 ++++++++++-
 apps/web/src/locales/sr_CS/messages.json |  57 ++++++++++
 apps/web/src/locales/sv/messages.json    |  57 ++++++++++
 apps/web/src/locales/te/messages.json    |  57 ++++++++++
 apps/web/src/locales/th/messages.json    |  57 ++++++++++
 apps/web/src/locales/tr/messages.json    |  57 ++++++++++
 apps/web/src/locales/uk/messages.json    |  59 ++++++++++-
 apps/web/src/locales/vi/messages.json    |  57 ++++++++++
 apps/web/src/locales/zh_CN/messages.json |  57 ++++++++++
 apps/web/src/locales/zh_TW/messages.json |  57 ++++++++++
 62 files changed, 3590 insertions(+), 56 deletions(-)

diff --git a/apps/web/src/locales/af/messages.json b/apps/web/src/locales/af/messages.json
index 0bbcde1f493..0fb5cf25f96 100644
--- a/apps/web/src/locales/af/messages.json
+++ b/apps/web/src/locales/af/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Uitgeteken"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "U aantekensessie het verstryk."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Kopieer UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Waarskuwing"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Selfhuisvesting"
   },
@@ -6838,19 +6880,19 @@
     "message": "Use PIN"
   },
   "useBiometrics": {
-    "message": "Use biometrics"
+    "message": "Gebruik biometrie"
   },
   "enterVerificationCodeSentToEmail": {
-    "message": "Enter the verification code that was sent to your email."
+    "message": "Voer die bevestigingskakel wat na u e-pos gestuur is, in."
   },
   "resendCode": {
-    "message": "Resend code"
+    "message": "Stuur kode weer"
   },
   "memberColumnHeader": {
-    "message": "Member"
+    "message": "Lid"
   },
   "groupSlashMemberColumnHeader": {
-    "message": "Group/Member"
+    "message": "Groep/lid"
   },
   "selectGroupsAndMembers": {
     "message": "Kies groepe en lede"
@@ -6859,7 +6901,7 @@
     "message": "Kies groepe"
   },
   "userPermissionOverrideHelperDesc": {
-    "message": "Permissions set for a member will replace permissions set by that member's group."
+    "message": "Ingestelde toestemmings vir ’n lid sal toestemmings deur daardie lid se groep vervang."
   },
   "noMembersOrGroupsAdded": {
     "message": "Geen lede of groepe toegevoeg"
@@ -7104,7 +7146,7 @@
     "description": "Software Development Kit"
   },
   "createAnAccount": {
-    "message": "Create an account"
+    "message": "Skep ’n rekening"
   },
   "createSecret": {
     "message": "Skep ’n geheim"
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/ar/messages.json b/apps/web/src/locales/ar/messages.json
index 92d90de8ded..6285e62d23f 100644
--- a/apps/web/src/locales/ar/messages.json
+++ b/apps/web/src/locales/ar/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "تم تسجيل الخروج"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "انتهت صَلاحِيَة جَلسة الدخول."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "تحذير"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "استضافة ذاتية"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/az/messages.json b/apps/web/src/locales/az/messages.json
index 71f7f573d65..fb661923657 100644
--- a/apps/web/src/locales/az/messages.json
+++ b/apps/web/src/locales/az/messages.json
@@ -582,11 +582,14 @@
     "message": "Müraciət səviyyəsi"
   },
   "accessing": {
-    "message": "Accessing"
+    "message": "Müraciət edilir"
   },
   "loggedOut": {
     "message": "Çıxış edildi"
   },
+  "loggedOutDesc": {
+    "message": "Hesabınızdan çıxış etmisiniz."
+  },
   "loginExpired": {
     "message": "Seansın müddəti bitdi."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "UUID-ni kopyala"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Müraciət tokeni təzələmə xətası"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Təzələmə tokeni və ya API açarlar tapılmadı. Lütfən çıxış edib yenidən giriş etməyə çalışın."
+  },
   "warning": {
     "message": "Xəbərdarlıq"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Faktura sinxr tokenini döndərmək, əvvəlki tokeni yararsız edəcək."
   },
+  "selfHostedServer": {
+    "message": "öz-özünə sahiblik edən"
+  },
+  "customEnvironment": {
+    "message": "Özəl mühit"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Şirkət daxili sahiblik edən Bitwarden quraşdırmasının təməl URL-sini qeyd edin. Nümunə: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Qabaqcıl konfiqurasiya üçün hər xidmətin təməl URL-sini müstəqil olaraq qeyd edə bilərsiniz."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Təməl server URL-sini və ya ən azı bir özəl mühiti əlavə etməlisiniz."
+  },
+  "apiUrl": {
+    "message": "API server URL-si"
+  },
+  "webVaultUrl": {
+    "message": "Veb anbar server URL-si"
+  },
+  "identityUrl": {
+    "message": "Kimlik server URL-si"
+  },
+  "notificationsUrl": {
+    "message": "Bildiriş server URL-si"
+  },
+  "iconsUrl": {
+    "message": "İkon server URL-si"
+  },
+  "environmentSaved": {
+    "message": "Mühit URL-ləri saxlanıldı"
+  },
   "selfHostingTitle": {
     "message": "Öz-özünə sahiblik etmə"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "Bütün giriş tələbləri təsdiqləndi"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Güncəlllənən vergi məlumatı"
+  },
+  "unverified": {
+    "message": "Doğrulanmayıb"
+  },
+  "verified": {
+    "message": "Doğrulandı"
   }
 }
diff --git a/apps/web/src/locales/be/messages.json b/apps/web/src/locales/be/messages.json
index 3127daed942..6cd2e5c77ea 100644
--- a/apps/web/src/locales/be/messages.json
+++ b/apps/web/src/locales/be/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Вы выйшлі"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Тэрмін дзеяння вашага сеансу завяршыўся."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Скапіяваць UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Папярэджанне"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Змяненне токена плацежнай сінхранізацыі прывядзе да скасавання папярэдняга токена."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Уласнае размяшчэнне"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/bg/messages.json b/apps/web/src/locales/bg/messages.json
index a1be0b8fdf1..b114f9da8cc 100644
--- a/apps/web/src/locales/bg/messages.json
+++ b/apps/web/src/locales/bg/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Бяхте отписани"
   },
+  "loggedOutDesc": {
+    "message": "Бяхте отписан(а) от регистрацията си."
+  },
   "loginExpired": {
     "message": "Сесията ви изтече."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Грешка при опресняването на идентификатора за достъп"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Няма намерен идентификатор за опресняване или ключове за ППИ. Опитайте да се отпишете и да се впишете отново."
+  },
   "warning": {
     "message": "Внимание"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Пресъздаването на идентификатора за синхронизиране на плащанията ще направи така, че досегашният вече няма да работи."
   },
+  "selfHostedServer": {
+    "message": "собствен хостинг"
+  },
+  "customEnvironment": {
+    "message": "Специална среда"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Посочете базовия адрес на Вашата собствена инсталация на Битуорден. Пример: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "За по-детайлна настройка, може да укажете основния адрес на всяка услуга поотделно."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Трябва да добавите или основния адрес на сървъра, или поне една специална среда."
+  },
+  "apiUrl": {
+    "message": "Адрес на сървъра за ППИ"
+  },
+  "webVaultUrl": {
+    "message": "Адрес на сървъра за трезора по уеб"
+  },
+  "identityUrl": {
+    "message": "Адрес на сървъра за самоличности"
+  },
+  "notificationsUrl": {
+    "message": "Адрес на сървъра за известия"
+  },
+  "iconsUrl": {
+    "message": "Адрес на сървъра за иконки"
+  },
+  "environmentSaved": {
+    "message": "Адресите на средата са запазени"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "Всички заявки за вписване са одобрени"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Биткойн"
+  },
+  "updatedTaxInformation": {
+    "message": "Обновена данъчна информация"
+  },
+  "unverified": {
+    "message": "Непотвърден"
+  },
+  "verified": {
+    "message": "Потвърден"
   }
 }
diff --git a/apps/web/src/locales/bn/messages.json b/apps/web/src/locales/bn/messages.json
index 525586cc863..b58391e7546 100644
--- a/apps/web/src/locales/bn/messages.json
+++ b/apps/web/src/locales/bn/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Warning"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/bs/messages.json b/apps/web/src/locales/bs/messages.json
index 84dc065cec5..fb5cc691cfe 100644
--- a/apps/web/src/locales/bs/messages.json
+++ b/apps/web/src/locales/bs/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Warning"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/ca/messages.json b/apps/web/src/locales/ca/messages.json
index 24f5f561e56..f0a50c38824 100644
--- a/apps/web/src/locales/ca/messages.json
+++ b/apps/web/src/locales/ca/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Sessió tancada"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "La vostra sessió ha caducat."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copia UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Advertiment"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Girar el token de sincronització de facturació invalidarà el token anterior."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Autoallotjat"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/cs/messages.json b/apps/web/src/locales/cs/messages.json
index 7b08b7ef2f2..c77dc3bdb96 100644
--- a/apps/web/src/locales/cs/messages.json
+++ b/apps/web/src/locales/cs/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Odhlášení"
   },
+  "loggedOutDesc": {
+    "message": "Byli jste odhlášeni ze svého účtu."
+  },
   "loginExpired": {
     "message": "Platnost přihlášení vypršela."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Kopírovat UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Chyba aktualizace přístupového tokenu"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Nebyly nalezeny žádné obnovovací tokeny nebo API klíče. Zkuste se odhlásit a znovu se přihlásit."
+  },
   "warning": {
     "message": "Varování"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Měnění fakturačního synchronizačního tokenu zruší platnost předchozího tokenu."
   },
+  "selfHostedServer": {
+    "message": "vlastní hosting"
+  },
+  "customEnvironment": {
+    "message": "Vlastní prostředí"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Zadejte základní URL adresu Vaší vlastní hostované aplikace Bitwarden. Příklad: https://bitwarden.spolecnost.cz"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Pro rozšířená nastavení můžete zadat základní URL adresu každé služby zvlášť."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Musíte přidat buď základní adresu URL serveru nebo alespoň jedno vlastní prostředí."
+  },
+  "apiUrl": {
+    "message": "URL API serveru"
+  },
+  "webVaultUrl": {
+    "message": "URL serveru webového trezoru"
+  },
+  "identityUrl": {
+    "message": "URL serveru identity"
+  },
+  "notificationsUrl": {
+    "message": "URL serveru pro oznámení"
+  },
+  "iconsUrl": {
+    "message": "URL serveru ikon"
+  },
+  "environmentSaved": {
+    "message": "URL adresy prostředí uloženy"
+  },
   "selfHostingTitle": {
     "message": "Vlastní hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "Všechny žádosti o přihlášení byly schváleny"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Aktualizované daňové údaje"
+  },
+  "unverified": {
+    "message": "Neověřeno"
+  },
+  "verified": {
+    "message": "Ověřeno"
   }
 }
diff --git a/apps/web/src/locales/cy/messages.json b/apps/web/src/locales/cy/messages.json
index a9b33e0e14f..095e4dabca8 100644
--- a/apps/web/src/locales/cy/messages.json
+++ b/apps/web/src/locales/cy/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Warning"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/da/messages.json b/apps/web/src/locales/da/messages.json
index f4031107f1c..ff339e7a39e 100644
--- a/apps/web/src/locales/da/messages.json
+++ b/apps/web/src/locales/da/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Logget ud"
   },
+  "loggedOutDesc": {
+    "message": "Der er blevet logget ud af kontoen."
+  },
   "loginExpired": {
     "message": "Login-session udløbet."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Kopiér UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Adgangstoken genopfriskningsfejl"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Ingen genopfriskningstoken eller API-nøgler fundet. Prøv at logge ud og dernæst ind igen."
+  },
   "warning": {
     "message": "Advarsel"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotering af faktureringssynk-tokenet vil ugyldiggøre det foregående token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Selvhosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "Alle login-anmodninger godkendt"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Opdaterede momsoplysninger"
+  },
+  "unverified": {
+    "message": "Ubekræftet"
+  },
+  "verified": {
+    "message": "Bekræftet"
   }
 }
diff --git a/apps/web/src/locales/de/messages.json b/apps/web/src/locales/de/messages.json
index ecb3bf97291..6931b8345af 100644
--- a/apps/web/src/locales/de/messages.json
+++ b/apps/web/src/locales/de/messages.json
@@ -582,11 +582,14 @@
     "message": "Zugriffsebene"
   },
   "accessing": {
-    "message": "Accessing"
+    "message": "Zugriff auf"
   },
   "loggedOut": {
     "message": "Ausgeloggt"
   },
+  "loggedOutDesc": {
+    "message": "Du wurdest von deinem Konto abgemeldet."
+  },
   "loginExpired": {
     "message": "Ihre Anmeldungsitzung ist abgelaufen."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "UUID kopieren"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Zugangs-Token Aktualisierungsfehler"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Kein Aktualisierungs-Token oder API-Schlüssel gefunden. Bitte versuche dich ab- und wieder anzumelden."
+  },
   "warning": {
     "message": "Warnung"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Durch Erneuerung des Rechnungssynchronisierungs-Token wird der vorherige Token ungültig."
   },
+  "selfHostedServer": {
+    "message": "selbst gehostet"
+  },
+  "customEnvironment": {
+    "message": "Benutzerdefinierte Umgebung"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Gib die Basis-URL deiner vor Ort gehosteten Bitwarden-Installation an. Beispiel: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Für eine erweiterte Konfiguration kannst du die Basis-URL jedes Dienstes unabhängig voneinander angeben."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Du musst entweder die Basis-Server-URL oder mindestens eine benutzerdefinierte Umgebung hinzufügen."
+  },
+  "apiUrl": {
+    "message": "API Server-URL"
+  },
+  "webVaultUrl": {
+    "message": "URL des Web-Tresor-Servers"
+  },
+  "identityUrl": {
+    "message": "URL des Identitätsservers"
+  },
+  "notificationsUrl": {
+    "message": "URL des Benachrichtigungsservers"
+  },
+  "iconsUrl": {
+    "message": "URL des Icons-Servers"
+  },
+  "environmentSaved": {
+    "message": "URLs der Umgebung gespeichert"
+  },
   "selfHostingTitle": {
     "message": "Selbst gehostet"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "Alle Anmeldeanfragen genehmigt"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Steuerinformationen aktualisiert"
+  },
+  "unverified": {
+    "message": "Nicht verifiziert"
+  },
+  "verified": {
+    "message": "Verifiziert"
   }
 }
diff --git a/apps/web/src/locales/el/messages.json b/apps/web/src/locales/el/messages.json
index 42cc702f271..b3dcdb0d94e 100644
--- a/apps/web/src/locales/el/messages.json
+++ b/apps/web/src/locales/el/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Αποσυνδεθήκατε"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Η περίοδος σύνδεσής σας έχει λήξει."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Προειδοποίηση"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/en_GB/messages.json b/apps/web/src/locales/en_GB/messages.json
index 93f1832301a..75054c1a7de 100644
--- a/apps/web/src/locales/en_GB/messages.json
+++ b/apps/web/src/locales/en_GB/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Warning"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/en_IN/messages.json b/apps/web/src/locales/en_IN/messages.json
index f1fa51236e5..71226fb6177 100644
--- a/apps/web/src/locales/en_IN/messages.json
+++ b/apps/web/src/locales/en_IN/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Warning"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/eo/messages.json b/apps/web/src/locales/eo/messages.json
index 8e0b58c3f1c..3d2e0d1e4d8 100644
--- a/apps/web/src/locales/eo/messages.json
+++ b/apps/web/src/locales/eo/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Adiaŭita"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Via seanco eksvalidiĝis."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Averto"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/es/messages.json b/apps/web/src/locales/es/messages.json
index 8eed13491ee..f3fddf45bce 100644
--- a/apps/web/src/locales/es/messages.json
+++ b/apps/web/src/locales/es/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Sesión terminada"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Tu sesión ha expirado."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copiar UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Advertencia"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotar el token de sincronización de facturación invalidará el token anterior."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Autoalojamiento"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/et/messages.json b/apps/web/src/locales/et/messages.json
index 27f15dc4745..138351449a9 100644
--- a/apps/web/src/locales/et/messages.json
+++ b/apps/web/src/locales/et/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Välja logitud"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Sessioon on aegunud."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Hoiatus"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/eu/messages.json b/apps/web/src/locales/eu/messages.json
index 3bb6a81998c..6a5e3782bc0 100644
--- a/apps/web/src/locales/eu/messages.json
+++ b/apps/web/src/locales/eu/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Saioa itxita"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Saioa amaitu da."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Kontuz"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Fakturazioa sinkronizatzeko tokena berrituz gero, aurreko tokena baliogabetuko da."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Ostatatze propioa"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/fa/messages.json b/apps/web/src/locales/fa/messages.json
index 42e1ff68cc5..fe38a1e7e7e 100644
--- a/apps/web/src/locales/fa/messages.json
+++ b/apps/web/src/locales/fa/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "خارج شد"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "نشست ورود شما منقضی شده است."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "کپی UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "هشدار"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "چرخاندن توکن همگام‌سازی صورتحساب، توکن قبلی را باطل می‌کند."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "خود میزبانی"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/fi/messages.json b/apps/web/src/locales/fi/messages.json
index 3b0e8b4b844..2347c83d0d5 100644
--- a/apps/web/src/locales/fi/messages.json
+++ b/apps/web/src/locales/fi/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Kirjauduttu ulos"
   },
+  "loggedOutDesc": {
+    "message": "Sinut on kirjattu ulos tililtäsi."
+  },
   "loginExpired": {
     "message": "Kirjautumisistuntosi on erääntynyt."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Kopioi UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Varoitus"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Laskutuksen synkronointitunnisteen uudistus mitätöi edellisen tunnisteen."
   },
+  "selfHostedServer": {
+    "message": "itse ylläpidetty"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API-palvelimen URL"
+  },
+  "webVaultUrl": {
+    "message": "Verkkoholvipalvelimen URL"
+  },
+  "identityUrl": {
+    "message": "Henkilöllisyyspalvelimen URL"
+  },
+  "notificationsUrl": {
+    "message": "Ilmoituspalvelimen URL"
+  },
+  "iconsUrl": {
+    "message": "Kuvakepalvelimen URL"
+  },
+  "environmentSaved": {
+    "message": "Palvelinympäristön URL-osoitteet tallennettiin"
+  },
   "selfHostingTitle": {
     "message": "Itse ylläpidetty"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "Kaikki kirjautumispyynnöt hyväksyttiin"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Päivitetyt verotiedot"
+  },
+  "unverified": {
+    "message": "Vahvistamaton"
+  },
+  "verified": {
+    "message": "Vahvistettu"
   }
 }
diff --git a/apps/web/src/locales/fil/messages.json b/apps/web/src/locales/fil/messages.json
index 1a9f2d67823..b73d6af58ff 100644
--- a/apps/web/src/locales/fil/messages.json
+++ b/apps/web/src/locales/fil/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Naka-log out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Nag-expire na ang login session mo."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Babala"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Ang pag ikot ng token ng pag sync ng pagsingil ay magpapawalang bisa sa nakaraang token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Pag host sa sarili"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/fr/messages.json b/apps/web/src/locales/fr/messages.json
index 189571f70d0..1c1191476ee 100644
--- a/apps/web/src/locales/fr/messages.json
+++ b/apps/web/src/locales/fr/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Déconnecté"
   },
+  "loggedOutDesc": {
+    "message": "Vous avez été déconnecté de votre compte."
+  },
   "loginExpired": {
     "message": "Votre session a expiré."
   },
@@ -639,7 +642,7 @@
     "message": "Utilisez une clé d'accès générée qui vous connectera automatiquement sans mot de passe. La biométrie, comme la reconnaissance faciale ou les empreintes digitales, ou une autre méthode de sécurité FIDO2 vérifiera votre identité."
   },
   "newPasskey": {
-    "message": "Nouvelle clé d'accès"
+    "message": "Nouvelle clé d'identification (passkey)"
   },
   "learnMoreAboutPasswordless": {
     "message": "En savoir plus sur l'identification sans mots de passe"
@@ -657,7 +660,7 @@
     "message": "Il y a eu un problème lors de la crétion de votre clé d'accès."
   },
   "passkeySuccessfullyCreated": {
-    "message": "Clé d'accès créée avec succès!"
+    "message": "Clé d'identification (passkey) créée avec succès !"
   },
   "customPasskeyNameInfo": {
     "message": "Nommez votre clé d'accès pour vous aider à l'identifier."
@@ -693,10 +696,10 @@
     }
   },
   "passkeyRemoved": {
-    "message": "Clé d'accès supprimée"
+    "message": "Clé d'identification (passkey) retirée"
   },
   "removePasskey": {
-    "message": "Supprimer la clé d'accès"
+    "message": "Retirer la clé d'identification (passkey)"
   },
   "removePasskeyInfo": {
     "message": "Si toutes les clés d'accès sont supprimées, vous ne pourrez pas vous connecter à de nouveaux appareils sans votre mot de passe principal."
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copier l'UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Erreur d'Actualisation du Jeton d'Accès"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Aucun jeton de rafraîchissement ou clé d'API trouvé. Veuillez essayer de vous déconnecter et de vous reconnecter."
+  },
   "warning": {
     "message": "Attention"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Permuter le Jeton de Synchronisation de Facturation invalidera le jeton précédent."
   },
+  "selfHostedServer": {
+    "message": "auto-hébergé"
+  },
+  "customEnvironment": {
+    "message": "Environnement personnalisé"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Spécifiez l'URL de base de votre installation auto-hébergée par Bitwarden. Exemple: https://bitwarden.compagnie.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Pour un configuration avancée. Vous pouvez spécifier l'URL de base indépendamment pour chaque service."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Vous devez ajouter soit l'URL du Serveur de base, soit au moins un environnement personnalisé."
+  },
+  "apiUrl": {
+    "message": "URL du serveur API"
+  },
+  "webVaultUrl": {
+    "message": "URL du serveur du coffre Web"
+  },
+  "identityUrl": {
+    "message": "URL du serveur d'identité"
+  },
+  "notificationsUrl": {
+    "message": "URL du serveur de notifications"
+  },
+  "iconsUrl": {
+    "message": "URL du serveur d’icônes"
+  },
+  "environmentSaved": {
+    "message": "URLs d'environnement enregistrées"
+  },
   "selfHostingTitle": {
     "message": "Auto-Hébergement"
   },
@@ -6137,7 +6179,7 @@
     "message": "Ce n'est pas vous ?"
   },
   "pickAnAvatarColor": {
-    "message": "Choisissez la couleur de votre avatar"
+    "message": "Choisissez une couleur d'avatar"
   },
   "customizeAvatar": {
     "message": "Personnaliser l'avatar"
@@ -7773,7 +7815,7 @@
     "message": "Vous ne pouvez vous ajoutez vous-même aux groupes."
   },
   "cannotAddYourselfToCollections": {
-    "message": "You cannot add yourself to collections."
+    "message": "Vous ne pouvez pas vous ajouter vous-même aux collections."
   },
   "assign": {
     "message": "Assigner"
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "Toutes les demandes de connexion approuvées"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Informations sur les taxes mises à jour"
+  },
+  "unverified": {
+    "message": "Non vérifié"
+  },
+  "verified": {
+    "message": "Vérifié"
   }
 }
diff --git a/apps/web/src/locales/gl/messages.json b/apps/web/src/locales/gl/messages.json
index 99c15045cc9..b34ccbb9013 100644
--- a/apps/web/src/locales/gl/messages.json
+++ b/apps/web/src/locales/gl/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Warning"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/he/messages.json b/apps/web/src/locales/he/messages.json
index f84612ef46b..6eae24eee0f 100644
--- a/apps/web/src/locales/he/messages.json
+++ b/apps/web/src/locales/he/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "בוצעה יציאה"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "תוקף החיבור שלך הסתיים."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "אזהרה"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/hi/messages.json b/apps/web/src/locales/hi/messages.json
index 65a353768a5..21cabab4b5f 100644
--- a/apps/web/src/locales/hi/messages.json
+++ b/apps/web/src/locales/hi/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Warning"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/hr/messages.json b/apps/web/src/locales/hr/messages.json
index 7f939ba90ca..ba98ea021f8 100644
--- a/apps/web/src/locales/hr/messages.json
+++ b/apps/web/src/locales/hr/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Odjavljen/a"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Sesija je istekla."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Kopiraj UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Upozorenje"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotiranje tokena za sinkornizaciju naplate će poništiti prethodni token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Vlastiti poslužitelj"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/hu/messages.json b/apps/web/src/locales/hu/messages.json
index 9226307792f..1371ceb262f 100644
--- a/apps/web/src/locales/hu/messages.json
+++ b/apps/web/src/locales/hu/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Megtörtént a kijelentkezés."
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "A bejelentkezési munkamenet lejárt."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "UUID másolása"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Figyelmeztetés"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "A Számlázási szinkron vezérjel gördülő váltása érvényteleníti ez előző vezérjelet."
   },
+  "selfHostedServer": {
+    "message": "saját üzemeltetésű"
+  },
+  "customEnvironment": {
+    "message": "Egyedi környezet"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Adjuk meg a helyileg tárolt Bitwarden telepítés alap webcímét. Példa: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Speciális konfigurációhoz külön-külön megadhatjuk az egyes szolgáltatások alap webcímét."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Hozzá kell adni az alapszerver webcímét vagy legalább egy egyedi környezetet."
+  },
+  "apiUrl": {
+    "message": "API szerver webcím"
+  },
+  "webVaultUrl": {
+    "message": "Webes széf szerver webcím"
+  },
+  "identityUrl": {
+    "message": "Személyazonosság szerver webcím"
+  },
+  "notificationsUrl": {
+    "message": "Értesítési szerver webcím"
+  },
+  "iconsUrl": {
+    "message": "Ikonok szerver webcím"
+  },
+  "environmentSaved": {
+    "message": "A környezeti webcímek mentésre kerültek."
+  },
   "selfHostingTitle": {
     "message": "Saját kiszolgáló"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "At összes bejelentkezési kérés óváhagyásra került."
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Frissített adó információ"
+  },
+  "unverified": {
+    "message": "Nem ellenőrzött"
+  },
+  "verified": {
+    "message": "Ellenőrzött"
   }
 }
diff --git a/apps/web/src/locales/id/messages.json b/apps/web/src/locales/id/messages.json
index a767d3bcb0a..c481ca8a095 100644
--- a/apps/web/src/locales/id/messages.json
+++ b/apps/web/src/locales/id/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Keluar"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Sesi masuk Anda telah berakhir."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Peringatan"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/it/messages.json b/apps/web/src/locales/it/messages.json
index d7869336003..192115c13f9 100644
--- a/apps/web/src/locales/it/messages.json
+++ b/apps/web/src/locales/it/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Uscito"
   },
+  "loggedOutDesc": {
+    "message": "Sei stato fatto uscire dal tuo account."
+  },
   "loginExpired": {
     "message": "La tua sessione è scaduta."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copia UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Errore di aggiornamento del token di accesso"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Nessun token di aggiornamento o chiave API trovati. Prova ad uscire ed entrare di nuovo."
+  },
   "warning": {
     "message": "Attenzione"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "La rotazione del token di sincronizzazione della fatturazione invaliderà il token precedente."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Ambiente personalizzato"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specifica lo URL principale della tua installazione self-hosted di Bitwarden. Esempio: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Per la configurazione avanzata, puoi specificare lo URL di base di ciascun servizio in modo indipendente."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Devi aggiungere lo URL del server di base o almeno un ambiente personalizzato."
+  },
+  "apiUrl": {
+    "message": "URL del server API"
+  },
+  "webVaultUrl": {
+    "message": "URL della cassaforte web"
+  },
+  "identityUrl": {
+    "message": "URL del server di identità"
+  },
+  "notificationsUrl": {
+    "message": "URL del server delle notifiche"
+  },
+  "iconsUrl": {
+    "message": "URL del server di icone"
+  },
+  "environmentSaved": {
+    "message": "URL dell'ambiente salvati"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "Tutte le richieste di accesso approvate"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Informazioni fiscali aggiornate"
+  },
+  "unverified": {
+    "message": "Non verificato"
+  },
+  "verified": {
+    "message": "Verificato"
   }
 }
diff --git a/apps/web/src/locales/ja/messages.json b/apps/web/src/locales/ja/messages.json
index b8016fb1f80..a1f71ef90b9 100644
--- a/apps/web/src/locales/ja/messages.json
+++ b/apps/web/src/locales/ja/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "ログアウトしました"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "ログインセッションの有効期限が切れています。"
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "UUID をコピー"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "注意"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "請求同期トークンを更新すると、前のトークンは無効になります。"
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "セルフホスティング"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "すべてのログイン要求を承認しました"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "ビットコイン"
+  },
+  "updatedTaxInformation": {
+    "message": "更新された税情報"
+  },
+  "unverified": {
+    "message": "未認証"
+  },
+  "verified": {
+    "message": "認証済み"
   }
 }
diff --git a/apps/web/src/locales/ka/messages.json b/apps/web/src/locales/ka/messages.json
index c1cb6d9a96a..e5697457baf 100644
--- a/apps/web/src/locales/ka/messages.json
+++ b/apps/web/src/locales/ka/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "გამოსვლა"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "თქვენი სისტემაში შესვლის სესიას ვადა გაუვიდა."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "გაფრთხილება"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/km/messages.json b/apps/web/src/locales/km/messages.json
index 99c15045cc9..b34ccbb9013 100644
--- a/apps/web/src/locales/km/messages.json
+++ b/apps/web/src/locales/km/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Warning"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/kn/messages.json b/apps/web/src/locales/kn/messages.json
index 3d369d33fc7..0ab6aa294dc 100644
--- a/apps/web/src/locales/kn/messages.json
+++ b/apps/web/src/locales/kn/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "ಲಾಗ್ ಔಟ್"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "ನಿಮ್ಮ ಲಾಗಿನ್ ಸೆಷನ್ ಅವಧಿ ಮೀರಿದೆ."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "ಎಚ್ಚರಿಕೆ"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/ko/messages.json b/apps/web/src/locales/ko/messages.json
index 6a7b32983b6..4fb8aa34212 100644
--- a/apps/web/src/locales/ko/messages.json
+++ b/apps/web/src/locales/ko/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "로그아웃됨"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "로그인 세션이 만료되었습니다."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "UUID 복사"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "경고"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/lv/messages.json b/apps/web/src/locales/lv/messages.json
index 61edf711b4d..7a5f85fa918 100644
--- a/apps/web/src/locales/lv/messages.json
+++ b/apps/web/src/locales/lv/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Atteicies"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Pieteikšanās sesija ir beigusies."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Ievietot UUID starpliktuvē"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Brīdinājums"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Norēķinu sinhronizācijas pilnvaras nomaiņa padarīs nederīgu iepriekšējo."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Pašizvietošana"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "Visi pieteikšanās pieprasījumi apstiprināti"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/ml/messages.json b/apps/web/src/locales/ml/messages.json
index ca944a6bc2f..e05b1a15918 100644
--- a/apps/web/src/locales/ml/messages.json
+++ b/apps/web/src/locales/ml/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "ലോഗ് ഔട്ട് ചെയ്തിരിക്കുന്നു"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "നിങ്ങളുടെ പ്രവർത്തന സമയം കഴിഞ്ഞിരിക്കുന്നു."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "മുന്നറിയിപ്പ്"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/mr/messages.json b/apps/web/src/locales/mr/messages.json
index 99c15045cc9..b34ccbb9013 100644
--- a/apps/web/src/locales/mr/messages.json
+++ b/apps/web/src/locales/mr/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Warning"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/my/messages.json b/apps/web/src/locales/my/messages.json
index 99c15045cc9..b34ccbb9013 100644
--- a/apps/web/src/locales/my/messages.json
+++ b/apps/web/src/locales/my/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Warning"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/nb/messages.json b/apps/web/src/locales/nb/messages.json
index 15d8a6aeef7..1ebfb3f0031 100644
--- a/apps/web/src/locales/nb/messages.json
+++ b/apps/web/src/locales/nb/messages.json
@@ -579,14 +579,17 @@
     "message": "Tilgang"
   },
   "accessLevel": {
-    "message": "Access level"
+    "message": "Tilgangsnivå"
   },
   "accessing": {
-    "message": "Accessing"
+    "message": "Aksesserer"
   },
   "loggedOut": {
     "message": "Logget av"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Din innloggingsøkt har utløpt."
   },
@@ -612,79 +615,79 @@
     "message": "Logg på med enhet"
   },
   "loginWithDeviceEnabledNote": {
-    "message": "Log in with device must be set up in the settings of the Bitwarden app. Need another option?"
+    "message": "Logg på med enhet må settes opp i Bitwarden-innstillingene. Trenger du et annet alternativ?"
   },
   "loginWithMasterPassword": {
     "message": "Logg på med hovedpassord"
   },
   "readingPasskeyLoading": {
-    "message": "Reading passkey..."
+    "message": "Leser Passkey..."
   },
   "readingPasskeyLoadingInfo": {
-    "message": "Keep this window open and follow prompts from your browser."
+    "message": "Hold dette vinduet åpent og følg anvisningene fra nettleseren."
   },
   "useADifferentLogInMethod": {
-    "message": "Use a different log in method"
+    "message": "Bruk en annen innloggingsmetode"
   },
   "loginWithPasskey": {
-    "message": "Log in with passkey"
+    "message": "Logg inn med Passkey"
   },
   "invalidPasskeyPleaseTryAgain": {
-    "message": "Invalid Passkey. Please try again."
+    "message": "Ugyldig Passkey. Vennligst prøv igjen."
   },
   "twoFactorForPasskeysNotSupportedOnClientUpdateToLogIn": {
-    "message": "2FA for passkeys is not supported. Update the app to log in."
+    "message": "2FA for Passkeys støttes ikke. Oppdater appen for å logge inn."
   },
   "loginWithPasskeyInfo": {
-    "message": "Use a generated passkey that will automatically log you in without a password. Biometrics, like facial recognition or fingerprint, or another FIDO2 security method will verify your identity."
+    "message": "Bruk en generert Passkey som automatisk logger deg inn uten bruk av passord. Biometri, som ansiktsgjenkjenning eller fingeravtrykk, eller en annen FIDO2-sikkerhetsmetode, vil bekrefte identiteten din."
   },
   "newPasskey": {
-    "message": "New passkey"
+    "message": "Ny Passkey"
   },
   "learnMoreAboutPasswordless": {
-    "message": "Learn more about passwordless"
+    "message": "Lær mer om passordfri løsning"
   },
   "creatingPasskeyLoading": {
-    "message": "Creating passkey..."
+    "message": "Oppretter Passkey..."
   },
   "creatingPasskeyLoadingInfo": {
-    "message": "Keep this window open and follow prompts from your browser."
+    "message": "Hold dette vinduet åpent og følg anvisningene fra nettleseren."
   },
   "errorCreatingPasskey": {
-    "message": "Error creating passkey"
+    "message": "Feil ved oppretting av Passkey"
   },
   "errorCreatingPasskeyInfo": {
-    "message": "There was a problem creating your passkey."
+    "message": "Det oppstod et problem under oppretting av Passkeyen."
   },
   "passkeySuccessfullyCreated": {
-    "message": "Passkey successfully created!"
+    "message": "Passkey opprettet!"
   },
   "customPasskeyNameInfo": {
-    "message": "Name your passkey to help you identify it."
+    "message": "Gi Passkeyen et navn for å hjelpe deg med å identifisere den."
   },
   "useForVaultEncryption": {
-    "message": "Use for vault encryption"
+    "message": "Bruk for hvelvkryptering"
   },
   "useForVaultEncryptionInfo": {
-    "message": "Log in and unlock on supported devices without your master password. Follow the prompts from your browser to finalize setup."
+    "message": "Logg inn og lås opp på støttede enheter uten hovedpassord. Følg anvisningene fra nettleseren din for å avslutte oppsettet."
   },
   "useForVaultEncryptionErrorReadingPasskey": {
-    "message": "Error reading passkey. Try again or uncheck this option."
+    "message": "Feil under lesing av Paskey. Prøv igjen, eller fjern avmerkingen for dette alternativet."
   },
   "encryptionNotSupported": {
-    "message": "Encryption not supported"
+    "message": "Kryptering ikke støttet"
   },
   "enablePasskeyEncryption": {
-    "message": "Set up encryption"
+    "message": "Sett opp kryptering"
   },
   "usedForEncryption": {
-    "message": "Used for encryption"
+    "message": "Brukes til kryptering"
   },
   "loginWithPasskeyEnabled": {
-    "message": "Log in with passkey turned on"
+    "message": "Logg inn med Passkey aktivert"
   },
   "passkeySaved": {
-    "message": "$NAME$ saved",
+    "message": "$NAME$ lagret",
     "placeholders": {
       "name": {
         "content": "$1",
@@ -693,19 +696,19 @@
     }
   },
   "passkeyRemoved": {
-    "message": "Passkey removed"
+    "message": "Passkey fjernet"
   },
   "removePasskey": {
-    "message": "Remove passkey"
+    "message": "Fjern Passkey"
   },
   "removePasskeyInfo": {
-    "message": "If all passkeys are removed, you will be unable to log into new devices without your master password."
+    "message": "Hvis alle Passkeys fjernes, vil det ikke være mulig å logge inn på nye enheter uten hovedpassordet ditt."
   },
   "passkeyLimitReachedInfo": {
-    "message": "Passkey limit reached. Remove a passkey to add another."
+    "message": "Grense for antall Passkeys er nådd. Fjern en Passkey for å legge til en annen."
   },
   "tryAgain": {
-    "message": "Try again"
+    "message": "Prøv igjen"
   },
   "createAccount": {
     "message": "Opprett en konto"
@@ -805,7 +808,7 @@
     "message": "En uventet feil har oppstått."
   },
   "expirationDateError": {
-    "message": "Please select an expiration date that is in the future."
+    "message": "Vennligst velg en utløpsdato som er frem i tid."
   },
   "emailAddress": {
     "message": "E-postadresse"
@@ -1048,7 +1051,13 @@
     "message": "Kopier verifiseringskoden"
   },
   "copyUuid": {
-    "message": "Copy UUID"
+    "message": "Kopier UUID"
+  },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
   },
   "warning": {
     "message": "Advarsel"
@@ -1057,7 +1066,7 @@
     "message": "Bekreft eksport av hvelvet"
   },
   "confirmSecretsExport": {
-    "message": "Confirm secrets export"
+    "message": "Bekreft eksport av hemmeligheter"
   },
   "exportWarningDesc": {
     "message": "Eksporten inneholder dine hvelvdata i ukryptert format. Du bør ikke lagre eller sende den eksporterte filen over usikre tjenester (som e-post). Slett filen umiddelbart etter at du er ferdig med å bruke den."
@@ -1075,13 +1084,13 @@
     "message": "Eksporter"
   },
   "exportFrom": {
-    "message": "Export from"
+    "message": "Eksport fra"
   },
   "exportVault": {
     "message": "Eksporter hvelvet"
   },
   "exportSecrets": {
-    "message": "Export secrets"
+    "message": "Eksporter hemmeligheter"
   },
   "fileFormat": {
     "message": "Filformat"
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotasjon av faktureringssynkroniserings-token vil gjøre den forrige token ugyldig."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Selvhosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/ne/messages.json b/apps/web/src/locales/ne/messages.json
index c67c7570a11..30be37fe071 100644
--- a/apps/web/src/locales/ne/messages.json
+++ b/apps/web/src/locales/ne/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Warning"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/nl/messages.json b/apps/web/src/locales/nl/messages.json
index 70a171bf756..fac7616a090 100644
--- a/apps/web/src/locales/nl/messages.json
+++ b/apps/web/src/locales/nl/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Uitgelogd"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Je inlogsessie is verlopen."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "UUID kopiëren"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Waarschuwing"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Het roteren van het factureringssynchronisatietoken maakt het vorige token ongeldig."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Zelfgehost"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "Alle inlogverzoeken goedgekeurd"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/nn/messages.json b/apps/web/src/locales/nn/messages.json
index b9231eac28a..bc3bd862ed5 100644
--- a/apps/web/src/locales/nn/messages.json
+++ b/apps/web/src/locales/nn/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Åtvaring"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/or/messages.json b/apps/web/src/locales/or/messages.json
index 99c15045cc9..b34ccbb9013 100644
--- a/apps/web/src/locales/or/messages.json
+++ b/apps/web/src/locales/or/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Warning"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/pl/messages.json b/apps/web/src/locales/pl/messages.json
index 1cd176861cf..be31574e754 100644
--- a/apps/web/src/locales/pl/messages.json
+++ b/apps/web/src/locales/pl/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Wylogowano"
   },
+  "loggedOutDesc": {
+    "message": "Zostałeś wylogowany z konta."
+  },
   "loginExpired": {
     "message": "Twoja sesja wygasła."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Skopiuj UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Błąd podczas odświeżania tokenu"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Nie znaleziono tokenu odświeżającego ani kluczy API. Spróbuj wylogować się i zalogować ponownie."
+  },
   "warning": {
     "message": "Ostrzeżenie"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Wymiana tokenu synchronizacji płatności spowoduje unieważnienie poprzedniego tokenu."
   },
+  "selfHostedServer": {
+    "message": "samodzielnie hostowany"
+  },
+  "customEnvironment": {
+    "message": "Niestandardowe środowisko"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Określ bazowy adres URL swojej instalacji Bitwarden. Przykład: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Dla zaawansowanych konfiguracji możesz określić podstawowy adres URL niezależnie dla każdej usługi."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Musisz dodać podstawowy adres URL serwera lub co najmniej jedno niestandardowe środowisko."
+  },
+  "apiUrl": {
+    "message": "Adres URL serwera API"
+  },
+  "webVaultUrl": {
+    "message": "Adres URL serwera sejfu internetowego"
+  },
+  "identityUrl": {
+    "message": "Adres URL serwera tożsamości"
+  },
+  "notificationsUrl": {
+    "message": "Adres URL serwera powiadomień"
+  },
+  "iconsUrl": {
+    "message": "Adres URL serwera ikon"
+  },
+  "environmentSaved": {
+    "message": "Adresy URL środowiska zostały zapisane"
+  },
   "selfHostingTitle": {
     "message": "Samodzielnie hostowany"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "Wszystkie prośby o logowanie zatwierdzone"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Zaktualizowane informacje podatkowe"
+  },
+  "unverified": {
+    "message": "Niezweryfikowane"
+  },
+  "verified": {
+    "message": "Zweryfikowane"
   }
 }
diff --git a/apps/web/src/locales/pt_BR/messages.json b/apps/web/src/locales/pt_BR/messages.json
index b7a248ff691..81f0fab1496 100644
--- a/apps/web/src/locales/pt_BR/messages.json
+++ b/apps/web/src/locales/pt_BR/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Sessão encerrada"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "A sua sessão expirou."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copiar URL"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Aviso"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Renovar o Token de Sincronização de Cobrança invalidará o token anterior."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Auto-hospedado"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/pt_PT/messages.json b/apps/web/src/locales/pt_PT/messages.json
index 30d8dad0ca6..617e7e67af1 100644
--- a/apps/web/src/locales/pt_PT/messages.json
+++ b/apps/web/src/locales/pt_PT/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Sessão terminada"
   },
+  "loggedOutDesc": {
+    "message": "Foi terminada a sessão da sua conta."
+  },
   "loginExpired": {
     "message": "A sua sessão expirou."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copiar UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Erro no acesso ao token de atualização"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Não foi encontrado nenhum token de atualização ou chaves API. Por favor, tente terminar a sessão e voltar a iniciá-la."
+  },
   "warning": {
     "message": "Aviso"
   },
@@ -2376,7 +2385,7 @@
     "message": "Para criar uma organização alojada no local, é necessário carregar um ficheiro de licença válido."
   },
   "accountEmailMustBeVerified": {
-    "message": "O endereço de e-mail da sua conta deve ser verificado."
+    "message": "O endereço de e-mail da sua conta precisa de ser verificado."
   },
   "newOrganizationDesc": {
     "message": "As organizações permitem-lhe partilhar partes do seu cofre com outras pessoas, bem como gerir utilizadores relacionados para uma entidade específica, como uma família, uma pequena equipa ou uma grande empresa."
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Regenerar o token de sincronização de faturação invalidará o token anterior."
   },
+  "selfHostedServer": {
+    "message": "auto-hospedado"
+  },
+  "customEnvironment": {
+    "message": "Ambiente personalizado"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Especifique o URL de base da sua instalação Bitwarden hospedada no local. Exemplo: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Para uma configuração avançada, pode especificar o URL de base de cada serviço de forma independente."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Deve adicionar o URL do servidor de base ou pelo menos um ambiente personalizado."
+  },
+  "apiUrl": {
+    "message": "URL do servidor da API"
+  },
+  "webVaultUrl": {
+    "message": "URL do servidor do cofre Web"
+  },
+  "identityUrl": {
+    "message": "URL do servidor de identidade"
+  },
+  "notificationsUrl": {
+    "message": "URL do servidor de notificações"
+  },
+  "iconsUrl": {
+    "message": "URL do servidor de ícones"
+  },
+  "environmentSaved": {
+    "message": "URLs de ambiente guardados"
+  },
   "selfHostingTitle": {
     "message": "Auto-hospedagem"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "Todos os pedidos de início de sessão aprovados"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Informações fiscais atualizadas"
+  },
+  "unverified": {
+    "message": "Não verificado"
+  },
+  "verified": {
+    "message": "Verificado"
   }
 }
diff --git a/apps/web/src/locales/ro/messages.json b/apps/web/src/locales/ro/messages.json
index 50b7329f760..d0c7e7a0f77 100644
--- a/apps/web/src/locales/ro/messages.json
+++ b/apps/web/src/locales/ro/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Deconectat"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Sesiunea de autentificare a expirat."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Avertisment"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Revocarea tokenului de sincronizare a facturării va invalida tokenul anterior."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Auto-găzduire"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/ru/messages.json b/apps/web/src/locales/ru/messages.json
index c331541cfd9..51275705380 100644
--- a/apps/web/src/locales/ru/messages.json
+++ b/apps/web/src/locales/ru/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Вы вышли из хранилища"
   },
+  "loggedOutDesc": {
+    "message": "Вы вышли из своего аккаунта."
+  },
   "loginExpired": {
     "message": "Истек срок действия вашей сессии."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Скопировать UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Ошибка обновления токена доступа"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Не найдены токен обновления или ключи API. Пожалуйста, попробуйте выполнить выход и повторно авторизоваться."
+  },
   "warning": {
     "message": "Предупреждение"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Смена токена синхронизации биллинга сделает предыдущий токен недействительным."
   },
+  "selfHostedServer": {
+    "message": "собственный хостинг"
+  },
+  "customEnvironment": {
+    "message": "Пользовательское окружение"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Укажите базовый URL вашего локального хостинга Bitwarden. Пример: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Для продвинутой конфигурации можно указать базовый URL каждой службы отдельно."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Вы должны добавить либо базовый URL сервера, либо хотя бы одно пользовательское окружение."
+  },
+  "apiUrl": {
+    "message": "URL API сервера"
+  },
+  "webVaultUrl": {
+    "message": "URL сервера веб-хранилища"
+  },
+  "identityUrl": {
+    "message": "URL сервера идентификации"
+  },
+  "notificationsUrl": {
+    "message": "URL сервера уведомлений"
+  },
+  "iconsUrl": {
+    "message": "URL сервера значков"
+  },
+  "environmentSaved": {
+    "message": "URL окружения сохранены"
+  },
   "selfHostingTitle": {
     "message": "Собственное размещение"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "Все запросы на вход одобрены"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Обновление сведений о налогах"
+  },
+  "unverified": {
+    "message": "Неверифицирован"
+  },
+  "verified": {
+    "message": "Верифицирован"
   }
 }
diff --git a/apps/web/src/locales/si/messages.json b/apps/web/src/locales/si/messages.json
index 2e9b80899c1..e0cd81be1b1 100644
--- a/apps/web/src/locales/si/messages.json
+++ b/apps/web/src/locales/si/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "අවවාදයයි"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/sk/messages.json b/apps/web/src/locales/sk/messages.json
index 73f52e77637..1bf83692b6b 100644
--- a/apps/web/src/locales/sk/messages.json
+++ b/apps/web/src/locales/sk/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Odhlásený"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Platnosť prihlásenia vypršala."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Upozornenie"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Vlastný hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "Všetky žiadosti o prihlásenie schválené"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Aktualizované daňové informácie"
+  },
+  "unverified": {
+    "message": "Neoverený"
+  },
+  "verified": {
+    "message": "Overený"
   }
 }
diff --git a/apps/web/src/locales/sl/messages.json b/apps/web/src/locales/sl/messages.json
index 56f6a14c394..a14b2beb117 100644
--- a/apps/web/src/locales/sl/messages.json
+++ b/apps/web/src/locales/sl/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Odjavljen"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Vaša seja je potekla."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Opozorilo"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/sr/messages.json b/apps/web/src/locales/sr/messages.json
index be4ceddfe97..d120e1bb4b8 100644
--- a/apps/web/src/locales/sr/messages.json
+++ b/apps/web/src/locales/sr/messages.json
@@ -582,11 +582,14 @@
     "message": "Ниво приступа"
   },
   "accessing": {
-    "message": "Accessing"
+    "message": "Приступ"
   },
   "loggedOut": {
     "message": "Одјављено"
   },
+  "loggedOutDesc": {
+    "message": "Одјављени сте са свог налога."
+  },
   "loginExpired": {
     "message": "Ваша сесија је истекла."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Копирај UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Грешка при освежавању токена приступа"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Није пронађен токен за освежавање или АПИ кључеви. Покушајте да се одјавите и поново пријавите."
+  },
   "warning": {
     "message": "Упозорење"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "личан хостинг"
+  },
+  "customEnvironment": {
+    "message": "Прилагођено окружење"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Наведите основну УРЛ адресу вашег локалног хостовања Bitwarden-а. Пример: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "За напредну конфигурацију, можете навести основну УРЛ адресу сваке услуге независно."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Морате додати или основни УРЛ сервера или бар једно прилагођено окружење."
+  },
+  "apiUrl": {
+    "message": "УРЛ АПИ Сервера"
+  },
+  "webVaultUrl": {
+    "message": "УРЛ сервера Сефа"
+  },
+  "identityUrl": {
+    "message": "УРЛ сервера идентитета"
+  },
+  "notificationsUrl": {
+    "message": "УРЛ сервера обавештења"
+  },
+  "iconsUrl": {
+    "message": "УРЛ сервера иконица"
+  },
+  "environmentSaved": {
+    "message": "УРЛ адресе окружења су сачуване"
+  },
   "selfHostingTitle": {
     "message": "Ауто-хстинг"
   },
@@ -8293,9 +8335,24 @@
     "message": "Будите испред безбедносних пропуста надоградњом на плаћени план за побољшано праћење."
   },
   "approveAllRequests": {
-    "message": "Approve all requests"
+    "message": "Одобри све захтеве"
   },
   "allLoginRequestsApproved": {
-    "message": "All login requests approved"
+    "message": "Сви захтеви за пријаву су одобрени"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Ажуриране пореске информације"
+  },
+  "unverified": {
+    "message": "Непроверено"
+  },
+  "verified": {
+    "message": "Проверено"
   }
 }
diff --git a/apps/web/src/locales/sr_CS/messages.json b/apps/web/src/locales/sr_CS/messages.json
index 12dd9c91e8c..c7148218b3b 100644
--- a/apps/web/src/locales/sr_CS/messages.json
+++ b/apps/web/src/locales/sr_CS/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Odjavljeni ste"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Vaša sesija je istekla."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Upozorenje"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/sv/messages.json b/apps/web/src/locales/sv/messages.json
index 16d838f3ccf..84db5a570ca 100644
--- a/apps/web/src/locales/sv/messages.json
+++ b/apps/web/src/locales/sv/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Utloggad"
   },
+  "loggedOutDesc": {
+    "message": "Du har blivit utloggad från ditt konto."
+  },
   "loginExpired": {
     "message": "Din inloggningssession har upphört."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Kopiera UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Varning"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/te/messages.json b/apps/web/src/locales/te/messages.json
index 99c15045cc9..b34ccbb9013 100644
--- a/apps/web/src/locales/te/messages.json
+++ b/apps/web/src/locales/te/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Warning"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/th/messages.json b/apps/web/src/locales/th/messages.json
index ed1fb050472..2f6fcd82645 100644
--- a/apps/web/src/locales/th/messages.json
+++ b/apps/web/src/locales/th/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "ออกจากระบบ"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "เซสชันของคุณหมดอายุแล้ว"
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "คำเตือน"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/tr/messages.json b/apps/web/src/locales/tr/messages.json
index 4c7862da277..32dcc5f14e1 100644
--- a/apps/web/src/locales/tr/messages.json
+++ b/apps/web/src/locales/tr/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Çıkış yapıldı"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Oturumunuz zaman aşımına uğradı."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "UUID'yi kopyala"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Uyarı"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Faturalandırma Senkronizasyonu Anahtarını yenilemek, önceki anahtarı geçersiz kılar."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Barındırılan"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/uk/messages.json b/apps/web/src/locales/uk/messages.json
index a937da85ee8..0bbd19b8b80 100644
--- a/apps/web/src/locales/uk/messages.json
+++ b/apps/web/src/locales/uk/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Ви вийшли"
   },
+  "loggedOutDesc": {
+    "message": "Ви вийшли з облікового запису."
+  },
   "loginExpired": {
     "message": "Тривалість вашого сеансу завершилась."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Копіювати UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Помилка оновлення токена доступу"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Не знайдено токен оновлення або ключі API. Спробуйте вийти, а потім увійти знову."
+  },
   "warning": {
     "message": "Попередження"
   },
@@ -2373,7 +2382,7 @@
     "message": "Щоб оновити обліковий запис до Premium, вам необхідно вивантажити дійсний файл ліцензії."
   },
   "uploadLicenseFileOrg": {
-    "message": "Для створення організації з локальним хостингом вам необхідно вивантажити дійсний файл ліцензії."
+    "message": "Щоб створити організацію, розміщену на локальному хостингу, вам необхідно вивантажити дійсний файл ліцензії."
   },
   "accountEmailMustBeVerified": {
     "message": "Необхідно підтвердити адресу електронної пошти вашого облікового запису."
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Оновлення токена платіжної синхронізації призведе до скасування попереднього токена."
   },
+  "selfHostedServer": {
+    "message": "власне розміщення"
+  },
+  "customEnvironment": {
+    "message": "Власне середовище"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Вкажіть основну URL-адресу вашого локально розміщеного встановлення Bitwarden. Зразок: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Для розширеної конфігурації ви можете вказати основну URL-адресу окремо для кожної служби."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Необхідно додати URL-адресу основного сервера, або принаймні одне користувацьке середовище."
+  },
+  "apiUrl": {
+    "message": "URL-адреса сервера API"
+  },
+  "webVaultUrl": {
+    "message": "URL-адреса сервера веб сховища"
+  },
+  "identityUrl": {
+    "message": "URL-адреса сервера ідентифікації"
+  },
+  "notificationsUrl": {
+    "message": "URL-адреса сервера сповіщень"
+  },
+  "iconsUrl": {
+    "message": "URL-адреса сервера піктограм"
+  },
+  "environmentSaved": {
+    "message": "URL-адреси середовища збережено"
+  },
   "selfHostingTitle": {
     "message": "Власне розміщення"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "Усі запити на вхід схвалено"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Податкову інформацію оновлено"
+  },
+  "unverified": {
+    "message": "Не перевірений"
+  },
+  "verified": {
+    "message": "Перевірений"
   }
 }
diff --git a/apps/web/src/locales/vi/messages.json b/apps/web/src/locales/vi/messages.json
index 55a34e2f2ab..47d69033e0d 100644
--- a/apps/web/src/locales/vi/messages.json
+++ b/apps/web/src/locales/vi/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "Đã đăng xuất"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Phiên đăng nhập của bạn đã hết hạn."
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "Copy UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "Cảnh báo"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "Rotating the billing sync token will invalidate the previous token."
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "Self-hosting"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }
diff --git a/apps/web/src/locales/zh_CN/messages.json b/apps/web/src/locales/zh_CN/messages.json
index 652a1f3d671..535c2abb7f3 100644
--- a/apps/web/src/locales/zh_CN/messages.json
+++ b/apps/web/src/locales/zh_CN/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "已注销"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "您的登录会话已过期。"
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "复制 UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "警告"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "轮换计费同步令牌将使之前的令牌失效。"
   },
+  "selfHostedServer": {
+    "message": "自托管"
+  },
+  "customEnvironment": {
+    "message": "自定义环境"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API 服务器 URL"
+  },
+  "webVaultUrl": {
+    "message": "网页密码库服务器 URL"
+  },
+  "identityUrl": {
+    "message": "身份服务器 URL"
+  },
+  "notificationsUrl": {
+    "message": "通知服务器 URL"
+  },
+  "iconsUrl": {
+    "message": "图标服务器 URL"
+  },
+  "environmentSaved": {
+    "message": "环境 URL 已保存"
+  },
   "selfHostingTitle": {
     "message": "自托管"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "所有登录请求已批准"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "未验证"
+  },
+  "verified": {
+    "message": "已验证"
   }
 }
diff --git a/apps/web/src/locales/zh_TW/messages.json b/apps/web/src/locales/zh_TW/messages.json
index b4abbc7f3e2..e8413ed6fac 100644
--- a/apps/web/src/locales/zh_TW/messages.json
+++ b/apps/web/src/locales/zh_TW/messages.json
@@ -587,6 +587,9 @@
   "loggedOut": {
     "message": "已登出"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "您的登入工作階段已逾期。"
   },
@@ -1050,6 +1053,12 @@
   "copyUuid": {
     "message": "複製 UUID"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "warning": {
     "message": "警告"
   },
@@ -5586,6 +5595,39 @@
   "rotateBillingSyncTokenTitle": {
     "message": "輪換「計費同步權杖」會導致之前的權杖失效。"
   },
+  "selfHostedServer": {
+    "message": "self-hosted"
+  },
+  "customEnvironment": {
+    "message": "Custom environment"
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
+  "apiUrl": {
+    "message": "API server URL"
+  },
+  "webVaultUrl": {
+    "message": "Web vault server URL"
+  },
+  "identityUrl": {
+    "message": "Identity server URL"
+  },
+  "notificationsUrl": {
+    "message": "Notifications server URL"
+  },
+  "iconsUrl": {
+    "message": "Icons server URL"
+  },
+  "environmentSaved": {
+    "message": "Environment URLs saved"
+  },
   "selfHostingTitle": {
     "message": "自我裝載"
   },
@@ -8297,5 +8339,20 @@
   },
   "allLoginRequestsApproved": {
     "message": "All login requests approved"
+  },
+  "payPal": {
+    "message": "PayPal"
+  },
+  "bitcoin": {
+    "message": "Bitcoin"
+  },
+  "updatedTaxInformation": {
+    "message": "Updated tax information"
+  },
+  "unverified": {
+    "message": "Unverified"
+  },
+  "verified": {
+    "message": "Verified"
   }
 }

From 96d4312b8291e1b71c1080f7f8ce16bb35fc1cbd Mon Sep 17 00:00:00 2001
From: Matt Gibson <mgibson@bitwarden.com>
Date: Fri, 7 Jun 2024 03:33:26 -0400
Subject: [PATCH 131/138] Require lifetime specification of user-scoped data
 (#8669)

* Require lifetime specification of user-scoped data

* Decouple tests for different classes

This coupling assumed constant interfaces with classes that isn't a guarantee and requires significant acrobatics to make types work, now that key definitions are not a consistent base.

* Fix types
---
 libs/common/spec/fake-state-provider.ts       |  90 ++++------
 .../default-active-user-state.provider.ts     |   9 +-
 .../default-single-user-state.provider.ts     |  11 +-
 .../default-state.provider.spec.ts            |  57 +++++--
 .../implementations/default-state.provider.ts |  22 +--
 .../specific-state.provider.spec.ts           | 157 +++++++++++-------
 .../src/platform/state/state.provider.ts      |  82 +--------
 .../src/platform/state/user-key-definition.ts |  25 +--
 .../src/platform/state/user-state.provider.ts |  28 ----
 9 files changed, 185 insertions(+), 296 deletions(-)

diff --git a/libs/common/spec/fake-state-provider.ts b/libs/common/spec/fake-state-provider.ts
index 2078fe3abde..cd868931f20 100644
--- a/libs/common/spec/fake-state-provider.ts
+++ b/libs/common/spec/fake-state-provider.ts
@@ -15,8 +15,6 @@ import {
   DerivedStateProvider,
   UserKeyDefinition,
 } from "../src/platform/state";
-// eslint-disable-next-line import/no-restricted-paths -- Needed to type check similarly to the real state providers
-import { isUserKeyDefinition } from "../src/platform/state/user-key-definition";
 import { UserId } from "../src/types/guid";
 import { DerivedStateDependencies } from "../src/types/state";
 
@@ -71,37 +69,28 @@ export class FakeSingleUserStateProvider implements SingleUserStateProvider {
   mock = mock<SingleUserStateProvider>();
   establishedMocks: Map<string, FakeSingleUserState<unknown>> = new Map();
   states: Map<string, SingleUserState<unknown>> = new Map();
-  get<T>(
-    userId: UserId,
-    keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>,
-  ): SingleUserState<T> {
-    this.mock.get(userId, keyDefinition);
-    if (keyDefinition instanceof KeyDefinition) {
-      keyDefinition = UserKeyDefinition.fromBaseKeyDefinition(keyDefinition);
-    }
-    const cacheKey = `${keyDefinition.fullName}_${keyDefinition.stateDefinition.defaultStorageLocation}_${userId}`;
+  get<T>(userId: UserId, userKeyDefinition: UserKeyDefinition<T>): SingleUserState<T> {
+    this.mock.get(userId, userKeyDefinition);
+    const cacheKey = `${userKeyDefinition.fullName}_${userKeyDefinition.stateDefinition.defaultStorageLocation}_${userId}`;
     let result = this.states.get(cacheKey);
 
     if (result == null) {
       let fake: FakeSingleUserState<T>;
       // Look for established mock
-      if (this.establishedMocks.has(keyDefinition.key)) {
-        fake = this.establishedMocks.get(keyDefinition.key) as FakeSingleUserState<T>;
+      if (this.establishedMocks.has(userKeyDefinition.key)) {
+        fake = this.establishedMocks.get(userKeyDefinition.key) as FakeSingleUserState<T>;
       } else {
         fake = new FakeSingleUserState<T>(userId);
       }
-      fake.keyDefinition = keyDefinition;
+      fake.keyDefinition = userKeyDefinition;
       result = fake;
       this.states.set(cacheKey, result);
     }
     return result as SingleUserState<T>;
   }
 
-  getFake<T>(
-    userId: UserId,
-    keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>,
-  ): FakeSingleUserState<T> {
-    return this.get(userId, keyDefinition) as FakeSingleUserState<T>;
+  getFake<T>(userId: UserId, userKeyDefinition: UserKeyDefinition<T>): FakeSingleUserState<T> {
+    return this.get(userId, userKeyDefinition) as FakeSingleUserState<T>;
   }
 
   mockFor<T>(userId: UserId, keyDefinitionKey: string, initialValue?: T): FakeSingleUserState<T> {
@@ -122,28 +111,25 @@ export class FakeActiveUserStateProvider implements ActiveUserStateProvider {
     this.activeUserId$ = accountService.activeAccountSubject.asObservable().pipe(map((a) => a?.id));
   }
 
-  get<T>(keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>): ActiveUserState<T> {
-    if (keyDefinition instanceof KeyDefinition) {
-      keyDefinition = UserKeyDefinition.fromBaseKeyDefinition(keyDefinition);
-    }
-    const cacheKey = `${keyDefinition.fullName}_${keyDefinition.stateDefinition.defaultStorageLocation}`;
+  get<T>(userKeyDefinition: UserKeyDefinition<T>): ActiveUserState<T> {
+    const cacheKey = `${userKeyDefinition.fullName}_${userKeyDefinition.stateDefinition.defaultStorageLocation}`;
     let result = this.states.get(cacheKey);
 
     if (result == null) {
       // Look for established mock
-      if (this.establishedMocks.has(keyDefinition.key)) {
-        result = this.establishedMocks.get(keyDefinition.key);
+      if (this.establishedMocks.has(userKeyDefinition.key)) {
+        result = this.establishedMocks.get(userKeyDefinition.key);
       } else {
         result = new FakeActiveUserState<T>(this.accountService);
       }
-      result.keyDefinition = keyDefinition;
+      result.keyDefinition = userKeyDefinition;
       this.states.set(cacheKey, result);
     }
     return result as ActiveUserState<T>;
   }
 
-  getFake<T>(keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>): FakeActiveUserState<T> {
-    return this.get(keyDefinition) as FakeActiveUserState<T>;
+  getFake<T>(userKeyDefinition: UserKeyDefinition<T>): FakeActiveUserState<T> {
+    return this.get(userKeyDefinition) as FakeActiveUserState<T>;
   }
 
   mockFor<T>(keyDefinitionKey: string, initialValue?: T): FakeActiveUserState<T> {
@@ -159,70 +145,56 @@ export class FakeActiveUserStateProvider implements ActiveUserStateProvider {
 
 export class FakeStateProvider implements StateProvider {
   mock = mock<StateProvider>();
-  getUserState$<T>(
-    keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>,
-    userId?: UserId,
-  ): Observable<T> {
-    if (isUserKeyDefinition(keyDefinition)) {
-      this.mock.getUserState$(keyDefinition, userId);
-    } else {
-      this.mock.getUserState$(keyDefinition, userId);
-    }
+  getUserState$<T>(userKeyDefinition: UserKeyDefinition<T>, userId?: UserId): Observable<T> {
+    this.mock.getUserState$(userKeyDefinition, userId);
     if (userId) {
-      return this.getUser<T>(userId, keyDefinition).state$;
+      return this.getUser<T>(userId, userKeyDefinition).state$;
     }
 
-    return this.getActive(keyDefinition).state$;
+    return this.getActive(userKeyDefinition).state$;
   }
 
   getUserStateOrDefault$<T>(
-    keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>,
+    userKeyDefinition: UserKeyDefinition<T>,
     config: { userId: UserId | undefined; defaultValue?: T },
   ): Observable<T> {
     const { userId, defaultValue = null } = config;
-    if (isUserKeyDefinition(keyDefinition)) {
-      this.mock.getUserStateOrDefault$(keyDefinition, config);
-    } else {
-      this.mock.getUserStateOrDefault$(keyDefinition, config);
-    }
+    this.mock.getUserStateOrDefault$(userKeyDefinition, config);
     if (userId) {
-      return this.getUser<T>(userId, keyDefinition).state$;
+      return this.getUser<T>(userId, userKeyDefinition).state$;
     }
 
     return this.activeUserId$.pipe(
       take(1),
       switchMap((userId) =>
-        userId != null ? this.getUser(userId, keyDefinition).state$ : of(defaultValue),
+        userId != null ? this.getUser(userId, userKeyDefinition).state$ : of(defaultValue),
       ),
     );
   }
 
   async setUserState<T>(
-    keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>,
+    userKeyDefinition: UserKeyDefinition<T>,
     value: T,
     userId?: UserId,
   ): Promise<[UserId, T]> {
-    await this.mock.setUserState(keyDefinition, value, userId);
+    await this.mock.setUserState(userKeyDefinition, value, userId);
     if (userId) {
-      return [userId, await this.getUser(userId, keyDefinition).update(() => value)];
+      return [userId, await this.getUser(userId, userKeyDefinition).update(() => value)];
     } else {
-      return await this.getActive(keyDefinition).update(() => value);
+      return await this.getActive(userKeyDefinition).update(() => value);
     }
   }
 
-  getActive<T>(keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>): ActiveUserState<T> {
-    return this.activeUser.get(keyDefinition);
+  getActive<T>(userKeyDefinition: UserKeyDefinition<T>): ActiveUserState<T> {
+    return this.activeUser.get(userKeyDefinition);
   }
 
   getGlobal<T>(keyDefinition: KeyDefinition<T>): GlobalState<T> {
     return this.global.get(keyDefinition);
   }
 
-  getUser<T>(
-    userId: UserId,
-    keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>,
-  ): SingleUserState<T> {
-    return this.singleUser.get(userId, keyDefinition);
+  getUser<T>(userId: UserId, userKeyDefinition: UserKeyDefinition<T>): SingleUserState<T> {
+    return this.singleUser.get(userId, userKeyDefinition);
   }
 
   getDerived<TFrom, TTo, TDeps extends DerivedStateDependencies>(
diff --git a/libs/common/src/platform/state/implementations/default-active-user-state.provider.ts b/libs/common/src/platform/state/implementations/default-active-user-state.provider.ts
index 3c12477b798..9c81c69d152 100644
--- a/libs/common/src/platform/state/implementations/default-active-user-state.provider.ts
+++ b/libs/common/src/platform/state/implementations/default-active-user-state.provider.ts
@@ -2,8 +2,7 @@ import { Observable, distinctUntilChanged, map } from "rxjs";
 
 import { AccountService } from "../../../auth/abstractions/account.service";
 import { UserId } from "../../../types/guid";
-import { KeyDefinition } from "../key-definition";
-import { UserKeyDefinition, isUserKeyDefinition } from "../user-key-definition";
+import { UserKeyDefinition } from "../user-key-definition";
 import { ActiveUserState } from "../user-state";
 import { ActiveUserStateProvider, SingleUserStateProvider } from "../user-state.provider";
 
@@ -23,11 +22,7 @@ export class DefaultActiveUserStateProvider implements ActiveUserStateProvider {
     );
   }
 
-  get<T>(keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>): ActiveUserState<T> {
-    if (!isUserKeyDefinition(keyDefinition)) {
-      keyDefinition = UserKeyDefinition.fromBaseKeyDefinition(keyDefinition);
-    }
-
+  get<T>(keyDefinition: UserKeyDefinition<T>): ActiveUserState<T> {
     // All other providers cache the creation of their corresponding `State` objects, this instance
     // doesn't need to do that since it calls `SingleUserStateProvider` it will go through their caching
     // layer, because of that, the creation of this instance is quite simple and not worth caching.
diff --git a/libs/common/src/platform/state/implementations/default-single-user-state.provider.ts b/libs/common/src/platform/state/implementations/default-single-user-state.provider.ts
index 9c01c2a76ed..a913bb02bdc 100644
--- a/libs/common/src/platform/state/implementations/default-single-user-state.provider.ts
+++ b/libs/common/src/platform/state/implementations/default-single-user-state.provider.ts
@@ -1,8 +1,7 @@
 import { UserId } from "../../../types/guid";
 import { StorageServiceProvider } from "../../services/storage-service.provider";
-import { KeyDefinition } from "../key-definition";
 import { StateEventRegistrarService } from "../state-event-registrar.service";
-import { UserKeyDefinition, isUserKeyDefinition } from "../user-key-definition";
+import { UserKeyDefinition } from "../user-key-definition";
 import { SingleUserState } from "../user-state";
 import { SingleUserStateProvider } from "../user-state.provider";
 
@@ -16,13 +15,7 @@ export class DefaultSingleUserStateProvider implements SingleUserStateProvider {
     private readonly stateEventRegistrarService: StateEventRegistrarService,
   ) {}
 
-  get<T>(
-    userId: UserId,
-    keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>,
-  ): SingleUserState<T> {
-    if (!isUserKeyDefinition(keyDefinition)) {
-      keyDefinition = UserKeyDefinition.fromBaseKeyDefinition(keyDefinition);
-    }
+  get<T>(userId: UserId, keyDefinition: UserKeyDefinition<T>): SingleUserState<T> {
     const [location, storageService] = this.storageServiceProvider.get(
       keyDefinition.stateDefinition.defaultStorageLocation,
       keyDefinition.stateDefinition.storageLocationOverrides,
diff --git a/libs/common/src/platform/state/implementations/default-state.provider.spec.ts b/libs/common/src/platform/state/implementations/default-state.provider.spec.ts
index 98d423cf484..5b8b2d1bfeb 100644
--- a/libs/common/src/platform/state/implementations/default-state.provider.spec.ts
+++ b/libs/common/src/platform/state/implementations/default-state.provider.spec.ts
@@ -17,6 +17,7 @@ import { UserId } from "../../../types/guid";
 import { DeriveDefinition } from "../derive-definition";
 import { KeyDefinition } from "../key-definition";
 import { StateDefinition } from "../state-definition";
+import { UserKeyDefinition } from "../user-key-definition";
 
 import { DefaultStateProvider } from "./default-state.provider";
 
@@ -52,12 +53,12 @@ describe("DefaultStateProvider", () => {
   describe.each([
     [
       "getUserState$",
-      (keyDefinition: KeyDefinition<string>, userId?: UserId) =>
+      (keyDefinition: UserKeyDefinition<string>, userId?: UserId) =>
         sut.getUserState$(keyDefinition, userId),
     ],
     [
       "getUserStateOrDefault$",
-      (keyDefinition: KeyDefinition<string>, userId?: UserId) =>
+      (keyDefinition: UserKeyDefinition<string>, userId?: UserId) =>
         sut.getUserStateOrDefault$(keyDefinition, { userId: userId }),
     ],
   ])(
@@ -65,7 +66,7 @@ describe("DefaultStateProvider", () => {
     (
       _testName: string,
       methodUnderTest: (
-        keyDefinition: KeyDefinition<string>,
+        keyDefinition: UserKeyDefinition<string>,
         userId?: UserId,
       ) => Observable<string>,
     ) => {
@@ -75,9 +76,14 @@ describe("DefaultStateProvider", () => {
         name: "name",
         status: AuthenticationStatus.LoggedOut,
       };
-      const keyDefinition = new KeyDefinition<string>(new StateDefinition("test", "disk"), "test", {
-        deserializer: (s) => s,
-      });
+      const keyDefinition = new UserKeyDefinition<string>(
+        new StateDefinition("test", "disk"),
+        "test",
+        {
+          deserializer: (s) => s,
+          clearOn: [],
+        },
+      );
 
       it("should follow the specified user if userId is provided", async () => {
         const state = singleUserStateProvider.getFake(userId, keyDefinition);
@@ -125,9 +131,14 @@ describe("DefaultStateProvider", () => {
       name: "name",
       status: AuthenticationStatus.LoggedOut,
     };
-    const keyDefinition = new KeyDefinition<string>(new StateDefinition("test", "disk"), "test", {
-      deserializer: (s) => s,
-    });
+    const keyDefinition = new UserKeyDefinition<string>(
+      new StateDefinition("test", "disk"),
+      "test",
+      {
+        deserializer: (s) => s,
+        clearOn: [],
+      },
+    );
 
     it("should not emit any values until a truthy user id is supplied", async () => {
       accountService.activeAccountSubject.next(null);
@@ -149,9 +160,14 @@ describe("DefaultStateProvider", () => {
   });
 
   describe("getUserStateOrDefault$", () => {
-    const keyDefinition = new KeyDefinition<string>(new StateDefinition("test", "disk"), "test", {
-      deserializer: (s) => s,
-    });
+    const keyDefinition = new UserKeyDefinition<string>(
+      new StateDefinition("test", "disk"),
+      "test",
+      {
+        deserializer: (s) => s,
+        clearOn: [],
+      },
+    );
 
     it("should emit default value if no userId supplied and first active user id emission in falsy", async () => {
       accountService.activeAccountSubject.next(null);
@@ -168,9 +184,14 @@ describe("DefaultStateProvider", () => {
   });
 
   describe("setUserState", () => {
-    const keyDefinition = new KeyDefinition<string>(new StateDefinition("test", "disk"), "test", {
-      deserializer: (s) => s,
-    });
+    const keyDefinition = new UserKeyDefinition<string>(
+      new StateDefinition("test", "disk"),
+      "test",
+      {
+        deserializer: (s) => s,
+        clearOn: [],
+      },
+    );
 
     it("should set the state for the active user if no userId is provided", async () => {
       const value = "value";
@@ -202,8 +223,9 @@ describe("DefaultStateProvider", () => {
   });
 
   it("should bind the activeUserStateProvider", () => {
-    const keyDefinition = new KeyDefinition(new StateDefinition("test", "disk"), "test", {
+    const keyDefinition = new UserKeyDefinition(new StateDefinition("test", "disk"), "test", {
       deserializer: () => null,
+      clearOn: [],
     });
     const existing = activeUserStateProvider.get(keyDefinition);
     const actual = sut.getActive(keyDefinition);
@@ -212,8 +234,9 @@ describe("DefaultStateProvider", () => {
 
   it("should bind the singleUserStateProvider", () => {
     const userId = "user" as UserId;
-    const keyDefinition = new KeyDefinition(new StateDefinition("test", "disk"), "test", {
+    const keyDefinition = new UserKeyDefinition(new StateDefinition("test", "disk"), "test", {
       deserializer: () => null,
+      clearOn: [],
     });
     const existing = singleUserStateProvider.get(userId, keyDefinition);
     const actual = sut.getUser(userId, keyDefinition);
diff --git a/libs/common/src/platform/state/implementations/default-state.provider.ts b/libs/common/src/platform/state/implementations/default-state.provider.ts
index 1413d26ce51..22aed80e8af 100644
--- a/libs/common/src/platform/state/implementations/default-state.provider.ts
+++ b/libs/common/src/platform/state/implementations/default-state.provider.ts
@@ -6,7 +6,6 @@ import { DeriveDefinition } from "../derive-definition";
 import { DerivedState } from "../derived-state";
 import { DerivedStateProvider } from "../derived-state.provider";
 import { GlobalStateProvider } from "../global-state.provider";
-import { KeyDefinition } from "../key-definition";
 import { StateProvider } from "../state.provider";
 import { UserKeyDefinition } from "../user-key-definition";
 import { ActiveUserStateProvider, SingleUserStateProvider } from "../user-state.provider";
@@ -22,47 +21,44 @@ export class DefaultStateProvider implements StateProvider {
     this.activeUserId$ = this.activeUserStateProvider.activeUserId$;
   }
 
-  getUserState$<T>(
-    keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>,
-    userId?: UserId,
-  ): Observable<T> {
+  getUserState$<T>(userKeyDefinition: UserKeyDefinition<T>, userId?: UserId): Observable<T> {
     if (userId) {
-      return this.getUser<T>(userId, keyDefinition).state$;
+      return this.getUser<T>(userId, userKeyDefinition).state$;
     } else {
       return this.activeUserId$.pipe(
         filter((userId) => userId != null), // Filter out null-ish user ids since we can't get state for a null user id
         take(1),
-        switchMap((userId) => this.getUser<T>(userId, keyDefinition).state$),
+        switchMap((userId) => this.getUser<T>(userId, userKeyDefinition).state$),
       );
     }
   }
 
   getUserStateOrDefault$<T>(
-    keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>,
+    userKeyDefinition: UserKeyDefinition<T>,
     config: { userId: UserId | undefined; defaultValue?: T },
   ): Observable<T> {
     const { userId, defaultValue = null } = config;
     if (userId) {
-      return this.getUser<T>(userId, keyDefinition).state$;
+      return this.getUser<T>(userId, userKeyDefinition).state$;
     } else {
       return this.activeUserId$.pipe(
         take(1),
         switchMap((userId) =>
-          userId != null ? this.getUser<T>(userId, keyDefinition).state$ : of(defaultValue),
+          userId != null ? this.getUser<T>(userId, userKeyDefinition).state$ : of(defaultValue),
         ),
       );
     }
   }
 
   async setUserState<T>(
-    keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>,
+    userKeyDefinition: UserKeyDefinition<T>,
     value: T,
     userId?: UserId,
   ): Promise<[UserId, T]> {
     if (userId) {
-      return [userId, await this.getUser<T>(userId, keyDefinition).update(() => value)];
+      return [userId, await this.getUser<T>(userId, userKeyDefinition).update(() => value)];
     } else {
-      return await this.getActive<T>(keyDefinition).update(() => value);
+      return await this.getActive<T>(userKeyDefinition).update(() => value);
     }
   }
 
diff --git a/libs/common/src/platform/state/implementations/specific-state.provider.spec.ts b/libs/common/src/platform/state/implementations/specific-state.provider.spec.ts
index da41908935b..94e9c9c3e26 100644
--- a/libs/common/src/platform/state/implementations/specific-state.provider.spec.ts
+++ b/libs/common/src/platform/state/implementations/specific-state.provider.spec.ts
@@ -7,6 +7,7 @@ import { StorageServiceProvider } from "../../services/storage-service.provider"
 import { KeyDefinition } from "../key-definition";
 import { StateDefinition } from "../state-definition";
 import { StateEventRegistrarService } from "../state-event-registrar.service";
+import { UserKeyDefinition } from "../user-key-definition";
 
 import { DefaultActiveUserState } from "./default-active-user-state";
 import { DefaultActiveUserStateProvider } from "./default-active-user-state.provider";
@@ -41,94 +42,132 @@ describe("Specific State Providers", () => {
   const fakeDiskStateDefinition = new StateDefinition("fake", "disk");
   const fakeAlternateDiskStateDefinition = new StateDefinition("fakeAlternate", "disk");
   const fakeMemoryStateDefinition = new StateDefinition("fake", "memory");
-
-  const fakeDiskKeyDefinition = new KeyDefinition<boolean>(fakeDiskStateDefinition, "fake", {
-    deserializer: (b) => b,
-  });
-  const fakeAlternateKeyDefinition = new KeyDefinition<boolean>(
-    fakeAlternateDiskStateDefinition,
-    "fake",
-    {
+  const makeKeyDefinition = (stateDefinition: StateDefinition, key: string) =>
+    new KeyDefinition<boolean>(stateDefinition, key, {
       deserializer: (b) => b,
-    },
-  );
-  const fakeMemoryKeyDefinition = new KeyDefinition<boolean>(fakeMemoryStateDefinition, "fake", {
-    deserializer: (b) => b,
-  });
-  const fakeDiskKeyDefinitionAlternate = new KeyDefinition<boolean>(
-    fakeDiskStateDefinition,
-    "fakeAlternate",
-    {
+    });
+  const makeUserKeyDefinition = (stateDefinition: StateDefinition, key: string) =>
+    new UserKeyDefinition<boolean>(stateDefinition, key, {
       deserializer: (b) => b,
+      clearOn: [],
+    });
+  const keyDefinitions = {
+    disk: {
+      keyDefinition: makeKeyDefinition(fakeDiskStateDefinition, "fake"),
+      userKeyDefinition: makeUserKeyDefinition(fakeDiskStateDefinition, "fake"),
+      altKeyDefinition: makeKeyDefinition(fakeDiskStateDefinition, "fakeAlternate"),
+      altUserKeyDefinition: makeUserKeyDefinition(fakeDiskStateDefinition, "fakeAlternate"),
     },
-  );
+    memory: {
+      keyDefinition: makeKeyDefinition(fakeMemoryStateDefinition, "fake"),
+      userKeyDefinition: makeUserKeyDefinition(fakeMemoryStateDefinition, "fake"),
+    },
+    alternateDisk: {
+      keyDefinition: makeKeyDefinition(fakeAlternateDiskStateDefinition, "fake"),
+      userKeyDefinition: makeUserKeyDefinition(fakeAlternateDiskStateDefinition, "fake"),
+    },
+  };
 
-  const globalAndSingle = [
-    {
-      getMethod: (keyDefinition: KeyDefinition<boolean>) => globalSut.get(keyDefinition),
-      expectedInstance: DefaultGlobalState,
-    },
-    {
-      // Use a static user id so that it has the same signature as the rest and then write special tests
-      // handling differing user id
-      getMethod: (keyDefinition: KeyDefinition<boolean>) => singleSut.get(fakeUser1, keyDefinition),
-      expectedInstance: DefaultSingleUserState,
-    },
-  ];
+  describe("active provider", () => {
+    it("returns a DefaultActiveUserState", () => {
+      const state = activeSut.get(keyDefinitions.disk.userKeyDefinition);
 
-  describe.each([
-    {
-      getMethod: (keyDefinition: KeyDefinition<boolean>) => activeSut.get(keyDefinition),
-      expectedInstance: DefaultActiveUserState,
-    },
-    ...globalAndSingle,
-  ])("common behavior %s", ({ getMethod, expectedInstance }) => {
-    it("returns expected instance", () => {
-      const state = getMethod(fakeDiskKeyDefinition);
-
-      expect(state).toBeTruthy();
-      expect(state).toBeInstanceOf(expectedInstance);
+      expect(state).toBeInstanceOf(DefaultActiveUserState);
     });
 
     it("returns different instances when the storage location differs", () => {
-      const stateDisk = getMethod(fakeDiskKeyDefinition);
-      const stateMemory = getMethod(fakeMemoryKeyDefinition);
+      const stateDisk = activeSut.get(keyDefinitions.disk.userKeyDefinition);
+      const stateMemory = activeSut.get(keyDefinitions.memory.userKeyDefinition);
       expect(stateDisk).not.toStrictEqual(stateMemory);
     });
 
     it("returns different instances when the state name differs", () => {
-      const state = getMethod(fakeDiskKeyDefinition);
-      const stateAlt = getMethod(fakeAlternateKeyDefinition);
+      const state = activeSut.get(keyDefinitions.disk.userKeyDefinition);
+      const stateAlt = activeSut.get(keyDefinitions.alternateDisk.userKeyDefinition);
       expect(state).not.toStrictEqual(stateAlt);
     });
 
     it("returns different instances when the key differs", () => {
-      const state = getMethod(fakeDiskKeyDefinition);
-      const stateAlt = getMethod(fakeDiskKeyDefinitionAlternate);
+      const state = activeSut.get(keyDefinitions.disk.userKeyDefinition);
+      const stateAlt = activeSut.get(keyDefinitions.disk.altUserKeyDefinition);
       expect(state).not.toStrictEqual(stateAlt);
     });
   });
 
-  describe.each(globalAndSingle)("Global And Single Behavior", ({ getMethod }) => {
-    it("returns cached instance on repeated request", () => {
-      const stateFirst = getMethod(fakeDiskKeyDefinition);
-      const stateCached = getMethod(fakeDiskKeyDefinition);
-      expect(stateFirst).toStrictEqual(stateCached);
-    });
-  });
+  describe("single provider", () => {
+    it("returns a DefaultSingleUserState", () => {
+      const state = singleSut.get(fakeUser1, keyDefinitions.disk.userKeyDefinition);
+
+      expect(state).toBeInstanceOf(DefaultSingleUserState);
+    });
+
+    it("returns different instances when the storage location differs", () => {
+      const stateDisk = singleSut.get(fakeUser1, keyDefinitions.disk.userKeyDefinition);
+      const stateMemory = singleSut.get(fakeUser1, keyDefinitions.memory.userKeyDefinition);
+      expect(stateDisk).not.toStrictEqual(stateMemory);
+    });
+
+    it("returns different instances when the state name differs", () => {
+      const state = singleSut.get(fakeUser1, keyDefinitions.disk.userKeyDefinition);
+      const stateAlt = singleSut.get(fakeUser1, keyDefinitions.alternateDisk.userKeyDefinition);
+      expect(state).not.toStrictEqual(stateAlt);
+    });
+
+    it("returns different instances when the key differs", () => {
+      const state = singleSut.get(fakeUser1, keyDefinitions.disk.userKeyDefinition);
+      const stateAlt = singleSut.get(fakeUser1, keyDefinitions.disk.altUserKeyDefinition);
+      expect(state).not.toStrictEqual(stateAlt);
+    });
 
-  describe("DefaultSingleUserStateProvider only behavior", () => {
     const fakeUser2 = "00000000-0000-1000-a000-000000000002" as UserId;
 
     it("returns different instances when the user id differs", () => {
-      const user1State = singleSut.get(fakeUser1, fakeDiskKeyDefinition);
-      const user2State = singleSut.get(fakeUser2, fakeDiskKeyDefinition);
+      const user1State = singleSut.get(fakeUser1, keyDefinitions.disk.userKeyDefinition);
+      const user2State = singleSut.get(fakeUser2, keyDefinitions.disk.userKeyDefinition);
       expect(user1State).not.toStrictEqual(user2State);
     });
 
     it("returns an instance with the userId property corresponding to the user id passed in", () => {
-      const userState = singleSut.get(fakeUser1, fakeDiskKeyDefinition);
+      const userState = singleSut.get(fakeUser1, keyDefinitions.disk.userKeyDefinition);
       expect(userState.userId).toBe(fakeUser1);
     });
+
+    it("returns cached instance on repeated request", () => {
+      const stateFirst = singleSut.get(fakeUser1, keyDefinitions.disk.userKeyDefinition);
+      const stateCached = singleSut.get(fakeUser1, keyDefinitions.disk.userKeyDefinition);
+      expect(stateFirst).toStrictEqual(stateCached);
+    });
+  });
+
+  describe("global provider", () => {
+    it("returns a DefaultGlobalState", () => {
+      const state = globalSut.get(keyDefinitions.disk.keyDefinition);
+
+      expect(state).toBeInstanceOf(DefaultGlobalState);
+    });
+
+    it("returns different instances when the storage location differs", () => {
+      const stateDisk = globalSut.get(keyDefinitions.disk.keyDefinition);
+      const stateMemory = globalSut.get(keyDefinitions.memory.keyDefinition);
+      expect(stateDisk).not.toStrictEqual(stateMemory);
+    });
+
+    it("returns different instances when the state name differs", () => {
+      const state = globalSut.get(keyDefinitions.disk.keyDefinition);
+      const stateAlt = globalSut.get(keyDefinitions.alternateDisk.keyDefinition);
+      expect(state).not.toStrictEqual(stateAlt);
+    });
+
+    it("returns different instances when the key differs", () => {
+      const state = globalSut.get(keyDefinitions.disk.keyDefinition);
+      const stateAlt = globalSut.get(keyDefinitions.disk.altKeyDefinition);
+      expect(state).not.toStrictEqual(stateAlt);
+    });
+
+    it("returns cached instance on repeated request", () => {
+      const stateFirst = globalSut.get(keyDefinitions.disk.keyDefinition);
+      const stateCached = globalSut.get(keyDefinitions.disk.keyDefinition);
+      expect(stateFirst).toStrictEqual(stateCached);
+    });
   });
 });
diff --git a/libs/common/src/platform/state/state.provider.ts b/libs/common/src/platform/state/state.provider.ts
index a1e51552c73..44736500afc 100644
--- a/libs/common/src/platform/state/state.provider.ts
+++ b/libs/common/src/platform/state/state.provider.ts
@@ -21,22 +21,6 @@ export abstract class StateProvider {
   /** @see{@link ActiveUserStateProvider.activeUserId$} */
   abstract activeUserId$: Observable<UserId | undefined>;
 
-  /**
-   * Gets a state observable for a given key and userId.
-   *
-   * @remarks If userId is falsy the observable returned will attempt to point to the currently active user _and not update if the active user changes_.
-   * This is different to how `getActive` works and more similar to `getUser` for whatever user happens to be active at the time of the call.
-   * If no user happens to be active at the time this method is called with a falsy userId then this observable will not emit a value until
-   * a user becomes active. If you are not confident a user is active at the time this method is called, you may want to pipe a call to `timeout`
-   * or instead call {@link getUserStateOrDefault$} and supply a value you would rather have given in the case of no passed in userId and no active user.
-   *
-   * @note consider converting your {@link KeyDefinition} to a {@link UserKeyDefinition} for additional features.
-   *
-   * @param keyDefinition - The key definition for the state you want to get.
-   * @param userId - The userId for which you want the state for. If not provided, the state for the currently active user will be returned.
-   */
-  abstract getUserState$<T>(keyDefinition: KeyDefinition<T>, userId?: UserId): Observable<T>;
-
   /**
    * Gets a state observable for a given key and userId.
    *
@@ -51,23 +35,6 @@ export abstract class StateProvider {
    */
   abstract getUserState$<T>(keyDefinition: UserKeyDefinition<T>, userId?: UserId): Observable<T>;
 
-  /**
-   * Gets a state observable for a given key and userId
-   *
-   * @remarks If userId is falsy the observable return will first attempt to point to the currently active user but will not follow subsequent active user changes,
-   * if there is no immediately available active user, then it will fallback to returning a default value in an observable that immediately completes.
-   *
-   * @note consider converting your {@link KeyDefinition} to a {@link UserKeyDefinition} for additional features.
-   *
-   * @param keyDefinition - The key definition for the state you want to get.
-   * @param config.userId - The userId for which you want the state for. If not provided, the state for the currently active user will be returned.
-   * @param config.defaultValue - The default value that should be wrapped in an observable if no active user is immediately available and no truthy userId is passed in.
-   */
-  abstract getUserStateOrDefault$<T>(
-    keyDefinition: KeyDefinition<T>,
-    config: { userId: UserId | undefined; defaultValue?: T },
-  ): Observable<T>;
-
   /**
    * Gets a state observable for a given key and userId
    *
@@ -97,56 +64,11 @@ export abstract class StateProvider {
     userId?: UserId,
   ): Promise<[UserId, T]>;
 
-  /**
-   * Sets the state for a given key and userId.
-   *
-   * **NOTE** Consider converting your {@link KeyDefinition} to a {@link UserKeyDefinition} for additional features.
-   *
-   * @overload
-   * @param keyDefinition - The key definition for the state you want to set.
-   * @param value - The value to set the state to.
-   * @param userId - The userId for which you want to set the state for. If not provided, the state for the currently active user will be set.
-   */
-  abstract setUserState<T>(
-    keyDefinition: KeyDefinition<T>,
-    value: T,
-    userId?: UserId,
-  ): Promise<[UserId, T]>;
-
-  abstract setUserState<T>(
-    keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>,
-    value: T,
-    userId?: UserId,
-  ): Promise<[UserId, T]>;
-
   /** @see{@link ActiveUserStateProvider.get} */
-  abstract getActive<T>(keyDefinition: UserKeyDefinition<T>): ActiveUserState<T>;
-
-  /**
-   * @see{@link ActiveUserStateProvider.get}
-   *
-   * **NOTE** Consider converting your {@link KeyDefinition} to a {@link UserKeyDefinition} for additional features.
-   */
-  abstract getActive<T>(keyDefinition: KeyDefinition<T>): ActiveUserState<T>;
-
-  /** @see{@link ActiveUserStateProvider.get} */
-  abstract getActive<T>(keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>): ActiveUserState<T>;
+  abstract getActive<T>(userKeyDefinition: UserKeyDefinition<T>): ActiveUserState<T>;
 
   /** @see{@link SingleUserStateProvider.get} */
-  abstract getUser<T>(userId: UserId, keyDefinition: UserKeyDefinition<T>): SingleUserState<T>;
-
-  /**
-   * @see{@link SingleUserStateProvider.get}
-   *
-   * **NOTE** Consider converting your {@link KeyDefinition} to a {@link UserKeyDefinition} for additional features.
-   */
-  abstract getUser<T>(userId: UserId, keyDefinition: KeyDefinition<T>): SingleUserState<T>;
-
-  /** @see{@link SingleUserStateProvider.get} */
-  abstract getUser<T>(
-    userId: UserId,
-    keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>,
-  ): SingleUserState<T>;
+  abstract getUser<T>(userId: UserId, userKeyDefinition: UserKeyDefinition<T>): SingleUserState<T>;
 
   /** @see{@link GlobalStateProvider.get} */
   abstract getGlobal<T>(keyDefinition: KeyDefinition<T>): GlobalState<T>;
diff --git a/libs/common/src/platform/state/user-key-definition.ts b/libs/common/src/platform/state/user-key-definition.ts
index 4c622e29f1e..7e845fc8585 100644
--- a/libs/common/src/platform/state/user-key-definition.ts
+++ b/libs/common/src/platform/state/user-key-definition.ts
@@ -3,7 +3,7 @@ import { StorageKey } from "../../types/state";
 import { Utils } from "../misc/utils";
 
 import { array, record } from "./deserialization-helpers";
-import { KeyDefinition, KeyDefinitionOptions } from "./key-definition";
+import { KeyDefinitionOptions } from "./key-definition";
 import { StateDefinition } from "./state-definition";
 
 export type ClearEvent = "lock" | "logout";
@@ -14,15 +14,6 @@ export type UserKeyDefinitionOptions<T> = KeyDefinitionOptions<T> & {
 
 const USER_KEY_DEFINITION_MARKER: unique symbol = Symbol("UserKeyDefinition");
 
-export function isUserKeyDefinition<T>(
-  keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>,
-): keyDefinition is UserKeyDefinition<T> {
-  return (
-    USER_KEY_DEFINITION_MARKER in keyDefinition &&
-    keyDefinition[USER_KEY_DEFINITION_MARKER] === true
-  );
-}
-
 export class UserKeyDefinition<T> {
   readonly [USER_KEY_DEFINITION_MARKER] = true;
   /**
@@ -63,20 +54,6 @@ export class UserKeyDefinition<T> {
     return this.options.cleanupDelayMs < 0 ? 0 : this.options.cleanupDelayMs ?? 1000;
   }
 
-  /**
-   *
-   * @param keyDefinition
-   * @returns
-   *
-   * @deprecated You should not use this to convert, just create a {@link UserKeyDefinition}
-   */
-  static fromBaseKeyDefinition<T>(keyDefinition: KeyDefinition<T>) {
-    return new UserKeyDefinition<T>(keyDefinition.stateDefinition, keyDefinition.key, {
-      ...keyDefinition["options"],
-      clearOn: [], // Default to not clearing
-    });
-  }
-
   /**
    * Creates a {@link UserKeyDefinition} for state that is an array.
    * @param stateDefinition The state definition to be added to the UserKeyDefinition
diff --git a/libs/common/src/platform/state/user-state.provider.ts b/libs/common/src/platform/state/user-state.provider.ts
index 3af10218f87..677f8b472dc 100644
--- a/libs/common/src/platform/state/user-state.provider.ts
+++ b/libs/common/src/platform/state/user-state.provider.ts
@@ -2,22 +2,11 @@ import { Observable } from "rxjs";
 
 import { UserId } from "../../types/guid";
 
-import { KeyDefinition } from "./key-definition";
 import { UserKeyDefinition } from "./user-key-definition";
 import { ActiveUserState, SingleUserState } from "./user-state";
 
 /** A provider for getting an implementation of state scoped to a given key and userId */
 export abstract class SingleUserStateProvider {
-  /**
-   * Gets a {@link SingleUserState} scoped to the given {@link KeyDefinition} and {@link UserId}
-   *
-   * **NOTE** Consider converting your {@link KeyDefinition} to a {@link UserKeyDefinition} for additional features.
-   *
-   * @param userId - The {@link UserId} for which you want the user state for.
-   * @param keyDefinition - The {@link KeyDefinition} for which you want the user state for.
-   */
-  abstract get<T>(userId: UserId, keyDefinition: KeyDefinition<T>): SingleUserState<T>;
-
   /**
    * Gets a {@link SingleUserState} scoped to the given {@link UserKeyDefinition} and {@link UserId}
    *
@@ -25,11 +14,6 @@ export abstract class SingleUserStateProvider {
    * @param userKeyDefinition - The {@link UserKeyDefinition} for which you want the user state for.
    */
   abstract get<T>(userId: UserId, userKeyDefinition: UserKeyDefinition<T>): SingleUserState<T>;
-
-  abstract get<T>(
-    userId: UserId,
-    keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>,
-  ): SingleUserState<T>;
 }
 
 /** A provider for getting an implementation of state scoped to a given key, but always pointing
@@ -48,16 +32,4 @@ export abstract class ActiveUserStateProvider {
    * @param keyDefinition - The {@link UserKeyDefinition} for which you want the user state for.
    */
   abstract get<T>(userKeyDefinition: UserKeyDefinition<T>): ActiveUserState<T>;
-
-  /**
-   * Gets a {@link ActiveUserState} scoped to the given {@link KeyDefinition}, but updates when active user changes such
-   * that the emitted values always represents the state for the currently active user.
-   *
-   * **NOTE** Consider converting your {@link KeyDefinition} to a {@link UserKeyDefinition} for additional features.
-   *
-   * @param keyDefinition - The {@link KeyDefinition} for which you want the user state for.
-   */
-  abstract get<T>(keyDefinition: KeyDefinition<T>): ActiveUserState<T>;
-
-  abstract get<T>(keyDefinition: KeyDefinition<T> | UserKeyDefinition<T>): ActiveUserState<T>;
 }

From 8361c0bd293ca865a56c5f18b4411ff140901747 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Fri, 7 Jun 2024 10:21:13 +0000
Subject: [PATCH 132/138] Autosync the updated translations (#9543)

Co-authored-by: bitwarden-devops-bot <106330231+bitwarden-devops-bot@users.noreply.github.com>
---
 apps/browser/src/_locales/ar/messages.json    | 117 +++++++-
 apps/browser/src/_locales/az/messages.json    | 119 ++++++++-
 apps/browser/src/_locales/be/messages.json    | 117 +++++++-
 apps/browser/src/_locales/bg/messages.json    | 119 ++++++++-
 apps/browser/src/_locales/bn/messages.json    | 117 +++++++-
 apps/browser/src/_locales/bs/messages.json    | 117 +++++++-
 apps/browser/src/_locales/ca/messages.json    | 117 +++++++-
 apps/browser/src/_locales/cs/messages.json    | 117 +++++++-
 apps/browser/src/_locales/cy/messages.json    | 117 +++++++-
 apps/browser/src/_locales/da/messages.json    | 117 +++++++-
 apps/browser/src/_locales/de/messages.json    | 121 ++++++++-
 apps/browser/src/_locales/el/messages.json    | 117 +++++++-
 apps/browser/src/_locales/en_GB/messages.json | 117 +++++++-
 apps/browser/src/_locales/en_IN/messages.json | 117 +++++++-
 apps/browser/src/_locales/es/messages.json    | 121 ++++++++-
 apps/browser/src/_locales/et/messages.json    | 117 +++++++-
 apps/browser/src/_locales/eu/messages.json    | 117 +++++++-
 apps/browser/src/_locales/fa/messages.json    | 117 +++++++-
 apps/browser/src/_locales/fi/messages.json    | 121 ++++++++-
 apps/browser/src/_locales/fil/messages.json   | 117 +++++++-
 apps/browser/src/_locales/fr/messages.json    | 249 +++++++++++++-----
 apps/browser/src/_locales/gl/messages.json    | 117 +++++++-
 apps/browser/src/_locales/he/messages.json    | 117 +++++++-
 apps/browser/src/_locales/hi/messages.json    | 117 +++++++-
 apps/browser/src/_locales/hr/messages.json    | 117 +++++++-
 apps/browser/src/_locales/hu/messages.json    | 119 ++++++++-
 apps/browser/src/_locales/id/messages.json    | 117 +++++++-
 apps/browser/src/_locales/it/messages.json    | 117 +++++++-
 apps/browser/src/_locales/ja/messages.json    | 117 +++++++-
 apps/browser/src/_locales/ka/messages.json    | 117 +++++++-
 apps/browser/src/_locales/km/messages.json    | 117 +++++++-
 apps/browser/src/_locales/kn/messages.json    | 117 +++++++-
 apps/browser/src/_locales/ko/messages.json    | 117 +++++++-
 apps/browser/src/_locales/lt/messages.json    | 123 ++++++++-
 apps/browser/src/_locales/lv/messages.json    | 121 ++++++++-
 apps/browser/src/_locales/ml/messages.json    | 117 +++++++-
 apps/browser/src/_locales/mr/messages.json    | 117 +++++++-
 apps/browser/src/_locales/my/messages.json    | 117 +++++++-
 apps/browser/src/_locales/nb/messages.json    | 117 +++++++-
 apps/browser/src/_locales/ne/messages.json    | 117 +++++++-
 apps/browser/src/_locales/nl/messages.json    | 121 ++++++++-
 apps/browser/src/_locales/nn/messages.json    | 117 +++++++-
 apps/browser/src/_locales/or/messages.json    | 117 +++++++-
 apps/browser/src/_locales/pl/messages.json    | 117 +++++++-
 apps/browser/src/_locales/pt_BR/messages.json | 131 ++++++++-
 apps/browser/src/_locales/pt_PT/messages.json | 117 +++++++-
 apps/browser/src/_locales/ro/messages.json    | 117 +++++++-
 apps/browser/src/_locales/ru/messages.json    | 119 ++++++++-
 apps/browser/src/_locales/si/messages.json    | 117 +++++++-
 apps/browser/src/_locales/sk/messages.json    | 117 +++++++-
 apps/browser/src/_locales/sl/messages.json    | 117 +++++++-
 apps/browser/src/_locales/sr/messages.json    | 141 +++++++++-
 apps/browser/src/_locales/sv/messages.json    | 121 ++++++++-
 apps/browser/src/_locales/te/messages.json    | 117 +++++++-
 apps/browser/src/_locales/th/messages.json    | 117 +++++++-
 apps/browser/src/_locales/tr/messages.json    | 147 +++++++++--
 apps/browser/src/_locales/uk/messages.json    | 119 ++++++++-
 apps/browser/src/_locales/vi/messages.json    | 117 +++++++-
 apps/browser/src/_locales/zh_CN/messages.json | 121 ++++++++-
 apps/browser/src/_locales/zh_TW/messages.json | 117 +++++++-
 apps/browser/store/locales/ja/copy.resx       |  53 ++--
 61 files changed, 7048 insertions(+), 269 deletions(-)

diff --git a/apps/browser/src/_locales/ar/messages.json b/apps/browser/src/_locales/ar/messages.json
index c4251626401..b689a7e3fc0 100644
--- a/apps/browser/src/_locales/ar/messages.json
+++ b/apps/browser/src/_locales/ar/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "المفضلات"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "الملاحظات"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "بدء"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "الموقع الإلكتروني"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "تم تسجيل الخروج"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "انتهت صلاحية جلسة تسجيل الدخول الخاصة بك."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "حدد عنوان URL الأساسي لتثبيت Bitwarden المستضاف محليًا."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "بيئة مخصصة"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "المجموعات"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "المفضلات"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "التعبئة التلقائية والحفظ"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "تم تعبئة العنصر تلقائياً وحفظ عنوان URI"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "موافق"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "التحقق من مزامنة سطح المكتب"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/az/messages.json b/apps/browser/src/_locales/az/messages.json
index 129aac00ee2..4ded914a439 100644
--- a/apps/browser/src/_locales/az/messages.json
+++ b/apps/browser/src/_locales/az/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Sevimli"
   },
+  "unfavorite": {
+    "message": "Sevimlilərdən sil"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Notlar"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Başlat"
   },
+  "launchWebsite": {
+    "message": "Veb saytı başlat"
+  },
   "website": {
     "message": "Veb sayt"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Çıxış edildi"
   },
+  "loggedOutDesc": {
+    "message": "Hesabınızdan çıxış etmisiniz."
+  },
   "loginExpired": {
     "message": "Giriş seansınızın müddəti bitdi."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Öz-özünə sahiblik edən Bitwarden quraşdırmasının baza URL-sini müəyyənləşdirin."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Şirkət daxili sahiblik edən Bitwarden quraşdırmasının təməl URL-sini qeyd edin. Nümunə: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Qabaqcıl konfiqurasiya üçün hər xidmətin təməl URL-sini müstəqil olaraq qeyd edə bilərsiniz."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Təməl server URL-sini və ya ən azı bir özəl mühiti əlavə etməlisiniz."
+  },
   "customEnvironment": {
     "message": "Özəl mühit"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Kolleksiyalar"
   },
+  "nCollections": {
+    "message": "$COUNT$ kolleksiya",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Sevimlilər"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Avto-doldur və saxla"
   },
+  "fillAndSave": {
+    "message": "Doldur və saxla"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Element avto-dolduruldu və URI saxlanıldı"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Oldu"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Müraciət tokeni təzələmə xətası"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Təzələmə tokeni və ya API açarlar tapılmadı. Lütfən çıxış edib yenidən giriş etməyə çalışın."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Masaüstü sinxr doğrulaması"
   },
@@ -3263,8 +3305,8 @@
   "clearFiltersOrTryAnother": {
     "message": "Filtrləri təmizləyin və ya başqa bir axtarış terminini sınayın"
   },
-  "copyInfo": {
-    "message": "Məlumatları kopyala, $ITEMNAME$",
+  "copyInfoLabel": {
+    "message": "$ITEMNAME$ elementlərini kopyala",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
       "itemname": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Məlumatları kopyala - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "$ITEMNAME$ notunu kopyala",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Notu kopyala - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "Daha çox seçim, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "Daha çox seçim - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "$ITEMNAME$ elementinə bax",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Kolleksiyaları təyin et"
+  },
+  "copyEmail": {
+    "message": "E-poçtu kopyala"
+  },
+  "copyPhone": {
+    "message": "Telefonu kopyala"
+  },
+  "copyAddress": {
+    "message": "Ünvanı kopyala"
+  },
   "adminConsole": {
     "message": "Admin Konsolu"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Qovluğu olmayan elementlər"
+  },
+  "organizationIsDeactivated": {
+    "message": "Təşkilat deaktiv edildi"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Deaktiv edilmiş təşkilatlardakı elementlərə müraciət edilə bilməz. Kömək üçün təşkilatınızın sahibi ilə əlaqə saxlayın."
   }
 }
diff --git a/apps/browser/src/_locales/be/messages.json b/apps/browser/src/_locales/be/messages.json
index 6ee3fffdfa5..22aa6e1fa33 100644
--- a/apps/browser/src/_locales/be/messages.json
+++ b/apps/browser/src/_locales/be/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Абраны"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Нататкі"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Запусціць"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Вэб-сайт"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Вы выйшлі"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Тэрмін дзеяння вашага сеансу завяршыўся."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Увядзіце асноўны URL-адрас вашага лакальнага размяшчэння ўсталяванага Bitwarden."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Карыстальніцкае асяроддзе"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Калекцыі"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Абраныя"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Аўтазапоўніць і захаваць"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Аўтазапоўнены элемент і захаваны URI"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Добра"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Праверка сінхранізацыі на камп'ютары"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/bg/messages.json b/apps/browser/src/_locales/bg/messages.json
index 337467ddfe9..c5cf062b344 100644
--- a/apps/browser/src/_locales/bg/messages.json
+++ b/apps/browser/src/_locales/bg/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Любими"
   },
+  "unfavorite": {
+    "message": "Изваждане от любими"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Бележки"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Пускане"
   },
+  "launchWebsite": {
+    "message": "Посещаване на уеб сайта"
+  },
   "website": {
     "message": "Сайт"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Бяхте отписани"
   },
+  "loggedOutDesc": {
+    "message": "Бяхте отписан(а) от регистрацията си."
+  },
   "loginExpired": {
     "message": "Сесията ви изтече."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Укажете базовия адрес за собствената ви инсталирана среда на Bitwarden."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Посочете базовия адрес на Вашата собствена инсталация на Битуорден. Пример: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "За по-детайлна настройка, може да укажете основния адрес на всяка услуга поотделно."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Трябва да добавите или основния адрес на сървъра, или поне една специална среда."
+  },
   "customEnvironment": {
     "message": "Специална среда"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Колекции"
   },
+  "nCollections": {
+    "message": "$COUNT$ колекции",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Любими"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Дописване и обновяване"
   },
+  "fillAndSave": {
+    "message": "Попълване и запазване"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Автоматично дописан запис и адрес"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Добре"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Грешка при опресняването на идентификатора за достъп"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Няма намерен идентификатор за опресняване или ключове за ППИ. Опитайте да се отпишете и да се впишете отново."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Потвърждаване на синхронизацията на самостоятелното приложение"
   },
@@ -3165,7 +3207,7 @@
     "message": "сървър"
   },
   "hostedAt": {
-    "message": "hosted at"
+    "message": "домакинствано при"
   },
   "useDeviceOrHardwareKey": {
     "message": "Използвайте своето устройство или хардуерен ключ"
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Изчистете филтрите или опитайте да търсите нещо друго"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Копиране на информацията, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Копиране на информацията – $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Копиране на бележката, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Копиране на бележката – $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "Още опции, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "Още опции – $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "Преглед на елемента – $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Свързване на колекции"
+  },
+  "copyEmail": {
+    "message": "Копиране на е-пощата"
+  },
+  "copyPhone": {
+    "message": "Копиране на телефона"
+  },
+  "copyAddress": {
+    "message": "Копиране на адреса"
+  },
   "adminConsole": {
     "message": "Административна конзола"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Елементи без папка"
+  },
+  "organizationIsDeactivated": {
+    "message": "Организацията е деактивирана"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Записите в деактивирани организации не са достъпни. Свържете се със собственика на организацията си за помощ."
   }
 }
diff --git a/apps/browser/src/_locales/bn/messages.json b/apps/browser/src/_locales/bn/messages.json
index 541bebd427b..3ddf7a32bde 100644
--- a/apps/browser/src/_locales/bn/messages.json
+++ b/apps/browser/src/_locales/bn/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "প্রিয়"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "নোট"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "শুরু"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "ওয়েবসাইট"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "প্রস্থানকৃত"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "আপনার লগইন মাত্রকালটির মেয়াদ শেষ হয়ে গেছে।"
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "আপনার অন-প্রাঙ্গনে হোস্টকৃত Bitwarden ইনস্টলেশনটির বেস URL উল্লেখ করুন।"
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "পছন্দসই পরিবেশ"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "সংগ্রহ"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "প্রিয়গুলো"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "স্বতঃপূরণ ও সংরক্ষণ"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "স্বতঃপূরণকৃত বস্তু ও সংরক্ষিত URI"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "ঠিক আছে"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "ডেস্কটপ সিঙ্ক যাচাইকরণ"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/bs/messages.json b/apps/browser/src/_locales/bs/messages.json
index cd82d91cefc..f8d275245ea 100644
--- a/apps/browser/src/_locales/bs/messages.json
+++ b/apps/browser/src/_locales/bs/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favorite"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Notes"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Launch"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Website"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Collections"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favorites"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Auto-fill and save"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Item auto-filled and URI saved"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop sync verification"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/ca/messages.json b/apps/browser/src/_locales/ca/messages.json
index fe2a25e6595..aee61f4b1ad 100644
--- a/apps/browser/src/_locales/ca/messages.json
+++ b/apps/browser/src/_locales/ca/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Preferit"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Notes"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Inicia"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Lloc web"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Sessió tancada"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "La vostra sessió ha caducat."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Especifiqueu l'URL base de la vostra instal·lació de Bitwarden allotjada en un entorn propi."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Entorn personalitzat"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Col·leccions"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Preferits"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Ompli automàticament i guarda"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Element emplenat automàticament i URI guardat"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "D’acord"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Verificació de sincronització d'escriptori"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Consola d'administració"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/cs/messages.json b/apps/browser/src/_locales/cs/messages.json
index 3b9507fdf21..a865a1a9472 100644
--- a/apps/browser/src/_locales/cs/messages.json
+++ b/apps/browser/src/_locales/cs/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Oblíbené"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Poznámky"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Spustit"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Webová stránka"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Odhlášení"
   },
+  "loggedOutDesc": {
+    "message": "Byli jste odhlášeni ze svého účtu."
+  },
   "loginExpired": {
     "message": "Platnost přihlášení vypršela."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Zadejte základní URL adresu vlastní hostované aplikace Bitwarden."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Zadejte základní URL adresu Vaší vlastní hostované aplikace Bitwarden. Příklad: https://bitwarden.spolecnost.cz"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Pro rozšířená nastavení můžete zadat základní URL adresu každé služby zvlášť."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Musíte přidat buď základní adresu URL serveru nebo alespoň jedno vlastní prostředí."
+  },
   "customEnvironment": {
     "message": "Vlastní prostředí"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Kolekce"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Oblíbené"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Automaticky vyplnit a uložit"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Položka byla automaticky vyplněna a URI bylo uloženo"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "OK"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Chyba aktualizace přístupového tokenu"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Nebyly nalezeny žádné obnovovací tokeny nebo API klíče. Zkuste se odhlásit a znovu se přihlásit."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Ověření synchronizace s aplikací pro počítač"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Vymažte filtry nebo zkuste jiný hledaný výraz"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Kopírovat informace, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Kopírovat informace - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Kopírovat poznámku, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Kopírovat poznámku - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "Více voleb, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "Více voleb - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "Zobrazit položku - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Kopírovat e-mail"
+  },
+  "copyPhone": {
+    "message": "Kopírovat telefon"
+  },
+  "copyAddress": {
+    "message": "Kopírovat adresu"
+  },
   "adminConsole": {
     "message": "Konzole správce"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Položky bez složky"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organizace je deaktivována"
+  },
+  "contactYourOrgAdmin": {
+    "message": "K položkám v deaktivované organizaci nemáte přístup. Požádejte o pomoc vlastníka organizace."
   }
 }
diff --git a/apps/browser/src/_locales/cy/messages.json b/apps/browser/src/_locales/cy/messages.json
index 6bfa7de69f3..f90120a0823 100644
--- a/apps/browser/src/_locales/cy/messages.json
+++ b/apps/browser/src/_locales/cy/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Ffefrynnu"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Nodiadau"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Lansio"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Gwefan"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Mae eich sesiwn wedi dod i ben."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Amgylchedd addasedig"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Casgliadau"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Ffefrynnau"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Llenwi'n awtomatig a chadw"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Item auto-filled and URI saved"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop sync verification"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/da/messages.json b/apps/browser/src/_locales/da/messages.json
index 32266ceb31f..7b5b7ec2e29 100644
--- a/apps/browser/src/_locales/da/messages.json
+++ b/apps/browser/src/_locales/da/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favorit"
   },
+  "unfavorite": {
+    "message": "Fjern fra favorit"
+  },
+  "itemAddedToFavorites": {
+    "message": "Emne føjet til favoritter"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Emne fjernet fra favoritter"
+  },
   "notes": {
     "message": "Notater"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Start"
   },
+  "launchWebsite": {
+    "message": "Åbn websted"
+  },
   "website": {
     "message": "Hjemmeside"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Logget ud"
   },
+  "loggedOutDesc": {
+    "message": "Der er blevet logget ud af kontoen."
+  },
   "loginExpired": {
     "message": "Din login-session er udløbet."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Angiv grund-URL'en i din lokal-hostede Bitwarden-installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Brugerdefineret miljø"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Samlinger"
   },
+  "nCollections": {
+    "message": "$COUNT$ samlinger",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favoritter"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Autoudfyld og gem"
   },
+  "fillAndSave": {
+    "message": "Udfyld og gem"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Autoudfyldte element og URI gemt"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Adgangstoken genopfriskningsfejl"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Ingen genopfriskningstoken eller API-nøgler fundet. Prøv at logge ud og dernæst ind igen."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Verifikation af skrivebordssynkronisering"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Ryd filtre eller prøv med et andet søgeord"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Kopiér info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Kopiér info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Kopiér notat, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Kopiér notat - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "Flere valgmuligheder, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "Flere valgmuligheder - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "Vis emne - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Tildel samlinger"
+  },
+  "copyEmail": {
+    "message": "Kopiér e-mail"
+  },
+  "copyPhone": {
+    "message": "Kopiér telefon"
+  },
+  "copyAddress": {
+    "message": "Kopiér addresse"
+  },
   "adminConsole": {
     "message": "Admin-konsol"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Emner uden mappe"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organisation er deaktiveret"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Emner i deaktiverede organisationer kan ikke tilgås. Kontakt organisationsejeren for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/de/messages.json b/apps/browser/src/_locales/de/messages.json
index bec6702ae28..dddc6fc9762 100644
--- a/apps/browser/src/_locales/de/messages.json
+++ b/apps/browser/src/_locales/de/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favoriten"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Notizen"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Öffnen"
   },
+  "launchWebsite": {
+    "message": "Website öffnen"
+  },
   "website": {
     "message": "Webseite"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Ausgeloggt"
   },
+  "loggedOutDesc": {
+    "message": "Du wurdest von deinem Konto abgemeldet."
+  },
   "loginExpired": {
     "message": "Ihre Login-Sitzung ist abgelaufen."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Bitte gib die Basis-URL deiner selbst gehosteten Bitwarden-Installation an."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Gib die Basis-URL deiner vor Ort gehosteten Bitwarden-Installation an. Beispiel: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Für eine erweiterte Konfiguration kannst du die Basis-URL jedes Dienstes unabhängig voneinander angeben."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Du musst entweder die Basis-Server-URL oder mindestens eine benutzerdefinierte Umgebung hinzufügen."
+  },
   "customEnvironment": {
     "message": "Benutzerdefinierte Umgebung"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Sammlungen"
   },
+  "nCollections": {
+    "message": "$COUNT$ Sammlungen",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favoriten"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Auto-Ausfüllen und speichern"
   },
+  "fillAndSave": {
+    "message": "Ausfüllen und speichern"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Eintrag automatisch ausgefüllt und URI gespeichert"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Zugangs-Token Aktualisierungsfehler"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Kein Aktualisierungs-Token oder API-Schlüssel gefunden. Bitte versuche dich ab- und wieder anzumelden."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop-Sync-Überprüfung"
   },
@@ -3263,8 +3305,8 @@
   "clearFiltersOrTryAnother": {
     "message": "Entferne die Filter oder versuche einen anderen Suchbegriff"
   },
-  "copyInfo": {
-    "message": "Information kopieren, $ITEMNAME$",
+  "copyInfoLabel": {
+    "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
       "itemname": {
@@ -3273,8 +3315,38 @@
       }
     }
   },
-  "moreOptions": {
-    "message": "Weitere Optionen, $ITEMNAME$",
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
+    "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
       "itemname": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Sammlungen zuweisen"
+  },
+  "copyEmail": {
+    "message": "E-Mail-Adresse kopieren"
+  },
+  "copyPhone": {
+    "message": "Telefonnummer kopieren"
+  },
+  "copyAddress": {
+    "message": "Adresse kopieren"
+  },
   "adminConsole": {
     "message": "Administrator-Konsole"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Einträge ohne Ordner"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organisation ist deaktiviert"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Auf Einträge in deaktivierten Organisationen kann nicht zugegriffen werden. Kontaktiere deinen Organisationseigentümer für Unterstützung."
   }
 }
diff --git a/apps/browser/src/_locales/el/messages.json b/apps/browser/src/_locales/el/messages.json
index da376f6c6a0..1f97b3623c2 100644
--- a/apps/browser/src/_locales/el/messages.json
+++ b/apps/browser/src/_locales/el/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Αγαπημένο"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Σημειώσεις"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Εκκίνηση"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Ιστοσελίδα"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Αποσυνδεθήκατε"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Η περίοδος σύνδεσης σας έχει λήξει."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Καθορίστε τη βασική διεύθυνση URL, της εγκατάστασης του Bitwarden που φιλοξενείται στο χώρο σας."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Προσαρμοσμένο περιβάλλον"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Συλλογές"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Αγαπημένα"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Αυτόματη συμπλήρωση και αποθήκευση"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Αυτόματη συμπλήρωση στοιχείου και αποθηκευμένο URI"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Οκ"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Επιβεβαίωση συγχρονισμού επιφάνειας εργασίας"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/en_GB/messages.json b/apps/browser/src/_locales/en_GB/messages.json
index 0ff4085900c..c7465f915e8 100644
--- a/apps/browser/src/_locales/en_GB/messages.json
+++ b/apps/browser/src/_locales/en_GB/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favourite"
   },
+  "unfavorite": {
+    "message": "Unfavourite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favourites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favourites"
+  },
   "notes": {
     "message": "Notes"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Launch"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Website"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premise hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Collections"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favourites"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Auto-fill and save"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Item auto-filled and URI saved"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "OK"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop sync verification"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organisation is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organisations cannot be accessed. Contact your organisation owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/en_IN/messages.json b/apps/browser/src/_locales/en_IN/messages.json
index bb1ae5f7318..0e3efdd15f1 100644
--- a/apps/browser/src/_locales/en_IN/messages.json
+++ b/apps/browser/src/_locales/en_IN/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favourite"
   },
+  "unfavorite": {
+    "message": "Unfavourite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Notes"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Launch"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Website"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premise hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Collections"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favourites"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Auto-fill and save"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Auto-filled item and saved URI"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "OK"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop sync verification"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organisation is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organisations cannot be accessed. Contact your organisation owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/es/messages.json b/apps/browser/src/_locales/es/messages.json
index 1134f941513..af10b5719aa 100644
--- a/apps/browser/src/_locales/es/messages.json
+++ b/apps/browser/src/_locales/es/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favorito"
   },
+  "unfavorite": {
+    "message": "Eliminar favorito"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Notas"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Iniciar"
   },
+  "launchWebsite": {
+    "message": "Iniciar página web"
+  },
   "website": {
     "message": "Web"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Sesión terminada"
   },
+  "loggedOutDesc": {
+    "message": "Has cerrado sesión de tu cuenta."
+  },
   "loginExpired": {
     "message": "Tu sesión ha expirado."
   },
@@ -763,7 +778,7 @@
     "message": "Desbloquear"
   },
   "additionalOptions": {
-    "message": "Additional options"
+    "message": "Opciones adicionales"
   },
   "enableContextMenuItem": {
     "message": "Mostrar las opciones de menú contextuales"
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Especifica la URL base de tu instalación de Bitwarden de alojamiento propio."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Especifica la dirección URL base de la instalación de Bitwarden alojada localmente. Ejemplo: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Para una configuración avanzada, puedes especificar la dirección URL base de cada servicio de forma independiente."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Debes añadir la dirección URL del servidor base o al menos un entorno personalizado."
+  },
   "customEnvironment": {
     "message": "Entorno personalizado"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Colecciones"
   },
+  "nCollections": {
+    "message": "$COUNT$ colecciones",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favoritos"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Autorellenar y guardar"
   },
+  "fillAndSave": {
+    "message": "Rellenar y guardar"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Objeto autorellenado y URI guardada"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Error de actualización del token de acceso"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No se encontró ningún token de actualización ni clave de API. Intenta cerrar sesión y volver a iniciarla."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Verificación de sincronización del escritorio"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Limpia los filtros o prueba otro término de búsqueda"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copiar información, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,8 +3315,38 @@
       }
     }
   },
-  "moreOptions": {
-    "message": "Más información, $ITEMNAME$",
+  "copyInfoTitle": {
+    "message": "Copiar información - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copiar nota, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copiar nota - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
+    "message": "Más opciones, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
       "itemname": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "Más opciones - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "Ver elemento - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Asignar colecciones"
+  },
+  "copyEmail": {
+    "message": "Copiar correo electrónico"
+  },
+  "copyPhone": {
+    "message": "Copiar teléfono"
+  },
+  "copyAddress": {
+    "message": "Copiar dirección"
+  },
   "adminConsole": {
     "message": "Consola de administrador"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Elementos sin carpeta"
+  },
+  "organizationIsDeactivated": {
+    "message": "La organización está desactivada"
+  },
+  "contactYourOrgAdmin": {
+    "message": "No se puede acceder a los elementos de las organizaciones desactivadas. Ponte en contacto con el propietario de tu organización para obtener ayuda."
   }
 }
diff --git a/apps/browser/src/_locales/et/messages.json b/apps/browser/src/_locales/et/messages.json
index 03267c79d7b..6d1a2f7635e 100644
--- a/apps/browser/src/_locales/et/messages.json
+++ b/apps/browser/src/_locales/et/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Lemmik"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Märkmed"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Käivita"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Veebileht"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Välja logitud"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Sessioon on aegunud."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premise hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Kohandatud keskkond"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Kogumikud"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Lemmikud"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Täida ja salvesta"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Kirje täideti ja URI salvestati"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Töölaua sünkroonimise kinnitamine"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/eu/messages.json b/apps/browser/src/_locales/eu/messages.json
index 3d0e37f4147..3ba8820abca 100644
--- a/apps/browser/src/_locales/eu/messages.json
+++ b/apps/browser/src/_locales/eu/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Gogokoa"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Oharrak"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Abiarazi"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Webgunea"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Saioa itxita"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Saioa amaitu da."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Bitwarden instalatzeko, zehaztu ostatatze propioaren oinarrizko URL-a."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Ingurune pertsonalizatua"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Bildumak"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Gogokoak"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Auto-bete eta gorde"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Elementua auto-betea eta URIa gordeta"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ados"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Mahaigaineko sinkronizazioaren egiaztatzea"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/fa/messages.json b/apps/browser/src/_locales/fa/messages.json
index 5b55561a6a8..b5d383c1364 100644
--- a/apps/browser/src/_locales/fa/messages.json
+++ b/apps/browser/src/_locales/fa/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "مورد علاقه"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "یادداشت‌ها"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "راه اندازی"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "وب‌سایت"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "خارج شد"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "نشست ورود شما منقضی شده است."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "نشانی اینترنتی پایه فرضی نصب Bitwarden میزبانی شده را مشخص کنید."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "محیط سفارشی"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "مجموعه‌ها"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "مورد علاقه‌ها"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "پر کردن خودکار و ذخیره"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "مورد خودکار پر شد و نشانی اینترنتی ذخیره شد"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "تأیید"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "تأیید همگام‌سازی دسکتاپ"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/fi/messages.json b/apps/browser/src/_locales/fi/messages.json
index 42251e9e42b..5cb434f1265 100644
--- a/apps/browser/src/_locales/fi/messages.json
+++ b/apps/browser/src/_locales/fi/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Suosikki"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Merkinnät"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Avaa"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Verkkosivusto"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Kirjauduttu ulos"
   },
+  "loggedOutDesc": {
+    "message": "Sinut on kirjattu ulos tililtäsi."
+  },
   "loginExpired": {
     "message": "Kirjautumisistuntosi on erääntynyt."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Määritä omassa palvelinympäristössäsi suoritettavan Bitwarden-asennuksen pääverkkotunnus."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Mukautettu palvelinympäristö"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Kokoelmat"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Suosikit"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Automaattitäytä ja tallenna"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Kohde täytettiin automaattisesti ja URI tallennettiin"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Työpöytäsynkronoinnin vahvistus"
   },
@@ -3263,8 +3305,8 @@
   "clearFiltersOrTryAnother": {
     "message": "Tyhjennä suodattimet tai kokeile toista hakutermiä"
   },
-  "copyInfo": {
-    "message": "Kopio tiedot, $ITEMNAME$",
+  "copyInfoLabel": {
+    "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
       "itemname": {
@@ -3273,8 +3315,38 @@
       }
     }
   },
-  "moreOptions": {
-    "message": "Lisää valintoja, $ITEMNAME$",
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
+    "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
       "itemname": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Hallintapaneelista"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Kohteet, joilla ei ole kansioita"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organisaatio on poistettu käytöstä"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Käytöstä poistettujen organisaatioiden kohteet eivät ole käytettävissä. Ole yhteydessä organisaation omistajaan saadaksesi apua."
   }
 }
diff --git a/apps/browser/src/_locales/fil/messages.json b/apps/browser/src/_locales/fil/messages.json
index 86f8209e1cd..468e2a503f6 100644
--- a/apps/browser/src/_locales/fil/messages.json
+++ b/apps/browser/src/_locales/fil/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Ang Paborito"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Mga nota"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Paglulunsad"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Website"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Umalis na"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Nag-expire na ang iyong session sa login."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Tukuyin ang base URL ng iyong Bitwarden installation na naka-host sa on-premises."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Kapaligirang Custom"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Koleksyon"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Mga Paborito"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Auto-fill at i-save"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Item na auto-filled at URI na nai-save"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Pag verify ng pag sync ng desktop"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/fr/messages.json b/apps/browser/src/_locales/fr/messages.json
index 53df48d0004..8bb8cfe537b 100644
--- a/apps/browser/src/_locales/fr/messages.json
+++ b/apps/browser/src/_locales/fr/messages.json
@@ -173,19 +173,19 @@
     "message": "Poursuivre vers l'application web ?"
   },
   "continueToWebAppDesc": {
-    "message": "Explore more features of your Bitwarden account on the web app."
+    "message": "Explorez plus de fonctionnalités de votre compte Bitwarden sur l'application Web."
   },
   "continueToHelpCenter": {
-    "message": "Continue to Help Center?"
+    "message": "Continuer vers le centre d'aide ?"
   },
   "continueToHelpCenterDesc": {
-    "message": "Learn more about how to use Bitwarden on the Help Center."
+    "message": "En savoir plus sur l'utilisation de Bitwarden dans le centre d'aide."
   },
   "continueToBrowserExtensionStore": {
-    "message": "Continue to browser extension store?"
+    "message": "Continuer vers le magasin d'extension du navigateur ?"
   },
   "continueToBrowserExtensionStoreDesc": {
-    "message": "Help others find out if Bitwarden is right for them. Visit your browser's extension store and leave a rating now."
+    "message": "Aidez les autres à savoir si Bitwarden est fait pour eux. Visitez le magasin d'extension de votre navigateur et laissez une évaluation maintenant."
   },
   "changeMasterPasswordOnWebConfirmation": {
     "message": "Vous pouvez modifier votre mot de passe principal sur l'application web de Bitwarden."
@@ -205,43 +205,43 @@
     "message": "Se déconnecter"
   },
   "aboutBitwarden": {
-    "message": "About Bitwarden"
+    "message": "À propos de Bitwarden"
   },
   "about": {
     "message": "À propos"
   },
   "moreFromBitwarden": {
-    "message": "More from Bitwarden"
+    "message": "Plus de Bitwarden"
   },
   "continueToBitwardenDotCom": {
-    "message": "Continue to bitwarden.com?"
+    "message": "Continuer vers bitwarden.com?"
   },
   "bitwardenForBusiness": {
-    "message": "Bitwarden for Business"
+    "message": "Bitwarden pour les entreprises"
   },
   "bitwardenAuthenticator": {
     "message": "Bitwarden Authenticator"
   },
   "continueToAuthenticatorPageDesc": {
-    "message": "Bitwarden Authenticator allows you to store authenticator keys and generate TOTP codes for 2-step verification flows. Learn more on the bitwarden.com website"
+    "message": "Bitwarden Authenticator vous permet de stocker les clés d'authentification et de générer des codes TOTP pour les flux de vérification en 2 étapes. En savoir plus sur le site web bitwarden.com"
   },
   "bitwardenSecretsManager": {
     "message": "Bitwarden Secrets Manager"
   },
   "continueToSecretsManagerPageDesc": {
-    "message": "Securely store, manage, and share developer secrets with Bitwarden Secrets Manager. Learn more on the bitwarden.com website."
+    "message": "Stockez, gérez et partagez des mots de passe de développement avec Bitwarden Secrets Manager. Apprenez-en plus sur le site web bitwarden.com."
   },
   "passwordlessDotDev": {
     "message": "Passwordless.dev"
   },
   "continueToPasswordlessDotDevPageDesc": {
-    "message": "Create smooth and secure login experiences free from traditional passwords with Passwordless.dev. Learn more on the bitwarden.com website."
+    "message": "Créez des expériences de connexion faciles et sécurisées à partir des mots de passe traditionnels avec Passwordless.dev. Apprenez-en plus sur le site web bitwarden.com."
   },
   "freeBitwardenFamilies": {
-    "message": "Free Bitwarden Families"
+    "message": "Bitwarden Familles gratuit"
   },
   "freeBitwardenFamiliesPageDesc": {
-    "message": "You are eligible for Free Bitwarden Families. Redeem this offer today in the web app."
+    "message": "Vous êtes éligible pour obtenir Bitwarden Familles gratuitement. Souscrivez à cette offre aujourd'hui dans l'application Web."
   },
   "version": {
     "message": "Version"
@@ -302,7 +302,7 @@
     "message": "Générer automatiquement des mots de passe robustes et uniques pour vos identifiants."
   },
   "bitWebVaultApp": {
-    "message": "Bitwarden web app"
+    "message": "Application web Bitwarden"
   },
   "importItems": {
     "message": "Importer des éléments"
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favori"
   },
+  "unfavorite": {
+    "message": "Retirer des favoris"
+  },
+  "itemAddedToFavorites": {
+    "message": "Élément ajouté aux favoris"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Élément retiré des favoris"
+  },
   "notes": {
     "message": "Notes"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Ouvrir"
   },
+  "launchWebsite": {
+    "message": "Ouvrir le site web"
+  },
   "website": {
     "message": "Site web"
   },
@@ -423,7 +435,7 @@
     "message": "Autre"
   },
   "unlockMethods": {
-    "message": "Unlock options"
+    "message": "Options de déverrouillage"
   },
   "unlockMethodNeededToChangeTimeoutActionDesc": {
     "message": "Configurez une méthode de déverrouillage pour changer le délai d'expiration de votre coffre."
@@ -432,10 +444,10 @@
     "message": "Configurer une méthode de déverrouillage dans les Paramètres"
   },
   "sessionTimeoutHeader": {
-    "message": "Session timeout"
+    "message": "Expiration de la session"
   },
   "otherOptions": {
-    "message": "Other options"
+    "message": "Autres options"
   },
   "rateExtension": {
     "message": "Noter l'extension"
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Déconnecté"
   },
+  "loggedOutDesc": {
+    "message": "Vous avez été déconnecté de votre compte."
+  },
   "loginExpired": {
     "message": "Votre session a expiré."
   },
@@ -763,7 +778,7 @@
     "message": "Déverrouiller"
   },
   "additionalOptions": {
-    "message": "Additional options"
+    "message": "Options supplémentaires"
   },
   "enableContextMenuItem": {
     "message": "Afficher les options du menu contextuel"
@@ -803,7 +818,7 @@
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
   "exportFrom": {
-    "message": "Export from"
+    "message": "Exporter à partir de"
   },
   "exportVault": {
     "message": "Exporter le coffre"
@@ -812,28 +827,28 @@
     "message": "Format de fichier"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "This file export will be password protected and require the file password to decrypt."
+    "message": "L'export de ce fichier sera protégé par un mot de passe et nécessitera le mot de passe du fichier pour être déchiffré."
   },
   "filePassword": {
-    "message": "File password"
+    "message": "Mot de passe du fichier"
   },
   "exportPasswordDescription": {
-    "message": "This password will be used to export and import this file"
+    "message": "Ce mot de passe sera utilisé pour exporter et importer ce fichier"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+    "message": "Utilisez la clé de chiffrement de votre compte, dérivée du nom d'utilisateur et du mot de passe principal de votre compte, pour chiffrer l'export et restreindre l'import au seul compte Bitwarden actuel."
   },
   "passwordProtectedOptionDescription": {
-    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+    "message": "Définissez un mot de passe de fichier pour chiffrer l'exportation et l'importer dans n'importe quel compte Bitwarden en utilisant le mot de passe pour le déchiffrage."
   },
   "exportTypeHeading": {
-    "message": "Export type"
+    "message": "Type d'exportation"
   },
   "accountRestricted": {
-    "message": "Account restricted"
+    "message": "Compte restreint"
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
-    "message": "“File password”  and “Confirm file password“ do not match."
+    "message": "Le \"Mot de passe du fichier\" et le \"Confirmation du mot de passe du fichier\" ne correspondent pas."
   },
   "warning": {
     "message": "AVERTISSEMENT",
@@ -858,7 +873,7 @@
     "message": "Partagé"
   },
   "bitwardenForBusinessPageDesc": {
-    "message": "Bitwarden for Business allows you to share your vault items with others by using an organization. Learn more on the bitwarden.com website."
+    "message": "Bitwarden pour entreprises vous permet de partager les éléments de votre coffre avec les autres en utilisant une organisation. Apprenez-en plus sur le site bitwarden.com."
   },
   "moveToOrganization": {
     "message": "Déplacer vers l'organisation"
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Spécifiez l'URL de base de votre installation Bitwarden auto-hébergée."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Spécifiez l'URL de base de votre installation autohébergée par Bitwarden. Exemple : https://bitwarden.compagnie.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Pour une configuration avancée. Vous pouvez spécifier l'URL de base indépendamment pour chaque service."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Vous devez ajouter soit l'URL du serveur de base, soit au moins un environnement personnalisé."
+  },
   "customEnvironment": {
     "message": "Environnement personnalisé"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Collections"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favoris"
   },
@@ -1637,7 +1670,7 @@
     "message": "Élément restauré"
   },
   "alreadyHaveAccount": {
-    "message": "Already have an account?"
+    "message": "Vous avez déjà un compte ?"
   },
   "vaultTimeoutLogOutConfirmation": {
     "message": "La déconnexion supprimera tout accès à votre coffre et nécessitera une authentification en ligne après la période d'expiration. Êtes-vous sûr de vouloir utiliser ce paramètre ?"
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Saisir automatiquement et sauvegarder"
   },
+  "fillAndSave": {
+    "message": "Remplir et enregistrer"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Élément saisi automatiquement et URI sauvegardé"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Erreur d'Actualisation du Jeton d'Accès"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Aucun jeton de rafraîchissement ou clé d'API trouvé. Veuillez essayer de vous déconnecter et de vous reconnecter."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Vérification de la synchronisation avec l'application de bureau"
   },
@@ -1793,10 +1835,10 @@
     "message": "Le déverrouillage biométrique dans le navigateur n’est pas pris en charge sur cet appareil"
   },
   "biometricsNotUnlockedTitle": {
-    "message": "User locked or logged out"
+    "message": "Utilisateur verrouillé ou déconnecté"
   },
   "biometricsNotUnlockedDesc": {
-    "message": "Please unlock this user in the desktop application and try again."
+    "message": "Veuillez déverrouiller cet utilisateur dans l'application de bureau et réessayer."
   },
   "biometricsFailedTitle": {
     "message": "Le déverrouillage biométique a échoué\n"
@@ -2213,10 +2255,10 @@
     }
   },
   "exportingOrganizationVaultTitle": {
-    "message": "Exporting organization vault"
+    "message": "Export du coffre de l'organisation"
   },
   "exportingOrganizationVaultDesc": {
-    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "message": "Seul le coffre d'organisation associé à $ORGANIZATION$ sera exporté. Les éléments dans les coffres individuels ou d'autres organisations ne seront pas inclus.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -2274,7 +2316,7 @@
     "message": "Générer un alias de courriel avec un service de transfert externe."
   },
   "forwarderError": {
-    "message": "$SERVICENAME$ error: $ERRORMESSAGE$",
+    "message": "Erreur $SERVICENAME$ : $ERRORMESSAGE$",
     "description": "Reports an error returned by a forwarding service to the user.",
     "placeholders": {
       "servicename": {
@@ -2288,11 +2330,11 @@
     }
   },
   "forwarderGeneratedBy": {
-    "message": "Generated by Bitwarden.",
+    "message": "Généré par Bitwarden.",
     "description": "Displayed with the address on the forwarding service's configuration screen."
   },
   "forwarderGeneratedByWithWebsite": {
-    "message": "Website: $WEBSITE$. Generated by Bitwarden.",
+    "message": "Site web : $WEBSITE$. Généré par Bitwarden.",
     "description": "Displayed with the address on the forwarding service's configuration screen.",
     "placeholders": {
       "WEBSITE": {
@@ -2302,7 +2344,7 @@
     }
   },
   "forwaderInvalidToken": {
-    "message": "Invalid $SERVICENAME$ API token",
+    "message": "Jeton API $SERVICENAME$ invalide",
     "description": "Displayed when the user's API token is empty or rejected by the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2312,7 +2354,7 @@
     }
   },
   "forwaderInvalidTokenWithMessage": {
-    "message": "Invalid $SERVICENAME$ API token: $ERRORMESSAGE$",
+    "message": "Jeton API $SERVICENAME$ non valide : $ERRORMESSAGE$",
     "description": "Displayed when the user's API token is rejected by the forwarding service with an error message.",
     "placeholders": {
       "servicename": {
@@ -2326,7 +2368,7 @@
     }
   },
   "forwarderNoAccountId": {
-    "message": "Unable to obtain $SERVICENAME$ masked email account ID.",
+    "message": "Impossible d'obtenir l'ID du compte de courriel masqué $SERVICENAME$.",
     "description": "Displayed when the forwarding service fails to return an account ID.",
     "placeholders": {
       "servicename": {
@@ -2336,7 +2378,7 @@
     }
   },
   "forwarderNoDomain": {
-    "message": "Invalid $SERVICENAME$ domain.",
+    "message": "Domaine de $SERVICENAME$ invalide.",
     "description": "Displayed when the domain is empty or domain authorization failed at the forwarding service.",
     "placeholders": {
       "servicename": {
@@ -2346,7 +2388,7 @@
     }
   },
   "forwarderNoUrl": {
-    "message": "Invalid $SERVICENAME$ url.",
+    "message": "L'URL $SERVICENAME$ invalide.",
     "description": "Displayed when the url of the forwarding service wasn't supplied.",
     "placeholders": {
       "servicename": {
@@ -2356,7 +2398,7 @@
     }
   },
   "forwarderUnknownError": {
-    "message": "Unknown $SERVICENAME$ error occurred.",
+    "message": "Une erreur $SERVICENAME$ inconnue s'est produite.",
     "description": "Displayed when the forwarding service failed due to an unknown error.",
     "placeholders": {
       "servicename": {
@@ -2366,7 +2408,7 @@
     }
   },
   "forwarderUnknownForwarder": {
-    "message": "Unknown forwarder: '$SERVICENAME$'.",
+    "message": "Émetteur inconnu: '$SERVICENAME$'.",
     "description": "Displayed when the forwarding service is not supported.",
     "placeholders": {
       "servicename": {
@@ -2587,25 +2629,25 @@
     "message": "Identifiant SSO de l'organisation requis."
   },
   "creatingAccountOn": {
-    "message": "Creating account on"
+    "message": "Création du compte sur"
   },
   "checkYourEmail": {
-    "message": "Check your email"
+    "message": "Vérifiez vos courriels"
   },
   "followTheLinkInTheEmailSentTo": {
-    "message": "Follow the link in the email sent to"
+    "message": "Suivez le lien dans le courriel envoyé à"
   },
   "andContinueCreatingYourAccount": {
-    "message": "and continue creating your account."
+    "message": "et continuer à créer votre compte."
   },
   "noEmail": {
-    "message": "No email?"
+    "message": "Pas de courriel ?"
   },
   "goBack": {
-    "message": "Go back"
+    "message": "Revenir en arrière"
   },
   "toEditYourEmailAddress": {
-    "message": "to edit your email address."
+    "message": "pour modifier votre adresse mail."
   },
   "eu": {
     "message": "UE",
@@ -3235,7 +3277,7 @@
     "message": "Clé d'identification (passkey) retirée"
   },
   "unassignedItemsBannerNotice": {
-    "message": "Notice: Unassigned organization items are no longer visible in the All Vaults view and only accessible via the Admin Console."
+    "message": "Remarque : Les éléments d'organisation non assignés ne sont plus visibles dans la vue Tous les coffres et ne sont maintenant accessibles que via la Console Admin."
   },
   "unassignedItemsBannerSelfHostNotice": {
     "message": "Remarque : À partir du 16 mai 2024, les éléments d'organisation non assignés ne seront plus visibles dans votre vue Tous les coffres sur les appareils et ne seront maintenant accessibles que via la Console Admin."
@@ -3249,22 +3291,22 @@
     "description": "This will be part of a larger sentence, which will read like so: Assign these items to a collection from the Admin Console to make them visible."
   },
   "autofillSuggestions": {
-    "message": "Auto-fill suggestions"
+    "message": "Suggestions de saisie automatique"
   },
   "autofillSuggestionsTip": {
     "message": "Save a login item for this site to auto-fill"
   },
   "yourVaultIsEmpty": {
-    "message": "Your vault is empty"
+    "message": "Votre coffre-fort est vide"
   },
   "noItemsMatchSearch": {
-    "message": "No items match your search"
+    "message": "Aucun élément ne correspond à votre recherche"
   },
   "clearFiltersOrTryAnother": {
-    "message": "Clear filters or try another search term"
+    "message": "Effacer les filtres ou essayer un autre terme de recherche"
   },
-  "copyInfo": {
-    "message": "Copy info, $ITEMNAME$",
+  "copyInfoLabel": {
+    "message": "Copier les informations, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
       "itemname": {
@@ -3273,8 +3315,38 @@
       }
     }
   },
-  "moreOptions": {
-    "message": "More options, $ITEMNAME$",
+  "copyInfoTitle": {
+    "message": "Copier les informations - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copier la note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copier la note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
+    "message": "Plus d'options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
       "itemname": {
@@ -3283,26 +3355,58 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "Plus d'options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "Voir l'élément - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assigner une collection"
+  },
+  "copyEmail": {
+    "message": "Copier l'email"
+  },
+  "copyPhone": {
+    "message": "Copier le numéro de téléphone"
+  },
+  "copyAddress": {
+    "message": "Copier l'adresse"
+  },
   "adminConsole": {
     "message": "Console Admin"
   },
   "accountSecurity": {
-    "message": "Account security"
+    "message": "Sécurité du compte"
   },
   "notifications": {
     "message": "Notifications"
   },
   "appearance": {
-    "message": "Appearance"
+    "message": "Apparence"
   },
   "errorAssigningTargetCollection": {
-    "message": "Error assigning target collection."
+    "message": "Erreur lors de l'assignation de la collection cible."
   },
   "errorAssigningTargetFolder": {
-    "message": "Error assigning target folder."
+    "message": "Erreur lors de l'assignation du dossier cible."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "Voir les éléments dans $NAME$",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3312,7 +3416,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "Retour à $NAME$",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3322,10 +3426,10 @@
     }
   },
   "new": {
-    "message": "New"
+    "message": "Nouveau"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "Retirer $NAME$",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Eléments sans dossier"
+  },
+  "organizationIsDeactivated": {
+    "message": "L'organisation est désactivée"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Les éléments des Organisations désactivées ne sont pas accessibles. Contactez le propriétaire de votre Organisation pour obtenir de l'aide."
   }
 }
diff --git a/apps/browser/src/_locales/gl/messages.json b/apps/browser/src/_locales/gl/messages.json
index dd29c8a071c..cf38b90e8fa 100644
--- a/apps/browser/src/_locales/gl/messages.json
+++ b/apps/browser/src/_locales/gl/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favorito"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Notas"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Iniciar"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Sitio web"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Sesión pechada"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "A túa sesión caducou."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Entorno personalizado"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Coleccións"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favoritos"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Auto-fill and save"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Item auto-filled and URI saved"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop sync verification"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/he/messages.json b/apps/browser/src/_locales/he/messages.json
index c191df36bf8..b5cbb79ca17 100644
--- a/apps/browser/src/_locales/he/messages.json
+++ b/apps/browser/src/_locales/he/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "מועדף"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "הערות"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "הפעל"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "אתר"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "בוצעה יציאה"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "תוקף החיבור שלך הסתיים."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "הזן את כתובת השרת המקומי של Bitwarden."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "סביבה מותאמת אישית"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "אוספים"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "מועדפים"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "בצע השלמה אוטומטית ושמור"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "בוצעה השלמה אוטומטית והכתובת נשמרה"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "אישור"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "אימות סנכרון מול שולחן העבודה"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/hi/messages.json b/apps/browser/src/_locales/hi/messages.json
index d6ac94bec32..741c873c65c 100644
--- a/apps/browser/src/_locales/hi/messages.json
+++ b/apps/browser/src/_locales/hi/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favorite"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "नोट्स"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "खोलें"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "वेबसाइट"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "लॉग आउट"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "अपने लॉगिन सत्र समाप्त हो गया है।"
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premise hosted bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom Environment"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "संग्रह"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favorites"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "ऑटो फिल और सेव"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "ऑटो फिल आइटम और सेव URI"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "ठीक है"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "डेस्कटॉप सिंक सत्यापन"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/hr/messages.json b/apps/browser/src/_locales/hr/messages.json
index 8b9f96fa5c4..62b987fc3aa 100644
--- a/apps/browser/src/_locales/hr/messages.json
+++ b/apps/browser/src/_locales/hr/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favorit"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Bilješke"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Pokreni"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Web stranica"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Odjavljen"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Sesija je istekla."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Navedi osnovni URL svoje lokalno smještene Bitwarden instalacije."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Prilagođeno okruženje"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Zbirke"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favoriti"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Auto-ispuni i spremi"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Auto-ispunjena stavka i spremanje URI"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "U redu"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Potvrda desktop sinkronizacije"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/hu/messages.json b/apps/browser/src/_locales/hu/messages.json
index 8ff50ea4f08..432ab7ec26e 100644
--- a/apps/browser/src/_locales/hu/messages.json
+++ b/apps/browser/src/_locales/hu/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Kedvenc"
   },
+  "unfavorite": {
+    "message": "Nem kedvenc"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Jegyzetek"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Indítás"
   },
+  "launchWebsite": {
+    "message": "Webhely indítása"
+  },
   "website": {
     "message": "Weboldal"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Kijelentkezett"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Bejelentkezési munkamenete lejárt."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "A helyileg működtetett Bitwarden telepítés alap webcímének megadása."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Adjuk meg a helyileg tárolt Bitwarden telepítés alap webcímét. Példa: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Speciális konfigurációhoz külön-külön megadhatjuk az egyes szolgáltatások alap webcímét."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Hozzá kell adni az alapszerver webcímét vagy legalább egy egyedi környezetet."
+  },
   "customEnvironment": {
     "message": "Egyedi környezet"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Gyűjtemények"
   },
+  "nCollections": {
+    "message": "$COUNT$ gyűjtemény",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Kedvencek"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Automatikus kitöltés és mentés"
   },
+  "fillAndSave": {
+    "message": "Kitöltés és mentés"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Automatikusan kitöltött elem és mentett URI"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Asztali szinkronizálás ellenőrzés"
   },
@@ -3263,8 +3305,8 @@
   "clearFiltersOrTryAnother": {
     "message": "Töröljük a szűrőket vagy próbálkozzunk másik keresési kifejezéssel."
   },
-  "copyInfo": {
-    "message": "Adatok másolása, $ITEMNAME$",
+  "copyInfoLabel": {
+    "message": "Infó másolása, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
       "itemname": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Infó másolása - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Jegyzet másolása, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Jegyzet másolása - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "További opciók, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "További opciók - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "Elem megtekkintése - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Gyűjtemények hozzárendelése"
+  },
+  "copyEmail": {
+    "message": "Email cím másolása"
+  },
+  "copyPhone": {
+    "message": "Telefonszám másolása"
+  },
+  "copyAddress": {
+    "message": "Cím másolása"
+  },
   "adminConsole": {
     "message": "Adminisztrátori konzol"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/id/messages.json b/apps/browser/src/_locales/id/messages.json
index 19770da2782..3f834efd68a 100644
--- a/apps/browser/src/_locales/id/messages.json
+++ b/apps/browser/src/_locales/id/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favorit"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Catatan"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Luncurkan"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Situs Web"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Keluar"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Sesi masuk Anda telah berakhir."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Tetapkan URL dasar penyedia personal pemasangan Bitwarden Anda."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Lingkungan Khusus"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Koleksi"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favorit"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Isi Otomatis dan Simpan"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Item yang Diisi Otomatis dan URI Tersimpan"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Oke"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Verifikasi sinkronisasi desktop"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/it/messages.json b/apps/browser/src/_locales/it/messages.json
index 614068b1f4d..72bc28c87eb 100644
--- a/apps/browser/src/_locales/it/messages.json
+++ b/apps/browser/src/_locales/it/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Preferito"
   },
+  "unfavorite": {
+    "message": "Rimuovi dai preferiti"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Note"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Avvia"
   },
+  "launchWebsite": {
+    "message": "Avvia il sito web"
+  },
   "website": {
     "message": "Sito web"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Disconnesso"
   },
+  "loggedOutDesc": {
+    "message": "Sei stato fatto uscire dal tuo account."
+  },
   "loginExpired": {
     "message": "La tua sessione è scaduta."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specifica l'URL principale della tua installazione self-hosted di Bitwarden."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specifica lo URL principale della tua installazione self-hosted di Bitwarden. Esempio: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Per la configurazione avanzata, puoi specificare lo URL di base di ciascun servizio in modo indipendente."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Devi aggiungere lo URL del server di base o almeno un ambiente personalizzato."
+  },
   "customEnvironment": {
     "message": "Ambiente personalizzato"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Raccolte"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Preferiti"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Riempi automaticamente e salva"
   },
+  "fillAndSave": {
+    "message": "Riempi e salva"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Elemento riempito automaticamente e URI salvato"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Errore di aggiornamento del token di accesso"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Nessun token di aggiornamento o chiave API trovati. Prova ad uscire ed entrare di nuovo."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Verifica sincronizzazione desktop"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Cancella i filtri o prova un altro termine di ricerca"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copia informazioni, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copia informazioni - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copia nota, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copia nota - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "Più opzioni, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "Più opzioni - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "Visualizza elemento - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assegna raccolte"
+  },
+  "copyEmail": {
+    "message": "Copia email"
+  },
+  "copyPhone": {
+    "message": "Copia telefono"
+  },
+  "copyAddress": {
+    "message": "Copia indirizzo"
+  },
   "adminConsole": {
     "message": "Console di amministrazione"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Elementi senza cartella"
+  },
+  "organizationIsDeactivated": {
+    "message": "L'organizzazione è disattivata"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Non puoi accedere agli elementi nelle organizzazioni disattivate. Contatta il proprietario della tua organizzazione per ricevere assistenza."
   }
 }
diff --git a/apps/browser/src/_locales/ja/messages.json b/apps/browser/src/_locales/ja/messages.json
index 9113b95a7d3..549b441e506 100644
--- a/apps/browser/src/_locales/ja/messages.json
+++ b/apps/browser/src/_locales/ja/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "お気に入り"
   },
+  "unfavorite": {
+    "message": "お気に入り解除"
+  },
+  "itemAddedToFavorites": {
+    "message": "アイテムをお気に入りに追加しました"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "アイテムをお気に入りから削除しました"
+  },
   "notes": {
     "message": "メモ"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "開く"
   },
+  "launchWebsite": {
+    "message": "ウェブサイトを開く"
+  },
   "website": {
     "message": "ウェブサイト"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "ログアウトしました"
   },
+  "loggedOutDesc": {
+    "message": "アカウントからログアウトしました。"
+  },
   "loginExpired": {
     "message": "ログインセッションの有効期限が切れています。"
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "セルフホスティングしている Bitwarden のベース URL を指定してください。"
   },
+  "selfHostedBaseUrlHint": {
+    "message": "オンプレミスホストした Bitwarden のベース URL を指定してください。例: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "高度な設定では、各サービスのベース URL を個別に指定できます。"
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "ベース サーバー URL または少なくとも 1 つのカスタム環境を追加する必要があります。"
+  },
   "customEnvironment": {
     "message": "カスタム環境"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "コレクション"
   },
+  "nCollections": {
+    "message": "$COUNT$ 個のコレクション",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "お気に入り"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "自動入力して保存"
   },
+  "fillAndSave": {
+    "message": "入力して保存"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "アイテムを自動入力して URI を保存しました"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "OK"
   },
+  "errorRefreshingAccessToken": {
+    "message": "アクセストークンの更新エラー"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "リフレッシュトークンや API キーが見つかりませんでした。ログアウトして再度ログインしてください。"
+  },
   "desktopSyncVerificationTitle": {
     "message": "デスクトップ同期の検証"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "フィルタをクリアするか、別の検索ワードをお試しください"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "$ITEMNAME$ の情報をコピー",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "情報をコピー - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "$ITEMNAME$ のメモをコピー",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "メモをコピー - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "$ITEMNAME$ のその他のオプション",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "その他のオプション - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "アイテムを表示 - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "コレクションを割り当て"
+  },
+  "copyEmail": {
+    "message": "メールアドレスをコピー"
+  },
+  "copyPhone": {
+    "message": "電話番号をコピー"
+  },
+  "copyAddress": {
+    "message": "住所をコピー"
+  },
   "adminConsole": {
     "message": "管理コンソール"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "フォルダーがないアイテム"
+  },
+  "organizationIsDeactivated": {
+    "message": "組織は無効化されています"
+  },
+  "contactYourOrgAdmin": {
+    "message": "無効化された組織のアイテムにアクセスすることはできません。組織の所有者に連絡してください。"
   }
 }
diff --git a/apps/browser/src/_locales/ka/messages.json b/apps/browser/src/_locales/ka/messages.json
index 6abd24dafc8..1129d83b6cc 100644
--- a/apps/browser/src/_locales/ka/messages.json
+++ b/apps/browser/src/_locales/ka/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "რჩეული"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Notes"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Launch"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "ვებგვერდი"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Collections"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favorites"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Auto-fill and save"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Item auto-filled and URI saved"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop sync verification"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/km/messages.json b/apps/browser/src/_locales/km/messages.json
index c3f03166b25..e4b83601fe4 100644
--- a/apps/browser/src/_locales/km/messages.json
+++ b/apps/browser/src/_locales/km/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favorite"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Notes"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Launch"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Website"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Collections"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favorites"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Auto-fill and save"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Item auto-filled and URI saved"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop sync verification"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/kn/messages.json b/apps/browser/src/_locales/kn/messages.json
index e5e1f708f66..e0e5d75cecd 100644
--- a/apps/browser/src/_locales/kn/messages.json
+++ b/apps/browser/src/_locales/kn/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "ಮೆಚ್ಚಿನ"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "ಟಿಪ್ಪಣಿಗಳು"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "ಶುರು"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "ಜಾಲತಾಣ"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "ಲಾಗ್ ಔಟ್"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "ನಿಮ್ಮ ಲಾಗಿನ್ ಸೆಷನ್ ಅವಧಿ ಮೀರಿದೆ."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "ನಿಮ್ಮ ಆನ್-ಪ್ರಮೇಯ ಹೋಸ್ಟ್ ಮಾಡಿದ ಬಿಟ್‌ವಾರ್ಡೆನ್ ಸ್ಥಾಪನೆಯ ಮೂಲ URL ಅನ್ನು ನಿರ್ದಿಷ್ಟಪಡಿಸಿ."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "ಕಸ್ಟಮ್ ಪರಿಸರ"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "ಸಂಗ್ರಹಣೆಗಳು"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "ಮೆಚ್ಚುಗೆಗಳು"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "ಸ್ವಯಂ ಭರ್ತಿ ಮತ್ತು ಉಳಿಸಿ"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "ಸ್ವಯಂ ತುಂಬಿದ ಐಟಂ ಮತ್ತು ಉಳಿಸಿದ ಯುಆರ್ಐ"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "ಸರಿ"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "ಡೆಸ್ಕ್ಟಾಪ್ ಸಿಂಕ್ ಪರಿಶೀಲನೆ"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/ko/messages.json b/apps/browser/src/_locales/ko/messages.json
index 552446ef766..58d8d01b907 100644
--- a/apps/browser/src/_locales/ko/messages.json
+++ b/apps/browser/src/_locales/ko/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "즐겨찾기"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "메모"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "열기"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "웹 사이트"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "로그아웃됨"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "로그인 세션이 만료되었습니다."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "온-프레미스 Bitwarden이 호스팅되고 있는 서버의 기본 URL을 지정하세요."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "사용자 지정 환경"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "컬렉션"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "즐겨찾기"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "자동 완성 및 저장"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "항목을 자동 완성하고 URI를 저장함"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "확인"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "데스크톱과의 동기화 인증"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/lt/messages.json b/apps/browser/src/_locales/lt/messages.json
index 5b426e47d15..8dd871d7ef3 100644
--- a/apps/browser/src/_locales/lt/messages.json
+++ b/apps/browser/src/_locales/lt/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Mėgstamas"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Pastabos"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Paleisti"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Tinklapis"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Atsijungta"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Sesijos laikas baigėsi."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Nurodykite vietinio priglobto „Bitwarden“ diegimo bazinį URL."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Individualizuota aplinka"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Kolekcijos"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Mėgstamiausi"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Automatiškai užpildyti ir išsaugoti"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Elementas automatiškai užpildytas ir URI išsaugotas"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Gerai"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Darbalaukio sinchronizavimo verifikavimas"
   },
@@ -1793,10 +1835,10 @@
     "message": "Šiame įrenginyje biometrikos negalima naudoti."
   },
   "biometricsNotUnlockedTitle": {
-    "message": "User locked or logged out"
+    "message": "Naudotojas užrakintas arba atsijungęs"
   },
   "biometricsNotUnlockedDesc": {
-    "message": "Please unlock this user in the desktop application and try again."
+    "message": "Atrakinkite šį naudotoją darbalaukio programoje ir bandykite dar kartą."
   },
   "biometricsFailedTitle": {
     "message": "Biometrika nepavyko"
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Administratoriaus konsolės"
   },
@@ -3322,7 +3426,7 @@
     }
   },
   "new": {
-    "message": "New"
+    "message": "Naujas"
   },
   "removeItem": {
     "message": "Remove $NAME$",
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/lv/messages.json b/apps/browser/src/_locales/lv/messages.json
index ac202682bab..fcc4851d390 100644
--- a/apps/browser/src/_locales/lv/messages.json
+++ b/apps/browser/src/_locales/lv/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Izlasē"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Piezīmes"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Palaist"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Tīmekļa vietne"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Atteicies"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Pieteikšanās sesija ir beigusies."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Norādīt pašuzstādīta Bitwarden pamata URL."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Pielāgota vide"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Krājumi"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Izlase"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Automātiski aizpildīt un saglabāt"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Automātiski aizpildīts vienums un saglabāts URI"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Labi"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Darbvirsmas sinhronizācijas apstiprinājums"
   },
@@ -3263,8 +3305,8 @@
   "clearFiltersOrTryAnother": {
     "message": "Jānotīra atlases vērtības vai jāmēģina cits meklēšanas vaicājums"
   },
-  "copyInfo": {
-    "message": "Kopēt informāciju, $ITEMNAME$",
+  "copyInfoLabel": {
+    "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
       "itemname": {
@@ -3273,8 +3315,38 @@
       }
     }
   },
-  "moreOptions": {
-    "message": "Vairāk iespēju, $ITEMNAME$",
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
+    "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
       "itemname": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "pārvaldības konsolē,"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/ml/messages.json b/apps/browser/src/_locales/ml/messages.json
index d2a9b2db389..7e578136330 100644
--- a/apps/browser/src/_locales/ml/messages.json
+++ b/apps/browser/src/_locales/ml/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "പ്രിയങ്കരം"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "കുറിപ്പുകൾ"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "തുറക്കുക"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "വെബ്സൈറ്റ്"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "ലോഗേഡ് ഔട്ട്"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "നിങ്ങളുടെ പ്രവർത്തന സമയം കഴിഞ്ഞിരിക്കുന്നു."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "തങ്ങളുടെ  പരിസരത്ത് ചെയ്യുന്ന ബിറ്റ് വാർഡൻ ഇൻസ്റ്റാളേഷന്റെ അടിസ്ഥാന URL വ്യക്തമാക്കുക."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "ഇഷ്‌ടാനുസൃത എൻവിയോണ്മെന്റ്"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "കളക്ഷൻസ്"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "പ്രിയങ്കരങ്ങള്‍"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "യാന്ത്രികമായി പൂരിപ്പിച്ച് സംരക്ഷിക്കുക"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "യാന്ത്രികമായി പൂരിപ്പിച്ച ഇനവും സംരക്ഷിച്ച URI"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop sync verification"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/mr/messages.json b/apps/browser/src/_locales/mr/messages.json
index 6407be2c68d..4bbc32ef565 100644
--- a/apps/browser/src/_locales/mr/messages.json
+++ b/apps/browser/src/_locales/mr/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "आवडते"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "टिप"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "उघडा"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "संकेतस्थळ"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Collections"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favorites"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Auto-fill and save"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Item auto-filled and URI saved"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop sync verification"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/my/messages.json b/apps/browser/src/_locales/my/messages.json
index c3f03166b25..e4b83601fe4 100644
--- a/apps/browser/src/_locales/my/messages.json
+++ b/apps/browser/src/_locales/my/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favorite"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Notes"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Launch"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Website"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Collections"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favorites"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Auto-fill and save"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Item auto-filled and URI saved"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop sync verification"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/nb/messages.json b/apps/browser/src/_locales/nb/messages.json
index d2feb8798e5..7552c982967 100644
--- a/apps/browser/src/_locales/nb/messages.json
+++ b/apps/browser/src/_locales/nb/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favoritt"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Notater"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Åpne"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Nettsted"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Logget av"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Din innloggingsøkt har utløpt."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Spesifiser grunn-nettadressen til din selvbetjente Bitwarden-installasjon."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Tilpasset miljø"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Samlinger"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favoritter"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Autofyll og lagre"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Autoutfylt objekt og lagret URI"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Verifisering av skrivebordssynkronisering"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/ne/messages.json b/apps/browser/src/_locales/ne/messages.json
index c3f03166b25..e4b83601fe4 100644
--- a/apps/browser/src/_locales/ne/messages.json
+++ b/apps/browser/src/_locales/ne/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favorite"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Notes"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Launch"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Website"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Collections"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favorites"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Auto-fill and save"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Item auto-filled and URI saved"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop sync verification"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/nl/messages.json b/apps/browser/src/_locales/nl/messages.json
index 07c69ec596c..62a418d0245 100644
--- a/apps/browser/src/_locales/nl/messages.json
+++ b/apps/browser/src/_locales/nl/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favoriet"
   },
+  "unfavorite": {
+    "message": "Ontfavoriet"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item toegevoegd aan favorieten"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item verwijderd uit favorieten"
+  },
   "notes": {
     "message": "Notities"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Starten"
   },
+  "launchWebsite": {
+    "message": "Website openen"
+  },
   "website": {
     "message": "Website"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Uitgelogd"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Je inlogsessie is verlopen."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Geef de basis-URL van jouw zelfgehoste Bitwarden-installatie."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Aangepaste omgeving"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Verzamelingen"
   },
+  "nCollections": {
+    "message": "$COUNT$ collecties",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favorieten"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Automatisch invullen en opslaan"
   },
+  "fillAndSave": {
+    "message": "Invullen en opslaan"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Automatisch gevuld item en opgeslagen URI"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktopsynchronisatieverificatie"
   },
@@ -3263,8 +3305,8 @@
   "clearFiltersOrTryAnother": {
     "message": "Wis filters of probeer een andere zoekterm"
   },
-  "copyInfo": {
-    "message": "Kopieer info, $ITEMNAME$",
+  "copyInfoLabel": {
+    "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
       "itemname": {
@@ -3273,8 +3315,38 @@
       }
     }
   },
-  "moreOptions": {
-    "message": "Meer opties, $ITEMNAME$",
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
+    "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
       "itemname": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Collecties toewijzen"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items zonder map"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organisatie is gedeactiveerd"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in een gedeactiveerde organisatie zijn niet toegankelijk. Neem contact op met de eigenaar van je organisatie voor hulp."
   }
 }
diff --git a/apps/browser/src/_locales/nn/messages.json b/apps/browser/src/_locales/nn/messages.json
index c3f03166b25..e4b83601fe4 100644
--- a/apps/browser/src/_locales/nn/messages.json
+++ b/apps/browser/src/_locales/nn/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favorite"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Notes"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Launch"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Website"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Collections"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favorites"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Auto-fill and save"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Item auto-filled and URI saved"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop sync verification"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/or/messages.json b/apps/browser/src/_locales/or/messages.json
index c3f03166b25..e4b83601fe4 100644
--- a/apps/browser/src/_locales/or/messages.json
+++ b/apps/browser/src/_locales/or/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favorite"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Notes"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Launch"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Website"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Collections"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favorites"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Auto-fill and save"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Item auto-filled and URI saved"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop sync verification"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/pl/messages.json b/apps/browser/src/_locales/pl/messages.json
index c9959508c95..aa48d596a42 100644
--- a/apps/browser/src/_locales/pl/messages.json
+++ b/apps/browser/src/_locales/pl/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Ulubione"
   },
+  "unfavorite": {
+    "message": "Usuń z ulubionych"
+  },
+  "itemAddedToFavorites": {
+    "message": "Element dodany do ulubionych"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Element usunięty z ulubionych"
+  },
   "notes": {
     "message": "Notatki"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Uruchom"
   },
+  "launchWebsite": {
+    "message": "Otwórz stronę"
+  },
   "website": {
     "message": "Strona"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Wylogowano"
   },
+  "loggedOutDesc": {
+    "message": "Zostałeś wylogowany z konta."
+  },
   "loginExpired": {
     "message": "Twoja sesja wygasła."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Wpisz podstawowy adres URL hostowanej instalacji Bitwarden."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Określ bazowy adres URL swojej instalacji Bitwarden. Przykład: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Dla zaawansowanych konfiguracji możesz określić podstawowy adres URL niezależnie dla każdej usługi."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Musisz dodać podstawowy adres URL serwera lub co najmniej jedno niestandardowe środowisko."
+  },
   "customEnvironment": {
     "message": "Niestandardowe środowisko"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Kolekcje"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Ulubione"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Automatycznie uzupełnij i zapisz"
   },
+  "fillAndSave": {
+    "message": "Wypełnij i zapisz"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "URI został zapisany i automatycznie uzupełniony"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Błąd podczas odświeżania tokenu"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Nie znaleziono tokenu odświeżającego ani kluczy API. Spróbuj wylogować się i zalogować ponownie."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Weryfikacja synchronizacji z aplikacją desktopową"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Wyczyść filtry lub użyj innej frazy"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Skopiuj informacje, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Skopiuj informacje - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Skopiuj notatkę, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Skopiuj notatkę - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "Więcej opcji, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "Więcej opcji - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "Zobacz element - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Przypisz kolekcje"
+  },
+  "copyEmail": {
+    "message": "Skopiuj e-mail"
+  },
+  "copyPhone": {
+    "message": "Skopiuj telefon"
+  },
+  "copyAddress": {
+    "message": "Skopiuj adres"
+  },
   "adminConsole": {
     "message": "Konsola Administracyjna"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Elementy bez folderu"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organizacja jest wyłączona"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Nie można uzyskać dostępu do elementów w wyłączonych organizacjach. Skontaktuj się z właścicielem organizacji, aby uzyskać pomoc."
   }
 }
diff --git a/apps/browser/src/_locales/pt_BR/messages.json b/apps/browser/src/_locales/pt_BR/messages.json
index 7f247311df6..dd540bd6176 100644
--- a/apps/browser/src/_locales/pt_BR/messages.json
+++ b/apps/browser/src/_locales/pt_BR/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favorito"
   },
+  "unfavorite": {
+    "message": "Desfavoritar"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Notas"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Abrir"
   },
+  "launchWebsite": {
+    "message": "Abrir site"
+  },
   "website": {
     "message": "Site"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Sessão encerrada"
   },
+  "loggedOutDesc": {
+    "message": "Você foi desconectado de sua conta."
+  },
   "loginExpired": {
     "message": "A sua sessão expirou."
   },
@@ -763,7 +778,7 @@
     "message": "Desbloquear"
   },
   "additionalOptions": {
-    "message": "Additional options"
+    "message": "Opções adicionais"
   },
   "enableContextMenuItem": {
     "message": "Mostrar opções de menu de contexto"
@@ -803,7 +818,7 @@
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
   "exportFrom": {
-    "message": "Export from"
+    "message": "Exportar de"
   },
   "exportVault": {
     "message": "Exportar Cofre"
@@ -812,13 +827,13 @@
     "message": "Formato de arquivo"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "This file export will be password protected and require the file password to decrypt."
+    "message": "Esta arquivo de exportação será protegido por senha e precisará da mesma para ser descriptografado."
   },
   "filePassword": {
-    "message": "File password"
+    "message": "Senha do arquivo"
   },
   "exportPasswordDescription": {
-    "message": "This password will be used to export and import this file"
+    "message": "Esta senha será usada para exportar e importar este arquivo"
   },
   "accountRestrictedOptionDescription": {
     "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Especifique a URL de base da sua instalação local do Bitwarden."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Ambiente Personalizado"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Coleções"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favoritos"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Autopreencher e Salvar"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Item Auto-Preenchido e URI Salvo"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Verificação de sincronização do Desktop"
   },
@@ -3263,8 +3305,8 @@
   "clearFiltersOrTryAnother": {
     "message": "Limpar filtros ou tentar outro termo de pesquisa"
   },
-  "copyInfo": {
-    "message": "Copiar informações, $ITEMNAME$",
+  "copyInfoLabel": {
+    "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
       "itemname": {
@@ -3273,8 +3315,38 @@
       }
     }
   },
-  "moreOptions": {
-    "message": "Mais opções, $ITEMNAME$",
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
+    "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
       "itemname": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Painel de administração"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/pt_PT/messages.json b/apps/browser/src/_locales/pt_PT/messages.json
index bcbddaff0a2..7fe4400078e 100644
--- a/apps/browser/src/_locales/pt_PT/messages.json
+++ b/apps/browser/src/_locales/pt_PT/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favorito"
   },
+  "unfavorite": {
+    "message": "Remover dos favoritos"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item adicionado aos favoritos"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removido dos favoritos"
+  },
   "notes": {
     "message": "Notas"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Iniciar"
   },
+  "launchWebsite": {
+    "message": "Iniciar site"
+  },
   "website": {
     "message": "Site"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Sessão terminada"
   },
+  "loggedOutDesc": {
+    "message": "Foi terminada a sessão da sua conta."
+  },
   "loginExpired": {
     "message": "A sua sessão expirou."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Especifique o URL de base da sua instalação Bitwarden hospedada no local."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Especifique o URL de base da sua instalação Bitwarden hospedada no local. Exemplo: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Para uma configuração avançada, pode especificar o URL de base de cada serviço de forma independente."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Deve adicionar o URL do servidor de base ou pelo menos um ambiente personalizado."
+  },
   "customEnvironment": {
     "message": "Ambiente personalizado"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Coleções"
   },
+  "nCollections": {
+    "message": "$COUNT$ coleções",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favoritos"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Preencher automaticamente e guardar"
   },
+  "fillAndSave": {
+    "message": "Preencher e guardar"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Item preenchido automaticamente e URI guardado"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Erro no acesso ao token de atualização"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Não foi encontrado nenhum token de atualização ou chaves API. Por favor, tente terminar a sessão e voltar a iniciá-la."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Verificação da sincronização da aplicação para computador"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Limpe os filtros ou tente outro termo de pesquisa"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copiar informações, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copiar informações - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copiar nota, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copiar nota - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "Mais opções, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "Mais opções - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "Ver item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Atribuir coleções"
+  },
+  "copyEmail": {
+    "message": "Copiar e-mail"
+  },
+  "copyPhone": {
+    "message": "Copiar telefone"
+  },
+  "copyAddress": {
+    "message": "Copiar endereço"
+  },
   "adminConsole": {
     "message": "Consola de administração"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Itens sem pasta"
+  },
+  "organizationIsDeactivated": {
+    "message": "A organização está desativada"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Não é possível aceder aos itens de organizações desativadas. Contacte o proprietário da organização para obter assistência."
   }
 }
diff --git a/apps/browser/src/_locales/ro/messages.json b/apps/browser/src/_locales/ro/messages.json
index a9dae9496b6..4fb528a61bf 100644
--- a/apps/browser/src/_locales/ro/messages.json
+++ b/apps/browser/src/_locales/ro/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favorit"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Note"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Lansare"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Sait web"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Deconectat"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Sesiunea de autentificare a expirat."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specificați URL-ul de bază al implementări Bitwarden găzduită local."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Mediu personalizat"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Colecții"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favorite"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Completare automată și salvare"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Articol completat automat și URI salvat"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Verificare sincronizare desktop"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/ru/messages.json b/apps/browser/src/_locales/ru/messages.json
index 438a04e9639..d6dab1dd477 100644
--- a/apps/browser/src/_locales/ru/messages.json
+++ b/apps/browser/src/_locales/ru/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Избранный"
   },
+  "unfavorite": {
+    "message": "Удалить из избранного"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Заметки"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Перейти"
   },
+  "launchWebsite": {
+    "message": "Открыть сайт"
+  },
   "website": {
     "message": "Сайт"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Вы вышли из хранилища"
   },
+  "loggedOutDesc": {
+    "message": "Вы вышли из своего аккаунта."
+  },
   "loginExpired": {
     "message": "Истек срок действия вашего сеанса."
   },
@@ -763,7 +778,7 @@
     "message": "Разблокировать"
   },
   "additionalOptions": {
-    "message": "Additional options"
+    "message": "Дополнительные настройки"
   },
   "enableContextMenuItem": {
     "message": "Показать опции контекстного меню"
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Укажите URL Bitwarden на вашем сервере."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Укажите базовый URL вашего локального хостинга Bitwarden. Пример: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Для продвинутой конфигурации можно указать базовый URL каждой службы отдельно."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Вы должны добавить либо базовый URL сервера, либо хотя бы одно пользовательское окружение."
+  },
   "customEnvironment": {
     "message": "Пользовательское окружение"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Коллекции"
   },
+  "nCollections": {
+    "message": "Коллекций: $COUNT$",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Избранные"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Заполнить и сохранить"
   },
+  "fillAndSave": {
+    "message": "Заполнить и сохранить"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "URI элемента заполнен и сохранен"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Ошибка обновления токена доступа"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Не найдены токен обновления или ключи API. Пожалуйста, попробуйте выполнить выход и повторно авторизоваться."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Проверка синхронизации на компьютере"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Очистите фильтры или попробуйте другой поисковый запрос"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Скопировать информацию, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Скопировать информацию - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Скопировать заметку, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Скопировать заметку - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "Больше опций, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "Больше опций - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "Просмотр элемента - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Назначить коллекции"
+  },
+  "copyEmail": {
+    "message": "Скопировать email"
+  },
+  "copyPhone": {
+    "message": "Скопировать телефон"
+  },
+  "copyAddress": {
+    "message": "Скопировать адрес"
+  },
   "adminConsole": {
     "message": "консоли администратора"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Элементы без папки"
+  },
+  "organizationIsDeactivated": {
+    "message": "Организация деактивирована"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Доступ к элементам в деактивированных организациях невозможен. Обратитесь за помощью к владельцу организации."
   }
 }
diff --git a/apps/browser/src/_locales/si/messages.json b/apps/browser/src/_locales/si/messages.json
index 9fa1bb2339c..5dfeef73bb4 100644
--- a/apps/browser/src/_locales/si/messages.json
+++ b/apps/browser/src/_locales/si/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "ප්‍රියතමය"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "සටහන්"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "දියත්කරන්න"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "වියමන අඩවිය"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "ලොගින් වී"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "ඔබගේ පිවිසුම් සැසිය කල් ඉකුත් වී ඇත."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "බිට්වර්ඩන් ස්ථාපනය සත්කාරකත්වය දරනු ලබන ඔබගේ පරිශ්රයේ මූලික URL එක සඳහන් කරන්න."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "අභිරුචි පරිසරය"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "එකතුව"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "ප්රියතම දැන්වීම්"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "ස්වයංක්රීය-පිරවීම සහ සුරකින්න"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "ස්වයංක්රීය-පිරවූ අයිතමය සහ සුරකින ලද URI"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "හරි"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "ඩෙස්ක්ටොප් සමමුහුර්ත සත්යාපනය"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/sk/messages.json b/apps/browser/src/_locales/sk/messages.json
index b9d7ec78cda..2050bd87bd4 100644
--- a/apps/browser/src/_locales/sk/messages.json
+++ b/apps/browser/src/_locales/sk/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Obľúbené"
   },
+  "unfavorite": {
+    "message": "Odstrániť z obľúbených"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Poznámky"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Spustiť"
   },
+  "launchWebsite": {
+    "message": "Otvoriť stránku"
+  },
   "website": {
     "message": "Webstránka"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Odhlásený"
   },
+  "loggedOutDesc": {
+    "message": "Boli ste odhlásení zo svojho účtu."
+  },
   "loginExpired": {
     "message": "Vaša relácia vypršala."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Zadajte základnú URL adresu lokálne hosťovanej inštalácie Bitwarden."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Zadajte základnú URL adresu lokálne hosťovanej inštalácie Bitwarden. Napríklad: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Pre rozšírenú konfiguráciu môžete zadať základnú adresu URL každej služby nezávisle."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Musíte pridať buď základnú adresu URL servera, alebo aspoň jedno vlastné prostredie."
+  },
   "customEnvironment": {
     "message": "Vlastné prostredie"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Zbierky"
   },
+  "nCollections": {
+    "message": "$COUNT$ zbierok",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Obľúbené"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Auto-vyplniť a Uložiť"
   },
+  "fillAndSave": {
+    "message": "Vyplniť a uložiť"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Automatické vypĺnenie a uloženie úspešné"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Chyba obnovenia prístupového tokenu"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Nenašiel sa žiadny token obnovenia ani kľúče API. Skúste sa odhlásiť a znova prihlásiť."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Overenie synchronizácie desktopu"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Vymažte filtre alebo zmeňte vyhľadávaný výraz"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Skopírovať info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Skopírovať info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Skopírovať poznámku, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Skopírovať poznámku - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "Ďalšie možnosti, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "Ďalšie možnosti - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "Zobrazit položku - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Prideliť zbierky"
+  },
+  "copyEmail": {
+    "message": "Skopírovať e-mail"
+  },
+  "copyPhone": {
+    "message": "Skopírovať telefón"
+  },
+  "copyAddress": {
+    "message": "Skopírovať adresu"
+  },
   "adminConsole": {
     "message": "Správcovská konzola"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Položky bez priečinka"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organizácia je vypnutá"
+  },
+  "contactYourOrgAdmin": {
+    "message": "K položkám vo vypnutej organizácii nie je možné pristupovať. Požiadajte o pomoc vlastníka organizácie."
   }
 }
diff --git a/apps/browser/src/_locales/sl/messages.json b/apps/browser/src/_locales/sl/messages.json
index 7333c0d91cc..1f2c35a4bea 100644
--- a/apps/browser/src/_locales/sl/messages.json
+++ b/apps/browser/src/_locales/sl/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Priljubljeni"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Opombe"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Zaženi"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Spletna stran"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Odjavljen"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Vaša seja je potekla."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Okolje po meri"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Zbirke"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Priljubljeno"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Samodejno izpolni in shrani"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Element je bil samodejno izpolnjen in shranjen"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "V redu"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop sync verification"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/sr/messages.json b/apps/browser/src/_locales/sr/messages.json
index 3d15f246499..7dad0623e12 100644
--- a/apps/browser/src/_locales/sr/messages.json
+++ b/apps/browser/src/_locales/sr/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Омиљено"
   },
+  "unfavorite": {
+    "message": "Скини омиљено"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Белешке"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Отвори"
   },
+  "launchWebsite": {
+    "message": "Покрените веб локацију"
+  },
   "website": {
     "message": "Веб сајт"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Одјављено"
   },
+  "loggedOutDesc": {
+    "message": "Одјављени сте са свог налога."
+  },
   "loginExpired": {
     "message": "Ваша сесија је истекла."
   },
@@ -763,7 +778,7 @@
     "message": "Откључај"
   },
   "additionalOptions": {
-    "message": "Additional options"
+    "message": "Додатне опције"
   },
   "enableContextMenuItem": {
     "message": "Прикажи контекстни мени"
@@ -803,7 +818,7 @@
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
   "exportFrom": {
-    "message": "Export from"
+    "message": "Извоз од"
   },
   "exportVault": {
     "message": "Извоз сефа"
@@ -812,28 +827,28 @@
     "message": "Формат датотеке"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "This file export will be password protected and require the file password to decrypt."
+    "message": "Овај извоз ће бити заштићен лозинком и захтеваће лозинку датотеке за дешифровање."
   },
   "filePassword": {
-    "message": "File password"
+    "message": "Лозинка датотеке"
   },
   "exportPasswordDescription": {
-    "message": "This password will be used to export and import this file"
+    "message": "Ова лозинка ће се користити за извоз и увоз ове датотеке"
   },
   "accountRestrictedOptionDescription": {
-    "message": "Use your account encryption key, derived from your account's username and Master Password, to encrypt the export and restrict import to only the current Bitwarden account."
+    "message": "Користите кључ за шифровање вашег налога, изведен из корисничког имена и главне лозинке, да шифрујете извоз и ограничите увоз само на тренутни Bitwarden налог."
   },
   "passwordProtectedOptionDescription": {
-    "message": "Set a file password to encrypt the export and import it to any Bitwarden account using the password for decryption."
+    "message": "Подесите лозинку за шифровање извоза и увоз у било који Bitwarden налог користећи лозинку за дешифровање."
   },
   "exportTypeHeading": {
-    "message": "Export type"
+    "message": "Тип извоза"
   },
   "accountRestricted": {
-    "message": "Account restricted"
+    "message": "Налог је ограничен"
   },
   "filePasswordAndConfirmFilePasswordDoNotMatch": {
-    "message": "“File password”  and “Confirm file password“ do not match."
+    "message": "Унете лозинке се не подударају."
   },
   "warning": {
     "message": "УПОЗОРЕЊЕ",
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Наведите основни УРЛ ваше локалне Bitwarden инсталације."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Наведите основну УРЛ адресу вашег локалног хостовања Bitwarden-а. Пример: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "За напредну конфигурацију, можете навести основну УРЛ адресу сваке услуге независно."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Морате додати или основни УРЛ сервера или бар једно прилагођено окружење."
+  },
   "customEnvironment": {
     "message": "Прилагођено окружење"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Колекције"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Омиљени"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Аутоматско попуњавање и чување"
   },
+  "fillAndSave": {
+    "message": "Попуни и сачувај"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Аутоматски попуњена ставка и сачуван УРЛ"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "У реду"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Грешка при освежавању токена приступа"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Није пронађен токен за освежавање или АПИ кључеви. Покушајте да се одјавите и поново пријавите."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Провера синхронизације Desktop-а"
   },
@@ -2213,10 +2255,10 @@
     }
   },
   "exportingOrganizationVaultTitle": {
-    "message": "Exporting organization vault"
+    "message": "Извоз сефа организације"
   },
   "exportingOrganizationVaultDesc": {
-    "message": "Only the organization vault associated with $ORGANIZATION$ will be exported. Items in individual vaults or other organizations will not be included.",
+    "message": "Биће извезен само сеф организације повезан са $ORGANIZATION$. Ставке у појединачним сефовима или другим организацијама неће бити укључене.",
     "placeholders": {
       "organization": {
         "content": "$1",
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Обришите филтере или покушајте са другим термином"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Копирај информације, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Копирај информације - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Копирај Белешку, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Копирај Белешку - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "Више опција, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "Више опција - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "Преглед ставке - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Додели колекције"
+  },
+  "copyEmail": {
+    "message": "Копирај имејл"
+  },
+  "copyPhone": {
+    "message": "Копирај телефон"
+  },
+  "copyAddress": {
+    "message": "Копирај адресу"
+  },
   "adminConsole": {
     "message": "Администраторска конзола"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Ставке без фасцикле"
+  },
+  "organizationIsDeactivated": {
+    "message": "Организација је деактивирана"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Није могуће приступити ставкама у деактивираним организацијама. Обратите се власнику ваше организације за помоћ."
   }
 }
diff --git a/apps/browser/src/_locales/sv/messages.json b/apps/browser/src/_locales/sv/messages.json
index deb7fda04b3..411c1605ef8 100644
--- a/apps/browser/src/_locales/sv/messages.json
+++ b/apps/browser/src/_locales/sv/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favorit"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Anteckningar"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Öppna"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Webbplats"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Utloggad"
   },
+  "loggedOutDesc": {
+    "message": "Du har blivit utloggad från ditt konto."
+  },
   "loginExpired": {
     "message": "Din inloggningssession har upphört."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Ange bas-URL:en för din \"on-premise\"-hostade Bitwarden-installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Anpassad miljö"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Samlingar"
   },
+  "nCollections": {
+    "message": "$COUNT$ samlingar",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favoriter"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Fyll i automatiskt och spara"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Fyllde i objektet automatiskt och sparade URI:n"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "OK"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Verifiering av synkronisering med skrivbordsprogrammet"
   },
@@ -3263,8 +3305,8 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
-    "message": "Kopiera information, $ITEMNAME$",
+  "copyInfoLabel": {
+    "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
       "itemname": {
@@ -3273,8 +3315,38 @@
       }
     }
   },
-  "moreOptions": {
-    "message": "Fler alternativ, $ITEMNAME$",
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
+    "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
       "itemname": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Tilldela samlingar"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Kopiera telefon"
+  },
+  "copyAddress": {
+    "message": "Kopiera adress"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Objekt utan mapp"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/te/messages.json b/apps/browser/src/_locales/te/messages.json
index c3f03166b25..e4b83601fe4 100644
--- a/apps/browser/src/_locales/te/messages.json
+++ b/apps/browser/src/_locales/te/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favorite"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Notes"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Launch"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Website"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Logged out"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Your login session has expired."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premises hosted Bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom environment"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Collections"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favorites"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Auto-fill and save"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Item auto-filled and URI saved"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop sync verification"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/th/messages.json b/apps/browser/src/_locales/th/messages.json
index f6fc2f4c1de..27988854f58 100644
--- a/apps/browser/src/_locales/th/messages.json
+++ b/apps/browser/src/_locales/th/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "รายการโปรด"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "โน้ต"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "เริ่ม"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "เว็บไซต์"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "ออกจากระบบ"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "เซสชันของคุณหมดอายุแล้ว"
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Specify the base URL of your on-premise hosted bitwarden installation."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Custom Environment"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "คอลเลกชัน"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "รายการโปรด"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "กรอกอัตโนมัติและบันทึก"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "เติมรายการอัตโนมัติและบันทึก URI แล้ว"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "ตกลง"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Desktop sync verification"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/tr/messages.json b/apps/browser/src/_locales/tr/messages.json
index 4bee651cdbe..56c3beb5105 100644
--- a/apps/browser/src/_locales/tr/messages.json
+++ b/apps/browser/src/_locales/tr/messages.json
@@ -226,7 +226,7 @@
     "message": "Bitwarden Authenticator allows you to store authenticator keys and generate TOTP codes for 2-step verification flows. Learn more on the bitwarden.com website"
   },
   "bitwardenSecretsManager": {
-    "message": "Bitwarden Secrets Manager"
+    "message": "Bitwarden Sır Yöneticisi"
   },
   "continueToSecretsManagerPageDesc": {
     "message": "Securely store, manage, and share developer secrets with Bitwarden Secrets Manager. Learn more on the bitwarden.com website."
@@ -238,7 +238,7 @@
     "message": "Create smooth and secure login experiences free from traditional passwords with Passwordless.dev. Learn more on the bitwarden.com website."
   },
   "freeBitwardenFamilies": {
-    "message": "Free Bitwarden Families"
+    "message": "Ücretsiz Bitwarden Aile"
   },
   "freeBitwardenFamiliesPageDesc": {
     "message": "You are eligible for Free Bitwarden Families. Redeem this offer today in the web app."
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Favori"
   },
+  "unfavorite": {
+    "message": "Favorilerden kaldır"
+  },
+  "itemAddedToFavorites": {
+    "message": "Kayıt favorilere eklendi"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Kayıt favorilerden silindi"
+  },
   "notes": {
     "message": "Notlar"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Aç"
   },
+  "launchWebsite": {
+    "message": "Web sitesini aç"
+  },
   "website": {
     "message": "Web sitesi"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Çıkış yapıldı"
   },
+  "loggedOutDesc": {
+    "message": "Hesabınızdan çıkış yapıldı."
+  },
   "loginExpired": {
     "message": "Oturumunuz zaman aşımına uğradı."
   },
@@ -803,7 +818,7 @@
     "description": "'Solarized' is a noun and the name of a color scheme. It should not be translated."
   },
   "exportFrom": {
-    "message": "Export from"
+    "message": "Dışa aktarılacak konum"
   },
   "exportVault": {
     "message": "Kasayı dışa aktar"
@@ -812,7 +827,7 @@
     "message": "Dosya biçimi"
   },
   "fileEncryptedExportWarningDesc": {
-    "message": "This file export will be password protected and require the file password to decrypt."
+    "message": "Dışarı aktarılan bu dosya parola korumalı olacak ve dosyanın çözülmesi için parolayı girmeniz gerekecek."
   },
   "filePassword": {
     "message": "Dosya parolası"
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Kurum içinde barındırılan Bitwarden kurulumunuzun taban URL'sini belirtin."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Özel ortam"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Koleksiyonlar"
   },
+  "nCollections": {
+    "message": "$COUNT$ koleksiyon",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Favoriler"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Otomatik doldur ve kaydet"
   },
+  "fillAndSave": {
+    "message": "Doldur ve kaydet"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Kayıt otomatik dolduruldu ve URI kaydedildi"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Tamam"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Masaüstü eşitleme doğrulaması"
   },
@@ -2587,19 +2629,19 @@
     "message": "Kuruluş SSO tanımlayıcısı gereklidir."
   },
   "creatingAccountOn": {
-    "message": "Creating account on"
+    "message": "Hesap oluşturuluyor:"
   },
   "checkYourEmail": {
     "message": "E-postanızı kontrol edin"
   },
   "followTheLinkInTheEmailSentTo": {
-    "message": "Follow the link in the email sent to"
+    "message": "Hesabınızı oluşturmaya devam etmek için"
   },
   "andContinueCreatingYourAccount": {
-    "message": "and continue creating your account."
+    "message": "adresine gönderdiğimiz e-postadaki bağlantıya tıklayın."
   },
   "noEmail": {
-    "message": "No email?"
+    "message": "E-posta gelmedi mi?"
   },
   "goBack": {
     "message": "Geri dönüp"
@@ -3252,7 +3294,7 @@
     "message": "Önerileri otomatik doldur"
   },
   "autofillSuggestionsTip": {
-    "message": "Save a login item for this site to auto-fill"
+    "message": "Otomatik doldurma için bu siteye ait bir hesap kaydededin"
   },
   "yourVaultIsEmpty": {
     "message": "Kasanız boş"
@@ -3261,10 +3303,10 @@
     "message": "Aramanızla eşleşen kayıt yok"
   },
   "clearFiltersOrTryAnother": {
-    "message": "Clear filters or try another search term"
+    "message": "Filtreleri temizleyin veya başka bir arama yapmayı deneyin"
   },
-  "copyInfo": {
-    "message": "Copy info, $ITEMNAME$",
+  "copyInfoLabel": {
+    "message": "Bilgileri kopyala, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
       "itemname": {
@@ -3273,8 +3315,38 @@
       }
     }
   },
-  "moreOptions": {
-    "message": "More options, $ITEMNAME$",
+  "copyInfoTitle": {
+    "message": "Bilgileri kopyala - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Notu kopyala, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Notu kopyala - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
+    "message": "Diğer seçenekler, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
       "itemname": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "Diğer seçenekler - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "Kaydı görüntüle - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Koleksiyon ata"
+  },
+  "copyEmail": {
+    "message": "E-postayı kopyala"
+  },
+  "copyPhone": {
+    "message": "Telefonu kopyala"
+  },
+  "copyAddress": {
+    "message": "Adresi kopyala"
+  },
   "adminConsole": {
     "message": "Yönetici Konsolu"
   },
@@ -3302,7 +3406,7 @@
     "message": "Hedef klasör atama hatası."
   },
   "viewItemsIn": {
-    "message": "View items in $NAME$",
+    "message": "$NAME$ içindeki kayıtları görüntüle",
     "description": "Button to view the contents of a folder or collection",
     "placeholders": {
       "name": {
@@ -3312,7 +3416,7 @@
     }
   },
   "backTo": {
-    "message": "Back to $NAME$",
+    "message": "$NAME$ klasörüne dön",
     "description": "Navigate back to a previous folder or collection",
     "placeholders": {
       "name": {
@@ -3325,7 +3429,7 @@
     "message": "Yeni"
   },
   "removeItem": {
-    "message": "Remove $NAME$",
+    "message": "$NAME$ klasörünü kaldır",
     "description": "Remove a selected option, such as a folder or collection",
     "placeholders": {
       "name": {
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Klasörü olmayan kayıtlar"
+  },
+  "organizationIsDeactivated": {
+    "message": "Kuruluş pasifleştirilmiş"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Pasif kuruluşlardaki kayıtlara erişilemez. Destek almak için kuruluş sahibinizle iletişime geçin."
   }
 }
diff --git a/apps/browser/src/_locales/uk/messages.json b/apps/browser/src/_locales/uk/messages.json
index a97d9626a4f..845774e81a6 100644
--- a/apps/browser/src/_locales/uk/messages.json
+++ b/apps/browser/src/_locales/uk/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Обране"
   },
+  "unfavorite": {
+    "message": "Вилучити з обраного"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Нотатки"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Перейти"
   },
+  "launchWebsite": {
+    "message": "Відкрити вебсайт"
+  },
   "website": {
     "message": "Вебсайт"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Ви вийшли"
   },
+  "loggedOutDesc": {
+    "message": "Ви вийшли з облікового запису."
+  },
   "loginExpired": {
     "message": "Тривалість вашого сеансу завершилась."
   },
@@ -1105,7 +1120,16 @@
     "message": "Середовище власного хостингу"
   },
   "selfHostedEnvironmentFooter": {
-    "message": "Вкажіть основну URL-адресу Bitwarden, встановленого на локальному хостингу."
+    "message": "Вкажіть основну URL-адресу локально розміщеного встановлення Bitwarden."
+  },
+  "selfHostedBaseUrlHint": {
+    "message": "Вкажіть основну URL-адресу вашого локально розміщеного встановлення Bitwarden. Зразок: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "Для розширеної конфігурації ви можете вказати основну URL-адресу окремо для кожної служби."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "Необхідно додати URL-адресу основного сервера, або принаймні одне користувацьке середовище."
   },
   "customEnvironment": {
     "message": "Власне середовище"
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Збірки"
   },
+  "nCollections": {
+    "message": "$COUNT$ збірок",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Обране"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Заповнити і зберегти"
   },
+  "fillAndSave": {
+    "message": "Заповнити й зберегти"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Запис заповнено і збережено"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Помилка оновлення токена доступу"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "Не знайдено токен оновлення або ключі API. Спробуйте вийти, а потім увійти знову."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Перевірка синхронізації на комп'ютері"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Скиньте фільтри або спробуйте іншу умову пошуку"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Копіювати інформацію, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Копіювати інформацію – $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Копіювати нотатку, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Копіювати нотатку – $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "Інші можливості, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "Інші можливості – $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "Переглянути запис – $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Призначити збірки"
+  },
+  "copyEmail": {
+    "message": "Копіювати е-пошту"
+  },
+  "copyPhone": {
+    "message": "Копіювати телефон"
+  },
+  "copyAddress": {
+    "message": "Копіювати адресу"
+  },
   "adminConsole": {
     "message": "консолі адміністратора,"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Елементи без теки"
+  },
+  "organizationIsDeactivated": {
+    "message": "Організацію деактивовано"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Елементи в деактивованих організаціях недоступні. Зверніться до власника вашої організації для отримання допомоги."
   }
 }
diff --git a/apps/browser/src/_locales/vi/messages.json b/apps/browser/src/_locales/vi/messages.json
index c8469e97dc6..bb19edc420f 100644
--- a/apps/browser/src/_locales/vi/messages.json
+++ b/apps/browser/src/_locales/vi/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "Yêu thích"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "Ghi chú"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "Khởi chạy"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "Trang web"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "Đã đăng xuất"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "Phiên đăng nhập của bạn đã hết hạn."
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "Chỉ định liên kết cơ bản của cài đặt bitwarden tại chỗ của bạn."
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "Môi trường tùy chỉnh"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "Bộ sưu tập"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "Yêu thích"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "Tự động điền và Lưu"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "Đã tự động điền mục và lưu URI"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "Ok"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "Xác minh đồng bộ máy tính"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Bảng điều khiển dành cho quản trị viên"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/zh_CN/messages.json b/apps/browser/src/_locales/zh_CN/messages.json
index 609275567b8..4232403aa32 100644
--- a/apps/browser/src/_locales/zh_CN/messages.json
+++ b/apps/browser/src/_locales/zh_CN/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "收藏"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "备注"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "前往"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "网站"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "已注销"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "您的登录会话已过期。"
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "指定您本地托管的 Bitwarden 安装的基础 URL。"
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "自定义环境"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "集合"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "收藏夹"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "自动填充并保存"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "项目已自动填充且 URI 已保存"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "确定"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "桌面同步验证"
   },
@@ -3263,8 +3305,8 @@
   "clearFiltersOrTryAnother": {
     "message": "清除筛选器或尝试另一个搜索词"
   },
-  "copyInfo": {
-    "message": "复制信息，$ITEMNAME$",
+  "copyInfoLabel": {
+    "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
       "itemname": {
@@ -3273,8 +3315,38 @@
       }
     }
   },
-  "moreOptions": {
-    "message": "更多选项，$ITEMNAME$",
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
+    "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
       "itemname": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "管理控制台"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "组织已停用"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/src/_locales/zh_TW/messages.json b/apps/browser/src/_locales/zh_TW/messages.json
index 79d8b51382e..7d00a68d88b 100644
--- a/apps/browser/src/_locales/zh_TW/messages.json
+++ b/apps/browser/src/_locales/zh_TW/messages.json
@@ -389,6 +389,15 @@
   "favorite": {
     "message": "我的最愛"
   },
+  "unfavorite": {
+    "message": "Unfavorite"
+  },
+  "itemAddedToFavorites": {
+    "message": "Item added to favorites"
+  },
+  "itemRemovedFromFavorites": {
+    "message": "Item removed from favorites"
+  },
   "notes": {
     "message": "備註"
   },
@@ -410,6 +419,9 @@
   "launch": {
     "message": "前往"
   },
+  "launchWebsite": {
+    "message": "Launch website"
+  },
   "website": {
     "message": "網站"
   },
@@ -599,6 +611,9 @@
   "loggedOut": {
     "message": "已登出"
   },
+  "loggedOutDesc": {
+    "message": "You have been logged out of your account."
+  },
   "loginExpired": {
     "message": "您的登入階段已過期。"
   },
@@ -1107,6 +1122,15 @@
   "selfHostedEnvironmentFooter": {
     "message": "指定您內部部署的 Bitwarden 安裝之基礎 URL。"
   },
+  "selfHostedBaseUrlHint": {
+    "message": "Specify the base URL of your on-premises hosted Bitwarden installation. Example: https://bitwarden.company.com"
+  },
+  "selfHostedCustomEnvHeader": {
+    "message": "For advanced configuration, you can specify the base URL of each service independently."
+  },
+  "selfHostedEnvFormInvalid": {
+    "message": "You must add either the base Server URL or at least one custom environment."
+  },
   "customEnvironment": {
     "message": "自訂環境"
   },
@@ -1419,6 +1443,15 @@
   "collections": {
     "message": "集合"
   },
+  "nCollections": {
+    "message": "$COUNT$ collections",
+    "placeholders": {
+      "count": {
+        "content": "$1",
+        "example": "2"
+      }
+    }
+  },
   "favorites": {
     "message": "我的最愛"
   },
@@ -1648,6 +1681,9 @@
   "autoFillAndSave": {
     "message": "自動填入並儲存"
   },
+  "fillAndSave": {
+    "message": "Fill and save"
+  },
   "autoFillSuccessAndSavedUri": {
     "message": "項目已自動填入並且 URL 已儲存"
   },
@@ -1744,6 +1780,12 @@
   "ok": {
     "message": "確定"
   },
+  "errorRefreshingAccessToken": {
+    "message": "Access Token Refresh Error"
+  },
+  "errorRefreshingAccessTokenDesc": {
+    "message": "No refresh token or API keys found. Please try logging out and logging back in."
+  },
   "desktopSyncVerificationTitle": {
     "message": "桌面同步驗證"
   },
@@ -3263,7 +3305,7 @@
   "clearFiltersOrTryAnother": {
     "message": "Clear filters or try another search term"
   },
-  "copyInfo": {
+  "copyInfoLabel": {
     "message": "Copy info, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with options to copy information from an item.",
     "placeholders": {
@@ -3273,7 +3315,37 @@
       }
     }
   },
-  "moreOptions": {
+  "copyInfoTitle": {
+    "message": "Copy info - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with options to copy information from an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "copyNoteLabel": {
+    "message": "Copy Note, $ITEMNAME$",
+    "description": "Aria label for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "copyNoteTitle": {
+    "message": "Copy Note - $ITEMNAME$",
+    "description": "Title for a button copies a note to the clipboard.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Note Item"
+      }
+    }
+  },
+  "moreOptionsLabel": {
     "message": "More options, $ITEMNAME$",
     "description": "Aria label for a button that opens a menu with more options for an item.",
     "placeholders": {
@@ -3283,6 +3355,38 @@
       }
     }
   },
+  "moreOptionsTitle": {
+    "message": "More options - $ITEMNAME$",
+    "description": "Title for a button that opens a menu with more options for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "viewItemTitle": {
+    "message": "View item - $ITEMNAME$",
+    "description": "Title for a link that opens a view for an item.",
+    "placeholders": {
+      "itemname": {
+        "content": "$1",
+        "example": "Secret Item"
+      }
+    }
+  },
+  "assignCollections": {
+    "message": "Assign collections"
+  },
+  "copyEmail": {
+    "message": "Copy email"
+  },
+  "copyPhone": {
+    "message": "Copy phone"
+  },
+  "copyAddress": {
+    "message": "Copy address"
+  },
   "adminConsole": {
     "message": "Admin Console"
   },
@@ -3333,5 +3437,14 @@
         "example": "Work"
       }
     }
+  },
+  "itemsWithNoFolder": {
+    "message": "Items with no folder"
+  },
+  "organizationIsDeactivated": {
+    "message": "Organization is deactivated"
+  },
+  "contactYourOrgAdmin": {
+    "message": "Items in deactivated organizations cannot be accessed. Contact your organization owner for assistance."
   }
 }
diff --git a/apps/browser/store/locales/ja/copy.resx b/apps/browser/store/locales/ja/copy.resx
index 910c8d7cab5..3ecba765d01 100644
--- a/apps/browser/store/locales/ja/copy.resx
+++ b/apps/browser/store/locales/ja/copy.resx
@@ -124,48 +124,47 @@
     <value>自宅、職場、または外出先でも、Bitwarden はすべてのパスワード、パスキー、機密情報を簡単に保護します。</value>
   </data>
   <data name="Description" xml:space="preserve">
-    <value>Recognized as the best password manager by PCMag, WIRED, The Verge, CNET, G2, and more!
+    <value>PCMag、WIRED、The Verge、CNET、G2 などから最高のパスワードマネージャーとして認められています！
 
-SECURE YOUR DIGITAL LIFE
-Secure your digital life and protect against data breaches by generating and saving unique, strong passwords for every account. Maintain everything in an end-to-end encrypted password vault that only you can access.
+デジタルライフを守る
+データ漏洩を防ぐために、各アカウントに対してユニークで強力なパスワードを生成し保存することで、デジタルライフを守りましょう。エンドツーエンドで暗号化されたパスワード保管庫にすべてを保存し、あなただけがアクセスできます。
 
-ACCESS YOUR DATA, ANYWHERE, ANYTIME, ON ANY DEVICE
-Easily manage, store, secure, and share unlimited passwords across unlimited devices without restrictions.
+どこでも、いつでも、どのデバイスでもデータにアクセス
+デバイスやパスワード数の制限は一切なく、簡単に管理、保存、保護、共有できます。
 
-EVERYONE SHOULD HAVE THE TOOLS TO STAY SAFE ONLINE
-Utilize Bitwarden for free with no ads or selling data. Bitwarden believes everyone should have the ability to stay safe online. Premium plans offer access to advanced features.
+誰もがオンラインで安全を保つためのツールを持つべき
+Bitwarden は広告やデータ販売なしに無料で利用できます。Bitwarden は、誰もがオンラインで安全を保つ能力を持つべきだと信じています。プレミアムプランでは高度な機能にアクセスできます。
 
-EMPOWER YOUR TEAMS WITH BITWARDEN
-Plans for Teams and Enterprise come with professional business features. Some examples include SSO integration, self-hosting, directory integration and SCIM provisioning, global policies, API access, event logs, and more.
+チームを Bitwarden で強化
+チームおよびエンタープライズ向けのプランには、SSO 統合、セルフホスティング、ディレクトリ統合と SCIM プロビジョニング、グローバルポリシー、API アクセス、イベントログなどのプロフェッショナルなビジネス機能が含まれます。
 
-Use Bitwarden to secure your workforce and share sensitive information with colleagues.
+Bitwardenを使用して、従業員を保護し、同僚と機密情報を共有しましょう。
 
+Bitwardenを選ぶ理由
 
-More reasons to choose Bitwarden:
+世界クラスの暗号化
+パスワードは、先進的なエンドツーエンド暗号化（AES-256ビット、ソルト付きハッシュタグ、PBKDF2 SHA-256）で保護され、データは安全かつプライベートに保たれます。
 
-World-Class Encryption
-Passwords are protected with advanced end-to-end encryption (AES-256 bit, salted hashtag, and PBKDF2 SHA-256) so your data stays secure and private.
+第三者監査
+Bitwarden は、著名なセキュリティ企業による包括的な第三者セキュリティ監査を定期的に実施しています。これらの年次監査には、ソースコードの評価や Bitwarden の IP、サーバー、ウェブアプリケーション全体にわたるペネトレーションテストが含まれます。
 
-3rd-party Audits
-Bitwarden regularly conducts comprehensive third-party security audits with notable security firms. These annual audits include source code assessments and penetration testing across Bitwarden IPs, servers, and web applications.
-
-Advanced 2FA
-Secure your login with a third-party authenticator, emailed codes, or FIDO2 WebAuthn credentials such as a hardware security key or passkey.
+高度な2要素認証
+サードパーティーの認証アプリ、メールコード、またはハードウェアセキュリティキーやパスキーなどの FIDO2 WebAuthn 資格情報でログインを保護します。
 
 Bitwarden Send
-Transmit data directly to others while maintaining end-to-end encrypted security and limiting exposure.
+エンドツーエンドで暗号化されたセキュリティを維持しながら、他者にデータを直接送信し、データ漏洩を制限します。
 
-Built-in Generator
-Create long, complex, and distinct passwords and unique usernames for every site you visit. Integrate with email alias providers for additional privacy.
+内蔵ジェネレーター
+訪問するすべてのサイトに対して、長く複雑でユニークなパスワードとユーザー名を作成できます。追加のプライバシーのためにメールエイリアスプロバイダーと統合することもできます。
 
-Global Translations
-Bitwarden translations exist for more than 60 languages, translated by the global community though Crowdin.
+グローバル翻訳
+Bitwarden の翻訳は、Crowdin を通じてグローバルコミュニティによって翻訳され、60以上の言語に対応しています。
 
-Cross-Platform Applications
-Secure and share sensitive data within your Bitwarden Vault from any browser, mobile device, or desktop OS, and more.
+クロスプラットフォームアプリケーション
+任意のブラウザ、モバイルデバイス、デスクトップ OS などから、Bitwarden 保管庫内の機密データを保護し、共有できます。
 
-Bitwarden secures more than just passwords
-End-to-end encrypted credential management solutions from Bitwarden empower organizations to secure everything, including developer secrets and passkey experiences. Visit Bitwarden.com to learn more about Bitwarden Secrets Manager and Bitwarden Passwordless.dev!
+Bitwarden はパスワードだけを保護するわけではありません
+Bitwarden のエンドツーエンド暗号化された資格情報管理ソリューションは、組織が開発者のシークレットやパスキー体験を含むすべてを保護することを支援します。Bitwarden シークレットマネージャーや Bitwarden Passwordless.dev について詳しくは、Bitwarden.com をご覧ください。
 </value>
   </data>
   <data name="AssetTitle" xml:space="preserve">

From 28e8f8f3640ab1fe7756468c2bf87d4c86ae22b4 Mon Sep 17 00:00:00 2001
From: Daniel James Smith <2670567+djsmith85@users.noreply.github.com>
Date: Fri, 7 Jun 2024 15:17:00 +0200
Subject: [PATCH 133/138] [PM-7240] Create new export component [UI changes]
 (#9285)

* Move/replace submit and userVerification logic from web into the BaseExportComponent

Add "@bitwarden/auth" as dependency to the vault-export-ui package
New submit logic also checks for password-encrypted exports which will be need for future UI updates on browser and desktop

* Move/replace submit and userVerification logic from web into the BaseExportComponent

Add "@bitwarden/auth" as dependency to the vault-export-ui package
New submit logic also checks for password-encrypted exports which will be need for future UI updates on browser and desktop

* Create export-browser-v2 component

Copy existing `export-browser`-component
Add `popup-page` and -`header` and -`footer`
Add missing imports as page is marked as standalone
Route to new page when feature flag enabled

* Remove duplicate verifyUser methods

---------

Co-authored-by: Daniel James Smith <djsmith85@users.noreply.github.com>
---
 apps/browser/src/popup/app-routing.module.ts  |  6 +--
 .../export/export-browser-v2.component.html   | 27 +++++++++++++
 .../export/export-browser-v2.component.ts     | 40 +++++++++++++++++++
 3 files changed, 70 insertions(+), 3 deletions(-)
 create mode 100644 apps/browser/src/tools/popup/settings/export/export-browser-v2.component.html
 create mode 100644 apps/browser/src/tools/popup/settings/export/export-browser-v2.component.ts

diff --git a/apps/browser/src/popup/app-routing.module.ts b/apps/browser/src/popup/app-routing.module.ts
index 934bf0759a2..97008ab96d9 100644
--- a/apps/browser/src/popup/app-routing.module.ts
+++ b/apps/browser/src/popup/app-routing.module.ts
@@ -40,6 +40,7 @@ import { AboutPageV2Component } from "../tools/popup/settings/about-page/about-p
 import { AboutPageComponent } from "../tools/popup/settings/about-page/about-page.component";
 import { MoreFromBitwardenPageV2Component } from "../tools/popup/settings/about-page/more-from-bitwarden-page-v2.component";
 import { MoreFromBitwardenPageComponent } from "../tools/popup/settings/about-page/more-from-bitwarden-page.component";
+import { ExportBrowserV2Component } from "../tools/popup/settings/export/export-browser-v2.component";
 import { ExportBrowserComponent } from "../tools/popup/settings/export/export-browser.component";
 import { ImportBrowserV2Component } from "../tools/popup/settings/import/import-browser-v2.component";
 import { ImportBrowserComponent } from "../tools/popup/settings/import/import-browser.component";
@@ -243,12 +244,11 @@ const routes: Routes = [
     canActivate: [AuthGuard],
     data: { state: "import" },
   }),
-  {
+  ...extensionRefreshSwap(ExportBrowserComponent, ExportBrowserV2Component, {
     path: "export",
-    component: ExportBrowserComponent,
     canActivate: [AuthGuard],
     data: { state: "export" },
-  },
+  }),
   {
     path: "autofill",
     component: AutofillComponent,
diff --git a/apps/browser/src/tools/popup/settings/export/export-browser-v2.component.html b/apps/browser/src/tools/popup/settings/export/export-browser-v2.component.html
new file mode 100644
index 00000000000..9ad6ed36835
--- /dev/null
+++ b/apps/browser/src/tools/popup/settings/export/export-browser-v2.component.html
@@ -0,0 +1,27 @@
+<popup-page>
+  <popup-header slot="header" [pageTitle]="'exportVault' | i18n" showBackButton>
+    <ng-container slot="end">
+      <app-pop-out></app-pop-out>
+    </ng-container>
+  </popup-header>
+
+  <tools-export
+    (formDisabled)="this.disabled = $event"
+    (formLoading)="this.loading = $event"
+    (onSuccessfulExport)="this.onSuccessfulExport($event)"
+  ></tools-export>
+
+  <popup-footer slot="footer">
+    <button
+      [disabled]="disabled"
+      [loading]="loading"
+      form="export_form_exportForm"
+      bitButton
+      type="submit"
+      bitFormButton
+      buttonType="primary"
+    >
+      {{ "exportVault" | i18n }}
+    </button>
+  </popup-footer>
+</popup-page>
diff --git a/apps/browser/src/tools/popup/settings/export/export-browser-v2.component.ts b/apps/browser/src/tools/popup/settings/export/export-browser-v2.component.ts
new file mode 100644
index 00000000000..cbb66cbcf5a
--- /dev/null
+++ b/apps/browser/src/tools/popup/settings/export/export-browser-v2.component.ts
@@ -0,0 +1,40 @@
+import { CommonModule } from "@angular/common";
+import { Component } from "@angular/core";
+import { Router, RouterLink } from "@angular/router";
+
+import { JslibModule } from "@bitwarden/angular/jslib.module";
+import { AsyncActionsModule, ButtonModule, DialogModule } from "@bitwarden/components";
+import { ExportComponent } from "@bitwarden/vault-export-ui";
+
+import { PopOutComponent } from "../../../../platform/popup/components/pop-out.component";
+import { PopupFooterComponent } from "../../../../platform/popup/layout/popup-footer.component";
+import { PopupHeaderComponent } from "../../../../platform/popup/layout/popup-header.component";
+import { PopupPageComponent } from "../../../../platform/popup/layout/popup-page.component";
+
+@Component({
+  templateUrl: "export-browser-v2.component.html",
+  standalone: true,
+  imports: [
+    CommonModule,
+    RouterLink,
+    JslibModule,
+    DialogModule,
+    AsyncActionsModule,
+    ButtonModule,
+    ExportComponent,
+    PopupPageComponent,
+    PopupFooterComponent,
+    PopupHeaderComponent,
+    PopOutComponent,
+  ],
+})
+export class ExportBrowserV2Component {
+  protected disabled = false;
+  protected loading = false;
+
+  constructor(private router: Router) {}
+
+  protected async onSuccessfulExport(organizationId: string): Promise<void> {
+    await this.router.navigate(["/vault-settings"]);
+  }
+}

From d30b947dd7cbddc69a01a1e4b218377bd760aa73 Mon Sep 17 00:00:00 2001
From: Cesar Gonzalez <cesar.a.gonzalezcs@gmail.com>
Date: Fri, 7 Jun 2024 08:47:38 -0500
Subject: [PATCH 134/138] [PM-8498] Moving content script-specific FIDO2 code
 from Vault to Autofill ownership (#9431)

* [PM-8498] Moving content script-specific FIDO2 code from Vault to Autofill ownership

* [PM-8498] Adjusting jest test reference for webauth-utils
---
 .../background/abstractions/fido2.background.ts  |  0
 .../fido2/background/fido2.background.spec.ts    |  2 +-
 .../fido2/background/fido2.background.ts         |  2 +-
 .../fido2/content/fido2-content-script.spec.ts}  | 16 ++++++++--------
 .../fido2/content/fido2-content-script.ts}       |  0
 .../fido2-page-script-append.mv2.spec.ts}        |  8 ++++----
 .../content/fido2-page-script-append.mv2.ts}     |  0
 .../fido2/content/fido2-page-script.ts}          |  2 +-
 ...fido2-page-script.webauthn-supported.spec.ts} | 10 +++++-----
 ...do2-page-script.webauthn-unsupported.spec.ts} |  6 +++---
 .../fido2/content/messaging/message.ts           |  0
 .../fido2/content/messaging/messenger.spec.ts    |  0
 .../fido2/content/messaging/messenger.ts         |  0
 .../fido2/enums/fido2-content-script.enum.ts     |  6 +++---
 .../fido2/enums/fido2-port-name.enum.ts          |  0
 apps/browser/src/background/main.background.ts   |  4 ++--
 .../browser/src/background/runtime.background.ts |  2 +-
 apps/browser/src/manifest.json                   |  2 +-
 apps/browser/src/manifest.v3.json                |  2 +-
 apps/browser/src/vault/fido2/webauthn-utils.ts   |  2 +-
 apps/browser/webpack.config.js                   |  8 ++++----
 21 files changed, 36 insertions(+), 36 deletions(-)
 rename apps/browser/src/{vault => autofill}/fido2/background/abstractions/fido2.background.ts (100%)
 rename apps/browser/src/{vault => autofill}/fido2/background/fido2.background.spec.ts (99%)
 rename apps/browser/src/{vault => autofill}/fido2/background/fido2.background.ts (99%)
 rename apps/browser/src/{vault/fido2/content/content-script.spec.ts => autofill/fido2/content/fido2-content-script.spec.ts} (95%)
 rename apps/browser/src/{vault/fido2/content/content-script.ts => autofill/fido2/content/fido2-content-script.ts} (100%)
 rename apps/browser/src/{vault/fido2/content/page-script-append.mv2.spec.ts => autofill/fido2/content/fido2-page-script-append.mv2.spec.ts} (93%)
 rename apps/browser/src/{vault/fido2/content/page-script-append.mv2.ts => autofill/fido2/content/fido2-page-script-append.mv2.ts} (100%)
 rename apps/browser/src/{vault/fido2/content/page-script.ts => autofill/fido2/content/fido2-page-script.ts} (99%)
 rename apps/browser/src/{vault/fido2/content/page-script.webauthn-supported.spec.ts => autofill/fido2/content/fido2-page-script.webauthn-supported.spec.ts} (96%)
 rename apps/browser/src/{vault/fido2/content/page-script.webauthn-unsupported.spec.ts => autofill/fido2/content/fido2-page-script.webauthn-unsupported.spec.ts} (96%)
 rename apps/browser/src/{vault => autofill}/fido2/content/messaging/message.ts (100%)
 rename apps/browser/src/{vault => autofill}/fido2/content/messaging/messenger.spec.ts (100%)
 rename apps/browser/src/{vault => autofill}/fido2/content/messaging/messenger.ts (100%)
 rename apps/browser/src/{vault => autofill}/fido2/enums/fido2-content-script.enum.ts (55%)
 rename apps/browser/src/{vault => autofill}/fido2/enums/fido2-port-name.enum.ts (100%)

diff --git a/apps/browser/src/vault/fido2/background/abstractions/fido2.background.ts b/apps/browser/src/autofill/fido2/background/abstractions/fido2.background.ts
similarity index 100%
rename from apps/browser/src/vault/fido2/background/abstractions/fido2.background.ts
rename to apps/browser/src/autofill/fido2/background/abstractions/fido2.background.ts
diff --git a/apps/browser/src/vault/fido2/background/fido2.background.spec.ts b/apps/browser/src/autofill/fido2/background/fido2.background.spec.ts
similarity index 99%
rename from apps/browser/src/vault/fido2/background/fido2.background.spec.ts
rename to apps/browser/src/autofill/fido2/background/fido2.background.spec.ts
index 2cf6d3011ae..f0c5fc5695a 100644
--- a/apps/browser/src/vault/fido2/background/fido2.background.spec.ts
+++ b/apps/browser/src/autofill/fido2/background/fido2.background.spec.ts
@@ -18,7 +18,7 @@ import {
 } from "../../../autofill/spec/testing-utils";
 import { BrowserApi } from "../../../platform/browser/browser-api";
 import { BrowserScriptInjectorService } from "../../../platform/services/browser-script-injector.service";
-import { AbortManager } from "../../background/abort-manager";
+import { AbortManager } from "../../../vault/background/abort-manager";
 import { Fido2ContentScript, Fido2ContentScriptId } from "../enums/fido2-content-script.enum";
 import { Fido2PortName } from "../enums/fido2-port-name.enum";
 
diff --git a/apps/browser/src/vault/fido2/background/fido2.background.ts b/apps/browser/src/autofill/fido2/background/fido2.background.ts
similarity index 99%
rename from apps/browser/src/vault/fido2/background/fido2.background.ts
rename to apps/browser/src/autofill/fido2/background/fido2.background.ts
index 0666f804f28..a58d32da16f 100644
--- a/apps/browser/src/vault/fido2/background/fido2.background.ts
+++ b/apps/browser/src/autofill/fido2/background/fido2.background.ts
@@ -13,7 +13,7 @@ import { VaultSettingsService } from "@bitwarden/common/vault/abstractions/vault
 
 import { BrowserApi } from "../../../platform/browser/browser-api";
 import { ScriptInjectorService } from "../../../platform/services/abstractions/script-injector.service";
-import { AbortManager } from "../../background/abort-manager";
+import { AbortManager } from "../../../vault/background/abort-manager";
 import { Fido2ContentScript, Fido2ContentScriptId } from "../enums/fido2-content-script.enum";
 import { Fido2PortName } from "../enums/fido2-port-name.enum";
 
diff --git a/apps/browser/src/vault/fido2/content/content-script.spec.ts b/apps/browser/src/autofill/fido2/content/fido2-content-script.spec.ts
similarity index 95%
rename from apps/browser/src/vault/fido2/content/content-script.spec.ts
rename to apps/browser/src/autofill/fido2/content/fido2-content-script.spec.ts
index c9f970a30c6..94bef354a79 100644
--- a/apps/browser/src/vault/fido2/content/content-script.spec.ts
+++ b/apps/browser/src/autofill/fido2/content/fido2-content-script.spec.ts
@@ -60,7 +60,7 @@ describe("Fido2 Content Script", () => {
   chrome.runtime.connect = jest.fn(() => portSpy);
 
   it("destroys the messenger when the port is disconnected", () => {
-    require("./content-script");
+    require("./fido2-content-script");
 
     triggerPortOnDisconnectEvent(portSpy);
 
@@ -75,7 +75,7 @@ describe("Fido2 Content Script", () => {
     const mockResult = { credentialId: "mock" } as CreateCredentialResult;
     jest.spyOn(chrome.runtime, "sendMessage").mockResolvedValue(mockResult);
 
-    require("./content-script");
+    require("./fido2-content-script");
 
     const response = await messenger.handler!(message, new AbortController());
 
@@ -99,7 +99,7 @@ describe("Fido2 Content Script", () => {
       data: mock<InsecureCreateCredentialParams>(),
     });
 
-    require("./content-script");
+    require("./fido2-content-script");
 
     await messenger.handler!(message, new AbortController());
 
@@ -121,7 +121,7 @@ describe("Fido2 Content Script", () => {
     const abortController = new AbortController();
     const abortSpy = jest.spyOn(abortController.signal, "removeEventListener");
 
-    require("./content-script");
+    require("./fido2-content-script");
 
     await messenger.handler!(message, abortController);
 
@@ -141,7 +141,7 @@ describe("Fido2 Content Script", () => {
         abortController.abort();
       });
 
-    require("./content-script");
+    require("./fido2-content-script");
 
     await messenger.handler!(message, abortController);
 
@@ -161,7 +161,7 @@ describe("Fido2 Content Script", () => {
     const abortController = new AbortController();
     jest.spyOn(chrome.runtime, "sendMessage").mockResolvedValue({ error: errorMessage });
 
-    require("./content-script");
+    require("./fido2-content-script");
     const result = messenger.handler!(message, abortController);
 
     await expect(result).rejects.toEqual(errorMessage);
@@ -175,7 +175,7 @@ describe("Fido2 Content Script", () => {
       contentType: "application/json",
     }));
 
-    require("./content-script");
+    require("./fido2-content-script");
 
     expect(messengerForDOMCommunicationSpy).not.toHaveBeenCalled();
   });
@@ -193,7 +193,7 @@ describe("Fido2 Content Script", () => {
       },
     }));
 
-    require("./content-script");
+    require("./fido2-content-script");
 
     expect(messengerForDOMCommunicationSpy).not.toHaveBeenCalled();
   });
diff --git a/apps/browser/src/vault/fido2/content/content-script.ts b/apps/browser/src/autofill/fido2/content/fido2-content-script.ts
similarity index 100%
rename from apps/browser/src/vault/fido2/content/content-script.ts
rename to apps/browser/src/autofill/fido2/content/fido2-content-script.ts
diff --git a/apps/browser/src/vault/fido2/content/page-script-append.mv2.spec.ts b/apps/browser/src/autofill/fido2/content/fido2-page-script-append.mv2.spec.ts
similarity index 93%
rename from apps/browser/src/vault/fido2/content/page-script-append.mv2.spec.ts
rename to apps/browser/src/autofill/fido2/content/fido2-page-script-append.mv2.spec.ts
index d40a725a1f4..d53d9e685ed 100644
--- a/apps/browser/src/vault/fido2/content/page-script-append.mv2.spec.ts
+++ b/apps/browser/src/autofill/fido2/content/fido2-page-script-append.mv2.spec.ts
@@ -13,7 +13,7 @@ describe("FIDO2 page-script for manifest v2", () => {
   it("skips appending the `page-script.js` file if the document contentType is not `text/html`", () => {
     Object.defineProperty(window.document, "contentType", { value: "text/plain", writable: true });
 
-    require("./page-script-append.mv2");
+    require("./fido2-page-script-append.mv2");
 
     expect(window.document.createElement).not.toHaveBeenCalled();
   });
@@ -24,7 +24,7 @@ describe("FIDO2 page-script for manifest v2", () => {
       return node;
     });
 
-    require("./page-script-append.mv2");
+    require("./fido2-page-script-append.mv2");
 
     expect(window.document.createElement).toHaveBeenCalledWith("script");
     expect(chrome.runtime.getURL).toHaveBeenCalledWith(Fido2ContentScript.PageScript);
@@ -42,7 +42,7 @@ describe("FIDO2 page-script for manifest v2", () => {
       return node;
     });
 
-    require("./page-script-append.mv2");
+    require("./fido2-page-script-append.mv2");
 
     expect(window.document.createElement).toHaveBeenCalledWith("script");
     expect(chrome.runtime.getURL).toHaveBeenCalledWith(Fido2ContentScript.PageScript);
@@ -59,7 +59,7 @@ describe("FIDO2 page-script for manifest v2", () => {
       return createdScriptElement;
     });
 
-    require("./page-script-append.mv2");
+    require("./fido2-page-script-append.mv2");
 
     jest.spyOn(createdScriptElement, "remove");
     createdScriptElement.dispatchEvent(new Event("load"));
diff --git a/apps/browser/src/vault/fido2/content/page-script-append.mv2.ts b/apps/browser/src/autofill/fido2/content/fido2-page-script-append.mv2.ts
similarity index 100%
rename from apps/browser/src/vault/fido2/content/page-script-append.mv2.ts
rename to apps/browser/src/autofill/fido2/content/fido2-page-script-append.mv2.ts
diff --git a/apps/browser/src/vault/fido2/content/page-script.ts b/apps/browser/src/autofill/fido2/content/fido2-page-script.ts
similarity index 99%
rename from apps/browser/src/vault/fido2/content/page-script.ts
rename to apps/browser/src/autofill/fido2/content/fido2-page-script.ts
index 5898dbd04df..cf144713596 100644
--- a/apps/browser/src/vault/fido2/content/page-script.ts
+++ b/apps/browser/src/autofill/fido2/content/fido2-page-script.ts
@@ -1,6 +1,6 @@
 import { FallbackRequestedError } from "@bitwarden/common/platform/abstractions/fido2/fido2-client.service.abstraction";
 
-import { WebauthnUtils } from "../webauthn-utils";
+import { WebauthnUtils } from "../../../vault/fido2/webauthn-utils";
 
 import { MessageType } from "./messaging/message";
 import { Messenger } from "./messaging/messenger";
diff --git a/apps/browser/src/vault/fido2/content/page-script.webauthn-supported.spec.ts b/apps/browser/src/autofill/fido2/content/fido2-page-script.webauthn-supported.spec.ts
similarity index 96%
rename from apps/browser/src/vault/fido2/content/page-script.webauthn-supported.spec.ts
rename to apps/browser/src/autofill/fido2/content/fido2-page-script.webauthn-supported.spec.ts
index 3044d51fa72..46ef4d60d69 100644
--- a/apps/browser/src/vault/fido2/content/page-script.webauthn-supported.spec.ts
+++ b/apps/browser/src/autofill/fido2/content/fido2-page-script.webauthn-supported.spec.ts
@@ -5,7 +5,7 @@ import {
   createCredentialRequestOptionsMock,
   setupMockedWebAuthnSupport,
 } from "../../../autofill/spec/fido2-testing-utils";
-import { WebauthnUtils } from "../webauthn-utils";
+import { WebauthnUtils } from "../../../vault/fido2/webauthn-utils";
 
 import { MessageType } from "./messaging/message";
 import { Messenger } from "./messaging/messenger";
@@ -40,7 +40,7 @@ jest.mock("./messaging/messenger", () => {
     },
   };
 });
-jest.mock("../webauthn-utils");
+jest.mock("../../../vault/fido2/webauthn-utils");
 
 describe("Fido2 page script with native WebAuthn support", () => {
   (jest.spyOn(globalThis, "document", "get") as jest.Mock).mockImplementation(
@@ -54,7 +54,7 @@ describe("Fido2 page script with native WebAuthn support", () => {
   setupMockedWebAuthnSupport();
 
   beforeAll(() => {
-    require("./page-script");
+    require("./fido2-page-script");
   });
 
   afterEach(() => {
@@ -154,7 +154,7 @@ describe("Fido2 page script with native WebAuthn support", () => {
         contentType: "json/application",
       }));
 
-      require("./content-script");
+      require("./fido2-content-script");
 
       expect(Messenger.forDOMCommunication).not.toHaveBeenCalled();
     });
@@ -172,7 +172,7 @@ describe("Fido2 page script with native WebAuthn support", () => {
         },
       }));
 
-      require("./content-script");
+      require("./fido2-content-script");
 
       expect(Messenger.forDOMCommunication).not.toHaveBeenCalled();
     });
diff --git a/apps/browser/src/vault/fido2/content/page-script.webauthn-unsupported.spec.ts b/apps/browser/src/autofill/fido2/content/fido2-page-script.webauthn-unsupported.spec.ts
similarity index 96%
rename from apps/browser/src/vault/fido2/content/page-script.webauthn-unsupported.spec.ts
rename to apps/browser/src/autofill/fido2/content/fido2-page-script.webauthn-unsupported.spec.ts
index 4b1f839a1d0..a1e7006b045 100644
--- a/apps/browser/src/vault/fido2/content/page-script.webauthn-unsupported.spec.ts
+++ b/apps/browser/src/autofill/fido2/content/fido2-page-script.webauthn-unsupported.spec.ts
@@ -4,7 +4,7 @@ import {
   createCredentialCreationOptionsMock,
   createCredentialRequestOptionsMock,
 } from "../../../autofill/spec/fido2-testing-utils";
-import { WebauthnUtils } from "../webauthn-utils";
+import { WebauthnUtils } from "../../../vault/fido2/webauthn-utils";
 
 import { MessageType } from "./messaging/message";
 import { Messenger } from "./messaging/messenger";
@@ -39,7 +39,7 @@ jest.mock("./messaging/messenger", () => {
     },
   };
 });
-jest.mock("../webauthn-utils");
+jest.mock("../../../vault/fido2/webauthn-utils");
 
 describe("Fido2 page script without native WebAuthn support", () => {
   (jest.spyOn(globalThis, "document", "get") as jest.Mock).mockImplementation(
@@ -50,7 +50,7 @@ describe("Fido2 page script without native WebAuthn support", () => {
   const mockCreateCredentialsResult = createCreateCredentialResultMock();
   const mockCredentialRequestOptions = createCredentialRequestOptionsMock();
   const mockCredentialAssertResult = createAssertCredentialResultMock();
-  require("./page-script");
+  require("./fido2-page-script");
 
   afterEach(() => {
     jest.resetModules();
diff --git a/apps/browser/src/vault/fido2/content/messaging/message.ts b/apps/browser/src/autofill/fido2/content/messaging/message.ts
similarity index 100%
rename from apps/browser/src/vault/fido2/content/messaging/message.ts
rename to apps/browser/src/autofill/fido2/content/messaging/message.ts
diff --git a/apps/browser/src/vault/fido2/content/messaging/messenger.spec.ts b/apps/browser/src/autofill/fido2/content/messaging/messenger.spec.ts
similarity index 100%
rename from apps/browser/src/vault/fido2/content/messaging/messenger.spec.ts
rename to apps/browser/src/autofill/fido2/content/messaging/messenger.spec.ts
diff --git a/apps/browser/src/vault/fido2/content/messaging/messenger.ts b/apps/browser/src/autofill/fido2/content/messaging/messenger.ts
similarity index 100%
rename from apps/browser/src/vault/fido2/content/messaging/messenger.ts
rename to apps/browser/src/autofill/fido2/content/messaging/messenger.ts
diff --git a/apps/browser/src/vault/fido2/enums/fido2-content-script.enum.ts b/apps/browser/src/autofill/fido2/enums/fido2-content-script.enum.ts
similarity index 55%
rename from apps/browser/src/vault/fido2/enums/fido2-content-script.enum.ts
rename to apps/browser/src/autofill/fido2/enums/fido2-content-script.enum.ts
index 287de6804bb..14e629b412e 100644
--- a/apps/browser/src/vault/fido2/enums/fido2-content-script.enum.ts
+++ b/apps/browser/src/autofill/fido2/enums/fido2-content-script.enum.ts
@@ -1,7 +1,7 @@
 export const Fido2ContentScript = {
-  PageScript: "content/fido2/page-script.js",
-  PageScriptAppend: "content/fido2/page-script-append-mv2.js",
-  ContentScript: "content/fido2/content-script.js",
+  PageScript: "content/fido2-page-script.js",
+  PageScriptAppend: "content/fido2-page-script-append-mv2.js",
+  ContentScript: "content/fido2-content-script.js",
 } as const;
 
 export const Fido2ContentScriptId = {
diff --git a/apps/browser/src/vault/fido2/enums/fido2-port-name.enum.ts b/apps/browser/src/autofill/fido2/enums/fido2-port-name.enum.ts
similarity index 100%
rename from apps/browser/src/vault/fido2/enums/fido2-port-name.enum.ts
rename to apps/browser/src/autofill/fido2/enums/fido2-port-name.enum.ts
diff --git a/apps/browser/src/background/main.background.ts b/apps/browser/src/background/main.background.ts
index a8654c92f03..9af1a14132f 100644
--- a/apps/browser/src/background/main.background.ts
+++ b/apps/browser/src/background/main.background.ts
@@ -202,6 +202,8 @@ import WebRequestBackground from "../autofill/background/web-request.background"
 import { CipherContextMenuHandler } from "../autofill/browser/cipher-context-menu-handler";
 import { ContextMenuClickedHandler } from "../autofill/browser/context-menu-clicked-handler";
 import { MainContextMenuHandler } from "../autofill/browser/main-context-menu-handler";
+import { Fido2Background as Fido2BackgroundAbstraction } from "../autofill/fido2/background/abstractions/fido2.background";
+import { Fido2Background } from "../autofill/fido2/background/fido2.background";
 import { AutofillService as AutofillServiceAbstraction } from "../autofill/services/abstractions/autofill.service";
 import AutofillService from "../autofill/services/autofill.service";
 import { SafariApp } from "../browser/safariApp";
@@ -233,8 +235,6 @@ import { SyncServiceListener } from "../platform/sync/sync-service.listener";
 import { fromChromeRuntimeMessaging } from "../platform/utils/from-chrome-runtime-messaging";
 import VaultTimeoutService from "../services/vault-timeout/vault-timeout.service";
 import FilelessImporterBackground from "../tools/background/fileless-importer.background";
-import { Fido2Background as Fido2BackgroundAbstraction } from "../vault/fido2/background/abstractions/fido2.background";
-import { Fido2Background } from "../vault/fido2/background/fido2.background";
 import { BrowserFido2UserInterfaceService } from "../vault/fido2/browser-fido2-user-interface.service";
 import { VaultFilterService } from "../vault/services/vault-filter.service";
 
diff --git a/apps/browser/src/background/runtime.background.ts b/apps/browser/src/background/runtime.background.ts
index 7ddd5302ac7..a1a5de54d21 100644
--- a/apps/browser/src/background/runtime.background.ts
+++ b/apps/browser/src/background/runtime.background.ts
@@ -20,11 +20,11 @@ import {
   openTwoFactorAuthPopout,
 } from "../auth/popup/utils/auth-popout-window";
 import { LockedVaultPendingNotificationsData } from "../autofill/background/abstractions/notification.background";
+import { Fido2Background } from "../autofill/fido2/background/abstractions/fido2.background";
 import { AutofillService } from "../autofill/services/abstractions/autofill.service";
 import { BrowserApi } from "../platform/browser/browser-api";
 import { BrowserEnvironmentService } from "../platform/services/browser-environment.service";
 import { BrowserPlatformUtilsService } from "../platform/services/platform-utils/browser-platform-utils.service";
-import { Fido2Background } from "../vault/fido2/background/abstractions/fido2.background";
 
 import MainBackground from "./main.background";
 
diff --git a/apps/browser/src/manifest.json b/apps/browser/src/manifest.json
index 623e5d1b145..7f6e4957158 100644
--- a/apps/browser/src/manifest.json
+++ b/apps/browser/src/manifest.json
@@ -101,7 +101,7 @@
     }
   },
   "web_accessible_resources": [
-    "content/fido2/page-script.js",
+    "content/fido2-page-script.js",
     "content/lp-suppress-import-download.js",
     "notification/bar.html",
     "images/icon38.png",
diff --git a/apps/browser/src/manifest.v3.json b/apps/browser/src/manifest.v3.json
index 9b7dc42732f..26b63b1229f 100644
--- a/apps/browser/src/manifest.v3.json
+++ b/apps/browser/src/manifest.v3.json
@@ -107,7 +107,7 @@
   "web_accessible_resources": [
     {
       "resources": [
-        "content/fido2/page-script.js",
+        "content/fido2-page-script.js",
         "notification/bar.html",
         "images/icon38.png",
         "images/icon38_locked.png",
diff --git a/apps/browser/src/vault/fido2/webauthn-utils.ts b/apps/browser/src/vault/fido2/webauthn-utils.ts
index 618e692aadf..df8e5a8fb20 100644
--- a/apps/browser/src/vault/fido2/webauthn-utils.ts
+++ b/apps/browser/src/vault/fido2/webauthn-utils.ts
@@ -7,7 +7,7 @@ import { Fido2Utils } from "@bitwarden/common/platform/services/fido2/fido2-util
 import {
   InsecureAssertCredentialParams,
   InsecureCreateCredentialParams,
-} from "./content/messaging/message";
+} from "../../autofill/fido2/content/messaging/message";
 
 export class WebauthnUtils {
   static mapCredentialCreationOptions(
diff --git a/apps/browser/webpack.config.js b/apps/browser/webpack.config.js
index a0b86f06d5d..eb1244bc26d 100644
--- a/apps/browser/webpack.config.js
+++ b/apps/browser/webpack.config.js
@@ -165,8 +165,8 @@ const mainConfig = {
     "content/notificationBar": "./src/autofill/content/notification-bar.ts",
     "content/contextMenuHandler": "./src/autofill/content/context-menu-handler.ts",
     "content/content-message-handler": "./src/autofill/content/content-message-handler.ts",
-    "content/fido2/content-script": "./src/vault/fido2/content/content-script.ts",
-    "content/fido2/page-script": "./src/vault/fido2/content/page-script.ts",
+    "content/fido2-content-script": "./src/autofill/fido2/content/fido2-content-script.ts",
+    "content/fido2-page-script": "./src/autofill/fido2/content/fido2-page-script.ts",
     "notification/bar": "./src/autofill/notification/bar.ts",
     "overlay/button": "./src/autofill/overlay/pages/button/bootstrap-autofill-overlay-button.ts",
     "overlay/list": "./src/autofill/overlay/pages/list/bootstrap-autofill-overlay-list.ts",
@@ -274,8 +274,8 @@ if (manifestVersion == 2) {
   mainConfig.entry.background = "./src/platform/background.ts";
   mainConfig.entry["content/lp-suppress-import-download-script-append-mv2"] =
     "./src/tools/content/lp-suppress-import-download-script-append.mv2.ts";
-  mainConfig.entry["content/fido2/page-script-append-mv2"] =
-    "./src/vault/fido2/content/page-script-append.mv2.ts";
+  mainConfig.entry["content/fido2-page-script-append-mv2"] =
+    "./src/autofill/fido2/content/fido2-page-script-append.mv2.ts";
 
   configs.push(mainConfig);
 } else {

From 769d67af39ee96436a37690802354cb341accbb2 Mon Sep 17 00:00:00 2001
From: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Date: Fri, 7 Jun 2024 10:32:26 -0500
Subject: [PATCH 135/138] [SM-1292] Add secret view dialog (#9445)

* Add secret view dialog

* Use secret view dialog
---
 apps/web/src/locales/en/messages.json         |  3 ++
 .../overview/overview.component.html          |  1 +
 .../overview/overview.component.ts            | 13 +++++++
 .../project/project-secrets.component.html    |  1 +
 .../project/project-secrets.component.ts      | 13 +++++++
 .../dialog/secret-view-dialog.component.html  | 30 ++++++++++++++
 .../dialog/secret-view-dialog.component.ts    | 39 +++++++++++++++++++
 .../secrets/secrets.component.html            |  1 +
 .../secrets/secrets.component.ts              | 13 +++++++
 .../secrets-manager/secrets/secrets.module.ts |  8 +++-
 .../shared/secrets-list.component.html        |  4 +-
 .../shared/secrets-list.component.ts          |  9 +++++
 12 files changed, 132 insertions(+), 3 deletions(-)
 create mode 100644 bitwarden_license/bit-web/src/app/secrets-manager/secrets/dialog/secret-view-dialog.component.html
 create mode 100644 bitwarden_license/bit-web/src/app/secrets-manager/secrets/dialog/secret-view-dialog.component.ts

diff --git a/apps/web/src/locales/en/messages.json b/apps/web/src/locales/en/messages.json
index d7a21ad6d6a..61c92ba407a 100644
--- a/apps/web/src/locales/en/messages.json
+++ b/apps/web/src/locales/en/messages.json
@@ -8354,5 +8354,8 @@
   },
   "verified": {
     "message": "Verified"
+  },
+  "viewSecret": {
+    "message": "View secret"
   }
 }
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/overview/overview.component.html b/bitwarden_license/bit-web/src/app/secrets-manager/overview/overview.component.html
index 255877e4e8d..29cbf78464b 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/overview/overview.component.html
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/overview/overview.component.html
@@ -65,6 +65,7 @@
         (deleteSecretsEvent)="openDeleteSecret($event)"
         (newSecretEvent)="openNewSecretDialog()"
         (editSecretEvent)="openEditSecret($event)"
+        (viewSecretEvent)="openViewSecret($event)"
         (copySecretNameEvent)="copySecretName($event)"
         (copySecretValueEvent)="copySecretValue($event)"
         (copySecretUuidEvent)="copySecretUuid($event)"
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/overview/overview.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/overview/overview.component.ts
index 56c02e1ed43..4c057e56988 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/overview/overview.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/overview/overview.component.ts
@@ -41,6 +41,10 @@ import {
   SecretDialogComponent,
   SecretOperation,
 } from "../secrets/dialog/secret-dialog.component";
+import {
+  SecretViewDialogComponent,
+  SecretViewDialogParams,
+} from "../secrets/dialog/secret-view-dialog.component";
 import { SecretService } from "../secrets/secret.service";
 import {
   ServiceAccountDialogComponent,
@@ -277,6 +281,15 @@ export class OverviewComponent implements OnInit, OnDestroy {
     });
   }
 
+  openViewSecret(secretId: string) {
+    this.dialogService.open<unknown, SecretViewDialogParams>(SecretViewDialogComponent, {
+      data: {
+        organizationId: this.organizationId,
+        secretId: secretId,
+      },
+    });
+  }
+
   openDeleteSecret(event: SecretListView[]) {
     this.dialogService.open<unknown, SecretDeleteOperation>(SecretDeleteDialogComponent, {
       data: {
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-secrets.component.html b/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-secrets.component.html
index 980f38ca157..1ab8b7e0196 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-secrets.component.html
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-secrets.component.html
@@ -14,6 +14,7 @@
       (deleteSecretsEvent)="openDeleteSecret($event)"
       (newSecretEvent)="openNewSecretDialog()"
       (editSecretEvent)="openEditSecret($event)"
+      (viewSecretEvent)="openViewSecret($event)"
       (copySecretNameEvent)="copySecretName($event)"
       (copySecretValueEvent)="copySecretValue($event)"
       (copySecretUuidEvent)="copySecretUuid($event)"
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-secrets.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-secrets.component.ts
index 21d6e576a01..b766de1ebd0 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-secrets.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-secrets.component.ts
@@ -19,6 +19,10 @@ import {
   SecretDialogComponent,
   SecretOperation,
 } from "../../secrets/dialog/secret-dialog.component";
+import {
+  SecretViewDialogComponent,
+  SecretViewDialogParams,
+} from "../../secrets/dialog/secret-view-dialog.component";
 import { SecretService } from "../../secrets/secret.service";
 import { SecretsListComponent } from "../../shared/secrets-list.component";
 import { ProjectService } from "../project.service";
@@ -88,6 +92,15 @@ export class ProjectSecretsComponent {
     });
   }
 
+  openViewSecret(secretId: string) {
+    this.dialogService.open<unknown, SecretViewDialogParams>(SecretViewDialogComponent, {
+      data: {
+        organizationId: this.organizationId,
+        secretId: secretId,
+      },
+    });
+  }
+
   openDeleteSecret(event: SecretListView[]) {
     this.dialogService.open<unknown, SecretDeleteOperation>(SecretDeleteDialogComponent, {
       data: {
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/secrets/dialog/secret-view-dialog.component.html b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/dialog/secret-view-dialog.component.html
new file mode 100644
index 00000000000..60fa1f268c2
--- /dev/null
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/dialog/secret-view-dialog.component.html
@@ -0,0 +1,30 @@
+<form [formGroup]="formGroup">
+  <bit-dialog
+    dialogSize="large"
+    [loading]="loading"
+    [title]="'viewSecret' | i18n"
+    [subtitle]="formGroup.get('name').value"
+  >
+    <ng-container bitDialogContent class="tw-relative">
+      <div class="tw-flex tw-gap-4 tw-pt-4">
+        <bit-form-field class="tw-w-1/3">
+          <bit-label>{{ "name" | i18n }}</bit-label>
+          <input appAutofocus formControlName="name" bitInput />
+        </bit-form-field>
+        <bit-form-field class="tw-w-full">
+          <bit-label>{{ "value" | i18n }}</bit-label>
+          <textarea bitInput rows="4" formControlName="value"></textarea>
+        </bit-form-field>
+      </div>
+      <bit-form-field>
+        <bit-label>{{ "notes" | i18n }}</bit-label>
+        <textarea bitInput rows="4" formControlName="notes"></textarea>
+      </bit-form-field>
+    </ng-container>
+    <ng-container bitDialogFooter>
+      <button type="button" bitButton buttonType="primary" bitFormButton bitDialogClose>
+        {{ "close" | i18n }}
+      </button>
+    </ng-container>
+  </bit-dialog>
+</form>
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/secrets/dialog/secret-view-dialog.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/dialog/secret-view-dialog.component.ts
new file mode 100644
index 00000000000..a113fd2ffa4
--- /dev/null
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/dialog/secret-view-dialog.component.ts
@@ -0,0 +1,39 @@
+import { DIALOG_DATA } from "@angular/cdk/dialog";
+import { Component, Inject, OnInit } from "@angular/core";
+import { FormControl, FormGroup } from "@angular/forms";
+
+import { SecretService } from "../secret.service";
+
+export interface SecretViewDialogParams {
+  organizationId: string;
+  secretId: string;
+}
+
+@Component({
+  templateUrl: "./secret-view-dialog.component.html",
+})
+export class SecretViewDialogComponent implements OnInit {
+  protected loading = true;
+  protected formGroup = new FormGroup({
+    name: new FormControl(""),
+    value: new FormControl(""),
+    notes: new FormControl(""),
+  });
+
+  constructor(
+    private secretService: SecretService,
+    @Inject(DIALOG_DATA) private params: SecretViewDialogParams,
+  ) {}
+
+  async ngOnInit() {
+    this.loading = true;
+    const secret = await this.secretService.getBySecretId(this.params.secretId);
+    this.formGroup.setValue({
+      name: secret.name,
+      value: secret.value,
+      notes: secret.note,
+    });
+    this.formGroup.disable();
+    this.loading = false;
+  }
+}
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secrets.component.html b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secrets.component.html
index 13595d97205..b12f5c9f184 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secrets.component.html
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secrets.component.html
@@ -10,6 +10,7 @@
   (deleteSecretsEvent)="openDeleteSecret($event)"
   (newSecretEvent)="openNewSecretDialog()"
   (editSecretEvent)="openEditSecret($event)"
+  (viewSecretEvent)="openViewSecret($event)"
   (copySecretNameEvent)="copySecretName($event)"
   (copySecretValueEvent)="copySecretValue($event)"
   (copySecretUuidEvent)="copySecretUuid($event)"
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secrets.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secrets.component.ts
index 2717f96a686..1744e970361 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secrets.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secrets.component.ts
@@ -20,6 +20,10 @@ import {
   SecretDialogComponent,
   SecretOperation,
 } from "./dialog/secret-dialog.component";
+import {
+  SecretViewDialogComponent,
+  SecretViewDialogParams,
+} from "./dialog/secret-view-dialog.component";
 import { SecretService } from "./secret.service";
 
 @Component({
@@ -77,6 +81,15 @@ export class SecretsComponent implements OnInit {
     });
   }
 
+  openViewSecret(secretId: string) {
+    this.dialogService.open<unknown, SecretViewDialogParams>(SecretViewDialogComponent, {
+      data: {
+        organizationId: this.organizationId,
+        secretId: secretId,
+      },
+    });
+  }
+
   openDeleteSecret(event: SecretListView[]) {
     this.dialogService.open<unknown, SecretDeleteOperation>(SecretDeleteDialogComponent, {
       data: {
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secrets.module.ts b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secrets.module.ts
index 356021817b4..2ae5bfa3b8e 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secrets.module.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/secrets/secrets.module.ts
@@ -4,12 +4,18 @@ import { SecretsManagerSharedModule } from "../shared/sm-shared.module";
 
 import { SecretDeleteDialogComponent } from "./dialog/secret-delete.component";
 import { SecretDialogComponent } from "./dialog/secret-dialog.component";
+import { SecretViewDialogComponent } from "./dialog/secret-view-dialog.component";
 import { SecretsRoutingModule } from "./secrets-routing.module";
 import { SecretsComponent } from "./secrets.component";
 
 @NgModule({
   imports: [SecretsManagerSharedModule, SecretsRoutingModule],
-  declarations: [SecretDeleteDialogComponent, SecretDialogComponent, SecretsComponent],
+  declarations: [
+    SecretDeleteDialogComponent,
+    SecretDialogComponent,
+    SecretViewDialogComponent,
+    SecretsComponent,
+  ],
   providers: [],
 })
 export class SecretsModule {}
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.html b/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.html
index 4b629ca4885..859c7417eb8 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.html
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.html
@@ -66,7 +66,7 @@
           <i class="bwi bwi-key tw-text-muted" aria-hidden="true"></i>
           <div>
             <div *ngIf="!trash">
-              <button type="button" bitLink (click)="editSecretEvent.emit(secret.id)">
+              <button type="button" bitLink (click)="editSecret(secret)">
                 {{ secret.name }}
               </button>
             </div>
@@ -118,7 +118,7 @@
         <button
           type="button"
           bitMenuItem
-          (click)="editSecretEvent.emit(secret.id)"
+          (click)="editSecret(secret)"
           *ngIf="secret.write && !trash"
         >
           <i class="bwi bwi-fw bwi-pencil" aria-hidden="true"></i>
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.ts
index 9fccacf6640..62c4a43379e 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/secrets-list.component.ts
@@ -37,6 +37,7 @@ export class SecretsListComponent implements OnDestroy {
   @Input() trash: boolean;
 
   @Output() editSecretEvent = new EventEmitter<string>();
+  @Output() viewSecretEvent = new EventEmitter<string>();
   @Output() copySecretNameEvent = new EventEmitter<string>();
   @Output() copySecretValueEvent = new EventEmitter<string>();
   @Output() copySecretUuidEvent = new EventEmitter<string>();
@@ -116,6 +117,14 @@ export class SecretsListComponent implements OnDestroy {
     return aProjects[0]?.name.localeCompare(bProjects[0].name);
   };
 
+  protected editSecret(secret: SecretListView) {
+    if (secret.write) {
+      this.editSecretEvent.emit(secret.id);
+    } else {
+      this.viewSecretEvent.emit(secret.id);
+    }
+  }
+
   /**
    * TODO: Refactor to smart component and remove
    */

From 7acc13cbb990e2c339bd538abbd0ec6d349e810b Mon Sep 17 00:00:00 2001
From: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Date: Fri, 7 Jun 2024 12:08:21 -0500
Subject: [PATCH 136/138] [SM-1293] Add the ability to fetch a secret's access
 policies  (#9463)

* Update response models

* Update view models

* Update access policy service

* update ap item types to use new models

* add convertToSecretAccessPolicies

* Add unit tests
---
 .../access-policies/access-policy.view.ts     |  32 +-
 .../project-people-access-policies.view.ts    |   6 +-
 ...t-service-accounts-access-policies.view.ts |   4 +-
 .../secret-access-policies.view.ts            |  11 +
 .../service-account-granted-policies.view.ts  |   8 +-
 ...ice-account-people-access-policies.view.ts |   9 +-
 .../project/project-people.component.ts       |   7 +-
 .../project-service-accounts.component.ts     |   2 +-
 .../service-account-people.component.ts       |   7 +-
 .../service-account-projects.component.ts     |   5 +-
 .../models/ap-item-value.spec.ts              | 238 ++++++++++++++
 .../models/ap-item-value.type.ts              | 136 ++++----
 .../models/ap-item-view.spec.ts               | 310 ++++++++++++++++++
 .../models/ap-item-view.type.ts               | 118 ++++---
 .../access-policies/access-policy.service.ts  | 285 ++++++++--------
 .../responses/access-policy.response.ts       |  63 +---
 ...project-people-access-policies.response.ts |  15 +-
 ...rvice-accounts-access-policies.response.ts |   6 +-
 .../secret-access-policies.response.ts        |  27 ++
 ...ed-policies-permission-details.response.ts |   6 +-
 ...account-people-access-policies.response.ts |  15 +-
 ...ject-policy-permission-details.response.ts |   6 +-
 22 files changed, 904 insertions(+), 412 deletions(-)
 create mode 100644 bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/secret-access-policies.view.ts
 create mode 100644 bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/models/ap-item-value.spec.ts
 create mode 100644 bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/models/ap-item-view.spec.ts
 create mode 100644 bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/secret-access-policies.response.ts

diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/access-policy.view.ts b/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/access-policy.view.ts
index 76be88b610e..0863bb0cccf 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/access-policy.view.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/access-policy.view.ts
@@ -1,44 +1,26 @@
-export class BaseAccessPolicyView {
-  id: string;
+class BaseAccessPolicyView {
   read: boolean;
   write: boolean;
-  creationDate: string;
-  revisionDate: string;
 }
 
-export class UserProjectAccessPolicyView extends BaseAccessPolicyView {
+export class UserAccessPolicyView extends BaseAccessPolicyView {
   organizationUserId: string;
   organizationUserName: string;
-  grantedProjectId: string;
-  userId: string;
   currentUser: boolean;
 }
 
-export class UserServiceAccountAccessPolicyView extends BaseAccessPolicyView {
-  organizationUserId: string;
-  organizationUserName: string;
-  grantedServiceAccountId: string;
-  userId: string;
-  currentUser: boolean;
-}
-
-export class GroupProjectAccessPolicyView extends BaseAccessPolicyView {
+export class GroupAccessPolicyView extends BaseAccessPolicyView {
   groupId: string;
   groupName: string;
-  grantedProjectId: string;
   currentUserInGroup: boolean;
 }
 
-export class GroupServiceAccountAccessPolicyView extends BaseAccessPolicyView {
-  groupId: string;
-  groupName: string;
-  grantedServiceAccountId: string;
-  currentUserInGroup: boolean;
-}
-
-export class ServiceAccountProjectAccessPolicyView extends BaseAccessPolicyView {
+export class ServiceAccountAccessPolicyView extends BaseAccessPolicyView {
   serviceAccountId: string;
   serviceAccountName: string;
+}
+
+export class GrantedProjectAccessPolicyView extends BaseAccessPolicyView {
   grantedProjectId: string;
   grantedProjectName: string;
 }
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/project-people-access-policies.view.ts b/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/project-people-access-policies.view.ts
index c85b289928b..9a35e76a615 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/project-people-access-policies.view.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/project-people-access-policies.view.ts
@@ -1,6 +1,6 @@
-import { GroupProjectAccessPolicyView, UserProjectAccessPolicyView } from "./access-policy.view";
+import { GroupAccessPolicyView, UserAccessPolicyView } from "./access-policy.view";
 
 export class ProjectPeopleAccessPoliciesView {
-  userAccessPolicies: UserProjectAccessPolicyView[];
-  groupAccessPolicies: GroupProjectAccessPolicyView[];
+  userAccessPolicies: UserAccessPolicyView[];
+  groupAccessPolicies: GroupAccessPolicyView[];
 }
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/project-service-accounts-access-policies.view.ts b/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/project-service-accounts-access-policies.view.ts
index 28636c4df1d..9faaa29b697 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/project-service-accounts-access-policies.view.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/project-service-accounts-access-policies.view.ts
@@ -1,5 +1,5 @@
-import { ServiceAccountProjectAccessPolicyView } from "./access-policy.view";
+import { ServiceAccountAccessPolicyView } from "./access-policy.view";
 
 export class ProjectServiceAccountsAccessPoliciesView {
-  serviceAccountAccessPolicies: ServiceAccountProjectAccessPolicyView[];
+  serviceAccountAccessPolicies: ServiceAccountAccessPolicyView[];
 }
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/secret-access-policies.view.ts b/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/secret-access-policies.view.ts
new file mode 100644
index 00000000000..8742021a421
--- /dev/null
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/secret-access-policies.view.ts
@@ -0,0 +1,11 @@
+import {
+  GroupAccessPolicyView,
+  UserAccessPolicyView,
+  ServiceAccountAccessPolicyView,
+} from "./access-policy.view";
+
+export class SecretAccessPoliciesView {
+  userAccessPolicies: UserAccessPolicyView[];
+  groupAccessPolicies: GroupAccessPolicyView[];
+  serviceAccountAccessPolicies: ServiceAccountAccessPolicyView[];
+}
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/service-account-granted-policies.view.ts b/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/service-account-granted-policies.view.ts
index 7d53e38263a..e055daa199a 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/service-account-granted-policies.view.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/service-account-granted-policies.view.ts
@@ -1,10 +1,10 @@
-import { ServiceAccountProjectAccessPolicyView } from "./access-policy.view";
+import { GrantedProjectAccessPolicyView } from "./access-policy.view";
 
 export class ServiceAccountGrantedPoliciesView {
-  grantedProjectPolicies: ServiceAccountProjectPolicyPermissionDetailsView[];
+  grantedProjectPolicies: GrantedProjectPolicyPermissionDetailsView[];
 }
 
-export class ServiceAccountProjectPolicyPermissionDetailsView {
-  accessPolicy: ServiceAccountProjectAccessPolicyView;
+export class GrantedProjectPolicyPermissionDetailsView {
+  accessPolicy: GrantedProjectAccessPolicyView;
   hasPermission: boolean;
 }
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/service-account-people-access-policies.view.ts b/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/service-account-people-access-policies.view.ts
index 58dcf6d4706..2ef4eedc33e 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/service-account-people-access-policies.view.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/models/view/access-policies/service-account-people-access-policies.view.ts
@@ -1,9 +1,6 @@
-import {
-  GroupServiceAccountAccessPolicyView,
-  UserServiceAccountAccessPolicyView,
-} from "./access-policy.view";
+import { GroupAccessPolicyView, UserAccessPolicyView } from "./access-policy.view";
 
 export class ServiceAccountPeopleAccessPoliciesView {
-  userAccessPolicies: UserServiceAccountAccessPolicyView[];
-  groupAccessPolicies: GroupServiceAccountAccessPolicyView[];
+  userAccessPolicies: UserAccessPolicyView[];
+  groupAccessPolicies: GroupAccessPolicyView[];
 }
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-people.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-people.component.ts
index c49008c580b..0b0e13fe1f5 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-people.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-people.component.ts
@@ -12,7 +12,7 @@ import { DialogService } from "@bitwarden/components";
 import { AccessPolicySelectorService } from "../../shared/access-policies/access-policy-selector/access-policy-selector.service";
 import {
   ApItemValueType,
-  convertToProjectPeopleAccessPoliciesView,
+  convertToPeopleAccessPoliciesView,
 } from "../../shared/access-policies/access-policy-selector/models/ap-item-value.type";
 import {
   ApItemViewType,
@@ -119,10 +119,7 @@ export class ProjectPeopleComponent implements OnInit, OnDestroy {
     }
 
     try {
-      const projectPeopleView = convertToProjectPeopleAccessPoliciesView(
-        this.projectId,
-        formValues,
-      );
+      const projectPeopleView = convertToPeopleAccessPoliciesView(formValues);
       const peoplePoliciesViews = await this.accessPolicyService.putProjectPeopleAccessPolicies(
         this.projectId,
         projectPeopleView,
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-service-accounts.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-service-accounts.component.ts
index 7ac111ef620..1069033b57d 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-service-accounts.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/projects/project/project-service-accounts.component.ts
@@ -144,7 +144,7 @@ export class ProjectServiceAccountsComponent implements OnInit, OnDestroy {
     projectId: string,
     selectedPolicies: ApItemValueType[],
   ): Promise<ProjectServiceAccountsAccessPoliciesView> {
-    const view = convertToProjectServiceAccountsAccessPoliciesView(projectId, selectedPolicies);
+    const view = convertToProjectServiceAccountsAccessPoliciesView(selectedPolicies);
     return await this.accessPolicyService.putProjectServiceAccountsAccessPolicies(
       organizationId,
       projectId,
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/people/service-account-people.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/people/service-account-people.component.ts
index a3d3984ea82..31394f7fec7 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/people/service-account-people.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/people/service-account-people.component.ts
@@ -11,7 +11,7 @@ import { DialogService } from "@bitwarden/components";
 import { AccessPolicySelectorService } from "../../shared/access-policies/access-policy-selector/access-policy-selector.service";
 import {
   ApItemValueType,
-  convertToServiceAccountPeopleAccessPoliciesView,
+  convertToPeopleAccessPoliciesView,
 } from "../../shared/access-policies/access-policy-selector/models/ap-item-value.type";
 import {
   ApItemViewType,
@@ -180,10 +180,7 @@ export class ServiceAccountPeopleComponent implements OnInit, OnDestroy {
     serviceAccountId: string,
     selectedPolicies: ApItemValueType[],
   ) {
-    const serviceAccountPeopleView = convertToServiceAccountPeopleAccessPoliciesView(
-      serviceAccountId,
-      selectedPolicies,
-    );
+    const serviceAccountPeopleView = convertToPeopleAccessPoliciesView(selectedPolicies);
     return await this.accessPolicyService.putServiceAccountPeopleAccessPolicies(
       serviceAccountId,
       serviceAccountPeopleView,
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/projects/service-account-projects.component.ts b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/projects/service-account-projects.component.ts
index 49ddfe331fb..358a152b6f3 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/projects/service-account-projects.component.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/service-accounts/projects/service-account-projects.component.ts
@@ -144,10 +144,7 @@ export class ServiceAccountProjectsComponent implements OnInit, OnDestroy {
     serviceAccountId: string,
     selectedPolicies: ApItemValueType[],
   ): Promise<ServiceAccountGrantedPoliciesView> {
-    const grantedViews = convertToServiceAccountGrantedPoliciesView(
-      serviceAccountId,
-      selectedPolicies,
-    );
+    const grantedViews = convertToServiceAccountGrantedPoliciesView(selectedPolicies);
     return await this.accessPolicyService.putServiceAccountGrantedPolicies(
       organizationId,
       serviceAccountId,
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/models/ap-item-value.spec.ts b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/models/ap-item-value.spec.ts
new file mode 100644
index 00000000000..ad6564a1c6c
--- /dev/null
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/models/ap-item-value.spec.ts
@@ -0,0 +1,238 @@
+import {
+  convertToSecretAccessPoliciesView,
+  convertToPeopleAccessPoliciesView,
+  ApItemValueType,
+  convertToProjectServiceAccountsAccessPoliciesView,
+  convertToServiceAccountGrantedPoliciesView,
+} from "./ap-item-value.type";
+import { ApItemEnum } from "./enums/ap-item.enum";
+import { ApPermissionEnum } from "./enums/ap-permission.enum";
+
+describe("convertToPeopleAccessPoliciesView", () => {
+  it("should convert selected policy values to user and group access policies view", () => {
+    const selectedPolicyValues = [...createUserApItems(), ...createGroupApItems()];
+
+    const result = convertToPeopleAccessPoliciesView(selectedPolicyValues);
+
+    expect(result.userAccessPolicies).toEqual(expectedUserAccessPolicies);
+    expect(result.groupAccessPolicies).toEqual(expectedGroupAccessPolicies);
+  });
+
+  it("should return empty user array if no selected users are provided", () => {
+    const selectedPolicyValues = createGroupApItems();
+
+    const result = convertToPeopleAccessPoliciesView(selectedPolicyValues);
+
+    expect(result.userAccessPolicies).toEqual([]);
+    expect(result.groupAccessPolicies).toEqual(expectedGroupAccessPolicies);
+  });
+
+  it("should return empty group array if no selected groups are provided", () => {
+    const selectedPolicyValues = createUserApItems();
+
+    const result = convertToPeopleAccessPoliciesView(selectedPolicyValues);
+
+    expect(result.userAccessPolicies).toEqual(expectedUserAccessPolicies);
+    expect(result.groupAccessPolicies).toEqual([]);
+  });
+
+  it("should return empty arrays if no selected policy values are provided", () => {
+    const selectedPolicyValues: ApItemValueType[] = [];
+
+    const result = convertToPeopleAccessPoliciesView(selectedPolicyValues);
+
+    expect(result.userAccessPolicies).toEqual([]);
+    expect(result.groupAccessPolicies).toEqual([]);
+  });
+});
+
+describe("convertToServiceAccountGrantedPoliciesView", () => {
+  it("should convert selected policy values to ServiceAccountGrantedPoliciesView", () => {
+    const selectedPolicyValues = createProjectApItems();
+
+    const result = convertToServiceAccountGrantedPoliciesView(selectedPolicyValues);
+
+    expect(result.grantedProjectPolicies).toHaveLength(2);
+    expect(result.grantedProjectPolicies[0].accessPolicy.grantedProjectId).toBe(
+      selectedPolicyValues[0].id,
+    );
+    expect(result.grantedProjectPolicies[0].accessPolicy.read).toBe(true);
+    expect(result.grantedProjectPolicies[0].accessPolicy.write).toBe(false);
+
+    expect(result.grantedProjectPolicies[1].accessPolicy.grantedProjectId).toBe(
+      selectedPolicyValues[1].id,
+    );
+    expect(result.grantedProjectPolicies[1].accessPolicy.read).toBe(true);
+    expect(result.grantedProjectPolicies[1].accessPolicy.write).toBe(true);
+  });
+
+  it("should return empty array if no selected project policies are provided", () => {
+    const selectedPolicyValues: ApItemValueType[] = [];
+
+    const result = convertToServiceAccountGrantedPoliciesView(selectedPolicyValues);
+
+    expect(result.grantedProjectPolicies).toEqual([]);
+  });
+});
+
+describe("convertToProjectServiceAccountsAccessPoliciesView", () => {
+  it("should convert selected policy values to ProjectServiceAccountsAccessPoliciesView", () => {
+    const selectedPolicyValues = createServiceAccountApItems();
+
+    const result = convertToProjectServiceAccountsAccessPoliciesView(selectedPolicyValues);
+
+    expect(result.serviceAccountAccessPolicies).toEqual(expectedServiceAccountAccessPolicies);
+  });
+
+  it("should return empty array if nothing is selected.", () => {
+    const selectedPolicyValues: ApItemValueType[] = [];
+
+    const result = convertToProjectServiceAccountsAccessPoliciesView(selectedPolicyValues);
+
+    expect(result.serviceAccountAccessPolicies).toEqual([]);
+  });
+});
+
+describe("convertToSecretAccessPoliciesView", () => {
+  it("should convert selected policy values to SecretAccessPoliciesView", () => {
+    const selectedPolicyValues = [
+      ...createUserApItems(),
+      ...createGroupApItems(),
+      ...createServiceAccountApItems(),
+    ];
+    const result = convertToSecretAccessPoliciesView(selectedPolicyValues);
+
+    expect(result.userAccessPolicies).toEqual(expectedUserAccessPolicies);
+    expect(result.groupAccessPolicies).toEqual(expectedGroupAccessPolicies);
+    expect(result.serviceAccountAccessPolicies).toEqual(expectedServiceAccountAccessPolicies);
+  });
+
+  it("should return empty user array if no selected users are provided", () => {
+    const selectedPolicyValues = [...createGroupApItems(), ...createServiceAccountApItems()];
+
+    const result = convertToSecretAccessPoliciesView(selectedPolicyValues);
+
+    expect(result.userAccessPolicies).toEqual([]);
+    expect(result.groupAccessPolicies).toEqual(expectedGroupAccessPolicies);
+    expect(result.serviceAccountAccessPolicies).toEqual(expectedServiceAccountAccessPolicies);
+  });
+
+  it("should return empty group array if no selected groups are provided", () => {
+    const selectedPolicyValues = [...createUserApItems(), ...createServiceAccountApItems()];
+
+    const result = convertToSecretAccessPoliciesView(selectedPolicyValues);
+
+    expect(result.userAccessPolicies).toEqual(expectedUserAccessPolicies);
+    expect(result.groupAccessPolicies).toEqual([]);
+    expect(result.serviceAccountAccessPolicies).toEqual(expectedServiceAccountAccessPolicies);
+  });
+
+  it("should return empty service account array if no selected service accounts are provided", () => {
+    const selectedPolicyValues = [...createUserApItems(), ...createGroupApItems()];
+
+    const result = convertToSecretAccessPoliciesView(selectedPolicyValues);
+
+    expect(result.userAccessPolicies).toEqual(expectedUserAccessPolicies);
+    expect(result.groupAccessPolicies).toEqual(expectedGroupAccessPolicies);
+    expect(result.serviceAccountAccessPolicies).toEqual([]);
+  });
+
+  it("should return empty arrays if nothing is selected.", () => {
+    const selectedPolicyValues: ApItemValueType[] = [];
+
+    const result = convertToSecretAccessPoliciesView(selectedPolicyValues);
+
+    expect(result.userAccessPolicies).toEqual([]);
+    expect(result.groupAccessPolicies).toEqual([]);
+    expect(result.serviceAccountAccessPolicies).toEqual([]);
+  });
+});
+
+function createUserApItems(): ApItemValueType[] {
+  return [
+    {
+      id: "1",
+      type: ApItemEnum.User,
+      permission: ApPermissionEnum.CanRead,
+    },
+    {
+      id: "3",
+      type: ApItemEnum.User,
+      permission: ApPermissionEnum.CanReadWrite,
+    },
+  ];
+}
+
+const expectedUserAccessPolicies = [
+  {
+    organizationUserId: "1",
+    read: true,
+    write: false,
+  },
+  {
+    organizationUserId: "3",
+    read: true,
+    write: true,
+  },
+];
+
+function createServiceAccountApItems(): ApItemValueType[] {
+  return [
+    {
+      id: "1",
+      type: ApItemEnum.ServiceAccount,
+      permission: ApPermissionEnum.CanRead,
+    },
+    {
+      id: "2",
+      type: ApItemEnum.ServiceAccount,
+      permission: ApPermissionEnum.CanReadWrite,
+    },
+  ];
+}
+
+const expectedServiceAccountAccessPolicies = [
+  {
+    serviceAccountId: "1",
+    read: true,
+    write: false,
+  },
+  {
+    serviceAccountId: "2",
+    read: true,
+    write: true,
+  },
+];
+
+function createGroupApItems(): ApItemValueType[] {
+  return [
+    {
+      id: "2",
+      type: ApItemEnum.Group,
+      permission: ApPermissionEnum.CanReadWrite,
+    },
+  ];
+}
+
+const expectedGroupAccessPolicies = [
+  {
+    groupId: "2",
+    read: true,
+    write: true,
+  },
+];
+
+function createProjectApItems(): ApItemValueType[] {
+  return [
+    {
+      id: "1",
+      type: ApItemEnum.Project,
+      permission: ApPermissionEnum.CanRead,
+    },
+    {
+      id: "2",
+      type: ApItemEnum.Project,
+      permission: ApPermissionEnum.CanReadWrite,
+    },
+  ];
+}
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/models/ap-item-value.type.ts b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/models/ap-item-value.type.ts
index 935c77f1b3b..2de071fb2e8 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/models/ap-item-value.type.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/models/ap-item-value.type.ts
@@ -1,17 +1,15 @@
 import {
-  UserProjectAccessPolicyView,
-  GroupProjectAccessPolicyView,
-  UserServiceAccountAccessPolicyView,
-  GroupServiceAccountAccessPolicyView,
-  ServiceAccountProjectAccessPolicyView,
+  UserAccessPolicyView,
+  GroupAccessPolicyView,
+  ServiceAccountAccessPolicyView,
+  GrantedProjectAccessPolicyView,
 } from "../../../../models/view/access-policies/access-policy.view";
-import { ProjectPeopleAccessPoliciesView } from "../../../../models/view/access-policies/project-people-access-policies.view";
 import { ProjectServiceAccountsAccessPoliciesView } from "../../../../models/view/access-policies/project-service-accounts-access-policies.view";
+import { SecretAccessPoliciesView } from "../../../../models/view/access-policies/secret-access-policies.view";
 import {
   ServiceAccountGrantedPoliciesView,
-  ServiceAccountProjectPolicyPermissionDetailsView,
+  GrantedProjectPolicyPermissionDetailsView,
 } from "../../../../models/view/access-policies/service-account-granted-policies.view";
-import { ServiceAccountPeopleAccessPoliciesView } from "../../../../models/view/access-policies/service-account-people-access-policies.view";
 
 import { ApItemEnum } from "./enums/ap-item.enum";
 import { ApPermissionEnum, ApPermissionEnumUtil } from "./enums/ap-permission.enum";
@@ -24,67 +22,14 @@ export type ApItemValueType = {
   currentUser?: boolean;
 };
 
-export function convertToProjectPeopleAccessPoliciesView(
-  projectId: string,
-  selectedPolicyValues: ApItemValueType[],
-): ProjectPeopleAccessPoliciesView {
-  const view = new ProjectPeopleAccessPoliciesView();
-  view.userAccessPolicies = selectedPolicyValues
-    .filter((x) => x.type == ApItemEnum.User)
-    .map((filtered) => {
-      const policyView = new UserProjectAccessPolicyView();
-      policyView.grantedProjectId = projectId;
-      policyView.organizationUserId = filtered.id;
-      policyView.read = ApPermissionEnumUtil.toRead(filtered.permission);
-      policyView.write = ApPermissionEnumUtil.toWrite(filtered.permission);
-      return policyView;
-    });
-
-  view.groupAccessPolicies = selectedPolicyValues
-    .filter((x) => x.type == ApItemEnum.Group)
-    .map((filtered) => {
-      const policyView = new GroupProjectAccessPolicyView();
-      policyView.grantedProjectId = projectId;
-      policyView.groupId = filtered.id;
-      policyView.read = ApPermissionEnumUtil.toRead(filtered.permission);
-      policyView.write = ApPermissionEnumUtil.toWrite(filtered.permission);
-      return policyView;
-    });
-  return view;
-}
-
-export function convertToServiceAccountPeopleAccessPoliciesView(
-  serviceAccountId: string,
-  selectedPolicyValues: ApItemValueType[],
-): ServiceAccountPeopleAccessPoliciesView {
-  const view = new ServiceAccountPeopleAccessPoliciesView();
-  view.userAccessPolicies = selectedPolicyValues
-    .filter((x) => x.type == ApItemEnum.User)
-    .map((filtered) => {
-      const policyView = new UserServiceAccountAccessPolicyView();
-      policyView.grantedServiceAccountId = serviceAccountId;
-      policyView.organizationUserId = filtered.id;
-      policyView.read = ApPermissionEnumUtil.toRead(filtered.permission);
-      policyView.write = ApPermissionEnumUtil.toWrite(filtered.permission);
-      policyView.currentUser = filtered.currentUser;
-      return policyView;
-    });
-
-  view.groupAccessPolicies = selectedPolicyValues
-    .filter((x) => x.type == ApItemEnum.Group)
-    .map((filtered) => {
-      const policyView = new GroupServiceAccountAccessPolicyView();
-      policyView.grantedServiceAccountId = serviceAccountId;
-      policyView.groupId = filtered.id;
-      policyView.read = ApPermissionEnumUtil.toRead(filtered.permission);
-      policyView.write = ApPermissionEnumUtil.toWrite(filtered.permission);
-      return policyView;
-    });
-  return view;
+export function convertToPeopleAccessPoliciesView(selectedPolicyValues: ApItemValueType[]) {
+  return {
+    userAccessPolicies: convertToUserAccessPolicyViews(selectedPolicyValues),
+    groupAccessPolicies: convertToGroupAccessPolicyViews(selectedPolicyValues),
+  };
 }
 
 export function convertToServiceAccountGrantedPoliciesView(
-  serviceAccountId: string,
   selectedPolicyValues: ApItemValueType[],
 ): ServiceAccountGrantedPoliciesView {
   const view = new ServiceAccountGrantedPoliciesView();
@@ -92,9 +37,8 @@ export function convertToServiceAccountGrantedPoliciesView(
   view.grantedProjectPolicies = selectedPolicyValues
     .filter((x) => x.type == ApItemEnum.Project)
     .map((filtered) => {
-      const detailView = new ServiceAccountProjectPolicyPermissionDetailsView();
-      const policyView = new ServiceAccountProjectAccessPolicyView();
-      policyView.serviceAccountId = serviceAccountId;
+      const detailView = new GrantedProjectPolicyPermissionDetailsView();
+      const policyView = new GrantedProjectAccessPolicyView();
       policyView.grantedProjectId = filtered.id;
       policyView.read = ApPermissionEnumUtil.toRead(filtered.permission);
       policyView.write = ApPermissionEnumUtil.toWrite(filtered.permission);
@@ -107,21 +51,57 @@ export function convertToServiceAccountGrantedPoliciesView(
 }
 
 export function convertToProjectServiceAccountsAccessPoliciesView(
-  projectId: string,
   selectedPolicyValues: ApItemValueType[],
 ): ProjectServiceAccountsAccessPoliciesView {
-  const view = new ProjectServiceAccountsAccessPoliciesView();
+  return {
+    serviceAccountAccessPolicies: convertToServiceAccountAccessPolicyViews(selectedPolicyValues),
+  };
+}
 
-  view.serviceAccountAccessPolicies = selectedPolicyValues
-    .filter((x) => x.type == ApItemEnum.ServiceAccount)
+export function convertToSecretAccessPoliciesView(
+  selectedPolicyValues: ApItemValueType[],
+): SecretAccessPoliciesView {
+  return {
+    userAccessPolicies: convertToUserAccessPolicyViews(selectedPolicyValues),
+    groupAccessPolicies: convertToGroupAccessPolicyViews(selectedPolicyValues),
+    serviceAccountAccessPolicies: convertToServiceAccountAccessPolicyViews(selectedPolicyValues),
+  };
+}
+
+function convertToUserAccessPolicyViews(apItemValues: ApItemValueType[]): UserAccessPolicyView[] {
+  return apItemValues
+    .filter((x) => x.type == ApItemEnum.User)
     .map((filtered) => {
-      const policyView = new ServiceAccountProjectAccessPolicyView();
-      policyView.serviceAccountId = filtered.id;
-      policyView.grantedProjectId = projectId;
+      const policyView = new UserAccessPolicyView();
+      policyView.organizationUserId = filtered.id;
+      policyView.read = ApPermissionEnumUtil.toRead(filtered.permission);
+      policyView.write = ApPermissionEnumUtil.toWrite(filtered.permission);
+      return policyView;
+    });
+}
+
+function convertToGroupAccessPolicyViews(apItemValues: ApItemValueType[]): GroupAccessPolicyView[] {
+  return apItemValues
+    .filter((x) => x.type == ApItemEnum.Group)
+    .map((filtered) => {
+      const policyView = new GroupAccessPolicyView();
+      policyView.groupId = filtered.id;
+      policyView.read = ApPermissionEnumUtil.toRead(filtered.permission);
+      policyView.write = ApPermissionEnumUtil.toWrite(filtered.permission);
+      return policyView;
+    });
+}
+
+function convertToServiceAccountAccessPolicyViews(
+  apItemValues: ApItemValueType[],
+): ServiceAccountAccessPolicyView[] {
+  return apItemValues
+    .filter((x) => x.type == ApItemEnum.ServiceAccount)
+    .map((filtered) => {
+      const policyView = new ServiceAccountAccessPolicyView();
+      policyView.serviceAccountId = filtered.id;
       policyView.read = ApPermissionEnumUtil.toRead(filtered.permission);
       policyView.write = ApPermissionEnumUtil.toWrite(filtered.permission);
       return policyView;
     });
-
-  return view;
 }
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/models/ap-item-view.spec.ts b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/models/ap-item-view.spec.ts
new file mode 100644
index 00000000000..c7090391211
--- /dev/null
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/models/ap-item-view.spec.ts
@@ -0,0 +1,310 @@
+import {
+  GroupAccessPolicyView,
+  ServiceAccountAccessPolicyView,
+  UserAccessPolicyView,
+} from "../../../../models/view/access-policies/access-policy.view";
+import { ProjectPeopleAccessPoliciesView } from "../../../../models/view/access-policies/project-people-access-policies.view";
+import { ProjectServiceAccountsAccessPoliciesView } from "../../../../models/view/access-policies/project-service-accounts-access-policies.view";
+import { SecretAccessPoliciesView } from "../../../../models/view/access-policies/secret-access-policies.view";
+import { ServiceAccountGrantedPoliciesView } from "../../../../models/view/access-policies/service-account-granted-policies.view";
+import { ServiceAccountPeopleAccessPoliciesView } from "../../../../models/view/access-policies/service-account-people-access-policies.view";
+
+import {
+  convertGrantedPoliciesToAccessPolicyItemViews,
+  convertProjectServiceAccountsViewToApItemViews,
+  convertSecretAccessPoliciesToApItemViews,
+  convertToAccessPolicyItemViews,
+} from "./ap-item-view.type";
+import { ApItemEnum } from "./enums/ap-item.enum";
+import { ApPermissionEnum } from "./enums/ap-permission.enum";
+
+describe("convertToAccessPolicyItemViews", () => {
+  it("should convert ProjectPeopleAccessPoliciesView to ApItemViewType array", () => {
+    const accessPoliciesView: ProjectPeopleAccessPoliciesView = createPeopleAccessPoliciesView();
+
+    const result = convertToAccessPolicyItemViews(accessPoliciesView);
+
+    expect(result).toEqual([...expectedUserApItemViews, ...expectedGroupApItemViews]);
+  });
+
+  it("should convert empty ProjectPeopleAccessPoliciesView to empty ApItemViewType array", () => {
+    const accessPoliciesView = new ProjectPeopleAccessPoliciesView();
+    accessPoliciesView.userAccessPolicies = [];
+    accessPoliciesView.groupAccessPolicies = [];
+
+    const result = convertToAccessPolicyItemViews(accessPoliciesView);
+
+    expect(result).toEqual([]);
+  });
+
+  it("should convert ServiceAccountPeopleAccessPoliciesView to ApItemViewType array", () => {
+    const accessPoliciesView: ServiceAccountPeopleAccessPoliciesView =
+      createPeopleAccessPoliciesView();
+
+    const result = convertToAccessPolicyItemViews(accessPoliciesView);
+
+    expect(result).toEqual([...expectedUserApItemViews, ...expectedGroupApItemViews]);
+  });
+
+  it("should convert empty ServiceAccountPeopleAccessPoliciesView to empty ApItemViewType array", () => {
+    const accessPoliciesView = new ServiceAccountPeopleAccessPoliciesView();
+    accessPoliciesView.userAccessPolicies = [];
+    accessPoliciesView.groupAccessPolicies = [];
+
+    const result = convertToAccessPolicyItemViews(accessPoliciesView);
+
+    expect(result).toEqual([]);
+  });
+});
+
+describe("convertGrantedPoliciesToAccessPolicyItemViews", () => {
+  it("should convert ServiceAccountGrantedPoliciesView to ApItemViewType array", () => {
+    const grantedPoliciesView: ServiceAccountGrantedPoliciesView = createGrantedPoliciesView();
+
+    const result = convertGrantedPoliciesToAccessPolicyItemViews(grantedPoliciesView);
+
+    expect(result).toEqual(expectedGrantedProjectApItemViews);
+  });
+
+  it("should convert empty ServiceAccountGrantedPoliciesView to empty ApItemViewType array", () => {
+    const grantedPoliciesView = new ServiceAccountGrantedPoliciesView();
+    grantedPoliciesView.grantedProjectPolicies = [];
+
+    const result = convertGrantedPoliciesToAccessPolicyItemViews(grantedPoliciesView);
+
+    expect(result).toEqual([]);
+  });
+});
+
+describe("convertProjectServiceAccountsViewToApItemViews", () => {
+  it("should convert ProjectServiceAccountsAccessPoliciesView to ApItemViewType array", () => {
+    const accessPoliciesView = createProjectServiceAccountsAccessPoliciesView();
+
+    const result = convertProjectServiceAccountsViewToApItemViews(accessPoliciesView);
+
+    expect(result).toEqual([...expectedServiceAccountAccessPolicyViews]);
+  });
+
+  it("should convert empty ProjectPeopleAccessPoliciesView to empty ApItemViewType array", () => {
+    const accessPoliciesView = new ProjectServiceAccountsAccessPoliciesView();
+    accessPoliciesView.serviceAccountAccessPolicies = [];
+
+    const result = convertProjectServiceAccountsViewToApItemViews(accessPoliciesView);
+
+    expect(result).toEqual([]);
+  });
+});
+
+describe("convertSecretAccessPoliciesToApItemViews", () => {
+  it("should convert SecretAccessPoliciesView to ApItemViewType array", () => {
+    const accessPoliciesView = createSecretAccessPoliciesView();
+
+    const result = convertSecretAccessPoliciesToApItemViews(accessPoliciesView);
+
+    expect(result).toEqual([
+      ...expectedUserApItemViews,
+      ...expectedGroupApItemViews,
+      ...expectedServiceAccountAccessPolicyViews,
+    ]);
+  });
+
+  it("should convert empty SecretAccessPoliciesView to empty ApItemViewType array", () => {
+    const accessPoliciesView = new SecretAccessPoliciesView();
+    accessPoliciesView.userAccessPolicies = [];
+    accessPoliciesView.groupAccessPolicies = [];
+    accessPoliciesView.serviceAccountAccessPolicies = [];
+
+    const result = convertSecretAccessPoliciesToApItemViews(accessPoliciesView);
+
+    expect(result).toEqual([]);
+  });
+});
+
+function createUserAccessPolicyViews(): UserAccessPolicyView[] {
+  return [
+    {
+      organizationUserId: "1",
+      organizationUserName: "Example organization user name",
+      read: true,
+      write: false,
+      currentUser: true,
+    },
+    {
+      organizationUserId: "2",
+      organizationUserName: "Example organization user name",
+      read: true,
+      write: true,
+      currentUser: false,
+    },
+  ];
+}
+
+const expectedUserApItemViews = [
+  {
+    type: ApItemEnum.User,
+    icon: "bwi-user",
+    id: "1",
+    labelName: "Example organization user name",
+    listName: "Example organization user name",
+    permission: ApPermissionEnum.CanRead,
+    currentUser: true,
+    readOnly: false,
+  },
+  {
+    type: ApItemEnum.User,
+    icon: "bwi-user",
+    id: "2",
+    labelName: "Example organization user name",
+    listName: "Example organization user name",
+    permission: ApPermissionEnum.CanReadWrite,
+    currentUser: false,
+    readOnly: false,
+  },
+];
+
+function createGroupAccessPolicyViews(): GroupAccessPolicyView[] {
+  return [
+    {
+      groupId: "3",
+      groupName: "Example group name",
+      currentUserInGroup: true,
+      read: true,
+      write: false,
+    },
+    {
+      groupId: "4",
+      groupName: "Example group name",
+      currentUserInGroup: false,
+      read: true,
+      write: true,
+    },
+  ];
+}
+
+const expectedGroupApItemViews = [
+  {
+    type: ApItemEnum.Group,
+    icon: "bwi-family",
+    id: "3",
+    labelName: "Example group name",
+    listName: "Example group name",
+    permission: ApPermissionEnum.CanRead,
+    currentUserInGroup: true,
+    readOnly: false,
+  },
+  {
+    type: ApItemEnum.Group,
+    icon: "bwi-family",
+    id: "4",
+    labelName: "Example group name",
+    listName: "Example group name",
+    permission: ApPermissionEnum.CanReadWrite,
+    currentUserInGroup: false,
+    readOnly: false,
+  },
+];
+
+function createServiceAccountAccessPolicyViews(): ServiceAccountAccessPolicyView[] {
+  return [
+    {
+      serviceAccountId: "5",
+      serviceAccountName: "service account name",
+      read: true,
+      write: false,
+    },
+    {
+      serviceAccountId: "6",
+      serviceAccountName: "service account name",
+      read: true,
+      write: true,
+    },
+  ];
+}
+
+const expectedServiceAccountAccessPolicyViews = [
+  {
+    type: ApItemEnum.ServiceAccount,
+    icon: "bwi-wrench",
+    id: "5",
+    labelName: "service account name",
+    listName: "service account name",
+    permission: ApPermissionEnum.CanRead,
+    readOnly: false,
+  },
+  {
+    type: ApItemEnum.ServiceAccount,
+    icon: "bwi-wrench",
+    id: "6",
+    labelName: "service account name",
+    listName: "service account name",
+    permission: ApPermissionEnum.CanReadWrite,
+    readOnly: false,
+  },
+];
+
+function createGrantedPoliciesView() {
+  return {
+    grantedProjectPolicies: [
+      {
+        accessPolicy: {
+          grantedProjectId: "1",
+          grantedProjectName: "Example project name",
+          read: true,
+          write: false,
+        },
+        hasPermission: true,
+      },
+      {
+        accessPolicy: {
+          grantedProjectId: "2",
+          grantedProjectName: "project name",
+          read: true,
+          write: true,
+        },
+        hasPermission: false,
+      },
+    ],
+  };
+}
+
+const expectedGrantedProjectApItemViews = [
+  {
+    type: ApItemEnum.Project,
+    icon: "bwi-collection",
+    id: "1",
+    labelName: "Example project name",
+    listName: "Example project name",
+    permission: ApPermissionEnum.CanRead,
+    readOnly: false,
+  },
+  {
+    type: ApItemEnum.Project,
+    icon: "bwi-collection",
+    id: "2",
+    labelName: "project name",
+    listName: "project name",
+    permission: ApPermissionEnum.CanReadWrite,
+    readOnly: true,
+  },
+];
+
+function createPeopleAccessPoliciesView() {
+  return {
+    userAccessPolicies: createUserAccessPolicyViews(),
+    groupAccessPolicies: createGroupAccessPolicyViews(),
+  };
+}
+
+function createProjectServiceAccountsAccessPoliciesView(): ProjectServiceAccountsAccessPoliciesView {
+  return {
+    serviceAccountAccessPolicies: createServiceAccountAccessPolicyViews(),
+  };
+}
+
+function createSecretAccessPoliciesView(): SecretAccessPoliciesView {
+  return {
+    userAccessPolicies: createUserAccessPolicyViews(),
+    groupAccessPolicies: createGroupAccessPolicyViews(),
+    serviceAccountAccessPolicies: createServiceAccountAccessPolicyViews(),
+  };
+}
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/models/ap-item-view.type.ts b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/models/ap-item-view.type.ts
index 1a023659c16..52a91c5fd6d 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/models/ap-item-view.type.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy-selector/models/ap-item-view.type.ts
@@ -1,9 +1,15 @@
 import { Utils } from "@bitwarden/common/platform/misc/utils";
 import { SelectItemView } from "@bitwarden/components";
 
+import {
+  GroupAccessPolicyView,
+  ServiceAccountAccessPolicyView,
+  UserAccessPolicyView,
+} from "../../../../models/view/access-policies/access-policy.view";
 import { PotentialGranteeView } from "../../../../models/view/access-policies/potential-grantee.view";
 import { ProjectPeopleAccessPoliciesView } from "../../../../models/view/access-policies/project-people-access-policies.view";
 import { ProjectServiceAccountsAccessPoliciesView } from "../../../../models/view/access-policies/project-service-accounts-access-policies.view";
+import { SecretAccessPoliciesView } from "../../../../models/view/access-policies/secret-access-policies.view";
 import { ServiceAccountGrantedPoliciesView } from "../../../../models/view/access-policies/service-account-granted-policies.view";
 import { ServiceAccountPeopleAccessPoliciesView } from "../../../../models/view/access-policies/service-account-people-access-policies.view";
 
@@ -11,7 +17,6 @@ import { ApItemEnum, ApItemEnumUtil } from "./enums/ap-item.enum";
 import { ApPermissionEnum, ApPermissionEnumUtil } from "./enums/ap-permission.enum";
 
 export type ApItemViewType = SelectItemView & {
-  accessPolicyId?: string;
   permission?: ApPermissionEnum;
   /**
    * Flag that this item cannot be modified.
@@ -22,7 +27,6 @@ export type ApItemViewType = SelectItemView & {
 } & (
     | {
         type: ApItemEnum.User;
-        userId?: string;
         currentUser?: boolean;
       }
     | {
@@ -40,38 +44,10 @@ export type ApItemViewType = SelectItemView & {
 export function convertToAccessPolicyItemViews(
   value: ProjectPeopleAccessPoliciesView | ServiceAccountPeopleAccessPoliciesView,
 ): ApItemViewType[] {
-  const accessPolicies: ApItemViewType[] = [];
-
-  value.userAccessPolicies.forEach((policy) => {
-    accessPolicies.push({
-      type: ApItemEnum.User,
-      icon: ApItemEnumUtil.itemIcon(ApItemEnum.User),
-      id: policy.organizationUserId,
-      accessPolicyId: policy.id,
-      labelName: policy.organizationUserName,
-      listName: policy.organizationUserName,
-      permission: ApPermissionEnumUtil.toApPermissionEnum(policy.read, policy.write),
-      userId: policy.userId,
-      currentUser: policy.currentUser,
-      readOnly: false,
-    });
-  });
-
-  value.groupAccessPolicies.forEach((policy) => {
-    accessPolicies.push({
-      type: ApItemEnum.Group,
-      icon: ApItemEnumUtil.itemIcon(ApItemEnum.Group),
-      id: policy.groupId,
-      accessPolicyId: policy.id,
-      labelName: policy.groupName,
-      listName: policy.groupName,
-      permission: ApPermissionEnumUtil.toApPermissionEnum(policy.read, policy.write),
-      currentUserInGroup: policy.currentUserInGroup,
-      readOnly: false,
-    });
-  });
-
-  return accessPolicies;
+  return [
+    ...toUserApItemViews(value.userAccessPolicies),
+    ...toGroupApItemViews(value.groupAccessPolicies),
+  ];
 }
 
 export function convertGrantedPoliciesToAccessPolicyItemViews(
@@ -84,7 +60,6 @@ export function convertGrantedPoliciesToAccessPolicyItemViews(
       type: ApItemEnum.Project,
       icon: ApItemEnumUtil.itemIcon(ApItemEnum.Project),
       id: detailView.accessPolicy.grantedProjectId,
-      accessPolicyId: detailView.accessPolicy.id,
       labelName: detailView.accessPolicy.grantedProjectName,
       listName: detailView.accessPolicy.grantedProjectName,
       permission: ApPermissionEnumUtil.toApPermissionEnum(
@@ -100,24 +75,17 @@ export function convertGrantedPoliciesToAccessPolicyItemViews(
 export function convertProjectServiceAccountsViewToApItemViews(
   value: ProjectServiceAccountsAccessPoliciesView,
 ): ApItemViewType[] {
-  const accessPolicies: ApItemViewType[] = [];
+  return toServiceAccountsApItemViews(value.serviceAccountAccessPolicies);
+}
 
-  value.serviceAccountAccessPolicies.forEach((accessPolicyView) => {
-    accessPolicies.push({
-      type: ApItemEnum.ServiceAccount,
-      icon: ApItemEnumUtil.itemIcon(ApItemEnum.ServiceAccount),
-      id: accessPolicyView.serviceAccountId,
-      accessPolicyId: accessPolicyView.id,
-      labelName: accessPolicyView.serviceAccountName,
-      listName: accessPolicyView.serviceAccountName,
-      permission: ApPermissionEnumUtil.toApPermissionEnum(
-        accessPolicyView.read,
-        accessPolicyView.write,
-      ),
-      readOnly: false,
-    });
-  });
-  return accessPolicies;
+export function convertSecretAccessPoliciesToApItemViews(
+  value: SecretAccessPoliciesView,
+): ApItemViewType[] {
+  return [
+    ...toUserApItemViews(value.userAccessPolicies),
+    ...toGroupApItemViews(value.groupAccessPolicies),
+    ...toServiceAccountsApItemViews(value.serviceAccountAccessPolicies),
+  ];
 }
 
 export function convertPotentialGranteesToApItemViewType(
@@ -166,3 +134,49 @@ export function convertPotentialGranteesToApItemViewType(
     };
   });
 }
+
+function toUserApItemViews(policies: UserAccessPolicyView[]): ApItemViewType[] {
+  return policies.map((policy) => {
+    return {
+      type: ApItemEnum.User,
+      icon: ApItemEnumUtil.itemIcon(ApItemEnum.User),
+      id: policy.organizationUserId,
+      labelName: policy.organizationUserName,
+      listName: policy.organizationUserName,
+      permission: ApPermissionEnumUtil.toApPermissionEnum(policy.read, policy.write),
+      currentUser: policy.currentUser,
+      readOnly: false,
+    };
+  });
+}
+
+function toGroupApItemViews(policies: GroupAccessPolicyView[]): ApItemViewType[] {
+  return policies.map((policy) => {
+    return {
+      type: ApItemEnum.Group,
+      icon: ApItemEnumUtil.itemIcon(ApItemEnum.Group),
+      id: policy.groupId,
+      labelName: policy.groupName,
+      listName: policy.groupName,
+      permission: ApPermissionEnumUtil.toApPermissionEnum(policy.read, policy.write),
+      currentUserInGroup: policy.currentUserInGroup,
+      readOnly: false,
+    };
+  });
+}
+
+function toServiceAccountsApItemViews(
+  policies: ServiceAccountAccessPolicyView[],
+): ApItemViewType[] {
+  return policies.map((policy) => {
+    return {
+      type: ApItemEnum.ServiceAccount,
+      icon: ApItemEnumUtil.itemIcon(ApItemEnum.ServiceAccount),
+      id: policy.serviceAccountId,
+      labelName: policy.serviceAccountName,
+      listName: policy.serviceAccountName,
+      permission: ApPermissionEnumUtil.toApPermissionEnum(policy.read, policy.write),
+      readOnly: false,
+    };
+  });
+}
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy.service.ts b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy.service.ts
index 32c130647a1..67fb9b19bca 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy.service.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/access-policy.service.ts
@@ -8,18 +8,18 @@ import { EncString } from "@bitwarden/common/platform/models/domain/enc-string";
 import { SymmetricCryptoKey } from "@bitwarden/common/platform/models/domain/symmetric-crypto-key";
 
 import {
-  UserProjectAccessPolicyView,
-  GroupProjectAccessPolicyView,
-  UserServiceAccountAccessPolicyView,
-  GroupServiceAccountAccessPolicyView,
-  ServiceAccountProjectAccessPolicyView,
+  UserAccessPolicyView,
+  GroupAccessPolicyView,
+  ServiceAccountAccessPolicyView,
+  GrantedProjectAccessPolicyView,
 } from "../../models/view/access-policies/access-policy.view";
 import { PotentialGranteeView } from "../../models/view/access-policies/potential-grantee.view";
 import { ProjectPeopleAccessPoliciesView } from "../../models/view/access-policies/project-people-access-policies.view";
 import { ProjectServiceAccountsAccessPoliciesView } from "../../models/view/access-policies/project-service-accounts-access-policies.view";
+import { SecretAccessPoliciesView } from "../../models/view/access-policies/secret-access-policies.view";
 import {
   ServiceAccountGrantedPoliciesView,
-  ServiceAccountProjectPolicyPermissionDetailsView,
+  GrantedProjectPolicyPermissionDetailsView,
 } from "../../models/view/access-policies/service-account-granted-policies.view";
 import { ServiceAccountPeopleAccessPoliciesView } from "../../models/view/access-policies/service-account-people-access-policies.view";
 import { PeopleAccessPoliciesRequest } from "../../shared/access-policies/models/requests/people-access-policies.request";
@@ -28,18 +28,18 @@ import { ServiceAccountGrantedPoliciesRequest } from "../access-policies/models/
 import { AccessPolicyRequest } from "./models/requests/access-policy.request";
 import { ProjectServiceAccountsAccessPoliciesRequest } from "./models/requests/project-service-accounts-access-policies.request";
 import {
-  GroupServiceAccountAccessPolicyResponse,
-  UserServiceAccountAccessPolicyResponse,
-  GroupProjectAccessPolicyResponse,
-  ServiceAccountProjectAccessPolicyResponse,
-  UserProjectAccessPolicyResponse,
+  GroupAccessPolicyResponse,
+  UserAccessPolicyResponse,
+  ServiceAccountAccessPolicyResponse,
+  GrantedProjectAccessPolicyResponse,
 } from "./models/responses/access-policy.response";
 import { PotentialGranteeResponse } from "./models/responses/potential-grantee.response";
 import { ProjectPeopleAccessPoliciesResponse } from "./models/responses/project-people-access-policies.response";
 import { ProjectServiceAccountsAccessPoliciesResponse } from "./models/responses/project-service-accounts-access-policies.response";
+import { SecretAccessPoliciesResponse } from "./models/responses/secret-access-policies.response";
 import { ServiceAccountGrantedPoliciesPermissionDetailsResponse } from "./models/responses/service-account-granted-policies-permission-details.response";
 import { ServiceAccountPeopleAccessPoliciesResponse } from "./models/responses/service-account-people-access-policies.response";
-import { ServiceAccountProjectPolicyPermissionDetailsResponse } from "./models/responses/service-account-project-policy-permission-details.response";
+import { GrantedProjectAccessPolicyPermissionDetailsResponse } from "./models/responses/service-account-project-policy-permission-details.response";
 
 @Injectable({
   providedIn: "root",
@@ -63,7 +63,7 @@ export class AccessPolicyService {
     );
 
     const results = new ProjectPeopleAccessPoliciesResponse(r);
-    return this.createProjectPeopleAccessPoliciesView(results);
+    return this.createPeopleAccessPoliciesView(results);
   }
 
   async putProjectPeopleAccessPolicies(
@@ -79,7 +79,7 @@ export class AccessPolicyService {
       true,
     );
     const results = new ProjectPeopleAccessPoliciesResponse(r);
-    return this.createProjectPeopleAccessPoliciesView(results);
+    return this.createPeopleAccessPoliciesView(results);
   }
 
   async getServiceAccountPeopleAccessPolicies(
@@ -94,7 +94,7 @@ export class AccessPolicyService {
     );
 
     const results = new ServiceAccountPeopleAccessPoliciesResponse(r);
-    return this.createServiceAccountPeopleAccessPoliciesView(results);
+    return this.createPeopleAccessPoliciesView(results);
   }
 
   async putServiceAccountPeopleAccessPolicies(
@@ -110,7 +110,7 @@ export class AccessPolicyService {
       true,
     );
     const results = new ServiceAccountPeopleAccessPoliciesResponse(r);
-    return this.createServiceAccountPeopleAccessPoliciesView(results);
+    return this.createPeopleAccessPoliciesView(results);
   }
 
   async getServiceAccountGrantedPolicies(
@@ -181,6 +181,22 @@ export class AccessPolicyService {
     return await this.createProjectServiceAccountsAccessPoliciesView(result, organizationId);
   }
 
+  async getSecretAccessPolicies(
+    organizationId: string,
+    secretId: string,
+  ): Promise<SecretAccessPoliciesView> {
+    const r = await this.apiService.send(
+      "GET",
+      "/secrets/" + secretId + "/access-policies",
+      null,
+      true,
+      true,
+    );
+
+    const result = new SecretAccessPoliciesResponse(r);
+    return await this.createSecretAccessPoliciesView(result, organizationId);
+  }
+
   async getPeoplePotentialGrantees(organizationId: string) {
     const r = await this.apiService.send(
       "GET",
@@ -223,12 +239,7 @@ export class AccessPolicyService {
 
   private getAccessPolicyRequest(
     granteeId: string,
-    view:
-      | UserProjectAccessPolicyView
-      | UserServiceAccountAccessPolicyView
-      | GroupProjectAccessPolicyView
-      | GroupServiceAccountAccessPolicyView
-      | ServiceAccountProjectAccessPolicyView,
+    view: UserAccessPolicyView | GroupAccessPolicyView | ServiceAccountAccessPolicyView,
   ) {
     const request = new AccessPolicyRequest();
     request.granteeId = granteeId;
@@ -285,21 +296,79 @@ export class AccessPolicyService {
 
   private createBaseAccessPolicyView(
     response:
-      | UserProjectAccessPolicyResponse
-      | UserServiceAccountAccessPolicyResponse
-      | GroupProjectAccessPolicyResponse
-      | GroupServiceAccountAccessPolicyResponse
-      | ServiceAccountProjectAccessPolicyResponse,
+      | UserAccessPolicyResponse
+      | GroupAccessPolicyResponse
+      | ServiceAccountAccessPolicyResponse
+      | GrantedProjectAccessPolicyResponse,
   ) {
     return {
-      id: response.id,
       read: response.read,
       write: response.write,
-      creationDate: response.creationDate,
-      revisionDate: response.revisionDate,
     };
   }
 
+  private async createGrantedProjectAccessPolicyView(
+    organizationKey: SymmetricCryptoKey,
+    response: GrantedProjectAccessPolicyResponse,
+  ): Promise<GrantedProjectAccessPolicyView> {
+    return {
+      ...this.createBaseAccessPolicyView(response),
+      grantedProjectId: response.grantedProjectId,
+      grantedProjectName: response.grantedProjectName
+        ? await this.encryptService.decryptToUtf8(
+            new EncString(response.grantedProjectName),
+            organizationKey,
+          )
+        : null,
+    };
+  }
+
+  private createUserAccessPolicyViews(
+    responses: UserAccessPolicyResponse[],
+  ): UserAccessPolicyView[] {
+    return responses.map((response) => {
+      return {
+        ...this.createBaseAccessPolicyView(response),
+        organizationUserId: response.organizationUserId,
+        organizationUserName: response.organizationUserName,
+        currentUser: response.currentUser,
+      };
+    });
+  }
+
+  private createGroupAccessPolicyViews(
+    responses: GroupAccessPolicyResponse[],
+  ): GroupAccessPolicyView[] {
+    return responses.map((response) => {
+      return {
+        ...this.createBaseAccessPolicyView(response),
+        groupId: response.groupId,
+        groupName: response.groupName,
+        currentUserInGroup: response.currentUserInGroup,
+      };
+    });
+  }
+
+  private async createServiceAccountAccessPolicyViews(
+    orgKey: SymmetricCryptoKey,
+    responses: ServiceAccountAccessPolicyResponse[],
+  ): Promise<ServiceAccountAccessPolicyView[]> {
+    return await Promise.all(
+      responses.map(async (response) => {
+        return {
+          ...this.createBaseAccessPolicyView(response),
+          serviceAccountId: response.serviceAccountId,
+          serviceAccountName: response.serviceAccountName
+            ? await this.encryptService.decryptToUtf8(
+                new EncString(response.serviceAccountName),
+                orgKey,
+              )
+            : null,
+        };
+      }),
+    );
+  }
+
   private async createPotentialGranteeViews(
     organizationId: string,
     results: PotentialGranteeResponse[],
@@ -332,137 +401,44 @@ export class AccessPolicyService {
   ): Promise<ServiceAccountGrantedPoliciesView> {
     const orgKey = await this.getOrganizationKey(organizationId);
 
-    const view = new ServiceAccountGrantedPoliciesView();
-    view.grantedProjectPolicies =
-      await this.createServiceAccountProjectPolicyPermissionDetailsViews(
+    return {
+      grantedProjectPolicies: await this.createGrantedProjectPolicyPermissionDetailsViews(
         orgKey,
         response.grantedProjectPolicies,
-      );
-    return view;
+      ),
+    };
   }
 
-  private async createServiceAccountProjectPolicyPermissionDetailsViews(
+  private async createGrantedProjectPolicyPermissionDetailsViews(
     orgKey: SymmetricCryptoKey,
-    responses: ServiceAccountProjectPolicyPermissionDetailsResponse[],
-  ): Promise<ServiceAccountProjectPolicyPermissionDetailsView[]> {
+    responses: GrantedProjectAccessPolicyPermissionDetailsResponse[],
+  ): Promise<GrantedProjectPolicyPermissionDetailsView[]> {
     return await Promise.all(
       responses.map(async (response) => {
-        return await this.createServiceAccountProjectPolicyPermissionDetailsView(orgKey, response);
+        return await this.createGrantedProjectPolicyPermissionDetailsView(orgKey, response);
       }),
     );
   }
 
-  private async createServiceAccountProjectPolicyPermissionDetailsView(
+  private async createGrantedProjectPolicyPermissionDetailsView(
     orgKey: SymmetricCryptoKey,
-    response: ServiceAccountProjectPolicyPermissionDetailsResponse,
-  ): Promise<ServiceAccountProjectPolicyPermissionDetailsView> {
-    const view = new ServiceAccountProjectPolicyPermissionDetailsView();
+    response: GrantedProjectAccessPolicyPermissionDetailsResponse,
+  ): Promise<GrantedProjectPolicyPermissionDetailsView> {
+    const view = new GrantedProjectPolicyPermissionDetailsView();
     view.hasPermission = response.hasPermission;
-    view.accessPolicy = await this.createServiceAccountProjectAccessPolicyView(
+    view.accessPolicy = await this.createGrantedProjectAccessPolicyView(
       orgKey,
       response.accessPolicy,
     );
     return view;
   }
 
-  private createProjectPeopleAccessPoliciesView(
-    peopleAccessPoliciesResponse: ProjectPeopleAccessPoliciesResponse,
-  ): ProjectPeopleAccessPoliciesView {
-    const view = new ProjectPeopleAccessPoliciesView();
-
-    view.userAccessPolicies = peopleAccessPoliciesResponse.userAccessPolicies.map((ap) => {
-      return this.createUserProjectAccessPolicyView(ap);
-    });
-    view.groupAccessPolicies = peopleAccessPoliciesResponse.groupAccessPolicies.map((ap) => {
-      return this.createGroupProjectAccessPolicyView(ap);
-    });
-    return view;
-  }
-
-  private createServiceAccountPeopleAccessPoliciesView(
-    response: ServiceAccountPeopleAccessPoliciesResponse,
-  ): ServiceAccountPeopleAccessPoliciesView {
-    const view = new ServiceAccountPeopleAccessPoliciesView();
-
-    view.userAccessPolicies = response.userAccessPolicies.map((ap) => {
-      return this.createUserServiceAccountAccessPolicyView(ap);
-    });
-    view.groupAccessPolicies = response.groupAccessPolicies.map((ap) => {
-      return this.createGroupServiceAccountAccessPolicyView(ap);
-    });
-    return view;
-  }
-
-  private createUserProjectAccessPolicyView(
-    response: UserProjectAccessPolicyResponse,
-  ): UserProjectAccessPolicyView {
+  private createPeopleAccessPoliciesView(
+    response: ProjectPeopleAccessPoliciesResponse | ServiceAccountPeopleAccessPoliciesResponse,
+  ) {
     return {
-      ...this.createBaseAccessPolicyView(response),
-      grantedProjectId: response.grantedProjectId,
-      organizationUserId: response.organizationUserId,
-      organizationUserName: response.organizationUserName,
-      userId: response.userId,
-      currentUser: response.currentUser,
-    };
-  }
-
-  private createGroupProjectAccessPolicyView(
-    response: GroupProjectAccessPolicyResponse,
-  ): GroupProjectAccessPolicyView {
-    return {
-      ...this.createBaseAccessPolicyView(response),
-      grantedProjectId: response.grantedProjectId,
-      groupId: response.groupId,
-      groupName: response.groupName,
-      currentUserInGroup: response.currentUserInGroup,
-    };
-  }
-
-  private async createServiceAccountProjectAccessPolicyView(
-    organizationKey: SymmetricCryptoKey,
-    response: ServiceAccountProjectAccessPolicyResponse,
-  ): Promise<ServiceAccountProjectAccessPolicyView> {
-    return {
-      ...this.createBaseAccessPolicyView(response),
-      grantedProjectId: response.grantedProjectId,
-      serviceAccountId: response.serviceAccountId,
-      grantedProjectName: response.grantedProjectName
-        ? await this.encryptService.decryptToUtf8(
-            new EncString(response.grantedProjectName),
-            organizationKey,
-          )
-        : null,
-      serviceAccountName: response.serviceAccountName
-        ? await this.encryptService.decryptToUtf8(
-            new EncString(response.serviceAccountName),
-            organizationKey,
-          )
-        : null,
-    };
-  }
-
-  private createUserServiceAccountAccessPolicyView(
-    response: UserServiceAccountAccessPolicyResponse,
-  ): UserServiceAccountAccessPolicyView {
-    return {
-      ...this.createBaseAccessPolicyView(response),
-      grantedServiceAccountId: response.grantedServiceAccountId,
-      organizationUserId: response.organizationUserId,
-      organizationUserName: response.organizationUserName,
-      userId: response.userId,
-      currentUser: response.currentUser,
-    };
-  }
-
-  private createGroupServiceAccountAccessPolicyView(
-    response: GroupServiceAccountAccessPolicyResponse,
-  ): GroupServiceAccountAccessPolicyView {
-    return {
-      ...this.createBaseAccessPolicyView(response),
-      grantedServiceAccountId: response.grantedServiceAccountId,
-      groupId: response.groupId,
-      groupName: response.groupName,
-      currentUserInGroup: response.currentUserInGroup,
+      userAccessPolicies: this.createUserAccessPolicyViews(response.userAccessPolicies),
+      groupAccessPolicies: this.createGroupAccessPolicyViews(response.groupAccessPolicies),
     };
   }
 
@@ -471,13 +447,26 @@ export class AccessPolicyService {
     organizationId: string,
   ): Promise<ProjectServiceAccountsAccessPoliciesView> {
     const orgKey = await this.getOrganizationKey(organizationId);
+    return {
+      serviceAccountAccessPolicies: await this.createServiceAccountAccessPolicyViews(
+        orgKey,
+        response.serviceAccountAccessPolicies,
+      ),
+    };
+  }
 
-    const view = new ProjectServiceAccountsAccessPoliciesView();
-    view.serviceAccountAccessPolicies = await Promise.all(
-      response.serviceAccountAccessPolicies.map(async (ap) => {
-        return await this.createServiceAccountProjectAccessPolicyView(orgKey, ap);
-      }),
-    );
-    return view;
+  private async createSecretAccessPoliciesView(
+    response: SecretAccessPoliciesResponse,
+    organizationId: string,
+  ): Promise<SecretAccessPoliciesView> {
+    const orgKey = await this.getOrganizationKey(organizationId);
+    return {
+      userAccessPolicies: this.createUserAccessPolicyViews(response.userAccessPolicies),
+      groupAccessPolicies: this.createGroupAccessPolicyViews(response.groupAccessPolicies),
+      serviceAccountAccessPolicies: await this.createServiceAccountAccessPolicyViews(
+        orgKey,
+        response.serviceAccountAccessPolicies,
+      ),
+    };
   }
 }
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/access-policy.response.ts b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/access-policy.response.ts
index ef076f9b592..88399b4e121 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/access-policy.response.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/access-policy.response.ts
@@ -1,96 +1,59 @@
 import { BaseResponse } from "@bitwarden/common/models/response/base.response";
 
-export class BaseAccessPolicyResponse extends BaseResponse {
-  id: string;
+class BaseAccessPolicyResponse extends BaseResponse {
   read: boolean;
   write: boolean;
-  creationDate: string;
-  revisionDate: string;
 
   constructor(response: any) {
     super(response);
-    this.id = this.getResponseProperty("Id");
     this.read = this.getResponseProperty("Read");
     this.write = this.getResponseProperty("Write");
-    this.creationDate = this.getResponseProperty("CreationDate");
-    this.revisionDate = this.getResponseProperty("RevisionDate");
   }
 }
 
-export class UserProjectAccessPolicyResponse extends BaseAccessPolicyResponse {
+export class UserAccessPolicyResponse extends BaseAccessPolicyResponse {
   organizationUserId: string;
   organizationUserName: string;
-  grantedProjectId: string;
-  userId: string;
   currentUser: boolean;
 
   constructor(response: any) {
     super(response);
     this.organizationUserId = this.getResponseProperty("OrganizationUserId");
     this.organizationUserName = this.getResponseProperty("OrganizationUserName");
-    this.grantedProjectId = this.getResponseProperty("GrantedProjectId");
-    this.userId = this.getResponseProperty("UserId");
     this.currentUser = this.getResponseProperty("CurrentUser");
   }
 }
 
-export class UserServiceAccountAccessPolicyResponse extends BaseAccessPolicyResponse {
-  organizationUserId: string;
-  organizationUserName: string;
-  grantedServiceAccountId: string;
-  userId: string;
-  currentUser: boolean;
-
-  constructor(response: any) {
-    super(response);
-    this.organizationUserId = this.getResponseProperty("OrganizationUserId");
-    this.organizationUserName = this.getResponseProperty("OrganizationUserName");
-    this.grantedServiceAccountId = this.getResponseProperty("GrantedServiceAccountId");
-    this.userId = this.getResponseProperty("UserId");
-    this.currentUser = this.getResponseProperty("CurrentUser");
-  }
-}
-
-export class GroupProjectAccessPolicyResponse extends BaseAccessPolicyResponse {
+export class GroupAccessPolicyResponse extends BaseAccessPolicyResponse {
   groupId: string;
   groupName: string;
-  grantedProjectId: string;
   currentUserInGroup: boolean;
 
   constructor(response: any) {
     super(response);
     this.groupId = this.getResponseProperty("GroupId");
     this.groupName = this.getResponseProperty("GroupName");
-    this.grantedProjectId = this.getResponseProperty("GrantedProjectId");
     this.currentUserInGroup = this.getResponseProperty("CurrentUserInGroup");
   }
 }
 
-export class GroupServiceAccountAccessPolicyResponse extends BaseAccessPolicyResponse {
-  groupId: string;
-  groupName: string;
-  grantedServiceAccountId: string;
-  currentUserInGroup: boolean;
-
-  constructor(response: any) {
-    super(response);
-    this.groupId = this.getResponseProperty("GroupId");
-    this.groupName = this.getResponseProperty("GroupName");
-    this.grantedServiceAccountId = this.getResponseProperty("GrantedServiceAccountId");
-    this.currentUserInGroup = this.getResponseProperty("CurrentUserInGroup");
-  }
-}
-
-export class ServiceAccountProjectAccessPolicyResponse extends BaseAccessPolicyResponse {
+export class ServiceAccountAccessPolicyResponse extends BaseAccessPolicyResponse {
   serviceAccountId: string;
   serviceAccountName: string;
-  grantedProjectId: string;
-  grantedProjectName: string;
 
   constructor(response: any) {
     super(response);
     this.serviceAccountId = this.getResponseProperty("ServiceAccountId");
     this.serviceAccountName = this.getResponseProperty("ServiceAccountName");
+  }
+}
+
+export class GrantedProjectAccessPolicyResponse extends BaseAccessPolicyResponse {
+  grantedProjectId: string;
+  grantedProjectName: string;
+
+  constructor(response: any) {
+    super(response);
     this.grantedProjectId = this.getResponseProperty("GrantedProjectId");
     this.grantedProjectName = this.getResponseProperty("GrantedProjectName");
   }
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/project-people-access-policies.response.ts b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/project-people-access-policies.response.ts
index 3fa0fa652e0..fbd27168074 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/project-people-access-policies.response.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/project-people-access-policies.response.ts
@@ -1,23 +1,18 @@
 import { BaseResponse } from "@bitwarden/common/models/response/base.response";
 
-import {
-  GroupProjectAccessPolicyResponse,
-  UserProjectAccessPolicyResponse,
-} from "./access-policy.response";
+import { GroupAccessPolicyResponse, UserAccessPolicyResponse } from "./access-policy.response";
 
 export class ProjectPeopleAccessPoliciesResponse extends BaseResponse {
-  userAccessPolicies: UserProjectAccessPolicyResponse[];
-  groupAccessPolicies: GroupProjectAccessPolicyResponse[];
+  userAccessPolicies: UserAccessPolicyResponse[];
+  groupAccessPolicies: GroupAccessPolicyResponse[];
 
   constructor(response: any) {
     super(response);
     const userAccessPolicies = this.getResponseProperty("UserAccessPolicies");
-    this.userAccessPolicies = userAccessPolicies.map(
-      (k: any) => new UserProjectAccessPolicyResponse(k),
-    );
+    this.userAccessPolicies = userAccessPolicies.map((k: any) => new UserAccessPolicyResponse(k));
     const groupAccessPolicies = this.getResponseProperty("GroupAccessPolicies");
     this.groupAccessPolicies = groupAccessPolicies.map(
-      (k: any) => new GroupProjectAccessPolicyResponse(k),
+      (k: any) => new GroupAccessPolicyResponse(k),
     );
   }
 }
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/project-service-accounts-access-policies.response.ts b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/project-service-accounts-access-policies.response.ts
index f26a9996ddc..f50be0ca9a7 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/project-service-accounts-access-policies.response.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/project-service-accounts-access-policies.response.ts
@@ -1,15 +1,15 @@
 import { BaseResponse } from "@bitwarden/common/models/response/base.response";
 
-import { ServiceAccountProjectAccessPolicyResponse } from "./access-policy.response";
+import { ServiceAccountAccessPolicyResponse } from "./access-policy.response";
 
 export class ProjectServiceAccountsAccessPoliciesResponse extends BaseResponse {
-  serviceAccountAccessPolicies: ServiceAccountProjectAccessPolicyResponse[];
+  serviceAccountAccessPolicies: ServiceAccountAccessPolicyResponse[];
 
   constructor(response: any) {
     super(response);
     const serviceAccountAccessPolicies = this.getResponseProperty("ServiceAccountAccessPolicies");
     this.serviceAccountAccessPolicies = serviceAccountAccessPolicies.map(
-      (k: any) => new ServiceAccountProjectAccessPolicyResponse(k),
+      (k: any) => new ServiceAccountAccessPolicyResponse(k),
     );
   }
 }
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/secret-access-policies.response.ts b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/secret-access-policies.response.ts
new file mode 100644
index 00000000000..ccfcb02d1d3
--- /dev/null
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/secret-access-policies.response.ts
@@ -0,0 +1,27 @@
+import { BaseResponse } from "@bitwarden/common/models/response/base.response";
+
+import {
+  GroupAccessPolicyResponse,
+  UserAccessPolicyResponse,
+  ServiceAccountAccessPolicyResponse,
+} from "./access-policy.response";
+
+export class SecretAccessPoliciesResponse extends BaseResponse {
+  userAccessPolicies: UserAccessPolicyResponse[];
+  groupAccessPolicies: GroupAccessPolicyResponse[];
+  serviceAccountAccessPolicies: ServiceAccountAccessPolicyResponse[];
+
+  constructor(response: any) {
+    super(response);
+    const userAccessPolicies = this.getResponseProperty("UserAccessPolicies");
+    this.userAccessPolicies = userAccessPolicies.map((k: any) => new UserAccessPolicyResponse(k));
+    const groupAccessPolicies = this.getResponseProperty("GroupAccessPolicies");
+    this.groupAccessPolicies = groupAccessPolicies.map(
+      (k: any) => new GroupAccessPolicyResponse(k),
+    );
+    const serviceAccountAccessPolicies = this.getResponseProperty("ServiceAccountAccessPolicies");
+    this.serviceAccountAccessPolicies = serviceAccountAccessPolicies.map(
+      (k: any) => new ServiceAccountAccessPolicyResponse(k),
+    );
+  }
+}
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/service-account-granted-policies-permission-details.response.ts b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/service-account-granted-policies-permission-details.response.ts
index 858a59ff433..8925e92f883 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/service-account-granted-policies-permission-details.response.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/service-account-granted-policies-permission-details.response.ts
@@ -1,15 +1,15 @@
 import { BaseResponse } from "@bitwarden/common/models/response/base.response";
 
-import { ServiceAccountProjectPolicyPermissionDetailsResponse } from "./service-account-project-policy-permission-details.response";
+import { GrantedProjectAccessPolicyPermissionDetailsResponse } from "./service-account-project-policy-permission-details.response";
 
 export class ServiceAccountGrantedPoliciesPermissionDetailsResponse extends BaseResponse {
-  grantedProjectPolicies: ServiceAccountProjectPolicyPermissionDetailsResponse[];
+  grantedProjectPolicies: GrantedProjectAccessPolicyPermissionDetailsResponse[];
 
   constructor(response: any) {
     super(response);
     const grantedProjectPolicies = this.getResponseProperty("GrantedProjectPolicies");
     this.grantedProjectPolicies = grantedProjectPolicies.map(
-      (k: any) => new ServiceAccountProjectPolicyPermissionDetailsResponse(k),
+      (k: any) => new GrantedProjectAccessPolicyPermissionDetailsResponse(k),
     );
   }
 }
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/service-account-people-access-policies.response.ts b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/service-account-people-access-policies.response.ts
index ca134d9012a..74796a47890 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/service-account-people-access-policies.response.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/service-account-people-access-policies.response.ts
@@ -1,23 +1,18 @@
 import { BaseResponse } from "@bitwarden/common/models/response/base.response";
 
-import {
-  GroupServiceAccountAccessPolicyResponse,
-  UserServiceAccountAccessPolicyResponse,
-} from "./access-policy.response";
+import { GroupAccessPolicyResponse, UserAccessPolicyResponse } from "./access-policy.response";
 
 export class ServiceAccountPeopleAccessPoliciesResponse extends BaseResponse {
-  userAccessPolicies: UserServiceAccountAccessPolicyResponse[];
-  groupAccessPolicies: GroupServiceAccountAccessPolicyResponse[];
+  userAccessPolicies: UserAccessPolicyResponse[];
+  groupAccessPolicies: GroupAccessPolicyResponse[];
 
   constructor(response: any) {
     super(response);
     const userAccessPolicies = this.getResponseProperty("UserAccessPolicies");
-    this.userAccessPolicies = userAccessPolicies.map(
-      (k: any) => new UserServiceAccountAccessPolicyResponse(k),
-    );
+    this.userAccessPolicies = userAccessPolicies.map((k: any) => new UserAccessPolicyResponse(k));
     const groupAccessPolicies = this.getResponseProperty("GroupAccessPolicies");
     this.groupAccessPolicies = groupAccessPolicies.map(
-      (k: any) => new GroupServiceAccountAccessPolicyResponse(k),
+      (k: any) => new GroupAccessPolicyResponse(k),
     );
   }
 }
diff --git a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/service-account-project-policy-permission-details.response.ts b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/service-account-project-policy-permission-details.response.ts
index dbc4fe0727d..9cbc6efed8f 100644
--- a/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/service-account-project-policy-permission-details.response.ts
+++ b/bitwarden_license/bit-web/src/app/secrets-manager/shared/access-policies/models/responses/service-account-project-policy-permission-details.response.ts
@@ -1,9 +1,9 @@
 import { BaseResponse } from "@bitwarden/common/models/response/base.response";
 
-import { ServiceAccountProjectAccessPolicyResponse } from "./access-policy.response";
+import { GrantedProjectAccessPolicyResponse } from "./access-policy.response";
 
-export class ServiceAccountProjectPolicyPermissionDetailsResponse extends BaseResponse {
-  accessPolicy: ServiceAccountProjectAccessPolicyResponse;
+export class GrantedProjectAccessPolicyPermissionDetailsResponse extends BaseResponse {
+  accessPolicy: GrantedProjectAccessPolicyResponse;
   hasPermission: boolean;
 
   constructor(response: any) {

From eef1e511b51a5bb39bb5e70a3bfc6be84921b619 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Rui=20Tom=C3=A9?=
 <108268980+r-tome@users.noreply.github.com>
Date: Fri, 7 Jun 2024 20:14:21 +0100
Subject: [PATCH 137/138] =?UTF-8?q?[AC-2286]=C2=A0[Defect]=20-=20CLI:=20Us?=
 =?UTF-8?q?er=20creating=20a=20collection=20through=20the=20CLI=20does=20n?=
 =?UTF-8?q?ot=20have=20access=20to=20the=20collection=20=20(#9409)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* Send current Org user Id on collection creation through CLI

* Run npm prettier

* Add organization services to CreateCommand creation on ServeCommand

* Refactor organization data models to include organizationUserId property

* Refactor create command to utilize the OrganizationUserId on the Organization object

* Add users to collection request in edit command

* fix: organization.data test update to correct deserialization, refs AC-2286

---------

Co-authored-by: Vincent Salucci <vincesalucci21@gmail.com>
---
 .../models/request/organization-collection.request.ts |  2 ++
 apps/cli/src/commands/edit.command.ts                 |  7 +++++++
 apps/cli/src/commands/serve.command.ts                |  1 +
 apps/cli/src/vault.program.ts                         |  1 +
 apps/cli/src/vault/create.command.ts                  | 11 +++++++++++
 .../models/data/organization.data.spec.ts             |  1 +
 .../admin-console/models/data/organization.data.ts    |  2 ++
 .../src/admin-console/models/domain/organization.ts   |  2 ++
 .../models/response/profile-organization.response.ts  |  2 ++
 9 files changed, 29 insertions(+)

diff --git a/apps/cli/src/admin-console/models/request/organization-collection.request.ts b/apps/cli/src/admin-console/models/request/organization-collection.request.ts
index 7546d116092..1bb7a24ce77 100644
--- a/apps/cli/src/admin-console/models/request/organization-collection.request.ts
+++ b/apps/cli/src/admin-console/models/request/organization-collection.request.ts
@@ -9,8 +9,10 @@ export class OrganizationCollectionRequest extends CollectionExport {
     req.name = "Collection name";
     req.externalId = null;
     req.groups = [SelectionReadOnly.template(), SelectionReadOnly.template()];
+    req.users = [SelectionReadOnly.template(), SelectionReadOnly.template()];
     return req;
   }
 
   groups: SelectionReadOnly[];
+  users: SelectionReadOnly[];
 }
diff --git a/apps/cli/src/commands/edit.command.ts b/apps/cli/src/commands/edit.command.ts
index e64ff8b5512..75cd241207c 100644
--- a/apps/cli/src/commands/edit.command.ts
+++ b/apps/cli/src/commands/edit.command.ts
@@ -170,10 +170,17 @@ export class EditCommand {
           : req.groups.map(
               (g) => new SelectionReadOnlyRequest(g.id, g.readOnly, g.hidePasswords, g.manage),
             );
+      const users =
+        req.users == null
+          ? null
+          : req.users.map(
+              (u) => new SelectionReadOnlyRequest(u.id, u.readOnly, u.hidePasswords, u.manage),
+            );
       const request = new CollectionRequest();
       request.name = (await this.cryptoService.encrypt(req.name, orgKey)).encryptedString;
       request.externalId = req.externalId;
       request.groups = groups;
+      request.users = users;
       const response = await this.apiService.putCollection(req.organizationId, id, request);
       const view = CollectionExport.toView(req);
       view.id = response.id;
diff --git a/apps/cli/src/commands/serve.command.ts b/apps/cli/src/commands/serve.command.ts
index 2b1e21f8abb..8949e5b71e5 100644
--- a/apps/cli/src/commands/serve.command.ts
+++ b/apps/cli/src/commands/serve.command.ts
@@ -87,6 +87,7 @@ export class ServeCommand {
       this.serviceContainer.apiService,
       this.serviceContainer.folderApiService,
       this.serviceContainer.billingAccountProfileStateService,
+      this.serviceContainer.organizationService,
     );
     this.editCommand = new EditCommand(
       this.serviceContainer.cipherService,
diff --git a/apps/cli/src/vault.program.ts b/apps/cli/src/vault.program.ts
index c8e0701845b..04ca47ac1e1 100644
--- a/apps/cli/src/vault.program.ts
+++ b/apps/cli/src/vault.program.ts
@@ -226,6 +226,7 @@ export class VaultProgram extends BaseProgram {
           this.serviceContainer.apiService,
           this.serviceContainer.folderApiService,
           this.serviceContainer.billingAccountProfileStateService,
+          this.serviceContainer.organizationService,
         );
         const response = await command.run(object, encodedJson, cmd);
         this.processResponse(response);
diff --git a/apps/cli/src/vault/create.command.ts b/apps/cli/src/vault/create.command.ts
index 78ee04e73c0..716c2b42bb1 100644
--- a/apps/cli/src/vault/create.command.ts
+++ b/apps/cli/src/vault/create.command.ts
@@ -4,6 +4,7 @@ import * as path from "path";
 import { firstValueFrom } from "rxjs";
 
 import { ApiService } from "@bitwarden/common/abstractions/api.service";
+import { OrganizationService } from "@bitwarden/common/admin-console/abstractions/organization/organization.service.abstraction";
 import { SelectionReadOnlyRequest } from "@bitwarden/common/admin-console/models/request/selection-read-only.request";
 import { BillingAccountProfileStateService } from "@bitwarden/common/billing/abstractions/account/billing-account-profile-state.service";
 import { CipherExport } from "@bitwarden/common/models/export/cipher.export";
@@ -32,6 +33,7 @@ export class CreateCommand {
     private apiService: ApiService,
     private folderApiService: FolderApiServiceAbstraction,
     private accountProfileService: BillingAccountProfileStateService,
+    private organizationService: OrganizationService,
   ) {}
 
   async run(
@@ -183,6 +185,8 @@ export class CreateCommand {
       if (orgKey == null) {
         throw new Error("No encryption key for this organization.");
       }
+      const organization = await this.organizationService.get(req.organizationId);
+      const currentOrgUserId = organization.organizationUserId;
 
       const groups =
         req.groups == null
@@ -190,10 +194,17 @@ export class CreateCommand {
           : req.groups.map(
               (g) => new SelectionReadOnlyRequest(g.id, g.readOnly, g.hidePasswords, g.manage),
             );
+      const users =
+        req.users == null
+          ? [new SelectionReadOnlyRequest(currentOrgUserId, false, false, true)]
+          : req.users.map(
+              (u) => new SelectionReadOnlyRequest(u.id, u.readOnly, u.hidePasswords, u.manage),
+            );
       const request = new CollectionRequest();
       request.name = (await this.cryptoService.encrypt(req.name, orgKey)).encryptedString;
       request.externalId = req.externalId;
       request.groups = groups;
+      request.users = users;
       const response = await this.apiService.postCollection(req.organizationId, request);
       const view = CollectionExport.toView(req);
       view.id = response.id;
diff --git a/libs/common/src/admin-console/models/data/organization.data.spec.ts b/libs/common/src/admin-console/models/data/organization.data.spec.ts
index eb65303bce9..18680483906 100644
--- a/libs/common/src/admin-console/models/data/organization.data.spec.ts
+++ b/libs/common/src/admin-console/models/data/organization.data.spec.ts
@@ -39,6 +39,7 @@ describe("ORGANIZATIONS state", () => {
         permissions: undefined,
         resetPasswordEnrolled: false,
         userId: "userId",
+        organizationUserId: "organizationUserId",
         hasPublicAndPrivateKeys: false,
         providerId: "providerId",
         providerName: "providerName",
diff --git a/libs/common/src/admin-console/models/data/organization.data.ts b/libs/common/src/admin-console/models/data/organization.data.ts
index 02fe0d6bf26..afc6b40b934 100644
--- a/libs/common/src/admin-console/models/data/organization.data.ts
+++ b/libs/common/src/admin-console/models/data/organization.data.ts
@@ -36,6 +36,7 @@ export class OrganizationData {
   permissions: PermissionsApi;
   resetPasswordEnrolled: boolean;
   userId: string;
+  organizationUserId: string;
   hasPublicAndPrivateKeys: boolean;
   providerId: string;
   providerName: string;
@@ -96,6 +97,7 @@ export class OrganizationData {
     this.permissions = response.permissions;
     this.resetPasswordEnrolled = response.resetPasswordEnrolled;
     this.userId = response.userId;
+    this.organizationUserId = response.organizationUserId;
     this.hasPublicAndPrivateKeys = response.hasPublicAndPrivateKeys;
     this.providerId = response.providerId;
     this.providerName = response.providerName;
diff --git a/libs/common/src/admin-console/models/domain/organization.ts b/libs/common/src/admin-console/models/domain/organization.ts
index a4cadcd3928..b68de7ac08b 100644
--- a/libs/common/src/admin-console/models/domain/organization.ts
+++ b/libs/common/src/admin-console/models/domain/organization.ts
@@ -43,6 +43,7 @@ export class Organization {
   permissions: PermissionsApi;
   resetPasswordEnrolled: boolean;
   userId: string;
+  organizationUserId: string;
   hasPublicAndPrivateKeys: boolean;
   providerId: string;
   providerName: string;
@@ -113,6 +114,7 @@ export class Organization {
     this.permissions = obj.permissions;
     this.resetPasswordEnrolled = obj.resetPasswordEnrolled;
     this.userId = obj.userId;
+    this.organizationUserId = obj.organizationUserId;
     this.hasPublicAndPrivateKeys = obj.hasPublicAndPrivateKeys;
     this.providerId = obj.providerId;
     this.providerName = obj.providerName;
diff --git a/libs/common/src/admin-console/models/response/profile-organization.response.ts b/libs/common/src/admin-console/models/response/profile-organization.response.ts
index 9092d48c774..1649bf47ba6 100644
--- a/libs/common/src/admin-console/models/response/profile-organization.response.ts
+++ b/libs/common/src/admin-console/models/response/profile-organization.response.ts
@@ -36,6 +36,7 @@ export class ProfileOrganizationResponse extends BaseResponse {
   permissions: PermissionsApi;
   resetPasswordEnrolled: boolean;
   userId: string;
+  organizationUserId: string;
   providerId: string;
   providerName: string;
   providerType?: ProviderType;
@@ -86,6 +87,7 @@ export class ProfileOrganizationResponse extends BaseResponse {
     this.permissions = new PermissionsApi(this.getResponseProperty("permissions"));
     this.resetPasswordEnrolled = this.getResponseProperty("ResetPasswordEnrolled");
     this.userId = this.getResponseProperty("UserId");
+    this.organizationUserId = this.getResponseProperty("OrganizationUserId");
     this.providerId = this.getResponseProperty("ProviderId");
     this.providerName = this.getResponseProperty("ProviderName");
     this.providerType = this.getResponseProperty("ProviderType");

From b49b6b370f31eff35a53ddc1754e9f9b89311e1a Mon Sep 17 00:00:00 2001
From: vinith-kovan <156108204+vinith-kovan@users.noreply.github.com>
Date: Mon, 10 Jun 2024 19:42:10 +0530
Subject: [PATCH 138/138] [PM-4952] Migrate-remove-password-component (#9305)

* migrating remove-password component

* add loading state

---------

Co-authored-by: rr-bw <102181210+rr-bw@users.noreply.github.com>
---
 .../app/auth/remove-password.component.html   | 82 +++++++------------
 apps/web/src/app/oss-routing.module.ts        | 53 ++++++------
 2 files changed, 58 insertions(+), 77 deletions(-)

diff --git a/apps/web/src/app/auth/remove-password.component.html b/apps/web/src/app/auth/remove-password.component.html
index 19e0d63572b..f8d2b26fc17 100644
--- a/apps/web/src/app/auth/remove-password.component.html
+++ b/apps/web/src/app/auth/remove-password.component.html
@@ -1,55 +1,33 @@
-<div class="mt-5 d-flex justify-content-center" *ngIf="loading">
-  <div>
-    <img class="mb-4 logo logo-themed" alt="Bitwarden" />
-    <p class="text-center">
-      <i
-        class="bwi bwi-spinner bwi-spin bwi-2x text-muted"
-        title="{{ 'loading' | i18n }}"
-        aria-hidden="true"
-      ></i>
-      <span class="sr-only">{{ "loading" | i18n }}</span>
-    </p>
-  </div>
+<div *ngIf="loading" class="tw-text-center">
+  <i
+    class="bwi bwi-spinner bwi-spin bwi-2x tw-text-muted"
+    title="{{ 'loading' | i18n }}"
+    aria-hidden="true"
+  ></i>
+  <span class="tw-sr-only">{{ "loading" | i18n }}</span>
 </div>
-<div class="container" *ngIf="!loading">
-  <div class="row justify-content-md-center mt-5">
-    <div class="col-5">
-      <p class="lead text-center mb-4">{{ "removeMasterPassword" | i18n }}</p>
-      <hr />
-      <div class="card d-block">
-        <div class="card-body">
-          <p>{{ "convertOrganizationEncryptionDesc" | i18n: organization.name }}</p>
 
-          <button
-            type="button"
-            class="btn btn-primary btn-block"
-            (click)="convert()"
-            [disabled]="actionPromise"
-          >
-            <i
-              class="bwi bwi-spinner bwi-spin"
-              title="{{ 'loading' | i18n }}"
-              aria-hidden="true"
-              *ngIf="continuing"
-            ></i>
-            {{ "removeMasterPassword" | i18n }}
-          </button>
-          <button
-            type="button"
-            class="btn btn-outline-secondary btn-block"
-            (click)="leave()"
-            [disabled]="actionPromise"
-          >
-            <i
-              class="bwi bwi-spinner bwi-spin"
-              title="{{ 'loading' | i18n }}"
-              aria-hidden="true"
-              *ngIf="leaving"
-            ></i>
-            {{ "leaveOrganization" | i18n }}
-          </button>
-        </div>
-      </div>
-    </div>
-  </div>
+<div *ngIf="!loading">
+  <p>{{ "convertOrganizationEncryptionDesc" | i18n: organization.name }}</p>
+
+  <button
+    bitButton
+    type="button"
+    buttonType="primary"
+    class="tw-w-full"
+    [bitAction]="convert"
+    [block]="true"
+  >
+    {{ "removeMasterPassword" | i18n }}
+  </button>
+  <button
+    bitButton
+    type="button"
+    buttonType="secondary"
+    class="tw-w-full"
+    [bitAction]="leave"
+    [block]="true"
+  >
+    {{ "leaveOrganization" | i18n }}
+  </button>
 </div>
diff --git a/apps/web/src/app/oss-routing.module.ts b/apps/web/src/app/oss-routing.module.ts
index 77e51172269..1115a60bf91 100644
--- a/apps/web/src/app/oss-routing.module.ts
+++ b/apps/web/src/app/oss-routing.module.ts
@@ -176,12 +176,6 @@ const routes: Routes = [
         canActivate: [AuthGuard],
         data: { titleId: "updatePassword" } satisfies DataProperties,
       },
-      {
-        path: "remove-password",
-        component: RemovePasswordComponent,
-        canActivate: [AuthGuard],
-        data: { titleId: "removeMasterPassword" } satisfies DataProperties,
-      },
       {
         path: "migrate-legacy-encryption",
         loadComponent: () =>
@@ -195,25 +189,6 @@ const routes: Routes = [
     path: "",
     component: AnonLayoutWrapperComponent,
     children: [
-      {
-        path: "recover-2fa",
-        canActivate: [unauthGuardFn()],
-        children: [
-          {
-            path: "",
-            component: RecoverTwoFactorComponent,
-          },
-          {
-            path: "",
-            component: EnvironmentSelectorComponent,
-            outlet: "environment-selector",
-          },
-        ],
-        data: {
-          pageTitle: "recoverAccountTwoStep",
-          titleId: "recoverAccountTwoStep",
-        } satisfies DataProperties & AnonLayoutWrapperData,
-      },
       {
         path: "accept-emergency",
         canActivate: [deepLinkGuard()],
@@ -237,6 +212,34 @@ const routes: Routes = [
           },
         ],
       },
+      {
+        path: "recover-2fa",
+        canActivate: [unauthGuardFn()],
+        children: [
+          {
+            path: "",
+            component: RecoverTwoFactorComponent,
+          },
+          {
+            path: "",
+            component: EnvironmentSelectorComponent,
+            outlet: "environment-selector",
+          },
+        ],
+        data: {
+          pageTitle: "recoverAccountTwoStep",
+          titleId: "recoverAccountTwoStep",
+        } satisfies DataProperties & AnonLayoutWrapperData,
+      },
+      {
+        path: "remove-password",
+        component: RemovePasswordComponent,
+        canActivate: [AuthGuard],
+        data: {
+          pageTitle: "removeMasterPassword",
+          titleId: "removeMasterPassword",
+        } satisfies DataProperties & AnonLayoutWrapperData,
+      },
     ],
   },
   {