{{t "User settings" }}

{{#if page_params.two_fa_enabled }}

{{t "Two factor authentication" }}: {{#if page_params.two_fa_enabled_user }}{{t "Enabled" }}{{else}}{{t "Disabled" }}{{/if}} [{{t "Setup" }}]

{{/if}}
{{#if page_params.realm_email_auth_enabled}}
{{/if}}
{{user_role_text}}

{{t "Profile picture" }}

{{> image_upload_widget widget = "user-avatar" upload_text = (t "Upload new profile picture") delete_text = (t "Delete profile picture") is_editable_by_current_user = user_can_change_avatar image = page_params.avatar_url_medium}}

{{t "Profile" }}


{{t "API key" }}

{{#tr}} An API key can be used to programmatically access a Zulip account. Anyone with access to your API key has the ability to read your messages, send messages on your behalf, and otherwise impersonate you on Zulip, so you should guard your API key as carefully as you guard your password.
We recommend creating bots and using the bots' accounts and API keys to access the Zulip API, unless the task requires access to your account. {{/tr}}