Simplify the Two Factor settings in user profile

[kasparsd]

Fixes #342.

With the recent changes to the admin UX in #623, we have the opportunity to simplify it even further and make it look more native to the core WP settings.

What?

Switch to a standard two column layout with section headings on the right:

on mobile:

Why?

1. Using standard layout improves the user experience and accessibility of the settings section.
2. Native-looking layout would help with the core project merge if it gets to it.

How?

This proposal relies on the core idea that the primary method selector can be moved to a dedicated dropdown instead of using the radio buttons next to each method configuration.

Importantly:

1. The primary method selector is a pure convenience thing as the user can switch between all of the enabled methods during the login phase anyway. The plugin could show the most secure option, by default, if no primary is specified.

2. Secondly, the primary method doesn't need to be configured if the user has only one two factor method enabled (and the backup codes, for example). The plugin can be smart enough to guess the primary method.

Considerations:

• The primary method selector is placed at the end of all individual methods to ensure that users have evaluated all the options and make the choice, if really necessary for their use-case.

Testing Instructions

Screenshots or screencast

Changelog Entry

Added - New feature.
Changed - Existing functionality.
Deprecated - Soon-to-be removed feature.
Removed - Feature.
Fixed - Bug fix.
Security - Vulnerability.

Changed - simplify the two-factor options on the user profile page by moving the primary method selector to a dedicated dropdown field which is more aligned with the WordPress core UX.

[kasparsd]

Curious to hear what others think about this proposal.

@dd32 Do you have any concerns with this in regards to various integrations that insert themselves into this view?

[jeffpaul]

Noting this change would close #342. I do like moving the Primary radio button out to a dropdown single select option, as that handles for most of the setup UX confusion for users.

It might make sense to group the Email / Auth app / U2F / Codes / Dummy, etc. bits into a "Two-factor methods" section so that the Primary Method setting appears more clearly separate to the method configurations.

Finally, a small tweak to the Primary Method helper copy from Select the primary method used during the login by default. to Select the primary method to use for two-factor authentication when signing into this site..

[kasparsd]

Great suggestions @jeffpaul, thanks!

It might make sense to group ...

We currently have everything under "Two-Factor Options". Something like this?

---

Two-Factor

Configure a primary...

Two-Factor Methods

Method A - [ ] Enable Method A
Method B - [ ] Enable Method B
Method C - [ ] Enable Method C

Two-Factor Primary Method

Primary method dropdown.

[jeffpaul]

Yes, adding those headings I think helps separate things just a bit and mimics how other WP core settings pages group things. I admit I was thinking more visually to have horizontal lines/separators but I think following WP core and using H2/H3/etc is probably the better/right approach.

[dd32]

@dd32 Do you have any concerns with this in regards to various integrations that insert themselves into this view?

Not at all!

[kasparsd]

@jeffpaul I've updated the copy for the default method per your suggestion.

Also, I feel like your suggestion about a line separator works better than headings for each section which it makes it way nosy.

I've updated the pull request description with the latest screenshot. Please let me know your thoughts.

[kasparsd]

This is a dedicated helper to get the selected option without attempting to resolve if the method is active or not.