Closed Bug 1990824 Opened 1 month ago Closed 1 month ago

Improve displayed strings related to account settings "fetch certificates" in email security settings

Categories

(Thunderbird :: Account Manager, enhancement)

Product:
Thunderbird
Component:
Account Manager
Type:
enhancement

Tracking

(Not tracked)

Status:
RESOLVED FIXED
Milestone:
146 Branch

People

(Reporter: KaiE, Assigned: KaiE)

References

Details

Attachments

(11 files, 2 obsolete files)

Bug 1990824 - Improve text labels for email server certificate testing. r=#thunderbird-reviewers
48 bytes, text/x-phabricator-request
Details | Review
shot-fetch-old.png
31.77 KB, image/png
Details
shot-fetch-new.png
32.65 KB, image/png
Details
shot-fetching-old.png
35.17 KB, image/png
Details
shot-fetching-new.png
35.38 KB, image/png
Details
shot-failed-old.png
34.96 KB, image/png
Details
shot-failed-new.png
33.81 KB, image/png
Details
shot-valid-old.png
37.12 KB, image/png
Details
shot-valid-new.png
36.93 KB, image/png
Details
shot-exists-old.png
37.92 KB, image/png
Details
shot-exists-new3.png
39.22 KB, image/png
Details

Since bug 1981098, in account settings, server settings, below "connection security", if TLS is enabled, a new text label is shown that says "Fetch Certificate".

(a)
In my opinion this text should be changed, because a majority of users would not understand why they have that option at this place. It should be made clear what the purpose of that action is.

I suggest to change it to "Test Connection Security" or to "Test Connection to Server".

(b)
When the action is clicked, it currently shows a status/progress text "fetching certificate...".
For the same reason I suggest to change that to "testing connection to server..."

(c)
When the connection fails, an error message is shown which says "Failed to fetch the certificate".
I think that should be changed to "Connection to server failed".

(d)
When the connection fails, there is no "retry" button.

(e)
When the certificate validation passes, the following text is shown:
"The certificate for imap.kuix.de:993 appears to be valid."

I don't like that it says "appears" to be valid.
It's us who make the decision, it's our decision whether we consider it valid or not.
We should make a more specific statement.

However, for consistency with the above suggestions, I think it's best to show the following text in the success scenario:
"Successfully established a secure connection to the server."

For all other scenarios, when the connection to the server fails, I think It's fine to keep showing the existing error text.

Assignee: nobody → kaie
Status: NEW → ASSIGNED

After more testing, I have an additional change request.

When an exception has already been added, the UI still display a red label.
Instead of reporting that the connection has failed, it now warns that an exception is in place.

To me, when seeing the information in red, my immediate reaction is "what's going on, why is this still not working, I already did something to fix it".

I understand your intention. You want to warn the user that something isn't working right.
That's a good intention.

However, I'd consider this "warning level" and would rather display it in orange.

I think this warning also needs a better wording, my suggestion:
"Reminder: Thunderbird has been configured to accept an invalid security certificate for this server."

Summary: Change "fetch certificates" in email security settings to "test connection security" → Improve displayed strings related to account settings "fetch certificates" in email security settings

Toby has requested that I present screenshot that show how the old and new strings appear in the user interface.

I will attach 10 screenshots, old plus new for each of the 5 changed strings.

Attached image shot-fetch-old.png
Attached image shot-fetch-new.png
Attached image shot-fetching-old.png
Attached image shot-fetching-new.png
Attached image shot-failed-old.png
Attached image shot-failed-new.png
Attached image shot-valid-old.png
Attached image shot-valid-new.png
Attached image shot-exists-old.png
Attached image shot-exists-new.png (obsolete) —

I will make a small amendment to the text label for the "certificate exception exists" scenario, because of bug 1993215.

Instead of saying "the certificate" I want it to change to "a certificate" (avoid that the sentence could be considered a claim that we're currently seeing the same certificate that was configured in the exception).

Attached image shot-exists-new2.png (obsolete) —
Attachment #9518915 - Attachment is obsolete: true

I've changed my opinion for the "exception exists" scenario.
I'm no longer happy with the new wording, because of the scenario described in bug 1993215.

I think the existing wording is better, because it is more neutral, and doesn't try to explain the effect of the existing exception (which is tricky).

Attached image shot-exists-new3.png

Updated screenshot for the "exception exists" scenario.
Text label is kept.
Color reduced to warning (yellow).

The color is the only difference in comparison to what exists.

Attachment #9518930 - Attachment is obsolete: true

Pushed by kaie@kuix.de:
https://hg.mozilla.org/comm-central/rev/e5bffdcc237d
Improve text labels for email server certificate testing. r=arschmitz,rtaylor

Status: ASSIGNED → RESOLVED
Closed: 1 month ago
Resolution: --- → FIXED
Target Milestone: --- → 146 Branch
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: