From e22d56025466dfb426a98423f54121b32dee5653 Mon Sep 17 00:00:00 2001
From: Nilanjan Debnath <91799113+nilanjan-debnath@users.noreply.github.com>
Date: Sat, 10 Jan 2026 21:03:25 +0530
Subject: [PATCH 01/17] Add SSL authentication method for database setup

Add SSL checkbox and CA Certificate textarea for SetupDatabase.vue page
Add UPTIME_KUMA_DB_SSL and UPTIME_KUMA_DB_CA env variables to dbConfig as ssl and ca inside setup-database.js
---
 server/database.js          | 18 ++++++++++++++
 server/setup-database.js    |  8 +++++++
 src/pages/SetupDatabase.vue | 48 +++++++++++++++++++++++++++++++++++++
 3 files changed, 74 insertions(+)

diff --git a/server/database.js b/server/database.js
index d1176ed309..41e94a90fd 100644
--- a/server/database.js
+++ b/server/database.js
@@ -284,6 +284,12 @@ class Database {
                 port: dbConfig.port,
                 user: dbConfig.username,
                 password: dbConfig.password,
+                ...(dbConfig.ssl ? {
+                        ssl: {
+                            rejectUnauthorized: true,
+                            ...(dbConfig.ca && dbConfig.ca.trim() !== "" ? { ca: [ dbConfig.ca ] } : {}),
+                        }
+                    } : {}),
             });
 
             // Set to true, so for example "uptime.kuma", becomes `uptime.kuma`, not `uptime`.`kuma`
@@ -309,6 +315,12 @@ class Database {
                         }
                         return next();
                     },
+                    ...(dbConfig.ssl ? {
+                        ssl: {
+                            rejectUnauthorized: true,
+                            ...(dbConfig.ca && dbConfig.ca.trim() !== "" ? { ca: [ dbConfig.ca ] } : {}),
+                        }
+                    } : {}),
                 },
                 pool: mariadbPoolConfig,
             };
@@ -330,6 +342,12 @@ class Database {
                         }
                         return next();
                     },
+                    ...(dbConfig.ssl ? {
+                        ssl: {
+                            rejectUnauthorized: true,
+                            ...(dbConfig.ca && dbConfig.ca.trim() !== "" ? { ca: [ dbConfig.ca ] } : {}),
+                        }
+                    } : {}),
                 },
                 pool: mariadbPoolConfig,
             };
diff --git a/server/setup-database.js b/server/setup-database.js
index 53c1d18a4e..a7336a6299 100644
--- a/server/setup-database.js
+++ b/server/setup-database.js
@@ -102,6 +102,8 @@ class SetupDatabase {
             dbConfig.dbName = process.env.UPTIME_KUMA_DB_NAME;
             dbConfig.username = getEnvOrFile("UPTIME_KUMA_DB_USERNAME");
             dbConfig.password = getEnvOrFile("UPTIME_KUMA_DB_PASSWORD");
+            dbConfig.ssl = (process.env.UPTIME_KUMA_DB_SSL.toLowerCase() === "true");
+            dbConfig.ca = process.env.UPTIME_KUMA_DB_CA;
             Database.writeDBConfig(dbConfig);
         }
     }
@@ -239,6 +241,12 @@ class SetupDatabase {
                             user: dbConfig.username,
                             password: dbConfig.password,
                             database: dbConfig.dbName,
+                            ...(dbConfig.ssl ? {
+                                ssl: {
+                                    rejectUnauthorized: true,
+                                    ...(dbConfig.ca && dbConfig.ca.trim() !== "" ? { ca: [ dbConfig.ca ] } : {}),
+                                }
+                            } : {}),
                         });
                         await connection.execute("SELECT 1");
                         connection.end();
diff --git a/src/pages/SetupDatabase.vue b/src/pages/SetupDatabase.vue
index 58951f9178..42d51377ef 100644
--- a/src/pages/SetupDatabase.vue
+++ b/src/pages/SetupDatabase.vue
@@ -121,6 +121,43 @@
                         <input id="floatingInput" v-model="dbConfig.dbName" type="text" class="form-control" required />
                         <label for="floatingInput">{{ $t("dbName") }}</label>
                     </div>
+
+                    <div class="d-flex mt-3 short gap-2">
+                        <div class="form-check form-switch form-control m-0 d-flex align-items-center justify-content-center" style="flex: 1;">
+                            <input 
+                                id="sslCheck" 
+                                v-model="dbConfig.ssl" 
+                                type="checkbox" 
+                                role="switch" 
+                                class="form-check-input mt-0"
+                                style="margin-left: 0; margin-right: 10px; position: relative;"
+                            >
+                            <label class="form-check-label" for="sslCheck">SSL</label>
+                        </div>
+
+                        <button 
+                            id="caButton"
+                            type="button" 
+                            class="form-control d-flex align-items-center justify-content-center" 
+                            style="flex: 1; cursor: pointer;" 
+                            :disabled="!dbConfig.ssl"
+                            @click="showCA = !showCA"
+                        >
+                            <span class="me-2">CA</span>
+                            <font-awesome-icon :icon="showCA && dbConfig.ssl ? 'arrow-up' : 'arrow-down'" />
+                        </button>
+                    </div>
+
+                    <div v-if="showCA && dbConfig.ssl" class="form-floating mt-2 short">
+                        <textarea 
+                            id="caInput" 
+                            v-model="dbConfig.ca" 
+                            class="form-control" 
+                            placeholder="CA Certificate" 
+                            style="height: 100px; font-family: monospace; font-size: 12px;"
+                        ></textarea>
+                        <label for="caInput">CA Certificate</label>
+                    </div>
                 </template>
 
                 <button class="btn btn-primary mt-4 short" type="submit" :disabled="disabledButton">
@@ -141,6 +178,7 @@ export default {
     data() {
         return {
             show: false,
+            showCA: false,
             dbConfig: {
                 type: undefined,
                 port: 3306,
@@ -148,6 +186,8 @@ export default {
                 username: "",
                 password: "",
                 dbName: "kuma",
+                ssl: false,
+                ca: "",
             },
             info: {
                 needSetup: false,
@@ -253,6 +293,14 @@ export default {
     }
 }
 
+.form-check {
+    height: calc(3.5rem + 2px);
+    padding: 0;
+    display: flex;
+    align-items: center;
+    justify-content: space-around;
+}
+
 .short {
     width: 300px;
 }

From 4c72bdc22027ea09e4bd3cffe7f9a5b04cc58c7b Mon Sep 17 00:00:00 2001
From: "autofix-ci[bot]" <114827586+autofix-ci[bot]@users.noreply.github.com>
Date: Sat, 10 Jan 2026 15:52:09 +0000
Subject: [PATCH 02/17] [autofix.ci] apply automated fixes

---
 server/database.js          | 42 +++++++++++++++++++++----------------
 server/setup-database.js    | 16 +++++++-------
 src/pages/SetupDatabase.vue | 39 ++++++++++++++++++----------------
 3 files changed, 54 insertions(+), 43 deletions(-)

diff --git a/server/database.js b/server/database.js
index 41e94a90fd..d41aba531d 100644
--- a/server/database.js
+++ b/server/database.js
@@ -284,12 +284,14 @@ class Database {
                 port: dbConfig.port,
                 user: dbConfig.username,
                 password: dbConfig.password,
-                ...(dbConfig.ssl ? {
-                        ssl: {
-                            rejectUnauthorized: true,
-                            ...(dbConfig.ca && dbConfig.ca.trim() !== "" ? { ca: [ dbConfig.ca ] } : {}),
-                        }
-                    } : {}),
+                ...(dbConfig.ssl
+                    ? {
+                          ssl: {
+                              rejectUnauthorized: true,
+                              ...(dbConfig.ca && dbConfig.ca.trim() !== "" ? { ca: [dbConfig.ca] } : {}),
+                          },
+                      }
+                    : {}),
             });
 
             // Set to true, so for example "uptime.kuma", becomes `uptime.kuma`, not `uptime`.`kuma`
@@ -315,12 +317,14 @@ class Database {
                         }
                         return next();
                     },
-                    ...(dbConfig.ssl ? {
-                        ssl: {
-                            rejectUnauthorized: true,
-                            ...(dbConfig.ca && dbConfig.ca.trim() !== "" ? { ca: [ dbConfig.ca ] } : {}),
-                        }
-                    } : {}),
+                    ...(dbConfig.ssl
+                        ? {
+                              ssl: {
+                                  rejectUnauthorized: true,
+                                  ...(dbConfig.ca && dbConfig.ca.trim() !== "" ? { ca: [dbConfig.ca] } : {}),
+                              },
+                          }
+                        : {}),
                 },
                 pool: mariadbPoolConfig,
             };
@@ -342,12 +346,14 @@ class Database {
                         }
                         return next();
                     },
-                    ...(dbConfig.ssl ? {
-                        ssl: {
-                            rejectUnauthorized: true,
-                            ...(dbConfig.ca && dbConfig.ca.trim() !== "" ? { ca: [ dbConfig.ca ] } : {}),
-                        }
-                    } : {}),
+                    ...(dbConfig.ssl
+                        ? {
+                              ssl: {
+                                  rejectUnauthorized: true,
+                                  ...(dbConfig.ca && dbConfig.ca.trim() !== "" ? { ca: [dbConfig.ca] } : {}),
+                              },
+                          }
+                        : {}),
                 },
                 pool: mariadbPoolConfig,
             };
diff --git a/server/setup-database.js b/server/setup-database.js
index a7336a6299..dadaa9a688 100644
--- a/server/setup-database.js
+++ b/server/setup-database.js
@@ -102,7 +102,7 @@ class SetupDatabase {
             dbConfig.dbName = process.env.UPTIME_KUMA_DB_NAME;
             dbConfig.username = getEnvOrFile("UPTIME_KUMA_DB_USERNAME");
             dbConfig.password = getEnvOrFile("UPTIME_KUMA_DB_PASSWORD");
-            dbConfig.ssl = (process.env.UPTIME_KUMA_DB_SSL.toLowerCase() === "true");
+            dbConfig.ssl = process.env.UPTIME_KUMA_DB_SSL.toLowerCase() === "true";
             dbConfig.ca = process.env.UPTIME_KUMA_DB_CA;
             Database.writeDBConfig(dbConfig);
         }
@@ -241,12 +241,14 @@ class SetupDatabase {
                             user: dbConfig.username,
                             password: dbConfig.password,
                             database: dbConfig.dbName,
-                            ...(dbConfig.ssl ? {
-                                ssl: {
-                                    rejectUnauthorized: true,
-                                    ...(dbConfig.ca && dbConfig.ca.trim() !== "" ? { ca: [ dbConfig.ca ] } : {}),
-                                }
-                            } : {}),
+                            ...(dbConfig.ssl
+                                ? {
+                                      ssl: {
+                                          rejectUnauthorized: true,
+                                          ...(dbConfig.ca && dbConfig.ca.trim() !== "" ? { ca: [dbConfig.ca] } : {}),
+                                      },
+                                  }
+                                : {}),
                         });
                         await connection.execute("SELECT 1");
                         connection.end();
diff --git a/src/pages/SetupDatabase.vue b/src/pages/SetupDatabase.vue
index 42d51377ef..659711e325 100644
--- a/src/pages/SetupDatabase.vue
+++ b/src/pages/SetupDatabase.vue
@@ -123,23 +123,26 @@
                     </div>
 
                     <div class="d-flex mt-3 short gap-2">
-                        <div class="form-check form-switch form-control m-0 d-flex align-items-center justify-content-center" style="flex: 1;">
-                            <input 
-                                id="sslCheck" 
-                                v-model="dbConfig.ssl" 
-                                type="checkbox" 
-                                role="switch" 
+                        <div
+                            class="form-check form-switch form-control m-0 d-flex align-items-center justify-content-center"
+                            style="flex: 1"
+                        >
+                            <input
+                                id="sslCheck"
+                                v-model="dbConfig.ssl"
+                                type="checkbox"
+                                role="switch"
                                 class="form-check-input mt-0"
-                                style="margin-left: 0; margin-right: 10px; position: relative;"
-                            >
+                                style="margin-left: 0; margin-right: 10px; position: relative"
+                            />
                             <label class="form-check-label" for="sslCheck">SSL</label>
                         </div>
 
-                        <button 
+                        <button
                             id="caButton"
-                            type="button" 
-                            class="form-control d-flex align-items-center justify-content-center" 
-                            style="flex: 1; cursor: pointer;" 
+                            type="button"
+                            class="form-control d-flex align-items-center justify-content-center"
+                            style="flex: 1; cursor: pointer"
                             :disabled="!dbConfig.ssl"
                             @click="showCA = !showCA"
                         >
@@ -149,12 +152,12 @@
                     </div>
 
                     <div v-if="showCA && dbConfig.ssl" class="form-floating mt-2 short">
-                        <textarea 
-                            id="caInput" 
-                            v-model="dbConfig.ca" 
-                            class="form-control" 
-                            placeholder="CA Certificate" 
-                            style="height: 100px; font-family: monospace; font-size: 12px;"
+                        <textarea
+                            id="caInput"
+                            v-model="dbConfig.ca"
+                            class="form-control"
+                            placeholder="CA Certificate"
+                            style="height: 100px; font-family: monospace; font-size: 12px"
                         ></textarea>
                         <label for="caInput">CA Certificate</label>
                     </div>

From 398a36f4cc466bb9c0c8fd7606299f504814bfe6 Mon Sep 17 00:00:00 2001
From: Nilanjan Debnath <91799113+nilanjan-debnath@users.noreply.github.com>
Date: Sun, 11 Jan 2026 00:12:08 +0530
Subject: [PATCH 03/17] Update server/setup-database.js

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
---
 server/setup-database.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/server/setup-database.js b/server/setup-database.js
index dadaa9a688..5253f6b212 100644
--- a/server/setup-database.js
+++ b/server/setup-database.js
@@ -102,7 +102,7 @@ class SetupDatabase {
             dbConfig.dbName = process.env.UPTIME_KUMA_DB_NAME;
             dbConfig.username = getEnvOrFile("UPTIME_KUMA_DB_USERNAME");
             dbConfig.password = getEnvOrFile("UPTIME_KUMA_DB_PASSWORD");
-            dbConfig.ssl = process.env.UPTIME_KUMA_DB_SSL.toLowerCase() === "true";
+            dbConfig.ssl = process.env.UPTIME_KUMA_DB_SSL?.toLowerCase() === "true";
             dbConfig.ca = process.env.UPTIME_KUMA_DB_CA;
             Database.writeDBConfig(dbConfig);
         }

From e7b908f2fd7878fc8105f1b4d2517dede45622aa Mon Sep 17 00:00:00 2001
From: Nilanjan Debnath <91799113+nilanjan-debnath@users.noreply.github.com>
Date: Sun, 11 Jan 2026 00:12:22 +0530
Subject: [PATCH 04/17] Update server/setup-database.js

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
---
 server/setup-database.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/server/setup-database.js b/server/setup-database.js
index 5253f6b212..c2a219f645 100644
--- a/server/setup-database.js
+++ b/server/setup-database.js
@@ -103,7 +103,7 @@ class SetupDatabase {
             dbConfig.username = getEnvOrFile("UPTIME_KUMA_DB_USERNAME");
             dbConfig.password = getEnvOrFile("UPTIME_KUMA_DB_PASSWORD");
             dbConfig.ssl = process.env.UPTIME_KUMA_DB_SSL?.toLowerCase() === "true";
-            dbConfig.ca = process.env.UPTIME_KUMA_DB_CA;
+            dbConfig.ca = process.env.UPTIME_KUMA_DB_CA || "";
             Database.writeDBConfig(dbConfig);
         }
     }

From 57f05280c253d18c8249cace1aa55c289d29c3f3 Mon Sep 17 00:00:00 2001
From: Nilanjan Debnath <91799113+nilanjan-debnath@users.noreply.github.com>
Date: Sun, 11 Jan 2026 00:12:53 +0530
Subject: [PATCH 05/17] Update server/database.js

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
---
 server/database.js | 8 --------
 1 file changed, 8 deletions(-)

diff --git a/server/database.js b/server/database.js
index d41aba531d..23923679fd 100644
--- a/server/database.js
+++ b/server/database.js
@@ -346,14 +346,6 @@ class Database {
                         }
                         return next();
                     },
-                    ...(dbConfig.ssl
-                        ? {
-                              ssl: {
-                                  rejectUnauthorized: true,
-                                  ...(dbConfig.ca && dbConfig.ca.trim() !== "" ? { ca: [dbConfig.ca] } : {}),
-                              },
-                          }
-                        : {}),
                 },
                 pool: mariadbPoolConfig,
             };

From 6c05956d1f498be867917a6877133dc3a5e2d86e Mon Sep 17 00:00:00 2001
From: Nilanjan Debnath <91799113+nilanjan-debnath@users.noreply.github.com>
Date: Sun, 11 Jan 2026 00:49:25 +0530
Subject: [PATCH 06/17] chore: improved ui and accessing env variables using
 getEnvOrFile

---
 server/setup-database.js    |  4 +-
 src/pages/SetupDatabase.vue | 75 +++++++++++++++++++------------------
 2 files changed, 40 insertions(+), 39 deletions(-)

diff --git a/server/setup-database.js b/server/setup-database.js
index c2a219f645..81554c1600 100644
--- a/server/setup-database.js
+++ b/server/setup-database.js
@@ -102,8 +102,8 @@ class SetupDatabase {
             dbConfig.dbName = process.env.UPTIME_KUMA_DB_NAME;
             dbConfig.username = getEnvOrFile("UPTIME_KUMA_DB_USERNAME");
             dbConfig.password = getEnvOrFile("UPTIME_KUMA_DB_PASSWORD");
-            dbConfig.ssl = process.env.UPTIME_KUMA_DB_SSL?.toLowerCase() === "true";
-            dbConfig.ca = process.env.UPTIME_KUMA_DB_CA || "";
+            dbConfig.ssl = getEnvOrFile("UPTIME_KUMA_DB_SSL")?.toLowerCase() === "true";
+            dbConfig.ca = getEnvOrFile("UPTIME_KUMA_DB_CA");
             Database.writeDBConfig(dbConfig);
         }
     }
diff --git a/src/pages/SetupDatabase.vue b/src/pages/SetupDatabase.vue
index 659711e325..ba831b08b9 100644
--- a/src/pages/SetupDatabase.vue
+++ b/src/pages/SetupDatabase.vue
@@ -122,45 +122,47 @@
                         <label for="floatingInput">{{ $t("dbName") }}</label>
                     </div>
 
-                    <div class="d-flex mt-3 short gap-2">
-                        <div
-                            class="form-check form-switch form-control m-0 d-flex align-items-center justify-content-center"
-                            style="flex: 1"
-                        >
-                            <input
-                                id="sslCheck"
-                                v-model="dbConfig.ssl"
-                                type="checkbox"
-                                role="switch"
-                                class="form-check-input mt-0"
-                                style="margin-left: 0; margin-right: 10px; position: relative"
-                            />
-                            <label class="form-check-label" for="sslCheck">SSL</label>
+                    <div class="mt-3 short text-start">
+                        <div class="form-check form-switch ps-0" style="height: auto; display: block; padding: 0;">
+                            <div class="d-flex align-items-center">
+                                <input 
+                                    id="sslCheck" 
+                                    v-model="dbConfig.ssl" 
+                                    type="checkbox" 
+                                    role="switch" 
+                                    class="form-check-input ms-0 me-2"
+                                    style="float: none;"
+                                >
+                                <label class="form-check-label fw-bold" for="sslCheck">
+                                    Enable SSL/TLS <span class="fw-normal text-muted" style="font-size: 0.9em;">(Optional)</span>
+                                </label>  
+                            </div>
+                            <div class="form-text mt-1" style="font-size: 0.85em; opacity: 0.8;">
+                                Enable to use a secure connection. Required for most cloud databases.
+                            </div>
                         </div>
-
-                        <button
-                            id="caButton"
-                            type="button"
-                            class="form-control d-flex align-items-center justify-content-center"
-                            style="flex: 1; cursor: pointer"
-                            :disabled="!dbConfig.ssl"
-                            @click="showCA = !showCA"
-                        >
-                            <span class="me-2">CA</span>
-                            <font-awesome-icon :icon="showCA && dbConfig.ssl ? 'arrow-up' : 'arrow-down'" />
-                        </button>
                     </div>
 
-                    <div v-if="showCA && dbConfig.ssl" class="form-floating mt-2 short">
-                        <textarea
-                            id="caInput"
-                            v-model="dbConfig.ca"
-                            class="form-control"
-                            placeholder="CA Certificate"
-                            style="height: 100px; font-family: monospace; font-size: 12px"
-                        ></textarea>
-                        <label for="caInput">CA Certificate</label>
-                    </div>
+                    <template v-if="dbConfig.ssl">
+                        <div class="form-floating mt-3 short">
+                            <textarea 
+                                id="caInput" 
+                                v-model="dbConfig.ca" 
+                                class="form-control" 
+                                placeholder="-----BEGIN CERTIFICATE-----" 
+                                style="height: 120px; font-family: monospace; font-size: 11px;"
+                            ></textarea>
+                            <label for="caInput">CA Certificate</label>
+                        </div>
+                        
+                        <div class="short text-start mt-1">
+                            <div class="alert alert-secondary py-2 px-3 mb-0" role="alert" style="font-size: 0.8rem; line-height: 1.3;">
+                                <font-awesome-icon icon="info-circle" class="me-1" />
+                                <strong>Self-signed?</strong> Paste the CA Cert in PEM format. <br>
+                                <strong>Trusted?</strong> Leave blank if your database uses a certificate signed by a public CA.
+                            </div>
+                        </div>
+                    </template>
                 </template>
 
                 <button class="btn btn-primary mt-4 short" type="submit" :disabled="disabledButton">
@@ -181,7 +183,6 @@ export default {
     data() {
         return {
             show: false,
-            showCA: false,
             dbConfig: {
                 type: undefined,
                 port: 3306,

From ac1bd9c45a5fb4ce20d8472d8ea23af7e8a41a2a Mon Sep 17 00:00:00 2001
From: "autofix-ci[bot]" <114827586+autofix-ci[bot]@users.noreply.github.com>
Date: Sat, 10 Jan 2026 19:20:56 +0000
Subject: [PATCH 07/17] [autofix.ci] apply automated fixes

---
 src/pages/SetupDatabase.vue | 50 +++++++++++++++++++++----------------
 1 file changed, 29 insertions(+), 21 deletions(-)

diff --git a/src/pages/SetupDatabase.vue b/src/pages/SetupDatabase.vue
index ba831b08b9..0135537140 100644
--- a/src/pages/SetupDatabase.vue
+++ b/src/pages/SetupDatabase.vue
@@ -123,21 +123,22 @@
                     </div>
 
                     <div class="mt-3 short text-start">
-                        <div class="form-check form-switch ps-0" style="height: auto; display: block; padding: 0;">
+                        <div class="form-check form-switch ps-0" style="height: auto; display: block; padding: 0">
                             <div class="d-flex align-items-center">
-                                <input 
-                                    id="sslCheck" 
-                                    v-model="dbConfig.ssl" 
-                                    type="checkbox" 
-                                    role="switch" 
+                                <input
+                                    id="sslCheck"
+                                    v-model="dbConfig.ssl"
+                                    type="checkbox"
+                                    role="switch"
                                     class="form-check-input ms-0 me-2"
-                                    style="float: none;"
-                                >
+                                    style="float: none"
+                                />
                                 <label class="form-check-label fw-bold" for="sslCheck">
-                                    Enable SSL/TLS <span class="fw-normal text-muted" style="font-size: 0.9em;">(Optional)</span>
-                                </label>  
+                                    Enable SSL/TLS
+                                    <span class="fw-normal text-muted" style="font-size: 0.9em">(Optional)</span>
+                                </label>
                             </div>
-                            <div class="form-text mt-1" style="font-size: 0.85em; opacity: 0.8;">
+                            <div class="form-text mt-1" style="font-size: 0.85em; opacity: 0.8">
                                 Enable to use a secure connection. Required for most cloud databases.
                             </div>
                         </div>
@@ -145,21 +146,28 @@
 
                     <template v-if="dbConfig.ssl">
                         <div class="form-floating mt-3 short">
-                            <textarea 
-                                id="caInput" 
-                                v-model="dbConfig.ca" 
-                                class="form-control" 
-                                placeholder="-----BEGIN CERTIFICATE-----" 
-                                style="height: 120px; font-family: monospace; font-size: 11px;"
+                            <textarea
+                                id="caInput"
+                                v-model="dbConfig.ca"
+                                class="form-control"
+                                placeholder="-----BEGIN CERTIFICATE-----"
+                                style="height: 120px; font-family: monospace; font-size: 11px"
                             ></textarea>
                             <label for="caInput">CA Certificate</label>
                         </div>
-                        
+
                         <div class="short text-start mt-1">
-                            <div class="alert alert-secondary py-2 px-3 mb-0" role="alert" style="font-size: 0.8rem; line-height: 1.3;">
+                            <div
+                                class="alert alert-secondary py-2 px-3 mb-0"
+                                role="alert"
+                                style="font-size: 0.8rem; line-height: 1.3"
+                            >
                                 <font-awesome-icon icon="info-circle" class="me-1" />
-                                <strong>Self-signed?</strong> Paste the CA Cert in PEM format. <br>
-                                <strong>Trusted?</strong> Leave blank if your database uses a certificate signed by a public CA.
+                                <strong>Self-signed?</strong>
+                                Paste the CA Cert in PEM format.
+                                <br />
+                                <strong>Trusted?</strong>
+                                Leave blank if your database uses a certificate signed by a public CA.
                             </div>
                         </div>
                     </template>

From 9cf16ebc0aadfe336b3f96ddb7a3992145fa7a3a Mon Sep 17 00:00:00 2001
From: Nilanjan Debnath <91799113+nilanjan-debnath@users.noreply.github.com>
Date: Sun, 11 Jan 2026 01:07:29 +0530
Subject: [PATCH 08/17] add new translation keys for new labels and
 descriptions

---
 src/lang/en.json            |  7 +++++++
 src/pages/SetupDatabase.vue | 10 +++++-----
 2 files changed, 12 insertions(+), 5 deletions(-)

diff --git a/src/lang/en.json b/src/lang/en.json
index 94a980ac74..17601c666e 100644
--- a/src/lang/en.json
+++ b/src/lang/en.json
@@ -6,6 +6,13 @@
     "setupDatabaseSQLite": "A simple database file, recommended for small-scale deployments. Prior to v2.0.0, Uptime Kuma used SQLite as the default database.",
     "settingUpDatabaseMSG": "Setting up the database. It may take a while, please be patient.",
     "dbName": "Database Name",
+    "enableSSL": "Enable SSL/TLS",
+    "sslExplanation": "Enable to use a secure connection. Required for most cloud databases.",
+    "caCertificate": "CA Certificate",
+    "caFormatInstruction": "Paste the CA Cert in PEM format.",
+    "caBlankInstruction": "Leave blank if your database uses a certificate signed by a public CA.",
+    "selfSigned": "Self-signed",
+    "trusted": "Trusted",
     "Settings": "Settings",
     "Dashboard": "Dashboard",
     "Help": "Help",
diff --git a/src/pages/SetupDatabase.vue b/src/pages/SetupDatabase.vue
index ba831b08b9..7aefeefdde 100644
--- a/src/pages/SetupDatabase.vue
+++ b/src/pages/SetupDatabase.vue
@@ -134,11 +134,11 @@
                                     style="float: none;"
                                 >
                                 <label class="form-check-label fw-bold" for="sslCheck">
-                                    Enable SSL/TLS <span class="fw-normal text-muted" style="font-size: 0.9em;">(Optional)</span>
+                                    {{ $t("enableSSL") }} <span class="fw-normal text-muted" style="font-size: 0.9em;">(Optional)</span>
                                 </label>  
                             </div>
                             <div class="form-text mt-1" style="font-size: 0.85em; opacity: 0.8;">
-                                Enable to use a secure connection. Required for most cloud databases.
+                                {{ $t("sslExplanation") }}
                             </div>
                         </div>
                     </div>
@@ -152,14 +152,14 @@
                                 placeholder="-----BEGIN CERTIFICATE-----" 
                                 style="height: 120px; font-family: monospace; font-size: 11px;"
                             ></textarea>
-                            <label for="caInput">CA Certificate</label>
+                            <label for="caInput">{{ $t("caCertificate") }}</label>
                         </div>
                         
                         <div class="short text-start mt-1">
                             <div class="alert alert-secondary py-2 px-3 mb-0" role="alert" style="font-size: 0.8rem; line-height: 1.3;">
                                 <font-awesome-icon icon="info-circle" class="me-1" />
-                                <strong>Self-signed?</strong> Paste the CA Cert in PEM format. <br>
-                                <strong>Trusted?</strong> Leave blank if your database uses a certificate signed by a public CA.
+                                <strong>{{ $t("selfSigned") }}?</strong> {{ $t("caFormatInstruction") }} <br>
+                                <strong>{{ $t("trusted") }} ?</strong> {{ $t("caBlankInstruction") }}
                             </div>
                         </div>
                     </template>

From 5a6d3e577e17f5891b11b0038fd2dbb47ca87edc Mon Sep 17 00:00:00 2001
From: "autofix-ci[bot]" <114827586+autofix-ci[bot]@users.noreply.github.com>
Date: Sat, 10 Jan 2026 19:40:16 +0000
Subject: [PATCH 09/17] [autofix.ci] apply automated fixes

---
 src/pages/SetupDatabase.vue | 14 +++++++++-----
 1 file changed, 9 insertions(+), 5 deletions(-)

diff --git a/src/pages/SetupDatabase.vue b/src/pages/SetupDatabase.vue
index ae89d8ae35..2c2da580ab 100644
--- a/src/pages/SetupDatabase.vue
+++ b/src/pages/SetupDatabase.vue
@@ -134,10 +134,11 @@
                                     style="float: none"
                                 />
                                 <label class="form-check-label fw-bold" for="sslCheck">
-                                    {{ $t("enableSSL") }} <span class="fw-normal text-muted" style="font-size: 0.9em;">(Optional)</span>
-                                </label>  
+                                    {{ $t("enableSSL") }}
+                                    <span class="fw-normal text-muted" style="font-size: 0.9em">(Optional)</span>
+                                </label>
                             </div>
-                            <div class="form-text mt-1" style="font-size: 0.85em; opacity: 0.8;">
+                            <div class="form-text mt-1" style="font-size: 0.85em; opacity: 0.8">
                                 {{ $t("sslExplanation") }}
                             </div>
                         </div>
@@ -162,8 +163,11 @@
                                 style="font-size: 0.8rem; line-height: 1.3"
                             >
                                 <font-awesome-icon icon="info-circle" class="me-1" />
-                                <strong>{{ $t("selfSigned") }}?</strong> {{ $t("caFormatInstruction") }} <br>
-                                <strong>{{ $t("trusted") }} ?</strong> {{ $t("caBlankInstruction") }}
+                                <strong>{{ $t("selfSigned") }}?</strong>
+                                {{ $t("caFormatInstruction") }}
+                                <br />
+                                <strong>{{ $t("trusted") }} ?</strong>
+                                {{ $t("caBlankInstruction") }}
                             </div>
                         </div>
                     </template>

From 914eebec177f502a4a572a139bd11cfa0d6c1d86 Mon Sep 17 00:00:00 2001
From: Nilanjan Debnath <91799113+nilanjan-debnath@users.noreply.github.com>
Date: Sun, 11 Jan 2026 09:37:50 +0530
Subject: [PATCH 10/17] Update src/pages/SetupDatabase.vue

simplify CA Certificate input

Co-authored-by: Frank Elsinga <frank@elsinga.de>
---
 src/pages/SetupDatabase.vue | 38 +++++++++++--------------------------
 1 file changed, 11 insertions(+), 27 deletions(-)

diff --git a/src/pages/SetupDatabase.vue b/src/pages/SetupDatabase.vue
index 2c2da580ab..af12983c0d 100644
--- a/src/pages/SetupDatabase.vue
+++ b/src/pages/SetupDatabase.vue
@@ -144,33 +144,17 @@
                         </div>
                     </div>
 
-                    <template v-if="dbConfig.ssl">
-                        <div class="form-floating mt-3 short">
-                            <textarea
-                                id="caInput"
-                                v-model="dbConfig.ca"
-                                class="form-control"
-                                placeholder="-----BEGIN CERTIFICATE-----"
-                                style="height: 120px; font-family: monospace; font-size: 11px"
-                            ></textarea>
-                            <label for="caInput">{{ $t("caCertificate") }}</label>
-                        </div>
-
-                        <div class="short text-start mt-1">
-                            <div
-                                class="alert alert-secondary py-2 px-3 mb-0"
-                                role="alert"
-                                style="font-size: 0.8rem; line-height: 1.3"
-                            >
-                                <font-awesome-icon icon="info-circle" class="me-1" />
-                                <strong>{{ $t("selfSigned") }}?</strong>
-                                {{ $t("caFormatInstruction") }}
-                                <br />
-                                <strong>{{ $t("trusted") }} ?</strong>
-                                {{ $t("caBlankInstruction") }}
-                            </div>
-                        </div>
-                    </template>
+                    <div class="form-floating mt-3 short"  v-if="dbConfig.ssl">
+                        <textarea
+                            id="caInput"
+                            v-model="dbConfig.ca"
+                            class="form-control"
+                            placeholder="-----BEGIN CERTIFICATE-----"
+                            style="height: 120px"
+                        ></textarea>
+                        <label for="caInput">{{ $t("mariadbCaCertificateLabel") }}</label>
+                        <div class="form-text">{{ $t("mariadbCaCertificateHelptext") }}</div>
+                    </div>
                 </template>
 
                 <button class="btn btn-primary mt-4 short" type="submit" :disabled="disabledButton">

From 437994c7920b1e3d35796beca371e94b42428f69 Mon Sep 17 00:00:00 2001
From: Nilanjan Debnath <91799113+nilanjan-debnath@users.noreply.github.com>
Date: Sun, 11 Jan 2026 09:38:31 +0530
Subject: [PATCH 11/17] Update src/lang/en.json

Co-authored-by: Frank Elsinga <frank@elsinga.de>
---
 src/lang/en.json | 9 +++------
 1 file changed, 3 insertions(+), 6 deletions(-)

diff --git a/src/lang/en.json b/src/lang/en.json
index 17601c666e..d7e7ad0fbc 100644
--- a/src/lang/en.json
+++ b/src/lang/en.json
@@ -7,12 +7,9 @@
     "settingUpDatabaseMSG": "Setting up the database. It may take a while, please be patient.",
     "dbName": "Database Name",
     "enableSSL": "Enable SSL/TLS",
-    "sslExplanation": "Enable to use a secure connection. Required for most cloud databases.",
-    "caCertificate": "CA Certificate",
-    "caFormatInstruction": "Paste the CA Cert in PEM format.",
-    "caBlankInstruction": "Leave blank if your database uses a certificate signed by a public CA.",
-    "selfSigned": "Self-signed",
-    "trusted": "Trusted",
+    "mariadbUseSSLHelptext": "Enable to use a encrypted connection to your database. Required for most cloud databases.",
+    "mariadbCaCertificateLabel": "CA Certificate",
+    "mariadbCaCertificateHelptext": "Paste the CA Cert in PEM format to use with self-signed certificates. Leave blank if your database uses a certificate signed by a public CA.",
     "Settings": "Settings",
     "Dashboard": "Dashboard",
     "Help": "Help",

From 4c6807726c6c837c15001f13678866392c2d54f3 Mon Sep 17 00:00:00 2001
From: Nilanjan Debnath <91799113+nilanjan-debnath@users.noreply.github.com>
Date: Sun, 11 Jan 2026 09:39:12 +0530
Subject: [PATCH 12/17] Update src/pages/SetupDatabase.vue

Co-authored-by: Frank Elsinga <frank@elsinga.de>
---
 src/pages/SetupDatabase.vue | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/pages/SetupDatabase.vue b/src/pages/SetupDatabase.vue
index af12983c0d..c82014b508 100644
--- a/src/pages/SetupDatabase.vue
+++ b/src/pages/SetupDatabase.vue
@@ -138,8 +138,8 @@
                                     <span class="fw-normal text-muted" style="font-size: 0.9em">(Optional)</span>
                                 </label>
                             </div>
-                            <div class="form-text mt-1" style="font-size: 0.85em; opacity: 0.8">
-                                {{ $t("sslExplanation") }}
+                            <div class="form-text mt-1">
+                                {{ $t("mariadbUseSSLHelptext") }}
                             </div>
                         </div>
                     </div>

From 945a2c9895328dfd9ea08369d7ab31799be26904 Mon Sep 17 00:00:00 2001
From: Nilanjan Debnath <91799113+nilanjan-debnath@users.noreply.github.com>
Date: Sun, 11 Jan 2026 09:48:17 +0530
Subject: [PATCH 13/17] Update src/pages/SetupDatabase.vue

Co-authored-by: Frank Elsinga <frank@elsinga.de>
---
 src/pages/SetupDatabase.vue | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/pages/SetupDatabase.vue b/src/pages/SetupDatabase.vue
index c82014b508..df01d7128b 100644
--- a/src/pages/SetupDatabase.vue
+++ b/src/pages/SetupDatabase.vue
@@ -135,7 +135,7 @@
                                 />
                                 <label class="form-check-label fw-bold" for="sslCheck">
                                     {{ $t("enableSSL") }}
-                                    <span class="fw-normal text-muted" style="font-size: 0.9em">(Optional)</span>
+                                    <span class="fw-normal text-muted" style="font-size: 0.9em">({{ $t("Optional") }})</span>
                                 </label>
                             </div>
                             <div class="form-text mt-1">

From f748e11ea693005a16693e940a322f6217aa0c02 Mon Sep 17 00:00:00 2001
From: Frank Elsinga <frank@elsinga.de>
Date: Sun, 11 Jan 2026 07:23:07 +0100
Subject: [PATCH 14/17] Apply suggestion from @CommanderStorm

---
 src/pages/SetupDatabase.vue | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/pages/SetupDatabase.vue b/src/pages/SetupDatabase.vue
index df01d7128b..6bb92c1ff2 100644
--- a/src/pages/SetupDatabase.vue
+++ b/src/pages/SetupDatabase.vue
@@ -144,7 +144,7 @@
                         </div>
                     </div>
 
-                    <div class="form-floating mt-3 short"  v-if="dbConfig.ssl">
+                    <div v-if="dbConfig.ssl" class="form-floating mt-3 short">
                         <textarea
                             id="caInput"
                             v-model="dbConfig.ca"

From 92207a51bb2f0d66af21d11a2a1532e008d113b5 Mon Sep 17 00:00:00 2001
From: Nilanjan Debnath <91799113+nilanjan-debnath@users.noreply.github.com>
Date: Sun, 11 Jan 2026 11:58:17 +0530
Subject: [PATCH 15/17] style: reorder v-if before class in SetupDatabase.vue

Fixes eslint warning: Attribute "v-if" should go before "class"
---
 src/pages/SetupDatabase.vue | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/pages/SetupDatabase.vue b/src/pages/SetupDatabase.vue
index df01d7128b..6bb92c1ff2 100644
--- a/src/pages/SetupDatabase.vue
+++ b/src/pages/SetupDatabase.vue
@@ -144,7 +144,7 @@
                         </div>
                     </div>
 
-                    <div class="form-floating mt-3 short"  v-if="dbConfig.ssl">
+                    <div v-if="dbConfig.ssl" class="form-floating mt-3 short">
                         <textarea
                             id="caInput"
                             v-model="dbConfig.ca"

From bdb9b795f73ca9a092a3bb0f024d3898e118c4b0 Mon Sep 17 00:00:00 2001
From: Frank Elsinga <frank@elsinga.de>
Date: Sun, 11 Jan 2026 07:57:51 +0100
Subject: [PATCH 16/17] fix fmt

---
 .github/workflows/new_contributor_pr.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/new_contributor_pr.yml b/.github/workflows/new_contributor_pr.yml
index c0f54e81ed..b0ad4aae16 100644
--- a/.github/workflows/new_contributor_pr.yml
+++ b/.github/workflows/new_contributor_pr.yml
@@ -5,7 +5,7 @@ on:
   # This workflow uses pull_request_target so it can run with write permissions on first-time contributor PRs.
   # It is safe because it does not check out or execute any code from the pull request and
   # only uses the pinned, trusted actions/first-interaction action
-  pull_request_target:  # zizmor: ignore[dangerous-triggers]
+  pull_request_target: # zizmor: ignore[dangerous-triggers]
     types: [opened]
     branches:
       - master

From 7e4d392f90693878440bc16493d9f75e6d52ec42 Mon Sep 17 00:00:00 2001
From: "autofix-ci[bot]" <114827586+autofix-ci[bot]@users.noreply.github.com>
Date: Sun, 11 Jan 2026 06:59:25 +0000
Subject: [PATCH 17/17] [autofix.ci] apply automated fixes

---
 src/pages/SetupDatabase.vue | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/src/pages/SetupDatabase.vue b/src/pages/SetupDatabase.vue
index 6bb92c1ff2..47c50a6e92 100644
--- a/src/pages/SetupDatabase.vue
+++ b/src/pages/SetupDatabase.vue
@@ -135,7 +135,9 @@
                                 />
                                 <label class="form-check-label fw-bold" for="sslCheck">
                                     {{ $t("enableSSL") }}
-                                    <span class="fw-normal text-muted" style="font-size: 0.9em">({{ $t("Optional") }})</span>
+                                    <span class="fw-normal text-muted" style="font-size: 0.9em">
+                                        ({{ $t("Optional") }})
+                                    </span>
                                 </label>
                             </div>
                             <div class="form-text mt-1">