Tooltips improvements when configuring user profile attribute (#25739)

closes #25738

Signed-off-by: mposolda <mposolda@gmail.com>

js/apps/admin-ui/maven-resources/theme/keycloak.v2/admin/messages/messages_en.properties

@@ -1311,7 +1311,7 @@ clientSettings=Client details
 deleteClientPolicyConditionConfirm=This action will permanently delete {{condition}}. This cannot be undone.
 selectATheme=Select a theme
 permissionsList=Permission list
-attributeGroupHelp=user.profile.attribute.group.tooltip
+attributeGroupHelp=Specifies the user profile group where this attribute will be added. This allows grouping various similar attributes together on different parts of the screen when creating or updating user.
 createRealm=Create realm
 eventTypes.VALIDATE_ACCESS_TOKEN_ERROR.description=Validate access token error
 mapperSaveError=Error saving mapper\: {{error}}
@@ -1688,6 +1688,7 @@ signingKeysConfigExplain=If you enable the "Client signature required" below, yo
 newClientProfile=Create client profile
 consoleDisplayConnectionUrlHelp=Connection URL to your LDAP server
 enabledWhen=Enabled when
+enabledWhenTooltip=Specifies when attribute is available. When scopes are used, attribute is available when at least one of configured scopes is applied in the login request. Both default and optional scopes of current request are evaluated. In the admin console and account console contexts, scopes are not evaluated and attribute is always available (if not further restricted by permissions).
 clientAssertionSigningAlg=Client assertion signature algorithm
 homeURLHelp=Default URL to use when the auth server needs to redirect or link back to the client.
 ldapAttribute=LDAP attribute
@@ -2478,6 +2479,7 @@ eventTypes.INVALID_SIGNATURE.description=Invalid signature
 download=Download
 authScopes=Authorization scopes
 requiredWhen=Required when
+requiredWhenTooltip=When scopes are used, attribute is required when at least one of configured scopes is applied in the login request. Both default and optional scopes of current request are evaluated. In the admin console and account console contexts, scopes are not evaluated and attribute is not required.
 updatePasswordPolicyError=Could not update the password policies\: '{{error}}'
 max-clients.tooltip=It will not be allowed to register a new client if count of existing clients in realm is same or bigger than the configured limit.
 uuidLdapAttributeHelp=Name of the LDAP attribute, which is used as a unique object identifier (UUID) for objects in LDAP. For many LDAP server vendors, it is 'entryUUID'; however some are different. For example, for Active directory it should be 'objectGUID'. If your LDAP server does not support the notion of UUID, you can use any other attribute that is supposed to be unique among LDAP users in tree. For example 'uid' or 'entryDN'.

js/apps/admin-ui/src/realm-settings/user-profile/attribute/AttributeGeneralSettings.tsx

@@ -165,6 +165,12 @@ export const AttributeGeneralSettings = () => {
           <Divider />
           <FormGroup
             label={t("enabledWhen")}
+            labelIcon={
+              <HelpItem
+                helpText={t("enabledWhenTooltip")}
+                fieldLabelId="enabled-when"
+              />
+            }
             fieldId="enabledWhen"
             hasNoPaddingTop
           >
@@ -296,6 +302,12 @@ export const AttributeGeneralSettings = () => {
               </FormGroup>
               <FormGroup
                 label={t("requiredWhen")}
+                labelIcon={
+                  <HelpItem
+                    helpText={t("requiredWhenTooltip")}
+                    fieldLabelId="required-when"
+                  />
+                }
                 fieldId="requiredWhen"
                 hasNoPaddingTop
               >