diff --git a/web/src/pages/providers/oauth2/OAuth2ProviderForm.ts b/web/src/pages/providers/oauth2/OAuth2ProviderForm.ts index c94c0a2be..cfe37b775 100644 --- a/web/src/pages/providers/oauth2/OAuth2ProviderForm.ts +++ b/web/src/pages/providers/oauth2/OAuth2ProviderForm.ts @@ -7,6 +7,7 @@ import { Form } from "../../../elements/forms/Form"; import { until } from "lit-html/directives/until"; import { ifDefined } from "lit-html/directives/if-defined"; import "../../../elements/forms/HorizontalFormElement"; +import "../../../elements/forms/FormGroup"; @customElement("ak-provider-oauth2-form") export class OAuth2ProviderFormPage extends Form { @@ -68,139 +69,154 @@ export class OAuth2ProviderFormPage extends Form {

${gettext("Flow used when authorizing this provider.")}

- - -

${gettext("Confidential clients are capable of maintaining the confidentiality of their credentials. Public clients are incapable.")}

-
- - - - - - - - - - - -

${gettext("Algorithm used to sign the JWT Tokens.")}

-
- - -

${gettext("Select which scopes can be used by the client. The client stil has to specify the scope to access the data.")}

-

${gettext("Hold control/command to select multiple items.")}

-
- - -

${gettext("Key used to sign the tokens. Only required when JWT Algorithm is set to RS256.")}

-
- - - - - -

- ${gettext("Configure what data should be used as unique User Identifier. For most cases, the default should be fine.")} -

-
- -
- - + + + ${gettext("Protocol settings")} + +
+ + +

${gettext("Confidential clients are capable of maintaining the confidentiality of their credentials. Public clients are incapable.")}

+
+ + + + + + + + +
-

${gettext("Include User claims from scopes in the id_token, for applications that don't access the userinfo endpoint.")}

- - - -

- ${gettext("Configure how the issuer field of the ID Token should be filled.")} -

-
+
+ + + + ${gettext("Advanced protocol settings")} + +
+ + + + + +

${gettext("Algorithm used to sign the JWT Tokens.")}

+
+ + +

${gettext("Select which scopes can be used by the client. The client stil has to specify the scope to access the data.")}

+

${gettext("Hold control/command to select multiple items.")}

+
+ + +

${gettext("Key used to sign the tokens. Only required when JWT Algorithm is set to RS256.")}

+
+ + +

+ ${gettext("Configure what data should be used as unique User Identifier. For most cases, the default should be fine.")} +

+
+ +
+ + +
+

${gettext("Include User claims from scopes in the id_token, for applications that don't access the userinfo endpoint.")}

+
+ + +

+ ${gettext("Configure how the issuer field of the ID Token should be filled.")} +

+
+
+
`; } diff --git a/web/src/pages/providers/proxy/ProxyProviderForm.ts b/web/src/pages/providers/proxy/ProxyProviderForm.ts index 2d2e08fd7..620694edd 100644 --- a/web/src/pages/providers/proxy/ProxyProviderForm.ts +++ b/web/src/pages/providers/proxy/ProxyProviderForm.ts @@ -7,6 +7,8 @@ import { Form } from "../../../elements/forms/Form"; import { until } from "lit-html/directives/until"; import { ifDefined } from "lit-html/directives/if-defined"; import "../../../elements/forms/HorizontalFormElement"; +import "../../../elements/forms/FormGroup"; +import { first } from "../../../utils"; @customElement("ak-provider-proxy-form") export class ProxyProviderFormPage extends Form { @@ -68,71 +70,84 @@ export class ProxyProviderFormPage extends Form {

${gettext("Flow used when authorizing this provider.")}

- - - - -
- - + + + ${gettext("Protocol settings")} + +
+ + + + +
+ + +
+

${gettext("Validate SSL Certificates of upstream servers.")}

+
+ + +
-

${gettext("Validate SSL Certificates of upstream servers.")}

- - - - +
- - - + + + ${gettext("Advanced protocol settings")} + + + + - - -

${gettext("Regular expressions for which authentication is not required. Each new line is interpreted as a new Regular Expression.")}

-
+ + +

${gettext("Regular expressions for which authentication is not required. Each new line is interpreted as a new Regular Expression.")}

+
- -
- - + +
+ + +
+

${gettext("Set a custom HTTP-Basic Authentication header based on values from authentik.")}

+
+ + +

${gettext("User/Group Attribute used for the user part of the HTTP-Basic Header. If not set, the user's Email address is used.")}

+
+ + +

${gettext("User/Group Attribute used for the password part of the HTTP-Basic Header.")}

+
-

${gettext("Set a custom HTTP-Basic Authentication header based on values from authentik.")}

-
- - -

${gettext("User/Group Attribute used for the user part of the HTTP-Basic Header. If not set, the user's Email address is used.")}

-
- - -

${gettext("User/Group Attribute used for the password part of the HTTP-Basic Header.")}

-
+
`; } diff --git a/web/src/pages/providers/saml/SAMLProviderForm.ts b/web/src/pages/providers/saml/SAMLProviderForm.ts index d2e6c273d..5664eda4a 100644 --- a/web/src/pages/providers/saml/SAMLProviderForm.ts +++ b/web/src/pages/providers/saml/SAMLProviderForm.ts @@ -7,6 +7,7 @@ import { Form } from "../../../elements/forms/Form"; import { until } from "lit-html/directives/until"; import { ifDefined } from "lit-html/directives/if-defined"; import "../../../elements/forms/HorizontalFormElement"; +import "../../../elements/forms/FormGroup"; @customElement("ak-provider-saml-form") export class SAMLProviderFormPage extends Form { @@ -68,169 +69,181 @@ export class SAMLProviderFormPage extends Form {

${gettext("Flow used when authorizing this provider.")}

- - - - - - + + + ${gettext("Protocol settings")} + +
+ + + + + + + + +

${gettext("Determines how authentik sends the response back to the Service Provider.")}

+
+ + + +
+
- - -

${gettext("Determines how authentik sends the response back to the Service Provider.")}

-
- - - + + + ${gettext("Advanced protocol settings")} + +
+ + +

${gettext("Keypair used to sign outgoing Responses going to the Service Provider.")}

+
+ + +

${gettext("When selected, incoming assertion's Signatures will be validated against this certificate. To allow unsigned Requests, leave on default.")}

+
- - -

${gettext("Keypair used to sign outgoing Responses going to the Service Provider.")}

-
- - -

${gettext("When selected, incoming assertion's Signatures will be validated against this certificate. To allow unsigned Requests, leave on default.")}

-
+ + +

${gettext("Hold control/command to select multiple items.")}

+
+ + +

${gettext("Configure how the NameID value will be created. When left empty, the NameIDPolicy of the incoming request will be respected.")}

+
- - -

${gettext("Hold control/command to select multiple items.")}

-
- - -

${gettext("Configure how the NameID value will be created. When left empty, the NameIDPolicy of the incoming request will be respected.")}

-
+ + +

${gettext("Assertion valid not before current time + this value (Format: hours=-1;minutes=-2;seconds=-3).")}

+
+ + +

${gettext("Assertion not valid on or after current time + this value (Format: hours=1;minutes=2;seconds=3).")}

+
+ + +

${gettext("Session not valid on or after current time + this value (Format: hours=1;minutes=2;seconds=3).")}

+
- - -

${gettext("Assertion valid not before current time + this value (Format: hours=-1;minutes=-2;seconds=-3).")}

-
- - -

${gettext("Assertion not valid on or after current time + this value (Format: hours=1;minutes=2;seconds=3).")}

-
- - -

${gettext("Session not valid on or after current time + this value (Format: hours=1;minutes=2;seconds=3).")}

-
- - - - - - - + + + + + + +
+
`; }