trustchain-oc1-orchestral
/
authentik
Archived
10
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

web/admin: add additional explanation what policies do 

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
This commit is contained in:
Jens Langhammer 2021-04-10 12:37:08 +02:00
parent c82cd4fbcf
commit f5921f8480
9 changed files with 233 additions and 138 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

161
web/src/locales/en.po
View File

@ -25,6 +25,10 @@ msgstr "6 digits, widely compatible"
msgid "8 digits, not compatible with apps like Google Authenticator"
msgstr "8 digits, not compatible with apps like Google Authenticator"
#: src/pages/policies/dummy/DummyPolicyForm.ts:53
msgid "A policy used for testing. Always returns the same result as specified below after waiting a random duration."
msgstr "A policy used for testing. Always returns the same result as specified below after waiting a random duration."
#: src/pages/providers/saml/SAMLProviderForm.ts:82
#: src/pages/providers/saml/SAMLProviderViewPage.ts:95
msgid "ACS URL"
@ -66,7 +70,7 @@ msgstr "Access token URL"
#: src/elements/events/ObjectChangelog.ts:38
#: src/pages/events/EventListPage.ts:43
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:74
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:79
msgid "Action"
msgstr "Action"
@ -98,7 +102,7 @@ msgstr "Additional user DN, prepended to the Base DN."
msgid "Advanced protocol settings"
msgstr "Advanced protocol settings"
#: src/pages/policies/password/PasswordPolicyForm.ts:114
#: src/pages/policies/password/PasswordPolicyForm.ts:119
#: src/pages/sources/ldap/LDAPSourceForm.ts:140
msgid "Advanced settings"
msgstr "Advanced settings"
@ -119,7 +123,7 @@ msgstr "Algorithm used to sign the JWT Tokens."
msgid "Allow IDP-initiated logins"
msgstr "Allow IDP-initiated logins"
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:84
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:90
msgid "Allow up to N occurrences in the HIBP database."
msgstr "Allow up to N occurrences in the HIBP database."
@ -127,7 +131,7 @@ msgstr "Allow up to N occurrences in the HIBP database."
msgid "Allow users to use Applications based on properties, enforce Password Criteria and selectively apply Stages."
msgstr "Allow users to use Applications based on properties, enforce Password Criteria and selectively apply Stages."
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:80
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:86
msgid "Allowed count"
msgstr "Allowed count"
@ -135,6 +139,10 @@ msgstr "Allowed count"
msgid "Allows authentication flows initiated by the IdP. This can be a security risk, as no validation of the request ID is done."
msgstr "Allows authentication flows initiated by the IdP. This can be a security risk, as no validation of the request ID is done."
#: src/pages/policies/reputation/ReputationPolicyForm.ts:53
msgid "Allows/denys requests based on the users and/or the IPs reputation."
msgstr "Allows/denys requests based on the users and/or the IPs reputation."
#: src/pages/sources/saml/SAMLSourceForm.ts:96
msgid "Also known as Entity ID. Defaults the Metadata URL."
msgstr "Also known as Entity ID. Defaults the Metadata URL."
@ -144,7 +152,7 @@ msgid "Always require consent"
msgstr "Always require consent"
#: src/pages/events/EventInfo.ts:59
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:94
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:99
msgid "App"
msgstr "App"
@ -459,15 +467,15 @@ msgstr "Change your password"
msgid "Changelog"
msgstr "Changelog"
#: src/pages/policies/password/PasswordPolicyForm.ts:122
#: src/pages/policies/password/PasswordPolicyForm.ts:127
msgid "Characters which are considered as symbols."
msgstr "Characters which are considered as symbols."
#: src/pages/policies/reputation/ReputationPolicyForm.ts:76
#: src/pages/policies/reputation/ReputationPolicyForm.ts:81
msgid "Check IP"
msgstr "Check IP"
#: src/pages/policies/reputation/ReputationPolicyForm.ts:84
#: src/pages/policies/reputation/ReputationPolicyForm.ts:89
msgid "Check Username"
msgstr "Check Username"
@ -479,6 +487,22 @@ msgstr "Check your Emails for a password reset link."
msgid "Checkbox"
msgstr "Checkbox"
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:53
msgid ""
"Checks a value from the policy request against the Have I been Pwned API, and denys the request based upon that.\n"
"Note that only a part of the hash of the password is sent, the full comparison is done clientside."
msgstr ""
"Checks a value from the policy request against the Have I been Pwned API, and denys the request based upon that.\n"
"Note that only a part of the hash of the password is sent, the full comparison is done clientside."
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:53
msgid "Checks if the request's user's password has been changed in the last x days, and denys based on settings."
msgstr "Checks if the request's user's password has been changed in the last x days, and denys based on settings."
#: src/pages/policies/password/PasswordPolicyForm.ts:53
msgid "Checks the value from the policy request against several rules, mostly used to ensure password strength."
msgstr "Checks the value from the policy request against several rules, mostly used to ensure password strength."
#: src/pages/admin-overview/cards/FlowCacheStatusCard.ts:41
msgid "Clear Flow cache"
msgstr "Clear Flow cache"
@ -507,7 +531,7 @@ msgstr "Client ID"
#: src/elements/events/ObjectChangelog.ts:41
#: src/pages/events/EventListPage.ts:46
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:88
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:93
msgid "Client IP"
msgstr "Client IP"
@ -1081,7 +1105,7 @@ msgstr "Error"
msgid "Error creating credential: {err}"
msgstr "Error creating credential: {err}"
#: src/pages/policies/password/PasswordPolicyForm.ts:105
#: src/pages/policies/password/PasswordPolicyForm.ts:110
msgid "Error message"
msgstr "Error message"
@ -1143,13 +1167,17 @@ msgstr "Execute"
msgid "Execute flow"
msgstr "Execute flow"
#: src/pages/policies/dummy/DummyPolicyForm.ts:62
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:63
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:62
#: src/pages/policies/expression/ExpressionPolicyForm.ts:63
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:62
#: src/pages/policies/password/PasswordPolicyForm.ts:62
#: src/pages/policies/reputation/ReputationPolicyForm.ts:62
#: src/pages/policies/expression/ExpressionPolicyForm.ts:54
msgid "Executes the python snippet to determine whether to allow or deny a request."
msgstr "Executes the python snippet to determine whether to allow or deny a request."
#: src/pages/policies/dummy/DummyPolicyForm.ts:65
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:66
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:65
#: src/pages/policies/expression/ExpressionPolicyForm.ts:66
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:66
#: src/pages/policies/password/PasswordPolicyForm.ts:65
#: src/pages/policies/reputation/ReputationPolicyForm.ts:65
msgid "Execution logging"
msgstr "Execution logging"
@ -1187,14 +1215,14 @@ msgid "Export"
msgstr "Export"
#: src/pages/events/EventInfo.ts:133
#: src/pages/policies/expression/ExpressionPolicyForm.ts:74
#: src/pages/policies/expression/ExpressionPolicyForm.ts:79
#: src/pages/property-mappings/PropertyMappingLDAPForm.ts:65
#: src/pages/property-mappings/PropertyMappingSAMLForm.ts:75
#: src/pages/property-mappings/PropertyMappingScopeForm.ts:72
msgid "Expression"
msgstr "Expression"
#: src/pages/policies/expression/ExpressionPolicyForm.ts:79
#: src/pages/policies/expression/ExpressionPolicyForm.ts:84
#: src/pages/property-mappings/PropertyMappingLDAPForm.ts:70
#: src/pages/property-mappings/PropertyMappingSAMLForm.ts:80
#: src/pages/property-mappings/PropertyMappingScopeForm.ts:77
@ -1241,8 +1269,8 @@ msgstr "Field"
msgid "Field Key"
msgstr "Field Key"
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:77
#: src/pages/policies/password/PasswordPolicyForm.ts:77
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:83
#: src/pages/policies/password/PasswordPolicyForm.ts:82
msgid "Field key to check, field keys defined in Prompt stages are available."
msgstr "Field key to check, field keys defined in Prompt stages are available."
@ -1645,8 +1673,8 @@ msgstr "Loading"
#: src/pages/policies/PolicyBindingForm.ts:172
#: src/pages/policies/PolicyBindingForm.ts:188
#: src/pages/policies/PolicyTestForm.ts:70
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:83
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:103
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:88
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:108
#: src/pages/property-mappings/PropertyMappingTestForm.ts:59
#: src/pages/providers/oauth2/OAuth2ProviderForm.ts:74
#: src/pages/providers/oauth2/OAuth2ProviderForm.ts:166
@ -1715,19 +1743,23 @@ msgstr "Logs"
msgid "Long-running operations which authentik executes in the background."
msgstr "Long-running operations which authentik executes in the background."
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:85
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:90
msgid "Match created events with this action type. When left empty, all action types will be matched."
msgstr "Match created events with this action type. When left empty, all action types will be matched."
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:105
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:110
msgid "Match events created by selected application. When left empty, all applications are matched."
msgstr "Match events created by selected application. When left empty, all applications are matched."
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:91
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:96
msgid "Matches Event's Client IP (strict matching, for network matching use an Expression Policy."
msgstr "Matches Event's Client IP (strict matching, for network matching use an Expression Policy."
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:73
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:54
msgid "Matches an event against a set of criteria. If any of the configured values match, the policy passes."
msgstr "Matches an event against a set of criteria. If any of the configured values match, the policy passes."
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:78
msgid "Maximum age (in days)"
msgstr "Maximum age (in days)"
@ -1749,19 +1781,19 @@ msgstr "Messages"
msgid "Metadata"
msgstr "Metadata"
#: src/pages/policies/password/PasswordPolicyForm.ts:93
#: src/pages/policies/password/PasswordPolicyForm.ts:98
msgid "Minimum amount of Lowercase Characters"
msgstr "Minimum amount of Lowercase Characters"
#: src/pages/policies/password/PasswordPolicyForm.ts:99
#: src/pages/policies/password/PasswordPolicyForm.ts:104
msgid "Minimum amount of Symbols Characters"
msgstr "Minimum amount of Symbols Characters"
#: src/pages/policies/password/PasswordPolicyForm.ts:87
#: src/pages/policies/password/PasswordPolicyForm.ts:92
msgid "Minimum amount of Uppercase Characters"
msgstr "Minimum amount of Uppercase Characters"
#: src/pages/policies/password/PasswordPolicyForm.ts:81
#: src/pages/policies/password/PasswordPolicyForm.ts:86
msgid "Minimum length"
msgstr "Minimum length"
@ -1799,13 +1831,13 @@ msgstr "Monitor"
#: src/pages/outposts/ServiceConnectionKubernetesForm.ts:54
#: src/pages/outposts/ServiceConnectionListPage.ts:53
#: src/pages/policies/PolicyListPage.ts:56
#: src/pages/policies/dummy/DummyPolicyForm.ts:53
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:54
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:53
#: src/pages/policies/expression/ExpressionPolicyForm.ts:54
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:53
#: src/pages/policies/password/PasswordPolicyForm.ts:53
#: src/pages/policies/reputation/ReputationPolicyForm.ts:53
#: src/pages/policies/dummy/DummyPolicyForm.ts:56
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:57
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:56
#: src/pages/policies/expression/ExpressionPolicyForm.ts:57
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:57
#: src/pages/policies/password/PasswordPolicyForm.ts:56
#: src/pages/policies/reputation/ReputationPolicyForm.ts:56
#: src/pages/property-mappings/PropertyMappingLDAPForm.ts:52
#: src/pages/property-mappings/PropertyMappingListPage.ts:54
#: src/pages/property-mappings/PropertyMappingSAMLForm.ts:52
@ -2040,9 +2072,9 @@ msgstr "Offset after which consent expires. (Format: hours=1;minutes=2;seconds=3
msgid "On behalf of {0}"
msgstr "On behalf of {0}"
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:82
msgid "Only fail the policy, don't set user's password."
msgstr "Only fail the policy, don't set user's password."
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:87
msgid "Only fail the policy, don't invalidate user's password."
msgstr "Only fail the policy, don't invalidate user's password."
#: src/pages/events/TransportForm.ts:102
msgid "Only send notification once, for example when sending a webhook into a chat channel."
@ -2147,7 +2179,7 @@ msgstr "PEM-encoded Certificate data."
msgid "Parent"
msgstr "Parent"
#: src/pages/policies/dummy/DummyPolicyForm.ts:76
#: src/pages/policies/dummy/DummyPolicyForm.ts:81
msgid "Pass policy?"
msgstr "Pass policy?"
@ -2160,8 +2192,8 @@ msgstr "Passing"
msgid "Password"
msgstr "Password"
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:73
#: src/pages/policies/password/PasswordPolicyForm.ts:73
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:79
#: src/pages/policies/password/PasswordPolicyForm.ts:78
msgid "Password field"
msgstr "Password field"
@ -2228,13 +2260,13 @@ msgstr "Policy engine mode"
msgid "Policy {0}"
msgstr "Policy {0}"
#: src/pages/policies/dummy/DummyPolicyForm.ts:69
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:70
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:69
#: src/pages/policies/expression/ExpressionPolicyForm.ts:70
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:69
#: src/pages/policies/password/PasswordPolicyForm.ts:69
#: src/pages/policies/reputation/ReputationPolicyForm.ts:69
#: src/pages/policies/dummy/DummyPolicyForm.ts:74
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:75
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:74
#: src/pages/policies/expression/ExpressionPolicyForm.ts:75
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:75
#: src/pages/policies/password/PasswordPolicyForm.ts:74
#: src/pages/policies/reputation/ReputationPolicyForm.ts:74
msgid "Policy-specific settings"
msgstr "Policy-specific settings"
@ -2587,7 +2619,7 @@ msgstr "Search..."
msgid "Secret:"
msgstr "Secret:"
#: src/pages/policies/expression/ExpressionPolicyForm.ts:81
#: src/pages/policies/expression/ExpressionPolicyForm.ts:86
#: src/pages/property-mappings/PropertyMappingLDAPForm.ts:72
#: src/pages/property-mappings/PropertyMappingSAMLForm.ts:82
#: src/pages/property-mappings/PropertyMappingScopeForm.ts:79
@ -3114,7 +3146,7 @@ msgstr "Superuser"
msgid "Superuser privileges?"
msgstr "Superuser privileges?"
#: src/pages/policies/password/PasswordPolicyForm.ts:118
#: src/pages/policies/password/PasswordPolicyForm.ts:123
msgid "Symbol charset"
msgstr "Symbol charset"
@ -3199,7 +3231,7 @@ msgstr "Text: Simple Text input"
msgid "The URL \"{0}\" was not found."
msgstr "The URL \"{0}\" was not found."
#: src/pages/policies/dummy/DummyPolicyForm.ts:86
#: src/pages/policies/dummy/DummyPolicyForm.ts:90
msgid "The policy takes a random time to execute. This controls the minimum time it will take."
msgstr "The policy takes a random time to execute. This controls the minimum time it will take."
@ -3228,7 +3260,7 @@ msgstr "These policies control which users can access this flow."
msgid "These policies control which users can access this source."
msgstr "These policies control which users can access this source."
#: src/pages/policies/reputation/ReputationPolicyForm.ts:89
#: src/pages/policies/reputation/ReputationPolicyForm.ts:94
msgid "Threshold"
msgstr "Threshold"
@ -3643,11 +3675,11 @@ msgstr "View deployment documentation"
msgid "Visible in the URL."
msgstr "Visible in the URL."
#: src/pages/policies/dummy/DummyPolicyForm.ts:89
#: src/pages/policies/dummy/DummyPolicyForm.ts:93
msgid "Wait (max)"
msgstr "Wait (max)"
#: src/pages/policies/dummy/DummyPolicyForm.ts:82
#: src/pages/policies/dummy/DummyPolicyForm.ts:86
msgid "Wait (min)"
msgstr "Wait (min)"
@ -3704,14 +3736,13 @@ msgstr "When enabled, user fields are matched regardless of their casing."
msgid "When selected, incoming assertion's Signatures will be validated against this certificate. To allow unsigned Requests, leave on default."
msgstr "When selected, incoming assertion's Signatures will be validated against this certificate. To allow unsigned Requests, leave on default."
#: src/pages/policies/dummy/DummyPolicyForm.ts:65
#: src/pages/policies/dummy/DummyPolicyForm.ts:79
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:66
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:65
#: src/pages/policies/expression/ExpressionPolicyForm.ts:66
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:65
#: src/pages/policies/password/PasswordPolicyForm.ts:65
#: src/pages/policies/reputation/ReputationPolicyForm.ts:65
#: src/pages/policies/dummy/DummyPolicyForm.ts:69
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:70
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:69
#: src/pages/policies/expression/ExpressionPolicyForm.ts:70
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:70
#: src/pages/policies/password/PasswordPolicyForm.ts:69
#: src/pages/policies/reputation/ReputationPolicyForm.ts:69
msgid "When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged."
msgstr "When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged."

157
web/src/locales/pseudo-LOCALE.po
View File

@ -25,6 +25,10 @@ msgstr ""
msgid "8 digits, not compatible with apps like Google Authenticator"
msgstr ""
#: src/pages/policies/dummy/DummyPolicyForm.ts:53
msgid "A policy used for testing. Always returns the same result as specified below after waiting a random duration."
msgstr ""
#: src/pages/providers/saml/SAMLProviderForm.ts:82
#: src/pages/providers/saml/SAMLProviderViewPage.ts:95
msgid "ACS URL"
@ -66,7 +70,7 @@ msgstr ""
#: src/elements/events/ObjectChangelog.ts:38
#: src/pages/events/EventListPage.ts:43
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:74
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:79
msgid "Action"
msgstr ""
@ -98,7 +102,7 @@ msgstr ""
msgid "Advanced protocol settings"
msgstr ""
#: src/pages/policies/password/PasswordPolicyForm.ts:114
#: src/pages/policies/password/PasswordPolicyForm.ts:119
#: src/pages/sources/ldap/LDAPSourceForm.ts:140
msgid "Advanced settings"
msgstr ""
@ -119,7 +123,7 @@ msgstr ""
msgid "Allow IDP-initiated logins"
msgstr ""
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:84
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:90
msgid "Allow up to N occurrences in the HIBP database."
msgstr ""
@ -127,7 +131,7 @@ msgstr ""
msgid "Allow users to use Applications based on properties, enforce Password Criteria and selectively apply Stages."
msgstr ""
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:80
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:86
msgid "Allowed count"
msgstr ""
@ -135,6 +139,10 @@ msgstr ""
msgid "Allows authentication flows initiated by the IdP. This can be a security risk, as no validation of the request ID is done."
msgstr ""
#: src/pages/policies/reputation/ReputationPolicyForm.ts:53
msgid "Allows/denys requests based on the users and/or the IPs reputation."
msgstr ""
#: src/pages/sources/saml/SAMLSourceForm.ts:96
msgid "Also known as Entity ID. Defaults the Metadata URL."
msgstr ""
@ -144,7 +152,7 @@ msgid "Always require consent"
msgstr ""
#: src/pages/events/EventInfo.ts:59
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:94
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:99
msgid "App"
msgstr ""
@ -455,15 +463,15 @@ msgstr ""
msgid "Changelog"
msgstr ""
#: src/pages/policies/password/PasswordPolicyForm.ts:122
#: src/pages/policies/password/PasswordPolicyForm.ts:127
msgid "Characters which are considered as symbols."
msgstr ""
#: src/pages/policies/reputation/ReputationPolicyForm.ts:76
#: src/pages/policies/reputation/ReputationPolicyForm.ts:81
msgid "Check IP"
msgstr ""
#: src/pages/policies/reputation/ReputationPolicyForm.ts:84
#: src/pages/policies/reputation/ReputationPolicyForm.ts:89
msgid "Check Username"
msgstr ""
@ -475,6 +483,20 @@ msgstr ""
msgid "Checkbox"
msgstr ""
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:53
msgid ""
"Checks a value from the policy request against the Have I been Pwned API, and denys the request based upon that.\n"
"Note that only a part of the hash of the password is sent, the full comparison is done clientside."
msgstr ""
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:53
msgid "Checks if the request's user's password has been changed in the last x days, and denys based on settings."
msgstr ""
#: src/pages/policies/password/PasswordPolicyForm.ts:53
msgid "Checks the value from the policy request against several rules, mostly used to ensure password strength."
msgstr ""
#: src/pages/admin-overview/cards/FlowCacheStatusCard.ts:41
msgid "Clear Flow cache"
msgstr ""
@ -503,7 +525,7 @@ msgstr ""
#: src/elements/events/ObjectChangelog.ts:41
#: src/pages/events/EventListPage.ts:46
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:88
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:93
msgid "Client IP"
msgstr ""
@ -1077,7 +1099,7 @@ msgstr ""
msgid "Error creating credential: {err}"
msgstr ""
#: src/pages/policies/password/PasswordPolicyForm.ts:105
#: src/pages/policies/password/PasswordPolicyForm.ts:110
msgid "Error message"
msgstr ""
@ -1139,13 +1161,17 @@ msgstr ""
msgid "Execute flow"
msgstr ""
#: src/pages/policies/dummy/DummyPolicyForm.ts:62
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:63
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:62
#: src/pages/policies/expression/ExpressionPolicyForm.ts:63
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:62
#: src/pages/policies/password/PasswordPolicyForm.ts:62
#: src/pages/policies/reputation/ReputationPolicyForm.ts:62
#: src/pages/policies/expression/ExpressionPolicyForm.ts:54
msgid "Executes the python snippet to determine whether to allow or deny a request."
msgstr ""
#: src/pages/policies/dummy/DummyPolicyForm.ts:65
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:66
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:65
#: src/pages/policies/expression/ExpressionPolicyForm.ts:66
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:66
#: src/pages/policies/password/PasswordPolicyForm.ts:65
#: src/pages/policies/reputation/ReputationPolicyForm.ts:65
msgid "Execution logging"
msgstr ""
@ -1183,14 +1209,14 @@ msgid "Export"
msgstr ""
#: src/pages/events/EventInfo.ts:133
#: src/pages/policies/expression/ExpressionPolicyForm.ts:74
#: src/pages/policies/expression/ExpressionPolicyForm.ts:79
#: src/pages/property-mappings/PropertyMappingLDAPForm.ts:65
#: src/pages/property-mappings/PropertyMappingSAMLForm.ts:75
#: src/pages/property-mappings/PropertyMappingScopeForm.ts:72
msgid "Expression"
msgstr ""
#: src/pages/policies/expression/ExpressionPolicyForm.ts:79
#: src/pages/policies/expression/ExpressionPolicyForm.ts:84
#: src/pages/property-mappings/PropertyMappingLDAPForm.ts:70
#: src/pages/property-mappings/PropertyMappingSAMLForm.ts:80
#: src/pages/property-mappings/PropertyMappingScopeForm.ts:77
@ -1237,8 +1263,8 @@ msgstr ""
msgid "Field Key"
msgstr ""
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:77
#: src/pages/policies/password/PasswordPolicyForm.ts:77
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:83
#: src/pages/policies/password/PasswordPolicyForm.ts:82
msgid "Field key to check, field keys defined in Prompt stages are available."
msgstr ""
@ -1641,8 +1667,8 @@ msgstr ""
#: src/pages/policies/PolicyBindingForm.ts:172
#: src/pages/policies/PolicyBindingForm.ts:188
#: src/pages/policies/PolicyTestForm.ts:70
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:83
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:103
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:88
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:108
#: src/pages/property-mappings/PropertyMappingTestForm.ts:59
#: src/pages/providers/oauth2/OAuth2ProviderForm.ts:74
#: src/pages/providers/oauth2/OAuth2ProviderForm.ts:166
@ -1711,19 +1737,23 @@ msgstr ""
msgid "Long-running operations which authentik executes in the background."
msgstr ""
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:85
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:90
msgid "Match created events with this action type. When left empty, all action types will be matched."
msgstr ""
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:105
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:110
msgid "Match events created by selected application. When left empty, all applications are matched."
msgstr ""
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:91
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:96
msgid "Matches Event's Client IP (strict matching, for network matching use an Expression Policy."
msgstr ""
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:73
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:54
msgid "Matches an event against a set of criteria. If any of the configured values match, the policy passes."
msgstr ""
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:78
msgid "Maximum age (in days)"
msgstr ""
@ -1745,19 +1775,19 @@ msgstr ""
msgid "Metadata"
msgstr ""
#: src/pages/policies/password/PasswordPolicyForm.ts:93
#: src/pages/policies/password/PasswordPolicyForm.ts:98
msgid "Minimum amount of Lowercase Characters"
msgstr ""
#: src/pages/policies/password/PasswordPolicyForm.ts:99
#: src/pages/policies/password/PasswordPolicyForm.ts:104
msgid "Minimum amount of Symbols Characters"
msgstr ""
#: src/pages/policies/password/PasswordPolicyForm.ts:87
#: src/pages/policies/password/PasswordPolicyForm.ts:92
msgid "Minimum amount of Uppercase Characters"
msgstr ""
#: src/pages/policies/password/PasswordPolicyForm.ts:81
#: src/pages/policies/password/PasswordPolicyForm.ts:86
msgid "Minimum length"
msgstr ""
@ -1795,13 +1825,13 @@ msgstr ""
#: src/pages/outposts/ServiceConnectionKubernetesForm.ts:54
#: src/pages/outposts/ServiceConnectionListPage.ts:53
#: src/pages/policies/PolicyListPage.ts:56
#: src/pages/policies/dummy/DummyPolicyForm.ts:53
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:54
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:53
#: src/pages/policies/expression/ExpressionPolicyForm.ts:54
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:53
#: src/pages/policies/password/PasswordPolicyForm.ts:53
#: src/pages/policies/reputation/ReputationPolicyForm.ts:53
#: src/pages/policies/dummy/DummyPolicyForm.ts:56
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:57
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:56
#: src/pages/policies/expression/ExpressionPolicyForm.ts:57
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:57
#: src/pages/policies/password/PasswordPolicyForm.ts:56
#: src/pages/policies/reputation/ReputationPolicyForm.ts:56
#: src/pages/property-mappings/PropertyMappingLDAPForm.ts:52
#: src/pages/property-mappings/PropertyMappingListPage.ts:54
#: src/pages/property-mappings/PropertyMappingSAMLForm.ts:52
@ -2036,8 +2066,8 @@ msgstr ""
msgid "On behalf of {0}"
msgstr ""
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:82
msgid "Only fail the policy, don't set user's password."
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:87
msgid "Only fail the policy, don't invalidate user's password."
msgstr ""
#: src/pages/events/TransportForm.ts:102
@ -2143,7 +2173,7 @@ msgstr ""
msgid "Parent"
msgstr ""
#: src/pages/policies/dummy/DummyPolicyForm.ts:76
#: src/pages/policies/dummy/DummyPolicyForm.ts:81
msgid "Pass policy?"
msgstr ""
@ -2156,8 +2186,8 @@ msgstr ""
msgid "Password"
msgstr ""
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:73
#: src/pages/policies/password/PasswordPolicyForm.ts:73
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:79
#: src/pages/policies/password/PasswordPolicyForm.ts:78
msgid "Password field"
msgstr ""
@ -2224,13 +2254,13 @@ msgstr ""
msgid "Policy {0}"
msgstr ""
#: src/pages/policies/dummy/DummyPolicyForm.ts:69
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:70
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:69
#: src/pages/policies/expression/ExpressionPolicyForm.ts:70
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:69
#: src/pages/policies/password/PasswordPolicyForm.ts:69
#: src/pages/policies/reputation/ReputationPolicyForm.ts:69
#: src/pages/policies/dummy/DummyPolicyForm.ts:74
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:75
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:74
#: src/pages/policies/expression/ExpressionPolicyForm.ts:75
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:75
#: src/pages/policies/password/PasswordPolicyForm.ts:74
#: src/pages/policies/reputation/ReputationPolicyForm.ts:74
msgid "Policy-specific settings"
msgstr ""
@ -2583,7 +2613,7 @@ msgstr ""
msgid "Secret:"
msgstr ""
#: src/pages/policies/expression/ExpressionPolicyForm.ts:81
#: src/pages/policies/expression/ExpressionPolicyForm.ts:86
#: src/pages/property-mappings/PropertyMappingLDAPForm.ts:72
#: src/pages/property-mappings/PropertyMappingSAMLForm.ts:82
#: src/pages/property-mappings/PropertyMappingScopeForm.ts:79
@ -3110,7 +3140,7 @@ msgstr ""
msgid "Superuser privileges?"
msgstr ""
#: src/pages/policies/password/PasswordPolicyForm.ts:118
#: src/pages/policies/password/PasswordPolicyForm.ts:123
msgid "Symbol charset"
msgstr ""
@ -3195,7 +3225,7 @@ msgstr ""
msgid "The URL \"{0}\" was not found."
msgstr ""
#: src/pages/policies/dummy/DummyPolicyForm.ts:86
#: src/pages/policies/dummy/DummyPolicyForm.ts:90
msgid "The policy takes a random time to execute. This controls the minimum time it will take."
msgstr ""
@ -3222,7 +3252,7 @@ msgstr ""
msgid "These policies control which users can access this source."
msgstr ""
#: src/pages/policies/reputation/ReputationPolicyForm.ts:89
#: src/pages/policies/reputation/ReputationPolicyForm.ts:94
msgid "Threshold"
msgstr ""
@ -3637,11 +3667,11 @@ msgstr ""
msgid "Visible in the URL."
msgstr ""
#: src/pages/policies/dummy/DummyPolicyForm.ts:89
#: src/pages/policies/dummy/DummyPolicyForm.ts:93
msgid "Wait (max)"
msgstr ""
#: src/pages/policies/dummy/DummyPolicyForm.ts:82
#: src/pages/policies/dummy/DummyPolicyForm.ts:86
msgid "Wait (min)"
msgstr ""
@ -3698,14 +3728,13 @@ msgstr ""
msgid "When selected, incoming assertion's Signatures will be validated against this certificate. To allow unsigned Requests, leave on default."
msgstr ""
#: src/pages/policies/dummy/DummyPolicyForm.ts:65
#: src/pages/policies/dummy/DummyPolicyForm.ts:79
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:66
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:65
#: src/pages/policies/expression/ExpressionPolicyForm.ts:66
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:65
#: src/pages/policies/password/PasswordPolicyForm.ts:65
#: src/pages/policies/reputation/ReputationPolicyForm.ts:65
#: src/pages/policies/dummy/DummyPolicyForm.ts:69
#: src/pages/policies/event_matcher/EventMatcherPolicyForm.ts:70
#: src/pages/policies/expiry/ExpiryPolicyForm.ts:69
#: src/pages/policies/expression/ExpressionPolicyForm.ts:70
#: src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts:70
#: src/pages/policies/password/PasswordPolicyForm.ts:69
#: src/pages/policies/reputation/ReputationPolicyForm.ts:69
msgid "When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged."
msgstr ""

8
web/src/pages/policies/dummy/DummyPolicyForm.ts
View File

@ -46,6 +46,9 @@ export class DummyPolicyForm extends Form<DummyPolicy> {
renderForm(): TemplateResult {
return html`<form class="pf-c-form pf-m-horizontal">
<div class="form-help-text">
${t`A policy used for testing. Always returns the same result as specified below after waiting a random duration.`}
</div>
<ak-form-element-horizontal
label=${t`Name`}
?required=${true}
@ -59,7 +62,9 @@ export class DummyPolicyForm extends Form<DummyPolicy> {
${t`Execution logging`}
</label>
</div>
<p class="pf-c-form__helper-text">${t`When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.`}</p>
<p class="pf-c-form__helper-text">
${t`When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.`}
</p>
</ak-form-element-horizontal>
<ak-form-group .expanded=${true}>
<span slot="header">
@ -73,7 +78,6 @@ export class DummyPolicyForm extends Form<DummyPolicy> {
${t`Pass policy?`}
</label>
</div>
<p class="pf-c-form__helper-text">${t`When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.`}</p>
</ak-form-element-horizontal>
<ak-form-element-horizontal
label=${t`Wait (min)`}

7
web/src/pages/policies/event_matcher/EventMatcherPolicyForm.ts
View File

@ -47,6 +47,9 @@ export class EventMatcherPolicyForm extends Form<EventMatcherPolicy> {
renderForm(): TemplateResult {
return html`<form class="pf-c-form pf-m-horizontal">
<div class="form-help-text">
${t`Matches an event against a set of criteria. If any of the configured values match, the policy passes.`}
</div>
<ak-form-element-horizontal
label=${t`Name`}
?required=${true}
@ -60,7 +63,9 @@ export class EventMatcherPolicyForm extends Form<EventMatcherPolicy> {
${t`Execution logging`}
</label>
</div>
<p class="pf-c-form__helper-text">${t`When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.`}</p>
<p class="pf-c-form__helper-text">
${t`When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.`}
</p>
</ak-form-element-horizontal>
<ak-form-group .expanded=${true}>
<span slot="header">

9
web/src/pages/policies/expiry/ExpiryPolicyForm.ts
View File

@ -46,6 +46,9 @@ export class PasswordExpiryPolicyForm extends Form<PasswordExpiryPolicy> {
renderForm(): TemplateResult {
return html`<form class="pf-c-form pf-m-horizontal">
<div class="form-help-text">
${t`Checks if the request's user's password has been changed in the last x days, and denys based on settings.`}
</div>
<ak-form-element-horizontal
label=${t`Name`}
?required=${true}
@ -59,7 +62,9 @@ export class PasswordExpiryPolicyForm extends Form<PasswordExpiryPolicy> {
${t`Execution logging`}
</label>
</div>
<p class="pf-c-form__helper-text">${t`When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.`}</p>
<p class="pf-c-form__helper-text">
${t`When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.`}
</p>
</ak-form-element-horizontal>
<ak-form-group .expanded=${true}>
<span slot="header">
@ -76,7 +81,7 @@ export class PasswordExpiryPolicyForm extends Form<PasswordExpiryPolicy> {
<div class="pf-c-check">
<input type="checkbox" class="pf-c-check__input" ?checked=${first(this.policy?.denyOnly, false)}>
<label class="pf-c-check__label">
${t`Only fail the policy, don't set user's password.`}
${t`Only fail the policy, don't invalidate user's password.`}
</label>
</div>
</ak-form-element-horizontal>

7
web/src/pages/policies/expression/ExpressionPolicyForm.ts
View File

@ -47,6 +47,9 @@ export class ExpressionPolicyForm extends Form<ExpressionPolicy> {
renderForm(): TemplateResult {
return html`<form class="pf-c-form pf-m-horizontal">
<div class="form-help-text">
${t`Executes the python snippet to determine whether to allow or deny a request.`}
</div>
<ak-form-element-horizontal
label=${t`Name`}
?required=${true}
@ -60,7 +63,9 @@ export class ExpressionPolicyForm extends Form<ExpressionPolicy> {
${t`Execution logging`}
</label>
</div>
<p class="pf-c-form__helper-text">${t`When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.`}</p>
<p class="pf-c-form__helper-text">
${t`When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.`}
</p>
</ak-form-element-horizontal>
<ak-form-group .expanded=${true}>
<span slot="header">

8
web/src/pages/policies/hibp/HaveIBeenPwnedPolicyForm.ts
View File

@ -46,6 +46,10 @@ export class HaveIBeenPwnedPolicyForm extends Form<HaveIBeenPwendPolicy> {
renderForm(): TemplateResult {
return html`<form class="pf-c-form pf-m-horizontal">
<div class="form-help-text">
${t`Checks a value from the policy request against the Have I been Pwned API, and denys the request based upon that.
Note that only a part of the hash of the password is sent, the full comparison is done clientside.`}
</div>
<ak-form-element-horizontal
label=${t`Name`}
?required=${true}
@ -59,7 +63,9 @@ export class HaveIBeenPwnedPolicyForm extends Form<HaveIBeenPwendPolicy> {
${t`Execution logging`}
</label>
</div>
<p class="pf-c-form__helper-text">${t`When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.`}</p>
<p class="pf-c-form__helper-text">
${t`When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.`}
</p>
</ak-form-element-horizontal>
<ak-form-group .expanded=${true}>
<span slot="header">

7
web/src/pages/policies/password/PasswordPolicyForm.ts
View File

@ -46,6 +46,9 @@ export class PasswordPolicyForm extends Form<PasswordPolicy> {
renderForm(): TemplateResult {
return html`<form class="pf-c-form pf-m-horizontal">
<div class="form-help-text">
${t`Checks the value from the policy request against several rules, mostly used to ensure password strength.`}
</div>
<ak-form-element-horizontal
label=${t`Name`}
?required=${true}
@ -59,7 +62,9 @@ export class PasswordPolicyForm extends Form<PasswordPolicy> {
${t`Execution logging`}
</label>
</div>
<p class="pf-c-form__helper-text">${t`When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.`}</p>
<p class="pf-c-form__helper-text">
${t`When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.`}
</p>
</ak-form-element-horizontal>
<ak-form-group .expanded=${true}>
<span slot="header">

7
web/src/pages/policies/reputation/ReputationPolicyForm.ts
View File

@ -46,6 +46,9 @@ export class ReputationPolicyForm extends Form<ReputationPolicy> {
renderForm(): TemplateResult {
return html`<form class="pf-c-form pf-m-horizontal">
<div class="form-help-text">
${t`Allows/denys requests based on the users and/or the IPs reputation.`}
</div>
<ak-form-element-horizontal
label=${t`Name`}
?required=${true}
@ -59,7 +62,9 @@ export class ReputationPolicyForm extends Form<ReputationPolicy> {
${t`Execution logging`}
</label>
</div>
<p class="pf-c-form__helper-text">${t`When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.`}</p>
<p class="pf-c-form__helper-text">
${t`When this option is enabled, all executions of this policy will be logged. By default, only execution errors are logged.`}
</p>
</ak-form-element-horizontal>
<ak-form-group .expanded=${true}>
<span slot="header">