gitlab-org--gitlab-foss/app/views/profiles/personal_access_tokens/index.html.haml

- breadcrumb_title "Access Tokens"
- page_title "Personal Access Tokens"
- @content_class = "limit-container-width" unless fluid_layout

= render 'profiles/head'

.row.prepend-top-default
  .col-lg-4.profile-settings-sidebar
    %h4.prepend-top-0
      = page_title
    %p
      You can generate a personal access token for each application you use that needs access to the GitLab API.
    %p
      You can also use personal access tokens to authenticate against Git over HTTP.
      They are the only accepted password when you have Two-Factor Authentication (2FA) enabled.

  .col-lg-8

    - if flash[:personal_access_token]
      .created-personal-access-token-container
        %h5.prepend-top-0
          Your New Personal Access Token
        .form-group
          = text_field_tag 'created-personal-access-token', flash[:personal_access_token], readonly: true, class: "form-control js-select-on-focus", 'aria-describedby' => "created-personal-access-token-help-block"
          = clipboard_button(text: flash[:personal_access_token], title: "Copy personal access token to clipboard", placement: "left")
          %span#created-personal-access-token-help-block.help-block.text-danger Make sure you save it - you won't be able to access it again.

      %hr

    = render "shared/personal_access_tokens_form", path: profile_personal_access_tokens_path, impersonation: false, token: @personal_access_token, scopes: @scopes

    = render "shared/personal_access_tokens_table", impersonation: false, active_tokens: @active_personal_access_tokens, inactive_tokens: @inactive_personal_access_tokens

%hr
.row.prepend-top-default
  .col-lg-4.profile-settings-sidebar
    %h4.prepend-top-0
      RSS token
    %p
      Your RSS token is used to authenticate you when your RSS reader loads a personalized RSS feed, and is included in your personal RSS feed URLs.
    %p
      It cannot be used to access any other data.
  .col-lg-8.rss-token-reset
    = label_tag :rss_token, 'RSS token', class: "label-light"
    = text_field_tag :rss_token, current_user.rss_token, class: 'form-control', readonly: true, onclick: 'this.select()'
    %p.help-block
      Keep this token secret. Anyone who gets ahold of it can read activity and issue RSS feeds as if they were you.
      You should
      = link_to 'reset it', [:reset, :rss_token, :profile], method: :put, data: { confirm: 'Are you sure? Any RSS URLs currently in use will stop working.' }
      if that ever happens.

- if incoming_email_token_enabled?
  %hr
  .row.prepend-top-default
    .col-lg-4.profile-settings-sidebar
      %h4.prepend-top-0
        Incoming email token
      %p
        Your incoming email token is used to authenticate you when you create a new issue by email, and is included in your personal project-specific email addresses.
      %p
        It cannot be used to access any other data.
    .col-lg-8.incoming-email-token-reset
      = label_tag :incoming_email_token, 'Incoming email token', class: "label-light"
      = text_field_tag :incoming_email_token, current_user.incoming_email_token, class: 'form-control', readonly: true, onclick: 'this.select()'
      %p.help-block
        Keep this token secret. Anyone who gets ahold of it can create issues as if they were you.
        You should
        = link_to 'reset it', [:reset, :incoming_email_token, :profile], method: :put, data: { confirm: 'Are you sure? Any issue email addresses currently in use will stop working.' }
        if that ever happens.
various breadcrumb updates 2017-08-17 10:53:50 -04:00			`- breadcrumb_title "Access Tokens"`
Allow creating Personal Access Tokens through the website. 2016-04-15 03:36:44 -04:00			`- page_title "Personal Access Tokens"`
Added limited width to profile settings Closes #20918 2017-06-22 10:47:50 -04:00			`- @content_class = "limit-container-width" unless fluid_layout`
Inline script cleanup globals and easy 2017-08-01 04:50:59 -04:00
Fix preferences tests. 2016-06-30 12:42:07 -04:00			`= render 'profiles/head'`
Allow creating Personal Access Tokens through the website. 2016-04-15 03:36:44 -04:00
			`.row.prepend-top-default`
Added limited width to profile settings Closes #20918 2017-06-22 10:47:50 -04:00			`.col-lg-4.profile-settings-sidebar`
Allow creating Personal Access Tokens through the website. 2016-04-15 03:36:44 -04:00			`%h4.prepend-top-0`
			`= page_title`
			`%p`
Fix minor styling issues. - No "Actions" label necessary - `%td` can be moved out of `if/else` - Page header should be "Profile Settings", not "Personal Access Tokens" - "You don't have any tokens" message should be styled consistently 2016-06-02 23:37:37 -04:00			`You can generate a personal access token for each application you use that needs access to the GitLab API.`
Deny Git over HTTP access to users that have 2FA enabled, unless they use a Personal Access Token. 2016-08-10 20:04:25 -04:00			`%p`
Refactor `find_for_git_client` method to not use assignment in conditionals and syntax fixes. 2016-08-17 18:21:18 -04:00			`You can also use personal access tokens to authenticate against Git over HTTP.`
			`They are the only accepted password when you have Two-Factor Authentication (2FA) enabled.`
Deny Git over HTTP access to users that have 2FA enabled, unless they use a Personal Access Token. 2016-08-10 20:04:25 -04:00
Added limited width to profile settings Closes #20918 2017-06-22 10:47:50 -04:00			`.col-lg-8`
Only show a personal access token right after its creation. 2016-06-01 22:57:47 -04:00
			`- if flash[:personal_access_token]`
Implement second round of comments from @jschatz1. - Just use a link for the clipboard button. Having a non-clickable container (that looks like a button) is confusing. - Use `text-danger` for the "you won't be able to access it again" message. - Highlight the created token so people know to look there. 2016-06-09 23:19:05 -04:00			`.created-personal-access-token-container`
Implement @jschatz1's comments. - No hardcoded colors in any SCSS file except `variables.scss` - Don't allow choosing a date in the past - Use the same table as in the "Applications" tab - The button should say "Create Personal Access Token" - Float the revoke button to the right of the table cell - Change the revocation message to be more explicit. - Date shouldn't look selected on page load - Don't use a panel for the created token - Use a normal flash for "Your new personal access token has been created" - Show the input (with the token) below it full width. - Put the "Make sure you save it - you won't be able to access it again." message near the input - Have the created token's input highlight all on single click 2016-06-09 04:38:49 -04:00			`%h5.prepend-top-0`
			`Your New Personal Access Token`
			`.form-group`
Inline script cleanup globals and easy 2017-08-01 04:50:59 -04:00			`= text_field_tag 'created-personal-access-token', flash[:personal_access_token], readonly: true, class: "form-control js-select-on-focus", 'aria-describedby' => "created-personal-access-token-help-block"`
Copy diff file path as GFM 2017-04-06 17:10:14 -04:00			`= clipboard_button(text: flash[:personal_access_token], title: "Copy personal access token to clipboard", placement: "left")`
Implement second round of comments from @jschatz1. - Just use a link for the clipboard button. Having a non-clickable container (that looks like a button) is confusing. - Use `text-danger` for the "you won't be able to access it again" message. - Highlight the created token so people know to look there. 2016-06-09 23:19:05 -04:00			`%span#created-personal-access-token-help-block.help-block.text-danger Make sure you save it - you won't be able to access it again.`
Implement @jschatz1's comments. - No hardcoded colors in any SCSS file except `variables.scss` - Don't allow choosing a date in the past - Use the same table as in the "Applications" tab - The button should say "Create Personal Access Token" - Float the revoke button to the right of the table cell - Change the revocation message to be more explicit. - Date shouldn't look selected on page load - Don't use a panel for the created token - Use a normal flash for "Your new personal access token has been created" - Show the input (with the token) below it full width. - Put the "Make sure you save it - you won't be able to access it again." message near the input - Have the created token's input highlight all on single click 2016-06-09 04:38:49 -04:00
			`%hr`
Only show a personal access token right after its creation. 2016-06-01 22:57:47 -04:00
apply codestyle and implementation changes to the respective feature code 2017-03-01 11:59:03 -05:00			`= render "shared/personal_access_tokens_form", path: profile_personal_access_tokens_path, impersonation: false, token: @personal_access_token, scopes: @scopes`
Add an "Inactive Personal Access Tokens" section. - Show the count for each section in parens - Remove the `revoked?` check, because everything in the active section is guaranteed to not be revoked. 2016-04-19 05:58:35 -04:00
apply codestyle and implementation changes to the respective feature code 2017-03-01 11:59:03 -05:00			`= render "shared/personal_access_tokens_table", impersonation: false, active_tokens: @active_personal_access_tokens, inactive_tokens: @inactive_personal_access_tokens`
Move RSS and incoming email tokens from User Settings > Accounts to User Settings > Access Tokens 2017-10-12 10:17:54 -04:00
			`%hr`
			`.row.prepend-top-default`
			`.col-lg-4.profile-settings-sidebar`
			`%h4.prepend-top-0`
			`RSS token`
			`%p`
			`Your RSS token is used to authenticate you when your RSS reader loads a personalized RSS feed, and is included in your personal RSS feed URLs.`
			`%p`
			`It cannot be used to access any other data.`
			`.col-lg-8.rss-token-reset`
			`= label_tag :rss_token, 'RSS token', class: "label-light"`
			`= text_field_tag :rss_token, current_user.rss_token, class: 'form-control', readonly: true, onclick: 'this.select()'`
			`%p.help-block`
			`Keep this token secret. Anyone who gets ahold of it can read activity and issue RSS feeds as if they were you.`
			`You should`
			`= link_to 'reset it', [:reset, :rss_token, :profile], method: :put, data: { confirm: 'Are you sure? Any RSS URLs currently in use will stop working.' }`
			`if that ever happens.`

			`- if incoming_email_token_enabled?`
			`%hr`
			`.row.prepend-top-default`
			`.col-lg-4.profile-settings-sidebar`
			`%h4.prepend-top-0`
			`Incoming email token`
			`%p`
			`Your incoming email token is used to authenticate you when you create a new issue by email, and is included in your personal project-specific email addresses.`
			`%p`
			`It cannot be used to access any other data.`
			`.col-lg-8.incoming-email-token-reset`
			`= label_tag :incoming_email_token, 'Incoming email token', class: "label-light"`
			`= text_field_tag :incoming_email_token, current_user.incoming_email_token, class: 'form-control', readonly: true, onclick: 'this.select()'`
			`%p.help-block`
			`Keep this token secret. Anyone who gets ahold of it can create issues as if they were you.`
			`You should`
			`= link_to 'reset it', [:reset, :incoming_email_token, :profile], method: :put, data: { confirm: 'Are you sure? Any issue email addresses currently in use will stop working.' }`
			`if that ever happens.`