ab1f3b47a8
Prevent OAuth phishing attack by presenting detailed wording about app to user during authorization See merge request gitlab/gitlabhq!2205
84 lines
4 KiB
YAML
84 lines
4 KiB
YAML
en:
|
|
activerecord:
|
|
errors:
|
|
models:
|
|
application:
|
|
attributes:
|
|
redirect_uri:
|
|
fragment_present: 'cannot contain a fragment.'
|
|
invalid_uri: 'must be a valid URI.'
|
|
relative_uri: 'must be an absolute URI.'
|
|
mongoid:
|
|
errors:
|
|
models:
|
|
application:
|
|
attributes:
|
|
redirect_uri:
|
|
fragment_present: 'cannot contain a fragment.'
|
|
invalid_uri: 'must be a valid URI.'
|
|
relative_uri: 'must be an absolute URI.'
|
|
mongo_mapper:
|
|
errors:
|
|
models:
|
|
application:
|
|
attributes:
|
|
redirect_uri:
|
|
fragment_present: 'cannot contain a fragment.'
|
|
invalid_uri: 'must be a valid URI.'
|
|
relative_uri: 'must be an absolute URI.'
|
|
doorkeeper:
|
|
errors:
|
|
messages:
|
|
# Common error messages
|
|
invalid_request: 'The request is missing a required parameter, includes an unsupported parameter value, or is otherwise malformed.'
|
|
invalid_redirect_uri: 'The redirect URI included is not valid.'
|
|
unauthorized_client: 'The client is not authorized to perform this request using this method.'
|
|
access_denied: 'The resource owner or authorization server denied the request.'
|
|
invalid_scope: 'The requested scope is invalid, unknown, or malformed.'
|
|
server_error: 'The authorization server encountered an unexpected condition which prevented it from fulfilling the request.'
|
|
temporarily_unavailable: 'The authorization server is currently unable to handle the request due to a temporary overloading or maintenance of the server.'
|
|
|
|
#configuration error messages
|
|
credential_flow_not_configured: 'Resource Owner Password Credentials flow failed due to Doorkeeper.configure.resource_owner_from_credentials being unconfigured.'
|
|
resource_owner_authenticator_not_configured: 'Resource Owner find failed due to Doorkeeper.configure.resource_owner_authenticator being unconfiged.'
|
|
|
|
# Access grant errors
|
|
unsupported_response_type: 'The authorization server does not support this response type.'
|
|
|
|
# Access token errors
|
|
invalid_client: 'Client authentication failed due to unknown client, no client authentication included, or unsupported authentication method.'
|
|
invalid_grant: 'The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client.'
|
|
unsupported_grant_type: 'The authorization grant type is not supported by the authorization server.'
|
|
|
|
# Password Access token errors
|
|
invalid_resource_owner: 'The provided resource owner credentials are not valid, or resource owner cannot be found'
|
|
|
|
invalid_token:
|
|
revoked: "The access token was revoked"
|
|
expired: "The access token expired"
|
|
unknown: "The access token is invalid"
|
|
scopes:
|
|
api: Access the authenticated user's API
|
|
read_user: Read the authenticated user's personal information
|
|
openid: Authenticate using OpenID Connect
|
|
sudo: Perform API actions as any user in the system (if the authenticated user is an admin)
|
|
scope_desc:
|
|
api:
|
|
Full access to GitLab as the user, including read/write on all their groups and projects
|
|
read_user:
|
|
Read-only access to the user's profile information, like username, public email and full name
|
|
openid:
|
|
The ability to authenticate using GitLab, and read-only access to the user's profile information
|
|
sudo:
|
|
Access to the Sudo feature, to perform API actions as any user in the system (only available for admins)
|
|
flash:
|
|
applications:
|
|
create:
|
|
notice: 'The application was created successfully.'
|
|
destroy:
|
|
notice: 'The application was deleted successfully.'
|
|
update:
|
|
notice: 'The application was updated successfully.'
|
|
authorized_applications:
|
|
destroy:
|
|
notice: 'The application was revoked access.'
|