Jan Dittberner
7ef12da4fa
This change implements handling for the case that a login request retrieved from Hydra has a pre-defined subject. The login request is rejected if the requested subject is not part of the presented client certificate.
94 lines
4.9 KiB
TOML
94 lines
4.9 KiB
TOML
AuthServerErrorExplanation = "A request that your browser sent to the authorization server caused an error. The authorization server returned details about the error that are printed below."
|
|
AuthServerErrorTitle = "Authorization server returned an error"
|
|
CertLoginIntroText = "The application **{{ .ClientName }}** requests a login."
|
|
CertLoginRequestText = "Do you want to use the chosen identity from the certificate for authentication?"
|
|
ClaimsInformation = "In addition the application wants access to the following information:"
|
|
ConfirmRevokeExplanation = "Do you want to revoke your consent to allow **{{ .Application }}** access to identity data for **{{ .Subject }}**?"
|
|
ConfirmRevokeTitle = "Revoke consent"
|
|
ErrorTitle = "An error has occurred"
|
|
ErrorUnknown = "Unknown error"
|
|
HintChooseAnIdentityForAuthentication = "Choose an identity for authentication."
|
|
HintChooseDifferentClientCertificate = "Choose a different client certificate for authentication."
|
|
IndexTitle = "Welcome to your identity provider"
|
|
IndexWelcomeMessage = "Go to [manage consent]({{ .ManageConsentHRef }}) to show or revoke consent you have given to client applications."
|
|
IntroConsentMoreInformation = "You can find more information about **{{ .client }}** at [its description page]({{ .clientLink }})."
|
|
IntroConsentRequested = "The **{{ .client }}** application requested your consent for the following set of permissions:"
|
|
LabelConsent = "I hereby agree that the application may get the requested permissions."
|
|
LabelNever = "Never"
|
|
LabelSubmit = "Submit"
|
|
LabelUnknown = "Unknown"
|
|
LoginDeniedByUser = "Login has been denied by the user."
|
|
LoginDeniedSubjectMissing = "Login has been denied because the requested subject {{ .Subject }} could not be authenticated."
|
|
LoginTitle = "Authenticate with a client certificate"
|
|
LogoutSuccessfulText = "You have been logged out successfully."
|
|
LogoutSuccessfulTitle = "Logout successful"
|
|
ManageConsentDescription = "This page allows you to see consent that you have given to client applications in the past."
|
|
ManageConsentTitle = "Manage consent"
|
|
NoChallengeInRequestExplanation = "Your authentication request did not contain the necessary `login_challenge` parameter. You can find more information about this parameter in [the ORY Hydra documentation](https://www.ory.sh/docs/oauth2-oidc/custom-login-consent/flow)."
|
|
NoChallengeInRequestTitle = "No challenge parameter in your authentication request"
|
|
NoConsentGiven = "You have not given consent to use your data to any application yet."
|
|
NoEmailAddressSelected = "You did not select an email address. Please select an email address to continue."
|
|
NoEmailsInClientCertificateExplanation = "The presented client certificate does not contain any email address value.\nAn email address is required to authenticate yourself."
|
|
NoEmailsInClientCertificateTitle = "No email addresses in client certificate"
|
|
Scope-email-Description = "Access your email address."
|
|
Scope-offline-Description = "Keep access to your information until you revoke the permission."
|
|
Scope-openid-Description = "Request information about your identity."
|
|
Scope-profile-Description = "Access your user profile information (your name)."
|
|
TitleRequestConsent = "Application requests your consent"
|
|
WrongOrLockedUserOrInvalidPassword = "You entered an invalid username or password or your account has been locked."
|
|
|
|
[ButtonTitleCancel]
|
|
description = "Title for a button to cancel an action"
|
|
other = "Cancel"
|
|
|
|
[ButtonTitleConfirmRevoke]
|
|
description = "Title for a button to confirm consent revocation"
|
|
other = "Yes, Revoke!"
|
|
|
|
[ButtonTitleConsent]
|
|
description = "Title for a button to give consent"
|
|
other = "Consent"
|
|
|
|
[ButtonTitleDeny]
|
|
description = "Title for a button to deny consent"
|
|
other = "Deny"
|
|
|
|
[ButtonTitleRevoke]
|
|
description = "Title for a button to revoke consent"
|
|
other = "Revoke"
|
|
|
|
[ColumnNameActions]
|
|
description = "Title for a table column showing available actions"
|
|
other = "Actions"
|
|
|
|
[ColumnNameApplication]
|
|
description = "Title for a table column showing application names"
|
|
other = "Application"
|
|
|
|
[ColumnNameExpires]
|
|
description = "Title for a table column showing the expiry date for a consent"
|
|
other = "Expires"
|
|
|
|
[ColumnNameGranted]
|
|
description = "Title for a table column showing the time when consent has been granted"
|
|
other = "Granted at"
|
|
|
|
[ColumnNameSubject]
|
|
description = "Title for a table column showing the subject of a consent"
|
|
other = "Subject"
|
|
|
|
[EmailChoiceText]
|
|
one = "You have presented a valid client certificate for the following email address:"
|
|
other = "You have presented a valid client certificate for multiple email addresses. Please choose which one you want to present to the application:"
|
|
|
|
[LabelAcceptCertLogin]
|
|
description = "Label for a button to accept certificate login"
|
|
other = "Yes, please use this identity"
|
|
|
|
[LabelRejectCertLogin]
|
|
description = "Label for a button to reject certificate login"
|
|
other = "No, please send me back"
|
|
|
|
[http404]
|
|
description = "HTTP error 404 not found"
|
|
other = "Not found"
|