Commit 8ecdf1de authored by Russell Dickenson's avatar Russell Dickenson Committed by Peter Hegman

Improve outbound requests settings UI text

Changelog: changed
parent b4c272ca
...@@ -6,25 +6,26 @@ ...@@ -6,25 +6,26 @@
.form-check .form-check
= f.check_box :allow_local_requests_from_web_hooks_and_services, class: 'form-check-input', data: { qa_selector: 'allow_requests_from_services_checkbox' } = f.check_box :allow_local_requests_from_web_hooks_and_services, class: 'form-check-input', data: { qa_selector: 'allow_requests_from_services_checkbox' }
= f.label :allow_local_requests_from_web_hooks_and_services, class: 'form-check-label' do = f.label :allow_local_requests_from_web_hooks_and_services, class: 'form-check-label' do
= _('Allow requests to the local network from web hooks and services') = s_('OutboundRequests|Allow requests to the local network from web hooks and services')
.form-check .form-check
= f.check_box :allow_local_requests_from_system_hooks, class: 'form-check-input' = f.check_box :allow_local_requests_from_system_hooks, class: 'form-check-input'
= f.label :allow_local_requests_from_system_hooks, class: 'form-check-label' do = f.label :allow_local_requests_from_system_hooks, class: 'form-check-label' do
= _('Allow requests to the local network from system hooks') = s_('OutboundRequests|Allow requests to the local network from system hooks')
.form-group .form-group
= f.label :outbound_local_requests_allowlist_raw, class: 'label-bold' do = f.label :outbound_local_requests_allowlist_raw, class: 'label-bold' do
= _('Local IP addresses and domain names that hooks and services may access.') = s_('OutboundRequests|Local IP addresses and domain names that hooks and services may access')
= f.text_area :outbound_local_requests_allowlist_raw, placeholder: "example.com, 192.168.1.1", class: 'form-control gl-form-input', rows: 8 = f.text_area :outbound_local_requests_allowlist_raw, placeholder: "example.com, 192.168.1.1, xn--itlab-j1a.com", class: 'form-control gl-form-input', rows: 8
%span.form-text.text-muted %span.form-text.text-muted
= _('Requests to these domain(s)/address(es) on the local network will be allowed when local requests from hooks and services are not allowed. IP ranges such as 1:0:0:0:0:0:0:0/124 or 127.0.0.0/28 are supported. Domain wildcards are not supported currently. Use comma, semicolon, or newline to separate multiple entries. The allowlist can hold a maximum of 1000 entries. Domains should use IDNA encoding. Ex: example.com, 192.168.1.1, 127.0.0.0/28, xn--itlab-j1a.com.') = s_('OutboundRequests|Requests to these domains and IP addresses are accessible to both system hooks and web hooks even when local requests are not allowed. IP ranges such as 1:0:0:0:0:0:0:0/124 and 127.0.0.0/28 are supported. Domain wildcards are not supported. To separate entries use commas, semicolons, or newlines. The allowlist can hold a maximum of 1000 entries. Domains must be IDNA encoded.')
= link_to _('Learn more.'), help_page_path('security/webhooks.md', anchor: 'allowlist-for-local-requests'), target: '_blank', rel: 'noopener noreferrer'
.form-group .form-group
.form-check .form-check
= f.check_box :dns_rebinding_protection_enabled, class: 'form-check-input' = f.check_box :dns_rebinding_protection_enabled, class: 'form-check-input'
= f.label :dns_rebinding_protection_enabled, class: 'form-check-label' do = f.label :dns_rebinding_protection_enabled, class: 'form-check-label' do
= _('Enforce DNS rebinding attack protection') = s_('OutboundRequests|Enforce DNS rebinding attack protection')
%span.form-text.text-muted %span.form-text.text-muted
= _('Resolves IP addresses once and uses them to submit requests') = s_('OutboundRequests|Resolve IP addresses once and uses them to submit requests.')
= f.submit _('Save changes'), class: "gl-button btn btn-confirm", data: { qa_selector: 'save_changes_button' } = f.submit _('Save changes'), class: "gl-button btn btn-confirm", data: { qa_selector: 'save_changes_button' }
...@@ -75,11 +75,13 @@ ...@@ -75,11 +75,13 @@
%section.settings.as-outbound.no-animate#js-outbound-settings{ class: ('expanded' if expanded_by_default?), data: { qa_selector: 'outbound_requests_content' } } %section.settings.as-outbound.no-animate#js-outbound-settings{ class: ('expanded' if expanded_by_default?), data: { qa_selector: 'outbound_requests_content' } }
.settings-header .settings-header
%h4 %h4
= _('Outbound requests') = s_('OutboundRequests|Outbound requests')
%button.btn.gl-button.btn-default.js-settings-toggle{ type: 'button' } %button.btn.gl-button.btn-default.js-settings-toggle{ type: 'button' }
= expanded_by_default? ? _('Collapse') : _('Expand') = expanded_by_default? ? _('Collapse') : _('Expand')
%p %p
= _('Allow requests to the local network from hooks and services.') = s_('OutboundRequests|Allow requests to the local network from hooks and services.')
= link_to _('Learn more.'), help_page_path('security/webhooks.md'), target: '_blank', rel: 'noopener noreferrer'
.settings-content .settings-content
= render 'outbound' = render 'outbound'
......
...@@ -74,7 +74,8 @@ allowlist: ...@@ -74,7 +74,8 @@ allowlist:
The allowed entries can be separated by semicolons, commas or whitespaces The allowed entries can be separated by semicolons, commas or whitespaces
(including newlines) and be in different formats like hostnames, IP addresses and/or (including newlines) and be in different formats like hostnames, IP addresses and/or
IP ranges. IPv6 is supported. Hostnames that contain Unicode characters should IP ranges. IPv6 is supported. Hostnames that contain Unicode characters should
use Internationalising Domain Names in Applications (IDNA) encoding. use [Internationalized Domain Names in Applications](https://www.icann.org/resources/pages/glossary-2014-02-04-en#i)
(IDNA) encoding.
The allowlist can hold a maximum of 1000 entries. Each entry can be a maximum of The allowlist can hold a maximum of 1000 entries. Each entry can be a maximum of
255 characters. 255 characters.
......
...@@ -3530,15 +3530,6 @@ msgstr "" ...@@ -3530,15 +3530,6 @@ msgstr ""
msgid "Allow public access to pipelines and job details, including output logs and artifacts." msgid "Allow public access to pipelines and job details, including output logs and artifacts."
msgstr "" msgstr ""
msgid "Allow requests to the local network from hooks and services."
msgstr ""
msgid "Allow requests to the local network from system hooks"
msgstr ""
msgid "Allow requests to the local network from web hooks and services"
msgstr ""
msgid "Allow subgroups to set up their own two-factor authentication rules" msgid "Allow subgroups to set up their own two-factor authentication rules"
msgstr "" msgstr ""
...@@ -13354,9 +13345,6 @@ msgstr "" ...@@ -13354,9 +13345,6 @@ msgstr ""
msgid "Ends: %{endsAt}" msgid "Ends: %{endsAt}"
msgstr "" msgstr ""
msgid "Enforce DNS rebinding attack protection"
msgstr ""
msgid "Enforce SSH key expiration" msgid "Enforce SSH key expiration"
msgstr "" msgstr ""
...@@ -21381,9 +21369,6 @@ msgstr "" ...@@ -21381,9 +21369,6 @@ msgstr ""
msgid "Loading…" msgid "Loading…"
msgstr "" msgstr ""
msgid "Local IP addresses and domain names that hooks and services may access."
msgstr ""
msgid "Localization" msgid "Localization"
msgstr "" msgstr ""
...@@ -24983,7 +24968,28 @@ msgstr "" ...@@ -24983,7 +24968,28 @@ msgstr ""
msgid "Out-of-compliance with this project's policies and should be removed" msgid "Out-of-compliance with this project's policies and should be removed"
msgstr "" msgstr ""
msgid "Outbound requests" msgid "OutboundRequests|Allow requests to the local network from hooks and services."
msgstr ""
msgid "OutboundRequests|Allow requests to the local network from system hooks"
msgstr ""
msgid "OutboundRequests|Allow requests to the local network from web hooks and services"
msgstr ""
msgid "OutboundRequests|Enforce DNS rebinding attack protection"
msgstr ""
msgid "OutboundRequests|Local IP addresses and domain names that hooks and services may access"
msgstr ""
msgid "OutboundRequests|Outbound requests"
msgstr ""
msgid "OutboundRequests|Requests to these domains and IP addresses are accessible to both system hooks and web hooks even when local requests are not allowed. IP ranges such as 1:0:0:0:0:0:0:0/124 and 127.0.0.0/28 are supported. Domain wildcards are not supported. To separate entries use commas, semicolons, or newlines. The allowlist can hold a maximum of 1000 entries. Domains must be IDNA encoded."
msgstr ""
msgid "OutboundRequests|Resolve IP addresses once and uses them to submit requests."
msgstr "" msgstr ""
msgid "OutdatedBrowser|GitLab may not work properly, because you are using an outdated web browser." msgid "OutdatedBrowser|GitLab may not work properly, because you are using an outdated web browser."
...@@ -30085,9 +30091,6 @@ msgstr "" ...@@ -30085,9 +30091,6 @@ msgstr ""
msgid "Requests per period" msgid "Requests per period"
msgstr "" msgstr ""
msgid "Requests to these domain(s)/address(es) on the local network will be allowed when local requests from hooks and services are not allowed. IP ranges such as 1:0:0:0:0:0:0:0/124 or 127.0.0.0/28 are supported. Domain wildcards are not supported currently. Use comma, semicolon, or newline to separate multiple entries. The allowlist can hold a maximum of 1000 entries. Domains should use IDNA encoding. Ex: example.com, 192.168.1.1, 127.0.0.0/28, xn--itlab-j1a.com."
msgstr ""
msgid "Require additional authentication for administrative tasks." msgid "Require additional authentication for administrative tasks."
msgstr "" msgstr ""
...@@ -30233,9 +30236,6 @@ msgstr "" ...@@ -30233,9 +30236,6 @@ msgstr ""
msgid "Resolved by %{name}" msgid "Resolved by %{name}"
msgstr "" msgstr ""
msgid "Resolves IP addresses once and uses them to submit requests"
msgstr ""
msgid "Response" msgid "Response"
msgstr "" msgstr ""
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment