From e79d10e71e286a7dc6787b1da98388fd0d67b16a Mon Sep 17 00:00:00 2001 From: Thomas Darimont Date: Fri, 12 Jul 2024 10:04:57 +0200 Subject: [PATCH] Add missing user event translations to admin-ui Fixes #27677 Signed-off-by: Thomas Darimont Signed-off-by: Alexander Schwartz Co-authored-by: Alexander Schwartz --- .../server_admin/topics/events/login.adoc | 26 +++++++++++++++ .../admin/messages/messages_es.properties | 4 +-- .../admin/messages/messages_pl.properties | 6 ++-- .../admin/messages/messages_zh_CN.properties | 24 +++++++------- .../admin/messages/messages_en.properties | 32 ++++++++++++------- 5 files changed, 63 insertions(+), 29 deletions(-) diff --git a/docs/documentation/server_admin/topics/events/login.adoc b/docs/documentation/server_admin/topics/events/login.adoc index 99e0e4e72a..33e7d5bd17 100644 --- a/docs/documentation/server_admin/topics/events/login.adoc +++ b/docs/documentation/server_admin/topics/events/login.adoc @@ -77,6 +77,32 @@ image:images/search-user-event.png[Search user event] |=== +*Identity Brokering:* + +[cols="2",options="header"] +|=== +|Event |Description +|Federated identity link override +|An existing Federated identity link was overridden + +|Federated identity link override error +|Error occurred when trying to override an existing Federated identity link + +|=== + +*OAuth:* + +[cols="2",options="header"] +|=== +|Event |Description +|OAuth2 extension grant +|OAuth2 grant was executed + +|OAuth2 extension grant error +|Error occurred during OAuth2 grant execution + +|=== + *Account events:* [cols="2",options="header"] diff --git a/js/apps/admin-ui/maven-resources-community/theme/keycloak.v2/admin/messages/messages_es.properties b/js/apps/admin-ui/maven-resources-community/theme/keycloak.v2/admin/messages/messages_es.properties index 3dc81e91cd..b09d8ca3ef 100644 --- a/js/apps/admin-ui/maven-resources-community/theme/keycloak.v2/admin/messages/messages_es.properties +++ b/js/apps/admin-ui/maven-resources-community/theme/keycloak.v2/admin/messages/messages_es.properties @@ -1057,7 +1057,7 @@ save-admin-events=Si está habilitado, los eventos de administrador se guardan e policyGroups=Especifica qué usuario(s) están permitidos por esta política. searchForProtocol=Buscar mapeador de protocolo. eventTypes.CLIENT_INFO.name=Información del cliente. -eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN.description=Oauth2 código de dispositivo a token. +eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN.description=OAuth2 código de dispositivo a token. eventTypes.UPDATE_TOTP_ERROR.name=Error de actualización de TOTP. client-updater-source-groups.tooltip=Nombre de los grupos para verificar. La condición se evalúa como verdadera si la entidad que crea/actualiza el cliente es miembro de alguno de los grupos especificados. Los grupos configurados se especifican por su nombre simple, que debe coincidir con el nombre del grupo Keycloak. No se utiliza el soporte para la jerarquía de grupos aquí. webAuthnPolicyRpId=ID del Relying Party. @@ -2733,7 +2733,7 @@ sync-keycloak-groups-to-ldap=Sincronizar grupos de Keycloak a LDAP saveError=El proveedor de federación de usuarios no se pudo guardar\: {{error}} bruteForceDetection=Detección de fuerza bruta loginTimeoutHelp=Tiempo máximo que tiene un usuario para completar un inicio de sesión. Se recomienda que sea relativamente largo, como 30 minutos o más -eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN.name=Oauth2 código de dispositivo a token +eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN.name=OAuth2 código de dispositivo a token searchGroups=Buscar grupos trusted-hosts.tooltip=Lista de Hosts que son confiables y se les permite invocar el Servicio de Registro de Cliente y/o ser usados como valores de URIs de Cliente. Puedes usar nombres de host o direcciones IP. Si usas un asterisco al principio (por ejemplo, '*.example.com' ) entonces todo el dominio example.com será de confianza. disableNonceHelp=No enviar el parámetro nonce en la solicitud de autenticación. El parámetro nonce se envía y verifica de forma predeterminada. diff --git a/js/apps/admin-ui/maven-resources-community/theme/keycloak.v2/admin/messages/messages_pl.properties b/js/apps/admin-ui/maven-resources-community/theme/keycloak.v2/admin/messages/messages_pl.properties index 86f8f6a5f1..434e5f200a 100644 --- a/js/apps/admin-ui/maven-resources-community/theme/keycloak.v2/admin/messages/messages_pl.properties +++ b/js/apps/admin-ui/maven-resources-community/theme/keycloak.v2/admin/messages/messages_pl.properties @@ -1056,7 +1056,7 @@ save-admin-eventsHelp=Jeśli włączone, zdarzenia administratora są zapisywane policyGroups=Określa, którzy użytkownicy są uprawnieni na podstawie tej polityki. searchForProtocol=Wyszukaj mapera protokołu eventTypes.CLIENT_INFO.name=Informacje o kliencie -eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN.description=Oauth2 przekształca kod urządzenia na token +eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN.description=OAuth2 przekształca kod urządzenia na token eventTypes.UPDATE_TOTP_ERROR.name=Błąd aktualizacji TOTP client-updater-source-groups.tooltip=Nazwa grup do sprawdzenia. Warunek jest spełniony, jeśli podmiot, który tworzy/aktualizuje klienta, jest członkiem jednej z określonych grup. Skonfigurowane grupy są określone przez ich prostą nazwę, która musi odpowiadać nazwie grupy Keycloak. W tym miejscu nie jest używana hierarchia grup. webAuthnPolicyRpId=Identyfikator podmiotu polegającego na @@ -2184,7 +2184,7 @@ batchSize=Rozmiar partii user=Użytkownik scopesAsRequested=Zakresy są żądane updateErrorClientScope=Nie można zaktualizować zakresu klienta: '{{error}}' -eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE.description=Oauth2 weryfikacja kodu użytkownika na urządzeniu +eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE.description=OAuth2 weryfikacja kodu użytkownika na urządzeniu useKerberosForPasswordAuthentication=Użyj Kerberosa do uwierzytelniania hasłem validateUuidLDAPAttribute=Musisz podać atrybut UUID LDAP client-scopes-condition.tooltip=Lista oczekiwanych zakresów klienta. Warunek jest oceniany jako prawdziwy, jeśli żądanie klienta spełnia niektóre z zakresów klienta. To zależy także od tego, czy powinien być to domyślny zakres klienta, czy opcjonalny, w zależności od skonfigurowanego 'Typu zakresu'. @@ -2732,7 +2732,7 @@ sync-keycloak-groups-to-ldap=Synchronizuj grupy Keycloak z LDAP saveError=Usługa dostawcy federacji użytkowników nie mogła zostać zapisana\: {{error}} bruteForceDetection=Wykrywanie ataków brutalnych loginTimeoutHelp=Maksymalny czas, jaki użytkownik ma na zakończenie logowania. Zaleca się, aby był on stosunkowo długi, na przykład 30 minut lub więcej -eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN.name=Oauth2 kod urządzenia do tokena +eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN.name=OAuth2 kod urządzenia do tokena searchGroups=Szukaj grup trusted-hosts.tooltip=Lista hostów, które są zaufane i które mogą wywoływać usługę rejestracji klienta i/lub być używane jako wartości identyfikatorów klienta. Możesz używać nazw hostów lub adresów IP. Jeśli używasz gwiazdki na początku (na przykład '*.example.com' ), cała domena example.com będzie zaufana. disableNonceHelp=Nie wysyłaj parametru nonce w żądaniu uwierzytelniania. Parametr nonce jest wysyłany i weryfikowany domyślnie. diff --git a/js/apps/admin-ui/maven-resources-community/theme/keycloak.v2/admin/messages/messages_zh_CN.properties b/js/apps/admin-ui/maven-resources-community/theme/keycloak.v2/admin/messages/messages_zh_CN.properties index 19238f1ad1..a4b5f64690 100644 --- a/js/apps/admin-ui/maven-resources-community/theme/keycloak.v2/admin/messages/messages_zh_CN.properties +++ b/js/apps/admin-ui/maven-resources-community/theme/keycloak.v2/admin/messages/messages_zh_CN.properties @@ -370,7 +370,7 @@ cibaAuthRequestedUserHintHelp=识别请求身份验证的最终用户的方式 leaveGroupConfirmDialog_other=是否要从{{count}}所选群组中移除{{username}}? createTokenHelp=初始访问令牌只能用于创建客户端 removeImportedUsersError=由于:'{{error}}',无法移除导入的用户。 -eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN_ERROR.description=Oauth2设备用于交换令牌的代码错误 +eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN_ERROR.description=OAuth2设备用于交换令牌的代码错误 typeHelp=客户端作用域,将以默认作用域的形式添加到每个创建的客户端 linkedIdPs=关联的身份提供程序 htmlDisplayName=HTML 展示名称 @@ -443,7 +443,7 @@ otpSupportedApplications.totpAppMicrosoftAuthenticatorName=Microsoft 身份验 ldapMappersList=LDAP 映射器 bindDnHelp=LDAP 管理员的 DN,Keycloak 将使用它来访问 LDAP 服务器 newClientProfileName=客户端配置文件名称 -eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN_ERROR.name=Oauth2设备用于交换令牌的代码错误 +eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN_ERROR.name=OAuth2设备用于交换令牌的代码错误 eventTypes.TOKEN_EXCHANGE.description=交换令牌 continue=继续 editProvider=编辑供应者 @@ -885,7 +885,7 @@ disablePolicyConfirmTitle=禁用策略? eventTypes.LOGIN_ERROR.description=登录错误 linkAccount=关联帐号 attestationPreference.direct=直接 -eventTypes.OAUTH2_DEVICE_AUTH_ERROR.description=Oauth2设备认证错误 +eventTypes.OAUTH2_DEVICE_AUTH_ERROR.description=OAuth2设备认证错误 unlinkUsers=取消链接用户 userLdapFilter=用户 LDAP 过滤器 emailVerification=邮箱验证 @@ -1039,7 +1039,7 @@ policyGroups=指定此策略允许的用户。 facebookHelp.fetchedFields=提供将使用配置文件请求获取的附加字段。这将附加到默认的 'id,name,email,first_name,last_name' 集合。 searchForProtocol=搜索协议映射器 eventTypes.CLIENT_INFO.name=客户端信息 -eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN.description=Oauth2设备用于交换令牌的代码 +eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN.description=OAuth2设备用于交换令牌的代码 eventTypes.UPDATE_TOTP_ERROR.name=更新totp错误 client-updater-source-groups.tooltip=需要检查的组名。如果创建/更新客户端的实体是某些指定组的成员,则条件求值为“真”。配置的群组由其简单名称指定,该名称必须与Keycloak组的名称匹配。这里不支持群组层级。 webAuthnPolicyRpId=依赖方ID @@ -1224,7 +1224,7 @@ sslType.none=无 dateTo=日期(截止日期) eventTypes.REVOKE_GRANT.description=撤销授权 keyPlaceholder=输入一个键 -eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE_ERROR.name=Oauth2设备验证用户代码错误 +eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE_ERROR.name=OAuth2设备验证用户代码错误 addAuthnContextDeclRef=添加验证上下文的否定参考 eventTypes.SEND_IDENTITY_PROVIDER_LINK.description=发送身份供应商链接 eventTypes.IDENTITY_PROVIDER_RETRIEVE_TOKEN.name=身份供应者检索令牌 @@ -1989,7 +1989,7 @@ eventTypes.IDENTITY_PROVIDER_POST_LOGIN.name=身份供应者非首次登录 scopePermissions.users.view-description=决定管理员是否可以查看领域中所有用户的策略。 ldapGeneralOptionsSettingsDescription=此部分包含一些对所有用户存储供应商通用的基本选项。 importSkipped_one=跳过一条记录。 -eventTypes.OAUTH2_DEVICE_AUTH.description=Oauth2设备认证 +eventTypes.OAUTH2_DEVICE_AUTH.description=OAuth2设备认证 notBeforeClearedSuccess=成功! “不早于”的设置被清除。 policySaveError=由于{{error}}无法更新策略 experimental=实验性 @@ -2073,7 +2073,7 @@ eventTypes.REGISTER.description=注册 includeAuthnStatementHelp=是否应在登录响应中包含指定方法和时间戳的语句? evaluateError=无法评估,由于\: {{error}} iconUriHelp=指向图标的 URI。 -eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE.name=Oauth2设备验证用户代码 +eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE.name=OAuth2设备验证用户代码 protocol=协议 permissionsScopeName=作用域名称 manageAccount=管理帐户 @@ -2143,7 +2143,7 @@ batchSize=批量处理的数量 user=用户 scopesAsRequested=在此范围内生效 updateErrorClientScope=无法更新客户端作用域\: '{{error}}' -eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE.description=Oauth2 设备验证用户代码 +eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE.description=OAuth2 设备验证用户代码 useKerberosForPasswordAuthentication=使用 Kerberos 进行密码验证 validateUuidLDAPAttribute=您必须输入 UUID LDAP 属性 client-scopes-condition.tooltip=预期的客户端范围列表。如果指定的客户端请求与某些客户端范围匹配,则条件计算为“真”。它还取决于它应该是默认的还是可选的客户端作用域,这取决于所配置的“作用域类型”。 @@ -2282,7 +2282,7 @@ mappingCreatedSuccess=映射创建成功 eventTypes.GRANT_CONSENT.description=授权许可 client=客户端 setToNow=设置到现在 -eventTypes.OAUTH2_DEVICE_AUTH_ERROR.name=Oauth2设备认证错误 +eventTypes.OAUTH2_DEVICE_AUTH_ERROR.name=OAuth2设备认证错误 addSubFlowHelp=子级流程可以是一般形式的,也可以是表单形式的。表单类型用于构造子流,为用户生成单个流程。子级流程是一种特殊类型的执行,根据它们包含的执行的评估方式评估流程成功与否。 implicitFlow=隐式流 authorizationSignedResponseAlgHelp=当响应模式为 jwt 时,用于签署授权响应令牌的 JWA 算法。 @@ -2366,7 +2366,7 @@ backchannelLogoutHelp=外部 IDP 是否支持后台注销? eventTypes.REMOVE_FEDERATED_IDENTITY_ERROR.description=删除联合身份错误 usermodel.realmRoleMapping.rolePrefix.tooltip=每个领域角色的前缀(非必需)。 exportSamlKeyTitle=导出 SAML 密钥 -eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE_ERROR.description=Oauth2设备验证用户代码错误 +eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE_ERROR.description=OAuth2设备验证用户代码错误 eventTypes.EXECUTE_ACTIONS_ERROR.description=执行动作错误 SKIP=跳过 eventTypes.INTROSPECT_TOKEN.description=令牌内部检查 @@ -2475,7 +2475,7 @@ userIdHelperText=请输入此身份提供程序的用户的唯一ID。 forwardParametersHelp=非 OpenID Connect/OAuth 标准查询参数,从初始应用请求到授权端点转发到外部 IDP。可以输入多个参数,以英文逗号 (,) 分隔。 on=开 changeAuthenticatorConfirmTitle=更改为 {{clientAuthenticatorType}}? -eventTypes.OAUTH2_DEVICE_AUTH.name=Oauth2设备认证 +eventTypes.OAUTH2_DEVICE_AUTH.name=OAuth2设备认证 admin-events-cleared=管理员事件已清除 or=或 deleteDialogTitle=删除属性组? @@ -2680,7 +2680,7 @@ usersLeft_one={{count}}用户离开了群组 saveError=由于:{{error}},无法保存用户联盟供应商 bruteForceDetection=暴力破解检测 loginTimeoutHelp=用户完成一次登录的最长时间。建议这个时间比较长,比如30分钟或者更长 -eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN.name=Oauth2设备用于交换令牌的代码 +eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN.name=OAuth2设备用于交换令牌的代码 searchGroups=搜索群组 trusted-hosts.tooltip=受信任的主机列表,允许调用客户端注册服务和/或用作客户端uri的值。您可以使用主机名或IP地址。如果您在开头使用*(例如'*.example.com'),那么整个域名example.com将被信任。 deleteClientProfile=删除此客户端配置文件 diff --git a/js/apps/admin-ui/maven-resources/theme/keycloak.v2/admin/messages/messages_en.properties b/js/apps/admin-ui/maven-resources/theme/keycloak.v2/admin/messages/messages_en.properties index d4bb6b4298..a68e990b98 100644 --- a/js/apps/admin-ui/maven-resources/theme/keycloak.v2/admin/messages/messages_en.properties +++ b/js/apps/admin-ui/maven-resources/theme/keycloak.v2/admin/messages/messages_en.properties @@ -396,7 +396,7 @@ cibaAuthRequestedUserHintHelp=The way of identifying the end-user for whom authe leaveGroupConfirmDialog_other=Are you sure you want to remove {{username}} from the {{count}} selected groups? createTokenHelp=An initial access token can only be used to create clients removeImportedUsersError=Could not remove imported users\: '{{error}}' -eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN_ERROR.description=Oauth2 device code to token error +eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN_ERROR.description=OAuth2 device code to token error typeHelp=Client scopes, which will be added as default scopes to each created client linkedIdPs=Linked identity providers htmlDisplayName=HTML Display name @@ -466,7 +466,7 @@ otpSupportedApplications.totpAppMicrosoftAuthenticatorName=Microsoft Authenticat ldapMappersList=LDAP Mappers bindDnHelp=DN of the LDAP admin, which will be used by Keycloak to access LDAP server newClientProfileName=Client profile name -eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN_ERROR.name=Oauth2 device code to token error +eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN_ERROR.name=OAuth2 device code to token error eventTypes.TOKEN_EXCHANGE.description=Token exchange continue=Continue editProvider=Edit provider @@ -708,6 +708,14 @@ eventTypes.FEDERATED_IDENTITY_LINK.description=Federated identity link adminTheme=Admin theme alias=Alias eventTypes.SEND_IDENTITY_PROVIDER_LINK_ERROR.name=Send identity provider link error +eventTypes.FEDERATED_IDENTITY_OVERRIDE_LINK.name=Federated identity link override +eventTypes.FEDERATED_IDENTITY_OVERRIDE_LINK.description=Federated identity link override +eventTypes.FEDERATED_IDENTITY_OVERRIDE_LINK_ERROR.name=Federated identity link override error +eventTypes.FEDERATED_IDENTITY_OVERRIDE_LINK_ERROR.description=Federated identity link override error +eventTypes.OAUTH2_EXTENSION_GRANT.name=OAuth2 extension grant +eventTypes.OAUTH2_EXTENSION_GRANT.description=OAuth2 extension grant +eventTypes.OAUTH2_EXTENSION_GRANT_ERROR.name=OAuth2 extension grant error +eventTypes.OAUTH2_EXTENSION_GRANT_ERROR.description=OAuth2 extension grant error userEvents=User events inputTypePlaceholder=Input placeholder otpPolicyPeriodErrorHint=Value needs to be between 1 second and 2 minutes @@ -921,7 +929,7 @@ disablePolicyConfirmTitle=Disable policy? eventTypes.LOGIN_ERROR.description=Login error linkAccount=Link account attestationPreference.direct=Direct -eventTypes.OAUTH2_DEVICE_AUTH_ERROR.description=Oauth2 device authentication error +eventTypes.OAUTH2_DEVICE_AUTH_ERROR.description=OAuth2 device authentication error unlinkUsers=Unlink users userLdapFilter=User LDAP filter emailVerification=Email Verification @@ -1091,7 +1099,7 @@ save-admin-eventsHelp=If enabled, admin events are saved to the database, which policyGroups=Specifies which user(s) are allowed by this policy. searchForProtocol=Search protocol mapper eventTypes.CLIENT_INFO.name=Client info -eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN.description=Oauth2 device code to token +eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN.description=OAuth2 device code to token eventTypes.UPDATE_TOTP_ERROR.name=Update totp error client-updater-source-groups.tooltip=Name of groups to check. Condition evaluates to true if the entity, who creates/updates client is member of some of the specified groups. Configured groups are specified by their simple name, which must match to the name of the Keycloak group. No support for group hierarchy is used here. webAuthnPolicyRpId=Relying party ID @@ -1281,7 +1289,7 @@ sslType.none=None dateTo=Date(to) eventTypes.REVOKE_GRANT.description=Revoke grant keyPlaceholder=Type a key -eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE_ERROR.name=Oauth2 device verify user code error +eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE_ERROR.name=OAuth2 device verify user code error addAuthnContextDeclRef=Add AuthnContext DeclRef eventTypes.SEND_IDENTITY_PROVIDER_LINK.description=Send identity provider link eventTypes.IDENTITY_PROVIDER_RETRIEVE_TOKEN.name=Identity provider retrieve token @@ -2068,7 +2076,7 @@ eventTypes.IDENTITY_PROVIDER_POST_LOGIN.name=Identity provider post login scopePermissions.users.view-description=Policies that decide if an administrator can view all users in realm ldapGeneralOptionsSettingsDescription=This section contains a few basic options common to all user storage providers. importSkipped_one=One record skipped. -eventTypes.OAUTH2_DEVICE_AUTH.description=Oauth2 device authentication +eventTypes.OAUTH2_DEVICE_AUTH.description=OAuth2 device authentication notBeforeClearedSuccess=Success\! "Not Before" cleared for realm. policySaveError=Could not update the policy due to {{error}} experimental=Experimental @@ -2159,7 +2167,7 @@ eventTypes.REGISTER.description=Register includeAuthnStatementHelp=Should a statement specifying the method and timestamp be included in login responses? evaluateError=Could not evaluate due to\: {{error}} iconUriHelp=A URI pointing to an icon. -eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE.name=Oauth2 device verify user code +eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE.name=OAuth2 device verify user code protocol=Protocol permissionsScopeName=Scope-name validPostLogoutRedirectURIsHelp=Valid URI pattern a browser can redirect to after a successful logout. A value of '+' or an empty field will use the list of valid redirect uris. A value of '-' will not allow any post logout redirect uris. Simple wildcards are allowed such as 'http\://example.com/*'. Relative path can be specified too such as /my/relative/path/*. Relative paths are relative to the client root URL, or if none is specified the auth server root URL is used. @@ -2229,7 +2237,7 @@ batchSize=Batch size user=User scopesAsRequested=Scopes are requested updateErrorClientScope=Could not update client scope\: '{{error}}' -eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE.description=Oauth2 device verify user code +eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE.description=OAuth2 device verify user code useKerberosForPasswordAuthentication=Use Kerberos for password authentication validateUuidLDAPAttribute=You must enter a UUID LDAP attribute client-scopes-condition.tooltip=The list of expected client scopes. Condition evaluates to true if specified client request matches some of the client scopes. It depends also whether it should be default or optional client scope based on the 'Scope Type' configured. @@ -2374,7 +2382,7 @@ whoCanEdit=Who can edit? mappingCreatedSuccess=Mapping successfully created eventTypes.GRANT_CONSENT.description=Grant consent client=Client -eventTypes.OAUTH2_DEVICE_AUTH_ERROR.name=Oauth2 device authentication error +eventTypes.OAUTH2_DEVICE_AUTH_ERROR.name=OAuth2 device authentication error addSubFlowHelp=Sub-Flows can be either generic or form. The form type is used to construct a sub-flow that generates a single flow for the user. Sub-flows are a special type of execution that evaluate as successful depending on how the executions they contain evaluate. implicitFlow=Implicit flow authorizationSignedResponseAlgHelp=JWA algorithm used for signing authorization response tokens when the response mode is jwt. @@ -2457,7 +2465,7 @@ backchannelLogoutHelp=Does the external IDP support backchannel logout? eventTypes.REMOVE_FEDERATED_IDENTITY_ERROR.description=Remove federated identity error usermodel.realmRoleMapping.rolePrefix.tooltip=A prefix which will be prepended to each Realm Role name (optional). exportSamlKeyTitle=Export SAML Keys -eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE_ERROR.description=Oauth2 device verify user code error +eventTypes.OAUTH2_DEVICE_VERIFY_USER_CODE_ERROR.description=OAuth2 device verify user code error eventTypes.EXECUTE_ACTIONS_ERROR.description=Execute actions error SKIP=Skip eventTypes.INTROSPECT_TOKEN.description=Introspect token @@ -2569,7 +2577,7 @@ userIdHelperText=Enter the unique ID of the user for this identity provider. forwardParametersHelp=Non OpenID Connect/OAuth standard query parameters to be forwarded to external IDP from the initial application request to Authorization Endpoint. Multiple parameters can be entered, separated by comma (,). on=On changeAuthenticatorConfirmTitle=Change to {{clientAuthenticatorType}}? -eventTypes.OAUTH2_DEVICE_AUTH.name=Oauth2 device authentication +eventTypes.OAUTH2_DEVICE_AUTH.name=OAuth2 device authentication admin-events-cleared=The admin events have been cleared or=or deleteDialogTitle=Delete attribute group? @@ -2776,7 +2784,7 @@ sync-keycloak-groups-to-ldap=Sync Keycloak groups to LDAP saveError=User federation provider could not be saved\: {{error}} bruteForceDetection=Brute force detection loginTimeoutHelp=Max time a user has to complete a login. This is recommended to be relatively long, such as 30 minutes or more -eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN.name=Oauth2 device code to token +eventTypes.OAUTH2_DEVICE_CODE_TO_TOKEN.name=OAuth2 device code to token searchGroups=Search groups trusted-hosts.tooltip=List of Hosts, which are trusted and are allowed to invoke Client Registration Service and/or be used as values of Client URIs. You can use hostnames or IP addresses. If you use star at the beginning (for example '*.example.com' ) then whole domain example.com will be trusted. disableNonceHelp=Do not send the nonce parameter in the authentication request. The nonce parameter is sent and verified by default.