mirror of
https://we.phorge.it/source/phorge.git
synced 2024-11-13 18:32:41 +01:00
8a52a6d585
Summary: Also improve behavior for the "unknown config" warning. Test Plan: Looked at configs, went through unknown config workflow. Reviewers: btrahan, codeblock Reviewed By: btrahan CC: aran Maniphest Tasks: T2255 Differential Revision: https://secure.phabricator.com/D4310
75 lines
2.6 KiB
PHP
75 lines
2.6 KiB
PHP
<?php
|
|
|
|
final class PhabricatorFacebookConfigOptions
|
|
extends PhabricatorApplicationConfigOptions {
|
|
|
|
public function getName() {
|
|
return pht("Integration with Facebook");
|
|
}
|
|
|
|
public function getDescription() {
|
|
return pht("Facebook authentication and integration options.");
|
|
}
|
|
|
|
public function getOptions() {
|
|
return array(
|
|
$this->newOption('facebook.auth-enabled', 'bool', false)
|
|
->setOptions(
|
|
array(
|
|
pht("Disable Facebook Authentication"),
|
|
pht("Enable Facebook Authentication"),
|
|
))
|
|
->setDescription(
|
|
pht(
|
|
'Allow users to login to Phabricator using Facebook credentials.')),
|
|
$this->newOption('facebook.registration-enabled', 'bool', true)
|
|
->setOptions(
|
|
array(
|
|
pht("Disable Facebook Registration"),
|
|
pht("Enable Facebook Registration"),
|
|
))
|
|
->setDescription(
|
|
pht(
|
|
'Allow users to create new Phabricator accounts using Facebook '.
|
|
'credentials.')),
|
|
$this->newOption('facebook.auth-permanent', 'bool', false)
|
|
->setOptions(
|
|
array(
|
|
pht("Allow Facebook Account Unlinking"),
|
|
pht("Permanently Bind Facebook Accounts"),
|
|
))
|
|
->setDescription(
|
|
pht(
|
|
'Are Phabricator accounts permanently bound to Facebook '.
|
|
'accounts?')),
|
|
$this->newOption('facebook.application-id', 'string', null)
|
|
->setDescription(
|
|
pht(
|
|
'Facebook "Application ID" to use for Facebook API access.')),
|
|
$this->newOption('facebook.application-secret', 'string', null)
|
|
->setDescription(
|
|
pht(
|
|
'Facebook "Application Secret" to use for Facebook API access.')),
|
|
$this->newOption('facebook.require-https-auth', 'bool', false)
|
|
->setOptions(
|
|
array(
|
|
pht("Do Not Require HTTPS"),
|
|
pht("Require HTTPS"),
|
|
))
|
|
->setSummary(
|
|
pht(
|
|
'Reject Facebook logins from accounts that do not have Facebook '.
|
|
'configured in HTTPS-only mode.'))
|
|
->setDescription(
|
|
pht(
|
|
'You can require users logging in via Facebook auth have Facebook '.
|
|
'set to HTTPS-only, which ensures their Facebook cookies are '.
|
|
'SSL-only. This makes it more difficult for an attacker to '.
|
|
'escalate a cookie-sniffing attack which captures Facebook '.
|
|
'credentials into Phabricator access, but will require users '.
|
|
'change their Facebook settings if they do not have this mode '.
|
|
'enabled.')),
|
|
);
|
|
}
|
|
|
|
}
|