mirror of
https://we.phorge.it/source/phorge.git
synced 2024-11-15 19:32:40 +01:00
3d44208e4f
Summary: Fixes T12216. I'd like to remove this option eventually, but just narrow its scope in the config description for now. Test Plan: Read config description. Reviewers: chad Reviewed By: chad Maniphest Tasks: T12216 Differential Revision: https://secure.phabricator.com/D17317
103 lines
4.2 KiB
PHP
103 lines
4.2 KiB
PHP
<?php
|
|
|
|
final class PhabricatorAuthenticationConfigOptions
|
|
extends PhabricatorApplicationConfigOptions {
|
|
|
|
public function getName() {
|
|
return pht('Authentication');
|
|
}
|
|
|
|
public function getDescription() {
|
|
return pht('Options relating to authentication.');
|
|
}
|
|
|
|
public function getIcon() {
|
|
return 'fa-key';
|
|
}
|
|
|
|
public function getGroup() {
|
|
return 'core';
|
|
}
|
|
|
|
public function getOptions() {
|
|
return array(
|
|
$this->newOption('auth.require-email-verification', 'bool', false)
|
|
->setBoolOptions(
|
|
array(
|
|
pht('Require email verification'),
|
|
pht("Don't require email verification"),
|
|
))
|
|
->setSummary(
|
|
pht('Require email verification before a user can log in.'))
|
|
->setDescription(
|
|
pht(
|
|
'If true, email addresses must be verified (by clicking a link '.
|
|
'in an email) before a user can login. By default, verification '.
|
|
'is optional unless {{auth.email-domains}} is nonempty.')),
|
|
$this->newOption('auth.require-approval', 'bool', true)
|
|
->setBoolOptions(
|
|
array(
|
|
pht('Require Administrators to Approve Accounts'),
|
|
pht("Don't Require Manual Approval"),
|
|
))
|
|
->setSummary(
|
|
pht('Require administrators to approve new accounts.'))
|
|
->setDescription(
|
|
pht(
|
|
"Newly registered Phabricator accounts can either be placed ".
|
|
"into a manual approval queue for administrative review, or ".
|
|
"automatically activated immediately. The approval queue is ".
|
|
"enabled by default because it gives you greater control over ".
|
|
"who can register an account and access Phabricator.\n\n".
|
|
"If your install is completely public, or on a VPN, or users can ".
|
|
"only register with a trusted provider like LDAP, or you've ".
|
|
"otherwise configured Phabricator to prevent unauthorized ".
|
|
"registration, you can disable the queue to reduce administrative ".
|
|
"overhead.\n\n".
|
|
"NOTE: Before you disable the queue, make sure ".
|
|
"{{auth.email-domains}} is configured correctly ".
|
|
"for your install!")),
|
|
$this->newOption('auth.email-domains', 'list<string>', array())
|
|
->setSummary(pht('Only allow registration from particular domains.'))
|
|
->setDescription(
|
|
pht(
|
|
"You can restrict allowed email addresses to certain domains ".
|
|
"(like `yourcompany.com`) by setting a list of allowed domains ".
|
|
"here.\n\nUsers will only be allowed to register using email ".
|
|
"addresses at one of the domains, and will only be able to add ".
|
|
"new email addresses for these domains. If you configure this, ".
|
|
"it implies {{auth.require-email-verification}}.\n\n".
|
|
"You should omit the `@` from domains. Note that the domain must ".
|
|
"match exactly. If you allow `yourcompany.com`, that permits ".
|
|
"`joe@yourcompany.com` but rejects `joe@mail.yourcompany.com`."))
|
|
->addExample(
|
|
"yourcompany.com\nmail.yourcompany.com",
|
|
pht('Valid Setting')),
|
|
$this->newOption('account.editable', 'bool', true)
|
|
->setBoolOptions(
|
|
array(
|
|
pht('Allow editing'),
|
|
pht('Prevent editing'),
|
|
))
|
|
->setSummary(
|
|
pht(
|
|
'Determines whether or not basic account information is editable.'))
|
|
->setDescription(
|
|
pht(
|
|
'This option controls whether users can edit account email '.
|
|
'addresses and profile real names.'.
|
|
"\n\n".
|
|
'If you set up Phabricator to automatically synchronize account '.
|
|
'information from some other authoritative system, you can '.
|
|
'prevent users from making these edits to ensure information '.
|
|
'remains consistent across both systems.')),
|
|
$this->newOption('account.minimum-password-length', 'int', 8)
|
|
->setSummary(pht('Minimum password length.'))
|
|
->setDescription(
|
|
pht(
|
|
'When users set or reset a password, it must have at least this '.
|
|
'many characters.')),
|
|
);
|
|
}
|
|
|
|
}
|