summaryrefslogtreecommitdiffstats
path: root/templates/admin/auth
diff options
context:
space:
mode:
Diffstat (limited to '')
-rw-r--r--templates/admin/auth/edit.tmpl464
-rw-r--r--templates/admin/auth/list.tmpl38
-rw-r--r--templates/admin/auth/new.tmpl122
-rw-r--r--templates/admin/auth/source/ldap.tmpl145
-rw-r--r--templates/admin/auth/source/oauth.tmpl109
-rw-r--r--templates/admin/auth/source/smtp.tmpl59
-rw-r--r--templates/admin/auth/source/sspi.tmpl43
7 files changed, 980 insertions, 0 deletions
diff --git a/templates/admin/auth/edit.tmpl b/templates/admin/auth/edit.tmpl
new file mode 100644
index 0000000..a8b2049
--- /dev/null
+++ b/templates/admin/auth/edit.tmpl
@@ -0,0 +1,464 @@
+{{template "admin/layout_head" (dict "ctxData" . "pageClass" "admin edit authentication")}}
+ <div class="admin-setting-content">
+ <h4 class="ui top attached header">
+ {{ctx.Locale.Tr "admin.auths.edit"}}
+ </h4>
+ <div class="ui attached segment">
+ <form class="ui form" action="{{.Link}}" method="post">
+ {{template "base/disable_form_autofill"}}
+ {{.CsrfTokenHtml}}
+ <input type="hidden" name="id" value="{{.Source.ID}}">
+ <div class="inline field">
+ <label>{{ctx.Locale.Tr "admin.auths.auth_type"}}</label>
+ <input type="hidden" id="auth_type" name="type" value="{{.Source.Type.Int}}">
+ <span>{{.Source.TypeName}}</span>
+ </div>
+ <div class="required inline field {{if .Err_Name}}error{{end}}">
+ <label for="auth_name">{{ctx.Locale.Tr "admin.auths.auth_name"}}</label>
+ <input id="auth_name" name="name" value="{{.Source.Name}}" autofocus required>
+ </div>
+
+ <!-- LDAP and DLDAP -->
+ {{if or .Source.IsLDAP .Source.IsDLDAP}}
+ {{$cfg:=.Source.Cfg}}
+ <div class="inline required field {{if .Err_SecurityProtocol}}error{{end}}">
+ <label>{{ctx.Locale.Tr "admin.auths.security_protocol"}}</label>
+ <div class="ui selection security-protocol dropdown">
+ <input type="hidden" id="security_protocol" name="security_protocol" value="{{$cfg.SecurityProtocol.Int}}">
+ <div class="text">{{$cfg.SecurityProtocolName}}</div>
+ {{svg "octicon-triangle-down" 14 "dropdown icon"}}
+ <div class="menu">
+ {{range .SecurityProtocols}}
+ <div class="item" data-value="{{.Type.Int}}">{{.Name}}</div>
+ {{end}}
+ </div>
+ </div>
+ </div>
+ <div class="required field">
+ <label for="host">{{ctx.Locale.Tr "admin.auths.host"}}</label>
+ <input id="host" name="host" value="{{$cfg.Host}}" placeholder="mydomain.com" required>
+ </div>
+ <div class="required field">
+ <label for="port">{{ctx.Locale.Tr "admin.auths.port"}}</label>
+ <input id="port" name="port" value="{{$cfg.Port}}" placeholder="636" required>
+ </div>
+ <div class="has-tls inline field {{if not .HasTLS}}tw-hidden{{end}}">
+ <div class="ui checkbox">
+ <label><strong>{{ctx.Locale.Tr "admin.auths.skip_tls_verify"}}</strong></label>
+ <input name="skip_verify" type="checkbox" {{if .Source.SkipVerify}}checked{{end}}>
+ </div>
+ </div>
+ {{if .Source.IsLDAP}}
+ <div class="field">
+ <label for="bind_dn">{{ctx.Locale.Tr "admin.auths.bind_dn"}}</label>
+ <input id="bind_dn" name="bind_dn" value="{{$cfg.BindDN}}" placeholder="cn=Search,dc=mydomain,dc=com">
+ </div>
+ <div class="field">
+ <label for="bind_password">{{ctx.Locale.Tr "admin.auths.bind_password"}}</label>
+ <input id="bind_password" name="bind_password" type="password" value="{{$cfg.BindPassword}}">
+ </div>
+ {{end}}
+ <div class="{{if .Source.IsLDAP}}required{{end}} field">
+ <label for="user_base">{{ctx.Locale.Tr "admin.auths.user_base"}}</label>
+ <input id="user_base" name="user_base" value="{{$cfg.UserBase}}" placeholder="ou=Users,dc=mydomain,dc=com" {{if .Source.IsLDAP}}required{{end}}>
+ </div>
+ {{if .Source.IsDLDAP}}
+ <div class="required field">
+ <label for="user_dn">{{ctx.Locale.Tr "admin.auths.user_dn"}}</label>
+ <input id="user_dn" name="user_dn" value="{{$cfg.UserDN}}" placeholder="uid=%s,ou=Users,dc=mydomain,dc=com" required>
+ </div>
+ {{end}}
+ <div class="required field">
+ <label for="filter">{{ctx.Locale.Tr "admin.auths.filter"}}</label>
+ <input id="filter" name="filter" value="{{$cfg.Filter}}" placeholder="(&(objectClass=posixAccount)(|(uid=%[1]s)(mail=%[1]s)))" required>
+ </div>
+ <div class="field">
+ <label for="admin_filter">{{ctx.Locale.Tr "admin.auths.admin_filter"}}</label>
+ <input id="admin_filter" name="admin_filter" value="{{$cfg.AdminFilter}}">
+ </div>
+ <div class="field">
+ <label for="restricted_filter">{{ctx.Locale.Tr "admin.auths.restricted_filter"}}</label>
+ <input id="restricted_filter" name="restricted_filter" value="{{$cfg.RestrictedFilter}}">
+ <p class="help">{{ctx.Locale.Tr "admin.auths.restricted_filter_helper"}}</p>
+ </div>
+ <div class="field">
+ <label for="attribute_username">{{ctx.Locale.Tr "admin.auths.attribute_username"}}</label>
+ <input id="attribute_username" name="attribute_username" value="{{$cfg.AttributeUsername}}" placeholder="{{ctx.Locale.Tr "admin.auths.attribute_username_placeholder"}}">
+ </div>
+ <div class="field">
+ <label for="attribute_name">{{ctx.Locale.Tr "admin.auths.attribute_name"}}</label>
+ <input id="attribute_name" name="attribute_name" value="{{$cfg.AttributeName}}">
+ </div>
+ <div class="field">
+ <label for="attribute_surname">{{ctx.Locale.Tr "admin.auths.attribute_surname"}}</label>
+ <input id="attribute_surname" name="attribute_surname" value="{{$cfg.AttributeSurname}}">
+ </div>
+ <div class="required field">
+ <label for="attribute_mail">{{ctx.Locale.Tr "admin.auths.attribute_mail"}}</label>
+ <input id="attribute_mail" name="attribute_mail" value="{{$cfg.AttributeMail}}" placeholder="mail" required>
+ </div>
+ <div class="field">
+ <label for="default_domain_name">{{ctx.Locale.Tr "admin.auths.default_domain_name"}}</label>
+ <input id="default_domain_name" name="default_domain_name" value="{{$cfg.DefaultDomainName}}" placeholder="localhost.local" >
+ </div>
+ <div class="field">
+ <label for="attribute_ssh_public_key">{{ctx.Locale.Tr "admin.auths.attribute_ssh_public_key"}}</label>
+ <input id="attribute_ssh_public_key" name="attribute_ssh_public_key" value="{{$cfg.AttributeSSHPublicKey}}" placeholder="SshPublicKey">
+ </div>
+ <div class="field">
+ <label for="attribute_avatar">{{ctx.Locale.Tr "admin.auths.attribute_avatar"}}</label>
+ <input id="attribute_avatar" name="attribute_avatar" value="{{$cfg.AttributeAvatar}}" placeholder="jpegPhoto">
+ </div>
+
+ <!-- ldap group begin -->
+ <div class="inline field">
+ <div class="ui checkbox">
+ <label><strong>{{ctx.Locale.Tr "admin.auths.enable_ldap_groups"}}</strong></label>
+ <input type="checkbox" name="groups_enabled" class="js-ldap-group-toggle" {{if $cfg.GroupsEnabled}}checked{{end}}>
+ </div>
+ </div>
+ <div id="ldap-group-options" class="ui segment secondary {{if not $cfg.GroupsEnabled}}tw-hidden{{end}}">
+ <div class="field">
+ <label>{{ctx.Locale.Tr "admin.auths.group_search_base"}}</label>
+ <input name="group_dn" value="{{$cfg.GroupDN}}" placeholder="ou=group,dc=mydomain,dc=com">
+ </div>
+ <div class="field">
+ <label>{{ctx.Locale.Tr "admin.auths.group_attribute_list_users"}}</label>
+ <input name="group_member_uid" value="{{$cfg.GroupMemberUID}}" placeholder="memberUid">
+ </div>
+ <div class="field">
+ <label>{{ctx.Locale.Tr "admin.auths.user_attribute_in_group"}}</label>
+ <input name="user_uid" value="{{$cfg.UserUID}}" placeholder="uid">
+ </div>
+ <div class="field">
+ <label>{{ctx.Locale.Tr "admin.auths.verify_group_membership"}}</label>
+ <input name="group_filter" value="{{$cfg.GroupFilter}}" placeholder="(|(cn=gitea_users)(cn=admins))">
+ </div>
+ <div class="field">
+ <label>{{ctx.Locale.Tr "admin.auths.map_group_to_team"}}</label>
+ <textarea name="group_team_map" rows="5" placeholder='{"cn=my-group,cn=groups,dc=example,dc=org": {"MyForgejoOrganization": ["MyForgejoTeam1", "MyForgejoTeam2"]}}'>{{$cfg.GroupTeamMap}}</textarea>
+ </div>
+ <div class="ui checkbox">
+ <label>{{ctx.Locale.Tr "admin.auths.map_group_to_team_removal"}}</label>
+ <input name="group_team_map_removal" type="checkbox" {{if $cfg.GroupTeamMapRemoval}}checked{{end}}>
+ </div>
+ </div>
+ <!-- ldap group end -->
+
+ {{if .Source.IsLDAP}}
+ <div class="inline field">
+ <div class="ui checkbox">
+ <label for="use_paged_search"><strong>{{ctx.Locale.Tr "admin.auths.use_paged_search"}}</strong></label>
+ <input id="use_paged_search" name="use_paged_search" type="checkbox" {{if $cfg.UsePagedSearch}}checked{{end}}>
+ </div>
+ </div>
+ <div class="field required search-page-size{{if not $cfg.UsePagedSearch}} tw-hidden{{end}}">
+ <label for="search_page_size">{{ctx.Locale.Tr "admin.auths.search_page_size"}}</label>
+ <input id="search_page_size" name="search_page_size" value="{{if $cfg.UsePagedSearch}}{{$cfg.SearchPageSize}}{{end}}">
+ </div>
+ <div class="inline field">
+ <div class="ui checkbox">
+ <label><strong>{{ctx.Locale.Tr "admin.auths.attributes_in_bind"}}</strong></label>
+ <input name="attributes_in_bind" type="checkbox" {{if $cfg.AttributesInBind}}checked{{end}}>
+ </div>
+ </div>
+ {{end}}
+ <div class="optional field">
+ <div class="ui checkbox">
+ <label for="skip_local_two_fa"><strong>{{ctx.Locale.Tr "admin.auths.skip_local_two_fa"}}</strong></label>
+ <input id="skip_local_two_fa" name="skip_local_two_fa" type="checkbox" {{if $cfg.SkipLocalTwoFA}}checked{{end}}>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.skip_local_two_fa_helper"}}</p>
+ </div>
+ </div>
+ <div class="inline field">
+ <div class="ui checkbox">
+ <label for="allow_deactivate_all"><strong>{{ctx.Locale.Tr "admin.auths.allow_deactivate_all"}}</strong></label>
+ <input id="allow_deactivate_all" name="allow_deactivate_all" type="checkbox" {{if $cfg.AllowDeactivateAll}}checked{{end}}>
+ </div>
+ </div>
+ {{end}}
+
+ <!-- SMTP -->
+ {{if .Source.IsSMTP}}
+ {{$cfg:=.Source.Cfg}}
+ <div class="inline required field">
+ <label>{{ctx.Locale.Tr "admin.auths.smtp_auth"}}</label>
+ <div class="ui selection type dropdown">
+ <input type="hidden" id="smtp_auth" name="smtp_auth" value="{{$cfg.Auth}}" required>
+ <div class="text">{{$cfg.Auth}}</div>
+ {{svg "octicon-triangle-down" 14 "dropdown icon"}}
+ <div class="menu">
+ {{range .SMTPAuths}}
+ <div class="item" data-value="{{.}}">{{.}}</div>
+ {{end}}
+ </div>
+ </div>
+ </div>
+ <div class="required field">
+ <label for="smtp_host">{{ctx.Locale.Tr "admin.auths.smtphost"}}</label>
+ <input id="smtp_host" name="smtp_host" value="{{$cfg.Host}}" required>
+ </div>
+ <div class="required field">
+ <label for="smtp_port">{{ctx.Locale.Tr "admin.auths.smtpport"}}</label>
+ <input id="smtp_port" name="smtp_port" value="{{$cfg.Port}}" required>
+ </div>
+ <div class="field">
+ <div class="ui checkbox">
+ <label for="force_smtps"><strong>{{ctx.Locale.Tr "admin.auths.force_smtps"}}</strong></label>
+ <input id="force_smtps" name="force_smtps" type="checkbox" {{if $cfg.ForceSMTPS}}checked{{end}}>
+ </div>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.force_smtps_helper"}}</p>
+ </div>
+ <div class="has-tls inline field {{if not .HasTLS}}tw-hidden{{end}}">
+ <div class="ui checkbox">
+ <label><strong>{{ctx.Locale.Tr "admin.auths.skip_tls_verify"}}</strong></label>
+ <input name="skip_verify" type="checkbox" {{if $cfg.SkipVerify}}checked{{end}}>
+ </div>
+ </div>
+ <div class="field">
+ <label for="helo_hostname">{{ctx.Locale.Tr "admin.auths.helo_hostname"}}</label>
+ <input id="helo_hostname" name="helo_hostname" value="{{$cfg.HeloHostname}}">
+ <p class="help">{{ctx.Locale.Tr "admin.auths.helo_hostname_helper"}}</p>
+ </div>
+ <div class="inline field">
+ <div class="ui checkbox">
+ <label for="disable_helo"><strong>{{ctx.Locale.Tr "admin.auths.disable_helo"}}</strong></label>
+ <input id="disable_helo" name="disable_helo" type="checkbox" {{if $cfg.DisableHelo}}checked{{end}}>
+ </div>
+ </div>
+ <div class="field">
+ <label for="allowed_domains">{{ctx.Locale.Tr "admin.auths.allowed_domains"}}</label>
+ <input id="allowed_domains" name="allowed_domains" value="{{$cfg.AllowedDomains}}">
+ <p class="help">{{ctx.Locale.Tr "admin.auths.allowed_domains_helper"}}</p>
+ </div>
+ <div class="optional field">
+ <div class="ui checkbox">
+ <label for="skip_local_two_fa"><strong>{{ctx.Locale.Tr "admin.auths.skip_local_two_fa"}}</strong></label>
+ <input id="skip_local_two_fa" name="skip_local_two_fa" type="checkbox" {{if $cfg.SkipLocalTwoFA}}checked{{end}}>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.skip_local_two_fa_helper"}}</p>
+ </div>
+ </div>
+ {{end}}
+
+ <!-- PAM -->
+ {{if .Source.IsPAM}}
+ {{$cfg:=.Source.Cfg}}
+ <div class="required field">
+ <label for="pam_service_name">{{ctx.Locale.Tr "admin.auths.pam_service_name"}}</label>
+ <input id="pam_service_name" name="pam_service_name" value="{{$cfg.ServiceName}}" required>
+ </div>
+ <div class="field">
+ <label for="pam_email_domain">{{ctx.Locale.Tr "admin.auths.pam_email_domain"}}</label>
+ <input id="pam_email_domain" name="pam_email_domain" value="{{$cfg.EmailDomain}}">
+ </div>
+ <div class="optional field">
+ <div class="ui checkbox">
+ <label for="skip_local_two_fa"><strong>{{ctx.Locale.Tr "admin.auths.skip_local_two_fa"}}</strong></label>
+ <input id="skip_local_two_fa" name="skip_local_two_fa" type="checkbox" {{if $cfg.SkipLocalTwoFA}}checked{{end}}>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.skip_local_two_fa_helper"}}</p>
+ </div>
+ </div>
+ {{end}}
+
+ <!-- OAuth2 -->
+ {{if .Source.IsOAuth2}}
+ {{$cfg:=.Source.Cfg}}
+ <div class="inline required field">
+ <label>{{ctx.Locale.Tr "admin.auths.oauth2_provider"}}</label>
+ <div class="ui selection type dropdown">
+ <input type="hidden" id="oauth2_provider" name="oauth2_provider" value="{{$cfg.Provider}}" required>
+ <div class="text">{{.CurrentOAuth2Provider.DisplayName}}</div>
+ {{svg "octicon-triangle-down" 14 "dropdown icon"}}
+ <div class="menu">
+ {{range .OAuth2Providers}}
+ <div class="item" data-value="{{.Name}}">{{.DisplayName}}</div>
+ {{end}}
+ </div>
+ </div>
+ </div>
+ <div class="required field">
+ <label for="oauth2_key">{{ctx.Locale.Tr "admin.auths.oauth2_clientID"}}</label>
+ <input id="oauth2_key" name="oauth2_key" value="{{$cfg.ClientID}}" required>
+ </div>
+ <div class="required field">
+ <label for="oauth2_secret">{{ctx.Locale.Tr "admin.auths.oauth2_clientSecret"}}</label>
+ <input id="oauth2_secret" name="oauth2_secret" value="{{$cfg.ClientSecret}}" required>
+ </div>
+ <div class="optional field">
+ <label for="oauth2_icon_url">{{ctx.Locale.Tr "admin.auths.oauth2_icon_url"}}</label>
+ <input id="oauth2_icon_url" name="oauth2_icon_url" value="{{$cfg.IconURL}}">
+ </div>
+ <div class="open_id_connect_auto_discovery_url required field">
+ <label for="open_id_connect_auto_discovery_url">{{ctx.Locale.Tr "admin.auths.openIdConnectAutoDiscoveryURL"}}</label>
+ <input id="open_id_connect_auto_discovery_url" name="open_id_connect_auto_discovery_url" value="{{$cfg.OpenIDConnectAutoDiscoveryURL}}">
+ </div>
+ <div class="optional field">
+ <div class="ui checkbox">
+ <label for="skip_local_two_fa"><strong>{{ctx.Locale.Tr "admin.auths.skip_local_two_fa"}}</strong></label>
+ <input id="skip_local_two_fa" name="skip_local_two_fa" type="checkbox" {{if $cfg.SkipLocalTwoFA}}checked{{end}}>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.skip_local_two_fa_helper"}}</p>
+ </div>
+ </div>
+ <div class="oauth2_use_custom_url inline field">
+ <div class="ui checkbox">
+ <label><strong>{{ctx.Locale.Tr "admin.auths.oauth2_use_custom_url"}}</strong></label>
+ <input id="oauth2_use_custom_url" name="oauth2_use_custom_url" type="checkbox" {{if $cfg.CustomURLMapping}}checked{{end}}>
+ </div>
+ </div>
+ <div class="oauth2_use_custom_url_field oauth2_auth_url required field">
+ <label for="oauth2_auth_url">{{ctx.Locale.Tr "admin.auths.oauth2_authURL"}}</label>
+ <input id="oauth2_auth_url" name="oauth2_auth_url" value="{{if $cfg.CustomURLMapping}}{{$cfg.CustomURLMapping.AuthURL}}{{end}}">
+ </div>
+ <div class="oauth2_use_custom_url_field oauth2_token_url required field">
+ <label for="oauth2_token_url">{{ctx.Locale.Tr "admin.auths.oauth2_tokenURL"}}</label>
+ <input id="oauth2_token_url" name="oauth2_token_url" value="{{if $cfg.CustomURLMapping}}{{$cfg.CustomURLMapping.TokenURL}}{{end}}">
+ </div>
+ <div class="oauth2_use_custom_url_field oauth2_profile_url required field">
+ <label for="oauth2_profile_url">{{ctx.Locale.Tr "admin.auths.oauth2_profileURL"}}</label>
+ <input id="oauth2_profile_url" name="oauth2_profile_url" value="{{if $cfg.CustomURLMapping}}{{$cfg.CustomURLMapping.ProfileURL}}{{end}}">
+ </div>
+ <div class="oauth2_use_custom_url_field oauth2_email_url required field">
+ <label for="oauth2_email_url">{{ctx.Locale.Tr "admin.auths.oauth2_emailURL"}}</label>
+ <input id="oauth2_email_url" name="oauth2_email_url" value="{{if $cfg.CustomURLMapping}}{{$cfg.CustomURLMapping.EmailURL}}{{end}}">
+ </div>
+ <div class="oauth2_use_custom_url_field oauth2_tenant required field">
+ <label for="oauth2_tenant">{{ctx.Locale.Tr "admin.auths.oauth2_tenant"}}</label>
+ <input id="oauth2_tenant" name="oauth2_tenant" value="{{if $cfg.CustomURLMapping}}{{$cfg.CustomURLMapping.Tenant}}{{end}}">
+ </div>
+
+ {{range .OAuth2Providers}}{{if .CustomURLSettings}}
+ <input id="{{.Name}}_customURLSettings" type="hidden" data-required="{{.CustomURLSettings.Required}}" data-available="true">
+ <input id="{{.Name}}_token_url" value="{{.CustomURLSettings.TokenURL.Value}}" data-available="{{.CustomURLSettings.TokenURL.Available}}" data-required="{{.CustomURLSettings.TokenURL.Required}}" type="hidden">
+ <input id="{{.Name}}_auth_url" value="{{.CustomURLSettings.AuthURL.Value}}" data-available="{{.CustomURLSettings.AuthURL.Available}}" data-required="{{.CustomURLSettings.AuthURL.Required}}" type="hidden">
+ <input id="{{.Name}}_profile_url" value="{{.CustomURLSettings.ProfileURL.Value}}" data-available="{{.CustomURLSettings.ProfileURL.Available}}" data-required="{{.CustomURLSettings.ProfileURL.Required}}" type="hidden">
+ <input id="{{.Name}}_email_url" value="{{.CustomURLSettings.EmailURL.Value}}" data-available="{{.CustomURLSettings.EmailURL.Available}}" data-required="{{.CustomURLSettings.EmailURL.Required}}" type="hidden">
+ <input id="{{.Name}}_tenant" value="{{.CustomURLSettings.Tenant.Value}}" data-available="{{.CustomURLSettings.Tenant.Available}}" data-required="{{.CustomURLSettings.Tenant.Required}}" type="hidden">
+ {{end}}{{end}}
+
+ <div class="field">
+ <label for="oauth2_scopes">{{ctx.Locale.Tr "admin.auths.oauth2_scopes"}}</label>
+ <input id="oauth2_scopes" name="oauth2_scopes" value="{{if $cfg.Scopes}}{{StringUtils.Join $cfg.Scopes ","}}{{end}}">
+ </div>
+ <div class="field">
+ <label for="oauth2_required_claim_name">{{ctx.Locale.Tr "admin.auths.oauth2_required_claim_name"}}</label>
+ <input id="oauth2_required_claim_name" name="oauth2_required_claim_name" value="{{$cfg.RequiredClaimName}}">
+ <p class="help">{{ctx.Locale.Tr "admin.auths.oauth2_required_claim_name_helper"}}</p>
+ </div>
+ <div class="field">
+ <label for="oauth2_required_claim_value">{{ctx.Locale.Tr "admin.auths.oauth2_required_claim_value"}}</label>
+ <input id="oauth2_required_claim_value" name="oauth2_required_claim_value" value="{{$cfg.RequiredClaimValue}}">
+ <p class="help">{{ctx.Locale.Tr "admin.auths.oauth2_required_claim_value_helper"}}</p>
+ </div>
+ <div class="field">
+ <label for="oauth2_group_claim_name">{{ctx.Locale.Tr "admin.auths.oauth2_group_claim_name"}}</label>
+ <input id="oauth2_group_claim_name" name="oauth2_group_claim_name" value="{{$cfg.GroupClaimName}}">
+ </div>
+ <div class="field">
+ <label for="oauth2_admin_group">{{ctx.Locale.Tr "admin.auths.oauth2_admin_group"}}</label>
+ <input id="oauth2_admin_group" name="oauth2_admin_group" value="{{$cfg.AdminGroup}}">
+ </div>
+ <div class="field">
+ <label for="oauth2_restricted_group">{{ctx.Locale.Tr "admin.auths.oauth2_restricted_group"}}</label>
+ <input id="oauth2_restricted_group" name="oauth2_restricted_group" value="{{$cfg.RestrictedGroup}}">
+ </div>
+ <div class="field">
+ <label>{{ctx.Locale.Tr "admin.auths.oauth2_map_group_to_team"}}</label>
+ <textarea name="oauth2_group_team_map" rows="5" placeholder='{"Developer": {"MyForgejoOrganization": ["MyForgejoTeam1", "MyForgejoTeam2"]}}'>{{$cfg.GroupTeamMap}}</textarea>
+ </div>
+ <div class="ui checkbox">
+ <label>{{ctx.Locale.Tr "admin.auths.oauth2_map_group_to_team_removal"}}</label>
+ <input name="oauth2_group_team_map_removal" type="checkbox" {{if $cfg.GroupTeamMapRemoval}}checked{{end}}>
+ </div>
+ {{end}}
+
+ <!-- SSPI -->
+ {{if .Source.IsSSPI}}
+ {{$cfg:=.Source.Cfg}}
+ <div class="field">
+ <div class="ui checkbox">
+ <label for="sspi_auto_create_users"><strong>{{ctx.Locale.Tr "admin.auths.sspi_auto_create_users"}}</strong></label>
+ <input id="sspi_auto_create_users" name="sspi_auto_create_users" class="sspi-auto-create-users" type="checkbox" {{if $cfg.AutoCreateUsers}}checked{{end}}>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.sspi_auto_create_users_helper"}}</p>
+ </div>
+ </div>
+ <div class="field">
+ <div class="ui checkbox">
+ <label for="sspi_auto_activate_users"><strong>{{ctx.Locale.Tr "admin.auths.sspi_auto_activate_users"}}</strong></label>
+ <input id="sspi_auto_activate_users" name="sspi_auto_activate_users" class="sspi-auto-activate-users" type="checkbox" {{if $cfg.AutoActivateUsers}}checked{{end}}>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.sspi_auto_activate_users_helper"}}</p>
+ </div>
+ </div>
+ <div class="field">
+ <div class="ui checkbox">
+ <label for="sspi_strip_domain_names"><strong>{{ctx.Locale.Tr "admin.auths.sspi_strip_domain_names"}}</strong></label>
+ <input id="sspi_strip_domain_names" name="sspi_strip_domain_names" class="sspi-strip-domain-names" type="checkbox" {{if $cfg.StripDomainNames}}checked{{end}}>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.sspi_strip_domain_names_helper"}}</p>
+ </div>
+ </div>
+ <div class="required field">
+ <label for="sspi_separator_replacement">{{ctx.Locale.Tr "admin.auths.sspi_separator_replacement"}}</label>
+ <input id="sspi_separator_replacement" name="sspi_separator_replacement" value="{{$cfg.SeparatorReplacement}}" required>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.sspi_separator_replacement_helper"}}</p>
+ </div>
+ <div class="field">
+ <label for="sspi_default_language">{{ctx.Locale.Tr "admin.auths.sspi_default_language"}}</label>
+ <div class="ui language selection dropdown" id="sspi_default_language">
+ <input name="sspi_default_language" type="hidden" value="{{$cfg.DefaultLanguage}}">
+ {{svg "octicon-triangle-down" 14 "dropdown icon"}}
+ <div class="text">{{range .AllLangs}}{{if eq $cfg.DefaultLanguage .Lang}}{{.Name}}{{end}}{{end}}</div>
+ <div class="menu">
+ <div class="item{{if not $.SSPIDefaultLanguage}} active selected{{end}}" data-value="">-</div>
+ {{range .AllLangs}}
+ <div class="item{{if eq $cfg.DefaultLanguage .Lang}} active selected{{end}}" data-value="{{.Lang}}">{{.Name}}</div>
+ {{end}}
+ </div>
+ </div>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.sspi_default_language_helper"}}</p>
+ </div>
+ {{end}}
+ {{if (or .Source.IsLDAP .Source.IsOAuth2)}}
+ <div class="inline field">
+ <div class="ui checkbox">
+ <label><strong>{{ctx.Locale.Tr "admin.auths.syncenabled"}}</strong></label>
+ <input name="is_sync_enabled" type="checkbox" {{if .Source.IsSyncEnabled}}checked{{end}}>
+ </div>
+ </div>
+ {{end}}
+ <div class="inline field">
+ <div class="ui checkbox">
+ <label><strong>{{ctx.Locale.Tr "admin.auths.activated"}}</strong></label>
+ <input name="is_active" type="checkbox" {{if .Source.IsActive}}checked{{end}}>
+ </div>
+ </div>
+
+ <div class="field">
+ <button class="ui primary button">{{ctx.Locale.Tr "admin.auths.update"}}</button>
+ <button class="ui red button delete-button" data-url="{{$.Link}}/delete" data-id="{{.Source.ID}}">{{ctx.Locale.Tr "admin.auths.delete"}}</button>
+ </div>
+ </form>
+ </div>
+
+ <h4 class="ui top attached header">
+ {{ctx.Locale.Tr "admin.auths.tips"}}
+ </h4>
+ <div class="ui attached segment">
+ <h5>{{ctx.Locale.Tr "admin.auths.tips.gmail_settings"}}</h5>
+ <p>Host: smtp.gmail.com, Port: 587, Enable TLS Encryption: true</p>
+
+ <h5 class="oauth2">{{ctx.Locale.Tr "admin.auths.tips.oauth2.general"}}:</h5>
+ <p class="oauth2">{{ctx.Locale.Tr "admin.auths.tips.oauth2.general.tip"}} <b id="oauth2-callback-url"></b></p>
+ </div>
+ </div>
+
+<div class="ui g-modal-confirm delete modal">
+ <div class="header">
+ {{svg "octicon-trash"}}
+ {{ctx.Locale.Tr "admin.auths.delete_auth_title"}}
+ </div>
+ <div class="content">
+ <p>{{ctx.Locale.Tr "admin.auths.delete_auth_desc"}}</p>
+ </div>
+ {{template "base/modal_actions_confirm" .}}
+</div>
+
+{{template "admin/layout_footer" .}}
diff --git a/templates/admin/auth/list.tmpl b/templates/admin/auth/list.tmpl
new file mode 100644
index 0000000..6483ec8
--- /dev/null
+++ b/templates/admin/auth/list.tmpl
@@ -0,0 +1,38 @@
+{{template "admin/layout_head" (dict "ctxData" . "pageClass" "admin authentication")}}
+ <div class="admin-setting-content">
+ <h4 class="ui top attached header">
+ {{ctx.Locale.Tr "admin.auths.auth_manage_panel"}} ({{ctx.Locale.Tr "admin.total" .Total}})
+ <div class="ui right">
+ <a class="ui primary tiny button" href="{{AppSubUrl}}/admin/auths/new">{{ctx.Locale.Tr "admin.auths.new"}}</a>
+ </div>
+ </h4>
+ <div class="ui attached table segment">
+ <table class="ui very basic striped table unstackable">
+ <thead>
+ <tr>
+ <th>ID</th>
+ <th>{{ctx.Locale.Tr "admin.auths.name"}}</th>
+ <th>{{ctx.Locale.Tr "admin.auths.type"}}</th>
+ <th>{{ctx.Locale.Tr "admin.auths.enabled"}}</th>
+ <th>{{ctx.Locale.Tr "admin.auths.updated"}}</th>
+ <th>{{ctx.Locale.Tr "admin.users.created"}}</th>
+ <th>{{ctx.Locale.Tr "admin.users.edit"}}</th>
+ </tr>
+ </thead>
+ <tbody>
+ {{range .Sources}}
+ <tr>
+ <td>{{.ID}}</td>
+ <td><a href="{{AppSubUrl}}/admin/auths/{{.ID}}">{{.Name}}</a></td>
+ <td>{{.TypeName}}</td>
+ <td>{{if .IsActive}}{{svg "octicon-check"}}{{else}}{{svg "octicon-x"}}{{end}}</td>
+ <td>{{DateTime "short" .UpdatedUnix}}</td>
+ <td>{{DateTime "short" .CreatedUnix}}</td>
+ <td><a href="{{AppSubUrl}}/admin/auths/{{.ID}}">{{svg "octicon-pencil"}}</a></td>
+ </tr>
+ {{end}}
+ </tbody>
+ </table>
+ </div>
+ </div>
+{{template "admin/layout_footer" .}}
diff --git a/templates/admin/auth/new.tmpl b/templates/admin/auth/new.tmpl
new file mode 100644
index 0000000..47fa828
--- /dev/null
+++ b/templates/admin/auth/new.tmpl
@@ -0,0 +1,122 @@
+{{template "admin/layout_head" (dict "ctxData" . "pageClass" "admin new authentication")}}
+ <div class="admin-setting-content">
+ <h4 class="ui top attached header">
+ {{ctx.Locale.Tr "admin.auths.new"}}
+ </h4>
+ <div class="ui attached segment">
+ <form class="ui form" action="{{.Link}}" method="post">
+ {{template "base/disable_form_autofill"}}
+ {{.CsrfTokenHtml}}
+ <!-- Types and name -->
+ <div class="inline required field {{if .Err_Type}}error{{end}}">
+ <label>{{ctx.Locale.Tr "admin.auths.auth_type"}}</label>
+ <div class="ui selection type dropdown">
+ <input type="hidden" id="auth_type" name="type" value="{{.type}}">
+ <div class="text">{{.CurrentTypeName}}</div>
+ {{svg "octicon-triangle-down" 14 "dropdown icon"}}
+ <div class="menu">
+ {{range .AuthSources}}
+ <div class="item" data-value="{{.Type.Int}}">{{.Name}}</div>
+ {{end}}
+ </div>
+ </div>
+ </div>
+ <div class="required inline field {{if .Err_Name}}error{{end}}">
+ <label for="auth_name">{{ctx.Locale.Tr "admin.auths.auth_name"}}</label>
+ <input id="auth_name" name="name" value="{{.name}}" autofocus required>
+ </div>
+
+ <!-- LDAP and DLDAP -->
+ {{template "admin/auth/source/ldap" .}}
+
+ <!-- SMTP -->
+ {{template "admin/auth/source/smtp" .}}
+
+ <!-- PAM -->
+ <div class="pam required field {{if not (eq .type 4)}}tw-hidden{{end}}">
+ <label for="pam_service_name">{{ctx.Locale.Tr "admin.auths.pam_service_name"}}</label>
+ <input id="pam_service_name" name="pam_service_name" value="{{.pam_service_name}}">
+ <label for="pam_email_domain">{{ctx.Locale.Tr "admin.auths.pam_email_domain"}}</label>
+ <input id="pam_email_domain" name="pam_email_domain" value="{{.pam_email_domain}}">
+ </div>
+ <div class="pam optional field {{if not (eq .type 4)}}tw-hidden{{end}}">
+ <div class="ui checkbox">
+ <label for="skip_local_two_fa"><strong>{{ctx.Locale.Tr "admin.auths.skip_local_two_fa"}}</strong></label>
+ <input id="skip_local_two_fa" name="skip_local_two_fa" type="checkbox" {{if .skip_local_two_fa}}checked{{end}}>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.skip_local_two_fa_helper"}}</p>
+ </div>
+ </div>
+
+ <!-- OAuth2 -->
+ {{template "admin/auth/source/oauth" .}}
+
+ <!-- SSPI -->
+ {{template "admin/auth/source/sspi" .}}
+
+ <div class="ldap field">
+ <div class="ui checkbox">
+ <label><strong>{{ctx.Locale.Tr "admin.auths.attributes_in_bind"}}</strong></label>
+ <input name="attributes_in_bind" type="checkbox" {{if .attributes_in_bind}}checked{{end}}>
+ </div>
+ </div>
+ <div class="oauth2 ldap inline field {{if not (or (eq .type 2) (eq .type 6))}}tw-hidden{{end}}">
+ <div class="ui checkbox">
+ <label><strong>{{ctx.Locale.Tr "admin.auths.syncenabled"}}</strong></label>
+ <input name="is_sync_enabled" type="checkbox" {{if .is_sync_enabled}}checked{{end}}>
+ </div>
+ </div>
+ <div class="inline field">
+ <div class="ui checkbox">
+ <label><strong>{{ctx.Locale.Tr "admin.auths.activated"}}</strong></label>
+ <input name="is_active" type="checkbox" {{if .is_active}}checked{{end}}>
+ </div>
+ </div>
+
+ <div class="field">
+ <button class="ui primary button">{{ctx.Locale.Tr "admin.auths.new"}}</button>
+ </div>
+ </form>
+ </div>
+
+ <h4 class="ui top attached header">
+ {{ctx.Locale.Tr "admin.auths.tips"}}
+ </h4>
+ <div class="ui attached segment">
+ <h5>{{ctx.Locale.Tr "admin.auths.tips.gmail_settings"}}</h5>
+ <p>Host: smtp.gmail.com, Port: 587, Enable TLS Encryption: true</p>
+
+ <h5 class="oauth2">{{ctx.Locale.Tr "admin.auths.tips.oauth2.general"}}:</h5>
+ <p class="oauth2">{{ctx.Locale.Tr "admin.auths.tips.oauth2.general.tip"}} <b id="oauth2-callback-url"></b></p>
+
+ <h5 class="ui top attached header">{{ctx.Locale.Tr "admin.auths.tip.oauth2_provider"}}</h5>
+ <div class="ui attached segment">
+ <li>Bitbucket</li>
+ <span>{{ctx.Locale.Tr "admin.auths.tip.bitbucket" "https://bitbucket.org/account/user/{your-username}/oauth-consumers/new"}}</span>
+ <li>Dropbox</li>
+ <span>{{ctx.Locale.Tr "admin.auths.tip.dropbox" "https://www.dropbox.com/developers/apps"}}</span>
+ <li>Facebook</li>
+ <span>{{ctx.Locale.Tr "admin.auths.tip.facebook" "https://developers.facebook.com/apps"}}</span>
+ <li>GitHub</li>
+ <span>{{ctx.Locale.Tr "admin.auths.tip.github" "https://github.com/settings/applications/new"}}</span>
+ <li>GitLab</li>
+ <span>{{ctx.Locale.Tr "admin.auths.tip.gitlab_new" "https://gitlab.com/-/profile/applications"}}</span>
+ <li>Google</li>
+ <span>{{ctx.Locale.Tr "admin.auths.tip.google_plus" "https://console.developers.google.com/"}}</span>
+ <li>OpenID Connect</li>
+ <span>{{ctx.Locale.Tr "admin.auths.tip.openid_connect"}}</span>
+ <li>Twitter</li>
+ <span>{{ctx.Locale.Tr "admin.auths.tip.twitter" "https://dev.twitter.com/apps"}}</span>
+ <li>Discord</li>
+ <span>{{ctx.Locale.Tr "admin.auths.tip.discord" "https://discordapp.com/developers/applications/me"}}</span>
+ <li>Gitea</li>
+ <span>{{ctx.Locale.Tr "admin.auths.tip.gitea" "https://forgejo.org/docs/latest/user/oauth2-provider"}}</span>
+ <li>Nextcloud</li>
+ <span>{{ctx.Locale.Tr "admin.auths.tip.nextcloud"}}</span>
+ <li>Yandex</li>
+ <span>{{ctx.Locale.Tr "admin.auths.tip.yandex" "https://oauth.yandex.com/client/new"}}</span>
+ <li>Mastodon</li>
+ <span>{{ctx.Locale.Tr "admin.auths.tip.mastodon"}}</span>
+ </div>
+ </div>
+ </div>
+{{template "admin/layout_footer" .}}
diff --git a/templates/admin/auth/source/ldap.tmpl b/templates/admin/auth/source/ldap.tmpl
new file mode 100644
index 0000000..6cb6643
--- /dev/null
+++ b/templates/admin/auth/source/ldap.tmpl
@@ -0,0 +1,145 @@
+<div class="ldap dldap field {{if not (or (eq .type 2) (eq .type 5))}}tw-hidden{{end}}">
+ <div class="inline required field {{if .Err_SecurityProtocol}}error{{end}}">
+ <label>{{ctx.Locale.Tr "admin.auths.security_protocol"}}</label>
+ <div class="ui selection security-protocol dropdown">
+ <input type="hidden" id="security_protocol" name="security_protocol" value="{{.security_protocol}}">
+ <div class="text">{{.CurrentSecurityProtocol}}</div>
+ {{svg "octicon-triangle-down" 14 "dropdown icon"}}
+ <div class="menu">
+ {{range .SecurityProtocols}}
+ <div class="item" data-value="{{.Type.Int}}">{{.Name}}</div>
+ {{end}}
+ </div>
+ </div>
+ </div>
+ <div class="required field">
+ <label for="host">{{ctx.Locale.Tr "admin.auths.host"}}</label>
+ <input id="host" name="host" value="{{.host}}" placeholder="mydomain.com">
+ </div>
+ <div class="required field">
+ <label for="port">{{ctx.Locale.Tr "admin.auths.port"}}</label>
+ <input id="port" name="port" value="{{.port}}" placeholder="636">
+ </div>
+ <div class="has-tls inline field {{if not .HasTLS}}tw-hidden{{end}}">
+ <div class="ui checkbox">
+ <label><strong>{{ctx.Locale.Tr "admin.auths.skip_tls_verify"}}</strong></label>
+ <input name="skip_verify" type="checkbox" {{if .skip_verify}}checked{{end}}>
+ </div>
+ </div>
+ <div class="ldap field {{if not (eq .type 2)}}tw-hidden{{end}}">
+ <label for="bind_dn">{{ctx.Locale.Tr "admin.auths.bind_dn"}}</label>
+ <input id="bind_dn" name="bind_dn" value="{{.bind_dn}}" placeholder="cn=Search,dc=mydomain,dc=com">
+ </div>
+ <div class="ldap field {{if not (eq .type 2)}}tw-hidden{{end}}">
+ <label for="bind_password">{{ctx.Locale.Tr "admin.auths.bind_password"}}</label>
+ <input id="bind_password" name="bind_password" type="password" autocomplete="off" value="{{.bind_password}}">
+ </div>
+ <div class="binddnrequired {{if (eq .type 2)}}required{{end}} field">
+ <label for="user_base">{{ctx.Locale.Tr "admin.auths.user_base"}}</label>
+ <input id="user_base" name="user_base" value="{{.user_base}}" placeholder="ou=Users,dc=mydomain,dc=com">
+ </div>
+ <div class="dldap required field {{if not (eq .type 5)}}tw-hidden{{end}}">
+ <label for="user_dn">{{ctx.Locale.Tr "admin.auths.user_dn"}}</label>
+ <input id="user_dn" name="user_dn" value="{{.user_dn}}" placeholder="uid=%s,ou=Users,dc=mydomain,dc=com">
+ </div>
+ <div class="required field">
+ <label for="filter">{{ctx.Locale.Tr "admin.auths.filter"}}</label>
+ <input id="filter" name="filter" value="{{.filter}}" placeholder="(&(objectClass=posixAccount)(|(uid=%[1]s)(mail=%[1]s)))">
+ </div>
+ <div class="field">
+ <label for="admin_filter">{{ctx.Locale.Tr "admin.auths.admin_filter"}}</label>
+ <input id="admin_filter" name="admin_filter" value="{{.admin_filter}}">
+ </div>
+ <div class="field">
+ <label for="restricted_filter">{{ctx.Locale.Tr "admin.auths.restricted_filter"}}</label>
+ <input id="restricted_filter" name="restricted_filter" value="{{.restricted_filter}}">
+ <p class="help">{{ctx.Locale.Tr "admin.auths.restricted_filter_helper"}}</p>
+ </div>
+ <div class="field">
+ <label for="attribute_username">{{ctx.Locale.Tr "admin.auths.attribute_username"}}</label>
+ <input id="attribute_username" name="attribute_username" value="{{.attribute_username}}" placeholder="{{ctx.Locale.Tr "admin.auths.attribute_username_placeholder"}}">
+ </div>
+ <div class="field">
+ <label for="attribute_name">{{ctx.Locale.Tr "admin.auths.attribute_name"}}</label>
+ <input id="attribute_name" name="attribute_name" value="{{.attribute_name}}">
+ </div>
+ <div class="field">
+ <label for="attribute_surname">{{ctx.Locale.Tr "admin.auths.attribute_surname"}}</label>
+ <input id="attribute_surname" name="attribute_surname" value="{{.attribute_surname}}">
+ </div>
+ <div class="required field">
+ <label for="attribute_mail">{{ctx.Locale.Tr "admin.auths.attribute_mail"}}</label>
+ <input id="attribute_mail" name="attribute_mail" value="{{.attribute_mail}}" placeholder="mail">
+ </div>
+ <div class="field">
+ <label for="default_domain_name">{{ctx.Locale.Tr "admin.auths.default_domain_name"}}</label>
+ <input id="default_domain_name" name="default_domain_name" value="{{.default_domain_name}}" placeholder="localhost.local">
+ </div>
+ <div class="field">
+ <label for="attribute_ssh_public_key">{{ctx.Locale.Tr "admin.auths.attribute_ssh_public_key"}}</label>
+ <input id="attribute_ssh_public_key" name="attribute_ssh_public_key" value="{{.attribute_ssh_public_key}}" placeholder="SshPublicKey">
+ </div>
+ <div class="field">
+ <label for="attribute_avatar">{{ctx.Locale.Tr "admin.auths.attribute_avatar"}}</label>
+ <input id="attribute_avatar" name="attribute_avatar" value="{{.attribute_avatar}}" placeholder="jpegPhoto">
+ </div>
+
+ <!-- ldap group begin -->
+ <div class="inline field">
+ <div class="ui checkbox">
+ <label><strong>{{ctx.Locale.Tr "admin.auths.enable_ldap_groups"}}</strong></label>
+ <input type="checkbox" name="groups_enabled" class="js-ldap-group-toggle" {{if .groups_enabled}}checked{{end}}>
+ </div>
+ </div>
+ <div id="ldap-group-options" class="ui segment secondary">
+ <div class="field">
+ <label>{{ctx.Locale.Tr "admin.auths.group_search_base"}}</label>
+ <input name="group_dn" value="{{.group_dn}}" placeholder="ou=group,dc=mydomain,dc=com">
+ </div>
+ <div class="field">
+ <label>{{ctx.Locale.Tr "admin.auths.group_attribute_list_users"}}</label>
+ <input name="group_member_uid" value="{{.group_member_uid}}" placeholder="memberUid">
+ </div>
+ <div class="field">
+ <label>{{ctx.Locale.Tr "admin.auths.user_attribute_in_group"}}</label>
+ <input name="user_uid" value="{{.user_uid}}" placeholder="uid">
+ </div>
+ <div class="field">
+ <label>{{ctx.Locale.Tr "admin.auths.verify_group_membership"}}</label>
+ <input name="group_filter" value="{{.group_filter}}" placeholder="(|(cn=gitea_users)(cn=admins))">
+ </div>
+ <div class="field">
+ <label>{{ctx.Locale.Tr "admin.auths.map_group_to_team"}}</label>
+ <textarea name="group_team_map" rows="5" placeholder='{"cn=my-group,cn=groups,dc=example,dc=org": {"MyForgejoOrganization": ["MyForgejoTeam1", "MyForgejoTeam2"]}}'>{{.group_team_map}}</textarea>
+ </div>
+ <div class="ui checkbox">
+ <label>{{ctx.Locale.Tr "admin.auths.map_group_to_team_removal"}}</label>
+ <input name="group_team_map_removal" type="checkbox" {{if .group_team_map_removal}}checked{{end}}>
+ </div>
+ </div>
+ <!-- ldap group end -->
+
+ <div class="ldap inline field {{if not (eq .type 2)}}tw-hidden{{end}}">
+ <div class="ui checkbox">
+ <label for="use_paged_search"><strong>{{ctx.Locale.Tr "admin.auths.use_paged_search"}}</strong></label>
+ <input id="use_paged_search" name="use_paged_search" class="use-paged-search" type="checkbox" {{if .use_paged_search}}checked{{end}}>
+ </div>
+ </div>
+ <div class="ldap field search-page-size required {{if or (not (eq .type 2)) (not .use_paged_search)}}tw-hidden{{end}}">
+ <label for="search_page_size">{{ctx.Locale.Tr "admin.auths.search_page_size"}}</label>
+ <input id="search_page_size" name="search_page_size" value="{{.search_page_size}}">
+ </div>
+ <div class="optional field">
+ <div class="ui checkbox">
+ <label for="skip_local_two_fa"><strong>{{ctx.Locale.Tr "admin.auths.skip_local_two_fa"}}</strong></label>
+ <input id="skip_local_two_fa" name="skip_local_two_fa" type="checkbox" {{if .skip_local_two_fa}}checked{{end}}>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.skip_local_two_fa_helper"}}</p>
+ </div>
+ </div>
+ <div class="inline field">
+ <div class="ui checkbox">
+ <label for="allow_deactivate_all"><strong>{{ctx.Locale.Tr "admin.auths.allow_deactivate_all"}}</strong></label>
+ <input id="allow_deactivate_all" name="allow_deactivate_all" type="checkbox" {{if .allow_deactivate_all}}checked{{end}}>
+ </div>
+ </div>
+</div>
diff --git a/templates/admin/auth/source/oauth.tmpl b/templates/admin/auth/source/oauth.tmpl
new file mode 100644
index 0000000..0560cc8
--- /dev/null
+++ b/templates/admin/auth/source/oauth.tmpl
@@ -0,0 +1,109 @@
+<div class="oauth2 field {{if not (eq .type 6)}}tw-hidden{{end}}">
+ <div class="inline required field">
+ <label>{{ctx.Locale.Tr "admin.auths.oauth2_provider"}}</label>
+ <div class="ui selection type dropdown">
+ <input type="hidden" id="oauth2_provider" name="oauth2_provider" value="{{.oauth2_provider}}">
+ <div class="text">{{.oauth2_provider}}</div>
+ {{svg "octicon-triangle-down" 14 "dropdown icon"}}
+ <div class="menu">
+ {{range .OAuth2Providers}}
+ <div class="item" data-value="{{.Name}}">{{.DisplayName}}</div>
+ {{end}}
+ </div>
+ </div>
+ </div>
+ <div class="required field">
+ <label for="oauth2_key">{{ctx.Locale.Tr "admin.auths.oauth2_clientID"}}</label>
+ <input id="oauth2_key" name="oauth2_key" value="{{.oauth2_key}}">
+ </div>
+ <div class="required field">
+ <label for="oauth2_secret">{{ctx.Locale.Tr "admin.auths.oauth2_clientSecret"}}</label>
+ <input id="oauth2_secret" name="oauth2_secret" value="{{.oauth2_secret}}">
+ </div>
+ <div class="optional field">
+ <label for="oauth2_icon_url">{{ctx.Locale.Tr "admin.auths.oauth2_icon_url"}}</label>
+ <input id="oauth2_icon_url" name="oauth2_icon_url" value="{{.oauth2_icon_url}}">
+ </div>
+ <div class="open_id_connect_auto_discovery_url required field{{if .Err_DiscoveryURL}} error{{end}}">
+ <label for="open_id_connect_auto_discovery_url">{{ctx.Locale.Tr "admin.auths.openIdConnectAutoDiscoveryURL"}}</label>
+ <input id="open_id_connect_auto_discovery_url" name="open_id_connect_auto_discovery_url" value="{{.open_id_connect_auto_discovery_url}}">
+ </div>
+ <div class="optional field">
+ <div class="ui checkbox">
+ <label for="skip_local_two_fa"><strong>{{ctx.Locale.Tr "admin.auths.skip_local_two_fa"}}</strong></label>
+ <input id="skip_local_two_fa" name="skip_local_two_fa" type="checkbox" {{if .skip_local_two_fa}}checked{{end}}>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.skip_local_two_fa_helper"}}</p>
+ </div>
+ </div>
+
+ <div class="oauth2_use_custom_url inline field">
+ <div class="ui checkbox">
+ <label><strong>{{ctx.Locale.Tr "admin.auths.oauth2_use_custom_url"}}</strong></label>
+ <input id="oauth2_use_custom_url" name="oauth2_use_custom_url" type="checkbox">
+ </div>
+ </div>
+ <div class="oauth2_use_custom_url_field oauth2_auth_url required field">
+ <label for="oauth2_auth_url">{{ctx.Locale.Tr "admin.auths.oauth2_authURL"}}</label>
+ <input id="oauth2_auth_url" name="oauth2_auth_url" value="{{.oauth2_auth_url}}">
+ </div>
+ <div class="oauth2_use_custom_url_field oauth2_token_url required field">
+ <label for="oauth2_token_url">{{ctx.Locale.Tr "admin.auths.oauth2_tokenURL"}}</label>
+ <input id="oauth2_token_url" name="oauth2_token_url" value="{{.oauth2_token_url}}">
+ </div>
+ <div class="oauth2_use_custom_url_field oauth2_profile_url required field">
+ <label for="oauth2_profile_url">{{ctx.Locale.Tr "admin.auths.oauth2_profileURL"}}</label>
+ <input id="oauth2_profile_url" name="oauth2_profile_url" value="{{.oauth2_profile_url}}">
+ </div>
+ <div class="oauth2_use_custom_url_field oauth2_email_url required field">
+ <label for="oauth2_email_url">{{ctx.Locale.Tr "admin.auths.oauth2_emailURL"}}</label>
+ <input id="oauth2_email_url" name="oauth2_email_url" value="{{.oauth2_email_url}}">
+ </div>
+ <div class="oauth2_use_custom_url_field oauth2_tenant required field">
+ <label for="oauth2_tenant">{{ctx.Locale.Tr "admin.auths.oauth2_tenant"}}</label>
+ <input id="oauth2_tenant" name="oauth2_tenant" value="{{.oauth2_tenant}}">
+ </div>
+
+ {{range .OAuth2Providers}}{{if .CustomURLSettings}}
+ <input id="{{.Name}}_customURLSettings" type="hidden" data-required="{{.CustomURLSettings.Required}}" data-available="true">
+ <input id="{{.Name}}_token_url" value="{{.CustomURLSettings.TokenURL.Value}}" data-available="{{.CustomURLSettings.TokenURL.Available}}" data-required="{{.CustomURLSettings.TokenURL.Required}}" type="hidden">
+ <input id="{{.Name}}_auth_url" value="{{.CustomURLSettings.AuthURL.Value}}" data-available="{{.CustomURLSettings.AuthURL.Available}}" data-required="{{.CustomURLSettings.AuthURL.Required}}" type="hidden">
+ <input id="{{.Name}}_profile_url" value="{{.CustomURLSettings.ProfileURL.Value}}" data-available="{{.CustomURLSettings.ProfileURL.Available}}" data-required="{{.CustomURLSettings.ProfileURL.Required}}" type="hidden">
+ <input id="{{.Name}}_email_url" value="{{.CustomURLSettings.EmailURL.Value}}" data-available="{{.CustomURLSettings.EmailURL.Available}}" data-required="{{.CustomURLSettings.EmailURL.Required}}" type="hidden">
+ <input id="{{.Name}}_tenant" value="{{.CustomURLSettings.Tenant.Value}}" data-available="{{.CustomURLSettings.Tenant.Available}}" data-required="{{.CustomURLSettings.Tenant.Required}}" type="hidden">
+ {{end}}{{end}}
+
+ <div class="field">
+ <label for="oauth2_scopes">{{ctx.Locale.Tr "admin.auths.oauth2_scopes"}}</label>
+ <input id="oauth2_scopes" name="oauth2_scopes" value="{{.oauth2_scopes}}">
+ </div>
+ <div class="field">
+ <label for="oauth2_required_claim_name">{{ctx.Locale.Tr "admin.auths.oauth2_required_claim_name"}}</label>
+ <input id="oauth2_required_claim_name" name="oauth2_required_claim_name" value="{{.oauth2_required_claim_name}}">
+ <p class="help">{{ctx.Locale.Tr "admin.auths.oauth2_required_claim_name_helper"}}</p>
+ </div>
+ <div class="field">
+ <label for="oauth2_required_claim_value">{{ctx.Locale.Tr "admin.auths.oauth2_required_claim_value"}}</label>
+ <input id="oauth2_required_claim_value" name="oauth2_required_claim_value" value="{{.oauth2_required_claim_value}}">
+ <p class="help">{{ctx.Locale.Tr "admin.auths.oauth2_required_claim_value_helper"}}</p>
+ </div>
+ <div class="field">
+ <label for="oauth2_group_claim_name">{{ctx.Locale.Tr "admin.auths.oauth2_group_claim_name"}}</label>
+ <input id="oauth2_group_claim_name" name="oauth2_group_claim_name" value="{{.oauth2_group_claim_name}}">
+ </div>
+ <div class="field">
+ <label for="oauth2_admin_group">{{ctx.Locale.Tr "admin.auths.oauth2_admin_group"}}</label>
+ <input id="oauth2_admin_group" name="oauth2_admin_group" value="{{.oauth2_admin_group}}">
+ </div>
+ <div class="field">
+ <label for="oauth2_restricted_group">{{ctx.Locale.Tr "admin.auths.oauth2_restricted_group"}}</label>
+ <input id="oauth2_restricted_group" name="oauth2_restricted_group" value="{{.oauth2_restricted_group}}">
+ </div>
+ <div class="field">
+ <label>{{ctx.Locale.Tr "admin.auths.oauth2_map_group_to_team"}}</label>
+ <textarea name="oauth2_group_team_map" rows="5" placeholder='{"Developer": {"MyForgejoOrganization": ["MyForgejoTeam1", "MyForgejoTeam2"]}}'>{{.oauth2_group_team_map}}</textarea>
+ </div>
+ <div class="ui checkbox">
+ <label>{{ctx.Locale.Tr "admin.auths.oauth2_map_group_to_team_removal"}}</label>
+ <input name="oauth2_group_team_map_removal" type="checkbox" {{if .oauth2_group_team_map_removal}}checked{{end}}>
+ </div>
+</div>
diff --git a/templates/admin/auth/source/smtp.tmpl b/templates/admin/auth/source/smtp.tmpl
new file mode 100644
index 0000000..31195ac
--- /dev/null
+++ b/templates/admin/auth/source/smtp.tmpl
@@ -0,0 +1,59 @@
+<div class="smtp field {{if not (eq .type 3)}}tw-hidden{{end}}">
+ <div class="inline required field">
+ <label>{{ctx.Locale.Tr "admin.auths.smtp_auth"}}</label>
+ <div class="ui selection type dropdown">
+ <input type="hidden" id="smtp_auth" name="smtp_auth" value="{{.smtp_auth}}">
+ <div class="text">{{.smtp_auth}}</div>
+ {{svg "octicon-triangle-down" 14 "dropdown icon"}}
+ <div class="menu">
+ {{range .SMTPAuths}}
+ <div class="item" data-value="{{.}}">{{.}}</div>
+ {{end}}
+ </div>
+ </div>
+ </div>
+ <div class="required field">
+ <label for="smtp_host">{{ctx.Locale.Tr "admin.auths.smtphost"}}</label>
+ <input id="smtp_host" name="smtp_host" value="{{.smtp_host}}">
+ </div>
+ <div class="required field">
+ <label for="smtp_port">{{ctx.Locale.Tr "admin.auths.smtpport"}}</label>
+ <input id="smtp_port" name="smtp_port" value="{{.smtp_port}}">
+ </div>
+ <div class="inline field">
+ <div class="ui checkbox">
+ <label for="force_smtps"><strong>{{ctx.Locale.Tr "admin.auths.force_smtps"}}</strong></label>
+ <input id="force_smtps" name="force_smtps" type="checkbox" {{if .force_smtps}}checked{{end}}>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.force_smtps_helper"}}</p>
+ </div>
+ </div>
+ <div class="inline field">
+ <div class="ui checkbox">
+ <label><strong>{{ctx.Locale.Tr "admin.auths.skip_tls_verify"}}</strong></label>
+ <input name="skip_verify" type="checkbox" {{if .skip_verify}}checked{{end}}>
+ </div>
+ </div>
+ <div class="field">
+ <label for="helo_hostname">{{ctx.Locale.Tr "admin.auths.helo_hostname"}}</label>
+ <input id="helo_hostname" name="helo_hostname" value="{{.helo_hostname}}">
+ <p class="help">{{ctx.Locale.Tr "admin.auths.helo_hostname_helper"}}</p>
+ </div>
+ <div class="inline field">
+ <div class="ui checkbox">
+ <label for="disable_helo"><strong>{{ctx.Locale.Tr "admin.auths.disable_helo"}}</strong></label>
+ <input id="disable_helo" name="disable_helo" type="checkbox" {{if .disable_helo}}checked{{end}}>
+ </div>
+ </div>
+ <div class="field">
+ <label for="allowed_domains">{{ctx.Locale.Tr "admin.auths.allowed_domains"}}</label>
+ <input id="allowed_domains" name="allowed_domains" value="{{.allowed_domains}}">
+ <p class="help">{{ctx.Locale.Tr "admin.auths.allowed_domains_helper"}}</p>
+ </div>
+ <div class="optional field">
+ <div class="ui checkbox">
+ <label for="skip_local_two_fa"><strong>{{ctx.Locale.Tr "admin.auths.skip_local_two_fa"}}</strong></label>
+ <input id="skip_local_two_fa" name="skip_local_two_fa" type="checkbox" {{if .skip_local_two_fa}}checked{{end}}>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.skip_local_two_fa_helper"}}</p>
+ </div>
+ </div>
+</div>
diff --git a/templates/admin/auth/source/sspi.tmpl b/templates/admin/auth/source/sspi.tmpl
new file mode 100644
index 0000000..6a3f00f
--- /dev/null
+++ b/templates/admin/auth/source/sspi.tmpl
@@ -0,0 +1,43 @@
+<div class="sspi field {{if not (eq .type 7)}}tw-hidden{{end}}">
+ <div class="field">
+ <div class="ui checkbox">
+ <label for="sspi_auto_create_users"><strong>{{ctx.Locale.Tr "admin.auths.sspi_auto_create_users"}}</strong></label>
+ <input id="sspi_auto_create_users" name="sspi_auto_create_users" class="sspi-auto-create-users" type="checkbox" {{if .SSPIAutoCreateUsers}}checked{{end}}>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.sspi_auto_create_users_helper"}}</p>
+ </div>
+ </div>
+ <div class="field">
+ <div class="ui checkbox">
+ <label for="sspi_auto_activate_users"><strong>{{ctx.Locale.Tr "admin.auths.sspi_auto_activate_users"}}</strong></label>
+ <input id="sspi_auto_activate_users" name="sspi_auto_activate_users" class="sspi-auto-activate-users" type="checkbox" {{if .SSPIAutoActivateUsers}}checked{{end}}>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.sspi_auto_activate_users_helper"}}</p>
+ </div>
+ </div>
+ <div class="field">
+ <div class="ui checkbox">
+ <label for="sspi_strip_domain_names"><strong>{{ctx.Locale.Tr "admin.auths.sspi_strip_domain_names"}}</strong></label>
+ <input id="sspi_strip_domain_names" name="sspi_strip_domain_names" class="sspi-strip-domain-names" type="checkbox" {{if .SSPIStripDomainNames}}checked{{end}}>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.sspi_strip_domain_names_helper"}}</p>
+ </div>
+ </div>
+ <div class="required field">
+ <label for="sspi_separator_replacement">{{ctx.Locale.Tr "admin.auths.sspi_separator_replacement"}}</label>
+ <input id="sspi_separator_replacement" name="sspi_separator_replacement" value="{{.SSPISeparatorReplacement}}">
+ <p class="help">{{ctx.Locale.Tr "admin.auths.sspi_separator_replacement_helper"}}</p>
+ </div>
+ <div class="field">
+ <label for="sspi_default_language">{{ctx.Locale.Tr "admin.auths.sspi_default_language"}}</label>
+ <div class="ui language selection dropdown" id="sspi_default_language">
+ <input name="sspi_default_language" type="hidden" value="{{.SSPIDefaultLanguage}}">
+ {{svg "octicon-triangle-down" 14 "dropdown icon"}}
+ <div class="text">{{range .AllLangs}}{{if eq $.SSPIDefaultLanguage .Lang}}{{.Name}}{{end}}{{end}}</div>
+ <div class="menu">
+ <div class="item{{if not $.SSPIDefaultLanguage}} active selected{{end}}" data-value="">-</div>
+ {{range .AllLangs}}
+ <div class="item{{if eq $.SSPIDefaultLanguage .Lang}} active selected{{end}}" data-value="{{.Lang}}">{{.Name}}</div>
+ {{end}}
+ </div>
+ </div>
+ <p class="help">{{ctx.Locale.Tr "admin.auths.sspi_default_language_helper"}}</p>
+ </div>
+</div>