mirror of
https://github.com/0rangebananaspy/authelia.git
synced 2024-09-14 22:47:21 +07:00
42581dfe93
In order to redirect the user after authentication, Authelia uses rd query parameter provided by the proxy. However an attacker could use phishing to make the user be redirected to a bad domain. In order to avoid the user to be redirected to a bad location, Authelia now verifies the redirection URL is under the protected domain.
25 lines
1.4 KiB
TypeScript
25 lines
1.4 KiB
TypeScript
|
|
export const AUTHENTICATION_FAILED = "Authentication failed. Please check your credentials.";
|
|
export const AUTHENTICATION_SUCCEEDED = "Authentication succeeded. You can now access your services.";
|
|
|
|
export const CANNOT_REDIRECT_TO_EXTERNAL_DOMAIN = "Cannot redirect to an external domain.";
|
|
|
|
export const AUTHENTICATION_U2F_FAILED = "Authentication failed. Have you already registered your device?";
|
|
export const AUTHENTICATION_TOTP_FAILED = "Authentication failed. Have you already registered your secret?";
|
|
|
|
export const U2F_TRANSACTION_FINISH_FAILED = "U2F validation failed unexpectedly.";
|
|
export const PLEASE_TOUCH_TOKEN = "Please touch the token on your U2F device.";
|
|
|
|
export const REGISTRATION_U2F_FAILED = "Registration of U2F device failed.";
|
|
|
|
export const DIFFERENT_PASSWORDS = "The passwords are different.";
|
|
export const MISSING_PASSWORD = "You must enter your password twice.";
|
|
export const RESET_PASSWORD_FAILED = "An error occurred during password reset. Your password has not been changed.";
|
|
|
|
// Password reset request
|
|
export const MISSING_USERNAME = "You must provide your username to reset your password.";
|
|
export const MAIL_SENT = "An email has been sent to you. Follow the link to change your password.";
|
|
export const MAIL_NOT_SENT = "The email cannot be sent. Please retry in few minutes.";
|
|
|
|
export const UNAUTHORIZED_OPERATION = "You are not allowed to perform this operation.";
|
|
export const OPERATION_FAILED = "Operation failed."; |