-
Notifications
You must be signed in to change notification settings - Fork 27
Expand file tree
/
Copy pathform.twig
More file actions
198 lines (177 loc) · 10.7 KB
/
form.twig
File metadata and controls
198 lines (177 loc) · 10.7 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
{% if form.hasErrors %}
<div class="message-box warning">
<ul>
{% for error in form.getErrors %}
<li>{{ error | trans }}</li>
{% endfor %}
</ul>
</div>
{% endif %}
<form method="post"
action="{{ actionRoute }}"
class="pure-form pure-form-stacked">
{{ form['_token_'].control | raw }}
<fieldset>
<label for="frm-name">{{ 'Name'|trans }}</label>
{{ form.name.control | raw }}
{% if form.name.hasErrors %}
<span class="pure-form-message red-text">{{ form.name.getError }}</span>
{% endif %}
<label for="frm-description">{{ 'Description'|trans }}</label>
{{ form.description.control | raw }}
{% if form.description.hasErrors %}
<span class="pure-form-message red-text">{{ form.description.getError }}</span>
{% endif %}
<label for="">{{ 'Status'|trans }}</label>
<label for="radio-option-enabled" class="pure-radio">
<input type="radio"
name="is_enabled"
id="radio-option-enabled"
{% if form.is_enabled.value %}checked=""{% endif %}
value="1" /> {{ 'Enabled'|trans }}
</label>
<label for="radio-option-disabled" class="pure-radio">
<input type="radio"
name="is_enabled"
id="radio-option-disabled"
{% if not form.is_enabled.value %}checked=""{% endif %}
value="0" /> {{ 'Disabled'|trans }}
</label>
<label for="">{{ 'Type'|trans }}</label>
<label for="radio-option-confidential" class="pure-radio">
<input type="radio"
name="is_confidential"
id="radio-option-confidential"
{% if form.is_confidential.value %}checked=""{% endif %}
value="1" /> {{ 'Confidential'|trans }}
</label>
<label for="radio-option-public" class="pure-radio">
<input type="radio"
name="is_confidential"
id="radio-option-public"
{% if not form.is_confidential.value %}checked=""{% endif %}
value="0" /> {{ 'Public'|trans }}
</label>
<span class="pure-form-message">
{% trans %}Choose if client is confidential or public. Confidential clients are capable of maintaining the confidentiality of their credentials (e.g., client implemented on a secure server with restricted access to the client credentials), or capable of secure client authentication using other means. Public clients are incapable of maintaining the confidentiality of their credentials (e.g., clients executing on the device used by the resource owner, such as an installed native application or a web browser-based application), and incapable of secure client authentication via any other means.{% endtrans %}
</span>
<label for="frm-redirect_uri">{{ 'Redirect URIs'|trans }}</label>
{{ form.redirect_uri.control | raw }}
<span class="pure-form-message">
{% trans %}Allowed redirect URIs to which the authorization response will be sent. Must be a valid URI, one per line. Example: https://example.org/foo?bar=1{% endtrans %}
</span>
{% if form.redirect_uri.hasErrors %}
<span class="pure-form-message red-text">{{ form.redirect_uri.getError }}</span>
{% endif %}
<label for="frm-auth_source">{{ 'Authentication Source'|trans }}</label>
{{ form.auth_source.control | raw }}
<span class="pure-form-message">
{% trans %}Authentication source for this particular client. If no authentication source is selected, the default one from configuration file will be used.{% endtrans %}
</span>
{% if form.auth_source.hasErrors %}
<span class="pure-form-message red-text">{{ form.auth_source.getError }}</span>
{% endif %}
<label for="frm-scopes">{{ 'Scopes'|trans }}</label>
{{ form.scopes.control | raw }}
{% if form.scopes.hasErrors %}
<span class="pure-form-message red-text">{{ form.scopes.getError }}</span>
{% endif %}
<label for="frm-backchannel_logout_uri">{{ 'Back-channel Logout URI'|trans }}</label>
{{ form.backchannel_logout_uri.control | raw }}
<span class="pure-form-message">
{% trans %}Enter if client supports Back-Channel Logout specification. When logout is initiated at the OpenID Provider, it will send a Logout Token to this URI in order to notify the client about that event. Must be a valid URI. Example: https://example.org/foo?bar=1{% endtrans %}
</span>
{% if form.backchannel_logout_uri.hasErrors %}
<span class="pure-form-message red-text">{{ form.backchannel_logout_uri.getError }}</span>
{% endif %}
<label for="frm-post_logout_redirect_uri">{{ 'Post-logout Redirect URIs'|trans }}</label>
{{ form.post_logout_redirect_uri.control | raw }}
<span class="pure-form-message">
{% trans %}Allowed redirect URIs to use after client initiated logout. Must be a valid URI, one per line. Example: https://example.org/foo?bar=1{% endtrans %}
</span>
{% if form.post_logout_redirect_uri.hasErrors %}
<span class="pure-form-message red-text">{{ form.post_logout_redirect_uri.getError }}</span>
{% endif %}
<label for="frm-allowed_origin">{{ 'Allowed Origins (for public client)'|trans }}</label>
{{ form.allowed_origin.control | raw }}
<span class="pure-form-message">
{% trans %}URLs as allowed origins for CORS requests, for public clients running in browser. Must have http:// or https:// scheme, and at least one 'domain.top-level-domain' pair, or more subdomains. Top-level-domain may end with '.'. No userinfo, path, query or fragment components allowed. May end with port number. One per line. Example: https://example.org{% endtrans %}
</span>
{% if form.allowed_origin.hasErrors %}
<span class="pure-form-message red-text">{{ form.allowed_origin.getError }}</span>
{% endif %}
<label for="frm-signed_jwks_uri">{{ 'Signed JWKS URI'|trans }}</label>
{{ form.signed_jwks_uri.control | raw }}
<span class="pure-form-message">
{% trans %}URL to a JWS document containing protocol public keys in JWKS format (claim 'keys'). Example: https://example.org/signed-jwks{% endtrans %}
</span>
{% if form.signed_jwks_uri.hasErrors %}
<span class="pure-form-message red-text">{{ form.signed_jwks_uri.getError }}</span>
{% endif %}
<label for="frm-jwks_uri">{{ 'JWKS URI'|trans }}</label>
{{ form.jwks_uri.control | raw }}
<span class="pure-form-message">
{% trans %}URL to a JWKS document containing protocol public keys. Will be used if Signed JWKS URI is not set. Example: https://example.org/jwks{% endtrans %}
</span>
{% if form.jwks_uri.hasErrors %}
<span class="pure-form-message red-text">{{ form.jwks_uri.getError }}</span>
{% endif %}
<label for="frm-jwks">{{ 'JWKS'|trans }}</label>
{{ form.jwks.control | raw }}
<span class="pure-form-message">
{% trans %}JSON object (string) representing JWKS document containing protocol public keys. Note that this should be different from Federation JWKS. Will be used if JWKS URI is not set. Example: {"keys":[{"kty": "RSA","n": "...","e": "AQAB","kid": "pro123","use": "sig","alg": "RS256"}]}{% endtrans %}
</span>
{% if form.jwks.hasErrors %}
<span class="pure-form-message red-text">{{ form.jwks.getError }}</span>
{% endif %}
<br>
<h4>{{ 'OpenID Federation Related Properties'|trans }}</h4>
<span class="pure-form-message">
{% trans %}In order for an entity to participate in federation contexts (for example, to be listed as subordinate to this OP), it must have an Entity Identifier and Federation JWKS set. {% endtrans %}
</span>
<label for="">{{ 'Is Federated'|trans }}</label>
<label for="radio-option-federated-yes" class="pure-radio">
<input type="radio"
name="is_federated"
id="radio-option-federated-yes"
{% if form.is_federated.value %}checked=""{% endif %}
value="1" /> {{ 'Yes'|trans }}
</label>
<label for="radio-option-federated-no" class="pure-radio">
<input type="radio"
name="is_federated"
id="radio-option-federated-no"
{% if not form.is_federated.value %}checked=""{% endif %}
value="0" /> {{ 'No'|trans }}
</label>
<span class="pure-form-message">
{% trans %}Choose if the client is allowed to participate in federation context or not.{% endtrans %}
</span>
<label for="frm-entity_identifier">{{ 'Entity Identifier'|trans }}</label>
{{ form.entity_identifier.control | raw }}
<span class="pure-form-message">
{% trans %}A globally unique URI that is bound to the entity. URI must have https or http scheme and host / domain. It can contain path, but no query, or fragment component.{% endtrans %}
</span>
{% if form.entity_identifier.hasErrors %}
<span class="pure-form-message red-text">{{ form.entity_identifier.getError }}</span>
{% endif %}
<label for="frm-client_registration_types">{{ 'Registration Types'|trans }}</label>
{{ form.client_registration_types.control | raw }}
<span class="pure-form-message">
{% trans %}One or more values from the list. If not selected, falls back to 'automatic'{% endtrans %}
</span>
{% if form.client_registration_types.hasErrors %}
<span class="pure-form-message red-text">{{ form.client_registration_types.getError }}</span>
{% endif %}
<label for="frm-federation_jwks">{{ 'Federation JWKS'|trans }}</label>
{{ form.federation_jwks.control | raw }}
<span class="pure-form-message">
{% trans %}JSON object (string) representing federation JWKS. This can be used, for example, in entity statements. Note that this should be different from Protocol JWKS. Example: {"keys":[{"kty": "RSA","n": "...","e": "AQAB","kid": "fed123","use": "sig","alg": "RS256"}]}{% endtrans %}
</span>
{% if form.federation_jwks.hasErrors %}
<span class="pure-form-message red-text">{{ form.federation_jwks.getError }}</span>
{% endif %}
<br>
<button type="submit" class="pure-button ">{{ (actionText|default('Submit'))|trans }}</button>
</fieldset>
</form>