osr-plastic/osr-discourse-src
Archived
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

UX: improve error message when no trust level to login from DiscourseHub

Browse Source 
DiscourseHub requires generating API keys to login, which is affected by
the min_trust_level_for_user_api_key site setting.

If it is increased over the default of 0, then new users with 0 trust
level will not be able to login with the app, and in that case we would
be showing them a technical error message involving API keys, which
might be bad UX for newcomers to Discourse.

This commit differentiates exactly that case, and serves a less
technical error message.
This commit is contained in:
Leonardo Mosquera 2021-10-22 16:04:35 -03:00
parent 3e46ed0a2e
commit fed6115f68
No known key found for this signature in database
GPG Key ID: A5174CB390D9E8B1
3 changed files with 11 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
app/controllers/user_api_keys_controller.rb
View File

@ -33,6 +33,7 @@ class UserApiKeysController < ApplicationController
unless meets_tl?
@no_trust_level = true
@is_discourse_hub_app = true if is_discourse_hub_app?
return
end
@ -197,6 +198,10 @@ class UserApiKeysController < ApplicationController
current_user.staff? || current_user.trust_level >= SiteSetting.min_trust_level_for_user_api_key
end
def is_discourse_hub_app?
params[:discourse_app] == '1'
end
def one_time_password(public_key, username)
raise Discourse::InvalidAccess unless UserApiKey.allowed_scopes.superset?(Set.new(["one_time_password"]))

6
app/views/user_api_keys/new.html.erb
View File

@ -1,6 +1,10 @@
<h1><%= t "user_api_key.title" %></h1>
<div class='authorize-api-key'>
<% if @no_trust_level %>
<% if @no_trust_level && @is_discourse_hub_app %>
<h3>
<%= t("user_api_key.no_trust_level_discourse_hub") %>
</h3>
<% elsif @no_trust_level && ! @is_discourse_hub_app %>
<h3>
<%= t("user_api_key.no_trust_level") %>
</h3>

1
config/locales/server.en.yml
View File

@ -1078,6 +1078,7 @@ en:
logging_in_as: Logging in as %{username}
confirm_button: Finish Login
no_trust_level: "Sorry, you do not have the required trust level to access the user API"
no_trust_level_discourse_hub: "Sorry, you do not have the required user trust level to log in with DiscourseHub. Please contact site administrators and mention this error."
generic_error: "Sorry, we are unable to issue user API keys, this feature may be disabled by the site admin"
scopes:
message_bus: "Live updates"