Improve outbound requests settings UI text

Changelog: changed

Improve outbound requests settings UI text
Changelog: changed
8ecdf1de · Russell Dickenson · Peter Hegman · b4c272ca · 8ecdf1de · 8ecdf1de
Commit 8ecdf1de authored Jan 07, 2022 by Russell Dickenson Committed by Peter Hegman Jan 07, 2022
4 changed files
--- a/app/views/admin/application_settings/_outbound.html.haml
+++ b/app/views/admin/application_settings/_outbound.html.haml
@@ -6,25 +6,26 @@
      .form-check
        = f.check_box :allow_local_requests_from_web_hooks_and_services, class: 'form-check-input', data: { qa_selector: 'allow_requests_from_services_checkbox' }
        = f.label :allow_local_requests_from_web_hooks_and_services, class: 'form-check-label' do
-          = _('Allow requests to the local network from web hooks and services')
+          = s_('OutboundRequests|Allow requests to the local network from web hooks and services')
      .form-check
        = f.check_box :allow_local_requests_from_system_hooks, class: 'form-check-input'
        = f.label :allow_local_requests_from_system_hooks, class: 'form-check-label' do
-          = _('Allow requests to the local network from system hooks')
+          = s_('OutboundRequests|Allow requests to the local network from system hooks')

    .form-group
      = f.label :outbound_local_requests_allowlist_raw, class: 'label-bold' do
-        = _('Local IP addresses and domain names that hooks and services may access.')
-      = f.text_area :outbound_local_requests_allowlist_raw, placeholder: "example.com, 192.168.1.1", class: 'form-control gl-form-input', rows: 8
+        = s_('OutboundRequests|Local IP addresses and domain names that hooks and services may access')
+      = f.text_area :outbound_local_requests_allowlist_raw, placeholder: "example.com, 192.168.1.1, xn--itlab-j1a.com", class: 'form-control gl-form-input', rows: 8
      %span.form-text.text-muted
-        = _('Requests to these domain(s)/address(es) on the local network will be allowed when local requests from hooks and services are not allowed. IP ranges such as 1:0:0:0:0:0:0:0/124 or 127.0.0.0/28 are supported. Domain wildcards are not supported currently. Use comma, semicolon, or newline to separate multiple entries. The allowlist can hold a maximum of 1000 entries. Domains should use IDNA encoding. Ex: example.com, 192.168.1.1, 127.0.0.0/28, xn--itlab-j1a.com.')
+        = s_('OutboundRequests|Requests to these domains and IP addresses are accessible to both system hooks and web hooks even when local requests are not allowed. IP ranges such as 1:0:0:0:0:0:0:0/124 and 127.0.0.0/28 are supported. Domain wildcards are not supported. To separate entries use commas, semicolons, or newlines. The allowlist can hold a maximum of 1000 entries. Domains must be IDNA encoded.')
+        = link_to _('Learn more.'), help_page_path('security/webhooks.md', anchor: 'allowlist-for-local-requests'), target: '_blank', rel: 'noopener noreferrer'

    .form-group
      .form-check
        = f.check_box :dns_rebinding_protection_enabled, class: 'form-check-input'
        = f.label :dns_rebinding_protection_enabled, class: 'form-check-label' do
-          = _('Enforce DNS rebinding attack protection')
+          = s_('OutboundRequests|Enforce DNS rebinding attack protection')
        %span.form-text.text-muted
-          = _('Resolves IP addresses once and uses them to submit requests')
+          = s_('OutboundRequests|Resolve IP addresses once and uses them to submit requests.')

  = f.submit _('Save changes'), class: "gl-button btn btn-confirm", data: { qa_selector: 'save_changes_button' }
--- a/app/views/admin/application_settings/network.html.haml
+++ b/app/views/admin/application_settings/network.html.haml
@@ -75,11 +75,13 @@
 %section.settings.as-outbound.no-animate#js-outbound-settings{ class: ('expanded' if expanded_by_default?), data: { qa_selector: 'outbound_requests_content' } }
  .settings-header
    %h4
-      = _('Outbound requests')
+      = s_('OutboundRequests|Outbound requests')
+
    %button.btn.gl-button.btn-default.js-settings-toggle{ type: 'button' }
      = expanded_by_default? ? _('Collapse') : _('Expand')
    %p
-      = _('Allow requests to the local network from hooks and services.')
+      = s_('OutboundRequests|Allow requests to the local network from hooks and services.')
+      = link_to _('Learn more.'), help_page_path('security/webhooks.md'), target: '_blank', rel: 'noopener noreferrer'
  .settings-content
    = render 'outbound'


--- a/doc/security/webhooks.md
+++ b/doc/security/webhooks.md
@@ -74,7 +74,8 @@ allowlist:
 The allowed entries can be separated by semicolons, commas or whitespaces
 (including newlines) and be in different formats like hostnames, IP addresses and/or
 IP ranges. IPv6 is supported. Hostnames that contain Unicode characters should
-use Internationalising Domain Names in Applications (IDNA) encoding.
+use [Internationalized Domain Names in Applications](https://www.icann.org/resources/pages/glossary-2014-02-04-en#i)
+(IDNA) encoding.

 The allowlist can hold a maximum of 1000 entries. Each entry can be a maximum of
 255 characters.

--- a/locale/gitlab.pot
+++ b/locale/gitlab.pot
@@ -3530,15 +3530,6 @@ msgstr ""
 msgid "Allow public access to pipelines and job details, including output logs and artifacts."
 msgstr ""

-msgid "Allow requests to the local network from hooks and services."
-msgstr ""
-
-msgid "Allow requests to the local network from system hooks"
-msgstr ""
-
-msgid "Allow requests to the local network from web hooks and services"
-msgstr ""
-
 msgid "Allow subgroups to set up their own two-factor authentication rules"
 msgstr ""

@@ -13354,9 +13345,6 @@ msgstr ""
 msgid "Ends: %{endsAt}"
 msgstr ""

-msgid "Enforce DNS rebinding attack protection"
-msgstr ""
-
 msgid "Enforce SSH key expiration"
 msgstr ""

@@ -21381,9 +21369,6 @@ msgstr ""
 msgid "Loading…"
 msgstr ""

-msgid "Local IP addresses and domain names that hooks and services may access."
-msgstr ""
-
 msgid "Localization"
 msgstr ""

@@ -24983,7 +24968,28 @@ msgstr ""
 msgid "Out-of-compliance with this project's policies and should be removed"
 msgstr ""

-msgid "Outbound requests"
+msgid "OutboundRequests|Allow requests to the local network from hooks and services."
+msgstr ""
+
+msgid "OutboundRequests|Allow requests to the local network from system hooks"
+msgstr ""
+
+msgid "OutboundRequests|Allow requests to the local network from web hooks and services"
+msgstr ""
+
+msgid "OutboundRequests|Enforce DNS rebinding attack protection"
+msgstr ""
+
+msgid "OutboundRequests|Local IP addresses and domain names that hooks and services may access"
+msgstr ""
+
+msgid "OutboundRequests|Outbound requests"
+msgstr ""
+
+msgid "OutboundRequests|Requests to these domains and IP addresses are accessible to both system hooks and web hooks even when local requests are not allowed. IP ranges such as 1:0:0:0:0:0:0:0/124 and 127.0.0.0/28 are supported. Domain wildcards are not supported. To separate entries use commas, semicolons, or newlines. The allowlist can hold a maximum of 1000 entries. Domains must be IDNA encoded."
+msgstr ""
+
+msgid "OutboundRequests|Resolve IP addresses once and uses them to submit requests."
 msgstr ""

 msgid "OutdatedBrowser|GitLab may not work properly, because you are using an outdated web browser."
@@ -30085,9 +30091,6 @@ msgstr ""
 msgid "Requests per period"
 msgstr ""

-msgid "Requests to these domain(s)/address(es) on the local network will be allowed when local requests from hooks and services are not allowed. IP ranges such as 1:0:0:0:0:0:0:0/124 or 127.0.0.0/28 are supported. Domain wildcards are not supported currently. Use comma, semicolon, or newline to separate multiple entries. The allowlist can hold a maximum of 1000 entries. Domains should use IDNA encoding. Ex: example.com, 192.168.1.1, 127.0.0.0/28, xn--itlab-j1a.com."
-msgstr ""
-
 msgid "Require additional authentication for administrative tasks."
 msgstr ""

@@ -30233,9 +30236,6 @@ msgstr ""
 msgid "Resolved by %{name}"
 msgstr ""

-msgid "Resolves IP addresses once and uses them to submit requests"
-msgstr ""
-
 msgid "Response"
 msgstr ""