90 Validation API URL: <span class="yms-copyfield">%validate_url%</span></p> |
90 Validation API URL: <span class="yms-copyfield">%validate_url%</span></p> |
91 <p><b>Remember to secure your user account!</b> Your Enano login is used to administer your YMS account. For maximum security, use the Yubikey Settings page of the User Control Panel to require both a password and a Yubikey OTP to log in.</p>', |
91 <p><b>Remember to secure your user account!</b> Your Enano login is used to administer your YMS account. For maximum security, use the Yubikey Settings page of the User Control Panel to require both a password and a Yubikey OTP to log in.</p>', |
92 msg_no_yubikeys: 'No Yubikeys found', |
92 msg_no_yubikeys: 'No Yubikeys found', |
93 msg_editing_zero: '<b>Notice:</b> You are currently viewing the YMS profile for Client ID 0, the pool of claimable keys. By default, anybody can validate or claim these Yubikeys, but you can prevent validation of these keys by marking them inactive here. All key settings such as lifecycle state and notes are reset when a user claims a key here.', |
93 msg_editing_zero: '<b>Notice:</b> You are currently viewing the YMS profile for Client ID 0, the pool of claimable keys. By default, anybody can validate or claim these Yubikeys, but you can prevent validation of these keys by marking them inactive here. All key settings such as lifecycle state and notes are reset when a user claims a key here.', |
94 btn_add_key: 'Add Yubikey', |
94 btn_add_key: 'Add Yubikey', |
|
95 btn_add_batch: 'Batch upload Yubikeys', |
95 btn_add_key_preregistered: 'Claim a New Key', |
96 btn_add_key_preregistered: 'Claim a New Key', |
96 btn_switch_to_zero: 'Edit claimable pool', |
97 btn_switch_to_zero: 'Edit claimable pool', |
97 btn_switch_from_zero: 'Switch back to my client', |
98 btn_switch_from_zero: 'Switch back to my client', |
98 state_active: 'Active', |
99 state_active: 'Active', |
99 state_inactive: 'Inactive', |
100 state_inactive: 'Inactive', |
126 |
127 |
127 err_addkey_crc_failed: 'The CRC check on the OTP failed. This usually means that your AES key is wrong or could not be properly interpreted.', |
128 err_addkey_crc_failed: 'The CRC check on the OTP failed. This usually means that your AES key is wrong or could not be properly interpreted.', |
128 err_addkey_invalid_key: 'There was an error decoding your AES secret key. Please enter a 128-bit hex, ModHex, or base-64 value.', |
129 err_addkey_invalid_key: 'There was an error decoding your AES secret key. Please enter a 128-bit hex, ModHex, or base-64 value.', |
129 err_addkey_invalid_otp: 'The OTP from the Yubikey is invalid.', |
130 err_addkey_invalid_otp: 'The OTP from the Yubikey is invalid.', |
130 err_addkey_key_exists: 'This Yubikey is already registered on this server.', |
131 err_addkey_key_exists: 'This Yubikey is already registered on this server.', |
|
132 |
|
133 // Batch add key interface |
|
134 lbl_add_batch_heading: 'Batch upload new Yubikeys', |
|
135 lbl_add_batch_desc: '<p>Using this form you can upload a CSV file containing any number of new Yubikeys to add.</p> |
|
136 <p>Binary columns may be in either hexadecimal or ModHex format. If the format is ambiguous, hexadecimal will be assumed.</p> |
|
137 <p>The header for the CSV must specify which columns are included. See below:</p> |
|
138 <ul> |
|
139 <li><tt>aes_secret</tt> <strong>(required)</strong> Binary - the AES secret key that encrypts the data portion of OTPs.</li> |
|
140 <li><tt>otp</tt> <em>(optional)</em> ModHex - a single sample OTP from the key - if provided, all values below will be derived from the sample OTP.</li> |
|
141 <li><tt>public_id</tt> <strong>(required if <tt>otp</tt> is not present)</strong> Binary - the public identifier of the key.</li> |
|
142 <li><tt>private_id</tt> <strong>(required if <tt>otp</tt> is not present)</strong> Binary - the private identifier of the key, used as an integrity check inside the encrypted portion of the OTP.</li> |
|
143 <li><tt>session_count</tt> <em>(optional)</em> Integer - the number of times the Yubikey has been plugged in. Defaults to zero.</li> |
|
144 <li><tt>token_count</tt> <em>(optional)</em> Integer - the number of OTPs generated since this Yubikey was plugged in. Defaults to zero.</li> |
|
145 <li><tt>token_time</tt> <em>(optional)</em> Integer - the 24 bit 8Hz internal timer value of the Yubikey.</li> |
|
146 <li><tt>lifecycle_state</tt> <em>(optional)</em> String with the value "active" or "inactive". Defaults to "active".</li> |
|
147 <li><tt>access</tt> <em>(optional)</em> Who can validate OTPs generated by this Yubikey - just your client ("restricted") or anyone ("global"). Defaults to "restricted".</li> |
|
148 <li><tt>notes</tt> <em>(optional)</em> Textual notes for this Yubikey</li> |
|
149 </ul>', |
|
150 lbl_add_batch_field_csv: 'Paste CSV:', |
|
151 lbl_add_batch_field_csv_hint: 'See the format documentation above.', |
|
152 btn_add_batch_submit: 'Register Yubikeys', |
|
153 |
|
154 err_add_batch_missing_aes_key: 'Column "aes_secret" is missing.', |
|
155 err_add_batch_missing_id: 'You must provide either the "otp" column or "public_id" and "private_id".', |
|
156 |
|
157 lbl_add_batch_success_head: 'CSV processed successfully.', |
|
158 err_add_batch_success: 'Line %line%, public ID %public_id%: success', |
|
159 err_add_batch_bad_row_count: 'Line %line%: Missing or extra columns', |
|
160 err_add_batch_aes_secret: 'Line %line%: AES key must be 16 bytes binary', |
|
161 err_add_batch_bad_otp: 'Line %line%: Failed to decode OTP', |
|
162 err_add_batch_bad_public_id: 'Line %line%: Public ID must be 6 bytes binary', |
|
163 err_add_batch_bad_lifecycle_state: 'Line %line%: Lifecycle state must be "active" or "inactive"', |
|
164 err_add_batch_bad_access: 'Line %line%: Access must be "global" or "restricted"', |
|
165 err_add_batch_duplicate: 'Line %line%, public ID %public_id%: Duplicate Yubikey, this key is already registered in the system', |
|
166 err_add_batch_query: 'Line %line%, public ID %public_id%: SQL error: %error%', |
131 |
167 |
132 // Claim key interface |
168 // Claim key interface |
133 lbl_claimkey_heading: 'Claim Yubikey', |
169 lbl_claimkey_heading: 'Claim Yubikey', |
134 lbl_claimkey_desc: 'Attach a key you have not reprogrammed to your YMS account, so that you can see its AES secret key and keep track of it.', |
170 lbl_claimkey_desc: 'Attach a key you have not reprogrammed to your YMS account, so that you can see its AES secret key and keep track of it.', |
135 lbl_claimkey_field_otp: 'Enter an OTP from this Yubikey:', |
171 lbl_claimkey_field_otp: 'Enter an OTP from this Yubikey:', |