From 8b183cab613f8c4fb352a927bca176cf0c0bfbfa Mon Sep 17 00:00:00 2001 From: kyy Date: Wed, 17 Jun 2026 13:58:07 +0900 Subject: [PATCH] =?UTF-8?q?scope=20=EC=84=A4=EB=AA=85=EB=AC=B8=EA=B5=AC=20?= =?UTF-8?q?=EC=88=98=EC=A0=95?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .../features/clients/ClientGeneralPage.tsx | 29 ++++++++++++++----- devfront/src/locales/en.toml | 13 +++++---- devfront/src/locales/ko.toml | 13 +++++---- devfront/src/locales/template.toml | 3 ++ 4 files changed, 39 insertions(+), 19 deletions(-) diff --git a/devfront/src/features/clients/ClientGeneralPage.tsx b/devfront/src/features/clients/ClientGeneralPage.tsx index e4de8e18..ccdfdf18 100644 --- a/devfront/src/features/clients/ClientGeneralPage.tsx +++ b/devfront/src/features/clients/ClientGeneralPage.tsx @@ -645,25 +645,37 @@ function ClientGeneralPage() { { id: "1", name: "openid", - description: t("msg.dev.clients.scopes.openid", "OIDC 인증 필수 스코프"), + description: t( + "msg.dev.clients.scopes.openid", + "OIDC 로그인에 필요한 기본 scope", + ), mandatory: true, }, { id: "2", name: "tenants", - description: t("msg.dev.clients.scopes.tenants", "소속 테넌트 정보 접근"), + description: t( + "msg.dev.clients.scopes.tenants", + "tenant_id, joined_tenants, tenants 상세 및 root/부모 테넌트 접근", + ), mandatory: false, }, { id: "3", name: "profile", - description: t("msg.dev.clients.scopes.profile", "기본 프로필 정보 접근"), + description: t( + "msg.dev.clients.scopes.profile", + "사용자 기본 정보(name, email, phones, secondary_emails, employee_id, status) 접근", + ), mandatory: false, }, { id: "4", name: "email", - description: t("msg.dev.clients.scopes.email", "이메일 주소 접근"), + description: t( + "msg.dev.clients.scopes.email", + "top-level email과 profile.email", + ), mandatory: false, }, ]); @@ -748,7 +760,7 @@ function ClientGeneralPage() { name: "openid", description: t( "msg.dev.clients.scopes.openid", - "OIDC 인증 필수 스코프", + "OIDC 로그인에 필요한 기본 scope", ), source: "standard", }, @@ -757,14 +769,17 @@ function ClientGeneralPage() { name: "profile", description: t( "msg.dev.clients.scopes.profile", - "기본 프로필 정보 접근", + "사용자 기본 정보(name, email, phones, secondary_emails, employee_id, status) 접근", ), source: "standard", }, { id: "standard-email", name: "email", - description: t("msg.dev.clients.scopes.email", "이메일 주소 접근"), + description: t( + "msg.dev.clients.scopes.email", + "top-level email과 profile.email", + ), source: "standard", }, { diff --git a/devfront/src/locales/en.toml b/devfront/src/locales/en.toml index 751463a4..a1b2249f 100644 --- a/devfront/src/locales/en.toml +++ b/devfront/src/locales/en.toml @@ -515,11 +515,11 @@ subtitle = "Developer guides for Confidential/Public clients, redirect URIs, and description = "Manage OIDC applications, authentication methods, redirect URIs, and client secret rotation together with audit logs." [msg.dev.clients.scopes] -email = "Email" -openid = "Openid" -profile = "Profile" +email = "User email information" +openid = "Base scope required for OIDC login" +profile = "User profile data access: name, email, phones, secondary_emails, employee_id, and status" tenant = "Tenant access" -tenants = "Tenants access" +tenants = "Tenant root/parent chain and joined_tenants access" [msg.dev.dashboard] access_denied = "The dashboard is available only to users with developer access." @@ -1613,6 +1613,7 @@ session_required_info = "Show SID Claim Required help" add = "Scope Add" description_placeholder = "Description Placeholder" name_placeholder = "e.g. profile" +subtitle = "Review the permissions this client can request." title = "Scopes" offline_access_title = "offline_access scope is required when using refresh tokens." offline_access_toggle = "Show details" @@ -1797,9 +1798,9 @@ subtitle = "Applications" title = "RP registry" [ui.dev.clients.scopes] -email = "Email" +email = "User email information" openid = "Openid" -profile = "Profile" +profile = "User profile data access: name, email, phones, secondary_emails, employee_id, and status" [ui.dev.clients.table] actions = "Actions" diff --git a/devfront/src/locales/ko.toml b/devfront/src/locales/ko.toml index 72576b64..5cf8fe2d 100644 --- a/devfront/src/locales/ko.toml +++ b/devfront/src/locales/ko.toml @@ -515,11 +515,11 @@ subtitle = "Developer guides for Confidential/Public clients, redirect URIs, and description = "OIDC 앱, 인증 방식, 리다이렉트 URI, 비밀키 재발행을 감사 로그와 함께 관리합니다." [msg.dev.clients.scopes] -email = "이메일 주소 접근" -openid = "OIDC 인증 필수 스코프" -profile = "기본 프로필 정보 접근" +email = "사용자 이메일 정보" +openid = "OIDC 로그인에 필요한 기본 scope" +profile = "사용자 기본 정보(name, email, phones, secondary_emails, employee_id, status) 접근" tenant = "테넌트 접근" -tenants = "테넌트 접근" +tenants = "소속 테넌트 정보 접근" [msg.dev.dashboard] access_denied = "대시보드는 개발자 권한이 있어야 볼 수 있습니다." @@ -1612,6 +1612,7 @@ session_required_info = "SID Claim Required 설명 보기" add = "스코프 추가" description_placeholder = "권한에 대한 설명" name_placeholder = "e.g. profile" +subtitle = "이 클라이언트가 요청할 수 있는 권한 범위를 정의합니다." title = "스코프" offline_access_title = "Refresh token 사용 시 offline_access scope가 필요합니다." offline_access_toggle = "상세 안내 보기" @@ -1796,9 +1797,9 @@ subtitle = "연동 앱" title = "RP registry" [ui.dev.clients.scopes] -email = "이메일 주소 접근" +email = "사용자 이메일 정보" openid = "OIDC 인증 필수 스코프" -profile = "기본 프로필 정보 접근" +profile = "사용자 기본 정보(name, email, phones, secondary_emails, employee_id, status) 접근" [ui.dev.clients.table] actions = "액션" diff --git a/devfront/src/locales/template.toml b/devfront/src/locales/template.toml index 9c479768..9b62d1d9 100644 --- a/devfront/src/locales/template.toml +++ b/devfront/src/locales/template.toml @@ -556,6 +556,8 @@ description = "" email = "" openid = "" profile = "" +tenant = "" +tenants = "" [msg.dev.dashboard] access_denied = "" @@ -1660,6 +1662,7 @@ session_required_info = "" add = "" description_placeholder = "" name_placeholder = "" +subtitle = "" title = "" offline_access_title = "" offline_access_toggle = ""