8 files changed, 114 insertions, 40 deletions

diff --git a/gn_auth/templates/admin/confirm-change-client-secret.html b/gn_auth/templates/admin/confirm-change-client-secret.html
new file mode 100644
index 0000000..aa8ef81
--- /dev/null
+++ b/gn_auth/templates/admin/confirm-change-client-secret.html
@@ -0,0 +1,45 @@
+{%extends "base.html"%}
+
+{%block title%}gn-auth: View OAuth2 Client{%endblock%}
+
+{%block pagetitle%}View OAuth2 Client{%endblock%}
+
+{%block content%}
+{{flash_messages()}}
+
+<h2>Change Oauth2 Client Secret</h2>
+
+<p>You are attempting to change the <strong>CLIENT_SECRET</strong> value for the
+  following client:</p>
+
+<table class="table">
+  <tbody>
+    <tr>
+      <td><strong>Client ID</strong></td>
+      <td>{{client.client_id}}</td>
+    </tr>
+    <tr>
+      <td><strong>Client Name</strong></td>
+      <td>{{client.client_metadata.client_name}}</td>
+    </tr>
+  </tbody>
+</table>
+
+<p>Are you absolutely sure you want to do this?<br />
+  <small>Note that you'll need to update your configurations for the client and
+    restart it for the settings to take effect!</small></p>
+
+<form id="frm-change-client-secret"
+      method="POST"
+      action="{{url_for('oauth2.admin.change_client_secret',
+              client_id=client.client_id)}}">
+
+  <input type="hidden" name="client_id" value="{{client.client_id}}" />
+  <input type="hidden" name="client_name" value="{{client.client_metadata.client_name}}" />
+
+  <div class="form-group">
+    <input type="submit" class="btn btn-danger" value="generate new secret" />
+  </div>
+</form>
+
+{%endblock%}
diff --git a/gn_auth/templates/admin/list-oauth2-clients.html b/gn_auth/templates/admin/list-oauth2-clients.html
index ca0ee6d..6da5b2f 100644
--- a/gn_auth/templates/admin/list-oauth2-clients.html
+++ b/gn_auth/templates/admin/list-oauth2-clients.html
@@ -15,7 +15,7 @@
       <th>Client Name</th>
       <th>Default Redirect URI</th>
       <th>Owner</th>
-      <th colspan="2">Actions</th>
+      <th colspan="3">Actions</th>
     </tr>
   </thead>
 
@@ -43,6 +43,14 @@
 		 class="btn btn-danger" />
 	</form>
       </td>
+      <td>
+        <a href="{{url_for('oauth2.admin.change_client_secret',
+                 client_id=client.client_id)}}"
+           title="Change the client secret!"
+           class="btn btn-danger">
+          Change Secret
+        </a>
+      </td>
     </tr>
     {%else%}
     <tr>
diff --git a/gn_auth/templates/base.html b/gn_auth/templates/base.html
index b452ca1..c90ac9b 100644
--- a/gn_auth/templates/base.html
+++ b/gn_auth/templates/base.html
@@ -5,7 +5,7 @@
     <meta charset="utf-8" />
     <meta name="viewport" content="width=device-width, initial-scale=1.0" />
 
-    <title>gn-auth: {%block title%}{%endblock%}</title>
+    <title>Authorization {%block title%}{%endblock%}</title>
 
     <link rel="stylesheet" type="text/css"
 	  href="https://genenetwork.org/static/new/css/bootstrap-custom.css" />
@@ -39,7 +39,7 @@
                style="font-weight: bold;">GeneNetwork</a>
           </li>
           <li>
-            <a href="#">gn-auth: {%block pagetitle%}{%endblock%}</a>
+            <a href="#">{%block pagetitle%}{%endblock%}</a>
           </li>
         </ul>
       </div>
diff --git a/gn_auth/templates/emails/forgot-password.html b/gn_auth/templates/emails/forgot-password.html
index e40ebb8..5f16a02 100644
--- a/gn_auth/templates/emails/forgot-password.html
+++ b/gn_auth/templates/emails/forgot-password.html
@@ -24,7 +24,7 @@
     </p>
 
     <p style="font-weight: bold;color: #ee55ee;">
-      The link will expire in <strong>{{expiration_minutes}}</strong> minutes.
+      The link will expire in <strong>{{expiration_minutes}}</strong>.
     </p>
 
     <hr />
diff --git a/gn_auth/templates/emails/forgot-password.txt b/gn_auth/templates/emails/forgot-password.txt
index 55a4b13..68abf16 100644
--- a/gn_auth/templates/emails/forgot-password.txt
+++ b/gn_auth/templates/emails/forgot-password.txt
@@ -7,6 +7,6 @@ You (or someone pretending to be you) made a request to change your password. Pl
 
 If you did not request to change your password, simply ignore this email.
 
-The link will expire {{expiration_minutes}} minutes.
+The link will expire in {{expiration_minutes}}.
 
 Note that if you requested to change your password multiple times, only the latest/newest token will be valid.
diff --git a/gn_auth/templates/emails/verify-email.html b/gn_auth/templates/emails/verify-email.html
index 7f85c1c..11ae575 100644
--- a/gn_auth/templates/emails/verify-email.html
+++ b/gn_auth/templates/emails/verify-email.html
@@ -20,7 +20,7 @@
 
     <p style="font-weight: bold;color: #ee55ee;">
       Please note that the verification code will expire in
-      <strong>{{expiration_minutes}}</strong> minutes after it was generated.
+      <strong>{{expiration_minutes}}</strong> after it was generated.
     </p>
   </body>
 </html>
diff --git a/gn_auth/templates/emails/verify-email.txt b/gn_auth/templates/emails/verify-email.txt
index 281d682..ecfbfc0 100644
--- a/gn_auth/templates/emails/verify-email.txt
+++ b/gn_auth/templates/emails/verify-email.txt
@@ -9,4 +9,4 @@ If that does not work, please log in to GeneNetwork and copy the verification co
 
 {{verification_code}}
 
-Please note that the verification code will expire {{expiration_minutes}} minutes after it was generated.
+Please note that the verification code will expire {{expiration_minutes}} after it was generated.
diff --git a/gn_auth/templates/oauth2/authorise-user.html b/gn_auth/templates/oauth2/authorise-user.html
index 2ef22af..f186167 100644
--- a/gn_auth/templates/oauth2/authorise-user.html
+++ b/gn_auth/templates/oauth2/authorise-user.html
@@ -2,44 +2,65 @@
 
 {%block title%}Authorise User{%endblock%}
 
-{%block pagetitle%}Authenticate to the API Server{%endblock%}
+{%block pagetitle%}{%endblock%}
 
 {%block content%}
 {{flash_messages()}}
+<div class="container" style="min-width: 1250px;">
+  <form method="POST"
+        class="form-horizontal"
+        action="{{url_for(
+                'oauth2.auth.authorise',
+                response_type=response_type,
+                client_id=client.client_id,
+                redirect_uri=redirect_uri)}}"
+        style="max-width: 700px;">
+    <legend style="margin-top: 20px;">Sign In</legend>
 
-<form method="POST" action="{{url_for(
-                            'oauth2.auth.authorise',
-                            response_type=response_type,
-                            client_id=client.client_id,
-                            redirect_uri=redirect_uri)}}">
-  <input type="hidden" name="response_type" value="{{response_type}}" />
-  <input type="hidden" name="redirect_uri" value="{{redirect_uri}}" />
-  <input type="hidden" name="scope" value="{{scope | join(' ')}}" />
-  <input type="hidden" name="client_id" value="{{client.client_id}}" />
+    <input type="hidden" name="response_type" value="{{response_type}}" />
+    <input type="hidden" name="redirect_uri" value="{{redirect_uri}}" />
+    <input type="hidden" name="scope" value="{{scope | join(' ')}}" />
+    <input type="hidden" name="client_id" value="{{client.client_id}}" />
 
-  <legend>User Credentials</legend>
-  <div class="form-group">
-    <label for="user:email" class="form-label">Email</label>
-    <input type="email" name="user:email" id="user:email" required="required"
-	   class="form-control"/>
-  </div>
+    <div class="form-group">
+      <label for="user:email" class="control-label col-xs-2"
+             style="text-align: left;">Email</label>
+      <div class="col-xs-10">
+        <input type="email"
+               name="user:email"
+               id="user:email"
+               required="required"
+	       class="form-control" />
+      </div>
+    </div>
 
-  <div class="form-group">
-    <label for="user:password" class="form-label">Password</label>
-    <input type="password" name="user:password" id="user:password"
-	   required="required" class="form-control" />
-  </div>
+    <div class="form-group">
+      <label for="user:password" class="control-label col-xs-2"
+             style="text-align: left;">Password</label>
+      <div class="col-xs-10">
+        <input type="password"
+               name="user:password"
+               id="user:password"
+	       required="required"
+               class="form-control" />
+      </div>
+    </div>
 
-  <div class="form-group">
-    <input type="submit" value="authorise" class="btn btn-primary" />
-    {%if display_forgot_password%}
-    <a href="{{url_for('oauth2.users.forgot_password',
-             client_id=client.client_id,
-             redirect_uri=redirect_uri,
-             response_type=response_type)}}"
-       title="Click here to change your password."
-       class="form-text text-danger">Forgot Password</a>
-    {%endif%}
-  </div>
-</form>
+    <div class="form-group">
+      <div class="controls col-xs-offset-2 col-xs-10">
+        <input type="submit" value="Sign in" class="btn btn-primary" />
+        {%if display_forgot_password%}
+        <a href="{{url_for('oauth2.users.forgot_password',
+                 client_id=client.client_id,
+                 redirect_uri=redirect_uri,
+                 response_type=response_type)}}"
+           title="Click here to change your password."
+           class="form-text text-danger">Forgot Password</a>
+        {%endif%}
+      </div>
+    </div>
+    <hr>
+    <a href="{{ source_uri }}/oauth2/user/register" class="btn btn-primary" role="button">Create a New Account</a>
+  </form>
+</div>
 {%endblock%}