Update copies in API fuzzing configuration form

Updates help texts, labels and placeholders based on technical writer's suggestions.

Update copies in API fuzzing configuration form
Updates help texts, labels and placeholders based on technical writer's suggestions.
bd820dc0 · Paul Gascou-Vaillancourt · 5f544b56 · bd820dc0 · bd820dc0 · bd820dc0
Commit bd820dc0 authored Mar 29, 2021 by Paul Gascou-Vaillancourt
7 changed files
--- a/ee/app/assets/javascripts/security_configuration/api_fuzzing/components/configuration_form.vue
+++ b/ee/app/assets/javascripts/security_configuration/api_fuzzing/components/configuration_form.vue
@@ -58,8 +58,10 @@ export default {
      targetUrl: {
        field: 'targetUrl',
        label: s__('APIFuzzing|Target URL'),
-        description: s__('APIFuzzing|Base URL of API fuzzing target.'),
-        placeholder: __('Ex: Example.com'),
+        description: s__(
+          'APIFuzzing|Base URL of API testing target. For example, http://www.example.com.',
+        ),
+        placeholder: __('http://www.example.com'),
        value: '',
      },
      scanMode: {
@@ -84,9 +86,9 @@ export default {
          field: 'username',
          label: s__('APIFuzzing|Username for basic authentication'),
          description: s__(
-            'APIFuzzing|Instead of entering the username directly, enter the key of the CI variable set to the username.',
+            'APIFuzzing|Enter the name of the variable containing the username. For example, $VariableWithUsername.',
          ),
-          placeholder: s__('APIFuzzing|Ex: $TestUsername'),
+          placeholder: s__('APIFuzzing|$VariableWithUsername'),
          value: '',
        },
        {
@@ -94,9 +96,9 @@ export default {
          field: 'password',
          label: s__('APIFuzzing|Password for basic authentication'),
          description: s__(
-            'APIFuzzing|Instead of entering the password directly, enter the key of the CI variable set to the password.',
+            'APIFuzzing|Enter the name of the variable containing the password. For example, $VariableWithPassword.',
          ),
-          placeholder: s__('APIFuzzing|Ex: $TestPassword'),
+          placeholder: s__('APIFuzzing|$VariableWithPassword'),
          value: '',
        },
      ],
@@ -106,6 +108,7 @@ export default {
        description: 'Pre-defined profiles by GitLab.',
        value: '',
        defaultText: s__('APIFuzzing|Choose a profile'),
+        sectionHeader: s__('APIFuzzing|Predefined profiles'),
        options: this.apiFuzzingCiConfiguration.scanProfiles.map(
          ({ name: value, description: text }) => ({
            value,
@@ -227,7 +230,7 @@ export default {
          <gl-sprintf
            :message="
              s__(
-                'APIFuzzing|Authentication is handled by providing HTTP basic authentication token as a header or cookie. %{linkStart}More information%{linkEnd}.',
+                'APIFuzzing|Configure HTTP basic authentication values. Other authentication methods are supported. %{linkStart}Learn more%{linkEnd}.',
              )
            "
          >

--- a/ee/app/assets/javascripts/security_configuration/api_fuzzing/constants.js
+++ b/ee/app/assets/javascripts/security_configuration/api_fuzzing/constants.js
@@ -10,11 +10,11 @@ export const SCAN_MODES = {
    ),
  },
  OPENAPI: {
-    scanModeLabel: __('Open API'),
-    label: __('Open API specification file path'),
-    placeholder: s__('APIFuzzing|Ex: Project_Test/File/example_fuzz.json'),
+    scanModeLabel: __('OpenAPI'),
+    label: __('OpenAPI specification file path'),
+    placeholder: s__('APIFuzzing|/folder/example_file.json'),
    description: s__(
-      'APIFuzzing|We recommend that you review the JSON specifications file before adding it to a repository.',
+      'APIFuzzing|File path containing APIs to be tested. For example, /folder/example_file.json.',
    ),
  },
  POSTMAN: {

--- a/ee/app/assets/javascripts/security_configuration/components/dropdown_input.vue
+++ b/ee/app/assets/javascripts/security_configuration/components/dropdown_input.vue
 <script>
-import { GlFormGroup, GlDropdown, GlDropdownItem, GlFormText, GlLink, GlSprintf } from '@gitlab/ui';
+import {
+  GlFormGroup,
+  GlDropdown,
+  GlDropdownSectionHeader,
+  GlDropdownItem,
+  GlFormText,
+  GlLink,
+  GlSprintf,
+} from '@gitlab/ui';
 import { CUSTOM_VALUE_MESSAGE } from './constants';

 export default {
  components: {
    GlFormGroup,
    GlDropdown,
+    GlDropdownSectionHeader,
    GlDropdownItem,
    GlFormText,
    GlLink,
@@ -50,6 +59,11 @@ export default {
      required: false,
      default: false,
    },
+    sectionHeader: {
+      type: String,
+      required: false,
+      default: '',
+    },
    options: {
      type: Array,
      required: true,
@@ -87,6 +101,11 @@ export default {
    </template>

    <gl-dropdown :id="field" :text="text" :disabled="disabled">
+      <gl-dropdown-section-header
+        v-if="sectionHeader"
+        data-testid="dropdown-input-section-header"
+        >{{ sectionHeader }}</gl-dropdown-section-header
+      >
      <gl-dropdown-item v-for="option in options" :key="option.value" @click="handleInput(option)">
        {{ option.text }}
      </gl-dropdown-item>

--- a/ee/changelogs/unreleased/323847-api-fuzzing-screen-cleanup.yml
+++ b/ee/changelogs/unreleased/323847-api-fuzzing-screen-cleanup.yml
+---
+title: Update copies in API fuzzing configuration form
+merge_request: 57753
+author:
+type: changed
--- a/ee/spec/frontend/security_configuration/api_fuzzing/components/configuration_form_spec.js
+++ b/ee/spec/frontend/security_configuration/api_fuzzing/components/configuration_form_spec.js
@@ -169,11 +169,11 @@ describe('EE - ApiFuzzingConfigurationForm', () => {
    });

    it('displays a dropdown option for each scan profile', () => {
-      findScanProfileDropdownInput()
-        .findAll('li')
-        .wrappers.forEach((item, index) => {
-          expect(item.text()).toBe(apiFuzzingCiConfiguration.scanProfiles[index].description);
-        });
+      const dropdownItems = findScanProfileDropdownInput().findAll('li').wrappers;
+      dropdownItems.shift(); // Skip section header
+      dropdownItems.forEach((item, index) => {
+        expect(item.text()).toBe(apiFuzzingCiConfiguration.scanProfiles[index].description);
+      });
    });

    it('by default, YAML viewer is not visible', () => {

--- a/ee/spec/frontend/security_configuration/components/dropdown_input_spec.js
+++ b/ee/spec/frontend/security_configuration/components/dropdown_input_spec.js
 import { GlDropdown, GlLink } from '@gitlab/ui';
 import { mount } from '@vue/test-utils';
 import GlDropdownInput from 'ee/security_configuration/components/dropdown_input.vue';
+import { extendedWrapper } from 'helpers/vue_test_utils_helper';

 describe('DropdownInput component', () => {
  let wrapper;
@@ -26,17 +27,20 @@ describe('DropdownInput component', () => {
  const newValue = 'foo';

  const createComponent = ({ props = {} } = {}) => {
-    wrapper = mount(GlDropdownInput, {
-      propsData: {
-        ...props,
-      },
-    });
+    wrapper = extendedWrapper(
+      mount(GlDropdownInput, {
+        propsData: {
+          ...props,
+        },
+      }),
+    );
  };

  const findToggle = () => wrapper.find('button');
  const findLabel = () => wrapper.find('label');
  const findInputComponent = () => wrapper.find(GlDropdown);
  const findRestoreDefaultLink = () => wrapper.find(GlLink);
+  const findSectionHeader = () => wrapper.findByTestId('dropdown-input-section-header');

  afterEach(() => {
    wrapper.destroy();
@@ -59,6 +63,26 @@ describe('DropdownInput component', () => {
    });
  });

+  describe('section header', () => {
+    it('does not render a section header by default', () => {
+      createComponent({
+        props: testProps,
+      });
+
+      expect(findSectionHeader().exists()).toBe(false);
+    });
+
+    it('renders a section header when passed a sectionHeader prop', () => {
+      const sectionHeader = 'Section header';
+      createComponent({
+        props: { ...testProps, sectionHeader },
+      });
+
+      expect(findSectionHeader().exists()).toBe(true);
+      expect(findSectionHeader().text()).toBe(sectionHeader);
+    });
+  });
+
  describe('input', () => {
    beforeEach(() => {
      createComponent({

--- a/locale/gitlab.pot
+++ b/locale/gitlab.pot
@@ -1467,13 +1467,19 @@ msgstr ""
 msgid "API version"
 msgstr ""

-msgid "APIFuzzing|API Fuzzing Configuration"
+msgid "APIFuzzing|$VariableWithPassword"
+msgstr ""
+
+msgid "APIFuzzing|$VariableWithUsername"
 msgstr ""

-msgid "APIFuzzing|Authentication is handled by providing HTTP basic authentication token as a header or cookie. %{linkStart}More information%{linkEnd}."
+msgid "APIFuzzing|/folder/example_file.json"
 msgstr ""

-msgid "APIFuzzing|Base URL of API fuzzing target."
+msgid "APIFuzzing|API Fuzzing Configuration"
+msgstr ""
+
+msgid "APIFuzzing|Base URL of API testing target. For example, http://www.example.com."
 msgstr ""

 msgid "APIFuzzing|Choose a method"
@@ -1485,6 +1491,9 @@ msgstr ""
 msgid "APIFuzzing|Code snippet for the API Fuzzing configuration"
 msgstr ""

+msgid "APIFuzzing|Configure HTTP basic authentication values. Other authentication methods are supported. %{linkStart}Learn more%{linkEnd}."
+msgstr ""
+
 msgid "APIFuzzing|Copy code and open .gitlab-ci.yml file"
 msgstr ""

@@ -1497,10 +1506,10 @@ msgstr ""
 msgid "APIFuzzing|Enable authentication"
 msgstr ""

-msgid "APIFuzzing|Ex: $TestPassword"
+msgid "APIFuzzing|Enter the name of the variable containing the password. For example, $VariableWithPassword."
 msgstr ""

-msgid "APIFuzzing|Ex: $TestUsername"
+msgid "APIFuzzing|Enter the name of the variable containing the username. For example, $VariableWithUsername."
 msgstr ""

 msgid "APIFuzzing|Ex: Project_Test/File/example_fuzz"
@@ -1509,7 +1518,7 @@ msgstr ""
 msgid "APIFuzzing|Ex: Project_Test/File/example_fuzz.har"
 msgstr ""

-msgid "APIFuzzing|Ex: Project_Test/File/example_fuzz.json"
+msgid "APIFuzzing|File path containing APIs to be tested. For example, /folder/example_file.json."
 msgstr ""

 msgid "APIFuzzing|Generate code snippet"
@@ -1518,12 +1527,6 @@ msgstr ""
 msgid "APIFuzzing|HAR files may contain sensitive information such as authentication tokens, API keys, and session cookies. We recommend that you review the HAR files' contents before adding them to a repository."
 msgstr ""

-msgid "APIFuzzing|Instead of entering the password directly, enter the key of the CI variable set to the password."
-msgstr ""
-
-msgid "APIFuzzing|Instead of entering the username directly, enter the key of the CI variable set to the username."
-msgstr ""
-
 msgid "APIFuzzing|Make sure your credentials are secured"
 msgstr ""

@@ -1533,6 +1536,9 @@ msgstr ""
 msgid "APIFuzzing|Postman collections are a group of saved requests you can organize into folders."
 msgstr ""

+msgid "APIFuzzing|Predefined profiles"
+msgstr ""
+
 msgid "APIFuzzing|Scan mode"
 msgstr ""

@@ -1563,9 +1569,6 @@ msgstr ""
 msgid "APIFuzzing|Username for basic authentication"
 msgstr ""

-msgid "APIFuzzing|We recommend that you review the JSON specifications file before adding it to a repository."
-msgstr ""
-
 msgid "APIFuzzing|You may need a maintainer's help to secure your credentials."
 msgstr ""

@@ -12495,9 +12498,6 @@ msgstr ""
 msgid "Evidence collection"
 msgstr ""

-msgid "Ex: Example.com"
-msgstr ""
-
 msgid "Exactly one of %{attributes} is required"
 msgstr ""

@@ -21692,12 +21692,6 @@ msgstr ""
 msgid "Open"
 msgstr ""

-msgid "Open API"
-msgstr ""
-
-msgid "Open API specification file path"
-msgstr ""
-
 msgid "Open Selection"
 msgstr ""

@@ -21728,6 +21722,12 @@ msgstr ""
 msgid "Open: %{open}"
 msgstr ""

+msgid "OpenAPI"
+msgstr ""
+
+msgid "OpenAPI specification file path"
+msgstr ""
+
 msgid "Opened"
 msgstr ""

@@ -36080,6 +36080,9 @@ msgstr ""
 msgid "http:"
 msgstr ""

+msgid "http://www.example.com"
+msgstr ""
+
 msgid "https://your-bitbucket-server"
 msgstr ""