Not clear what "Secure use only" is in security "Auth tokens" screen

matomo-org / matomo

Empowering People Ethically with the leading open source alternative to Google Analytics that gives you full control over your data. Matomo lets you easily collect data from websites & apps and visualise this data and extract insights. Privacy is built-in. Liberating Web Analytics. Star us on Github? +1. And we love Pull Requests!

https://matomo.org/

GNU General Public License v3.0

19.69k stars 2.62k forks source link

Not clear what "Secure use only" is in security "Auth tokens" screen #21311

Open tsteur opened 12 months ago

tsteur commented 12 months ago

When going to "Admin -> User: Security" then we can configure auth tokens.

The list of tokens shows a column "Secure use only". Seeing it for the first time, it's not clear what it is. Especially for existing Matomo users it's not clear.

Could we maybe show a tooltip on the column explaining what it is? And/or maybe adding a link to an FAQ in the intro/description of the table?

michalkleiner commented 12 months ago

It's related to https://matomo.org/faq/general/faq_114/ (PRs https://github.com/matomo-org/matomo/pull/20351 and https://github.com/matomo-org/matomo/pull/21180). I'm not familiar with adding tooltips to column headers but we might be able to add a link to the FAQ.

It is mentioned in the changelog at https://developer.matomo.org/changelog#usage-of-authentication-tokens, so perhaps people upgrading from 4.x to 5.x would read the changelog?

sgiehl commented 12 months ago

We could add something similar like for the role filter in user manager. There a notification is shown when clicking on ?

tsteur commented 12 months ago

The icon be great 👍

The changelog is only meant for developers and not read by many. Ideally, we explain things directly in the UI so they won't need to search and things are clear 👍