Tell user how to avoid token authentication.

Most user don't care how to get the token each time (if they see the message). They want to avoid using a token. Make it clearer that Password should be configured. Be more tricky, say that password not configured **yet**, to make the user think they __have to__. The text is not technically correct as as far as I remember you can have PW and Token at the same time. But I'm going to say that in 99% of case where users read that, the password is unset.
9 years ago · 018db6c8ce
parent c4d2c1a527
commit 018db6c8ce
1 changed files with 25 additions and 9 deletions
--- a/notebook/templates/login.html
+++ b/notebook/templates/login.html
@ -45,16 +45,20 @@
    {% endif %}
    {% if token_available %}
    {% block token_message %}
-    <div class="col-sm-6 col-sm-offset-3 text-left">
-      <p class="warning">
-        Token authentication is enabled.
-
-        You need to open the notebook server with its first-time login token in the URL,
-        or enable a password in order to gain access.
-        The command:
+    <div class="col-sm-6 col-sm-offset-3 text-left rendered_html">
+      <h3>
+        No password configured yet: Token authentication is enabled.
+      </h3>
+      <p>
+        No password have been configured yet, you need to open the notebook
+        server with its first-time login token in the URL. Theis requirement
+        will be lifted once you <b>enable a password</b> in order to gain
+        access.
      </p>
-      <pre>jupyter notebook list</pre>
+        
      <p>
+        The command:
+        <pre>jupyter notebook list</pre>
        will show you the URLs of running servers with their tokens,
        which you can copy and paste into your browser. For example:
      </p>
@ -62,11 +66,23 @@
 http://localhost:8888/?token=c8de56fa... :: /Users/you/notebooks
 </pre>
      <p>
-        Or you can paste just the token value into the password field on this page.
+        Or you can paste just the token value into the password field on this
+        page.
      </p>
      <p>
        Cookies are required for authenticated access to notebooks.
      </p>
+      <p>
+
+        Authentication using tokens is enabled for your security as no password
+        has been set yet.
+        <b><a
+         href='http://jupyter-notebook.readthedocs.io/en/stable/public_server.html'>
+                See the documentation on how to enable password
+        </a></b>
+        and lift random token authentication.
+
+      <p/>
    </div>
    {% endblock token_message %}
    {% endif %}