From 27ed5fb536c00436033516cdf3bd8aa1349ca20b Mon Sep 17 00:00:00 2001 From: Sarah Sanders Date: Thu, 31 Oct 2024 16:15:15 -0700 Subject: [PATCH] Updates to For developers SSO docs --- content/manuals/security/for-developers/2fa/_index.md | 5 ++--- .../manuals/security/for-developers/2fa/disable-2fa.md | 2 +- .../security/for-developers/2fa/new-recovery-code.md | 2 +- .../security/for-developers/2fa/recover-hub-account.md | 2 +- .../manuals/security/for-developers/access-tokens.md | 10 +++++----- 5 files changed, 10 insertions(+), 11 deletions(-) diff --git a/content/manuals/security/for-developers/2fa/_index.md b/content/manuals/security/for-developers/2fa/_index.md index d38a2894fa50..70c17401f3b5 100644 --- a/content/manuals/security/for-developers/2fa/_index.md +++ b/content/manuals/security/for-developers/2fa/_index.md @@ -17,7 +17,6 @@ code. Each recovery code is unique and specific to your account. You can use this code to recover your account in case you lose access to your authenticator app. See [Recover your Docker account](recover-hub-account/). - ## Prerequisites You need a mobile phone with a time-based one-time password (TOTP) authenticator @@ -27,11 +26,11 @@ Authenticator with a registered YubiKey. ## Enable two-factor authentication 1. Sign in to your [Docker account](https://app.docker.com/login). -2. Select your avatar and then from the drop-down menu, select **Account settings**. +2. Select your avatar and then from the drop-down menu, select **Account settings**. 3. Navigate to the **Security** section, then select **Two-factor authentication**. 4. Enter your account password, then select **Confirm**. 5. Save your recovery code and store it somewhere safe. You can use your recovery code to recover your account in the event you lose access to your authenticator app. -6. Use a TOTP mobile app to scan the QR code or enter the text code. +6. Use a Time-based One-time password (TOTP) mobile app to scan the QR code or enter the text code. 7. Once you've linked your authenticator app, enter the six-digit code in the text-field. 8. Select **Enable 2FA**. diff --git a/content/manuals/security/for-developers/2fa/disable-2fa.md b/content/manuals/security/for-developers/2fa/disable-2fa.md index 4ee56984341d..a0fbb74027a9 100644 --- a/content/manuals/security/for-developers/2fa/disable-2fa.md +++ b/content/manuals/security/for-developers/2fa/disable-2fa.md @@ -4,7 +4,7 @@ keywords: Docker, docker, registry, security, Docker Hub, authentication, two-fa authentication, account security, title: Disable two-factor authentication on your Docker account linkTitle: Disable two-factor authentication -aliases: +aliases: - /docker-hub/2fa/disable-2fa/ weight: 30 --- diff --git a/content/manuals/security/for-developers/2fa/new-recovery-code.md b/content/manuals/security/for-developers/2fa/new-recovery-code.md index 3f5b2b22efea..e608ff55147b 100644 --- a/content/manuals/security/for-developers/2fa/new-recovery-code.md +++ b/content/manuals/security/for-developers/2fa/new-recovery-code.md @@ -18,4 +18,4 @@ access to your Docker Hub account, you can generate a new recovery code. 5. Select **Generate new code**. This generates a new code. Select the visibility icon to view the code. Remember to save your recovery code -and store it somewhere safe. +and store it somewhere safe. \ No newline at end of file diff --git a/content/manuals/security/for-developers/2fa/recover-hub-account.md b/content/manuals/security/for-developers/2fa/recover-hub-account.md index e331c6b744ac..e8424ccd43a4 100644 --- a/content/manuals/security/for-developers/2fa/recover-hub-account.md +++ b/content/manuals/security/for-developers/2fa/recover-hub-account.md @@ -12,5 +12,5 @@ If you have lost access to both your two-factor authentication application and y 1. Sign in to your [Docker account](https://app.docker.com/login) with your username and password. 2. Select **I've lost my authentication device** and **I've lost my recovery code**. -3. Complete the [Contact Support form](https://hub.docker.com/support/contact/?category=2fa-lockout). +3. Complete the [Contact Support form](https://hub.docker.com/support/contact/?category=2fa-lockout). You must enter the primary email address associated with your Docker ID in the **Contact Support** form for recovery instructions. diff --git a/content/manuals/security/for-developers/access-tokens.md b/content/manuals/security/for-developers/access-tokens.md index 7054d345f8ff..a7af86ee1666 100644 --- a/content/manuals/security/for-developers/access-tokens.md +++ b/content/manuals/security/for-developers/access-tokens.md @@ -4,7 +4,7 @@ linkTitle: Access tokens description: Learn how to create and manage your personal Docker access tokens to securely push and pull images programmatically. keywords: docker hub, hub, security, PAT, personal access token -aliases: +aliases: - /docker-hub/access-tokens/ --- @@ -13,8 +13,8 @@ You can create a personal access token (PAT) to use as an alternative to your pa Compared to passwords, PATs provide the following advantages: - You can investigate when the PAT was last used and then disable or delete it if you find any suspicious activity. -- When using an access token, you can't perform any admin activity on the account, including changing the password. It protects your account if your computer is compromised. - +- When using an access token, you can't perform any administrative activity on the account, including changing the password. It protects your account if your computer is compromised. + Access tokens are also valuable for building integrations, as you can issue multiple tokens, one for each integration, and revoke them at any time. @@ -33,7 +33,7 @@ any time. 4. Select **Generate new token**. 5. Add a description for your token. Use something that indicates the use case or purpose of the token. - + 6. Set the access permissions. The access permissions are scopes that set restrictions in your repositories. For example, for Read & Write permissions, an automation @@ -81,4 +81,4 @@ You can rename, activate, deactivate, or delete a token as needed. You can manag When you sign in to your Docker account with Docker Desktop, Docker Desktop generates an authentication token on your behalf. When you interact with Docker Hub using the Docker CLI, the CLI uses this token for authentication. The token scope has Read, Write, and Delete access. If your Docker Desktop session expires, the token is automatically removed locally. -You can have up to 5 auto-generated tokens associated with your account. These are deleted and created automatically based on usage and creation dates. You can also delete your auto-generated tokens as needed. See [Modify existing tokens](#modify-existing-tokens). +You can have up to 5 auto-generated tokens associated with your account. These are deleted and created automatically based on usage and creation dates. You can also delete your auto-generated tokens as needed. For more information, see [Modify existing tokens](#modify-existing-tokens).