From c4a2574b0d87ec0a86383ee8c8eca90323cff620 Mon Sep 17 00:00:00 2001
From: Joseph Schorr <joseph.schorr@coreos.com>
Date: Thu, 26 Mar 2015 16:23:28 -0400
Subject: [PATCH 1/2] Clarify unencrypted password error message

---
 data/users.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/data/users.py b/data/users.py
index 13556a552..10c909cb8 100644
--- a/data/users.py
+++ b/data/users.py
@@ -202,8 +202,8 @@ class UserAuthentication(object):
       if decrypted is None:
         # This is a normal password.
         if features.REQUIRE_ENCRYPTED_BASIC_AUTH:
-          msg = ('Client login with passwords is disabled. Please generate a client token ' +
-                 'and use it in place of your password.')
+          msg = ('Client login with unecrypted passwords is disabled. Please generate an ' +
+                 'encrypted password in the user admin panel for use here.')
           return (None, msg)
       else:
         password = decrypted

From 02bafb1613374cc62d17570cd1b3d338c36ffd80 Mon Sep 17 00:00:00 2001
From: Joseph Schorr <joseph.schorr@coreos.com>
Date: Thu, 26 Mar 2015 16:31:19 -0400
Subject: [PATCH 2/2] Fix language in the config setup tool

---
 static/directives/config/config-setup-tool.html | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/static/directives/config/config-setup-tool.html b/static/directives/config/config-setup-tool.html
index aa0c60e5d..04ac2abf2 100644
--- a/static/directives/config/config-setup-tool.html
+++ b/static/directives/config/config-setup-tool.html
@@ -47,16 +47,16 @@
             </td>
           </tr>
           <tr>
-            <td class="non-input">Encrypted Client Tokens:</td>
+            <td class="non-input">Encrypted Client Password:</td>
             <td colspan="2">
               <div class="co-checkbox">
                 <input id="ftet" type="checkbox" ng-model="config.FEATURE_REQUIRE_ENCRYPTED_BASIC_AUTH">
-                <label for="ftet">Require Encrypted Client Tokens</label>
+                <label for="ftet">Require Encrypted Client Passwords</label>
               </div>
               <div class="help-text">
                  If enabled, users will not be able to login from the Docker command
                  line with a non-encrypted password and must generate an encrypted
-                 token to use.
+                 password to use.
               </div>
               <div class="help-text" ng-if="config.AUTHENTICATION_TYPE == 'LDAP'">
                 This feature is <strong>highly recommended</strong> for setups with LDAP authentication, as Docker currently stores passwords in <strong>plaintext</strong> on user's machines.
@@ -311,12 +311,12 @@
         </div>
 
         <div class="alert alert-warning" ng-if="config.AUTHENTICATION_TYPE == 'LDAP' && !config.FEATURE_REQUIRE_ENCRYPTED_BASIC_AUTH">
-          It is <strong>highly recommended</strong> to require encrypted client tokens. LDAP passwords used in the Docker client will be stored in <strong>plaintext</strong>!
+          It is <strong>highly recommended</strong> to require encrypted client passwords. LDAP passwords used in the Docker client will be stored in <strong>plaintext</strong>!
           <a href="javascript:void(0)" ng-click="config.FEATURE_REQUIRE_ENCRYPTED_BASIC_AUTH = true">Enable this requirement now</a>.
         </div>
 
         <div class="alert alert-success" ng-if="config.AUTHENTICATION_TYPE == 'LDAP' && config.FEATURE_REQUIRE_ENCRYPTED_BASIC_AUTH">
-          Note: The "Require Encrypted Client Tokens" feature is currently enabled which will
+          Note: The "Require Encrypted Client Passwords" feature is currently enabled which will
           prevent LDAP passwords from being saved as plaintext by the Docker client.
         </div>