ASVS icon indicating copy to clipboard operation
ASVS copied to clipboard

Fr translation

Open clallier94 opened this issue 5 months ago • 5 comments

Add French Version

clallier94 avatar Jun 04 '25 18:06 clallier94

Hello, I will remedy Markdown Linter / markdown-lint-check issues tomorrow. BR

clallier94 avatar Jun 04 '25 18:06 clallier94

General comment about wording. List of some wording which we might need dscussion and should be checked for consistency throughout the document:

  • allow list / back list : liste blanche / liste noire → liste d'acceptations / liste de rejets? (or something like that?)
  • endpoint : point de terminaison / point d'entrée → endpoint?
  • claims : revendications → ???
  • scope : étendue → portée?
  • scope : ? → périmètres? (out-of-scope → hors périmètres ; in scope → faisant partie du périmètre ?)
  • back-channel : canal arrière → back-channel?
  • front-channel
  • grant : subvention → ???
  • fingerprint : empreinte digitale → empreinte cryptographique?

randomstuff avatar Jun 09 '25 20:06 randomstuff

Hello, I think I resolved all issues and remarks. Can someone approuve the PR? Regards

clallier94 avatar Jun 15 '25 17:06 clallier94

It's ok for me

inaz0 avatar Jun 18 '25 12:06 inaz0

I'll try to make a quick review (for the modifications) in the following days.

randomstuff avatar Jun 18 '25 18:06 randomstuff

Sorry for the delay!

I think the following wording points have not been completely addressed.

allow list / back list:

  • Currently translated as: liste blanche / liste noire
  • I think should be replaced.
  • Proposition: liste d'acceptations / liste de rejets ?

endpoint:

  • Currently : "point de terminaison" and "point d'entrée" are used?
  • At least use the same term everywhere?
  • Proposition: endpoint?

(JWT) claim:

  • Currently "revendication"
  • Proposition: I sould just use "claim" which is looks clear to me.

scope (as in in-scope/out-of-scope, not for OAuth "scope"):

  • Currently: "portée"
  • Proposition: "périmètre"
  • out-of-scope → "hors périmètre"?
  • in scope → "faisant partie du périmètre"?
  • eg. "Portée de l'ASVS" → "Périmètre de l'ASVS"?

back-channel

  • Currently: "canal arrière"
  • I don't like this much.
  • Proposition: "back-channel"?

randomstuff avatar Jul 02 '25 19:07 randomstuff

Hello, my response :

allow list / back list: The current version is good

endpoint: The current version is good

(JWT) claim: The current version is good

scope (as in in-scope/out-of-scope, not for OAuth "scope"): Yes we can change for your proposition

back-channel: Maybe too litteral translation yes

inaz0 avatar Jul 03 '25 08:07 inaz0

allow list / back list: The current version is good

The original authors have chosen not to use "black list" and "white list" and used "allow list" and "deny list". Therefore, avoiding "liste noire" and "liste blanche" would be a more faithful translation.

Some references:

  • https://learn.microsoft.com/fr-fr/entra/external-id/allow-deny-list
  • https://wpforms.com/fr/docs/how-to-create-an-allowlist-denylist-for-email-addresses-in-wpforms/
  • https://www.illumio.com/fr/blog/allowlist-vs-denylist
  • https://knowledge.hubspot.com/fr/inbox/manage-your-inbox-s-allow-and-deny-list

In these examples, they chose to use:

  • "liste d’autorisations" and "liste de refus";
  • "liste d’autorisations" and "liste d'interdictions".

I would suggest we use either of these wording as well which aligns:

  • with the original text;
  • with other texts in the literature.

I would prefer the second form if possible although it appears to be slightly less used.

randomstuff avatar Jul 03 '25 10:07 randomstuff

So yes in this case we can edit to "liste d'interdiction" and "liste d'autorisation"

inaz0 avatar Jul 03 '25 12:07 inaz0

endpoint: The current version is good

I think we use two different wording ("point de terminaison" and "point d'entrée"), we shall at least use the same wording throughout the document.

randomstuff avatar Jul 03 '25 16:07 randomstuff

(JWT) claim: The current version is good

These ones uses "revendication" :

  • https://www.ibm.com/docs/fr/order-management?topic=users-jwt-authentication
  • https://learn.microsoft.com/fr-fr/entra/identity-platform/jwt-claims-customization

So it's probably OK.

I understand "claim" to actually mean "déclaration" (such as used here https://miashs-www.u-ga.fr/~davidjer/javaee/tp4.pdf) but let's keep "revendication".

randomstuff avatar Jul 03 '25 16:07 randomstuff

(JWT) claim: The current version is good

These ones uses "revendication" :

  • https://www.ibm.com/docs/fr/order-management?topic=users-jwt-authentication
  • https://learn.microsoft.com/fr-fr/entra/identity-platform/jwt-claims-customization

So it's probably OK. I understand "claim" to actually mean "déclaration" but we can probably keep "revendication" :smile:

Examples of usage of "déclaration":

  • https://docs.oracle.com/fr-fr/iaas/Content/Identity/api-getstarted/ClientAssertion.htm
  • https://miashs-www.u-ga.fr/~davidjer/javaee/tp4.pdf
  • https://cloud.google.com/apigee/docs/api-platform/reference/policies/verify-jwt-policy?hl=fr

randomstuff avatar Jul 03 '25 16:07 randomstuff

allow list / back list:

  • old: "liste noire" and "liste blanche"
  • new: "liste d'interdiction" and "liste d'autorisation"

endpoint

  • old: "point de terminaison" and "point d'entrée"
  • new: "endpoint"

(JWT) claim

  • old: "revendication"
  • new: "déclaration"

scope (as in in-scope/out-of-scope, not for OAuth "scope")

  • old: "portée" and "hors champs"
  • new: "périmètre" and "hors périmètre"

back-channel

  • old: "canal arrière"
  • new: "back-channel"

clallier94 avatar Jul 04 '25 13:07 clallier94

Sorry, but it appears there are 8 instances of "liste blanche" remaining.

randomstuff avatar Jul 07 '25 17:07 randomstuff

My apologies. It's fixed

clallier94 avatar Jul 07 '25 20:07 clallier94

Are there any more fixes to do here?

tghosth avatar Jul 17 '25 06:07 tghosth

Hello @tghosth ! It's ok for me

clallier94 avatar Jul 20 '25 21:07 clallier94

I think it's OK as well.

randomstuff avatar Jul 27 '25 17:07 randomstuff

Hello, What's news? Regards

clallier94 avatar Aug 26 '25 19:08 clallier94

Sorry for the delay, we need to prepare an integrity checking script for translations, I will try and get it done in the next couple of weeks, sorry for the delay

tghosth avatar Sep 10 '25 05:09 tghosth

We hope to have something on this around the end of this week, start of next week

tghosth avatar Sep 22 '25 09:09 tghosth

Hi @clallier94, this now has conflicts. Please revert changes to any shell scripts for now and resolve the merge conflicts. After that, I can merge into this interim branch and do some integrity checks.

tghosth avatar Oct 13 '25 08:10 tghosth

Hello @tghosth , I'm back; I was on vacation last week. I see that the new branch is merge to master. Good news. Thx for all

clallier94 avatar Oct 20 '25 07:10 clallier94

No problem, sorry I didn't wait but it was almost there and I didn't want to delay it :) Thanks to you and the team for your hard work! @clallier94

tghosth avatar Oct 20 '25 14:10 tghosth