fix: login page flag icon preload (#1393 )

feat: init score in organization (#1388 )
* feat: init score in organization * Update OrganizationEditPage.js Co-authored-by: hsluoyz <hsluoyz@qq.com>
2025-07-09 09:23:40 +08:00 · 2022-12-11 11:22:58 +08:00 · 2022-12-10 22:27:12 +08:00 · 2022-12-10 22:14:20 +08:00 · 2022-12-10 22:06:21 +08:00 · 2022-12-09 15:11:13 +08:00
78 changed files with 1857 additions and 1435 deletions
--- a/.github/workflows/sync.yml
+++ b/.github/workflows/sync.yml
@ -33,3 +33,24 @@ jobs:
        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
        CROWDIN_PROJECT_ID: '463556'
        CROWDIN_PERSONAL_TOKEN: ${{ secrets.CROWDIN_PERSONAL_TOKEN }}
    - name: crowdin backend action
      uses: crowdin/github-action@1.4.8
      with:
        upload_translations: true
        download_translations: true
        push_translations: true
        commit_message: 'refactor: New Crowdin Backend translations by Github Action'
        localization_branch_name: l10n_crowdin_action
        create_pull_request: true
        pull_request_title: 'refactor: New Crowdin Backend translations'
        crowdin_branch_name: l10n_branch
        config: './crowdin.yml'
      env:
        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
        CROWDIN_PROJECT_ID: '463556'
        CROWDIN_PERSONAL_TOKEN: ${{ secrets.CROWDIN_PERSONAL_TOKEN }}
--- a/controllers/account.go
+++ b/controllers/account.go
@ -102,7 +102,7 @@ type Captcha struct {
 // @router /signup [post]
 func (c *ApiController) Signup() {
 	if c.GetSessionUsername() != "" {
-		c.ResponseError(c.T("SignUpErr.SignOutFirst"), c.GetSessionUsername())
+		c.ResponseError(c.T("account:Please sign out first before signing up"), c.GetSessionUsername())
 		return
 	}
@ -115,7 +115,7 @@ func (c *ApiController) Signup() {
 	application := object.GetApplication(fmt.Sprintf("admin/%s", form.Application))
 	if !application.EnableSignUp {
-		c.ResponseError(c.T("SignUpErr.DoNotAllowSignUp"))
+		c.ResponseError(c.T("account:The application does not allow to sign up new account"))
 		return
 	}
@ -129,7 +129,7 @@ func (c *ApiController) Signup() {
 	if application.IsSignupItemVisible("Email") && application.GetSignupItemRule("Email") != "No verification" && form.Email != "" {
 		checkResult := object.CheckVerificationCode(form.Email, form.EmailCode, c.GetAcceptLanguage())
 		if len(checkResult) != 0 {
-			c.ResponseError(c.T("EmailErr.EmailCheckResult"), checkResult)
+			c.ResponseError(c.T("account:Email: %s"), checkResult)
 			return
 		}
 	}
@ -139,7 +139,7 @@ func (c *ApiController) Signup() {
 		checkPhone = fmt.Sprintf("+%s%s", form.PhonePrefix, form.Phone)
 		checkResult := object.CheckVerificationCode(checkPhone, form.PhoneCode, c.GetAcceptLanguage())
 		if len(checkResult) != 0 {
-			c.ResponseError(c.T("PhoneErr.PhoneCheckResult"), checkResult)
+			c.ResponseError(c.T("account:Phone: %s"), checkResult)
 			return
 		}
 	}
@ -161,9 +161,9 @@ func (c *ApiController) Signup() {
 		username = id
 	}
-	initScore, err := getInitScore()
+	initScore, err := getInitScore(organization)
 	if err != nil {
-		c.ResponseError(fmt.Errorf(c.T("InitErr.InitScoreFailed"), err).Error())
+		c.ResponseError(fmt.Errorf(c.T("account:Get init score failed, error: %w"), err).Error())
 		return
 	}
@ -209,7 +209,7 @@ func (c *ApiController) Signup() {
 	affected := object.AddUser(user)
 	if !affected {
-		c.ResponseError(c.T("UserErr.InvalidInformation"), util.StructToJson(user))
+		c.ResponseError(c.T("account:Invalid information"), util.StructToJson(user))
 		return
 	}
--- a/controllers/application.go
+++ b/controllers/application.go
@ -86,7 +86,7 @@ func (c *ApiController) GetUserApplication() {
 	id := c.Input().Get("id")
 	user := object.GetUser(id)
 	if user == nil {
-		c.ResponseError(fmt.Sprintf(c.T("UserErr.DoNotExist"), id))
+		c.ResponseError(fmt.Sprintf(c.T("application:The user: %s doesn't exist"), id))
 		return
 	}
@ -113,7 +113,7 @@ func (c *ApiController) GetOrganizationApplications() {
 	sortOrder := c.Input().Get("sortOrder")
 	if organization == "" {
-		c.ResponseError(c.T("ParameterErr.OrgMissingErr"))
+		c.ResponseError(c.T("application:Parameter organization is missing"))
 		return
 	}
--- a/controllers/auth.go
+++ b/controllers/auth.go
@ -65,7 +65,7 @@ func (c *ApiController) HandleLoggedIn(application *object.Application, user *ob
 		return
 	}
 	if !allowed {
-		c.ResponseError(c.T("AuthErr.Unauthorized"))
+		c.ResponseError(c.T("auth:Unauthorized operation"))
 		return
 	}
@ -84,7 +84,7 @@ func (c *ApiController) HandleLoggedIn(application *object.Application, user *ob
 		codeChallenge := c.Input().Get("code_challenge")
 		if challengeMethod != "S256" && challengeMethod != "null" && challengeMethod != "" {
-			c.ResponseError(c.T("AuthErr.ChallengeMethodErr"))
+			c.ResponseError(c.T("auth:Challenge method should be S256"))
 			return
 		}
 		code := object.GetOAuthCode(userId, clientId, responseType, redirectUri, scope, state, nonce, codeChallenge, c.Ctx.Request.Host, c.GetAcceptLanguage())
@ -205,7 +205,7 @@ func (c *ApiController) Login() {
 	if form.Username != "" {
 		if form.Type == ResponseTypeLogin {
 			if c.GetSessionUsername() != "" {
-				c.ResponseError(c.T("LoginErr.SignOutFirst"), c.GetSessionUsername())
+				c.ResponseError(c.T("auth:Please sign out first before signing in"), c.GetSessionUsername())
 				return
 			}
 		}
@ -231,7 +231,7 @@ func (c *ApiController) Login() {
 			} else {
 				verificationCodeType = "phone"
 				if len(form.PhonePrefix) == 0 {
-					responseText := fmt.Sprintf(c.T("PhoneErr.NoPrefix"), verificationCodeType)
+					responseText := fmt.Sprintf(c.T("auth:%s No phone prefix"), verificationCodeType)
 					c.ResponseError(responseText)
 					return
 				}
@ -256,13 +256,13 @@ func (c *ApiController) Login() {
 			user = object.GetUserByFields(form.Organization, form.Username)
 			if user == nil {
-				c.ResponseError(fmt.Sprintf(c.T("LoginErr.UserDoNotExist"), form.Organization, form.Username))
+				c.ResponseError(fmt.Sprintf(c.T("auth:The user: %s/%s doesn't exist"), form.Organization, form.Username))
 				return
 			}
 		} else {
 			application := object.GetApplication(fmt.Sprintf("admin/%s", form.Application))
 			if application == nil {
-				c.ResponseError(fmt.Sprintf("The application: %s does not exist", form.Application))
+				c.ResponseError(fmt.Sprintf(c.T("auth:The application: %s does not exist"), form.Application))
 				return
 			}
@ -274,7 +274,7 @@ func (c *ApiController) Login() {
 				}
 				if !isHuman {
-					c.ResponseError("Turing test failed.")
+					c.ResponseError(c.T("auth:Turing test failed."))
 					return
 				}
 			}
@ -288,7 +288,7 @@ func (c *ApiController) Login() {
 		} else {
 			application := object.GetApplication(fmt.Sprintf("admin/%s", form.Application))
 			if application == nil {
-				c.ResponseError(fmt.Sprintf(c.T("LoginErr.AppDoNotExist"), form.Application))
+				c.ResponseError(fmt.Sprintf(c.T("auth:The application: %s does not exist"), form.Application))
 				return
 			}
@ -302,7 +302,7 @@ func (c *ApiController) Login() {
 	} else if form.Provider != "" {
 		application := object.GetApplication(fmt.Sprintf("admin/%s", form.Application))
 		if application == nil {
-			c.ResponseError(fmt.Sprintf(c.T("LoginErr.AppDoNotExist"), form.Application))
+			c.ResponseError(fmt.Sprintf(c.T("auth:The application: %s does not exist"), form.Application))
 			return
 		}
@ -310,7 +310,7 @@ func (c *ApiController) Login() {
 		provider := object.GetProvider(util.GetId("admin", form.Provider))
 		providerItem := application.GetProviderItem(provider.Name)
 		if !providerItem.IsProviderVisible() {
-			c.ResponseError(fmt.Sprintf(c.T("ProviderErr.ProviderNotEnabled"), provider.Name))
+			c.ResponseError(fmt.Sprintf(c.T("auth:The provider: %s is not enabled for the application"), provider.Name))
 			return
 		}
@ -334,14 +334,14 @@ func (c *ApiController) Login() {
 			idProvider := idp.GetIdProvider(provider.Type, provider.SubType, clientId, clientSecret, provider.AppId, form.RedirectUri, provider.Domain, provider.CustomAuthUrl, provider.CustomTokenUrl, provider.CustomUserInfoUrl)
 			if idProvider == nil {
-				c.ResponseError(fmt.Sprintf(c.T("ProviderErr.ProviderNotSupported"), provider.Type))
+				c.ResponseError(fmt.Sprintf(c.T("auth:The provider type: %s is not supported"), provider.Type))
 				return
 			}
 			setHttpClient(idProvider, provider.Type)
 			if form.State != conf.GetConfigString("authState") && form.State != application.Name {
-				c.ResponseError(fmt.Sprintf(c.T("AuthErr.AuthStateWrong"), conf.GetConfigString("authState"), form.State))
+				c.ResponseError(fmt.Sprintf(c.T("auth:State expected: %s, but got: %s"), conf.GetConfigString("authState"), form.State))
 				return
 			}
@ -353,13 +353,13 @@ func (c *ApiController) Login() {
 			}
 			if !token.Valid() {
-				c.ResponseError(c.T("TokenErr.InvalidToken"))
+				c.ResponseError(c.T("auth:Invalid token"))
 				return
 			}
 			userInfo, err = idProvider.GetUserInfo(token)
 			if err != nil {
-				c.ResponseError(fmt.Sprintf(c.T("LoginErr.LoginFail"), err.Error()))
+				c.ResponseError(fmt.Sprintf(c.T("auth:Failed to login in: %s"), err.Error()))
 				return
 			}
 		}
@ -376,7 +376,7 @@ func (c *ApiController) Login() {
 				// Sign in via OAuth (want to sign up but already have account)
 				if user.IsForbidden {
-					c.ResponseError(c.T("LoginErr.UserIsForbidden"))
+					c.ResponseError(c.T("auth:The user is forbidden to sign in, please contact the administrator"))
 				}
 				resp = c.HandleLoggedIn(application, user, &form)
@ -388,12 +388,12 @@ func (c *ApiController) Login() {
 			} else if provider.Category == "OAuth" {
 				// Sign up via OAuth
 				if !application.EnableSignUp {
-					c.ResponseError(fmt.Sprintf(c.T("LoginErr.AppNotEnableSignUp"), provider.Type, userInfo.Username, userInfo.DisplayName))
+					c.ResponseError(fmt.Sprintf(c.T("auth:The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support"), provider.Type, userInfo.Username, userInfo.DisplayName))
 					return
 				}
 				if !providerItem.CanSignUp {
-					c.ResponseError(fmt.Sprintf(c.T("LoginErr.ProviderCanNotSignUp"), provider.Type, userInfo.Username, userInfo.DisplayName, provider.Type))
+					c.ResponseError(fmt.Sprintf(c.T("auth:The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up"), provider.Type, userInfo.Username, userInfo.DisplayName, provider.Type))
 					return
 				}
@ -412,9 +412,9 @@ func (c *ApiController) Login() {
 				properties := map[string]string{}
 				properties["no"] = strconv.Itoa(len(object.GetUsers(application.Organization)) + 2)
-				initScore, err := getInitScore()
+				initScore, err := getInitScore(organization)
 				if err != nil {
-					c.ResponseError(fmt.Errorf(c.T("InitErr.InitScoreFailed"), err).Error())
+					c.ResponseError(fmt.Errorf(c.T("auth:Get init score failed, error: %w"), err).Error())
 					return
 				}
@ -441,7 +441,7 @@ func (c *ApiController) Login() {
 				affected := object.AddUser(user)
 				if !affected {
-					c.ResponseError(fmt.Sprintf(c.T("LoginErr.InvalidUserInformation"), util.StructToJson(user)))
+					c.ResponseError(fmt.Sprintf(c.T("auth:Failed to create user, user information is invalid: %s"), util.StructToJson(user)))
 					return
 				}
@ -466,13 +466,13 @@ func (c *ApiController) Login() {
 		} else { // form.Method != "signup"
 			userId := c.GetSessionUsername()
 			if userId == "" {
-				c.ResponseError(c.T("LoginErr.AccountDoNotExist"), userInfo)
+				c.ResponseError(c.T("auth:The account does not exist"), userInfo)
 				return
 			}
 			oldUser := object.GetUserByField(application.Organization, provider.Type, userInfo.Id)
 			if oldUser != nil {
-				c.ResponseError(fmt.Sprintf(c.T("LoginErr.OldUser"), provider.Type, userInfo.Username, userInfo.DisplayName, oldUser.Name, oldUser.DisplayName))
+				c.ResponseError(fmt.Sprintf(c.T("auth:The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)"), provider.Type, userInfo.Username, userInfo.DisplayName, oldUser.Name, oldUser.DisplayName))
 				return
 			}
@ -493,7 +493,7 @@ func (c *ApiController) Login() {
 			// user already signed in to Casdoor, so let the user click the avatar button to do the quick sign-in
 			application := object.GetApplication(fmt.Sprintf("admin/%s", form.Application))
 			if application == nil {
-				c.ResponseError(fmt.Sprintf(c.T("LoginErr.AppDoNotExist"), form.Application))
+				c.ResponseError(fmt.Sprintf(c.T("auth:The application: %s does not exist"), form.Application))
 				return
 			}
@ -505,7 +505,7 @@ func (c *ApiController) Login() {
 			record.User = user.Name
 			util.SafeGoroutine(func() { object.AddRecord(record) })
 		} else {
-			c.ResponseError(fmt.Sprintf(c.T("LoginErr.UnknownAuthentication"), util.StructToJson(form)))
+			c.ResponseError(fmt.Sprintf(c.T("auth:Unknown authentication type (not password or provider), form = %s"), util.StructToJson(form)))
 			return
 		}
 	}
--- a/controllers/cas.go
+++ b/controllers/cas.go
@ -210,7 +210,7 @@ func (c *RootController) SamlValidate() {
 	}
 	if !strings.HasPrefix(target, service) {
-		c.ResponseError(fmt.Sprintf(c.T("CasErr.ServiceDoNotMatch"), target, service))
+		c.ResponseError(fmt.Sprintf(c.T("cas:Service %s and %s do not match"), target, service))
 		return
 	}
--- a/controllers/casbin_adapter.go
+++ b/controllers/casbin_adapter.go
@ -32,8 +32,8 @@ func (c *ApiController) GetCasbinAdapters() {
 	sortField := c.Input().Get("sortField")
 	sortOrder := c.Input().Get("sortOrder")
 	if limit == "" || page == "" {
-		c.Data["json"] = object.GetCasbinAdapters(owner)
+		adapters := object.GetCasbinAdapters(owner)
-		c.ServeJSON()
+		c.ResponseOk(adapters)
 	} else {
 		limit := util.ParseInt(limit)
 		paginator := pagination.SetPaginator(c.Ctx, limit, int64(object.GetCasbinAdapterCount(owner, field, value)))
@ -44,8 +44,8 @@ func (c *ApiController) GetCasbinAdapters() {
 func (c *ApiController) GetCasbinAdapter() {
 	id := c.Input().Get("id")
-	c.Data["json"] = object.GetCasbinAdapter(id)
+	adapter := object.GetCasbinAdapter(id)
-	c.ServeJSON()
+	c.ResponseOk(adapter)
 }
 func (c *ApiController) UpdateCasbinAdapter() {
@ -96,8 +96,7 @@ func (c *ApiController) SyncPolicies() {
 		return
 	}
-	c.Data["json"] = policies
+	c.ResponseOk(policies)
 	c.ServeJSON()
 }
 func (c *ApiController) UpdatePolicy() {
--- a/controllers/enforcer.go
+++ b/controllers/enforcer.go
@ -47,7 +47,7 @@ func (c *ApiController) BatchEnforce() {
 func (c *ApiController) GetAllObjects() {
 	userId := c.GetSessionUsername()
 	if userId == "" {
-		c.ResponseError(c.T("EnforcerErr.SignInFirst"))
+		c.ResponseError(c.T("enforcer:Please sign in first"))
 		return
 	}
@ -58,7 +58,7 @@ func (c *ApiController) GetAllObjects() {
 func (c *ApiController) GetAllActions() {
 	userId := c.GetSessionUsername()
 	if userId == "" {
-		c.ResponseError(c.T("EnforcerErr.SignInFirst"))
+		c.ResponseError(c.T("enforcer:Please sign in first"))
 		return
 	}
@ -69,7 +69,7 @@ func (c *ApiController) GetAllActions() {
 func (c *ApiController) GetAllRoles() {
 	userId := c.GetSessionUsername()
 	if userId == "" {
-		c.ResponseError(c.T("EnforcerErr.SignInFirst"))
+		c.ResponseError(c.T("enforcer:Please sign in first"))
 		return
 	}
--- a/controllers/ldap.go
+++ b/controllers/ldap.go
@ -52,7 +52,7 @@ func (c *ApiController) GetLdapUser() {
 	ldapServer := LdapServer{}
 	err := json.Unmarshal(c.Ctx.Input.RequestBody, &ldapServer)
 	if err != nil || util.IsStrsEmpty(ldapServer.Host, ldapServer.Admin, ldapServer.Passwd, ldapServer.BaseDn) {
-		c.ResponseError(c.T("ParameterErr.Missing"))
+		c.ResponseError(c.T("ldap:Missing parameter"))
 		return
 	}
@ -120,7 +120,7 @@ func (c *ApiController) GetLdap() {
 	id := c.Input().Get("id")
 	if util.IsStrsEmpty(id) {
-		c.ResponseError(c.T("ParameterErr.Missing"))
+		c.ResponseError(c.T("ldap:Missing parameter"))
 		return
 	}
@ -136,17 +136,17 @@ func (c *ApiController) AddLdap() {
 	var ldap object.Ldap
 	err := json.Unmarshal(c.Ctx.Input.RequestBody, &ldap)
 	if err != nil {
-		c.ResponseError(c.T("ParameterErr.Missing"))
+		c.ResponseError(c.T("ldap:Missing parameter"))
 		return
 	}
 	if util.IsStrsEmpty(ldap.Owner, ldap.ServerName, ldap.Host, ldap.Admin, ldap.Passwd, ldap.BaseDn) {
-		c.ResponseError(c.T("ParameterErr.Missing"))
+		c.ResponseError(c.T("ldap:Missing parameter"))
 		return
 	}
 	if object.CheckLdapExist(&ldap) {
-		c.ResponseError(c.T("LdapErr.ServerExisted"))
+		c.ResponseError(c.T("ldap:Ldap server exist"))
 		return
 	}
@ -171,7 +171,7 @@ func (c *ApiController) UpdateLdap() {
 	var ldap object.Ldap
 	err := json.Unmarshal(c.Ctx.Input.RequestBody, &ldap)
 	if err != nil || util.IsStrsEmpty(ldap.Owner, ldap.ServerName, ldap.Host, ldap.Admin, ldap.Passwd, ldap.BaseDn) {
-		c.ResponseError(c.T("ParameterErr.Missing"))
+		c.ResponseError(c.T("ldap:Missing parameter"))
 		return
 	}
--- a/controllers/link.go
+++ b/controllers/link.go
@ -47,7 +47,7 @@ func (c *ApiController) Unlink() {
 	if user.Id != unlinkedUser.Id && !user.IsGlobalAdmin {
 		// if the user is not the same as the one we are unlinking, we need to make sure the user is the global admin.
-		c.ResponseError(c.T("AuthErr.CanNotUnlinkUsers"))
+		c.ResponseError(c.T("link:You are not the global admin, you can't unlink other users"))
 		return
 	}
@ -55,23 +55,23 @@ func (c *ApiController) Unlink() {
 		// if the user is unlinking themselves, should check the provider can be unlinked, if not, we should return an error.
 		application := object.GetApplicationByUser(user)
 		if application == nil {
-			c.ResponseError(c.T("AuthErr.CanNotLinkMySelf"))
+			c.ResponseError(c.T("link:You can't unlink yourself, you are not a member of any application"))
 			return
 		}
 		if len(application.Providers) == 0 {
-			c.ResponseError(c.T("ApplicationErr.HasNoProviders"))
+			c.ResponseError(c.T("link:This application has no providers"))
 			return
 		}
 		provider := application.GetProviderItemByType(providerType)
 		if provider == nil {
-			c.ResponseError(c.T("ApplicationErr.HasNoProvidersOfType") + providerType)
+			c.ResponseError(c.T("link:This application has no providers of type") + providerType)
 			return
 		}
 		if !provider.CanUnlink {
-			c.ResponseError(c.T("ProviderErr.CanNotBeUnlinked"))
+			c.ResponseError(c.T("link:This provider can't be unlinked"))
 			return
 		}
@ -84,7 +84,7 @@ func (c *ApiController) Unlink() {
 	value := object.GetUserField(&unlinkedUser, providerType)
 	if value == "" {
-		c.ResponseError(c.T("ProviderErr.LinkFirstErr"), value)
+		c.ResponseError(c.T("link:Please link first"), value)
 		return
 	}
--- a/controllers/product.go
+++ b/controllers/product.go
@ -141,13 +141,13 @@ func (c *ApiController) BuyProduct() {
 	userId := c.GetSessionUsername()
 	if userId == "" {
-		c.ResponseError(c.T("LoginErr.LoginFirst"))
+		c.ResponseError(c.T("product:Please login first"))
 		return
 	}
 	user := object.GetUser(userId)
 	if user == nil {
-		c.ResponseError(fmt.Sprintf(c.T("UserErr.DoNotExist"), userId))
+		c.ResponseError(fmt.Sprintf(c.T("product:The user: %s doesn't exist"), userId))
 		return
 	}
--- a/controllers/resource.go
+++ b/controllers/resource.go
@ -154,7 +154,7 @@ func (c *ApiController) UploadResource() {
 	defer file.Close()
 	if username == "" || fullFilePath == "" {
-		c.ResponseError(fmt.Sprintf(c.T("ResourceErr.UsernameOrFilePathEmpty"), username, fullFilePath))
+		c.ResponseError(fmt.Sprintf(c.T("resource:Username or fullFilePath is empty: username = %s, fullFilePath = %s"), username, fullFilePath))
 		return
 	}
@ -227,7 +227,7 @@ func (c *ApiController) UploadResource() {
 	case "avatar":
 		user := object.GetUserNoCheck(util.GetId(owner, username))
 		if user == nil {
-			c.ResponseError(c.T("ResourceErr.UserIsNil"))
+			c.ResponseError(c.T("resource:User is nil for tag: avatar"))
 			return
 		}
--- a/controllers/saml.go
+++ b/controllers/saml.go
@ -25,7 +25,7 @@ func (c *ApiController) GetSamlMeta() {
 	paramApp := c.Input().Get("application")
 	application := object.GetApplication(paramApp)
 	if application == nil {
-		c.ResponseError(fmt.Sprintf(c.T("ApplicationErr.AppNotFound"), paramApp))
+		c.ResponseError(fmt.Sprintf(c.T("saml:Application %s not found"), paramApp))
 		return
 	}
 	metadata, _ := object.GetSamlMeta(application, host)
--- a/controllers/service.go
+++ b/controllers/service.go
@ -81,7 +81,7 @@ func (c *ApiController) SendEmail() {
 	}
 	if util.IsStrsEmpty(emailForm.Title, emailForm.Content, emailForm.Sender) {
-		c.ResponseError(fmt.Sprintf(c.T("EmailErr.EmptyParam"), emailForm))
+		c.ResponseError(fmt.Sprintf(c.T("service:Empty parameters for emailForm: %v"), emailForm))
 		return
 	}
@ -93,7 +93,7 @@ func (c *ApiController) SendEmail() {
 	}
 	if len(invalidReceivers) != 0 {
-		c.ResponseError(fmt.Sprintf(c.T("EmailErr.InvalidReceivers"), invalidReceivers))
+		c.ResponseError(fmt.Sprintf(c.T("service:Invalid Email receivers: %s"), invalidReceivers))
 		return
 	}
@ -141,7 +141,7 @@ func (c *ApiController) SendSms() {
 	}
 	if len(invalidReceivers) != 0 {
-		c.ResponseError(fmt.Sprintf(c.T("PhoneErr.InvalidReceivers"), invalidReceivers))
+		c.ResponseError(fmt.Sprintf(c.T("service:Invalid phone receivers: %s"), invalidReceivers))
 		return
 	}
--- a/controllers/system_info.go
+++ b/controllers/system_info.go
@ -40,7 +40,7 @@ func (c *ApiController) GetSystemInfo() {
 	user := object.GetUser(id)
 	if user == nil || !user.IsGlobalAdmin {
-		c.ResponseError(c.T("ResourceErr.NotAuthorized"))
+		c.ResponseError(c.T("system_info:You are not authorized to access this resource"))
 		return
 	}
--- a/controllers/token.go
+++ b/controllers/token.go
@ -150,7 +150,7 @@ func (c *ApiController) GetOAuthCode() {
 	codeChallenge := c.Input().Get("code_challenge")
 	if challengeMethod != "S256" && challengeMethod != "null" && challengeMethod != "" {
-		c.ResponseError(c.T("AuthErr.ChallengeMethodErr"))
+		c.ResponseError(c.T("token:Challenge method should be S256"))
 		return
 	}
 	host := c.Ctx.Request.Host
@ -290,7 +290,7 @@ func (c *ApiController) IntrospectToken() {
 		clientId = c.Input().Get("client_id")
 		clientSecret = c.Input().Get("client_secret")
 		if clientId == "" || clientSecret == "" {
-			c.ResponseError(c.T("TokenErr.EmptyClientID"))
+			c.ResponseError(c.T("token:Empty clientId or clientSecret"))
 			c.Data["json"] = &object.TokenError{
 				Error: object.InvalidRequest,
 			}
@ -301,7 +301,7 @@ func (c *ApiController) IntrospectToken() {
 	}
 	application := object.GetApplicationByClientId(clientId)
 	if application == nil || application.ClientSecret != clientSecret {
-		c.ResponseError(c.T("TokenErr.InvalidAppOrWrongClientSecret"))
+		c.ResponseError(c.T("token:Invalid application or wrong clientSecret"))
 		c.Data["json"] = &object.TokenError{
 			Error: object.InvalidClient,
 		}
--- a/controllers/user.go
+++ b/controllers/user.go
@ -149,7 +149,7 @@ func (c *ApiController) UpdateUser() {
 	}
 	if user.DisplayName == "" {
-		c.ResponseError(c.T("UserErr.DisplayNameCanNotBeEmpty"))
+		c.ResponseError(c.T("user:Display name cannot be empty"))
 		return
 	}
@ -236,7 +236,7 @@ func (c *ApiController) GetEmailAndPhone() {
 	user := object.GetUserByFields(form.Organization, form.Username)
 	if user == nil {
-		c.ResponseError(fmt.Sprintf(c.T("UserErr.DoNotExistInOrg"), form.Organization, form.Username))
+		c.ResponseError(fmt.Sprintf(c.T("user:The user: %s/%s doesn't exist"), form.Organization, form.Username))
 		return
 	}
@ -294,12 +294,12 @@ func (c *ApiController) SetPassword() {
 	}
 	if strings.Contains(newPassword, " ") {
-		c.ResponseError(c.T("SetPasswordErr.CanNotContainBlank"))
+		c.ResponseError(c.T("user:New password cannot contain blank space."))
 		return
 	}
 	if len(newPassword) <= 5 {
-		c.ResponseError(c.T("SetPasswordErr.LessThanSixCharacters"))
+		c.ResponseError(c.T("user:New password must have at least 6 characters"))
 		return
 	}
--- a/controllers/user_upload.go
+++ b/controllers/user_upload.go
@ -61,6 +61,6 @@ func (c *ApiController) UploadUsers() {
 	if affected {
 		c.ResponseOk()
 	} else {
-		c.ResponseError(c.T("UserErr.FailToImportUsers"))
+		c.ResponseError(c.T("user_upload:Failed to import users"))
 	}
 }
--- a/controllers/util.go
+++ b/controllers/util.go
@ -84,7 +84,7 @@ func (c *ApiController) SetTokenErrorHttpStatus() {
 func (c *ApiController) RequireSignedIn() (string, bool) {
 	userId := c.GetSessionUsername()
 	if userId == "" {
-		c.ResponseError(c.T("LoginErr.LoginFirst"), "Please login first")
+		c.ResponseError(c.T("util:Please login first"), "Please login first")
 		return "", false
 	}
 	return userId, true
@ -100,7 +100,7 @@ func (c *ApiController) RequireSignedInUser() (*object.User, bool) {
 	user := object.GetUser(userId)
 	if user == nil {
 		c.ClearUserSession()
-		c.ResponseError(fmt.Sprintf(c.T("UserErr.DoNotExist"), userId))
+		c.ResponseError(fmt.Sprintf(c.T("util:The user: %s doesn't exist"), userId))
 		return nil, false
 	}
 	return user, true
@ -119,8 +119,12 @@ func (c *ApiController) RequireAdmin() (string, bool) {
 	return user.Owner, true
 }
-func getInitScore() (int, error) {
+func getInitScore(organization *object.Organization) (int, error) {
-	return strconv.Atoi(conf.GetConfigString("initScore"))
+	if organization != nil {
 		return organization.InitScore, nil
 	} else {
 		return strconv.Atoi(conf.GetConfigString("initScore"))
 	}
 }
 func (c *ApiController) GetProviderFromContext(category string) (*object.Provider, *object.User, bool) {
@ -128,7 +132,7 @@ func (c *ApiController) GetProviderFromContext(category string) (*object.Provide
 	if providerName != "" {
 		provider := object.GetProvider(util.GetId("admin", providerName))
 		if provider == nil {
-			c.ResponseError(c.T("ProviderErr.ProviderNotFound"), providerName)
+			c.ResponseError(c.T("util:The provider: %s is not found"), providerName)
 			return nil, nil, false
 		}
 		return provider, nil, true
@ -141,13 +145,13 @@ func (c *ApiController) GetProviderFromContext(category string) (*object.Provide
 	application, user := object.GetApplicationByUserId(userId)
 	if application == nil {
-		c.ResponseError(fmt.Sprintf(c.T("ApplicationErr.AppNotFoundForUserID"), userId))
+		c.ResponseError(fmt.Sprintf(c.T("util:No application is found for userId: %s"), userId))
 		return nil, nil, false
 	}
 	provider := application.GetProviderByCategory(category)
 	if provider == nil {
-		c.ResponseError(fmt.Sprintf(c.T("ProviderErr.ProviderNotFoundForCategory"), category, application.Name))
+		c.ResponseError(fmt.Sprintf(c.T("util:No provider for category: %s is found for application: %s"), category, application.Name))
 		return nil, nil, false
 	}
--- a/controllers/verification.go
+++ b/controllers/verification.go
@ -50,23 +50,23 @@ func (c *ApiController) SendVerificationCode() {
 	remoteAddr := util.GetIPFromRequest(c.Ctx.Request)
 	if destType == "" {
-		c.ResponseError(c.T("ParameterErr.Missing") + ": type.")
+		c.ResponseError(c.T("verification:Missing parameter") + ": type.")
 		return
 	}
 	if dest == "" {
-		c.ResponseError(c.T("ParameterErr.Missing") + ": dest.")
+		c.ResponseError(c.T("verification:Missing parameter") + ": dest.")
 		return
 	}
 	if applicationId == "" {
-		c.ResponseError(c.T("ParameterErr.Missing") + ": applicationId.")
+		c.ResponseError(c.T("verification:Missing parameter") + ": applicationId.")
 		return
 	}
 	if !strings.Contains(applicationId, "/") {
-		c.ResponseError(c.T("ParameterErr.Wrong") + ": applicationId.")
+		c.ResponseError(c.T("verification:Wrong parameter") + ": applicationId.")
 		return
 	}
 	if checkType == "" {
-		c.ResponseError(c.T("ParameterErr.Missing") + ": checkType.")
+		c.ResponseError(c.T("verification:Missing parameter") + ": checkType.")
 		return
 	}
@ -74,7 +74,7 @@ func (c *ApiController) SendVerificationCode() {
 	if captchaProvider != nil {
 		if checkKey == "" {
-			c.ResponseError(c.T("ParameterErr.Missing") + ": checkKey.")
+			c.ResponseError(c.T("verification:Missing parameter") + ": checkKey.")
 			return
 		}
 		isHuman, err := captchaProvider.VerifyCaptcha(checkKey, checkId)
@ -84,7 +84,7 @@ func (c *ApiController) SendVerificationCode() {
 		}
 		if !isHuman {
-			c.ResponseError(c.T("AuthErr.NotHuman"))
+			c.ResponseError(c.T("verification:Turing test failed."))
 			return
 		}
 	}
@ -93,12 +93,12 @@ func (c *ApiController) SendVerificationCode() {
 	application := object.GetApplication(applicationId)
 	organization := object.GetOrganization(fmt.Sprintf("%s/%s", application.Owner, application.Organization))
 	if organization == nil {
-		c.ResponseError(c.T("OrgErr.DoNotExist"))
+		c.ResponseError(c.T("verification:Organization does not exist"))
 		return
 	}
 	if checkUser == "true" && user == nil && object.GetUserByFields(organization.Name, dest) == nil {
-		c.ResponseError(c.T("LoginErr.LoginFirst"))
+		c.ResponseError(c.T("verification:Please login first"))
 		return
 	}
@ -114,13 +114,13 @@ func (c *ApiController) SendVerificationCode() {
 			dest = user.Email
 		}
 		if !util.IsEmailValid(dest) {
-			c.ResponseError(c.T("EmailErr.EmailInvalid"))
+			c.ResponseError(c.T("verification:Email is invalid"))
 			return
 		}
 		userByEmail := object.GetUserByEmail(organization.Name, dest)
 		if userByEmail == nil {
-			c.ResponseError(c.T("UserErr.DoNotExistSignUp"))
+			c.ResponseError(c.T("verification:the user does not exist, please sign up first"))
 			return
 		}
@ -131,13 +131,13 @@ func (c *ApiController) SendVerificationCode() {
 			dest = user.Phone
 		}
 		if !util.IsPhoneCnValid(dest) {
-			c.ResponseError(c.T("PhoneErr.NumberInvalid"))
+			c.ResponseError(c.T("verification:Phone number is invalid"))
 			return
 		}
 		userByPhone := object.GetUserByPhone(organization.Name, dest)
 		if userByPhone == nil {
-			c.ResponseError(c.T("UserErr.DoNotExistSignUp"))
+			c.ResponseError(c.T("verification:the user does not exist, please sign up first"))
 			return
 		}
@ -169,7 +169,7 @@ func (c *ApiController) ResetEmailOrPhone() {
 	dest := c.Ctx.Request.Form.Get("dest")
 	code := c.Ctx.Request.Form.Get("code")
 	if len(dest) == 0 || len(code) == 0 || len(destType) == 0 {
-		c.ResponseError(c.T("ParameterErr.Missing"))
+		c.ResponseError(c.T("verification:Missing parameter"))
 		return
 	}
@ -178,7 +178,7 @@ func (c *ApiController) ResetEmailOrPhone() {
 	if destType == "phone" {
 		phoneItem := object.GetAccountItemByName("Phone", org)
 		if phoneItem == nil {
-			c.ResponseError(c.T("PhoneErr.UnableGetModifyRule"))
+			c.ResponseError(c.T("verification:Unable to get the phone modify rule."))
 			return
 		}
@ -195,7 +195,7 @@ func (c *ApiController) ResetEmailOrPhone() {
 	} else if destType == "email" {
 		emailItem := object.GetAccountItemByName("Email", org)
 		if emailItem == nil {
-			c.ResponseError(c.T("EmailErr.UnableGetModifyRule"))
+			c.ResponseError(c.T("verification:Unable to get the email modify rule."))
 			return
 		}
@ -217,7 +217,7 @@ func (c *ApiController) ResetEmailOrPhone() {
 		user.Phone = dest
 		object.SetUserField(user, "phone", user.Phone)
 	default:
-		c.ResponseError(c.T("ParameterErr.UnknownType"))
+		c.ResponseError(c.T("verification:Unknown type"))
 		return
 	}
@ -236,17 +236,17 @@ func (c *ApiController) VerifyCaptcha() {
 	captchaToken := c.Ctx.Request.Form.Get("captchaToken")
 	clientSecret := c.Ctx.Request.Form.Get("clientSecret")
 	if captchaToken == "" {
-		c.ResponseError(c.T("ParameterErr.Missing") + ": captchaToken.")
+		c.ResponseError(c.T("verification:Missing parameter") + ": captchaToken.")
 		return
 	}
 	if clientSecret == "" {
-		c.ResponseError(c.T("ParameterErr.Missing") + ": clientSecret.")
+		c.ResponseError(c.T("verification:Missing parameter") + ": clientSecret.")
 		return
 	}
 	provider := captcha.GetCaptchaProvider(captchaType)
 	if provider == nil {
-		c.ResponseError(c.T("ProviderErr.InvalidProvider"))
+		c.ResponseError(c.T("verification:Invalid captcha provider."))
 		return
 	}
--- a/controllers/webauthn.go
+++ b/controllers/webauthn.go
@ -35,7 +35,7 @@ func (c *ApiController) WebAuthnSignupBegin() {
 	webauthnObj := object.GetWebAuthnObject(c.Ctx.Request.Host)
 	user := c.getCurrentUser()
 	if user == nil {
-		c.ResponseError(c.T("LoginErr.LoginFirst"))
+		c.ResponseError(c.T("webauthn:Please login first"))
 		return
 	}
@ -66,13 +66,13 @@ func (c *ApiController) WebAuthnSignupFinish() {
 	webauthnObj := object.GetWebAuthnObject(c.Ctx.Request.Host)
 	user := c.getCurrentUser()
 	if user == nil {
-		c.ResponseError(c.T("LoginErr.LoginFirst"))
+		c.ResponseError(c.T("webauthn:Please login first"))
 		return
 	}
 	sessionObj := c.GetSession("registration")
 	sessionData, ok := sessionObj.(webauthn.SessionData)
 	if !ok {
-		c.ResponseError(c.T("AuthErr.CallWebAuthnSigninBegin"))
+		c.ResponseError(c.T("webauthn:Please call WebAuthnSigninBegin first"))
 		return
 	}
 	c.Ctx.Request.Body = io.NopCloser(bytes.NewBuffer(c.Ctx.Input.RequestBody))
@ -101,11 +101,11 @@ func (c *ApiController) WebAuthnSigninBegin() {
 	userName := c.Input().Get("name")
 	user := object.GetUserByFields(userOwner, userName)
 	if user == nil {
-		c.ResponseError(fmt.Sprintf(c.T("UserErr.DoNotExistInOrg"), userOwner, userName))
+		c.ResponseError(fmt.Sprintf(c.T("webauthn:The user: %s/%s doesn't exist"), userOwner, userName))
 		return
 	}
 	if len(user.WebauthnCredentials) == 0 {
-		c.ResponseError(c.T("UserErr.NoWebAuthnCredential"))
+		c.ResponseError(c.T("webauthn:Found no credentials for this user"))
 		return
 	}
@ -132,7 +132,7 @@ func (c *ApiController) WebAuthnSigninFinish() {
 	sessionObj := c.GetSession("authentication")
 	sessionData, ok := sessionObj.(webauthn.SessionData)
 	if !ok {
-		c.ResponseError(c.T("AuthErr.CallWebAuthnSigninBegin"))
+		c.ResponseError(c.T("webauthn:Please call WebAuthnSigninBegin first"))
 		return
 	}
 	c.Ctx.Request.Body = io.NopCloser(bytes.NewBuffer(c.Ctx.Input.RequestBody))
--- a/crowdin.yml
+++ b/crowdin.yml
@ -0,0 +1,10 @@
 project_id: '491513'
 api_token_env: 'CROWDIN_PERSONAL_TOKEN'
 preserve_hierarchy: true
 files: [
  # JSON translation files
    {
        source: '/i18n/locales/en/data.json',
        translation: '/i18n/locales/%two_letters_code%/data.json',
    },
 ]
--- a/go.mod
+++ b/go.mod
@ -4,7 +4,6 @@ go 1.16
 require (
 	github.com/RobotsAndPencils/go-saml v0.0.0-20170520135329-fb13cb52a46b
 	github.com/Unknwon/goconfig v1.0.0
 	github.com/alexedwards/argon2id v0.0.0-20211130144151-3585854a6387
 	github.com/aws/aws-sdk-go v1.44.4
 	github.com/beego/beego v1.12.11
@ -12,7 +11,6 @@ require (
 	github.com/casbin/casbin/v2 v2.30.1
 	github.com/casbin/xorm-adapter/v3 v3.0.1
 	github.com/casdoor/go-sms-sender v0.5.1
 	github.com/casdoor/goth v1.69.0-FIX2
 	github.com/casdoor/oss v1.2.0
 	github.com/dchest/captcha v0.0.0-20200903113550-03f5f0333e1f
 	github.com/denisenkom/go-mssqldb v0.0.0-20200428022330-06a60b6afbbc
@ -27,9 +25,10 @@ require (
 	github.com/google/go-cmp v0.5.8 // indirect
 	github.com/google/uuid v1.2.0
 	github.com/kardianos/osext v0.0.0-20190222173326-2bc1f35cddc0 // indirect
-	github.com/lestrrat-go/jwx v0.9.0
+	github.com/lestrrat-go/jwx v1.2.21
 	github.com/lib/pq v1.8.0
 	github.com/lor00x/goldap v0.0.0-20180618054307-a546dffdd1a3
 	github.com/markbates/goth v1.75.2
 	github.com/nu7hatch/gouuid v0.0.0-20131221200532-179d4d0c4d8d // indirect
 	github.com/qiangmzsx/string-adapter/v2 v2.1.0
 	github.com/robfig/cron/v3 v3.0.1
@ -38,19 +37,18 @@ require (
 	github.com/satori/go.uuid v1.2.0
 	github.com/shirou/gopsutil v3.21.11+incompatible
 	github.com/skip2/go-qrcode v0.0.0-20200617195104-da1b6568686e
 	github.com/smartystreets/goconvey v1.6.4 // indirect
 	github.com/stretchr/testify v1.8.0
 	github.com/tealeg/xlsx v1.0.5
 	github.com/thanhpk/randstr v1.0.4
 	github.com/tklauser/go-sysconf v0.3.10 // indirect
 	github.com/yusufpapurcu/wmi v1.2.2 // indirect
-	golang.org/x/crypto v0.0.0-20220208233918-bba287dce954
+	golang.org/x/crypto v0.0.0-20220214200702-86341886e292
 	golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd
 	golang.org/x/oauth2 v0.0.0-20210628180205-a41e5a781914
 	golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a // indirect
 	gopkg.in/alexcesaro/quotedprintable.v3 v3.0.0-20150716171945-2caba252f4dc // indirect
 	gopkg.in/gomail.v2 v2.0.0-20160411212932-81ebce5c23df // indirect
-	gopkg.in/ini.v1 v1.67.0
+	gopkg.in/ini.v1 v1.67.0 // indirect
 	gopkg.in/square/go-jose.v2 v2.6.0
 	gopkg.in/yaml.v2 v2.3.0 // indirect
 	xorm.io/builder v0.3.12 // indirect
--- a/go.sum
+++ b/go.sum
@ -61,8 +61,6 @@ github.com/Knetic/govaluate v3.0.1-0.20171022003610-9aa49832a739+incompatible/go
 github.com/PuerkitoBio/goquery v1.5.1/go.mod h1:GsLWisAFVj4WgDibEWF4pvYnkVQBpKBKeU+7zCJoLcc=
 github.com/RobotsAndPencils/go-saml v0.0.0-20170520135329-fb13cb52a46b h1:EgJ6N2S0h1WfFIjU5/VVHWbMSVYXAluop97Qxpr/lfQ=
 github.com/RobotsAndPencils/go-saml v0.0.0-20170520135329-fb13cb52a46b/go.mod h1:3SAoF0F5EbcOuBD5WT9nYkbIJieBS84cUQXADbXeBsU=
 github.com/Unknwon/goconfig v1.0.0 h1:9IAu/BYbSLQi8puFjUQApZTxIHqSwrj5d8vpP8vTq4A=
 github.com/Unknwon/goconfig v1.0.0/go.mod h1:wngxua9XCNjvHjDiTiV26DaKDT+0c63QR6H5hjVUUxw=
 github.com/alecthomas/template v0.0.0-20160405071501-a0175ee3bccc/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
 github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
 github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
@ -102,8 +100,6 @@ github.com/casbin/xorm-adapter/v3 v3.0.1 h1:0l0zkYxo6cNuIdrBZgFxlje1TRvmheYa/zIp
 github.com/casbin/xorm-adapter/v3 v3.0.1/go.mod h1:1BL7rHEDXrxO+vQdSo/ZaWKRivXl7YTos67GdMYcd20=
 github.com/casdoor/go-sms-sender v0.5.1 h1:1/Wp1OLkVAVY4lEGQhekSNetSAWhnPcxYPV7xpCZgC0=
 github.com/casdoor/go-sms-sender v0.5.1/go.mod h1:kBykbqwgRDXbXdMAIxmZKinVM1WjdqEbej5LAbUbcfI=
 github.com/casdoor/goth v1.69.0-FIX2 h1:RgfIMkL9kekylgxHHK2ZY8ASAwOGns2HVlaBwLu7Bcs=
 github.com/casdoor/goth v1.69.0-FIX2/go.mod h1:Om55nRo8CkeDkPSNBbzXW4G5uI28ZUkSk5S69dPek3s=
 github.com/casdoor/oss v1.2.0 h1:ozLAE+nnNdFQBWbzH8U9spzaO8h8NrB57lBcdyMUUQ8=
 github.com/casdoor/oss v1.2.0/go.mod h1:qii35VBuxnR/uEuYSKpS0aJ8htQFOcCVsZ4FHgHLuss=
 github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
@ -127,6 +123,9 @@ github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/dchest/captcha v0.0.0-20200903113550-03f5f0333e1f h1:q/DpyjJjZs94bziQ7YkBmIlpqbVP7yw179rnzoNVX1M=
 github.com/dchest/captcha v0.0.0-20200903113550-03f5f0333e1f/go.mod h1:QGrK8vMWWHQYQ3QU9bw9Y9OPNfxccGzfb41qjvVeXtY=
 github.com/decred/dcrd/crypto/blake256 v1.0.0/go.mod h1:sQl2p6Y26YV+ZOcSTP6thNdn47hh8kt6rqSlvmrXFAc=
 github.com/decred/dcrd/dcrec/secp256k1/v4 v4.0.0-20210816181553-5444fa50b93d h1:1iy2qD6JEhHKKhUOA9IWs7mjco7lnw2qx8FsRI2wirE=
 github.com/decred/dcrd/dcrec/secp256k1/v4 v4.0.0-20210816181553-5444fa50b93d/go.mod h1:tmAIfUFEirG/Y8jhZ9M+h36obRZAk/1fcSpXwAVlfqE=
 github.com/denisenkom/go-mssqldb v0.0.0-20200428022330-06a60b6afbbc h1:VRRKCwnzqk8QCaRC4os14xoKDdbHqqlJtJA0oc1ZAjg=
 github.com/denisenkom/go-mssqldb v0.0.0-20200428022330-06a60b6afbbc/go.mod h1:xbL0rPBG9cCiLr28tMa8zpbdarY27NDyej4t/EjAShU=
 github.com/duo-labs/webauthn v0.0.0-20211221191814-a22482edaa3b h1:L63RATZFZuFMXy6ixnKmv3eNAXwYQF6HW1vd4IYsQqQ=
@ -175,6 +174,8 @@ github.com/go-sql-driver/mysql v1.4.1/go.mod h1:zAC/RDZ24gD3HViQzih4MyKcchzm+sOG
 github.com/go-sql-driver/mysql v1.5.0 h1:ozyZYNQW3x3HtqT1jira07DN2PArx2v7/mN66gGcHOs=
 github.com/go-sql-driver/mysql v1.5.0/go.mod h1:DCzpHaOWr8IXmIStZouvnhqoel9Qv2LBy8hT2VhHyBg=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
 github.com/goccy/go-json v0.9.6 h1:5/4CtRQdtsX0sal8fdVhTaiMN01Ri8BExZZ8iRmHQ6E=
 github.com/goccy/go-json v0.9.6/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I=
 github.com/gogo/protobuf v1.1.1/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ=
 github.com/goji/httpauth v0.0.0-20160601135302-2da839ab0f4d/go.mod h1:nnjvkQ9ptGaCkuDUx6wNykzzlUixGxvkme+H/lnzb+A=
 github.com/golang-jwt/jwt v3.2.2+incompatible h1:IfV12K8xAKAnZqdXVzCZ+TOjboZ2keLg81eXfW3O+oY=
@ -249,7 +250,6 @@ github.com/google/uuid v1.2.0 h1:qJYtXnJRWmpe7m/3XlyhrsLrEURqHRM2kxzoxXqyUDs=
 github.com/google/uuid v1.2.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
 github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1 h1:EGx4pi6eqNxGaHF6qqu48+N2wcFQ5qg5FXgOdqsJ5d8=
 github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1/go.mod h1:wJfORRmW1u3UXTncJ5qlYoELFm8eSnnEO6hX4iZ3EWY=
 github.com/gorilla/context v1.1.1 h1:AWwleXJkX/nhcU9bZSnZoi3h/qGYqQAGhq6zZe/aQW8=
 github.com/gorilla/context v1.1.1/go.mod h1:kBGZzfjB9CEq2AlWe17Uuf7NDRt0dE0s8S51q0aT7Yg=
@ -283,7 +283,6 @@ github.com/json-iterator/go v1.1.10 h1:Kz6Cvnvv2wGdaG/V8yMvfkmNiXq9Ya2KUv4rouJJr
 github.com/json-iterator/go v1.1.10/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
 github.com/jstemmer/go-junit-report v0.0.0-20190106144839-af01ea7f8024/go.mod h1:6v2b51hI/fHJwM22ozAgKL4VKDeJcHhJFhtBdhmNjmU=
 github.com/jstemmer/go-junit-report v0.9.1/go.mod h1:Brl9GWCQeLvo8nXZwPNNblvFj/XSXhF0NWZEnDohbsk=
 github.com/jtolds/gls v4.20.0+incompatible h1:xdiiI2gbIgH/gLH7ADydsJ1uDOEzR8yvV7C0MuV77Wo=
 github.com/jtolds/gls v4.20.0+incompatible/go.mod h1:QJZ7F/aHp+rZTRtaJ1ow/lLfFfVYBRgL+9YlvaHOwJU=
 github.com/julienschmidt/httprouter v1.2.0/go.mod h1:SYymIcj16QtmaHHD7aYtjjsJG7VTCxuUUipMqKk8s4w=
 github.com/kardianos/osext v0.0.0-20190222173326-2bc1f35cddc0 h1:iQTw/8FWTuc7uiaSepXwyf3o52HaUYcV+Tu66S3F5GA=
@ -302,8 +301,18 @@ github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
 github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
 github.com/ledisdb/ledisdb v0.0.0-20200510135210-d35789ec47e6/go.mod h1:n931TsDuKuq+uX4v1fulaMbA/7ZLLhjc85h7chZGBCQ=
 github.com/leodido/go-urn v1.2.1/go.mod h1:zt4jvISO2HfUBqxjfIshjdMTYS56ZS/qv49ictyFfxY=
-github.com/lestrrat-go/jwx v0.9.0 h1:Fnd0EWzTm0kFrBPzE/PEPp9nzllES5buMkksPMjEKpM=
+github.com/lestrrat-go/backoff/v2 v2.0.8 h1:oNb5E5isby2kiro9AgdHLv5N5tint1AnDVVf2E2un5A=
-github.com/lestrrat-go/jwx v0.9.0/go.mod h1:iEoxlYfZjvoGpuWwxUz+eR5e6KTJGsaRcy/YNA/UnBk=
+github.com/lestrrat-go/backoff/v2 v2.0.8/go.mod h1:rHP/q/r9aT27n24JQLa7JhSQZCKBBOiM/uP402WwN8Y=
 github.com/lestrrat-go/blackmagic v1.0.0 h1:XzdxDbuQTz0RZZEmdU7cnQxUtFUzgCSPq8RCz4BxIi4=
 github.com/lestrrat-go/blackmagic v1.0.0/go.mod h1:TNgH//0vYSs8VXDCfkZLgIrVTTXQELZffUV0tz3MtdQ=
 github.com/lestrrat-go/httpcc v1.0.0 h1:FszVC6cKfDvBKcJv646+lkh4GydQg2Z29scgUfkOpYc=
 github.com/lestrrat-go/httpcc v1.0.0/go.mod h1:tGS/u00Vh5N6FHNkExqGGNId8e0Big+++0Gf8MBnAvE=
 github.com/lestrrat-go/iter v1.0.1 h1:q8faalr2dY6o8bV45uwrxq12bRa1ezKrB6oM9FUgN4A=
 github.com/lestrrat-go/iter v1.0.1/go.mod h1:zIdgO1mRKhn8l9vrZJZz9TUMMFbQbLeTsbqPDrJ/OJc=
 github.com/lestrrat-go/jwx v1.2.21 h1:n+yG95UMm5ZFsDdvsZmui+bqat4Cj/di4ys6XbgSlE8=
 github.com/lestrrat-go/jwx v1.2.21/go.mod h1:9cfxnOH7G1gN75CaJP2hKGcxFEx5sPh1abRIA/ZJVh4=
 github.com/lestrrat-go/option v1.0.0 h1:WqAWL8kh8VcSoD6xjSH34/1m8yxluXQbDeKNfvFeEO4=
 github.com/lestrrat-go/option v1.0.0/go.mod h1:5ZHFbivi4xwXxhxY9XHDe2FHo6/Z7WWmtT7T5nBBp3I=
 github.com/lib/pq v1.0.0/go.mod h1:5WUZQaWbwv1U+lTReE5YruASi9Al49XbQIvNi/34Woo=
 github.com/lib/pq v1.7.0/go.mod h1:AlVN5x4E4T544tWzH6hKfbfQvm3HdbOxrmggDNAPY9o=
 github.com/lib/pq v1.8.0 h1:9xohqzkUwzR4Ga4ivdTcawVS89YSDVxXMa3xJX3cGzg=
@ -312,6 +321,8 @@ github.com/lor00x/goldap v0.0.0-20180618054307-a546dffdd1a3 h1:wIONC+HMNRqmWBjuM
 github.com/lor00x/goldap v0.0.0-20180618054307-a546dffdd1a3/go.mod h1:37YR9jabpiIxsb8X9VCIx8qFOjTDIIrIHHODa8C4gz0=
 github.com/markbates/going v1.0.0 h1:DQw0ZP7NbNlFGcKbcE/IVSOAFzScxRtLpd0rLMzLhq0=
 github.com/markbates/going v1.0.0/go.mod h1:I6mnB4BPnEeqo85ynXIx1ZFLLbtiLHNXVgWeFO9OGOA=
 github.com/markbates/goth v1.75.2 h1:C7KloBMMk50JyXaHhzfqWYLW6+bDcSVIvUGHXneLWro=
 github.com/markbates/goth v1.75.2/go.mod h1:X6xdNgpapSENS0O35iTBBcMHoJDQDfI9bJl+APCkYMc=
 github.com/mattermost/xml-roundtrip-validator v0.0.0-20201208211235-fe770d50d911 h1:erppMjjp69Rertg1zlgRbLJH1u+eCmRPxKjMZ5I8/Ro=
 github.com/mattermost/xml-roundtrip-validator v0.0.0-20201208211235-fe770d50d911/go.mod h1:qccnGMcpgwcNaBnxqpJpWWUiPNr5H3O8eDgGV9gT5To=
 github.com/mattn/go-ieproxy v0.0.1 h1:qiyop7gCflfhwCzGyeT0gro3sF9AIg9HU98JORTkqfI=
@ -397,11 +408,8 @@ github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPx
 github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6MwdIuYE2rE=
 github.com/skip2/go-qrcode v0.0.0-20200617195104-da1b6568686e h1:MRM5ITcdelLK2j1vwZ3Je0FKVCfqOLp5zO6trqMLYs0=
 github.com/skip2/go-qrcode v0.0.0-20200617195104-da1b6568686e/go.mod h1:XV66xRDqSt+GTGFMVlhk3ULuV0y9ZmzeVGR4mloJI3M=
 github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d h1:zE9ykElWQ6/NYmHa3jpm/yHnI4xSofP+UP6SpjHcSeM=
 github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d/go.mod h1:OnSkiWE9lh6wB0YB77sQom3nweQdgAjqCqsofrRNTgc=
 github.com/smartystreets/goconvey v0.0.0-20190330032615-68dc04aab96a/go.mod h1:syvi0/a8iFYH4r/RixwvyeAJjdLS9QV7WQ/tjFTllLA=
 github.com/smartystreets/goconvey v1.6.4 h1:fv0U8FUIMPNf1L9lnHLvLhgicrIVChEkdzIKYqbNC9s=
 github.com/smartystreets/goconvey v1.6.4/go.mod h1:syvi0/a8iFYH4r/RixwvyeAJjdLS9QV7WQ/tjFTllLA=
 github.com/ssdb/gossdb v0.0.0-20180723034631-88f6b59b84ec/go.mod h1:QBvMkMya+gXctz3kmljlUCu/yB3GZ6oee+dUozsezQE=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
@ -465,8 +473,9 @@ golang.org/x/crypto v0.0.0-20201221181555-eec23a3978ad/go.mod h1:jdWPYTVW3xRLrWP
 golang.org/x/crypto v0.0.0-20210711020723-a769d52b0f97/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20211117183948-ae814b36b871/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.0.0-20220208233918-bba287dce954 h1:BkypuErRT9A9I/iljuaG3/zdMjd/J6m8tKKJQtGfSdA=
 golang.org/x/crypto v0.0.0-20220208233918-bba287dce954/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.0.0-20220214200702-86341886e292 h1:f+lwQ+GtmgoY+A2YaQxlSOnDjXcQ7ZRLWOHbC6HtRqE=
 golang.org/x/crypto v0.0.0-20220214200702-86341886e292/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@ -530,7 +539,6 @@ golang.org/x/net v0.0.0-20200625001655-4c5254603344/go.mod h1:/O7V0waA8r7cgGh81R
 golang.org/x/net v0.0.0-20200707034311-ab3426394381/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20200927032502-5d4f70055728/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20200930145003-4acb6c075d10/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
 golang.org/x/net v0.0.0-20210610132358-84b48f89b13b/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
--- a/i18n/generate_backend.go
+++ b/i18n/generate_backend.go
@ -15,13 +15,11 @@
 package i18n
 import (
 	"log"
 	"os"
 	"path/filepath"
 	"regexp"
 	"strings"
 	"github.com/Unknwon/goconfig"
 	"github.com/casdoor/casdoor/util"
 )
@ -43,7 +41,7 @@ func GetAllI18nStrings(fileContent string, path string) []string {
 			return res
 		}
 		for _, match := range matches {
-			match := strings.Split(match[1], ",")
+			match := strings.SplitN(match[1], ",", 2)
 			res = append(res, match[1][2:])
 		}
 	} else {
@ -84,39 +82,34 @@ func getAllGoFilePaths() []string {
 	return res
 }
-func getErrName(paths []string) map[string]bool {
+func getErrName(paths []string) map[string]string {
-	ErrName := make(map[string]bool)
+	ErrName := make(map[string]string)
 	for i := 0; i < len(paths); i++ {
 		content := util.ReadStringFromPath(paths[i])
 		words := GetAllI18nStrings(content, paths[i])
-		for i := 0; i < len(words); i++ {
+		for j := 0; j < len(words); j++ {
-			ErrName[words[i]] = true
+			ErrName[words[j]] = paths[i]
 		}
 	}
 	return ErrName
 }
-func writeToAllLanguageFiles(errName map[string]bool) {
+func getI18nJSONData(errName map[string]string) *I18nData {
-	languages := "en,zh,es,fr,de,ja,ko,ru"
+	data := I18nData{}
-	languageArr := strings.Split(languages, ",")
+	for k, v := range errName {
-	var c [10]*goconfig.ConfigFile
+		var index int
-	for i := 0; i < len(languageArr); i++ {
+		if strings.Contains(v, "/") {
-		var err error
+			index = strings.LastIndex(v, "/")
-		c[i], err = goconfig.LoadConfigFile("../i18n/languages/" + "locale_" + languageArr[i] + ".ini")
+		} else {
-		if err != nil {
+			index = strings.LastIndex(v, "\\")
 			log.Println(err.Error())
 		}
-		for j := range errName {
+		namespace := v[index+1 : len(v)-3]
-			parts := strings.Split(j, ".")
+		key := k[len(namespace)+1:]
-			_, err := c[i].GetValue(parts[0], parts[1])
+		// fmt.Printf("k=%s,v=%s,namespace=%s,key=%s\n", k, v, namespace, key)
-			if err != nil {
+		if _, ok := data[namespace]; !ok {
-				c[i].SetValue(parts[0], parts[1], parts[1])
+			data[namespace] = map[string]string{}
 			}
 		}
 		c[i].SetPrettyFormat(true)
 		err = goconfig.SaveConfigFile(c[i], "../i18n/languages/"+"locale_"+languageArr[i]+".ini")
 		if err != nil {
 			log.Println(err)
 		}
 		data[namespace][key] = key
 	}
 	return &data
 }
--- a/i18n/generate_test.go
+++ b/i18n/generate_test.go
@ -44,7 +44,17 @@ func TestGenerateI18nStringsForBackend(t *testing.T) {
 	errName := getErrName(paths)
-	writeToAllLanguageFiles(errName)
+	dataEn := getI18nJSONData(errName)
 	writeI18nFile("backend_en", dataEn)
 	applyToOtherLanguage(dataEn, "backend_de")
 	applyToOtherLanguage(dataEn, "backend_es")
 	applyToOtherLanguage(dataEn, "backend_fr")
 	applyToOtherLanguage(dataEn, "backend_ja")
 	applyToOtherLanguage(dataEn, "backend_ko")
 	applyToOtherLanguage(dataEn, "backend_ru")
 	applyToOtherLanguage(dataEn, "backend_zh")
 	fmt.Println("Total Err Words:", len(errName))
--- a/i18n/languages/locale_de.ini
+++ b/i18n/languages/locale_de.ini
@ -1,138 +0,0 @@
 [ApplicationErr]
 AppNotFound = Application %s not found
 AppNotFoundForUserID = No application is found for userId: %s
 GrantTypeNotSupport = Grant_type: %s is not supported in this application
 HasNoProviders = This application has no providers
 HasNoProvidersOfType = This application has no providers of type
 InvalidID = Invalid application id
 [AuthErr]
 AuthStateWrong = State expected: %s, but got: %s
 ChallengeMethodErr = Challenge method should be S256
 CanNotUnlinkUsers = You are not the global admin, you can't unlink other users
 CanNotLinkMySelf = You can't unlink yourself, you are not a member of any application
 CallWebAuthnSigninBegin = Please call WebAuthnSigninBegin first
 NotHuman = Turing test failed.
 Unauthorized = Unauthorized operation
 WrongPasswordManyTimes = WrongPasswordManyTimes
 [CasErr]
 ServiceDoNotMatch = Service %s and %s do not match
 [EmailErr]
 ExistedErr = Email already exists
 EmptyErr = Email cannot be empty
 EmailInvalid = Email is invalid
 EmailCheckResult = Email: %s
 EmptyParam = Empty parameters for emailForm: %v
 InvalidReceivers = Invalid Email receivers: %s
 UnableGetModifyRule = Unable to get the email modify rule.
 [EnforcerErr]
 SignInFirst = Please sign in first
 [InitErr]
 InitScoreFailed = Get init score failed, error: %%w
 [LdapErr]
 MultipleAccounts = Multiple accounts with same uid, please check your ldap server
 PasswordWrong = Ldap user name or password incorrect
 ServerExisted = Ldap server exist
 [LoginErr]
 AppDoNotExist = The application: %s does not exist
 AppNotEnableSignUp = The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support
 AccountDoNotExist = The account does not exist
 InvalidUserInformation = Failed to create user, user information is invalid: %s
 LoginFirst = Please login first
 LoginFail = Failed to login in: %s
 NoPermission = You don't have the permission to do this
 OldUser = The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)
 ProviderCanNotSignUp = The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up
 SessionOutdated = Session outdated, please login again
 SignOutFirst = Please sign out first before signing in
 UserDoNotExist = The user: %s/%s doesn't exist
 UserIsForbidden = The user is forbidden to sign in, please contact the administrator
 UnknownAuthentication = Unknown authentication type (not password or provider), form = %s
 UnsupportedPasswordType = unsupported password type: %s
 [OrgErr]
 DoNotExist = Organization does not exist
 Immutable = The %s is immutable.
 OnlyAdmin = Only admin can modify the %s.
 UnknownModifyRule = Unknown modify rule %s.
 [ParameterErr]
 OrgMissingErr = Parameter organization is missing
 Missing = Missing parameter
 UnknownType = Unknown type
 Wrong = Wrong parameter
 [PhoneErr]
 CodeNotSent = Code has not been sent yet!
 CodeTimeOut = You should verify your code in %d min!
 ExistedErr = Phone already exists
 EmptyErr = Phone cannot be empty
 InvalidReceivers = Invalid phone receivers: %s
 NumberInvalid = Phone number is invalid
 NoPrefix = %s No phone prefix
 PhoneCheckResult = Phone: %s
 UnableGetModifyRule = Unable to get the phone modify rule.
 [ProviderErr]
 CanNotBeUnlinked = This provider can't be unlinked
 CategoryNotSAML = provider %s's category is not SAML
 DoNotExist = the provider: %s does not exist
 InvalidProvider = Invalid captcha provider.
 LinkFirstErr = Please link first
 ProviderNotEnabled = The provider: %s is not enabled for the application
 ProviderNotSupported = The provider type: %s is not supported
 ProviderNotFound = The provider: %s is not found
 ProviderNotFoundForCategory = No provider for category: %s is found for application: %s
 [ResourceErr]
 NotAuthorized = You are not authorized to access this resource
 UserIsNil = User is nil for tag: /"avatar/"
 UsernameOrFilePathEmpty = Username or fullFilePath is empty: username = %s, fullFilePath = %s
 [SetPasswordErr]
 CanNotContainBlank = New password cannot contain blank space.
 LessThanSixCharacters = New password must have at least 6 characters
 [SignUpErr]
 DoNotAllowSignUp = The application does not allow to sign up new account
 SignOutFirst = Please sign out first before signing up
 [StorageErr]
 ObjectKeyNotAllowed = The objectKey: %s is not allowed
 [TokenErr]
 EmptyClientID = Empty clientId or clientSecret
 InvalidToken = Invalid token
 InvalidAppOrWrongClientSecret = Invalid application or wrong clientSecret
 InvalidClientId = Invalid client_id
 RedirectURIDoNotExist = Redirect URI: %s doesn't exist in the allowed Redirect URI list
 [UserErr]
 AffiliationBlankErr = Affiliation cannot be blank
 DisplayNameBlankErr = DisplayName cannot be blank
 DisplayNameInvalid = DisplayName is not valid real name
 DisplayNameCanNotBeEmpty = Display name cannot be empty
 DoNotExist = The user: %s doesn't exist
 DoNotExistInOrg = The user: %s/%s doesn't exist
 DoNotExistSignUp = the user does not exist, please sign up first
 FirstNameBlankErr = FirstName cannot be blank
 FailToImportUsers = Failed to import users
 LastNameBlankErr = LastName cannot be blank
 NameLessThanTwoCharacters = Username must have at least 2 characters
 NameStartWithADigitErr = Username cannot start with a digit
 NameIsEmailErr = Username cannot be an email address
 NameCantainWhitSpaceErr = Username cannot contain white spaces
 NameExistedErr = Username already exists
 NameEmptyErr = Empty username.
 NameTooLang = Username is too long (maximum is 39 characters).
 NameFormatErr = The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.
 PasswordLessThanSixCharacters = Password must have at least 6 characters
 InvalidInformation = Invalid information
 NoWebAuthnCredential = Found no credentials for this user
--- a/i18n/languages/locale_en.ini
+++ b/i18n/languages/locale_en.ini
@ -1,138 +0,0 @@
 [ApplicationErr]
 AppNotFound = Application %s not found
 AppNotFoundForUserID = No application is found for userId: %s
 GrantTypeNotSupport = Grant_type: %s is not supported in this application
 HasNoProviders = This application has no providers
 HasNoProvidersOfType = This application has no providers of type
 InvalidID = Invalid application id
 [AuthErr]
 AuthStateWrong = State expected: %s, but got: %s
 ChallengeMethodErr = Challenge method should be S256
 CanNotUnlinkUsers = You are not the global admin, you can't unlink other users
 CanNotLinkMySelf = You can't unlink yourself, you are not a member of any application
 CallWebAuthnSigninBegin = Please call WebAuthnSigninBegin first
 NotHuman = Turing test failed.
 WrongPasswordManyTimes = You have entered the wrong password too many times, please wait for %d minutes %d seconds and try again
 Unauthorized = Unauthorized operation
 [CasErr]
 ServiceDoNotMatch = Service %s and %s do not match
 [EmailErr]
 ExistedErr = Email already exists
 EmptyErr = Email cannot be empty
 EmailInvalid = Email is invalid
 EmailCheckResult = Email: %s
 EmptyParam = Empty parameters for emailForm: %v
 InvalidReceivers = Invalid Email receivers: %s
 UnableGetModifyRule = Unable to get the email modify rule.
 [EnforcerErr]
 SignInFirst = Please sign in first
 [InitErr]
 InitScoreFailed = Get init score failed, error: %%w
 [LdapErr]
 MultipleAccounts = Multiple accounts with same uid, please check your ldap server
 PasswordWrong = Ldap user name or password incorrect
 ServerExisted = Ldap server exist
 [LoginErr]
 AppDoNotExist = The application: %s does not exist
 AppNotEnableSignUp = The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support
 AccountDoNotExist = The account does not exist
 InvalidUserInformation = Failed to create user, user information is invalid: %s
 LoginFirst = Please login first
 LoginFail = Failed to login in: %s
 NoPermission = You don't have the permission to do this
 OldUser = The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)
 ProviderCanNotSignUp = The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up
 SessionOutdated = Session outdated, please login again
 SignOutFirst = Please sign out first before signing in
 UserDoNotExist = The user: %s/%s doesn't exist
 UserIsForbidden = The user is forbidden to sign in, please contact the administrator
 UnknownAuthentication = Unknown authentication type (not password or provider), form = %s
 UnsupportedPasswordType = unsupported password type: %s
 [OrgErr]
 DoNotExist = Organization does not exist
 Immutable = The %s is immutable.
 OnlyAdmin = Only admin can modify the %s.
 UnknownModifyRule = Unknown modify rule %s.
 [ParameterErr]
 OrgMissingErr = Parameter organization is missing
 Missing = Missing parameter
 UnknownType = Unknown type
 Wrong = Wrong parameter
 [PhoneErr]
 CodeNotSent = Code has not been sent yet!
 CodeTimeOut = You should verify your code in %d min!
 ExistedErr = Phone already exists
 EmptyErr = Phone cannot be empty
 InvalidReceivers = Invalid phone receivers: %s
 NumberInvalid = Phone number is invalid
 NoPrefix = %s No phone prefix
 PhoneCheckResult = Phone: %s
 UnableGetModifyRule = Unable to get the phone modify rule.
 [ProviderErr]
 CanNotBeUnlinked = This provider can't be unlinked
 CategoryNotSAML = provider %s's category is not SAML
 DoNotExist = the provider: %s does not exist
 InvalidProvider = Invalid captcha provider.
 LinkFirstErr = Please link first
 ProviderNotEnabled = The provider: %s is not enabled for the application
 ProviderNotSupported = The provider type: %s is not supported
 ProviderNotFound = The provider: %s is not found
 ProviderNotFoundForCategory = No provider for category: %s is found for application: %s
 [ResourceErr]
 NotAuthorized = You are not authorized to access this resource
 UserIsNil = User is nil for tag: /"avatar/"
 UsernameOrFilePathEmpty = Username or fullFilePath is empty: username = %s, fullFilePath = %s
 [SetPasswordErr]
 CanNotContainBlank = New password cannot contain blank space.
 LessThanSixCharacters = New password must have at least 6 characters
 [SignUpErr]
 DoNotAllowSignUp = The application does not allow to sign up new account
 SignOutFirst = Please sign out first before signing up
 [StorageErr]
 ObjectKeyNotAllowed = The objectKey: %s is not allowed
 [TokenErr]
 EmptyClientID = Empty clientId or clientSecret
 InvalidToken = Invalid token
 InvalidAppOrWrongClientSecret = Invalid application or wrong clientSecret
 InvalidClientId = Invalid client_id
 RedirectURIDoNotExist = Redirect URI: %s doesn't exist in the allowed Redirect URI list
 [UserErr]
 AffiliationBlankErr = Affiliation cannot be blank
 DisplayNameBlankErr = DisplayName cannot be blank
 DisplayNameInvalid = DisplayName is not valid real name
 DisplayNameCanNotBeEmpty = Display name cannot be empty
 DoNotExist = The user: %s doesn't exist
 DoNotExistInOrg = The user: %s/%s doesn't exist
 DoNotExistSignUp = the user does not exist, please sign up first
 FirstNameBlankErr = FirstName cannot be blank
 FailToImportUsers = Failed to import users
 LastNameBlankErr = LastName cannot be blank
 NameLessThanTwoCharacters = Username must have at least 2 characters
 NameStartWithADigitErr = Username cannot start with a digit
 NameIsEmailErr = Username cannot be an email address
 NameCantainWhitSpaceErr = Username cannot contain white spaces
 NameExistedErr = Username already exists
 NameEmptyErr = Empty username.
 NameTooLang = Username is too long (maximum is 39 characters).
 NameFormatErr = The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.
 PasswordLessThanSixCharacters = Password must have at least 6 characters
 InvalidInformation = Invalid information
 NoWebAuthnCredential = Found no credentials for this user
--- a/i18n/languages/locale_es.ini
+++ b/i18n/languages/locale_es.ini
@ -1,138 +0,0 @@
 [ApplicationErr]
 AppNotFound = Application %s not found
 AppNotFoundForUserID = No application is found for userId: %s
 GrantTypeNotSupport = Grant_type: %s is not supported in this application
 HasNoProviders = This application has no providers
 HasNoProvidersOfType = This application has no providers of type
 InvalidID = Invalid application id
 [AuthErr]
 AuthStateWrong = State expected: %s, but got: %s
 ChallengeMethodErr = Challenge method should be S256
 CanNotUnlinkUsers = You are not the global admin, you can't unlink other users
 CanNotLinkMySelf = You can't unlink yourself, you are not a member of any application
 CallWebAuthnSigninBegin = Please call WebAuthnSigninBegin first
 NotHuman = Turing test failed.
 Unauthorized = Unauthorized operation
 WrongPasswordManyTimes = WrongPasswordManyTimes
 [CasErr]
 ServiceDoNotMatch = Service %s and %s do not match
 [EmailErr]
 ExistedErr = Email already exists
 EmptyErr = Email cannot be empty
 EmailInvalid = Email is invalid
 EmailCheckResult = Email: %s
 EmptyParam = Empty parameters for emailForm: %v
 InvalidReceivers = Invalid Email receivers: %s
 UnableGetModifyRule = Unable to get the email modify rule.
 [EnforcerErr]
 SignInFirst = Please sign in first
 [InitErr]
 InitScoreFailed = Get init score failed, error: %%w
 [LdapErr]
 MultipleAccounts = Multiple accounts with same uid, please check your ldap server
 PasswordWrong = Ldap user name or password incorrect
 ServerExisted = Ldap server exist
 [LoginErr]
 AppDoNotExist = The application: %s does not exist
 AppNotEnableSignUp = The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support
 AccountDoNotExist = The account does not exist
 InvalidUserInformation = Failed to create user, user information is invalid: %s
 LoginFirst = Please login first
 LoginFail = Failed to login in: %s
 NoPermission = You don't have the permission to do this
 OldUser = The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)
 ProviderCanNotSignUp = The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up
 SessionOutdated = Session outdated, please login again
 SignOutFirst = Please sign out first before signing in
 UserDoNotExist = The user: %s/%s doesn't exist
 UserIsForbidden = The user is forbidden to sign in, please contact the administrator
 UnknownAuthentication = Unknown authentication type (not password or provider), form = %s
 UnsupportedPasswordType = unsupported password type: %s
 [OrgErr]
 DoNotExist = Organization does not exist
 Immutable = The %s is immutable.
 OnlyAdmin = Only admin can modify the %s.
 UnknownModifyRule = Unknown modify rule %s.
 [ParameterErr]
 OrgMissingErr = Parameter organization is missing
 Missing = Missing parameter
 UnknownType = Unknown type
 Wrong = Wrong parameter
 [PhoneErr]
 CodeNotSent = Code has not been sent yet!
 CodeTimeOut = You should verify your code in %d min!
 ExistedErr = Phone already exists
 EmptyErr = Phone cannot be empty
 InvalidReceivers = Invalid phone receivers: %s
 NumberInvalid = Phone number is invalid
 NoPrefix = %s No phone prefix
 PhoneCheckResult = Phone: %s
 UnableGetModifyRule = Unable to get the phone modify rule.
 [ProviderErr]
 CanNotBeUnlinked = This provider can't be unlinked
 CategoryNotSAML = provider %s's category is not SAML
 DoNotExist = the provider: %s does not exist
 InvalidProvider = Invalid captcha provider.
 LinkFirstErr = Please link first
 ProviderNotEnabled = The provider: %s is not enabled for the application
 ProviderNotSupported = The provider type: %s is not supported
 ProviderNotFound = The provider: %s is not found
 ProviderNotFoundForCategory = No provider for category: %s is found for application: %s
 [ResourceErr]
 NotAuthorized = You are not authorized to access this resource
 UserIsNil = User is nil for tag: /"avatar/"
 UsernameOrFilePathEmpty = Username or fullFilePath is empty: username = %s, fullFilePath = %s
 [SetPasswordErr]
 CanNotContainBlank = New password cannot contain blank space.
 LessThanSixCharacters = New password must have at least 6 characters
 [SignUpErr]
 DoNotAllowSignUp = The application does not allow to sign up new account
 SignOutFirst = Please sign out first before signing up
 [StorageErr]
 ObjectKeyNotAllowed = The objectKey: %s is not allowed
 [TokenErr]
 EmptyClientID = Empty clientId or clientSecret
 InvalidToken = Invalid token
 InvalidAppOrWrongClientSecret = Invalid application or wrong clientSecret
 InvalidClientId = Invalid client_id
 RedirectURIDoNotExist = Redirect URI: %s doesn't exist in the allowed Redirect URI list
 [UserErr]
 AffiliationBlankErr = Affiliation cannot be blank
 DisplayNameBlankErr = DisplayName cannot be blank
 DisplayNameInvalid = DisplayName is not valid real name
 DisplayNameCanNotBeEmpty = Display name cannot be empty
 DoNotExist = The user: %s doesn't exist
 DoNotExistInOrg = The user: %s/%s doesn't exist
 DoNotExistSignUp = the user does not exist, please sign up first
 FirstNameBlankErr = FirstName cannot be blank
 FailToImportUsers = Failed to import users
 LastNameBlankErr = LastName cannot be blank
 NameLessThanTwoCharacters = Username must have at least 2 characters
 NameStartWithADigitErr = Username cannot start with a digit
 NameIsEmailErr = Username cannot be an email address
 NameCantainWhitSpaceErr = Username cannot contain white spaces
 NameExistedErr = Username already exists
 NameEmptyErr = Empty username.
 NameTooLang = Username is too long (maximum is 39 characters).
 NameFormatErr = The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.
 PasswordLessThanSixCharacters = Password must have at least 6 characters
 InvalidInformation = Invalid information
 NoWebAuthnCredential = Found no credentials for this user
--- a/i18n/languages/locale_fr.ini
+++ b/i18n/languages/locale_fr.ini
@ -1,138 +0,0 @@
 [ApplicationErr]
 AppNotFound = Application %s not found
 AppNotFoundForUserID = No application is found for userId: %s
 GrantTypeNotSupport = Grant_type: %s is not supported in this application
 HasNoProviders = This application has no providers
 HasNoProvidersOfType = This application has no providers of type
 InvalidID = Invalid application id
 [AuthErr]
 AuthStateWrong = State expected: %s, but got: %s
 ChallengeMethodErr = Challenge method should be S256
 CanNotUnlinkUsers = You are not the global admin, you can't unlink other users
 CanNotLinkMySelf = You can't unlink yourself, you are not a member of any application
 CallWebAuthnSigninBegin = Please call WebAuthnSigninBegin first
 NotHuman = Turing test failed.
 Unauthorized = Unauthorized operation
 WrongPasswordManyTimes = WrongPasswordManyTimes
 [CasErr]
 ServiceDoNotMatch = Service %s and %s do not match
 [EmailErr]
 ExistedErr = Email already exists
 EmptyErr = Email cannot be empty
 EmailInvalid = Email is invalid
 EmailCheckResult = Email: %s
 EmptyParam = Empty parameters for emailForm: %v
 InvalidReceivers = Invalid Email receivers: %s
 UnableGetModifyRule = Unable to get the email modify rule.
 [EnforcerErr]
 SignInFirst = Please sign in first
 [InitErr]
 InitScoreFailed = Get init score failed, error: %%w
 [LdapErr]
 MultipleAccounts = Multiple accounts with same uid, please check your ldap server
 PasswordWrong = Ldap user name or password incorrect
 ServerExisted = Ldap server exist
 [LoginErr]
 AppDoNotExist = The application: %s does not exist
 AppNotEnableSignUp = The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support
 AccountDoNotExist = The account does not exist
 InvalidUserInformation = Failed to create user, user information is invalid: %s
 LoginFirst = Please login first
 LoginFail = Failed to login in: %s
 NoPermission = You don't have the permission to do this
 OldUser = The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)
 ProviderCanNotSignUp = The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up
 SessionOutdated = Session outdated, please login again
 SignOutFirst = Please sign out first before signing in
 UserDoNotExist = The user: %s/%s doesn't exist
 UserIsForbidden = The user is forbidden to sign in, please contact the administrator
 UnknownAuthentication = Unknown authentication type (not password or provider), form = %s
 UnsupportedPasswordType = unsupported password type: %s
 [OrgErr]
 DoNotExist = Organization does not exist
 Immutable = The %s is immutable.
 OnlyAdmin = Only admin can modify the %s.
 UnknownModifyRule = Unknown modify rule %s.
 [ParameterErr]
 OrgMissingErr = Parameter organization is missing
 Missing = Missing parameter
 UnknownType = Unknown type
 Wrong = Wrong parameter
 [PhoneErr]
 CodeNotSent = Code has not been sent yet!
 CodeTimeOut = You should verify your code in %d min!
 ExistedErr = Phone already exists
 EmptyErr = Phone cannot be empty
 InvalidReceivers = Invalid phone receivers: %s
 NumberInvalid = Phone number is invalid
 NoPrefix = %s No phone prefix
 PhoneCheckResult = Phone: %s
 UnableGetModifyRule = Unable to get the phone modify rule.
 [ProviderErr]
 CanNotBeUnlinked = This provider can't be unlinked
 CategoryNotSAML = provider %s's category is not SAML
 DoNotExist = the provider: %s does not exist
 InvalidProvider = Invalid captcha provider.
 LinkFirstErr = Please link first
 ProviderNotEnabled = The provider: %s is not enabled for the application
 ProviderNotSupported = The provider type: %s is not supported
 ProviderNotFound = The provider: %s is not found
 ProviderNotFoundForCategory = No provider for category: %s is found for application: %s
 [ResourceErr]
 NotAuthorized = You are not authorized to access this resource
 UserIsNil = User is nil for tag: /"avatar/"
 UsernameOrFilePathEmpty = Username or fullFilePath is empty: username = %s, fullFilePath = %s
 [SetPasswordErr]
 CanNotContainBlank = New password cannot contain blank space.
 LessThanSixCharacters = New password must have at least 6 characters
 [SignUpErr]
 DoNotAllowSignUp = The application does not allow to sign up new account
 SignOutFirst = Please sign out first before signing up
 [StorageErr]
 ObjectKeyNotAllowed = The objectKey: %s is not allowed
 [TokenErr]
 EmptyClientID = Empty clientId or clientSecret
 InvalidToken = Invalid token
 InvalidAppOrWrongClientSecret = Invalid application or wrong clientSecret
 InvalidClientId = Invalid client_id
 RedirectURIDoNotExist = Redirect URI: %s doesn't exist in the allowed Redirect URI list
 [UserErr]
 AffiliationBlankErr = Affiliation cannot be blank
 DisplayNameBlankErr = DisplayName cannot be blank
 DisplayNameInvalid = DisplayName is not valid real name
 DisplayNameCanNotBeEmpty = Display name cannot be empty
 DoNotExist = The user: %s doesn't exist
 DoNotExistInOrg = The user: %s/%s doesn't exist
 DoNotExistSignUp = the user does not exist, please sign up first
 FirstNameBlankErr = FirstName cannot be blank
 FailToImportUsers = Failed to import users
 LastNameBlankErr = LastName cannot be blank
 NameLessThanTwoCharacters = Username must have at least 2 characters
 NameStartWithADigitErr = Username cannot start with a digit
 NameIsEmailErr = Username cannot be an email address
 NameCantainWhitSpaceErr = Username cannot contain white spaces
 NameExistedErr = Username already exists
 NameEmptyErr = Empty username.
 NameTooLang = Username is too long (maximum is 39 characters).
 NameFormatErr = The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.
 PasswordLessThanSixCharacters = Password must have at least 6 characters
 InvalidInformation = Invalid information
 NoWebAuthnCredential = Found no credentials for this user
--- a/i18n/languages/locale_ja.ini
+++ b/i18n/languages/locale_ja.ini
@ -1,138 +0,0 @@
 [ApplicationErr]
 AppNotFound = Application %s not found
 AppNotFoundForUserID = No application is found for userId: %s
 GrantTypeNotSupport = Grant_type: %s is not supported in this application
 HasNoProviders = This application has no providers
 HasNoProvidersOfType = This application has no providers of type
 InvalidID = Invalid application id
 [AuthErr]
 AuthStateWrong = State expected: %s, but got: %s
 ChallengeMethodErr = Challenge method should be S256
 CanNotUnlinkUsers = You are not the global admin, you can't unlink other users
 CanNotLinkMySelf = You can't unlink yourself, you are not a member of any application
 CallWebAuthnSigninBegin = Please call WebAuthnSigninBegin first
 NotHuman = Turing test failed.
 Unauthorized = Unauthorized operation
 WrongPasswordManyTimes = WrongPasswordManyTimes
 [CasErr]
 ServiceDoNotMatch = Service %s and %s do not match
 [EmailErr]
 ExistedErr = Email already exists
 EmptyErr = Email cannot be empty
 EmailInvalid = Email is invalid
 EmailCheckResult = Email: %s
 EmptyParam = Empty parameters for emailForm: %v
 InvalidReceivers = Invalid Email receivers: %s
 UnableGetModifyRule = Unable to get the email modify rule.
 [EnforcerErr]
 SignInFirst = Please sign in first
 [InitErr]
 InitScoreFailed = Get init score failed, error: %%w
 [LdapErr]
 MultipleAccounts = Multiple accounts with same uid, please check your ldap server
 PasswordWrong = Ldap user name or password incorrect
 ServerExisted = Ldap server exist
 [LoginErr]
 AppDoNotExist = The application: %s does not exist
 AppNotEnableSignUp = The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support
 AccountDoNotExist = The account does not exist
 InvalidUserInformation = Failed to create user, user information is invalid: %s
 LoginFirst = Please login first
 LoginFail = Failed to login in: %s
 NoPermission = You don't have the permission to do this
 OldUser = The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)
 ProviderCanNotSignUp = The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up
 SessionOutdated = Session outdated, please login again
 SignOutFirst = Please sign out first before signing in
 UserDoNotExist = The user: %s/%s doesn't exist
 UserIsForbidden = The user is forbidden to sign in, please contact the administrator
 UnknownAuthentication = Unknown authentication type (not password or provider), form = %s
 UnsupportedPasswordType = unsupported password type: %s
 [OrgErr]
 DoNotExist = Organization does not exist
 Immutable = The %s is immutable.
 OnlyAdmin = Only admin can modify the %s.
 UnknownModifyRule = Unknown modify rule %s.
 [ParameterErr]
 OrgMissingErr = Parameter organization is missing
 Missing = Missing parameter
 UnknownType = Unknown type
 Wrong = Wrong parameter
 [PhoneErr]
 CodeNotSent = Code has not been sent yet!
 CodeTimeOut = You should verify your code in %d min!
 ExistedErr = Phone already exists
 EmptyErr = Phone cannot be empty
 InvalidReceivers = Invalid phone receivers: %s
 NumberInvalid = Phone number is invalid
 NoPrefix = %s No phone prefix
 PhoneCheckResult = Phone: %s
 UnableGetModifyRule = Unable to get the phone modify rule.
 [ProviderErr]
 CanNotBeUnlinked = This provider can't be unlinked
 CategoryNotSAML = provider %s's category is not SAML
 DoNotExist = the provider: %s does not exist
 InvalidProvider = Invalid captcha provider.
 LinkFirstErr = Please link first
 ProviderNotEnabled = The provider: %s is not enabled for the application
 ProviderNotSupported = The provider type: %s is not supported
 ProviderNotFound = The provider: %s is not found
 ProviderNotFoundForCategory = No provider for category: %s is found for application: %s
 [ResourceErr]
 NotAuthorized = You are not authorized to access this resource
 UserIsNil = User is nil for tag: /"avatar/"
 UsernameOrFilePathEmpty = Username or fullFilePath is empty: username = %s, fullFilePath = %s
 [SetPasswordErr]
 CanNotContainBlank = New password cannot contain blank space.
 LessThanSixCharacters = New password must have at least 6 characters
 [SignUpErr]
 DoNotAllowSignUp = The application does not allow to sign up new account
 SignOutFirst = Please sign out first before signing up
 [StorageErr]
 ObjectKeyNotAllowed = The objectKey: %s is not allowed
 [TokenErr]
 EmptyClientID = Empty clientId or clientSecret
 InvalidToken = Invalid token
 InvalidAppOrWrongClientSecret = Invalid application or wrong clientSecret
 InvalidClientId = Invalid client_id
 RedirectURIDoNotExist = Redirect URI: %s doesn't exist in the allowed Redirect URI list
 [UserErr]
 AffiliationBlankErr = Affiliation cannot be blank
 DisplayNameBlankErr = DisplayName cannot be blank
 DisplayNameInvalid = DisplayName is not valid real name
 DisplayNameCanNotBeEmpty = Display name cannot be empty
 DoNotExist = The user: %s doesn't exist
 DoNotExistInOrg = The user: %s/%s doesn't exist
 DoNotExistSignUp = the user does not exist, please sign up first
 FirstNameBlankErr = FirstName cannot be blank
 FailToImportUsers = Failed to import users
 LastNameBlankErr = LastName cannot be blank
 NameLessThanTwoCharacters = Username must have at least 2 characters
 NameStartWithADigitErr = Username cannot start with a digit
 NameIsEmailErr = Username cannot be an email address
 NameCantainWhitSpaceErr = Username cannot contain white spaces
 NameExistedErr = Username already exists
 NameEmptyErr = Empty username.
 NameTooLang = Username is too long (maximum is 39 characters).
 NameFormatErr = The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.
 PasswordLessThanSixCharacters = Password must have at least 6 characters
 InvalidInformation = Invalid information
 NoWebAuthnCredential = Found no credentials for this user
--- a/i18n/languages/locale_ko.ini
+++ b/i18n/languages/locale_ko.ini
@ -1,138 +0,0 @@
 [ApplicationErr]
 AppNotFound = Application %s not found
 AppNotFoundForUserID = No application is found for userId: %s
 GrantTypeNotSupport = Grant_type: %s is not supported in this application
 HasNoProviders = This application has no providers
 HasNoProvidersOfType = This application has no providers of type
 InvalidID = Invalid application id
 [AuthErr]
 AuthStateWrong = State expected: %s, but got: %s
 ChallengeMethodErr = Challenge method should be S256
 CanNotUnlinkUsers = You are not the global admin, you can't unlink other users
 CanNotLinkMySelf = You can't unlink yourself, you are not a member of any application
 CallWebAuthnSigninBegin = Please call WebAuthnSigninBegin first
 NotHuman = Turing test failed.
 Unauthorized = Unauthorized operation
 WrongPasswordManyTimes = WrongPasswordManyTimes
 [CasErr]
 ServiceDoNotMatch = Service %s and %s do not match
 [EmailErr]
 ExistedErr = Email already exists
 EmptyErr = Email cannot be empty
 EmailInvalid = Email is invalid
 EmailCheckResult = Email: %s
 EmptyParam = Empty parameters for emailForm: %v
 InvalidReceivers = Invalid Email receivers: %s
 UnableGetModifyRule = Unable to get the email modify rule.
 [EnforcerErr]
 SignInFirst = Please sign in first
 [InitErr]
 InitScoreFailed = Get init score failed, error: %%w
 [LdapErr]
 MultipleAccounts = Multiple accounts with same uid, please check your ldap server
 PasswordWrong = Ldap user name or password incorrect
 ServerExisted = Ldap server exist
 [LoginErr]
 AppDoNotExist = The application: %s does not exist
 AppNotEnableSignUp = The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support
 AccountDoNotExist = The account does not exist
 InvalidUserInformation = Failed to create user, user information is invalid: %s
 LoginFirst = Please login first
 LoginFail = Failed to login in: %s
 NoPermission = You don't have the permission to do this
 OldUser = The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)
 ProviderCanNotSignUp = The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up
 SessionOutdated = Session outdated, please login again
 SignOutFirst = Please sign out first before signing in
 UserDoNotExist = The user: %s/%s doesn't exist
 UserIsForbidden = The user is forbidden to sign in, please contact the administrator
 UnknownAuthentication = Unknown authentication type (not password or provider), form = %s
 UnsupportedPasswordType = unsupported password type: %s
 [OrgErr]
 DoNotExist = Organization does not exist
 Immutable = The %s is immutable.
 OnlyAdmin = Only admin can modify the %s.
 UnknownModifyRule = Unknown modify rule %s.
 [ParameterErr]
 OrgMissingErr = Parameter organization is missing
 Missing = Missing parameter
 UnknownType = Unknown type
 Wrong = Wrong parameter
 [PhoneErr]
 CodeNotSent = Code has not been sent yet!
 CodeTimeOut = You should verify your code in %d min!
 ExistedErr = Phone already exists
 EmptyErr = Phone cannot be empty
 InvalidReceivers = Invalid phone receivers: %s
 NumberInvalid = Phone number is invalid
 NoPrefix = %s No phone prefix
 PhoneCheckResult = Phone: %s
 UnableGetModifyRule = Unable to get the phone modify rule.
 [ProviderErr]
 CanNotBeUnlinked = This provider can't be unlinked
 CategoryNotSAML = provider %s's category is not SAML
 DoNotExist = the provider: %s does not exist
 InvalidProvider = Invalid captcha provider.
 LinkFirstErr = Please link first
 ProviderNotEnabled = The provider: %s is not enabled for the application
 ProviderNotSupported = The provider type: %s is not supported
 ProviderNotFound = The provider: %s is not found
 ProviderNotFoundForCategory = No provider for category: %s is found for application: %s
 [ResourceErr]
 NotAuthorized = You are not authorized to access this resource
 UserIsNil = User is nil for tag: /"avatar/"
 UsernameOrFilePathEmpty = Username or fullFilePath is empty: username = %s, fullFilePath = %s
 [SetPasswordErr]
 CanNotContainBlank = New password cannot contain blank space.
 LessThanSixCharacters = New password must have at least 6 characters
 [SignUpErr]
 DoNotAllowSignUp = The application does not allow to sign up new account
 SignOutFirst = Please sign out first before signing up
 [StorageErr]
 ObjectKeyNotAllowed = The objectKey: %s is not allowed
 [TokenErr]
 EmptyClientID = Empty clientId or clientSecret
 InvalidToken = Invalid token
 InvalidAppOrWrongClientSecret = Invalid application or wrong clientSecret
 InvalidClientId = Invalid client_id
 RedirectURIDoNotExist = Redirect URI: %s doesn't exist in the allowed Redirect URI list
 [UserErr]
 AffiliationBlankErr = Affiliation cannot be blank
 DisplayNameBlankErr = DisplayName cannot be blank
 DisplayNameInvalid = DisplayName is not valid real name
 DisplayNameCanNotBeEmpty = Display name cannot be empty
 DoNotExist = The user: %s doesn't exist
 DoNotExistInOrg = The user: %s/%s doesn't exist
 DoNotExistSignUp = the user does not exist, please sign up first
 FirstNameBlankErr = FirstName cannot be blank
 FailToImportUsers = Failed to import users
 LastNameBlankErr = LastName cannot be blank
 NameLessThanTwoCharacters = Username must have at least 2 characters
 NameStartWithADigitErr = Username cannot start with a digit
 NameIsEmailErr = Username cannot be an email address
 NameCantainWhitSpaceErr = Username cannot contain white spaces
 NameExistedErr = Username already exists
 NameEmptyErr = Empty username.
 NameTooLang = Username is too long (maximum is 39 characters).
 NameFormatErr = The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.
 PasswordLessThanSixCharacters = Password must have at least 6 characters
 InvalidInformation = Invalid information
 NoWebAuthnCredential = Found no credentials for this user
--- a/i18n/languages/locale_ru.ini
+++ b/i18n/languages/locale_ru.ini
@ -1,138 +0,0 @@
 [ApplicationErr]
 AppNotFound = Application %s not found
 AppNotFoundForUserID = No application is found for userId: %s
 GrantTypeNotSupport = Grant_type: %s is not supported in this application
 HasNoProviders = This application has no providers
 HasNoProvidersOfType = This application has no providers of type
 InvalidID = Invalid application id
 [AuthErr]
 AuthStateWrong = State expected: %s, but got: %s
 ChallengeMethodErr = Challenge method should be S256
 CanNotUnlinkUsers = You are not the global admin, you can't unlink other users
 CanNotLinkMySelf = You can't unlink yourself, you are not a member of any application
 CallWebAuthnSigninBegin = Please call WebAuthnSigninBegin first
 NotHuman = Turing test failed.
 Unauthorized = Unauthorized operation
 WrongPasswordManyTimes = WrongPasswordManyTimes
 [CasErr]
 ServiceDoNotMatch = Service %s and %s do not match
 [EmailErr]
 ExistedErr = Email already exists
 EmptyErr = Email cannot be empty
 EmailInvalid = Email is invalid
 EmailCheckResult = Email: %s
 EmptyParam = Empty parameters for emailForm: %v
 InvalidReceivers = Invalid Email receivers: %s
 UnableGetModifyRule = Unable to get the email modify rule.
 [EnforcerErr]
 SignInFirst = Please sign in first
 [InitErr]
 InitScoreFailed = Get init score failed, error: %%w
 [LdapErr]
 MultipleAccounts = Multiple accounts with same uid, please check your ldap server
 PasswordWrong = Ldap user name or password incorrect
 ServerExisted = Ldap server exist
 [LoginErr]
 AppDoNotExist = The application: %s does not exist
 AppNotEnableSignUp = The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support
 AccountDoNotExist = The account does not exist
 InvalidUserInformation = Failed to create user, user information is invalid: %s
 LoginFirst = Please login first
 LoginFail = Failed to login in: %s
 NoPermission = You don't have the permission to do this
 OldUser = The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)
 ProviderCanNotSignUp = The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up
 SessionOutdated = Session outdated, please login again
 SignOutFirst = Please sign out first before signing in
 UserDoNotExist = The user: %s/%s doesn't exist
 UserIsForbidden = The user is forbidden to sign in, please contact the administrator
 UnknownAuthentication = Unknown authentication type (not password or provider), form = %s
 UnsupportedPasswordType = unsupported password type: %s
 [OrgErr]
 DoNotExist = Organization does not exist
 Immutable = The %s is immutable.
 OnlyAdmin = Only admin can modify the %s.
 UnknownModifyRule = Unknown modify rule %s.
 [ParameterErr]
 OrgMissingErr = Parameter organization is missing
 Missing = Missing parameter
 UnknownType = Unknown type
 Wrong = Wrong parameter
 [PhoneErr]
 CodeNotSent = Code has not been sent yet!
 CodeTimeOut = You should verify your code in %d min!
 ExistedErr = Phone already exists
 EmptyErr = Phone cannot be empty
 InvalidReceivers = Invalid phone receivers: %s
 NumberInvalid = Phone number is invalid
 NoPrefix = %s No phone prefix
 PhoneCheckResult = Phone: %s
 UnableGetModifyRule = Unable to get the phone modify rule.
 [ProviderErr]
 CanNotBeUnlinked = This provider can't be unlinked
 CategoryNotSAML = provider %s's category is not SAML
 DoNotExist = the provider: %s does not exist
 InvalidProvider = Invalid captcha provider.
 LinkFirstErr = Please link first
 ProviderNotEnabled = The provider: %s is not enabled for the application
 ProviderNotSupported = The provider type: %s is not supported
 ProviderNotFound = The provider: %s is not found
 ProviderNotFoundForCategory = No provider for category: %s is found for application: %s
 [ResourceErr]
 NotAuthorized = You are not authorized to access this resource
 UserIsNil = User is nil for tag: /"avatar/"
 UsernameOrFilePathEmpty = Username or fullFilePath is empty: username = %s, fullFilePath = %s
 [SetPasswordErr]
 CanNotContainBlank = New password cannot contain blank space.
 LessThanSixCharacters = New password must have at least 6 characters
 [SignUpErr]
 DoNotAllowSignUp = The application does not allow to sign up new account
 SignOutFirst = Please sign out first before signing up
 [StorageErr]
 ObjectKeyNotAllowed = The objectKey: %s is not allowed
 [TokenErr]
 EmptyClientID = Empty clientId or clientSecret
 InvalidToken = Invalid token
 InvalidAppOrWrongClientSecret = Invalid application or wrong clientSecret
 InvalidClientId = Invalid client_id
 RedirectURIDoNotExist = Redirect URI: %s doesn't exist in the allowed Redirect URI list
 [UserErr]
 AffiliationBlankErr = Affiliation cannot be blank
 DisplayNameBlankErr = DisplayName cannot be blank
 DisplayNameInvalid = DisplayName is not valid real name
 DisplayNameCanNotBeEmpty = Display name cannot be empty
 DoNotExist = The user: %s doesn't exist
 DoNotExistInOrg = The user: %s/%s doesn't exist
 DoNotExistSignUp = the user does not exist, please sign up first
 FirstNameBlankErr = FirstName cannot be blank
 FailToImportUsers = Failed to import users
 LastNameBlankErr = LastName cannot be blank
 NameLessThanTwoCharacters = Username must have at least 2 characters
 NameStartWithADigitErr = Username cannot start with a digit
 NameIsEmailErr = Username cannot be an email address
 NameCantainWhitSpaceErr = Username cannot contain white spaces
 NameExistedErr = Username already exists
 NameEmptyErr = Empty username.
 NameTooLang = Username is too long (maximum is 39 characters).
 NameFormatErr = The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.
 PasswordLessThanSixCharacters = Password must have at least 6 characters
 InvalidInformation = Invalid information
 NoWebAuthnCredential = Found no credentials for this user
--- a/i18n/languages/locale_zh.ini
+++ b/i18n/languages/locale_zh.ini
@ -1,138 +0,0 @@
 [ApplicationErr]
 AppNotFound = 应用 %s 未找到
 AppNotFoundForUserID = 找不到该用户的应用程序 %s
 GrantTypeNotSupport = 此应用中不支持此授权类型
 HasNoProviders = 该应用无提供商
 HasNoProvidersOfType = 应用没有该类型的提供商
 InvalidID = 无效的Application ID
 [AuthErr]
 AuthStateWrong = 期望状态位: %s, 实际状态为: %s
 ChallengeMethodErr = Challenge 方法应该为 S256
 CanNotUnlinkUsers = 您不是全局管理员，无法取消链接其他用户
 CanNotLinkMySelf = 您无法取消链接，您不是任何应用程序的成员
 CallWebAuthnSigninBegin = 请先调用WebAuthnSigninBegin
 NotHuman = 真人验证失败
 Unauthorized = 未授权的操作
 WrongPasswordManyTimes = 输入密码错误次数已达上限，请在 %d 分 %d 秒后重试
 [CasErr]
 ServiceDoNotMatch = 服务 %s 与 %s 不匹配
 [EmailErr]
 ExistedErr = 该邮箱已存在
 EmptyErr = 邮箱不可为空
 EmailInvalid = 无效邮箱
 EmailCheckResult = Email: %s
 EmptyParam = 邮件参数为空: %v
 InvalidReceivers = 无效的邮箱接收者: %s
 UnableGetModifyRule = 无法得到Email修改规则
 [EnforcerErr]
 SignInFirst = 请先登录
 [InitErr]
 InitScoreFailed = 初始化分数失败: %w
 [LdapErr]
 MultipleAccounts = 多个帐户具有相同的uid，请检查您的 ldap 服务器
 PasswordWrong = Ldap密码错误
 ServerExisted = Ldap服务器已存在
 [LoginErr]
 AppDoNotExist = 应用不存在: %s
 AppNotEnableSignUp = 提供商账户: %s 与用户名: %s (%s) 不存在且 不允许注册新账户, 请联系IT支持
 AccountDoNotExist = 账户不存在
 InvalidUserInformation = 创建用户失败，用户信息无效: %%s
 LoginFirst = 请先登录
 LoginFail = 无法登录: %s
 NoPermission = 您没有权限执行此操作
 OldUser = 提供商账户: %s 与用户名: %s (%s) 已经与其他账户绑定: %s (%s)
 ProviderCanNotSignUp = 提供商账户: %s 与用户名: %s (%s) 不存在且 不允许通过 %s 注册新账户, 请使用其他方式注册
 SignOutFirst = 请在登录前登出
 SessionOutdated = Session已过期，请重新登陆
 UserDoNotExist = 用户不存在: %s/%s
 UserIsForbidden = 该用户被禁止登陆，请联系管理员
 UnknownAuthentication = 未知的认证类型 (非密码或提供商认证), form = %s
 UnsupportedPasswordType = 不支持此密码类型
 [OrgErr]
 DoNotExist = 组织不存在
 Immutable = %s是不可变的
 OnlyAdmin = 只有管理员用户有此权限
 UnknownModifyRule = 未知的修改规则
 [ParameterErr]
 Missing = 参数丢失
 OrgMissingErr = Organization参数丢失
 UnknownType = 未知类型
 Wrong = 参数错误
 [PhoneErr]
 CodeNotSent = 验证码还未发送
 CodeTimeOut = 验证码过期
 ExistedErr = 该电话已存在
 EmptyErr = 电话不可为空
 InvalidReceivers = 无效的电话接收者: %s
 NumberInvalid = 无效电话
 PhoneCheckResult = 电话: %s
 UnableGetModifyRule = 无法得到电话修改规则
 NoPrefix = %s 无此电话前缀
 [ProviderErr]
 CanNotBeUnlinked = 该提供商不可被链接
 InvalidProvider = 无效的验证码提供商
 LinkFirstErr = 请先绑定
 ProviderNotEnabled = 提供商: %s 未被启用
 ProviderNotSupported = 不支持该类型的提供商: %s
 ProviderNotFound = 该提供商未找到: %s
 ProviderNotFoundForCategory = 该类型的提供商: %s 在应用中未找到: %s
 DoNotExist = 提供商: %s 不存在
 CategoryNotSAML = 提供商 %s类型不是SAML
 [ResourceErr]
 NotAuthorized = 您无权获取此资源
 UserIsNil = 用户头像标签为空
 UsernameOrFilePathEmpty = username或FilePath为空: username = %s, fullFilePath = %s
 [SetPasswordErr]
 CanNotContainBlank = 新密码不可以包含空客
 LessThanSixCharacters = 新密码至少为6位
 [SignUpErr]
 DoNotAllowSignUp = 该应用不允许注册新账户
 SignOutFirst = 请在登陆前登出
 [TokenErr]
 EmptyClientID = clientId或clientSecret为空
 InvalidAppOrWrongClientSecret = 无效应用或错误的clientSecret
 InvalidToken = 无效token
 InvalidClientId = 无效的ClientId
 RedirectURIDoNotExist = 重定向 URI：%s 在可列表中未找到
 [UserErr]
 AffiliationBlankErr = 联系方式不可为空
 DisplayNameBlankErr = 展示名称不可为空
 DisplayNameInvalid = 展示名称无效
 DisplayNameCanNotBeEmpty = 展示名称不可为空
 DoNotExist = 用户不存在: %s
 DoNotExistInOrg = 用户不存在: %s/%s
 FirstNameBlankErr = 名不可以为空
 FailToImportUsers = 导入用户失败
 LastNameBlankErr = 姓不可以为空
 NameLessThanTwoCharacters = 用户名至少要有2个字符
 NameStartWithADigitErr = 用户名禁止使用数字作为第一个字符
 NameIsEmailErr = 用户名不可以是邮箱地址
 NameCantainWhitSpaceErr = 用户名不可以包含空格
 NameExistedErr = 用户名已存在
 NameEmptyErr = 用户名不可为空
 NameTooLang = 用户名过长（最大长度为39个字符）
 NameFormatErr = 用户名只能包含字母数字字符、下划线或连字符，不能有连续的连字符或下划线，也不能以连字符或下划线开头或结尾
 PasswordLessThanSixCharacters = 密码至少为6字符
 DoNotExistSignUp = 用户不存在，请先注册
 InvalidInformation = 无效信息
 NoWebAuthnCredential = 该用户没有WebAuthn凭据
 [StorageErr]
 ObjectKeyNotAllowed = object key :%s 不被允许
--- a/i18n/locales/de/data.json
+++ b/i18n/locales/de/data.json
@ -0,0 +1,172 @@
 {
  "account": {
    "Email: %s": "Email: %s",
    "Get init score failed, error: %w": "Get init score failed, error: %w",
    "Invalid information": "Invalid information",
    "Phone: %s": "Phone: %s",
    "Please sign out first before signing up": "Please sign out first before signing up",
    "The application does not allow to sign up new account": "The application does not allow to sign up new account"
  },
  "application": {
    "Parameter organization is missing": "Parameter organization is missing",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "auth": {
    "%s No phone prefix": "%s No phone prefix",
    "Challenge method should be S256": "Challenge method should be S256",
    "Failed to create user, user information is invalid: %s": "Failed to create user, user information is invalid: %s",
    "Failed to login in: %s": "Failed to login in: %s",
    "Get init score failed, error: %w": "Get init score failed, error: %w",
    "Invalid token": "Invalid token",
    "Please sign out first before signing in": "Please sign out first before signing in",
    "State expected: %s, but got: %s": "State expected: %s, but got: %s",
    "The account does not exist": "The account does not exist",
    "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up": "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up",
    "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support": "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support",
    "The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)": "The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)",
    "The application: %s does not exist": "The application: %s does not exist",
    "The provider type: %s is not supported": "The provider type: %s is not supported",
    "The provider: %s is not enabled for the application": "The provider: %s is not enabled for the application",
    "The user is forbidden to sign in, please contact the administrator": "The user is forbidden to sign in, please contact the administrator",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist",
    "Turing test failed.": "Turing test failed.",
    "Unauthorized operation": "Unauthorized operation",
    "Unknown authentication type (not password or provider), form = %s": "Unknown authentication type (not password or provider), form = %s"
  },
  "cas": {
    "Service %s and %s do not match": "Service %s and %s do not match"
  },
  "check": {
    "Affiliation cannot be blank": "Affiliation cannot be blank",
    "DisplayName cannot be blank": "DisplayName cannot be blank",
    "DisplayName is not valid real name": "DisplayName is not valid real name",
    "Email already exists": "Email already exists",
    "Email cannot be empty": "Email cannot be empty",
    "Email is invalid": "Email is invalid",
    "Empty username.": "Empty username.",
    "FirstName cannot be blank": "FirstName cannot be blank",
    "LastName cannot be blank": "LastName cannot be blank",
    "Ldap user name or password incorrect": "Ldap user name or password incorrect",
    "Multiple accounts with same uid, please check your ldap server": "Multiple accounts with same uid, please check your ldap server",
    "Organization does not exist": "Organization does not exist",
    "Password must have at least 6 characters": "Password must have at least 6 characters",
    "Phone already exists": "Phone already exists",
    "Phone cannot be empty": "Phone cannot be empty",
    "Phone number is invalid": "Phone number is invalid",
    "Please login first": "Please login first",
    "Session outdated, please login again": "Session outdated, please login again",
    "The user doesn't exist": "The user doesn't exist",
    "The user is forbidden to sign in, please contact the administrator": "The user is forbidden to sign in, please contact the administrator",
    "The user: %s doesn't exist": "The user: %s doesn't exist",
    "The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.": "The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.",
    "Username already exists": "Username already exists",
    "Username cannot be an email address": "Username cannot be an email address",
    "Username cannot contain white spaces": "Username cannot contain white spaces",
    "Username cannot start with a digit": "Username cannot start with a digit",
    "Username is too long (maximum is 39 characters).": "Username is too long (maximum is 39 characters).",
    "Username must have at least 2 characters": "Username must have at least 2 characters",
    "You don't have the permission to do this": "You don't have the permission to do this",
    "You have entered the wrong password too many times, please wait for %d minutes %d seconds and try again": "You have entered the wrong password too many times, please wait for %d minutes %d seconds and try again",
    "unsupported password type: %s": "unsupported password type: %s"
  },
  "check_util": {
    "You have entered the wrong password too many times, please wait for %d minutes and try again": "You have entered the wrong password too many times, please wait for %d minutes and try again",
    "password is incorrect, you have %d remaining chances": "password is incorrect, you have %d remaining chances"
  },
  "enforcer": {
    "Please sign in first": "Please sign in first"
  },
  "ldap": {
    "Ldap server exist": "Ldap server exist",
    "Missing parameter": "Missing parameter"
  },
  "link": {
    "Please link first": "Please link first",
    "This application has no providers": "This application has no providers",
    "This application has no providers of type": "This application has no providers of type",
    "This provider can't be unlinked": "This provider can't be unlinked",
    "You are not the global admin, you can't unlink other users": "You are not the global admin, you can't unlink other users",
    "You can't unlink yourself, you are not a member of any application": "You can't unlink yourself, you are not a member of any application"
  },
  "organization": {
    "Only admin can modify the %s.": "Only admin can modify the %s.",
    "The %s is immutable.": "The %s is immutable.",
    "Unknown modify rule %s.": "Unknown modify rule %s."
  },
  "product": {
    "Please login first": "Please login first",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "provider": {
    "Invalid application id": "Invalid application id",
    "the provider: %s does not exist": "the provider: %s does not exist"
  },
  "resource": {
    "User is nil for tag: avatar": "User is nil for tag: avatar",
    "Username or fullFilePath is empty: username = %s, fullFilePath = %s": "Username or fullFilePath is empty: username = %s, fullFilePath = %s"
  },
  "saml": {
    "Application %s not found": "Application %s not found"
  },
  "saml_sp": {
    "provider %s's category is not SAML": "provider %s's category is not SAML"
  },
  "service": {
    "Empty parameters for emailForm: %v": "Empty parameters for emailForm: %v",
    "Invalid Email receivers: %s": "Invalid Email receivers: %s",
    "Invalid phone receivers: %s": "Invalid phone receivers: %s"
  },
  "storage": {
    "The objectKey: %s is not allowed": "The objectKey: %s is not allowed",
    "The provider type: %s is not supported": "The provider type: %s is not supported"
  },
  "system_info": {
    "You are not authorized to access this resource": "You are not authorized to access this resource"
  },
  "token": {
    "Challenge method should be S256": "Challenge method should be S256",
    "Empty clientId or clientSecret": "Empty clientId or clientSecret",
    "Grant_type: %s is not supported in this application": "Grant_type: %s is not supported in this application",
    "Invalid application or wrong clientSecret": "Invalid application or wrong clientSecret",
    "Invalid client_id": "Invalid client_id",
    "Redirect URI: %s doesn't exist in the allowed Redirect URI list": "Redirect URI: %s doesn't exist in the allowed Redirect URI list"
  },
  "user": {
    "Display name cannot be empty": "Display name cannot be empty",
    "New password cannot contain blank space.": "New password cannot contain blank space.",
    "New password must have at least 6 characters": "New password must have at least 6 characters",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist"
  },
  "user_upload": {
    "Failed to import users": "Failed to import users"
  },
  "util": {
    "No application is found for userId: %s": "No application is found for userId: %s",
    "No provider for category: %s is found for application: %s": "No provider for category: %s is found for application: %s",
    "Please login first": "Please login first",
    "The provider: %s is not found": "The provider: %s is not found",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "verification": {
    "Code has not been sent yet!": "Code has not been sent yet!",
    "Email is invalid": "Email is invalid",
    "Invalid captcha provider.": "Invalid captcha provider.",
    "Missing parameter": "Missing parameter",
    "Organization does not exist": "Organization does not exist",
    "Phone number is invalid": "Phone number is invalid",
    "Please login first": "Please login first",
    "Turing test failed.": "Turing test failed.",
    "Unable to get the email modify rule.": "Unable to get the email modify rule.",
    "Unable to get the phone modify rule.": "Unable to get the phone modify rule.",
    "Unknown type": "Unknown type",
    "Wrong parameter": "Wrong parameter",
    "You should verify your code in %d min!": "You should verify your code in %d min!",
    "the user does not exist, please sign up first": "the user does not exist, please sign up first"
  },
  "webauthn": {
    "Found no credentials for this user": "Found no credentials for this user",
    "Please call WebAuthnSigninBegin first": "Please call WebAuthnSigninBegin first",
    "Please login first": "Please login first",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist"
  }
 }
--- a/i18n/locales/en/data.json
+++ b/i18n/locales/en/data.json
@ -0,0 +1,172 @@
 {
  "account": {
    "Email: %s": "Email: %s",
    "Get init score failed, error: %w": "Get init score failed, error: %w",
    "Invalid information": "Invalid information",
    "Phone: %s": "Phone: %s",
    "Please sign out first before signing up": "Please sign out first before signing up",
    "The application does not allow to sign up new account": "The application does not allow to sign up new account"
  },
  "application": {
    "Parameter organization is missing": "Parameter organization is missing",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "auth": {
    "%s No phone prefix": "%s No phone prefix",
    "Challenge method should be S256": "Challenge method should be S256",
    "Failed to create user, user information is invalid: %s": "Failed to create user, user information is invalid: %s",
    "Failed to login in: %s": "Failed to login in: %s",
    "Get init score failed, error: %w": "Get init score failed, error: %w",
    "Invalid token": "Invalid token",
    "Please sign out first before signing in": "Please sign out first before signing in",
    "State expected: %s, but got: %s": "State expected: %s, but got: %s",
    "The account does not exist": "The account does not exist",
    "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up": "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up",
    "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support": "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support",
    "The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)": "The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)",
    "The application: %s does not exist": "The application: %s does not exist",
    "The provider type: %s is not supported": "The provider type: %s is not supported",
    "The provider: %s is not enabled for the application": "The provider: %s is not enabled for the application",
    "The user is forbidden to sign in, please contact the administrator": "The user is forbidden to sign in, please contact the administrator",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist",
    "Turing test failed.": "Turing test failed.",
    "Unauthorized operation": "Unauthorized operation",
    "Unknown authentication type (not password or provider), form = %s": "Unknown authentication type (not password or provider), form = %s"
  },
  "cas": {
    "Service %s and %s do not match": "Service %s and %s do not match"
  },
  "check": {
    "Affiliation cannot be blank": "Affiliation cannot be blank",
    "DisplayName cannot be blank": "DisplayName cannot be blank",
    "DisplayName is not valid real name": "DisplayName is not valid real name",
    "Email already exists": "Email already exists",
    "Email cannot be empty": "Email cannot be empty",
    "Email is invalid": "Email is invalid",
    "Empty username.": "Empty username.",
    "FirstName cannot be blank": "FirstName cannot be blank",
    "LastName cannot be blank": "LastName cannot be blank",
    "Ldap user name or password incorrect": "Ldap user name or password incorrect",
    "Multiple accounts with same uid, please check your ldap server": "Multiple accounts with same uid, please check your ldap server",
    "Organization does not exist": "Organization does not exist",
    "Password must have at least 6 characters": "Password must have at least 6 characters",
    "Phone already exists": "Phone already exists",
    "Phone cannot be empty": "Phone cannot be empty",
    "Phone number is invalid": "Phone number is invalid",
    "Please login first": "Please login first",
    "Session outdated, please login again": "Session outdated, please login again",
    "The user doesn't exist": "The user doesn't exist",
    "The user is forbidden to sign in, please contact the administrator": "The user is forbidden to sign in, please contact the administrator",
    "The user: %s doesn't exist": "The user: %s doesn't exist",
    "The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.": "The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.",
    "Username already exists": "Username already exists",
    "Username cannot be an email address": "Username cannot be an email address",
    "Username cannot contain white spaces": "Username cannot contain white spaces",
    "Username cannot start with a digit": "Username cannot start with a digit",
    "Username is too long (maximum is 39 characters).": "Username is too long (maximum is 39 characters).",
    "Username must have at least 2 characters": "Username must have at least 2 characters",
    "You don't have the permission to do this": "You don't have the permission to do this",
    "You have entered the wrong password too many times, please wait for %d minutes %d seconds and try again": "You have entered the wrong password too many times, please wait for %d minutes %d seconds and try again",
    "unsupported password type: %s": "unsupported password type: %s"
  },
  "check_util": {
    "You have entered the wrong password too many times, please wait for %d minutes and try again": "You have entered the wrong password too many times, please wait for %d minutes and try again",
    "password is incorrect, you have %d remaining chances": "password is incorrect, you have %d remaining chances"
  },
  "enforcer": {
    "Please sign in first": "Please sign in first"
  },
  "ldap": {
    "Ldap server exist": "Ldap server exist",
    "Missing parameter": "Missing parameter"
  },
  "link": {
    "Please link first": "Please link first",
    "This application has no providers": "This application has no providers",
    "This application has no providers of type": "This application has no providers of type",
    "This provider can't be unlinked": "This provider can't be unlinked",
    "You are not the global admin, you can't unlink other users": "You are not the global admin, you can't unlink other users",
    "You can't unlink yourself, you are not a member of any application": "You can't unlink yourself, you are not a member of any application"
  },
  "organization": {
    "Only admin can modify the %s.": "Only admin can modify the %s.",
    "The %s is immutable.": "The %s is immutable.",
    "Unknown modify rule %s.": "Unknown modify rule %s."
  },
  "product": {
    "Please login first": "Please login first",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "provider": {
    "Invalid application id": "Invalid application id",
    "the provider: %s does not exist": "the provider: %s does not exist"
  },
  "resource": {
    "User is nil for tag: avatar": "User is nil for tag: avatar",
    "Username or fullFilePath is empty: username = %s, fullFilePath = %s": "Username or fullFilePath is empty: username = %s, fullFilePath = %s"
  },
  "saml": {
    "Application %s not found": "Application %s not found"
  },
  "saml_sp": {
    "provider %s's category is not SAML": "provider %s's category is not SAML"
  },
  "service": {
    "Empty parameters for emailForm: %v": "Empty parameters for emailForm: %v",
    "Invalid Email receivers: %s": "Invalid Email receivers: %s",
    "Invalid phone receivers: %s": "Invalid phone receivers: %s"
  },
  "storage": {
    "The objectKey: %s is not allowed": "The objectKey: %s is not allowed",
    "The provider type: %s is not supported": "The provider type: %s is not supported"
  },
  "system_info": {
    "You are not authorized to access this resource": "You are not authorized to access this resource"
  },
  "token": {
    "Challenge method should be S256": "Challenge method should be S256",
    "Empty clientId or clientSecret": "Empty clientId or clientSecret",
    "Grant_type: %s is not supported in this application": "Grant_type: %s is not supported in this application",
    "Invalid application or wrong clientSecret": "Invalid application or wrong clientSecret",
    "Invalid client_id": "Invalid client_id",
    "Redirect URI: %s doesn't exist in the allowed Redirect URI list": "Redirect URI: %s doesn't exist in the allowed Redirect URI list"
  },
  "user": {
    "Display name cannot be empty": "Display name cannot be empty",
    "New password cannot contain blank space.": "New password cannot contain blank space.",
    "New password must have at least 6 characters": "New password must have at least 6 characters",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist"
  },
  "user_upload": {
    "Failed to import users": "Failed to import users"
  },
  "util": {
    "No application is found for userId: %s": "No application is found for userId: %s",
    "No provider for category: %s is found for application: %s": "No provider for category: %s is found for application: %s",
    "Please login first": "Please login first",
    "The provider: %s is not found": "The provider: %s is not found",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "verification": {
    "Code has not been sent yet!": "Code has not been sent yet!",
    "Email is invalid": "Email is invalid",
    "Invalid captcha provider.": "Invalid captcha provider.",
    "Missing parameter": "Missing parameter",
    "Organization does not exist": "Organization does not exist",
    "Phone number is invalid": "Phone number is invalid",
    "Please login first": "Please login first",
    "Turing test failed.": "Turing test failed.",
    "Unable to get the email modify rule.": "Unable to get the email modify rule.",
    "Unable to get the phone modify rule.": "Unable to get the phone modify rule.",
    "Unknown type": "Unknown type",
    "Wrong parameter": "Wrong parameter",
    "You should verify your code in %d min!": "You should verify your code in %d min!",
    "the user does not exist, please sign up first": "the user does not exist, please sign up first"
  },
  "webauthn": {
    "Found no credentials for this user": "Found no credentials for this user",
    "Please call WebAuthnSigninBegin first": "Please call WebAuthnSigninBegin first",
    "Please login first": "Please login first",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist"
  }
 }
--- a/i18n/locales/es/data.json
+++ b/i18n/locales/es/data.json
@ -0,0 +1,172 @@
 {
  "account": {
    "Email: %s": "Email: %s",
    "Get init score failed, error: %w": "Get init score failed, error: %w",
    "Invalid information": "Invalid information",
    "Phone: %s": "Phone: %s",
    "Please sign out first before signing up": "Please sign out first before signing up",
    "The application does not allow to sign up new account": "The application does not allow to sign up new account"
  },
  "application": {
    "Parameter organization is missing": "Parameter organization is missing",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "auth": {
    "%s No phone prefix": "%s No phone prefix",
    "Challenge method should be S256": "Challenge method should be S256",
    "Failed to create user, user information is invalid: %s": "Failed to create user, user information is invalid: %s",
    "Failed to login in: %s": "Failed to login in: %s",
    "Get init score failed, error: %w": "Get init score failed, error: %w",
    "Invalid token": "Invalid token",
    "Please sign out first before signing in": "Please sign out first before signing in",
    "State expected: %s, but got: %s": "State expected: %s, but got: %s",
    "The account does not exist": "The account does not exist",
    "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up": "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up",
    "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support": "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support",
    "The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)": "The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)",
    "The application: %s does not exist": "The application: %s does not exist",
    "The provider type: %s is not supported": "The provider type: %s is not supported",
    "The provider: %s is not enabled for the application": "The provider: %s is not enabled for the application",
    "The user is forbidden to sign in, please contact the administrator": "The user is forbidden to sign in, please contact the administrator",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist",
    "Turing test failed.": "Turing test failed.",
    "Unauthorized operation": "Unauthorized operation",
    "Unknown authentication type (not password or provider), form = %s": "Unknown authentication type (not password or provider), form = %s"
  },
  "cas": {
    "Service %s and %s do not match": "Service %s and %s do not match"
  },
  "check": {
    "Affiliation cannot be blank": "Affiliation cannot be blank",
    "DisplayName cannot be blank": "DisplayName cannot be blank",
    "DisplayName is not valid real name": "DisplayName is not valid real name",
    "Email already exists": "Email already exists",
    "Email cannot be empty": "Email cannot be empty",
    "Email is invalid": "Email is invalid",
    "Empty username.": "Empty username.",
    "FirstName cannot be blank": "FirstName cannot be blank",
    "LastName cannot be blank": "LastName cannot be blank",
    "Ldap user name or password incorrect": "Ldap user name or password incorrect",
    "Multiple accounts with same uid, please check your ldap server": "Multiple accounts with same uid, please check your ldap server",
    "Organization does not exist": "Organization does not exist",
    "Password must have at least 6 characters": "Password must have at least 6 characters",
    "Phone already exists": "Phone already exists",
    "Phone cannot be empty": "Phone cannot be empty",
    "Phone number is invalid": "Phone number is invalid",
    "Please login first": "Please login first",
    "Session outdated, please login again": "Session outdated, please login again",
    "The user doesn't exist": "The user doesn't exist",
    "The user is forbidden to sign in, please contact the administrator": "The user is forbidden to sign in, please contact the administrator",
    "The user: %s doesn't exist": "The user: %s doesn't exist",
    "The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.": "The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.",
    "Username already exists": "Username already exists",
    "Username cannot be an email address": "Username cannot be an email address",
    "Username cannot contain white spaces": "Username cannot contain white spaces",
    "Username cannot start with a digit": "Username cannot start with a digit",
    "Username is too long (maximum is 39 characters).": "Username is too long (maximum is 39 characters).",
    "Username must have at least 2 characters": "Username must have at least 2 characters",
    "You don't have the permission to do this": "You don't have the permission to do this",
    "You have entered the wrong password too many times, please wait for %d minutes %d seconds and try again": "You have entered the wrong password too many times, please wait for %d minutes %d seconds and try again",
    "unsupported password type: %s": "unsupported password type: %s"
  },
  "check_util": {
    "You have entered the wrong password too many times, please wait for %d minutes and try again": "You have entered the wrong password too many times, please wait for %d minutes and try again",
    "password is incorrect, you have %d remaining chances": "password is incorrect, you have %d remaining chances"
  },
  "enforcer": {
    "Please sign in first": "Please sign in first"
  },
  "ldap": {
    "Ldap server exist": "Ldap server exist",
    "Missing parameter": "Missing parameter"
  },
  "link": {
    "Please link first": "Please link first",
    "This application has no providers": "This application has no providers",
    "This application has no providers of type": "This application has no providers of type",
    "This provider can't be unlinked": "This provider can't be unlinked",
    "You are not the global admin, you can't unlink other users": "You are not the global admin, you can't unlink other users",
    "You can't unlink yourself, you are not a member of any application": "You can't unlink yourself, you are not a member of any application"
  },
  "organization": {
    "Only admin can modify the %s.": "Only admin can modify the %s.",
    "The %s is immutable.": "The %s is immutable.",
    "Unknown modify rule %s.": "Unknown modify rule %s."
  },
  "product": {
    "Please login first": "Please login first",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "provider": {
    "Invalid application id": "Invalid application id",
    "the provider: %s does not exist": "the provider: %s does not exist"
  },
  "resource": {
    "User is nil for tag: avatar": "User is nil for tag: avatar",
    "Username or fullFilePath is empty: username = %s, fullFilePath = %s": "Username or fullFilePath is empty: username = %s, fullFilePath = %s"
  },
  "saml": {
    "Application %s not found": "Application %s not found"
  },
  "saml_sp": {
    "provider %s's category is not SAML": "provider %s's category is not SAML"
  },
  "service": {
    "Empty parameters for emailForm: %v": "Empty parameters for emailForm: %v",
    "Invalid Email receivers: %s": "Invalid Email receivers: %s",
    "Invalid phone receivers: %s": "Invalid phone receivers: %s"
  },
  "storage": {
    "The objectKey: %s is not allowed": "The objectKey: %s is not allowed",
    "The provider type: %s is not supported": "The provider type: %s is not supported"
  },
  "system_info": {
    "You are not authorized to access this resource": "You are not authorized to access this resource"
  },
  "token": {
    "Challenge method should be S256": "Challenge method should be S256",
    "Empty clientId or clientSecret": "Empty clientId or clientSecret",
    "Grant_type: %s is not supported in this application": "Grant_type: %s is not supported in this application",
    "Invalid application or wrong clientSecret": "Invalid application or wrong clientSecret",
    "Invalid client_id": "Invalid client_id",
    "Redirect URI: %s doesn't exist in the allowed Redirect URI list": "Redirect URI: %s doesn't exist in the allowed Redirect URI list"
  },
  "user": {
    "Display name cannot be empty": "Display name cannot be empty",
    "New password cannot contain blank space.": "New password cannot contain blank space.",
    "New password must have at least 6 characters": "New password must have at least 6 characters",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist"
  },
  "user_upload": {
    "Failed to import users": "Failed to import users"
  },
  "util": {
    "No application is found for userId: %s": "No application is found for userId: %s",
    "No provider for category: %s is found for application: %s": "No provider for category: %s is found for application: %s",
    "Please login first": "Please login first",
    "The provider: %s is not found": "The provider: %s is not found",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "verification": {
    "Code has not been sent yet!": "Code has not been sent yet!",
    "Email is invalid": "Email is invalid",
    "Invalid captcha provider.": "Invalid captcha provider.",
    "Missing parameter": "Missing parameter",
    "Organization does not exist": "Organization does not exist",
    "Phone number is invalid": "Phone number is invalid",
    "Please login first": "Please login first",
    "Turing test failed.": "Turing test failed.",
    "Unable to get the email modify rule.": "Unable to get the email modify rule.",
    "Unable to get the phone modify rule.": "Unable to get the phone modify rule.",
    "Unknown type": "Unknown type",
    "Wrong parameter": "Wrong parameter",
    "You should verify your code in %d min!": "You should verify your code in %d min!",
    "the user does not exist, please sign up first": "the user does not exist, please sign up first"
  },
  "webauthn": {
    "Found no credentials for this user": "Found no credentials for this user",
    "Please call WebAuthnSigninBegin first": "Please call WebAuthnSigninBegin first",
    "Please login first": "Please login first",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist"
  }
 }
--- a/i18n/locales/fr/data.json
+++ b/i18n/locales/fr/data.json
@ -0,0 +1,172 @@
 {
  "account": {
    "Email: %s": "Email: %s",
    "Get init score failed, error: %w": "Get init score failed, error: %w",
    "Invalid information": "Invalid information",
    "Phone: %s": "Phone: %s",
    "Please sign out first before signing up": "Please sign out first before signing up",
    "The application does not allow to sign up new account": "The application does not allow to sign up new account"
  },
  "application": {
    "Parameter organization is missing": "Parameter organization is missing",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "auth": {
    "%s No phone prefix": "%s No phone prefix",
    "Challenge method should be S256": "Challenge method should be S256",
    "Failed to create user, user information is invalid: %s": "Failed to create user, user information is invalid: %s",
    "Failed to login in: %s": "Failed to login in: %s",
    "Get init score failed, error: %w": "Get init score failed, error: %w",
    "Invalid token": "Invalid token",
    "Please sign out first before signing in": "Please sign out first before signing in",
    "State expected: %s, but got: %s": "State expected: %s, but got: %s",
    "The account does not exist": "The account does not exist",
    "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up": "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up",
    "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support": "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support",
    "The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)": "The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)",
    "The application: %s does not exist": "The application: %s does not exist",
    "The provider type: %s is not supported": "The provider type: %s is not supported",
    "The provider: %s is not enabled for the application": "The provider: %s is not enabled for the application",
    "The user is forbidden to sign in, please contact the administrator": "The user is forbidden to sign in, please contact the administrator",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist",
    "Turing test failed.": "Turing test failed.",
    "Unauthorized operation": "Unauthorized operation",
    "Unknown authentication type (not password or provider), form = %s": "Unknown authentication type (not password or provider), form = %s"
  },
  "cas": {
    "Service %s and %s do not match": "Service %s and %s do not match"
  },
  "check": {
    "Affiliation cannot be blank": "Affiliation cannot be blank",
    "DisplayName cannot be blank": "DisplayName cannot be blank",
    "DisplayName is not valid real name": "DisplayName is not valid real name",
    "Email already exists": "Email already exists",
    "Email cannot be empty": "Email cannot be empty",
    "Email is invalid": "Email is invalid",
    "Empty username.": "Empty username.",
    "FirstName cannot be blank": "FirstName cannot be blank",
    "LastName cannot be blank": "LastName cannot be blank",
    "Ldap user name or password incorrect": "Ldap user name or password incorrect",
    "Multiple accounts with same uid, please check your ldap server": "Multiple accounts with same uid, please check your ldap server",
    "Organization does not exist": "Organization does not exist",
    "Password must have at least 6 characters": "Password must have at least 6 characters",
    "Phone already exists": "Phone already exists",
    "Phone cannot be empty": "Phone cannot be empty",
    "Phone number is invalid": "Phone number is invalid",
    "Please login first": "Please login first",
    "Session outdated, please login again": "Session outdated, please login again",
    "The user doesn't exist": "The user doesn't exist",
    "The user is forbidden to sign in, please contact the administrator": "The user is forbidden to sign in, please contact the administrator",
    "The user: %s doesn't exist": "The user: %s doesn't exist",
    "The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.": "The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.",
    "Username already exists": "Username already exists",
    "Username cannot be an email address": "Username cannot be an email address",
    "Username cannot contain white spaces": "Username cannot contain white spaces",
    "Username cannot start with a digit": "Username cannot start with a digit",
    "Username is too long (maximum is 39 characters).": "Username is too long (maximum is 39 characters).",
    "Username must have at least 2 characters": "Username must have at least 2 characters",
    "You don't have the permission to do this": "You don't have the permission to do this",
    "You have entered the wrong password too many times, please wait for %d minutes %d seconds and try again": "You have entered the wrong password too many times, please wait for %d minutes %d seconds and try again",
    "unsupported password type: %s": "unsupported password type: %s"
  },
  "check_util": {
    "You have entered the wrong password too many times, please wait for %d minutes and try again": "You have entered the wrong password too many times, please wait for %d minutes and try again",
    "password is incorrect, you have %d remaining chances": "password is incorrect, you have %d remaining chances"
  },
  "enforcer": {
    "Please sign in first": "Please sign in first"
  },
  "ldap": {
    "Ldap server exist": "Ldap server exist",
    "Missing parameter": "Missing parameter"
  },
  "link": {
    "Please link first": "Please link first",
    "This application has no providers": "This application has no providers",
    "This application has no providers of type": "This application has no providers of type",
    "This provider can't be unlinked": "This provider can't be unlinked",
    "You are not the global admin, you can't unlink other users": "You are not the global admin, you can't unlink other users",
    "You can't unlink yourself, you are not a member of any application": "You can't unlink yourself, you are not a member of any application"
  },
  "organization": {
    "Only admin can modify the %s.": "Only admin can modify the %s.",
    "The %s is immutable.": "The %s is immutable.",
    "Unknown modify rule %s.": "Unknown modify rule %s."
  },
  "product": {
    "Please login first": "Please login first",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "provider": {
    "Invalid application id": "Invalid application id",
    "the provider: %s does not exist": "the provider: %s does not exist"
  },
  "resource": {
    "User is nil for tag: avatar": "User is nil for tag: avatar",
    "Username or fullFilePath is empty: username = %s, fullFilePath = %s": "Username or fullFilePath is empty: username = %s, fullFilePath = %s"
  },
  "saml": {
    "Application %s not found": "Application %s not found"
  },
  "saml_sp": {
    "provider %s's category is not SAML": "provider %s's category is not SAML"
  },
  "service": {
    "Empty parameters for emailForm: %v": "Empty parameters for emailForm: %v",
    "Invalid Email receivers: %s": "Invalid Email receivers: %s",
    "Invalid phone receivers: %s": "Invalid phone receivers: %s"
  },
  "storage": {
    "The objectKey: %s is not allowed": "The objectKey: %s is not allowed",
    "The provider type: %s is not supported": "The provider type: %s is not supported"
  },
  "system_info": {
    "You are not authorized to access this resource": "You are not authorized to access this resource"
  },
  "token": {
    "Challenge method should be S256": "Challenge method should be S256",
    "Empty clientId or clientSecret": "Empty clientId or clientSecret",
    "Grant_type: %s is not supported in this application": "Grant_type: %s is not supported in this application",
    "Invalid application or wrong clientSecret": "Invalid application or wrong clientSecret",
    "Invalid client_id": "Invalid client_id",
    "Redirect URI: %s doesn't exist in the allowed Redirect URI list": "Redirect URI: %s doesn't exist in the allowed Redirect URI list"
  },
  "user": {
    "Display name cannot be empty": "Display name cannot be empty",
    "New password cannot contain blank space.": "New password cannot contain blank space.",
    "New password must have at least 6 characters": "New password must have at least 6 characters",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist"
  },
  "user_upload": {
    "Failed to import users": "Failed to import users"
  },
  "util": {
    "No application is found for userId: %s": "No application is found for userId: %s",
    "No provider for category: %s is found for application: %s": "No provider for category: %s is found for application: %s",
    "Please login first": "Please login first",
    "The provider: %s is not found": "The provider: %s is not found",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "verification": {
    "Code has not been sent yet!": "Code has not been sent yet!",
    "Email is invalid": "Email is invalid",
    "Invalid captcha provider.": "Invalid captcha provider.",
    "Missing parameter": "Missing parameter",
    "Organization does not exist": "Organization does not exist",
    "Phone number is invalid": "Phone number is invalid",
    "Please login first": "Please login first",
    "Turing test failed.": "Turing test failed.",
    "Unable to get the email modify rule.": "Unable to get the email modify rule.",
    "Unable to get the phone modify rule.": "Unable to get the phone modify rule.",
    "Unknown type": "Unknown type",
    "Wrong parameter": "Wrong parameter",
    "You should verify your code in %d min!": "You should verify your code in %d min!",
    "the user does not exist, please sign up first": "the user does not exist, please sign up first"
  },
  "webauthn": {
    "Found no credentials for this user": "Found no credentials for this user",
    "Please call WebAuthnSigninBegin first": "Please call WebAuthnSigninBegin first",
    "Please login first": "Please login first",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist"
  }
 }
--- a/i18n/locales/ja/data.json
+++ b/i18n/locales/ja/data.json
@ -0,0 +1,172 @@
 {
  "account": {
    "Email: %s": "Email: %s",
    "Get init score failed, error: %w": "Get init score failed, error: %w",
    "Invalid information": "Invalid information",
    "Phone: %s": "Phone: %s",
    "Please sign out first before signing up": "Please sign out first before signing up",
    "The application does not allow to sign up new account": "The application does not allow to sign up new account"
  },
  "application": {
    "Parameter organization is missing": "Parameter organization is missing",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "auth": {
    "%s No phone prefix": "%s No phone prefix",
    "Challenge method should be S256": "Challenge method should be S256",
    "Failed to create user, user information is invalid: %s": "Failed to create user, user information is invalid: %s",
    "Failed to login in: %s": "Failed to login in: %s",
    "Get init score failed, error: %w": "Get init score failed, error: %w",
    "Invalid token": "Invalid token",
    "Please sign out first before signing in": "Please sign out first before signing in",
    "State expected: %s, but got: %s": "State expected: %s, but got: %s",
    "The account does not exist": "The account does not exist",
    "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up": "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up",
    "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support": "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support",
    "The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)": "The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)",
    "The application: %s does not exist": "The application: %s does not exist",
    "The provider type: %s is not supported": "The provider type: %s is not supported",
    "The provider: %s is not enabled for the application": "The provider: %s is not enabled for the application",
    "The user is forbidden to sign in, please contact the administrator": "The user is forbidden to sign in, please contact the administrator",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist",
    "Turing test failed.": "Turing test failed.",
    "Unauthorized operation": "Unauthorized operation",
    "Unknown authentication type (not password or provider), form = %s": "Unknown authentication type (not password or provider), form = %s"
  },
  "cas": {
    "Service %s and %s do not match": "Service %s and %s do not match"
  },
  "check": {
    "Affiliation cannot be blank": "Affiliation cannot be blank",
    "DisplayName cannot be blank": "DisplayName cannot be blank",
    "DisplayName is not valid real name": "DisplayName is not valid real name",
    "Email already exists": "Email already exists",
    "Email cannot be empty": "Email cannot be empty",
    "Email is invalid": "Email is invalid",
    "Empty username.": "Empty username.",
    "FirstName cannot be blank": "FirstName cannot be blank",
    "LastName cannot be blank": "LastName cannot be blank",
    "Ldap user name or password incorrect": "Ldap user name or password incorrect",
    "Multiple accounts with same uid, please check your ldap server": "Multiple accounts with same uid, please check your ldap server",
    "Organization does not exist": "Organization does not exist",
    "Password must have at least 6 characters": "Password must have at least 6 characters",
    "Phone already exists": "Phone already exists",
    "Phone cannot be empty": "Phone cannot be empty",
    "Phone number is invalid": "Phone number is invalid",
    "Please login first": "Please login first",
    "Session outdated, please login again": "Session outdated, please login again",
    "The user doesn't exist": "The user doesn't exist",
    "The user is forbidden to sign in, please contact the administrator": "The user is forbidden to sign in, please contact the administrator",
    "The user: %s doesn't exist": "The user: %s doesn't exist",
    "The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.": "The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.",
    "Username already exists": "Username already exists",
    "Username cannot be an email address": "Username cannot be an email address",
    "Username cannot contain white spaces": "Username cannot contain white spaces",
    "Username cannot start with a digit": "Username cannot start with a digit",
    "Username is too long (maximum is 39 characters).": "Username is too long (maximum is 39 characters).",
    "Username must have at least 2 characters": "Username must have at least 2 characters",
    "You don't have the permission to do this": "You don't have the permission to do this",
    "You have entered the wrong password too many times, please wait for %d minutes %d seconds and try again": "You have entered the wrong password too many times, please wait for %d minutes %d seconds and try again",
    "unsupported password type: %s": "unsupported password type: %s"
  },
  "check_util": {
    "You have entered the wrong password too many times, please wait for %d minutes and try again": "You have entered the wrong password too many times, please wait for %d minutes and try again",
    "password is incorrect, you have %d remaining chances": "password is incorrect, you have %d remaining chances"
  },
  "enforcer": {
    "Please sign in first": "Please sign in first"
  },
  "ldap": {
    "Ldap server exist": "Ldap server exist",
    "Missing parameter": "Missing parameter"
  },
  "link": {
    "Please link first": "Please link first",
    "This application has no providers": "This application has no providers",
    "This application has no providers of type": "This application has no providers of type",
    "This provider can't be unlinked": "This provider can't be unlinked",
    "You are not the global admin, you can't unlink other users": "You are not the global admin, you can't unlink other users",
    "You can't unlink yourself, you are not a member of any application": "You can't unlink yourself, you are not a member of any application"
  },
  "organization": {
    "Only admin can modify the %s.": "Only admin can modify the %s.",
    "The %s is immutable.": "The %s is immutable.",
    "Unknown modify rule %s.": "Unknown modify rule %s."
  },
  "product": {
    "Please login first": "Please login first",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "provider": {
    "Invalid application id": "Invalid application id",
    "the provider: %s does not exist": "the provider: %s does not exist"
  },
  "resource": {
    "User is nil for tag: avatar": "User is nil for tag: avatar",
    "Username or fullFilePath is empty: username = %s, fullFilePath = %s": "Username or fullFilePath is empty: username = %s, fullFilePath = %s"
  },
  "saml": {
    "Application %s not found": "Application %s not found"
  },
  "saml_sp": {
    "provider %s's category is not SAML": "provider %s's category is not SAML"
  },
  "service": {
    "Empty parameters for emailForm: %v": "Empty parameters for emailForm: %v",
    "Invalid Email receivers: %s": "Invalid Email receivers: %s",
    "Invalid phone receivers: %s": "Invalid phone receivers: %s"
  },
  "storage": {
    "The objectKey: %s is not allowed": "The objectKey: %s is not allowed",
    "The provider type: %s is not supported": "The provider type: %s is not supported"
  },
  "system_info": {
    "You are not authorized to access this resource": "You are not authorized to access this resource"
  },
  "token": {
    "Challenge method should be S256": "Challenge method should be S256",
    "Empty clientId or clientSecret": "Empty clientId or clientSecret",
    "Grant_type: %s is not supported in this application": "Grant_type: %s is not supported in this application",
    "Invalid application or wrong clientSecret": "Invalid application or wrong clientSecret",
    "Invalid client_id": "Invalid client_id",
    "Redirect URI: %s doesn't exist in the allowed Redirect URI list": "Redirect URI: %s doesn't exist in the allowed Redirect URI list"
  },
  "user": {
    "Display name cannot be empty": "Display name cannot be empty",
    "New password cannot contain blank space.": "New password cannot contain blank space.",
    "New password must have at least 6 characters": "New password must have at least 6 characters",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist"
  },
  "user_upload": {
    "Failed to import users": "Failed to import users"
  },
  "util": {
    "No application is found for userId: %s": "No application is found for userId: %s",
    "No provider for category: %s is found for application: %s": "No provider for category: %s is found for application: %s",
    "Please login first": "Please login first",
    "The provider: %s is not found": "The provider: %s is not found",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "verification": {
    "Code has not been sent yet!": "Code has not been sent yet!",
    "Email is invalid": "Email is invalid",
    "Invalid captcha provider.": "Invalid captcha provider.",
    "Missing parameter": "Missing parameter",
    "Organization does not exist": "Organization does not exist",
    "Phone number is invalid": "Phone number is invalid",
    "Please login first": "Please login first",
    "Turing test failed.": "Turing test failed.",
    "Unable to get the email modify rule.": "Unable to get the email modify rule.",
    "Unable to get the phone modify rule.": "Unable to get the phone modify rule.",
    "Unknown type": "Unknown type",
    "Wrong parameter": "Wrong parameter",
    "You should verify your code in %d min!": "You should verify your code in %d min!",
    "the user does not exist, please sign up first": "the user does not exist, please sign up first"
  },
  "webauthn": {
    "Found no credentials for this user": "Found no credentials for this user",
    "Please call WebAuthnSigninBegin first": "Please call WebAuthnSigninBegin first",
    "Please login first": "Please login first",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist"
  }
 }
--- a/i18n/locales/ko/data.json
+++ b/i18n/locales/ko/data.json
@ -0,0 +1,172 @@
 {
  "account": {
    "Email: %s": "Email: %s",
    "Get init score failed, error: %w": "Get init score failed, error: %w",
    "Invalid information": "Invalid information",
    "Phone: %s": "Phone: %s",
    "Please sign out first before signing up": "Please sign out first before signing up",
    "The application does not allow to sign up new account": "The application does not allow to sign up new account"
  },
  "application": {
    "Parameter organization is missing": "Parameter organization is missing",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "auth": {
    "%s No phone prefix": "%s No phone prefix",
    "Challenge method should be S256": "Challenge method should be S256",
    "Failed to create user, user information is invalid: %s": "Failed to create user, user information is invalid: %s",
    "Failed to login in: %s": "Failed to login in: %s",
    "Get init score failed, error: %w": "Get init score failed, error: %w",
    "Invalid token": "Invalid token",
    "Please sign out first before signing in": "Please sign out first before signing in",
    "State expected: %s, but got: %s": "State expected: %s, but got: %s",
    "The account does not exist": "The account does not exist",
    "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up": "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up",
    "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support": "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support",
    "The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)": "The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)",
    "The application: %s does not exist": "The application: %s does not exist",
    "The provider type: %s is not supported": "The provider type: %s is not supported",
    "The provider: %s is not enabled for the application": "The provider: %s is not enabled for the application",
    "The user is forbidden to sign in, please contact the administrator": "The user is forbidden to sign in, please contact the administrator",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist",
    "Turing test failed.": "Turing test failed.",
    "Unauthorized operation": "Unauthorized operation",
    "Unknown authentication type (not password or provider), form = %s": "Unknown authentication type (not password or provider), form = %s"
  },
  "cas": {
    "Service %s and %s do not match": "Service %s and %s do not match"
  },
  "check": {
    "Affiliation cannot be blank": "Affiliation cannot be blank",
    "DisplayName cannot be blank": "DisplayName cannot be blank",
    "DisplayName is not valid real name": "DisplayName is not valid real name",
    "Email already exists": "Email already exists",
    "Email cannot be empty": "Email cannot be empty",
    "Email is invalid": "Email is invalid",
    "Empty username.": "Empty username.",
    "FirstName cannot be blank": "FirstName cannot be blank",
    "LastName cannot be blank": "LastName cannot be blank",
    "Ldap user name or password incorrect": "Ldap user name or password incorrect",
    "Multiple accounts with same uid, please check your ldap server": "Multiple accounts with same uid, please check your ldap server",
    "Organization does not exist": "Organization does not exist",
    "Password must have at least 6 characters": "Password must have at least 6 characters",
    "Phone already exists": "Phone already exists",
    "Phone cannot be empty": "Phone cannot be empty",
    "Phone number is invalid": "Phone number is invalid",
    "Please login first": "Please login first",
    "Session outdated, please login again": "Session outdated, please login again",
    "The user doesn't exist": "The user doesn't exist",
    "The user is forbidden to sign in, please contact the administrator": "The user is forbidden to sign in, please contact the administrator",
    "The user: %s doesn't exist": "The user: %s doesn't exist",
    "The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.": "The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.",
    "Username already exists": "Username already exists",
    "Username cannot be an email address": "Username cannot be an email address",
    "Username cannot contain white spaces": "Username cannot contain white spaces",
    "Username cannot start with a digit": "Username cannot start with a digit",
    "Username is too long (maximum is 39 characters).": "Username is too long (maximum is 39 characters).",
    "Username must have at least 2 characters": "Username must have at least 2 characters",
    "You don't have the permission to do this": "You don't have the permission to do this",
    "You have entered the wrong password too many times, please wait for %d minutes %d seconds and try again": "You have entered the wrong password too many times, please wait for %d minutes %d seconds and try again",
    "unsupported password type: %s": "unsupported password type: %s"
  },
  "check_util": {
    "You have entered the wrong password too many times, please wait for %d minutes and try again": "You have entered the wrong password too many times, please wait for %d minutes and try again",
    "password is incorrect, you have %d remaining chances": "password is incorrect, you have %d remaining chances"
  },
  "enforcer": {
    "Please sign in first": "Please sign in first"
  },
  "ldap": {
    "Ldap server exist": "Ldap server exist",
    "Missing parameter": "Missing parameter"
  },
  "link": {
    "Please link first": "Please link first",
    "This application has no providers": "This application has no providers",
    "This application has no providers of type": "This application has no providers of type",
    "This provider can't be unlinked": "This provider can't be unlinked",
    "You are not the global admin, you can't unlink other users": "You are not the global admin, you can't unlink other users",
    "You can't unlink yourself, you are not a member of any application": "You can't unlink yourself, you are not a member of any application"
  },
  "organization": {
    "Only admin can modify the %s.": "Only admin can modify the %s.",
    "The %s is immutable.": "The %s is immutable.",
    "Unknown modify rule %s.": "Unknown modify rule %s."
  },
  "product": {
    "Please login first": "Please login first",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "provider": {
    "Invalid application id": "Invalid application id",
    "the provider: %s does not exist": "the provider: %s does not exist"
  },
  "resource": {
    "User is nil for tag: avatar": "User is nil for tag: avatar",
    "Username or fullFilePath is empty: username = %s, fullFilePath = %s": "Username or fullFilePath is empty: username = %s, fullFilePath = %s"
  },
  "saml": {
    "Application %s not found": "Application %s not found"
  },
  "saml_sp": {
    "provider %s's category is not SAML": "provider %s's category is not SAML"
  },
  "service": {
    "Empty parameters for emailForm: %v": "Empty parameters for emailForm: %v",
    "Invalid Email receivers: %s": "Invalid Email receivers: %s",
    "Invalid phone receivers: %s": "Invalid phone receivers: %s"
  },
  "storage": {
    "The objectKey: %s is not allowed": "The objectKey: %s is not allowed",
    "The provider type: %s is not supported": "The provider type: %s is not supported"
  },
  "system_info": {
    "You are not authorized to access this resource": "You are not authorized to access this resource"
  },
  "token": {
    "Challenge method should be S256": "Challenge method should be S256",
    "Empty clientId or clientSecret": "Empty clientId or clientSecret",
    "Grant_type: %s is not supported in this application": "Grant_type: %s is not supported in this application",
    "Invalid application or wrong clientSecret": "Invalid application or wrong clientSecret",
    "Invalid client_id": "Invalid client_id",
    "Redirect URI: %s doesn't exist in the allowed Redirect URI list": "Redirect URI: %s doesn't exist in the allowed Redirect URI list"
  },
  "user": {
    "Display name cannot be empty": "Display name cannot be empty",
    "New password cannot contain blank space.": "New password cannot contain blank space.",
    "New password must have at least 6 characters": "New password must have at least 6 characters",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist"
  },
  "user_upload": {
    "Failed to import users": "Failed to import users"
  },
  "util": {
    "No application is found for userId: %s": "No application is found for userId: %s",
    "No provider for category: %s is found for application: %s": "No provider for category: %s is found for application: %s",
    "Please login first": "Please login first",
    "The provider: %s is not found": "The provider: %s is not found",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "verification": {
    "Code has not been sent yet!": "Code has not been sent yet!",
    "Email is invalid": "Email is invalid",
    "Invalid captcha provider.": "Invalid captcha provider.",
    "Missing parameter": "Missing parameter",
    "Organization does not exist": "Organization does not exist",
    "Phone number is invalid": "Phone number is invalid",
    "Please login first": "Please login first",
    "Turing test failed.": "Turing test failed.",
    "Unable to get the email modify rule.": "Unable to get the email modify rule.",
    "Unable to get the phone modify rule.": "Unable to get the phone modify rule.",
    "Unknown type": "Unknown type",
    "Wrong parameter": "Wrong parameter",
    "You should verify your code in %d min!": "You should verify your code in %d min!",
    "the user does not exist, please sign up first": "the user does not exist, please sign up first"
  },
  "webauthn": {
    "Found no credentials for this user": "Found no credentials for this user",
    "Please call WebAuthnSigninBegin first": "Please call WebAuthnSigninBegin first",
    "Please login first": "Please login first",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist"
  }
 }
--- a/i18n/locales/ru/data.json
+++ b/i18n/locales/ru/data.json
@ -0,0 +1,172 @@
 {
  "account": {
    "Email: %s": "Email: %s",
    "Get init score failed, error: %w": "Get init score failed, error: %w",
    "Invalid information": "Invalid information",
    "Phone: %s": "Phone: %s",
    "Please sign out first before signing up": "Please sign out first before signing up",
    "The application does not allow to sign up new account": "The application does not allow to sign up new account"
  },
  "application": {
    "Parameter organization is missing": "Parameter organization is missing",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "auth": {
    "%s No phone prefix": "%s No phone prefix",
    "Challenge method should be S256": "Challenge method should be S256",
    "Failed to create user, user information is invalid: %s": "Failed to create user, user information is invalid: %s",
    "Failed to login in: %s": "Failed to login in: %s",
    "Get init score failed, error: %w": "Get init score failed, error: %w",
    "Invalid token": "Invalid token",
    "Please sign out first before signing in": "Please sign out first before signing in",
    "State expected: %s, but got: %s": "State expected: %s, but got: %s",
    "The account does not exist": "The account does not exist",
    "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up": "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up",
    "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support": "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support",
    "The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)": "The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)",
    "The application: %s does not exist": "The application: %s does not exist",
    "The provider type: %s is not supported": "The provider type: %s is not supported",
    "The provider: %s is not enabled for the application": "The provider: %s is not enabled for the application",
    "The user is forbidden to sign in, please contact the administrator": "The user is forbidden to sign in, please contact the administrator",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist",
    "Turing test failed.": "Turing test failed.",
    "Unauthorized operation": "Unauthorized operation",
    "Unknown authentication type (not password or provider), form = %s": "Unknown authentication type (not password or provider), form = %s"
  },
  "cas": {
    "Service %s and %s do not match": "Service %s and %s do not match"
  },
  "check": {
    "Affiliation cannot be blank": "Affiliation cannot be blank",
    "DisplayName cannot be blank": "DisplayName cannot be blank",
    "DisplayName is not valid real name": "DisplayName is not valid real name",
    "Email already exists": "Email already exists",
    "Email cannot be empty": "Email cannot be empty",
    "Email is invalid": "Email is invalid",
    "Empty username.": "Empty username.",
    "FirstName cannot be blank": "FirstName cannot be blank",
    "LastName cannot be blank": "LastName cannot be blank",
    "Ldap user name or password incorrect": "Ldap user name or password incorrect",
    "Multiple accounts with same uid, please check your ldap server": "Multiple accounts with same uid, please check your ldap server",
    "Organization does not exist": "Organization does not exist",
    "Password must have at least 6 characters": "Password must have at least 6 characters",
    "Phone already exists": "Phone already exists",
    "Phone cannot be empty": "Phone cannot be empty",
    "Phone number is invalid": "Phone number is invalid",
    "Please login first": "Please login first",
    "Session outdated, please login again": "Session outdated, please login again",
    "The user doesn't exist": "The user doesn't exist",
    "The user is forbidden to sign in, please contact the administrator": "The user is forbidden to sign in, please contact the administrator",
    "The user: %s doesn't exist": "The user: %s doesn't exist",
    "The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.": "The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.",
    "Username already exists": "Username already exists",
    "Username cannot be an email address": "Username cannot be an email address",
    "Username cannot contain white spaces": "Username cannot contain white spaces",
    "Username cannot start with a digit": "Username cannot start with a digit",
    "Username is too long (maximum is 39 characters).": "Username is too long (maximum is 39 characters).",
    "Username must have at least 2 characters": "Username must have at least 2 characters",
    "You don't have the permission to do this": "You don't have the permission to do this",
    "You have entered the wrong password too many times, please wait for %d minutes %d seconds and try again": "You have entered the wrong password too many times, please wait for %d minutes %d seconds and try again",
    "unsupported password type: %s": "unsupported password type: %s"
  },
  "check_util": {
    "You have entered the wrong password too many times, please wait for %d minutes and try again": "You have entered the wrong password too many times, please wait for %d minutes and try again",
    "password is incorrect, you have %d remaining chances": "password is incorrect, you have %d remaining chances"
  },
  "enforcer": {
    "Please sign in first": "Please sign in first"
  },
  "ldap": {
    "Ldap server exist": "Ldap server exist",
    "Missing parameter": "Missing parameter"
  },
  "link": {
    "Please link first": "Please link first",
    "This application has no providers": "This application has no providers",
    "This application has no providers of type": "This application has no providers of type",
    "This provider can't be unlinked": "This provider can't be unlinked",
    "You are not the global admin, you can't unlink other users": "You are not the global admin, you can't unlink other users",
    "You can't unlink yourself, you are not a member of any application": "You can't unlink yourself, you are not a member of any application"
  },
  "organization": {
    "Only admin can modify the %s.": "Only admin can modify the %s.",
    "The %s is immutable.": "The %s is immutable.",
    "Unknown modify rule %s.": "Unknown modify rule %s."
  },
  "product": {
    "Please login first": "Please login first",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "provider": {
    "Invalid application id": "Invalid application id",
    "the provider: %s does not exist": "the provider: %s does not exist"
  },
  "resource": {
    "User is nil for tag: avatar": "User is nil for tag: avatar",
    "Username or fullFilePath is empty: username = %s, fullFilePath = %s": "Username or fullFilePath is empty: username = %s, fullFilePath = %s"
  },
  "saml": {
    "Application %s not found": "Application %s not found"
  },
  "saml_sp": {
    "provider %s's category is not SAML": "provider %s's category is not SAML"
  },
  "service": {
    "Empty parameters for emailForm: %v": "Empty parameters for emailForm: %v",
    "Invalid Email receivers: %s": "Invalid Email receivers: %s",
    "Invalid phone receivers: %s": "Invalid phone receivers: %s"
  },
  "storage": {
    "The objectKey: %s is not allowed": "The objectKey: %s is not allowed",
    "The provider type: %s is not supported": "The provider type: %s is not supported"
  },
  "system_info": {
    "You are not authorized to access this resource": "You are not authorized to access this resource"
  },
  "token": {
    "Challenge method should be S256": "Challenge method should be S256",
    "Empty clientId or clientSecret": "Empty clientId or clientSecret",
    "Grant_type: %s is not supported in this application": "Grant_type: %s is not supported in this application",
    "Invalid application or wrong clientSecret": "Invalid application or wrong clientSecret",
    "Invalid client_id": "Invalid client_id",
    "Redirect URI: %s doesn't exist in the allowed Redirect URI list": "Redirect URI: %s doesn't exist in the allowed Redirect URI list"
  },
  "user": {
    "Display name cannot be empty": "Display name cannot be empty",
    "New password cannot contain blank space.": "New password cannot contain blank space.",
    "New password must have at least 6 characters": "New password must have at least 6 characters",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist"
  },
  "user_upload": {
    "Failed to import users": "Failed to import users"
  },
  "util": {
    "No application is found for userId: %s": "No application is found for userId: %s",
    "No provider for category: %s is found for application: %s": "No provider for category: %s is found for application: %s",
    "Please login first": "Please login first",
    "The provider: %s is not found": "The provider: %s is not found",
    "The user: %s doesn't exist": "The user: %s doesn't exist"
  },
  "verification": {
    "Code has not been sent yet!": "Code has not been sent yet!",
    "Email is invalid": "Email is invalid",
    "Invalid captcha provider.": "Invalid captcha provider.",
    "Missing parameter": "Missing parameter",
    "Organization does not exist": "Organization does not exist",
    "Phone number is invalid": "Phone number is invalid",
    "Please login first": "Please login first",
    "Turing test failed.": "Turing test failed.",
    "Unable to get the email modify rule.": "Unable to get the email modify rule.",
    "Unable to get the phone modify rule.": "Unable to get the phone modify rule.",
    "Unknown type": "Unknown type",
    "Wrong parameter": "Wrong parameter",
    "You should verify your code in %d min!": "You should verify your code in %d min!",
    "the user does not exist, please sign up first": "the user does not exist, please sign up first"
  },
  "webauthn": {
    "Found no credentials for this user": "Found no credentials for this user",
    "Please call WebAuthnSigninBegin first": "Please call WebAuthnSigninBegin first",
    "Please login first": "Please login first",
    "The user: %s/%s doesn't exist": "The user: %s/%s doesn't exist"
  }
 }
--- a/i18n/locales/zh/data.json
+++ b/i18n/locales/zh/data.json
@ -0,0 +1,172 @@
 {
  "account": {
    "Email: %s": "邮件: %s",
    "Get init score failed, error: %w": "初始化分数失败: %w",
    "Invalid information": "无效信息",
    "Phone: %s": "电话: %s",
    "Please sign out first before signing up": "请在登陆前登出",
    "The application does not allow to sign up new account": "该应用不允许注册新账户"
  },
  "application": {
    "Parameter organization is missing": "Organization参数丢失",
    "The user: %s doesn't exist": "用户不存在: %s"
  },
  "auth": {
    "%s No phone prefix": "%s 无此电话前缀",
    "Challenge method should be S256": "Challenge 方法应该为 S256",
    "Failed to create user, user information is invalid: %s": "创建用户失败，用户信息无效: %s",
    "Failed to login in: %s": "无法登录: %s",
    "Get init score failed, error: %w": "初始化分数失败: %w",
    "Invalid token": "无效token",
    "Please sign out first before signing in": "请在登陆前登出",
    "State expected: %s, but got: %s": "期望状态位: %s, 实际状态为: %s",
    "The account does not exist": "账户不存在",
    "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account via %%s, please use another way to sign up": "提供商账户: %s 与用户名: %s (%s) 不存在且 不允许通过 %s 注册新账户, 请使用其他方式注册",
    "The account for provider: %s and username: %s (%s) does not exist and is not allowed to sign up as new account, please contact your IT support": "提供商账户: %s 与用户名: %s (%s) 不存在且 不允许注册新账户, 请联系IT支持",
    "The account for provider: %s and username: %s (%s) is already linked to another account: %s (%s)": "提供商账户: %s 与用户名: %s (%s) 已经与其他账户绑定: %s (%s)",
    "The application: %s does not exist": "应用 %s 不存在",
    "The provider type: %s is not supported": "不支持该类型的提供商: %s",
    "The provider: %s is not enabled for the application": "提供商: %s 未被启用",
    "The user is forbidden to sign in, please contact the administrator": "该用户被禁止登陆，请联系管理员",
    "The user: %s/%s doesn't exist": "用户不存在: %s/%s",
    "Turing test failed.": "真人验证失败",
    "Unauthorized operation": "未授权的操作",
    "Unknown authentication type (not password or provider), form = %s": "未授权的操作"
  },
  "cas": {
    "Service %s and %s do not match": "服务 %s 与 %s 不匹配"
  },
  "check": {
    "Affiliation cannot be blank": "联系方式不可为空",
    "DisplayName cannot be blank": "展示名称不可为空",
    "DisplayName is not valid real name": "展示名称无效",
    "Email already exists": "该邮箱已存在",
    "Email cannot be empty": "邮箱不可为空",
    "Email is invalid": "无效邮箱",
    "Empty username.": "用户名不可为空",
    "FirstName cannot be blank": "名不可以为空",
    "LastName cannot be blank": "姓不可以为空",
    "Ldap user name or password incorrect": "Ldap密码错误",
    "Multiple accounts with same uid, please check your ldap server": "多个帐户具有相同的uid，请检查您的 ldap 服务器",
    "Organization does not exist": "组织不存在",
    "Password must have at least 6 characters": "新密码至少为6位",
    "Phone already exists": "该电话已存在",
    "Phone cannot be empty": "电话不可为空",
    "Phone number is invalid": "无效电话",
    "Please login first": "请先登录",
    "Session outdated, please login again": "Session已过期，请重新登陆",
    "The user doesn't exist": "用户不存在",
    "The user is forbidden to sign in, please contact the administrator": "该用户被禁止登陆，请联系管理员",
    "The user: %s doesn't exist": "用户不存在: %s",
    "The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.": "用户名只能包含字母数字字符、下划线或连字符，不能有连续的连字符或下划线，也不能以连字符或下划线开头或结尾",
    "Username already exists": "用户名已存在",
    "Username cannot be an email address": "用户名不可以是邮箱地址",
    "Username cannot contain white spaces": "用户名不可以包含空格",
    "Username cannot start with a digit": "用户名禁止使用数字作为第一个字符",
    "Username is too long (maximum is 39 characters).": "用户名过长（最大长度为39个字符）",
    "Username must have at least 2 characters": "用户名至少要有2个字符",
    "You don't have the permission to do this": "用户名至少要有2个字符",
    "You have entered the wrong password too many times, please wait for %d minutes %d seconds and try again": "输入密码错误次数已达上限，请在 %d 分 %d 秒后重试",
    "unsupported password type: %s": "不支持的密码类型: %s"
  },
  "check_util": {
    "You have entered the wrong password too many times, please wait for %d minutes and try again": "输入密码错误次数已达上限，请在 %d 分后重试",
    "password is incorrect, you have %d remaining chances": "密码错误，您还有 %d 次尝试的机会"
  },
  "enforcer": {
    "Please sign in first": "请先登录"
  },
  "ldap": {
    "Ldap server exist": "Ldap服务器已存在",
    "Missing parameter": "参数丢失"
  },
  "link": {
    "Please link first": "请先绑定",
    "This application has no providers": "该应用无提供商",
    "This application has no providers of type": "应用没有该类型的提供商",
    "This provider can't be unlinked": "该提供商不可被链接",
    "You are not the global admin, you can't unlink other users": "您不是全局管理员，无法取消链接其他用户",
    "You can't unlink yourself, you are not a member of any application": "您无法取消链接，您不是任何应用程序的成员"
  },
  "organization": {
    "Only admin can modify the %s.": "您无法取消链接，您不是任何应用程序的成员",
    "The %s is immutable.": "%s是不可变的",
    "Unknown modify rule %s.": "未知的修改规则"
  },
  "product": {
    "Please login first": "请先登录",
    "The user: %s doesn't exist": "用户不存在: %s"
  },
  "provider": {
    "Invalid application id": "无效的Application ID",
    "the provider: %s does not exist": "提供商: %s 不存在"
  },
  "resource": {
    "User is nil for tag: avatar": "用户头像标签为空",
    "Username or fullFilePath is empty: username = %s, fullFilePath = %s": "username或FilePath为空: username = %s, fullFilePath = %s"
  },
  "saml": {
    "Application %s not found": "应用 %s 未找到"
  },
  "saml_sp": {
    "provider %s's category is not SAML": "提供商 %s类型不是SAML"
  },
  "service": {
    "Empty parameters for emailForm: %v": "邮件参数为空: %v",
    "Invalid Email receivers: %s": " 无效的邮箱接收者: %s",
    "Invalid phone receivers: %s": "无效的电话接收者: %s"
  },
  "storage": {
    "The objectKey: %s is not allowed": "object key :%s 不被允许",
    "The provider type: %s is not supported": "提供商类型: %s 尚未支持"
  },
  "system_info": {
    "You are not authorized to access this resource": "您无权获取此资源"
  },
  "token": {
    "Challenge method should be S256": "Challenge 方法应该为 S256",
    "Empty clientId or clientSecret": "clientId或clientSecret为空",
    "Grant_type: %s is not supported in this application": "此应用中不支持此授权类型: %s",
    "Invalid application or wrong clientSecret": "无效应用或错误的clientSecret",
    "Invalid client_id": "无效的ClientId",
    "Redirect URI: %s doesn't exist in the allowed Redirect URI list": "重定向 URI：%s 在可列表中未找到"
  },
  "user": {
    "Display name cannot be empty": "展示名称不可为空",
    "New password cannot contain blank space.": "新密码不可以包含空格",
    "New password must have at least 6 characters": "新密码至少需要6位字符",
    "The user: %s/%s doesn't exist": "用户不存在: %s/%s"
  },
  "user_upload": {
    "Failed to import users": "导入用户失败"
  },
  "util": {
    "No application is found for userId: %s": "找不到该用户的应用程序 %s",
    "No provider for category: %s is found for application: %s": "找不到该用户的应用程序 %s",
    "Please login first": "请先登录",
    "The provider: %s is not found": "该提供商未找到: %s",
    "The user: %s doesn't exist": "用户不存在: %s"
  },
  "verification": {
    "Code has not been sent yet!": "验证码还未发送",
    "Email is invalid": "非法的邮箱",
    "Invalid captcha provider.": "非法的验证码提供商",
    "Missing parameter": "参数丢失",
    "Organization does not exist": "组织不存在",
    "Phone number is invalid": "非法的电话号码",
    "Please login first": "请先登录",
    "Turing test failed.": "验证码还未发送",
    "Unable to get the email modify rule.": "无法得到邮箱修改规则",
    "Unable to get the phone modify rule.": "无法得到电话修改规则",
    "Unknown type": "未知类型",
    "Wrong parameter": "参数错误",
    "You should verify your code in %d min!": "请在 %d 分钟内输入正确验证码",
    "the user does not exist, please sign up first": "用户不存在，请先注册"
  },
  "webauthn": {
    "Found no credentials for this user": "该用户没有WebAuthn凭据",
    "Please call WebAuthnSigninBegin first": "请先调用 WebAuthnSigninBegi",
    "Please login first": "请先登录",
    "The user: %s/%s doesn't exist": "用户: %s/%s 不存在"
  }
 }
--- a/i18n/util.go
+++ b/i18n/util.go
@ -20,16 +20,21 @@ import (
 	"strings"
 	"github.com/casdoor/casdoor/util"
 	"gopkg.in/ini.v1"
 )
-//go:embed languages/*.ini
+//go:embed locales/*/data.json
 var f embed.FS
-var langMapConfig = make(map[string]*ini.File)
+var langMap = make(map[string]map[string]map[string]string) // for example : langMap[en][account][Invalid information] = Invalid information
 func getI18nFilePath(language string) string {
-	return fmt.Sprintf("../web/src/locales/%s/data.json", language)
+	if strings.Contains(language, "backend") {
 		// change language from 'backend_en' to 'en'
 		language = language[8:]
 		return fmt.Sprintf("../i18n/locales/%s/data.json", language)
 	} else {
 		return fmt.Sprintf("../web/src/locales/%s/data.json", language)
 	}
 }
 func readI18nFile(language string) *I18nData {
@ -71,16 +76,20 @@ func applyData(data1 *I18nData, data2 *I18nData) {
 }
 func Translate(lang string, error string) string {
-	parts := strings.Split(error, ".")
+	parts := strings.SplitN(error, ":", 2)
-	if !strings.Contains(error, ".") || len(parts) != 2 {
+	if !strings.Contains(error, ":") || len(parts) != 2 {
 		return "Translate Error: " + error
 	}
-
+	if langMap[lang] != nil {
-	if langMapConfig[lang] != nil {
+		return langMap[lang][parts[0]][parts[1]]
 		return langMapConfig[lang].Section(parts[0]).Key(parts[1]).String()
 	} else {
-		file, _ := f.ReadFile("languages/locale_" + lang + ".ini")
+		file, _ := f.ReadFile("locales/" + lang + "/data.json")
-		langMapConfig[lang], _ = ini.Load(file)
+		data := I18nData{}
-		return langMapConfig[lang].Section(parts[0]).Key(parts[1]).String()
+		err := util.JsonToStruct(string(file), &data)
 		if err != nil {
 			panic(err)
 		}
 		langMap[lang] = data
 		return langMap[lang][parts[0]][parts[1]]
 	}
 }
--- a/idp/adfs.go
+++ b/idp/adfs.go
@ -15,11 +15,11 @@
 package idp
 import (
 	"bytes"
 	"crypto/tls"
 	"encoding/json"
 	"fmt"
 	"io"
 	"io/ioutil"
 	"net/http"
 	"net/url"
 	"time"
@ -118,13 +118,14 @@ func (idp *AdfsIdProvider) GetUserInfo(token *oauth2.Token) (*UserInfo, error) {
 	if err != nil {
 		return nil, err
 	}
-	keyset, err := jwk.Parse(resp.Body)
+	body, err := ioutil.ReadAll(resp.Body)
 	keyset, err := jwk.ParseKey(body)
 	if err != nil {
 		return nil, err
 	}
 	tokenSrc := []byte(token.AccessToken)
-	publicKey, _ := keyset.Keys[0].Materialize()
+	publicKey, _ := keyset.PublicKey()
-	idToken, _ := jwt.Parse(bytes.NewReader(tokenSrc), jwt.WithVerify(jwa.RS256, publicKey))
+	idToken, _ := jwt.Parse(tokenSrc, jwt.WithVerify(jwa.RS256, publicKey))
 	sid, _ := idToken.Get("sid")
 	upn, _ := idToken.Get("upn")
 	name, _ := idToken.Get("unique_name")
--- a/idp/goth.go
+++ b/idp/goth.go
@ -22,35 +22,35 @@ import (
 	"time"
 	"github.com/casdoor/casdoor/util"
-	"github.com/casdoor/goth"
+	"github.com/markbates/goth"
-	"github.com/casdoor/goth/providers/amazon"
+	"github.com/markbates/goth/providers/amazon"
-	"github.com/casdoor/goth/providers/apple"
+	"github.com/markbates/goth/providers/apple"
-	"github.com/casdoor/goth/providers/azuread"
+	"github.com/markbates/goth/providers/azureadv2"
-	"github.com/casdoor/goth/providers/bitbucket"
+	"github.com/markbates/goth/providers/bitbucket"
-	"github.com/casdoor/goth/providers/digitalocean"
+	"github.com/markbates/goth/providers/digitalocean"
-	"github.com/casdoor/goth/providers/discord"
+	"github.com/markbates/goth/providers/discord"
-	"github.com/casdoor/goth/providers/dropbox"
+	"github.com/markbates/goth/providers/dropbox"
-	"github.com/casdoor/goth/providers/facebook"
+	"github.com/markbates/goth/providers/facebook"
-	"github.com/casdoor/goth/providers/gitea"
+	"github.com/markbates/goth/providers/gitea"
-	"github.com/casdoor/goth/providers/github"
+	"github.com/markbates/goth/providers/github"
-	"github.com/casdoor/goth/providers/gitlab"
+	"github.com/markbates/goth/providers/gitlab"
-	"github.com/casdoor/goth/providers/google"
+	"github.com/markbates/goth/providers/google"
-	"github.com/casdoor/goth/providers/heroku"
+	"github.com/markbates/goth/providers/heroku"
-	"github.com/casdoor/goth/providers/instagram"
+	"github.com/markbates/goth/providers/instagram"
-	"github.com/casdoor/goth/providers/kakao"
+	"github.com/markbates/goth/providers/kakao"
-	"github.com/casdoor/goth/providers/line"
+	"github.com/markbates/goth/providers/line"
-	"github.com/casdoor/goth/providers/linkedin"
+	"github.com/markbates/goth/providers/linkedin"
-	"github.com/casdoor/goth/providers/microsoftonline"
+	"github.com/markbates/goth/providers/microsoftonline"
-	"github.com/casdoor/goth/providers/paypal"
+	"github.com/markbates/goth/providers/paypal"
-	"github.com/casdoor/goth/providers/salesforce"
+	"github.com/markbates/goth/providers/salesforce"
-	"github.com/casdoor/goth/providers/shopify"
+	"github.com/markbates/goth/providers/shopify"
-	"github.com/casdoor/goth/providers/slack"
+	"github.com/markbates/goth/providers/slack"
-	"github.com/casdoor/goth/providers/steam"
+	"github.com/markbates/goth/providers/steam"
-	"github.com/casdoor/goth/providers/tumblr"
+	"github.com/markbates/goth/providers/tumblr"
-	"github.com/casdoor/goth/providers/twitter"
+	"github.com/markbates/goth/providers/twitter"
-	"github.com/casdoor/goth/providers/yahoo"
+	"github.com/markbates/goth/providers/yahoo"
-	"github.com/casdoor/goth/providers/yandex"
+	"github.com/markbates/goth/providers/yandex"
-	"github.com/casdoor/goth/providers/zoom"
+	"github.com/markbates/goth/providers/zoom"
 	"golang.org/x/oauth2"
 )
@ -74,8 +74,8 @@ func NewGothIdProvider(providerType string, clientId string, clientSecret string
 		}
 	case "AzureAD":
 		idp = GothIdProvider{
-			Provider: azuread.New(clientId, clientSecret, redirectUrl, nil),
+			Provider: azureadv2.New(clientId, clientSecret, redirectUrl, azureadv2.ProviderOptions{Tenant: "common"}),
-			Session:  &azuread.Session{},
+			Session:  &azureadv2.Session{},
 		}
 	case "Bitbucket":
 		idp = GothIdProvider{
@ -202,6 +202,8 @@ func NewGothIdProvider(providerType string, clientId string, clientSecret string
 			Provider: zoom.New(clientId, clientSecret, redirectUrl),
 			Session:  &zoom.Session{},
 		}
 	default:
 		return nil
 	}
 	return &idp
--- a/idp/provider.go
+++ b/idp/provider.go
@ -98,7 +98,7 @@ func GetIdProvider(typ string, subType string, clientId string, clientSecret str
 	return nil
 }
-var gothList = []string{"Apple", "AzureAd", "Slack", "Steam"}
+var gothList = []string{"Apple", "AzureAD", "Slack", "Steam"}
 func isGothSupport(provider string) bool {
 	for _, value := range gothList {
--- a/object/check.go
+++ b/object/check.go
@ -44,21 +44,21 @@ func init() {
 func CheckUserSignup(application *Application, organization *Organization, username string, password string, displayName string, firstName string, lastName string, email string, phone string, affiliation string, lang string) string {
 	if organization == nil {
-		return i18n.Translate(lang, "OrgErr.DoNotExist")
+		return i18n.Translate(lang, "check:Organization does not exist")
 	}
 	if application.IsSignupItemVisible("Username") {
 		if len(username) <= 1 {
-			return i18n.Translate(lang, "UserErr.NameLessThanTwoCharacters")
+			return i18n.Translate(lang, "check:Username must have at least 2 characters")
 		}
 		if unicode.IsDigit(rune(username[0])) {
-			return i18n.Translate(lang, "UserErr.NameStartWithADigitErr")
+			return i18n.Translate(lang, "check:Username cannot start with a digit")
 		}
 		if util.IsEmailValid(username) {
-			return i18n.Translate(lang, "UserErr.NameIsEmailErr")
+			return i18n.Translate(lang, "check:Username cannot be an email address")
 		}
 		if reWhiteSpace.MatchString(username) {
-			return i18n.Translate(lang, "UserErr.NameCantainWhitSpaceErr")
+			return i18n.Translate(lang, "check:Username cannot contain white spaces")
 		}
 		msg := CheckUsername(username, lang)
 		if msg != "" {
@ -66,65 +66,65 @@ func CheckUserSignup(application *Application, organization *Organization, usern
 		}
 		if HasUserByField(organization.Name, "name", username) {
-			return i18n.Translate(lang, "UserErr.NameExistedErr")
+			return i18n.Translate(lang, "check:Username already exists")
 		}
 		if HasUserByField(organization.Name, "email", email) {
-			return i18n.Translate(lang, "EmailErr.ExistedErr")
+			return i18n.Translate(lang, "check:Email already exists")
 		}
 		if HasUserByField(organization.Name, "phone", phone) {
-			return i18n.Translate(lang, "PhoneErr.ExistedErr")
+			return i18n.Translate(lang, "check:Phone already exists")
 		}
 	}
 	if len(password) <= 5 {
-		return i18n.Translate(lang, "UserErr.PasswordLessThanSixCharacters")
+		return i18n.Translate(lang, "check:Password must have at least 6 characters")
 	}
 	if application.IsSignupItemVisible("Email") {
 		if email == "" {
 			if application.IsSignupItemRequired("Email") {
-				return i18n.Translate(lang, "EmailErr.EmptyErr")
+				return i18n.Translate(lang, "check:Email cannot be empty")
 			} else {
 				return ""
 			}
 		}
 		if HasUserByField(organization.Name, "email", email) {
-			return i18n.Translate(lang, "EmailErr.ExistedErr")
+			return i18n.Translate(lang, "check:Email already exists")
 		} else if !util.IsEmailValid(email) {
-			return i18n.Translate(lang, "EmailErr.EmailInvalid")
+			return i18n.Translate(lang, "check:Email is invalid")
 		}
 	}
 	if application.IsSignupItemVisible("Phone") {
 		if phone == "" {
 			if application.IsSignupItemRequired("Phone") {
-				return i18n.Translate(lang, "PhoneErr.EmptyErr")
+				return i18n.Translate(lang, "check:Phone cannot be empty")
 			} else {
 				return ""
 			}
 		}
 		if HasUserByField(organization.Name, "phone", phone) {
-			return i18n.Translate(lang, "PhoneErr.ExistedErr")
+			return i18n.Translate(lang, "check:Phone already exists")
 		} else if organization.PhonePrefix == "86" && !util.IsPhoneCnValid(phone) {
-			return i18n.Translate(lang, "PhoneErr.NumberInvalid")
+			return i18n.Translate(lang, "check:Phone number is invalid")
 		}
 	}
 	if application.IsSignupItemVisible("Display name") {
 		if application.GetSignupItemRule("Display name") == "First, last" && (firstName != "" || lastName != "") {
 			if firstName == "" {
-				return i18n.Translate(lang, "UserErr.FirstNameBlankErr")
+				return i18n.Translate(lang, "check:FirstName cannot be blank")
 			} else if lastName == "" {
-				return i18n.Translate(lang, "UserErr.LastNameBlankErr")
+				return i18n.Translate(lang, "check:LastName cannot be blank")
 			}
 		} else {
 			if displayName == "" {
-				return i18n.Translate(lang, "UserErr.DisplayNameBlankErr")
+				return i18n.Translate(lang, "check:DisplayName cannot be blank")
 			} else if application.GetSignupItemRule("Display name") == "Real name" {
 				if !isValidRealName(displayName) {
-					return i18n.Translate(lang, "UserErr.DisplayNameInvalid")
+					return i18n.Translate(lang, "check:DisplayName is not valid real name")
 				}
 			}
 		}
@ -132,7 +132,7 @@ func CheckUserSignup(application *Application, organization *Organization, usern
 	if application.IsSignupItemVisible("Affiliation") {
 		if affiliation == "" {
-			return i18n.Translate(lang, "UserErr.AffiliationBlankErr")
+			return i18n.Translate(lang, "check:Affiliation cannot be blank")
 		}
 	}
@ -147,7 +147,7 @@ func checkSigninErrorTimes(user *User, lang string) string {
 		// deny the login if the error times is greater than the limit and the last login time is less than the duration
 		if seconds > 0 {
-			return fmt.Sprintf(i18n.Translate(lang, "AuthErr.WrongPasswordManyTimes"), seconds/60, seconds%60)
+			return fmt.Sprintf(i18n.Translate(lang, "check:You have entered the wrong password too many times, please wait for %d minutes %d seconds and try again"), seconds/60, seconds%60)
 		}
 		// reset the error times
@ -167,7 +167,7 @@ func CheckPassword(user *User, password string, lang string) string {
 	organization := GetOrganizationByUser(user)
 	if organization == nil {
-		return i18n.Translate(lang, "OrgErr.DoNotExist")
+		return i18n.Translate(lang, "check:Organization does not exist")
 	}
 	credManager := cred.GetCredManager(organization.PasswordType)
@ -184,9 +184,9 @@ func CheckPassword(user *User, password string, lang string) string {
 			return ""
 		}
-		return recordSigninErrorInfo(user)
+		return recordSigninErrorInfo(user, lang)
 	} else {
-		return fmt.Sprintf(i18n.Translate(lang, "LoginErr.UnsupportedPasswordType"), organization.PasswordType)
+		return fmt.Sprintf(i18n.Translate(lang, "check:unsupported password type: %s"), organization.PasswordType)
 	}
 }
@ -210,7 +210,7 @@ func checkLdapUserPassword(user *User, password string, lang string) (*User, str
 		if len(searchResult.Entries) == 0 {
 			continue
 		} else if len(searchResult.Entries) > 1 {
-			return nil, i18n.Translate(lang, "LdapErr.MultipleAccounts")
+			return nil, i18n.Translate(lang, "check:Multiple accounts with same uid, please check your ldap server")
 		}
 		dn := searchResult.Entries[0].DN
@ -221,7 +221,7 @@ func checkLdapUserPassword(user *User, password string, lang string) (*User, str
 	}
 	if !ldapLoginSuccess {
-		return nil, i18n.Translate(lang, "LdapErr.PasswordWrong")
+		return nil, i18n.Translate(lang, "check:Ldap user name or password incorrect")
 	}
 	return user, ""
 }
@ -229,11 +229,11 @@ func checkLdapUserPassword(user *User, password string, lang string) (*User, str
 func CheckUserPassword(organization string, username string, password string, lang string) (*User, string) {
 	user := GetUserByFields(organization, username)
 	if user == nil || user.IsDeleted == true {
-		return nil, i18n.Translate(lang, "UserErr.DoNotExistSignUp")
+		return nil, i18n.Translate(lang, "check:The user doesn't exist")
 	}
 	if user.IsForbidden {
-		return nil, i18n.Translate(lang, "LoginErr.UserIsForbidden")
+		return nil, i18n.Translate(lang, "check:The user is forbidden to sign in, please contact the administrator")
 	}
 	if user.Ldap != "" {
@ -254,13 +254,13 @@ func filterField(field string) bool {
 func CheckUserPermission(requestUserId, userId, userOwner string, strict bool, lang string) (bool, error) {
 	if requestUserId == "" {
-		return false, fmt.Errorf(i18n.Translate(lang, "LoginErr.LoginFirst"))
+		return false, fmt.Errorf(i18n.Translate(lang, "check:Please login first"))
 	}
 	if userId != "" {
 		targetUser := GetUser(userId)
 		if targetUser == nil {
-			return false, fmt.Errorf(i18n.Translate(lang, "UserErr.DoNotExist"), userId)
+			return false, fmt.Errorf(i18n.Translate(lang, "check:The user: %s doesn't exist"), userId)
 		}
 		userOwner = targetUser.Owner
@ -272,7 +272,7 @@ func CheckUserPermission(requestUserId, userId, userOwner string, strict bool, l
 	} else {
 		requestUser := GetUser(requestUserId)
 		if requestUser == nil {
-			return false, fmt.Errorf(i18n.Translate(lang, "LoginErr.SessionOutdated"))
+			return false, fmt.Errorf(i18n.Translate(lang, "check:Session outdated, please login again"))
 		}
 		if requestUser.IsGlobalAdmin {
 			hasPermission = true
@ -287,7 +287,7 @@ func CheckUserPermission(requestUserId, userId, userOwner string, strict bool, l
 		}
 	}
-	return hasPermission, fmt.Errorf(i18n.Translate(lang, "LoginErr.NoPermission"))
+	return hasPermission, fmt.Errorf(i18n.Translate(lang, "check:You don't have the permission to do this"))
 }
 func CheckAccessPermission(userId string, application *Application) (bool, error) {
@ -322,9 +322,9 @@ func CheckAccessPermission(userId string, application *Application) (bool, error
 func CheckUsername(username string, lang string) string {
 	if username == "" {
-		return i18n.Translate(lang, "UserErr.NameEmptyErr")
+		return i18n.Translate(lang, "check:Empty username.")
 	} else if len(username) > 39 {
-		return i18n.Translate(lang, "UserErr.NameTooLang")
+		return i18n.Translate(lang, "check:Username is too long (maximum is 39 characters).")
 	}
 	exclude, _ := regexp.Compile("^[\u0021-\u007E]+$")
@ -335,7 +335,7 @@ func CheckUsername(username string, lang string) string {
 	// https://stackoverflow.com/questions/58726546/github-username-convention-using-regex
 	re, _ := regexp.Compile("^[a-zA-Z0-9]+((?:-[a-zA-Z0-9]+)|(?:_[a-zA-Z0-9]+))*$")
 	if !re.MatchString(username) {
-		return i18n.Translate(lang, "UserErr.NameFormatErr")
+		return i18n.Translate(lang, "check:The username may only contain alphanumeric characters, underlines or hyphens, cannot have consecutive hyphens or underlines, and cannot begin or end with a hyphen or underline.")
 	}
 	return ""
--- a/object/check_util.go
+++ b/object/check_util.go
@ -18,6 +18,8 @@ import (
 	"fmt"
 	"regexp"
 	"time"
 	"github.com/casdoor/casdoor/i18n"
 )
 var reRealName *regexp.Regexp
@ -43,7 +45,7 @@ func resetUserSigninErrorTimes(user *User) {
 	UpdateUser(user.GetId(), user, []string{"signin_wrong_times", "last_signin_wrong_time"}, user.IsGlobalAdmin)
 }
-func recordSigninErrorInfo(user *User) string {
+func recordSigninErrorInfo(user *User, lang string) string {
 	// increase failed login count
 	user.SigninWrongTimes++
@ -56,9 +58,9 @@ func recordSigninErrorInfo(user *User) string {
 	UpdateUser(user.GetId(), user, []string{"signin_wrong_times", "last_signin_wrong_time"}, user.IsGlobalAdmin)
 	leftChances := SigninWrongTimesLimit - user.SigninWrongTimes
 	if leftChances > 0 {
-		return fmt.Sprintf("password is incorrect, you have %d remaining chances", leftChances)
+		return fmt.Sprintf(i18n.Translate(lang, "check_util:password is incorrect, you have %d remaining chances"), leftChances)
 	}
 	// don't show the chance error message if the user has no chance left
-	return fmt.Sprintf("You have entered the wrong password too many times, please wait for %d minutes and try again", int(LastSignWrongTimeDuration.Minutes()))
+	return fmt.Sprintf(i18n.Translate(lang, "check_util:You have entered the wrong password too many times, please wait for %d minutes and try again"), int(LastSignWrongTimeDuration.Minutes()))
 }
--- a/object/init.go
+++ b/object/init.go
@ -59,6 +59,7 @@ func initBuiltInOrganization() bool {
 		DefaultAvatar: fmt.Sprintf("%s/img/casbin.svg", conf.GetConfigString("staticBaseUrl")),
 		Tags:          []string{},
 		Languages:     []string{"en", "zh", "es", "fr", "de", "ja", "ko", "ru"},
 		InitScore:     2000,
 		AccountItems: []*AccountItem{
 			{Name: "Organization", Visible: true, ViewRule: "Public", ModifyRule: "Admin"},
 			{Name: "ID", Visible: true, ViewRule: "Public", ModifyRule: "Immutable"},
--- a/object/organization.go
+++ b/object/organization.go
@ -47,6 +47,7 @@ type Organization struct {
 	Tags               []string `xorm:"mediumtext" json:"tags"`
 	Languages          []string `xorm:"varchar(255)" json:"languages"`
 	MasterPassword     string   `xorm:"varchar(100)" json:"masterPassword"`
 	InitScore          int      `json:"initScore"`
 	EnableSoftDeletion bool     `json:"enableSoftDeletion"`
 	IsProfilePublic    bool     `json:"isProfilePublic"`
@ -204,14 +205,14 @@ func CheckAccountItemModifyRule(accountItem *AccountItem, user *User, lang strin
 	switch accountItem.ModifyRule {
 	case "Admin":
 		if !(user.IsAdmin || user.IsGlobalAdmin) {
-			return false, fmt.Sprintf(i18n.Translate(lang, "OrgErr.OnlyAdmin"), accountItem.Name)
+			return false, fmt.Sprintf(i18n.Translate(lang, "organization:Only admin can modify the %s."), accountItem.Name)
 		}
 	case "Immutable":
-		return false, fmt.Sprintf(i18n.Translate(lang, "OrgErr.Immutable"), accountItem.Name)
+		return false, fmt.Sprintf(i18n.Translate(lang, "organization:The %s is immutable."), accountItem.Name)
 	case "Self":
 		break
 	default:
-		return false, fmt.Sprintf(i18n.Translate(lang, "OrgErr.UnknownModifyRule"), accountItem.ModifyRule)
+		return false, fmt.Sprintf(i18n.Translate(lang, "organization:Unknown modify rule %s."), accountItem.ModifyRule)
 	}
 	return true, ""
 }
--- a/object/payment.go
+++ b/object/payment.go
@ -35,7 +35,7 @@ type Payment struct {
 	ProductName        string `xorm:"varchar(100)" json:"productName"`
 	ProductDisplayName string `xorm:"varchar(100)" json:"productDisplayName"`
-	Detail   string  `xorm:"varchar(100)" json:"detail"`
+	Detail   string  `xorm:"varchar(255)" json:"detail"`
 	Tag      string  `xorm:"varchar(100)" json:"tag"`
 	Currency string  `xorm:"varchar(100)" json:"currency"`
 	Price    float64 `json:"price"`
--- a/object/product.go
+++ b/object/product.go
@ -28,7 +28,7 @@ type Product struct {
 	DisplayName string `xorm:"varchar(100)" json:"displayName"`
 	Image     string   `xorm:"varchar(100)" json:"image"`
-	Detail    string   `xorm:"varchar(100)" json:"detail"`
+	Detail    string   `xorm:"varchar(255)" json:"detail"`
 	Tag       string   `xorm:"varchar(100)" json:"tag"`
 	Currency  string   `xorm:"varchar(100)" json:"currency"`
 	Price     float64  `json:"price"`
--- a/object/provider.go
+++ b/object/provider.go
@ -277,7 +277,7 @@ func GetCaptchaProviderByOwnerName(applicationId, lang string) (*Provider, error
 	}
 	if !existed {
-		return nil, fmt.Errorf(i18n.Translate(lang, "ProviderErr.DoNotExist"), applicationId)
+		return nil, fmt.Errorf(i18n.Translate(lang, "provider:the provider: %s does not exist"), applicationId)
 	}
 	return &provider, nil
@ -289,7 +289,7 @@ func GetCaptchaProviderByApplication(applicationId, isCurrentProvider, lang stri
 	}
 	application := GetApplication(applicationId)
 	if application == nil || len(application.Providers) == 0 {
-		return nil, fmt.Errorf(i18n.Translate(lang, "ApplicationErr.InvalidID"))
+		return nil, fmt.Errorf(i18n.Translate(lang, "provider:Invalid application id"))
 	}
 	for _, provider := range application.Providers {
 		if provider.Provider == nil {
--- a/object/saml_sp.go
+++ b/object/saml_sp.go
@ -45,7 +45,7 @@ func ParseSamlResponse(samlResponse string, providerType string) (string, error)
 func GenerateSamlLoginUrl(id, relayState, lang string) (string, string, error) {
 	provider := GetProvider(id)
 	if provider.Category != "SAML" {
-		return "", "", fmt.Errorf(i18n.Translate(lang, "ProviderErr.CategoryNotSAML"), provider.Name)
+		return "", "", fmt.Errorf(i18n.Translate(lang, "saml_sp:provider %s's category is not SAML"), provider.Name)
 	}
 	sp, err := buildSp(provider, "")
 	if err != nil {
--- a/object/storage.go
+++ b/object/storage.go
@ -130,13 +130,13 @@ func UploadFileSafe(provider *Provider, fullFilePath string, fileBuffer *bytes.B
 func DeleteFile(provider *Provider, objectKey string, lang string) error {
 	// check fullFilePath is there security issue
 	if strings.Contains(objectKey, "..") {
-		return fmt.Errorf(i18n.Translate(lang, "StorageErr.ObjectKeyNotAllowed"), objectKey)
+		return fmt.Errorf(i18n.Translate(lang, "storage:The objectKey: %s is not allowed"), objectKey)
 	}
 	endpoint := getProviderEndpoint(provider)
 	storageProvider := storage.GetStorageProvider(provider.Type, provider.ClientId, provider.ClientSecret, provider.RegionId, provider.Bucket, endpoint)
 	if storageProvider == nil {
-		return fmt.Errorf(i18n.Translate(lang, "ProviderErr.ProviderNotSupported"), provider.Type)
+		return fmt.Errorf(i18n.Translate(lang, "storage:The provider type: %s is not supported"), provider.Type)
 	}
 	if provider.Domain == "" {
--- a/object/token.go
+++ b/object/token.go
@ -241,12 +241,12 @@ func GetTokenByTokenAndApplication(token string, application string) *Token {
 func CheckOAuthLogin(clientId string, responseType string, redirectUri string, scope string, state string, lang string) (string, *Application) {
 	if responseType != "code" && responseType != "token" && responseType != "id_token" {
-		return fmt.Sprintf(i18n.Translate(lang, "ApplicationErr.GrantTypeNotSupport"), responseType), nil
+		return fmt.Sprintf(i18n.Translate(lang, "token:Grant_type: %s is not supported in this application"), responseType), nil
 	}
 	application := GetApplicationByClientId(clientId)
 	if application == nil {
-		return i18n.Translate(lang, "TokenErr.InvalidClientId"), nil
+		return i18n.Translate(lang, "token:Invalid client_id"), nil
 	}
 	validUri := false
@ -257,7 +257,7 @@ func CheckOAuthLogin(clientId string, responseType string, redirectUri string, s
 		}
 	}
 	if !validUri {
-		return fmt.Sprintf(i18n.Translate(lang, "TokenErr.RedirectURIDoNotExist"), redirectUri), application
+		return fmt.Sprintf(i18n.Translate(lang, "token:Redirect URI: %s doesn't exist in the allowed Redirect URI list"), redirectUri), application
 	}
 	// Mask application for /api/get-app-login
@ -269,7 +269,7 @@ func GetOAuthCode(userId string, clientId string, responseType string, redirectU
 	user := GetUser(userId)
 	if user == nil {
 		return &Code{
-			Message: fmt.Sprintf("The user: %s doesn't exist", userId),
+			Message: fmt.Sprintf("token:The user: %s doesn't exist", userId),
 			Code:    "",
 		}
 	}
--- a/object/verification.go
+++ b/object/verification.go
@ -153,7 +153,7 @@ func CheckVerificationCode(dest, code, lang string) string {
 	record := getVerificationRecord(dest)
 	if record == nil {
-		return i18n.Translate(lang, "PhoneErr.CodeNotSent")
+		return i18n.Translate(lang, "verification:Code has not been sent yet!")
 	}
 	timeout, err := conf.GetConfigInt64("verificationCodeTimeout")
@ -163,7 +163,7 @@ func CheckVerificationCode(dest, code, lang string) string {
 	now := time.Now().Unix()
 	if now-record.Time > timeout*60 {
-		return fmt.Sprintf(i18n.Translate(lang, "PhoneErr.CodeTimeOut"), timeout)
+		return fmt.Sprintf(i18n.Translate(lang, "verification:You should verify your code in %d min!"), timeout)
 	}
 	if record.Code != code {
--- a/web/package.json
+++ b/web/package.json
@ -9,7 +9,7 @@
    "@testing-library/jest-dom": "^4.2.4",
    "@testing-library/react": "^9.3.2",
    "@testing-library/user-event": "^7.1.2",
-    "antd": "5.0.3",
+    "antd": "5.0.5",
    "codemirror": "^5.61.1",
    "copy-to-clipboard": "^3.3.1",
    "core-js": "^3.25.0",
--- a/web/src/AdapterEditPage.js
+++ b/web/src/AdapterEditPage.js
@ -48,12 +48,14 @@ class AdapterEditPage extends React.Component {
  getAdapter() {
    AdapterBackend.getAdapter(this.state.owner, this.state.adapterName)
-      .then((adapter) => {
+      .then((res) => {
-        this.setState({
+        if (res.status === "ok") {
-          adapter: adapter,
+          this.setState({
-        });
+            adapter: res.data,
          });
-        this.getModels(adapter.owner);
+          this.getModels(this.adapter.owner);
        }
      });
  }
--- a/web/src/AdapterListPage.js
+++ b/web/src/AdapterListPage.js
@ -87,7 +87,7 @@ class AdapterListPage extends BaseListPage {
        ...this.getColumnSearchProps("name"),
        render: (text, record, index) => {
          return (
-            <Link to={`/adapters/${text}`}>
+            <Link to={`/adapters/${record.organization}/${text}`}>
              {text}
            </Link>
          );
--- a/web/src/App.js
+++ b/web/src/App.js
@ -224,7 +224,7 @@ class App extends Component {
          this.setLanguage(account);
        } else {
          if (res.data !== "Please login first") {
-            Setting.showMessage("error", `Failed to sign in: ${res.msg}`);
+            Setting.showMessage("error", `${i18next.t("application:Failed to sign in")}: ${res.msg}`);
          }
        }
@ -249,7 +249,7 @@ class App extends Component {
            account: null,
          });
-          Setting.showMessage("success", "Logged out successfully");
+          Setting.showMessage("success", i18next.t("application:Logged out successfully"));
          const redirectUri = res.data2;
          if (redirectUri !== null && redirectUri !== undefined && redirectUri !== "") {
            Setting.goToLink(redirectUri);
--- a/web/src/ApplicationListPage.js
+++ b/web/src/ApplicationListPage.js
@ -197,9 +197,9 @@ class ApplicationListPage extends BaseListPage {
                    <List.Item>
                      <div style={{display: "inline"}}>
                        <Tooltip placement="topLeft" title="Edit">
-                          <Button style={{marginRight: "5px"}} icon={<EditOutlined />} size="small" onClick={() => Setting.goToLinkSoft(this, `/providers/${providerItem.name}`)} />
+                          <Button style={{marginRight: "5px"}} icon={<EditOutlined />} size="small" onClick={() => Setting.goToLinkSoft(this, `/providers/${record.organization}/${providerItem.name}`)} />
                        </Tooltip>
-                        <Link to={`/providers/${providerItem.name}`}>
+                        <Link to={`/providers/${record.organization}/${providerItem.name}`}>
                          {providerItem.name}
                        </Link>
                      </div>
--- a/web/src/OrganizationEditPage.js
+++ b/web/src/OrganizationEditPage.js
@ -13,7 +13,7 @@
 // limitations under the License.
 import React from "react";
-import {Button, Card, Col, Input, Row, Select, Switch} from "antd";
+import {Button, Card, Col, Input, InputNumber, Row, Select, Switch} from "antd";
 import * as OrganizationBackend from "./backend/OrganizationBackend";
 import * as ApplicationBackend from "./backend/ApplicationBackend";
 import * as LdapBackend from "./backend/LdapBackend";
@ -86,7 +86,6 @@ class OrganizationEditPage extends React.Component {
  updateOrganizationField(key, value) {
    value = this.parseOrganizationField(key, value);
    const organization = this.state.organization;
    organization[key] = value;
    this.setState({
@ -280,6 +279,16 @@ class OrganizationEditPage extends React.Component {
            </Select>
          </Col>
        </Row>
        <Row style={{marginTop: "20px"}} >
          <Col style={{marginTop: "5px"}} span={(Setting.isMobile()) ? 19 : 2}>
            {Setting.getLabel(i18next.t("organization:InitScore"), i18next.t("organization:The user's initScore - Tooltip"))} :
          </Col>
          <Col span={4} >
            <InputNumber value={this.state.organization.initScore} onChange={value => {
              this.updateOrganizationField("initScore", value);
            }} />
          </Col>
        </Row>
        <Row style={{marginTop: "20px"}} >
          <Col style={{marginTop: "5px"}} span={(Setting.isMobile()) ? 19 : 2}>
            {Setting.getLabel(i18next.t("organization:Soft deletion"), i18next.t("organization:Soft deletion - Tooltip"))} :
--- a/web/src/ProductBuyPage.js
+++ b/web/src/ProductBuyPage.js
@ -160,10 +160,10 @@ class ProductBuyPage extends React.Component {
          <Descriptions title={i18next.t("product:Buy Product")} bordered>
            <Descriptions.Item label={i18next.t("general:Name")} span={3}>
              <span style={{fontSize: 28}}>
-                {product?.displayName}
+                {Setting.getLanguageText(product?.displayName)}
              </span>
            </Descriptions.Item>
-            <Descriptions.Item label={i18next.t("product:Detail")}><span style={{fontSize: 16}}>{product?.detail}</span></Descriptions.Item>
+            <Descriptions.Item label={i18next.t("product:Detail")}><span style={{fontSize: 16}}>{Setting.getLanguageText(product?.detail)}</span></Descriptions.Item>
            <Descriptions.Item label={i18next.t("product:Tag")}><span style={{fontSize: 16}}>{product?.tag}</span></Descriptions.Item>
            <Descriptions.Item label={i18next.t("product:SKU")}><span style={{fontSize: 16}}>{product?.name}</span></Descriptions.Item>
            <Descriptions.Item label={i18next.t("product:Image")} span={3}>
--- a/web/src/ResourceListPage.js
+++ b/web/src/ResourceListPage.js
@ -113,7 +113,7 @@ class ResourceListPage extends BaseListPage {
        ...this.getColumnSearchProps("application"),
        render: (text, record, index) => {
          return (
-            <Link to={`/applications/${text}`}>
+            <Link to={`/applications/${record.organization}/${text}`}>
              {text}
            </Link>
          );
--- a/web/src/SelectLanguageBox.js
+++ b/web/src/SelectLanguageBox.js
@ -14,7 +14,7 @@
 import React from "react";
 import * as Setting from "./Setting";
-import {Dropdown, Menu} from "antd";
+import {Dropdown} from "antd";
 import "./App.less";
 function flagIcon(country, alt) {
@ -32,16 +32,7 @@ class SelectLanguageBox extends React.Component {
    };
  }
-  items = [
+  items = Setting.Countries.map((country) => Setting.getItem(country.label, country.key, flagIcon(country.country, country.alt)));
    Setting.getItem("English", "en", flagIcon("US", "English")),
    Setting.getItem("简体中文", "zh", flagIcon("CN", "简体中文")),
    Setting.getItem("Español", "es", flagIcon("ES", "Español")),
    Setting.getItem("Français", "fr", flagIcon("FR", "Français")),
    Setting.getItem("Deutsch", "de", flagIcon("DE", "Deutsch")),
    Setting.getItem("日本語", "ja", flagIcon("JP", "日本語")),
    Setting.getItem("한국어", "ko", flagIcon("KR", "한국어")),
    Setting.getItem("Русский", "ru", flagIcon("RU", "Русский")),
  ];
  getOrganizationLanguages(languages) {
    const select = [];
@ -53,15 +44,12 @@ class SelectLanguageBox extends React.Component {
  render() {
    const languageItems = this.getOrganizationLanguages(this.state.languages);
-    const menu = (
+    const onClick = (e) => {
-      <Menu items={languageItems} onClick={(e) => {
+      Setting.setLanguage(e.key);
-        Setting.setLanguage(e.key);
+    };
      }}>
      </Menu>
    );
    return (
-      <Dropdown overlay={menu} >
+      <Dropdown menu={{items: languageItems, onClick}} >
        <div className="language-box" style={{display: languageItems.length === 0 ? "none" : null, ...this.props.style}} />
      </Dropdown>
    );
--- a/web/src/Setting.js
+++ b/web/src/Setting.js
@ -33,6 +33,16 @@ export const StaticBaseUrl = "https://cdn.casbin.org";
 // https://catamphetamine.gitlab.io/country-flag-icons/3x2/index.html
 export const CountryRegionData = getCountryRegionData();
 export const Countries = [{label: "English", key: "en", country: "US", alt: "English"},
  {label: "简体中文", key: "zh", country: "CN", alt: "简体中文"},
  {label: "Español", key: "es", country: "ES", alt: "Español"},
  {label: "Français", key: "fr", country: "FR", alt: "Français"},
  {label: "Deutsch", key: "de", country: "DE", alt: "Deutsch"},
  {label: "日本語", key: "ja", country: "JP", alt: "日本語"},
  {label: "한국어", key: "ko", country: "KR", alt: "한국어"},
  {label: "Русский", key: "ru", country: "RU", alt: "Русский"},
 ];
 export const OtherProviderInfo = {
  SMS: {
    "Aliyun SMS": {
@ -544,6 +554,21 @@ export function getAvatarColor(s) {
  return colorList[hash % 4];
 }
 export function getLanguageText(text) {
  if (!text.includes("|")) {
    return text;
  }
  let res;
  const tokens = text.split("|");
  if (getLanguage() !== "zh") {
    res = trim(tokens[0], "");
  } else {
    res = trim(tokens[1], "");
  }
  return res;
 }
 export function getLanguage() {
  return i18next.language;
 }
--- a/web/src/UserListPage.js
+++ b/web/src/UserListPage.js
@ -62,6 +62,7 @@ class UserListPage extends BaseListPage {
      isAdmin: (owner === "built-in"),
      isGlobalAdmin: (owner === "built-in"),
      IsForbidden: false,
      score: this.state.organization.initScore,
      isDeleted: false,
      properties: {},
      signupApplication: "app-built-in",
--- a/web/src/auth/LoginPage.js
+++ b/web/src/auth/LoginPage.js
@ -69,6 +69,12 @@ class LoginPage extends React.Component {
    }
  }
  componentDidMount() {
    Setting.Countries.forEach((country) => {
      new Image().src = `${Setting.StaticBaseUrl}/flag-icons/${country.country}.svg`;
    });
  }
  componentDidUpdate(prevProps, prevState, snapshot) {
    if (this.state.application && !prevState.application) {
      const defaultCaptchaProviderItems = this.getDefaultCaptchaProviderItems(this.state.application);
@ -293,7 +299,7 @@ class LoginPage extends React.Component {
            const responseType = values["type"];
            if (responseType === "login") {
-              Setting.showMessage("success", "Logged in successfully");
+              Setting.showMessage("success", i18next.t("application:Logged in successfully"));
              const link = Setting.getFromLink();
              Setting.goToLink(link);
--- a/web/src/common/OAuthWidget.js
+++ b/web/src/common/OAuthWidget.js
@ -164,7 +164,7 @@ class OAuthWidget extends React.Component {
          </span>
          {
            linkedValue === "" ? (
-              <a key={provider.displayName} href={Provider.getAuthUrl(application, provider, "link")}>
+              <a key={provider.displayName} href={user.id !== account.id ? null : Provider.getAuthUrl(application, provider, "link")}>
                <Button style={{marginLeft: "20px", width: "80px"}} type="primary" disabled={user.id !== account.id}>{i18next.t("user:Link")}</Button>
              </a>
            ) : (
--- a/web/src/common/PoliciyTable.js
+++ b/web/src/common/PoliciyTable.js
@ -91,7 +91,8 @@ class PolicyTable extends React.Component {
    AdapterBackend.syncPolicies(this.props.owner, this.props.name)
      .then((res) => {
        if (res.status === "ok") {
-          this.setState({policyLists: res});
+          this.setState({policyLists: res.data});
          Setting.showMessage("success", i18next.t("adapter:Sync policies successfully"));
        } else {
          Setting.showMessage("error", `${i18next.t("adapter:Failed to sync policies")}: ${res.msg}`);
        }
@ -293,7 +294,7 @@ class PolicyTable extends React.Component {
  render() {
    return (<>
-      <Button type="primary" onClick={() => {this.synPolicies();}}>
+      <Button type="primary" disabled={this.state.editingIndex !== ""} onClick={() => {this.synPolicies();}}>
        {i18next.t("adapter:Sync")}
      </Button>
      {
--- a/web/src/locales/de/data.json
+++ b/web/src/locales/de/data.json
@ -7,12 +7,13 @@
  },
  "adapter": {
    "Edit Adapter": "Edit Adapter",
-    "Failed to sync policies: ": "Failed to sync policies: ",
+    "Failed to sync policies": "Failed to sync policies",
    "New Adapter": "New Adapter",
    "Policies": "Policies",
    "Policies - Tooltip": "Policies - Tooltip",
    "Repeated policy rules": "Repeated policy rules",
-    "Sync": "Sync"
+    "Sync": "Sync",
    "Sync policies successfully": "Sync policies successfully"
  },
  "application": {
    "Always": "Always",
@ -36,6 +37,7 @@
    "Enable signin session - Tooltip": "Aktiviere Anmeldesession - Tooltip",
    "Enable signup": "Anmeldung aktivieren",
    "Enable signup - Tooltip": "Whether to allow users to sign up",
    "Failed to sign in": "Failed to sign in",
    "File uploaded successfully": "Datei erfolgreich hochgeladen",
    "Form CSS": "Form CSS",
    "Form CSS - Edit": "Form CSS - Edit",
@ -45,6 +47,8 @@
    "Grant types": "Grant types",
    "Grant types - Tooltip": "Grant types - Tooltip",
    "Left": "Left",
    "Logged in successfully": "Logged in successfully",
    "Logged out successfully": "Logged out successfully",
    "New Application": "New Application",
    "None": "None",
    "Password ON": "Passwort AN",
@ -326,6 +330,7 @@
    "Default avatar": "Standard Avatar",
    "Edit Organization": "Organisation bearbeiten",
    "Favicon": "Févicon",
    "InitScore": "InitScore",
    "Is profile public": "Is profile public",
    "Is profile public - Tooltip": "Is profile public - Tooltip",
    "Modify rule": "Modify rule",
@ -334,6 +339,7 @@
    "Soft deletion - Tooltip": "Weiche Löschung - Tooltip",
    "Tags": "Tags",
    "Tags - Tooltip": "Tags - Tooltip",
    "The user's initScore - Tooltip": "The user's initScore - Tooltip",
    "View rule": "View rule",
    "Visible": "Visible",
    "Website URL": "Website-URL",
--- a/web/src/locales/en/data.json
+++ b/web/src/locales/en/data.json
@ -7,12 +7,13 @@
  },
  "adapter": {
    "Edit Adapter": "Edit Adapter",
-    "Failed to sync policies: ": "Failed to sync policies: ",
+    "Failed to sync policies": "Failed to sync policies",
    "New Adapter": "New Adapter",
    "Policies": "Policies",
    "Policies - Tooltip": "Policies - Tooltip",
    "Repeated policy rules": "Repeated policy rules",
-    "Sync": "Sync"
+    "Sync": "Sync",
    "Sync policies successfully": "Sync policies successfully"
  },
  "application": {
    "Always": "Always",
@ -36,6 +37,7 @@
    "Enable signin session - Tooltip": "Enable signin session - Tooltip",
    "Enable signup": "Enable signup",
    "Enable signup - Tooltip": "Enable signup - Tooltip",
    "Failed to sign in": "Failed to sign in",
    "File uploaded successfully": "File uploaded successfully",
    "Form CSS": "Form CSS",
    "Form CSS - Edit": "Form CSS - Edit",
@ -45,6 +47,8 @@
    "Grant types": "Grant types",
    "Grant types - Tooltip": "Grant types - Tooltip",
    "Left": "Left",
    "Logged in successfully": "Logged in successfully",
    "Logged out successfully": "Logged out successfully",
    "New Application": "New Application",
    "None": "None",
    "Password ON": "Password ON",
@ -326,6 +330,7 @@
    "Default avatar": "Default avatar",
    "Edit Organization": "Edit Organization",
    "Favicon": "Favicon",
    "InitScore": "InitScore",
    "Is profile public": "Is profile public",
    "Is profile public - Tooltip": "Is profile public - Tooltip",
    "Modify rule": "Modify rule",
@ -334,6 +339,7 @@
    "Soft deletion - Tooltip": "Soft deletion - Tooltip",
    "Tags": "Tags",
    "Tags - Tooltip": "Tags - Tooltip",
    "The user's initScore - Tooltip": "The user's initScore - Tooltip",
    "View rule": "View rule",
    "Visible": "Visible",
    "Website URL": "Website URL",
--- a/web/src/locales/fr/data.json
+++ b/web/src/locales/fr/data.json
@ -7,12 +7,13 @@
  },
  "adapter": {
    "Edit Adapter": "Edit Adapter",
-    "Failed to sync policies: ": "Failed to sync policies: ",
+    "Failed to sync policies": "Failed to sync policies",
    "New Adapter": "New Adapter",
    "Policies": "Policies",
    "Policies - Tooltip": "Policies - Tooltip",
    "Repeated policy rules": "Repeated policy rules",
-    "Sync": "Sync"
+    "Sync": "Sync",
    "Sync policies successfully": "Sync policies successfully"
  },
  "application": {
    "Always": "Always",
@ -36,6 +37,7 @@
    "Enable signin session - Tooltip": "Activer la session de connexion - infobulle",
    "Enable signup": "Activer l'inscription",
    "Enable signup - Tooltip": "Whether to allow users to sign up",
    "Failed to sign in": "Failed to sign in",
    "File uploaded successfully": "Fichier téléchargé avec succès",
    "Form CSS": "Form CSS",
    "Form CSS - Edit": "Form CSS - Edit",
@ -45,6 +47,8 @@
    "Grant types": "Grant types",
    "Grant types - Tooltip": "Grant types - Tooltip",
    "Left": "Left",
    "Logged in successfully": "Logged in successfully",
    "Logged out successfully": "Logged out successfully",
    "New Application": "New Application",
    "None": "None",
    "Password ON": "Mot de passe activé",
@ -326,6 +330,7 @@
    "Default avatar": "Avatar par défaut",
    "Edit Organization": "Modifier l'organisation",
    "Favicon": "Favicon",
    "InitScore": "InitScore",
    "Is profile public": "Is profile public",
    "Is profile public - Tooltip": "Is profile public - Tooltip",
    "Modify rule": "Modify rule",
@ -334,6 +339,7 @@
    "Soft deletion - Tooltip": "Suppression de soft - infobulle",
    "Tags": "Tags",
    "Tags - Tooltip": "Tags - Tooltip",
    "The user's initScore - Tooltip": "The user's initScore - Tooltip",
    "View rule": "View rule",
    "Visible": "Visible",
    "Website URL": "URL du site web",
--- a/web/src/locales/ja/data.json
+++ b/web/src/locales/ja/data.json
@ -7,12 +7,13 @@
  },
  "adapter": {
    "Edit Adapter": "Edit Adapter",
-    "Failed to sync policies: ": "Failed to sync policies: ",
+    "Failed to sync policies": "Failed to sync policies",
    "New Adapter": "New Adapter",
    "Policies": "Policies",
    "Policies - Tooltip": "Policies - Tooltip",
    "Repeated policy rules": "Repeated policy rules",
-    "Sync": "Sync"
+    "Sync": "Sync",
    "Sync policies successfully": "Sync policies successfully"
  },
  "application": {
    "Always": "Always",
@ -36,6 +37,7 @@
    "Enable signin session - Tooltip": "Enable signin session - Tooltip",
    "Enable signup": "サインアップを有効にする",
    "Enable signup - Tooltip": "Whether to allow users to sign up",
    "Failed to sign in": "Failed to sign in",
    "File uploaded successfully": "ファイルが正常にアップロードされました",
    "Form CSS": "Form CSS",
    "Form CSS - Edit": "Form CSS - Edit",
@ -45,6 +47,8 @@
    "Grant types": "Grant types",
    "Grant types - Tooltip": "Grant types - Tooltip",
    "Left": "Left",
    "Logged in successfully": "Logged in successfully",
    "Logged out successfully": "Logged out successfully",
    "New Application": "New Application",
    "None": "None",
    "Password ON": "パスワードON",
@ -326,6 +330,7 @@
    "Default avatar": "デフォルトのアバター",
    "Edit Organization": "組織を編集",
    "Favicon": "ファビコン",
    "InitScore": "InitScore",
    "Is profile public": "Is profile public",
    "Is profile public - Tooltip": "Is profile public - Tooltip",
    "Modify rule": "Modify rule",
@ -334,6 +339,7 @@
    "Soft deletion - Tooltip": "ソフト削除 - ツールチップ",
    "Tags": "Tags",
    "Tags - Tooltip": "Tags - Tooltip",
    "The user's initScore - Tooltip": "The user's initScore - Tooltip",
    "View rule": "View rule",
    "Visible": "Visible",
    "Website URL": "Website URL",
--- a/web/src/locales/ko/data.json
+++ b/web/src/locales/ko/data.json
@ -7,12 +7,13 @@
  },
  "adapter": {
    "Edit Adapter": "Edit Adapter",
-    "Failed to sync policies: ": "Failed to sync policies: ",
+    "Failed to sync policies": "Failed to sync policies",
    "New Adapter": "New Adapter",
    "Policies": "Policies",
    "Policies - Tooltip": "Policies - Tooltip",
    "Repeated policy rules": "Repeated policy rules",
-    "Sync": "Sync"
+    "Sync": "Sync",
    "Sync policies successfully": "Sync policies successfully"
  },
  "application": {
    "Always": "Always",
@ -36,6 +37,7 @@
    "Enable signin session - Tooltip": "Enable signin session - Tooltip",
    "Enable signup": "Enable signup",
    "Enable signup - Tooltip": "Whether to allow users to sign up",
    "Failed to sign in": "Failed to sign in",
    "File uploaded successfully": "File uploaded successfully",
    "Form CSS": "Form CSS",
    "Form CSS - Edit": "Form CSS - Edit",
@ -45,6 +47,8 @@
    "Grant types": "Grant types",
    "Grant types - Tooltip": "Grant types - Tooltip",
    "Left": "Left",
    "Logged in successfully": "Logged in successfully",
    "Logged out successfully": "Logged out successfully",
    "New Application": "New Application",
    "None": "None",
    "Password ON": "Password ON",
@ -326,6 +330,7 @@
    "Default avatar": "Default avatar",
    "Edit Organization": "Edit Organization",
    "Favicon": "Favicon",
    "InitScore": "InitScore",
    "Is profile public": "Is profile public",
    "Is profile public - Tooltip": "Is profile public - Tooltip",
    "Modify rule": "Modify rule",
@ -334,6 +339,7 @@
    "Soft deletion - Tooltip": "Soft deletion - Tooltip",
    "Tags": "Tags",
    "Tags - Tooltip": "Tags - Tooltip",
    "The user's initScore - Tooltip": "The user's initScore - Tooltip",
    "View rule": "View rule",
    "Visible": "Visible",
    "Website URL": "Website URL",
--- a/web/src/locales/ru/data.json
+++ b/web/src/locales/ru/data.json
@ -7,12 +7,13 @@
  },
  "adapter": {
    "Edit Adapter": "Edit Adapter",
-    "Failed to sync policies: ": "Failed to sync policies: ",
+    "Failed to sync policies": "Failed to sync policies",
    "New Adapter": "New Adapter",
    "Policies": "Policies",
    "Policies - Tooltip": "Policies - Tooltip",
    "Repeated policy rules": "Repeated policy rules",
-    "Sync": "Sync"
+    "Sync": "Sync",
    "Sync policies successfully": "Sync policies successfully"
  },
  "application": {
    "Always": "Always",
@ -36,6 +37,7 @@
    "Enable signin session - Tooltip": "Включить сеанс входа - Подсказка",
    "Enable signup": "Включить регистрацию",
    "Enable signup - Tooltip": "Whether to allow users to sign up",
    "Failed to sign in": "Failed to sign in",
    "File uploaded successfully": "Файл успешно загружен",
    "Form CSS": "Form CSS",
    "Form CSS - Edit": "Form CSS - Edit",
@ -45,6 +47,8 @@
    "Grant types": "Виды грантов",
    "Grant types - Tooltip": "Виды грантов - Подсказка",
    "Left": "Left",
    "Logged in successfully": "Logged in successfully",
    "Logged out successfully": "Logged out successfully",
    "New Application": "Новое приложение",
    "None": "None",
    "Password ON": "Пароль ВКЛ",
@ -326,6 +330,7 @@
    "Default avatar": "Аватар по умолчанию",
    "Edit Organization": "Изменить организацию",
    "Favicon": "Иконка",
    "InitScore": "InitScore",
    "Is profile public": "Is profile public",
    "Is profile public - Tooltip": "Is profile public - Tooltip",
    "Modify rule": "Modify rule",
@ -334,6 +339,7 @@
    "Soft deletion - Tooltip": "Мягкое удаление - Подсказка",
    "Tags": "Tags",
    "Tags - Tooltip": "Tags - Tooltip",
    "The user's initScore - Tooltip": "The user's initScore - Tooltip",
    "View rule": "View rule",
    "Visible": "Visible",
    "Website URL": "URL сайта",
--- a/web/src/locales/zh/data.json
+++ b/web/src/locales/zh/data.json
@ -7,12 +7,13 @@
  },
  "adapter": {
    "Edit Adapter": "编辑适配器",
-    "Failed to sync policies: ": "同步策略失败: ",
+    "Failed to sync policies": "同步策略失败",
    "New Adapter": "添加适配器",
    "Policies": "策略",
    "Policies - Tooltip": "策略",
    "Repeated policy rules": "重复的策略",
-    "Sync": "同步"
+    "Sync": "同步",
    "Sync policies successfully": "同步策略成功"
  },
  "application": {
    "Always": "始终开启",
@ -36,6 +37,7 @@
    "Enable signin session - Tooltip": "从应用登录Casdoor后，Casdoor是否保持会话",
    "Enable signup": "启用注册",
    "Enable signup - Tooltip": "是否允许用户注册",
    "Failed to sign in": "登录失败",
    "File uploaded successfully": "文件上传成功",
    "Form CSS": "表单CSS",
    "Form CSS - Edit": "编辑表单CSS",
@ -45,6 +47,8 @@
    "Grant types": "OAuth授权类型",
    "Grant types - Tooltip": "选择允许哪些OAuth协议中的Grant types",
    "Left": "居左",
    "Logged in successfully": "登录成功",
    "Logged out successfully": "登出成功",
    "New Application": "添加应用",
    "None": "关闭",
    "Password ON": "开启密码",
@ -326,6 +330,7 @@
    "Default avatar": "默认头像",
    "Edit Organization": "编辑组织",
    "Favicon": "图标",
    "InitScore": "初始积分",
    "Is profile public": "用户个人页公开",
    "Is profile public - Tooltip": "关闭后，只有全局管理员或同组织用户才能访问用户主页",
    "Modify rule": "修改规则",
@ -334,6 +339,7 @@
    "Soft deletion - Tooltip": "启用后，删除用户信息时不会在数据库彻底清除，只会标记为已删除状态",
    "Tags": "标签集合",
    "Tags - Tooltip": "可供用户选择的标签的集合",
    "The user's initScore - Tooltip": "用户的初始积分",
    "View rule": "查看规则",
    "Visible": "是否可见",
    "Website URL": "网页地址",
--- a/web/yarn.lock
+++ b/web/yarn.lock
@ -2096,6 +2096,13 @@
    schema-utils "^3.0.0"
    source-map "^0.7.3"
 "@rc-component/mini-decimal@^1.0.1":
  version "1.0.1"
  resolved "https://registry.yarnpkg.com/@rc-component/mini-decimal/-/mini-decimal-1.0.1.tgz#e5dbc20a6a5b0e234d279bc71ce730ab865d3910"
  integrity sha512-9N8nRk0oKj1qJzANKl+n9eNSMUGsZtjwNuDCiZ/KA+dt1fE3zq5x2XxclRcAbOIXnZcJ53ozP2Pa60gyELXagA==
  dependencies:
    "@babel/runtime" "^7.18.0"
 "@rc-component/portal@^1.0.0-6", "@rc-component/portal@^1.0.0-8", "@rc-component/portal@^1.0.0-9", "@rc-component/portal@^1.0.2":
  version "1.0.3"
  resolved "https://registry.yarnpkg.com/@rc-component/portal/-/portal-1.0.3.tgz#3aa2c229a7a20ac2412d864e8977e6377973416e"
@ -3134,10 +3141,10 @@ ansi-styles@^6.0.0:
  resolved "https://registry.yarnpkg.com/ansi-styles/-/ansi-styles-6.1.0.tgz#87313c102b8118abd57371afab34618bf7350ed3"
  integrity sha512-VbqNsoz55SYGczauuup0MFUyXNQviSpFTj1RQtFzmQLk18qbVSpTFFGMT293rmDaQuKCT6InmbuEyUne4mTuxQ==
-antd@5.0.3:
+antd@5.0.5:
-  version "5.0.3"
+  version "5.0.5"
-  resolved "https://registry.yarnpkg.com/antd/-/antd-5.0.3.tgz#2cdaffe1afdb5c2f0f3325b2d06d508ec6ddf85a"
+  resolved "https://registry.yarnpkg.com/antd/-/antd-5.0.5.tgz#16f0ade8b2d2ea9f7bd47a8e0af81884dc504a7d"
-  integrity sha512-Gqkba0earlR5H6gfT4nsyV3W9rL1Up1+clEXsa1+9Jem/geC2phBImpjWgVjqOjH3L5Oi8SHe0NeYBagDxwP5g==
+  integrity sha512-8jWUjZ65urNHZPg9/Ywa9V0PlNfqjhewKgSPF4nraN9X5v434lDJkRBQGN7meNixQ6aM2B/JhXPm9UaJ/tAQmA==
  dependencies:
    "@ant-design/colors" "^6.0.0"
    "@ant-design/cssinjs" "^1.0.0"
@ -3159,7 +3166,7 @@ antd@5.0.3:
    rc-field-form "~1.27.0"
    rc-image "~5.12.0"
    rc-input "~0.1.4"
-    rc-input-number "~7.3.9"
+    rc-input-number "~7.4.0"
    rc-mentions "~1.13.1"
    rc-menu "~9.8.0"
    rc-motion "^2.6.1"
@ -3175,15 +3182,15 @@ antd@5.0.3:
    rc-steps "~6.0.0-alpha.2"
    rc-switch "~4.0.0"
    rc-table "~7.26.0"
-    rc-tabs "~12.4.1"
+    rc-tabs "~12.4.2"
    rc-textarea "~0.4.5"
    rc-tooltip "~5.2.0"
    rc-tree "~5.7.0"
    rc-tree-select "~5.5.4"
    rc-trigger "^5.2.10"
    rc-upload "~4.3.0"
-    rc-util "^5.22.5"
+    rc-util "^5.25.2"
-    scroll-into-view-if-needed "^2.2.25"
+    scroll-into-view-if-needed "^3.0.3"
    shallowequal "^1.1.0"
 anymatch@^3.0.3, anymatch@~3.1.2:
@ -4011,10 +4018,10 @@ compression@^1.7.4:
    safe-buffer "5.1.2"
    vary "~1.1.2"
-compute-scroll-into-view@^1.0.17:
+compute-scroll-into-view@^2.0.2:
-  version "1.0.17"
+  version "2.0.2"
-  resolved "https://registry.yarnpkg.com/compute-scroll-into-view/-/compute-scroll-into-view-1.0.17.tgz#6a88f18acd9d42e9cf4baa6bec7e0522607ab7ab"
+  resolved "https://registry.yarnpkg.com/compute-scroll-into-view/-/compute-scroll-into-view-2.0.2.tgz#ac5cc71ca833884866e581a82d8558a6ed7ee877"
-  integrity sha512-j4dx+Fb0URmzbwwMUrhqWM2BEWHdFGx+qZ9qqASHRPqvTYdqvWnHg0H1hIbcyLnvgnoNAVMlwkepyqM3DaIFUg==
+  integrity sha512-W+4Iti92hktsTtNPNeRM1vE0JdqCBk5qIabRafpr5pGrQhQ+xzCv0NGnFzTCKmW4yGLm9Aovbw8YNxloe2z9tQ==
 concat-map@0.0.1:
  version "0.0.1"
@ -8934,12 +8941,13 @@ rc-image@~5.12.0:
    rc-dialog "~9.0.0"
    rc-util "^5.0.6"
-rc-input-number@~7.3.9:
+rc-input-number@~7.4.0:
-  version "7.3.11"
+  version "7.4.0"
-  resolved "https://registry.yarnpkg.com/rc-input-number/-/rc-input-number-7.3.11.tgz#c7089705a220e1a59ba974fabf89693e00dd2442"
+  resolved "https://registry.yarnpkg.com/rc-input-number/-/rc-input-number-7.4.0.tgz#b8b4ffa8bbc04198e79ce8b9611756d046d128ec"
-  integrity sha512-aMWPEjFeles6PQnMqP5eWpxzsvHm9rh1jQOWXExUEIxhX62Fyl/ptifLHOn17+waDG1T/YUb6flfJbvwRhHrbA==
+  integrity sha512-r/Oub/sPYbzqLNUOHnnc9sbCu78a81KX+RCbRwmpvB4W6nptUySbdWS5KHV4Hak5CAE1LAd+wWm5JjvZizG1FA==
  dependencies:
    "@babel/runtime" "^7.10.1"
    "@rc-component/mini-decimal" "^1.0.1"
    classnames "^2.2.5"
    rc-util "^5.23.0"
@ -9148,10 +9156,10 @@ rc-table@~7.26.0:
    rc-util "^5.22.5"
    shallowequal "^1.1.0"
-rc-tabs@~12.4.1:
+rc-tabs@~12.4.2:
-  version "12.4.1"
+  version "12.4.2"
-  resolved "https://registry.yarnpkg.com/rc-tabs/-/rc-tabs-12.4.1.tgz#a45aa7560ae4e2a91426e74a2e76566f5c8ec9cc"
+  resolved "https://registry.yarnpkg.com/rc-tabs/-/rc-tabs-12.4.2.tgz#487a1b3f8d8cf0bfc121224013dab00d4a8e0532"
-  integrity sha512-yViBZypldDnPffk3IPTarplF1RAv8VQDDnOt9sHDU7pjCnqE72csCU+7kjbLPtPpYniIMQJYyWxh/lsBUcagSA==
+  integrity sha512-FFlGwuTjQUznWzJtyhmHc6KAp5lRQFxKUv9Aj1UtsOYe2e7WGmuzcrd+/LQchuPe0VjhaZPdGkmFGcqGqNO6ow==
  dependencies:
    "@babel/runtime" "^7.11.2"
    classnames "2.x"
@ -9269,6 +9277,15 @@ rc-util@^5.21.2, rc-util@^5.23.0:
    react-is "^16.12.0"
    shallowequal "^1.1.0"
 rc-util@^5.25.2:
  version "5.25.2"
  resolved "https://registry.yarnpkg.com/rc-util/-/rc-util-5.25.2.tgz#09fd3ce88da7d2149427d51e40a84e3527f5a263"
  integrity sha512-OyCO675K/rh4zG3e+LYaHw54WQFEYGV9ibkGawQxqCvf0G0PzUrLQjgZ6SfoHORdbEKN7eQMFn3hHQyA/P8Y5Q==
  dependencies:
    "@babel/runtime" "^7.18.3"
    react-is "^16.12.0"
    shallowequal "^1.1.0"
 rc-virtual-list@^3.2.0, rc-virtual-list@^3.4.8:
  version "3.4.8"
  resolved "https://registry.yarnpkg.com/rc-virtual-list/-/rc-virtual-list-3.4.8.tgz#c24c10c6940546b7e2a5e9809402c6716adfd26c"
@ -9901,12 +9918,12 @@ schema-utils@^4.0.0:
    ajv-formats "^2.1.1"
    ajv-keywords "^5.0.0"
-scroll-into-view-if-needed@^2.2.25:
+scroll-into-view-if-needed@^3.0.3:
-  version "2.2.29"
+  version "3.0.3"
-  resolved "https://registry.yarnpkg.com/scroll-into-view-if-needed/-/scroll-into-view-if-needed-2.2.29.tgz#551791a84b7e2287706511f8c68161e4990ab885"
+  resolved "https://registry.yarnpkg.com/scroll-into-view-if-needed/-/scroll-into-view-if-needed-3.0.3.tgz#57256bef78f3c3c288070d2aaa63cf547aa11e70"
-  integrity sha512-hxpAR6AN+Gh53AdAimHM6C8oTN1ppwVZITihix+WqalywBeFcQ6LdQP5ABNl26nX8GTEL7VT+b8lKpdqq65wXg==
+  integrity sha512-QoCH0lVw0tbA7Rl6sToH7e1tO3n95Oi6JgBgC8hEpNNZUC91MfasJ/4E1ZdbzGueNDZ+Y7ObfRaelKUgTyPbJA==
  dependencies:
-    compute-scroll-into-view "^1.0.17"
+    compute-scroll-into-view "^2.0.2"
 select-hose@^2.0.0:
  version "2.0.0"
Author	SHA1	Message	Date
Chell	ef836acfe9	fix: login page flag icon preload (#1393 )	2022-12-11 11:22:58 +08:00
Yaodong Yu	a51f0d7c08	feat: init score in organization (#1388 ) * feat: init score in organization * Update OrganizationEditPage.js Co-authored-by: hsluoyz <hsluoyz@qq.com>	2022-12-10 22:27:12 +08:00
Yaodong Yu	e3c36beaf4	fix: the link button with disabled style but can click (#1390 )	2022-12-10 22:14:20 +08:00
imp2002	19dce838d1	fix: fix invalid url in applications page (#1389 )	2022-12-10 22:06:21 +08:00
Yaodong Yu	b41d8652f0	feat: fix showing wrong error messages (#1385 )	2022-12-09 15:11:13 +08:00
imp2002	e705eecffe	feat: response with status in `casbin_adapter.go` (#1384 ) * fix: response standardized information with status in `casbin_adapter.go` * fix: remove redundant statements	2022-12-08 10:22:59 +08:00
Mr Forest	2bb2c36f22	fix: add crowdin action env (#1381 )	2022-12-07 14:05:21 +08:00
Mr Forest	1bb3d2dea9	feat: refactor backend i18n (#1373 ) * fix: handle the dataSourceName when DB changes * reduce duplication of code * feat: refactor translation error message * feat: use json intsead of ini file * remove useless translation * fix translate problems * remove useless addition * fix pr problems * fix pr problems * fix split problem * use gofumpt to fmt code * use crowdin to execute backend translation * fix pr problems * refactor: change translation file structure same as frontend * delete useless output * update go.mod	2022-12-07 13:13:23 +08:00
Gucheng Wang	96566a626b	Increase Detail field size	2022-12-07 01:53:03 +08:00
Yaodong Yu	042e52bd16	feat: replace casdoor/goth with markbates/goth (#1374 )	2022-12-06 17:18:29 +08:00