SONAR-7231 add tokens help text

2 files changed, 5 insertions, 0 deletions

diff --git a/server/sonar-web/src/main/js/apps/account/templates/account-tokens.hbs b/server/sonar-web/src/main/js/apps/account/templates/account-tokens.hbs
index 7739f6511e9..e82ad16c712 100644
--- a/server/sonar-web/src/main/js/apps/account/templates/account-tokens.hbs
+++ b/server/sonar-web/src/main/js/apps/account/templates/account-tokens.hbs
@@ -1,5 +1,9 @@
 <h2 class="spacer-bottom">Tokens</h2>
 
+<div class="big-spacer-bottom big-spacer-right markdown">
+  <p>{{t 'my_account.tokens_description'}}</p>
+</div>
+
 {{#notNull tokens}}
   <div class="abs-width-400">
     <table class="data">
diff --git a/sonar-core/src/main/resources/org/sonar/l10n/core.properties b/sonar-core/src/main/resources/org/sonar/l10n/core.properties
index 952470a04bc..b09e66c3d48 100644
--- a/sonar-core/src/main/resources/org/sonar/l10n/core.properties
+++ b/sonar-core/src/main/resources/org/sonar/l10n/core.properties
@@ -2165,6 +2165,7 @@ my_account.no_favorite_measure_filters=You do not have favorite measure filters
 my_account.notifications=Notifications
 my_account.no_project_notifications=You have not set project notifications yet.
 my_account.security=Security
+my_account.tokens_description=If you want to enforce security by not providing credentials of a real SonarQube user to run your code scan or to invoke web services, you can provide a User Token as a replacement of the user login. This will increase the security of your installation by not letting your analysis user's password going through your network.