Support for all kinds of characters and string sequences in description fields
Niek de Melker
On the source and target systems I noticed some text is being stripped from the description fields. For example i cannot paste an url because the http or https part will be stripped from it. Even if this character sequence is part of a bigger string it is filtered out.
It will also delete everything between <> characters, even if there is a full sentence between them.
I guess if I search a little more that I will find more examples, but these I've experienced first hand. There should be no reason for this behavior, so please let me use the characters I want in the description field.
If malicious userinput is your concern, than you could just store the description HtmlEncoded. This way we can have what we want and the app is as secure as ever.
R
Rick van den Dijssel
Hello Niek de Melker! I have a few more questions for you:
- Can you provide specific examples of the types of characters or string sequences that are being stripped from the description fields?
- Could you clarify the impact this issue has on your usage of our product?
- Are there any specific features or functionalities that you are unable to use due to this issue?
Niek de Melker
Rick van den Dijssel
- I already provided examples in he initial question, didn’t you reed this?
- The impact is that i cannot rely on the description field as it will actively remove parts of text without informing me, and have to leave notes to the customer in some other way to be sure they recieve the proper notes.
- Yes. The entire description field. If i have to throw in a url you mess this up for me. So i cannot use this and have to provide information through documentation outside of the portal, where using the description should be enough.
I guess this will not be of any priority, but note that i am not happy about this behavior as there should be no need for it technically. It is a free text field for all sake.