You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This can be problematic when the password is pasted into some other location. E.g. if this is pasted into a HTML mail being composed in Thunderbird, nothing will show up and it will look like the copy-paste did not work.
To Reproduce
Steps to reproduce the behavior:
Create a BBB room
Make it password protected
Copy the password using the button to the left of the password
Look at the clipboard content with e.g. xclip -o -selection clipboard -t text/html or try to paste into a HTML mail being composed in Thunderbird
See the issue
Expected behavior
I think the copy button should only put the password in plain text into the clipboard.
Screenshots
If applicable, add screenshots to help explain your problem.
System (please complete the following information):
Browser with version: Firefox 121.0.1
App version: 2.5.0
Nextcloud version: 25.0.13
BigBlueButton version: 2.7.3
Is your BigBlueButton instance working with Greenligh? yes
Did you enter your BBB API url and secret? yes
Are you using a load balancer, like Scalelite? no
Nextcloud log:
Not relevant, I think.
Javascript log:
Not relevant, I think.
Additional context
For what it's worth, I think the behavior that Thunderbird just accepts this HTML and does not sanitize it is a security issue on their side and there is an issue on their bug tracker for this already: https://bugzilla.mozilla.org/show_bug.cgi?id=1276391.
The text was updated successfully, but these errors were encountered:
Describe the bug
When pressing the copy button for a rooms password the following will be put into the clipboard:
(I've changed the password now, obviously.)
This can be problematic when the password is pasted into some other location. E.g. if this is pasted into a HTML mail being composed in Thunderbird, nothing will show up and it will look like the copy-paste did not work.
To Reproduce
Steps to reproduce the behavior:
xclip -o -selection clipboard -t text/html
or try to paste into a HTML mail being composed in ThunderbirdExpected behavior
I think the copy button should only put the password in plain text into the clipboard.
Screenshots
If applicable, add screenshots to help explain your problem.
System (please complete the following information):
Nextcloud log:
Not relevant, I think.
Javascript log:
Not relevant, I think.
Additional context
For what it's worth, I think the behavior that Thunderbird just accepts this HTML and does not sanitize it is a security issue on their side and there is an issue on their bug tracker for this already: https://bugzilla.mozilla.org/show_bug.cgi?id=1276391.
The text was updated successfully, but these errors were encountered: