Bug 1636143
| Summary: | drop down builder doesn't escape angle brackets | ||||||
|---|---|---|---|---|---|---|---|
| Product: | Red Hat CloudForms Management Engine | Reporter: | Jeff Warnica <jwarnica> | ||||
| Component: | UI - OPS | Assignee: | eclarizi | ||||
| Status: | CLOSED CURRENTRELEASE | QA Contact: | Sudhir Mallamprabhakara <smallamp> | ||||
| Severity: | low | Docs Contact: | Red Hat CloudForms Documentation <cloudforms-docs> | ||||
| Priority: | low | ||||||
| Version: | 5.9.4 | CC: | dmetzger, hkataria, jwarnica, lavenel, mpovolny, obarenbo | ||||
| Target Milestone: | GA | ||||||
| Target Release: | 5.11.0 | ||||||
| Hardware: | Unspecified | ||||||
| OS: | Unspecified | ||||||
| Whiteboard: | |||||||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |||||
| Doc Text: | Story Points: | --- | |||||
| Clone Of: | Environment: | ||||||
| Last Closed: | 2019-06-11 15:26:06 UTC | Type: | Bug | ||||
| Regression: | --- | Mount Type: | --- | ||||
| Documentation: | --- | CRM: | |||||
| Verified Versions: | Category: | --- | |||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
| Cloudforms Team: | CFME Core | Target Upstream Version: | |||||
| Embargoed: | |||||||
| Attachments: |
|
||||||
Hey Jeff, can you give me the automate code that is generating this value for your drop-down so I can attempt to reproduce locally? https://github.com/jeffwarnica/rhc-miq-quickstart/blob/master/automate/rhc-miq-quickstart/Service/DynamicDialogs.class/__methods__/list_template_guids.rb is what I was using specifically, but dialog_hash[''] = "< No templates found tagged with #{rbac_array} >" is all you'd need. On reflection, this seems to be not dealing with angle brackets, not quotes. |
Created attachment 1490590 [details] screenshot I have custom service dialog which has a dynamic drop down element. This pulls in data that includes the quote character. Appears that the not-actually-a-dropdown UI fails to consider this, and the generate HTML is busted. See the screenshot showing the correct text in the selected element (truncated as it may be), the correct text in the highlighted in the inspector <span>, and the mangled <a> that the <span> lives in.