Security dialog pop up upon paste

13 posts, 0 answers
  1. Jo Bert
    Jo Bert avatar
    41 posts
    Member since:
    Aug 2008

    Posted 10 Oct 2008 Link to this post

    hi,

    I am using the full version of RAD Editor, upon loading of the page, whenever I try to paste a text in the body, a security dialog will pop up appear telling

    "This page contains both secure and non secure items. do you want to display the non secure items?"

    how can i remove this pop up window?

    Thanks
  2. Rumen
    Admin
    Rumen avatar
    12849 posts

    Posted 10 Oct 2008 Link to this post

    Hi Jo,

    I made a test with the latest version of RadEditor for ASP.NET AJAX (2008.2 1001) and I was not able to reproduce the reported problem under SSL (https).

    Could you please, open a support ticket and send a sample working example which demonstrates the problem along with sample content for test? Once I am able to reproduce the problem I will be able to help.


    Best regards,
    Rumen
    the Telerik team

    Check out Telerik Trainer, the state of the art learning tool for Telerik products.
  3. UI for ASP.NET Ajax is Ready for VS 2017
  4. Jo Bert
    Jo Bert avatar
    41 posts
    Member since:
    Aug 2008

    Posted 14 Oct 2008 Link to this post

    hi,

    What we install is the ASP.NET 2.0 AJAX Extensions 1.0.
    Do we need to download and install the ASP.NET AJAX (2008.2 1001)  for our RADEditor? Will there be changes in the web.config?

    Thanks...
  5. Jo Bert
    Jo Bert avatar
    41 posts
    Member since:
    Aug 2008

    Posted 15 Oct 2008 Link to this post

    Hi Rumen,

    Trash my last reply. What we're using is only the RADEditor so only install the RADEditorMOSS_5_2_2_Dev.zip and still, we are still having that security pop window. Do we need to install the ASP.NET AJAX (2008.2 1001) .exe file even if we will be using the RADEditor only? We will also try to install the RADEditorMOSS_5_2_3_Dev.zip and check if we can recreate the error.

    Thanks,
    Jo Bert
  6. Rumen
    Admin
    Rumen avatar
    12849 posts

    Posted 17 Oct 2008 Link to this post

    Hi Jo,

    If you will use the editor in MOSS then the recommended version is RADEditorMOSS_5_2_3_Dev.zip.

    Nevertheless, we were able to reproduce the reported https error when pasting content in the editor in Internet Explorer 6. This browser problem is fixed by the browser vendor in Internet Explorer 7.

    The solution for the IE6 bug is to set the editor's StripFormattingOptions property to "NoneSupressCleanMessage". Yo can set this property tag in the provided ToolsFile.xml / ListToolsFile.xml files.

    Best regards,
    Rumen
    the Telerik team

    Check out Telerik Trainer, the state of the art learning tool for Telerik products.
  7. Jo Bert
    Jo Bert avatar
    41 posts
    Member since:
    Aug 2008

    Posted 22 Oct 2008 Link to this post

    Hi,

    Can you tell me how to add it in the ListTools.xml? am I going to add a <tool> property?

    Thanks
    Jhobs
  8. Rumen
    Admin
    Rumen avatar
    12849 posts

    Posted 22 Oct 2008 Link to this post

    Hi Jhobs,

    Please, excuse me for the omission.

    The StripFormattingOptions property should be set in the ConfigFile.xml / ListConfigFile.xml file, e.g.

    <configuration>
      ...
      <property name="StripFormattingOptions">NoneSupressCleanMessage</property>
      ...
    </configuration>


    Best regards,
    Rumen
    the Telerik team

    Check out Telerik Trainer, the state of the art learning tool for Telerik products.
  9. Jo Bert
    Jo Bert avatar
    41 posts
    Member since:
    Aug 2008

    Posted 23 Oct 2008 Link to this post

    Hi Rumen,

    I tried to add the <property name="StripFormattingOptions">NoneSupressCleanMessage</property> and yes it solved the problem when Copy and click the "paste" upon right click in the body. But the problem now is that when i click "paste from word" and "paste as Html", there is still a security pop up window.

    Can you tell me how to fix this?

    Thanks,
    Jhobs
  10. Tervel
    Admin
    Tervel avatar
    1337 posts

    Posted 23 Oct 2008 Link to this post

    Hi Jo Bert,

    It is not possible to eliminate the security warning when trying to use the Paste buttons.
    Browser security does not allow programmatic access to the clipboard or programmatic forced paste - because of potentially malicious scenarios.
    With regards to this, your only choice is to either remove the paste tools from the tools file, so that paste is performed only via the keyboard, or to leave things as they are.


    All the best,
    Tervel
    the Telerik team

    Check out Telerik Trainer, the state of the art learning tool for Telerik products.
  11. Jo Bert
    Jo Bert avatar
    41 posts
    Member since:
    Aug 2008

    Posted 23 Oct 2008 Link to this post

    Hi Tervel,

    Thanks for the reply. You mean to say, we can't fix this issue? But the window security didn't show up when I tried to add the configuration from rumen. Is there another way to implement this on the paste from word and paste as html?

    Thanks,
    Jhobs
  12. Tervel
    Admin
    Tervel avatar
    1337 posts

    Posted 27 Oct 2008 Link to this post

    Hi Jo,

    Rumen suggested you to use the following property:
    StripFormattingOptions = NoneSupressCleanMessage
    What it does is telling the editor - "please stop trying to parse content that is being pasted to see whether its formatting needs to be cleaned, and let the browser just do the paste".

    Now, pushing the buttons "Paste from Html" and "Paste as Text" is a completely different scenario. It uses javascript to force the browser to perform a paste operation. In IE6 that worked fine, but in IE7 security is tightened and the browser simply would not let client script code, rather than the user himself, perform the operation. Hence the waring you are getting when pushing those buttons.


    Best wishes,
    Tervel
    the Telerik team

    Check out Telerik Trainer, the state of the art learning tool for Telerik products.
  13. Jo Bert
    Jo Bert avatar
    41 posts
    Member since:
    Aug 2008

    Posted 27 Oct 2008 Link to this post

    hi,

    you mean to say, we cannot remove warning upon clicking the paste as html?

    thanks
  14. Tervel
    Admin
    Tervel avatar
    1337 posts

    Posted 27 Oct 2008 Link to this post

    Hello Jo,

    That is correct. This is what I meant to say.

    Kind regards,
    Tervel
    the Telerik team

    Check out Telerik Trainer, the state of the art learning tool for Telerik products.
Back to Top
UI for ASP.NET Ajax is Ready for VS 2017