This is a migrated thread and some comments may be shown as answers.

Security dialog pop up upon paste

12 Answers 100 Views
Editor
This is a migrated thread and some comments may be shown as answers.
Jo Bert
Top achievements
Rank 1
Jo Bert asked on 10 Oct 2008, 07:49 AM
hi,

I am using the full version of RAD Editor, upon loading of the page, whenever I try to paste a text in the body, a security dialog will pop up appear telling

"This page contains both secure and non secure items. do you want to display the non secure items?"

how can i remove this pop up window?

Thanks

12 Answers, 1 is accepted

Sort by
0
Rumen
Telerik team
answered on 10 Oct 2008, 04:08 PM
Hi Jo,

I made a test with the latest version of RadEditor for ASP.NET AJAX (2008.2 1001) and I was not able to reproduce the reported problem under SSL (https).

Could you please, open a support ticket and send a sample working example which demonstrates the problem along with sample content for test? Once I am able to reproduce the problem I will be able to help.


Best regards,
Rumen
the Telerik team

Check out Telerik Trainer, the state of the art learning tool for Telerik products.
0
Jo Bert
Top achievements
Rank 1
answered on 15 Oct 2008, 04:11 AM
hi,

What we install is the ASP.NET 2.0 AJAX Extensions 1.0.
Do we need to download and install the ASP.NET AJAX (2008.2 1001)  for our RADEditor? Will there be changes in the web.config?

Thanks...
0
Jo Bert
Top achievements
Rank 1
answered on 15 Oct 2008, 06:20 AM
Hi Rumen,

Trash my last reply. What we're using is only the RADEditor so only install the RADEditorMOSS_5_2_2_Dev.zip and still, we are still having that security pop window. Do we need to install the ASP.NET AJAX (2008.2 1001) .exe file even if we will be using the RADEditor only? We will also try to install the RADEditorMOSS_5_2_3_Dev.zip and check if we can recreate the error.

Thanks,
Jo Bert
0
Rumen
Telerik team
answered on 17 Oct 2008, 03:24 PM
Hi Jo,

If you will use the editor in MOSS then the recommended version is RADEditorMOSS_5_2_3_Dev.zip.

Nevertheless, we were able to reproduce the reported https error when pasting content in the editor in Internet Explorer 6. This browser problem is fixed by the browser vendor in Internet Explorer 7.

The solution for the IE6 bug is to set the editor's StripFormattingOptions property to "NoneSupressCleanMessage". Yo can set this property tag in the provided ToolsFile.xml / ListToolsFile.xml files.

Best regards,
Rumen
the Telerik team

Check out Telerik Trainer, the state of the art learning tool for Telerik products.
0
Jo Bert
Top achievements
Rank 1
answered on 22 Oct 2008, 10:35 AM
Hi,

Can you tell me how to add it in the ListTools.xml? am I going to add a <tool> property?

Thanks
Jhobs
0
Rumen
Telerik team
answered on 22 Oct 2008, 11:27 AM
Hi Jhobs,

Please, excuse me for the omission.

The StripFormattingOptions property should be set in the ConfigFile.xml / ListConfigFile.xml file, e.g.

<configuration>
  ...
  <property name="StripFormattingOptions">NoneSupressCleanMessage</property>
  ...
</configuration>


Best regards,
Rumen
the Telerik team

Check out Telerik Trainer, the state of the art learning tool for Telerik products.
0
Jo Bert
Top achievements
Rank 1
answered on 23 Oct 2008, 06:19 AM
Hi Rumen,

I tried to add the <property name="StripFormattingOptions">NoneSupressCleanMessage</property> and yes it solved the problem when Copy and click the "paste" upon right click in the body. But the problem now is that when i click "paste from word" and "paste as Html", there is still a security pop up window.

Can you tell me how to fix this?

Thanks,
Jhobs
0
Tervel
Telerik team
answered on 23 Oct 2008, 06:44 AM
Hi Jo Bert,

It is not possible to eliminate the security warning when trying to use the Paste buttons.
Browser security does not allow programmatic access to the clipboard or programmatic forced paste - because of potentially malicious scenarios.
With regards to this, your only choice is to either remove the paste tools from the tools file, so that paste is performed only via the keyboard, or to leave things as they are.


All the best,
Tervel
the Telerik team

Check out Telerik Trainer, the state of the art learning tool for Telerik products.
0
Jo Bert
Top achievements
Rank 1
answered on 23 Oct 2008, 07:10 AM
Hi Tervel,

Thanks for the reply. You mean to say, we can't fix this issue? But the window security didn't show up when I tried to add the configuration from rumen. Is there another way to implement this on the paste from word and paste as html?

Thanks,
Jhobs
0
Tervel
Telerik team
answered on 27 Oct 2008, 07:50 AM
Hi Jo,

Rumen suggested you to use the following property:
StripFormattingOptions = NoneSupressCleanMessage
What it does is telling the editor - "please stop trying to parse content that is being pasted to see whether its formatting needs to be cleaned, and let the browser just do the paste".

Now, pushing the buttons "Paste from Html" and "Paste as Text" is a completely different scenario. It uses javascript to force the browser to perform a paste operation. In IE6 that worked fine, but in IE7 security is tightened and the browser simply would not let client script code, rather than the user himself, perform the operation. Hence the waring you are getting when pushing those buttons.


Best wishes,
Tervel
the Telerik team

Check out Telerik Trainer, the state of the art learning tool for Telerik products.
0
Jo Bert
Top achievements
Rank 1
answered on 27 Oct 2008, 07:54 AM
hi,

you mean to say, we cannot remove warning upon clicking the paste as html?

thanks
0
Tervel
Telerik team
answered on 27 Oct 2008, 08:15 AM
Hello Jo,

That is correct. This is what I meant to say.

Kind regards,
Tervel
the Telerik team

Check out Telerik Trainer, the state of the art learning tool for Telerik products.
Tags
Editor
Asked by
Jo Bert
Top achievements
Rank 1
Answers by
Rumen
Telerik team
Jo Bert
Top achievements
Rank 1
Tervel
Telerik team
Share this question
or