[Koha-bugs] [Bug 17855] Updated Koha web installer and new onboarding tool feature to guide users through setting up Koha

[bugzilla-daemon at bugs.koha-community.org]

https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=17855

M. Tompsett <mtompset at hotmail.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|Needs Signoff               |Failed QA

--- Comment #98 from M. Tompsett <mtompset at hotmail.com> ---
(In reply to Alex Buckley from comment #95)
> Apologies if it sounded dictatorial that is certainly never my intent. I was
> thinking that special characters should not be permitted due to the security
> implications of the user being able to input code into these input fields.

*sigh* No, you are forcing Romanized a-zA-Z. What about accented characters?


> I personally do not believe we have been lax in our data validation,

-- With respect to unusual characters like ñ. Now you are enforcing a-zA-Z.

I think we had some cross talk. I get wanting to clean inputs so you don't get
the equivalent of SQL Injections and the like, but I don't get forcing a
specific range that excludes diacritics. The description, which I hinted at in
comment #94, found in onboarding step 4 may contain diacritics, may it not?

And what about the {0,10} issue I raised in comment #88 also in onboarding step
4?

And please, don't think my "it's in onboarding step 4" means it isn't
elsewhere. Treat it as a class of problem, and look for it elsewhere too,
because I haven't.

Sorry, setting to Failed QA.

-- 
You are receiving this mail because:
You are watching all bug changes.