Hi, Everybody
Have you ever met such behavior (JIRA OnDemand version) and know how to deal with it?
1. I set the JavaScript code from here following the guidelines on that page to a free text custom field. When I opened the issue form (screen), that custom field was just empty.
Notes:
2. I also noticed, that all fields whose description contains tags <p> text </p> display with these tags in the issue forms when you work with issues too.
It seems it does not depend on the browser, I tried in Google Chrome and IE.
Thank you, Yuriy
This seems to be the case with ondemand as opposed to hosted apps. I assume it's to prevent admins doing XSS attacks and the like.
You'd probably think that admins should be trusted, however perhaps someone temporarily got admin through a backdoor or was given it inadvertently, you wouldn''t want them to be able to put in a backdoor to let them get admin again. That's my guess anyway.
In short, none of the javascript "tricks" are possible using OnDemand.
Thank you, Jamie!
Also here is answer to this question from technical support:
Per our Restricted Functions in Atlassian OnDemand, due to some security vulnerability, we have changed the custom field's Description and the Introduction message (to display on the dashboard) field formation by only allowing plain text or wiki markup.
Yuriy
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.