Desktop: Disallow UNC file links

[personalizedrefrigerator]

Disallows Windows UNC file:// links.

[Telefaust]

Any option to switch that off, or embed other way to click-to-open a Windows registered file type?
Looks like a major show stopper for me.
Thanks.

[personalizedrefrigerator]

Hi!

What's your use case for this? (Possible solutions depend what network file paths are being used for).

Note that this change only affects UNC file paths, not paths to local files.

[Telefaust]

Hi!
One of my tasks for Joplin is to build process flows that include steps as "get the data from that excel table" or "create a word doc using that template", and most of files are on windows network storages. Mapping storage volumes to drive letters is not a good case as I'm working from different places and my local network is not available everywhere. Therefore I'm using UNC links, the "file:///..." ones.

[PackElend]

build process flows
Out of curiosity, what do you use for that

Windows itself can be quite restrictive in the this regard

[Telefaust]

Either I've never met such "restrictions" from Windows or I've got used to them for years. If I click a file link - file opens, be it local or network one. If not, there is something wrong with the file or network. I can do it from desktop, from explorer window, from an email, from a document. In "most complicated" :) cases I have to ctrl-click, or use a right button menu. And yes, it worked within Joplin client too - till this update, of course, which I didn't install for that reason.

In other words, it was completely OK for me as it worked (removing one extra \ in md editor is not a problem).

Talking "processes" I'm talking not about Gantt charts or something like that. Not timing, but interworking. Instruction for user A says he must do this and this and on step X get information K from user B, therefore instruction for user B must include aggregating this information for sources 1 and 2 and providing to user A by email... that kind of thing. I've tried several "portable wikis", but note-app fits me better.

[PackElend]

I agree on the listed apps there is one major app you may overlooked TEAMS (and the Office online).

And, I guess, it will become increasingly a safety concern. So if Joplin allows this it should be controllable by Windows Policies as Joplin is used in professional environments as well.

[personalizedrefrigerator]

Mapping storage volumes to drive letters is not a good case as I'm working from different places and my local network is not available everywhere. Therefore I'm using UNC links, the "file:///..." ones.

I'm looking into making this re-enableable with a plugin (perhaps just for a specific notebook). Do you need UNC links to work in HTML notes (or just Markdown ones)?

[Telefaust]

I'm looking into making this re-enableable with a plugin (perhaps just for a specific notebook). Do you need UNC links to work in HTML notes (or just Markdown ones)?

Thank you.
I'm using UNC links in markdown notes only.

[laurent22]

I'm looking into making this re-enableable with a plugin (perhaps just for a specific notebook). Do you need UNC links to work in HTML notes (or just Markdown ones)?

Please wait before developing a plugin or working on this issue, let's first discuss our options. I think one possible fix is to revert this change - the security vulnerability that was reported was never about UNC paths and I don't know why it became about this

[Telefaust]

I think one possible fix is to revert this change
Sounds good for me too.

[personalizedrefrigerator]

I think one possible fix is to revert this change
Sounds good for me too.

See

• Desktop: Open UNC links in file explorer #10072
• Desktop: Re-enable UNC links #10071