ServerConfigChecks: Link 'trusted proxies list' not terminated properly #16798

kampalex · 2021-04-08T18:58:49Z

Describe the bug

The entire 'Servers' and 'Configuration' fieldsets are clickable due to not terminated link within one of the (hidden) messages.

https://github.com/phpmyadmin/phpmyadmin/blob/master/libraries/classes/Config/ServerConfigChecks.php#L178

            $sSecurityInfoMsg = Sanitize::sanitizeMessage(sprintf(
                __(
                    'If you feel this is necessary, use additional protection settings - '
                    . '%1$shost authentication%2$s settings and %3$strusted proxies list%4%s. '
                    . 'However, IP-based protection may not be reliable if your IP belongs '
                    . 'to an ISP where thousands of users, including you, are connected to.'
                ),
                '[a@' . Url::getCommon(['page' => 'servers', 'mode' => 'edit', 'id' => $i]) . '#tab_Server_config]',
                '[/a]',
                '[a@' . Url::getCommon(['page' => 'form', 'formset' => 'Features']) . '#tab_Security]',
                '[/a]'
            ));

The last %s is included in the resulting text, but it should contain the 4th replacement. The %s must be $s.

                    . '%1$shost authentication%2$s settings and %3$strusted proxies list%4%s. '

It seems like an easy fix in code. The big thing is... every translation file contains the same issue as above (which means a lot of work).

To Reproduce

Steps to reproduce the behavior:

Go to Setup (path-to-PMA)/setup/
In Overview, add/edit a Server.
Select tab Authentication
Select Authentication type = config
Click Apply
Result as shown in the screenshot below

When retrieving the Overview later, the message is hidden but the behavior is still the same.

Screenshots

Client/Server configuration

Operating system: Windows 10 20H2
Web server: Apache 2.4.46
Database version: MariaDB 10.4.10
PHP version: 8.0.1
phpMyAdmin version: 5.1.0
Browser: Google Chrome 89

The text was updated successfully, but these errors were encountered:

williamdes · 2021-04-13T15:28:02Z

Hi @kampalex
Thank you for reporting this issue !

Signed-off-by: William Desportes <williamdes@wdes.fr>

williamdes · 2021-04-13T15:55:20Z

It seems like an easy fix in code. The big thing is... every translation file contains the same issue as above (which means a lot of work).

Hopefully a vscode search an replace did the work, all translations should remain alright

williamdes added Bug A problem or regression with an existing feature translation ui Issues relating to the user interface labels Apr 13, 2021

williamdes added this to the 5.1.1 milestone Apr 13, 2021

williamdes self-assigned this Apr 13, 2021

williamdes added this to Needs triage in issues via automation Apr 13, 2021

williamdes moved this from Needs triage to to be fixed soon in issues Apr 13, 2021

williamdes added a commit that referenced this issue Apr 13, 2021

Add a ChangeLog entry for #16798

5839dde

Signed-off-by: William Desportes <williamdes@wdes.fr>

williamdes closed this as completed in b2bec74 Apr 13, 2021

issues automation moved this from to be fixed soon to Closed Apr 13, 2021

github-actions bot locked as resolved and limited conversation to collaborators Apr 14, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

ServerConfigChecks: Link 'trusted proxies list' not terminated properly #16798

ServerConfigChecks: Link 'trusted proxies list' not terminated properly #16798

kampalex commented Apr 8, 2021

williamdes commented Apr 13, 2021

williamdes commented Apr 13, 2021

ServerConfigChecks: Link 'trusted proxies list' not terminated properly #16798

ServerConfigChecks: Link 'trusted proxies list' not terminated properly #16798

Comments

kampalex commented Apr 8, 2021

Describe the bug

To Reproduce

Screenshots

Client/Server configuration

williamdes commented Apr 13, 2021

williamdes commented Apr 13, 2021