Closed
Description
In the views ClientSecret and ApiResourceSecret is not HTML encoded data attribute data-secret-value on the button:
<td><button class="secret-value-button btn btn-outline-primary" data-secret-value="clientSecret.Value"><i class="fa fa-eye"></i></button></td>
This data attribute is used in the dialog with secret detail.
Fix:
<button class="secret-value-button btn btn-outline-primary" data-secret-value="@Html.Encode(clientSecret.Value)"><i class="fa fa-eye"></i></button>
I will send this fix asap.
Thanks to Silton Santos for reporting.