Error when logging into Web Player: "A potentially dangerous Request. Form value was detected from the client."
Article ID: KB0082971
Updated On:
| Products | Versions |
|---|---|
| Spotfire Web Player | 7.0 and lower |
Description
Description:
For a Web Player login page, there is the Username and Password text field to allow the users to input text. If the username or password contains the special character "<" in the string, the string does not validate and the .Net framework throws an error. This issue is fixed in Spotfire version 7.5 and you are allowed to have passwords containing both "<" and ">" characters.
Symptoms:
Example errors:
- A potentially dangerous Request.Form value was detected from the client (ctl00$content$userNameTextBox="<ad").< span=""></ad").<>
- A potentially dangerous Request.Form value was detected from the client (ctl00$content$passwordTextBox="<dafdafs").< span=""></dafdafs").<>
Cause:
The reason for this error is a security precaution, to prevent HTML or even scripts from affecting the form.
Resolution
It is currently not possible to use "<" or ">" characters in passwords. In order to be able to login, the user must change the password so it does not contain these characters.
Alternatively, you can upgrade to TIBCO Spotfire version 7.5 which does allow passwords containing both "<" and ">" characters.
Alternatively, you can upgrade to TIBCO Spotfire version 7.5 which does allow passwords containing both "<" and ">" characters.
Issue/Introduction
Error when logging into Web Player: "A potentially dangerous Request. Form value was detected from the client."
Feedback
Yes
No
Powered by
