Error when logging into Web Player: "A potentially dangerous Request. Form value was detected from the client."

Error when logging into Web Player: "A potentially dangerous Request. Form value was detected from the client."

book

Article ID: KB0082971

calendar_today

Updated On:

Products Versions
Spotfire Web Player 7.0 and lower

Description

Description:
For a Web Player login page, there is the Username and Password text field to allow the users to input text. If the username or password contains the special character "<" in the string, the string does not validate and the .Net framework throws an error. This issue is fixed in Spotfire version 7.5 and you are allowed to have passwords containing both "<" and ">" characters.

Symptoms:
Example errors:
  • A potentially dangerous Request.Form value was detected from the client (ctl00$content$userNameTextBox="<ad").< span=""></ad").<>
  • A potentially dangerous Request.Form value was detected from the client (ctl00$content$passwordTextBox="<dafdafs").< span=""></dafdafs").<>

Cause:
The reason for this error is a security precaution, to prevent HTML or even scripts from affecting the form.

Issue/Introduction

Error when logging into Web Player: "A potentially dangerous Request. Form value was detected from the client."

Resolution

It is currently not possible to use "<" or ">" characters in passwords. In order to be able to login, the user must change the password so it does not contain these characters.

Alternatively, you can upgrade to TIBCO Spotfire version 7.5 which does allow passwords containing both "<" and ">" characters.
Powered by Wolken Software