Open dcolina opened 1 week ago
Observation:
This issue is also occurring even when the allowedDevURLs
configuration is set. Specifically, it happens when the clientHost
URL parameter is set to the same value as the fallback URL
https://github.com/user-attachments/assets/f0e31a84-4718-4bd5-a4bc-f6120f091f3b
Note to QA: Please, additionally test cases # 12 & 34 of the Regression Tests spreadsheet
Parent Issue
No parent issue identified.
Problem Statement
When the
allowedDevURLs
configuration is not set, any access to an external page using theclientHost
URL parameter should be denied, and the user should remain on the main page without any additional actions. However, an anomaly occurs: when attempting to access an external page not permitted (due todevURLWhitelist
being unset), the main page appears with a semi-transparent modal, giving the impression that something went wrong. Refreshing the page restores normal appearance, but this visual issue impacts user experience.Steps to Reproduce
allowedDevURLs
configuration is not set.dotcms/dotcms:nightly_f21795e
.clientHost
URL parameter.Acceptance Criteria
allowedDevURLs
is not configured, any access attempt to an external page via theclientHost
parameter should:dotCMS Version
Tested with Docker image
dotcms/dotcms:nightly_f21795e
.Proposed Objective
User Experience
Proposed Priority
Priority 2 - Important
External Links... Slack Conversations, Support Tickets, Figma Designs, etc.
https://github.com/user-attachments/assets/22778a68-20bf-48b7-90e1-9bbbf65da8b7
Assumptions & Initiation Needs
devURLWhitelist
is unset or not configured for testing.Quality Assurance Notes & Workarounds
There is no workaround at the moment; the visual anomaly occurs when access to a non-permitted page is attempted. Refreshing the page temporarily restores normal appearance, but this is not an ideal user experience.
Sub-Tasks & Estimates