search

taers232c / GAMADV-XTD3

Command line tool to manage Google Workspace
687 stars 86 forks source link

[create user] Html tag chars such as "<" in random passwords not replaced with html entities like "&gt;" #392

Closed Ludovic-Emo-Pyl-Tech closed 5 months ago

Ludovic-Emo-Pyl-Tech commented 5 months ago

When using creating a user with random password, it might contain chars like "<" or ">". These chars are not replaced with html entities like ">", hence they are interpreted as html and not displayed to the end user which then uses a wrong password.

Could you please change GAM so that these chars are not used in the generated passwords, or replaced in the rendered html ?

Command example: gam create user [...] password random [...] notify [...] subject [...] from [...] gdoc [...] id [...] html [...]

Random password example:

taers232c commented 5 months ago

This should be fixed in 6.67.19

The problem would occur even when a password was manually entered, e.g., password "abc<123>"

Ross

Ross Scroggs @.***

On Jan 15, 2024, at 12:25 AM, Ludovic-Emo-Pyl-Tech @.***> wrote:

When using creating a user with random password, it might contain chars like "<" or ">". These chars are not replaced with html entities like ">", hence they are interpreted as html and not displayed to the end user which then uses a wrong password.

Could you please change GAM so that these chars are not use in the generated password, or replaced in the rendered html ?

Command example: gam create user [...] password random [...] notify [...] subject [...] from [...] gdoc [...] id [...] html [...]

Random password example:

logged in the log txt file: @.*** https://github.com/SZ6 seen by the end user in the email client: F2ary because everything after < is considered as an html tag — Reply to this email directly, view it on GitHub https://github.com/taers232c/GAMADV-XTD3/issues/392, or unsubscribe https://github.com/notifications/unsubscribe-auth/ACCTYLZQSKQFCN5K2SRN5O3YOTRZDAVCNFSM6AAAAABB234E6OVHI2DSMVQWIX3LMV43ASLTON2WKOZSGA4DCNBZGIZTMOA. You are receiving this because you are subscribed to this thread.

Ludovic-Emo-Pyl-Tech commented 5 months ago

Hello,

Thank you for the update. I've successfully upgraded to version 6.67.19 and will conduct further tests during the creation of the next user account. As this is not a frequent task, please feel free to close the issue in the meantime.

Your ongoing support is greatly appreciated !

Best regards, Ludovic

SZ6 commented 5 months ago

sorry I'm not sure why I'm getting these emails? think you have the wrong person On Tuesday, 16 January 2024 at 13:19:51 GMT, Ludovic-Emo-Pyl-Tech @.***> wrote:

Hello,

Thank you for the update. I've successfully upgraded to version 6.67.19 and will conduct further tests during the creation of the next user account. As this is not a frequent task, please feel free to close the issue in the meantime.

Your ongoing support is greatly appreciated !

Best regards, Ludovic

— Reply to this email directly, view it on GitHub, or unsubscribe. You are receiving this because you were mentioned.Message ID: @.***>