Versions Compared

Old Version 10

changes.mady.by.user Vladyslav Zacharko

Saved on

compared with

New Version Current

changes.mady.by.user Vladyslav Zacharko

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Summary

In order to enhance security while using HTML Include Replace, a configuration page has been implemented which provides the Administrator with control over the accessibility of the Macro.

Warning

Confluence 7.14.0 issue:

  • fails to render values under the Whitelisted URL table. To fix this issue, you will need to upgrade the confluence to the 7.14.1 version.

Relates to - https://jira.atlassian.com/browse/CONFSERVER-73757?src=confmacro&error=login_required&error_description=Login+required&state=d9277958-fbe9-475d-8974-4a8b8668209c

Configuration Fields

Field

Description

Exclude scripts

This is the global setting for disabling Scripting to be used by the Macro. By setting this field checked, it will result in exclusion of scripts within the URL provided.

Custom error message

custom error message is encountered explicitly when the user is accessing a non-white-listed URL. The purpose of this is to provide information as to whom to contact/reason for the error. 

Important: Default message will be used when accessing the configure screen first time or when the field value is not provided.

Default message: xhtml+html-include-replace; The URL specified is not whitelisted. Please speak to a system administrator.

Full URL

This is where the URL is specified.

Plain or Regex

While specifying the URL, you have to select either Plain or Regex type.

Sort by

Allows you to sort the list by the following criteria:

  • A to Z

  • Z to A

  • Ascending ID

  • Descending ID

...

WhiteListed URLs and Macro:

Image RemovedImage Added