Skip to main content
Solved

Why did the target default change for deeplinks? (.13)

Freddy
Forum|alt.badge.img+16
  • Freddy
  • Thinkwise Local Partner Brasil

I am pretty sure that before the last .13 GUI release the target of deep-links where not overruled by a default _blank. I really want this to be a setting or ignored. We use quite some deep links to get from pieces of HTML to the next functionality in the Universal GUI. Now they all end up opening new tabs/windows. This is not wanted. 

Best answer by Erik Brink

Hi Freddy,

Although this can be very usefill, this is securty wise very dangerous to keep supporting this. We don't prefer the UI in the same tab being taken over from a custom HTML field. Especially not when a random user can do this in data which is afterwards available for other users. 

We have to think of a secure/controlled way of offering support for this. Maybe an alternative type of HTML control, which users can not edit or configure the html in the SF.

Can you report a ticket for this?

Best regards, Erik Brink

View original
LEF - All glory comes from daring to begin. [lef.tec.br]
This topic has been closed for comments

Erik Brink
Moderator
Forum|alt.badge.img+5

Hi Freddy,

Although this can be very usefill, this is securty wise very dangerous to keep supporting this. We don't prefer the UI in the same tab being taken over from a custom HTML field. Especially not when a random user can do this in data which is afterwards available for other users. 

We have to think of a secure/controlled way of offering support for this. Maybe an alternative type of HTML control, which users can not edit or configure the html in the SF.

Can you report a ticket for this?

Best regards, Erik Brink

Freddy
Forum|alt.badge.img+16
  • Freddy
  • Thinkwise Local Partner Brasil
  • May 16, 2024
Erik Brink wrote:

Hi Freddy,

Although this can be very usefill, this is securty wise also very dangerous. We don't prefer the UI in the same tab being taken over from a custom HTML field. Esspecially not when a randow user can do this in data which is afterwards available for other users. 

We have to think of a secure/controlled way of offering support for this. Maybe an alternative type of HTML control which users can not edit or a way to set the html in the SF.

Can you report a ticket for this?

Best regards, Erik Brink

Created the ticket 9377S .. hope it will get the priority it deserves. 

LEF - All glory comes from daring to begin. [lef.tec.br]
Terms & ConditionsCookie settings

Cookie policy

We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

 
Cookie settings