[jira] [Updated] (CB-13537) Regular Expression Denial of Service in cordova-plugin-globalization's moment.js version 2.8.4 that is being used
[ https://issues.apache.org/jira/browse/CB-13537?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Srutha Keerthi updated CB-13537: Description: Following critical and medium security violation was found on moment (version 2.8.4). This is used by the plugin cordova-plugin-globalization. This plugin obtains information and performs operations specific to the user's locale, language, and timezone Vulnerability The moment package is vulnerable to a Regular Expression Denial of Service (ReDoS). The moment.duration() method in moment.js contains a regular expression, used to determine if an input is of the ASP.NET date format, that can cause an application to hang. The aspNetRegex, the variable's name in the code, causes very slow processing of exponentially long repetitive sequences leading to a Denial of Service (DoS) due to excessive resource consumption. A remote attacker could exploit this flaw by supplying a specially crafted request URL containing long repetitive sequences to cause the denial of service (DoS). Link : [https://nodesecurity.io/advisories/55] Further ReDoS fixes were provided and the moment.js version 2.19.3 and above solves the security vulnerability completely. was: Following critical and medium security violation was found on moment (version 2.8.4). This is used by the plugin cordova-plugin-globalization. This plugin obtains information and performs operations specific to the user's locale, language, and timezone Vulnerability The moment package is vulnerable to a Regular Expression Denial of Service (ReDoS). The moment.duration() method in moment.js contains a regular expression, used to determine if an input is of the ASP.NET date format, that can cause an application to hang. The aspNetRegex, the variable's name in the code, causes very slow processing of exponentially long repetitive sequences leading to a Denial of Service (DoS) due to excessive resource consumption. A remote attacker could exploit this flaw by supplying a specially crafted request URL containing long repetitive sequences to cause the denial of service (DoS). Link : https://nodesecurity.io/advisories/55 > Regular Expression Denial of Service in cordova-plugin-globalization's > moment.js version 2.8.4 that is being used > - > > Key: CB-13537 > URL: https://issues.apache.org/jira/browse/CB-13537 > Project: Apache Cordova > Issue Type: Bug > Components: cordova-plugin-globalization >Affects Versions: 3.0.0 > Environment: All users of globalization plugin >Reporter: Srutha Keerthi >Priority: Critical > Labels: security > Fix For: 3.0.0 > > Original Estimate: 6h > Remaining Estimate: 6h > > Following critical and medium security violation was found on moment > (version 2.8.4). > This is used by the plugin cordova-plugin-globalization. > This plugin obtains information and performs operations specific to the > user's locale, language, and timezone > Vulnerability > The moment package is vulnerable to a Regular Expression Denial of > Service (ReDoS). The moment.duration() method in moment.js contains a > regular expression, used to determine if an input is of the ASP.NET > date format, that can cause an application to hang. The aspNetRegex, > the variable's name in the code, causes very slow processing of > exponentially long repetitive sequences leading to a Denial of Service > (DoS) due to excessive resource consumption. A remote attacker could > exploit this flaw by supplying a specially crafted request URL > containing long repetitive sequences to cause the denial of service > (DoS). > Link : [https://nodesecurity.io/advisories/55] > > > Further ReDoS fixes were provided and the moment.js version 2.19.3 and above > solves the security vulnerability completely. -- This message was sent by Atlassian JIRA (v7.6.3#76005) - To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org
[jira] [Commented] (CB-13848) Weinre: Refused to get unsafe header "Content-Length"
[ https://issues.apache.org/jira/browse/CB-13848?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16349854#comment-16349854 ] Patrick Mueller commented on CB-13848: -- It looks like the code that gets the content-length could probably be wrapped in a try/catch, seems survivable for {{expectedContentLength}} to be {{undefined}} in the end. Perhaps a better story would be an easy way to toggle the network tracking off, seems like it will be a likely source of errors as the browser change things in this area. In any case, it's not likely I'll get around to fixing this, I don't have time to work on weinre anymore. Best bet is to use the existing native debuggers for your platforms. For more info on that, see the yellow box at: https://people.apache.org/~pmuellr/weinre/docs/latest/Home.html > Weinre: Refused to get unsafe header "Content-Length" > - > > Key: CB-13848 > URL: https://issues.apache.org/jira/browse/CB-13848 > Project: Apache Cordova > Issue Type: Bug >Reporter: Kristoffer Lundén >Priority: Major > Attachments: weinre.png > > > {{Weire *2.0.0-pre-I0Z7U9OV* from [https://www.npmjs.com/package/weinre.] }} > > {{CORS/Ajax issue, server needs to add the header: > }}{{Access-Control-Expose-Headers, see > [https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS#Access-Control-Expose-Headers]}} > -- This message was sent by Atlassian JIRA (v7.6.3#76005) - To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org
[jira] [Created] (CB-13850) Typescript: Misspelled property fileSystem
Tobias Haupenthal created CB-13850: -- Summary: Typescript: Misspelled property fileSystem Key: CB-13850 URL: https://issues.apache.org/jira/browse/CB-13850 Project: Apache Cordova Issue Type: Bug Components: cordova-plugin-file Reporter: Tobias Haupenthal The Typescript file index.d.ts shows that an Entry shall have an attribute fileSystem. But in Android this property is undefined. There is only the property filesystem. -- This message was sent by Atlassian JIRA (v7.6.3#76005) - To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org
[jira] [Created] (CB-13849) getDirectory('') returns root path
Tobias Haupenthal created CB-13849: -- Summary: getDirectory('') returns root path Key: CB-13849 URL: https://issues.apache.org/jira/browse/CB-13849 Project: Apache Cordova Issue Type: Bug Components: cordova-plugin-file Affects Versions: cordova-android-7.0.0 Environment: Android Reporter: Tobias Haupenthal At the moment the command \{someDir}.getDirectory("") with a blank argument returns the root-path. If someone works already on a subdirectory that behaviour might be a security flaw. Better would be to return the current directory. -- This message was sent by Atlassian JIRA (v7.6.3#76005) - To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org
[jira] [Comment Edited] (CB-12613) Camera encoding type not respected when destination type is NATIVE_URI
[ https://issues.apache.org/jira/browse/CB-12613?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16349104#comment-16349104 ] Volker Braun edited comment on CB-12613 at 2/1/18 6:51 PM: --- Should be capital-C Camera in the example. Setting to DestinationType.FILE_URI does produce a jpeg but it is downscaled, 1847x1385 instead of the actual 4032x3024. PS: Starting with Xcode 9.3 beta, HEIC images are finally supported in the simulator was (Author: vfbraun): Should be capital-C Camera in the example. Setting to DestinationType.FILE_URI does produce a jpeg but it is downscaled, 1847x1385 instead of the actual 4032x3024. > Camera encoding type not respected when destination type is NATIVE_URI > -- > > Key: CB-12613 > URL: https://issues.apache.org/jira/browse/CB-12613 > Project: Apache Cordova > Issue Type: Bug > Components: cordova-plugin-camera > Environment: iOS 10+ >Reporter: John Czaplewski >Priority: Major > > When a PNG or HEIC (Apple's new compressed file format) image is selected > using the method `getPicture` on iOS with the destination encoding type set > to JPEG, the original file format is returned instead of a JPEG. > For example, > {code:javascript} > camera.getPicture({ > quality: 100, > destinationType: camera.DestinationType.NATIVE_URI, > encodingType: camera.EncodingType.JPEG > }).then(imageData => { > // imageData will be the original file format, not a JPEG > }) > {code} > If the destinationType is changed to `FILE_URI` the image will be converted > to a JPEG as expected, but metadata such as geolocation will be stripped from > the image (this might be a separate issue?). -- This message was sent by Atlassian JIRA (v7.6.3#76005) - To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org
[jira] [Commented] (CB-12613) Camera encoding type not respected when destination type is NATIVE_URI
[ https://issues.apache.org/jira/browse/CB-12613?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16349104#comment-16349104 ] Volker Braun commented on CB-12613: --- Should be capital-C Camera in the example. Setting to DestinationType.FILE_URI does produce a jpeg but it is downscaled, 1847x1385 instead of the actual 4032x3024. > Camera encoding type not respected when destination type is NATIVE_URI > -- > > Key: CB-12613 > URL: https://issues.apache.org/jira/browse/CB-12613 > Project: Apache Cordova > Issue Type: Bug > Components: cordova-plugin-camera > Environment: iOS 10+ >Reporter: John Czaplewski >Priority: Major > > When a PNG or HEIC (Apple's new compressed file format) image is selected > using the method `getPicture` on iOS with the destination encoding type set > to JPEG, the original file format is returned instead of a JPEG. > For example, > {code:javascript} > camera.getPicture({ > quality: 100, > destinationType: camera.DestinationType.NATIVE_URI, > encodingType: camera.EncodingType.JPEG > }).then(imageData => { > // imageData will be the original file format, not a JPEG > }) > {code} > If the destinationType is changed to `FILE_URI` the image will be converted > to a JPEG as expected, but metadata such as geolocation will be stripped from > the image (this might be a separate issue?). -- This message was sent by Atlassian JIRA (v7.6.3#76005) - To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org
[jira] [Commented] (CB-13145) Create playservices version preference in config.xml
[ https://issues.apache.org/jira/browse/CB-13145?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16348819#comment-16348819 ] ASF GitHub Bot commented on CB-13145: - adriano-di-giovanni commented on issue #590: CB-13145: Create playservices version preference in config.xml URL: https://github.com/apache/cordova-lib/pull/590#issuecomment-362315149 This way is up to the plugin developers to stick to a convention. Correct? This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > Create playservices version preference in config.xml > > > Key: CB-13145 > URL: https://issues.apache.org/jira/browse/CB-13145 > Project: Apache Cordova > Issue Type: Bug > Components: cordova-lib >Reporter: Steve Gill >Priority: Major > Labels: backlog, tools-next > Fix For: cordova@7.2.0 > > > We are seeing an issue in the community of two plugins using different > versions of google play services. This causes gradle to error out. We are > running into this with the phonegap-push-plugin. > Potential solution: > We could create an Android only preference called PlayServicesVersion in > config.xml which would control the version of Play Services used for the > entire project. > In config.xml: > {code} > > {code} > Then if the push plugin wanted to include the FCM libraries in it's > plugin.xml it would do: > > and the cordova-plugin-google-analytics wanted to include Play Services in > it's plugin.xml it would do: > {code} > src="com.google.android.gms:play-services-analytics:$PlayServicesVersion" /> > {code} > they would both use the same version of Play Services. This gets around the > problem of plugins using + in the framework tag and having two plugins pin > different versions of Play Services. > The + wildcard fails to compile with the following error: > {code} > > Failed to apply plugin [id 'com.google.gms.google-services'] >> For input string: "+" > {code} -- This message was sent by Atlassian JIRA (v7.6.3#76005) - To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org
[jira] [Commented] (CB-13145) Create playservices version preference in config.xml
[ https://issues.apache.org/jira/browse/CB-13145?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16348632#comment-16348632 ] ASF GitHub Bot commented on CB-13145: - macdonst commented on issue #590: CB-13145: Create playservices version preference in config.xml URL: https://github.com/apache/cordova-lib/pull/590#issuecomment-362277878 @adriano-di-giovanni the way it works is you can set a preference in config.xml or plugin.xml. The config.xml one over-rides the one in plugin.xml if they have the same name. Check out the push plugin: https://github.com/phonegap/phonegap-plugin-push/blob/master/plugin.xml#L47 I set a default FCM version but folks can over-ride it. Then the user can make all these versions match in config.xml. This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > Create playservices version preference in config.xml > > > Key: CB-13145 > URL: https://issues.apache.org/jira/browse/CB-13145 > Project: Apache Cordova > Issue Type: Bug > Components: cordova-lib >Reporter: Steve Gill >Priority: Major > Labels: backlog, tools-next > Fix For: cordova@7.2.0 > > > We are seeing an issue in the community of two plugins using different > versions of google play services. This causes gradle to error out. We are > running into this with the phonegap-push-plugin. > Potential solution: > We could create an Android only preference called PlayServicesVersion in > config.xml which would control the version of Play Services used for the > entire project. > In config.xml: > {code} > > {code} > Then if the push plugin wanted to include the FCM libraries in it's > plugin.xml it would do: > > and the cordova-plugin-google-analytics wanted to include Play Services in > it's plugin.xml it would do: > {code} > src="com.google.android.gms:play-services-analytics:$PlayServicesVersion" /> > {code} > they would both use the same version of Play Services. This gets around the > problem of plugins using + in the framework tag and having two plugins pin > different versions of Play Services. > The + wildcard fails to compile with the following error: > {code} > > Failed to apply plugin [id 'com.google.gms.google-services'] >> For input string: "+" > {code} -- This message was sent by Atlassian JIRA (v7.6.3#76005) - To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org
[jira] [Commented] (CB-13415) Importing corrupt images using the Camera plugin crashes the app
[ https://issues.apache.org/jira/browse/CB-13415?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16348623#comment-16348623 ] ASF GitHub Bot commented on CB-13415: - jcesarmobile commented on issue #310: CB-13415 (iOS) Importing corrupt images using the Camera plugin crashes the app URL: https://github.com/apache/cordova-plugin-camera/pull/310#issuecomment-362274980 Sorry, I have no time to review the changes at this moment, as I told you on a previous PR, I do this in my spare time and I don't have spare time right now This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > Importing corrupt images using the Camera plugin crashes the app > > > Key: CB-13415 > URL: https://issues.apache.org/jira/browse/CB-13415 > Project: Apache Cordova > Issue Type: Bug > Components: cordova-plugin-camera > Environment: Android: OS 7.0, Phone Model: Moto G5 Plus > iOS: OS 10.1.1 (14B150) >Reporter: Shemrick Flannigan >Priority: Critical > Labels: android, camera, cameraui, ios > > ISSUE > Importing corrupt images using the Camera plugin crashes the app > Current Behavior > # Importing a corrupt image using the Cordova Camera plugin crashes the > Cordova app which uses the plugin > Expected Behavior > # Importing a corrupt image using the Cordova Camera plugin: > #* Throws an exception which can be caught by the Cordova app which uses the > plugin > #* Does not crash the Cordova app which uses the plugin > #* Allows the Cordova app which uses the plugin to render a Toast error > message relaying the error > # # Platforms affected > #* Android > #* iOS > REFERENCES > # [Sample corrupt image which crashes the app | > https://www.dropbox.com/s/e7dz007svtvscbc/Corrupt_Image_4.7MB_13500x13500.D2.jpg?dl=0] > # [Technique used to wrap the call in a Try/Catch block in a callable inner > class to prevent an app crash | > https://stackoverflow.com/questions/19183174/phonegap-video-capture-crashes] > ADDITIONAL INFORMATION > # Importing corrupt images does not crash apps which do not use the Camera > plugin, such as: > #* Yelp mobile app > #* Slack mobile app -- This message was sent by Atlassian JIRA (v7.6.3#76005) - To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org
[jira] [Commented] (CB-13415) Importing corrupt images using the Camera plugin crashes the app
[ https://issues.apache.org/jira/browse/CB-13415?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16348620#comment-16348620 ] ASF GitHub Bot commented on CB-13415: - jcesarmobile commented on issue #309: CB-13415 (android) Importing corrupt images using the Camera plugin c… URL: https://github.com/apache/cordova-plugin-camera/pull/309#issuecomment-362273600 I would use the same e.getMessage() or e.getLocalizedMessage() for both, not one with e.getMessage() and the other e.getLocalizedMessage() (for consistency). I've checked other plugins and cordova-plugin-file uses e.getLocalizedMessage(), so I would use e.getLocalizedMessage() for both. The iOS file shows no changes, but appears as modified, so you should remove it from the PR, maybe with a git reset or something. Ah, and remove the comments, I think there is no need. This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > Importing corrupt images using the Camera plugin crashes the app > > > Key: CB-13415 > URL: https://issues.apache.org/jira/browse/CB-13415 > Project: Apache Cordova > Issue Type: Bug > Components: cordova-plugin-camera > Environment: Android: OS 7.0, Phone Model: Moto G5 Plus > iOS: OS 10.1.1 (14B150) >Reporter: Shemrick Flannigan >Priority: Critical > Labels: android, camera, cameraui, ios > > ISSUE > Importing corrupt images using the Camera plugin crashes the app > Current Behavior > # Importing a corrupt image using the Cordova Camera plugin crashes the > Cordova app which uses the plugin > Expected Behavior > # Importing a corrupt image using the Cordova Camera plugin: > #* Throws an exception which can be caught by the Cordova app which uses the > plugin > #* Does not crash the Cordova app which uses the plugin > #* Allows the Cordova app which uses the plugin to render a Toast error > message relaying the error > # # Platforms affected > #* Android > #* iOS > REFERENCES > # [Sample corrupt image which crashes the app | > https://www.dropbox.com/s/e7dz007svtvscbc/Corrupt_Image_4.7MB_13500x13500.D2.jpg?dl=0] > # [Technique used to wrap the call in a Try/Catch block in a callable inner > class to prevent an app crash | > https://stackoverflow.com/questions/19183174/phonegap-video-capture-crashes] > ADDITIONAL INFORMATION > # Importing corrupt images does not crash apps which do not use the Camera > plugin, such as: > #* Yelp mobile app > #* Slack mobile app -- This message was sent by Atlassian JIRA (v7.6.3#76005) - To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org
[jira] [Commented] (CB-13415) Importing corrupt images using the Camera plugin crashes the app
[ https://issues.apache.org/jira/browse/CB-13415?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16348618#comment-16348618 ] ASF GitHub Bot commented on CB-13415: - jcesarmobile commented on issue #309: CB-13415 (android) Importing corrupt images using the Camera plugin c… URL: https://github.com/apache/cordova-plugin-camera/pull/309#issuecomment-362273600 I would use the same e.getMessage() or e.getLocalizedMessage() for both, not one with e.getMessage() and the other e.getLocalizedMessage() (for consistency). I've checked other plugins and cordova-plugin-file uses e.getLocalizedMessage(), so I would use e.getLocalizedMessage() for both. The iOS file shows no changes, but appears as modified, so you should remove it from the PR, maybe with a git reset or something. This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > Importing corrupt images using the Camera plugin crashes the app > > > Key: CB-13415 > URL: https://issues.apache.org/jira/browse/CB-13415 > Project: Apache Cordova > Issue Type: Bug > Components: cordova-plugin-camera > Environment: Android: OS 7.0, Phone Model: Moto G5 Plus > iOS: OS 10.1.1 (14B150) >Reporter: Shemrick Flannigan >Priority: Critical > Labels: android, camera, cameraui, ios > > ISSUE > Importing corrupt images using the Camera plugin crashes the app > Current Behavior > # Importing a corrupt image using the Cordova Camera plugin crashes the > Cordova app which uses the plugin > Expected Behavior > # Importing a corrupt image using the Cordova Camera plugin: > #* Throws an exception which can be caught by the Cordova app which uses the > plugin > #* Does not crash the Cordova app which uses the plugin > #* Allows the Cordova app which uses the plugin to render a Toast error > message relaying the error > # # Platforms affected > #* Android > #* iOS > REFERENCES > # [Sample corrupt image which crashes the app | > https://www.dropbox.com/s/e7dz007svtvscbc/Corrupt_Image_4.7MB_13500x13500.D2.jpg?dl=0] > # [Technique used to wrap the call in a Try/Catch block in a callable inner > class to prevent an app crash | > https://stackoverflow.com/questions/19183174/phonegap-video-capture-crashes] > ADDITIONAL INFORMATION > # Importing corrupt images does not crash apps which do not use the Camera > plugin, such as: > #* Yelp mobile app > #* Slack mobile app -- This message was sent by Atlassian JIRA (v7.6.3#76005) - To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org
[jira] [Commented] (CB-13415) Importing corrupt images using the Camera plugin crashes the app
[ https://issues.apache.org/jira/browse/CB-13415?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16348541#comment-16348541 ] ASF GitHub Bot commented on CB-13415: - alpesh12 commented on issue #309: CB-13415 (android) Importing corrupt images using the Camera plugin c… URL: https://github.com/apache/cordova-plugin-camera/pull/309#issuecomment-362259407 @jcesarmobile @infil00p Any updates regarding merge This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > Importing corrupt images using the Camera plugin crashes the app > > > Key: CB-13415 > URL: https://issues.apache.org/jira/browse/CB-13415 > Project: Apache Cordova > Issue Type: Bug > Components: cordova-plugin-camera > Environment: Android: OS 7.0, Phone Model: Moto G5 Plus > iOS: OS 10.1.1 (14B150) >Reporter: Shemrick Flannigan >Priority: Critical > Labels: android, camera, cameraui, ios > > ISSUE > Importing corrupt images using the Camera plugin crashes the app > Current Behavior > # Importing a corrupt image using the Cordova Camera plugin crashes the > Cordova app which uses the plugin > Expected Behavior > # Importing a corrupt image using the Cordova Camera plugin: > #* Throws an exception which can be caught by the Cordova app which uses the > plugin > #* Does not crash the Cordova app which uses the plugin > #* Allows the Cordova app which uses the plugin to render a Toast error > message relaying the error > # # Platforms affected > #* Android > #* iOS > REFERENCES > # [Sample corrupt image which crashes the app | > https://www.dropbox.com/s/e7dz007svtvscbc/Corrupt_Image_4.7MB_13500x13500.D2.jpg?dl=0] > # [Technique used to wrap the call in a Try/Catch block in a callable inner > class to prevent an app crash | > https://stackoverflow.com/questions/19183174/phonegap-video-capture-crashes] > ADDITIONAL INFORMATION > # Importing corrupt images does not crash apps which do not use the Camera > plugin, such as: > #* Yelp mobile app > #* Slack mobile app -- This message was sent by Atlassian JIRA (v7.6.3#76005) - To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org
[jira] [Commented] (CB-13415) Importing corrupt images using the Camera plugin crashes the app
[ https://issues.apache.org/jira/browse/CB-13415?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16348540#comment-16348540 ] ASF GitHub Bot commented on CB-13415: - alpesh12 commented on issue #310: CB-13415 (iOS) Importing corrupt images using the Camera plugin crashes the app URL: https://github.com/apache/cordova-plugin-camera/pull/310#issuecomment-362259288 @jcesarmobile @shazron Any updates regarding merge This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > Importing corrupt images using the Camera plugin crashes the app > > > Key: CB-13415 > URL: https://issues.apache.org/jira/browse/CB-13415 > Project: Apache Cordova > Issue Type: Bug > Components: cordova-plugin-camera > Environment: Android: OS 7.0, Phone Model: Moto G5 Plus > iOS: OS 10.1.1 (14B150) >Reporter: Shemrick Flannigan >Priority: Critical > Labels: android, camera, cameraui, ios > > ISSUE > Importing corrupt images using the Camera plugin crashes the app > Current Behavior > # Importing a corrupt image using the Cordova Camera plugin crashes the > Cordova app which uses the plugin > Expected Behavior > # Importing a corrupt image using the Cordova Camera plugin: > #* Throws an exception which can be caught by the Cordova app which uses the > plugin > #* Does not crash the Cordova app which uses the plugin > #* Allows the Cordova app which uses the plugin to render a Toast error > message relaying the error > # # Platforms affected > #* Android > #* iOS > REFERENCES > # [Sample corrupt image which crashes the app | > https://www.dropbox.com/s/e7dz007svtvscbc/Corrupt_Image_4.7MB_13500x13500.D2.jpg?dl=0] > # [Technique used to wrap the call in a Try/Catch block in a callable inner > class to prevent an app crash | > https://stackoverflow.com/questions/19183174/phonegap-video-capture-crashes] > ADDITIONAL INFORMATION > # Importing corrupt images does not crash apps which do not use the Camera > plugin, such as: > #* Yelp mobile app > #* Slack mobile app -- This message was sent by Atlassian JIRA (v7.6.3#76005) - To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org
[jira] [Updated] (CB-13848) Weinre: Refused to get unsafe header "Content-Length"
[ https://issues.apache.org/jira/browse/CB-13848?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Kristoffer Lundén updated CB-13848: --- Description: {{Weire *2.0.0-pre-I0Z7U9OV* from [https://www.npmjs.com/package/weinre.] }} {{CORS/Ajax issue, server needs to add the header: }}{{Access-Control-Expose-Headers, see [https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS#Access-Control-Expose-Headers]}} was:{{Access-Control-Expose-Headers}} > Weinre: Refused to get unsafe header "Content-Length" > - > > Key: CB-13848 > URL: https://issues.apache.org/jira/browse/CB-13848 > Project: Apache Cordova > Issue Type: Bug >Reporter: Kristoffer Lundén >Priority: Major > Attachments: weinre.png > > > {{Weire *2.0.0-pre-I0Z7U9OV* from [https://www.npmjs.com/package/weinre.] }} > > {{CORS/Ajax issue, server needs to add the header: > }}{{Access-Control-Expose-Headers, see > [https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS#Access-Control-Expose-Headers]}} > -- This message was sent by Atlassian JIRA (v7.6.3#76005) - To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org
[jira] [Updated] (CB-13848) Weinre: Refused to get unsafe header "Content-Length"
[ https://issues.apache.org/jira/browse/CB-13848?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Kristoffer Lundén updated CB-13848: --- Description: {{Access-Control-Expose-Headers}} > Weinre: Refused to get unsafe header "Content-Length" > - > > Key: CB-13848 > URL: https://issues.apache.org/jira/browse/CB-13848 > Project: Apache Cordova > Issue Type: Bug >Reporter: Kristoffer Lundén >Priority: Major > Attachments: weinre.png > > > {{Access-Control-Expose-Headers}} -- This message was sent by Atlassian JIRA (v7.6.3#76005) - To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org
[jira] [Created] (CB-13848) Weinre: Refused to get unsafe header "Content-Length"
Kristoffer Lundén created CB-13848: -- Summary: Weinre: Refused to get unsafe header "Content-Length" Key: CB-13848 URL: https://issues.apache.org/jira/browse/CB-13848 Project: Apache Cordova Issue Type: Bug Reporter: Kristoffer Lundén Attachments: weinre.png -- This message was sent by Atlassian JIRA (v7.6.3#76005) - To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org
[jira] [Commented] (CB-13145) Create playservices version preference in config.xml
[ https://issues.apache.org/jira/browse/CB-13145?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16348497#comment-16348497 ] ASF GitHub Bot commented on CB-13145: - adriano-di-giovanni commented on issue #590: CB-13145: Create playservices version preference in config.xml URL: https://github.com/apache/cordova-lib/pull/590#issuecomment-362250042 @stevengill , looking at the [issue on JIRA](https://issues.apache.org/jira/browse/CB-13145) I find that the fix has been released with cordova@7.2.0 but I couldn't find any blog post on [cordova.apache.org](http://cordova.apache.org/blog/): * mentioning the release of cordova 7.2.0 * mentioning CB-13145 on cordova 8.0.0 Also, I couldn't find the `PlayServicesVersion` preference in the docs. Is it possibile to take advantage of the new preference? Last question: the `PlayServicesVersion` preference has to be used by plugin developers or setting it my project's config.xml will be useless. Is it correct? Thanks, Adriano This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org > Create playservices version preference in config.xml > > > Key: CB-13145 > URL: https://issues.apache.org/jira/browse/CB-13145 > Project: Apache Cordova > Issue Type: Bug > Components: cordova-lib >Reporter: Steve Gill >Priority: Major > Labels: backlog, tools-next > Fix For: cordova@7.2.0 > > > We are seeing an issue in the community of two plugins using different > versions of google play services. This causes gradle to error out. We are > running into this with the phonegap-push-plugin. > Potential solution: > We could create an Android only preference called PlayServicesVersion in > config.xml which would control the version of Play Services used for the > entire project. > In config.xml: > {code} > > {code} > Then if the push plugin wanted to include the FCM libraries in it's > plugin.xml it would do: > > and the cordova-plugin-google-analytics wanted to include Play Services in > it's plugin.xml it would do: > {code} > src="com.google.android.gms:play-services-analytics:$PlayServicesVersion" /> > {code} > they would both use the same version of Play Services. This gets around the > problem of plugins using + in the framework tag and having two plugins pin > different versions of Play Services. > The + wildcard fails to compile with the following error: > {code} > > Failed to apply plugin [id 'com.google.gms.google-services'] >> For input string: "+" > {code} -- This message was sent by Atlassian JIRA (v7.6.3#76005) - To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org