Return To: Board Index | Report a Bug

Cannot edit a review and forum on mobile site bug

Encounter an error, or something which isn't working correctly? Please, let us know
td888
Posts: 799
3548 Ratings
Your TCI: na
Joined: Thu Jul 12, 2007 10:44 am

Cannot edit a review and forum on mobile site bug

Postby td888 » Thu Jul 26, 2018 11:50 am

I've made a review for Legion (2017-) TV Series, but when I want to edit the review I can only change the score, not the review itself. I want to change some lines.

Also, on mobile (android-chrome) I cannot log-in to the forum. I'm logged into Critcker itself, but when I click the forum links it shows me logged out.

mpowell
Posts: 2935
1137 Ratings
Your TCI: na
Joined: Fri Sep 09, 2005 10:22 am

Re: Cannot edit a review and forum on mobile site bug

Postby mpowell » Mon Jul 30, 2018 12:47 am

That's strange about the forum, since there should be no session-handling differences for mobile. We'll try and reproduce it, though.

And we'll also take a look at the problem with mini-reviews on mobile, and update here once it's fixed.

td888
Posts: 799
3548 Ratings
Your TCI: na
Joined: Thu Jul 12, 2007 10:44 am

Re: Cannot edit a review and forum on mobile site bug

Postby td888 » Sat Aug 04, 2018 11:32 am

Both issues seem to be resolved. Thanks!

Luna6ix
Posts: 486
3677 Ratings
Your TCI: na
Joined: Sat May 17, 2008 3:26 pm

Re: Cannot edit a review and forum on mobile site bug

Postby Luna6ix » Sat Aug 04, 2018 4:45 pm

I've just run across this problem too. On a phone, trying to change the text in my mini-review for trainspotting. I can change others.

Luna6ix
Posts: 486
3677 Ratings
Your TCI: na
Joined: Sat May 17, 2008 3:26 pm

Re: Cannot edit a review and forum on mobile site bug

Postby Luna6ix » Mon Aug 06, 2018 3:22 am

I'm still unable to edit my review for trainspotting

mpowell
Posts: 2935
1137 Ratings
Your TCI: na
Joined: Fri Sep 09, 2005 10:22 am

Re: Cannot edit a review and forum on mobile site bug

Postby mpowell » Tue Aug 07, 2018 12:10 am

We made some progress on this bug, which might be the weirdest we've ever seen on Criticker. We narrowed down the problem to a specific phrase that triggers our Security protocols. That phrase is ". aside from". If this is included in a mini-review, the page refuses to load, and actually might lock you out for 15 minutes.

Of course, that's a fairly common phrase, so we're working hard on tweaking the security protocols to allow it. We're actually enlisting the help of our hosting provider. I have absolutely no idea why that phrase is more suspicious than others. "Aside frum" actually works, but change that "u" to an "o" and the system raises an eyebrow.

In the meantime, a possible work around is to reword your mini-review to remove that phrase. Bizarre... but that did the trick when we were testing.

UPDATE! I think we got this fixed! Once we understood the problem, it was easy enough. Please feel free to use the phrase "aside from" in any mini-review you want!

Luna6ix
Posts: 486
3677 Ratings
Your TCI: na
Joined: Sat May 17, 2008 3:26 pm

Re: Cannot edit a review and forum on mobile site bug

Postby Luna6ix » Thu Aug 09, 2018 10:51 pm

Thank you. I got my review edited.

livelove
Posts: 392
66 Ratings
Your TCI: na
Joined: Thu Sep 17, 2015 9:36 pm

Re: Cannot edit a review and forum on mobile site bug

Postby livelove » Thu Sep 13, 2018 9:44 pm

lol, funniest bug ever :D
What was the mystery/solution ?

mpowell
Posts: 2935
1137 Ratings
Your TCI: na
Joined: Fri Sep 09, 2005 10:22 am

Re: Cannot edit a review and forum on mobile site bug

Postby mpowell » Sat Sep 15, 2018 5:20 am

Basically, there are advanced security protocols on our server that recognize certain strings as potentially malicious and block specific behaviors. We're cleaning them up as we find them, while trying not to disable them entirely!

livelove
Posts: 392
66 Ratings
Your TCI: na
Joined: Thu Sep 17, 2015 9:36 pm

Re: Cannot edit a review and forum on mobile site bug

Postby livelove » Sat Sep 15, 2018 8:34 am

Thanks.
If it were executable code, I would understand.
But how can pure text (which is only displayed and not executed) be malicious ?
Do these security protocols not distinguish between code and content ?


Return to “Report a Bug”