The Chrome plugin has an annoying habit of writing debug information in the console of every web page.

1. Installed from windows installer;
2. login to SS;
3. Installed plugin from chrome web store.
   

When we accidentally input some password and turn off button "Protect your key with password" appears alert(watch video). Button should clear all inputed information.

I have installed the chrome extension a couple months ago. Yesterday, while trying to access a recently created environment, I found a link almost hidden in its container view:

From that, it seems the e2e plugin is on version 4.0.0 already. So I decided to upgrade it. I'm not sure I remember, but I think it has been installed back then from a file then offered on the getting-started page. Yesterday I haven't found it in the same spot. The release page offers zip files with no explanation on how to install. Then I tried the chrome store, found it and installed. Instead of updating the e2e plugin, I ended up with two plugins installed:

Implement trigger, which is listening for Subutai Console and Hub ez-desktop buttons and triggers Subutai Tray

https://confluence.critical-factor.com/x/OIHBAQ

Was going to delete lost key from Subutai E2E Plugin, faced problem that buttons have strange style and formatting:

Add message signing for kurjun authentication with key that is created with plugin
automatically detect login screen and sign message with plugin

For replay this situation you need:

Test case

1. Go to E2E plugin page.
2. Click on button "Generate".
3. Click on checkbox "Advanced"

Result: Observe "Advanced" menu. If try to change options can observe that we have only one variation of settings.
It will be better if we hide "Advanced" checkbox.

Browser plugin need to allow people to use the hub to pass their keys between browsers.

Seems browser E2E plugin is hard-coded to be used only with hub.subut.ai domain. If you open Hub by IP address, EZSSH button in container list of environment is not active.

Migrate subut.ai related configurations to subutai.io

I have PGP key, which is expired. In popup dialog for signing message, I select this expired key, and signing doesn't occur. Just nothing happens. Reason is that key is expired. I think browser plugin must show some error or warning in such cases.

For replay this bug you need:

Test case

1. Go to E2E plugin page.
2. Click on button "export".
3. Click on button "export" in pop-up window.

Result: Export pop-up window doesn't close.

These have been reported before. You should have the emails to determine what these changes are. This is critical because it blocks deployment in their store.

When browser plugin requests user to enter password of key, in title of input field there is a type:
"mAssage" should be "message".

'Wrong password' text is always visible, even on initial open window

my browser plugin version is v.2.0.9

on debian firefox

If I protected my PGP key via password, and then try to authorize from bazaar side, but input incorrect password-nothing happens, just password window disappearing and authorization doesn't happen( which correct)
As a user I want to see error message that my password is incorrect.

For replay this bug you need:

Test case

1. Go to chrome browser.
2. Go to URL https://chrome.google.com/webstore/detail/subutai-social-e2e-plugin/kpmiofpmlciacjblommkcinncmneeoaa?utm_source=chrome-ntp-icon
3. Click on button Install.
4. Observe pop-up window.
5. Click button "Add extension"

Result: Observe pop-up window "Download interrupted"

Plugin must enable users to sign arbitrary text with a chosen key

When we have plugin autosign data inside an html element, it shows X icon.
For visible data elements it is ok, but for those that are invisible (say have a specific class name) we should not shot the icon.

For replay this enhancement you need:

Test case

1. Go to E2E plugin page.
2. Click on button "export".

Result: Observe pop-up window "Export keys". Need to add button "export as..." to chose directory to save file.

Case: registered new user, went to FF addons, added subutai e2e. Then generated pgp key for user, uploaded it to profile in bazaar. Then went to environment creation page, got cdn auth window. Result - auth window stuck for more than 10 minutes already.

OS - windows, browser - FF, user - https://bazaar.subutai.io/users/2148

when plugin request from user his password for key, keyId is not shown.

Show message if user not found on CDN authorization. Currently, it will freeze trying to sign key, which does not exist in e2e plugin

Although the starting point could be the SSH capability but any functionality of the Tray can be triggered by the browser plugin via directives embedded into web applications like the SS console or the Hub. The idea is a web UI component can expose some hidden tag that triggers the browser plugin to enable a button. Once pressed this would trigger the Tray application via local socket or some other mechanism to SSH into the container.

The question the requires some research is what's the best mechanism to use. The Tray application could provide even a command interface via CLI or via socket so the browser plugin can invoke commands on it like for example to SSH into a container in an environment.

0 errors, 36 warnings, 1 notice

Unsafe assignment to outerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/dep/purify.js line 340 column 13
Unsafe call to insertAdjacentHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/dep/purify.js line 429 column 21
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/dep/purify.js line 439 column 13
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert2.min.js line 1 column 4594
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert2.min.js line 1 column 4898
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert2.min.js line 1 column 5012
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert2.min.js line 1 column 6200
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert2.min.js line 1 column 6235
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert2.min.js line 1 column 11221
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert.min.js line 1 column 3407
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert.min.js line 1 column 9898
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert.min.js line 1 column 13216
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert.min.js line 1 column 13290
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert.min.js line 1 column 15299
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert.min.js line 1 column 15367
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert2.js line 516 column 5
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert2.js line 553 column 5
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert2.js line 570 column 5
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert2.js line 576 column 7
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert2.js line 672 column 5
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/sweetalert2.js line 673 column 5
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/swal2.js line 575 column 5
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/swal2.js line 612 column 5
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/swal2.js line 629 column 5
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/swal2.js line 635 column 7
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/swal2.js line 733 column 5
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/swal2.js line 734 column 5
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/dep/qrcodejs/qrcode.js line 254 column 4
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

lib/common/closure-library/closure/goog/string.js line 604 column 7
eval can be harmful.
Warning: Evaluation of strings as code can lead to security vulnerabilities and performance issues, even in the most innocuous of circumstances. Please avoid using eval and the Function constructor when at all possible.'

require.js line 2071 column 16
eval can be harmful.
Warning: Evaluation of strings as code can lead to security vulnerabilities and performance issues, even in the most innocuous of circumstances. Please avoid using eval and the Function constructor when at all possible.'

common/dep/jquery.min.js line 2 column 2397
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/dep/jquery.min.js line 3 column 13453
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/dep/jquery.min.js line 3 column 15724
eval can be harmful.
Warning: Evaluation of strings as code can lead to security vulnerabilities and performance issues, even in the most innocuous of circumstances. Please avoid using eval and the Function constructor when at all possible.'

common/scripts/libs/jquery-2.1.1.min.js line 2 column 2400
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/jquery-2.1.1.min.js line 3 column 13933
Unsafe assignment to innerHTML
Warning: Due to both security and performance concerns, this may not be set using dynamic values which have not been adequately sanitized. This can lead to security issues or fairly serious performance degradation.

common/scripts/libs/jquery-2.1.1.min.js line 3 column 16160
Known JS library detected
Warning: JavaScript libraries are discouraged for simple add-ons, but are generally accepted.

common/dep/bootstrap/js/bootstrap.js

Solution: https://developer.mozilla.org/en-US/docs/Archive/B2G_OS/Security/Security_Automation

Manually (not from the Store) installed Subutai Edge plugin, when I opened plugin's Options page,
an invisible pop-up appeared and disabled plugin's functionality.

To see the pop-up window:

1. I opened browser Console (F12) in plugin's Options page
2. Refreshed the page, tried to resize, scroll down
3. Finally, in the bottom, a pop-up window appeared.
4. Just closed that window

The version of E2E does not show up. Also options button does not respond on Firefox. I am facing with this problem everyday. I have to remove and reinstall E2E plugin to authorize and work further.

When I push "Reload" button, nothing happens, maybe something reloads on the background, but I don't see it.
As a user I want to see some action after pushing this button.

Export existing keys from E2E plugin generate "Unknown" filename

Sometimes (almost always) key selector is not visible even if key selector parent form is visible. This happens only in Firefox when I'm setting key in Hub user settings form. Ctrl+F5 doesn't help, but i noticed that if i close selector form by clicking 'x' icon (red circle on picture) and then reload page, then when i open settings form, key selector become visible.

My OS: Ubuntu 16.04.
Firefox version is:

It may be UI issue.

start developing/porting e2e plugin to edge

Currently when key has passphrase during signing will be the pop-up menu to enter the password. But, it's not so user friendly to understand

Proper message:

The key you're using is password protected by the E2E
plugin. To sign with your key, provide the password
you used when it was created.

On plugin forms we need some default focusing elements and correct Tab order for better interaction with users.

I created the key in 16:32, It shows me the time 10:32

Bug reported by @NikolaiB

Design style should be updated according new UI Kit:

• New icons
• New colors schemes
• New styles
• New popups

Submission has to include a direct link to .safariextz file

For replay this bug you need:

Test case

1. Go to E2E plugin page.
2. Click on button "Import".
3. Click on button "Import" (do not enter or upload PGP key).

Result: Observe pop-up window "Import success"

So it was removed from the Google Chrome Web Store.

Optimize sweet alert initialization on the websites, currently plugin adds default plugin Modal to any website, which is not good for users.

Offer to generate a key only after installation of the plugin e2e and only on SS when we need a key.

Firefox migrated to new add-on developing standards and in order to be able to publish our plugin we need to comply with their policies.
cfx -> jpm migration influences dependent modules, mainly openpgp library.

Tooling
99% -complete

Actually in this picture usernames are same, but in SubutayTray username contains capital letters.
Browser plugin should ignore letter case.

1. Install fresh SS with windows installer;
2. Create new gpg-key;
3. Register peer on HUB;
4. Create local SS environment;
5. Go to the environment tab in HUB;
6. Try to create EZ-SSH to container;
   Getting this error, checked twice:
   

Refreshing HUB page fix this error, but first attempt fails.

For me, it happened with the newly generated key and I fixed after entering to User Settings in Hub. It also happened to several people.

Alerts of plugin Sweet Alert 2 should be stylized according UI Kit