452470 – Dolphin's Share to Imgur should ask for confirmation

Bug 452470 - Dolphin's Share to Imgur should ask for confirmation

Summary: Dolphin's Share to Imgur should ask for confirmation

Status:	CONFIRMED

Alias:	None

Product:	frameworks-purpose
Classification:	Frameworks and Libraries
Component:	general (show other bugs)
Version:	5.110.0
Platform:	Other Linux

Importance:	NOR normal
Target Milestone:	---
Assignee:	Aleix Pol

URL:
Keywords:

Depends on:
Blocks:

Reported:	2022-04-10 13:33 UTC by Matt
Modified:	2025-02-08 00:15 UTC (History)
CC List:	4 users (show)

See Also:
Latest Commit:
Version Fixed In:
Sentry Crash Report:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description Matt 2022-04-10 13:33:31 UTC

SUMMARY
When using Dolphin snapped to the right hand side of my screen, in the context menu for a picture containing sensitive information that was on the far right hand side I misclicked on the share to imgur context menu as it popped up on top of the existing context menu (to be clear this report isn't about the overlapping context menus as this is expected behaviour).

Without asking for confirmation Dolphin immediately uploaded this to imgur. Dolphin should probably ask for confirmation before doing this so accidents like that are harder to produce. Thank you to whoever added the delete link into the popup notification though :)


STEPS TO REPRODUCE
1. Right click on an image in dolphin
2. Go to the share submenu
3. Press share to Imgur

OBSERVED RESULT
Dolphin immediately uploads the image to Imgur

EXPECTED RESULT
Dolphin should probably ask for confirmation before doing so, and warn the user the image will be made public

SOFTWARE/OS VERSIONS
Operating System: Arch Linux
KDE Plasma Version: 5.24.3
KDE Frameworks Version: 5.92.0
Qt Version: 5.15.3
Kernel Version: 5.16.16-arch1-1 (64-bit)
Graphics Platform: Wayland
Processors: 8 × Intel® Core™ i7-4770K CPU @ 3.50GHz
Memory: 19.5 GiB of RAM
Graphics Processor: AMD Radeon RX 6900 XT

ADDITIONAL INFORMATION

Comment 1 nunuu 2024-04-07 00:27:51 UTC

Bug still exists (as of purpose 5.110) and this should frankly be higher priority. It actually concerns the "Purpose" framework used in multiple KDE applications to provide share functionality.

Additionally to the concern already mentioned, imgur has a TOS and privacy policy that the user needs to accept before using the service, which the problematic option completely bypasses. I'm no expert, but that sounds like a major legal issue.

Comment 2 Bacteria 2024-08-21 04:53:00 UTC

This should be higher priority. Also the link to delete should also be put somewhere permanent where the user can access it easily instead of the notification which can be cleared.

Comment 3 John 2025-02-08 00:15:19 UTC

I agree too that this needs needs a confirmation dialog, with a yellow color warning and an explanation about the privacy and security implication if the users says Yes to the upload.

I think it also would be best that Plasma has a permanent notifications log, like the system log, where all notifications are logged, and each one of them have some category or tags attached to them to search by which of them are pertaining uploads to online services done by Dolphin or Gwenview and of course by other programs in the future.