From 1ee85bd707c8cf85768797a95eb667224cc25a30 Mon Sep 17 00:00:00 2001
From: Sean McNellis <2292260+seanmcne@users.noreply.github.com>
Date: Fri, 7 Feb 2025 13:17:00 -0600
Subject: [PATCH] Allow overwrite masked data to dataverse (#137)

* AllowOverwriteMaskedDataToDatabase
* encoding description html characters
* Add settings xml validation including an unescaped character check (#135) (#136)
* adding settings xml validation
---
 .../mspfedyn_/OrgDbOrgSettings/Settings.xml          | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/mspfedyn_/OrgDbOrgSettings/Solution/WebResources/mspfedyn_/OrgDbOrgSettings/Settings.xml b/mspfedyn_/OrgDbOrgSettings/Solution/WebResources/mspfedyn_/OrgDbOrgSettings/Settings.xml
index a67f236..2b532d4 100644
--- a/mspfedyn_/OrgDbOrgSettings/Solution/WebResources/mspfedyn_/OrgDbOrgSettings/Settings.xml
+++ b/mspfedyn_/OrgDbOrgSettings/Solution/WebResources/mspfedyn_/OrgDbOrgSettings/Settings.xml
@@ -214,4 +214,16 @@
     supportUrl="https://go.microsoft.com/fwlink/?linkid=2264254" 
     urlTitle="KB 2691237" 
     description="Manage entity list views with security roles, this allows views to be visible or hidden based on end users role." />
+  <orgSetting 
+    minSupportedVersion="9.2.24113.0" 
+    maxSupportedVersion="9.999.9999.9999" 
+    name="AllowOverwriteMaskedDataToDatabase" 
+    isOrganizationAttribute="false" 
+    min="" 
+    max="" 
+    defaultValue="false" 
+    settingType="Boolean" 
+    supportUrl="https://go.microsoft.com/fwlink/?linkid=2264254" 
+    urlTitle="KB 2691237" 
+    description="&lt;b&gt;Warning:&lt;/b&gt; enabling &lt;b&gt;(true)&lt;b/&gt; this setting will allow fields which are masked using secured masking rules to be updated to values containing masked characters. This means the original unmasked data will be overwritten and masked characters will be stored in the database, and the original values will not be able to be recovered by Microsoft. &lt;b&gt;This should only be enabled if this implication is fully understood and acceptable.&lt;/b&gt; When this value is disabled &lt;b&gt;false&lt;/b&gt;, the system protects the unmasked data from being overwritten by failing the update request." />
 </defaultOrgSettings>