Good morning - I’m an admin on a hosted (Business tier) forum for a software service, and I am trying to gently encourage more of our users to post to our Discourse rather than emailing me directly by forwarding messages to create new topics.
Unfortunately, my email is a managed Outlook/Office 365 account with Safe Links enabled in Windows Defender, and I have no control over the policies, so when enabling posting-by-email in Discourse and forwarding any messages from my email account, any links contained in the message come out an awful sight in the resulting Discourse topic, wrapped in one of Microsoft’s obfuscated Safe Link URLs (and breaking Discourse’s link previews, etc)
Is there any tool/option on the Discourse side to strip a posted Office365 Safe Link URL back down to the original link? An email setting I am missing or a plugin that could be used to set such a posting policy? I suspect this is just something I’ll have to fix manually when forwarding messages on the Outlook side, but thought it was worth asking.
Since Outlook rewrites URLs, you’ll need to gently encourage them to use Discourse by using Discourse yourself.
Discourse will in many cases follow redirects to get to the URL to produce a onebox, but if that’s not working then I’m afraid that you’ll need to use the Discourse UX rather than you email client to create the topics.
…I do? But since there is a post-via-email feature, that would imply that there are times where it is convenient to do so like, say, hitting “forward” on an existing message rather than having to manually copy-paste between UIs
I would be curious to get input from other business-type users as to whether stripping this entirely violated their security intent. One of the benefits of this feature is a URL can later be deemed “unsafe” and further attempts to click it will be blocked.
On the other hand, forum owners might be grumpy that Microsoft is “tracking all of their forum users activity”.
I can see two sides to an argument here.
A decent approach to take might be:
if a safelinked URL is pasted (on its own or inline)
resolve the onebox normally
if no onebox or title, make the “pretty text” the unwrapped link
the link target should still be the safelinked URL