Uploaded image for project: 'Jira Platform Cloud'
  1. Jira Platform Cloud
  2. JRACLOUD-65287

The the os_username parameter has been blocked but it is still used in the users onboarding notifications

XMLWordPrintable

      Summary

      In the notification sent to the users generate their first password, the button Set my password does not work since it contains the os_username url parameter that has been blocked as documented in the JIRA and Confluence Cloud os_username and os_password embedded in URL no longer available KB article.

      Indeeed, when clicking on the "Set my Password" button the users are sent to a link like the below one:

      Environment

      JIRA Cloud 1000.747.0

      Steps to Reproduce

      1. Invite a new user to the instance, e.g. by using the REST API endpoint /rest/api/latest/user (sending the parameter "notification":"true").
      2. The user that got invited opens the "Account created" notification and click on the Set my password button

      Expected Results

      The link open correctly and the user is able to set the password

      Actual Results

      The below message is returned:

      REQUEST DENIED. Refer to https://confluence.atlassian.com/display/CLOUDKB/JIRA+and+Confluence+Cloud+os_username+and+os_password+embedded+in+URL+no+longer+available for details.

      Workaround

      Depending if your instance is using Atlassian Accounts or not, you can either:

          Form Name

            [JRACLOUD-65287] The the os_username parameter has been blocked but it is still used in the users onboarding notifications

            Mateusz Marzęcki made changes -
            Remote Link New: This issue links to "Page (Confluence)" [ 726208 ]
            Monique Khairuliana (Inactive) made changes -
            Workflow Original: JIRA Bug Workflow w Kanban v6 - Restricted [ 1645175 ] New: JAC Bug Workflow v3 [ 3362163 ]
            Status Original: Resolved [ 5 ] New: Closed [ 6 ]
            Pawel Drygas (Inactive) made changes -
            Remote Link New: This issue links to "Page (Confluence)" [ 437712 ]
            Shawn C made changes -
            Remote Link Original: This issue links to "Page (Extranet)" [ 259386 ]
            jonah (Inactive) made changes -
            Component/s New: Events & Notifications - Email [ 46553 ]
            Component/s Original: Events & Notifications - Email [ 10471 ]
            Key Original: JRA-64048 New: JRACLOUD-65287
            Affects Version/s New: 1000.747.0 [ 69750 ]
            Affects Version/s Original: 1000.747.0 [ 66447 ]
            Project Original: JIRA (including JIRA Core) [ 10240 ] New: JIRA for Cloud [ 18514 ]
            Mark Lassau (Inactive) made changes -
            Resolution New: Fixed [ 1 ]
            Status Original: In Progress [ 3 ] New: Resolved [ 5 ]

            Mark Lassau (Inactive) added a comment -

            Fixed by changing the redirect rules to only look for os_password

            Mark Lassau (Inactive) added a comment - Fixed by changing the redirect rules to only look for os_password
            Confluence Escalation Bot (Inactive) made changes -
            UIS - Server New: 1
            Confluence Escalation Bot (Inactive) made changes -
            Support reference count Original: 2 New: 4

            Dario B added a comment -

            mlassau The password reset email does not use the os_username parameter and it works fine.

            I have just tested it and I can confirm.

            Dario B added a comment - mlassau The password reset email does not use the os_username parameter and it works fine. I have just tested it and I can confirm.

              abusch Antoine Büsch (Inactive)
              dbonotto Dario B
              Affected customers:
              1 This affects my team
              Watchers:
              7 Start watching this issue

                Created:
                Updated:
                Resolved: