Uploaded image for project: 'Jira Service Management Data Center'
  1. Jira Service Management Data Center
  2. JSDSERVER-1316

Service Desk Cloud - Enabling public signup does not display Captcha

      NOTE: This bug report is for JIRA Service Desk Server. Using JIRA Service Desk Cloud? See the corresponding bug report.

      Update as of March 2018

      Several customers have reported that their instances have recently been flooded with spam accounts that appear to be part of a systematic phishing attack, which suggests that the honeypot strategy we’ve been using since JSD 3.2 is no longer effective.

      This is a slightly different issue to JSD-4324 and JSD-1316 as they were first reported, so to minimise any confusion, please head to JSDSERVER-5706 for more details, including two potential workarounds and a guide to cleaning up the spam.

      On behalf of the JSD server team, we’re sorry for the inconvenience this has caused, and we’ll make a solution available as soon as we can.

      Update as of May 2016

      Hi everyone,
      We've fixed this issue. Instead of Captcha, we implemented the honeypot technique to prevent spam bots from creating accounts on the customer portal. Here's more information about it: https://confluence.atlassian.com/adminjiracloud/enabling-public-signup-780861551.html

      In JIRA Cloud it is not possible to enable or disable Captcha.
      Captcha is automatically enabled when JIRA public signup is enabled.

      However when public signup is Service Desk Cloud is enabled, Captcha is not enabled/displayed.

            [JSDSERVER-1316] Service Desk Cloud - Enabling public signup does not display Captcha

            Owen made changes -
            Workflow Original: JSD Bug Workflow v5 - TEMP [ 2304631 ] New: JAC Bug Workflow v3 [ 3126275 ]
            Owen made changes -
            Symptom Severity Original: Minor [ 14432 ] New: Severity 3 - Minor [ 15832 ]
            Delan Azabani (Inactive) made changes -
            Link Original: This issue has a regression in JSDSERVER-4324 [ JSDSERVER-4324 ]
            Delan Azabani (Inactive) made changes -
            Link New: This issue is duplicated by JSDSERVER-4324 [ JSDSERVER-4324 ]
            Delan Azabani (Inactive) made changes -
            Symptom Severity New: Minor [ 14432 ]
            Description Original: {panel:bgColor=#e7f4fa}
              *NOTE:* This bug report is for *JIRA Service Desk Server*. Using *JIRA Service Desk Cloud*? [See the corresponding bug report|http://jira.atlassian.com/browse/JSDCLOUD-1316].
              {panel}

            {panel:title=Update as of May 2016|bgColor=#f5f5f5}
            Hi everyone,
            We've fixed this issue. Instead of Captcha, we implemented the honeypot technique to prevent spam bots from creating accounts on the customer portal. Here's more information about it: https://confluence.atlassian.com/adminjiracloud/enabling-public-signup-780861551.html

            {panel}

            In JIRA Cloud it is not possible to enable or disable Captcha.
            Captcha is automatically enabled when JIRA public signup is enabled.

            However when public signup is Service Desk Cloud is enabled, Captcha is not enabled/displayed.

            !servicedesk_cloud_signup.png|thumbnail!
            New: {panel:bgColor=#e7f4fa}
              *NOTE:* This bug report is for *JIRA Service Desk Server*. Using *JIRA Service Desk Cloud*? [See the corresponding bug report|http://jira.atlassian.com/browse/JSDCLOUD-1316].
              {panel}

            {panel:title=Update as of March 2018|bgColor=#F5F5F5}Several customers have reported that their instances have recently been flooded with spam accounts that appear to be part of a systematic phishing attack, which suggests that the honeypot strategy we’ve been using since JSD 3.2 is no longer effective.

            This is a slightly different issue to JSD-4324 and JSD-1316 as they were first reported, so to minimise any confusion, *please head to JSDSERVER-5706 for more details*, including two potential workarounds and a guide to cleaning up the spam.

            On behalf of the JSD server team, we’re sorry for the inconvenience this has caused, and we’ll make a solution available as soon as we can.{panel}

            {panel:title=Update as of May 2016|bgColor=#f5f5f5}
            Hi everyone,
            We've fixed this issue. Instead of Captcha, we implemented the honeypot technique to prevent spam bots from creating accounts on the customer portal. Here's more information about it: https://confluence.atlassian.com/adminjiracloud/enabling-public-signup-780861551.html

            {panel}

            In JIRA Cloud it is not possible to enable or disable Captcha.
            Captcha is automatically enabled when JIRA public signup is enabled.

            However when public signup is Service Desk Cloud is enabled, Captcha is not enabled/displayed.

            !servicedesk_cloud_signup.png|thumbnail!
            Delan Azabani (Inactive) made changes -
            Link New: This issue has a regression in JSDSERVER-5706 [ JSDSERVER-5706 ]
            Niraj Bhawnani made changes -
            Remote Link New: This issue links to "Page (Extranet)" [ 333736 ]
            Niraj Bhawnani made changes -
            Remote Link Original: This issue links to "Page (Extranet)" [ 333447 ]
            Niraj Bhawnani made changes -
            Remote Link New: This issue links to "Page (Extranet)" [ 333447 ]
            Katherine Yabut made changes -
            Workflow Original: JSD Bug Workflow v5 [ 2058503 ] New: JSD Bug Workflow v5 - TEMP [ 2304631 ]

              pcora Pedro Cora
              dsjauwmook davy
              Affected customers:
              19 This affects my team
              Watchers:
              27 Start watching this issue

                Created:
                Updated:
                Resolved: