-
Suggestion
-
Resolution: Unresolved
-
None
-
1
-
15
-
NOTE: This suggestion is for JIRA Service Desk Server. Using JIRA Service Desk Cloud? See the corresponding suggestion.
Problem Definition
In certain environments, agents have access to the inbox of the mail account that Service Desk uses for the mail channel. In this scenario, it is possible for the agent to manipulate customer satisfaction feedback ratings in the event that the customer replies to Closed\Resolved notification containing the satisfaction survey. If the reply includes the quoted body of the survey, the agent can follow the link and change the star rating.
Suggested Solution
Expire the feedback token after initial customer survey completion. Alternatively, disallow agent access to satisfaction feedback survey pages.
- is blocked by
-
JSDSERVER-15583 Low rating CSAT is set unknowingly from the customer mail server client
-
- Closed
-
- is related to
-
JSDSERVER-15137 The feedback token for customer surveys is printed in the access log
-
- Closed
-
- relates to
-
JSDCLOUD-4056 Expire Satisfaction Feedback Token
- Gathering Interest
- links to
Form Name |
---|
[JSDSERVER-4056] Expire Satisfaction Feedback Token
UIS | Original: 2 | New: 1 |
Support reference count | Original: 1 | New: 15 |
UIS | Original: 1 | New: 2 |
Labels | New: ril |
Remote Link | New: This issue links to "Internal ticket (Web Link)" [ 976695 ] |
UIS | Original: 2 | New: 1 |
UIS | Original: 3 | New: 2 |
UIS | Original: 2 | New: 3 |
Link |
New:
This issue is blocked by |
UIS | Original: 1 | New: 2 |