• Type: Bug
• Resolution: Fixed
• Priority: Low
• Fix Version/s: 3.2.0
• Affects Version/s: 3.3.0-OD-04, 3.2.3, 3.4.0
• Component/s: Accounts (Signup, Invite, Login, Logout, Reset Password)
• Labels:

  • affects-cloud
  • affects-server

1. 

   sdsignup.png

   11 kB

   31/Oct/2016 3:32 PM

[JSDSERVER-4324] Enabling public signup does not display Captcha

Owen made changes - 27/Mar/2019 5:47 AM

Workflow

Original: JSD Bug Workflow v5 - TEMP [ 2305085 ]

New: JAC Bug Workflow v3 [ 3126212 ]

Mauricio Karas (Inactive) made changes - 15/Feb/2019 9:47 PM

Description

Original: {panel:bgColor=#e7f4fa}   *NOTE:* This bug report is for *JIRA Service Desk Server*. Using *JIRA Service Desk Cloud*? [See the corresponding bug report|http://jira.atlassian.com/browse/JSDCLOUD-4324].   {panel} {panel:title=Update as of March 2018|bgColor=#F5F5F5}Several customers have reported that their instances have recently been flooded with spam accounts that appear to be part of a systematic phishing attack, which suggests that the honeypot strategy we’ve been using since JSD 3.2 is no longer effective. This is a slightly different issue to JSD-4324 and JSD-1316 as they were first reported, so to minimise any confusion, *please head to JSDSERVER-5706 for more details*, including two potential workarounds and a guide to cleaning up the spam. On behalf of the JSD server team, we’re sorry for the inconvenience this has caused, and we’ll make a solution available as soon as we can.{panel} {panel:title=Update as of May 2017|bgColor=#f5f5f5} Hi everyone, The fix for this issue was released in JSD 3.2.0. Instead of Captcha, we implemented the honeypot technique to prevent spam bots from creating accounts on the customer portal. Here's more information about it: https://confluence.atlassian.com/display/AdminJIRAServer072/Enabling+public+signup+and+CAPTCHA {panel} h4. Summary Currently when public signup is enabled for both JIRA and Service Desk, Captcha is only displayed from JIRA signup page, not from Customer Portal signup page. h4. Steps to reproduce # Go to JIRA Administration -> System -> General Configuration -> Edit Settings # Change Mode to Public and CAPTCHA on signup to ON # Go to JIRA Administration -> Applications -> JIRA SERVICE DESK -> Configuration -> Turn ON Public signup # Sign up a new account from JIRA and then from Customer Portal h4. Expected behavior CAPTCHA is displayed on both signup pages. h4. Actual behavior CAPTCHA is only displayed on JIRA signup page. It's not available on Customer Portal signup page: !sdsignup.png|thumbnail! h4. Note It seems that CAPTCHA on signup from General Configuration only takes effect on JIRA side, not Customer Portal

New: {panel:bgColor=#e7f4fa} *NOTE:* This bug report is for *JIRA Service Desk Server*. Using *JIRA Service Desk Cloud*? [See the corresponding bug report|http://jira.atlassian.com/browse/JSDCLOUD-4324]. {panel} {panel:title=Update as of March 2018|titleBGColor=#f5f5f5|bgColor=#f5f5f5} Several customers have reported that their instances have recently been flooded with spam accounts that appear to be part of a systematic phishing attack, which suggests that the honeypot strategy we’ve been using since JSD 3.2 is no longer effective. This is a slightly different issue to JSD-4324 and JSD-1316 as they were first reported, so to minimise any confusion, *please head to JSDSERVER-5706 for more details*, including two potential workarounds and a guide to cleaning up the spam. On behalf of the JSD server team, we’re sorry for the inconvenience this has caused, and we’ll make a solution available as soon as we can. {panel} {panel:title=Update as of May 2017|titleBGColor=#f5f5f5|bgColor=#f5f5f5} Hi everyone, The fix for this issue was released in JSD 3.2.0. Instead of Captcha, we implemented the honeypot technique to prevent spam bots from creating accounts on the customer portal. Here's more information about it: [https://confluence.atlassian.com/display/AdminJIRAServer072/Enabling+public+signup+and+CAPTCHA] {panel} h4. Summary Currently when public signup is enabled for both JIRA and Service Desk, Captcha is only displayed from JIRA signup page, not from Customer Portal signup page. h4. Steps to reproduce  # Go to JIRA Administration -> System -> General Configuration -> Edit Settings  # Change Mode to Public and CAPTCHA on signup to ON  # Go to JIRA Administration -> Applications -> JIRA SERVICE DESK -> Configuration -> Turn ON Public signup  # Sign up a new account from JIRA and then from Customer Portal h4. Expected behavior CAPTCHA is displayed on both signup pages. h4. Actual behavior CAPTCHA is only displayed on JIRA signup page. It's not available on Customer Portal signup page:  !sdsignup.png|thumbnail! h4. Note It seems that CAPTCHA on signup from General Configuration only takes effect on JIRA side, not Customer Portal

Owen made changes - 24/Oct/2018 5:21 AM

Symptom Severity

Original: Minor [ 14432 ]

New: Severity 3 - Minor [ 15832 ]

Delan Azabani (Inactive) made changes - 15/Mar/2018 10:02 AM

Link

Original: This issue is a regression of JSDSERVER-1316 [ JSDSERVER-1316 ]

Delan Azabani (Inactive) made changes - 15/Mar/2018 10:01 AM

Link

New: This issue duplicates JSDSERVER-1316 [ JSDSERVER-1316 ]

Delan Azabani (Inactive) made changes - 15/Mar/2018 10:00 AM

Description

Original: {panel:bgColor=#e7f4fa}   *NOTE:* This bug report is for *JIRA Service Desk Server*. Using *JIRA Service Desk Cloud*? [See the corresponding bug report|http://jira.atlassian.com/browse/JSDCLOUD-4324].   {panel} {panel:title=Update as of May 2017|bgColor=#f5f5f5} Hi everyone, The fix for this issue was released in JSD 3.2.0. Instead of Captcha, we implemented the honeypot technique to prevent spam bots from creating accounts on the customer portal. Here's more information about it: https://confluence.atlassian.com/display/AdminJIRAServer072/Enabling+public+signup+and+CAPTCHA {panel} h4. Summary Currently when public signup is enabled for both JIRA and Service Desk, Captcha is only displayed from JIRA signup page, not from Customer Portal signup page. h4. Steps to reproduce # Go to JIRA Administration -> System -> General Configuration -> Edit Settings # Change Mode to Public and CAPTCHA on signup to ON # Go to JIRA Administration -> Applications -> JIRA SERVICE DESK -> Configuration -> Turn ON Public signup # Sign up a new account from JIRA and then from Customer Portal h4. Expected behavior CAPTCHA is displayed on both signup pages. h4. Actual behavior CAPTCHA is only displayed on JIRA signup page. It's not available on Customer Portal signup page: !sdsignup.png|thumbnail! h4. Note It seems that CAPTCHA on signup from General Configuration only takes effect on JIRA side, not Customer Portal

New: {panel:bgColor=#e7f4fa}   *NOTE:* This bug report is for *JIRA Service Desk Server*. Using *JIRA Service Desk Cloud*? [See the corresponding bug report|http://jira.atlassian.com/browse/JSDCLOUD-4324].   {panel} {panel:title=Update as of March 2018|bgColor=#F5F5F5}Several customers have reported that their instances have recently been flooded with spam accounts that appear to be part of a systematic phishing attack, which suggests that the honeypot strategy we’ve been using since JSD 3.2 is no longer effective. This is a slightly different issue to JSD-4324 and JSD-1316 as they were first reported, so to minimise any confusion, *please head to JSDSERVER-5706 for more details*, including two potential workarounds and a guide to cleaning up the spam. On behalf of the JSD server team, we’re sorry for the inconvenience this has caused, and we’ll make a solution available as soon as we can.{panel} {panel:title=Update as of May 2017|bgColor=#f5f5f5} Hi everyone, The fix for this issue was released in JSD 3.2.0. Instead of Captcha, we implemented the honeypot technique to prevent spam bots from creating accounts on the customer portal. Here's more information about it: https://confluence.atlassian.com/display/AdminJIRAServer072/Enabling+public+signup+and+CAPTCHA {panel} h4. Summary Currently when public signup is enabled for both JIRA and Service Desk, Captcha is only displayed from JIRA signup page, not from Customer Portal signup page. h4. Steps to reproduce # Go to JIRA Administration -> System -> General Configuration -> Edit Settings # Change Mode to Public and CAPTCHA on signup to ON # Go to JIRA Administration -> Applications -> JIRA SERVICE DESK -> Configuration -> Turn ON Public signup # Sign up a new account from JIRA and then from Customer Portal h4. Expected behavior CAPTCHA is displayed on both signup pages. h4. Actual behavior CAPTCHA is only displayed on JIRA signup page. It's not available on Customer Portal signup page: !sdsignup.png|thumbnail! h4. Note It seems that CAPTCHA on signup from General Configuration only takes effect on JIRA side, not Customer Portal

Delan Azabani (Inactive) made changes - 15/Mar/2018 1:21 AM

Link

New: This issue has a regression in JSDSERVER-5706 [ JSDSERVER-5706 ]

Katherine Yabut made changes - 06/Jun/2017 3:16 AM

Workflow

Original: JSD Bug Workflow v5 [ 2059011 ]

New: JSD Bug Workflow v5 - TEMP [ 2305085 ]

Katherine Yabut made changes - 31/May/2017 12:38 AM

Workflow

Original: JSD Bug Workflow v5 - TEMP [ 2056395 ]

New: JSD Bug Workflow v5 [ 2059011 ]

Katherine Yabut made changes - 31/May/2017 12:35 AM

Workflow

Original: JSD Bug Workflow v5 [ 1956480 ]

New: JSD Bug Workflow v5 - TEMP [ 2056395 ]

Load more older history items