Closed
Bug 534459
Opened 15 years ago
Closed 15 years ago
Can't reset password.
Categories
(Firefox :: Sync, defect)
Tracking
()
RESOLVED
FIXED
1.0
People
(Reporter: aerobeing, Assigned: Mardak)
References
Details
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 Build Identifier: Weave 1.0b3 When trying to reset password on the weave password reset web-page it says e-mail has been sent, but I receive none. When trying to reset it through the reset password option in the preferences menu, it gives me an error "Account name not on record, maybe it was deleted? EWTF_NO_ACCOUNT". When trying to create an account with that name anew, it says it's already in use. Username: aerobeing Reproducible: Always
I have the same problem. Here is what's in the log : 2009-12-17 11:45:03 Net.Resource DEBUG POST Length: 10 2009-12-17 11:45:05 Net.Resource DEBUG GET request for https://auth.services.mozilla.com/weave-password-reset 2009-12-17 11:45:05 Net.Resource DEBUG POST fail: 301
Updated•15 years ago
|
Assignee: nobody → telliott
Component: General → Server
QA Contact: general → server
Comment 2•15 years ago
|
||
Hrm, this is new. It looks like a client bug - that's not the URL that should be being posted to from the web client (it's the URL for the human interface). Ed, are we pointing at this from somewhere? (The mail issue is separate. We'll look into the email address, but there are always spam filters to deal with)
Assignee: telliott → nobody
Component: Server → General
QA Contact: server → general
Comment 3•15 years ago
|
||
Client points at https://services.mozilla.com/pw/forgot.php which 301s over to weave-password-reset. I guess that's wrong! What should the client point to?
Updated•15 years ago
|
Status: UNCONFIRMED → NEW
Ever confirmed: true
Flags: blocking-weave1.0+
Assignee | ||
Comment 4•15 years ago
|
||
I think we want to point to https://auth.services.mozilla.com/weave-password-reset Probably should update the 1/user and 1/misc paths to 1.0/user and 1.0/misc while we're at it.
Comment 5•15 years ago
|
||
If it's just pointing at a web page, that's fine (the actual address is the one in the log in comment 1). The log made it looks like it was actually making the request through the app, in which case, we have an actual API for doing that when we want to leverage it.
Assignee | ||
Comment 6•15 years ago
|
||
Oh. There's a recaptcha on that page, so just POSTing uid=<username> won't work anymore.
Comment 7•15 years ago
|
||
Yeah, security asked us to add one, to make dictionary attacks harder
Assignee | ||
Comment 8•15 years ago
|
||
http://hg.mozilla.org/labs/weave/rev/45d032224c8d Update the preference to point to the new password reset page on auth.smc, and for now, just open it per mconnor's suggestion. I can't seem to find any bug mentioning the password reset API changed, so I can't mark it as blocking this one or refer to it in the code comment for the patch.
Assignee: nobody → edilee
Status: NEW → RESOLVED
Closed: 15 years ago
Component: General → Firefox UI
QA Contact: general → firefox
Resolution: --- → FIXED
Target Milestone: --- → 1.0
Updated•14 years ago
|
Flags: in-litmus?
Updated•12 years ago
|
Flags: in-litmus? → in-litmus+
Updated•12 years ago
|
Flags: in-moztrap+
Updated•6 years ago
|
Component: Firefox Sync: UI → Sync
Product: Cloud Services → Firefox
You need to log in
before you can comment on or make changes to this bug.
Description
•