Skip to:
Content

BuddyPress.org

Changes between Initial Version and Version 3 of Ticket #6049


Ignore:
Timestamp:
11/27/2014 10:00:02 PM (10 years ago)
Author:
r-a-y
Comment:

Maybe pass a var through to the onpage form via $_GET which populates a hidden input..

That's an interesting idea. I kinda like it!

Instead of the hidden input, I would just populate the existing text field that shows up at example.com/activate/.

Putting this back in the "Awaiting Review" milestone.

Legend:

Unmodified
Added
Removed
Modified

  • Ticket #6049

    • Property Status changed from new to reopened
    • Property Component changed from Core to Members
    • Property Summary changed from When certain spam filters are installed account gets activated due to spam filters following external link in the email.. to Do not activate user accounts automatically with one click
    • Property Keywords dev-feedback added
    • Property Type changed from defect (bug) to enhancement

  • Ticket #6049 – Description

    initial v3  
    11Just had to fix this on a shared hosting account @ https://www.a2hosting.com, they run a spam filter called https://www.barracuda.com/products/spamfirewall
    22what this does it follow external links in any outgoing emails sent from the server in question. So when buddypress sends out it's activation link like so : http://example.com/activate?key=7678978978978789 it gets clicked on by the spam filter activating the account and rendering the activation link useless...
    3 I think this is the ongoing issue with invalid activation links that some users are experiencing. I suggest we move the activate link to a actual button on page that needs to be physically clicked?
     3I think this is the ongoing issue with invalid activation links that some users are experiencing.
     4
     5I suggest we move the activate link to a actual button on page that needs to be physically clicked?
    46My temp fix was to add a deny from all into the .htaccess denying the server access to it's self.