Page MenuHomePhabricator
Create Task
Maniphest T6354

Register a new user redirect to a png file instead of email confirmation page
Closed, DuplicatePublic
Actions

Description

When registering a new user, I get redirected to something like :
http://lab.apertus.org/file/data/nq5pcrecelctlkyheun5/PHID-FILE-gyk3627n7h7evskn2c6n/project.png

  • The png file is shown instead of the email verification dialog.
  • The user is still correctly registered

Is it an issue with our install or a general phabricator issue?

Also reported in https://phabricator.wikimedia.org/T1138

Related Objects

Event Timeline

philippe.jadin created this task.Oct 20 2014, 3:18 PM
philippe.jadin raised the priority of this task from to Needs Triage.
philippe.jadin updated the task description. (Show Details)
philippe.jadin added a project: Phabricator.
philippe.jadin added a subscriber: philippe.jadin.
chad added a subscriber: chad.Oct 20 2014, 3:27 PM

I'm not able to reproduce this issue and don't see any other complaints.

qgil added a subscriber: qgil.Oct 20 2014, 3:42 PM

http://lab.apertus.org/file/data/nq5pcrecelctlkyheun5/PHID-FILE-gyk3627n7h7evskn2c6n/project.png

That png doesn't work?

Anyway, if this is what I think it is, I have seen this problem in the Wikimedia instance, and I have heard a couple of users reporting something similar as well. When it happened to me, I thought that I had clicked some icon accidentally, but didn' pay too much ttention because I was actually logged in a looking forward to test my new username.

I think this is why there are not more reports. Since this only happens (sometimes) during a new account creation, you forget about it after you are registered.

philippe.jadin added a comment.Oct 20 2014, 3:53 PM

Sounds exactly what we are experiencing. I'll consider this as low priority on our side, and unfortunately, I cannot provide more help on how to reproduce the bug, since I just tried registering with multiple providers again and got no problem this time...

epriestley closed this task as Resolved.EditedOct 20 2014, 4:02 PM
epriestley claimed this task.

This is probably expected behavior. If you access a page which you need to log in to view, we try to send you back to that page after you log in (or register). Specifically, the expected behavior is:

  • User follows a link to view some resource (a task, review, commit, image, etc).
  • User needs permissions to view it, so we set a cookie tracking what they were trying to look at and then prompt them to log in or register.
  • User logs in or registers.
  • User is then taken to the thing they were originally trying to access.

The common case is that you're trying to view a task and aren't logged in. After you log in, we take you to the thing you were trying to look at. This case is more roundabout, but I think it's equally valid and the behavior is reasonable overall.

philippe.jadin added a comment.Oct 20 2014, 4:38 PM

In this particular case it's not what happens.

  • go to homepage
  • click the connect button
  • create new account
  • instead of being redirected to the mail confirmation message (with the button to resend email verification), you see the "small wallet" png.

But as I said, I don't understand why sometimes it does that and sometimes not. Only thing different might be a cookie or session set or not. My 2 cents...

philippe.jadin reopened this task as Open.Oct 23 2014, 11:50 AM

Could you try this :

  • use a private chrome window just to be sure
  • go to lab.apertus.org
  • register using facebook or normal registration
  • see where you are redirected -> a png file instead of the "please confirm your email" message

Since at least someone else reported this bug outside our install, I assume it's either some specific config we have in common, or a bug

qgil added a comment.Oct 23 2014, 2:48 PM

Reproduced. :)

  1. I was in the homepage where everything looked fined
  2. pressed the power button
  3. logged in using Google ID
  4. Filled the account creation fields and saved
  5. Got this:

http://lab.apertus.org/file/data/xz2mq4n5mucwurjnxuug/PHID-FILE-zm65ayyd3m3togauz3mv/project.png

Screenshot_from_2014-10-23_07:45:59.png (768×1 px, 36 KB)

philippe.jadin added a comment.Oct 23 2014, 2:58 PM

Thanks for trying. Some more details if it helps about our install :

vps/ debian / nginx (with recommended settings from phabricator install) / php fastcgi / mysql -> nothing special afaict, but hells being in the details ...

chad removed epriestley as the assignee of this task.Oct 23 2014, 3:19 PM
chad edited projects, added Auth; removed Phabricator.
chad added a comment.Nov 1 2014, 5:50 PM

I have not been able to reproduce this on this install or my local install.

chad added a subscriber: epriestley.Nov 1 2014, 6:18 PM

Whatever auth I try on your server, I get redirected to an image. For Google and Facebook, it redirected me to the Project Icon. For GitHub, it redirected to my GitHub image. I did a Charles to see if I could spot anything, but maybe @epriestley knows how to read these better than I.

pasted_file (286×1 px, 250 KB)

chad added a comment.Nov 1 2014, 6:20 PM

On the last redirect, you can see COOKIE got set to redirect to the image.

pasted_file (305×1 px, 162 KB)

chad added a comment.Nov 1 2014, 6:23 PM

My thought here is, Phabricator on the initial auth screen is trying to load the image resource when you register, and it's getting set in SESSION. So when you do finally auth, you get redirected to it.

epriestley added a comment.Nov 1 2014, 6:23 PM

I have a theory on what's going on here but need to poke at it.

epriestley claimed this task.Nov 1 2014, 6:24 PM
chad added a comment.EditedNov 1 2014, 6:29 PM

Also @philippe.jadin if you could delete my test accounts there, it would be so nice. ?

chad triaged this task as Normal priority.Nov 2 2014, 10:24 PM
philippe.jadin added a comment.Nov 2 2014, 10:33 PM

@chad you have been successfully destroyed :-)

qgil updated the task description. (Show Details)Nov 6 2014, 11:30 PM
qgil added a project: Wikimedia.Nov 6 2014, 11:32 PM

As we approach Wikimedia 's Bugzilla to Phabricator migration (planned to start on Nov 21), more users are registering to our instance and we hear more about "suitcase icon" cases. Today we got a user bothered enough to file a bug: https://phabricator.wikimedia.org/T1138

chad added a project: Support Impact.Nov 11 2014, 11:49 PM

This has Support Impact

epriestley added a comment.Nov 12 2014, 2:51 AM

Theory here is that the image isn't being created with the right permissions when we pull it from the authentication service. Then the user tries to load it, hits a 404 in the background, and gets a cookie set.

epriestley added a comment.Nov 12 2014, 2:51 AM

Er, not a 404, a permissions dialog.

aklapper added a subscriber: aklapper.Nov 28 2014, 8:20 PM
qgil moved this task from Backlog to Important on the Wikimedia board.Dec 4 2014, 12:53 PM
qgil moved this task from Important to Details on the Wikimedia board.Dec 5 2014, 1:27 PM
epriestley added a comment.May 13 2015, 3:56 PM

I believe T7879 is the root issue here, which will be resolved shortly in connection with T7707.

Herald added a subscriber: jdloft. · View Herald TranscriptMay 13 2015, 3:56 PM
epriestley closed this task as a duplicate of T7879: Profile pictures should have policy settings forced to public/most-open.May 13 2015, 3:56 PM
Phabricator · Built by Phacility