Ticket #345 (new Feature Request)

Opened 10 years ago

Last modified 10 years ago

Allow CCing the validation email

Reported by: dondruce@… Owned by:
Priority: low Milestone: Not yet assigned to a Milestone
Component: Auth server, Authentication, permissions and access control Version:
Keywords: Cc:

Description

We (MSF) have found that many new users never receive their confirming email within the 20 minutes allocated time. We are told that this is a well documented problem.

I created a Captive Server at home, and when I test and query Postfix, I see that many GMails apparently never leave my captive server. I get a "D37174BC283 716 Wed Jun 13 07:10:16 validation@wifidognetwork (connect to alt1.gmail-smtp-in.l.google.com[72.14.215.27]: Connection timed out)" message.

I think that a useful "new feature" could be added where we have an option to add a .cc copy to all confirmation outgoing emails. We could send them to a monitored email account. This would allow us to easily see if the problem is at the customers end (we see the confirmation .cc copy in our monitored email) or at the server (as above, if the Connection timed out, a copy would not be seen in our monitored email account.

Change History

Changed 10 years ago by benoitg

  • priority changed from normal to low
  • summary changed from Registration email addition to Allow CCing the validation email

Changed 10 years ago by dondruce@…

Andre record this Ticket

Changed 10 years ago by benoitg

  • type changed from Bug report to Feature Request

Changed 10 years ago by dondruce@…

Wifidog community,

Here's a new available patch for people which it interests:

Description: Send a copy of the validation e-mail new users get to an admin, or someone else.

Details: http://dev.wifidog.org/wiki/doc/developer/Patches (see Patch 2)

Limitations: Can send to only one person. That were my needs.

I've completed the patch, and did not implement it in the official version. The reason why I didn't implement that in the official version is because of the overhead I had to go through, and the importance of the feature didn't convince me. Also, the patch is very easy to add. Some people might mistake this reason for lazyness, but it's not.

PATCH DISCLAIMER: These are non supported patches. They are not complicated, but make sure you make a backup copy of the file you're modifying. These patches are not meant to be elegant, are not supported, and should be only applied by programmers that can bring the right changes to the patch (if any needed) depending on the discrepancies they notice. Use these patches at your own risk.

-wad

Changed 10 years ago by dondruce@…

I do not know if this is part of the problem, but some registrations that I receive via the .cc patch appear to show an incomplete logon.

Example of a .cc logon message received

Individual user reportProfileUsername: stephane Email: s.labreche@… Network: default-network Unique ID: cdc99ed9440b9348b027216b18013a2f Member since: Sun 24 Feb 2008 04:52:14 PM EST Account Status: Validation Prefered Locale:

0 ConnectionsNo? information found matching the report configuration0 MAC addressesMAC Count

Changed 10 years ago by dondruce@…

I have on several occasions been witness to logon attempts where the user did not received the validation email when using a hotmail address. These were properly verified.

Is it possible that hotmail scraps the messages, and/or they are placed in the SPAM folder (when lucky) because of the long validations string.

Example

À : msftech2007@… Objet: [MSF] Nouvel utilisateur Date : Sun, 24 Feb 2008 16:52:14 -0500 De : "Système d'enregistrement" <info@…>

Vous recevez ce message parce que l'utilisateur stephane s'est

enregistre ou a fait une demande d'envoi de son courriel de validation.

 http://auth.monteregiesansfil.org/validate.php?user_id=cdc99ed9440b9348b027216b18013a2f&token=3665d2dc9ac49267e9308641218b34d8

Would it not be possible to send a short token in place - perhaps a random "password string" similar to tinyurl that would allow more messages to pass. The record would only have to be maintained for 30 minutes or so.

Perhaps  http://auth.monteregiesansfil.org/Aa19xX39Di (where Aa19xX39Di is a random disposable code good for 30 minutes)

Changed 10 years ago by dondruce@…

Even "Allowed" users .cc copy will not show the Logon location.

Example

Individual user reportProfileUsername: stephane Email: s.labreche@… Network: default-network Unique ID: cdc99ed9440b9348b027216b18013a2f Member since: Sun 24 Feb 2008 04:52:14 PM EST Account Status: Allowed Prefered Locale:

0 ConnectionsNo? information found matching the report configuration0 MAC addressesMAC Count

Note: See TracTickets for help on using tickets.