Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

403 when using the password reset link

Description

Steps to Reproduce:

  1. Log into FSE Dry run 1 environment (non-ECS, ECS tenant)

  2. Go to "Users" app

  3. In the first pane, select "Active" checkbox in "Status" accordion

  4. Click on the name of any user in results list in second pane

  5. In selected user's detail view in third pane, click on "Actions" button → Select "Edit" option

  6. Click on "Send reset password email" link

  7. Copy the link from appeared modal

  8. Log out

  9. Paste the copied link in address bar and press “Enter”

Expected Results: Reset password page is opened

Actual Results: 403 error when opening reset password link. Input elements for resetting password are not loaded. Following message is shown on the page: “System error. Please wait a few minutes and try again.“ (waiting for even a long time does not help).
Specifically, POST /bl-users/password-reset/validate call fails with 403 status and the following response body:

Additional Information:

  • NOT reproducible on evrk2, Snapshot

 

CSP Request Details

None

CSP Rejection Details

None

Potential Workaround

None

Attachments

2

Checklist

hide

Activity

Show:

Yauhen Viazau January 6, 2025 at 9:27 AM

- this issue is NOT active on Eureka R Bugfest (ECS, non-ECS). It also was not active on Eureka Snapshot before (it is currently not available)

Craig McNally January 2, 2025 at 9:45 PM

is this reproducible in ramsons eureka bugfest? Is it environment-specific?

Yauhen Viazau December 12, 2024 at 12:57 PM

Still active on FSE Dry run 1 after QCSP5/6/7 updates

Yauhen Viazau October 2, 2024 at 8:55 AM

Tested on https://crs-sandbox2.int.aws.folio.org/ after Q CSP4 update
The following issue is still active

403 error when opening reset password link. Input elements for resetting password are not loaded. Following message is shown on the page: “System error. Please wait a few minutes and try again.
POST /bl-users/password-reset/validate call fails with 403 status and the following response body:

Yauhen Viazau September 20, 2024 at 10:38 AM

Cannot Reproduce

Details

Assignee

Reporter

Labels

Priority

Story Points

Sprint

Development Team

Eureka

Release

Ramsons (R2 2024) Bug Fix

RCA Group

Not a bug

TestRail: Cases

Open TestRail: Cases

TestRail: Runs

Open TestRail: Runs
Created June 14, 2024 at 11:32 AM
Updated January 28, 2025 at 1:51 PM
Resolved January 6, 2025 at 2:23 PM
TestRail: Cases
TestRail: Runs