Broken Email Recovery

[MithrandirCraft]

This system is more than often broken. Still broken on Authme 5.1 SNAPSHOT (One of the latest dev builds)

Configuration details: http://hastebin.com/iyucuzebij.xml

In Authme 3.5. The email registration commands would always give an internal error (This was fixed in 5.0). In authme 5.0 & 5.1, the password is changed, but the e-mail is never recieved for some reason. (I've tried this my self without success, and I've also recieved reports from players.)

---

Current authme version: 5.1 - SNAPSHOT (One of the latest devs) Current Minecraft-Spigot version: 1.8.8

---

Original Bukkit Ticket (Outdated but commented on): http://dev.bukkit.org/bukkit-plugins/authme-reloaded/tickets/973-broken-e-mail-recovery/

[kxjhwbb]

I use authme 3.5, send email success. but use AuthMe-5.0-beta3.jar，seems lost something.. com/sun/mail/util/MailLogger，I can see this in 3.5 and 5.0-beta2，5.0-beta3 delete at all... and only can send email in 3.5， can't send in 5.0 beta2， show error in beta3！

[sgdc3]

Try latest dev build: http://ci.xephi.fr/job/AuthMeReloaded-Dev/

[sgdc3]

@MithrandirCraft @kxjhwbb

[Xephi]

Hi ! You can use latest build with new email system

By the way, google use a restriction to application that can access to your account To allow external application to work, we need to set config like that into your gmail account settings:

[Xephi]

i will add a way to connect via oauth2 also

[MithrandirCraft]

I'm currently recieving a generic missing permission message every time I try to use /email recover

The message still shows up even if I give myself the permission (which shouldn't be necesary, if I'm already OP.)

Therefore, I cannot test email recovery due to this impediment.

[kxjhwbb]

@sgdc3 HI, sorry i'm late, I have test it, no error but show dont have Permission , I have gave all permission to the test player :)

[Xephi]

have you try to use authme.email.recover permission ?

[kxjhwbb]

no.. I just add . and set the player op last time.. I test authme.email.recover tonight , still can't work , nothing show in console but can see "an unexcepted error occurrrd" in client, something wrong been catch but not show ? by the way , when I was testing, a maxinum number of reg print, so I change the config "maxRegPerEmail" + "maxRegPerIp" and type /authme reload, but it does't work until i type /reload :P

[MithrandirCraft]

@Xephi I already tried that permission. Result is the same, which is comprehensible if you think that I was trying this with an OP name, and should therefore already have all permissions.

[MithrandirCraft]

Hi. I tried the latest version which should fix the permission issues.

I finally managed to send a recovery email, but I never recieve it. Did anyone else try?

[sgdc3]

Retry now ;)

[MithrandirCraft]

Still not fixed.

[MithrandirCraft]

Hi!

Testing with Authme dev build 557 as requested by @Xephi:

1. I sent an email recovery request, but I didn't recieve any email.
2. I've reset the password to how it was, after having sent the recovery email to limbo.
3. Entering my reset password doesn't even return "invalid password" it just keeps asking me to log in. This looks like a new issue in it self, and it never happened before.

[Xephi]

Can you test with the latest devbuild ?

[MithrandirCraft]

I think I already did, with no success. I'm going to keep testing ASAP.

In any case, this new configuration is weird. I don't know if its because it's still in development, but having a message edited from an html file, and the rest of email configurations on the main config is just strange...

I could perfectly have something badly configured with all these changes. You already saw my configs, so if you didn't spot anything wrong... I'll keep testing, maybe the email I used two years ago is a bit abandoned or someting xD

[sgdc3]

Can you post your config? I'll try to clean it up ;)

[Xephi]

i can't reproduce any bug with gmail account for myself, actually it works well with port 465 and 587 :/

[MithrandirCraft]

Thank you @sgdc3 :)

.html file: http://hastebin.com/ojagurakec.xml Authme regular config: http://hastebin.com/uqujuxarib.vbs

[sgdc3]

email: http://hastebin.com/ayopinuqax.xml

[sgdc3]

config (enabled verygames ip check, it should have been fixed) http://hastebin.com/udemoconez.sm

[sgdc3]

check also if spawn loc works with this config

[MithrandirCraft]

I provably won't be using the email feature, as I am not sure I have the correct service for the IP checks to work.

[sgdc3]

Which service are you using?

[Xephi]

@MithrandirCraft if your server don't use ipClean from Verygames, i don't think you need it :) it's useless for you ;)

For the email feature, test like that : set smtp to : smtp.gmail.com Use your gmail address which you have enable the low security application system on google config Set the port to 465 Cross fingers :')

[sgdc3]

@Xephi we should rename the verygames option in the configuration, too generic

[MithrandirCraft]

I noticed my email was blocking Authme from using it, because it considers it a "Less secure application".

So I allowed less secure applications to connect to my gmail, but I still don't recieve any email for recovery (on hotmal registred email). At least I don't get any blockage messages (on my gmail recovery email).

Does anyone want to try recovering their password?: sv1.mithrandircraft.es

[Xephi]

Finally Done !

That was a problem with server blacklisted in the smtp server to solve it, we use our own smtp server from the domain name provider ;)