New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Answers to messages contain debug code #374
Comments
The Customer Thread ID and Customer Thread token are added to the title, in order to recognize replies. This is by design for raw SMTP sends, since there is no way to recognize the thread ID otherwise. |
I can't remember to have seen this solved this way by any other organization. It seems to me that there are other ways to solve the issue:
|
I checked some mail from Bax to see how they handle this:
To me such solutions look a lot more elegant. |
It certainly is a more elegant solution, but do note that it adds a security risk since email addresses can't be spoofed and due to the lack of a token. Usually larger stores and services add an inbound domain which is connected to an incoming mail server that receives the replies and parses the messages that can be added to their messaging system. An example is the GitHub mail you just received. If you look at the |
Sorry, I fail to understand what you mean. Why is adding "#ct124 #tcjua3kXPUZ3r0" to an email subject more secure than "[Ticket: 124-jua3kXPUZ3r0]"? |
I think that's a valid point. People are much more used to [] stuff than to ##. |
P.S.: @musicpanda, as you're apparently capable of writing code and look into the issue already, could you perhaps craft a patch? That's be awesome. Rumors say that @firstred is pretty covered in other areas of thirty bees code. |
@Traumflug Maybe when I find time. Migrating one website has cost me already a lot more time than planned. Analyzing bugs close enough to be able to write a decent error report takes a lot of time. The consequence is that I am now far behind with the migration of another much bigger webshop - for which this was meant as a kind of tryout. Anyway, I will only make a comment here on what I think should be changed. I don't do Github. |
Feel welcome to send me patches to mah@jump-ing.de. For my taste, Github is way too complicated, too. |
ok |
Some further experiments: I changed the code and added an escape of the filenames: This escaping works:
However, another problem appeared: the number of entries in the database table: 1893774. Nearly 2 million: everyone of the 13723 file names was 138 times present in the database. This is not the fault of the escape: when I ran another run with the original code I found 1899068. That is even a bit ( 5294) more. Obviously this resulted in an endless backup and a huge backup file. I ended up switching off Apache in order to end the process. |
Wow, nice findings! |
I fail to understand the code that causes the endless loop. What I see is that the function ajaxProcessBackupFiles() in classes/AjaxProcessor.php is called once again, stores again the filelist in the database, deletes the old backup and then starts filling a new one. What is not clear to me is how and from where this function is called. |
Magic at work. PHP And to not make this a tedious test of patience, I'd shorten the file list in PHP to just 100 files and chunk size to 20. Once the process works, this limitation can be reverted. |
Wrong subject. I have put the comments back to thirtybees/tbupdater#9 |
This issue is solved, including its side aspects, isn't it? |
Yes, let's close it |
The system sends messages like:
An answer to your message is available #ct124 #tcjua3kXPUZ3r0
The originating code is line 704 of controllers/admin/AdminCustomerThreadsController.php:
sprintf(Mail::l('An answer to your message is available #ct%1$s #tc%2$s', $ct->id_lang), $ct->id, $ct->token),
"Your message has been correctly sent" has the same problem.
The text was updated successfully, but these errors were encountered: