-
Notifications
You must be signed in to change notification settings - Fork 1.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Cannot log in using an email address containing a special character such as a single quote #15480
Cannot log in using an email address containing a special character such as a single quote #15480
Comments
Note: this was fixed in WPiOS via wordpress-mobile/WordPress-iOS#17357 and wordpress-mobile/WordPressKit-iOS#457. |
I could not reproduce this (as of 71f7d9c). I tested using the steps described, and each time I tried, I was able to login using the email with a single quote. I also tried by setting a password on the account (which brought me to a password login after entering the email address). I also tried by using the magic link (from the password flow), and all three methods logged me in successfully. I wonder if this was resolved somehow? The PR linked above is still in draft, so perhaps this was resolved inadvertently via some other changeset. I can try reproducing this on the version it was reported on to confirm that there isn't anything subtly different with the steps I'm using to encounter the issue. |
I tried a few more things, but still did not manage to reproduce this. I tried installing Perhaps there is some back-end change that somehow resolved this? @thehenrybyrd were you able to reproduce this one? If it can no longer be reproduced, perhaps we can close it as resolved. Wdyt? |
I also wasn't able to reproduce it on the Android client (3574ae9), but I've received an error on web (with a different message) using an email address with single quote. The error message on web was:
If the issue is really different like the message makes me think, I agree with @mkevins that something might've changed on the back-end that fixed the special character issue on the clients.
|
My plan next is to try a fix similar to what has been done on iOS as informed here: |
I'm not sure anymore that's a good fix though. I created a new account with this email address on iOS: Everything is successful on iOS, but in the web browser I can't login with the same email address, I'm getting this error when clicking on the button from the login e-mail: Although I could implement a similar fix on Android (there's even a bunch of draft PRs integrated in #15526), this might not be the ideal experience imho. Instead of having this inconsistency between web and the mobile app, I'd rather have the mobile apps not allow entering emails with a single quote. @designsimply & @diegoreymendez (since you've fixed this on iOS), wdyt? EDIT: Shamelessly adding @thehenrybyrd to the list of pinged folks 👀 for a second opinion.
|
Thank you for looking further into this Ovi!
This is indeed strange. I wonder if this means there is another issue hiding here as well 🤔 ? Regarding the possible fixes:
I agree with this, generally: if we can avoid the issue altogether by warning the user at the earliest possible time (I guess account creation) not to use these characters, that might be the best. But, I'm not sure how to handle if users have already created an account like this. Since a few of us are not able to reproduce this, does this mean this is working fine for some users with special characters already, and if so, do these solutions prevent them from logging in? |
Thank you @mkevins for your feedback, I agree we can still have it work on mobile 🙇 , while on the web users can login with a password, which won't block them with the issue when clicking the magic link. I proceeded to implement the same fix we have on |
Hey Ovi 👋 😄
I think your approach on that "refurbished" PR looks good, but I'm still wondering about the users that already use a special character. Would they still be able to login once the characters are URL encoded on the client? I can try to dig up an old account that I had used previously (when I attempted and was unable to reproduce the original issue as reported). I'll try to see if this URL encoding approach causes a regression in such a case, where that account can no longer use the magic link. |
With the latest fix from PR #15526 both Android & iOS are compatible when logging in with an email having a Both scenarios worked successfully:
|
Still have to merge the WP-Android PR |
Steps to reproduce:
Results: Signup allows me to use a single quote special character in an email address when I create an account but then I cannot log in when I try to use that email in the login flow. (6m57s)
Note: The error in this case is a bit odd since it mentions a problem with email that I don't think is relevant and shows the signup screen in the background even though an account already exists at that point for the email being tested.
Error:
Tested signup using
design5279+android'test101821@gmail.com
using WPAndroid 18.3 Play Store version on Pixel 3 Android 11.App logs:
Workaround: Log in to the affected WordPress.com account using a web browser, go to WP Admin > Profile > Get Apps and use the "Email me a log in link" to get a magic login link.
Notes: On the web, it's possible to log in by username instead of email address as an easy workaround. In the iOS app, login is completely blocked by this. In the Android app, there's actually a workaround which is to use the magic login link from the Get Apps page on the web so while it's still a problem for affected users it's not as urgent as it is for the iOS app.
(internal reference: p4a5px-2MC-p2 /hat tip @mdrockwell)
The text was updated successfully, but these errors were encountered: