Is normal that I have duplicated templates in the email settings?
This bug was found because the confirmation link of adding a second email allways returned a 404, then we found that many entries in the templates of email were wrong, so duplicated subjects with similar bodies, they seem to be old contents not replaced?
On the email confirmation issue, I have one that uses a wrong (old?) link and another one that is the correct one, why I have 2 with the same name and why I cannot delete the wrong one? is this a bug in Discourse?
I was confused by the two confirm new email templates too. But they are slightly different. One is sent when an admin adds a new email address to a user’s profile, and the other one is sent when they do it themselves. The last line is different.
Confirm your new email address for %{site_name} by clicking on the following link:
%{base_url}/u/confirm-new-email/%{email_token}
If you did not request this change, please contact a [site admin](%{base_url}/about).
Confirm your new email address for %{site_name} by clicking on the following link:
%{base_url}/u/confirm-new-email/%{email_token}
This email change was requested by a site admin. If you did not request this change, please contact a [site admin](%{base_url}/about).
I think deleting one would break one of the emails sent.
My templates also both use the same link. Maybe yours differ because you had customized the template before.
I wonder why parts of the link are customizable by the template. If the template only used %{confirmation_link}, from my understanding, the link wouldn’t become outdated even if the template was customized.
Not exactly, I have multiple duplicated ones with similar contents, on my screenshot example (maybe not visible) one of the links points to “confirm-new-email” (correct) and the other to “authorize-email” (which is a broken / unexisting link)
Can you show us a few more screenshots (or a video) to explain the problem you are experiencing? You need to provide more information for us to be able to help you.
Maybe the answer is simplly for you to revert all email templates to the default and then start over with customizing them if you really deem it necessary.
On the email settings admin page, click into each email template and then select the Revert Changes button. If it is at the default already, there is no revert changes button.
I watched that youtube video and I see many of the email templates are different from what is the current default. Can you confirm you have been keeping your site up to date?
It looks like you had customized one of them by adding
Sometimes our emails are marked as SPAM, mark this email as important and drag it to your Principal section to make the delivery more reliable. This will also help other users to receive notifications correctly. Remember that you can always unsubscribe.
That is not part of any of the default templates. So I guess you have the same problem as in this topic Confirmation email link (after change) is broken ("Oops!") due to bad email customization - #5 by gerhard. Whenever you customize a text Discourse won’t overwrite it when the original is updated. The software can’t know how to “merge” your customizations with the new changes.
So you need to update your customized text on your own, or reset it to the default text as Tobias suggested, and then customize it again if you want to.
But as I explained before Discourse uses both templates. It won’t send the other one if you deleted one of them. It will still use that template which was created for the current situation. So whenever the user changes their email it uses the template for that. The other template is used when the admin changes the user’s email. Different situations require different texts, so there are different templates.
Also in the case of the 2 templates for ‘account silenced’ and ‘account suspended’ both templates are needed and it would be a bad idea to delete one. The two templates have slightly different use cases: one is sent when the user is silenced or suspended for a limited time. That’s why it includes the date. The other template is used when you choose to silence/suspend the user forever. In this case, the email doesn’t tell the user that they are “suspended untill the year 3025”. That would be silly. So there is a second template without the placeholder for how long the account is suspended/silenced.
Im cleaning up all the modified templates one to one, but this particular one “Reviewables Reminder” gives me an error, im the only one to have this issue?
It is normal that discourse installations receives spambots that way? I don’t think so… but why changing this confirmation email makes spambots to attack the forum?
What is even more confusing is that I don’t see any logs from them, in fact there’s no “new registered users” (even more confusing the relation of that confirmation link here):
So where these spambots come from? looking at one of them it looks like it was created in 2020, ok…
Question: when the post is flagged (so I added many keywords on the flag list), what is the correct action for the spammy accounts? (delete all his posts, delete account, delete traces, etc).
On the other hand I see that the user has 11 posts created, on his profile I see the option to “delete all posts” but not to “see” them (very needed link), how I can see which posts the user created? In fact it looks to be a legit user (on his first post from 2020, so the account of this user was hacked on discourse?)
Back to the topic, I still confused what can be the relation of the confirmation link with these spam actions, but I just seen that a NEW user was created 32 minutes ago trying to spam gibberish:
