User get deactivated, need to know why

Pekkanen · December 10, 2019, 7:46am

Hi,

I have a bot user that does a bunch of tasks via the api, it is a trusted user and an admin user, and it has been deactivated twice this week for some reason. I cannot see anything in the staff action logs, or the error logs that hints as to why the user was deactivated.

Can you help me, either with information about which logs to look into, or possible causes a user gets deactivated by the system.

Cheers
Pekka

Pekkanen · December 10, 2019, 10:20am

I think it may have been the InvalidateInactiveAdmins script, looks like that will not generate a log entry. Can anyone confirm since i’m not famliar with the details of the source.

david · December 10, 2019, 10:39am

Yes that’s correct. We should certainly look at adding a log for that - it can be very confusing if you are not aware of the feature. I will add it to my todo list.

If you’re running the latest version of Discourse, then we have recently added some extra checks before deactivating admin accounts:

https://github.com/discourse/discourse/commit/836b3f4d82dfc610574db93cfd1d86e4064d4062

If the user has created posts, or has a recently used API key attached to it, then it will not be deactivated. Note that the API key must be specifically attached to this user, and not an “all users” key.

Pekkanen · December 10, 2019, 10:40am

Yes, i saw that, i am on an earlier version unfortunatley.

david · December 10, 2019, 10:41am

I would recommend updating, but if you can’t then you have a couple of options:

‘Impersonate’ the account, so it won’t be deactivated for another year
Set invalidate_inactive_admin_email_after_days to a higher number, or 0 to disable

Pekkanen · December 10, 2019, 10:42am

We did the second one, waiting a few days to see if it happens again and root cause was wrong

Pekkanen · December 10, 2019, 10:44am

We got into a lot of issue last time we updated with how flagging works, so we will not take updates unless we have no other option

codinghorror · December 13, 2019, 3:10am

I hope you like security vulnerabilities, then

Pekkanen · December 13, 2019, 8:44am

I realize there are issues with not taking updates, our use of discourse is not standard and the acual discorse server is not accessed by the users only used as a backend, so I think we are good for now.
That our users are mad because behavior has changed and we cannot undo the change since the team does not want to add an option for the legacy behavior is a bigger issue to us

david · January 28, 2020, 12:17pm

Done per FEATURE: Add message to log when admins are automatically deactivated · discourse/discourse@a9d0d55 · GitHub

david · January 29, 2020, 6:00pm

This topic was automatically closed after 29 hours. New replies are no longer allowed.

Topic		Replies	Views
Deactivated users are sometimes not being deactivated Support	5	481	September 24, 2024
Existing users cannot log in, must deactivate then reactivate their account Support	4	529	November 23, 2021
Deactivating a user causes account to be deleted? Support	15	1603	June 8, 2024
User keeps getting reverted to inactive Support	9	720	July 29, 2023
Internal Server Error after User is logged out by Admin Bug	6	1375	May 5, 2018

User get deactivated, need to know why

Related Topics