Replies: 5 comments 6 replies
-
It appears as if the link sent in the email is invalid. However, I have followed the logic in the code base and the only option for updating a ticket as an unauthorised user is to close the ticket. NOTE: Allowing public users to add attachments to tickets opens up your site to DOS attacks where the attacker simply writes a script to submit attachments till your server storage fills up and this app is highly unlikely to support that behaviour by allowing public uploads of attachments. |
Beta Was this translation helpful? Give feedback.
-
This is the ticket url from my most recent test ticket: |
Beta Was this translation helpful? Give feedback.
-
What we need is a stack trace, you may need to configure stack trace loggibg to console. Chat gpt can tell you how to do that 😉 |
Beta Was this translation helpful? Give feedback.
-
I appreciate your work on this. I have been distracted by my day job and unable to follow up on my end. But, I hope to get back to it soon. It occurs to me that I should make sure that I have the most up-to-date copy of the software installed and that I should try to reproduce the symptoms using that software. Here are a few questions related to making sure that I have the up-to-date software:
Thanks again for your help. Best, Kevin |
Beta Was this translation helpful? Give feedback.
-
Hi All, I have finally found some time to work on this issue and resolve the problem. Before I resolved it, I discovered that I had a more general problem uploading files to tickets -- even when logged in. I believe that these problems were all related to file permissions in the /media folder. My final solution was to make sure that the media folder was owned by the user who runs the Django Web app. Also, I made sure that the Django Web app and the cron job that does manage.py get_email were both run by the same user. These fixes appear to have resolved my various problems in this area. Thanks everyone for your suggestions. Best, Kevin |
Beta Was this translation helpful? Give feedback.
-
Hi All,
I installed version 1.0 last week. I believe that the new version has different behavior with respect to allowing users who are not logged in to attach files to tickets. I will include files below to help explain the circumstances.
Meanwhile, here is my use case. Users are students taking a Python programming course. We are using PyCharm. When they need coding help, I have told them to zip up their PyCharm project and upload it to a ticket. Despite the fact that django-heldesk to accept .zip files attached to emails, this workflow is not possible for my students because the university removes .zip files from outbound emails. So, the workaround has been for students to open a ticket with an email. Then, when they get the confirmation email from the server, they are to click on the ticket link to bring up the ticket page. Then, they are to navigate to the bottom of the page and attach the .zip file.
I believe that this was working fine before I installed version 1.0. Presently, whenever a user who is not logged in tries to attach a file to a ticket they receive a "500 Server Error" page. In the server log, I see the following message: "There are no public queues defined - public ticket creation is impossible". I can confirm that none of my queues allow public ticket creation. Yet, previously, this did not prevent users from attaching files.
I am going to attach my server log file and sanitized settings files below in case you they might help you understand the problem. Thanks for your help.
Kevin
django_02-error.log
base.py.settings.txt
production.py.settings.txt
Beta Was this translation helpful? Give feedback.
All reactions