How to clear Captcha from the Bamboo database
プラットフォームについて: Server および Data Center のみ。この記事は、Server および Data Center プラットフォームのアトラシアン製品にのみ適用されます。
Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.
*Fisheye および Crucible は除く
本記事で説明している手順は、現時点でのものとなります。そのため、一部のお客様で特定の状況下で動作したという報告がありますが、正式にサポートされているわけではなく、お客様の特定のシナリオで動作することを保証するものではありません。
本番環境での実施の前に一通り非本番環境で検証し、成功しなかった場合にはサポートされている代替案にフォール バックしてください。
要約
Bamboo system administrators can configure Bamboo to block automated login attempts. Once a certain number of failed login attempts has been reached (the default is three) Bamboo's Captcha feature will be activated. When Captcha is activated, users will need to recognize a distorted picture of a word and must type the word into a text field. However, rather than having each user try and solve the Captcha (to be able to log in again) it is possible to clear Captcha in bulk through the database.
環境
All Bamboo versions.
ソリューション
データベースの変更を行う場合は必ず事前にバックアップを取得してください。可能な場合は、まずステージング サーバーで SQL コマンドの変更、挿入、更新、または削除を行うようにします。
Finding users that have been locked out
Start by fetching a list of user accounts that are currently locked out from the Bamboo database:
select * from AUTH_ATTEMPT_INFO where AUTH_COUNT >= <maxFailedLoginAttempts>;Replace <maxFailedLoginAttempts> with the number of maximum failed login attempts allowed in Bamboo. The AUTH_COUNT column holds the number of failed login attempts for a particular user. Find the number set for the max failed login attempts inside the Bamboo administration > Overview > Security > Security settings page or the <bamboo-shared-home>/configuration/administration.xml file.
Clearing Captcha for specific user accounts
- Look at the USER_NAME column in the result of the query above to determine what user accounts Captcha should be cleared and take note of their IDs.
- In order to clear the Captcha update AUTH_COUNT back to 0 for the targeted user accounts with the following update query.
update AUTH_ATTEMPT_INFO set AUTH_COUNT = 0 where ID in (92839,67890,10382,58440);Replace the IDs in the query above to match the IDs of the user(s) in the list from the previous step. It is possible to provide multiple IDs to the query separated by comma.
Clearing Captcha for ALL user accounts
Alternatively it is possible to reset the Captcha for all users with the following update query.
update AUTH_ATTEMPT_INFO set AUTH_COUNT = 0;