Bug #89768 Account Email post-verification button throws HTTP:403
Submitted: 22 Feb 2018 13:16 Modified: 22 Feb 2018 13:54
Reporter: Santiago Acosta Email Updates:
Status: Verified Impact on me:
None 
Category:MySQL Websites: bugs.mysql.com Severity:S3 (Non-critical)
Version: OS:Any
Assigned to: CPU Architecture:Any
Tags: email-verification, user-account, website

[22 Feb 2018 13:16] Santiago Acosta
Description:
When verifying a recently created account through the page from the email link (https://profile.oracle.com/myprofile/account/verify.jspx?key=9DD94C4A18EAB6CECAE1C39C95E35...), the resulting page has a Continue button.
After hitting the button a 403 error is thrown with the following message

Error 403--Forbidden
From RFC 2068 Hypertext Transfer Protocol -- HTTP/1.1:
10.4.4 403 Forbidden

The server understood the request, but is refusing to fulfill it. Authorization will not help and the request SHOULD NOT be repeated. If the request method was not HEAD and the server wishes to make public why the request has not been fulfilled, it SHOULD describe the reason for the refusal in the entity. This status code is commonly used when the server does not wish to reveal exactly why the request has been refused, or when no other response is applicable.

How to repeat:
Create a new account.
Wait for the email to arrive.
Click on the email link.
Verify email.
Click the Continue button

Suggested fix:
No idea
[22 Feb 2018 13:54] Miguel Solorzano
Thank you for the bug report.