How to clear Captcha from the Bamboo database

Related content

  • No related content found

Still need help?

The Atlassian Community is here for you.

Ask the community

Platform notice: Server and Data Center only. This article only applies to Atlassian products on the Server and Data Center platforms.

Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.

*Except Fisheye and Crucible

The steps outlined on this article are provided AS-IS. This means we've had reports of them working for some customers — under certain circumstances — yet are not officially supported, nor can we guarantee they'll work for your specific scenario.

You may follow through and validate them on your own non-prod environments prior to production or fall back to supported alternatives if they don't work out.

We also invite you to reach out to our Community for matters that fall beyond Atlassian's scope of support!

Summary

Bamboo system administrators can configure Bamboo to block automated login attempts. Once a certain number of failed login attempts has been reached (the default is three) Bamboo's Captcha feature will be activated. When Captcha is activated, users will need to recognize a distorted picture of a word and must type the word into a text field. However, rather than having each user try and solve the Captcha (to be able to log in again) it is possible to clear Captcha in bulk through the database.

Environment

All Bamboo versions.

Solution

Always back up your data before performing any modifications to the database. If possible, test any alter, insert, update, or delete SQL commands on a staging server first.

Finding users that have been locked out

Start by fetching a list of user accounts that are currently locked out from the Bamboo database:

select * from AUTH_ATTEMPT_INFO where AUTH_COUNT >= <maxFailedLoginAttempts>;

Replace <maxFailedLoginAttempts> with the number of maximum failed login attempts allowed in Bamboo. The AUTH_COUNT column holds the number of failed login attempts for a particular user. Find the number set for the max failed login attempts inside the Bamboo administration > Overview > Security > Security settings page or the <bamboo-shared-home>/configuration/administration.xml file.

Clearing Captcha for specific user accounts

  1. Look at the USER_NAME column in the result of the query above to determine what user accounts Captcha should be cleared and take note of their IDs.
  2. In order to clear the Captcha update AUTH_COUNT back to for the targeted user accounts with the following update query.
update AUTH_ATTEMPT_INFO set AUTH_COUNT = 0 where ID in (92839,67890,10382,58440);

Replace the IDs in the query above to match the IDs of the user(s) in the list from the previous step. It is possible to provide multiple IDs to the query separated by comma.

Clearing Captcha for ALL user accounts

Alternatively it is possible to reset the Captcha for all users with the following update query.

update AUTH_ATTEMPT_INFO set AUTH_COUNT = 0;

Last modified on Sep 21, 2022

Was this helpful?

Yes
No
Provide feedback about this article

Related content

  • No related content found
Powered by Confluence and Scroll Viewport.