400 Bad request after successful password reset #235

New Issue

Open

opened 2026-06-13 17:00:54 +00:00 by colby · 0 comments

colby commented 2026-06-13 17:00:54 +00:00

Copy Link

This just happened. I'm not sure how reproducible it is, but here are the steps (I just don't want to go through them again to confirm):

1. Visit kosmos.org
2. Click "Log in" link
3. Submit username and password guess
4. Repeat step 3 with another password
5. Click the forgot password link
6. Submit email address
7. Open the "Reset password instructions" email from accounts@kosmos.org
8. Click the "Change my password" link
9. Enter new password 2x and submit the form

Expected results:

Successful password reset with success feedback

Actual results:

An HTTP 400 "Bad request" page following successful password reset with a toast (not visible in the screenshot because it was auto-dismissed after timeout) containing the success message.

This just happened. I'm not sure how reproducible it is, but here are the steps (I just don't want to go through them again to confirm): 1. Visit kosmos.org 2. Click "Log in" link 3. Submit username and password guess 4. Repeat step 3 with another password 5. Click the forgot password link 6. Submit email address 7. Open the "Reset password instructions" email from accounts@kosmos.org 8. Click the "Change my password" link 9. Enter new password 2x and submit the form Expected results: Successful password reset with success feedback Actual results: An HTTP 400 "Bad request" page following successful password reset with a toast (not visible in the screenshot because it was auto-dismissed after timeout) containing the success message.

Screenshot 2026-06-13 at 11-57-47 Kosmos Accounts.png

1.1 MiB

raucao added the bug label 2026-06-15 09:52:35 +00:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

master

live

chore/btcpay_expired_paid-late

feature/nostr-onboarding-ruby

feature/nostr-onboarding

feature/import_deno_modules

docs/integrations

feature/ldap_aci

feature/contribution_nav

v0.10.0

v0.9.0

v0.8.1

v0.8.0

v0.7.0

v0.6.0

v0.5.0

v0.4.0

v0.3.0

v0.2.1

v0.2.0

v0.1.0

Labels

Clear labels

integration

btcpay

integration

discourse

integration

ejabberd

integration

email

integration

ldap

integration

lndhub

integration

mastodon

integration

nostr

integration

remotestorage

bug

Something is not working

design

Graphic/visual design

dev environment

Config, builds, CI, deployment, etc.

docs

Documentation

duplicate

This issue or pull request already exists

enhancement

Improving existing functionality

feature

New functionality

good first issue

Dive in, and start contributing

idea

Something to consider

invalid

Not a bug

kredits-1

Small contribution

kredits-2

Medium contribution

kredits-3

Large contribution

on hold

Currently not actionable

ops

Manual IT ops activities

question

Looking for an answer

release

major

release

minor

release

patch

security

All your base are belong to us

ui/ux

User interface, process design, etc.

wontfix

This won't be fixed

No Label bug

Milestone

No items

No Milestone

Assignees

Clear assignees

bkero bumi fsmanuel galfert greg hueso raucao slvrbckt

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: kosmos/akkounts#235