No email being sent for account recovery

Checklist
[ X] I have read intro post: About the Installation Issues category
[ X] I have read the tutorials, help and searched for similar issues
[ X] I provide relevant information about my server (component names and versions, etc.)
[ X] I provide a copy of my logs and healthcheck
[X ] I describe the steps I have taken to trouble shoot the problem
[ X] I describe the steps on how to reproduce the issue

I have two situations were emails are not being sent.

The first is when logging into a new browser. I enter my email address and it says check email. No email is being sent.

The second when doing account recovery “Forgot password”. Again the email is entered and a dialog stating to check email is displayed.

I have checked the passbolt database and nothing is queued.
I have checked the passbolt database and it is not showing that anything was sent
I have checked the email logs and nothing shows there
I have checked syslog for errors and nothing there
I have checked passbolt logs and nothing there
I have opened the javascript console and no errors are appearing there
I have tested the SMTP setup and I do get the test message.

I do not know where else to look to troubleshoot.

Browsers: Firefox and Vivaldi, both current versions.

root~# apt list --installed | grep -E "^passbolt|^php" | grep -E "mbstring|common"

php-common/jammy,now 2:92ubuntu1 all [installed,automatic]
php-mbstring/jammy,now 2:8.1+92ubuntu1 all [installed,automatic]
php8.1-common/jammy-updates,jammy-security,now 8.1.2-1ubuntu2.17 amd64 [installed,automatic]
php8.1-mbstring/jammy-updates,jammy-security,now 8.1.2-1ubuntu2.17 amd64 [installed,automatic]
root:~# sudo -H -u www-data bash -c "/usr/share/php/passbolt/bin/cake passbolt show_queued_emails"

     ____                  __          ____
    / __ \____  _____ ____/ /_  ____  / / /_
   / /_/ / __ `/ ___/ ___/ __ \/ __ \/ / __/
  / ____/ /_/ (__  |__  ) /_/ / /_/ / / /
 /_/    \__,_/____/____/_.___/\____/_/\__/

 Open source password manager for teams
-------------------------------------------------------------------------------
List of queued emails:
+-----------------------------+-------------------------------------------------+-------+---------------------+------+
| Email                       | Subject                                         | Error | Created             | Sent |
+-----------------------------+-------------------------------------------------+-------+---------------------+------+
| Steven.xxxxxxx@mycpy.com    | Kyle shared the password s-XXXXXXXXXXX          |       | 2024-06-04 17:56:11 | 1    |
| Alan.xxxxxxx@mycpy.com      | Kyle shared the password s-XXXXXXXXXXX          |       | 2024-06-04 17:56:11 | 1    |
| justin.xxxxx@mycpy.com      | Kyle shared the password s-XXXXXXXXXXX          |       | 2024-06-04 17:56:11 | 1    |
| Jose.xxxxxxxxxxxx@mycpy.com | Kyle shared the password s-XXXXXXXXXXX          |       | 2024-06-04 17:56:11 | 1    |
| Travis.xxxxxxx@mycpy.com    | Kyle shared the password s-XXXXXXXXXXX          |       | 2024-06-04 17:56:11 | 1    |
| paul.xxxxxxx@mycpy.com      | Kyle shared the password s-XXXXXXXXXXX          |       | 2024-06-04 17:56:11 | 1    |
| jason.xxxxxxx@mycpy.com     | Kyle shared the password s-XXXXXXXXXXX          |       | 2024-06-04 17:56:11 | 1    |
| Christopher.xxxxx@mycpy.com | Kyle shared the password s-XXXXXXXXXXX          |       | 2024-06-04 17:56:11 | 1    |
| Peter.xxxxxx@mycpy.com      | Kyle shared the password s-XXXXXXXXXXX          |       | 2024-06-04 17:56:11 | 1    |
| justin.xxxxx@mycpy.com      | Paul updated the group gggggg                   |       | 2024-05-14 18:00:04 | 1    |
| Travis.xxxxxxx@mycpy.com    | Paul added you to the group gggggg              |       | 2024-05-14 18:00:04 | 1    |
| jason.xxxxxxx@mycpy.com     | Paul updated the group gggggg                   |       | 2024-05-14 18:00:04 | 1    |
| justin.xxxxx@mycpy.com      | Travis just activated their account on passbolt |       | 2024-05-14 17:52:19 | 1    |
| paul.xxxxxxx@mycpy.com      | Travis just activated their account on passbolt |       | 2024-05-14 17:52:19 | 1    |
| jason.xxxxxxx@mycpy.com     | Travis just activated their account on passbolt |       | 2024-05-14 17:52:19 | 1    |
+-----------------------------+-------------------------------------------------+-------+---------------------+------+
root:~# sudo -H -u www-data bash -c "/usr/share/php/passbolt/bin/cake passbolt healthcheck"

     ____                  __          ____
    / __ \____  _____ ____/ /_  ____  / / /_
   / /_/ / __ `/ ___/ ___/ __ \/ __ \/ / __/
  / ____/ /_/ (__  |__  ) /_/ / /_/ / / /
 /_/    \__,_/____/____/_.___/\____/_/\__/

 Open source password manager for teams
-------------------------------------------------------------------------------
 Healthcheck shell
-------------------------------------------------------------------------------

 Environment

 [PASS] PHP version 8.1.2-1ubuntu2.17.
 [PASS] PHP version is 8.1 or above.
 [PASS] PCRE compiled with unicode support.
 [PASS] Mbstring extension is installed.
 [PASS] Intl extension is installed.
 [PASS] GD or Imagick extension is installed.
 [PASS] The temporary directory and its content are writable and not executable.
 [PASS] The logs directory and its content are writable.

 Config files

 [PASS] The application config file is present
 [PASS] The passbolt config file is present

 Core config

 [PASS] Cache is working.
 [PASS] Debug mode is off.
 [PASS] Unique value set for security.salt
 [PASS] Full base url is set to https://syspass.mycpy.com
 [PASS] App.fullBaseUrl validation OK.
 [PASS] /healthcheck/status is reachable.

 SSL Certificate

 [WARN] SSL peer certificate does not validate.
 [HELP] cURL Error (60) SSL certificate problem: unable to get local issuer certificate
 [WARN] Hostname does not match when validating certificates.
 [HELP] cURL Error (60) SSL certificate problem: unable to get local issuer certificate
 [WARN] Using a self-signed certificate.
 [HELP] Check https://help.passbolt.com/faq/hosting/troubleshoot-ssl
 [HELP] cURL Error (60) SSL certificate problem: unable to get local issuer certificate

 SMTP settings

 [PASS] The SMTP Settings plugin is enabled.
 [PASS] SMTP Settings coherent. You may send a test email to validate them.
 [PASS] The SMTP Settings source is: database.
 [WARN] The SMTP Settings plugin endpoints are enabled.
 [HELP] It is recommended to disable the plugin endpoints.
 [HELP] Set the PASSBOLT_SECURITY_SMTP_SETTINGS_ENDPOINTS_DISABLED environment variable to true.
 [HELP] Or set passbolt.security.smtpSettings.endpointsDisabled to true in /etc/passbolt/passbolt.php.
 [PASS] No custom SSL configuration for SMTP server.

 JWT Authentication

 [PASS] The JWT Authentication plugin is enabled.
 [FAIL] The /etc/passbolt/jwt/ directory should not be writable.
 [HELP] You can try:
 [HELP] sudo chown -Rf root:www-data /etc/passbolt/jwt/
 [HELP] sudo chmod 750 /etc/passbolt/jwt/
 [HELP] sudo chmod 640 /etc/passbolt/jwt/jwt.key
 [HELP] sudo chmod 640 /etc/passbolt/jwt/jwt.pem
 [PASS] A valid JWT key pair was found.

 GPG Configuration

 [PASS] PHP GPG Module is installed and loaded.
 [PASS] The environment variable GNUPGHOME is set to /var/lib/passbolt/.gnupg.
 [PASS] The directory /var/lib/passbolt/.gnupg containing the keyring is writable by the webserver user.
 [PASS] The server OpenPGP key is not the default one.
 [PASS] The public key file is defined in /etc/passbolt/passbolt.php and readable.
 [PASS] The private key file is defined in /etc/passbolt/passbolt.php and readable.
 [PASS] The server key fingerprint matches the one defined in /etc/passbolt/passbolt.php.
 [PASS] The server public key defined in the /etc/passbolt/passbolt.php (or environment variables) is in the keyring.
 [PASS] There is a valid email id defined for the server key.
 [PASS] The public key can be used to encrypt a message.
 [PASS] The private key can be used to sign a message.
 [PASS] The public and private keys can be used to encrypt and sign a message.
 [PASS] The private key can be used to decrypt a message.
 [PASS] The private key can be used to decrypt and verify a message.
 [PASS] The public key can be used to verify a signature.
 [PASS] The server public key format is Gopengpg compatible.
 [PASS] The server private key format is Gopengpg compatible.

 Application configuration

 [PASS] Using latest passbolt version (4.8.0).
 [PASS] Passbolt is configured to force SSL use.
 [PASS] App.fullBaseUrl is set to HTTPS.
 [PASS] Selenium API endpoints are disabled.
 [PASS] Search engine robots are told not to index content.
 [INFO] The Self Registration plugin is enabled.
 [INFO] Registration is closed, only administrators can add users.
 [PASS] The deprecated self registration public setting was not found in /etc/passbolt/passbolt.php.
 [WARN] Host availability checking is disabled.
 [HELP] Make sure this instance is not publicly available on the internet.
 [HELP] Or set the PASSBOLT_EMAIL_VALIDATE_MX environment variable to true.
 [HELP] Or set passbolt.email.validate.mx to true in /etc/passbolt/passbolt.php.
 [PASS] Serving the compiled version of the javascript app.
 [WARN] Some email notifications are disabled by the administrator.
 [PASS] The database schema up to date.

 Database

 [PASS] The application is able to connect to the database
 [PASS] 31 tables found.
 [PASS] Some default content is present.

 [FAIL] 1 error(s) found. Hang in there!

All I had to do was give up and I found it. The notification was turned off in the notification section

1 Like