I'm locked out of my 6 year old Chipotle account because they now say my email address is invalid when I login. Here is me asking for their help:
I also reached out to them on Twitter but they directed me to this form. I followed up with them on Twitter with what happened in this screenshot but they are now ignoring me.
I have my own domain that uses a specific 2-letter ccTLD - it's a short domain variation of my surname (think "goo.gl" for Google). I've been using it for years, for my email.
Over those years, I have discovered an astonishing number of fuckheaded organisations whose systems insist I should have an email address with a "traditional" TLD at the end.
A few years back I bought a .family domain for my wife and I to have emails at ourlastname.family
That lasted a week because almost every online service wouldn’t accept it. Now we have a .org
My first email address was @k.ro (a free email provider many many years ago) and many websites thought a valid second-level domain name cannot be just one letter
The only useful email validation is "can I get an MX from that" and "does it understand what I'm saying in that SMTP". Anything else is someone that have too much free time.
I'm not aware of any correct email validations. I'm still looking for something accepting a space in the localpart.
Also a surprising number of sites mess with the casing of the localpart. Don't do that - many mailservers do accept arbitrary case, but not all. [email protected] and [email protected] are two different mail addresses, which may point to the same mailbox if you are lucky.
Probably, from what I can see the address in question isn't really that exotic. but an email regex that validates 100% correctly is near impossible. And then you still don't know if the email address actually exists.
I'd just take the user at their word and send an email with an activation link to the address that was supplied. If the address is invalid, the mail won't get delivered. No harm done.
Actually, one of our customers found out the hard way that there is harm in sending emails to invalid addresses. Too many kickbacks and cloud services think you're a bot. Prevented the customer from being able to send emails for 24 hours.
This is the result of them "requiring" an email for customers but entering a fake one if they didn't want to provide their email, and then trying to send out an email to everyone.
Our software has an option to disable that requirement but they didn't want to use it because they wanted their staff to remember to ask for an email address. It was not a great setup but they only had themselves to blame.
I could probably write a RegEx for email format validation that's accurate, but why would I when there are ones already written and readily available that covers all possible legit variations on the standard? I never understood why people insist on writing their own (crap) RegEx for something with as many possible variations they can miss like email...
And that one isn't even a weird edge case! It's a domain with a sub domain, if they can't even cover that case then it's an extra shitty RegEx
Let's see your regex pattern that covers every possible valid email address and rejects all invalid then. It's not remotely as easy as you're making it out to be.
Not saying this isn't a shitty pattern, but you can't make a claim like that.
Even that would be technically incorrect. I believe you could put an A record on a TLD if you wanted. In theory, my email could be me@example.
Another hole to poke in the single dot regex: I could put in fake@com. with a dot trailing after the TLD, which would satisfy "dot after @" but is not an address to my knowledge.
I've had issues with this in using govt emails too. DOD accounts all have multiple dots based on branch and dept. It broke so many systems and emails never went through.
That is 100% a bot, and whoever made the bot just stuck in a custom regex to match “[email protected]” instead of using a standardized domain validation lib that actually handles cases like yours correctly.
Edit: the bots are redirecting you to bots are redirecting you to bots. This is not a bug. This is by design.
They meant that they are intentionally trying NOT to help the customer, hopefully they just give up at some point. (That's why they are redirecting to bots and not to an actual human.)
Modern customer service is about willfully designed layers of broken system engineered specifically to frustrate the majority of people that can't regulate their emotions. It's always a series of about "12 doors" you have to cross through that are exceedingly difficult to pass through. They are designed to sap your energy with the hope that you eventually reach a boiling point, hang up, get distracted, go on with your day and never follow up out of fear of starting the same process again.
Has anyone followed standards properly? There are weird workarounds in Linux's TCP implementation because they had to do the same non-standard workarounds as BSD which was added since there are too many buggy TCP implementations out there that will break if the RFC is followed to the letter...
Nah, it's just a old school chat bot following a predefined flow chart. And in this flowchart someone implemented an improper email check.
It's pretty much the same as if there was just a website with an email field which then complains about a non valid email which in fact is very valid. And this is pretty common, the official email definition isn't even properly followed by most mail providers (long video but pretty funny and interesting if you're interested in the topic).
You can use symbols like [ ] . { } ~ = | $ in the local-part (bit before the @) of email addresses. They're all perfectly valid but a lot of email validators reject them. You can even use spaces as long as it's using quotation marks, like
"hello world"@example.com
A lot of validators try to do too much. Just strip spaces from the start and end, look for an @ and a ., and send an email to it to validate it. You don't really care if the email address looks valid; you just care whether it can actually receive email, so that's what you should be testing for.
My Ameriprise account has its own email address because the fuckers don't believe any email starting with email@ is a real email. I've called them a million times and got them to file a bug, which they did, and then closed as won't fix.
IMO the biggest issue is separating the customer from support people too much, and likely separating the support people from the actual business too much. They throw up that stupid bot in between customers and contacting support because they don't want support people answering the same questions a million times, yet in doing so they just make the customer experience worse. And the bot does a bad job helping people with basic stuff, and a worse job of letting people get actual help from a person when the bot realizes it can't do what the user needs.
The people on Twitter told me to use the website contact form because they don't have any actual connection to the company. I'm guessing they're outsourced and can regurgitate from an FAQ, but they have no ability to escalate to someone with any power.
No, dots are NOT necessary. Actually you do not even need to supply a domain or a top level domain because mails then default to the default system which is usually localhost.
But even for routed mail there doesn't need to be a dot.
There is still valid Bang-Adressing for UUCP routed emails:
!bigsite!foovax!barbox!me
This is a valid email which basically means "send my email to bigsite, from there to foovax, then to barbox, to the user me."
And if you are in a playful mood - mix FQDN and BANG addressing...
A couple of years ago I made Hotmail crash by sending a mail to googlemail.de!hotmail.com!googlemail.com!hotmail.de!googlemail.ca!hotmail.ca!googlemail.fr!hotmail.fr!... [repeated it for 32kByte] ...!myuseraccount - their server literally crashed completely all over the world for like 15 minutes. I am so proud of myself but then it was their fault for not complying to RfC822.
In fact both are optional. With FQDN-Adressing a user without domain defaults to localhost, with Bang-Adressing there is no @ because the last system is left for interpretation of the last receiver and if he consideres it a user, so be it.
I signed up to an insurance company here in Japan with [email protected] and they later changed their rules and I couldn't sign in at all. They told me to open a new account. I didn't want to pay them once let alone twice. Never doing business with them again.
No one wants to pay a person. And your business is worth losing. Because their bot fixes 90 percent of their problems. Not justifying. Just mocking their shitty approach.
The bot may transfer it to an operator if you ask it right.
Or it may not, cause usually in such cases it's made clear initially that you are writing to a bot, and the purpose of that bot is to give the human a summary of what you want, to make it quicker (for them, not for you).
Are you rooted and/or ad blocking at the system and/or network level? It's probably that.
Whenever I have the random "Something went wrong" in an app that doesn't resolve in a day or 2 it's almost always because it has root detection or it's using an API call on a URL that gets filtered somewhere along the line in my adblocking system.
BK app is all fucked whenever I try to redeem coupons unless I disable AdAway
For me BK doesn't allow to add my card (even their web interface does, FFS, so I know it's not my bank or something). But at least I can see the order status (useful when playing board games somewhere near a BK, to not wait there and not to skip things said and dice rolled).
I have enough 7-11 points to buy out several franchise locations, but I can't use them.
I made the account with Facebook, then later deleted Facebook. Since I don't have a Facebook to log in to the app to redeem points, I can't redeem them at all.
I contacted corporate about this, and they say there's nothing I can do.
The fun part is that my still valid email was connected to the now defunct Facebook, so I can't use my email either. Not even to make a new account.
Same deal with my phone number.
So if I ever want a free shitty taquito, I basically need an entirely new Identity.
A lot of oauth2 implementations don't really seem to have a mechanism to change providers or switch to email alone. It's going to be fun when one of the big providers like Facebook or Google decide they don't want to do oauth2 any more and a bunch of their users are suddenly locked out of millions of third party websites.
And this is one of the many reasons that these days I create a @duck.com email address for each website.
My password manager (Bitwarden) happily generates for me both the mail and the password… now instead of having to look up for the unique password for each website I need to look for both the unique password and unique email 🤷
Furthermore if they are incompetent enough to make shitty regexp they are for sure incompetent to keep their db safe from hacking/leaking… and I am fine with a duck.com address being locked, less so with my actual email address
Alot of email verifications, very recently, are now having trouble with verifications in the domain name especially if it has a second period like yours.
Could we please stop with this nonsense that "hey just make your own blahblah".
Yeah, when I have literally 10 minutes between meetings to stuff something into my mouth, I'll sure start to prep my meal.
And on weekends? Fuck that too, I just want to lay on my couch doing nothing. But certainly not my meal.
Incompetent verification is definitely a problem, like they applied the most simplistic concept of 'what's a valid email address'. I had a problem like this with a website that needed an address, trying to sign up for a phone at my new house. My address went like '123123 State Road 533' The name of the road was State Road 533, that is, as in Highway 533. However, the address interpreter read it as a road called State Rd and ignored the 533, and told me the address wasn't found.
I have a .email gTLD and I am frequently told its not a valid domain. Its getting better but apparently many forms only consider .com, .org, .edu etc valid.
I used to have an email address “[email protected]”. I thought it was really cool… until I kept having issues logging into sites that didn’t understand how email worked. I now use “[email protected]”, and I just confuse humans who think I work at their company, and that I don’t understand how email works…
I do that too, but had to add another variable. I use a priority-level or yearly rotating trigger word to pick out messages from spam. Keeps more of the riffraff out and easy to ban old temp addresses.
I tried to start that video, but I got "Failed with error code 1003, see logs for more info". (I don't think I have have access to any logs, so I guess that part isn't for me.) Maybe Chipotle wasn't able to watch it either, and so that's why their system is broken.
Wow. Chipotle are honestly kind of awesome for helping you out like this. It sucks that more companies won't protect their customers from themselves like this.