Starting this week, we’re rolling out some changes to help ensure the people subscribing to your status pages are actually real people. These changes will help make your status page less vulnerable to fraudulent subscribers.
Specifically, we’re making the following changes:
All SMS subscriptions will require a double opt-in confirmation
All U.S. subscriptions are initiated via short-code and these subscriptions require double opt-in by replying “YES”. This is the existing behavior, there is no change for these subscriptions.
SMS subscriptions for all other supported countries are initiated via long-code and historically, this has been done without double opt-in. Starting this week, these subscribers will be required to double opt-in by tapping a link to confirm their subscription.
Users filling out the subscription form will need to to pass a CAPTCHA verification
We’re implementing Google’s reCAPTCHA for all self-serve subscriptions. Users that Google identifies as “bot-like” will be required to pass a CAPTCHA challenge. Most real (human) users won't be interrupted by the CAPTCHA challenge.
We are removing the Status API subscription endpoints
Historically, the Status API has had endpoints for creating a subscriber
(POST to /api/v2/subscribers.json)
and updating a subscriber
(GET / PATCH / DELETE to /api/v2/subscribers/:subscriber_id.json)
We're removing both of these endpoints as these methods now both exist in the Manage API. (We’ve introduced a new endpoint for updating a subscriber in the Manage API).
If you need to manage subscribers using the API, please use the following endpoints noted in our Manage API docs:
Conclusion
All of these changes are being made to protect your page from receiving bogus or fraudulent subscribers. If you have any questions about these changes, please comment below or contact our support team.
3 comments