diff --git a/signup/src/org/labkey/signup/SignUpController.java b/signup/src/org/labkey/signup/SignUpController.java
index db2fc50d..127febe0 100644
--- a/signup/src/org/labkey/signup/SignUpController.java
+++ b/signup/src/org/labkey/signup/SignUpController.java
@@ -16,6 +16,7 @@
 
 package org.labkey.signup;
 
+import jakarta.mail.MessagingException;
 import org.apache.commons.lang3.StringUtils;
 import org.apache.commons.validator.routines.EmailValidator;
 import org.apache.logging.log4j.LogManager;
@@ -54,6 +55,7 @@
 import org.labkey.api.security.permissions.ReadPermission;
 import org.labkey.api.settings.LookAndFeelProperties;
 import org.labkey.api.util.ButtonBuilder;
+import org.labkey.api.util.ConfigurationException;
 import org.labkey.api.util.DOM;
 import org.labkey.api.util.PageFlowUtil;
 import org.labkey.api.util.URLHelper;
@@ -62,10 +64,12 @@
 import org.labkey.api.view.HtmlView;
 import org.labkey.api.view.HttpView;
 import org.labkey.api.view.JspView;
+import org.labkey.api.view.LabKeyKaptchaServlet;
 import org.labkey.api.view.NavTree;
 import org.labkey.api.view.WebPartView;
 import org.springframework.validation.BindException;
 import org.springframework.validation.Errors;
+import org.springframework.validation.ObjectError;
 import org.springframework.web.servlet.ModelAndView;
 
 import java.util.ArrayList;
@@ -527,7 +531,8 @@ public class BeginAction extends FormViewAction<SignupForm>
         @Override
         public void validateCommand(SignupForm form, Errors errors)
         {
-            validateSignupForm(form, errors);
+            // All validation happens in handlePost so the order matches SignUpApiAction
+            // (captcha first, then blank-field checks, then email parsing, etc.).
         }
 
         @Override
@@ -559,27 +564,26 @@ public ModelAndView getView(SignupForm form, boolean reshow, BindException error
         @Override
         public boolean handlePost(SignupForm signupForm, BindException errors) throws Exception
         {
-            // Validate with EmailValidator first. ValidEmail(email) will not throw an exception if the domain is
-            // missing from the email. The default domain configured for the server is appended.
-            EmailValidator validator = EmailValidator.getInstance();
-            if(!validator.isValid(signupForm.getEmail()))
+            String kaptchaError = verifyCaptcha(signupForm.getKaptchaText(), signupForm.getEmail());
+            if (kaptchaError != null)
             {
-                errors.reject(ERROR_MSG,"'" + signupForm.getEmail() + "' is not a valid email address.");
+                errors.reject(ERROR_MSG, kaptchaError);
                 return false;
             }
 
-            ValidEmail email;
-            try
+            validateSignupForm(signupForm, errors);
+            if (errors.hasErrors())
             {
-                email = new ValidEmail(signupForm.getEmail());
+                return false;
             }
-            catch (ValidEmail.InvalidEmailException iee)
+
+            ValidEmail email = parseAndValidateEmail(signupForm, errors);
+            if (email == null)
             {
-                errors.reject(ERROR_MSG, iee.getMessage());
                 return false;
             }
 
-            if(UserManager.userExists(email))
+            if (UserManager.userExists(email))
             {
                 // If the user already exists forward them to a page where they can click on a link to recover their password, if required
                 signupForm.setAccountExists(true);
@@ -587,26 +591,23 @@ public boolean handlePost(SignupForm signupForm, BindException errors) throws Ex
                 return false;
             }
 
-            // If the user does not exit in LabKey's core database, check in our temporaryusers table
-            TempUser tempUser = getTempUser(signupForm, email);
-
-            // Send email to the user.
-            ActionURL confirmationUrl = getConfirmationURL(getContainer(), email, tempUser.getKey());
             try
             {
-                User mockUser = new User();
-                mockUser.setEmail(email.getEmailAddress());
-                SecurityManager.sendEmail(getContainer(), mockUser, SecurityManager.getRegistrationMessage(null, false), email.getEmailAddress(), confirmationUrl);
+                createUserAndSendEmail(signupForm, email);
             }
-            catch(Exception e)
+            catch (MessagingException | ConfigurationException e)
             {
-                String systemEmail = LookAndFeelProperties.getInstance(getContainer()).getSystemEmailAddress();
-                errors.reject(ERROR_MSG, "Could not send new user registration email.  Please contact your server administrator at " + systemEmail);
-                errors.reject(ERROR_MSG, e.getMessage());
+                errors.reject(ERROR_MSG, sendEmailErrorMessage(getContainer()));
+                if (e.getMessage() != null)
+                {
+                    errors.reject(ERROR_MSG, e.getMessage());
+                }
                 return false;
             }
 
+            clearCaptcha();
 
+            // Re-render the JSP with the CONFIRMATION_SENT message.
             signupForm.setNewSignUp(false);
             return false;
         }
@@ -641,6 +642,94 @@ private void validateSignupForm(SignupForm form, Errors errors)
         {
             errors.reject(ERROR_MSG, "Email cannot be blank.");
         }
+        if(StringUtils.isBlank(form.getEmailConfirm()))
+        {
+            errors.reject(ERROR_MSG, "Confirm email cannot be blank.");
+        }
+        else if(!StringUtils.isBlank(form.getEmail()) && !form.getEmail().equalsIgnoreCase(form.getEmailConfirm()))
+        {
+            errors.reject(ERROR_MSG, "Email addresses do not match.");
+        }
+    }
+
+    // On success returns null. On failure returns a user-facing error message.
+    // Does not clear the session attribute — callers clear it after the full operation
+    // succeeds so the user can retry with the same captcha if a later step fails.
+    // Logging matches LoginController's RegisterUserAction.
+    private String verifyCaptcha(String submittedText, String emailForLogging)
+    {
+        var session = getViewContext().getRequest().getSession(true);
+        String expected = (String) session.getAttribute(LabKeyKaptchaServlet.SESSION_KEY_VALUE);
+        if (expected == null)
+        {
+            _log.info("Captcha not initialized for signup attempt");
+            return "Captcha not initialized, please retry.";
+        }
+        if (!expected.equalsIgnoreCase(StringUtils.trimToNull(submittedText)))
+        {
+            _log.warn("Captcha text did not match for signup attempt for {}", emailForLogging);
+            return "Verification text does not match, please retry.";
+        }
+        return null;
+    }
+
+    private void clearCaptcha()
+    {
+        getViewContext().getRequest().getSession(true).removeAttribute(LabKeyKaptchaServlet.SESSION_KEY_VALUE);
+    }
+
+    // Returns a parsed ValidEmail, or null if the address is invalid (errors populated).
+    // Uses EmailValidator first because ValidEmail's constructor does not throw on bare
+    // strings like "foo" - it silently appends the server's default domain.
+    private ValidEmail parseAndValidateEmail(SignupForm form, Errors errors)
+    {
+        EmailValidator validator = EmailValidator.getInstance();
+        if (!validator.isValid(form.getEmail()))
+        {
+            errors.reject(ERROR_MSG, "'" + form.getEmail() + "' is not a valid email address.");
+            return null;
+        }
+        try
+        {
+            return new ValidEmail(form.getEmail());
+        }
+        catch (ValidEmail.InvalidEmailException iee)
+        {
+            errors.reject(ERROR_MSG, iee.getMessage());
+            return null;
+        }
+    }
+
+    // Creates (or reuses) a TempUser row and sends the confirmation email in a single
+    // transaction. On send failure the exception propagates and the transaction rolls back
+    // automatically so a freshly inserted TempUser row does not persist.
+    private void createUserAndSendEmail(SignupForm form, ValidEmail email)
+            throws MessagingException, ConfigurationException, java.sql.SQLException
+    {
+        try (DbScope.Transaction transaction = SignUpManager.getSchema().getScope().ensureTransaction())
+        {
+            TempUser tempUser = getTempUser(form, email);
+            ActionURL confirmationUrl = getConfirmationURL(getContainer(), email, tempUser.getKey());
+            User mockUser = new User();
+            mockUser.setEmail(email.getEmailAddress());
+            SecurityManager.sendEmail(getContainer(), mockUser,
+                    SecurityManager.getRegistrationMessage(null, false),
+                    email.getEmailAddress(), confirmationUrl);
+            transaction.commit();
+        }
+    }
+
+    private static List<String> errorsToMessages(Errors errors)
+    {
+        return errors.getAllErrors().stream()
+                .map(ObjectError::getDefaultMessage)
+                .toList();
+    }
+
+    private static String sendEmailErrorMessage(Container container)
+    {
+        return "Could not send new user registration email. Please contact your server administrator at "
+                + LookAndFeelProperties.getInstance(container).getSystemEmailAddress();
     }
 
     public static ActionURL getConfirmationURL(Container c, ValidEmail email, String key)
@@ -657,6 +746,7 @@ public static class SignupForm extends ReturnUrlForm
         private String _lastName;
         private String _organization;
         private String _email;
+        private String _emailConfirm;
         private boolean _accountExists;
         private boolean _newSignUp = true;
 
@@ -700,6 +790,16 @@ public void setEmail(String email)
             _email = email;
         }
 
+        public String getEmailConfirm()
+        {
+            return _emailConfirm;
+        }
+
+        public void setEmailConfirm(String emailConfirm)
+        {
+            _emailConfirm = emailConfirm;
+        }
+
         public boolean isAccountExists()
         {
             return _accountExists;
@@ -719,6 +819,18 @@ public void setNewSignUp(boolean newSignUp)
         {
             _newSignUp = newSignUp;
         }
+
+        private String _kaptchaText;
+
+        public String getKaptchaText()
+        {
+            return _kaptchaText;
+        }
+
+        public void setKaptchaText(String kaptchaText)
+        {
+            _kaptchaText = kaptchaText;
+        }
     }
 
     @RequiresLogin
@@ -778,52 +890,56 @@ public ApiResponse execute(SignupForm signupForm, BindException errors) throws E
         {
             ApiSimpleResponse response = new ApiSimpleResponse();
 
-            ValidEmail email;
-            try
+            String kaptchaError = verifyCaptcha(signupForm.getKaptchaText(), signupForm.getEmail());
+            if (kaptchaError != null)
             {
-                email = new ValidEmail(signupForm.getEmail());
+                response.put("status", "ERROR");
+                response.put("error_message", List.of(kaptchaError));
+                return response;
             }
-            catch (ValidEmail.InvalidEmailException iee)
+
+            validateSignupForm(signupForm, errors);
+            if (errors.hasErrors())
             {
-                errors.reject(ERROR_MSG, iee.getMessage());
+                response.put("status", "ERROR");
+                response.put("error_message", errorsToMessages(errors));
                 return response;
             }
 
-            if(UserManager.userExists(email))
+            ValidEmail email = parseAndValidateEmail(signupForm, errors);
+            if (email == null)
             {
-                response.put("status", "USER_EXISTS");
+                response.put("status", "ERROR");
+                response.put("error_message", errorsToMessages(errors));
                 return response;
             }
 
-            validateSignupForm(signupForm, errors);
-            if(errors.hasErrors())
+            if (UserManager.userExists(email))
             {
+                response.put("status", "USER_EXISTS");
                 return response;
             }
 
-            TempUser tempUser = getTempUser(signupForm, email);
-
-
-            // Send email to the user.
-            ActionURL confirmationUrl = getConfirmationURL(getContainer(), email, tempUser.getKey());
             try
             {
-                User mockUser = new User();
-                mockUser.setEmail(email.getEmailAddress());
-                SecurityManager.sendEmail(getContainer(), mockUser, SecurityManager.getRegistrationMessage(null, false), email.getEmailAddress(), confirmationUrl);
+                createUserAndSendEmail(signupForm, email);
             }
-            catch(Exception e)
+            catch (MessagingException | ConfigurationException e)
             {
-                String systemEmail = LookAndFeelProperties.getInstance(getContainer()).getSystemEmailAddress();
+                response.put("status", "ERROR");
                 List<String> messages = new ArrayList<>();
-                messages.add("Could not send new user registration email.  Please contact your server administrator at " + systemEmail);
-                messages.add(e.getMessage());
+                messages.add(sendEmailErrorMessage(getContainer()));
+                if (e.getMessage() != null)
+                {
+                    messages.add(e.getMessage());
+                }
                 response.put("error_message", messages);
+                return response;
             }
 
-            signupForm.setNewSignUp(false); // TODO: Most likely not needed here
-            response.put("status", "USER_ADDED");
+            clearCaptcha();
 
+            response.put("status", "USER_ADDED");
             return response;
         }
     }
diff --git a/signup/src/org/labkey/signup/signupPage.jsp b/signup/src/org/labkey/signup/signupPage.jsp
index ddb0ae31..e97869fd 100644
--- a/signup/src/org/labkey/signup/signupPage.jsp
+++ b/signup/src/org/labkey/signup/signupPage.jsp
@@ -15,7 +15,6 @@
  * limitations under the License.
  */
 %>
-<%@ page import="org.labkey.api.view.ActionURL" %>
 <%@ page import="org.labkey.api.view.HttpView" %>
 <%@ page import="org.labkey.signup.SignUpController.BeginAction" %>
 <%@ page import="org.labkey.signup.SignUpController.SignupForm" %>
@@ -23,33 +22,34 @@
 <%@ taglib prefix="labkey" uri="http://www.labkey.org/taglib" %>
 <%
     SignupForm form = (SignupForm)HttpView.currentModel();
-    ActionURL url = urlFor(BeginAction.class);
+    String contextPath = request.getContextPath();
 %>
 
-<!-- Display errors here -->
 <labkey:errors/>
 
-<form action="<%=h(url)%>" method=post>
-    <labkey:csrf/>
-    <table>
-        <tr>
-            <td class="labkey-form-label"><label for="firstName">First Name</label> *</td>
-            <td nowrap><input size="20" type="text" id="firstName" name="firstName" value="<%=h(form.getFirstName())%>"/></td>
-        </tr>
-        <tr>
-            <td class="labkey-form-label"><label for="lastName">Last Name</label> *</td>
-            <td nowrap><input size="20" type="text" id="lastName" name="lastName" value="<%=h(form.getLastName())%>"/></td>
-        </tr>
-        <tr>
-            <td class="labkey-form-label"><label for="organization">Organization</label> *</td>
-            <td nowrap><input size="20" type="text" id="organization" name="organization" value="<%=h(form.getOrganization())%>"/></td>
-        </tr>
-        <tr>
-            <td class="labkey-form-label"><label for="email">Email</label> *</td>
-            <td nowrap><input size="20" type="text" id="email" name="email" value="<%=h(form.getEmail())%>"/></td>
-        </tr>
-        <tr>
-            <td colspan="2"><labkey:button text="Submit" /></td>
-        </tr>
-    </table>
-</form>
+<labkey:form method="post" action="<%=urlFor(BeginAction.class)%>" layout="horizontal" autoComplete="off" style="max-width:600px;">
+    <labkey:input name="firstName" id="firstName" label="First Name" isRequired="true" size="50" value="<%=form.getFirstName()%>"/>
+    <labkey:input name="lastName" id="lastName" label="Last Name" isRequired="true" size="50" value="<%=form.getLastName()%>"/>
+    <labkey:input name="organization" id="organization" label="Organization" isRequired="true" size="50" value="<%=form.getOrganization()%>"/>
+    <labkey:input name="email" id="email" label="Email" isRequired="true" size="50" value="<%=form.getEmail()%>"/>
+    <labkey:input name="emailConfirm" id="emailConfirm" label="Confirm Email" isRequired="true" size="50" value="<%=form.getEmailConfirm()%>"/>
+
+    <%-- Verification: standalone full-width block --%>
+    <div style="margin-top:20px;"><strong>Verification</strong></div>
+    <p style="margin:8px 0 4px 0;">Please enter the characters shown below (case-insensitive).</p>
+    <p style="margin:0 0 8px 0;"><a id="kaptchaReload" href="#">Get a new image.</a></p>
+    <img id="kaptchaImg" src="<%=h(contextPath)%>/kaptcha.jpg" alt="Captcha" width="200" height="50" style="border: 1px solid #ccc; display:block; margin-bottom:6px;"/>
+    <input type="text" id="kaptchaText" name="kaptchaText" aria-label="Verification code" style="width:200px;"/>
+
+    <div style="margin-top:20px; clear:both;">
+        <button type="submit" class="btn btn-default labkey-button">Register</button>
+    </div>
+</labkey:form>
+
+<script type="text/javascript" nonce="<%=getScriptNonce()%>">
+    document.getElementById("kaptchaReload").addEventListener("click", function(e) {
+        e.preventDefault();
+        var img = document.getElementById("kaptchaImg");
+        img.src = img.src.split("?")[0] + "?ts=" + new Date().getTime();
+    });
+</script>
diff --git a/testresults/src/org/labkey/testresults/SendTestResultsEmail.java b/testresults/src/org/labkey/testresults/SendTestResultsEmail.java
index 412990ac..51ce62d9 100644
--- a/testresults/src/org/labkey/testresults/SendTestResultsEmail.java
+++ b/testresults/src/org/labkey/testresults/SendTestResultsEmail.java
@@ -121,7 +121,7 @@ public Pair<String, String> getHTMLEmail(org.labkey.api.security.User from)
             TestResultsController.ensureRunDataCached(runs, false);
             TestResultsController.populatePassesLeaksFails(runs);
 
-            User[] users = TestResultsController.getUsers(container, null);
+            User[] users = TestResultsController.getUsers(from, container, null);
 
             RunDownBean data = new RunDownBean(runs, users);
             RunProblems problems = new RunProblems(data.getRunsByDate(end));
diff --git a/testresults/src/org/labkey/testresults/TestResultsController.java b/testresults/src/org/labkey/testresults/TestResultsController.java
index 1e316f97..2ea0a9dc 100644
--- a/testresults/src/org/labkey/testresults/TestResultsController.java
+++ b/testresults/src/org/labkey/testresults/TestResultsController.java
@@ -26,6 +26,7 @@
 import org.apache.logging.log4j.Logger;
 import org.apache.xmlbeans.XmlException;
 import org.jetbrains.annotations.NotNull;
+import org.jetbrains.annotations.Nullable;
 import org.labkey.api.action.ApiSimpleResponse;
 import org.labkey.api.action.MutatingApiAction;
 import org.labkey.api.action.ReadOnlyApiAction;
@@ -35,6 +36,7 @@
 import org.labkey.api.collections.IntHashMap;
 import org.labkey.api.data.CompareType;
 import org.labkey.api.data.Container;
+import org.labkey.api.data.ContainerFilter;
 import org.labkey.api.data.ContainerManager;
 import org.labkey.api.data.DbScope;
 import org.labkey.api.data.JdbcType;
@@ -45,6 +47,7 @@
 import org.labkey.api.data.SqlExecutor;
 import org.labkey.api.data.SqlSelector;
 import org.labkey.api.data.Table;
+import org.labkey.api.data.TableInfo;
 import org.labkey.api.data.TableSelector;
 import org.labkey.api.files.FileContentService;
 import org.labkey.api.notification.EmailMessage;
@@ -324,7 +327,7 @@ public static RunDownBean getRunDownBean(org.labkey.api.security.User user, Cont
 
         ensureRunDataCached(allRuns, false);
 
-        User[] users = getUsers(c, null);
+        User[] users = getUsers(user, c, null);
         return new RunDownBean(allRuns, users, viewType, null, endDate);
     }
 
@@ -409,50 +412,61 @@ public static void ensureRunDataCached(RunDetail[] runs, boolean keepObjData) {
         }
     }
 
-    public static User[] getUsers(Container trainingDataContainer, String username) {
-        SQLFragment sqlFragment = new SQLFragment();
-        sqlFragment.append("SELECT id, username FROM testresults.user");
+    public static User[] getUsers(@NotNull org.labkey.api.security.User user, @NotNull Container trainingDataContainer, @Nullable String username) {
+        if (trainingDataContainer == null)
+            throw new IllegalArgumentException("getUsers requires a folder; use findUserIdByName(username) for the no-folder lookup");
+        // Scope the computer list to the current folder via the filtered "user" query table.
+        TableInfo userTable = new TestResultsSchema(user, trainingDataContainer)
+                .getTable(TestResultsSchema.TABLE_USER, ContainerFilter.current(trainingDataContainer, user));
+        SimpleFilter filter = new SimpleFilter();
         if (username != null && !username.isEmpty())
-        {
-            sqlFragment.append(" WHERE username = ?");
-            sqlFragment.add(username);
-        }
-        sqlFragment.append(" ORDER BY id");
+            filter.addCondition(FieldKey.fromParts("username"), username);
         List<User> users = new ArrayList<>();
-        new SqlSelector(TestResultsSchema.getSchema(), sqlFragment).forEach(rs -> {
+        new TableSelector(userTable, filter, new Sort("id")).forEach(rs -> {
             User u = new User();
             u.setId(rs.getInt("id"));
             u.setUsername(rs.getString("username"));
             users.add(u);
         });
 
-        if (trainingDataContainer != null)
-        {
-            sqlFragment = new SQLFragment();
-            sqlFragment.append(
-                "SELECT userid, meantestsrun, meanmemory, stddevtestsrun, stddevmemory, active " +
-                "FROM testresults.userdata " +
-                "WHERE container = ?");
-            sqlFragment.add(trainingDataContainer.getEntityId());
-            new SqlSelector(TestResultsSchema.getSchema(), sqlFragment).forEach(rs -> {
-                for (User u : users)
+        // Attach the training stats (userdata is keyed by container).
+        SQLFragment sqlFragment = new SQLFragment();
+        sqlFragment.append(
+            "SELECT userid, meantestsrun, meanmemory, stddevtestsrun, stddevmemory, active " +
+            "FROM testresults.userdata " +
+            "WHERE container = ?");
+        sqlFragment.add(trainingDataContainer.getEntityId());
+        new SqlSelector(TestResultsSchema.getSchema(), sqlFragment).forEach(rs -> {
+            for (User u : users)
+            {
+                if (u.getId() == rs.getInt("userid"))
                 {
-                    if (u.getId() == rs.getInt("userid"))
-                    {
-                        u.setMeantestsrun(rs.getDouble("meantestsrun"));
-                        u.setMeanmemory(rs.getDouble("meanmemory"));
-                        u.setStddevtestsrun(rs.getDouble("stddevtestsrun"));
-                        u.setStddevmemory(rs.getDouble("stddevmemory"));
-                        u.setContainer(trainingDataContainer);
-                        u.setActive(rs.getBoolean("active"));
-                        break;
-                    }
+                    u.setMeantestsrun(rs.getDouble("meantestsrun"));
+                    u.setMeanmemory(rs.getDouble("meanmemory"));
+                    u.setStddevtestsrun(rs.getDouble("stddevtestsrun"));
+                    u.setStddevmemory(rs.getDouble("stddevmemory"));
+                    u.setContainer(trainingDataContainer);
+                    u.setActive(rs.getBoolean("active"));
+                    break;
                 }
-            });
-        }
+            }
+        });
         return users.toArray(new User[0]);
     }
 
+    /**
+     * Looks up a computer's id by exact name across all folders, or -1 if none exists. The "user"
+     * row is global (no container column), and run ingestion (ParseAndStoreXML) runs anonymously
+     * and may be the computer's first post to a given folder, so this lookup must not be container-scoped.
+     */
+    private static int findUserIdByName(@NotNull String username)
+    {
+        SQLFragment sql = new SQLFragment("SELECT id FROM testresults.user WHERE username = ? ORDER BY id", username);
+        List<Integer> ids = new ArrayList<>();
+        new SqlSelector(TestResultsSchema.getSchema(), sql).forEach(rs -> ids.add(rs.getInt("id")));
+        return ids.isEmpty() ? -1 : ids.get(0);
+    }
+
     /**
      * action to view trainging data for each user
      */
@@ -475,7 +489,7 @@ public ModelAndView getView(Object o, BindException errors) throws Exception
 
             ensureRunDataCached(runs, false);
 
-            User[] users = getUsers(getContainer(), null);
+            User[] users = getUsers(getUser(), getContainer(), null);
             TestsDataBean bean = new TestsDataBean(runs, users);
             JspView<TestsDataBean> view = new JspView<>("/org/labkey/testresults/view/trainingdata.jsp", bean);
             view.setFrame(WebPartView.FrameType.PORTAL);
@@ -623,7 +637,7 @@ public ModelAndView getView(ShowUserForm form, BindException errors) throws Exce
             User user = null;
             if (StringUtils.isNotBlank(userName))
             {
-                User[] users = getUsers(getContainer(), userName);
+                User[] users = getUsers(getUser(), getContainer(), userName);
                 if (users.length == 1)
                     user = users[0];
             }
@@ -1822,19 +1836,18 @@ private static void ParseAndStoreXML(String xml, Container c) throws Exception
 
                 Element docElement = doc.getDocumentElement();
                 // USER ID
-                int userid;
                 String username = docElement.getAttribute("id");
-                User[] details = getUsers(null, username);
-                if (details.length == 0) {
-                    User newUser =  new User();
+                if (StringUtils.isBlank(username))
+                    throw new IllegalArgumentException("Posted run XML is missing the required computer name (id attribute)");
+                int userid = findUserIdByName(username);
+                if (userid == -1) {
+                    User newUser = new User();
                     newUser.setUsername(username);
                     User u = Table.insert(null, TestResultsSchema.getTableInfoUser(), newUser);
                     if (u == null) {
                         throw new Exception();
                     }
                     userid = u.getId();
-                } else {
-                    userid = details[0].getId();
                 }
                 if (userid == -1)
                     throw new Exception("Issue with user/userid, may not be set");
diff --git a/testresults/src/org/labkey/testresults/TestResultsSchema.java b/testresults/src/org/labkey/testresults/TestResultsSchema.java
index 354f7a25..6f7f45d7 100644
--- a/testresults/src/org/labkey/testresults/TestResultsSchema.java
+++ b/testresults/src/org/labkey/testresults/TestResultsSchema.java
@@ -24,10 +24,12 @@
 import org.labkey.api.data.DbSchema;
 import org.labkey.api.data.DbSchemaType;
 import org.labkey.api.data.ForeignKey;
+import org.labkey.api.data.SQLFragment;
 import org.labkey.api.data.TableInfo;
 import org.labkey.api.data.dialect.SqlDialect;
 import org.labkey.api.module.Module;
 import org.labkey.api.query.DefaultSchema;
+import org.labkey.api.query.FieldKey;
 import org.labkey.api.query.FilteredTable;
 import org.labkey.api.query.QueryForeignKey;
 import org.labkey.api.query.QuerySchema;
@@ -86,7 +88,8 @@ public static SqlDialect getSqlDialect()
     @Override
     public @Nullable TableInfo createTable(@NotNull String name, @NotNull ContainerFilter cf)
     {
-        TableInfo dbTable = switch (name.toLowerCase())
+        String lower = name.toLowerCase();
+        TableInfo dbTable = switch (lower)
         {
             case TABLE_TEST_RUNS       -> getTableInfoTestRuns();
             case TABLE_USER            -> getTableInfoUser();
@@ -102,12 +105,77 @@ public static SqlDialect getSqlDialect()
         };
         if (dbTable == null)
             return null;
-        FilteredTable<TestResultsSchema> table = new FilteredTable<>(dbTable, this, cf);
+        FilteredTable<TestResultsSchema> table = switch (lower)
+        {
+            case TABLE_HANGS, TABLE_MEMORY_LEAKS, TABLE_HANDLE_LEAKS, TABLE_TEST_PASSES, TABLE_TEST_FAILS ->
+                    createRunChildTable(dbTable, cf, "testrunid");
+            case TABLE_TRAIN_RUNS ->
+                    createRunChildTable(dbTable, cf, "runid");
+            case TABLE_USER ->
+                    createUserTable(dbTable, cf);
+            default ->
+                    new FilteredTable<>(dbTable, this, cf);
+        };
         table.wrapAllColumns(true);
         resolveSchemaForeignKeys(table, cf);
         return table;
     }
 
+    /**
+     * Filters a table that has no container column of its own by joining to testruns
+     * via fkColumn and applying the container filter to testruns.container.
+     */
+    private FilteredTable<TestResultsSchema> createRunChildTable(TableInfo dbTable, ContainerFilter cf, String fkColumn)
+    {
+        return new FilteredTable<>(dbTable, this, cf)
+        {
+            @Override
+            public FieldKey getContainerFieldKey()
+            {
+                return FieldKey.fromParts(fkColumn, "container");
+            }
+
+            @Override
+            protected void applyContainerFilter(ContainerFilter filter)
+            {
+                FieldKey containerFieldKey = FieldKey.fromParts("container");
+                clearConditions(containerFieldKey);
+                SQLFragment sql = new SQLFragment().appendIdentifier(fkColumn).append(" IN (SELECT tr.id FROM ");
+                sql.append(getTableInfoTestRuns(), "tr");
+                sql.append(" WHERE ");
+                sql.append(filter.getSQLFragment(getSchema(), new SQLFragment("tr.container")));
+                sql.append(")");
+                addCondition(sql, containerFieldKey);
+            }
+        };
+    }
+
+    /**
+     * The user table has no container column and no FK to testruns. Filter it to users
+     * referenced by at least one testrun in an allowed container.
+     *
+     * No getContainerFieldKey() override: a machine can post to several containers, so it
+     * has no single "home" container. applyContainerFilter() alone does the scoping.
+     */
+    private FilteredTable<TestResultsSchema> createUserTable(TableInfo dbTable, ContainerFilter cf)
+    {
+        return new FilteredTable<>(dbTable, this, cf)
+        {
+            @Override
+            protected void applyContainerFilter(ContainerFilter filter)
+            {
+                FieldKey containerFieldKey = FieldKey.fromParts("container");
+                clearConditions(containerFieldKey);
+                SQLFragment sql = new SQLFragment("id IN (SELECT tr.userid FROM ");
+                sql.append(getTableInfoTestRuns(), "tr");
+                sql.append(" WHERE ");
+                sql.append(filter.getSQLFragment(getSchema(), new SQLFragment("tr.container")));
+                sql.append(")");
+                addCondition(sql, containerFieldKey);
+            }
+        };
+    }
+
     /**
      * Converts DbSchema-level FKs (propagated by wrapAllColumns()) into UserSchema-level FKs
      * so the Query Schema Browser renders hyperlinks and can navigate to target query grids.
diff --git a/testresults/src/org/labkey/testresults/view/user.jsp b/testresults/src/org/labkey/testresults/view/user.jsp
index 7d8ba472..c10300cc 100644
--- a/testresults/src/org/labkey/testresults/view/user.jsp
+++ b/testresults/src/org/labkey/testresults/view/user.jsp
@@ -103,7 +103,7 @@
 <%--        <input type="file" name="xml_file"><input type="submit" value="submit">This form is meant to parse and store xml files into the database--%>
 <%--    </form>--%>
     <%
-        User[] users = TestResultsController.getUsers(null, null);
+        User[] users = TestResultsController.getUsers(getViewContext().getUser(), getViewContext().getContainer(), null);
         Arrays.sort(users, Comparator.comparing(User::getUsername)); %>
     <div style="margin: 12px 0;">
         <select id="users">
diff --git a/testresults/test/src/org/labkey/test/tests/testresults/TestResultsTest.java b/testresults/test/src/org/labkey/test/tests/testresults/TestResultsTest.java
index 28b57a81..49ee3345 100644
--- a/testresults/test/src/org/labkey/test/tests/testresults/TestResultsTest.java
+++ b/testresults/test/src/org/labkey/test/tests/testresults/TestResultsTest.java
@@ -26,6 +26,7 @@
 import org.junit.BeforeClass;
 import org.junit.Test;
 import org.junit.experimental.categories.Category;
+import org.labkey.remoteapi.CommandException;
 import org.labkey.remoteapi.Connection;
 import org.labkey.remoteapi.query.SelectRowsCommand;
 import org.labkey.remoteapi.query.SelectRowsResponse;
@@ -44,6 +45,7 @@
 import org.labkey.test.util.TextSearcher;
 
 import java.io.File;
+import java.io.IOException;
 import java.time.LocalDate;
 import java.time.format.DateTimeFormatter;
 import java.util.List;
@@ -51,6 +53,7 @@
 
 import static org.junit.Assert.assertEquals;
 import static org.junit.Assert.assertFalse;
+import static org.junit.Assert.assertNotEquals;
 import static org.junit.Assert.assertTrue;
 
 @Category({External.class, MacCossLabModules.class})
@@ -115,12 +118,20 @@ private void doSetup()
     }
 
     /**
-     * Posts a sample XML file to PostAction.
+     * Posts a sample XML file to PostAction in the main project container.
      */
     private void postSampleXml(String sampleDataRelativePath)
+    {
+        postSampleXml(sampleDataRelativePath, PROJECT_NAME);
+    }
+
+    /**
+     * Posts a sample XML file to PostAction in the given container.
+     */
+    private void postSampleXml(String sampleDataRelativePath, String containerPath)
     {
         File xmlFile = TestFileUtils.getSampleData(sampleDataRelativePath);
-        String postUrl = WebTestHelper.buildURL("testresults", PROJECT_NAME, "post");
+        String postUrl = WebTestHelper.buildURL("testresults", containerPath, "post");
 
         try (CloseableHttpClient httpClient = WebTestHelper.getHttpClient())
         {
@@ -655,6 +666,111 @@ public void testDeleteRun()
         assertTextNotPresent("TestDisposableOne");
     }
 
+    /**
+     * Verifies that child tables in the testresults schema are container-filtered
+     * via a join to testruns. Creates a subfolder, posts a single run into it,
+     * then checks that testpasses, testfails, trainruns, and user queries from
+     * each container only return rows for runs in that container.
+     *
+     * Not separately tested: hangs, memoryleaks, handleleaks. These go through the
+     * same {@code createRunChildTable} helper as testpasses/testfails, so verifying
+     * those covers them by construction.
+     */
+    @Test
+    public void testContainerFiltering() throws IOException, CommandException
+    {
+        final String subFolder = "ContainerFilterTest";
+        final String subFolderPath = "/" + PROJECT_NAME + "/" + subFolder;
+        _containerHelper.createSubfolder(PROJECT_NAME, subFolder);
+        _containerHelper.enableModule(subFolderPath, "TestResults");
+        // pc1-run-0116-failures.xml: 150 tests (testsrun=150), 2 failures (TestFailOne, TestFailTwo).
+        postSampleXml("testresults/pc1-run-0116-failures.xml", subFolderPath);
+
+        Connection conn = WebTestHelper.getRemoteApiConnection();
+
+        // The subfolder has exactly one run (the one we just posted). Fetch its ID.
+        SelectRowsCommand runsCmd = new SelectRowsCommand("testresults", "testruns");
+        runsCmd.setColumns(List.of("id", "userid/username"));
+        SelectRowsResponse subRuns = runsCmd.execute(conn, subFolderPath);
+        assertEquals("Subfolder should have exactly 1 run", 1, subRuns.getRows().size());
+        int subRunId = ((Number) subRuns.getRows().getFirst().get("id")).intValue();
+
+        // testpasses: 150 rows, all referencing subRunId. None visible from parent.
+        assertTableContainerFiltered(conn, "testpasses", "testrunid", subFolderPath, subRunId, 150);
+
+        // testfails: 2 failures in the posted XML.
+        assertTableContainerFiltered(conn, "testfails", "testrunid", subFolderPath, subRunId, 2);
+
+        // Add the subfolder's run to the training set, then verify trainruns filtering.
+        JSONObject trainResp = postApi("trainRun",
+                Map.of("runId", String.valueOf(subRunId), "train", "true"),
+                subFolderPath);
+        assertTrue("Adding run to training set failed: " + trainResp, trainResp.optBoolean("Success", false));
+
+        assertTableContainerFiltered(conn, "trainruns", "runid", subFolderPath, subRunId, 1);
+
+        // user: the subfolder's only run is for TEST-PC-1, so only that user should
+        // be visible there. The parent has both TEST-PC-1 and TEST-PC-2.
+        SelectRowsCommand userCmd = new SelectRowsCommand("testresults", "user");
+        userCmd.setColumns(List.of("username"));
+        SelectRowsResponse subUsers = userCmd.execute(conn, subFolderPath);
+        assertEquals("Subfolder should see only TEST-PC-1", 1, subUsers.getRows().size());
+        assertEquals(COMPUTER_NAME_1, subUsers.getRows().getFirst().get("username"));
+
+        SelectRowsResponse parentUsers = userCmd.execute(conn, PROJECT_NAME);
+        List<String> parentUsernames = parentUsers.getRows().stream()
+                .map(r -> (String) r.get("username")).toList();
+        assertTrue("Parent should see TEST-PC-1", parentUsernames.contains(COMPUTER_NAME_1));
+        assertTrue("Parent should see TEST-PC-2", parentUsernames.contains(COMPUTER_NAME_2));
+
+        // The SelectRows checks above hit the "user" query table (the FilteredTable from
+        // TestResultsSchema.createUserTable) via the query API. The User-page dropdown is a
+        // separate code path - built by TestResultsController.getUsers() - so verify it is
+        // folder-scoped too: the subfolder lists only TEST-PC-1, the parent lists both.
+        assertUserDropdownContains(subFolderPath, List.of(COMPUTER_NAME_1), List.of(COMPUTER_NAME_2));
+        assertUserDropdownContains("/" + PROJECT_NAME, List.of(COMPUTER_NAME_1, COMPUTER_NAME_2), List.of());
+    }
+
+    /**
+     * Navigates to the User page (ShowUserAction) in the given folder and asserts the computer
+     * dropdown - populated by TestResultsController.getUsers() - lists the expected computers.
+     * This exercises the server-rendered getUsers() path, separate from the query "user" table.
+     */
+    private void assertUserDropdownContains(String containerPath, List<String> present, List<String> absent)
+    {
+        beginAt(WebTestHelper.buildRelativeUrl("testresults", containerPath, "showUser"));
+        for (String name : present)
+            assertElementPresent(Locator.xpath("//select[@id='users']/option[@value='" + name + "']"));
+        for (String name : absent)
+            assertElementNotPresent(Locator.xpath("//select[@id='users']/option[@value='" + name + "']"));
+    }
+
+    /**
+     * Asserts that {@code tableName} is container-filtered: the subfolder query
+     * returns exactly {@code expectedSubfolderRows} rows, all referencing
+     * {@code subRunId}; the parent query returns no rows referencing
+     * {@code subRunId}.
+     */
+    private void assertTableContainerFiltered(Connection conn, String tableName, String fkColumn,
+                                              String subFolderPath, int subRunId, int expectedSubfolderRows)
+            throws IOException, CommandException
+    {
+        SelectRowsCommand cmd = new SelectRowsCommand("testresults", tableName);
+        cmd.setColumns(List.of(fkColumn));
+
+        SelectRowsResponse subfolderRows = cmd.execute(conn, subFolderPath);
+        assertEquals(tableName + " row count in subfolder",
+                expectedSubfolderRows, subfolderRows.getRows().size());
+        for (Map<String, Object> row : subfolderRows.getRows())
+            assertEquals("All " + tableName + " rows in subfolder must reference subRunId",
+                    subRunId, ((Number) row.get(fkColumn)).intValue());
+
+        SelectRowsResponse parentRows = cmd.execute(conn, PROJECT_NAME);
+        for (Map<String, Object> row : parentRows.getRows())
+            assertNotEquals("Parent " + tableName + " must not reference subfolder's run " + subRunId,
+                    subRunId, ((Number) row.get(fkColumn)).intValue());
+    }
+
     // -------------------------------------------------------------------------
     // Helpers
     // -------------------------------------------------------------------------
@@ -860,7 +976,12 @@ private String getApiString(String action, int runId, String field)
      */
     private JSONObject postApi(String action, Map<String, String> params)
     {
-        StringBuilder url = new StringBuilder(WebTestHelper.buildURL("testresults", PROJECT_NAME, action));
+        return postApi(action, params, PROJECT_NAME);
+    }
+
+    private JSONObject postApi(String action, Map<String, String> params, String containerPath)
+    {
+        StringBuilder url = new StringBuilder(WebTestHelper.buildURL("testresults", containerPath, action));
         boolean first = true;
         for (Map.Entry<String, String> e : params.entrySet())
         {