Projects:Change password/Technical Specifications

Contents 1 Introduction 2 Data handling 3 Windows 4 Trigger 5 Backend Process 6 User stories 7 UI Improvements

Introduction

In this document are described the developments needed to create the change password functionality.

Data handling

• Table: AD_USER
• Column:
  • LastUpdatePasswordDate

• Table: AD_CLIENT
• Column:
  • DaysToPasswordExpiration

Windows

• Window: Client
• Field:
  • Days to Password Expiration
    • Field Group: N/A
    • Type: Integer
    • Min. value: 0
    • Default value: 0
    • Displayed in form view
    • Not displayed in grid view

• Window: User
• Field:
  • Last Update Password Date
    • Field Group: More Information
    • Type: Date
    • Read Only field
    • Displayed in form view
    • Not displayed in grid view

Trigger

A trigger must be created in order to update the LastUpdatePasswordDate of the user that has changed his password.

Backend Process

During login (Backend and WebPOS), the process will check if the user has reached the limit date for the password, in this case, the PopUp to renew the password is launched, and the new limit date will be updated by the trigger once the new password is saved.

Authentication Manager needs to be modified to get the Last Update Password Date of the user, if the date of the login is higher than Last Update Password Date plus Days to Expire Password an exception is thrown.

Login Handler will catch the exception that throws Authentication Manager, and send a flag to the client, that force to show the UI Improvements for change the password.

User stories

User story

• Password Validity Days are set in Client to 30 days.

• Cashier logs into backend
• Enter login credentials
• Cashier updates his password.

• 30 days later...

• User logs into backend
• Enter his login credentials** System show a message: User must set a new password.
• User enters the same password than previous one.
• System show a message: Password must be different from the previous one.
• User enters an empty password
• System show a message: Password can not be empty.
• User enters different passwords in fields.
• System show a message: Password must be the same.
• User enters different passwords from previous one, and the same in both fields.
• User is logged and password is changed, also last update password date of the user updated.

• Login to POS terminal:
• User enter his new credentials
• User is logged with the new password.

• 30 days later user will be asked newly to renew the password.

UI Improvements

• ERP
  • Changes in login window, when limit date is reached (Mockup included):

• WebPOS (A new popup where the users renew their password once the limit is reached) (Mockup included)