-
Notifications
You must be signed in to change notification settings - Fork 34
Forgot password feature #1878
Comments
w/ @teo Decided to not show the user eMail address on password change screen. |
- properly get the token from params #1878
@teosarca @metas-mk 3 things :
|
Forgot about the fourth thing ;) The avatar request returns JFIF data that frontend cannot really display properly using base64. Can we just get a bes64 encoded stream instead ? |
let's talk about this. But that endpoint returns a real picture same as the other image endpoints that we have returns. |
Hi, instead of something like this: Not sure, if this issue exists for other instances, too. Just stumbled upon it and thought I'd mention it. (: |
- properly get the token from params #1878
Adds new Issue metasfresh/metasfresh-webui-frontend-legacy#1878 Forgot password feature
[#4492](#4492) Project Status and Product Category Trl [#4494](#4494) Projecttype Org Validation [#4448](#4448) Advanced BLs to create inventory lines [#4450](#4450) Tablet optimized inventory-counting-window [#4482](#4482) Support Doctype Text templates also on purchase order [#4498](#4498) Make fields in explicit user filter mandatory or optional [#4501](#4501) LogicExpressionEvaluator: improve error message in case something went wrong [#4517](#4517) Extend Sales Order REST API to support price and support all product values [#1878](metasfresh/metasfresh-webui-frontend-legacy#1878) Forgot password feature [#4483](#4483) Payment allocation form does not show invoices [#4499](#4499) Cannot create letter [#4504](#4504) Mandatory logic broken for C_FlatrateTerm.C_Currency_ID [#4506](#4506) Compensation Group's subtotals gets broken after setting/changing the flatrate conditions [#4509](#4509) NPE in Compensation Groups creation [#4514](#4514) Include sales orders REST API to metasfresh-dist/serverRoot [#1188](metasfresh/metasfresh-webui-frontend-legacy#1188) Home and End button move caret in text fields [#1463](metasfresh/metasfresh-webui-frontend-legacy#1463) Unable to execute any quick actions in Firefox [#1578](metasfresh/metasfresh-webui-frontend-legacy#1578) Applied filter params sometimes not displayed in filter [#1589](metasfresh/metasfresh-webui-frontend-legacy#1589) included tab: when refreshing via websocket event the sort/order is not preserved [#1707](metasfresh/metasfresh-webui-frontend-legacy#1707) Red line is missing when a document was not saved [#1872](metasfresh/metasfresh-webui-frontend-legacy#1872) [alt]+u not working as before [#1923](metasfresh/metasfresh-webui-frontend-legacy#1923) Sequence of Dropdowns in combined Business Partner Lookups not working [#1927](metasfresh/metasfresh-webui-frontend-legacy#1927) No additional filter parameter from a dropdown selectable when filter has a default value set
Results of IT1
2.. click Forgot Password link:
|
yup, it's ok. that's ur browser...
that's might be a backend issue.... but I think it's only a config issue. |
no, it wasn't, got an email with the correct link now after setting it.. thx for the hint. |
continued IT1 (in release)
@teosarca pls let me know if i forgot to test anything |
created follow ups for the NOKs (see above): |
Is this a bug or feature request?
FR
backend task: metasfresh/metasfresh-webui-api-legacy#1006
What is the current behavior?
Which are the steps to reproduce?
What is the expected or desired behavior?
Implement forgot password functionality as follows.
Login screen: we need the Forgot password link
Page: Send reset password instructions
In this screen user shall enter his/her email address and then press on that button to request an email with reset password link.
When user presses the button:
{{webui.forgotPassword.resetCodeSent.caption}}
message.Page: Set the new password
In previous step, user got an email with password reset instructions.
There he/she got the password reset link which looks like:
https://w101.metasfresh.com:8443/resetPassword?token=ecde7596-7e29-4f85-81f1-502b7f84b1f7
Remark:
Using that token the frontend shall render the password reset page:
To fetch user's full name and email please use: http://w101.metasfresh.com:8081/swagger-ui.html#!/login-rest-controller/getResetPasswordInfoUsingGET
!!! Don't show the user eMail adress on the password change screen !!!
To fetch user's avatar please use: http://w101.metasfresh.com:8081/swagger-ui.html#!/login-rest-controller/getUserAvatarUsingGET which will return the avatar picture if available.
After user is filling the new password and he/she is retyping the new password, frontend shall validate if the new password and retyped password match. If not, it shall display the
{{webui.forgotPassword.error.retypedNewPasswordNotMatch}}
message and the button shall not be active.If everything is OK, frontend shall call http://w101.metasfresh.com:8081/swagger-ui.html#!/login-rest-controller/resetPasswordCompleteUsingPOST endpoint in order to reset the password.
That endpoint might return an error (e.g. password is not valid). That error shall be shown.
In case everything is OK, the user will be logged in and the endpoint will return EXACTLY the same as http://w101.metasfresh.com:8081/swagger-ui.html#!/login-rest-controller/authenticateUsingPOST .
Frontend shall work exactly the same as on login.
If the
loginComplete
property istrue
then user is logged in and the main page shall be displayed.If the
loginComplete
property sifalse
then the "pick role screen" shall be displayed.NOTE: internally webui messages are prefixed with
webui.
but when we provide them to frontend we strip out thewebui.
prefix. When writing this concept I forgot about that, so that's why all the messages are prefixed withwebui.
(see http://w101.metasfresh.com:8081/rest/api/i18n/messages?filter=forgotPassword)The text was updated successfully, but these errors were encountered: