Feature #706
New user password change
Luiz Fernando Avelino0%
Description
Web version requires a new user to change their password when they log on for the first time.
How will this be implemented in desktop version?
History
#1
Updated by Luiz Fernando Avelino over 9 years ago
- Assignee changed from Ricardo Memoria to Maurício Dos Santos
I don't think this is needed. What do you think Maurício?
#2
Updated by Maurício Dos Santos over 9 years ago
- Assignee changed from Maurício Dos Santos to Luiz Fernando Avelino
The system requires a new password because the first password is system generated.
If we assume that the user will be registered by the web and will do the first access through web it is ok. If it will not work this way we need to discuss about it.
Assuming that the user will be registered by the web and will do the first access through web, we need to put this validation on the desktop, to block the access of an user that has its password expired.
#3
Updated by Maurício Dos Santos over 9 years ago
- Status changed from New to Feedback
#4
Updated by Luiz Fernando Avelino over 9 years ago
- Assignee changed from Luiz Fernando Avelino to Maurício Dos Santos
Maurício, assuming that the user needs to have an account in the web version to synchronize or download the data to his desktop computer, I don't think its necessary to have a password to enter the desktop version of the system. What do you think? This might take too much time to develop and for no relevant reason.
#5
Updated by Ricardo Memoria over 9 years ago
I'm afraid a password is necessary...
If password is not given, so the user name is not necessary as well. But system must register the user that executed commands (log operation).
So both user name and password must be given.
If we let user changes its password in the desktop, we will have two different password, at least in some moment in time, in the web and desktop.
I think this should be the flow:
1. User is registered in the web;
2. User must open its e-mail account to receive the password generated by the system, and at this moment he may enter in the web and change it;
3. Desktop must synchronize to receive the new user;
4. User enters in the desktop with the new password;
If Internet is difficult to connect?
If Internet is not available, we could create a command in the desktop to create a new user, and password would be informed during registration.
On next synchronization, new user would be transmitted to the web.
BUT I THINK THIS SOLUTION IS NOT THAT GOOD, because the web would not be able to check some constraints, like checking if user and e-mail are unique.
#6
Updated by Maurício Dos Santos over 9 years ago
- Assignee changed from Maurício Dos Santos to Luiz Fernando Avelino
To work the first way Ricardo suggested the system is ready.
#7
Updated by Luiz Fernando Avelino over 9 years ago
I think that the way it is now its fine. The user must be registered at the online version and then to enter into the off line version there is a need to enter the credentials. That seems to be working well.
#8
Updated by Maurício Dos Santos over 9 years ago
- Status changed from Feedback to Resolved