Improvement of change password UI/UX | Community
Skip to main content
H
hsim3
New Participant
September 13, 2021
Need info

Improvement of change password UI/UX

  • September 13, 2021
  • 4 replies
  • 1237 views
Request for Feature Enhancement (RFE) Summary:

Want to Improve input items and error message of chenge password.
Use-case:
  • /system/console/configMgr/org.apache.jackrabbit.oak.security.user.UserConfigurationImpl
    Enable "Password On First Login"
  • /system/console/configMgr/org.apache.jackrabbit.oak.spi.security.user.action.DefaultAuthorizableActionProvider
    Set "Configure PasswordValidationAction: Password Constraint"
  • For enhanced security, I want to lock my account after multiple authentication failures.
    For this purpose, we override "AuthenticationHandler.authenticationFailed" to achieve the lock function.
Current/Experienced Behavior:
  • After you have been authenticated with your ID and password, the password change screen will appear.
    You will need to enter the password again on the password change screen.
  • The message on new password validation error is "Your password has expired".
  • "AuthenticationHandler.authenticationFailed" is called with new password validation error.
    Therefore, it will be account locked due to a password validation error.
Improved/Expected Behavior:
  • Message at the time of password validation error is "Password violates password constraintd".
  • Do not call "AuthenticationHandler.authenticationFailed" with new password validation error.
    or to eliminate the current password when chenge password.
Environment Details (AEM version/service pack, any other specifics if applicable): AEM6.5
Customer-name/Organization name:  
Screenshot (if applicable):
Code package (if applicable):  

    4 replies

    H
    hsim3Author
    New Participant
    October 20, 2021

    Hello clatimier

     

    The message on new password validation error is "Your password has expired".
    Could you check this?

    C
    Cedric_LATIMIER
    Employee
    October 19, 2021

    Hi @hsim3 

    When you will connect the first time, you will have the "Your password has expired" message

    Then after providing a new one, you will see a "Your password has been changed successfully" message

     

    If you connect with incorrect credentials, you will see

     

    Does that answer your question? As I'm unsure of what information you're looking for.

    H
    hsim3Author
    New Participant
    September 24, 2021

    Hello clatimier

    Thank you for checking.

    What is expected of the message displayed when a password verification error occurs?

     

     

     

    C
    Cedric_LATIMIER
    Employee
    September 20, 2021

    Hello @hsim3 

    I have tried the behavior on OOTB without customization of "AuthenticationHandler.authenticationFailed" and everything works as expected

    As the override of "AuthenticationHandler.authenticationFailed" is done at the project level via customization, this request will have to be performed at the project level as well unfortunately

     

    Thanks

    Terms & ConditionsAccessibility statement

    Loading footer...