FINERACT-2003: Enforce password reset on first login #5387
Conversation
| </addColumn> | ||
| </changeSet> | ||
|
|
||
| <changeSet author="fineract" id="2" context="postgresql"> |
There was a problem hiding this comment.
Could you please add a context for MariaDb?
There was a problem hiding this comment.
Hi Victor, thank you for the review!
I looked into this to be sure, and since the c_configuration table is defined with autoIncrement="true" in the initial schema, MariaDB and MySQL automatically handle the ID counter updates when we insert new rows.
The setval command included here is specifically to manually sync the PostgreSQL sequence, which doesn't update automatically in the same way. I believe we don't need an equivalent step for MariaDB, but please let me know if you'd prefer I handle it differently!
|
@IOhacker I looked into the failed tests ,failures are in LoanDelayedScheduleCaptures and LoanMerchantIssuedRefund but these appear to be unrelated to the Authentication changes in this PR. could you please re-run them? |
DeathGun44
force-pushed
the
FINERACT-2003/enforce-password-reset-on-first-login
branch
from
2d8b6b9 to
cabcc33
Compare
|
@adamsaghy Happy to take reviews, if any |
2 participants
Description
Implemented FINERACT-2003: Enforce password reset on first login.
This PR adds a configurable policy forcing users to change their password upon first login or after an admin reset.
Key Changes
password_reset_requiredcolumn tom_appuser. System usermifosis explicitly exempted.force-password-reset-on-first-loginglobal flag.PlatformUserDetailsCheckerto enforce the check post-authentication, replacing customDaoAuthenticationProviderinheritance.trueon User Creation and Admin Password Reset.falseon successful Self Password Change.PasswordResetRequiredException(HTTP 403) to signal the UI.Checklist