New procedure for recovering passwords of users of 1C infobases


Carried out in model

Altering passwords of customers of 1C infobases beforehand offered some problem. The administrator needed to manually change the password of a person who had forgotten their credentials. When switching to distant work, we performed a survey on the “By the Wanting Glass” and on the companion discussion board, during which customers and companions expressed their needs to make the method of fixing passwords extra handy. In consequence, we have now added a brand new process for recovering the password for customers of file and server infobases.

Authentication type modifications

Now you possibly can add “Forgot your password?” Buttons to authentication varieties for skinny, thick and net shoppers. and “Need assistance” by configuring the show within the infobase parameters. The up to date type appears like this:

How is the password restoration process going?

If you click on on the “Forgot your password” button, one among three actions is carried out:

  • Following a hyperlink;

  • Sending an e-mail with a password restoration code from the usual 1C service;

  • Sending an e-mail with a password restoration code from any SMTP server, the deal with of which is configured by the administrator.

The primary choice will enable the administrator or companion to independently customise any habits when recovering a password. On this case, once you click on on the “Forgot your password?” the browser web page specified within the infobase settings opens.

The choice utilizing the usual 1C service will make it doable to launch a password restoration mechanism with minimal effort. On this case, a type for getting into an e-mail is exhibited to the person.

If the desired deal with is discovered, then when clicking on the “Get code” button, the person is proven a brand new type to vary the password:

After getting into the right code, the person will be capable to set a brand new password.

The platform controls the variety of makes an attempt to enter the affirmation code. If the worth set within the infobase settings is exceeded, the person must request a brand new code. As well as, the administrator can restrict the frequency of requests for brand new codes and set a minimal time between requests.

The choice of sending an e-mail with a restoration code utilizing the desired SMTP parameters is much like utilizing the usual 1C service. Solely the letter doesn’t come from the 1C mail service, however from the SMTP server arrange by the administrator (together with the company one). This selection, amongst different issues, means that you can customise the person textual content and design of the letter.

When you use OpenID authentication, then in any case, the password might be modified on the supplier, since that is the place authentication takes place. After altering the password, the transition to the type of authentication within the supplier takes place.

The “Need assistance” button can be utilized to point the deal with of a website with info on what to do when a person can’t enter, forgot his login, or shouldn’t be registered in any respect within the infobase (the place to name or write, the place to register, and so on.) …

How you can change authentication settings

You possibly can change the authentication settings from the configurator and from the built-in language.

A brand new merchandise “Extra authentication settings” has been added to the “Administration” menu within the configurator:

A variety of habits settings has been carried out (within the screenshot beneath). Together with you possibly can edit the textual content of the despatched letter.

In embedded language, a brand new AdditionalAuthenticationSettings object has been added to the worldwide context. An instance of fixing the authentication settings is proven beneath:

Password Restoration Settings = New Password Restoration Settings ();
Password Restoration Settings. Password Restoration Technique =
Technique for Recovering Consumer’s Data Base Password. Navigation by Navigation Hyperlink;
Password Restoration Settings. Consumer SMTP = “[email protected]”;
Password Restoration Settings. Password SMTP = “123”;
Password Restoration Settings.SMTP Port = 465;
Password Restoration Settings.UseSSL = True;
Password Restoration Settings. Sender Title = “Administrator”;
Password Restoration Settings.Header = “Password Restoration”;
Password Restoration Settings.HTMLMessageText = “ Enter the code
| &VerificationCode для сброса пароля.

AdditionalAuthenticationSettingsPasswordRestorationSettings (PasswordRestoration Settings);

Two new fields have been added to the shape for enhancing infobase customers: an e-mail deal with and the power to stop a person from recovering a password.

As well as, within the built-in language for altering person settings, new properties have been added to the DataBaseUser information sort: E-Mail Tackle, Forbidden to RestorePassword, which let you configure the corresponding parameters.

Consumer password change occasions and unsuccessful makes an attempt are logged within the log. For this objective, the registration of the fields “e-mail deal with” and “the person shouldn’t be allowed to recuperate the password” has been added to the person change occasions.

Inform pals:


Related Articles

Latest Articles