EARS

Updated Requirement Spec

CRC-Cards

Operations Contracts

Class Diagram

System Sequence Diagrams

User Login

Add User

Manage Account

Implementation Progress:

http://ears.cse.lehigh.edu/ears/addUser.jsp has the capability to insert a new user into the ears_user table of the ears database. createEARSUser procedure of the EARSUser class. An instance of this class is created, email, first name and last name are set based on the parameters submitted by the form.

password = SHA-1_MessageDigest(username + 8 character randomly generated password). The user is then sent an email at the email address provided with the randomly generated password.

http://ears.cse.lehigh.edu/ears/login.jsp has the capability to query the ears_user table of the ears database to determine if the provided username and password are a valid combination. JavaScript creates a SHA-1_MessageDigest of the username and password on the users local machine so that passwords are not sent over the wire in the clear. A successful login attempt forwards the user to main.jsp. An unsuccessful login attempt employs AJAX to display a commensurate message on the users screen.

http://ears.cse.lehigh.edu/ears/main.jsp tests if a session variable email is set before rendering the page. If this is not the case then the user is not logged in and therefore the user is forwarded to login.jsp where a message is displayed telling the user they must login to access the page.

http://ears.cse.lehigh.edu/ears/updateAccount.jsp allows a logged in user to edit their account data, such as First Name, Last Name, Title, Department, and change their password. Any changes on this screen will require the user to re-enter their existing password for verification of their identity.

This entry was posted on Monday, October 6th, 2008 at 3:35 pm and is filed under Deliverables. You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.