You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@fineract.apache.org by "Michael Vorburger (Jira)" <ji...@apache.org> on 2020/09/10 19:30:00 UTC

[jira] [Updated] (FINERACT-424) SELF-SERVICE: store 4 digit pin on back-end

     [ https://issues.apache.org/jira/browse/FINERACT-424?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Michael Vorburger updated FINERACT-424:
---------------------------------------
    Component/s: Security

> SELF-SERVICE: store 4 digit pin on back-end
> -------------------------------------------
>
>                 Key: FINERACT-424
>                 URL: https://issues.apache.org/jira/browse/FINERACT-424
>             Project: Apache Fineract
>          Issue Type: New Feature
>          Components: Security
>            Reporter: Ed Cable
>            Priority: Major
>              Labels: gsoc, p3
>
> First off, in order to make it easier for a user to log in and not have to fully authenticate themselves each time they leave the self-service app, we wanted to enable a 4 digit pin code that could be used to log in to the app (once fully authenticated for a first time). This is pretty standard practice in banking apps.
> We didn't want to store that locally since it wouldn't be secure on phones that are rooted.
> With that constraint, we need to be able to store this pin on the back-end - then it can also be shared across phones as well.
> See https://github.com/openMF/self-service-app/issues/115 and https://github.com/openMF/self-service-app/issues/132



--
This message was sent by Atlassian Jira
(v8.3.4#803005)