|
User authentication is by means of a user name and password stored in the Birdmaster database and administered by a 'super user' account. Once a user is set up they will have the ability to change their own password whenever they desire.The Super User account will be created at system installation time with a default password.
An individual users authentication status will be maintained by means of a session identifier that will keep track of whether the user is authenticated and when authentication last took place. After a set period of time authentication will expire and a user will have to re-enter their user name and password to continue using the system.
The following tables details the User Authentication Features:
Non-functional Requirements:
|
| UC.2.1 |
Add A User |
Top |
Entry
Criteria |
The Super User must have already been authenticated and logged into the Birdmaster application. |
|
| UC.2.1.1 |
The Super User enters the name of a new birder. |
|
| UC.2.1.2 |
The Super User enters a password for the new birder. |
|
| UC.2.1.3 |
The Super User submits the new birders name. |
|
Exit
Criteria |
The users name and password have been added to the database. |
|
Alternate
Flows |
|
|
| A.2.1.1 |
The Super User submits the name of a birder that already exists in the database.
A message is displayed to state that the birder already exists.
Processing continues at step UC.2.1.1 above.
|
|
| A.2.1.2 |
The Super User submits the new birder but the name exceeds the maximum size allowed for a birders name.
A message is displayed to state that the birders name is too long.
Processing continues at step UC.2.1.1 above.
|
|
| A.2.1.3 |
The Super User submits the new birder but the password exceeds the maximum size allowed for a birders password.
A message is displayed to state that the birders password is too long.
Processing continues at step UC.2.1.2 above.
|
|
| A.2.1.4 |
The Super User resets the form.
All data entered is cleared.
Processing continues at step UC.2.1.1 above.
|
|
|
| UC.2.2 |
Delete A User |
Top |
Entry
Criteria |
The Super User must have already been authenticated and logged into the Birdmaster application. |
|
| UC.2.2.1 |
A list of the existing users are displayed on the screen.
Note: The Super User is excluded from the list of users to prevent accidental
deletion. |
|
| UC.2.2.2 |
The Super User selects any number of users from the list. |
|
| UC.2.2.3 |
The Super User submits to delete these users. |
|
Exit
Criteria |
The users name(s) and password(s) have been removed from the database. |
|
Alternate
Flows |
|
|
| A.2.2.1 |
The Super User submits the delete without having selected any users.
A message is displayed to state that no users have been selected for deletion.
Processing continues at step UC.2.2.1 above.
|
|
| A.2.2.2 |
The Super User resets the form.
All users are deselected.
Processing continues at step UC.2.2.2 above.
|
|
|
| UC.2.3 |
User Login |
Top |
Entry
Criteria |
The login screen must be displayed. |
|
| UC.2.3.1 |
The user enters their user name. |
|
| UC.2.3.2 |
The user enters their password. |
|
| UC.2.3.3 |
The User clicks the login button. |
|
Exit
Criteria |
The user is successfully logged into the Birdmaster system.
The authentication time is recorded in the users session record.
The user is allocated a session id. |
|
Alternate
Flows |
|
|
| A.2.3.1 |
The user enters an incorrect user name and / or password.
A message is displayed to state user name or password are incorrect.
Processing continues at step UC.2.3.1 above.
|
|
|
| UC.2.4 |
User Logout |
Top |
Entry
Criteria |
The user is logged into the Birdmaster system. |
|
| UC.2.4.1 |
The user clicks on the log out menu item. |
|
Exit
Criteria |
The user is logged out of the Birdmaster system.
The login screen is displayed.
The user session information is deleted. |
|
|
| UC.2.5 |
User Password Change |
Top |
Entry
Criteria |
The user must be already logged into the Birdmaster system.
The User Settings screen must have been displayed |
|
| UC.2.5.1 |
The user enters their existing password. |
|
| UC.2.5.2 |
The user enters their new password. |
|
| UC.2.5.3 |
The user re-enters their new password for confirmation. |
|
| UC.2.5.4 |
The user submits the new password. |
|
Exit
Criteria |
The users password has been updated in the database.
| |
Alternate
Flows |
|
|
| A.2.5.1 |
The user submits an incorrect existing password.
A message is displayed to state user password is incorrect.
Processing continues at step UC.2.5.1 above.
|
|
| A.2.5.2 |
The new password and the confirmation password do not match.
A message is displayed to state the two passwords do not match.
Processing continues at step UC.2.5.1 above.
|
|
| A.2.5.3 |
The user resets the form.
All input fields are cleared.
Processing continues at step UC.2.5.1 above.
|
|
|
| UC.2.6 |
Super User Changes User Password |
Top |
| |
This Use Case will be invoked in the case that a user has forgotten their password and so cannot log in to change it themselves. |
|
Entry
Criteria |
The Super User must be already logged into the Birdmaster system.
|
|
| UC.2.6.1 |
A list of the existing users is displayed on the screen. |
|
| UC.2.6.2 |
The Super User selects an individual user. |
|
| UC.2.6.3 |
The password change form is displayed for that user. |
|
| UC.2.6.4 |
The Super User enter the new password. |
|
| UC.2.6.5 |
The Super User submits the new password. |
|
Exit
Criteria |
The users password has been updated in the database.
| |
Alternate
Flows |
|
|
| A.2.6.1 |
The Super User enters a new password that exceeds the maximum size for passwords.
A message is displayed to state the password is too long.
Processing continues at step UC.2.6.1 above.
|
|
| A.2.6.2 |
The user resets the form.
All input fields are cleared.
Processing continues at step UC.2.6.1 above.
|
|
|
| NF.2.1 |
Session Timeout |
Top |
Entry
Criteria |
|
|
| NF.2.1.1 |
A Users session shall timeout after 3 hours inactivity. |
|
| NF.2.1.2 |
Each time a user invokes a new screen their session timeout shall be reset to 0. |
|
| NF.2.1.3 |
Once a session has timed out a user shall be returned to the login screen again to establish a new session.. |
|
| NF.2.1.4 |
A timed out session details shall be deleted from the system. |
|
Exit
Criteria |
|
|
|
|
|