Password Reset

1. Log in to the Kuika platform.
2. Open your project from the Apps screen.
3. Go to the UI Design module.
4. Open the Properties panel on the right side.

5. From the + ADD ACTION menu, add the Authorisation > Add User To Role action according to the desired trigger event (Initial Actions, OnClick, OnBlur, etc.).

Parameter Configuration

Required Parameters:

• New Password (String): The new password to be set by the user.
  
  • It is usually defined using data sources such as Action Result, Current, Form Component, Screen Input or Fixed, and can be linked via the Symbol Picker.

Optional Parameters:

• Don't Send Email (Boolean): Select true if you do not want to send an email notification during the password reset process.
• Language (String): Enter the user's preferred language code. Example: ‘tr’ or “en”

When a user clicks the ‘Forgot My Password’ link on the login screen, the system asks them to go through the verification steps. After successful verification, the user is asked to enter a new password.

Application Flow:

• Element: Save New Password button
• Trigger: OnClick
• Action: Authorisation → Password Reset

Parameter Assignments:

• New Password →
• Don't Send Email → true
• Language → ‘tr’

After passing the verification steps, the user can log back into the application with the new password they set. Security is ensured, and the user experience continues seamlessly.

• Password Security Rules: The new password field can be supported with criteria such as minimum length and use of special characters.
• Password Re-entry Check: A match check can be performed with two fields such as txtNewPassword and txtRepeatPassword.
• Password Reset Notification: A notification message such as ‘Your password has been successfully changed’ can be displayed with the Notify action.

Technical Risks and Controls

• Empty or Invalid Password Entry: Form validation should prevent users from leaving the new password field blank and ensure that they comply with the specified rules.
• Notification Setting Control: If the Don't Send Email parameter is left true unintentionally, the user's password may be changed without notification.
• Code Security: This action should only be triggered for verified users. Otherwise, account security may be compromised.

Password Reset Action allows users to reset their lost or forgotten passwords and securely return to the system. With its customisable parameters, it enhances user experience and supports application security. It can be used effectively in password verification processes and multi-factor authentication scenarios.