Login Requirements
Login Process
- At login User selects to use Windows Authentication or Built-in Security - If Builtin Security has been disabled the option will not be avalible.
- This option can be disabled by the SysAdmin if only Windows Authentication is being used.
- User provides their usercode and password
- Follow validation rules for the particularAuthentication used, documented below
- Check for Contact Person existance
- if contact does not exist and user does not have User-CreateSelf access, AccessDenied Exception message = "Unable to create contact for user please contact your administrator"
- if contact does not exist and user does have User-CreateSelf access, display Contact Person Add, contact must be created to complete login process.
- Open application Home Screen
Windows Mode Authentication
- Validate the Windows usercode and password is valid
- If not Valid return with Authentication error
- If is Valid continue
- Pull the Windows SID for the User, as well as all Windows Groups the User belongs to
- Pull list of Matched SIDs from the WindowsAccess table (Process rules in the following order)
- If any Group or the user themselves is denied login, return Accessdenied Error
- If no matched SIDs are located return AccessDenied Error
- If user SID any Group is allowed access, the login process can continue.
Built-in Security Authentication
- Validate the usercode and password is valid
- If not valid return with Authentication Error
- If is valid the process can continue.