In term of the information access control, there have four kinds of security control on this system.
Firstly, each member needs to registration first and then access their private information after logon to the system. The membership login page sees as screenshot-1. Each member’s account default status is disabled. A remind message will prompt up to users while member registration process successfully. Remind message sees as screenshot-2. If user register same name which is existing in database, an error message also will prompt up to the user inform that account name has been taken. Error message sees as the screenshot-3.
Screenshot-1
Screenshot-2
Screenshot-3
Secondly, there has three times user login failed control, system will lockout the information access after three times login failed until the browser restart. System won’t show anything before the login failed counter equal to 3. The system lockout message sees as screenshot-4.
Screenshot-4
Thirdly, system will perform the page accessing rights checking. If user accesses the page without user login, a message will prompt up to the user sees as screenshot-5 and logout the response until the browser restart.Screenshot-5
Finally, user must change their default login password at the first time login. The password update page sees as screenshot-6. If user forgot the login password, member needs to inform the manager to reset their password.
Screenshot-6
No comments:
Post a Comment