Password
Flow Description
This flow leverages the out of the box User Self Registration capability. A custom link has been added to the Retail Brand Login page to expose this Self Registration page to new users. This example flow has been configured to collect 4 attributes from the user during the sign up (3 standard attributes and 1 custom attribute - "Birthday") and the Magic Link email verification method has been configured. The Self Registration policy has also been enabled for auto approval ( alternatively an Admin Approval step can be required). Additionally users must complete a reCaptcha before submitting the request to register for a new account. Once the email address supplied has been verified the user will be invited to set a secure password against the OneLogin platform which must pass the variuous password hygiene controls which have been enabled on this flow. After setting the password the user will then be redirected to the hosted OneLogin login page to commence an login request directly to the Cedarstone Retail Application.
Try it out
- Open a new browser session in incognito mode and go to cedarstone-demo.com.
- Select the Retail theme in the App Configuration section in the bottom left corner of the site.
- Click one of the Sign In images and then press the Continue To Sign In button and this will redirect you to the OneLogin hosted login page with the Retail branding applied.
- Select the New Here? link under the Continue button and this will redirect you to a OneLogin hosted Self Registration page.
- Complete the required fields on the form, agree to the conditions, complete the reCaptcha and press the Register button to submit the request.
- Check your email for the branded verification email sent from the cedarstone.com custom smtp server (which in this case is configured to use a Magic Link experience. Please note - OTP mode is also supported) and complete the verification action.
- You will then recieve another email inviting you to complete your account setup by setting your password against the OneLogin Platform.
- To successfully set your new password you must ensure your selected password passes various password hygiene controls that have been enabled on this flow. In this case the Firstname or Lastname attribute of the user can not be used in the password, a password on the custom banned password list enabled is not used (for example "London") and the password must be at least 12 chars long as per the user policy configured in the system. Additionally compromised credential checking is enabled on this policy to ensure the password has not been found on connected dark web sites.
- Once your password has been set successfully you will then be redirected back to the hosted login page to commence a login request to the Cedarstone Retail Application.
More Details
For more details on Branding please see Branding KB. For more details on User Policies please see User Policy KB. For more details on the User Self Registration capability please see Self Reg KB.