New permission that allows admin users to reset PINs.
Overview
The main purpose of this feature is to allow users to reset their PIN within the UI if they have forgotten their original PIN. Access to this functionality is limited by a newly introduced permission.
Functional aspects
A button has been introduced on the right side panel action:
The result of the reset button is to open a new dialog box (similar with lost mode):
The channel to send this pin can be configured to Verbal, SMS or Email (a new notification template has been added - “RESET_INDIVIDUAL_PIN”).
For the modal channel delivery type, we also implemented in the Orchestrator - > Authentication methods - > Pin a code delivery option configuration:
An example of template for the notification:
<title> Individual PIN was reset</title>
<body> Your individual PIN was reset by the admin. Your new PIN is ${params.newPIN} and will expire in ${params.newPINExpiryDays} days.</body>
The server will generate a temporary PIN and send it directly to the user. Once issued, users with the temporary PIN will have full access to all features. The objective for users with temporary PINs is to change the PIN on the first use of it.
The new permission that will grand the power to reset the PIN for a identity can be separately added to the desired group (eg TechSupport) and the Administrators and AppAdmins will have this permission integrated. Those that have the new permission will be able to see the reset action button and click on it.