Project

General

Profile

Actions
Copy link

EPIC #539

open
« Previous | 61 of 91 | Next »

Feature #533: Authentication Hum Rahi

Epic: User Authentication - OTP Verification & Security

Added by Islam Mansoori about 1 month ago. Updated 28 days ago.

Status:
To Do
Priority:
low
Assignee:
-
Target version:
Humrahi MVP
Start date:
Due date:
% Done:

26%

Estimated time:
(Total: 0:00 h)
Reviewer:
Islam Mansoori

Description

Epic Description: Securely verify the user's mobile number via a 6-digit OTP. This epic ensures data integrity, prevents brute-force attacks through account locking, and transitions the user from a "guest" state to a "verified" state.

Summary of Sequence for Implementation

Back-end Story 2: Establish the verification API (core functionality).

Front-end Story 1: Build the input boxes and focus logic (basic UI).

Back-end Story 3: Implement security lockouts (crucial for production safety).

Front-end Story 4: Add the UX polish with the Resend Timer.

Subtasks 15 (7 open8 closed)

User Story #540: User Story HR-FE-01: 6-Digit OTP Input UI & Auto-Focus LogicTo Do

Actions
User Story #541: User Story HR-BE-01: OTP Validation API & Token GenerationTo Do

Actions
Task #557: Create OTP Verification API EndpointBackend completedzaid ali

Actions
Task #558: Implement OTP Validation LogicBackend completedzaid ali

Actions
Task #559: Implement OTP Expiry HandlingBackend completedzaid ali

Actions
User Story #560: Invalidate OTP After Successful VerificationBackend completedzaid ali

Actions
User Story #561: Implement JWT Token Generation After Successful OTP VerificationBackend completedzaid ali

Actions
User Story #562: Persist Refresh Token in Redis for Session ManagementBackend completedzaid ali

Actions
User Story #563: Implement Error Handling for OTP Verification FailuresBackend completedzaid ali

Actions
Task #564: Document OTP Verification API in Swagger/OpenAPITo Dozaid ali

Actions
User Story #542: User Story HR-BE-02: Security Lockout & Brute-Force ProtectionBackend completedYousuf Khan

Actions
User Story #543: User Story HR-FE-02: Security Alert & Lockout UI HandlingTo Do

Actions
User Story #544: User Story HR-FE-03: Resend OTP Timer & LogicTo Do

Actions
User Story #545: User Story HR-FE-04: Navigation & Back-Flow HandlingTo Do

Actions
User Story #546: user story front end - Post-Verification ScenariosTo Do

Actions
Actions
Copy link

Also available in: Atom PDF