Open ronaldheft-gov opened 3 years ago
@Bisonburger The CDC rejected the AC-8 compliance change for the following reasons:
1) The CDC logo on the Okta sign-on page is served from clearbits.com and not a CDC.gov domain. The logo used should be the newer version, as we have shown in the footer of the site. (i.e. https://reportstream.cdc.gov/assets/img/cdc-logo.svg)
2) The words "Terms of Service" should be linked to the TOS page in the following text on the login page:
This is a U.S. government service. Your use indicates your consent to monitoring, recording, and no expectation of privacy. Misuse is subject to criminal and civil penalties. By logging in, you are agreeing to our terms of service.
3) If the AC-8 text can be not be placed within the Okta box, as has been done on the SimpleReport login page, it needs to be placed above the Okta login box.
4) On the Terms of Service page, the AC-8 text must appear separate from the Terms of Service. It only lives on the page and it not part of the Terms of Service. It should be placed about the header "Terms of service – PRIME ReportStream".
Problem statement
The ReportStream login page is not AC-8 compliant for a government system.
What you need to know
AC-8 compliance text must appear on the login page.
Acceptance criteria
You can see an example of both text added to SimpleReport's login page and TOS.