Change password on first login

[latin-panda]

Is your feature request related to a problem? Please describe. System admin users create accounts for CHWs and then share the password with them. To enhance the security of these accounts, there should be a way to prompt a password change on the first login.

Describe the solution you'd like On the login page, create a feature to change the password with the following considerations:

• All UI texts should be translatable in CHT's supported languages
• This feature is enabled based on permissions (change_password_first_login)
• Only new users will be prompted to change their password on the first login when the permission is enabled.
• Subsequent logins won't require a password change.
• Changing the password in this step is an online action (they need internet)
• If the CHW can't change the password for some reason, they can't access the app
• If CHW logins for first login and closes the app before changing password, the next time they login (even though it is not technically first login) they are prompted to change password.

[Designs on the making, to be updated here soon]

The scope of this work is to enable changing the password on the first login. It doesn't include changing the password rules or current authentication mechanisms.

[garethbowen]

This feature is enabled based on permissions

Once the MVP is proven then reset password will be mandatory for all projects so we can ensure all users on all instances are not compromised in future. Until then it's fine to use a feature flag so projects can opt-in to try it out.

Subsequent logins won't require a password change.

One addition to this, is the user loses their phone, or forgets their password and the administrator resets it for them, then the user will be required to change their password again. This is because the password has almost certainly been shared in plaintext so it's once again vulnerable to future leaks.