nus-se-bot
commented
1 year ago [IMPORTANT!: Please do not edit or reply to this comment using the GitHub UI. You can respond to it using CATcher during the next phase of the PE]
Team's Response
Response: Not in scope
Justification: This is an intended design for this feature. As noted below in the screenshot of our UG under registering, our design principle for the user account feature is that different users can have the same name and hence, username since patients are likely to use their actual names during the registration process in the medical context. Due to this consideration, we have decided that the passwords for the user accounts should be unique instead of the username. This is a different design principle from other applications, where usernames have to be unique instead of passwords. The reason why either usernames or passwords need to be unique is to allow applications to differentiate between different user accounts. Thus, this issue is out of scope based on our design principle. Severity is low since it does not affect normal operations of the application, and simply causes the same minor inconvenience to users that is present in any and all other applications in the world.
Items for the Tester to Verify
:question: Issue response
Team chose [response.NotInScope]
- [ ] I disagree
Reason for disagreement: [replace this with your reason]
## :question: Issue severity Team chose [`severity.Low`] Originally [`severity.Medium`] - [ ] I disagree **Reason for disagreement:** [replace this with your reason]
It doesn't make sense that different username cannot use the same password. User should be able to register with the same password with different username.