US089 As a shop owner, I want to our clients log in securely with their credentials, so that information and purchase history are protected

Description:

As a shop owner, I want to our clients log in securely with their credentials, so that information and purchase history are protected.

I want to know that security on the platform is handled properly so that login and personal information won't be leaking to bad faith actors.

Linked Requirements & Use Cases?

• Link to requirements
• Use case (UC1) for user login
• [Link to other material]

Current Definition of Done

• Implemented
• Pair Reviewed
• Tested
• Documents updated
• ? other

Acceptance Criterias

• Users can log in using valid credentials, and the session is securely established. (#234)
• Login forms reject invalid credentials and show appropriate error messages. (#235)
• Sensitive user data (e.g., passwords, session tokens) is never transmitted or stored in plain text. (#236)
• Admin users can log in using valid credentials, and the session is securely established. (#256)
• Admin Login form reject invalid credentials and show appropriate error messages. (#257)