Step 3: Configure the Filters
Four filters are required for a successful set up of the password reset system.
Create: This filter will create user records in the internal.password_reset table by using data from the source system.
Update: This filter will return all users who currently have a record in the internal.password_reset table, and will be used to keep that record up-to-date with information from the source system.
Delete: This filter will remove records from the internal.password_reset table that do no match up with records from the source system. This prevents, for example, ex-employees from being able to reset their account passwords.
Profile Lookup: This parameterized filter will be used by the password reset app to look up and validate a single user based on their unique identifier. This filter will also return information about the users' account in the target system(s), which will be used to reset their password.
Note
The specifics of your own filters will differ depending on your source system. As such, this article will provide only general guidance. For information and steps on how to create filters, see our filters article.
Create
This filter should start at the source system and have an "any" relation to the target system(s) in which passwords will be reset (e.g., Active Directory). In addition, it should have a "no" relation to the internal.password_reset table so that it only returns users who do not yet have records in that table.
Important
Consider adding additional filter criteria so that only users with a valid email address and/or SMS number are returned. Users without valid contact details will not be able to use the password reset system, and should not be added to the internal.password_reset table.
Important
Any phone number that will be used for SMS messages must be in the format of +<countrycode><phonenumber>. For example a United States phone number of (555) 867-5309 should be formatted as +15558675309. If necessary, you can create a calculated field to return a formatted value.
Update
This filter should start at the source system and have an "any" relation to both the target system(s) in which passwords will be reset (e.g., Active Directory) and the internal.password_reset table. This filter will be used to keep the internal.password_reset table up-to-date with source data.
Delete
This filter should start at the internal.password_reset table and have a "no" relation to the source system. This filter will be used to remove records from the internal.password_reset table that do no relate to a source record.
Profile Lookup
This filter can be a child of the Update filter. You will need to create a parameter called "ExternalID". Underneath the internal.password_reset table, it should have an expression that compares that parameter to the value of the ExternalID column of that table.
