Question

3
Replies
1750
Views
 Karthikeyan Ramalingam (KarthikeyanR2740)
Kaiser Permanente
Principal IT Engineer Applications
Kaiser Permanente
US
KarthikeyanR2740 Member since 2015 14 posts
Kaiser Permanente
Posted: July 9, 2018
Last activity: July 26, 2018
Posted: 9 Jul 2018 14:08 EDT
Last activity: 26 Jul 2018 12:38 EDT
Closed

Customize Error Message during Pega basic login (non-SSO)

Currently when I login to pega using my user ID and password, Pega will throw the error message "The information you entered was not recognized." if I type incorrect user name or password.

I need to customize this error message as per requirement. As per my research, there is code in web-login.html which calls an activity Code-Security.Login which seems to handle the authentication and throw the error message.

<div id="submit_row">
<button id='sub' class="loginButton" name="pyActivity=Code-Security.Login" type="submit" onClick="removeErrorMessage();" >
<span class="loginButtonText" ><pega:lookup property="pxRequestor.pyButtonLabel"
However I could not find the activity Code-Security.Login. The activity is not present in this class. Please see attached screenshots
I checked DSS settings as well. This error message is not part of DSS Settings.
Can someone please guide me on how to customize this error message (basic PRPC login)?
***Updated by moderator: Lochan to update platform capability***
Enterprise Application Development Dev/Designer Studio Security System Administration
Moderation Team has archived post, This thread is closed to future replies. Content and links will no longer be updated. If you have the same/similar Question, please write a new Question.
Posted: 3 years ago
Posted: 10 Jul 2018 13:43 EDT
Kurt Waltz (KurtW_GCS)
PEGA
Principal GCS Solutions Engineer
Pegasystems Inc.
US

Hi,


I haven't attempted this personally, but have a couple of thoughts on how you might be able to dig a little deeper. 


When a browser hits the login screen for a Pega environment, it creates a requestor that you can attach a tracer session to.  You could try capturing a trace of a failed login attempt and seeing which activities (and other rules) are run.


Additionally, you could try running a rule content search (you'll have to be on an indexed system) to see if you can find the text for the message that is displayed on the screen.


Hope this helps!


-Kurt
Posted: 3 years ago
Posted: 11 Jul 2018 10:11 EDT
Karthikeyan Ramalingam (KarthikeyanR2740)
Kaiser Permanente
Principal IT Engineer Applications
Kaiser Permanente
US

Thanks for your reply. I tried both the options already with no luck


1. I am able to remote trace the session with all events and rulesets checked. However the Code-Security.Login activity was not captured in the tracer. So, I could not find where exactly the error is coming from


2. I tried content search for the error message. I also checked in DSS, Field values. I could not figure out any rule reference where it might have been triggered. I changed some java scripts which contained this exact error message with custom error message (Ex., py-login-offline-browser-base). But portal is not picking up. So, it is code somewhere else.
Posted: 3 years ago
Posted: 26 Jul 2018 12:38 EDT
Ron Cohen (coher)
PEGA
Client Support Engineer Senior Fellow
PEG
US

I actually did all the digging, and unfortunately the message is hard-coded into the Engine class com.pega.pegarules.session.internal.mgmt.authentication;


The string is here:  public static final String INFORMATION_NOT_RECOGNIZED = "The information you entered was not recognized.";


I confirmed this was the class outputting the message by enabling DEBUG for the class, entering an invalid password for administrator@pega.com and saw the messages:


2018-07-26 12:32:08,450 [http-apr-7930-exec-6] [ STANDARD] [ ] [ PegaRULES:07.10] (.authentication.Authentication) DEBUG vref0731pg|10.2.45.55 - Trying to validate the input credentials for User : administrator@pega.com  2018-07-26 12:32:08,453 [http-apr-7930-exec-6] [ STANDARD] [ ] [ PegaRULES:07.10] (.authentication.Authentication) DEBUG vref0731pg|10.2.45.55 - Operator administrator@pega.com is not locked  2018-07-26 12:32:08,454 [http-apr-7930-exec-6] [ STANDARD] [ ] [ PegaRULES:07.10] (.authentication.Authentication) DEBUG vref0731pg|10.2.45.55 - The information you entered was not recognized. 


SO I am afraid that you are out of luck :(  You can enter an enhancement request, but there is currently (I did this in 7.3.1) no way to customize this message.