User Activation (Web Credential Activation)

🎯 Purpose

The Web Portal provides a web application that allows authorized users to set up credentials for authentication. This process is also called "Web-Only user activation" when users activate via web without using the REL-ID mobile application.

---

🔧 Password Flow Process

Activation Steps

1. Token Generation: Client/enterprise generates Proof of Authorization token
2. Activation Link: Token sent to user as clickable activation link
3. Password Setup: User presented with "Set Up Password" screen
4. Remember Me Option: User can optionally select browser remembering
5. 2-Step Verification: User prompted to enroll second authentication factor
6. Factor Selection: Choose between SMS OTP or Email OTP
7. Factor Registration: Complete setup of selected authentication method
8. Completion: User redirected to configured redirect URI

---

📋 User State Requirements

---

📊 Token Parameters

---

⚠️ Important Constraints

• Single Use: Tokens cannot be reused after consumption
• No Refresh: Page refresh during activation invalidates token
• State Dependency: User must be in CREATED or RESET state
• Factor Availability: Available 2FA options depend on system configuration

---

🎯 Success and Failure Scenarios

✅ On Success

• User successfully sets up password and second factor
• Browser remembering saved if selected
• User redirected to configured redirect URI
• Credentials immediately available for authentication
• Password can be used for REL-ID mobile app activation (if configured)

---

❌ On Failure

• Token invalidation if page refreshed
• User must obtain new token to restart process
• Missing or disabled authentication factors prevent completion
• System configuration may restrict available options

---