[LPS-104838] Apply LPS-89201 to forgot/update password use cases - Liferay Issues

XML

Word

Printable

Type: Bug
Status: Closed
Resolution: Fixed
Affects Version/s: 7.0.X, 7.1.X, 7.2.X, Master
Fix Version/s: 7.0.0 DXP FP90, 7.0.10.13 DXP SP13, 7.0.X, 7.1.10 DXP FP17, 7.1.10.4 SP4, 7.1.X, 7.2.10 DXP FP4, 7.2.X, 7.3.0 CE GA1, 7.3.10 DXP GA1, Master
Component/s: Application Security
Labels:

Branch Version/s:

7.2.x, 7.1.x, 7.0.x
Backported to Branch:

Committed
Fix Priority:
3
Git Pull Request:
https://github.com/brianchandotcom/liferay-portal/pull/81307

Steps to Reproduce:

Go to Control Panel --> Users and create a new user, setup the password and then in Preferences -> Display Settings setup the desired time zone (UTC+01:00) Central European Time
Save the following configuration: go to Control Panel --> Users --> Password Policies --> Default Password Policy and click the 3 dots on the right and click on "Edit" then scroll down to Lockout --> Enable Lockout (Yes)
Maximum Failure: 3
Reset Failure Count: 10 min
Lockout Duration: 5 min
Try to login using the wrong password. After 3 times you will be locked out.
Instead of trying to log a fourth time click on "Forgot Password"
Fill the email address and the text verification and press next.

Expected Results:

The locked error message should appear with a date that takes into account the user timezone.

Actual Results:

The displayed date takes into account the JVM timezone.