SaFi Bank Space : IAM: Product handover

Domain overview

Enable secure and reliable access to the app for customer and bank user.

The IAM domain is responsible for:

• Managing customer’s available authentication methods

• Managing bank user’s available authentication methods

• Providing authentication flows based on the available methods

• Providing step-up flows for different authorization requirements based on the available methods.

Customer

• SM-1809 - IAM: Set up secure way of accessing and using the app Resolved

  • Register passcode SM-1209 - Setup user key and password Done

  • Register device biometry

  • Unregister device biometry

• SM-1810 - IAM: Authenticate and authorize with password or biometry Resolved

  • Authorize an action

• SM-1811 - IAM: Authenticate and authorize with step up requirement (MVP-P1) Resolved

• SM-4692 - IAM: Authenticate and authorize with step up requirement (MVP-P2) In Progress

  • Authorize with face matching (Step up)

  • Authorize with vKYC (Step-up fallback)

• SM-1813 - IAM: Logout from the app Done

  • Logout from app

  • Logout from app automatically due to inactivity

• SM-1814 - IAM: Use the app from new device Rework requested

  • Use the app on new device

• SM-1816 - IAM: Offboard user Resolved

  • Offboard user - deny login

• SM-1817 - IAM: Offline mode - access and use app in offline mode To Do

  • Login to app while offline

• SM-1823 - IAM: Offline mode - active operations To Do

Bank User

• SM-1819 - IAM: Bank user identity and access management Done

  • Create a bank user

  • Change a bank user login credentials

  • Offboard a bank user - deny login

• SM-1820 - IAM: Authenticate and authorize bank user in the (Back-Office) bank system Resolved

  • Login to Back Office bank system

  • Provide user data to Back Office bank system [to authorize an action]

• SM-1818 - IAM: Authenticate and authorize to CC agent In Progress

  • Authenticate calling customer

  • Authenticate CC agent

Scope that was not yet completed - Epics

MVP

• Authenticate and authorize with step up requirement

  • Authorize with vKYC (Step-up fallback) - this has been postponed due to AAI changes

SM-1818 - IAM: Authenticate and authorize to CC agent In Progress

SM-1817 - IAM: Offline mode - access and use app in offline mode To Do

Public launch features overview

• SM-1823 - IAM: Offline mode - active operations To Do

• SM-1814 - IAM: Use the app from new device Rework requested

• SM-3900 - IAM: Integration with bank systems To Do

• SM-4148 - IAM: Multiple device support To Do

Documentation and links

• Confluence - https://safibank.atlassian.net/l/cp/k8aafkAH

• Jira

• Designs - UI designs are included in each US on Confluence page as part of the US structure

Important contacts

• Ilija - Product Owner - ilija.sovilj@vacuumlabs.com

• Norbi - Tech Lead - norbert.berci@vacuumlabs.com

• Martin Vodila - FE - martin.vodila@vacuumlabs.com

• Andre Laksmana -FE - andre.laksmana@dkatalis.com

Any other important information

Dependancies with/on other squads, mostly Onboarding and Back Office

Handover checklist

• Domain overview explained
• Not completed MVP scope clarified
• Public launch features explained
• Documentation sources and their structure clear - Confluence, Jira, Designs
• Important contacts covered

Outstanding tasks to complete after handover

• Deep dive on US level for ongoing and planned