As part of our commitment to your success, we’re happy to announce several improvements to WebLink Connect to help you manage your organization more efficiently and effectively. We will roll out these changes in stages beginning Thursday, April 18. All customers will have the release by Monday, April 22.
Improved Password Update Workflow
Last month, we released an important security update that removed plain text passwords from your database. You let us know that the new process of "blanking out" a password when it's saved securely to our central authentication database was confusing, so we added the ability to see a masked placeholder, allowing to can see when a profile already has a username and password. We also made the process of editing those user credentials more clear, so when you need to edit credentials on a member's behalf you are sure it's the correct credentials and that your change has saved a password for them. Click here to learn more.
To review the information from last month's security updates, click here.
This month's release includes the following enhancements and fixes:
- "Send Password Reset Email" link now comes from your Association Info email, instead of a WebLink email address
- Fixed an issue with the Portal Login iframe widget on some website templates
- Added a Favicon option to Branding Settings for public forms
- Updated the new Dashboard landing page to remove $0 line items
- Updated Help Center links from the desktop version to the new Help Center
- Fixed an issue with Email Provider credentials being overwritten on Application Settings save
- Removed legacy dashboard redirect to the new dashboard
- Fixed an issue preventing users from clicking Log Out in event registration forms
- Fixed an intermittent issue with users seeing the wrong organization name in the browser
Current Version Numbers
Desktop Installation: 19.4.0.20059
Web Browser Version: 19.4.0.18386
Public Form (Event registration) Version: 19.4.1
Comments
This is great - thank you for these changes. Will the user password reset link still expire after 3 days?
It is better than what it had previously been. I prefer though the previous way where the total number of astride's corresponded with how many characters were in the password. Was more intuitive and user friendly for how my organization processes these.
I do not understand why you took away the ability to see the passwords to begin with. Members loved that we could give them the password as for some companies there are more than one person that uses the company's password and changing it causes problems.
I realize that we could just make the person an editor of the member but there are certain things that you have to be logged in as the member to do.
Please reconsider not allowing us to see the Member's passwords. We have the ability to log in as them so we already have access to their portal.
I second Katie Brelsford's recommendation - many of our companies do not have emails associated with their records, and the "Main Contact" or "Editors" can change frequently. As she stated, several different people may need to log in as the member company, and one password for the company that we can easily retrieve for them if there is someone new really helps.
Thanks for the feedback, everyone! I definitely understand the need to easily be able to log in as the company, and you can feel free to set the password for them as something "standard" that you can always give them and recommend not changing it to them, for multiple users. Ideally we're hoping to make the Member Portal more accessible to individuals so that the need to share logins is no longer necessary, as that is also not an ideal security practice.
For more information on why it's vital that we make this change for your members' online security, as well as more suggestions on helpful workflows, please review our FAQ article: https://weblink.memberclicks.com/hc/en-us/articles/360026499512-Password-Security-Updates-FAQ.
Thanks for the feedback, everyone! I definitely understand the need to easily be able to log in as the company, and you can feel free to set the password for them as something "standard" that you can always give them and recommend not changing it to them, for multiple users. Ideally we're hoping to make the Member Portal more accessible to individuals so that the need to share logins is no longer necessary, as that is also not an ideal security practice.
For more information on why it's vital that we make this change for your members' online security, as well as more suggestions on helpful workflows, please review our FAQ article: https://weblink.memberclicks.com/hc/en-us/articles/360026499512-Password-Security-Updates-FAQ.
The "Send Password Reset Email" link which now comes from our Association Info email, instead of a WebLink email address is better. However, the email message itself still concerns us because it has the look of a spam message. Many of our members have questioned/hesitated to follow the link. I would highly recommend it be reworked to look like a genuine email. Thank you
Please sign in to leave a comment.