Upgrading the Security Module: how to migrate from the Old to the New

Upgrading the Security Module: how to migrate from the old to the new

Web application attacks are constantly evolving. With data being such a valuable asset, it is crucial to keep system security updated to avoid losses. The new security module, besides being extremely flexible and intuitive, implements several security features and best practices, making the system much more robust against these attacks.

In this article, we will learn how to migrate from the old security module to the new one, taking advantage of all these benefits.

What is required?

Before we can carry out the migration, we need to prepare the old module to receive updates because, as mentioned earlier, the new module implements several improvements and features that were not present in the old one. To do this, we will need to modify the “sec_users” table created by the module.

Notes
By default, tables created by the security module have the prefix "sec_" and are located in the "Security" directory of the project.

Modifying the sec_users Table

Warning
The Database builder is not available for all DBMS. It is possible to make the same changes using any tool that allows database management — such as Dbeaver, for example.
      1. Access the database builder via Database → Database builder:


      2. Look for the “SQL command” option:


      3. Execute the SQL Alter table command to add the fields “role,” “phone,” “pswd_last_updated,” and “mfa_last_updated” to the sec_users table

Alert
Note that “role” and “phone” will be of type TEXT, while “pswd_last_updated” and “mfa_last_updated” will be of type TIMESTAMP. It is important to select the appropriate data type according to your DBMS — like Varchar and TIMESTAMP for MySQL, for example.

  1. ALTER TABLE sec_users ADD COLUMN phone TEXT NULL DEFAULT NULL;
  2. ALTER TABLE sec_users ADD COLUMN role TEXT NULL DEFAULT NULL;
  3. ALTER TABLE sec_users ADD COLUMN pswd_last_updated TIMESTAMP NULL DEFAULT NULL;
  4. ALTER TABLE sec_users ADD COLUMN mfa_last_updated TIMESTAMP NULL DEFAULT NULL;


Migrating to the New Security Module

Once the modification to the sec_users table is complete, you can proceed with the migration to the new security module:

      1. Access Modules → Security


      2. Click on “Create security module”:


      3. Select the type of security that will be used:

Alert
It is important that the security type of the new module matches the old one.


      4. Select the connection that contains the tables from the old module and check the “Use existing tables” option


      5. Click the reload button “↻” to Scriptcase can see the changes in the table and click “Next”


      6. Associate the fields with the corresponding columns and click “Next”:

USER:

  • Table → sec_users
  • Login → login
  • Password → pswd
  • Name → name
  • Phone → phone
  • Position → role
  • E-mail → email
  • Active → active
  • Activation code → activation_code
  • Administrator privilege → priv_admin
  • Two-Factor authentication (2FA) → mfa
  • Picture → picture
  • Last password change → pswd_last_updated
  • Revalidation time → mfa_last_updated


GROUP:

  • Table → sec_groups
  • ID → group_id
  • Description → description


APPLICATION:

  • Table → sec_apps
  • Application Name → app_name
  • Description → description
  • Type of Application → app_type


USER/GROUP:

  • Table → sec_users_groups
  • Login → login
  • Group Code → group_id


GROUP/APPLICATION:

  • Table → sec_groups_apps
  • Group Code → group_id
  • Application Name → app_name
  • Access Privilege → priv_access
  • Insert Privilege → priv_insert
  • Delete Privilege → priv_delete
  • Update Privilege → priv_update
  • Export Privilege → priv_export
  • Print Privilege → priv_print


SETTINGS:

  • Table → sec_settings
  • Name → set_name
  • Value → set_value


      7. Choose the prefix for the new module’s applications.


      8. Fill in the “Email Settings” tab and click on “Generate security”


      9. The option to save the profile is optional — you can read more about it in the documentation of the new security module. Click “OK”.


      10. Generate the source code for the new applications.


Conclusion

In this article, we learned about the importance of keeping the security of a project updated, the differences between the old and new security modules, and how to migrate from one to the other.

For questions related to the old module and its functionalities, refer to the documentation of the old security module.

For questions related to the new module, refer to the official documentation of the new security module.


    • Related Articles

    • Security module password recovery error

      To fix the error during the security module password recovery process, you need to follow the steps below: Only available when using the option to email the change new password link. 1- Access the application app_change_pswd By default, when ...

    • Update of the security module synchronization application

      In order to improve security in our projects, we made several changes to the application files. One of these changes affected a crucial file that tells applications how to sync. To ensure that the synchronization continues to work correctly, we made ...

    • Security Module Two-Factor Authentication - Google Authenticator

      Google Authenticator generates 2-step verification codes on your smartphone. Two-Step Verification provides greater security for your account as it requires a second verification step at login. In addition to the password, you will need a code ...

    • Hide/Show "New User" field on login screen with HTML template

      In this article, we will learn how to enable the "Hide/Show" feature that is available within the "Security -> Settings" option, for the "New User" field found in the login screen that was generated with HTML template. Currently, this feature is ...

    • How to change the log module table

      After creating the Scriptcase log module, it is possible to change the table. When making this change, a new table will be created from scratch with no records. The records in the previous table must be migrated to your database. How to edit log ...