Account Security Module as part of the ToolTime transformation
About the project
ToolTime to kompleksowe oprogramowanie do zarządzania zleceniami i operacjami w firmach rzemieślniczych. Umożliwia tworzenie ofert, faktur, planowanie pracy oraz śledzenie czasu pracy pracowników.
Aplikacja, dostępna w wersji webowej i mobilnej, pozwala na dokumentowanie postępów w czasie rzeczywistym, co przekłada się na wyższą efektywność operacyjną. Rozwiązanie wspiera zespoły w eliminacji papierowej dokumentacji i usprawnia przepływ informacji.
Optimization of the app development process
Increased security of user accounts
Efficient management of IT resources
Customer experience
Seamless onboarding, a highly motivated team, and excellent cultural fit — thanks to fireup.pro, we went from project kick-off to execution in record time!
Marcel Mansfeld
CPO
From challenge
Key Challenges
Modernization of account management
Modernization of account management
Bridging the gap with the competition by implementing modern account management features.
User account security
User account security
Development of the security module. Streamlining password reset and data verification processes using technologies compatible with existing systems.
Integration of the external team
Integration of the external team
Aligning the external team with the client’s workflows and methodologies.
Development of ToolTime’s design system
Development of ToolTime’s design system
Improving and expanding ToolTime’s custom design system.
Key functional and non-functional requirements
A module that enables updating and verifying email addresses and phone numbers
A secure password reset process based on verified communication channels
Compliance with the client’s architecture and high reliability
Compatibility with technologies used by ToolTime, including AWS Cognito
Process optimization to ensure better handling of a growing user base
Through the solution
Through the solution
Onboarding in Berlin
Two-day workshops during which the team became familiar with the client’s processes, company structure, and needs. At this stage, collaboration guidelines and access to client resources were established.
Adopting work methods
- Adoption of the Kanban methodology used by the client.
- Organization of weekly grooming sessions and daily stand-up meetings.
Technological decisions
- Improving communication with the client, identifying key stakeholders and support resources.
- Password change – AWS Amplify was selected for better compatibility with the existing infrastructure.
- Password reset – instead of AWS Amplify, the fireup.pro team opted for a custom backend solution with new verification methods.
- User verification (email, phone) handled by the backend, which improved version control compared to AWS Lambda.
Implementation
- Creation of the Account Security module.
- Email - adding, verifying and changing.
- Phone number – adding, verifying and changing.
- Personal data update.
- Password change by the logged-in user.
- Implementation of password reset using verified communication channels.
Optimisation
- Using MVVM (Model-View-ViewModel) for better separation of application layers.
- State management using RxJS.
To the success
Technological outcomes
Email address management
Users can independently change their email addresses, add new ones, and verify them to enhance security and facilitate account recovery.
Phone number management
Users can change their phone numbers, add new ones, and verify them, providing an additional layer of account protection and the ability to quickly restore access.
Higher level of data protection
The level of personal data security has been increased, resulting in greater user trust in the platform.
Modern account recovery methods
The ability to recover account access using modern verification methods, such as email or phone number, has been introduced, designed specifically to meet the needs of ToolTime.
Business benefits
Reduction in customer support tickets due to increased user autonomy.
Strengthening ToolTime’s competitive position through modern features & improved service quality.
Enhancing the security of the web and mobile applications.
Project team
Max
Team Leader,
Frontend, Mobile
Tech stack
AWS Cognito
RxJS
GraphQL
Rest API
Docker
React
CircleCI
Transifex
Datadog
Storybook
Chromatic
Your success is our success
See how we can build a technological advantage for your company together.
Innovations
Implementation of MVVM for better separation of application layers.
Creation of a microservice for the account security module in accordance with ToolTime's architecture.
Use of Chromatic by the developer & close collaboration with the designer to ensure consistency between design system changes in Figma and code implementation.
Optimization of application state management using RxJS.
Using containerization for testing in a Docker environment.
Integration with the existing monolith.
We have a team that truly knows its stuff — we'll help you find a solution that works.
Conclusions & recommendations
A two-day onboarding with the client allows for a quick understanding of processes and team adaptation.
Clear acceptance criteria and regular meetings minimize project risks.
