Overview
According to the relevant laws and regulations on the protection of personal data security enacted by the government, sensitive information of user accounts should be encrypted or desensitized during transmission and display to ensure data security.
Mainly includes:
(1) The login password of the account is encrypted during transmission
(2) The login password of the account is encrypted during storage
(3) Sensitive account information supports desensitized display on the front-end
Among them, the first two functions do not involve the page and have been implemented through code; below we will focus on the third function.
Desensitized Display of Sensitive Information
Step 1
Upgrade the system and add a "Display Account Sensitive Information" switch, which is turned off by default.
In the member management list page, sensitive information of the account is desensitized displayed.
In the personal center page, sensitive information of the account is desensitized displayed.
Step 2
If you need to view the real data of the account's sensitive information, you can turn on the "Display Account Sensitive Information" switch. When it is turned on, there will be a compliance risk prompt.
After opening, you can view sensitive information in plain text
Note:
1. Currently, the only sensitive information involved in the account is the phone number
2. The "Display Sensitive Account Information" switch is controlled by permission points. If you cannot see this switch, please contact the administrator to confirm whether this permission point is configured