Re-authenticating
Success Criterion 2.2.5 (Level AAA)

Question

When a session times out and re-authentication is required, is previously entered form data retained so the user does not have to re-enter data?

Why is this important

Individuals with visual disabilities, dexterity impairments, and cognitive limitations may require more time to perform on-line functions like entering data into a web page or application. Some sites implement security measures that log the user out after a set amount of time of user inactivity. If a user is required to re-authenticate their session by logging in again, restoring previously entered data ensures users can resume where they left off in order to finish the activity.

Whom does it benefit?

Example 1:

As a person with a visual impairment who uses a screen reader, completing forms can be difficult and time consuming.
I want previously entered data to be restored if I am automatically timed out of a session,
so that I can log back in and continue to complete the form where I left off.

Need technical guidance?

• SC 2.2.5 - Quick Reference

Additional Resources to help you:

• 2.2.5 - Re-authenticating - WUHCAG: Web Accessibility for Developers
• HTML CodeSniffer 2.2.5 Re-authenticating - HTML_CodeSniffer