Kinetic Edge Health

User Story :
As a registered and verified user, I want to log in using my email and password so that I can securely access my account and dashboard.

Acceptance Criteria :

The login page should include fields for:

Email (required)
Password (required)
“Remember Me” (optional checkbox)
System should validate credentials against registered and verified users only.

If credentials are correct :

User is redirected to their Dashboard.

A success message appears: “Login successful.”

If credentials are invalid :
Show message: “Invalid email or password.”

If the user is not verified :
Show message: “Please verify your email before logging in.”

Password should be stored securely (encrypted, not plain text).

“Remember Me” option should maintain a login session for a defined duration (e.g., 7 days).

After 5 failed login attempts, temporarily lock the account for 15 minutes and display:“Too many failed attempts. Please try again later.”

Notes for QA :

Test valid login with verified user.
Test invalid email or password.
Test login with unverified user — should block access.
Test account lock after multiple failed attempts.
Test “Remember Me” session persistence.
Verify user is redirected to the correct dashboard post-login.