(cache)(bug): Limited password validation on forgot password (#513) · Issues · Minds / Minds Backend - Engine · GitLab

(bug): Limited password validation on forgot password

Summary

When you forget your password, the password strength enforcement is different. Characters like @ are not allowed, but all lower case with no numbers and symbols is.

Steps to reproduce

Log out
Click on forgot my password on login form
follow instructions
try an all lower case password with an @
try removing the @

Platform information

Very likely cross-platform but reproduced on S7 edge.

What is the current bug behavior?

Weak passwords are allowed.

What is the expected correct behavior?

Weak passwords should not be allowed.

Relevant logs and/or screenshots

(Paste any relevant logs - please use code blocks (```) to format console output, logs, and code as it's very hard to read otherwise.)

Possible fixes

(If you can, link to the line of code that might be responsible for the problem)

Edited 11 minutes ago by Ben Hayward

Ben Hayward @benhayward.ben added 1 - High P - Onboarding P - Platform T - Bug labels 11 minutes ago

added 1 - High P - Onboarding P - Platform T - Bug labels
Ben Hayward @benhayward.ben changed title from (high): Limited password validation on forgot password to (bug): Limited password validation on forgot password 11 minutes ago

changed title from (high): Limited password validation on forgot password to (bug): Limited password validation on forgot password
You're only seeing other activity in the feed. To add a comment, switch to one of the following options.

Please register or sign in to reply