Password Strength Is Not Enforcing Password Strength On The Server

work77 - October 1, 2009 - 20:49

As admin, I check marked "Verify password strength on server" as well as "Test password not same as username". Clicked Save. Then when I tested found the Javascript does everything correctly but neither of the above is checked on the server, and the bad passwords are allowed. Any suggestions.

Thanks.

» Login or register to post comments

These are just suggestions

Alan D. - October 2, 2009 - 13:28

These are just suggestions for the user. I would assume there is a module that would help, but I do not personally know about one.

Alan Davison
www.caignwebs.com.au

-

work77 - October 2, 2009 - 16:01

Hi. Thanks for responding. It seems a little misleading then that it reads, "Verify password strength on server...
Drupal should verify and enforce password strength on the server (i.e. not only in JavaScript)."

I could see where "verify" could mean a suggestion, as you stated. But I figured "enforce" would mean enforce. Seems silly that the admin can't actually REQUIRE that.

I guess I'll be checking out other modules.

thanks again.

Update

work77 - October 5, 2009 - 20:42

For anyone interested, the Password Policy module does it all! Thanks to whoever wrote it!

http://drupal.org/project/password_policy

Password Strength Is Not Enforcing Password Strength On The Server

These are just suggestions

-

Update

User login

Contributor links