I'm trying to find a way to keep users from changing their passwords to something simple - requiring numerals or a mix of capitals and lowercase. Is this something that could get added to LoginToboggan in the future?

Comments

hunmonk’s picture

this probably wouldn't be too hard with the use of a regex or two, but i'm not interested in coding it. i would review a patch and consider it for inclusion if it allowed the option of this greater enforcement, but didn't require it.

hunmonk’s picture

Status: Active » Closed (works as designed)

we have a minimum password length setting in the module now, and i think that's enough.