Details
-
Improvement
-
Status: Closed
-
Minor
-
Resolution: Won't Fix
-
core-1.8.0
-
None
-
None
Description
At least it might require (example:
- length >= 8.
- at least 1 number.
- at least 1 capital letter.
- at least 1 small letter.
- distinct from email.
See sample implementation at [1]; see also [2]
Ideally, the security add-on might enforce it, and being able to validate it. But for avoiding introducing REST calls or similar solutions, perhaps its better to simply implement it in JavaScript as in the example.
[1]1 http://www.the-art-of-web.com/javascript/validate-password/
[2] http://bootsnipp.com/snippets/featured/password-strength-meter