Closed NielsPilgaard closed 1 year ago
At the moment, client-side validation checks whether the password given when creating a user is between 6 and 32 characters, and fails if it is not.
However the password is required to contain at least:
So client-side validation can pass without the password being valid.
I'm submitting a PR shortly to fix this.
I don't want to rewrite this if the rules change 😄
I'll make sure to maintain it 😁
Fixed
At the moment, client-side validation checks whether the password given when creating a user is between 6 and 32 characters, and fails if it is not.
However the password is required to contain at least:
So client-side validation can pass without the password being valid.
I'm submitting a PR shortly to fix this.