Open kaungst opened 10 years ago
I also think that fixing this could go along with the current client side validations; maybe writing our own (client side validations) instead of using the buggy / no longer maintained gem. Though I'm still convinced that we can maybe modify current functionality of the gem to work with our needs.
We could just require that passwords satisfy a simple regex in the User model. Now that client_side_validations is working correctly, that would do it. Also, I lowered the length requirement to 8 characters, but I can change it back to 10 if we decide that would be better.
10 char is fine, but it's also important that they have at least a number and capital letter? Thoughts? Maybe leverage some site such as this to help quantify password strength to them?
http://www.passwordmeter.com/