Open kaungst opened 10 years ago
megd732
commented
10 years ago I also think that fixing this could go along with the current client side validations; maybe writing our own (client side validations) instead of using the buggy / no longer maintained gem. Though I'm still convinced that we can maybe modify current functionality of the gem to work with our needs.
oshoham
commented
10 years ago We could just require that passwords satisfy a simple regex in the User model. Now that client_side_validations is working correctly, that would do it. Also, I lowered the length requirement to 8 characters, but I can change it back to 10 if we decide that would be better.
10 char is fine, but it's also important that they have at least a number and capital letter? Thoughts? Maybe leverage some site such as this to help quantify password strength to them?
http://www.passwordmeter.com/