Right now all a user needs to do to have a password accepted for registration is put something in the field. It'll take spaces and single characters. Obviously this is non-ideal. Let's develop a set of simple, reasonable requirements for passwords and set the form to validate them correctly.
My thought, at least for development, is to require a password be at least 4 characters long and contain no spaces. We can always change this later on if we feel the need for greater security, but it will mean that quick-and-dirty accounts for testing like "test/test" will still work.
Right now all a user needs to do to have a password accepted for registration is put something in the field. It'll take spaces and single characters. Obviously this is non-ideal. Let's develop a set of simple, reasonable requirements for passwords and set the form to validate them correctly.
My thought, at least for development, is to require a password be at least 4 characters long and contain no spaces. We can always change this later on if we feel the need for greater security, but it will mean that quick-and-dirty accounts for testing like "test/test" will still work.