[Fusionforge-general] fusionforge account password validation

Matthieu Imbert matthieu.imbert at inria.fr
Thu Aug 11 15:26:17 CEST 2016


On 08/10/2016 07:47 AM, Michael Kluge wrote:
> My 2 cent: I have each password input checked against a regular expression
> (which is in the config). Thus, I can adapt this easily as password rules get
> updated. Should I try to submit this as a patch? What actually would be needed
> as well in the config (did no do this yet) is an explanation of the password
> rules (maybe in HTML). This would each site allow to use the local rules and
> to put explanations into the fusionforge config.
>
> Regards, Michael

If you have a patch ready, this can be a more flexible alternative to my 
"hard coded" constraints approach.

But:

- it seems to me that simple and very common constraints such as "must 
contain at least one uppercase, one lowercase, one digit, one 
non-alphanumeric" do not translate easily or at all to a single regex

- how to handle the need to advertize the constraint(s) to the user in a 
localizable way?

best,

-- 
Matthieu Imbert <matthieu.imbert at inria.fr>
http://graal.ens-lyon.fr/~mimbert/
INRIA / LIP ENS-Lyon / INSA CITI research engineer
http://www.inria.fr http://www.ens-lyon.fr/LIP http://www.citi-lab.fr
+33(0)472728149 / +33(0)472437307

Monod campus, room GN1 Nord 3.52
LIP ENS-Lyon, 46 allée d'Italie
69364 Lyon cedex 07, FRANCE

CITI Lab, INSA Lyon, Domaine Scientifique de la Doua
Batiment Claude Chappe, room TLC 238
6 avenue des Arts, 69621 Villeurbanne, FRANCE



More information about the Fusionforge-general mailing list