Description of the need
I would like a simple way to enforce more secure passwords in Backdrop core. Since a longer password is a stronger password, I would like a minimum length setting for passwords.
Proposed solution
An admin sets a minimum length for passwords
When a password is created that does not meet that minimum, a validation error is thrown asking for a longer one.
Alternatives that have been considered
This a follow up to https://github.com/backdrop/backdrop-issues/issues/4265, where at some point a minimum password length setting was added as a factor in password strength. Both @stpaultim and I recognized it as its own setting, and were surprised when setting a minimum password length still allowed passwords to be created that did not meet the minimum.
Through discussion we realized that the setting we saw -- and that I loved! -- was not intended to be used as a control on allowed password length.
I'm creating this new issue because I still want a password minimum length feature for Backdrop core.
Recent comments
Of course. I simply give my impressions of a site builder. On one side, I found that BackdropCMS and Drupal have a great system to create a site, where it is possible to customize the...
Block title combo and 2/3 things
It's great that everyone has a choice. I'm currently making a website where the H1 title is located at the top of the page in full width with a background image, 50vh height, how do you like...
Block title combo and 2/3 things
In the end, I use my <h1> with my custom layout just before the region for the content and i make a preprocess_theme for site_identity. <?php print theme('site_identity'); ?>...
Block title combo and 2/3 things