Validate password strength #7
Description
This is mostly enforced by the ASP.NET Membership Provider already. It is configured to:
- allow a maximum of 5 invalid password attempts
- require password of at least 8 characters
- require at least one non-alphanumeric character in a password
We need an AJAX-y check on the entered password to ensure it meets the password strength requirements before the user clicks "Sign up".
The PasswordStrengthRegularExpression configuration directive will probably come in useful with taking this feature further.