🐛 Bugfix: Fix no password check when creating tenant admin (#3061)

Author: WMC001

frontend/app/[locale]/models/components/model/ModelAddDialog.tsx

@@ -1706,7 +1706,7 @@ export const ModelAddDialog = ({
               )}
               {isSTTModel && (
                 <>
-                  <Tooltip title={t("model.provider.volengine")}>
+                  <Tooltip title={t("model.provider.volcengine")}>
                     <a
                       href={PROVIDER_LINKS.volcengine}
                       target="_blank"
@@ -1736,7 +1736,7 @@ export const ModelAddDialog = ({
               )}
               {isTTSModel && (
                 <>
-                  <Tooltip title={t("model.provider.volengine")}>
+                  <Tooltip title={t("model.provider.volcengine")}>
                     <a
                       href={PROVIDER_LINKS.volcengine}
                       target="_blank"

frontend/app/[locale]/tenant-resources/components/UserManageComp.tsx

@@ -48,6 +48,7 @@ import { useAuthorizationContext } from "@/components/providers/AuthorizationPro
 import { USER_ROLES } from "@/const/auth";
 import { Can } from "@/components/permission/Can";
 import { Tooltip } from "@/components/ui/tooltip";
+import { getPasswordChecks, getStrengthLevel, validatePassword as validatePasswordUtil } from "@/lib/utils";
 
 // Default page size for pagination
 const DEFAULT_PAGE_SIZE = 20;
@@ -108,6 +109,13 @@ function TenantList({
   // Tracks which skills have completed installation in the current session
   const [installedSkills, setInstalledSkills] = useState<Set<string>>(new Set());
 
+  // Password validation state for admin account
+  const [adminPasswordValue, setAdminPasswordValue] = useState("");
+  const [adminPasswordError, setAdminPasswordError] = useState<{
+    target: "adminPassword" | "confirmAdminPassword" | "";
+    message: string;
+  }>({ target: "", message: "" });
+
   // Fetch official skills when install switch is toggled on
   useEffect(() => {
     if (!installOfficialSkills) return;
@@ -148,6 +156,8 @@ function TenantList({
     setSelectedSkillIds(new Set<string>());
     setInstallingSkills(new Set<string>());
     setInstalledSkills(new Set<string>());
+    setAdminPasswordValue("");
+    setAdminPasswordError({ target: "", message: "" });
     setModalVisible(true);
   };
 
@@ -215,6 +225,54 @@ function TenantList({
     setTenantUsers([]);
   };
 
+  // Handle admin password input change
+  const handleAdminPasswordChange = (e: React.ChangeEvent<HTMLInputElement>) => {
+    const value = e.target.value;
+    setAdminPasswordValue(value);
+
+    if (value && !validatePasswordUtil(value)) {
+      setAdminPasswordError({
+        target: "adminPassword",
+        message: t("auth.passwordStrengthError") || "Password must contain uppercase, lowercase, and digit",
+      });
+      return;
+    }
+
+    setAdminPasswordError({ target: "", message: "" });
+    const confirmPassword = form.getFieldValue("confirmAdminPassword");
+    if (confirmPassword && confirmPassword !== value) {
+      setAdminPasswordError({
+        target: "confirmAdminPassword",
+        message: t("auth.passwordsDoNotMatch"),
+      });
+    }
+  };
+
+  // Handle confirm admin password input change
+  const handleConfirmAdminPasswordChange = (
+    e: React.ChangeEvent<HTMLInputElement>
+  ) => {
+    const value = e.target.value;
+    const password = form.getFieldValue("adminPassword");
+
+    if (password && !validatePasswordUtil(password)) {
+      setAdminPasswordError({
+        target: "adminPassword",
+        message: t("auth.passwordStrengthError") || "Password must contain uppercase, lowercase, and digit",
+      });
+      return;
+    }
+
+    if (value && value !== password) {
+      setAdminPasswordError({
+        target: "confirmAdminPassword",
+        message: t("auth.passwordsDoNotMatch"),
+      });
+    } else {
+      setAdminPasswordError({ target: "", message: "" });
+    }
+  };
+
   const handleSubmit = async () => {
     try {
       const values = await form.validateFields();
@@ -495,26 +553,86 @@ function TenantList({
                   <Form.Item
                     name="adminPassword"
                     label={t("tenantResources.tenants.adminPassword")}
+                    validateStatus={
+                      adminPasswordError.target === "adminPassword"
+                        ? "error"
+                        : ""
+                    }
+                    help={
+                      form.getFieldError("adminPassword").length
+                        ? undefined
+                        : adminPasswordError.target === "adminPassword"
+                          ? adminPasswordError.message
+                          : undefined
+                    }
                     rules={[
                       {
                         required: true,
                         message: t("tenantResources.tenants.adminPasswordRequired"),
                       },
                       {
-                        min: 6,
-                        message: t("tenantResources.tenants.weakPassword"),
+                        validator: (_, value) => {
+                          if (!value) return Promise.resolve();
+                          if (!validatePasswordUtil(value)) {
+                            return Promise.reject(
+                              new Error(t("auth.passwordStrengthError") || "Password must contain uppercase, lowercase, and digit")
+                            );
+                          }
+                          return Promise.resolve();
+                        },
                       },
                     ]}
+                    hasFeedback
                   >
                     <Input.Password
                       placeholder={t("tenantResources.tenants.adminPassword")}
                       autoComplete="new-password"
+                      onChange={handleAdminPasswordChange}
                     />
                   </Form.Item>
 
+                  {/* Password Strength Indicator */}
+                  {adminPasswordValue && generateAdminAccount && (() => {
+                    const checks = getPasswordChecks(adminPasswordValue);
+                    const levelInfo = getStrengthLevel(adminPasswordValue, t);
+                    return (
+                      <div className="mb-4">
+                        <div className="flex items-center justify-between mb-1">
+                          <span className="text-xs text-gray-500">{t("auth.passwordStrength") || "Password strength"}</span>
+                          <span className="text-xs font-medium" style={{ color: levelInfo.color }}>
+                            {levelInfo.label}
+                          </span>
+                        </div>
+                        <div className="flex gap-1">
+                          {[0, 1, 2, 3].map((level) => (
+                            <div
+                              key={level}
+                              className="h-1 flex-1 rounded-full transition-colors"
+                              style={{
+                                backgroundColor: level <= levelInfo.level ? levelInfo.color : "#e5e7eb",
+                              }}
+                            />
+                          ))}
+                        </div>
+                      </div>
+                    );
+                  })()}
+
                   <Form.Item
                     name="confirmAdminPassword"
                     label={t("tenantResources.tenants.confirmAdminPassword")}
+                    validateStatus={
+                      adminPasswordError.target === "confirmAdminPassword"
+                        ? "error"
+                        : ""
+                    }
+                    help={
+                      form.getFieldError("confirmAdminPassword").length
+                        ? undefined
+                        : adminPasswordError.target === "confirmAdminPassword"
+                          ? adminPasswordError.message
+                          : undefined
+                    }
                     dependencies={["adminPassword"]}
                     rules={[
                       {
@@ -523,17 +641,27 @@ function TenantList({
                       },
                       ({ getFieldValue }) => ({
                         validator(_, value) {
+                          const password = getFieldValue("adminPassword");
+                          if (password && !validatePasswordUtil(password)) {
+                            setAdminPasswordError({
+                              target: "adminPassword",
+                              message: t("auth.passwordStrengthError") || "Password must contain uppercase, lowercase, and digit",
+                            });
+                            return Promise.reject(new Error(t("auth.passwordStrengthError") || "Password must contain uppercase, lowercase, and digit"));
+                          }
                           if (!value || getFieldValue("adminPassword") === value) {
                             return Promise.resolve();
                           }
                           return Promise.reject(new Error(t("tenantResources.tenants.passwordsDoNotMatch")));
                         },
                       }),
                     ]}
+                    hasFeedback
                   >
                     <Input.Password
                       placeholder={t("tenantResources.tenants.confirmAdminPassword")}
                       autoComplete="new-password"
+                      onChange={handleConfirmAdminPasswordChange}
                     />
                   </Form.Item>
                 </>

frontend/public/locales/en/common.json

@@ -1712,7 +1712,6 @@
   "tenantResources.tenants.adminPasswordRequired": "Please enter tenant admin password",
   "tenantResources.tenants.invalidEmailFormat": "Invalid email format",
   "tenantResources.tenants.emailAlreadyExists": "Email already exists",
-  "tenantResources.tenants.weakPassword": "Password must be at least 6 characters",
   "tenantResources.tenants.passwordsDoNotMatch": "Passwords do not match",
   "tenantResources.tenants.confirmAdminPassword": "Confirm Password",
   "tenantResources.tenants.adminAccountCreated": "Tenant admin account created",
@@ -1732,6 +1731,7 @@
   "tenantResources.tenants.noSkillsAvailable": "No official skills available",
   "tenantResources.tenants.skillsLoading": "Loading skills...",
   "tenantResources.tenantDeleteFailed": "Failed to delete tenant",
+  "tenantResources.tenantOperationFailed": "Tenant operation failed",
   "tenantResources.skills.installOfficialSkills": "Install Official Skills",
   "tenantResources.skills.installModal.title": "Install Official Skills",
   "tenantResources.skills.installModal.selectAtLeastOne": "Please select at least one skill",

frontend/public/locales/zh/common.json

@@ -1702,7 +1702,6 @@
   "tenantResources.tenants.adminPasswordRequired": "请输入租户管理员密码",
   "tenantResources.tenants.invalidEmailFormat": "邮箱格式不正确",
   "tenantResources.tenants.emailAlreadyExists": "该邮箱已被使用",
-  "tenantResources.tenants.weakPassword": "密码强度不足，至少需要6位字符",
   "tenantResources.tenants.passwordsDoNotMatch": "两次输入的密码不一致",
   "tenantResources.tenants.confirmAdminPassword": "确认密码",
   "tenantResources.tenants.adminAccountCreated": "租户管理员账户已创建",
@@ -1722,6 +1721,7 @@
   "tenantResources.tenants.noSkillsAvailable": "暂无可安装的官方技能",
   "tenantResources.tenants.skillsLoading": "加载技能中...",
   "tenantResources.tenantDeleteFailed": "删除租户失败",
+  "tenantResources.tenantOperationFailed": "租户操作失败",
   "tenantResources.skills.installOfficialSkills": "安装官方技能",
   "tenantResources.skills.installModal.title": "安装官方技能",
   "tenantResources.skills.installModal.selectAtLeastOne": "请至少选择一个技能",