Validation of admin password should be done by OWASP library 

Password validation on the admin account creation page (when standardidprovider is opened for the first time on a clean XP instance) is now done by [our code](https://github.com/enonic/app-standardidprovider/blob/master/src/main/resources/assets/js/creation.js), via regex and password length check. It should instead be done by the same [dedicated OWASP library](https://www.npmjs.com/package/owasp-password-strength-test) we are using for validating a password in [app-users](https://github.com/enonic/app-users/blob/master/src/main/resources/assets/js/app/wizard/PasswordGenerator.ts).

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Validation of admin password should be done by OWASP library #485

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Validation of admin password should be done by OWASP library #485

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions