Some Eclipse Foundation services are deprecated, or will be soon. Please ensure you've read this important communication.

Bug 344741

Summary:	Verifying or accepting good strength user passwords
Product:	[ECD] Orion	Reporter:	Nayna Jain <jainnayna>
Component:	Client	Assignee:	Aidan Redpath <aidanr>
Status:	RESOLVED FIXED	QA Contact:
Severity:	enhancement
Priority:	P3	CC:	malgorzata.tomczyk, simon_kaegi
Version:	0.2
Target Milestone:	6.0 RC3
Hardware:	PC
OS:	Windows XP
Whiteboard:

Description Nayna Jain

2011-05-04 13:36:26 EDT

Hi,

Presently when I create a login, and specify password for it.
It accepts anything from my "username" to "123" etc.

I think it would be good to have a password strength verifying algorithm to warn the user and probably also accepting passwords with recommended strength

Comment 1 Malgorzata Janczarska

2012-02-06 09:04:26 EST

This is a good candidate for next release.

Comment 2 John Arthorne

2014-06-11 11:19:39 EDT

We should do something minimal here.. at least 8 characters, include one non-alpha character, for starters.

Comment 3 John Arthorne

2014-06-13 14:07:45 EDT

Released Aidan's fix:

http://git.eclipse.org/c/orion/org.eclipse.orion.server.git/commit/?id=b18913d26509e43b9f461aa5473d552b274739b0