[
https://issues.apache.org/jira/browse/ROL-1959?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13618386#comment-13618386
]
Noah Slater commented on ROL-1959:
----------------------------------
I notice the title change to:
> Remove client-side restriction on password length, switch to server-side
> validation instead.
Might I suggest:
> Use server-side validation of password length
The client-side stuff is fine. No reason to jettison it. Most web applications
I have worked with or used do both. With HTML or JavaScript on the client side,
and whatever else on the server-side as a failsafe.
> Remove client-side restriction on password length, switch to server-side
> validation instead.
> --------------------------------------------------------------------------------------------
>
> Key: ROL-1959
> URL: https://issues.apache.org/jira/browse/ROL-1959
> Project: Roller
> Issue Type: Improvement
> Reporter: Noah Slater
> Assignee: Roller Unassigned
> Attachments: roller_password_screenshot.png
>
>
> Sorry for the vague ticket title. I don't want to make presumptions about the
> issue.
> Steps to reproduce:
> 1. Log in
> 2. Set your password to something long and complex like:
> xaQ}W,3tg4.VkAy4b398C9cRu8gE$vm{%f}V;L96bJyWf}#ELa
> 3. Log out
> 4. Try to log back in again
> What I see:
> I am unable to log in.
> What I expect to see:
> I am able to log in.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
