This has been explained before. I think it was by Ted. The reason has to do with security. Specifying bouinds on the length of a password limits the universe of potential passwords that a cracker would need to test. And of course if he/she saw a message saying "Password must be between 6 and 30 characters in length" that would provide that information.
Dave Derry ----- Original Message ----- From: "bachan s" <[EMAIL PROTECTED]> > > Can you try removing the required from the depends for password and give minlength and maxlength. Since minLength is mentioned required is not necesary. > Try it and let ue know. > this may be considered as a bug in struts too. > Thanks ! > Bachan > > "Nekkalapudi, Viplava" <[EMAIL PROTECTED]> wrote: My team can't get the Struts client-side (i.e. JavaScript) validation > framework to work. We want to ensure that a password is between 6 and 30 > characters. Has anyone been able to get these checks to work? The "required" > field check works, but the "minlength" and "maxlength" do not. Here's what > our validation.xml file contains: > > > depends="required"> > > > depends="required,minlength,maxlength"> > > > > > > minlength > 6 > > > maxlength > 30 > > > > > Thanks, > > JOHN > -- To unsubscribe, e-mail: <mailto:struts-user-unsubscribe@;jakarta.apache.org> For additional commands, e-mail: <mailto:struts-user-help@;jakarta.apache.org>
