Grazie
On Sun, Aug 12, 2012 at 12:09 PM, Anthony wrote:
> Note, this has now been fixed in trunk:
> http://code.google.com/p/web2py/source/detail?r=73b2137eb32e61abc47b491786643d46c199
>
>
> On Saturday, August 11, 2012 11:21:12 PM UTC-4, Anthony wrote:
>>
>> Looks like a bug in the wizard:
Note, this has now been fixed in trunk:
http://code.google.com/p/web2py/source/detail?r=73b2137eb32e61abc47b491786643d46c199
On Saturday, August 11, 2012 11:21:12 PM UTC-4, Anthony wrote:
>
> Looks like a bug in the wizard:
>
> db.auth_user.password.requires = CRYPT(key=auth.settings.hmac_key
db.auth_user.password.requires.insert(0,IS_LENGTH(minsize=5))
did not fix it on it's own, but
db.auth_user.password.requires = CRYPT(key=auth.settings.hmac_key,min_length
=4)
did fix it. Thanks a lot for your help.
On Saturday, August 11, 2012 11:42:35 PM UTC-4, Anthony wrote:
>
> Note also that i
>
> Note also that it DOES allow logging in with no password subsequent to the
> registration.
Right, it looks like login will allow no password if password length is
enforced only by CRYPT (it actually overrides the CRYPT min_length
attribute). I don't think it will override IS_STRONG or IS_
Looks like a bug in the wizard:
db.auth_user.password.requires = CRYPT(key=auth.settings.hmac_key)
should be:
db.auth_user.password.requires = CRYPT(key=auth.settings.hmac_key,min_length
=4)
Actually, maybe the wizard should simply use auth.define_tables() instead
of manually creating the auth
>
> Anthony's correct- this is in Auth, but is not being respected:
> settings.password_min_length = 4
>
I just created a fresh app using trunk, and when I try to register without
a password, I get a "too short" error message on the password field. What
version of web2py are you using? Can we
Anthony's correct- this is in Auth, but is not being respected:
settings.password_min_length = 4
Massimo - "For security reason it will not be accepted for logging anyway."
- Not sure what you meant but it registered me and logged me in with an
empty pass.
I also tried inserting:
db.auth_user.
According to the code:
settings.password_min_length = 4
and
table[passfield].requires = [
CRYPT(key=settings.hmac_key, min_length=settings.password_min_length)]
So, isn't the minimum password length 4 by default?
Anthony
On Saturday, August 11, 2012 3:21:06 PM UTC-4, Massimo Di Pierro wro
This was discussed once I people said there should be no default minimum
length for password. So technically a zero length password can be inserted.
For security reason it will not be accepted for logging anyway.
db.auth_user.password.requires.insert(0,IS_LENGTH(minsize=5))
On Saturday, 11 Augu
9 matches
Mail list logo
