[web2py:27909] random_password and IS_STRONG

mr.freeze Mon, 03 Aug 2009 17:33:32 -0700

Just a quick message to point out that if you use IS_STRONG, you must
override Auth's random_password function to match it's complexity or
users won't be able to login after resetting their password.  Here's
what I did in my model:


class MyAuth(Auth):
    def random_password(self):
        import string
        import random
        password = ''
        specials=r'!...@#$*?'
        for i in range(0,3):
            password += random.choice(string.lowercase)
            password += random.choice(string.uppercase)
            password += random.choice(string.digits)
            password += random.choice(specials)
        return ''.join(random.sample(password,len(password)))

auth=MyAuth(globals(),db)
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups 
"web2py-users" group.
To post to this group, send email to web2py@googlegroups.com
To unsubscribe from this group, send email to 
web2py+unsubscr...@googlegroups.com
For more options, visit this group at 
http://groups.google.com/group/web2py?hl=en
-~----------~----~----~----~------~----~------~--~---

[web2py:27909] random_password and IS_STRONG

Reply via email to