agreed - that message is not appropriate after login failure.
On May 19, 12:44 am, Jonathan Lundell <jlund...@pobox.com> wrote: > On May 18, 2010, at 6:31 AM, Jason Brower wrote: > > > tried logging in with the auth system and it's very much way flipping > > too strong. How to I take such a password picky beast? There are people > > that don't even know all those symbols on the keyboard. > > Well, it's not requiring *all* the symbols; just one. Surely you can find > one! ;-) > > Anyway, this is parametric; look at IS_STRONG's signature. > > However, it's inappropriate to show this message during password checking. It > should only show up during password selection. I do this; it would have to be > modified if you're using the automatic auth table. > > # invoke IS_STRONG only for password creation, not password checking > if "login" not in request.args: > auth.settings.table_user.password.requires.insert(0, IS_STRONG(min=8, > max=0, special=1)) > > > Best Regards, > > Jason Brower > > > <Screenshot.png>
