Is there no way to force strong password for the reset password link?
I tested it and was able to put in 1234 as password. I find that absolutely astounding given all the security concerns.
I cannot have users using weak passwords!
How do I deal with this?