[Resolved] Force strong password

This is the technical support forum for Toolset - a suite of plugins for developing WordPress sites without writing PHP.

Everyone can read this forum, but only Toolset clients can post in it. Toolset support works 6 days per week, 19 hours per day.

This topic contains 1 reply, has 2 voices.

Last updated by Luo Yang 3 months, 4 weeks ago.

Assigned support staff: Luo Yang.

Author
Posts
#1545895

Hello,

Is there no way to force strong password for the reset password link?
I tested it and was able to put in 1234 as password. I find that absolutely astounding given all the security concerns.
I cannot have users using weak passwords!
How do I deal with this?
Thanks.

#1546437

Luo Yang
Supporter

Languages: English (English ) Chinese (Simplified) (简体中文 )

Timezone: Asia/Hong_Kong (GMT+08:00)

Hello,

I assume we are talking about shortcode [wpv-reset-password-form], see our document:
https://toolset.com/documentation/user-guides/views/views-shortcodes/#wpv-reset-password-form

There isn't such kind of feature to "force strong password", you can add a feature request for it:
https://toolset.com/home/contact-us/suggest-a-new-feature-for-toolset/

Or you can consider custom codes, for example, you can use action hook "validate_password_reset" to trigger a PHP function, in this function force the new password to be a strong password, see WP document:
https://developer.wordpress.org/reference/hooks/validate_password_reset/