2. Summary
  3. Files
  4. Support
  5. Report Spam
  6. Create account
  7. Log in

Ticket #16866 (assigned)

Opened 2 years ago

Last modified 2 years ago

login does not accept all passwords set at reset

Reported by: ciuly Owned by: ctsai
Keywords: ENGR NF-2012 Cc:
Private: no

Description

I reset my password as a result of the email I received to a strong one: 32 characters generated using keypass containing:
- uppercase
- lowercase
- digits
- minus
- underline
- special
- brackets
The password reset form accepted that just fine. However when trying to login, it didn't allow.
I ended up generating a 16 character long password that did not contain minus and that worked. I'm not sure if the first one did or did not contain the minus, but the password generator profile has that checked.

In my opinion, the password reset should accept at least as much as the login form and definitely not more.

Change History

Changed 2 years ago by ctsai

  • owner set to ctsai
  • status changed from new to assigned

Changed 2 years ago by ctsai

  • keywords ENGR NF-2012 added

Hello,

I'm escalating this to our engineering team here: https://sourceforge.net/p/allura/tickets/2012/

Regards,
Chris Tsai, SourceForge.net Support

Note: See TracTickets for help on using tickets.

© 2013 SourceForge. All Rights Reserved. SourceForge is a Dice Holdings, Inc. company   Terms of Use - Privacy Policy - Cookies/Opt Out