I&#39;m available here to discuss and still listening your voice :)<br><br>we can see that the most restriction is about how to allow our users to be able to customize rules of a valid username ( the others are not hard to achieve indeed ). To get this done, I think the approach of using a kernel service for injecting validator seems to be acceptable. it helps users easier to change the rules without modifying anything in war. It should not be risky as we are just trying to fix problems and make it more flexible.<br>
<br>I&#39;m also going to document the current rules of username for reference ( tomorrow i think )<br><br><br><div class="gmail_quote">On 31 January 2012 17:26, Boleslaw Dawidowicz <span dir="ltr">&lt;<a href="mailto:boleslaw.dawidowicz@gmail.com">boleslaw.dawidowicz@gmail.com</a>&gt;</span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div style="word-wrap:break-word"><br><div><div class="im"><div>On Jan 30, 2012, at 12:53 PM, Trong Tran wrote:</div><br>
</div><div class="im"><blockquote type="cite"><br><div class="gmail_quote">On 27 January 2012 00:58, Christophe Laprun <span dir="ltr">&lt;<a href="mailto:claprun@redhat.com" target="_blank">claprun@redhat.com</a>&gt;</span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">

Hi all,<br>
<br>
I&#39;m currently working on <a href="https://issues.jboss.org/browse/GTNPORTAL-1673" target="_blank">https://issues.jboss.org/browse/GTNPORTAL-1673</a> and I&#39;m quite puzzled by the different rules that are in place to validate usernames. Not only are these rules not consistent across fields which display usernames (some are validated using UsernameValidator, some are validated using ExpressionValidator) but I&#39;m also confused about the need to validate read-only fields (which presumably will only display valid information since it doesn&#39;t come from the user, right?). What are the rules for a valid username and where are they documented? What are the restrictions and why are they in place? <br>

</blockquote><div><br>Defining the rules for a valid username is a long story, 
they have been changed/updated many times according to users need. They 
are also not fixed and documented so far. Until now, we still have 
requests related to this like : to support case-sensitive, or possible 
to add username under an email address.<br><br>Anyway the rules should be 
consistent every places and no need to validate read-only fields, they are considered as issues</div></div></blockquote><br></div></div><div>I understand that due to the long story of changes it is rather hard to come up with consistent list. However we need to decide on some plan to fix the situation and agree if it is possible and safe to do it now. </div>
<div><br></div><div>Trong, who do you think should be involved to get more clear picture about reasons for current restrictions? If we decide that it is too risky to loosen them now thats also quite valid outcome. </div><div>
<br></div><div>Bolek </div><br></div></blockquote></div><br><br clear="all"><br>-- <br>Tran The Trong<br>eXo Platform SEA<br>