[
https://issues.jboss.org/browse/WFLY-2721?page=com.atlassian.jira.plugin....
]
Darran Lofthouse updated WFLY-2721:
-----------------------------------
Fix Version/s: 8.0.0.Final
Make the add-user password "requirements" prompt match the
password.restriction setting
---------------------------------------------------------------------------------------
Key: WFLY-2721
URL:
https://issues.jboss.org/browse/WFLY-2721
Project: WildFly
Issue Type: Enhancement
Security Level: Public(Everyone can see)
Components: Domain Management, Security
Affects Versions: 8.0.0.CR1
Reporter: Brian Stansberry
Assignee: Darran Lofthouse
Fix For: 8.0.0.Final
When you use add-user.sh it gives you a message re password "requirements"
Password requirements are listed below. To modify these restrictions edit the
add-user.properties configuration file.
...
But then, if add-user.properties has password.restriction=WARN (the default) the
requirements are not enforced:
Password :
JBAS015269: Password must have at least 8 characters!
Are you sure you want to use the password entered yes/no? yes
This is a bit confusing. Better would be to tailor the initial prompt to the
password.restriction setting. For example for WARN (and perhaps RELAX):
Password recommendations are listed below. To modify these recommendations edit the
add-user.properties configuration file.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see:
http://www.atlassian.com/software/jira