[keycloak-user] Display all password rule failures at once

Bill Burke bburke at redhat.com
Wed Jun 15 17:10:58 EDT 2016


Log a JIRA please, or better yet, Log a jira, submit a PR with tests.

On 6/15/16 4:14 PM, Everson, David (MNIT) wrote:
> Hi,
>
>
>
> Our users are User Acceptance Testing a Keycloak secured website.  We
> have defined strong password rules.
>
>
>
> Our users reported:
>
> “Staff have requested some modifications to how password validation is
> presented to the user. Right now if a user submits a password that does
> not meet all criteria, such as requiring both an Upper case letter and a
> number, it will not tell you that both are required, just that and Upper
> case letter is required. When that is added, THEN it will notify you
> that a number is also needed.
>
>
>
> Staff would like the error message to note all issues with the submitted
> password, or otherwise note somewhere on the Change Password screen what
> all the criteria for a proper password are, so the user does not have to
> guess.”
>
>
>
> We could update the template to include all the rules.  That is probably
> the quickest.
>
> Is it possible for Keycloak to return all the unsuccessful rules when it
> validates a password?
>
>
>
> Thanks!
>
> Dave
>
>
>
> *Dave Everson  | * DIVISION OF ENVIRONMENTAL HEALTH
>
> MN.IT Services @ mINNESOTA dEPARTMENT OF hEALTH
>
> 651-201-5146 (w)  *| *   _david.everson at state.mn.us
> <mailto:david.everson at state.mn.us>_
>
> /cid:image001.jpg at 01CE4005.70B223E0/ <http://www.mn.gov/oet>//
>
> 	
>
>
>
> Information Technology for Minnesota Government   *|*   mn.gov/oet
> <http://www.mn.gov/oet>
>
>
>
>
>
>
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>


More information about the keycloak-user mailing list