[Koha-bugs] [Bug 21314] Koha enforces three (3) character password length even if RequireStrongPassword is disabled

bugzilla-daemon at bugs.koha-community.org bugzilla-daemon at bugs.koha-community.org
Tue Sep 4 19:16:44 CEST 2018


https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=21314

--- Comment #2 from Kyle M Hall <kyle at bywatersolutions.com> ---
Created attachment 78414
  -->
https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=78414&action=edit
Bug 21314: Koha enforces three (3) character password length even if
RequireStrongPassword is disabled

Bug 18298 added the option to enforce password complexity *if* the new system
preference RequireStrongPassword
is enabled. However, it appears that the code defining the minimum number of
characters was not put under control
of this preference and thus Koha enforces a minimum password length of 3 even
if RequireStrongPassword is disabled.

Test Plan:
1) Set minPasswordLength to 2
2) Disable RequireStrongPassword
3) Attempt to change a password to a two character password
4) Note Koha tells you the minimum length is 3 characters
5) Apply this patch
6) Restart memached/plack, Reload the page
7) You should now be able to set the password to a 2 character string

-- 
You are receiving this mail because:
You are watching all bug changes.


More information about the Koha-bugs mailing list