Strong login passwords

[jmcarcar]

Hello everyone,

I try to force the passwords to be strong, then I edit the file WEB-INFapplicationContext.xml to change the default line

<property name="allowedPasswordPattern" value="^.*$"></property>

with

<property name="allowedPasswordPattern" value="^(?=.*[a-z])(?=.*[A-Z])(?=.*[0-9])(?=.*[=.% !@#$^&])(?=.{9,})"></property>

Then force a password of length greater than 8, at least one lowercase, one uppercase, one digit and one special character (=,% !@#$^&).

However it doesn't work for me. How can I solve that?

Thank you very much in advance!

[swood_1]

How did it not work?

 

[jmcarcar]

For example when trying to register a new user or change my password in login, the complexity of the password is checked and even if you put one that complies (apparently with the regular expression) it says that it is not valid.

Thanks,

[jmcarcar]

Hi!

Finally (after a lot of try and fail) I find a solution. This expression is working for me:

<property name="allowedPasswordPattern" value="^(?=.*?[A-Z])(?=.*?[a-z])(?=.*?[0-9])(?=.*?[\!\$\@\#\=\(\)\:\+\-]).{9,}"></property>

This force for a password of length 9 or more, at least one uppercase, one lowercase, one number and one special character of these !$@#=():+-

I have excluded the character "&" because then I got a 404 error.

I hope it helps someone.

Thank you!

 

[Boris Gisselere]

Hi jmcarcar !

I only find your post talking about that.

You said : "to register a new user or change my password in login"

My question is :

It works fine to refister a new user but nothing work when I wnat to change my password in login.

Did you make another change ?

Thank you.

Boris.