subject:"RE\: JavaScript Validation\: MinLength MaxLength Functions Don't Work"

RE: JavaScript Validation: MinLength & MaxLength Functions Don't Work

2002-10-25 Thread Nekkalapudi, Viplava

Thanks!

Actually, we ended up creating our own custom JavaScript methods called
"validatePasswordMinLength" and "validatePasswordMaxLength" and placed them
in our own "abc-validator-rules.xml" file.  These two functions only work on
password fields.  We placed these new functions in our own file because we
didn't want modify the default "validator-rules.xml" file.  This will shield
us from having to make changes each time the default rules file is updated
due to a new Struts release.  If the password fields are eventually added to
the "validateMinlength" and "validateMaxLenth" functions, as I think they
should be, then we'll simply deprecate our password specific functions.

John (and Vip)

-Original Message-
From: bachan s [mailto:bachan_anand@;yahoo.com]
Sent: Thursday, October 24, 2002 4:04 PM
To: Struts Users Mailing List
Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]'
Subject: RE: JavaScript Validation: MinLength & MaxLength Functions
Don't Work

Hi,
If you have noticed the validation would stil occur at the back end (java
part).
If you want password also to be validated at front end  change you 
validator-rules.xml - javascript function validateMinLength
to the following code .

This should work fine.Let me know.
Bachan

 "Nekkalapudi, Viplava" <[EMAIL PROTECTED]> wrote:It looks like the
min/max length JavaScript functions do NOT work on HTML
"password" fields. We just verified this. I totally agree with
"Hajratwala". Struts should not impose this limitation on the developers.
It is the developers responsibility to control the amount of
security-related information returned to a user, not Struts. I go to
websites all the time where I get a message specifying the size limits for a
password. Does anyone know where the logic is implemented for ignoring the
max/min check on a password? Do others agree that Struts is outside it
boundaries by doing this? If so, maybe my team can submit a patch.

John Hohlen (and Viplava Nekkaplapudi)

-Original Message-
From: Hajratwala, Nayan (N.) [mailto:nhajratw@;ford.com]
Sent: Thursday, October 24, 2002 3:15 PM
To: 'Struts Users Mailing List'
Subject: RE: JavaScript Validation: MinLength & MaxLength Functions
Don't Work

interesting ... sorry if this has been discussed to death already. If so,
i'll shut up. =)

Shouldn't the decision of displaying the validation be up to the application
developer?

For example, when changing a password, you would have a spot to enter old &
new passwords, but would likely want to put some validation around the new
one (min 6 characters, etc). What would be wrong with displaying that info
to the user?

---
- Nayan Hajratwala
- Chikli Consulting LLC
- http://www.chikli.com

-Original Message-
From: Dave Derry [mailto:dderry@;acm.org]
Sent: Thursday, October 24, 2002 4:14 PM
To: Struts Users Mailing List
Subject: Re: JavaScript Validation: MinLength & MaxLength Functions
Don't Work

This has been explained before. I think it was by Ted. The reason has to do
with security. Specifying bouinds on the length of a password limits the
universe of potential passwords that a cracker would need to test. And of
course if he/she saw a message saying "Password must be between 6 and 30
characters in length" that would provide that information.

Dave Derry

- Original Message -
From: "bachan s" 

>
> Can you try removing the required from the depends for password and give
minlength and maxlength. Since minLength is mentioned required is not
necesary.
> Try it and let ue know.
> this may be considered as a bug in struts too.
> Thanks !
> Bachan
>
> "Nekkalapudi, Viplava" wrote: My team can't get
the Struts client-side (i.e. JavaScript) validation
> framework to work. We want to ensure that a password is between 6 and 30
> characters. Has anyone been able to get these checks to work? The
"required"
> field check works, but the "minlength" and "maxlength" do not. Here's what
> our validation.xml file contains:
>
>
> depends="required">
>
>
> depends="required,minlength,maxlength">
>
>
>
>
>
> minlength
> 6
>
>
> maxlength
> 30
>
>
>
>
> Thanks,
>
> JOHN
>

--
To unsubscribe, e-mail:

For additional commands, e-mail:

--
To unsubscribe, e-mail:

For additional commands, e-mail:

--
To unsubscribe, e-mail: 
For additional commands, e-mail: 

-
Do you Yahoo!?
Y! Web Hosting - Let the expert host your web site

--
To unsubscribe, e-mail:   <mailto:struts-user-unsubscribe@;jakarta.apache.org>
For additional commands, e-mail: <mailto:struts-user-help@;jakarta.apache.org>

RE: JavaScript Validation: MinLength & MaxLength Functions Don't Work

2002-10-24 Thread Nekkalapudi, Viplava

That's what we implemented now and are going to test it.
Anyway, Thanks.

-Original Message-
From: bachan s [mailto:bachan_anand@;yahoo.com]
Sent: Thursday, October 24, 2002 4:04 PM
To: Struts Users Mailing List
Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]'
Subject: RE: JavaScript Validation: MinLength & MaxLength Functions
Don't Work

Hi,
If you have noticed the validation would stil occur at the back end (java
part).
If you want password also to be validated at front end  change you 
validator-rules.xml - javascript function validateMinLength
to the following code .

This should work fine.Let me know.
Bachan

 "Nekkalapudi, Viplava" <[EMAIL PROTECTED]> wrote:It looks like the
min/max length JavaScript functions do NOT work on HTML
"password" fields. We just verified this. I totally agree with
"Hajratwala". Struts should not impose this limitation on the developers.
It is the developers responsibility to control the amount of
security-related information returned to a user, not Struts. I go to
websites all the time where I get a message specifying the size limits for a
password. Does anyone know where the logic is implemented for ignoring the
max/min check on a password? Do others agree that Struts is outside it
boundaries by doing this? If so, maybe my team can submit a patch.

John Hohlen (and Viplava Nekkaplapudi)

-Original Message-
From: Hajratwala, Nayan (N.) [mailto:nhajratw@;ford.com]
Sent: Thursday, October 24, 2002 3:15 PM
To: 'Struts Users Mailing List'
Subject: RE: JavaScript Validation: MinLength & MaxLength Functions
Don't Work

interesting ... sorry if this has been discussed to death already. If so,
i'll shut up. =)

Shouldn't the decision of displaying the validation be up to the application
developer?

For example, when changing a password, you would have a spot to enter old &
new passwords, but would likely want to put some validation around the new
one (min 6 characters, etc). What would be wrong with displaying that info
to the user?

---
- Nayan Hajratwala
- Chikli Consulting LLC
- http://www.chikli.com

-Original Message-
From: Dave Derry [mailto:dderry@;acm.org]
Sent: Thursday, October 24, 2002 4:14 PM
To: Struts Users Mailing List
Subject: Re: JavaScript Validation: MinLength & MaxLength Functions
Don't Work

This has been explained before. I think it was by Ted. The reason has to do
with security. Specifying bouinds on the length of a password limits the
universe of potential passwords that a cracker would need to test. And of
course if he/she saw a message saying "Password must be between 6 and 30
characters in length" that would provide that information.

Dave Derry

- Original Message -
From: "bachan s" 

>
> Can you try removing the required from the depends for password and give
minlength and maxlength. Since minLength is mentioned required is not
necesary.
> Try it and let ue know.
> this may be considered as a bug in struts too.
> Thanks !
> Bachan
>
> "Nekkalapudi, Viplava" wrote: My team can't get
the Struts client-side (i.e. JavaScript) validation
> framework to work. We want to ensure that a password is between 6 and 30
> characters. Has anyone been able to get these checks to work? The
"required"
> field check works, but the "minlength" and "maxlength" do not. Here's what
> our validation.xml file contains:
>
>
> depends="required">
>
>
> depends="required,minlength,maxlength">
>
>
>
>
>
> minlength
> 6
>
>
> maxlength
> 30
>
>
>
>
> Thanks,
>
> JOHN
>

--
To unsubscribe, e-mail:

For additional commands, e-mail:

--
To unsubscribe, e-mail:

For additional commands, e-mail:

--
To unsubscribe, e-mail: 
For additional commands, e-mail: 

-
Do you Yahoo!?
Y! Web Hosting - Let the expert host your web site

--
To unsubscribe, e-mail:   <mailto:struts-user-unsubscribe@;jakarta.apache.org>
For additional commands, e-mail: <mailto:struts-user-help@;jakarta.apache.org>

RE: JavaScript Validation: MinLength & MaxLength Functions Don't Work

2002-10-24 Thread bachan s

Hi,
If you have noticed the validation would stil occur at the back end (java part).
If you want password also to be validated at front end  change you 
validator-rules.xml - javascript function validateMinLength
to the following code .

This should work fine.Let me know.
Bachan

 "Nekkalapudi, Viplava" <[EMAIL PROTECTED]> wrote:It looks like the min/max length 
JavaScript functions do NOT work on HTML
"password" fields. We just verified this. I totally agree with
"Hajratwala". Struts should not impose this limitation on the developers.
It is the developers responsibility to control the amount of
security-related information returned to a user, not Struts. I go to
websites all the time where I get a message specifying the size limits for a
password. Does anyone know where the logic is implemented for ignoring the
max/min check on a password? Do others agree that Struts is outside it
boundaries by doing this? If so, maybe my team can submit a patch.

John Hohlen (and Viplava Nekkaplapudi)

-Original Message-
From: Hajratwala, Nayan (N.) [mailto:nhajratw@;ford.com]
Sent: Thursday, October 24, 2002 3:15 PM
To: 'Struts Users Mailing List'
Subject: RE: JavaScript Validation: MinLength & MaxLength Functions
Don't Work

interesting ... sorry if this has been discussed to death already. If so,
i'll shut up. =)

Shouldn't the decision of displaying the validation be up to the application
developer?

For example, when changing a password, you would have a spot to enter old &
new passwords, but would likely want to put some validation around the new
one (min 6 characters, etc). What would be wrong with displaying that info
to the user?

---
- Nayan Hajratwala
- Chikli Consulting LLC
- http://www.chikli.com

-Original Message-
From: Dave Derry [mailto:dderry@;acm.org]
Sent: Thursday, October 24, 2002 4:14 PM
To: Struts Users Mailing List
Subject: Re: JavaScript Validation: MinLength & MaxLength Functions
Don't Work

This has been explained before. I think it was by Ted. The reason has to do
with security. Specifying bouinds on the length of a password limits the
universe of potential passwords that a cracker would need to test. And of
course if he/she saw a message saying "Password must be between 6 and 30
characters in length" that would provide that information.

Dave Derry

- Original Message -
From: "bachan s" 

>
> Can you try removing the required from the depends for password and give
minlength and maxlength. Since minLength is mentioned required is not
necesary.
> Try it and let ue know.
> this may be considered as a bug in struts too.
> Thanks !
> Bachan
>
> "Nekkalapudi, Viplava" wrote: My team can't get
the Struts client-side (i.e. JavaScript) validation
> framework to work. We want to ensure that a password is between 6 and 30
> characters. Has anyone been able to get these checks to work? The
"required"
> field check works, but the "minlength" and "maxlength" do not. Here's what
> our validation.xml file contains:
>
>
> depends="required">
>
>
> depends="required,minlength,maxlength">
>
>
>
>
>
> minlength
> 6
>
>
> maxlength
> 30
>
>
>
>
> Thanks,
>
> JOHN
>

--
To unsubscribe, e-mail:

For additional commands, e-mail:

--
To unsubscribe, e-mail:

For additional commands, e-mail:

--
To unsubscribe, e-mail: 
For additional commands, e-mail: 

-
Do you Yahoo!?
Y! Web Hosting - Let the expert host your web site

RE: JavaScript Validation: MinLength & MaxLength Functions Don't Work

2002-10-24 Thread Nekkalapudi, Viplava

It looks like the min/max length JavaScript functions do NOT work on HTML
"password" fields.  We just verified this.  I totally agree with
"Hajratwala".  Struts should not impose this limitation on the developers.
It is the developers responsibility to control the amount of
security-related information returned to a user, not Struts.  I go to
websites all the time where I get a message specifying the size limits for a
password.  Does anyone know where the logic is implemented for ignoring the
max/min check on a password?  Do others agree that Struts is outside it
boundaries by doing this?  If so, maybe my team can submit a patch.

John Hohlen (and Viplava Nekkaplapudi)

-Original Message-
From: Hajratwala, Nayan (N.) [mailto:nhajratw@;ford.com]
Sent: Thursday, October 24, 2002 3:15 PM
To: 'Struts Users Mailing List'
Subject: RE: JavaScript Validation: MinLength & MaxLength Functions
Don't Work

interesting ... sorry if this has been discussed to death already.  If so,
i'll shut up. =)

Shouldn't the decision of displaying the validation be up to the application
developer?

For example, when changing a password, you would have a spot to enter old &
new passwords, but would likely want to put some validation around the new
one (min 6 characters, etc).  What would be wrong with displaying that info
to the user?

---
- Nayan Hajratwala
- Chikli Consulting LLC
- http://www.chikli.com

-Original Message-
From: Dave Derry [mailto:dderry@;acm.org]
Sent: Thursday, October 24, 2002 4:14 PM
To: Struts Users Mailing List
Subject: Re: JavaScript Validation: MinLength & MaxLength Functions
Don't Work

This has been explained before. I think it was by Ted. The reason has to do
with security. Specifying bouinds on the length of a password limits the
universe of potential passwords that a cracker would need to test. And of
course if he/she saw a message saying "Password must be between 6 and 30
characters in length" that would provide that information.

Dave Derry

- Original Message -
From: "bachan s" <[EMAIL PROTECTED]>

>
> Can you try removing the required from the depends for password and give
minlength and maxlength. Since minLength is mentioned required is not
necesary.
> Try it and let ue know.
> this may be considered as a bug in struts too.
> Thanks !
> Bachan
>
>  "Nekkalapudi, Viplava" <[EMAIL PROTECTED]> wrote: My team can't get
the Struts client-side (i.e. JavaScript) validation
> framework to work. We want to ensure that a password is between 6 and 30
> characters. Has anyone been able to get these checks to work? The
"required"
> field check works, but the "minlength" and "maxlength" do not. Here's what
> our validation.xml file contains:
>
>
> depends="required">
>
>
> depends="required,minlength,maxlength">
>
>
>
>
>
> minlength
> 6
>
>
> maxlength
> 30
>
>
>
>
> Thanks,
>
> JOHN
>

--
To unsubscribe, e-mail:
<mailto:struts-user-unsubscribe@;jakarta.apache.org>
For additional commands, e-mail:
<mailto:struts-user-help@;jakarta.apache.org>

--
To unsubscribe, e-mail:
<mailto:struts-user-unsubscribe@;jakarta.apache.org>
For additional commands, e-mail:
<mailto:struts-user-help@;jakarta.apache.org>

--
To unsubscribe, e-mail:   <mailto:struts-user-unsubscribe@;jakarta.apache.org>
For additional commands, e-mail: <mailto:struts-user-help@;jakarta.apache.org>

Re: JavaScript Validation: MinLength & MaxLength Functions Don't Work

2002-10-24 Thread bachan s


Can you try removing the required from the depends for password and give minlength and 
maxlength. Since minLength is mentioned required is not necesary. 
Try it and let ue know. 
this may be considered as a bug in struts too.
Thanks !
Bachan
 
 "Nekkalapudi, Viplava" <[EMAIL PROTECTED]> wrote: My team can't get the Struts 
client-side (i.e. JavaScript) validation
framework to work. We want to ensure that a password is between 6 and 30
characters. Has anyone been able to get these checks to work? The "required"
field check works, but the "minlength" and "maxlength" do not. Here's what
our validation.xml file contains:


depends="required">


depends="required,minlength,maxlength">





minlength
6


maxlength
30




Thanks,

JOHN


--
To unsubscribe, e-mail: 
For additional commands, e-mail: 



-
Do you Yahoo!?
Y! Web Hosting - Let the expert host your web site

RE: JavaScript Validation: MinLength & MaxLength Functions Don't Work

2002-10-24 Thread Nekkalapudi, Viplava

We tried the same thing by just specifying the "minlength" for test purpose.
But it didn't work. 
--> depends="minlength"> and removed the stuff for maxlength.

-Original Message-
From: bachan s [mailto:bachan_anand@;yahoo.com]
Sent: Thursday, October 24, 2002 2:39 PM
To: Struts Users Mailing List
Subject: Re: JavaScript Validation: MinLength & MaxLength Functions
Don't Work

Can you try removing the required from the depends for password and give
minlength and maxlength. Since minLength is mentioned required is not
necesary. 
Try it and let ue know. 
this may be considered as a bug in struts too.
Thanks !
Bachan

 "Nekkalapudi, Viplava" <[EMAIL PROTECTED]> wrote: My team can't get the
Struts client-side (i.e. JavaScript) validation
framework to work. We want to ensure that a password is between 6 and 30
characters. Has anyone been able to get these checks to work? The "required"
field check works, but the "minlength" and "maxlength" do not. Here's what
our validation.xml file contains:

depends="required">

depends="required,minlength,maxlength">

minlength
6

maxlength
30

Thanks,

JOHN

--
To unsubscribe, e-mail: 
For additional commands, e-mail: 

-
Do you Yahoo!?
Y! Web Hosting - Let the expert host your web site

--
To unsubscribe, e-mail:   <mailto:struts-user-unsubscribe@;jakarta.apache.org>
For additional commands, e-mail: <mailto:struts-user-help@;jakarta.apache.org>

Re: JavaScript Validation: MinLength & MaxLength Functions Don't Work

2002-10-24 Thread Dave Derry

This has been explained before. I think it was by Ted. The reason has to do
with security. Specifying bouinds on the length of a password limits the
universe of potential passwords that a cracker would need to test. And of
course if he/she saw a message saying "Password must be between 6 and 30
characters in length" that would provide that information.

Dave Derry


- Original Message -
From: "bachan s" <[EMAIL PROTECTED]>


>
> Can you try removing the required from the depends for password and give
minlength and maxlength. Since minLength is mentioned required is not
necesary.
> Try it and let ue know.
> this may be considered as a bug in struts too.
> Thanks !
> Bachan
>
>  "Nekkalapudi, Viplava" <[EMAIL PROTECTED]> wrote: My team can't get
the Struts client-side (i.e. JavaScript) validation
> framework to work. We want to ensure that a password is between 6 and 30
> characters. Has anyone been able to get these checks to work? The
"required"
> field check works, but the "minlength" and "maxlength" do not. Here's what
> our validation.xml file contains:
>
>
> depends="required">
>
>
> depends="required,minlength,maxlength">
>
>
>
>
>
> minlength
> 6
>
>
> maxlength
> 30
>
>
>
>
> Thanks,
>
> JOHN
>



--
To unsubscribe, e-mail:   
For additional commands, e-mail:

RE: JavaScript Validation: MinLength & MaxLength Functions Don't Work

2002-10-24 Thread Hajratwala, Nayan (N.)

interesting ... sorry if this has been discussed to death already.  If so, i'll shut 
up. =)

Shouldn't the decision of displaying the validation be up to the application developer?

For example, when changing a password, you would have a spot to enter old & new 
passwords, but would likely want to put some validation around the new one (min 6 
characters, etc).  What would be wrong with displaying that info to the user?

---
- Nayan Hajratwala
- Chikli Consulting LLC
- http://www.chikli.com

-Original Message-
From: Dave Derry [mailto:dderry@;acm.org]
Sent: Thursday, October 24, 2002 4:14 PM
To: Struts Users Mailing List
Subject: Re: JavaScript Validation: MinLength & MaxLength Functions
Don't Work

This has been explained before. I think it was by Ted. The reason has to do
with security. Specifying bouinds on the length of a password limits the
universe of potential passwords that a cracker would need to test. And of
course if he/she saw a message saying "Password must be between 6 and 30
characters in length" that would provide that information.

Dave Derry

- Original Message -
From: "bachan s" <[EMAIL PROTECTED]>

>
> Can you try removing the required from the depends for password and give
minlength and maxlength. Since minLength is mentioned required is not
necesary.
> Try it and let ue know.
> this may be considered as a bug in struts too.
> Thanks !
> Bachan
>
>  "Nekkalapudi, Viplava" <[EMAIL PROTECTED]> wrote: My team can't get
the Struts client-side (i.e. JavaScript) validation
> framework to work. We want to ensure that a password is between 6 and 30
> characters. Has anyone been able to get these checks to work? The
"required"
> field check works, but the "minlength" and "maxlength" do not. Here's what
> our validation.xml file contains:
>
>
> depends="required">
>
>
> depends="required,minlength,maxlength">
>
>
>
>
>
> minlength
> 6
>
>
> maxlength
> 30
>
>
>
>
> Thanks,
>
> JOHN
>

--
To unsubscribe, e-mail:   <mailto:struts-user-unsubscribe@;jakarta.apache.org>
For additional commands, e-mail: <mailto:struts-user-help@;jakarta.apache.org>

--
To unsubscribe, e-mail:   <mailto:struts-user-unsubscribe@;jakarta.apache.org>
For additional commands, e-mail: <mailto:struts-user-help@;jakarta.apache.org>

RE: JavaScript Validation: MinLength & MaxLength Functions Don't Work

2002-10-24 Thread bachan s


Could you please send across your jsp and validation.xml file ???
 "Nekkalapudi, Viplava" <[EMAIL PROTECTED]> wrote:We tried the same thing by just 
specifying the "minlength" for test purpose.
But it didn't work. 
--> depends="minlength"> and removed the stuff for maxlength.


-Original Message-
From: bachan s [mailto:bachan_anand@;yahoo.com]
Sent: Thursday, October 24, 2002 2:39 PM
To: Struts Users Mailing List
Subject: Re: JavaScript Validation: MinLength & MaxLength Functions
Don't Work



Can you try removing the required from the depends for password and give
minlength and maxlength. Since minLength is mentioned required is not
necesary. 
Try it and let ue know. 
this may be considered as a bug in struts too.
Thanks !
Bachan

"Nekkalapudi, Viplava" wrote: My team can't get the
Struts client-side (i.e. JavaScript) validation
framework to work. We want to ensure that a password is between 6 and 30
characters. Has anyone been able to get these checks to work? The "required"
field check works, but the "minlength" and "maxlength" do not. Here's what
our validation.xml file contains:


depends="required">


depends="required,minlength,maxlength">





minlength
6


maxlength
30




Thanks,

JOHN


--
To unsubscribe, e-mail: 
For additional commands, e-mail: 



-
Do you Yahoo!?
Y! Web Hosting - Let the expert host your web site

--
To unsubscribe, e-mail: 
For additional commands, e-mail: 



-
Do you Yahoo!?
Y! Web Hosting - Let the expert host your web site

RE: JavaScript Validation: MinLength & MaxLength Functions Don't Work

RE: JavaScript Validation: MinLength & MaxLength Functions Don't Work

RE: JavaScript Validation: MinLength & MaxLength Functions Don't Work

RE: JavaScript Validation: MinLength & MaxLength Functions Don't Work

Re: JavaScript Validation: MinLength & MaxLength Functions Don't Work

RE: JavaScript Validation: MinLength & MaxLength Functions Don't Work

Re: JavaScript Validation: MinLength & MaxLength Functions Don't Work

RE: JavaScript Validation: MinLength & MaxLength Functions Don't Work

RE: JavaScript Validation: MinLength & MaxLength Functions Don't Work

9 matches

Site Navigation

Mail list logo

Footer information