Is that a password which is being used by the API directly or via the UI? I think the UI has a text sanitization function which tries to HTML encode the "<" and ">" characters as a first-line cross-site scripting defense.
-----Original Message----- From: Yiping Zhang [mailto:yzh...@marketo.com] Sent: Monday, November 03, 2014 2:14 PM To: users@cloudstack.apache.org Subject: cloudstack user password requirements Hi, By chance, we found out that CS user password can not contain "<" or ">" characters, what other characters are illegal in user's password string? We are not able to find any documents on the subject. Thanks Yiping
