i would argue in that case that there is a bug if login is prevented because the password is too short.....once a user creates a password it should remain valid until they change it. we should only check password length on creation, otherwise you break existing users when you try and change your rules.
On Friday, September 14, 2012 7:56:36 AM UTC-7, Niphlod wrote: > > http://web2py.com/books/default/chapter/29/09#Settings-and-messages > > Default is a minimum of 4 chars for the password. If you feel you should > let users use simple passwords, set auth.settings.password_min_length > accordingly .... > > On Friday, September 14, 2012 4:45:09 PM UTC+2, Ramos wrote: >> >> So far so good moving my apps from 1.99 to 2.09 >> >> One thing did not work >> >> My user password of an app is 123 and i could not login with error >> message... >> Password too short!!!! >> >> >> I have other users using this app!!!! >> >> What if they have simple passwords too? >> >> Best regards >> >> António >> > --
