Merge pull request #11476 from creative-commoners/pulls/6/pw-strength

API Change default password strength from strong to medium
silverstripe · Nov 25, 2024 · 574b4e8 · 574b4e8
2 parents 35371dd + 377c18b
commit 574b4e8
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 2 deletions.
diff --git a/src/Forms/ConfirmedPasswordField.php b/src/Forms/ConfirmedPasswordField.php
@@ -53,7 +53,7 @@ class ConfirmedPasswordField extends FormField
      * Minimum password strength if requireStrongPassword is true
      * See https://symfony.com/doc/current/reference/constraints/PasswordStrength.html#minscore
      */
-    private int $minPasswordStrength = PasswordStrength::STRENGTH_STRONG;
+    private int $minPasswordStrength = PasswordStrength::STRENGTH_MEDIUM;
 
     /**
      * Callback used to generate a random password if $this->canBeEmpty is true and the field is left blank

diff --git a/src/Security/Validation/EntropyPasswordValidator.php b/src/Security/Validation/EntropyPasswordValidator.php
@@ -20,7 +20,7 @@ class EntropyPasswordValidator extends PasswordValidator
      * The strength of a valid password.
      * See https://symfony.com/doc/current/reference/constraints/PasswordStrength.html#minscore
      */
-    private static int $password_strength = PasswordStrength::STRENGTH_STRONG;
+    private static int $password_strength = PasswordStrength::STRENGTH_MEDIUM;
 
     public function validate(string $password, Member $member): ValidationResult
     {