U4-3158 - user back office password policies doesn't adhere to membership provider rules

Created by Shannon Deminick 16 Oct 2013, 07:06:43 Updated by Shannon Deminick 22 Oct 2013, 02:41:36

Relates to: U4-532

Relates to: U4-2124

Relates to: U4-3057

This is mostly because these rules are not really implemented in the umbraco membership provider - I think it mostly is for the members membership provider but the user's one doesn't really have much implemented at all - this will affect things like creating a password during install as well. So if you set the min password len, etc... on the membership provider config, that really has no effect.

Comments

Priority: Normal

Type: Bug

State: Fixed

Assignee: Shannon Deminick

Difficulty: Normal

Category: Security

Backwards Compatible: True

Fix Submitted:

Affected versions: 4.8.0, 4.9.0, 4.10.0, 4.11.0, 6.0.0, 6.1.0, 4.9.1, 4.11.1, 4.11.2, 4.11.3, 4.11.4, 6.0.1, 4.11.5, 6.0.2, 4.11.6, 6.0.3, 6.0.4, 4.11.7, 6.1.1, 6.0.6, 4.11.9, 6.0.5, 4.11.8, 6.0.7, 6.1.2, 4.5.0, 4.5.1, 4.8.1, 4.10.1, 4.11.10, 6.1.3, 6.1.4, 6.1.5, 6.1.6

Due in version: 7.0.0, 6.2.0

Sprint:

Story Points:

Cycle: