Notifications
Clear all

wpForo 1.x.x Strong Passwords

7 Posts
3 Users
3 Likes
449 Views
Ken Fern
Posts: 14
Topic starter
(@kenfern)
Active Member
Joined: 10 months ago

Anyone find a strong passwords plugin to enforce upper and lower case letters, numbers, special characters and number of characters that plays nicely with WPforo or anyone aware of how you could put validation on WPforo password field to prevent configuring a password that doesn't meet these requirements. I have tried a few but the WPforo password reset form received via email link still allows you to put passwords that are not strong in. 

Topic Tags
6 Replies
dimalifragis
Posts: 1814
(@dimalifragis)
Noble Member
Joined: 3 years ago

Logins/users/passwords are handled by Wordpress and not wpForo. wpForo just provides kind of a "form" for easyness.

 

Reply
4 Replies
Ken Fern
(@kenfern)
Joined: 10 months ago

Active Member
Posts: 14

Right but the form should be able to handle the validation. Perhaps some javascript could be leveraged on top since wpforo doesn't have this functionality natively?

Reply
VereK
(@verek)
Joined: 5 years ago

Honorable Member
Posts: 393

@kenfern 

The standard Wordpress password form/reset does enforce a strong password (with a built in random generator too) but the WPForo interface does not. It is a failing of WPForo, one which irritates my users to the degree that in settings/ features I turned "Replace Reset Password Page URL to Forum Reset Password Page URL" off so that the standard WP password system is used.

Works great but if you want to send your members to their account page to fill in your custom profile fields after resetting their password or login you will have set both login and registration after redirections to yourforumurl/account.

Reply
Ken Fern
(@kenfern)
Joined: 10 months ago

Active Member
Posts: 14

@verek Hmm great idea! I was worried about users getting confused by the wp branding but I guess I could customize that to match. I think the wordpress form lets you over-ride and use a weak password though. I will have to test that and see if I can turn that off. Also I asked a similar question over at the user custom field addon paid forum and they said they would consider for a future release. I would pay the $35 easy for the addon for the ability to be able to just simply turn on strong password validation vs having to test/monkey around with other workarounds. Time is money!

Reply
VereK
(@verek)
Joined: 5 years ago

Honorable Member
Posts: 393

@kenfern 

You can brand the WP core login/password reset easily with https://wordpress.org/plugins/colorlib-login-customizer/

Reply
VereK
Posts: 393
(@verek)
Honorable Member
Joined: 5 years ago
Posted by: @kenfern

Also I asked a similar question over at the user custom field addon paid forum and they said they would consider for a future release

It should be part of WPForo core!

Reply