Question

Password strength

0

How can we enforce password strength in Mendix 2.5? That is requiring the password to contain a minimum number of characters, some numbers, symbols etc (we can specify this with a regex). Previous answers suggest we can add the regex to the metamodel, but the System domain is not editable in Mendix 2.5.

asked 2011-02-22

Martin Bucknall

3 answers

Jacco Feenstra · Answer 1 · 2011-02-22

Create a new Entity with generalization on System.User (or use the one in Module Administration). On that Entity you can enforce whatever you want.

Otherwise you can also use a microflow to enforce and put the microflow behind the Save button in the New/Edit form of users

Hans van Kranenburg · Answer 2 · 2011-06-06

Another good one: http://www.nakedpassword.com/

Probably best idea to embed it in your application, and users won't ever complain about password complexity anymore. ;]

Jan Doggen · Answer 3 · 2011-06-06

And a very good password strength calculator is described at http://www.passwordmeter.com/ (+ downloadable code)