diff options
| author | Karmen <lu.kar@husky.neu.edu> | 2018-01-13 18:48:33 -0500 |
|---|---|---|
| committer | Tim Graham <timograham@gmail.com> | 2018-01-15 10:16:27 -0500 |
| commit | 4fcd28d442c2fec56f544f99cb658f33f847824c (patch) | |
| tree | cd87e1bfbb22c01988df0a48e11da4668224eeff /docs | |
| parent | 02365d3f38a64a5c2f3e932f23925a381d5bb151 (diff) | |
Fixed #28881 -- Doc'd that CommonPasswordValidator's password list must be lowercase.
Diffstat (limited to 'docs')
| -rw-r--r-- | docs/topics/auth/passwords.txt | 11 |
1 files changed, 6 insertions, 5 deletions
diff --git a/docs/topics/auth/passwords.txt b/docs/topics/auth/passwords.txt index 6dcbe384a1..6ae7f3d58e 100644 --- a/docs/topics/auth/passwords.txt +++ b/docs/topics/auth/passwords.txt @@ -550,13 +550,14 @@ Django includes four validators: .. class:: CommonPasswordValidator(password_list_path=DEFAULT_PASSWORD_LIST_PATH) - Validates whether the password is not a common password. By default, this - checks against a list of 1000 common password created by - `Mark Burnett <https://web.archive.org/web/20150315154609/https://xato.net/passwords/more-top-worst-passwords/>`_. + Validates whether the password is not a common password. This converts the + password to lowercase (to do a case-insensitive comparison) and checks it + against a list of 1000 common password created by `Mark Burnett + <https://web.archive.org/web/20150315154609/https://xato.net/passwords/more-top-worst-passwords/>`_. The ``password_list_path`` can be set to the path of a custom file of - common passwords. This file should contain one password per line and - may be plain text or gzipped. + common passwords. This file should contain one lowercase password per line + and may be plain text or gzipped. .. class:: NumericPasswordValidator() |
