This is a wise feature request. I would urge you to file it on http://issues.ez.no
Alternatively, you may wish to modify a copy of the user module within a custom module extension to offer the the customized user/register.php to users (with your additional php code to provide for extended password validation and increased user password security).
That request is already 4 years old! I've just done another unsuccessful search on this site for such a feature / extension, does this mean there's not one?
I vaguely remember an extension did this... but I don't remember what it was and it could even be that it was for 3.10 or something, that memory is pretty old.
Available for ezpublish troubleshooting, hosting and custom extension development: http://www.leidentech.com
Gabriel Finkelstein
Sunday 03 July 2011 10:55:20 am
I think you mean this one:
http://projects.ez.no/mbpaex
Steven E. Bailey
Monday 04 July 2011 7:20:18 am
@Gabriel - I think you're right.
Well, then, mbpaex doesn't do anything to ensure the password is not too easy... it just expires the passwords at a given interval.
I still don't think this would be that hard to implement. Basically check to see that the password is not the same as the login, or a variation of the the login - i.e. login12 or nigol, then maybe check the hash against a rainbow table of dictionary words (and that should be generated with multiple interchangeable dictionaries for different languages - I would start with a dictionary of the 500 most common passwords). Then maybe also check with a regular expression whether there is at least one of each: punctuation character, number, letter of each case. There is already a length check built-in.
Actually, if anyone wants to pay me to write this, message me.