Opened 8 years ago
Last modified 8 years ago
#27045 closed Cleanup/optimization
create_user and create_superuser do not enforce AUTH_PASSWORD_VALIDATORS — at Initial Version
| Reported by: | Chris Griffin | Owned by: | nobody |
|---|---|---|---|
| Component: | Documentation | Version: | 1.9 |
| Severity: | Normal | Keywords: | AUTH_PASSWORD_VALIDATORS |
| Cc: | Triage Stage: | Ready for checkin | |
| Has patch: | yes | Needs documentation: | no |
| Needs tests: | no | Patch needs improvement: | no |
| Easy pickings: | no | UI/UX: | no |
Description
According to this thread, the create_user method does not enforce the password validators which I ran into while trying to unittest my validation settings. This seems quite dangerous especially since most validation in django is normally on the model level and many developers like myself may assume these management commands would enforce these settings.
Note:
See TracTickets
for help on using tickets.