Opened 8 years ago
Last modified 8 years ago
#27045 closed Cleanup/optimization
Document that AUTH_PASSWORD_VALIDATORS doesn't apply to create_user() and create_superuser() — at Version 1
| Reported by: | Chris Griffin | Owned by: | Tim Graham |
|---|---|---|---|
| Component: | Documentation | Version: | 1.9 |
| Severity: | Normal | Keywords: | AUTH_PASSWORD_VALIDATORS |
| Cc: | Triage Stage: | Ready for checkin | |
| Has patch: | yes | Needs documentation: | no |
| Needs tests: | no | Patch needs improvement: | no |
| Easy pickings: | no | UI/UX: | no |
Description (last modified by )
According to this thread, the create_user() method does not enforce the password validators which I ran into while trying to unittest my validation settings. This seems quite dangerous especially since most validation in django is normally on the model level and many developers like myself may assume these methods would enforce these settings.
Change History (1)
comment:1 by , 8 years ago
| Component: | Core (Management commands) → Documentation |
|---|---|
| Description: | modified (diff) |
| Has patch: | set |
| Owner: | changed from to |
| Status: | new → assigned |
| Summary: | create_user and create_superuser do not enforce AUTH_PASSWORD_VALIDATORS → Document that AUTH_PASSWORD_VALIDATORS doesn't apply to create_user() and create_superuser() |
| Triage Stage: | Unreviewed → Accepted |
| Type: | Bug → Cleanup/optimization |
Note:
See TracTickets
for help on using tickets.
Here's a documentation PR to clarify the design decision about this.