Describe the bug
The Login page enforces strong password validation:
- Minimum 8 characters
- Uppercase, lowercase, number, and special character required
But the ForgotPassword page only requires minimum 6 characters with
no complexity rules. This means a user can reset their password to
something like abc123 and then be completely unable to log in
because the login form rejects it.
Where is it happening
src/pages/public/Login.jsx — strong validation schemasrc/pages/public/ForgotPassword.jsx — only min(6) validation
Expected behavior
Both pages should enforce the same password policy so users
can always log in after resetting their password.
Suggested Fix
Update resetPasswordSchema in ForgotPassword.jsx to match
the same Yup validation as Login.jsx.
I would like to work on this issue under GSSoC.
Thank you.
Describe the bug
The Login page enforces strong password validation:
But the ForgotPassword page only requires minimum 6 characters with
no complexity rules. This means a user can reset their password to
something like
abc123and then be completely unable to log inbecause the login form rejects it.
Where is it happening
src/pages/public/Login.jsx— strong validation schemasrc/pages/public/ForgotPassword.jsx— onlymin(6)validationExpected behavior
Both pages should enforce the same password policy so users
can always log in after resetting their password.
Suggested Fix
Update
resetPasswordSchemainForgotPassword.jsxto matchthe same Yup validation as
Login.jsx.I would like to work on this issue under GSSoC.
Thank you.