Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.Can we please change the message found in drupal_strength.inc from this:
'message' => t('Password must match a Drupal strength level.'),
to this:
'message' => t('Password must match a strength level.'),
Users have no idea what a "Drupal strength level" is, and in fact many don't even know what a "Drupal" is. :-)
| Comment | File | Size | Author |
|---|---|---|---|
| #1 | password_policy-7.x-2.x-improve_drupal_strength_message-2496823-1.patch | 615 bytes | AohRveTPV |
Comments
Comment #1
AohRveTPV CreditAttribution: AohRveTPV commentedGood suggestion. I agree, the word "Drupal" should not be exposed to users.
Comment #2
ron_s CreditAttribution: ron_s commentedThanks for the speedy response!
Comment #3
ron_s CreditAttribution: ron_s commentedAlso I can confirm the patch applies cleanly and have reviewed. :)
Comment #4
AohRveTPV CreditAttribution: AohRveTPV commentedThe message seems sort of vague. I wonder if "calculated strength level" might be more informative than "strength level".
In any case, the word Drupal clearly needs to go, so committing.
Comment #6
AohRveTPV CreditAttribution: AohRveTPV commentedComment #7
AohRveTPV CreditAttribution: AohRveTPV commentedReverting and recommitting to also credit ron_s.
Comment #9
ron_s CreditAttribution: ron_s commentedThanks... I do agree the message is vague. In a certain way I wondered why it's shown at all.
When the message says "Password must have at least 1 digit(s)," there is a very clear course of action for the user.
For Drupal strength level, no definition is presented. Users don't know what they are supposed to do to meet the criteria, and I don't think it would be wise to share all the details. There are already too many details presented.
Not to overly analyze, but how about a checkbox on the subform, and default of disabled?