Avoiding words in Passwords

DavidAdam · March 14, 2018, 8:33am

I use software that uses Auth0 at least to validate passwords. As listed on this page: Password Options in Auth0 Database Connections,
users can be forced to avoid certain words in their password. Using the example on the page, as of now we couldn’t use the word “John” in a password but we could use joHn in a password.

Can validating a password be (custom) changed to have it avoid John whether a letter in that word is in lower case or in upper case? So “joHn” would be avoided as well?

Best,
David

Karen · March 22, 2018, 10:35pm

@DavidAdam Hello David! Thanks for reaching out. I tried to replicate the issue you were having, but i was not able to successfully reproduce it. When signing up, I created a username and then entered various cases of a password containing that username. I was not able to successfully sign up. I would recommend turning on the Personal Data Toggle under the Password Policy section for your database connection.

Cheers,
Karen

Topic		Replies	Views
API is converting username to lowercase Get Help api , username	6	6268	March 2, 2018
Custom Password Policy on Auth0 Database Get Help password , custom , password-policy	2	5221	March 2, 2018
Auth0 custom password complexity Get Help lock , password	2	2672	August 29, 2020
Custom Database Change Password script won't pass username Get Help connections , custom-database-connections	4	874	February 25, 2025
Universal Login Custom Template Username Validation Allowing Only Lowercase Alphanumeric Values Get Help custom-login , universal-login	2	2914	June 23, 2023

Avoiding words in Passwords

Related topics