User Password Limit

tyf · July 21, 2022, 4:34am

Problem statement: Does Auth0 enforce a limit on the length of a user’s password? The Create User API does not seem to validate password length.

Solution: Although the API doesn’t explicitly reject requests for longer passwords, Auth0 will ignore differences after 72 chars in order to protect against potential DoS attacks.

Resources :

https://auth0.com/docs/authenticate/database-connections/password-strength#minimum-password-length

Topic		Replies	Views
For passwords longer than 72 characters, Auth0 is ignoring all characters after the 72nd Help password	4	3098	March 25, 2020
Customize Maximum Password Length Knowledge Articles database , password-policy , password-length	1	2997	August 11, 2022
Password length rules Help auth0 , password , change-password	8	5168	July 31, 2020
Password field accepting more than 128 characters Help sign-up	4	3143	September 18, 2020
Maximum length for email address and password in Auth0 database Help auth0	3	7212	March 2, 2018

User Password Limit

Related Topics