Password Strength Score

4 posts, 1 answers
  1. rootberg
    rootberg avatar
    38 posts
    Member since:
    Oct 2012

    Posted 31 Jan 2012 Link to this post

    Is there a way to get the password strength score on the server side? I know that I could just populate a hidden text box with the score and have is posted back to the server, but I was wondering if there was a more elegant solution.
  2. Answer
    Vasil
    Admin
    Vasil avatar
    1547 posts

    Posted 01 Feb 2012 Link to this post

    Hello rootberg,

    The strength score is calculated only ClientSide. So your solution with the hidden field is maybe the clearest and easiest one.

    Kind regards,
    Vasil
    the Telerik team
    If you want to get updates on new releases, tips and tricks and sneak peeks at our product labs directly from the developers working on the RadControls for ASP.NET AJAX, subscribe to their blog feed now
  3. UI for ASP.NET Ajax is Ready for VS 2017
  4. Michael
    Michael avatar
    1 posts
    Member since:
    Dec 2012

    Posted 04 Feb 2013 Link to this post

    Then what's to stop someone from bypassing a minimum strength requirement by altering the value of the hidden field? Client-side only validation is dangerous business - the values are too easy to manipulate.

  5. Vasil
    Admin
    Vasil avatar
    1547 posts

    Posted 05 Feb 2013 Link to this post

    Hello Michael,

    This is not validation method of the RadTextBox, it is only indicator, to notify the users if their password is good(safe) enough.

    To validate the password you should use asp:CustomValidator or asp:RegularExpressionValidator, or to perform some additional server side validation.

    All the best,
    Vasil
    the Telerik team
    If you want to get updates on new releases, tips and tricks and sneak peeks at our product labs directly from the developers working on the RadControls for ASP.NET AJAX, subscribe to their blog feed now.
Back to Top