##// END OF EJS Templates
security: limit the maximum password lenght to 72 characters to prevent possible...
security: limit the maximum password lenght to 72 characters to prevent possible server side resource consumption attack. - bcrypt heavy computation can lead to DOS using a very long password .eg 10**8 lenght. - we allowed this on registration or on password update

File last commit:

r883:ae526446 default
r2128:f22a9ea9 default
Show More
shared-components.html
9 lines | 626 B | text/html | HtmlLexer
<!-- required for stamped out templates that might use common elements -->
<link rel="import" href="rhodecode-legacy-js/rhodecode-legacy-js.html">
<link rel="import" href="../../../../../bower_components/iron-ajax/iron-ajax.html">
<link rel="import" href="shared-styles.html">
<link rel="import" href="channelstream-connection/channelstream-connection.html">
<link rel="import" href="rhodecode-toast/rhodecode-toast.html">
<link rel="import" href="rhodecode-toggle/rhodecode-toggle.html">
<link rel="import" href="rhodecode-unsafe-html/rhodecode-unsafe-html.html">
<link rel="import" href="rhodecode-app/rhodecode-app.html">