Closed
Description
Django 1.9 adds really cool password validators to make sure users set good passwords:
https://docs.djangoproject.com/en/1.9/topics/auth/passwords/#password-validation
We should enable this. It's also worth considering if we want to enable the one that uses the haveibeenpwned DB: https://github.com/ubernostrum/pwned-passwords-django