[Bug]: No feedback if the password for sharing does not comply with rules #58359
Description
⚠️ This issue respects the following points: ⚠️
- This is a bug, not a question or a configuration/webserver/proxy issue.
- This issue is not already reported on Github OR Nextcloud Community Forum (I've searched it).
- Nextcloud Server is up to date. See Maintenance and Release Schedule for supported versions.
- I agree to follow Nextcloud's Code of Conduct.
Bug description
[Disclaimer: I did my best to search for a similar report indeed]
I want to protect a shared link with a password. The dialog seems to accept any password, however there is no password protection at all if the password is too simple (ie, does not comply with rules set) or is among the most compromised passwords. There is a message in browser console:
Das Passwort ist unter den 1.000.000 häufigsten Passwörtern. Bitte wählen Sie ein anderes. Das Passwort muss mindestens 10 Zeichen lang sein. Das Passwort muss mindestens einen Klein- und einen Großbuchstaben beinhalten. Das Passwort ist in der Liste der kompromittierten Passwörter enthalten. Bitte wählen Sie ein anderes Passwort."
Steps to reproduce
- Add share link to folder or file
- Choose "password"
- Set simple password ("abcd1234")
- Test link in incognito/private mode
Expected behavior
- Should ask for password (simple may be enough) when opening the link
or - Should alert the user that password is invalid and not applied when creating the link
Nextcloud Server version
30
Operating system
Debian/Ubuntu
PHP engine version
None
Web server
None
Database engine version
None
Is this bug present after an update or on a fresh install?
None
Are you using the Nextcloud Server Encryption module?
None
What user-backends are you using?
- Default user-backend (database)
- LDAP/ Active Directory
- SSO - SAML
- Other
Configuration report
List of activated Apps
Nextcloud Signing status
Nextcloud Logs
Additional info
Using Nextcloud-AIO