HI Mark, Jason,
I was working on setting up profile on new version and while on the joomla_password custom field, I saw that we could display the password strength but not enforce it. I would have client to enforce at least a STRONG PASSWORD on their password creation... considering the iCloud password fail and the sensitivity of the information my client could post, the first step would at least to control how bad they set their password to.
Could we set a client-side verification to bind the .password_strength_* to a certain int (1,5?) and that if incorrect the form switches to invalid.
As a server side, I suppose we could add a simple check to private function validatePassword($input, $reconfirm) if this is active and if it returns a greater or equal value to the parameter set.
a) However, for the client-side, your form validation seems to be a mix of validateJS and Parseley but I'm not quite sure how to set it properly.
b) I guess that the password_strength is only currently setup on JS and not PHP (i didn't find the JS script - wasn't at media/com_easysocial/apps/fields/user/joomla_password/). Therefore, I'm not quite sure how to do this without the script.
Could you help tweaking this future, which could be a great add to next 1.3.* version.
Thanks
EDIT:
I have gone about 2 hours without success however,
I have found the Foundry passwordstrength.js file and /public_html/media/com_easysocial/scripts/apps/fields/user/joomla_password/(content.js)
I have tried to modify the content.js to include a new rule but even if i clear file, try in a new device or any other matter, it is not working. I have even try to delete all files in the folder and the verification was still working !?!?! I'm a little bit lost since enabling such function shouldn't be complicated but the whole system make me pulling out my hair out :/