FusionAuth
    • Home
    • Categories
    • Recent
    • Popular
    • Pricing
    • Contact us
    • Docs
    • Login

    Any way to have password 'minimum age' exemption for default FusionAuth-generated passwords?

    Scheduled Pinned Locked Moved Unsolved
    Q&A
    2
    2
    6.3k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P
      philip.smith
      last edited by

      In our user registration request, we are providing the parameter 'sendSetPasswordEmail' set to true. From the FusionAuth docs, it states that: "When you set this value to true, any provided password field is ignored. FusionAuth will set the initial password to a securely generated random string."

      The problem occurs when the tenant also has a password Minimum Age configured. FusionAuth then does not let the user set their password for the first time until the minimum age has passed. Is there any workaround for this? It seems FusionAuth could recognize this is a default system-generated password and allow that as an exemption to the minimum age rule.

      danD 1 Reply Last reply Reply Quote 1
      • danD
        dan @philip.smith
        last edited by

        @philip-smith This looks similar to this prior discussion: https://fusionauth.io/community/forum/topic/1082/do-not-enforce-minimum-password-life-restrictions

        I don't know of any workaround, but this seems like a reasonable request.

        You can file an issue requesting this functionality: https://github.com/fusionauth/fusionauth-issues/issues and we'll put it in the backlog.

        --
        FusionAuth - Auth for devs, built by devs.
        https://fusionauth.io

        1 Reply Last reply Reply Quote 0
        • First post
          Last post