From a71fd090aeefd818d80c6163c690694ea6259859 Mon Sep 17 00:00:00 2001
From: Dries Buytaert <dries@buytaert.net>
Date: Tue, 22 Dec 2009 14:45:04 +0000
Subject: - Patch #640726 by mcarbone: a 4 character passwords was called
 'strong'.

---
 modules/user/user.js | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

(limited to 'modules/user')

diff --git a/modules/user/user.js b/modules/user/user.js
index c555c4d6f..412259529 100644
--- a/modules/user/user.js
+++ b/modules/user/user.js
@@ -109,10 +109,10 @@ Drupal.evaluatePasswordStrength = function (password, translate) {
   var usernameBox = $('input.username');
   var username = (usernameBox.length > 0) ? usernameBox.val() : translate.username;
 
-  // Lose 10 points for every character less than 6.
+  // Lose 5 points for every character less than 6, plus a 30 point penalty.
   if (password.length < 6) {
     msg.push(translate.tooShort);
-    strength -= (6 - password.length) * 10;
+    strength -= ((6 - password.length) * 5) + 30;
   }
 
   // Count weaknesses.
@@ -166,7 +166,7 @@ Drupal.evaluatePasswordStrength = function (password, translate) {
     indicatorText = translate.fair;
   } else if (strength < 80) {
     indicatorText = translate.good;
-  } else if (strength < 100) {
+  } else if (strength <= 100) {
     indicatorText = translate.strong;
   }
 
-- 
cgit v1.2.3