@agentultra shared an interesting PDF of the NIST about how to go about handling and enforcing passwords (memorized secrets) and it has some interesting guidelines that make a lot of sense that could be implemented in the Data.Password.Validate module. (I've only really looked at a bit of chapter 5.1, but there're some good things in there)
I'd like to keep this issue open for discussion and coordination when someone wants to pick this up.
@agentultra shared an interesting PDF of the NIST about how to go about handling and enforcing passwords (memorized secrets) and it has some interesting guidelines that make a lot of sense that could be implemented in the
Data.Password.Validatemodule. (I've only really looked at a bit of chapter 5.1, but there're some good things in there)I'd like to keep this issue open for discussion and coordination when someone wants to pick this up.