Long passwords are truncated when creating accounts

BYOND Forums

Announcements · BYOND Help · Bug Reports · Feature Requests · Beta Testers · Beta Bugs · Developer Help · Design Philosophy · Demos & Libraries · Tutorials & Snippets · Art & Sound · Classified Ads · Game Updates · Contests & Events · Linux Talk · On Topic · Off Topic

ID:2789611

May 11 2022, 7:59 pm

Xeonova IO

BYOND Version:	N/A (Website Bug)
Operating System:	Windows 10 Pro 64-bit
Web Browser:	Safari 15.4
Applies to:	Website

Status:

Open

Issue hasn't been assigned a status value.

I use a password manager to keep my accounts secure.

When I created my account with a password that is 60 characters in length, the account was created successfully and my password was silently truncated; resulting in an incorrect password when I attempted to login.

This is not a good user experience and should be fixed.

I was required to reset my password in order to gain access to my account.

May 12 2022, 5:32 pm

Spevacus

So it turns out, at account creation, passwords have a 30 character limit. There's no indication that you've hit that limit if you attempt to exceed it, especially when done using a password manager. It is unlikely that your password manager would be able to detect that limitation as well.

However there is no 30 character limit at the login stage, hence the disparity. Lummox JR has mentioned that he's intent on removing the 30 char limit not just here but in a few other places (appears to be a legacy limitation in other places too), but he's currently pretty preoccupied with 515's development (more on that in News tomorrow!) I wouldn't expect this to immediately be changed but it certainly won't be indefinitely ignored. Thanks for reporting :)

Apr 13 2023, 5:04 pm
Spevacus	Happened upon this when reviewing my posts and it's worth a bump, IMO