kenniswong1977 on "[Plugin: WooCommerce] Woocommerce Password Strength Meter Too High"

I have made an account and the password meter is way too high. I have caps, numbers, letters, symbols. It won't let you make an account unless its strong. How do I change this?

https://wordpress.org/plugins/woocommerce/

I'm having an issue with this, too, is there any way to change the settings?

2.5.2 will include a filter, and feedback for the user.

Is there any updates coming to lower the security threshold? We have users complaining about the complexity required for creating the password.

Security should be #1 priority, now it has hints and tells them what to add. But yes, the level is filterable.

Where are the settings to filter the levels? The settings area looks the same. Thanks!

Waiting to find where these filterable settings are posted. We are getting a great deal of complaints regarding the complexity of the password reset feature.

I'm also having the same issue. Where can I change the filter level setting for the password?

So 2.5.2 is out, where are the settings? Can we please get an answer?

Mike security should be a high priority but so should not pissing your clients (us) customers off. The issue with developers is they rarely have a clue about selling stuff and the settings on this now are completely ridiculous!

Plenty of other companies remain secure without these stupid requirements, maybe you guys need to have a look at how they do it coz you sell a shopping cart system and therefore people being able to easily buy stuff should be high on your priorities too.

Any chance someone could answer this simple question that has been asked multiple times!

2.5.3 was just released but this issue was not addressed, are there any workarounds? Users and clients are not happy.

Hello Mike -

We are also having this problem with our shop page. Understandably security should be a priority, however, even when completing all the necessary requirements in the password field it will still not let our users process their registration. The only way anyone has been able to get through is by using a browser suggested password or a completely random string.

Above you stated that this would be fixed and filterable on the 2.5.2 release, and as we are running on 2.5.5, I still can't find these filterable settings anywhere within the plugin.

Can you please provide some information to all of us needing help with this? It would be greatly appreciated.

Thanks!

I'm also having the same issue. While I do appreciate the push for security, the current password requirements are a little over the top.

The ability to choose what level your customers' passwords should be would be really really handy.

Add this to your functions.phps to remove the requirements:

function remove_wc_password_meter() {
wp_dequeue_script( 'wc-password-strength-meter' );
}
add_action( 'wp_print_scripts', 'remove_wc_password_meter', 100 );

Then use this plugin to add/control new requirements:
https://wordpress.org/plugins/woocommerce-enforce-strong-password

@rlasater the proposed solution doesn't work!!

@plugin author: Can we have the ability to change the password strength and maybe set our own settings for password requirement. It doesn't make sense that we are being forced to only set passwords that are ridiculously complex and hard to remember for customers. There should be an option to set up as owners or customers like, at their own risk.

I second you ! but as I am new to wordpress maybe there are reason for this paranoia ?

The above does work, as does https://nicolamustone.com/2016/01/27/remove-the-password-strength-meter-on-the-checkout-page/

If it doesn't work in your case, it's an error on your part most likely.

The above does work, as does https://nicolamustone.com/2016/01/27/remove-the-password-strength-meter-on-the-checkout-page/

If it doesn't work in your case, it's an error on your part most likely.

Then use this plugin to add/control new requirements:
https://wordpress.org/plugins/woocommerce-enforce-strong-password

The snippet/code does work. I think I may have put it the wrong way. I meant that the proposed solution of using a plugin to set new password requirement doesn't work which is why I requested that if it is possible to have the ability to change the password strength and maybe set our own settings for password requirement because using the above snippet means that even password "1" is valid. We do want password strength of weak but with minimum requirements e.g 6 characters long and mix of numbers + alpha.

Hope this clarifies :)

There is a woocommerce_min_password_strength filter. It's 3 by default.

There is a woocommerce_min_password_strength filter. It's 3 by default.

Yes, I used this filter to change the strength to 1 or 2 which seems acceptable but wasn't able to keep the minimum requirements for setting a password in place. Trying to figure that one out.

@tracersa: can you provide some filter code for reducing the password requirement to 2 when you get a chance? Presumably if you use the woocommerce_min_password_strength filter you should not be using remove_wc_password_meter as that defeats the purpose.

@Jamil this is what I used instead of completely getting rid of the strength. I just reduced it. Add it to functions.php

/** *Reduce the strength requirement on the woocommerce password. * * Strength Settings * 3 = Strong (default) * 2 = Medium * 1 = Weak * 0 = Very Weak / Anything */
function reduce_woocommerce_min_strength_requirement( $strength ) { retu 2;
}
add_filter( 'woocommerce_min_password_strength', 'reduce_woocommerce_min_strength_requirement' );

Here is what I ended up using and it worked perfectly:

add_filter( 'wc_password_strength_meter_params', 'mr_strength_meter_custom_strings' );
function mr_strength_meter_custom_strings( $data ) { $data_new = array( 'min_password_strength' => apply_filters( 'woocommerce_min_password_strength', 3 ), 'i18n_password_error' => esc_attr__( '<span class="mr-red">Please enter a stronger password.</span>', 'woocommerce' ), 'i18n_password_hint' => esc_attr__( 'Your password must be <strong>at least 7 characters</strong> and contain a mix of <strong>UPPER</strong> and <strong>lowercase</strong> letters, <strong>numbers</strong>, and <strong>symbols</strong> (e.g., <strong> ! " ? $ % ^ & </strong>). Keep adding additional characters and/or variation until this prompt disappears—you cannot save changes until it is gone.', 'woocommerce' ) ); retu array_merge( $data, $data_new );
}

@tracersa and @Jamil Jonna, are you respective solutions independent of the plugin Mike Jolley suggested? Or the codes work together with the plugin? Thanks!