Jump to content

Have I Been Pwned? Integration

Recommended Posts

Good morning all,


@Ulf has a good point. Having the ability to set an initial password even if it is bad. This would prove useful during imports.

Maybe even add an indicator making this bad password standout. Red text, red background, ticking time bomb..., etc.


Yes, this may leave a little extra opportunity for people to ignore the warning and defeat the purpose of the HIBP API but if we can't do an import of pre-existing passwords we would have to turn HIBP off anyway...


Anyway, this is an excellent feature. Thank you for taking the time to integrate it. We have it on and have no issues or "bad passwords", thus far!



Link to comment
Share on other sites


This topic is now archived and is closed to further replies.

  • Create New...