Currently, Evergreen installs with a default regex for password strength, defined in Account.pm, which is that the password must be at least 7 characters in length, contain at least one letter, and contain at least one number, which will continue to be indicated on the update_password_msg.tt2 page by default. A user-friendly explanation of this is displayed on the Update Password page in the My Account section of the OPAC.
Unfortunately, it is currently possible to modify the global.password_regex and override the default regex via the Library Settings Editor, but the user might not be aware that they need to update the helper on the Update Password page.
This branch addresses this by providing the user with a hint in the description for the org unit setting "global.password_regex" to modify update_password_msg.tt2 with a user friendly description of the locally customized requirements.
If global.password_regex is not configured, the OPAC will still use the default regex defined in Account.pm, and the helper verbiage remains the same as always.
http://git.evergreen-ils.org/?p=working/Evergreen.git;a=shortlog;h=refs/heads/user/mrpeters/lp1013786_configure_pw_strength_reminders
Thanks for your consideration!
I have tested this code and consent to signing off on it with my email address, <email address hidden> and name Christine Burns.