[GH-ISSUE #1853] The initial password UI check doesn't work correctly #8792

New Issue

Closed

opened 2026-04-30 04:50:12 -05:00 by GiteaMirror · 2 comments

GiteaMirror commented 2026-04-30 04:50:12 -05:00

Owner

Copy Link

Originally created by @ghost on GitHub (Nov 12, 2025).
Original GitHub issue: https://github.com/fosrl/pangolin/issues/1853

Originally assigned to: @miloschwartz on GitHub.

Describe the Bug

When new admin account should be created, there is password check for all the necessities.

I'm using KeePassXC and have this allowed:

Yet I'm getting this check result:

Did check the string and it does have all characters necessary as well.

Yet the special char must be switched off - and after this I'm adding manually one special and one number to pretty long password.

This happened to me for each installation so far.

Environment

• Pangolin Version: 1.12.2

To Reproduce

Just standard installation.

Expected Behavior

Should let me pass.

Originally created by @ghost on GitHub (Nov 12, 2025). Original GitHub issue: https://github.com/fosrl/pangolin/issues/1853 Originally assigned to: @miloschwartz on GitHub. ### Describe the Bug When new admin account should be created, there is password check for all the necessities. I'm using KeePassXC and have this allowed: <img width="365" height="53" alt="Image" src="https://github.com/user-attachments/assets/bf081afd-fd63-4592-9967-e9a79f09db42" /> Yet I'm getting this check result: <img width="398" height="174" alt="Image" src="https://github.com/user-attachments/assets/81a14bee-62eb-43fb-8893-4da9af5b0a27" /> Did check the string and it does have all characters necessary as well. Yet the special char must be switched off - and after this I'm adding manually one special and one number to pretty long password. This happened to me for each installation so far. ### Environment - Pangolin Version: 1.12.2 ### To Reproduce Just standard installation. ### Expected Behavior Should let me pass.

GiteaMirror added the enhancement label 2026-04-30 04:50:12 -05:00

GiteaMirror closed this issue 2026-04-30 04:50:13 -05:00

GiteaMirror commented 2026-04-30 04:50:15 -05:00

Author

Owner

Copy Link

@Pallavikumarimdb commented on GitHub (Nov 13, 2025):

The issue happens because KeePassXC includes some extended ASCII or Unicode symbols (like ¢, §, or ½) that pangolin password validator doesn’t currently recognize as valid special characters. The regex only allows a limited ASCII set: [~!`@#$%^&*()_-+={}[]|\:;"'<>,./?]

@oschwartz10612 , The current password validator rejects strong passwords containing extended ASCII or Unicode symbols (like § or µ). Should we update the regex to a Unicode-aware version to support all valid special characters while keeping the same strength rules?

<!-- gh-comment-id:3528948438 --> @Pallavikumarimdb commented on GitHub (Nov 13, 2025): The issue happens because KeePassXC includes some extended ASCII or Unicode symbols (like `¢`, `§`, or `½`) that pangolin password validator doesn’t currently recognize as valid special characters. The regex only allows a limited ASCII set: [~!`@#$%^&*()_\-+={}[\]|\\:;"'<>,.\/?] @oschwartz10612 , The current password validator rejects strong passwords containing extended ASCII or Unicode symbols (like § or µ). Should we update the regex to a Unicode-aware version to support all valid special characters while keeping the same strength rules?

GiteaMirror commented 2026-04-30 04:50:17 -05:00

Author

Owner

Copy Link

@miloschwartz commented on GitHub (Dec 3, 2025):

Closing as not planned because we only plan to support standard ASCII symbols and not all unicode symbols

<!-- gh-comment-id:3608882650 --> @miloschwartz commented on GitHub (Dec 3, 2025): Closing as not planned because we only plan to support standard ASCII symbols and not all unicode symbols

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

dependabot/npm_and_yarn/axios-1.15.2

s3

dependabot/npm_and_yarn/next-intl-4.9.2

dev

dependabot/npm_and_yarn/prod-patch-updates-64dd675a88

dependabot/npm_and_yarn/dev-minor-updates-10ef4f0f15

dependabot/docker/node-26-alpine

dependabot/docker/docker/library/node-26-slim

dependabot/npm_and_yarn/multi-7bdfbe8666

crowdin_dev

resource-policies

redis

newt-install-commands

dependabot/npm_and_yarn/multi-d2fd79378c

dependabot/npm_and_yarn/uuid-14.0.0

dependabot/npm_and_yarn/postcss-8.5.10

miloschwartz-patch-2

dependabot/github_actions/actions/setup-node-6.4.0

dependabot/npm_and_yarn/next-16.2.1

dependabot/npm_and_yarn/recharts-3.8.1

cross-org-idp

update-readme

miloschwartz-patch-1

breakout-sites-tables

revert-2766-feature/systemd-install-instructions

ssh

delete-account

msg-delivery

org-only-idp

cicd

patch

site-targets-auto-login

1.18.3-s.2

1.18.3

1.18.3-s.1

1.18.3-s.0

1.18.2-s.5

1.18.2-s.4

1.18.2-s.3

1.18.2-s.2

1.18.2-s.1

1.18.2

1.18.2-s.0

1.18.1-s.7

1.18.1-s.6

1.18.1-s.5

1.18.1-s.4

1.18.1-s.3

1.18.1-s.2

1.18.1

1.18.1-s.1

1.18.1-s.0

1.18.0-s.2

1.18.0-s.1

1.18.0

1.18.0-s.0

1.17.1-s.7

1.17.1-s.6

1.18.0-rc.0

1.17.1-s.5

1.17.1-s.4

1.17.1-s.3

1.17.1

1.17.1-s.2

1.17.1-s.1

1.17.1-s.0

1.17.0-s.4

1.17.0

1.17.0-s.3

1.17.0-s.2

1.17.0-s.1

1.17.0-s.0

1.17.0-rc.0

1.16.2-s.22

1.16.2-s.21

1.16.2-s.20

1.16.2-s.19

1.16.2-s.18

1.16.2-s.17

1.16.2-s.16

1.16.2-s.15

1.16.2-s.14

1.16.2-s.13

1.16.2-s.12

1.16.2-s.11

1.16.2-s.10

1.16.2-s.9

1.16.2-s.8

1.16.2-s.7

1.16.2-s.6

1.16.2-s.5

1.16.2-s.4

1.16.2-s.3

1.16.2-s.2

1.16.2-s.1

1.16.2

1.16.2-s.0

1.16.1-s.1

1.16.1

1.16.1-s.0

1.16.0

1.16.0-s.1

1.16.0-s.0

1.16.0-rc.0

1.15.4-s.10

1.15.4-s.9

1.15.4-s.8

1.15.4-s.7

1.15.4-s.6

1.15.4-s.5

1.15.4-s.4

1.15.4-s.3

1.15.4-s.2

1.15.4-s.1

1.15.4

1.15.4-s.0

1.15.3

1.15.3-s.1

1.15.3-s.0

1.15.2

1.15.1-s.1

1.15.1-s.0

1.15.1

1.15.0-s.5

1.15.0

1.15.0-s.4

1.15.0-s.3

1.15.0-s.2

1.15.0-s.1

1.15.0-s.0

1.15.0-rc.0

1.14.1-s.3

1.14.1-s.2

1.14.1-s.1

1.14.1-s.0

1.14.1

1.14.0-s.2

1.14.0

1.14.0-rc.0

1.13.1

1.13.1-s.0

1.13.0

1.13.0.s.0

1.13.0-rc.0

1.12.2-s.5

1.12.3

1.12.2-s.4

1.12.2-s.3

1.12.2-s.2

1.12.2-s.1

1.12.2

1.12.2-s.0

1.12.1

1.12.0

1.12.0-s.0

1.12.0-rc.0

1.11.1

1.11.1-s.0

1.11.0-s.5

1.11.0

1.11.0-s.4

1.11.0-s.3

1.11.0-s.2

1.11.0-s.1

1.11.0-s.0

1.10.3

1.10.2

1.10.1

1.10.0

1.9.4

1.9.3

1.9.2

1.9.1

1.9.0

1.8.0

1.7.3

1.7.2

1.7.1

1.7.0

1.6.2

1.6.1

1.6.0

1.5.1

1.5.0

1.4.0

1.3.2

1.3.1

1.3.0

1.2.0

1.1.0

1.0.1

1.0.0

1.0.0-beta.15

1.0.0-beta.14

1.0.0-beta.13

1.0.0-beta.12

1.0.0-beta.11

1.0.0-beta.10

1.0.0-beta.9

1.0.0-beta.8

1.0.0-beta.7

1.0.0-beta.6

1.0.0-beta.5

1.0.0-beta.4

1.0.0-beta.3

1.0.0-beta.2

1.0.0-beta.1

Labels

Clear labels

api

authentication

bug

config

dependencies

docker

documentation

enhancement

good first issue

help wanted

Improvement

Look Into

needs investigating

networking

new feature

non-critical bug

potential bug

pull-request

Mirrored from GitHub Pull Request

question

reverse proxy

Security

stale

ui

wontfix

No Label enhancement

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

GiteaMirror ninjasurge

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/pangolin#8792