Make it possible for plugins to enforce extra password strength / validity rules during the reset process

[westi]

When you change your password or signup for a new account in a multisite install it is easy for a plugin to enforce extra rules by using one of the available filters for pre-validation of the POST data.

The Password Reset process doesn't have a a suitable hook.

[westi]

Patch to rework the checking code and add a filter for more pluggable errors.

[scribu]

Why do you use do_action_ref_array() ?

[westi]

Replying to scribu:

Why do you use do_action_ref_array() ?

Probably because it is ingrained in my coding and it is how the code I based this on works - filters in the User Profile update validation.

[scribu]

No, I mean why do you use do_action_ref_array() instead of just do_action()? We're not in PHP4 anymore. :)

[westi]

Replying to scribu:

No, I mean why do you use do_action_ref_array() instead of just do_action()? We're not in PHP4 anymore. :)

I know, I was explaining why I made the mistake ;)

[westi]

In [21923]:

Passwords: Make it possible for plugins to enforce extra password strength / validity rules during the reset process.

Adds a filter in the password reset process so that a plugin can enforce particular password rules on users to compliment the existing filtering in the Profile modification process.
Fixes #21778.