fix: admin password hint text

[G3root]

What does this PR do?

Fixes #6842

to reproduce locally:

• create a admin user with a password lesser than the required length of 15
• try changing the password

issue:

Screencast.2023-02-07.08.21.45.webm

after:

Screencast.2023-02-07.07.25.36.webm

changes:

• hide the banner after password is changed
• fix the text in password hint

Environment: Staging(main branch) / Production

Type of change

• Bug fix (non-breaking change which fixes an issue)

[linear]

CAL-981 Admin password change has incoherent/obsolete information

image.png

There are two issues with this:

1. The alert says minimum of 15 characters are required, but the description in the body says 7 characters, thus the information being invalid
2. Once the password is changed, the alert persists despite now the user having minimum 15 character password

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated
cal	✅ Ready (Inspect)	Visit Preview	💬 Add your feedback	Feb 9, 2023 at 1:55AM (UTC)

1 Ignored Deployment

Name	Status	Preview	Comments	Updated
ui	⬜️ Ignored (Inspect)			Feb 9, 2023 at 1:55AM (UTC)

[Udit-takkar]

the 15 character minimum limit is only for the admin role. for other 7 characters are still allowed. maybe just check if the user role is admin then show the 15 character password hint else 7 chars.

[G3root]

i'll update those changes 🙌🏼 . do we still have the number, uppercase and uppercase requirement for a normal user ?

[G3root]

i'm planning on to convert the hardcoded number into a template variable.

[Udit-takkar]

check lib/auth

export function validPassword(password: string) {
  if (password.length < 7) return false;

  if (!/[A-Z]/.test(password) || !/[a-z]/.test(password)) return false;

  if (!/\d+/.test(password)) return false;

  return true;
}

[Udit-takkar]

can we improve the UX here ? if new password does not meet the requirements then message/input box should be in red.

[leog]

can we improve the UX here ? if new password does not meet the requirements then message/input box should be in red.

I agree with @Udit-takkar, perhaps you can use the same hints shown when signing-up in website here: https://cal.com/signup. It is based on zod and uses our custom inputs to digest them. Happy to help there, I implemented it.

[G3root]

pushed some changes:

• used alert component for errors returned by the server.
• added client side validation for new password and error messages
• fix some inconsitencies in i18n

Screencast.2023-02-07.22.52.25.webm

cc: @Udit-takkar @leog

[Udit-takkar]

some issue with password validation(this should be a valid password). This is also the reason why e2e tests are failing. everything else is fine 👍

[zomars]

Nice work @G3root 🙏🏽

[G3root]

@Udit-takkar pushed a fix for the regex

Screencast.2023-02-09.07.20.41.webm