Starting in BuddyPress 10.0.0, you’ll be able to make sure your members are using a strong password to log in their account. The BuddyPress front-end corresponding action handlers (Registration & General Settings) have been improved to check password strength if the
BP_MEMBERS_REQUIRED_PASSWORD_STRENGTH specific PHP constant is defined.
Use a PHP constant to set the password strength level
In the above screenshot, I’ve added this constant to my
/wp-config.php file and chose to force the members to use a strong password.
/* That's all, stop editing! Happy publishing. */ define( 'BP_MEMBERS_REQUIRED_PASSWORD_STRENGTH', 4 );
What happens in the registration form?
Visitors can only register if they are using password having a strength level >= to the one you defined thanks to the PHP constant.
What happens in the Member’s General Settings screen?
It’s very similar 😁. Your members will only be able to change their old password for a new one having a strength level >= to the one you defined thanks to the PHP constant.
This new behavior is available into the two Template Packs that are included into the BuddyPress plugin: BP Nouveau (on the left in the above gallery) and BP Legacy (on the right in the gallery).
PS: all screenshots were made using the Twenty Twenty-Two theme (WordPress 5.9 next default theme).