Password with more then 16 characters can be set via "Forgot your password"

[temuryqudrat]

Summary

User can set password more then 16 characters if he use "Forgot your password", while it's not possible while creating an account

Environment

• Yandex Browser: Version 25.2.4.955 (64-bit)
• OS Windows 10: Version 22H2 19045.5608
• Codebattle version: 9425fb5

Prerequisites:

• User has account and access to the email that is attached to his account
• "Forgot your password" window is open

Steps to reproduce

• Enter email that is attached to account
• Click "Submit" button
• Open the email that is sent and click the link
• Set new password
• Sign in with new password

Expected result:

User receive error message "Should be from 6 to 16 characters"

Actual resul:

User can set password with more then 16 characters

Screenshots

1. User trying to set password with more then 16 characters while creating an account

3. User trying to set password with more then 16 characters via "Forgot your password" page

[Sofushkins]

• summary: Password validation does not work when setting a new password after a reset

• environment: FireFox Version 141.0.3 (64-bit) macOS Sonoma 14.7.1 Version: 4df7e60

• steps-to-reproduce:

1. Open the website.
2. Click the “Sign in” button.
3. Click the “Forgot your password?” hyperlink.
4. Enter your email address.
5. Follow the link in the email.
6. 1. Enter a 17-character password.
7. 2. Enter a password without special characters.
8. 3. Enter a password in Cyrillic.

• expected-result: In all these cases, the password will not pass validation. An error message will be displayed.

• actual-result:

  Password field validation is missing. “Weak” passwords are set.