I just wish these password requirements could be added as an attribute to the password field so password managers could generate a password that matches those rules.
Agreed, but if your password manager can just generate a password that matches the rules, you don’t really have to care about it. Currently you just get your browser/password manager to generate one, get an error, then just manually append whatever missing required character was needed.
But yeah, in most cases the password requirements have not been set by anyone that actually knows anything about password security.
I just wish these password requirements could be added as an attribute to the password field so password managers could generate a password that matches those rules.
There were discussions along those lines
I wish we could get rid of many of those stupid rules.
Agreed, but if your password manager can just generate a password that matches the rules, you don’t really have to care about it. Currently you just get your browser/password manager to generate one, get an error, then just manually append whatever missing required character was needed.
But yeah, in most cases the password requirements have not been set by anyone that actually knows anything about password security.
And an implementation by Apple
https://github.com/apple/password-manager-resources
nowadays we have passkeys anyways which is just making the good old “random max length password with all the character groups” explicit.