Feature: #97389 - Add password policy validation for TCA type=password

See forge#97389


It is now possible to assign a password policy to TCA fields of type password. For configured fields, the password policy validator will be used in DataHandler to ensure that the new password complies with the configured password policy.

Password policy requirements are shown below the password field when the focus is changed to the password field.

The TCA field password for tables be_users and fe_users uses now by default the password policy configured in $GLOBALS['TYPO3_CONF_VARS']['FE']['passwordPolicy'] (fe_users) or $GLOBALS['TYPO3_CONF_VARS']['BE']['passwordPolicy'] (be_users).

Example configuration

'password_field' => [
    'label' => 'Password',
    'config' => [
        'type' => 'password',
        'passwordPolicy' => 'default',

This example will use the password policy default for the field.


For TYPO3 frontend and backend users, the global password policy is used. A new password is not saved if it does not comply with the password policy.