Hi Joe, I'm looking at implementing the password strength regular expression--I found a great tutorial that should help anyone trying to use this great security addition.
However, one important piece is missing--a place to specify a custom "failure" message that will show users in plain terms why their password was rejected (e.g. "Passwords must be 8 characters long, with one upper case character and one special character or number"). Without this, they will just be left to guess why their chosen password isn't strong enough.
Thanks as always!