When a user has too short a password or otherwise fails to meet account requirements, the reason may not be obvious. We should include the reason for failure in a message (illegal characters, password too short, missing confirmation, ...). This task is limited to app side validation. However, when available (T47843), the API may be used to show failed requirements as reported by the server.
- Go to create an account, and type in a sufficiently unique username (e.g. a bunch of random letters, like "kjasdhkjaherqsdfs")
- For the password, enter "qwerty", and the same for the password confirmation.
- Tap the "Next" button to create the account (you may also need to enter a CAPTCHA).
- The app should show an error to the effect of "Commonly used passwords cannot be used", and should NOT successfully create the account.
This is still broken. I've gotten not just the "Commonly used passwords cannot be used" error, but repeat attempts to create an account gave me CAPTCHA errors until my IP reached it's limit for account creating for the day