Changing password validation rules
To change the password validation rules implement the com.broadleafcommerce.auth.user.validation.PasswordRequestValidator validator or override the default implementation com.broadleafcommerce.auth.user.validation.DefaultPasswordRequestValidator.
The default implementation uses the properties from com.broadleafcommerce.auth.user.validation.autoconfigure.PasswordValidatorProperties. For example, to change the default minimum password length use broadleaf.auth.password.validation.shortPattern, defaults to ^.{8,}$ (must be at least 8 characters).