The ridiculous password requirements need to stop. I will never remember my 20+ character password.
Twitch requires the most insane password strength I've ever seen. I've had accounts with banks, insurers, court systems and other state/federal government websites, and yours is the only one I will never remember. You're a streaming site. It's not like you're handing out nukes.
Literally all I (and millions of others) want to do is watch streamers and comment occasionally. If the security is this high for streamers, who have jobs and contracts surrounding twitch, then fine. But I think you'd make a lot of people happy by making two separate account types, with different levels of security measures. One for users who will stream, and ones for viewers that will never stream. The latter will be thankful you've made the change, I'm nowhere near the first person to complain, and it's a very stupid reason to lose viewers/users/potential paying customers etc.
This code is buggy as ****. I don't think the requirements are being implemented as planned at all!
Tried a password of 12 characters with upper, lower, symbols and number and no recognisable words. This was weak. Shortened it with a simple word in the password, deemed strong. Added any of the letters a, e, y or o to that "strong" password and it became weak. None of the additions created a common word to make it weaker. Played around with my original password, switching an infrequently used symbol for a more frequently used one and suddenly it's strong. Don't bother making something super long you won't forget, it will accept 8 characters, just switch out some letters or symbols as it seems confused by what may or may not be strong. And apparently end on a consonant!
How about you stop telling me what passwords I can and can't have and maybe secure your own data properly.
So you say my password is strong. I then go to change my password AFTER A MAJOR SECURITY BREECH, and I get refused saying "my password isn't complex enough." Well, maybe I could make a complex password if you actually showed the stipulations I am required. My only recourse at this point is to make a random password that I will not remember.
33 chars long with upper and lower case.. weak.
And what were you using when you got hacked forcing us to change our passwords in the first place? Whatever it was I assume it was even stronger.. and it didnt prevent you from being hacked, so how about letting us use standard passwords, especially when we have 2FA. ****, not even my banks require this level of passwords. Who do you think you are??
Tried creating account for 3 days, and gave up 2 times purely because I didn't want to go through all that password strength BS to just get an account. Twitch can you explain how tf does adding more characters to the password makes it weaker. At 10 characters, I got "Fair" and adding more made it weaker than "Weak". I guess I will be sticking to any password that atleast fits your "Fair" category, until I need to login somewhere.
The requirement is way more than my 2 banks (8 chars, all lower case).
Twitch might respond, "Well just use a password manager!" to which I would respond:
"Twitch users view streams from tablets, TVs, cell phones which don't have password managers. And if you used a public PC to login to twitch you are screwed."
Fix your "Reset password" page (using Chrome browser). When we type in an 11 symbol password (all lower-case, alpha-numeric, special characters) and it says "Strong" in GREEN TEXT, what does that tell the UX or UI? That indicates to the user experience the password entered is acceptable. Fix your UX. I just spent 30 minutes trying 11, 13, 15, 17 and 20 character (upper, lower case, digits, special symbols) all of which say "Strong" in GREEN TEXT yet it won't accept it when clicking "Set Password".
When making a new account about a year ago I noticed if you simply include a "space symbol" somewhere in the middle you only need a tiny length like 8-12. Yet 25 symbols of gibberish wouldn't be accepted that didn't include a space symbol.
And after writing the above paragraph I tried adding a single space somewhere in the middle of my 20 length password and it finally worked. At least now my pass is SOMEWHAT memorable (riiiight).
The requirement is way more than my bank pls stop
they will accept "lmaolmaolol" as a password but not my 15 character password with uppercase, lowercase and numbers. this site is stupid as ****
I just had to make the most insane password this $*** is ridiculous. I even smashed my hand on the keyboard and randomly put special characters and it still said the password was weak. Like what kind of people are you guys trying to keep out lord almighty. Never gonna remember this password and gonna have to reset it everytime I login to a new f****** device. This is TTV not the **** FBI, yall needa seriously chill with this. My bank is easier to get into than my **** TTV account.
What I just had to do to create a new password is idiotic. This is what happens when you let idiots run things. Someone at the watercooler probably said what can we do to add to security. Instead of using common logic and understand that the vast majority or your audiences have an IQ under 110. You decided to make new passwords harder than they need to be. Just my opinion but the ******** that came up with the idea to make passwords so hard should be fired on the spot, and dragged out of the building by his ear and thrown into the street.
If twitch is so worried about security why don't they just require users sign in through an email sent to their account every time they want to enter their account. Seriously, you as a company trust that it is the EU who will be getting that little link to change their passwords, why don't you think an entry link would be so hard?
KISS Keep it simple stupid.
@Twitch, you a streaming service, not a Swiss bank. Seriously, I used a random 15-18 character password with upper and lowercase, non-consecutive letters, numbers, special characters, and it still didn't take it! Who is your business/systems analyst, they suck ass.
That is the password it doesn't accept. Are you trying to drive viewers away? Tried some strong password generators, upto 256 characters, doesn't take any
*That password is too easy to guess. HAHAHAHAHAHAA
This is bloody stupid and in fact discriminates against people with a learning dissability
This annoyed the hell out of me, I've forgot my password and changed it for 3 times now.
What the hell they're thinking? 2FA is enough. If they're worried so much about Partners being hacked, at least create options for Partners to torture themselves remembering their password, but for casual people, this is too much, they want everyone to have *&%)*@*@$! in their password, so damn stupid.
Most viewers don't even bother to put a profile picture on their account, who gives a sh*t.
You need to pull the password requirements WAY back. I am not going to try to remember or type a ******** 20 character triple encrypted cypher every time I log into this plague on under 15 year old garbage website that literally ONLY streams videos. What in the **** are they going to steal?
Ive tried multiple times making a password for myself that’s not too easy to forget but they are being super controlling and not allowing people to create accounts because of this... the 2 step verification should be enough protection. They need to fix this issue.. passwords are not this insane!
I have never come across a site with such unrealistic, arbitrary, and unreasonable rules for creating a password for your account. this is a tiny thing. but very frustrating.
Yep completely agree with this, trying to change my password but the requirements are ridiculous.
The password requirements are way too much. To your point, I also have a less complex password for my bank account than I do for twitch. Twitch should not decide how complex my password needs to be, that should be me.
Let people make their own decisions. I don't need an overly complex password that I am going to have to look up now everytime I try to log in.
I posted a similar comment in the Password Reset section, and there is an additional one in the Signup section.
Please lower the complexity of the password requirements. Stop trying to micromanage people's ability to log in.
I just wrote a suggestion in the "Password Reset" section myself, not seeing this one here in sign up.
I have easier passwords with much more important things in my life than Twitch. This level of complexity is insane. Let the users make their passwords. Don't try to micromanage a person's ability to log in. Not to mention the fail safes of security codes and email verifications that pop up too.