Fixed Setup Administrator Password


Well-known member
When setting up the administrator account on the first install, I was able to hit "create administrator" without entering a password. There's no validation to ensure that a password has been entered.

When you try to log in with the username only, as expected, it says you need a password.
Last edited:


Well-known member
Yeah, this is a weird one, you can't proceed without entering username or email, but it doesn't require a password. hehe


XenForo developer
Staff member
Strictly speaking, this is by design, as we allow accounts with empty passwords (whereas an account is invalid without username and email), which can be useful in a test installation, but I'm going to take a quick look to see if it would be relatively easy to force a password to be entered.