DataAssist & Password Encryption
I'm setting up a Content Management System for a website. The website is fairly straight forward but we have multiple administrators. I'm setting it up so my login to the CMS allows me to manage those administrators. I'd also like to take the opportunity to utilise password encryption. I'm quite advanced with this now in that I've been able to secure the CMS, manage administrators, encrypting their passwords in the database.
However I'm having trouble when it comes time to updating an administrator. The default update page that I created using DataAssist's Wizard decks out the Password and Password Confirm field with an encrypted password. Because that password is already encrypted it gets encrypted again and subsequently the password would be changed if it was processed. The password field is limited to 6 to 12 characters with a minimum of 2 letters and 2 numbers to encourage better passwords so by the time it encrypts an already encrypted password it blows out that limit and won't process the update anyway.
I get what I need to do. I need to not pre-fill the password and confirm fields with the encrypted password value, but if it does get filled to update the password using the usual validation settings. What's the easiest way to do this?
Is there anything I could have done in the Wizard to prevent doing anything else after the files were made? As far as I can see if you make a field a password, encrypt it, select the confirm field option and set validations for it it automatically determines that it is required. This is fine for an Insert page, but not for an Update page.