Your recent change to include a link in the explaination of the password in my opinion is the wrong thing to do.
I know there are many arguments for it, but let me cover some for the against:
- The inclusion of a link to a 3rd party site (wordpress.org) is seen as unprofessional and confusing. Many sites use WordPress as a CMS / blog without the user ever knowing the site is WordPress based.
- The link will not work in closed environments where wordpress.org is unavailable (intranets, restricted environments).
- If the link is to exist, it should open the content in a new window. i.e.
These might not have been points you have considered, I would not want a developer not to select this plugin because of the inclusion of this link, they would be missing out on some very valuable functionality.
Yes I believe the password strength indicator and this prompt text are the main things to be worked on. Again focusing on user experience, we need to ensure that the user experience is good, i.e. doesn’t drive the user away perhaps to a competitors site.
Time doesn’t allow me to supply develop patches currently – if I had time I would.
As usual thanks for your hard work in creating and maintaining a very good plugin.