Skip to main content

mastodon - Link to source

“Enterprise-level developers” working on mission critical banking software don’t make people have to open up developer tools to see the regular expression error on a registration form challenge 2026.

It’s not rocket science, folks.

*smdh*

#capitalism #mainstream #mediocrity

Screenshot of the registration page for Bank of Ireland. The form has no errors and fails silently. If you open up developer tools, two “Pattern attribute value <long regular expression>: invalid character in character class” errors tell a different story.
#capitalism #mediocrity #mainstream
in reply to Aral Balkan

Aral Balkan
mastodon - Link to source
Aral Balkan

If you’re trying to register for a Bank of Ireland account and the form fails silently, don’t worry, it’s simple to find out what happened and fix it.

1. Open up developer tools on your browser
2. Copy the failed regular expression from the console
3. Put it, and your generated password into Regexr (regexr.com)

And voila, as you can see the problem with mine* was that it hit the 16 character limit which was, to keep things exciting, not mentioned on the page.

Simples.

What muppets!

* Don’t worry, it’s a different one now.

#capitalism #mainstream #mediocrity #BankOfIreland #banks #design #web #dev #ireland

Screenshot of me debugging why the password my password manager generated was being silently rejected by Bank of Ireland’s registration form.

RegExr: Learn, Build, & Test RegEx

RegExr is an online tool to learn, build, & test Regular Expressions (RegEx / RegExp).
RegExr
#capitalism #dev #design #web #ireland #banks #mediocrity #mainstream #bankofireland
This entry was edited (1 day ago)
in reply to Aral Balkan

Aral Balkan
mastodon - Link to source
Aral Balkan

Me: I need to reluctantly do some adulting.

Also me: Ends up debugging some bank’s stupid web site.

🤷‍♂️

in reply to Aral Balkan

tom jennings
glitchsoc - Link to source
tom jennings

Mine once had a 21 character limit on the web, but a 20 character limit mobile web, and the error was "wrong password".

Does anyone test anything?

in reply to Aral Balkan

GezThePez
mastodon - Link to source
GezThePez
technology departments across banks struggle to define the simplest of business rules. Who knows what’s happening with complex processes
in reply to Aral Balkan

Willow
sharkey - Link to source
Willow
WHY in the fuck's name would you want a 16 character limit on a bank password
Why do banks consistently have worse security than your average website
in reply to Aral Balkan

iwein
mastodon - Link to source
iwein
having a nice and concise password is essential for banking I guess 🤪
in reply to Aral Balkan

Kim Spence-Jones 🇬🇧😷
mastodon - Link to source
Kim Spence-Jones 🇬🇧😷

Dumb rules for passwords really wind me up. Why should I *have* to include a number, for example? That just reduces the search space for any attacker. And then there are sites that prevent the use of certain special characters, again for no good reason (apart from the bad design of their back end, I suppose).

Secret validation fails just compound the problem.

in reply to Aral Balkan

Yrjänä Rankka 🌻
mastodon - Link to source
Yrjänä Rankka 🌻
but… but… enterprise-quality software built using methods and processes following best industrial practise!
in reply to Aral Balkan

JKB
gotosocial - Link to source
JKB
Also: how do you expect people to not get phished when your production stuff uses domains that look like that?
in reply to JKB

Aral Balkan
mastodon - Link to source
Aral Balkan
@jkb Yeah, right. Guess what, they outsource to Microsoft. Zero surprises there.
@JKB
in reply to Aral Balkan

CynAq🤘
mastodon - Link to source
CynAq🤘
holy f that url! I’d be having an emotional breakdown between having to open a bank account and being sure someone was stealing my identity.