From fc98b94867a5bd73167027e6fdfe79d0b531ad5f Mon Sep 17 00:00:00 2001
From: bagas <bagas@fossy.my.id>
Date: Sun, 22 Feb 2026 13:39:36 +0700
Subject: [PATCH] fix: password must at least 8 char in lenght

---
 internal/handler/auth.go | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/internal/handler/auth.go b/internal/handler/auth.go
index f0b9ef3..b746abd 100644
--- a/internal/handler/auth.go
+++ b/internal/handler/auth.go
@@ -43,6 +43,11 @@ func (h *Handler) RegisterPost(w http.ResponseWriter, r *http.Request) {
 		return
 	}
 
+	if len(register.Password) < 8 {
+		badRequest(w, errors.New("password must be at least 8 characters long"))
+		return
+	}
+
 	hashedPassword, err := bcrypt.GenerateFromPassword(
 		[]byte(register.Password),
 		bcrypt.DefaultCost,