From 4fcd28d442c2fec56f544f99cb658f33f847824c Mon Sep 17 00:00:00 2001
From: Karmen <lu.kar@husky.neu.edu>
Date: Sat, 13 Jan 2018 18:48:33 -0500
Subject: [PATCH] Fixed #28881 -- Doc'd that CommonPasswordValidator's password
 list must be lowercase.

---
 docs/topics/auth/passwords.txt | 11 ++++++-----
 1 file changed, 6 insertions(+), 5 deletions(-)

diff --git a/docs/topics/auth/passwords.txt b/docs/topics/auth/passwords.txt
index 6dcbe384a1..6ae7f3d58e 100644
--- a/docs/topics/auth/passwords.txt
+++ b/docs/topics/auth/passwords.txt
@@ -550,13 +550,14 @@ Django includes four validators:
 
 .. class:: CommonPasswordValidator(password_list_path=DEFAULT_PASSWORD_LIST_PATH)
 
-    Validates whether the password is not a common password. By default, this
-    checks against a list of 1000 common password created by
-    `Mark Burnett <https://web.archive.org/web/20150315154609/https://xato.net/passwords/more-top-worst-passwords/>`_.
+    Validates whether the password is not a common password. This converts the
+    password to lowercase (to do a case-insensitive comparison) and checks it
+    against a list of 1000 common password created by `Mark Burnett
+    <https://web.archive.org/web/20150315154609/https://xato.net/passwords/more-top-worst-passwords/>`_.
 
     The ``password_list_path`` can be set to the path of a custom file of
-    common passwords. This file should contain one password per line and
-    may be plain text or gzipped.
+    common passwords. This file should contain one lowercase password per line
+    and may be plain text or gzipped.
 
 .. class:: NumericPasswordValidator()