diff --git a/docs/docs/concepts/credentials/username-email-password.mdx b/docs/docs/concepts/credentials/username-email-password.mdx index bad32c742937..c6a2ad819a27 100644 --- a/docs/docs/concepts/credentials/username-email-password.mdx +++ b/docs/docs/concepts/credentials/username-email-password.mdx @@ -36,9 +36,8 @@ hashers: :::warning -Due to the way BCrypt is implemented in Golang, passwords will be truncated -after 72 characters before being hashed. This implies that all characters in the -password after position 72 will be ignored! +BCrypt has a maximum length of 72 bytes for passwords. If a longer password +is attempted to be used, an error will be returned to the user. :::