I have the following regex:
(?=^.{7,14}$)(?=.*\d)(?=.*[a-z])(?=.*[A-Z])(?=.*[!@#$%^&*()_+}{":;'?\/>.<,])(?!.*\s).*$
It's meant to match and enforce the following password policy:
- One Capital
- One lower case
- One digit
- one special char i.e. @
However, it allows a password without any special chars.