Is there a Java equivalent/implementation of cracklib?

I need to implement开发者_StackOverflow minimum password complexity checking in a Java web application (Spring/Hibernate). It seems that on Linux I could use pam_cracklib, but is there a pure Java alternative?

There is PasswordCheck, a pure java password strengh checker. It's configurable so you can define what a strong password should look like, but documentation seems a bit lacking.

Found via a a Baeldung post, I've been liking Passay so far.

I haven't used cracklib directly, but this also seems to provide a configurable and extendable way to define the password validation rules that matter to you, and get clear error messages to present back to the user when those rules are violated.

I also spotted the solinger version. It's unclear if it's a straight port and I'm interested to know what experience people have had with this one.

http://sourceforge.net/projects/solinger/