Using web you can use long passwords, the app however will refuse to log you in with the correct password. The length being the cause as opposed to e.g. characters used is an assumption as I have not properly tested this theory. I simply used randomly generated passwords.
The shortest I tested that failed was 32 characters. A length of 20 logged in successfully.
The shortest I tested that failed was 32 characters. A length of 20 logged in successfully.