Use regular expression to define your password policy.
{ "type":"regex", "regex: "<regex_expression>" "description": "password_reset.rules.regex" }