diff --git a/src/Zizaco/Confide/ConfideUser.php b/src/Zizaco/Confide/ConfideUser.php
index c259244..2ddcef6 100644
--- a/src/Zizaco/Confide/ConfideUser.php
+++ b/src/Zizaco/Confide/ConfideUser.php
@@ -133,7 +133,13 @@ public function resetPassword( $params )
         $password = array_get($params, 'password', '');
         $passwordConfirmation = array_get($params, 'password_confirmation', '');
 
-        if ( $password == $passwordConfirmation )
+        $passwordValidators = array(
+            'password' => static::$rules['password'],
+            'password_confirmation' => static::$rules['password_confirmation'],
+        );
+        $validationResult = static::$app['confide.repository']->validate($passwordValidators);
+
+        if ( $validationResult )
         {
             return static::$app['confide.repository']
                 ->changePassword( $this, static::$app['hash']->make($password) );
diff --git a/tests/ConfideUserTest.php b/tests/ConfideUserTest.php
index 193f89c..8ad34aa 100644
--- a/tests/ConfideUserTest.php
+++ b/tests/ConfideUserTest.php
@@ -105,6 +105,10 @@ public function testShouldChangePassword()
             ->andReturn( true )
             ->once();
 
+        ConfideUser::$app['confide.repository']->shouldReceive('validate')
+            ->andReturn( true )
+            ->once();
+
         $this->populateUser();
 
         $old_password = $this->confide_user->password;
@@ -112,6 +116,54 @@ public function testShouldChangePassword()
         $this->assertTrue( $this->confide_user->resetPassword( $credentials ) );
     }
 
+    public function testShouldNotChangePassword()
+    {
+        // Password should not be changed because it is empty
+        $credentials = array(
+            'email'=>'mail@sample.com',
+            'password'=>'',
+            'password_confirmation'=>''
+        );
+
+        // Should call changePassword of the repository
+        ConfideUser::$app['confide.repository'] = m::mock( 'ConfideRepository' );
+        ConfideUser::$app['confide.repository']->shouldReceive( 'changePassword' )
+            ->never();
+
+        ConfideUser::$app['confide.repository']->shouldReceive('validate')
+            ->andReturn( false )
+            ->times(4);
+
+        $this->populateUser();
+
+        $this->assertFalse( $this->confide_user->resetPassword( $credentials ) );
+
+        // Additional asserts
+        // Password should not be changed because it is too short
+        $credentials = array(
+            'email'=>'mail@sample.com',
+            'password'=>'39a',
+            'password_confirmation'=>'39a'
+        );
+        $this->assertFalse( $this->confide_user->resetPassword( $credentials ) );
+
+        // Password should not be changed because it is too long
+        $credentials = array(
+            'email'=>'mail@sample.com',
+            'password'=>'1a2f34g5uj887n',
+            'password_confirmation'=>'1a2f34g5uj887n'
+        );
+        $this->assertFalse( $this->confide_user->resetPassword( $credentials ) );
+
+        // Password should not be changed because it is not confirmed
+        $credentials = array(
+            'email'=>'mail@sample.com',
+            'password'=>'987987',
+            'password_confirmation'=>'562906'
+        );
+        $this->assertFalse( $this->confide_user->resetPassword( $credentials ) );
+    }
+
     public function testShouldNotSaveDuplicated()
     {
         // Make sure that userExists return 1 to simulates a duplicated user