File tree Expand file tree Collapse file tree 3 files changed +41
-8
lines changed
Filter options
src/Symfony/Component/Validator Expand file tree Collapse file tree 3 files changed +41
-8
lines changed
Original file line number Diff line number Diff line change @@ -40,12 +40,16 @@ final class PasswordStrength extends Constraint
4040
4141 public int $ minScore
4242
43- public function __construct (int $ minScore self :: STRENGTH_REASONABLE , mixed $ options null , array $ groupsnull , mixed $ payloadnull )
43+ public function __construct (array $ options null , int $ minScore null , array $ groupsnull , mixed $ payloadnull )
4444 {
45- if (isset ($ minScore\is_int ($ minScore$ minScore1 || $ minScore4 )) {
46- throw new ConstraintDefinitionException (sprintf ('The parameter "minScore" of the "%s" constraint must be an integer between 1 and 4. ' , static ::class));
47- }
48- $ options'minScore ' ] = $ minScore
45+ $ options'minScore ' ] ??= self ::STRENGTH_REASONABLE ;
46+
4947 parent ::__construct ($ options$ groups$ payload
48+
49+ $ this minScore = $ minScore$ this minScore ;
50+
51+ if ($ this minScore < 1 || 4 < $ this minScore ) {
52+ throw new ConstraintDefinitionException (sprintf ('The parameter "minScore" of the "%s" constraint must be an integer between 1 and 4. ' , self ::class));
53+ }
5054 }
5155}
Original file line number Diff line number Diff line change @@ -58,7 +58,26 @@ public function validate(#[\SensitiveParameter] mixed $value, Constraint $constr
5858 */
5959 private static function estimateStrength (#[\SensitiveParameter] string $ passwordint
6060 {
61- $ entropylog (\strlen (count_chars ($ password3 )) ** \strlen ($ password2 );
61+ if (!$ length\strlen ($ password
62+ return PasswordStrength::STRENGTH_VERY_WEAK ;
63+ }
64+ $ passwordcount_chars ($ password1 );
65+ $ chars\count ($ password
66+
67+ $ control$ digit$ upper$ lower$ symbol$ other0 ;
68+ foreach ($ passwordas $ chr$ count
69+ match (true ) {
70+ $ chr32 || 127 === $ chr$ control33 ,
71+ 48 <= $ chr$ chr57 => $ digit10 ,
72+ 65 <= $ chr$ chr90 => $ upper26 ,
73+ 97 <= $ chr$ chr122 => $ lower26 ,
74+ 128 <= $ chr$ other128 ,
75+ default => $ symbol33 ,
76+ };
77+ }
78+
79+ $ pool$ lower$ upper$ digit$ symbol$ control$ other
80+ $ entropy$ charslog ($ pool2 ) + ($ length$ charslog ($ chars2 );
6281
6382 return match (true ) {
6483 $ entropy120 => PasswordStrength::STRENGTH_VERY_STRONG ,
Original file line number Diff line number Diff line change @@ -30,12 +30,22 @@ public function testValidValues(string $value, int $expectedStrength)
3030 $ this validator ->validate ($ valuenew PasswordStrength (minScore: $ expectedStrength
3131
3232 $ this assertNoViolation ();
33+
34+ if (PasswordStrength::STRENGTH_VERY_STRONG === $ expectedStrength
35+ return ;
36+ }
37+
38+ $ this validator ->validate ($ valuenew PasswordStrength (minScore: $ expectedStrength1 ));
39+
40+ $ this buildViolation ('The password strength is too low. Please use a stronger password. ' )
41+ ->setCode (PasswordStrength::PASSWORD_STRENGTH_ERROR )
42+ ->assertRaised ();
3343 }
3444
3545 public static function getValidValues (): iterable
3646 {
37- yield ['How-is this 🤔?! ' , PasswordStrength::STRENGTH_WEAK ];
38- yield ['Reasonable-pwd-❤️ ' , PasswordStrength::STRENGTH_REASONABLE ];
47+ yield ['How-is- this ' , PasswordStrength::STRENGTH_WEAK ];
48+ yield ['Reasonable-pwd ' , PasswordStrength::STRENGTH_REASONABLE ];
3949 yield ['This 1s a very g00d Pa55word! ;-) ' , PasswordStrength::STRENGTH_VERY_STRONG ];
4050 yield ['pudding-smack-👌🏼-fox-😎 ' , PasswordStrength::STRENGTH_VERY_STRONG ];
4151 }
You can’t perform that action at this time.
0 commit comments