Composer
首页 包列表 提交包 常见问题 关于

定制 double-star-systems/zxcvbn-symfony 二次开发

按需修改功能、优化性能、对接业务系统,提供一站式技术支持

邮箱:yvsm@zunyunkeji.com | QQ:316430983 | 微信:yvsm316

double-star-systems/zxcvbn-symfony

最新稳定版本:1.0.2

Composer 安装命令:

composer require double-star-systems/zxcvbn-symfony

包简介

Password strength validator for Symfony framework. Based on Dropbox's zxcvbn project.

README 文档

README

Password strength constraint for Symfony validator component. Based on the zxcvbn project from Dropbox and @lowe, this is using zxcvbn-php under the hood for password strength estimation.

zxcvbn attempts to give sound password advice through pattern matching and conservative entropy calculations. It finds 10k common passwords, common American names and surnames, common English words, and common patterns like dates, repeats (aaa), sequences (abcd), and QWERTY patterns.

Installation

The library can be installed with Composer by adding it as a dependency to your composer.json file.

$ composer require double-star-systems/zxcvbn-symfony

Usage

The constrint can be attached to an entity field using an annotation.

use DoubleStarSystems\ZxcvbnSymfony\Constraint\PasswordStrength;

class User
{
    /**
     * @PasswordStrength(min_score=3, message="Custom message for weak password error")
     */
    private $password;
}

You may simply use the simpler @PasswordStrength(3) form for a minimum password score of 3, if you don't need a custom message.
More information on validation with Symfony validator can be found in the documentation.

Alternatively, the constraint can be added directly to form fields.

use DoubleStarSystems\ZxcvbnSymfony\Constraint\PasswordStrength;
use Symfony\Component\Form\Extension\Core\Type\PasswordType;

public function buildForm(FormBuilderInterface $builder, array $options)
{
    $builder
        ->add('password', PasswordType::class, [
            'required' => true,
            'constraints' => [
                new PasswordStrength(['min_score' => 3]),
            ],
        ])
    ;
}

Score

The score is an integer from 0-4 (you can mentally represent it as a strength bar)

  • 0 too guessable: risky password. (guesses < 10^3)
  • 1 very guessable: protection from throttled online attacks. (guesses < 10^6)
  • 2 somewhat guessable: protection from unthrottled online attacks. (guesses < 10^8)
  • 3 safely unguessable: moderate protection from offline slow-hash scenario. (guesses < 10^10)
  • 4 very unguessable: strong protection from offline slow-hash scenario. (guesses >= 10^10)

License

This Source Code Form is subject to the terms of the Mozilla Public License, v. 2.0. If a copy of the MPL was not distributed with this file, You can obtain one at http://mozilla.org/MPL/2.0/.
See the complete license.

This project is a fork of Mathieu Darse's Password Strength Validator which is no longer in active development.

统计信息

  • 总下载量: 65
  • 月度下载量: 0
  • 日度下载量: 0
  • 收藏数: 0
  • 点击次数: 0
  • 依赖项目数: 0
  • 推荐数: 0

GitHub 信息

  • Stars: 0
  • Watchers: 0
  • Forks: 3
  • 开发语言: PHP
访问仓库

其他信息

  • 授权协议: MPL-2.0
  • 更新时间: 2022-02-13