Composer
首页 包列表 提交包 常见问题 关于

l0max/password-history-checker 问题修复 & 功能扩展

解决BUG、新增功能、兼容多环境部署,快速响应你的开发需求

邮箱:yvsm@zunyunkeji.com | QQ:316430983 | 微信:yvsm316

l0max/password-history-checker

最新稳定版本:v1.0.1

Composer 安装命令:

composer require l0max/password-history-checker

包简介

Password history checker in laravel

关键字:

# php # laravel # Laravel-Security # laravel-login # laravel-package # laravel-password # laravel-authentication

README 文档

README

Latest Version Total Downloads

A Laravel package that prevents users from resetting their password to one they have used before. This package ensures that password reuse is restricted by checking against a history of previously used passwords.

Features

  • Prevents users from reusing old passwords.
  • Customizable password history depth (how many previous passwords to check).
  • Simple integration with Laravel's built-in authentication system.

Installation

To install the package, run the following command:

composer require l0max/laravel-password-history

Configuration

After installation, you need to publish the configuration file to customize the package behavior:

php artisan vendor:publish --tag=password-history-checker-config

This will publish a configuration file named password-history-checker.php in your config directory. You can modify the number of passwords to keep in history and customize other settings.

The configuration file looks like this:

return [
    'password_history_count' => 5, // The number of previous passwords to check
];

Usage

Middleware Setup

To prevent users from using previous passwords when resetting their passwords, add the middleware provided by this package to your password reset routes.

In your routes/web.php or routes/api.php:

use L0MAX\PasswordHistoryChecker\Middleware\PreventPasswordReuse;

Route::post('/password/reset', 'Auth\ResetPasswordController@reset')
    ->middleware(PreventPasswordReuse::class);

This middleware will ensure that users cannot reuse any of the last password_history_count passwords they have used.

How it Works

The package checks a user's password against their previous passwords before allowing them to reset it. You can configure how many previous passwords are stored in the history by modifying the password_history_count in the configuration file.

The system uses a password_histories table to store the history of passwords for each user.

Running Migrations

The package includes a migration that adds a table to store the password history. Run the migrations after installing the package:

php artisan migrate

This will create a password_histories table to store user IDs and hashed passwords. This table is used to check previous passwords during the password reset process.

Testing

To run the package's tests:

composer test

License

This package is open-sourced software licensed under the MIT license.

统计信息

  • 总下载量: 3
  • 月度下载量: 0
  • 日度下载量: 0
  • 收藏数: 1
  • 点击次数: 1
  • 依赖项目数: 0
  • 推荐数: 0

GitHub 信息

  • Stars: 1
  • Watchers: 1
  • Forks: 0
  • 开发语言: PHP
访问仓库

其他信息

  • 授权协议: MIT
  • 更新时间: 2025-01-03