michael/pyfedi
1
0
Fork 0
mirror of https://codeberg.org/rimu/pyfedi synced 2025-01-24 03:43:42 -08:00
Code Issues Projects Releases Packages Wiki Activity Actions

password strength

Browse source
This commit is contained in:
rimu 2024-01-21 10:40:43 +13:00
parent 7f14dc4bbb
commit 16eb228052
1 changed files with 22 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

27
app/auth/forms.py
View file

@ -16,7 +16,7 @@ class RegistrationForm(FlaskForm):
user_name = StringField(_l('User name'), validators=[DataRequired()]) user_name = StringField(_l('User name'), validators=[DataRequired()])
email = HiddenField(_l('Email')) email = HiddenField(_l('Email'))
real_email = StringField(_l('Email'), validators=[DataRequired(), Email(), Length(min=5, max=255)]) real_email = StringField(_l('Email'), validators=[DataRequired(), Email(), Length(min=5, max=255)])
password = PasswordField(_l('Password'), validators=[DataRequired(), Length(min=5, max=50)]) password = PasswordField(_l('Password'), validators=[DataRequired(), Length(min=8, max=50)])
password2 = PasswordField( password2 = PasswordField(
_l('Repeat password'), validators=[DataRequired(), _l('Repeat password'), validators=[DataRequired(),
EqualTo('password')]) EqualTo('password')])
@ -27,18 +27,35 @@ class RegistrationForm(FlaskForm):
def validate_real_email(self, email): def validate_real_email(self, email):
user = User.query.filter_by(email=email.data).first() user = User.query.filter_by(email=email.data).first()
if user is not None: if user is not None:
raise ValidationError(_('An account with this email address already exists.')) raise ValidationError(_l('An account with this email address already exists.'))
def validate_user_name(self, user_name): def validate_user_name(self, user_name):
user = User.query.filter_by(user_name=user_name.data, ap_id=None).first() user = User.query.filter_by(user_name=user_name.data, ap_id=None).first()
if user is not None: if user is not None:
if user.deleted: if user.deleted:
raise ValidationError(_('This username was used in the past and cannot be reused.')) raise ValidationError(_l('This username was used in the past and cannot be reused.'))
else: else:
raise ValidationError(_('An account with this user name already exists.')) raise ValidationError(_l('An account with this user name already exists.'))
community = Community.query.filter_by(name=user_name.data).first() community = Community.query.filter_by(name=user_name.data).first()
if community is not None: if community is not None:
raise ValidationError(_('A community with this name exists so it cannot be used for a user.')) raise ValidationError(_l('A community with this name exists so it cannot be used for a user.'))
def validate_password(self, password):
if not password.data:
return
first_char = password.data[0] # the first character in the string
all_the_same = True
# Compare all characters to the first character
for char in password.data:
if char != first_char:
all_the_same = False
if all_the_same:
raise ValidationError(_l('This password is not secure.'))
if password.data == 'password' or password.data == '12345678' or password.data == '1234567890':
raise ValidationError(_l('This password is too common.'))
class ResetPasswordRequestForm(FlaskForm): class ResetPasswordRequestForm(FlaskForm):