X-Git-Url: https://code.wpia.club/?a=blobdiff_plain;f=src%2Forg%2Fcacert%2Fgigi%2Futil%2FPasswordStrengthChecker.java;h=a1d2145075ceb94b69fef7442fa3588de4977f84;hb=673e3f834a719f3b1bfceedfd801a21ca7842cf2;hp=07898f263b681715f141d5405ce236bf4d07efd5;hpb=28f6b558d8116f8cbb17390a83235976b50903b0;p=gigi.git diff --git a/src/org/cacert/gigi/util/PasswordStrengthChecker.java b/src/org/cacert/gigi/util/PasswordStrengthChecker.java index 07898f26..a1d21450 100644 --- a/src/org/cacert/gigi/util/PasswordStrengthChecker.java +++ b/src/org/cacert/gigi/util/PasswordStrengthChecker.java @@ -2,80 +2,95 @@ package org.cacert.gigi.util; import java.util.regex.Pattern; -import org.cacert.gigi.User; +import org.cacert.gigi.GigiApiException; +import org.cacert.gigi.dbObjects.Name; public class PasswordStrengthChecker { - static Pattern digits = Pattern.compile("\\d"); - static Pattern lower = Pattern.compile("[a-z]"); - static Pattern upper = Pattern.compile("[A-Z]"); - static Pattern whitespace = Pattern.compile("\\s"); - static Pattern special = Pattern.compile("(?!\\s)\\W"); - private PasswordStrengthChecker() { - } - private static int checkpwlight(String pw) { - int points = 0; - if (pw.length() > 15) { - points++; - } - if (pw.length() > 20) { - points++; - } - if (pw.length() > 25) { - points++; - } - if (pw.length() > 30) { - points++; - } - if (digits.matcher(pw).find()) { - points++; - } - if (lower.matcher(pw).find()) { - points++; - } - if (upper.matcher(pw).find()) { - points++; - } - if (special.matcher(pw).find()) { - points++; - } - if (whitespace.matcher(pw).find()) { - points++; - } - return points; - } - public static int checkpw(String pw, User u) { - if (pw == null) { - return 0; - } - int light = checkpwlight(pw); - if (contained(pw, u.getEmail())) { - light -= 2; - } - if (contained(pw, u.getFname())) { - light -= 2; - } - if (contained(pw, u.getLname())) { - light -= 2; - } - if (contained(pw, u.getMname())) { - light -= 2; - } - if (contained(pw, u.getSuffix())) { - light -= 2; - } - // TODO dictionary check - return light; - } - private static boolean contained(String pw, String check) { - if (check == null || check.equals("")) { - return false; - } - if (pw.contains(check)) { - return true; - } - if (check.contains(pw)) { - return true; - } - return false; - } + + private static Pattern digits = Pattern.compile("\\d"); + + private static Pattern lower = Pattern.compile("[a-z]"); + + private static Pattern upper = Pattern.compile("[A-Z]"); + + private static Pattern whitespace = Pattern.compile("\\s"); + + private static Pattern special = Pattern.compile("(?!\\s)\\W"); + + private PasswordStrengthChecker() {} + + private static int checkpwlight(String pw) { + int points = 0; + if (pw.length() > 15) { + points++; + } + if (pw.length() > 20) { + points++; + } + if (pw.length() > 25) { + points++; + } + if (pw.length() > 30) { + points++; + } + if (digits.matcher(pw).find()) { + points++; + } + if (lower.matcher(pw).find()) { + points++; + } + if (upper.matcher(pw).find()) { + points++; + } + if (special.matcher(pw).find()) { + points++; + } + if (whitespace.matcher(pw).find()) { + points++; + } + return points; + } + + public static int checkpw(String pw, Name name, String email) { + if (pw == null) { + return 0; + } + int light = checkpwlight(pw); + if (contained(pw, email)) { + light -= 2; + } + if (contained(pw, name.getFname())) { + light -= 2; + } + if (contained(pw, name.getLname())) { + light -= 2; + } + if (contained(pw, name.getMname())) { + light -= 2; + } + if (contained(pw, name.getSuffix())) { + light -= 2; + } + // TODO dictionary check + return light; + } + + public static void assertStrongPassword(String pw, Name name, String email) throws GigiApiException { + if (checkpw(pw, name, email) < 3) { + throw new GigiApiException("The Pass Phrase you submitted failed to contain enough" + " differing characters and/or contained words from" + " your name and/or email address."); + } + } + + private static boolean contained(String pw, String check) { + if (check == null || check.equals("")) { + return false; + } + if (pw.contains(check)) { + return true; + } + if (check.contains(pw)) { + return true; + } + return false; + } }