Acasă Explorează Ajutor
Înregistrare Autentificare
Code_Uwe
/
rhl-lieferscheine
1
0
Bifurcare 0
Fisiere Probleme 0 Trageți solicitările 0 Wiki
Ramură: main
Ramuri Etichete
rhl-lieferschei...
/
lib
/
auth
/
passwordPolicy.js

passwordPolicy.js 1.7 KB
Permalink Istoric Crud

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566 
  1. export const PASSWORD_POLICY = Object.freeze({
    2. 

  2. 	minLength: 8,
    3. 

  3. 	requireLetter: true,
    4. 

  4. 	requireNumber: true,
    5. 

  5. 	disallowSameAsCurrent: true,
    6. 

  6. });
    7. 

  7. 

  8. export const PASSWORD_POLICY_REASON = Object.freeze({
    9. 

  9. 	MIN_LENGTH: "MIN_LENGTH",
    10. 

  10. 	MISSING_LETTER: "MISSING_LETTER",
    11. 

  11. 	MISSING_NUMBER: "MISSING_NUMBER",
    12. 

  12. 	SAME_AS_CURRENT: "SAME_AS_CURRENT",
    13. 

  13. });
    14. 

  14. 

  15. function hasLetter(value) {
    16. 

  16. 	return /[A-Za-z]/.test(String(value || ""));
    17. 

  17. }
    18. 

  18. 

  19. function hasNumber(value) {
    20. 

  20. 	return /\d/.test(String(value || ""));
    21. 

  21. }
    22. 

  22. 

  23. /**
    24. 

  24.  * Validate a new password against the project's explicit policy.
    25. 

  25.  *
    26. 

  26.  * @param {{ newPassword?: unknown, currentPassword?: unknown }} input
    27. 

  27.  * @returns {{
    28. 

  28.  *   ok: boolean,
    29. 

  29.  *   reasons: string[],
    30. 

  30.  *   policy: { minLength: number, requireLetter: boolean, requireNumber: boolean, disallowSameAsCurrent: boolean }
    31. 

  31.  * }}
    32. 

  32.  */
    33. 

  33. export function validateNewPassword({ newPassword, currentPassword } = {}) {
    34. 

  34. 	const pw = typeof newPassword === "string" ? newPassword : "";
    35. 

  35. 	const current = typeof currentPassword === "string" ? currentPassword : null;
    36. 

  36. 

  37. 	const reasons = [];
    38. 

  38. 

  39. 	if (pw.length < PASSWORD_POLICY.minLength) {
    40. 

  40. 		reasons.push(PASSWORD_POLICY_REASON.MIN_LENGTH);
    41. 

  41. 	}
    42. 

  42. 

  43. 	if (PASSWORD_POLICY.requireLetter && !hasLetter(pw)) {
    44. 

  44. 		reasons.push(PASSWORD_POLICY_REASON.MISSING_LETTER);
    45. 

  45. 	}
    46. 

  46. 

  47. 	if (PASSWORD_POLICY.requireNumber && !hasNumber(pw)) {
    48. 

  48. 		reasons.push(PASSWORD_POLICY_REASON.MISSING_NUMBER);
    49. 

  49. 	}
    50. 

  50. 

  51. 	if (
    52. 

  52. 		PASSWORD_POLICY.disallowSameAsCurrent &&
    53. 

  53. 		current !== null &&
    54. 

  54. 		pw === current
    55. 

  55. 	) {
    56. 

  56. 		reasons.push(PASSWORD_POLICY_REASON.SAME_AS_CURRENT);
    57. 

  57. 	}
    58. 

  58. 

  59. 	const uniqueReasons = Array.from(new Set(reasons));
    60. 

  60. 

  61. 	return {
    62. 

  62. 		ok: uniqueReasons.length === 0,
    63. 

  63. 		reasons: uniqueReasons,
    64. 

  64. 		policy: { ...PASSWORD_POLICY },
    65. 

  65. 	};
    66. 

  66. }
    67.