0001-report-all-password-requirements-at-once-on-password.patch

Benjamin Dauvergne, 31 mars 2015 16:06

Voir les différences: en ligne côte à côte

Subject: [PATCH 1/2] report all password requirements at once on password
 input (fixes #6805)

 src/authentic2/registration_backend/forms.py |  9 ++++---
 src/authentic2/validators.py                 | 36 +++++++++++++++++++++++-----
 2 files changed, 36 insertions(+), 9 deletions(-)

                 send_mail(subject, message, settings.DEFAULT_FROM_EMAIL,
                           [data['email']], fail_silently=True)
     class RegistrationCompletionForm(forms.UserAttributeFormMixin, Form):
         error_css_class = 'form-field-error'
         required_css_class = 'form-field-required'
         password1 = CharField(widget=PasswordInput, label=_("Password"),
                 validators=[validators.validate_password])
                 validators=[validators.validate_password],
                 help_text=validators.password_help_text())
         password2 = CharField(widget=PasswordInput, label=_("Password (again)"))
         def __init__(self, *args, **kwargs):
             """
             Inject required fields in registration form
             """
             super(RegistrationCompletionForm, self).__init__(*args, **kwargs)
             User = compat.get_user_model()
-...
                     return ret
                 self.user.save = save
             return ret
     class SetPasswordForm(PasswordResetMixin, auth_forms.SetPasswordForm):
         new_password1 = CharField(label=_("New password"),
                                         widget=PasswordInput,
                                         validators=[validators.validate_password])
                                         validators=[validators.validate_password],
                                         help_text=validators.password_help_text())
     class PasswordChangeForm(forms.NextUrlFormMixin, PasswordResetMixin,
             auth_forms.PasswordChangeForm):
         new_password1 = CharField(label=_("New password"),
                                         widget=PasswordInput,
                                         validators=[validators.validate_password])
                                         validators=[validators.validate_password],
                                         help_text=validators.password_help_text())

     from __future__ import unicode_literals
     import string
     import re
     import six
     import smtplib
     from django.utils.translation import ugettext_lazy as _
     from django.utils.translation import ugettext_lazy as _, ugettext
     from django.utils.encoding import force_text
     from django.core.exceptions import ValidationError
     from django.utils.functional import lazy
     import socket
     import dns.resolver
     import dns.exception
     from . import app_settings
     # copied from http://www.djangotips.com/real-email-validation
-...
     email_validator = EmailValidator()
     def validate_password(password):
         password_set = set(password)
         digits = set(string.digits)
         lower = set(string.lowercase)
         upper = set(string.uppercase)
         punc = set(string.punctuation)
         errors = []
         if not password:
             return
         min_len = app_settings.A2_PASSWORD_POLICY_MIN_LENGTH
         if len(password) < min_len:
             raise ValidationError(_('password must contain at least %d '
                 'characters') % min_len)
             errors.append(ValidationError(_('password must contain at least %d '
                 'characters') % min_len))
         class_count = 0
         for cls in (digits, lower, upper, punc):
             if not password_set.isdisjoint(cls):
                 class_count += 1
         min_class_count = app_settings.A2_PASSWORD_POLICY_MIN_CLASSES
         if class_count < min_class_count:
             raise ValidationError(_('password must contain characters '
             errors.append(ValidationError(_('password must contain characters '
                 'from at least %d classes among: lowercase letters, '
                 'uppercase letters, digits, and punctuations') % min_class_count)
                 'uppercase letters, digits, and punctuations') % min_class_count))
         if app_settings.A2_PASSWORD_POLICY_REGEX:
             if not re.match(app_settings.A2_PASSWORD_POLICY_REGEX, password):
                 msg = app_settings.A2_PASSWORD_POLICY_REGEX_ERROR_MSG
                 msg = msg or _('your password dit not match the regular expession %s') % app_settings.A2_PASSWORD_POLICY_REGEX
                 raise ValidationError(msg)
                 errors.append(ValidationError(msg))
         if errors:
             raise ValidationError(errors)
     def __password_help_text_helper():
         if app_settings.A2_PASSWORD_POLICY_MIN_LENGTH:
             yield ugettext('Your password must contain at least %(min_length)d characters.') % {'min_length': app_settings.A2_PASSWORD_POLICY_MIN_LENGTH}
         if app_settings.A2_PASSWORD_POLICY_MIN_CLASSES:
             yield ugettext('Your password must contain characters from at least %(min_classes)d '
                     'classes among: lowercase letters, uppercase letters, digits, '
                     'and punctuations') % {'min_classes': app_settings.A2_PASSWORD_POLICY_MIN_CLASSES}
         if app_settings.A2_PASSWORD_POLICY_REGEX:
             yield ugettext(app_settings.A2_PASSWORD_POLICY_REGEX_ERROR_MSG) or \
                     ugettext('Your password must match the regular expression: '
                             '%(regexp)s, please change this message using the '
                             'A2_PASSWORD_POLICY_REGEX_ERROR_MSG setting.') % \
                             {'regexp': app_settings.A2_PASSWORD_POLICY_REGEX}
     def password_help_text():
         return ' '.join(__password_help_text_helper())
     password_help_text = lazy(password_help_text, six.text_type)
+    -

Projet

Général

Profil

Produits Entr'ouvert » Authentic 2

0001-report-all-password-requirements-at-once-on-password.patch