You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
108 lines
2.8 KiB
108 lines
2.8 KiB
<?php |
|
declare(strict_types=1); |
|
/** |
|
* @copyright Copyright (c) 2018, Roeland Jago Douma <roeland@famdouma.nl> |
|
* |
|
* @author Roeland Jago Douma <roeland@famdouma.nl> |
|
* |
|
* @license GNU AGPL version 3 or any later version |
|
* |
|
* This program is free software: you can redistribute it and/or modify |
|
* it under the terms of the GNU Affero General Public License as |
|
* published by the Free Software Foundation, either version 3 of the |
|
* License, or (at your option) any later version. |
|
* |
|
* This program is distributed in the hope that it will be useful, |
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of |
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
|
* GNU Affero General Public License for more details. |
|
* |
|
* You should have received a copy of the GNU Affero General Public License |
|
* along with this program. If not, see <http://www.gnu.org/licenses/>. |
|
* |
|
*/ |
|
|
|
namespace OCA\Password_Policy; |
|
|
|
use OC\HintException; |
|
use OCP\Security\ISecureRandom; |
|
|
|
class Generator { |
|
|
|
/** @var PasswordPolicyConfig */ |
|
private $config; |
|
|
|
/** @var PasswordValidator */ |
|
private $validator; |
|
|
|
/** @var ISecureRandom */ |
|
private $random; |
|
|
|
public function __construct(PasswordPolicyConfig $config, |
|
PasswordValidator $validator, |
|
ISecureRandom $random) { |
|
$this->config = $config; |
|
$this->validator = $validator; |
|
$this->random = $random; |
|
} |
|
|
|
/** |
|
* @return string |
|
* @throws HintException |
|
*/ |
|
public function generate(): string { |
|
$lenght = $this->config->getMinLength(); |
|
|
|
$password = ''; |
|
$chars = ''; |
|
|
|
$found = false; |
|
for ($i = 0; $i < 10; $i++) { |
|
if ($this->config->getEnforceUpperLowerCase()) { |
|
$password .= $this->random->generate(1, ISecureRandom::CHAR_UPPER); |
|
$password .= $this->random->generate(1, ISecureRandom::CHAR_LOWER); |
|
$lenght -= 2; |
|
$chars .= ISecureRandom::CHAR_UPPER . ISecureRandom::CHAR_LOWER; |
|
} |
|
|
|
if ($this->config->getEnforceNumericCharacters()) { |
|
$password .= $this->random->generate(1, ISecureRandom::CHAR_DIGITS); |
|
$lenght -= 1; |
|
$chars .= ISecureRandom::CHAR_DIGITS; |
|
} |
|
|
|
if ($this->config->getEnforceSpecialCharacters()) { |
|
$password .= $this->random->generate(1, ISecureRandom::CHAR_SYMBOLS); |
|
$lenght -= 1; |
|
$chars .= ISecureRandom::CHAR_SYMBOLS; |
|
} |
|
|
|
if ($chars === '') { |
|
$chars = ISecureRandom::CHAR_HUMAN_READABLE; |
|
} |
|
|
|
$password .= $chars = $this->random->generate($lenght, $chars); |
|
|
|
try { |
|
$this->validator->validate($password); |
|
$found = true; |
|
break; |
|
} catch (HintException $e) { |
|
/* |
|
* Invalid so lets go for another round |
|
* Reset the length so we don't run below zero |
|
*/ |
|
$lenght = $this->config->getMinLength(); |
|
} |
|
} |
|
|
|
if ($found === false) { |
|
throw new HintException('Could not generate a valid password'); |
|
} |
|
|
|
// Shuffle string so the order is random |
|
$password = str_shuffle($password); |
|
|
|
return $password; |
|
} |
|
}
|
|
|