remove password-suggestion if a custom regex is defined; added password-complexity-settings for non-regex users to define what generated passwords should contain, thx to Marco Vogt; fixes #1216

Signed-off-by: Michael Kaufmann (d00p) <d00p@froxlor.org>
2014-11-10 10:07:32 +01:00
parent f5f7bc449a
commit 4cc3c01dcb
19 changed files with 152 additions and 8 deletions
--- a/lib/functions/froxlor/function.generatePassword.php
+++ b/lib/functions/froxlor/function.generatePassword.php
@@ -19,8 +19,28 @@
 * Generates a random password
 */
 function generatePassword() {
-	return substr(
-		base64_encode(sha1(md5(uniqid(microtime(), 1))).md5(uniqid(microtime(), 1)).sha1(md5(uniqid(microtime(), 1)))),
-		rand(5, 50), (Settings::Get('panel.password_min_length') > 0 ? Settings::Get('panel.password_min_length') : 10)
-	);
+	$alpha_lower = 'abcdefghijklmnopqrstuvwxyz';
+	$alpha_upper = strtoupper($alpha_lower);
+	$numeric = '0123456789';
+	$special = Settings::Get('panel.password_special_char');
+	$length = Settings::Get('panel.password_min_length') > 3 ? Settings::Get('panel.password_min_length') : 10;
+
+	$pw = str_shuffle($alpha_lower);
+	$n = floor(($length)/4);
+
+	if (Settings::Get('panel.password_alpha_upper')) {
+		$pw .= substr(str_shuffle($alpha_upper), 0, $n);
+	}
+
+	if (Settings::Get('panel.password_numeric')) {
+		$pw .= substr(str_shuffle($numeric), 0, $n);
+	}
+
+	if (Settings::Get('panel.password_special_char_required')) {
+		$pw .= substr(str_shuffle($special), 0, $n);
+	}
+
+	$pw = substr($pw, -$length);
+
+	return str_shuffle($pw);
 }
--- a/lib/functions/validate/function.validatePassword.php
+++ b/lib/functions/validate/function.validatePassword.php
@@ -30,7 +30,7 @@ function validatePassword($password = null) {
 	
 	if (Settings::Get('panel.password_min_length') > 0) {
 		$password = validate(
-			$password, 
+			$password,
 			Settings::Get('panel.password_min_length'),
 			'/^.{'.(int)Settings::Get('panel.password_min_length').',}$/D',
 			'notrequiredpasswordlength'
@@ -39,11 +39,44 @@ function validatePassword($password = null) {
 	
 	if (Settings::Get('panel.password_regex') != '') {
 		$password = validate(
-			$password, 
+			$password,
 			Settings::Get('panel.password_regex'),
 			Settings::Get('panel.password_regex'),
 			'notrequiredpasswordcomplexity'
 		);
+	} else {
+		if (Settings::Get('panel.password_alpha_lower')) {
+			$password = validate(
+				$password,
+				'/.*[a-z]+.*/',
+				'/.*[a-z]+.*/',
+				'notrequiredpasswordcomplexity'
+			);
+		}
+		if (Settings::Get('panel.password_alpha_upper')) {
+			$password = validate(
+				$password,
+				'/.*[A-Z]+.*/',
+				'/.*[A-Z]+.*/',
+				'notrequiredpasswordcomplexity'
+			);
+		}
+		if (Settings::Get('panel.password_numeric')) {
+			$password = validate(
+				$password,
+				'/.*[0-9]+.*/',
+				'/.*[0-9]+.*/',
+				'notrequiredpasswordcomplexity'
+			);
+		}
+		if (Settings::Get('panel.password_special_char_required')) {
+			$password = validate(
+				$password,
+				'/.*[' . preg_quote(Settings::Get('panel.password_special_char')) . ']+.*/',
+				'/.*[' . preg_quote(Settings::Get('panel.password_special_char')) . ']+.*/',
+				'notrequiredpasswordcomplexity'
+			);
+		}
 	}
 	
 	return $password;