axelson

axelson

Scenic Core Team

PasswordValidator - A library to validate common password rules and implement your own

Hi, I’d like to present PasswordValidator, a simple easy-to-use enforcer of common corporate-style password rules such as length and character set (i.e. number of minimum characters to use of each class) as well as implementing custom validation rules.

Of course if you can convince the business side of your company to not require specific rules, but instead allow a longer minimum length if the rules are not met that would be better than restrictive character set rules.

Links:

Most Liked

OvermindDL1

OvermindDL1

Have you thought about supporting a NIST mode to have it follow the NIST Federal Password Guidelines (Section 5.1)? This seems to be pretty standard in areas that I’ve worked as the password requirements. In general it just has a minimum length of 8, a minimum maximum length of 64, any ASCII printable character must be allowed and any unicode character ‘should’ be allowed, pasting should be allowed, a blacklist of compromised values is allowed and it is allowed to block often-guessed patterns such as dictionary words and so forth, more importantly it has this sentence: No other complexity requirements for memorized secrets SHOULD be imposed.

A library that verifies according to the NIST standards with a lot of configureable optional sets would be very nice. :slight_smile:

axelson

axelson

Scenic Core Team

Thanks, that seems like a reasonable consideration. Perhaps it could be implemented kind of like a preset. I added an issue to track it: Support NIST 5.1 requirements · Issue #4 · axelson/password-validator · GitHub

Where Next?

Popular in Announcing Top

sorentwo
Hello! tl;dr Announcing Oban, an Ecto based job processing library with a focus on reliability and historical observability. After spen...
985 42920 311
New
asiniy
Hey there! I wrote a download elixir package which does exactly what its name about - an easy way to download files. I saw solutions ab...
New
blatyo
The best overview for how things are tied together is this presentation. Modules and functions are pretty well documented at this point, ...
New
mbuhot
Leverage Open Api 3.0 (Swagger) to document, test, validate and explore your Plug and Phoenix APIs. Generate and serve a JSON Open API ...
New
Crowdhailer
Raxx is an alternative to Plug and is inspired by projects such as Rack(Ruby) and Ring(Clojure). 1.0-rc.1 is now available. To use it re...
New
KronicDeth
Elixir plugin for JetBrain’s IntelliJ Platform (including Rubymine) This is a plugin that adds support for Elixir to JetBrains IntelliJ...
289 36128 110
New
versilov
Could not wait for the missing Elixir ML libraries to appear, so, I wrote one myself, taking https://github.com/sdwolfz/exlearn as a foun...
New
josevalim
Hello everyone, We have just released NimbleCSV which is a small and fast CSV parsing library for Elixir. It allows developers to define...
New
markmark206
simple_feature_flags is a tiny package that lets you turn features on or off based on which environment (e.g. localhost, staging, product...
New
handnot2
Samly can be used to enable SAML 2.0 Single Sign On in a Plug/Phoenix application. This library uses Erlang esaml to provide plug enabl...
New

Other popular topics Top

vertexbuffer
Hello, can anybody help here..? I have a list of players and I what to delete an element, but every for loop the list is reverting to ori...
New
Nvim
Anybody knows a comprehensive comparison of Django and Phoenix, thanks for the help. Where are they similar? Where do they differ the m...
New
jononomo
I am trying to figure out how Mix knows whether the environment is test, dev, or prod – where is this set? Thanks.
New
chrismccord
Phoenix 1.4.0 released Phoenix 1.4 is out! This release ships with exciting new features, most notably with HTTP2 support, improved deve...
688 30877 112
New
minhajuddin
I have seen a lot of code which picks the first element from a list using Enum.at(0) instead of List.first. Is there a reason why people ...
New
Qqwy
Original source of discussion: This topic on the Pragmatic Programmers’ Functional Web Development with Elixir, OTP, and Phoenix forum. ...
New
joaquinalcerro
Hi there, I am working with Ecto-Postgresql and I need to call all of the records from a specific table but the table has 40,000 records...
New
openscript
Hello! Sorry for this astonishing simple question, but I’m really stuck. I try to set up the intellij-elixir plugin, but I don’t know ho...
New
jononomo
For some reason my phoenix channels are working for me in my local dev environment, but as soon as I deploy via Docker, I get a 403 error...
New
vonH
In asking this question I am more interested about the expressiveness of the language itself and less concerned about the availability of...
New

Latest on Elixir Forum

We're in Beta

About us Mission Statement