/Projects/Appleseed.Framework/Content/Security/RandomPasswordLDAP.cs
https://code.google.com/p/appleseedapp/ · C# · 239 lines · 94 code · 37 blank · 108 comment · 16 complexity · c7a7a5ad727ff039d51d73839b740aed MD5 · raw file
- namespace Appleseed.Framework.Content.Security
- {
- using System;
- using System.Security.Cryptography;
-
- /// <summary>
- /// The random password ldap.
- /// </summary>
- public class RandomPasswordLdap
- {
- #region Constants and Fields
-
- /// <summary>
- /// The default max password length.
- /// </summary>
- private const int DefaultMaxPasswordLength = 10;
-
- /// <summary>
- /// The default min password length.
- /// </summary>
- private const int DefaultMinPasswordLength = 8;
-
- /// <summary>
- /// The password chars lcase.
- /// </summary>
- private const string PasswordCharsLcase = "abcdefgijkmnopqrstwxyz";
-
- /// <summary>
- /// The password chars numeric.
- /// </summary>
- private const string PasswordCharsNumeric = "23456789";
-
- /// <summary>
- /// The password chars special.
- /// </summary>
- private const string PasswordCharsSpecial = "*$-+?_&=!%{}/";
-
- /// <summary>
- /// The password chars ucase.
- /// </summary>
- private const string PasswordCharsUcase = "ABCDEFGHJKLMNPQRSTWXYZ";
-
- #endregion
-
- #region Public Methods
-
- /// <summary>
- /// Generates a random password.
- /// </summary>
- /// <returns>
- /// Randomly generated password.
- /// </returns>
- /// <remarks>
- /// The length of the generated password will be determined at
- /// random. It will be no shorter than the minimum default and
- /// no longer than maximum default.
- /// </remarks>
- public static string Generate()
- {
- return Generate(DefaultMinPasswordLength, DefaultMaxPasswordLength);
- }
-
- /// <summary>
- /// Generates a random password of the exact length.
- /// </summary>
- /// <param name="length">
- /// Exact password length.
- /// </param>
- /// <returns>
- /// Randomly generated password.
- /// </returns>
- public static string Generate(int length)
- {
- return Generate(length, length);
- }
-
- /// <summary>
- /// Generates a random password.
- /// </summary>
- /// <param name="minLength">
- /// Minimum password length.
- /// </param>
- /// <param name="maxLength">
- /// Maximum password length.
- /// </param>
- /// <returns>
- /// Randomly generated password.
- /// </returns>
- /// <remarks>
- /// The length of the generated password will be determined at
- /// random and it will fall with the range determined by the
- /// function parameters.
- /// </remarks>
- public static string Generate(int minLength, int maxLength)
- {
- // Make sure that input parameters are valid.
- if (minLength <= 0 || maxLength <= 0 || minLength > maxLength)
- {
- return null;
- }
-
- // Create a local array containing supported password characters
- // grouped by types. You can remove character groups from this
- // array, but doing so will weaken the password strength.
- var charGroups = new[]
- {
- PasswordCharsLcase.ToCharArray(),
- PasswordCharsUcase.ToCharArray(),
- PasswordCharsNumeric.ToCharArray(),
- PasswordCharsSpecial.ToCharArray()
- };
-
- // Use this array to track the number of unused characters in each
- // character group.
- var charsLeftInGroup = new int[charGroups.Length];
-
- // Initially, all characters in each group are not used.
- for (var i = 0; i < charsLeftInGroup.Length; i++)
- {
- charsLeftInGroup[i] = charGroups[i].Length;
- }
-
- // Use this array to track (iterate through) unused character groups.
- var leftGroupsOrder = new int[charGroups.Length];
-
- // Initially, all character groups are not used.
- for (var i = 0; i < leftGroupsOrder.Length; i++)
- {
- leftGroupsOrder[i] = i;
- }
-
- // Because we cannot use the default randomizer, which is based on the
- // current time (it will produce the same "random" number within a
- // second), we will use a random number generator to seed the
- // randomizer.
-
- // Use a 4-byte array to fill it with random bytes and convert it then
- // to an integer value.
- var randomBytes = new byte[4];
-
- // Generate 4 random bytes.
- var rng = new RNGCryptoServiceProvider();
- rng.GetBytes(randomBytes);
-
- // Convert 4 bytes into a 32-bit integer value.
- var seed = (randomBytes[0] & 0x7f) << 24 | randomBytes[1] << 16 | randomBytes[2] << 8 | randomBytes[3];
-
- // Now, this is real randomization.
- var random = new Random(seed);
-
- // This array will hold password characters.
- // Allocate appropriate memory for the password.
- var password = minLength < maxLength ? new char[random.Next(minLength, maxLength + 1)] : new char[minLength];
-
- // Index of the last non-processed group.
- var lastLeftGroupsOrderIdx = leftGroupsOrder.Length - 1;
-
- // Generate password characters one at a time.
- for (var i = 0; i < password.Length; i++)
- {
- // Index which will be used to track not processed character groups.
- // If only one character group remained unprocessed, process it;
- // otherwise, pick a random character group from the unprocessed
- // group list. To allow a special character to appear in the
- // first position, increment the second parameter of the Next
- // function call by one, i.e. lastLeftGroupsOrderIdx + 1.
- var nextLeftGroupsOrderIdx = lastLeftGroupsOrderIdx == 0 ? 0 : random.Next(0, lastLeftGroupsOrderIdx);
-
- // Index of the next character group to be processed.
- // Get the actual index of the character group, from which we will
- // pick the next character.
- var nextGroupIdx = leftGroupsOrder[nextLeftGroupsOrderIdx];
-
- // Index of the last non-processed character in a group.
- // Get the index of the last unprocessed characters in this group.
- var lastCharIdx = charsLeftInGroup[nextGroupIdx] - 1;
-
- // Index of the next character to be added to password.
- // If only one unprocessed character is left, pick it; otherwise,
- // get a random character from the unused character list.
- var nextCharIdx = lastCharIdx == 0 ? 0 : random.Next(0, lastCharIdx + 1);
-
- // Add this character to the password.
- password[i] = charGroups[nextGroupIdx][nextCharIdx];
-
- // If we processed the last character in this group, start over.
- if (lastCharIdx == 0)
- {
- charsLeftInGroup[nextGroupIdx] = charGroups[nextGroupIdx].Length;
- }
- else
- {
- // There are more unprocessed characters left.
-
- // Swap processed character with the last unprocessed character
- // so that we don't pick it until we process all characters in
- // this group.
- if (lastCharIdx != nextCharIdx)
- {
- var temp = charGroups[nextGroupIdx][lastCharIdx];
- charGroups[nextGroupIdx][lastCharIdx] = charGroups[nextGroupIdx][nextCharIdx];
- charGroups[nextGroupIdx][nextCharIdx] = temp;
- }
-
- // Decrement the number of unprocessed characters in
- // this group.
- charsLeftInGroup[nextGroupIdx]--;
- }
-
- // If we processed the last group, start all over.
- if (lastLeftGroupsOrderIdx == 0)
- {
- lastLeftGroupsOrderIdx = leftGroupsOrder.Length - 1;
- }
- else
- {
- // There are more unprocessed groups left.
-
- // Swap processed group with the last unprocessed group
- // so that we don't pick it until we process all groups.
- if (lastLeftGroupsOrderIdx != nextLeftGroupsOrderIdx)
- {
- var temp = leftGroupsOrder[lastLeftGroupsOrderIdx];
- leftGroupsOrder[lastLeftGroupsOrderIdx] = leftGroupsOrder[nextLeftGroupsOrderIdx];
- leftGroupsOrder[nextLeftGroupsOrderIdx] = temp;
- }
-
- // Decrement the number of unprocessed groups.
- lastLeftGroupsOrderIdx--;
- }
- }
-
- // Convert password characters into a string and return the result.
- return new string(password);
- }
-
- #endregion
- }
- }