PageRenderTime 24ms CodeModel.GetById 24ms RepoModel.GetById 1ms app.codeStats 0ms

/lib/validator/sfPasswordStrengthValidator.class.php

http://piwam.googlecode.com/
PHP | 136 lines | 100 code | 25 blank | 11 comment | 33 complexity | d34788615f3bf16eecf84c993d7a42bb MD5 | raw file
Possible License(s): ISC, LGPL-2.1, AGPL-3.0, BSD-3-Clause, LGPL-3.0, GPL-2.0 
    

  1. <?php

    2. 

  2. /**

    3. 

  3.  * Check strength of password

    4. 

  4.  *

    5. 

  5.  * @see 	http://snippets.symfony-project.org/snippets/from/mysyfy/order_by/date

    6. 

  6.  * @since	r20

    7. 

  7.  */

    8. 

  8. class sfPasswordStrengthValidator extends sfValidator

    9. 

  9. {

    10. 

  10.     public function execute (&$value, &$error)

    11. 

  11.     {

    12. 

  12.         $weakness = $this->Password_Strength($value);

    13. 

  13. 

    14. 

  14.         if($weakness==1) {

    15. 

  15.             $error = $this->getParameter('strength_error');

    16. 

  16.             return false;

    17. 

  17.         }

    18. 

  18. 

    19. 

  19.         return $weakness;

    20. 

  20.     }

    21. 

  21. 

    22. 

  22.     public function initialize ($context, $parameters = null)

    23. 

  23.     {

    24. 

  24.         parent::initialize($context);

    25. 

  25.         $this->setParameter('strength_error', 'Mot de passe trop simple');

    26. 

  26.         $this->getParameterHolder()->add($parameters);

    27. 

  27. 

    28. 

  28.         return true;

    29. 

  29.     }

    30. 

  30. 

    31. 

  31.     /**

    32. 

  32.      * Thanks for: Alix Axel Weblog

    33. 

  33.      *

    34. 

  34.      * @see 	http://www.alixaxel.com/wordpress/wp-content/2007/06/Password_Strength.phps

    35. 

  35.      */

    36. 

  36.     function Password_Strength($password, $username = null)

    37. 

  37.     {

    38. 

  38.         if (!empty($username)) {

    39. 

  39.             $password = str_replace($username, '', $password);

    40. 

  40.         }

    41. 

  41. 

    42. 

  42.         $strength = 0;

    43. 

  43.         $password_length = strlen($password);

    44. 

  44. 

    45. 

  45.         if ($password_length < 5) {

    46. 

  46.             return $strength;

    47. 

  47.         }

    48. 

  48.         else {

    49. 

  49.             $strength = $password_length * 4;

    50. 

  50.         }

    51. 

  51. 

    52. 

  52.         for ($i = 2; $i <= 4; $i++)

    53. 

  53.         {

    54. 

  54.             $temp = str_split($password, $i);

    55. 

  55.             $strength -= (ceil($password_length / $i) - count(array_unique($temp)));

    56. 

  56.         }

    57. 

  57. 

    58. 

  58.         preg_match_all('/[0-9]/', $password, $numbers);

    59. 

  59.         if (!empty($numbers)) {

    60. 

  60.             $numbers = count($numbers[0]);

    61. 

  61.             if ($numbers >= 3) {

    62. 

  62.                 $strength += 5;

    63. 

  63.             }

    64. 

  64.         }

    65. 

  65.         else {

    66. 

  66.             $numbers = 0;

    67. 

  67.         }

    68. 

  68. 

    69. 

  69.         preg_match_all('/[|!@#$%&*\/=?,;.:\-_+~^¨\\\]/', $password, $symbols);

    70. 

  70. 

    71. 

  71.         if (!empty($symbols)) {

    72. 

  72.             $symbols = count($symbols[0]);

    73. 

  73. 

    74. 

  74.             if ($symbols >= 2) {

    75. 

  75.                 $strength += 5;

    76. 

  76.             }

    77. 

  77.         }

    78. 

  78.         else {

    79. 

  79.             $symbols = 0;

    80. 

  80.         }

    81. 

  81. 

    82. 

  82.         preg_match_all('/[a-z]/', $password, $lowercase_characters);

    83. 

  83.         preg_match_all('/[A-Z]/', $password, $uppercase_characters);

    84. 

  84. 

    85. 

  85.         if (!empty($lowercase_characters)) {

    86. 

  86.             $lowercase_characters = count($lowercase_characters[0]);

    87. 

  87.         }

    88. 

  88.         else {

    89. 

  89.             $lowercase_characters = 0;

    90. 

  90.         }

    91. 

  91. 

    92. 

  92.         if (!empty($uppercase_characters)) {

    93. 

  93.             $uppercase_characters = count($uppercase_characters[0]);

    94. 

  94.         }

    95. 

  95.         else {

    96. 

  96.             $uppercase_characters = 0;

    97. 

  97.         }

    98. 

  98. 

    99. 

  99.         if (($lowercase_characters > 0) && ($uppercase_characters > 0)) {

    100. 

  100.             $strength += 10;

    101. 

  101.         }

    102. 

  102. 

    103. 

  103.         $characters = $lowercase_characters + $uppercase_characters;

    104. 

  104. 

    105. 

  105.         if (($numbers > 0) && ($symbols > 0)) {

    106. 

  106.             $strength += 15;

    107. 

  107.         }

    108. 

  108. 

    109. 

  109.         if (($numbers > 0) && ($characters > 0)) {

    110. 

  110.             $strength += 15;

    111. 

  111.         }

    112. 

  112. 

    113. 

  113.         if (($symbols > 0) && ($characters > 0)) {

    114. 

  114.             $strength += 15;

    115. 

  115.         }

    116. 

  116. 

    117. 

  117.         if (($numbers == 0) && ($symbols == 0)) {

    118. 

  118.             $strength -= 10;

    119. 

  119.         }

    120. 

  120. 

    121. 

  121.         if (($symbols == 0) && ($characters == 0)) {

    122. 

  122.             $strength -= 10;

    123. 

  123.         }

    124. 

  124. 

    125. 

  125.         if ($strength < 0) {

    126. 

  126.             $strength = 0;

    127. 

  127.         }

    128. 

  128. 

    129. 

  129.         if ($strength > 100) {

    130. 

  130.             $strength = 100;

    131. 

  131.         }

    132. 

  132. 

    133. 

  133.         return $strength;

    134. 

  134.     }

    135. 

  135. }

    136. 

  136. ?>
    137.