Download the PHP package assisted-mindfulness/pwned-validator without Composer
On this page you can find all versions of the php package assisted-mindfulness/pwned-validator. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.
Download assisted-mindfulness/pwned-validator
More information about assisted-mindfulness/pwned-validator
Files in assisted-mindfulness/pwned-validator
Package pwned-validator
Short Description Super simple Laravel Validator for checking password via the Pwned Passwords service of Have I Been Pwned
License MIT
FAQ
Example:
In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.
- Some hosting areas are not accessible by a terminal or SSH. Then it is not possible to use Composer.
- To use Composer is sometimes complicated. Especially for beginners.
- Composer needs much resources. Sometimes they are not available on a simple webspace.
- If you are using private repositories you don't need to share your credentials. You can set up everything on our site and then you provide a simple download link to your team member.
- Simplify your Composer build process. Use our own command line tool to download the vendor folder as binary. This makes your build process faster and you don't need to expose your credentials for private repositories.
Informations about the package pwned-validator
Pwned Passwords Validator for Laravel
Introducing the Pwned Password validator - a simple and effective tool for ensuring the security of your users' passwords. This package checks the user's submitted password (during registration or password change) against the HIBP Pwned Passwords database, which contains over half a billion real-world passwords that have been exposed in data breaches.
If a password is found to be pwned, it will fail validation and the user will be prevented from using it in your app. This helps to protect your users from potential security breaches and ensures that they are using strong, unique passwords. With the Pwned Password validator, you can have peace of mind knowing that your users' data is secure. Try it out today and see the difference it makes in the security of your app.
Installation
Install the package using Composer:
Add the validation message to your validation lang file lang/en/validation.php :
or use :min in the message to indicate the minimum number of times found set on the validator:
Using the pwned validator
After installation, the pwned validator will be available for use directly in your validation rules.
Using the Rule Object
Alternatively, you can use the AssistedMindfulness\Pwned\PwnedRule Validation Rule Object
instead of the pwned alias if you prefer:
Limiting by the number of times the password was pwned
You can also limit rejected passwords to those that have been pwned a minimum number of times.
For example, password has been pwned 3,303,003 times, however P@ssword! has only been pwned 118 times.
If we wanted to block password but not P@ssword!, we can specify the minimum number as 150 like this:
or using the Rule object:
License
This package is a fork of https://github.com/valorin/pwned-validator
The MIT License (MIT). Please see License File for more information.
