mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 211 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8201 Commits
17 Branches
Tree: 2ccd92407a
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2ccd92407a'
${ noResults }
gitea/modules/password/password.go

password.go 2.1KB
Raw Blame History

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788 
  1. // Copyright 2019 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package password

  6. 

  7. import (

  8. 	"crypto/rand"

  9. 	"math/big"

  10. 	"strings"

  11. 	"sync"

  12. 

  13. 	"code.gitea.io/gitea/modules/setting"

  14. )

  15. 

  16. var (

  17. 	matchComplexityOnce sync.Once

  18. 	validChars          string

  19. 	requiredChars       []string

  20. 

  21. 	charComplexities = map[string]string{

  22. 		"lower": `abcdefghijklmnopqrstuvwxyz`,

  23. 		"upper": `ABCDEFGHIJKLMNOPQRSTUVWXYZ`,

  24. 		"digit": `0123456789`,

  25. 		"spec":  ` !"#$%&'()*+,-./:;<=>?@[\]^_{|}~` + "`",

  26. 	}

  27. )

  28. 

  29. // NewComplexity for preparation

  30. func NewComplexity() {

  31. 	matchComplexityOnce.Do(func() {

  32. 		setupComplexity(setting.PasswordComplexity)

  33. 	})

  34. }

  35. 

  36. func setupComplexity(values []string) {

  37. 	if len(values) != 1 || values[0] != "off" {

  38. 		for _, val := range values {

  39. 			if chars, ok := charComplexities[val]; ok {

  40. 				validChars += chars

  41. 				requiredChars = append(requiredChars, chars)

  42. 			}

  43. 		}

  44. 		if len(requiredChars) == 0 {

  45. 			// No valid character classes found; use all classes as default

  46. 			for _, chars := range charComplexities {

  47. 				validChars += chars

  48. 				requiredChars = append(requiredChars, chars)

  49. 			}

  50. 		}

  51. 	}

  52. 	if validChars == "" {

  53. 		// No complexities to check; provide a sensible default for password generation

  54. 		validChars = charComplexities["lower"] + charComplexities["upper"] + charComplexities["digit"]

  55. 	}

  56. }

  57. 

  58. // IsComplexEnough return True if password meets complexity settings

  59. func IsComplexEnough(pwd string) bool {

  60. 	NewComplexity()

  61. 	if len(validChars) > 0 {

  62. 		for _, req := range requiredChars {

  63. 			if !strings.ContainsAny(req, pwd) {

  64. 				return false

  65. 			}

  66. 		}

  67. 	}

  68. 	return true

  69. }

  70. 

  71. // Generate  a random password

  72. func Generate(n int) (string, error) {

  73. 	NewComplexity()

  74. 	buffer := make([]byte, n)

  75. 	max := big.NewInt(int64(len(validChars)))

  76. 	for {

  77. 		for j := 0; j < n; j++ {

  78. 			rnd, err := rand.Int(rand.Reader, max)

  79. 			if err != nil {

  80. 				return "", err

  81. 			}

  82. 			buffer[j] = validChars[rnd.Int64()]

  83. 		}

  84. 		if IsComplexEnough(string(buffer)) && string(buffer[0]) != " " && string(buffer[n-1]) != " " {

  85. 			return string(buffer), nil

  86. 		}

  87. 	}

  88. }