save

Author: alainabbas

package.json

@@ -67,6 +67,7 @@
     "class-transformer": "^0.5.1",
     "class-validator": "^0.14.1",
     "cookie-parser": "^1.4.6",
+    "fast-password-entropy": "^1.1.1",
     "handlebars": "^4.7.8",
     "helmet": "^7.1.0",
     "ioredis": "^5.4.1",
@@ -102,6 +103,7 @@
     "@swc/core": "^1.6.5",
     "@types/cookie-parser": "^1.4.7",
     "@types/express": "^4.17.21",
+    "@types/fast-password-entropy": "^1.1.3",
     "@types/inquirer": "^9.0.7",
     "@types/jest": "^29.5.12",
     "@types/node": "^20.14.8",

src/settings/passwdadm/passwdadm.service.ts

@@ -1,10 +1,11 @@
-import { BadRequestException, Injectable, InternalServerErrorException, NotFoundException } from '@nestjs/common';
+import {BadRequestException, Injectable, InternalServerErrorException, NotFoundException} from '@nestjs/common';
 import Redis from 'ioredis';
-import { AbstractService } from '~/_common/abstracts/abstract.service';
+import {AbstractService} from '~/_common/abstracts/abstract.service';
 import {PasswordPolicies} from "~/settings/passwdadm/_schemas/PasswordPolicies";
 import {Model} from "mongoose";
 import {InjectModel} from "@nestjs/mongoose";
 import {IdentitiesService} from "~/management/identities/identities.service";
+import stringEntropy from 'fast-password-entropy'
 
 @Injectable()
 export class PasswdadmService extends AbstractService {
@@ -15,76 +16,52 @@ export class PasswdadmService extends AbstractService {
     super();
   }
 
-  public async getPolicies(): Promise<any>{
+  public async getPolicies(): Promise<PasswordPolicies> {
     const passwordPolicies = await this.passwordPolicies.findOne()
-    if (passwordPolicies === null){
+    if (passwordPolicies === null) {
       return new this.passwordPolicies()
     }
     return passwordPolicies
   }
-  public async checkPolicies(password: string):Promise<boolean>{
-    const policies=this.getPolicies()
+
+  public async checkPolicies(password: string): Promise<boolean> {
+    const policies = this.getPolicies()
     if (password.length < policies.len) {
       this.logger.error('Password too short')
       return false
     }
-
-    return true
-  }
-  /*
-  function checkPolicy(password) {
-    has_len.value='highlight_off'
-    let statut=true
-    if (/[!@#\$%\^\&*\)\(+=._-]/.test(password) === false){
-      pwdColor.value = 'red'
-      iconSpecialOK(false)
-      statut=false
-    }else{
-      iconSpecialOK(true)
+    //tes caracteres speciaux
+    if (policies.hasSpecialChars > 0) {
+      if (/[!@#\$%\^\&*\)\(+=._-]/.test(password) === false) {
+        this.logger.error('must have special characters')
+        return false
+      }
     }
-    if (/\d/.test(password) === false){
-      pwdColor.value = 'red'
-      iconNumberOK(false)
-      statut=false
-    }else{
-      iconNumberOK(true)
+    if (policies.hasLowerCase > 0) {
+      if (/[a-z]/.test(password) === false) {
+        this.logger.error('must have lower case characters')
+        return false
+      }
     }
-    if (/[a-z]/.test(password) === false){
-      pwdColor.value = 'red'
-      iconLowerOK(false)
-      statut=false
-    }else{
-      iconLowerOK(true)
+    if (policies.hasUpperCase > 0) {
+      if (/[A-Z]/.test(password) === false) {
+        this.logger.error('must have upper case characters')
+        return false
+      }
     }
-    if (/[A-Z]/.test(password) === false){
-      pwdColor.value = 'red'
-      iconUpperOK(false)
-      statut=false
-    }else{
-      iconUpperOK(true)
+    if (policies.hasNumbers > 0) {
+      if (/[A-Z]/.test(password) === false) {
+        this.logger.error('must have number')
+        return false
+      }
     }
-    if (password.length < props.min) {
-      console.log('trop court ' + props.min)
-      iconLenOK(false)
-      statut=false
-    }else{
-      iconLenOK(true)
+    //calcul de l'entropie
+    let c = stringEntropy(password)
+    if (c < policies.minComplexity) {
+      this.logger.error('entropie trop faible')
     }
-    console.log('password OK ')
-    if (statut === true){
-      pwdColor.value = 'green'
-    }else {
-      pwdColor.value = 'red'
-    }
-    //entropie
-    if (complexity(password) === false){
-      statut=false
-      iconComplexityOK(false)
-    }else{
-      iconComplexityOK(true)
-    }
-    return statut
+    return true
   }
-  */
+    
 
 }

yarn.lock

@@ -2687,6 +2687,11 @@
     "@types/qs" "*"
     "@types/serve-static" "*"
 
+"@types/fast-password-entropy@^1.1.3":
+  version "1.1.3"
+  resolved "https://registry.yarnpkg.com/@types/fast-password-entropy/-/fast-password-entropy-1.1.3.tgz#298300f46160f65e648266a65f54a1f3d49e1a39"
+  integrity sha512-vio+mpna1L/nQVAqeolggx428AtODBe1KFUVOStUV75gCCDID9Oz+ElVS5L54kqeooDW2gzT7AfZWlSG+zyTuw==
+
 "@types/graceful-fs@^4.1.3":
   version "4.1.9"
   resolved "https://registry.yarnpkg.com/@types/graceful-fs/-/graceful-fs-4.1.9.tgz#2a06bc0f68a20ab37b3e36aa238be6abdf49e8b4"
@@ -5588,6 +5593,11 @@ fast-levenshtein@^2.0.6:
   resolved "https://registry.yarnpkg.com/fast-levenshtein/-/fast-levenshtein-2.0.6.tgz#3d8a5c66883a16a30ca8643e851f19baa7797917"
   integrity sha512-DCXu6Ifhqcks7TZKY3Hxp3y6qphY5SJZmrWMDrKcERSOXWQdMhU9Ig/PYrzyw/ul9jOIyh0N4M0tbC5hodg8dw==
 
+fast-password-entropy@^1.1.1:
+  version "1.1.1"
+  resolved "https://registry.yarnpkg.com/fast-password-entropy/-/fast-password-entropy-1.1.1.tgz#47ba9933095fd5a32fb184915fc8e76ee19cf429"
+  integrity sha512-dxm29/BPFrNgyEDygg/lf9c2xQR0vnQhG7+hZjAI39M/3um9fD4xiqG6F0ZjW6bya5m9CI0u6YryHGRtxCGCiw==
+
 fast-safe-stringify@2.1.1, fast-safe-stringify@^2.1.1:
   version "2.1.1"
   resolved "https://registry.yarnpkg.com/fast-safe-stringify/-/fast-safe-stringify-2.1.1.tgz#c406a83b6e70d9e35ce3b30a81141df30aeba884"