o {,h%@s ddlZddlZddlZddlmZddlmZddlmZddl m Z m Z m Z ddl mZmZddlmZmZddlmZdd lmZdd lmZejd d Zd dZd!ddZd!ddZd"ddZd"ddZeee Z!GdddZ"ddZ#GdddZ$GdddZ%Gdd d Z&dS)#N)SequenceMatcher)Path)settings)FieldDoesNotExistImproperlyConfiguredValidationError)cached_propertylazy) format_htmlformat_html_join) import_string)gettext)ngettextcCs ttjSN)get_password_validatorsrAUTH_PASSWORD_VALIDATORSrr]/var/www/html/rh/venv/lib/python3.10/site-packages/django/contrib/auth/password_validation.pyget_default_password_validatorss rc Csbg}|D]*}zt|d}Wntyd}t||dw||di|diq|S)NNAMEzZThe module in NAME could not be imported: %s. Check your AUTH_PASSWORD_VALIDATORS setting.OPTIONSr)r ImportErrorrappendget)validator_config validators validatorklassmsgrrrrs rc Csjg}|dur t}|D]!}z|||Wq ty,}z ||WYd}~q d}~ww|r3t|dS)z Validate that the password meets all validator requirements. If the password is valid, return ``None``. If the password is invalid, raise ValidationError with all error messages. N)rvalidaterr)passworduserpassword_validatorserrorsrerrorrrrvalidate_password)sr%cCs6|durt}|D]}t|ddd}|||q dS)zy Inform all validators that have implemented a password_changed() method that the password has been changed. Npassword_changedcWsdSrr)arrrDsz"password_changed..)rgetattr)r r!r"rr&rrrr&<s  r&cCs.g}|dur t}|D] }||q |S)zG Return a list of all help texts of all configured validators. N)rr get_help_text)r" help_textsrrrrpassword_validators_help_textsHs r,cCs0t|}tdddd|D}|rtd|SdS)z` Return an HTML string with all help texts of all configured validators in an
    . z
  • {}
    • css|]}|fVqdSrr).0 help_textrrr [sz6_password_validators_help_text_html..z
      {}
    )r,r r )r"r+ help_itemsrrr#_password_validators_help_text_htmlTs r2c@s4eZdZdZd ddZd ddZdd Zd d ZdS)MinimumLengthValidatorz< Validate that the password is of a minimum length. cCs ||_dSr) min_length)selfr5rrr__init__hs zMinimumLengthValidator.__init__NcCs*t||jkrt|dd|jiddS)Npassword_too_shortr5codeparams)lenr5rget_error_messager6r r!rrrrkszMinimumLengthValidator.validatecCstdd|j|jS)NzBThis password is too short. It must contain at least %d character.zCThis password is too short. It must contain at least %d characters.rr5r6rrrr=ssz(MinimumLengthValidator.get_error_messagecCstdd|jd|jiS)Nz=Your password must contain at least %(min_length)d character.z>Your password must contain at least %(min_length)d characters.r5r?r@rrrr*}sz$MinimumLengthValidator.get_help_text)r4r)__name__ __module__ __qualname____doc__r7rr=r*rrrrr3cs    r3cCs0t|}|d|}t|}|d|ko||kS)a Test that value is within a reasonable range of password. The following ratio calculations are based on testing SequenceMatcher like this: for i in range(0,6): print(10**i, SequenceMatcher(a='A', b='A'*(10**i)).quick_ratio()) which yields: 1 1.0 10 0.18181818181818182 100 0.019801980198019802 1000 0.001998001998001998 10000 0.00019998000199980003 100000 1.999980000199998e-05 This means a length_ratio of 10 should never yield a similarity higher than 0.2, for 100 this is down to 0.02 and for 1000 it is 0.002. This can be calculated via 2 / length_ratio. As a result we avoid the potentially expensive sequence matching.  )r<)r max_similarityvaluepwd_lenlength_bound_similarity value_lenrrrexceeds_maximum_length_ratios rLc@s<eZdZdZdZedfddZd ddZd d Zd d ZdS) UserAttributeSimilarityValidatora Validate that the password is sufficiently different from the user's attributes. If no specific attributes are provided, look at a sensible list of defaults. Attributes that don't exist are ignored. Comparison is made to not only the full attribute value, but also its components, so that, for example, a password is validated against either part of an email address, as well as the full address. )username first_name last_nameemailgffffff?cCs ||_|dkr td||_dS)Ng?z#max_similarity must be at least 0.1)user_attributes ValueErrorrG)r6rRrGrrrr7s z)UserAttributeSimilarityValidator.__init__Nc Cs|sdS|}|jD]W}t||d}|rt|tsq |}td||g}|D]7}t||j|r4q*t ||d |jkraz t|j |j }Wn tyU|}Ynwt|dd|idq*q dS)Nz\W+)r'bpassword_too_similar verbose_namer9)lowerrRr) isinstancestrresplitrLrGr quick_ratio_meta get_fieldrVrrr=) r6r r!attribute_namerH value_lower value_parts value_partrVrrrrs@    z)UserAttributeSimilarityValidator.validatecCtdS)Nz4The password is too similar to the %(verbose_name)s._r@rrrr=z2UserAttributeSimilarityValidator.get_error_messagecCrc)NuHYour password can’t be too similar to your other personal information.rdr@rrrr*sz.UserAttributeSimilarityValidator.get_help_textr) rArBrCrDDEFAULT_USER_ATTRIBUTESr7rr=r*rrrrrMs   rMc@sBeZdZdZeddZefddZd ddZd d Zd d Z dS)CommonPasswordValidatora Validate that the password is not a common password. The password is rejected if it occurs in a provided list of passwords, which may be gzipped. The list Django ships with contains 20000 common passwords (unhexed, lowercased and deduplicated), created by Royce Williams: https://gist.github.com/roycewilliams/226886fd01572964e1431ac8afc999ce The password list must be lowercased to match the comparison in validate(). cCsttjdS)Nzcommon-passwords.txt.gz)r__file__resolveparentr@rrrDEFAULT_PASSWORD_LIST_PATHsz2CommonPasswordValidator.DEFAULT_PASSWORD_LIST_PATHc Cs|tjur|j}z%tj|ddd}dd|D|_WdWdS1s&wYWdStyUt|}dd|D|_WdYdS1sMwYYdSw)Nrtzutf-8)encodingcSh|]}|qSrstripr.xrrr z3CommonPasswordValidator.__init__..cSrorrprrrrrrtru)rhrlgzipopen passwordsOSError)r6password_list_pathfrrrr7s &  &z CommonPasswordValidator.__init__NcCs&||jvrt|dddS)Npassword_too_commonr:)rWrqrxrr=r>rrrrs z CommonPasswordValidator.validatecCrc)NzThis password is too common.rdr@rrrr=rfz)CommonPasswordValidator.get_error_messagecCrc)Nu2Your password can’t be a commonly used password.rdr@rrrr*rfz%CommonPasswordValidator.get_help_textr) rArBrCrDrrlr7rr=r*rrrrrhs    rhc@s*eZdZdZd ddZddZddZdS) NumericPasswordValidatorz= Validate that the password is not entirely numeric. NcCs|r t|dddS)Npassword_entirely_numericr})isdigitrr=r>rrrr s z!NumericPasswordValidator.validatecCrc)Nz"This password is entirely numeric.rdr@rrrr=rfz*NumericPasswordValidator.get_error_messagecCrc)Nu*Your password can’t be entirely numeric.rdr@rrrr*rfz&NumericPasswordValidator.get_help_textr)rArBrCrDrr=r*rrrrr~s   r~)NNr)' functoolsrvrZdifflibrpathlibr django.confrdjango.core.exceptionsrrrdjango.utils.functionalrr django.utils.htmlr r django.utils.module_loadingr django.utils.translationr rercacherrr%r&r,r2rY"password_validators_help_text_htmlr3rLrMrhr~rrrrs2          "='