qt5/cutelyst2/validatorpwquality_8cpp_source.html

 /*

  * Copyright (C) 2018 Matthias Fehring <kontakt@buschmann23.de>

  *

  * This library is free software; you can redistribute it and/or

  * modify it under the terms of the GNU Lesser General Public

  * License as published by the Free Software Foundation; either

  * version 2.1 of the License, or (at your option) any later version.

  *

  * This library is distributed in the hope that it will be useful,

  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  * Lesser General Public License for more details.

  *

  * You should have received a copy of the GNU Lesser General Public

  * License along with this library; if not, write to the Free Software

  * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA

  */


 #include "validatorpwquality_p.h"

 #include <pwquality.h>

 #include <QLoggingCategory>


 using namespace Cutelyst;


 ValidatorPwQuality::ValidatorPwQuality(const QString &field, int threshold, const QVariant &options, const QString &userName, const QString &oldPassword, const ValidatorMessages &messages) :

     ValidatorRule(*new ValidatorPwQualityPrivate(field, threshold, options, userName, oldPassword, messages))

 {


 }


 ValidatorPwQuality::~ValidatorPwQuality()

 {


 }


 int ValidatorPwQuality::validate(const QString &value, const QVariant &options, const QString &oldPassword, const QString &user)

 {

     int rv = 0;


     if (!value.isEmpty()) {


         pwquality_settings_t *pwq = pwquality_default_settings();

         if (pwq) {


             bool optionsSet = false;

             if (options.isValid()) {

                 if (options.type() == QVariant::Map) {

                     const QVariantMap map = options.toMap();

                     if (!map.empty()) {

                         auto i = map.constBegin();

                         while (i != map.constEnd()) {

                             const QString opt = i.key() + QLatin1Char('=') + i.value().toString();

                             const int orv = pwquality_set_option(pwq, opt.toUtf8().constData());

                             if (orv != 0) {

                                 char buf[1024];

                                 qCWarning(C_VALIDATOR, "ValidatorPwQuality: Failed to set pwquality option %s: %s", qUtf8Printable(opt), pwquality_strerror(buf, sizeof(buf), orv, nullptr));

                             }

                             ++i;

                         }

                         optionsSet = true;

                     }

                 } else if (options.type() == QVariant::String) {

                     const QString configFile = options.toString();

                     if (!configFile.isEmpty()) {

                         if (C_VALIDATOR().isWarningEnabled()) {

                             void *auxerror;

                             const int rcrv = pwquality_read_config(pwq, configFile.toUtf8().constData(), &auxerror);

                             if (rcrv != 0) {

                                 char buf[1024];

                                 qCWarning(C_VALIDATOR, "ValidatorPwQuality: Failed to read configuration file %s: %s", qUtf8Printable(configFile), pwquality_strerror(buf, sizeof(buf), rcrv, auxerror));

                             }

                         } else {

                             pwquality_read_config(pwq, configFile.toUtf8().constData(), nullptr);

                         }

                         optionsSet = true;

                     }

                 }

             }


             if (!optionsSet) {

                 if (C_VALIDATOR().isWarningEnabled()) {

                     void *auxerror;

                     const int rcrv = pwquality_read_config(pwq, nullptr, &auxerror);

                     if (rcrv != 0) {

                         char buf[1024];

                         qCWarning(C_VALIDATOR, "ValidatorPwQuality: Failed to read default configuration file: %s", pwquality_strerror(buf, sizeof(buf), rcrv, auxerror));

                     }

                 } else {

                     pwquality_read_config(pwq, nullptr, nullptr);

                 }

             }


             const QByteArray pwba = value.toUtf8();

             const char *pw = pwba.constData();

             const QByteArray opwba = oldPassword.toUtf8();

             const char *opw = opwba.isEmpty() ? nullptr : opwba.constData();

             const QByteArray uba = user.toUtf8();

             const char *u = uba.isEmpty() ? nullptr : uba.constData();


             rv = pwquality_check(pwq, pw, opw, u, nullptr);


             pwquality_free_settings(pwq);


         } else {

             rv = PWQ_ERROR_MEM_ALLOC;

         }

     } else {

         rv = PWQ_ERROR_EMPTY_PASSWORD;

     }


     return rv;

 }


 QString ValidatorPwQuality::errorString(Context *c, int returnValue, const QString &label, int threshold)

 {

     QString error;


     if (label.isEmpty()) {

         switch (returnValue) {

         case PWQ_ERROR_MEM_ALLOC:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check failed because of a memory allocation error.");

             break;

         case PWQ_ERROR_SAME_PASSWORD:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password is the same as the old one.");

             break;

         case PWQ_ERROR_PALINDROME:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password is a palindrome.");

             break;

         case PWQ_ERROR_CASE_CHANGES_ONLY:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password differs with case changes only.");

             break;

         case PWQ_ERROR_TOO_SIMILAR:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password is too similar to the old one.");

             break;

         case PWQ_ERROR_USER_CHECK:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password contains the user name in some form.");

             break;

         case PWQ_ERROR_GECOS_CHECK:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password contains words from the real name of the user in some form.");

             break;

         case PWQ_ERROR_BAD_WORDS:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password contains forbidden words in some form.");

             break;

         case PWQ_ERROR_MIN_DIGITS:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password contains too few digits.");

             break;

         case PWQ_ERROR_MIN_UPPERS:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password contains too few uppercase letters.");

             break;

         case PWQ_ERROR_MIN_LOWERS:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password contains too few lowercase letters.");

             break;

         case PWQ_ERROR_MIN_OTHERS:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password contains too few non-alphanumeric characters.");

             break;

         case PWQ_ERROR_MIN_LENGTH:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password is too short.");

             break;

         case PWQ_ERROR_ROTATED:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password is just the rotated old one.");

             break;

         case PWQ_ERROR_MIN_CLASSES:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password does not contain enough different character types.");

             break;

         case PWQ_ERROR_MAX_CONSECUTIVE:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password contains too many same characters consecutively.");

             break;

         case PWQ_ERROR_MAX_CLASS_REPEAT:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password contains too many characters of the same type consecutively.");

             break;

         case PWQ_ERROR_MAX_SEQUENCE:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password contains too long a monotonous string.");

             break;

         case PWQ_ERROR_EMPTY_PASSWORD:

             error = c->translate("Cutelyst::ValidatorPwQuality", "No password supplied.");

             break;

         case PWQ_ERROR_RNG:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check failed because we cannot obtain random numbers from the RNG device.");

             break;

         case PWQ_ERROR_CRACKLIB_CHECK:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password fails the dictionary check.");

             break;

         case PWQ_ERROR_UNKNOWN_SETTING:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check failed because of an unknown setting.");

             break;

         case PWQ_ERROR_INTEGER:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check failed because of a bad integer value in the settings.");

             break;

         case PWQ_ERROR_NON_INT_SETTING:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check failed because of a settings entry is not of integer type.");

             break;

         case PWQ_ERROR_NON_STR_SETTING:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check failed because of a settings entry is not of string type.");

             break;

         case PWQ_ERROR_CFGFILE_OPEN:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check failed because opening the configuration file failed.");

             break;

         case PWQ_ERROR_CFGFILE_MALFORMED:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check failed because the configuration file is malformed.");

             break;

         case PWQ_ERROR_FATAL_FAILURE:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check failed because of a fatal failure.");

             break;

         default:

         {

             if (returnValue < 0) {

                 error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check failed because of an unknown error.");

             } else {

                 if (returnValue < threshold) {

                     error = c->translate("Cutelyst::ValidatorPwQuality", "The password quality score of %1 is below the threshold of %2.").arg(QString::number(returnValue), QString::number(threshold));

                 }

             }

         }

             break;

         }

     } else {

         switch (returnValue) {

         case PWQ_ERROR_MEM_ALLOC:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check for the “%1“ field failed because of a memory allocation error.").arg(label);

             break;

         case PWQ_ERROR_SAME_PASSWORD:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field is the same as the old one.").arg(label);

             break;

         case PWQ_ERROR_PALINDROME:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field is a palindrome.").arg(label);

             break;

         case PWQ_ERROR_CASE_CHANGES_ONLY:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field differs with case changes only.").arg(label);

             break;

         case PWQ_ERROR_TOO_SIMILAR:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field is too similar to the old one.").arg(label);

             break;

         case PWQ_ERROR_USER_CHECK:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field contains the user name in some form.").arg(label);

             break;

         case PWQ_ERROR_GECOS_CHECK:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field contains words from the real name of the user name in some form.").arg(label);

             break;

         case PWQ_ERROR_BAD_WORDS:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field contains forbidden words in some form.").arg(label);

             break;

         case PWQ_ERROR_MIN_DIGITS:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field contains too few digits.").arg(label);

             break;

         case PWQ_ERROR_MIN_UPPERS:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field contains too few uppercase letters.").arg(label);

             break;

         case PWQ_ERROR_MIN_LOWERS:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field contains too few lowercase letters.").arg(label);

             break;

         case PWQ_ERROR_MIN_OTHERS:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field contains too few non-alphanumeric characters.").arg(label);

             break;

         case PWQ_ERROR_MIN_LENGTH:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field is too short.").arg(label);

             break;

         case PWQ_ERROR_ROTATED:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field is just the rotated old one.").arg(label);

             break;

         case PWQ_ERROR_MIN_CLASSES:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field does not contain enough character types.").arg(label);

             break;

         case PWQ_ERROR_MAX_CONSECUTIVE:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field contains too many same characters consecutively.").arg(label);

             break;

         case PWQ_ERROR_MAX_CLASS_REPEAT:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field contains too many characters of the same type consecutively.").arg(label);

             break;

         case PWQ_ERROR_MAX_SEQUENCE:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field contains contains too long a monotonous string.").arg(label);

             break;

         case PWQ_ERROR_EMPTY_PASSWORD:

             error = c->translate("Cutelyst::ValidatorPwQuality", "No password supplied in the “%1” field.").arg(label);

             break;

         case PWQ_ERROR_RNG:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check for the “%1“ field failed because we cannot obtain random numbers from the RNG device.").arg(label);

             break;

         case PWQ_ERROR_CRACKLIB_CHECK:

             error = c->translate("Cutelyst::ValidatorPwQuality", "The password in the “%1” field fails the dictionary check.").arg(label);

             break;

         case PWQ_ERROR_UNKNOWN_SETTING:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check for the “%1“ field failed because of an unknown setting.").arg(label);

             break;

         case PWQ_ERROR_INTEGER:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check for the “%1“ field failed because of a bad integer value in the settings.").arg(label);

             break;

         case PWQ_ERROR_NON_INT_SETTING:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check for the “%1“ field failed because of a settings entry is not of integer type.").arg(label);

             break;

         case PWQ_ERROR_NON_STR_SETTING:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check for the “%1“ field failed because of a settings entry is not of string type.").arg(label);

             break;

         case PWQ_ERROR_CFGFILE_OPEN:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check for the “%1“ field failed because opening the configuration file failed.").arg(label);

             break;

         case PWQ_ERROR_CFGFILE_MALFORMED:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check for the “%1“ field failed because the configuration file is malformed.").arg(label);

             break;

         case PWQ_ERROR_FATAL_FAILURE:

             error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check for the “%1“ field failed because of a fatal failure.").arg(label);

             break;

         default:

         {

             if (returnValue < 0) {

                 error = c->translate("Cutelyst::ValidatorPwQuality", "Password quality check for the “%1” field failed because of an unknown error.").arg(label);

             } else {

                 if (returnValue < threshold) {

                     error = c->translate("Cutelyst::ValidatorPwQuality", "The quality score of %1 for the password in the “%2” field is below the threshold of %3.").arg(QString::number(returnValue), label, QString::number(threshold));

                 }

             }

         }

             break;

         }

     }


     return error;

 }


 ValidatorReturnType ValidatorPwQuality::validate(Context *c, const ParamsMultiMap &params) const

 {

     ValidatorReturnType result;


     const QString v = value(params);


     if (!v.isEmpty()) {

         Q_D(const ValidatorPwQuality);

         QVariant opts;

         if (d->options.isValid()) {

             if (d->options.type() == QVariant::Map) {

                 opts = d->options;

             } else if (d->options.type() == QVariant::String) {

                 const QString optString = d->options.toString();

                 if (c->stash().contains(optString)) {

                     opts = c->stash(optString);

                 } else {

                     opts = d->options;

                 }

             }

         }

         QString un;

         if (!d->userName.isEmpty()) {

             un = params.value(d->userName);

             if (un.isEmpty()) {

                 un = c->stash(d->userName).toString();

             }

         }

         QString opw;

         if (!d->oldPassword.isEmpty()) {

             opw = params.value(d->oldPassword);

             if (opw.isEmpty()) {

                 opw = c->stash(d->oldPassword).toString();

             }

         }

         int rv = validate(v, opts, opw, un);

         if (rv < d->threshold) {

             result.errorMessage = validationError(c, rv);

             if (C_VALIDATOR().isDebugEnabled()) {

                 if (rv < 0) {

                     char buf[1024];

                     qCDebug(C_VALIDATOR, "ValidatorPwQuality: Validation failed for field %s at %s::%s: %s", qPrintable(field()), qPrintable(c->controllerName()), qPrintable(c->actionName()), pwquality_strerror(buf, sizeof(buf), rv, nullptr));

                 } else {

                     qCDebug(C_VALIDATOR, "ValidatorPwQuality: Validation failed for field %s at %s::%s because the quality score %i is below the threshold of %i.", qPrintable(field()), qPrintable(c->controllerName()), qPrintable(c->actionName()), rv, d->threshold);

                 }

             }

         } else {

             qCDebug(C_VALIDATOR, "ValidatorPwQuality: \"%s\" got a quality score of %i", qPrintable(v), rv);

             result.value.setValue<QString>(v);

         }

     }


     return result;

 }


 QString ValidatorPwQuality::genericValidationError(Context *c, const QVariant &errorData) const

 {

     QString error;


     Q_D(const ValidatorPwQuality);

     const int returnValue = errorData.toInt();

     const QString _label = label(c);

     error = ValidatorPwQuality::errorString(c, returnValue, _label, d->threshold);


     return error;

 }

Cutelyst::ValidatorPwQuality
Validates an input field with libpwquality to check password quality.
Definition: validatorpwquality.h:64

Cutelyst::ValidatorRule::field
QString field() const
Returns the name of the field to validate.
Definition: validatorrule.cpp:39

QByteArray

Cutelyst::ValidatorRule::label
QString label(Context *c) const
Returns the human readable field label used for generic error messages.
Definition: validatorrule.cpp:58

Cutelyst::ValidatorMessages
Stores custom error messages and the input field label.
Definition: validatorrule.h:144

QMap

QByteArray::isEmpty
bool isEmpty() const

Cutelyst::ValidatorPwQuality::validate
static int validate(const QString &value, const QVariant &options=QVariant(), const QString &oldPassword=QString(), const QString &user=QString())
Returns the password quality score for value.
Definition: validatorpwquality.cpp:36

Cutelyst::Context
The Cutelyst Context.
Definition: context.h:51

Cutelyst::ValidatorReturnType::value
QVariant value
Definition: validatorrule.h:64

QString::number
QString number(int n, int base)

Cutelyst::ValidatorRule::value
QString value(const ParamsMultiMap &params) const
Returns the value of the field from the input params.
Definition: validatorrule.cpp:41

QVariant::toInt
int toInt(bool *ok) const

Cutelyst::ValidatorPwQuality::~ValidatorPwQuality
~ValidatorPwQuality() override
Deconstructs the ValidatorPwQuality.
Definition: validatorpwquality.cpp:31

Cutelyst::ValidatorRule::validationError
QString validationError(Context *c, const QVariant &errorData=QVariant()) const
Returns a descriptive error message if validation failed.
Definition: validatorrule.cpp:72

QString::isEmpty
bool isEmpty() const

Cutelyst::ValidatorPwQuality::ValidatorPwQuality
ValidatorPwQuality(const QString &field, int threshold=30, const QVariant &options=QVariant(), const QString &userName=QString(), const QString &oldPassword=QString(), const ValidatorMessages &messages=ValidatorMessages())
Constructs a new ValidatorPwQuality with the given parameters.
Definition: validatorpwquality.cpp:25

QByteArray::constData
const char * constData() const

Cutelyst::ValidatorPwQuality::genericValidationError
QString genericValidationError(Context *c, const QVariant &errorData) const override
Returns a generic error message if validation failed.
Definition: validatorpwquality.cpp:374

QString

Cutelyst::ValidatorRule
Base class for all validator rules.
Definition: validatorrule.h:292

QLatin1Char

Cutelyst::ValidatorPwQuality::errorString
static QString errorString(Context *c, int returnValue, const QString &label=QString(), int threshold=0)
Returns a human readable string for the return value of ValidatorPwQuality::validate() ...
Definition: validatorpwquality.cpp:114

QVariant::setValue
void setValue(const T &value)

Cutelyst::ValidatorReturnType::errorMessage
QString errorMessage
Definition: validatorrule.h:63

QVariant::toMap
QMap< QString, QVariant > toMap() const

Cutelyst::Context::translate
QString translate(const char *context, const char *sourceText, const char *disambiguation=nullptr, int n=-1) const
Definition: context.cpp:481

QVariant::isValid
bool isValid() const

Cutelyst::ValidatorReturnType
Contains the result of a single input parameter validation.
Definition: validatorrule.h:62

QVariant::type
Type type() const

QString::arg
QString arg(qlonglong a, int fieldWidth, int base, QChar fillChar) const

QVariant::toString
QString toString() const

Cutelyst::Context::stash
void stash(const QVariantHash &unite)
Definition: context.h:568

QMap::value
const T value(const Key &key, const T &defaultValue) const

QVariant

QString::toUtf8
QByteArray toUtf8() const