darookee/pwnwedpassword-validator

PwnedPassword Validator Constraint for Symfony

Maintainers

Details

github.com/darookee/pwnwedpassword-validator

Source

Issues

Installs: 478

Dependents: 0

Suggesters: 0

Security: 0

Stars: 2

Watchers: 0

Forks: 0

Open Issues: 0

pkg:composer/darookee/pwnwedpassword-validator

1.0.1 2018-11-23 16:19 UTC

Requires

  • ext-curl: *

MIT 1f0d83cde24326c9f86fa10b70f80da275d06eb3

  • Nils Uliczka <nils.uliczka.woop@darookee.net>

symfonyvalidatorpassword

This package is auto-updated.

Last update: 2025-10-08 00:50:48 UTC

README

This Validator uses curl to query the https://haveibeenpwned.com API for the first 5 chars of the SHA1 of a value, that is to be validated. If it finds the exact SHA1 hash in the response it will add a validation error.

Usage

use R\Validator\Constraints as RAssert;

class MyEntity {

    /**
    * @RAssert\PwnedPasswords()
    **/
    var $password;
}