looplinguist/secure-password-policy

This is used to prevent the use of previously used passwords in Laravel.

Maintainers

Details

github.com/LoopLinguist/secure-password-policy

Homepage

Source

Issues

Installs: 14

Dependents: 0

Suggesters: 0

Security: 0

Stars: 0

Watchers: 1

Forks: 0

Open Issues: 0

v1.0.1 2024-06-11 15:43 UTC

Requires

MIT 72583fd009a67e28cc4b40ee2fdf318d2670e4bc

  • Shyam <code.woop@shyambabu.com>

looplinguistsecure-password-policy

This package is auto-updated.

Last update: 2025-04-13 15:54:13 UTC

README

This is used to prevent the use of previously used passwords for Laravel.

Installation

Install using Composer

composer require looplinguist/secure-password-policy

User model

Update the User model to define a relationship with the password_histories table. You can add the following code to the User model:

use Illuminate\Database\Eloquent\Relations\HasMany;
use LoopLinguist\SecurePasswordPolicy\Models\PasswordHistory;

class User extends Authenticatable
{
    //  ... 

    public function passwordHistories(): HasMany
    {
        return $this->hasMany(PasswordHistory::class);
    }
}

Method

Add the following code to the method that handles password changes:

use LoopLinguist\SecurePasswordPolicy\Http\HasPasswordHistory;

 if ((new HasPasswordHistory($request->input('password')))->hasHistory()) {
            return response()->json([
                'message' => 'Password found.'
            ], 409);
        }

Publish the config file with:

php artisan vendor:publish --tag=secure-password-policy-config

This is the content of the file that will be published in config/secure-password-policy.php

Publish the migrations with:

php artisan vendor:publish --tag=secure-password-policy-migrations    
php artisan migrate