snipershady/pwned-password-check

Easy to use PHP Implementation of the free API haveibeenpwned.com

Maintainers

Details

github.com/snipershady/pwned-password-check

Homepage

Source

Issues

Installs: 283

Dependents: 0

Suggesters: 0

Security: 0

Stars: 0

Watchers: 1

Forks: 0

Open Issues: 0

pkg:composer/snipershady/pwned-password-check

v1.0.0 2022-09-30 17:32 UTC

Requires

Requires (Dev)

GPL-3.0-or-later f53b12e8d6678d93e0787af637c4944817795325

passwordpwnedhaveibeenpwned.com

This package is auto-updated.

Last update: 2025-09-29 03:06:23 UTC

README

Easy to use PHP Implementation of the free API haveibeenpwned.com

composer require snipershady/pwned-password-check

Context

You want to check if a password was already been pwned (same password has been hacked from another website) and then if it is safe to be used. This check could be used as a service during a registration form, for example, maybe with an async call, as you prefer.

use PwnedPassCheck\Service\PwnedPasswordCheckerService;

class fooClass(){
    public function checkIfPasswordHasBeenPowned(): string {
          $pownedPassChecker = new PwnedPasswordCheckerService();
          if(pownedPassChecker->hasPowned($password)){
            return json_encode(["powned" => true, "msg"=> "Your password has been powned and is unsafe"]);
          }
          return return json_encode(["powned" => false, "msg"=> "Your password was not been powned"]);
    }
}