tyler.durden/icingaweb2
1
0
Fork 0
mirror of https://github.com/Icinga/icingaweb2.git synced 2025-09-23 18:07:42 +02:00
Code Issues Packages Projects Releases Wiki Activity

codereview

Browse Source
This commit is contained in:
Jolien Trog 2025-09-11 13:28:29 +02:00
parent bcf8430dd6
commit a0147b8330
8 changed files with 36 additions and 42 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

23
application/forms/Account/ChangePasswordForm.php
View File

@ -4,8 +4,7 @@
namespace Icinga\Forms\Account;
use Icinga\Application\Config;
use Icinga\Application\ProvidedHook\CommonPasswordPolicy;
use Icinga\Application\ProvidedHook\NoPasswordPolicy;
use Icinga\Application\ProvidedHook\AnyPasswordPolicy;
use Icinga\Authentication\PasswordValidator;
use Icinga\Authentication\User\DbUserBackend;
use Icinga\Data\Filter\Filter;
@ -38,15 +37,15 @@ class ChangePasswordForm extends Form
*/
public function createElements(array $formData)
{
$passwordPolicy = Config::app()->get(
$passwordPolicyClass = Config::app()->get(
'global',
'password_policy',
NoPasswordPolicy::class
AnyPasswordPolicy::class
);
$passwordPolicyObject = new $passwordPolicy();
$passwordPolicyDescription = $passwordPolicyObject->getDescription();
if ($passwordPolicyDescription != '') {
$passwordPolicy = new $passwordPolicyClass();
$passwordPolicyDescription = $passwordPolicy->getDescription();
if ($passwordPolicyDescription !== '') {
$this->addDescription($passwordPolicyDescription);
}
@ -61,11 +60,11 @@ class ChangePasswordForm extends Form
$this->addElement(
'password',
'new_password',
array(
'label' => $this->translate('New Password'),
'required' => true,
'validators' => [new PasswordValidator($passwordPolicyObject)]
)
[
'label' => $this->translate('New Password'),
'required' => true,
'validators' => [new PasswordValidator($passwordPolicy)]
]
);
$this->addElement(
'password',

16
application/forms/Config/General/PasswordPolicyConfigForm.php
View File

@ -4,7 +4,7 @@
namespace Icinga\Forms\Config\General;
use Icinga\Application\Hook;
use Icinga\Application\ProvidedHook\NoPasswordPolicy;
use Icinga\Application\ProvidedHook\AnyPasswordPolicy;
use Icinga\Web\Form;
/**
@ -22,26 +22,22 @@ class PasswordPolicyConfigForm extends Form
public function createElements(array $formData): static
{
$passwordPolicies = [];
foreach (Hook::all('passwordpolicy') as $class => $policy) {
$passwordPolicies[$class] = $policy->getName();
}
asort($passwordPolicies);
$this->addElement(
'select',
'global_password_policy',
[
'description' => $this->translate(
'Enforce strong password requirements for new passwords'
),
'label' => $this->translate('Password Policy'),
'value' => NoPasswordPolicy::class,
'multiOptions' =>$passwordPolicies
'description' => $this->translate('Enforce password requirements for new passwords'),
'label' => $this->translate('Password Policy'),
'value' => AnyPasswordPolicy::class,
'multiOptions' => $passwordPolicies
]
);
return $this;
}
}

21
application/forms/Config/User/UserForm.php
View File

@ -5,8 +5,7 @@ namespace Icinga\Forms\Config\User;
use Icinga\Application\Config;
use Icinga\Application\Hook\ConfigFormEventsHook;
use Icinga\Application\ProvidedHook\CommonPasswordPolicy;
use Icinga\Application\ProvidedHook\NoPasswordPolicy;
use Icinga\Application\ProvidedHook\AnyPasswordPolicy;
use Icinga\Authentication\PasswordValidator;
use Icinga\Data\Filter\Filter;
use Icinga\Forms\RepositoryForm;
@ -21,14 +20,14 @@ class UserForm extends RepositoryForm
*/
protected function createInsertElements(array $formData)
{
$passwordPolicy = Config::app()->get(
$passwordPolicyClass = Config::app()->get(
'global',
'password_policy',
NoPasswordPolicy::class
AnyPasswordPolicy::class
);
$passwordPolicyObject = new $passwordPolicy();
$passwordPolicyDescription = $passwordPolicyObject->getDescription();
$passwordPolicy = new $passwordPolicyClass();
$passwordPolicyDescription = $passwordPolicy->getDescription();
if ($passwordPolicyDescription != '') {
$this->addDescription($passwordPolicyDescription);
}
@ -53,11 +52,11 @@ class UserForm extends RepositoryForm
$this->addElement(
'password',
'password',
array(
'required' => true,
'label' => $this->translate('Password'),
'validators' => [new PasswordValidator($passwordPolicyObject)]
)
[
'required' => true,
'label' => $this->translate('Password'),
'validators' => [new PasswordValidator($passwordPolicy)]
]
);
$this->setTitle($this->translate('Add a new user'));

2
doc/05-Authentication.md
View File

@ -162,7 +162,7 @@ in order to manually create users directly inside the database.
Icinga Web 2 supports password policies when using database authentication.
You can configure this under **Configuration > Application > General**.
By default, no password policy is enforced ('None').
By default, no password policy is enforced ('Any').
Icinga Web 2 provides a built-in policy called 'Common' with the following requirements:
* Minimum length of 12 characters

4
library/Icinga/Application/ApplicationBootstrap.php
View File

@ -8,7 +8,7 @@ use ErrorException;
use Exception;
use Icinga\Application\ProvidedHook\DbMigration;
use Icinga\Application\ProvidedHook\CommonPasswordPolicy;
use Icinga\Application\ProvidedHook\NoPasswordPolicy;
use Icinga\Application\ProvidedHook\AnyPasswordPolicy;
use ipl\I18n\GettextTranslator;
use ipl\I18n\StaticTranslator;
use LogicException;
@ -743,7 +743,7 @@ abstract class ApplicationBootstrap
{
Hook::register('DbMigration', DbMigration::class, DbMigration::class);
Hook::register('passwordpolicy', CommonPasswordPolicy::class, CommonPasswordPolicy::class);
Hook::register('passwordpolicy', NoPasswordPolicy::class, NoPasswordPolicy::class);
Hook::register('passwordpolicy', AnyPasswordPolicy::class, AnyPasswordPolicy::class);
return $this;
}

4
library/Icinga/Application/ProvidedHook/NoPasswordPolicy.php → library/Icinga/Application/ProvidedHook/AnyPasswordPolicy.php
View File

@ -9,13 +9,13 @@ use ipl\I18n\Translation;
/**
* None Password Policy to validate all passwords
*/
class NoPasswordPolicy implements PasswordPolicyHook
class AnyPasswordPolicy implements PasswordPolicyHook
{
use Translation;
public function getName(): string
{
return $this->translate('None');
return $this->translate('Any');
}
public function getDescription(): string

0
modules/password-policy
View File

8
test/php/library/Icinga/Application/NoPasswordPolicyTest.php → test/php/library/Icinga/Application/AnyPasswordPolicyTest.php
View File

@ -4,20 +4,20 @@ namespace Tests\Icinga\Application;
use Icinga\Application\Hook\PasswordPolicyHook;
use PHPUnit\Framework\TestCase;
use Icinga\Application\ProvidedHook\NoPasswordPolicy;
use Icinga\Application\ProvidedHook\AnyPasswordPolicy;
class NoPasswordPolicyTest extends TestCase
class AnyPasswordPolicyTest extends TestCase
{
private PasswordPolicyHook $instance;
public function setUp(): void
{
$this->instance = new NoPasswordPolicy();
$this->instance = new AnyPasswordPolicy();
}
public function testMethodGetName(): void
{
$this->assertSame('None', $this->instance->getName());
$this->assertSame('Any', $this->instance->getName());
}
public function testValidatePasswordValid(): void