Skip to content

Commit

Permalink
added max length for user passwords
Browse files Browse the repository at this point in the history
  • Loading branch information
@albogdano
albogdano committed May 18, 2022
1 parent 9d844f3 commit 735f696
Show file tree
Hide file tree
Showing 2 changed files with 12 additions and 3 deletions.
8 changes: 7 additions & 1 deletion para-core/src/main/java/com/erudika/para/core/User.java
View file
Expand Up @@ -32,6 +32,7 @@
import java.util.HashMap;
import java.util.List;
import java.util.Objects;
import javax.validation.constraints.Max;
import javax.validation.constraints.NotBlank;
import org.apache.commons.lang3.StringUtils;
import org.slf4j.Logger;
Expand All @@ -45,6 +46,11 @@ public class User implements ParaObject {
private static final long serialVersionUID = 1L;
private static Logger logger = LoggerFactory.getLogger(User.class);

/**
* Maximum password length.
*/
public static final int MAX_PASSWORD_LENGTH = 500;

@Stored @Locked private String id;
@Stored @Locked private Long timestamp;
@Stored @Locked private String type;
Expand Down Expand Up @@ -74,7 +80,7 @@ public class User implements ParaObject {
@Stored private String idpAccessToken;
@Stored private String idpRefreshToken;

private transient String password;
private transient @Max(MAX_PASSWORD_LENGTH) String password;

/**
* No-args constructor.
Expand Down
7 changes: 5 additions & 2 deletions para-core/src/main/java/com/erudika/para/core/validation/ValidationUtils.java
View file
Expand Up @@ -17,12 +17,13 @@
*/
package com.erudika.para.core.validation;

import com.erudika.para.core.annotations.Email;
import com.erudika.para.core.App;
import com.erudika.para.core.ParaObject;
import com.erudika.para.core.utils.ParaObjectUtils;
import com.erudika.para.core.Sysprop;
import com.erudika.para.core.User;
import com.erudika.para.core.annotations.Email;
import com.erudika.para.core.utils.Config;
import com.erudika.para.core.utils.ParaObjectUtils;
import com.erudika.para.core.utils.Utils;
import static com.erudika.para.core.validation.Constraint.digits;
import static com.erudika.para.core.validation.Constraint.email;
Expand Down Expand Up @@ -260,6 +261,8 @@ private static boolean isValidSimpleConstraint(String cName, String field, Objec
}
}
}
CORE_CONSTRAINTS.get(Utils.type(User.class)).put("password",
Collections.singletonMap("max", Constraint.max(User.MAX_PASSWORD_LENGTH).getPayload()));
}
return Collections.unmodifiableMap(CORE_CONSTRAINTS);
}
Expand Down

0 comments on commit 735f696

Please sign in to comment.