1.9.2: Improve password regex to accept OWASP characters

* Passwd regex check now accepts all special chars * Set internal password validation regex to same as registration * Version bump --------- Co-authored-by: Jack Bailey <81699395+JackBailey@users.noreply.github.com>
Lynx-Shortener · May 14, 2024 · 149e2ec · 149e2ec
1 parent 91cef43
commit 149e2ec
Show file tree

Hide file tree

Showing 4 changed files with 7 additions and 3 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,5 +1,9 @@
 # Changelog
 
+## [1.9.2] - 2024-05-14
+
+- Improve password regex to accept OWASP characters 
+
 ## [1.9.1] - 2024-03-26
 
 - Remove vite-plugin-rewrite-all

diff --git a/VERSION b/VERSION
@@ -1 +1 @@
-1.9.1
+1.9.2
diff --git a/frontend/src/components/Dash/Register.vue b/frontend/src/components/Dash/Register.vue
@@ -30,7 +30,7 @@
                 name="password"
                 label="Password"
                 help="At least 1 lowercase, 1 uppercase, 1 number and 1 special character. Minimum of 12 characters"
-                :validation="[['required'], ['matches', /^(?=.*[a-z])(?=.*[A-Z])(?=.*\d)(?=.*[@$!%*?&._-])[A-Za-z\d@$!%*?&._-]{12,}$/]]"
+                :validation="[['required'], ['matches', /^(?=.*[a-z])(?=.*[A-Z])(?=.*\d)(?=.*\W)(?!.* ).{12,}$/]]"
                 :validation-messages="{
                     matches: 'Password does not match requirements.',
                 }"

diff --git a/src/db/modules/valid/password.js b/src/db/modules/valid/password.js
@@ -1 +1 @@
-module.exports = (password) => /^(?=.*[a-z])(?=.*[A-Z])(?=.*\d)(?=.*[@$!%*?&._-])[A-Za-z\d@$!%*?&._-]{12,}$/.test(password);
+module.exports = (password) => /^(?=.*[a-z])(?=.*[A-Z])(?=.*\d)(?=.*\W)(?!.* ).{12,}$/.test(password);
Original file line number	Diff line number	Diff line change
		@@ -1 +1 @@
		module.exports = (password) => /^(?=.[a-z])(?=.[A-Z])(?=.\d)(?=.[@$!%?&._-])[A-Za-z\d@$!%?&._-]{12,}$/.test(password);
		module.exports = (password) => /^(?=.[a-z])(?=.[A-Z])(?=.\d)(?=.\W)(?!.* ).{12,}$/.test(password);