Skip to content

xy3/v-password-validator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
.editorconfig
.editorconfig
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
v.mod
v.mod
 
 
validate.v
validate.v
 
 
validate_test.v
validate_test.v
 
 
vpkg.json
vpkg.json
 
 

Repository files navigation

v-password-validator

Simple password validator using raw entropy values, written in V.

Heavily influenced by go-password-validator

🚀 Quick Start

import xy3.passwordvalidator

fn main(){
    entropy := passwordvalidator.get_entropy("a longer password")
    // entropy is a f64, representing the strength in base 2 (bits)

    min_entropy_bits := 60
    passwordvalidator.validate("some password", min_entropy_bits) or { panic(err) }
    // if the password has enough entropy, nothing is returned
    // otherwise, a formatted error message is provided explaining
    // how to increase the strength of the password
    // (safe to show to the client)
}

What Entropy Value Should I Use?

It's up to you. That said, here is a graph that shows some common timings for different values, somewhere in the 50-70 range seems "reasonable".

Keep in mind that attackers likely aren't just brute-forcing passwords, if you want protection against common passwords or PWNed passwords you'll need to do additional work. This library is lightweight, doesn't load large datasets, and doesn't contact external services.

About

Validate the Strength of a Password in V

vpm.vlang.io/packages/xy3.passvalid

Topics

security password password-strength password-validator vlang vlang-library vlang-module

Resources

Readme

License

MIT license
Activity

Stars

8 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 2

v0.1.0 Latest
Feb 4, 2022
1 release

Languages