feat: enhance password security with validation checks

- Import the `re` module for regular expressions. - Update the password field to require a minimum length of 8 characters. - Add a password validation method to ensure the password contains at least one number. Signed-off-by: kyo <[email protected]>
kyomind · Sep 23, 2024 · 2d9840a · 2d9840a
1 parent aea8d4d
commit 2d9840a
Showing 1 changed file with 14 additions and 1 deletion.
diff --git a/user/schemas.py b/user/schemas.py
@@ -1,8 +1,21 @@
+import re
+
 from ninja import Field, Schema
+from pydantic import field_validator
 
 
 class CreateUserRequest(Schema):
     username: str = Field(examples=['Alice'])
     email: str = Field(examples=['[email protected]'])
-    password: str = Field(examples=["password123"])
+    password: str = Field(min_length=8, examples=["password123"])
     bio: str | None = Field(default=None, examples=['Hello, I am Alice.'])
+
+    @field_validator('password')
+    @classmethod
+    def validate_password_contains_number(cls, v: str) -> str:
+        """
+        驗證密碼至少包含一個數字
+        """
+        if not re.search(r'\d', v):
+            raise ValueError('密碼必須包含至少一個數字')
+        return v