passay
passay copied to clipboard
vt-middleware
Password policy enforcement for Java.
It would be convenient to be able to get the generated password from `PasswordGenerator` as a `char[]` or `CharBuffer`. This would allow us to wipe out contents in the array...
They seem to be thread-safe. But it says nothing about thread safety in the Javadocs. Some clarification would be good.
Similar map of messages, one for each rule, that could be obtained from a PasswordValidator instance for the configured rules. The expected use would be to display to a user...
Hello, May be you could add a SonarCloud analysis to your travis CI. For an example, you could see it at a my fork : - https://sonarcloud.io/project/issues?id=farnulfo_passay&resolved=false - https://github.com/farnulfo/passay I...
I'm not sure there is need for an entire class just to set two fields and call a utility method with the two fields as parameters... One can just call...
This is a general design note, perhaps for a 2.0.0 release since it breaks backwards compatibility: I would suggest maybe to reorganize the org.passay package into separate sub-packages - one...
Currently the PasswordGenerator only takes a List of CharacterRule. It could benefit from also accepting CharacterCharacteristicsRule as well as AllowedCharacterRule as the two contain unique character pools, and it would...
There are instructions provided to change the messages, but since getMessage is protected it can't be called from outside Passay. It would be great to be able to get the...
For instance: `IllegalFirstCharacterRule(EnglishCharacterData.Digit) - Password cannot start with a digit.` `AllowedFirstCharacterRule(EnglishCharacterData.Alphabetical) - Password must start with a letter.` I know something very similar can be achieved using AllowedCharacterRule and IllegalCharacterRule,...
