litvinovg/vitro
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Merge pull request #366 from litvinovg/password_limit

Browse source 
raised password length limit to 64 characters
This commit is contained in:
Dragan Ivanovic 2023-02-27 15:27:25 +01:00 committed by GitHub
commit 9b6e362480
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 3 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
api/src/main/java/edu/cornell/mannlib/vitro/webapp/beans/UserAccount.java
View file

@ -15,7 +15,7 @@ import org.apache.commons.lang3.RandomStringUtils;
*/ */
public class UserAccount { public class UserAccount {
public static final int MIN_PASSWORD_LENGTH = 6; public static final int MIN_PASSWORD_LENGTH = 6;
public static final int MAX_PASSWORD_LENGTH = 12; public static final int MAX_PASSWORD_LENGTH = 64;
public enum Status { public enum Status {
ACTIVE, INACTIVE; ACTIVE, INACTIVE;

3
api/src/test/java/edu/cornell/mannlib/vitro/webapp/controller/authenticate/ProgramLoginTest.java
View file

@ -14,6 +14,7 @@ import java.util.Collections;
import javax.servlet.ServletException; import javax.servlet.ServletException;
import org.apache.commons.lang3.RandomStringUtils;
import org.apache.commons.logging.Log; import org.apache.commons.logging.Log;
import org.apache.commons.logging.LogFactory; import org.apache.commons.logging.LogFactory;
import org.junit.After; import org.junit.After;
@ -156,7 +157,7 @@ public class ProgramLoginTest extends AbstractTestClass {
@Test @Test
public void newPasswordTooLong() { public void newPasswordTooLong() {
executeRequest(NEW_USER_NAME, NEW_USER_PASSWORD, "reallyLongPassword"); executeRequest(NEW_USER_NAME, NEW_USER_PASSWORD, RandomStringUtils.randomAlphanumeric(UserAccount.MAX_PASSWORD_LENGTH + 1));
assert403(); assert403();
} }