django-pwned-validator

A Pwned Passwords validator for Django

These details have not been verified by PyPI

Project links

Homepage

Environment
- Web Environment
Framework
Intended Audience
- Developers
License
- OSI Approved :: MIT License
Operating System
- OS Independent
Programming Language

Project description

Django Pwned Passwords Validator
================================

This package provides a password validator for Django that checks submitted
passwords against the `Pwned Passwords API <https://haveibeenpwned.com/API/v2>`_.

To protect the security of the password being checked a range search is used. Specifically,
only the first 5 characters of a SHA-1 password hash are sent to the API. The
validator then locally looks for the full hash in the range returned.

Installation
~~~~~~~~~~~~

.. code-block:: sh

pip install django-pwned-validator

Modify your `settings.py` to install the app and enable the validator:

.. code-block:: python

INSTALLED_APPS = [
'pwned',
...
]

AUTH_PASSWORD_VALIDATORS = [
{
'NAME': 'pwned.validators.PwnedValidator',
},
...
]

Compatibility
~~~~~~~~~~~~
Supports Django 1.11.x and 2.0 on Python 3.5 and 3.6.

Project details

These details have not been verified by PyPI

Project links

Homepage

Environment
- Web Environment
Framework
Intended Audience
- Developers
License
- OSI Approved :: MIT License
Operating System
- OS Independent
Programming Language

Release history Release notifications | RSS feed

0.0.6

May 11, 2021

0.0.5

May 7, 2021

0.0.4

Apr 28, 2021

0.0.3

Mar 2, 2018

This version

0.0.2

Mar 1, 2018

0.0.1

Mar 1, 2018

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

django-pwned-validator-0.0.2.tar.gz (5.9 kB view hashes)

Uploaded Mar 1, 2018 Source

Built Distribution

django_pwned_validator-0.0.2-py3-none-any.whl (5.6 kB view hashes)

Uploaded Mar 1, 2018 Python 3

Hashes for django-pwned-validator-0.0.2.tar.gz

Hashes for django-pwned-validator-0.0.2.tar.gz
Algorithm	Hash digest
SHA256	`c55a7053aa4e142c0b93926af31c77a3a30b8265ee8a0ded55e7123c48744259`
MD5	`f533cbbf685bc998a256e602ce258202`
BLAKE2b-256	`b7cf4dd0b18b9410893762d07dc30e399c657ea93cac53053ad2c11a0247489b`

Hashes for django_pwned_validator-0.0.2-py3-none-any.whl

Hashes for django_pwned_validator-0.0.2-py3-none-any.whl
Algorithm	Hash digest
SHA256	`53af0e24d5c5565913c21d1e2512221a25aa22bb629c26f59baa0bc13abfc859`
MD5	`c60834fe27e942682b7ce618a37a3fdd`
BLAKE2b-256	`2a2bbeeb73627052b3f20af7eea575661db56c77236986db0efce53ab32bc007`