MirrorSave
/
budibase
mirror of https://github.com/Budibase/budibase.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
budibase/packages/backend-core/src/security/auth.ts

25 lines
655 B
TypeScript
Raw Normal View History

Adding an option to disable password validation when creating an admin user - this means that the environment variables used for BB_ADMIN creation can have any length of password (not breaking change).
2024-01-05 14:17:10 +01:00
import env from "../environment"
Remove limits from password in dev
2024-01-02 16:58:47 +01:00
Adding an option to disable password validation when creating an admin user - this means that the environment variables used for BB_ADMIN creation can have any length of password (not breaking change).
2024-01-05 14:17:10 +01:00
export const PASSWORD_MIN_LENGTH = +(env.PASSWORD_MIN_LENGTH || 8)
export const PASSWORD_MAX_LENGTH = +(env.PASSWORD_MAX_LENGTH || 512)
Validate password in backend-core
2024-01-02 12:29:27 +01:00
export function validatePassword(
password: string
): { valid: true } | { valid: false; error: string } {
Increase limits
2024-01-02 16:38:58 +01:00
if (!password || password.length < PASSWORD_MIN_LENGTH) {
Copy change
2024-01-02 13:22:38 +01:00
return {
valid: false,
Use env variables instead of checking if isdev
2024-01-03 10:12:22 +01:00
error: `Password invalid. Minimum ${PASSWORD_MIN_LENGTH} characters.`,
Copy change
2024-01-02 13:22:38 +01:00
}
Validate password in backend-core
2024-01-02 12:29:27 +01:00
}
Increase limits
2024-01-02 16:38:58 +01:00
if (password.length > PASSWORD_MAX_LENGTH) {
Add max limit
2024-01-02 15:16:09 +01:00
return {
valid: false,
Increase limits
2024-01-02 16:38:58 +01:00
error: `Password invalid. Maximum ${PASSWORD_MAX_LENGTH} characters.`,
Add max limit
2024-01-02 15:16:09 +01:00
}
}
Validate password in backend-core
2024-01-02 12:29:27 +01:00
return { valid: true }
}