Class: LesliShield::UserValidatorService

Inherits:

Lesli::ApplicationLesliService

• Object
• Lesli::ApplicationLesliService
• LesliShield::UserValidatorService

Defined in:

app/services/lesli_shield/user_validator_service.rb

Instance Method Summary

• #password_complexity(password) ⇒ Object

  validates if password meet with the minimum password requirements this settings are stored in the account_settings table.

• #valid? ⇒ Boolean
• #validate ⇒ Object

Instance Method Details

#password_complexity(password) ⇒ Object

validates if password meet with the minimum password requirements this settings are stored in the account_settings table

# File 'app/services/lesli_shield/user_validator_service.rb', line 46

def password_complexity(password)

    if password.blank?
        failures.push('error_password_cannot_be_blank') 
        return self
    end

    # remove all the special characters for easy validations of some rules
    password_string_no_special = password.gsub(/[^0-9A-Za-z]/, '')

    # database keys with the parameters to validate
    password_values = [
        'password_expiration_time_days',
        'password_enforce_complexity',
        'password_special_char_count',
        'password_lowercase_count',
        'password_uppercase_count',
        'password_minimum_length',
        'password_digit_count'
    ].map do |setting_name|
        "name = '#{setting_name}'"
    end

    password_settings = []

    # get password settings from the database
    if @resource.account

        # if user is already registered
        password_settings = @resource.account.settings.where(password_values.join(" or "))

    elseif Account.first

        # for new accounts just take the first account in the database
        password_settings = Account.first.settings.where(password_values.join(" or "))

    end

    password_settings.each do |settings|

        # exit validations if password complexity is not enabled
        if settings[:name] == 'password_enforce_complexity' && settings[:value] != "1"
            failures = []
            break
        end

        # check if the password has te minimum number of special characters required
        if settings[:name] == 'password_special_char_count'

            # this regex removes all "normal" letters and numbers leaving special characters
            if settings[:value].to_i > password.scan(/[^0-9A-Za-z]/).length
                failures.push('error_password_special_char_count')
            end

        end

        # check if the password has te minimum number of lowercase letters required
        if settings[:name] == 'password_lowercase_count'

            if settings[:value].to_i > password_string_no_special.scan(/[^0-9A-Z]/).length
                failures.push('error_password_lowercase_count')
            end

        end

        # check if the password has te minimum number of uppercase letters required
        if settings[:name] == 'password_uppercase_count'

            if settings[:value].to_i > password_string_no_special.scan(/[^0-9a-z]/).length
                failures.push('error_password_uppercase_count')
            end

        end

        # check if the password has te minium number of numbers required xD
        if settings[:name] == 'password_digit_count'

            if settings[:value].to_i > password_string_no_special.scan(/[^A-Za-z]/).length
                failures.push('error_password_digit_count')
            end

        end

        # check if the password has te minimum size required
        if settings[:name] == 'password_minimum_length'

            if settings[:value].to_i > password.length
                failures.push('error_password_minimum_length')
            end

        end

    end

    return self

end

#valid? ⇒ Boolean

Returns:

• (Boolean)

# File 'app/services/lesli_shield/user_validator_service.rb', line 144

def valid?
    failures.empty?
end

#validate ⇒ Object

# File 'app/services/lesli_shield/user_validator_service.rb', line 36

def validate 
    active?()
    confirmed?()
    roles_empty?()
    active_roles?()
end