mirror of
https://github.com/alrayyes/wiki.git
synced 2024-11-29 14:36:22 +00:00
31 lines
578 B
Markdown
31 lines
578 B
Markdown
|
---
|
||
|
id: 1b282a21-2736-404a-a788-5a362fcba479
|
||
|
title: Compromised Password Constraint
|
||
|
---
|
||
|
|
||
|
# Description
|
||
|
|
||
|
Internally, the constraint makes an HTTP request to the API provided by
|
||
|
the haveibeenpwned.com website. In the request, the validator doesn't
|
||
|
send the raw password but only the few first characters of the result of
|
||
|
encoding it using SHA-1.
|
||
|
|
||
|
# Syntax
|
||
|
|
||
|
``` php
|
||
|
// src/Entity/User.php
|
||
|
namespace App\Entity;
|
||
|
|
||
|
use Symfony\Component\Validator\Constraints as Assert;
|
||
|
|
||
|
class User
|
||
|
{
|
||
|
// ...
|
||
|
|
||
|
/**
|
||
|
* @Assert\NotCompromisedPassword
|
||
|
*/
|
||
|
protected $rawPassword;
|
||
|
}
|
||
|
```
|