msb_6557
/
opsli-boot
mirror of https://github.com/hiparker/opsli-boot.git
1
1
Code Issues Projects Releases Wiki Activity

新增用户密码强度检测

Browse Source
v1.4.1
Parker 4 years ago
parent 6ea33542ab
commit 8c3d982368
2 changed files with 379 additions and 2 deletions
Show Stats Download Patch File Download Diff File

373
opsli-base-support/opsli-common/src/main/java/org/opsli/common/utils/CheckStrength.java
Unescape View File

@ -0,0 +1,373 @@
package org.opsli.common.utils;
/**
*
*
* @author venshine
*/
public class CheckStrength {
public enum LEVEL {
/** 密码等级 */
EASY("0", "低"),
MIDIUM("1", "中"),
STRONG("2", "高"),
VERY_STRONG("3", "很高"),
EXTREMELY_STRONG("4", "非常高")
;
private final String code;
private final String desc;
public static LEVEL getLevel(String code) {
LEVEL[] var1 = values();
for (LEVEL type : var1) {
if (type.code.equalsIgnoreCase(code)) {
return type;
}
}
return null;
}
public String getCode() {
return this.code;
}
public String getDesc() {
return this.desc;
}
// =================
LEVEL(final String code, final String desc) {
this.code = code;
this.desc = desc;
}
}
/**
* NUM
* SMALL_LETTER
* CAPITAL_LETTER
* OTHER_CHAR
*/
private static final int NUM = 1;
private static final int SMALL_LETTER = 2;
private static final int CAPITAL_LETTER = 3;
private static final int OTHER_CHAR = 4;
/**
*
*/
private final static String[] DICTIONARY = {"password", "abc123", "iloveyou", "adobe123", "123123", "sunshine",
"1314520", "a1b2c3", "123qwe", "aaa111", "qweasd", "admin", "passwd", "123456", "000000"};
/**
*num
*
* @param c
* @return
*/
private static int checkCharacterType(char c) {
if (c >= 48 && c <= 57) {
return NUM;
}
if (c >= 65 && c <= 90) {
return CAPITAL_LETTER;
}
if (c >= 97 && c <= 122) {
return SMALL_LETTER;
}
return OTHER_CHAR;
}
/**
*
*
* @param passwd
* @param type
* @return
*/
private static int countLetter(String passwd, int type) {
int count = 0;
if (null != passwd && passwd.length() > 0) {
for (char c : passwd.toCharArray()) {
if (checkCharacterType(c) == type) {
count++;
}
}
}
return count;
}
/**
*
*
* @param passwd
* @return strength level
*/
public static int checkPasswordStrength(String passwd) {
if (StringUtils.equalsNull(passwd)) {
throw new IllegalArgumentException("password is empty");
}
int len = passwd.length();
int level = 0;
// 增加点
//判断密码是否含有数字有level++
if (countLetter(passwd, NUM) > 0) {
level++;
}
//判断密码是否含有小写字母有level++
if (countLetter(passwd, SMALL_LETTER) > 0) {
level++;
}
//判断密码是否还有大写字母有level++
if (len > 4 && countLetter(passwd, CAPITAL_LETTER) > 0) {
level++;
}
//判断密码是否还有特殊字符有level++
if (len > 6 && countLetter(passwd, OTHER_CHAR) > 0) {
level++;
}
//密码长度大于4并且2种类型组合......(不一一概述)
if (len > 4 && countLetter(passwd, NUM) > 0 && countLetter(passwd, SMALL_LETTER) > 0
|| countLetter(passwd, NUM) > 0 && countLetter(passwd, CAPITAL_LETTER) > 0
|| countLetter(passwd, NUM) > 0 && countLetter(passwd, OTHER_CHAR) > 0
|| countLetter(passwd, SMALL_LETTER) > 0 && countLetter(passwd, CAPITAL_LETTER) > 0
|| countLetter(passwd, SMALL_LETTER) > 0 && countLetter(passwd, OTHER_CHAR) > 0
|| countLetter(passwd, CAPITAL_LETTER) > 0 && countLetter(passwd, OTHER_CHAR) > 0) {
level++;
}
//密码长度大于6并且3中类型组合......(不一一概述)
if (len > 6 && countLetter(passwd, NUM) > 0 && countLetter(passwd, SMALL_LETTER) > 0
&& countLetter(passwd, CAPITAL_LETTER) > 0 || countLetter(passwd, NUM) > 0
&& countLetter(passwd, SMALL_LETTER) > 0 && countLetter(passwd, OTHER_CHAR) > 0
|| countLetter(passwd, NUM) > 0 && countLetter(passwd, CAPITAL_LETTER) > 0
&& countLetter(passwd, OTHER_CHAR) > 0 || countLetter(passwd, SMALL_LETTER) > 0
&& countLetter(passwd, CAPITAL_LETTER) > 0 && countLetter(passwd, OTHER_CHAR) > 0) {
level++;
}
//密码长度大于8并且4种类型组合......(不一一概述)
if (len > 8 && countLetter(passwd, NUM) > 0 && countLetter(passwd, SMALL_LETTER) > 0
&& countLetter(passwd, CAPITAL_LETTER) > 0 && countLetter(passwd, OTHER_CHAR) > 0) {
level++;
}
//密码长度大于6并且2种类型组合每种类型长度大于等于3或者2......(不一一概述)
if (len > 6 && countLetter(passwd, NUM) >= 3 && countLetter(passwd, SMALL_LETTER) >= 3
|| countLetter(passwd, NUM) >= 3 && countLetter(passwd, CAPITAL_LETTER) >= 3
|| countLetter(passwd, NUM) >= 3 && countLetter(passwd, OTHER_CHAR) >= 2
|| countLetter(passwd, SMALL_LETTER) >= 3 && countLetter(passwd, CAPITAL_LETTER) >= 3
|| countLetter(passwd, SMALL_LETTER) >= 3 && countLetter(passwd, OTHER_CHAR) >= 2
|| countLetter(passwd, CAPITAL_LETTER) >= 3 && countLetter(passwd, OTHER_CHAR) >= 2) {
level++;
}
//密码长度大于8并且3种类型组合每种类型长度大于等于3或者2......(不一一概述)
if (len > 8 && countLetter(passwd, NUM) >= 2 && countLetter(passwd, SMALL_LETTER) >= 2
&& countLetter(passwd, CAPITAL_LETTER) >= 2 || countLetter(passwd, NUM) >= 2
&& countLetter(passwd, SMALL_LETTER) >= 2 && countLetter(passwd, OTHER_CHAR) >= 2
|| countLetter(passwd, NUM) >= 2 && countLetter(passwd, CAPITAL_LETTER) >= 2
&& countLetter(passwd, OTHER_CHAR) >= 2 || countLetter(passwd, SMALL_LETTER) >= 2
&& countLetter(passwd, CAPITAL_LETTER) >= 2 && countLetter(passwd, OTHER_CHAR) >= 2) {
level++;
}
//密码长度大于10并且4种类型组合每种类型长度大于等于2......(不一一概述)
if (len > 10 && countLetter(passwd, NUM) >= 2 && countLetter(passwd, SMALL_LETTER) >= 2
&& countLetter(passwd, CAPITAL_LETTER) >= 2 && countLetter(passwd, OTHER_CHAR) >= 2) {
level++;
}
//特殊字符>=3 level++;
if (countLetter(passwd, OTHER_CHAR) >= 3) {
level++;
}
//特殊字符>=6 level++;
if (countLetter(passwd, OTHER_CHAR) >= 6) {
level++;
}
//长度>12 >16 level++
if (len > 12) {
level++;
if (len >= 16) {
level++;
}
}
// 减少点
if ("abcdefghijklmnopqrstuvwxyz".indexOf(passwd) > 0 || "ABCDEFGHIJKLMNOPQRSTUVWXYZ".indexOf(passwd) > 0) {
level--;
}
if ("qwertyuiop".indexOf(passwd) > 0 || "asdfghjkl".indexOf(passwd) > 0 || "zxcvbnm".indexOf(passwd) > 0) {
level--;
}
if (StringUtils.isNumeric(passwd) && ("01234567890".indexOf(passwd) > 0 || "09876543210".indexOf(passwd) > 0)) {
level--;
}
if (countLetter(passwd, NUM) == len || countLetter(passwd, SMALL_LETTER) == len
|| countLetter(passwd, CAPITAL_LETTER) == len) {
level--;
}
if (len % 2 == 0) { // aaabbb
String part1 = passwd.substring(0, len / 2);
String part2 = passwd.substring(len / 2);
if (part1.equals(part2)) {
level--;
}
if (StringUtils.isCharEqual(part1) && StringUtils.isCharEqual(part2)) {
level--;
}
}
if (len % 3 == 0) { // ababab
String part1 = passwd.substring(0, len / 3);
String part2 = passwd.substring(len / 3, len / 3 * 2);
String part3 = passwd.substring(len / 3 * 2);
if (part1.equals(part2) && part2.equals(part3)) {
level--;
}
}
if (StringUtils.isNumeric(passwd) && len >= 6) { // 19881010 or 881010
int year = 0;
if (len == 8 || len == 6) {
year = Integer.parseInt(passwd.substring(0, len - 4));
}
int size = StringUtils.sizeOfInt(year);
int month = Integer.parseInt(passwd.substring(size, size + 2));
int day = Integer.parseInt(passwd.substring(size + 2, len));
if (year >= 1950 && year < 2050 && month >= 1 && month <= 12 && day >= 1 && day <= 31) {
level--;
}
}
if (null != DICTIONARY) {// dictionary
for (String s : DICTIONARY) {
if (passwd.equals(s) || s.contains(passwd)) {
level--;
break;
}
}
}
if (len <= 6) {
level--;
if (len <= 4) {
level--;
if (len <= 3) {
level = 0;
}
}
}
if (StringUtils.isCharEqual(passwd)) {
level = 0;
}
if (level < 0) {
level = 0;
}
return level;
}
/**
*
*
* @param passwd
* @return
*/
public static LEVEL getPasswordLevel(String passwd) {
int level = checkPasswordStrength(passwd);
switch (level) {
case 0:
case 1:
case 2:
case 3:
return LEVEL.EASY;
case 4:
case 5:
case 6:
return LEVEL.MIDIUM;
case 7:
case 8:
case 9:
return LEVEL.STRONG;
case 10:
case 11:
case 12:
return LEVEL.VERY_STRONG;
default:
return LEVEL.EXTREMELY_STRONG;
}
}
/**
*
*
* @author venshine
*/
public static class StringUtils {
private final static int[] SIZE_TABLE = {9, 99, 999, 9999, 99999, 999999, 9999999, 99999999, 999999999,
Integer.MAX_VALUE};
/**
*
*
* @param x
* @return
*/
public static int sizeOfInt(int x) {
for (int i = 0; ; i++){
if (x <= SIZE_TABLE[i]) {
return i + 1;
}
}
}
/**
*
*
* @param str
* @return
*/
public static boolean isCharEqual(String str) {
return str.replace(str.charAt(0), ' ').trim().length() == 0;
}
/**
*
*
* @param str
* @return
*/
public static boolean isNumeric(String str) {
for (int i = str.length(); --i >= 0; ) {
if (!Character.isDigit(str.charAt(i))) {
return false;
}
}
return true;
}
/**
* ()null
*
* @param str
* @return
*/
public static boolean equalsNull(String str) {
int strLen;
if (str == null || (strLen = str.length()) == 0 || str.equalsIgnoreCase("null")) {
return true;
}
for (int i = 0; i < strLen; i++) {
if ((!Character.isWhitespace(str.charAt(i)))) {
return false;
}
}
return true;
}
}
public static void main(String[] args) {
LEVEL aaaa = CheckStrength.getPasswordLevel("aaaa!@#.aaA123jakj1jjakji9s9a90akjAAaJh1Hk1J!h(asjhsa");
System.out.println(aaaa.getDesc());
}
}

8
opsli-modulars/opsli-modulars-system/src/main/java/org/opsli/modulars/system/user/web/UserRestController.java
Unescape View File

@ -39,6 +39,7 @@ import org.opsli.common.annotation.RequiresPermissionsCus;
import org.opsli.common.constants.MyBatisConstants;
import org.opsli.common.exception.ServiceException;
import org.opsli.common.exception.TokenException;
import org.opsli.common.utils.CheckStrength;
import org.opsli.common.utils.HumpUtil;
import org.opsli.common.utils.WrapperUtil;
import org.opsli.core.base.controller.BaseRestController;
@ -112,13 +113,16 @@ public class UserRestController extends BaseRestController<SysUser, UserModel, I
throw new TokenException(TokenMsg.EXCEPTION_TOKEN_LOSE_EFFICACY);
}
// 个人信息 清除敏感信息
user.setPassword(null);
List<String> userRolesByUserId = UserUtil.getUserRolesByUserId(user.getId());
List<String> userAllPermsByUserId = UserUtil.getUserAllPermsByUserId(user.getId());
UserInfo userInfo = WrapperUtil.transformInstance(user, UserInfo.class);
userInfo.setRoles(userRolesByUserId);
userInfo.setPerms(userAllPermsByUserId);
// 获得密码强度
userInfo.setPasswordLevel(
CheckStrength.getPasswordLevel(user.getPassword()).getCode()
);
// 判断是否是超级管理员
if(StringUtils.equals(UserUtil.SUPER_ADMIN, user.getUsername())){

Write Preview
Loading…
Cancel
Save