Please enter url.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community. By clickin

Improve Password Length Validation for BCrypt Compatibility #47708

submited by
Style Pass
2023-03-21 22:00:06

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

This Pull Request has been created because we identified a need to improve password length validation for BCrypt compatibility in the ActiveModel::SecurePassword module. The current validation only considers the character count, which may not accurately reflect the byte size limit imposed by BCrypt.

Updating the validation to consider both character count and byte size. This ensures that passwords adhere to the 72-byte limit imposed by BCrypt while providing a more user-friendly error message for character count.

Adding a custom validation error message key :too_long_in_bytes for the byte size validation. This allows for better internationalization (i18n) support and customization of the error message when the byte size limit is exceeded.

Read more github.com/r...
Share :  
Leave a Comment
Related Posts

Automating certificate management with Azure and Let’s Encrypt

Comment

Password-authenticated key agreement

Comment

sniptt-official / snip-cli

Comment

Blood clots in people with severe Covid-19 may be related to abnormal antibody response – University of Reading

Comment

Testing 3rd party API access

Comment

How does Google Authenticator work? (Part 1)

Comment

fimbault's personal weblog

Comment

AuthPass - Password Manager | AuthPass.app Password Manager

Comment

Notesnook v1.4: Monographs, UI Updates, and Yearly Plan

Comment

koaning.io: Bad Labels

Comment
Recent Posts

Announcing two new LMS libraries

Comment

adding activitypub to humungus

Comment

DirectoryTree Authorization is a Native Role and Permission Management Package for Laravel

Comment

UMaine’s new 3D printer smashes former Guinness World Record to advance the next generation of advanced manufacturing - UMaine News - University of Maine

Comment

By-Product Valorization as a Means for the Brewing Industry to Move toward a Circular Bioeconomy

Comment

Scientists capture X-rays from upward positive lightning

Comment

A Chrome feature is creating enormous load on global root DNS servers

Comment

Learn one thing at a time | Lawrence Jones

Comment

Nightly Postgres Backups via GitHub Actions

Comment

'The party is over for developers looking for AI freebies' — Google terminates Gemini API free access within months amidst rumors that it could charge for AI search queries

Comment

Amazon should be forced to disclose how Jeff Bezos and others were instructed to use the Signal disappearing-message app, FTC says

Comment

I AM SO DISAPPOINTED WITH UBUNTU 24.04 😡

Comment

Google is feeling pretty pumped about a new way of showing you ads on YouTube

Comment

Do software companies actually have good margins?

Comment

Apple's Regular Mac Base RAM Boosts Ended When Tim Cook Took Over

Comment

Coding the Cloud: A Dive into Data Streaming with Gunnar Morling from Decodable

Comment

How to Fix The Most Common Problems of iPad  - Pqrmedia

Comment

The follow lie, and why it’s worse than ever

Comment

Getting the Current Time in C#: A Guide

Comment

Talos built Sonic to reduce the time it takes to read and write data from the network with minimal latency

Comment