UNPKG

passbolt-styleguide

Version:

Passbolt styleguide contains common styling assets used by the different sites, plugin, etc.

www.passbolt.com

passbolt/passbolt_styleguide

104 lines (90 loc) 3.4 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
/** * Passbolt ~ Open source password manager for teams * Copyright (c) Passbolt SA (https://www.passbolt.com) * * Licensed under GNU Affero General Public License version 3 of the or any later version. * For full copyright and license information, please see the LICENSE.txt * Redistributions of files must retain the above copyright notice. * * @copyright Copyright (c) Passbolt SA (https://www.passbolt.com) * @license https://opensource.org/licenses/AGPL-3.0 AGPL License * @link https://www.passbolt.com Passbolt(tm) * @since 3.3.0 * * Generate a password following a configuration. * @param configuration The generator configuration */ import {SecretGeneratorComplexity} from "./SecretGeneratorComplexity"; /** * The list of look-alike substitution */ const charactersToExclude = ["O", "l", "|", "I", "0", "1"]; /** * Returns a number between the given min and max * @param min The minimum number * @param max The maximum number */ function randomNumberRange(min, max) { const arr = new Uint32Array(1); window.crypto.getRandomValues(arr); const random = arr[0] / (0xffffffff + 1); return Math.floor(random * (max - min + 1)) + min; } /** * Exclude look-alike characters * @param characterArray A given character array * @return {array} */ function excludeLookAlikeCharacters(characterArray) { if (!characterArray) { return characterArray; } const filterExcludedCharacters = (newCharacterArray, character) => { if (!charactersToExclude.includes(character)) { newCharacterArray.push(character); } return newCharacterArray; }; return characterArray.reduce(filterExcludedCharacters, []); } /** * Returns a generated password given a generator configuration * @param configuration The generator configuration */ function generate(configuration) { const mustExcludeLookAlikeCharacters = configuration.default_options.look_alike; let secret = ''; let mask = []; const availableMasks = configuration.masks.filter(mask => mask.active); const secretLength = configuration.default_options.length; const canGenerate = availableMasks.length > 0 && (secretLength >= configuration.default_options.min_length && secretLength <= configuration.default_options.max_length); if (canGenerate) { // Build the mask to use to generate a secret. mask = availableMasks.reduce((mask, currentMask) => [...mask, ...currentMask.characters], []); if (mustExcludeLookAlikeCharacters) { mask = excludeLookAlikeCharacters(mask); } /* * Generate a password. Try to maximize the entropy of this one by fixing a goal entropy, if not reached keep * the password with the highest entropy. Try maximum 10 times. */ let attempt = 0; const goalEntropy = Math.floor(SecretGeneratorComplexity.calculEntropy(secretLength, mask.length)); let secretEntropy = 0; do { let newSecret = ''; for (let i = 0; i < secretLength; i++) { newSecret += mask[randomNumberRange(0, mask.length - 1)]; } const newSecretEntropy = SecretGeneratorComplexity.entropyPassword(newSecret); if (newSecretEntropy > secretEntropy) { secret = newSecret; secretEntropy = newSecretEntropy; } } while (secretEntropy < goalEntropy && attempt++ < 10); } return secret; } export const PasswordGenerator = {generate};