Regular expression for complex password
Question
I need to validate passwords that needs to fulfill the following rules:
- Minimum length is 8 characters
- All characters need to be unique
- At least one of the characters is capitalized
- At least one character is a non-alphabetic character, a digit or a hyphen
- Non-alphabetic characters should not be placed as the first two or last two characters
I can't figure out how to validate this using regular expressions. Can anybody help me?
2 answers
solution1
5 ACCPTED 2014-12-11 14:59:44
^(?=.*[A-Z])(?=.*(?:\d|-))(?!.*(.).*\1)[a-zA-Z]{2}.{4,}[a-zA-Z]{2}$
Try this.See demo.
https://regex101.com/r/eZ0yP4/12
As you can see step by step all conditions are met with the help of lookahead.
(?=.*[AZ]) ===at least one Capital
(?=.*(?:\\d|-)) ===at least one digit or -
(?!.*(.).*\\1) === no duplicates
[a-zA-Z]{2}.{4,}[a-zA-Z]{2} ===alphabetic characters as first two and last two.
solution2
3 2014-12-11 15:10:52
You could use vt password library . Code is quite long, but it is easy to modify it and it is quite maintainable.
// password must be between 8 and 16 chars long
LengthRule lengthRule = new LengthRule(8, 16);
// don't allow whitespace
WhitespaceRule whitespaceRule = new WhitespaceRule();
// control allowed characters
CharacterCharacteristicsRule charRule = new CharacterCharacteristicsRule();
// require at least 1 digit in passwords
charRule.getRules().add(new DigitCharacterRule(1));
// require at least 1 non-alphanumeric char
charRule.getRules().add(new NonAlphanumericCharacterRule(1));
// require at least 1 upper case char
charRule.getRules().add(new UppercaseCharacterRule(1));
// require at least 1 lower case char
charRule.getRules().add(new LowercaseCharacterRule(1));
// require at least 3 of the previous rules be met
charRule.setNumberOfCharacteristics(3);
// don't allow alphabetical sequences
AlphabeticalSequenceRule alphaSeqRule = new AlphabeticalSequenceRule();
// don't allow numerical sequences of length 3
NumericalSequenceRule numSeqRule = new NumericalSequenceRule(3);
// don't allow qwerty sequences
QwertySequenceRule qwertySeqRule = new QwertySequenceRule();
// don't allow 4 repeat characters
RepeatCharacterRegexRule repeatRule = new RepeatCharacterRegexRule(4);
// group all rules together in a List
List<Rule> ruleList = new ArrayList<Rule>();
ruleList.add(lengthRule);
ruleList.add(whitespaceRule);
ruleList.add(charRule);
ruleList.add(alphaSeqRule);
ruleList.add(numSeqRule);
ruleList.add(qwertySeqRule);
ruleList.add(repeatRule);
PasswordValidator validator = new PasswordValidator(ruleList);
PasswordData passwordData = new PasswordData(new Password("testpassword"));
RuleResult result = validator.validate(passwordData);
if (result.isValid()) {
System.out.println("Valid password");
} else {
System.out.println("Invalid password:");
for (String msg : validator.getMessages(result)) {
System.out.println(msg);
}
}
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.