Inicio Explorar Axuda
Rexistro Iniciar sesión
coolbeer
/
cryptomator
réplica de https://github.com/cryptomator/cryptomator.git
1
0
Fork 0
Ficheiros Incidencias 0 Wiki
Explorar o código

Updated zxcvbn4j to 1.3.0, which allows us to swipe the password from memory even after measuring its strength

Sebastian Stenzel %!s(int64=5) %!d(string=hai) anos
pai
93c3da66da
achega
f475f70adf
Modificáronse 3 ficheiros con 5 adicións e 7 borrados
Dividir vista Mostrar estatísticas de Diff
  1. 1 1
      main/ui/pom.xml
  2. 1 1
      main/ui/src/main/java/org/cryptomator/ui/common/NewPasswordController.java
  3. 3 5
      main/ui/src/main/java/org/cryptomator/ui/common/PasswordStrengthUtil.java

+ 1 - 1
main/ui/pom.xml
Ver ficheiro 

@@ -65,7 +65,7 @@
 
 		<dependency>
 
 			<groupId>com.nulab-inc</groupId>
 
 			<artifactId>zxcvbn</artifactId>
 
-			<version>1.2.7</version>
 
+			<version>1.3.0</version>
 
 		</dependency>
 
 		
 		<!-- Logging -->

+ 1 - 1
main/ui/src/main/java/org/cryptomator/ui/common/NewPasswordController.java
Ver ficheiro 

@@ -38,7 +38,7 @@ public class NewPasswordController implements FxController {
 
 	public void initialize() {
 
 		BooleanBinding passwordsMatch = Bindings.createBooleanBinding(this::hasSamePasswordInBothFields, passwordField.textProperty(), reenterField.textProperty());
 
 		BooleanBinding reenterFieldNotEmpty = reenterField.textProperty().isNotEmpty();
 
-		passwordStrength.bind(Bindings.createIntegerBinding(() -> strengthRater.computeRate(passwordField.getCharacters().toString()), passwordField.textProperty()));
 
+		passwordStrength.bind(Bindings.createIntegerBinding(() -> strengthRater.computeRate(passwordField.getCharacters()), passwordField.textProperty()));
 
 		passwordStrengthLabel.textProperty().bind(EasyBind.map(passwordStrength, strengthRater::getStrengthDescription));
 
 		
 		passwordMatchLabel.visibleProperty().bind(reenterFieldNotEmpty);

+ 3 - 5
main/ui/src/main/java/org/cryptomator/ui/common/PasswordStrengthUtil.java
Ver ficheiro 

@@ -8,12 +8,10 @@
 
  *******************************************************************************/
 
 package org.cryptomator.ui.common;
 
 
-import com.google.common.base.Strings;
 
 import com.nulabinc.zxcvbn.Zxcvbn;
 
 import org.cryptomator.ui.fxapp.FxApplicationScoped;
 
 
 import javax.inject.Inject;
 
-import java.util.ArrayList;
 
 import java.util.List;
 
 import java.util.ResourceBundle;
 
 
@@ -34,12 +32,12 @@ public class PasswordStrengthUtil {
 
 		this.sanitizedInputs = List.of("cryptomator");
 
 	}
 
 
-	public int computeRate(String password) {
 
-		if (Strings.isNullOrEmpty(password)) {
 
+	public int computeRate(CharSequence password) {
 
+		if (password == null || password.length() == 0) {
 
 			return -1;
 
 		} else {
 
 			int numCharsToRate = Math.min(PW_TRUNC_LEN, password.length());
 
-			return zxcvbn.measure(password.substring(0, numCharsToRate), sanitizedInputs).getScore();
 
+			return zxcvbn.measure(password.subSequence(0, numCharsToRate), sanitizedInputs).getScore();
 
 		}
 
 	}