Have-I-Been-Pwned checker. Checks on registration and password change if the password is known to be published
Jeremy D
We are using nullable return types, which are only supported in PHP 7.1.0 or higher. Set the min version to PHP 7.3 because of lack of testing on older PHP versions.
bfb85c3 @ 2022-02-11 15:10:49
| language | Added initial files. | 2021-10-22 16:24:31 | |
|---|---|---|---|
| .gitattributes | 192 B | Added initial files. | 2021-10-22 16:24:31 |
| .gitignore | 0 B | Added initial files. | 2021-10-22 16:24:31 |
| Hibp.php | 6.31 KB | Added initial files. | 2021-10-22 16:24:31 |
| LICENSE | 1.48 KB | Added initial files. | 2021-10-22 16:24:31 |
| README.md | 327 B | We are using nullable return types, which are only supported in PHP 7.1.0 or higher. Set the min version to PHP 7.3 because of lack of testing on older PHP versions. | 2022-02-11 15:10:49 |
| package-info.xml | 1.85 KB | Added initial files. | 2021-10-22 16:24:31 |
| sha1.js | 11.85 KB | Added initial files. | 2021-10-22 16:24:31 |
README.md
This enables checking passwords against the Have-I-Been-Pwned database. Passwords are only checked on registration and when changed on the profile.
Additionally this can attempt to check the password from the browser using the same API
SMF 2.1.0 or higher only! PHP 7.3 or higher only