Have-I-Been-Pwned checker. Checks on registration and password change if the password is known to be published
language | Added initial files. | 2021-10-22 16:24:31 | |
---|---|---|---|
.gitattributes | 192 B | Added initial files. | 2021-10-22 16:24:31 |
.gitignore | 0 B | Added initial files. | 2021-10-22 16:24:31 |
.scrutinizer.yml | 5.78 KB | Update the scrutinizer file | 2022-08-10 18:56:06 |
DCO.txt | 1.21 KB | Add DCO and scrutinizer files | 2022-04-04 18:57:17 |
Hibp.php | 6.31 KB | Fixed some package info errors | 2022-02-27 13:26:37 |
LICENSE | 1.48 KB | Added initial files. | 2021-10-22 16:24:31 |
README.md | 327 B | We are using nullable return types, which are only supported in PHP 7.1.0 or higher. Set the min version to PHP 7.3 because of lack of testing on older PHP versions. | 2022-02-11 15:10:49 |
package-info.xml | 2.11 KB | Fixed some package info errors | 2022-02-27 13:26:37 |
sha1.js | 11.85 KB | Added initial files. | 2021-10-22 16:24:31 |
This enables checking passwords against the Have-I-Been-Pwned database. Passwords are only checked on registration and when changed on the profile.
Additionally this can attempt to check the password from the browser using the same API
SMF 2.1.0 or higher only! PHP 7.3 or higher only