[Validator] Add an option to disable NotCompromisedPasswordValidator

lyrixx · lyrixx · commit 84521245b7e9 · 2019-04-06T21:16:20.000+02:00
diff --git a/Constraints/NotCompromisedPasswordValidator.php b/Constraints/NotCompromisedPasswordValidator.php
@@ -32,15 +32,17 @@ class NotCompromisedPasswordValidator extends ConstraintValidator
 
     private $httpClient;
     private $charset;
+    private $disabled;
 
-    public function __construct(HttpClientInterface $httpClient = null, string $charset = 'UTF-8')
+    public function __construct(HttpClientInterface $httpClient = null, string $charset = 'UTF-8', bool $disabled = false)
     {
         if (null === $httpClient && !class_exists(HttpClient::class)) {
             throw new \LogicException(sprintf('The "%s" class requires the "HttpClient" component. Try running "composer require symfony/http-client".', self::class));
         }
 
         $this->httpClient = $httpClient ?? HttpClient::create();
         $this->charset = $charset;
+        $this->disabled = $disabled;
     }
 
     /**
@@ -54,6 +56,10 @@ public function validate($value, Constraint $constraint)
             throw new UnexpectedTypeException($constraint, NotCompromisedPassword::class);
         }
 
+        if ($this->disabled) {
+            return;
+        }
+
         if (null !== $value && !is_scalar($value) && !(\is_object($value) && method_exists($value, '__toString'))) {
             throw new UnexpectedTypeException($value, 'string');
         }
diff --git a/Tests/Constraints/NotCompromisedPasswordValidatorTest.php b/Tests/Constraints/NotCompromisedPasswordValidatorTest.php
@@ -60,6 +60,17 @@ public function testEmptyStringIsValid()
         $this->assertNoViolation();
     }
 
+    public function testInvalidPasswordButDisabled()
+    {
+        $r = new \ReflectionProperty($this->validator, 'disabled');
+        $r->setAccessible(true);
+        $r->setValue($this->validator, true);
+
+        $this->validator->validate(self::PASSWORD_LEAKED, new NotCompromisedPassword());
+
+        $this->assertNoViolation();
+    }
+
     public function testInvalidPassword()
     {
         $constraint = new NotCompromisedPassword();

Original file line number	Diff line number	Diff line change
`@@ -32,15 +32,17 @@ class NotCompromisedPasswordValidator extends ConstraintValidator`
`32`	`32`
`33`	`33`	`private $httpClient;`
`34`	`34`	`private $charset;`
	`35`	`+ private $disabled;`
`35`	`36`
`36`		`- public function __construct(HttpClientInterface $httpClient = null, string $charset = 'UTF-8')`
	`37`	`+ public function __construct(HttpClientInterface $httpClient = null, string $charset = 'UTF-8', bool $disabled = false)`
`37`	`38`	`{`
`38`	`39`	`if (null === $httpClient && !class_exists(HttpClient::class)) {`
`39`	`40`	`throw new \LogicException(sprintf('The "%s" class requires the "HttpClient" component. Try running "composer require symfony/http-client".', self::class));`
`40`	`41`	`}`
`41`	`42`
`42`	`43`	`$this->httpClient = $httpClient ?? HttpClient::create();`
`43`	`44`	`$this->charset = $charset;`
	`45`	`+ $this->disabled = $disabled;`
`44`	`46`	`}`
`45`	`47`
`46`	`48`	`/**`
`@@ -54,6 +56,10 @@ public function validate($value, Constraint $constraint)`
`54`	`56`	`throw new UnexpectedTypeException($constraint, NotCompromisedPassword::class);`
`55`	`57`	`}`
`56`	`58`
	`59`	`+ if ($this->disabled) {`
	`60`	`+ return;`
	`61`	`+ }`
	`62`	`+`
`57`	`63`	`if (null !== $value && !is_scalar($value) && !(\is_object($value) && method_exists($value, '__toString'))) {`
`58`	`64`	`throw new UnexpectedTypeException($value, 'string');`
`59`	`65`	`}`