├── .idea
    ├── .gitignore
    ├── misc.xml
    ├── modules.xml
    └── php.xml
├── .phpunit.result.cache
├── .styleci.yml
├── CHANGELOG.md
├── CONTRIBUTING.md
├── LICENSE.md
├── README.md
├── composer.json
├── config
    └── passwordHistory.php
├── database
    └── migrations
    │   └── 2019_12_02_141717_create_password_history_table.php
├── phpunit.xml
└── src
    ├── Console
        └── ClearOldPasswordHistory.php
    ├── LaravelPasswordHistoryValidationServiceProvider.php
    ├── Models
        ├── PasswordHistory.php
        └── PasswordHistoryRepo.php
    ├── Observers
        └── UserObserver.php
    ├── Rules
        └── NotFromPasswordHistory.php
    └── Traits
        └── PasswordHistoryTrait.php


/.idea/.gitignore:
--------------------------------------------------------------------------------
1 | # Default ignored files
2 | /workspace.xml


--------------------------------------------------------------------------------
/.idea/misc.xml:
--------------------------------------------------------------------------------
1 | <?xml version="1.0" encoding="UTF-8"?>
2 | <project version="4">
3 |   <component name="JavaScriptSettings">
4 |     <option name="languageLevel" value="ES6" />
5 |   </component>
6 |   <component name="jetbrains.communicator.idea.IdProvider" IDEtalkID="5E05A218D990F0D404FEA98DC9B533C6" />
7 | </project>


--------------------------------------------------------------------------------
/.idea/modules.xml:
--------------------------------------------------------------------------------
1 | <?xml version="1.0" encoding="UTF-8"?>
2 | <project version="4">
3 |   <component name="ProjectModuleManager">
4 |     <modules>
5 |       <module fileurl="file://$PROJECT_DIR$/.idea/laravel-password-history-validation.iml" filepath="$PROJECT_DIR$/.idea/laravel-password-history-validation.iml" />
6 |     </modules>
7 |   </component>
8 | </project>


--------------------------------------------------------------------------------
/.idea/php.xml:
--------------------------------------------------------------------------------
  1 | <?xml version="1.0" encoding="UTF-8"?>
  2 | <project version="4">
  3 |   <component name="MessDetectorOptionsConfiguration">
  4 |     <option name="transferred" value="true" />
  5 |   </component>
  6 |   <component name="PHPCSFixerOptionsConfiguration">
  7 |     <option name="transferred" value="true" />
  8 |   </component>
  9 |   <component name="PHPCodeSnifferOptionsConfiguration">
 10 |     <option name="highlightLevel" value="WARNING" />
 11 |     <option name="transferred" value="true" />
 12 |   </component>
 13 |   <component name="PhpIncludePathManager">
 14 |     <include_path>
 15 |       <path value="$PROJECT_DIR$/vendor/tijsverkoyen/css-to-inline-styles" />
 16 |       <path value="$PROJECT_DIR$/vendor/phpoption/phpoption" />
 17 |       <path value="$PROJECT_DIR$/vendor/symfony/mime" />
 18 |       <path value="$PROJECT_DIR$/vendor/symfony/event-dispatcher-contracts" />
 19 |       <path value="$PROJECT_DIR$/vendor/symfony/http-foundation" />
 20 |       <path value="$PROJECT_DIR$/vendor/symfony/routing" />
 21 |       <path value="$PROJECT_DIR$/vendor/symfony/process" />
 22 |       <path value="$PROJECT_DIR$/vendor/symfony/error-handler" />
 23 |       <path value="$PROJECT_DIR$/vendor/symfony/polyfill-mbstring" />
 24 |       <path value="$PROJECT_DIR$/vendor/symfony/debug" />
 25 |       <path value="$PROJECT_DIR$/vendor/symfony/polyfill-php73" />
 26 |       <path value="$PROJECT_DIR$/vendor/symfony/polyfill-php72" />
 27 |       <path value="$PROJECT_DIR$/vendor/symfony/polyfill-ctype" />
 28 |       <path value="$PROJECT_DIR$/vendor/symfony/var-dumper" />
 29 |       <path value="$PROJECT_DIR$/vendor/symfony/event-dispatcher" />
 30 |       <path value="$PROJECT_DIR$/vendor/symfony/css-selector" />
 31 |       <path value="$PROJECT_DIR$/vendor/symfony/polyfill-intl-idn" />
 32 |       <path value="$PROJECT_DIR$/vendor/psr/container" />
 33 |       <path value="$PROJECT_DIR$/vendor/vlucas/phpdotenv" />
 34 |       <path value="$PROJECT_DIR$/vendor/psr/log" />
 35 |       <path value="$PROJECT_DIR$/vendor/composer" />
 36 |       <path value="$PROJECT_DIR$/vendor/symfony/finder" />
 37 |       <path value="$PROJECT_DIR$/vendor/symfony/http-kernel" />
 38 |       <path value="$PROJECT_DIR$/vendor/symfony/service-contracts" />
 39 |       <path value="$PROJECT_DIR$/vendor/symfony/console" />
 40 |       <path value="$PROJECT_DIR$/vendor/ramsey/uuid" />
 41 |       <path value="$PROJECT_DIR$/vendor/paragonie/random_compat" />
 42 |       <path value="$PROJECT_DIR$/vendor/nesbot/carbon" />
 43 |       <path value="$PROJECT_DIR$/vendor/egulias/email-validator" />
 44 |       <path value="$PROJECT_DIR$/vendor/dragonmantank/cron-expression" />
 45 |       <path value="$PROJECT_DIR$/vendor/monolog/monolog" />
 46 |       <path value="$PROJECT_DIR$/vendor/swiftmailer/swiftmailer" />
 47 |       <path value="$PROJECT_DIR$/vendor/league/flysystem" />
 48 |       <path value="$PROJECT_DIR$/vendor/opis/closure" />
 49 |       <path value="$PROJECT_DIR$/vendor/symfony/translation-contracts" />
 50 |       <path value="$PROJECT_DIR$/vendor/laravel/framework" />
 51 |       <path value="$PROJECT_DIR$/vendor/symfony/polyfill-iconv" />
 52 |       <path value="$PROJECT_DIR$/vendor/symfony/translation" />
 53 |       <path value="$PROJECT_DIR$/vendor/psr/simple-cache" />
 54 |       <path value="$PROJECT_DIR$/vendor/doctrine/inflector" />
 55 |       <path value="$PROJECT_DIR$/vendor/doctrine/lexer" />
 56 |       <path value="$PROJECT_DIR$/vendor/league/commonmark" />
 57 |       <path value="$PROJECT_DIR$/vendor/sebastian/global-state" />
 58 |       <path value="$PROJECT_DIR$/vendor/sebastian/object-enumerator" />
 59 |       <path value="$PROJECT_DIR$/vendor/sebastian/recursion-context" />
 60 |       <path value="$PROJECT_DIR$/vendor/sebastian/type" />
 61 |       <path value="$PROJECT_DIR$/vendor/sebastian/object-reflector" />
 62 |       <path value="$PROJECT_DIR$/vendor/sebastian/diff" />
 63 |       <path value="$PROJECT_DIR$/vendor/sebastian/exporter" />
 64 |       <path value="$PROJECT_DIR$/vendor/sebastian/resource-operations" />
 65 |       <path value="$PROJECT_DIR$/vendor/sebastian/version" />
 66 |       <path value="$PROJECT_DIR$/vendor/sebastian/environment" />
 67 |       <path value="$PROJECT_DIR$/vendor/sebastian/comparator" />
 68 |       <path value="$PROJECT_DIR$/vendor/orchestra/testbench" />
 69 |       <path value="$PROJECT_DIR$/vendor/orchestra/testbench-core" />
 70 |       <path value="$PROJECT_DIR$/vendor/phpunit/php-file-iterator" />
 71 |       <path value="$PROJECT_DIR$/vendor/sebastian/code-unit-reverse-lookup" />
 72 |       <path value="$PROJECT_DIR$/vendor/phpunit/php-text-template" />
 73 |       <path value="$PROJECT_DIR$/vendor/phpunit/php-code-coverage" />
 74 |       <path value="$PROJECT_DIR$/vendor/hamcrest/hamcrest-php" />
 75 |       <path value="$PROJECT_DIR$/vendor/phpunit/php-token-stream" />
 76 |       <path value="$PROJECT_DIR$/vendor/phpunit/phpunit" />
 77 |       <path value="$PROJECT_DIR$/vendor/phpunit/php-timer" />
 78 |       <path value="$PROJECT_DIR$/vendor/doctrine/instantiator" />
 79 |       <path value="$PROJECT_DIR$/vendor/webmozart/assert" />
 80 |       <path value="$PROJECT_DIR$/vendor/fzaninotto/faker" />
 81 |       <path value="$PROJECT_DIR$/vendor/theseer/tokenizer" />
 82 |       <path value="$PROJECT_DIR$/vendor/mockery/mockery" />
 83 |       <path value="$PROJECT_DIR$/vendor/phpdocumentor/reflection-common" />
 84 |       <path value="$PROJECT_DIR$/vendor/phpdocumentor/type-resolver" />
 85 |       <path value="$PROJECT_DIR$/vendor/phpdocumentor/reflection-docblock" />
 86 |       <path value="$PROJECT_DIR$/vendor/phpspec/prophecy" />
 87 |       <path value="$PROJECT_DIR$/vendor/phar-io/version" />
 88 |       <path value="$PROJECT_DIR$/vendor/phar-io/manifest" />
 89 |       <path value="$PROJECT_DIR$/vendor/myclabs/deep-copy" />
 90 |     </include_path>
 91 |   </component>
 92 |   <component name="PhpProjectSharedConfiguration" php_language_level="7.4" />
 93 |   <component name="PhpStanOptionsConfiguration">
 94 |     <option name="transferred" value="true" />
 95 |   </component>
 96 |   <component name="PhpUnit">
 97 |     <phpunit_settings>
 98 |       <PhpUnitSettings configuration_file_path="$PROJECT_DIR$/phpunit.xml.dist" custom_loader_path="$PROJECT_DIR$/vendor/autoload.php" use_configuration_file="true" />
 99 |     </phpunit_settings>
100 |   </component>
101 |   <component name="PsalmOptionsConfiguration">
102 |     <option name="transferred" value="true" />
103 |   </component>
104 | </project>


--------------------------------------------------------------------------------
/.phpunit.result.cache:
--------------------------------------------------------------------------------
1 | C:37:"PHPUnit\Runner\DefaultTestResultCache":226:{a:2:{s:7:"defects";a:1:{s:77:"Infinitypaul\LaravelPasswordHistoryValidation\Tests\ExampleTest::true_is_true";i:4;}s:5:"times";a:1:{s:77:"Infinitypaul\LaravelPasswordHistoryValidation\Tests\ExampleTest::true_is_true";d:0.172;}}}


--------------------------------------------------------------------------------
/.styleci.yml:
--------------------------------------------------------------------------------
1 | preset: laravel
2 | 
3 | disabled:
4 |   - single_class_element_per_statement
5 | 


--------------------------------------------------------------------------------
/CHANGELOG.md:
--------------------------------------------------------------------------------
1 | # Changelog
2 | 
3 | All notable changes to `laravel-password-history-validation` will be documented in this file
4 | 
5 | ## 1.0.0 - 201X-XX-XX
6 | 
7 | - initial release
8 | 


--------------------------------------------------------------------------------
/CONTRIBUTING.md:
--------------------------------------------------------------------------------
 1 | # Contributing
 2 | 
 3 | Contributions are **welcome** and will be fully **credited**.
 4 | 
 5 | Please read and understand the contribution guide before creating an issue or pull request.
 6 | 
 7 | ## Etiquette
 8 | 
 9 | This project is open source, and as such, the maintainers give their free time to build and maintain the source code
10 | held within. They make the code freely available in the hope that it will be of use to other developers. It would be
11 | extremely unfair for them to suffer abuse or anger for their hard work.
12 | 
13 | Please be considerate towards maintainers when raising issues or presenting pull requests. Let's show the
14 | world that developers are civilized and selfless people.
15 | 
16 | It's the duty of the maintainer to ensure that all submissions to the project are of sufficient
17 | quality to benefit the project. Many developers have different skillsets, strengths, and weaknesses. Respect the maintainer's decision, and do not be upset or abusive if your submission is not used.
18 | 
19 | ## Viability
20 | 
21 | When requesting or submitting new features, first consider whether it might be useful to others. Open
22 | source projects are used by many developers, who may have entirely different needs to your own. Think about
23 | whether or not your feature is likely to be used by other users of the project.
24 | 
25 | ## Procedure
26 | 
27 | Before filing an issue:
28 | 
29 | - Attempt to replicate the problem, to ensure that it wasn't a coincidental incident.
30 | - Check to make sure your feature suggestion isn't already present within the project.
31 | - Check the pull requests tab to ensure that the bug doesn't have a fix in progress.
32 | - Check the pull requests tab to ensure that the feature isn't already in progress.
33 | 
34 | Before submitting a pull request:
35 | 
36 | - Check the codebase to ensure that your feature doesn't already exist.
37 | - Check the pull requests to ensure that another person hasn't already submitted the feature or fix.
38 | 
39 | ## Requirements
40 | 
41 | If the project maintainer has any additional requirements, you will find them listed here.
42 | 
43 | - **[PSR-2 Coding Standard](https://github.com/php-fig/fig-standards/blob/master/accepted/PSR-2-coding-style-guide.md)** - The easiest way to apply the conventions is to install [PHP Code Sniffer](https://pear.php.net/package/PHP_CodeSniffer).
44 | 
45 | - **Add tests!** - Your patch won't be accepted if it doesn't have tests.
46 | 
47 | - **Document any change in behaviour** - Make sure the `README.md` and any other relevant documentation are kept up-to-date.
48 | 
49 | - **Consider our release cycle** - We try to follow [SemVer v2.0.0](https://semver.org/). Randomly breaking public APIs is not an option.
50 | 
51 | - **One pull request per feature** - If you want to do more than one thing, send multiple pull requests.
52 | 
53 | - **Send coherent history** - Make sure each individual commit in your pull request is meaningful. If you had to make multiple intermediate commits while developing, please [squash them](https://www.git-scm.com/book/en/v2/Git-Tools-Rewriting-History#Changing-Multiple-Commit-Messages) before submitting.
54 | 
55 | **Happy coding**!
56 | 


--------------------------------------------------------------------------------
/LICENSE.md:
--------------------------------------------------------------------------------
 1 | MIT License
 2 | 
 3 | Copyright (c) Edward Paul
 4 | 
 5 | Permission is hereby granted, free of charge, to any person obtaining a copy
 6 | of this software and associated documentation files (the "Software"), to deal
 7 | in the Software without restriction, including without limitation the rights
 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 | 
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 | 
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | # Laravel Password History Validation
 2 | 
 3 | [![Latest Version on Packagist](https://img.shields.io/packagist/v/infinitypaul/laravel-password-history-validation.svg?style=flat-square)](https://packagist.org/packages/infinitypaul/laravel-password-history-validation)
 4 | [![Build Status](https://img.shields.io/travis/infinitypaul/laravel-password-history-validation/master.svg?style=flat-square)](https://travis-ci.org/infinitypaul/laravel-password-history-validation)
 5 | [![Quality Score](https://img.shields.io/scrutinizer/g/infinitypaul/laravel-password-history-validation.svg?style=flat-square)](https://scrutinizer-ci.com/g/infinitypaul/laravel-password-history-validation)
 6 | [![Total Downloads](https://img.shields.io/packagist/dt/infinitypaul/laravel-password-history-validation.svg?style=flat-square)](https://packagist.org/packages/infinitypaul/laravel-password-history-validation)
 7 | 
 8 | Prevent users from reusing recently used passwords.
 9 | 
10 | ## Installation
11 | 
12 | You can install the package via composer:
13 | 
14 | ```bash
15 | composer require infinitypaul/laravel-password-history-validation
16 | ```
17 | 
18 | ## Configuration
19 | 
20 | To get started, you'll need to publish the config file, and  migrate the database:
21 | 
22 | ```bash
23 | php artisan vendor:publish --tag=password-config
24 | ```
25 | Modify the config file according to your project, then migrate the database
26 | 
27 | ```bash
28 | php artisan migrate
29 | ```
30 | 
31 | ## Usage
32 | This package will observe the created and updated event of the models (check the config file for settings) and records the password hashes automatically.
33 | 
34 | In Your Form Request or Inline Validation, All You Need To Do Is Instantiate The `NotFromPasswordHistory` class passing the current user as an argument
35 | ``` php
36 | <?php
37 | use Infinitypaul\LaravelPasswordHistoryValidation\Rules\NotFromPasswordHistory;
38 | 
39 | $this->validate($request, [
40 |             'password' => [
41 |                 'required',
42 |                 new NotFromPasswordHistory($request->user())
43 |             ]
44 |         ]);
45 | ```
46 | 
47 | ### Cleaning Up Old Record - (Optional)
48 | 
49 | Because We Are Storing The Hashed Password In Your Database, Your Database Can Get Long When You Have Lots Of Users 
50 | 
51 | Add PasswordHistoryTrait To Your User Model
52 | ``` php
53 | <?php
54 | use Infinitypaul\LaravelPasswordHistoryValidation\Traits\PasswordHistoryTrait;
55 | 
56 | class User extends Authenticatable
57 | {
58 |     use Notifiable, PasswordHistoryTrait;
59 | 
60 | }
61 | ```
62 | Then You Can Run The Following Artisan Command
63 | 
64 | ``` bash
65 | php artisan password-history:clear
66 | ```
67 | ### Changelog
68 | 
69 | Please see [CHANGELOG](CHANGELOG.md) for more information what has changed recently.
70 | 
71 | ## Contributing
72 | 
73 | Please see [CONTRIBUTING](CONTRIBUTING.md) for details.
74 | 
75 | ### Security
76 | 
77 | If you discover any security related issues, please email infinitypaul@live.com instead of using the issue tracker.
78 | 
79 | 
80 | ## How can I thank you?
81 | 
82 | Why not star the github repo? I'd love the attention! Why not share the link for this repository on Twitter or HackerNews? Spread the word!
83 | 
84 | Don't forget to [follow me on twitter](https://twitter.com/infinitypaul)!
85 | 
86 | Thanks!
87 | Edward Paul.
88 | 
89 | ## License
90 | 
91 | The MIT License (MIT). Please see [License File](LICENSE.md) for more information.
92 | 


--------------------------------------------------------------------------------
/composer.json:
--------------------------------------------------------------------------------
 1 | {
 2 |     "name": "infinitypaul/laravel-password-history-validation",
 3 |     "description": "Prevent users from reusing recently used passwords",
 4 |     "keywords": [
 5 |         "infinitypaul",
 6 |         "laravel-password-history-validation",
 7 |         "laravel",
 8 |         "password"
 9 |     ],
10 |     "homepage": "https://github.com/infinitypaul/laravel-password-history-validation",
11 |     "license": "MIT",
12 |     "type": "library",
13 |     "authors": [
14 |         {
15 |             "name": "Edward Paul",
16 |             "email": "infinitypaul@live.com",
17 |             "role": "Developer"
18 |         }
19 |     ],
20 |     "require": {
21 |         "php": "^7.4|^8.0"
22 |     },
23 |     "require-dev": {
24 |         "orchestra/testbench": "^5.0|^6.0|^7.1.0|^8.0",
25 |         "phpunit/phpunit": "^9.3"
26 |     },
27 |     "autoload": {
28 |         "psr-4": {
29 |             "Infinitypaul\\LaravelPasswordHistoryValidation\\": "src"
30 |         }
31 |     },
32 |     "autoload-dev": {
33 |         "psr-4": {
34 |             "Infinitypaul\\LaravelPasswordHistoryValidation\\Tests\\": "tests"
35 |         }
36 |     },
37 |     "scripts": {
38 |         "test": "vendor/bin/phpunit",
39 |         "test-coverage": "vendor/bin/phpunit --coverage-html coverage"
40 | 
41 |     },
42 |     "config": {
43 |         "sort-packages": true
44 |     },
45 |     "extra": {
46 |         "laravel": {
47 |             "providers": [
48 |                 "Infinitypaul\\LaravelPasswordHistoryValidation\\LaravelPasswordHistoryValidationServiceProvider"
49 |             ]
50 |         }
51 |     }
52 | }
53 | 


--------------------------------------------------------------------------------
/config/passwordHistory.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | 
 3 | return [
 4 | 
 5 |     /**
 6 |      * The table name to save your password histories.
 7 |      */
 8 |     'table' => 'password_histories',
 9 | 
10 |     /**
11 |      * The shows the number of password you want to keep and check for the current user.
12 |      */
13 |     'keep' => 2,
14 | 
15 |     /**
16 |      * The models to be observed on and your password column name.
17 |      */
18 |     'observe' => [
19 |         'model' => \App\Models\User::class,
20 |         'column' => 'password',
21 |     ],
22 | 
23 |     //Supported:  "integer", "uuid"
24 |     'primary_id_type' => 'integer',
25 | ];
26 | 


--------------------------------------------------------------------------------
/database/migrations/2019_12_02_141717_create_password_history_table.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | 
 3 | use Illuminate\Database\Migrations\Migration;
 4 | use Illuminate\Database\Schema\Blueprint;
 5 | use Illuminate\Support\Facades\Schema;
 6 | 
 7 | class CreatePasswordHistoryTable extends Migration
 8 | {
 9 |     /**
10 |      * Run the migrations.
11 |      *
12 |      * @return void
13 |      */
14 |     public function up()
15 |     {
16 |         Schema::create(config('password-history.table'), function (Blueprint $table) {
17 |             $primaryIdType = config('password-history.primary_id_type', 'integer');
18 |             if ($primaryIdType === 'integer') {
19 |                 $table->bigIncrements('id');
20 |                 $table->unsignedBigInteger('user_id');
21 |             } elseif ($primaryIdType === 'uuid') {
22 |                 $table->uuid('id');
23 |                 $table->uuid('user_id');
24 |             }
25 | 
26 |             $table->string('password');
27 |             $table->timestamps();
28 |         });
29 |     }
30 | 
31 |     /**
32 |      * Reverse the migrations.
33 |      *
34 |      * @return void
35 |      */
36 |     public function down()
37 |     {
38 |         Schema::dropIfExists(config('password-history.table'));
39 |     }
40 | }
41 | 


--------------------------------------------------------------------------------
/phpunit.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="UTF-8"?>
 2 | <phpunit bootstrap="vendor/autoload.php"
 3 |          backupGlobals="false"
 4 |          backupStaticAttributes="false"
 5 |          colors="true"
 6 |          verbose="true"
 7 |          convertErrorsToExceptions="true"
 8 |          convertNoticesToExceptions="true"
 9 |          convertWarningsToExceptions="true"
10 |          processIsolation="false"
11 |          stopOnFailure="false">
12 |     <testsuites>
13 |         <testsuite name="Test Suite">
14 |             <directory>tests</directory>
15 |         </testsuite>
16 |     </testsuites>
17 |     <filter>
18 |         <whitelist>
19 |             <directory suffix=".php">src/</directory>
20 |         </whitelist>
21 |     </filter>
22 |     <logging>
23 |         <log type="tap" target="build/report.tap"/>
24 |         <log type="junit" target="build/report.junit.xml"/>
25 |         <log type="coverage-html" target="build/coverage" charset="UTF-8" yui="true" highlight="true"/>
26 |         <log type="coverage-text" target="build/coverage.txt"/>
27 |         <log type="coverage-clover" target="build/logs/clover.xml"/>
28 |     </logging>
29 | </phpunit>
30 | 


--------------------------------------------------------------------------------
/src/Console/ClearOldPasswordHistory.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | 
 3 | namespace Infinitypaul\LaravelPasswordHistoryValidation\Console;
 4 | 
 5 | use Illuminate\Console\Command;
 6 | 
 7 | class ClearOldPasswordHistory extends Command
 8 | {
 9 |     /**
10 |      * The name and signature of the console command.
11 |      *
12 |      * @var string
13 |      */
14 |     protected $signature = 'password-history:clear';
15 | 
16 |     /**
17 |      * The console command description.
18 |      *
19 |      * @var string
20 |      */
21 |     protected $description = 'Clear Old Password History';
22 | 
23 |     /**
24 |      * Create a new command instance.
25 |      *
26 |      * @return void
27 |      */
28 |     public function __construct()
29 |     {
30 |         parent::__construct();
31 |     }
32 | 
33 |     /**
34 |      * Execute the console command.
35 |      *
36 |      * @return mixed
37 |      */
38 |     public function handle()
39 |     {
40 |         $this->info('Getting Users...');
41 |         $model = config('password-history.observe.model');
42 |         if (class_exists($model)) {
43 |             $model::chunk(100, function ($users) {
44 |                 $users->each->deletePasswordHistory();
45 |             });
46 |         }
47 |         $this->info('Old Password Cleared...');
48 |     }
49 | }
50 | 


--------------------------------------------------------------------------------
/src/LaravelPasswordHistoryValidationServiceProvider.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | 
 3 | namespace Infinitypaul\LaravelPasswordHistoryValidation;
 4 | 
 5 | use Illuminate\Support\ServiceProvider;
 6 | use Infinitypaul\LaravelPasswordHistoryValidation\Console\ClearOldPasswordHistory;
 7 | use Infinitypaul\LaravelPasswordHistoryValidation\Observers\UserObserver;
 8 | 
 9 | class LaravelPasswordHistoryValidationServiceProvider extends ServiceProvider
10 | {
11 |     /**
12 |      * Bootstrap the application services.
13 |      */
14 |     public function boot()
15 |     {
16 |         if ($this->app->runningInConsole()) {
17 |             $this->publishes([
18 |                 __DIR__.'/../config/passwordHistory.php' => config_path('password-history.php'),
19 |             ], 'password-config');
20 | 
21 |             $this->publishes([
22 |                 __DIR__.'/../database/migrations/2019_12_02_141717_create_password_history_table.php' => database_path('migrations/'.date('Y_m_d_His').'_create_password_history_table.php'),
23 |             ], 'password-migrations');
24 | 
25 |             // Registering package commands.
26 |             $this->commands([
27 |                 ClearOldPasswordHistory::class,
28 |             ]);
29 |         }
30 | 
31 |         $publishedMigration = glob(database_path('migrations/*_create_password_history_table.php'));
32 |         if (empty($publishedMigration)) {
33 |             // Automatically load migrations only if they have not been published
34 |             $this->loadMigrationsFrom(__DIR__.'/../database/migrations');
35 |         }
36 | 
37 |         $model = config('password-history.observe.model');
38 |         class_exists($model) ? $model::observe(UserObserver::class) : null;
39 |     }
40 | 
41 |     /**
42 |      * Register the application services.
43 |      */
44 |     public function register()
45 |     {
46 |         // Automatically apply the package configuration
47 |         $this->mergeConfigFrom(__DIR__.'/../config/passwordHistory.php', 'password-history');
48 |     }
49 | }
50 | 


--------------------------------------------------------------------------------
/src/Models/PasswordHistory.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | 
 3 | namespace Infinitypaul\LaravelPasswordHistoryValidation\Models;
 4 | 
 5 | use Illuminate\Database\Eloquent\Model;
 6 | 
 7 | class PasswordHistory extends Model
 8 | {
 9 |     /**
10 |      * PasswordHistory constructor.
11 |      *
12 |      * @param  array  $attributes
13 |      */
14 |     public function __construct(array $attributes = [])
15 |     {
16 |         $this->table = config('password-history.table');
17 |         parent::__construct($attributes);
18 |     }
19 | 
20 |     protected $fillable = ['user_id', 'password'];
21 | }
22 | 


--------------------------------------------------------------------------------
/src/Models/PasswordHistoryRepo.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | 
 3 | namespace Infinitypaul\LaravelPasswordHistoryValidation\Models;
 4 | 
 5 | class PasswordHistoryRepo
 6 | {
 7 |     /**
 8 |      * @param  $password
 9 |      * @param  $user_id
10 |      */
11 |     public static function storeCurrentPasswordInHistory($password, $user_id)
12 |     {
13 |         PasswordHistory::create(get_defined_vars());
14 |     }
15 | 
16 |     /**
17 |      * @param  $user
18 |      * @param  $checkPrevious
19 |      * @return mixed
20 |      */
21 |     public static function fetchUser($user, $checkPrevious)
22 |     {
23 |         return PasswordHistory::where('user_id', $user->id)->latest()->take($checkPrevious)->get();
24 |     }
25 | }
26 | 


--------------------------------------------------------------------------------
/src/Observers/UserObserver.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | 
 3 | namespace Infinitypaul\LaravelPasswordHistoryValidation\Observers;
 4 | 
 5 | use Illuminate\Support\Arr;
 6 | use Infinitypaul\LaravelPasswordHistoryValidation\Models\PasswordHistoryRepo;
 7 | 
 8 | class UserObserver
 9 | {
10 |     public function updated($user)
11 |     {
12 |         $configPasswordColumn = config('password-history.observe.column');
13 |         if ($password = Arr::get($user->getChanges(), $configPasswordColumn)) {
14 |             PasswordHistoryRepo::storeCurrentPasswordInHistory($password, $user->id);
15 |         }
16 |     }
17 | 
18 |     public function created($user)
19 |     {
20 |         $password = config('password-history.observe.column') ?? 'password';
21 |         PasswordHistoryRepo::storeCurrentPasswordInHistory($user->{$password}, $user->id);
22 |     }
23 | }
24 | 


--------------------------------------------------------------------------------
/src/Rules/NotFromPasswordHistory.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | 
 3 | namespace Infinitypaul\LaravelPasswordHistoryValidation\Rules;
 4 | 
 5 | use Illuminate\Contracts\Validation\Rule;
 6 | use Illuminate\Support\Facades\Hash;
 7 | use Infinitypaul\LaravelPasswordHistoryValidation\Models\PasswordHistoryRepo;
 8 | 
 9 | class NotFromPasswordHistory implements Rule
10 | {
11 |     protected $user;
12 |     protected $checkPrevious;
13 | 
14 |     /**
15 |      * NotFromPasswordHistory constructor.
16 |      *
17 |      * @param  $user
18 |      */
19 |     public function __construct($user)
20 |     {
21 |         $this->user = $user;
22 |         $this->checkPrevious = config('password-history.keep');
23 |     }
24 | 
25 |     /**
26 |      * {@inheritdoc}
27 |      */
28 |     public function passes($attribute, $value)
29 |     {
30 |         $passwordHistories = PasswordHistoryRepo::fetchUser($this->user, $this->checkPrevious);
31 |         foreach ($passwordHistories as $passwordHistory) {
32 |             if (Hash::check($value, $passwordHistory->password)) {
33 |                 return false;
34 |             }
35 |         }
36 | 
37 |         return true;
38 |     }
39 | 
40 |     /**
41 |      * {@inheritdoc}
42 |      */
43 |     public function message()
44 |     {
45 |         return __('auth.password_history') == 'auth.password_history' ? 'The Password Has Been Used' : __('auth.password_history');
46 |     }
47 | }
48 | 


--------------------------------------------------------------------------------
/src/Traits/PasswordHistoryTrait.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | 
 3 | namespace Infinitypaul\LaravelPasswordHistoryValidation\Traits;
 4 | 
 5 | use Infinitypaul\LaravelPasswordHistoryValidation\Models\PasswordHistory;
 6 | 
 7 | trait PasswordHistoryTrait
 8 | {
 9 |     /**
10 |      * @return mixed
11 |      */
12 |     public function passwordHistory()
13 |     {
14 |         return $this->hasMany(PasswordHistory::class)
15 |             ->latest();
16 |     }
17 | 
18 |     public function deletePasswordHistory()
19 |     {
20 |         $keep = config('password-history.keep');
21 |         $ids = $this->passwordHistory()
22 |             ->pluck('id')
23 |             ->sort()
24 |             ->reverse();
25 | 
26 |         if ($ids->count() < $keep) {
27 |             return;
28 |         }
29 | 
30 |         $delete = $ids->splice($keep);
31 | 
32 |         $this->passwordHistory()
33 |             ->whereIn('id', $delete)
34 |             ->delete();
35 |     }
36 | }
37 | 


--------------------------------------------------------------------------------