dify/api/libs/password.py

import base64
import binascii
import hashlib
import re

password_pattern = r"^(?=.*[a-zA-Z])(?=.*\d).{8,}$"

def valid_password(password):
    # Define a regex pattern for password rules
    pattern = password_pattern
    # Check if the password matches the pattern
    if re.match(pattern, password) is not None:
        return password

    raise ValueError('Not a valid password.')


def hash_password(password_str, salt_byte):
    dk = hashlib.pbkdf2_hmac('sha256', password_str.encode('utf-8'), salt_byte, 10000)
    return binascii.hexlify(dk)


def compare_password(password_str, password_hashed_base64, salt_base64):
    # compare password for login
    return hash_password(password_str, base64.b64decode(salt_base64)) == base64.b64decode(password_hashed_base64)
Initial commit 2023-05-15 08:51:32 +08:00			`import base64`
			`import binascii`
			`import hashlib`
			`import re`

			`password_pattern = r"^(?=.[a-zA-Z])(?=.\d).{8,}$"`

			`def valid_password(password):`
			`# Define a regex pattern for password rules`
			`pattern = password_pattern`
			`# Check if the password matches the pattern`
			`if re.match(pattern, password) is not None:`
			`return password`

			`raise ValueError('Not a valid password.')`


			`def hash_password(password_str, salt_byte):`
			`dk = hashlib.pbkdf2_hmac('sha256', password_str.encode('utf-8'), salt_byte, 10000)`
			`return binascii.hexlify(dk)`


			`def compare_password(password_str, password_hashed_base64, salt_base64):`
			`# compare password for login`
			`return hash_password(password_str, base64.b64decode(salt_base64)) == base64.b64decode(password_hashed_base64)`