starred/big-bear-scripts
1
0
Fork 0
mirror of https://github.com/bigbeartechworld/big-bear-scripts.git synced 2026-03-31 06:24:02 -04:00
Code Issues 22 Packages Projects Releases Wiki Activity

fix(password): improve password complexity validation and error handling (#46)

Browse Source 
Refine password validation to separately check length and character 
requirements for better clarity. Add detailed error messages showing 
password length and value on failure. Implement automatic Portainer 
restart attempts on validation failure to maintain service availability.
This commit is contained in:
Christopher
2025-06-18 13:22:08 -05:00
committed by GitHub
parent 31aaabc368
commit 4c3ce7d125
1 changed files with 27 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

30
reset-portainer-password/run.sh
View File

@@ -299,9 +299,33 @@ fi
# Validate password complexity (security check)
# Ensure the generated password meets expected complexity requirements
if ! [[ "$new_password" =~ ^[A-Za-z0-9\!\@\#\$\%\^\&\*\(\)\_\+\-\=\[\]\{\}\|\\\:\;\"\'\<\>\,\.\?\/\~\`]{8,64}$ ]]; then
echo "Error: Generated password does not meet expected complexity requirements"
echo "Password should be 8-64 characters containing letters, numbers, and special characters"
# Check for minimum length and that it contains printable ASCII characters
if [[ ${#new_password} -lt 8 || ${#new_password} -gt 64 ]]; then
echo "Error: Generated password length is invalid (should be 8-64 characters)"
echo "Password length: ${#new_password}"
echo "Generated password: $new_password"
# Try to restart Portainer before exiting
echo "Attempting to restart Portainer..."
case $deployment_type in
"service")
docker service scale "${service_name}=1"
;;
"stack")
docker service scale "${stack_service_name}=1"
;;
*)
docker start "$portainer_container"
;;
esac
exit 1
fi
# Basic validation: ensure password contains only printable ASCII characters
# and has some complexity (letters, numbers, and special characters)
if ! [[ "$new_password" =~ [A-Za-z] ]] || ! [[ "$new_password" =~ [0-9] ]] || ! [[ "$new_password" =~ [^A-Za-z0-9] ]]; then
echo "Error: Generated password does not meet complexity requirements"
echo "Password must contain letters, numbers, and special characters"
echo "Generated password: $new_password"
# Try to restart Portainer before exiting