Zxcvbn-PHP is a password strength estimator using pattern matching and minimum entropy calculation. Zxcvbn-PHP is based on the the Javascript zxcvbn project from Dropbox and @lowe. "zxcvbn" is bad password, just like "qwerty" and "123456".
zxcvbn attempts to give sound password advice through pattern matching and conservative entropy calculations. It finds 10k common passwords, common American names and surnames, common English words, and common patterns like dates, repeats (aaa), sequences (abcd), and QWERTY patterns.
The library can be installed with Composer by adding it as a dependency to your composer.json file.
{
"require": {
"mkopinsky/zxcvbn-php": "^4.4.2"
}
}After running php composer.phar update on the command line, include the
autoloader in your PHP scripts so that the ZxcvbnPhp class is available.
require_once 'vendor/autoload.php';use ZxcvbnPhp\Zxcvbn;
$userData = [
'Marco',
'[email protected]'
];
$zxcvbn = new Zxcvbn();
$strength = $zxcvbn->passwordStrength('password', $userData);
echo $strength['score'];
// will print 0
$strength = $zxcvbn->passwordStrength('correct horse battery staple');
echo $strength['score'];
// will print 4Thanks to:
- @lowe for the original Javascript Zxcvbn
- @Dreyer's port for reference for initial implementation
- bjeavon's implementation for building out zxcvbn-php as a solid initial port of the Dropbox library with composer support and unit tests
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent