ceoro9/check_pass.py

## check_pass.py
def get_default_password_validators():
    return get_password_validators(settings.AUTH_PASSWORD_VALIDATORS)

def get_password_validators(validator_conf):
    """
    import all password validators modules
    and raise exception if impossible to import
    :param validator_conf:
    :return:
    """
    validators = []
    for validator in validator_conf:
        try:
            c_class = import_string(validator['NAME'])
        except ImportError:
            msg = "The module in NAME could not be imported: %s. Check your AUTH_PASSWORD_VALIDATORS setting."
            raise ImproperlyConfigured(msg % validator['NAME'])
        validators.append(c_class(**validator.get('OPTIONS', {})))

    return validators


@csrf_exempt
def check_password(request):
    """
    checks password reliability,
    works only with post requests!
    csrf is off because there are
    no vulnerabilities to exploit.
    :param request:
    :return:
    """

    password = request.POST.get("password")
    validators = get_default_password_validators()

    for validator in validators:
        try:
            validator.validate(password)
        except ValidationError as error:
            return HttpResponse(json.dumps({"answer": 0, "error": error.code}),
                                content_type="application/json")

    return OK_response
	def get_default_password_validators():
	return get_password_validators(settings.AUTH_PASSWORD_VALIDATORS)

	def get_password_validators(validator_conf):
	"""
	import all password validators modules
	and raise exception if impossible to import
	:param validator_conf:
	:return:
	"""
	validators = []
	for validator in validator_conf:
	try:
	c_class = import_string(validator['NAME'])
	except ImportError:
	msg = "The module in NAME could not be imported: %s. Check your AUTH_PASSWORD_VALIDATORS setting."
	raise ImproperlyConfigured(msg % validator['NAME'])
	validators.append(c_class(**validator.get('OPTIONS', {})))

	return validators



	@csrf_exempt
	def check_password(request):
	"""
	checks password reliability,
	works only with post requests!
	csrf is off because there are
	no vulnerabilities to exploit.
	:param request:
	:return:
	"""

	password = request.POST.get("password")
	validators = get_default_password_validators()

	for validator in validators:
	try:
	validator.validate(password)
	except ValidationError as error:
	return HttpResponse(json.dumps({"answer": 0, "error": error.code}),
	content_type="application/json")

	return OK_response