通过 
搜索
搜索agonyz / contao-haveibeenpwned-bundle
该扩展在用户通过HaveIBeenPwned Api登录时自动检查用户的密码
0.1.1
2023-02-26 22:54 UTC
Requires
- php: ^7.4 || ^8.0
- contao/core-bundle: ^4.13
- symfony/config: ^5.4
- symfony/dependency-injection: ^5.4
- symfony/http-kernel: ^5.4
- symfony/validator: ^5.4
Requires (Dev)
- bamarni/composer-bin-plugin: ^1.5
- contao/manager-plugin: ^2.0
- phpunit/phpunit: ^9.5
- symfony/phpunit-bridge: ^6.1
Conflicts
- contao/manager-plugin: <2.0 || >=3.0
This package is auto-updated.
Last update: 2024-09-27 02:24:19 UTC
README
Contao CMS的扩展
该扩展可以使用Have I Been Pwned Api检查用户的密码是否被泄露。它利用了Symfony的NotCompromisedPassword - 功能来执行此操作。此功能在用户登录后端后会自动触发。
安装
在CLI中运行composer require agonyz/contao-haveibeenpwned-bundle来安装扩展。
配置
# config/config.yml # Agonyz Contao Have I Been Pwned Bundle agonyz_contao_have_i_been_pwned: user_notice: 'Hello User<br>Your Password was found on a leaked password list<br>Please change your password.' # the notice that should be displayed to the user in the backend
请记住,每次在config.yml中进行更改后都要清除缓存。
禁用通知
您可以在用户设置中禁用用户的通知。
示例
此截图显示了一个用户使用泄露的密码登录后的示例。
