weak passwords report

This commit is contained in:
Kyle Spearrin 2018-12-11 17:49:51 -05:00
parent dc1ffafdf3
commit 3963990831
6 changed files with 181 additions and 3 deletions

View File

@ -55,6 +55,7 @@ import { PasswordGeneratorComponent } from './tools/password-generator.component
import { ReusedPasswordsReportComponent } from './tools/reused-passwords-report.component';
import { ToolsComponent } from './tools/tools.component';
import { UnsecuredWebsitesReportComponent } from './tools/unsecured-websites-report.component';
import { WeakPasswordsReportComponent } from './tools/weak-passwords-report.component';
import { VaultComponent } from './vault/vault.component';
@ -160,6 +161,11 @@ const routes: Routes = [
component: UnsecuredWebsitesReportComponent,
data: { titleId: 'unsecuredWebsitesReport' },
},
{
path: 'weak-passwords-report',
component: WeakPasswordsReportComponent,
data: { titleId: 'weakPasswordsReport' },
},
],
},
],

View File

@ -111,6 +111,7 @@ import { PasswordGeneratorComponent } from './tools/password-generator.component
import { ReusedPasswordsReportComponent } from './tools/reused-passwords-report.component';
import { ToolsComponent } from './tools/tools.component';
import { UnsecuredWebsitesReportComponent } from './tools/unsecured-websites-report.component';
import { WeakPasswordsReportComponent } from './tools/weak-passwords-report.component';
import { AddEditComponent } from './vault/add-edit.component';
import { AttachmentsComponent } from './vault/attachments.component';
@ -301,6 +302,7 @@ registerLocaleData(localeZhCn, 'zh-CN');
VerifyEmailComponent,
VerifyEmailTokenComponent,
VerifyRecoverDeleteComponent,
WeakPasswordsReportComponent,
],
entryComponents: [
AddEditComponent,

View File

@ -27,6 +27,9 @@
<a routerLink="unsecured-websites-report" class="list-group-item" routerLinkActive="active">
{{'unsecuredWebsitesReport' | i18n}}
</a>
<a routerLink="weak-passwords-report" class="list-group-item" routerLinkActive="active">
{{'weakPasswordsReport' | i18n}}
</a>
</div>
</div>
</div>

View File

@ -0,0 +1,44 @@
<div class="page-header">
<h1>
{{'weakPasswordsReport' | i18n}}
<small *ngIf="hasLoaded && loading">
<i class="fa fa-spinner fa-spin text-muted" title="{{'loading' | i18n}}"></i>
</small>
</h1>
</div>
<p>{{'weakPasswordsReportDesc' | i18n}}</p>
<div *ngIf="!hasLoaded && loading">
<i class="fa fa-spinner fa-spin text-muted" title="{{'loading' | i18n}}"></i>
</div>
<div class="mt-4" *ngIf="!loading">
<app-callout type="success" title="{{'goodNews' | i18n}}" *ngIf="!ciphers.length">
{{'noWeakPasswords'}}
</app-callout>
<ng-container *ngIf="ciphers.length">
<app-callout type="danger" title="{{'weakPasswordsFound' | i18n}}">
{{'weakPasswordsFoundDesc' | i18n : ciphers.length}}
</app-callout>
<table class="table table-hover table-list table-ciphers">
<tbody>
<tr *ngFor="let c of ciphers">
<td class="table-list-icon">
<app-vault-icon [cipher]="c"></app-vault-icon>
</td>
<td class="reduced-lh wrap">
<a href="#" appStopClick (click)="selectCipher(c)" title="{{'editItem' | i18n}}">{{c.name}}</a>
<i class="fa fa-share-alt" *ngIf="!organization && c.organizationId" title="{{'shared' | i18n}}"></i>
<i class="fa fa-paperclip" title="{{'attachments' | i18n}}" *ngIf="c.hasAttachments"></i>
<br>
<small>{{c.subTitle}}</small>
</td>
<td class="text-right">
<span class="badge badge-{{passwordStrengthMap.get(c.id)[1]}}">
{{passwordStrengthMap.get(c.id)[0] | i18n}}
</span>
</td>
</tr>
</tbody>
</table>
</ng-container>
</div>
<ng-template #cipherAddEdit></ng-template>

View File

@ -0,0 +1,98 @@
import {
Component,
ComponentFactoryResolver,
OnInit,
ViewChild,
ViewContainerRef,
} from '@angular/core';
import { CipherService } from 'jslib/abstractions/cipher.service';
import { PasswordGenerationService } from 'jslib/abstractions/passwordGeneration.service';
import { CipherView } from 'jslib/models/view/cipherView';
import { CipherType } from 'jslib/enums/cipherType';
import { ModalComponent } from '../modal.component';
import { AddEditComponent } from '../vault/add-edit.component';
@Component({
selector: 'app-weak-passwords-report',
templateUrl: 'weak-passwords-report.component.html',
})
export class WeakPasswordsReportComponent implements OnInit {
@ViewChild('cipherAddEdit', { read: ViewContainerRef }) cipherAddEditModalRef: ViewContainerRef;
loading = true;
hasLoaded = false;
ciphers: CipherView[] = [];
passwordStrengthMap = new Map<string, [string, string]>();
private modal: ModalComponent = null;
constructor(private ciphersService: CipherService, private passwordGenerationService: PasswordGenerationService,
private componentFactoryResolver: ComponentFactoryResolver) { }
async ngOnInit() {
await this.load();
this.hasLoaded = true;
}
async load() {
this.loading = true;
const allCiphers = await this.ciphersService.getAllDecrypted();
const weakPasswordCiphers: CipherView[] = [];
allCiphers.forEach((c) => {
if (c.type !== CipherType.Login || c.login.password == null || c.login.password === '') {
return;
}
const result = this.passwordGenerationService.passwordStrength(c.login.password);
if (result.score <= 3) {
this.passwordStrengthMap.set(c.id, this.scoreKey(result.score));
weakPasswordCiphers.push(c);
}
});
this.ciphers = weakPasswordCiphers;
this.loading = false;
}
selectCipher(cipher: CipherView) {
if (this.modal != null) {
this.modal.close();
}
const factory = this.componentFactoryResolver.resolveComponentFactory(ModalComponent);
this.modal = this.cipherAddEditModalRef.createComponent(factory).instance;
const childComponent = this.modal.show<AddEditComponent>(
AddEditComponent, this.cipherAddEditModalRef);
childComponent.cipherId = cipher == null ? null : cipher.id;
childComponent.onSavedCipher.subscribe(async (c: CipherView) => {
this.modal.close();
await this.load();
});
childComponent.onDeletedCipher.subscribe(async (c: CipherView) => {
this.modal.close();
await this.load();
});
this.modal.onClosed.subscribe(() => {
this.modal = null;
});
return childComponent;
}
private scoreKey(score: number): [string, string] {
switch (score) {
case 4:
return ['strong', 'success'];
case 3:
return ['good', 'primary'];
case 2:
return ['weak', 'warning'];
default:
return ['veryWeak', 'danger'];
}
}
}

View File

@ -1308,6 +1308,27 @@
"noUnsecuredWebsites": {
"message": "No items in your vault have unsecured URIs."
},
"weakPasswordsReport": {
"message": "Weak Passwords Report"
},
"weakPasswordsReportDesc": {
"message": "Weak passwords can easily be guessed by hackers and automated tools that brute force passwords."
},
"weakPasswordsFound": {
"message": "Weak Passwords Found"
},
"weakPasswordsFoundDesc": {
"message": "We found $COUNT$ items in your vault that have weak passwords. You should update them to use stronger passwords.",
"placeholders": {
"count": {
"content": "$1",
"example": "8"
}
}
},
"noWeakPasswords": {
"message": "No items in your vault have weak passwords."
},
"reusedPasswordsReport": {
"message": "Reused Passwords Report"
},
@ -2585,15 +2606,19 @@
},
"strong": {
"message": "Strong",
"description": "ex. A strong password. Scale: Weak -> Good -> Strong"
"description": "ex. A strong password. Scale: Very Weak -> Weak -> Good -> Strong"
},
"good": {
"message": "Good",
"description": "ex. A good password. Scale: Weak -> Good -> Strong"
"description": "ex. A good password. Scale: Very Weak -> Weak -> Good -> Strong"
},
"weak": {
"message": "Weak",
"description": "ex. A weak password. Scale: Weak -> Good -> Strong"
"description": "ex. A weak password. Scale: Very Weak -> Weak -> Good -> Strong"
},
"veryWeak": {
"message": "Very Weak",
"description": "ex. A very weak password. Scale: Very Weak -> Weak -> Good -> Strong"
},
"weakMasterPassword": {
"message": "Weak Master Password"