Strong Password Detection











up vote
5
down vote

favorite












I did the following Excercise from Automate the boring stuff with Python Chapter 7:




Write a function that uses regular exppressions to make sure the
password string it is passed is strong. A strong password is defined
as one that is at least eight characters long, contains both uppercase
and lowercase characters, and has a least one digit. You may need to
test the string against multiple regex patterns to validate its
strengh.




My Solution:



I wrote four functions which check the individual aspects of the required password detection. Then these four functions are used to write the strong-password function which validates strings against all the requirements.



To test this i also checked out the unittest module.



Please let me know if theres sth to do better.



Is this a good way to test?
Are these good test cases?
Are there any bad practices/ little issues in the coding / testing?



Heres the code:



password.py 



import re



def valid_length(string):

    """checks if length is > 8 to be a strong password"""

    lenght_regex = re.compile(r'.{8,}')

    if not lenght_regex.search(string):

        return False

    return True



def has_upper(string):

    """Check if string contains one upper letter or more"""

    upper_regex = re.compile(r'.*[A-Z]+.*')

    if not upper_regex.search(string):

        return False

    return True



def has_lower(string):

    """Check if string contains one lower letter or more"""

    lower_regex = re.compile(r'.*[a-z]+.*')

    if not lower_regex.search(string):

        return False

    return True



def has_digit(string):

    """Check if one or more signs is a digit"""

    digit_regex = re.compile(r'.*d+.*')

    if not digit_regex.search(string):

        return False

    return True



def strong_password(password):

    """

    Validate if passed password is considered "strong",

    Password is considered strong if:

    - is eight characters or longer

    - contains uppercase and lowercase characters

    - has one digit or more

    """

    if not valid_length(password):

        return False

    if not has_upper(password):

        return False

    if not has_lower(password):

        return False

    if not has_digit(password):

        return False

    return True


password_unit_test.py 



import unittest

import password as p



class TestIsStrongPassword(unittest.TestCase):

    """Test of strong password detection function."""



    def test_valid_length(self):

        """Test that only a string length of > 8 is accecpted"""

        self.assertEqual(p.valid_length('abcd'), False)

        self.assertEqual(p.valid_length('abcdefg'), False)

        self.assertEqual(p.valid_length('abcdefgh'), True)

        self.assertEqual(p.valid_length('abcdefghi'), True)



    def test_has_upper(self):

        """Test that only strings containing uppercase are accepted"""

        self.assertEqual(p.has_upper('abcd'), False)

        self.assertEqual(p.has_upper('aBcd'), True)

        self.assertEqual(p.has_upper('aBCd'), True)

        self.assertEqual(p.has_upper('Abcd'), True)

        self.assertEqual(p.has_upper('abcD'), True)

        self.assertEqual(p.has_upper('ABCD'), True)



    def test_has_lower(self):

        """Test that only strings containing lowercase are accepted"""

        self.assertEqual(p.has_lower('abcd'), True)

        self.assertEqual(p.has_lower('aBcd'), True)

        self.assertEqual(p.has_lower('aBCd'), True)

        self.assertEqual(p.has_lower('Abcd'), True)

        self.assertEqual(p.has_lower('abcD'), True)

        self.assertEqual(p.has_lower('ABCD'), False)



    def test_has_digit(self):

        """Test that only strings containing lowercase are accepted"""

        self.assertEqual(p.has_digit('abcd'), False)

        self.assertEqual(p.has_digit('a1cd'), True)

        self.assertEqual(p.has_digit('a12d'), True)

        self.assertEqual(p.has_digit('1bcd'), True)

        self.assertEqual(p.has_digit('abc1'), True)

        self.assertEqual(p.has_digit('1234'), True)



    def test_strong_password(self):

        """

        Test strong password function. Passed strings have to pass 

        all tests in valid_length, uppper, lower and digit functions.

        """



        # Test from single functions should all fail 

        # (not met all criteria)

        self.assertEqual(False, p.strong_password('abcd'))

        self.assertEqual(False, p.strong_password('abcdefg'))

        self.assertEqual(False, p.strong_password('abcdefgh'))

        self.assertEqual(False, p.strong_password('abcdefghi'))



        self.assertEqual(False, p.strong_password('abcd'))

        self.assertEqual(False, p.strong_password('aBcd'))

        self.assertEqual(False, p.strong_password('aBCd'))

        self.assertEqual(False, p.strong_password('Abcd'))

        self.assertEqual(False, p.strong_password('abcD'))

        self.assertEqual(False, p.strong_password('ABCD'))



        self.assertEqual(False, p.strong_password('abcd'))

        self.assertEqual(False, p.strong_password('a1cd'))

        self.assertEqual(False, p.strong_password('a12d'))

        self.assertEqual(False, p.strong_password('1bcd'))

        self.assertEqual(False, p.strong_password('abc1'))

        self.assertEqual(False, p.strong_password('1234'))



        # Combinations which met more than one cirteria

        self.assertEqual(False, p.strong_password('12345678'))

        self.assertEqual(False, p.strong_password('Abcdefgh'))

        self.assertEqual(False, p.strong_password('A12345678'))

        self.assertEqual(False, p.strong_password('Abcdfg1'))

        self.assertEqual(True, p.strong_password('A12345678b'))

        self.assertEqual(True, p.strong_password('Abcdefg1'))

        self.assertEqual(True, p.strong_password('123456aB'))

        self.assertEqual(True, p.strong_password('aB345678'))



if __name__ == '__main__':

    unittest.main()





python beginner python-3.x regex







share|improve this question
























  • Just for the record, these are really bad criteria for strong passwords
    – Oscar Smith
    Nov 28 at 10:50










  • @OscarSmith Yes in my answer I've added the obligatory xkcd as a note ;)
    – Ludisposed
    Nov 28 at 10:56










  • well it is just an excercise not a real time application
    – Sandro4912
    Nov 28 at 11:12















up vote
5
down vote

favorite












I did the following Excercise from Automate the boring stuff with Python Chapter 7:




Write a function that uses regular exppressions to make sure the
password string it is passed is strong. A strong password is defined
as one that is at least eight characters long, contains both uppercase
and lowercase characters, and has a least one digit. You may need to
test the string against multiple regex patterns to validate its
strengh.




My Solution:



I wrote four functions which check the individual aspects of the required password detection. Then these four functions are used to write the strong-password function which validates strings against all the requirements.



To test this i also checked out the unittest module.



Please let me know if theres sth to do better.



Is this a good way to test?
Are these good test cases?
Are there any bad practices/ little issues in the coding / testing?



Heres the code:



password.py 



import re



def valid_length(string):

    """checks if length is > 8 to be a strong password"""

    lenght_regex = re.compile(r'.{8,}')

    if not lenght_regex.search(string):

        return False

    return True



def has_upper(string):

    """Check if string contains one upper letter or more"""

    upper_regex = re.compile(r'.*[A-Z]+.*')

    if not upper_regex.search(string):

        return False

    return True



def has_lower(string):

    """Check if string contains one lower letter or more"""

    lower_regex = re.compile(r'.*[a-z]+.*')

    if not lower_regex.search(string):

        return False

    return True



def has_digit(string):

    """Check if one or more signs is a digit"""

    digit_regex = re.compile(r'.*d+.*')

    if not digit_regex.search(string):

        return False

    return True



def strong_password(password):

    """

    Validate if passed password is considered "strong",

    Password is considered strong if:

    - is eight characters or longer

    - contains uppercase and lowercase characters

    - has one digit or more

    """

    if not valid_length(password):

        return False

    if not has_upper(password):

        return False

    if not has_lower(password):

        return False

    if not has_digit(password):

        return False

    return True


password_unit_test.py 



import unittest

import password as p



class TestIsStrongPassword(unittest.TestCase):

    """Test of strong password detection function."""



    def test_valid_length(self):

        """Test that only a string length of > 8 is accecpted"""

        self.assertEqual(p.valid_length('abcd'), False)

        self.assertEqual(p.valid_length('abcdefg'), False)

        self.assertEqual(p.valid_length('abcdefgh'), True)

        self.assertEqual(p.valid_length('abcdefghi'), True)



    def test_has_upper(self):

        """Test that only strings containing uppercase are accepted"""

        self.assertEqual(p.has_upper('abcd'), False)

        self.assertEqual(p.has_upper('aBcd'), True)

        self.assertEqual(p.has_upper('aBCd'), True)

        self.assertEqual(p.has_upper('Abcd'), True)

        self.assertEqual(p.has_upper('abcD'), True)

        self.assertEqual(p.has_upper('ABCD'), True)



    def test_has_lower(self):

        """Test that only strings containing lowercase are accepted"""

        self.assertEqual(p.has_lower('abcd'), True)

        self.assertEqual(p.has_lower('aBcd'), True)

        self.assertEqual(p.has_lower('aBCd'), True)

        self.assertEqual(p.has_lower('Abcd'), True)

        self.assertEqual(p.has_lower('abcD'), True)

        self.assertEqual(p.has_lower('ABCD'), False)



    def test_has_digit(self):

        """Test that only strings containing lowercase are accepted"""

        self.assertEqual(p.has_digit('abcd'), False)

        self.assertEqual(p.has_digit('a1cd'), True)

        self.assertEqual(p.has_digit('a12d'), True)

        self.assertEqual(p.has_digit('1bcd'), True)

        self.assertEqual(p.has_digit('abc1'), True)

        self.assertEqual(p.has_digit('1234'), True)



    def test_strong_password(self):

        """

        Test strong password function. Passed strings have to pass 

        all tests in valid_length, uppper, lower and digit functions.

        """



        # Test from single functions should all fail 

        # (not met all criteria)

        self.assertEqual(False, p.strong_password('abcd'))

        self.assertEqual(False, p.strong_password('abcdefg'))

        self.assertEqual(False, p.strong_password('abcdefgh'))

        self.assertEqual(False, p.strong_password('abcdefghi'))



        self.assertEqual(False, p.strong_password('abcd'))

        self.assertEqual(False, p.strong_password('aBcd'))

        self.assertEqual(False, p.strong_password('aBCd'))

        self.assertEqual(False, p.strong_password('Abcd'))

        self.assertEqual(False, p.strong_password('abcD'))

        self.assertEqual(False, p.strong_password('ABCD'))



        self.assertEqual(False, p.strong_password('abcd'))

        self.assertEqual(False, p.strong_password('a1cd'))

        self.assertEqual(False, p.strong_password('a12d'))

        self.assertEqual(False, p.strong_password('1bcd'))

        self.assertEqual(False, p.strong_password('abc1'))

        self.assertEqual(False, p.strong_password('1234'))



        # Combinations which met more than one cirteria

        self.assertEqual(False, p.strong_password('12345678'))

        self.assertEqual(False, p.strong_password('Abcdefgh'))

        self.assertEqual(False, p.strong_password('A12345678'))

        self.assertEqual(False, p.strong_password('Abcdfg1'))

        self.assertEqual(True, p.strong_password('A12345678b'))

        self.assertEqual(True, p.strong_password('Abcdefg1'))

        self.assertEqual(True, p.strong_password('123456aB'))

        self.assertEqual(True, p.strong_password('aB345678'))



if __name__ == '__main__':

    unittest.main()





python beginner python-3.x regex







share|improve this question
























  • Just for the record, these are really bad criteria for strong passwords
    – Oscar Smith
    Nov 28 at 10:50










  • @OscarSmith Yes in my answer I've added the obligatory xkcd as a note ;)
    – Ludisposed
    Nov 28 at 10:56










  • well it is just an excercise not a real time application
    – Sandro4912
    Nov 28 at 11:12













up vote
5
down vote

favorite









up vote
5
down vote

favorite











I did the following Excercise from Automate the boring stuff with Python Chapter 7:




Write a function that uses regular exppressions to make sure the
password string it is passed is strong. A strong password is defined
as one that is at least eight characters long, contains both uppercase
and lowercase characters, and has a least one digit. You may need to
test the string against multiple regex patterns to validate its
strengh.




My Solution:



I wrote four functions which check the individual aspects of the required password detection. Then these four functions are used to write the strong-password function which validates strings against all the requirements.



To test this i also checked out the unittest module.



Please let me know if theres sth to do better.



Is this a good way to test?
Are these good test cases?
Are there any bad practices/ little issues in the coding / testing?



Heres the code:



password.py 



import re



def valid_length(string):

    """checks if length is > 8 to be a strong password"""

    lenght_regex = re.compile(r'.{8,}')

    if not lenght_regex.search(string):

        return False

    return True



def has_upper(string):

    """Check if string contains one upper letter or more"""

    upper_regex = re.compile(r'.*[A-Z]+.*')

    if not upper_regex.search(string):

        return False

    return True



def has_lower(string):

    """Check if string contains one lower letter or more"""

    lower_regex = re.compile(r'.*[a-z]+.*')

    if not lower_regex.search(string):

        return False

    return True



def has_digit(string):

    """Check if one or more signs is a digit"""

    digit_regex = re.compile(r'.*d+.*')

    if not digit_regex.search(string):

        return False

    return True



def strong_password(password):

    """

    Validate if passed password is considered "strong",

    Password is considered strong if:

    - is eight characters or longer

    - contains uppercase and lowercase characters

    - has one digit or more

    """

    if not valid_length(password):

        return False

    if not has_upper(password):

        return False

    if not has_lower(password):

        return False

    if not has_digit(password):

        return False

    return True


password_unit_test.py 



import unittest

import password as p



class TestIsStrongPassword(unittest.TestCase):

    """Test of strong password detection function."""



    def test_valid_length(self):

        """Test that only a string length of > 8 is accecpted"""

        self.assertEqual(p.valid_length('abcd'), False)

        self.assertEqual(p.valid_length('abcdefg'), False)

        self.assertEqual(p.valid_length('abcdefgh'), True)

        self.assertEqual(p.valid_length('abcdefghi'), True)



    def test_has_upper(self):

        """Test that only strings containing uppercase are accepted"""

        self.assertEqual(p.has_upper('abcd'), False)

        self.assertEqual(p.has_upper('aBcd'), True)

        self.assertEqual(p.has_upper('aBCd'), True)

        self.assertEqual(p.has_upper('Abcd'), True)

        self.assertEqual(p.has_upper('abcD'), True)

        self.assertEqual(p.has_upper('ABCD'), True)



    def test_has_lower(self):

        """Test that only strings containing lowercase are accepted"""

        self.assertEqual(p.has_lower('abcd'), True)

        self.assertEqual(p.has_lower('aBcd'), True)

        self.assertEqual(p.has_lower('aBCd'), True)

        self.assertEqual(p.has_lower('Abcd'), True)

        self.assertEqual(p.has_lower('abcD'), True)

        self.assertEqual(p.has_lower('ABCD'), False)



    def test_has_digit(self):

        """Test that only strings containing lowercase are accepted"""

        self.assertEqual(p.has_digit('abcd'), False)

        self.assertEqual(p.has_digit('a1cd'), True)

        self.assertEqual(p.has_digit('a12d'), True)

        self.assertEqual(p.has_digit('1bcd'), True)

        self.assertEqual(p.has_digit('abc1'), True)

        self.assertEqual(p.has_digit('1234'), True)



    def test_strong_password(self):

        """

        Test strong password function. Passed strings have to pass 

        all tests in valid_length, uppper, lower and digit functions.

        """



        # Test from single functions should all fail 

        # (not met all criteria)

        self.assertEqual(False, p.strong_password('abcd'))

        self.assertEqual(False, p.strong_password('abcdefg'))

        self.assertEqual(False, p.strong_password('abcdefgh'))

        self.assertEqual(False, p.strong_password('abcdefghi'))



        self.assertEqual(False, p.strong_password('abcd'))

        self.assertEqual(False, p.strong_password('aBcd'))

        self.assertEqual(False, p.strong_password('aBCd'))

        self.assertEqual(False, p.strong_password('Abcd'))

        self.assertEqual(False, p.strong_password('abcD'))

        self.assertEqual(False, p.strong_password('ABCD'))



        self.assertEqual(False, p.strong_password('abcd'))

        self.assertEqual(False, p.strong_password('a1cd'))

        self.assertEqual(False, p.strong_password('a12d'))

        self.assertEqual(False, p.strong_password('1bcd'))

        self.assertEqual(False, p.strong_password('abc1'))

        self.assertEqual(False, p.strong_password('1234'))



        # Combinations which met more than one cirteria

        self.assertEqual(False, p.strong_password('12345678'))

        self.assertEqual(False, p.strong_password('Abcdefgh'))

        self.assertEqual(False, p.strong_password('A12345678'))

        self.assertEqual(False, p.strong_password('Abcdfg1'))

        self.assertEqual(True, p.strong_password('A12345678b'))

        self.assertEqual(True, p.strong_password('Abcdefg1'))

        self.assertEqual(True, p.strong_password('123456aB'))

        self.assertEqual(True, p.strong_password('aB345678'))



if __name__ == '__main__':

    unittest.main()





python beginner python-3.x regex







share|improve this question















I did the following Excercise from Automate the boring stuff with Python Chapter 7:




Write a function that uses regular exppressions to make sure the
password string it is passed is strong. A strong password is defined
as one that is at least eight characters long, contains both uppercase
and lowercase characters, and has a least one digit. You may need to
test the string against multiple regex patterns to validate its
strengh.




My Solution:



I wrote four functions which check the individual aspects of the required password detection. Then these four functions are used to write the strong-password function which validates strings against all the requirements.



To test this i also checked out the unittest module.



Please let me know if theres sth to do better.



Is this a good way to test?
Are these good test cases?
Are there any bad practices/ little issues in the coding / testing?



Heres the code:



password.py 



import re



def valid_length(string):

    """checks if length is > 8 to be a strong password"""

    lenght_regex = re.compile(r'.{8,}')

    if not lenght_regex.search(string):

        return False

    return True



def has_upper(string):

    """Check if string contains one upper letter or more"""

    upper_regex = re.compile(r'.*[A-Z]+.*')

    if not upper_regex.search(string):

        return False

    return True



def has_lower(string):

    """Check if string contains one lower letter or more"""

    lower_regex = re.compile(r'.*[a-z]+.*')

    if not lower_regex.search(string):

        return False

    return True



def has_digit(string):

    """Check if one or more signs is a digit"""

    digit_regex = re.compile(r'.*d+.*')

    if not digit_regex.search(string):

        return False

    return True



def strong_password(password):

    """

    Validate if passed password is considered "strong",

    Password is considered strong if:

    - is eight characters or longer

    - contains uppercase and lowercase characters

    - has one digit or more

    """

    if not valid_length(password):

        return False

    if not has_upper(password):

        return False

    if not has_lower(password):

        return False

    if not has_digit(password):

        return False

    return True


password_unit_test.py 



import unittest

import password as p



class TestIsStrongPassword(unittest.TestCase):

    """Test of strong password detection function."""



    def test_valid_length(self):

        """Test that only a string length of > 8 is accecpted"""

        self.assertEqual(p.valid_length('abcd'), False)

        self.assertEqual(p.valid_length('abcdefg'), False)

        self.assertEqual(p.valid_length('abcdefgh'), True)

        self.assertEqual(p.valid_length('abcdefghi'), True)



    def test_has_upper(self):

        """Test that only strings containing uppercase are accepted"""

        self.assertEqual(p.has_upper('abcd'), False)

        self.assertEqual(p.has_upper('aBcd'), True)

        self.assertEqual(p.has_upper('aBCd'), True)

        self.assertEqual(p.has_upper('Abcd'), True)

        self.assertEqual(p.has_upper('abcD'), True)

        self.assertEqual(p.has_upper('ABCD'), True)



    def test_has_lower(self):

        """Test that only strings containing lowercase are accepted"""

        self.assertEqual(p.has_lower('abcd'), True)

        self.assertEqual(p.has_lower('aBcd'), True)

        self.assertEqual(p.has_lower('aBCd'), True)

        self.assertEqual(p.has_lower('Abcd'), True)

        self.assertEqual(p.has_lower('abcD'), True)

        self.assertEqual(p.has_lower('ABCD'), False)



    def test_has_digit(self):

        """Test that only strings containing lowercase are accepted"""

        self.assertEqual(p.has_digit('abcd'), False)

        self.assertEqual(p.has_digit('a1cd'), True)

        self.assertEqual(p.has_digit('a12d'), True)

        self.assertEqual(p.has_digit('1bcd'), True)

        self.assertEqual(p.has_digit('abc1'), True)

        self.assertEqual(p.has_digit('1234'), True)



    def test_strong_password(self):

        """

        Test strong password function. Passed strings have to pass 

        all tests in valid_length, uppper, lower and digit functions.

        """



        # Test from single functions should all fail 

        # (not met all criteria)

        self.assertEqual(False, p.strong_password('abcd'))

        self.assertEqual(False, p.strong_password('abcdefg'))

        self.assertEqual(False, p.strong_password('abcdefgh'))

        self.assertEqual(False, p.strong_password('abcdefghi'))



        self.assertEqual(False, p.strong_password('abcd'))

        self.assertEqual(False, p.strong_password('aBcd'))

        self.assertEqual(False, p.strong_password('aBCd'))

        self.assertEqual(False, p.strong_password('Abcd'))

        self.assertEqual(False, p.strong_password('abcD'))

        self.assertEqual(False, p.strong_password('ABCD'))



        self.assertEqual(False, p.strong_password('abcd'))

        self.assertEqual(False, p.strong_password('a1cd'))

        self.assertEqual(False, p.strong_password('a12d'))

        self.assertEqual(False, p.strong_password('1bcd'))

        self.assertEqual(False, p.strong_password('abc1'))

        self.assertEqual(False, p.strong_password('1234'))



        # Combinations which met more than one cirteria

        self.assertEqual(False, p.strong_password('12345678'))

        self.assertEqual(False, p.strong_password('Abcdefgh'))

        self.assertEqual(False, p.strong_password('A12345678'))

        self.assertEqual(False, p.strong_password('Abcdfg1'))

        self.assertEqual(True, p.strong_password('A12345678b'))

        self.assertEqual(True, p.strong_password('Abcdefg1'))

        self.assertEqual(True, p.strong_password('123456aB'))

        self.assertEqual(True, p.strong_password('aB345678'))



if __name__ == '__main__':

    unittest.main()





python beginner python-3.x regex




python beginner python-3.x regex






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited yesterday









Mutantoe

1154




1154










asked Nov 27 at 20:25









Sandro4912

752121




752121












  • Just for the record, these are really bad criteria for strong passwords
    – Oscar Smith
    Nov 28 at 10:50










  • @OscarSmith Yes in my answer I've added the obligatory xkcd as a note ;)
    – Ludisposed
    Nov 28 at 10:56










  • well it is just an excercise not a real time application
    – Sandro4912
    Nov 28 at 11:12


















  • Just for the record, these are really bad criteria for strong passwords
    – Oscar Smith
    Nov 28 at 10:50










  • @OscarSmith Yes in my answer I've added the obligatory xkcd as a note ;)
    – Ludisposed
    Nov 28 at 10:56










  • well it is just an excercise not a real time application
    – Sandro4912
    Nov 28 at 11:12
















Just for the record, these are really bad criteria for strong passwords
– Oscar Smith
Nov 28 at 10:50




Just for the record, these are really bad criteria for strong passwords
– Oscar Smith
Nov 28 at 10:50












@OscarSmith Yes in my answer I've added the obligatory xkcd as a note ;)
– Ludisposed
Nov 28 at 10:56




@OscarSmith Yes in my answer I've added the obligatory xkcd as a note ;)
– Ludisposed
Nov 28 at 10:56












well it is just an excercise not a real time application
– Sandro4912
Nov 28 at 11:12




well it is just an excercise not a real time application
– Sandro4912
Nov 28 at 11:12










1 Answer
1






active

oldest

votes

















up vote
7
down vote



accepted










Good job on the easily understandable code.



Good




  • Good functions, with clear names!

  • Modular approach

  • Unittests

  • Docstrings


Improvements





  • Regex with lots of backtracking can produce some major performance loss



    Consider that this re.search(r'.*[A-Z]+.*', string)



    is equal to re.search(r'[A-Z]+', string)



    or even
    re.search(r'[A-Z]', string) as Toby correctly suggested.



    Since we only care if one character is in the given string.




  • Return directly



    Instead of doing



    if exdpression:
    
    return True
    
return False


    Return directly with return expression



  • Your compile has no performance gain, because with every new string it will compile again. Instead you could compile only onc,e and store it as a constant.


  • Use the all keyword to check if all expressions evaluates to truthy.



  • Instead of assertEqual(expression, function)



    Do the more direct assertFalse or assertTrue




Revised code



import re

import unittest



PASSWORD_CHECKS = [

    re.compile(r'[A-Z]'),

    re.compile(r'.{8,}'),

    re.compile(r'[a-z]'),

    re.compile(r'[0-9]'),

]



def strong_password(password):

    """

    Validate if passed password is considered "strong",

    Password is considered strong if:

      - is eight characters or longer

      - contains uppercase and lowercase characters

      - has one digit or more

    """

    return all(check.search(password) for check in PASSWORD_CHECKS)



class TestIsStrongPassword(unittest.TestCase):

    """Test of strong password detection function."""

    def test_strong_password(self):

        """

        Test strong password function. Passed strings have to pass 

        all tests in valid_length, uppper, lower and digit functions.

        """



        # Test from single functions should all fail 

        # (not met all criteria)

        self.assertFalse(strong_password('abcd'))

        self.assertFalse(strong_password('abcdefg'))

        self.assertFalse(strong_password('abcdefgh'))

        self.assertFalse(strong_password('abcdefghi'))



        self.assertFalse(strong_password('abcd'))

        self.assertFalse(strong_password('aBcd'))

        self.assertFalse(strong_password('aBCd'))

        self.assertFalse(strong_password('Abcd'))

        self.assertFalse(strong_password('abcD'))

        self.assertFalse(strong_password('ABCD'))



        self.assertFalse(strong_password('abcd'))

        self.assertFalse(strong_password('a1cd'))

        self.assertFalse(strong_password('a12d'))

        self.assertFalse(strong_password('1bcd'))

        self.assertFalse(strong_password('abc1'))

        self.assertFalse(strong_password('1234'))



        # Combinations which met more than one cirteria

        self.assertFalse(strong_password('12345678'))

        self.assertFalse(strong_password('Abcdefgh'))

        self.assertFalse(strong_password('A12345678'))

        self.assertFalse(strong_password('Abcdfg1'))

        self.assertTrue(strong_password('A12345678b'))

        self.assertTrue(strong_password('Abcdefg1'))

        self.assertTrue(strong_password('123456aB'))

        self.assertTrue(strong_password('aB345678'))



if __name__ == '__main__':

    unittest.main()


Notes



What is a strong password? Obligatory xkcd






share|improve this answer



















  • 1




    I don't think the + in any of those regexes buys anything valuable - "contains at least one" means that you can be content after matching exactly one.
    – Toby Speight
    yesterday











Your Answer





StackExchange.ifUsing("editor", function () {
return StackExchange.using("mathjaxEditing", function () {
StackExchange.MarkdownEditor.creationCallbacks.add(function (editor, postfix) {
StackExchange.mathjaxEditing.prepareWmdForMathJax(editor, postfix, [["\$", "\$"]]);
});
});
}, "mathjax-editing");

StackExchange.ifUsing("editor", function () {
StackExchange.using("externalEditor", function () {
StackExchange.using("snippets", function () {
StackExchange.snippets.init();
});
});
}, "code-snippets");

StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "196"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});














draft saved

draft discarded


















StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fcodereview.stackexchange.com%2fquestions%2f208567%2fstrong-password-detection%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown

























1 Answer
1






active

oldest

votes








1 Answer
1






active

oldest

votes









active

oldest

votes






active

oldest

votes








up vote
7
down vote



accepted










Good job on the easily understandable code.



Good




  • Good functions, with clear names!

  • Modular approach

  • Unittests

  • Docstrings


Improvements





  • Regex with lots of backtracking can produce some major performance loss



    Consider that this re.search(r'.*[A-Z]+.*', string)



    is equal to re.search(r'[A-Z]+', string)



    or even
    re.search(r'[A-Z]', string) as Toby correctly suggested.



    Since we only care if one character is in the given string.




  • Return directly



    Instead of doing



    if exdpression:
    
    return True
    
return False


    Return directly with return expression



  • Your compile has no performance gain, because with every new string it will compile again. Instead you could compile only onc,e and store it as a constant.


  • Use the all keyword to check if all expressions evaluates to truthy.



  • Instead of assertEqual(expression, function)



    Do the more direct assertFalse or assertTrue




Revised code



import re

import unittest



PASSWORD_CHECKS = [

    re.compile(r'[A-Z]'),

    re.compile(r'.{8,}'),

    re.compile(r'[a-z]'),

    re.compile(r'[0-9]'),

]



def strong_password(password):

    """

    Validate if passed password is considered "strong",

    Password is considered strong if:

      - is eight characters or longer

      - contains uppercase and lowercase characters

      - has one digit or more

    """

    return all(check.search(password) for check in PASSWORD_CHECKS)



class TestIsStrongPassword(unittest.TestCase):

    """Test of strong password detection function."""

    def test_strong_password(self):

        """

        Test strong password function. Passed strings have to pass 

        all tests in valid_length, uppper, lower and digit functions.

        """



        # Test from single functions should all fail 

        # (not met all criteria)

        self.assertFalse(strong_password('abcd'))

        self.assertFalse(strong_password('abcdefg'))

        self.assertFalse(strong_password('abcdefgh'))

        self.assertFalse(strong_password('abcdefghi'))



        self.assertFalse(strong_password('abcd'))

        self.assertFalse(strong_password('aBcd'))

        self.assertFalse(strong_password('aBCd'))

        self.assertFalse(strong_password('Abcd'))

        self.assertFalse(strong_password('abcD'))

        self.assertFalse(strong_password('ABCD'))



        self.assertFalse(strong_password('abcd'))

        self.assertFalse(strong_password('a1cd'))

        self.assertFalse(strong_password('a12d'))

        self.assertFalse(strong_password('1bcd'))

        self.assertFalse(strong_password('abc1'))

        self.assertFalse(strong_password('1234'))



        # Combinations which met more than one cirteria

        self.assertFalse(strong_password('12345678'))

        self.assertFalse(strong_password('Abcdefgh'))

        self.assertFalse(strong_password('A12345678'))

        self.assertFalse(strong_password('Abcdfg1'))

        self.assertTrue(strong_password('A12345678b'))

        self.assertTrue(strong_password('Abcdefg1'))

        self.assertTrue(strong_password('123456aB'))

        self.assertTrue(strong_password('aB345678'))



if __name__ == '__main__':

    unittest.main()


Notes



What is a strong password? Obligatory xkcd






share|improve this answer



















  • 1




    I don't think the + in any of those regexes buys anything valuable - "contains at least one" means that you can be content after matching exactly one.
    – Toby Speight
    yesterday















up vote
7
down vote



accepted










Good job on the easily understandable code.



Good




  • Good functions, with clear names!

  • Modular approach

  • Unittests

  • Docstrings


Improvements





  • Regex with lots of backtracking can produce some major performance loss



    Consider that this re.search(r'.*[A-Z]+.*', string)



    is equal to re.search(r'[A-Z]+', string)



    or even
    re.search(r'[A-Z]', string) as Toby correctly suggested.



    Since we only care if one character is in the given string.




  • Return directly



    Instead of doing



    if exdpression:
    
    return True
    
return False


    Return directly with return expression



  • Your compile has no performance gain, because with every new string it will compile again. Instead you could compile only onc,e and store it as a constant.


  • Use the all keyword to check if all expressions evaluates to truthy.



  • Instead of assertEqual(expression, function)



    Do the more direct assertFalse or assertTrue




Revised code



import re

import unittest



PASSWORD_CHECKS = [

    re.compile(r'[A-Z]'),

    re.compile(r'.{8,}'),

    re.compile(r'[a-z]'),

    re.compile(r'[0-9]'),

]



def strong_password(password):

    """

    Validate if passed password is considered "strong",

    Password is considered strong if:

      - is eight characters or longer

      - contains uppercase and lowercase characters

      - has one digit or more

    """

    return all(check.search(password) for check in PASSWORD_CHECKS)



class TestIsStrongPassword(unittest.TestCase):

    """Test of strong password detection function."""

    def test_strong_password(self):

        """

        Test strong password function. Passed strings have to pass 

        all tests in valid_length, uppper, lower and digit functions.

        """



        # Test from single functions should all fail 

        # (not met all criteria)

        self.assertFalse(strong_password('abcd'))

        self.assertFalse(strong_password('abcdefg'))

        self.assertFalse(strong_password('abcdefgh'))

        self.assertFalse(strong_password('abcdefghi'))



        self.assertFalse(strong_password('abcd'))

        self.assertFalse(strong_password('aBcd'))

        self.assertFalse(strong_password('aBCd'))

        self.assertFalse(strong_password('Abcd'))

        self.assertFalse(strong_password('abcD'))

        self.assertFalse(strong_password('ABCD'))



        self.assertFalse(strong_password('abcd'))

        self.assertFalse(strong_password('a1cd'))

        self.assertFalse(strong_password('a12d'))

        self.assertFalse(strong_password('1bcd'))

        self.assertFalse(strong_password('abc1'))

        self.assertFalse(strong_password('1234'))



        # Combinations which met more than one cirteria

        self.assertFalse(strong_password('12345678'))

        self.assertFalse(strong_password('Abcdefgh'))

        self.assertFalse(strong_password('A12345678'))

        self.assertFalse(strong_password('Abcdfg1'))

        self.assertTrue(strong_password('A12345678b'))

        self.assertTrue(strong_password('Abcdefg1'))

        self.assertTrue(strong_password('123456aB'))

        self.assertTrue(strong_password('aB345678'))



if __name__ == '__main__':

    unittest.main()


Notes



What is a strong password? Obligatory xkcd






share|improve this answer



















  • 1




    I don't think the + in any of those regexes buys anything valuable - "contains at least one" means that you can be content after matching exactly one.
    – Toby Speight
    yesterday













up vote
7
down vote



accepted







up vote
7
down vote



accepted






Good job on the easily understandable code.



Good




  • Good functions, with clear names!

  • Modular approach

  • Unittests

  • Docstrings


Improvements





  • Regex with lots of backtracking can produce some major performance loss



    Consider that this re.search(r'.*[A-Z]+.*', string)



    is equal to re.search(r'[A-Z]+', string)



    or even
    re.search(r'[A-Z]', string) as Toby correctly suggested.



    Since we only care if one character is in the given string.




  • Return directly



    Instead of doing



    if exdpression:
    
    return True
    
return False


    Return directly with return expression



  • Your compile has no performance gain, because with every new string it will compile again. Instead you could compile only onc,e and store it as a constant.


  • Use the all keyword to check if all expressions evaluates to truthy.



  • Instead of assertEqual(expression, function)



    Do the more direct assertFalse or assertTrue




Revised code



import re

import unittest



PASSWORD_CHECKS = [

    re.compile(r'[A-Z]'),

    re.compile(r'.{8,}'),

    re.compile(r'[a-z]'),

    re.compile(r'[0-9]'),

]



def strong_password(password):

    """

    Validate if passed password is considered "strong",

    Password is considered strong if:

      - is eight characters or longer

      - contains uppercase and lowercase characters

      - has one digit or more

    """

    return all(check.search(password) for check in PASSWORD_CHECKS)



class TestIsStrongPassword(unittest.TestCase):

    """Test of strong password detection function."""

    def test_strong_password(self):

        """

        Test strong password function. Passed strings have to pass 

        all tests in valid_length, uppper, lower and digit functions.

        """



        # Test from single functions should all fail 

        # (not met all criteria)

        self.assertFalse(strong_password('abcd'))

        self.assertFalse(strong_password('abcdefg'))

        self.assertFalse(strong_password('abcdefgh'))

        self.assertFalse(strong_password('abcdefghi'))



        self.assertFalse(strong_password('abcd'))

        self.assertFalse(strong_password('aBcd'))

        self.assertFalse(strong_password('aBCd'))

        self.assertFalse(strong_password('Abcd'))

        self.assertFalse(strong_password('abcD'))

        self.assertFalse(strong_password('ABCD'))



        self.assertFalse(strong_password('abcd'))

        self.assertFalse(strong_password('a1cd'))

        self.assertFalse(strong_password('a12d'))

        self.assertFalse(strong_password('1bcd'))

        self.assertFalse(strong_password('abc1'))

        self.assertFalse(strong_password('1234'))



        # Combinations which met more than one cirteria

        self.assertFalse(strong_password('12345678'))

        self.assertFalse(strong_password('Abcdefgh'))

        self.assertFalse(strong_password('A12345678'))

        self.assertFalse(strong_password('Abcdfg1'))

        self.assertTrue(strong_password('A12345678b'))

        self.assertTrue(strong_password('Abcdefg1'))

        self.assertTrue(strong_password('123456aB'))

        self.assertTrue(strong_password('aB345678'))



if __name__ == '__main__':

    unittest.main()


Notes



What is a strong password? Obligatory xkcd






share|improve this answer














Good job on the easily understandable code.



Good




  • Good functions, with clear names!

  • Modular approach

  • Unittests

  • Docstrings


Improvements





  • Regex with lots of backtracking can produce some major performance loss



    Consider that this re.search(r'.*[A-Z]+.*', string)



    is equal to re.search(r'[A-Z]+', string)



    or even
    re.search(r'[A-Z]', string) as Toby correctly suggested.



    Since we only care if one character is in the given string.




  • Return directly



    Instead of doing



    if exdpression:
    
    return True
    
return False


    Return directly with return expression



  • Your compile has no performance gain, because with every new string it will compile again. Instead you could compile only onc,e and store it as a constant.


  • Use the all keyword to check if all expressions evaluates to truthy.



  • Instead of assertEqual(expression, function)



    Do the more direct assertFalse or assertTrue




Revised code



import re

import unittest



PASSWORD_CHECKS = [

    re.compile(r'[A-Z]'),

    re.compile(r'.{8,}'),

    re.compile(r'[a-z]'),

    re.compile(r'[0-9]'),

]



def strong_password(password):

    """

    Validate if passed password is considered "strong",

    Password is considered strong if:

      - is eight characters or longer

      - contains uppercase and lowercase characters

      - has one digit or more

    """

    return all(check.search(password) for check in PASSWORD_CHECKS)



class TestIsStrongPassword(unittest.TestCase):

    """Test of strong password detection function."""

    def test_strong_password(self):

        """

        Test strong password function. Passed strings have to pass 

        all tests in valid_length, uppper, lower and digit functions.

        """



        # Test from single functions should all fail 

        # (not met all criteria)

        self.assertFalse(strong_password('abcd'))

        self.assertFalse(strong_password('abcdefg'))

        self.assertFalse(strong_password('abcdefgh'))

        self.assertFalse(strong_password('abcdefghi'))



        self.assertFalse(strong_password('abcd'))

        self.assertFalse(strong_password('aBcd'))

        self.assertFalse(strong_password('aBCd'))

        self.assertFalse(strong_password('Abcd'))

        self.assertFalse(strong_password('abcD'))

        self.assertFalse(strong_password('ABCD'))



        self.assertFalse(strong_password('abcd'))

        self.assertFalse(strong_password('a1cd'))

        self.assertFalse(strong_password('a12d'))

        self.assertFalse(strong_password('1bcd'))

        self.assertFalse(strong_password('abc1'))

        self.assertFalse(strong_password('1234'))



        # Combinations which met more than one cirteria

        self.assertFalse(strong_password('12345678'))

        self.assertFalse(strong_password('Abcdefgh'))

        self.assertFalse(strong_password('A12345678'))

        self.assertFalse(strong_password('Abcdfg1'))

        self.assertTrue(strong_password('A12345678b'))

        self.assertTrue(strong_password('Abcdefg1'))

        self.assertTrue(strong_password('123456aB'))

        self.assertTrue(strong_password('aB345678'))



if __name__ == '__main__':

    unittest.main()


Notes



What is a strong password? Obligatory xkcd







share|improve this answer














share|improve this answer



share|improve this answer








edited yesterday

























answered Nov 28 at 9:32









Ludisposed

6,79221959




6,79221959








  • 1




    I don't think the + in any of those regexes buys anything valuable - "contains at least one" means that you can be content after matching exactly one.
    – Toby Speight
    yesterday














  • 1




    I don't think the + in any of those regexes buys anything valuable - "contains at least one" means that you can be content after matching exactly one.
    – Toby Speight
    yesterday








1




1




I don't think the + in any of those regexes buys anything valuable - "contains at least one" means that you can be content after matching exactly one.
– Toby Speight
yesterday




I don't think the + in any of those regexes buys anything valuable - "contains at least one" means that you can be content after matching exactly one.
– Toby Speight
yesterday


















draft saved

draft discarded




















































Thanks for contributing an answer to Code Review Stack Exchange!


  • Please be sure to answer the question. Provide details and share your research!

But avoid



  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.


Use MathJax to format equations. MathJax reference.


To learn more, see our tips on writing great answers.





Some of your past answers have not been well-received, and you're in danger of being blocked from answering.


Please pay close attention to the following guidance:


  • Please be sure to answer the question. Provide details and share your research!

But avoid



  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.


To learn more, see our tips on writing great answers.




draft saved


draft discarded














StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fcodereview.stackexchange.com%2fquestions%2f208567%2fstrong-password-detection%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown







-

Popular posts from this blog

Quarter-circle Tiles

Image
up vote 0 down vote favorite I have $99$ identical square tiles, each with a quarter-circle drawn on it like this: [asy] size(1.5cm); draw(Arc((2,0),1,90,180),red+1); draw((0,0)--(2,0)--(2,2)--(0,2)--(0,0)); [/asy] When I arrange the tiles in a $9times 11$ rectangular grid, each with a random orientation, what is the expected value of the number of full circles I form? I think this problem has to do with finding the chance any given 2x2 square has a circle, but I can't find it. expected-value share | cite | improve this question asked Nov 20 at 15:03 6minecraftninja 1 2
Read more

build a pushdown automaton that recognizes the reverse language of a given pushdown automaton?

Image
0 I think it's similiar to NFAs. I replace the finite states of the given automaton for start-states for my new automaton. I do it with $epsilon$ -transition from the start state to the actual finite states of the given automaton. The start state of the given automaton will be my accepting(finite) state of my new one. All transitions will be reversed of course to recognize the reversed word. But how do I have to change the stack of the pushdown automaton? That's tricky. formal-languages automata context-free-grammar share | cite | improve this question edited Nov 29 '18 at 14:20 joee
Read more

Mont Emei

Image
Mont Emei.mw-parser-output .entete.map{background-image:url("//upload.wikimedia.org/wikipedia/commons/7/7a/Picto_infobox_map.png")} Vue du sommet Wanfo du mont Emei Géographie Altitude 3 099  m , Wanfo Coordonnées 29° 31′ 11″ nord, 103° 19′ 57″ est Administration Pays   Chine Province Sichuan Ville-préfecture Leshan Géolocalisation sur la carte : Sichuan Mont Emei Géolocalisation sur la carte : Chine Mont Emei modifier   Paysage panoramique du mont Emei, incluant le paysage panoramique du grand Bouddha de Leshan *   Patrimoine mondial de l'UNESCO Passerelle en bois sur le versant ouest Pays   Chine Subdivision Sichuan Type Mixte Critères (iv) (vi) (x) Superficie 15 400 ha Numéro d’identification 779 Zone géographique Asie et Pacifique  ** Année d’inscription 1996 (20 e session) * Descriptif officiel UNESCO ** Classification géog
Read more