Is there a live password verification tool available?

Currently, I am conducting some initial research for my school's IT department as a student employee. The students at our institution are required to change their passwords every six months, but many of them struggle with the various password regulations in place. This often leads to multiple attempts before successfully setting a new password.

The password rules include:

Must be a minimum of 8 characters long
Must contain three out of four types of characters (uppercase, lowercase, number, special character)
Cannot include the user's first, last, or middle name
Cannot include the user's username
Cannot match any previous passwords
User must input the password twice and they must match exactly

I have a few inquiries:

Is it feasible to develop a web-based password checker that offers real-time feedback while users type in their new password? My idea involves a checklist on one side of the page where green checkmarks activate as more criteria are met.
Can this checking process be completed securely and entirely on the client-side?
Where should one begin when tackling such a project? Are there any recommended guides available?

Keep in mind that I do not possess web development skills. Also, kindly refrain from making any humorous remarks such as "change the password policy" or "they're just unintelligent users."

javascript ajax

Answer №1

Could a dynamic password checker be developed for websites that gives immediate feedback as users input their new passwords? Imagine a checklist with green checkmarks activating as the password meets various criteria.

Absolutely.

Is it feasible to ensure secure checking?

While showing green lights may reveal information about where the password requirements are met, potentially leaking data.

Can this process be done solely on the client-side?

Yes.

Where should one begin when undertaking such a project?

Start by creating a list of rules in HTML alongside corresponding images for pass or fail. Implement programmable versions of these rules in JavaScript and test them sequentially during keypress events on the password input.

You'll also need to use an XMLHttpRequest object to verify if a password has been used before, ensuring stored passwords are securely hashed and salted.

I don't have experience in web development.

In that case, I recommend either hiring a web developer or learning the necessary skills yourself.

Please refrain from suggestions like "change the password policy."

Agreed, let's focus on the real issue at hand:

If users struggle to create passwords that meet the policy requirements, they may face difficulties remembering them. This can result in more password resets (adding to IT workload) and potentially insecure practices like writing down passwords.

Answer №2

Many of the criteria you define can be validated instantly with javascript, particularly utilizing regular expressions. However, verifying if a password has been previously used should be conducted securely on the server side.

Answer №3

Would it be feasible to develop a web-based password validator that offers immediate feedback while the user enters their new password? I envision a checklist on one side of the webpage where green checkmarks light up as more criteria are met.

Absolutely, but you'll need some knowledge of javascript to make it happen.

Is it viable to carry out this validation securely and entirely on the client-side?

Not completely, or maybe yes, or perhaps no. You can perform the validation solely on the client-side (except for checking against previous passwords, which would require database access). However, it's essential to remember that nothing done on the client-side is truly secure. Client-side actions should only serve as user guidance. All validation must be double-checked on the server.

I don't want to come across as condescending by suggesting a change in password policy simply because implementing validation might seem challenging. However, I do recommend sharing the following article with whoever sets the password guidelines:

Answer №4

It is essential that the password chosen does not correspond to any previous passwords used, as this requirement must be enforced on the server side for security purposes. Utilizing hashes or encryption can ensure a secure validation process and prevent client-side copies of passwords from posing a risk.

Answer №5

If you're new to web development, consider starting with regular expressions (regex). Check out this resource for an introduction: http://www.w3schools.com/jsref/jsref_obj_regexp.asp. It may seem daunting at first, but having a basic understanding of JavaScript is essential for tasks like this that involve client-side processing. And remember, it's crucial not to overlook password security.

Make sure the password does not match any previously used ones.

Implementing this feature solely on the client side can be risky and complex. Consider seeking assistance from external libraries for a more secure solution. Good luck as you navigate through this learning process!

Similar questions

If you have not found the answer to your question or you are interested in this topic, then look at other similar questions below or use the search

What was the reason for node js not functioning properly on identical paths?

When the search route is placed at the top, everything works fine. However, when it is placed at the end, the route that takes ID as a parameter keeps getting called repeatedly in Node. Why does this happen and how can it be resolved? router.get('/se ...

javascript node.js express

Every time I try to upload image files to cloudinary, I encounter this frustrating error message

https://i.stack.imgur.com/kRYVZ.png The issue at hand revolves around node and the challenge of using the https module with new certificates, proving to be unsuccessful... The proposed solution is ambiguous, leaving me unsure how to proceed and resolve thi ...

javascript node.js express https

Enhancing the background of a website with the power of CSS

I am looking to create a customized table without the balls/pots in it. The number of rows on the y-axis will vary depending on the number of names I have, and can be more or less. The values on the x-axis are determined by a parameter included in the URL ...

javascript jquery html css

A step-by-step guide on configuring data for aria's autocomplete feature

Currently, I am implementing aria autocomplete and facing an issue while trying to populate data from the server into the selection of aria autocomplete. I have tried setting the selected property of the aria autocomplete object, but it doesn't seem t ...

javascript php json typescript select

When you click on a main category, a list of its corresponding subcategories will

concept image My vision involves having users click on a category from the top menu to display all main cards (parent cards), and then further clicking on a parent card will unveil its corresponding child cards. I've even included an image to help v ...

javascript html jquery bootstrap-5

Neglecting the error message for type assignment in the Typescript compiler

Presented here is a scenario I am facing: const customer = new Customer(); let customerViewModel = new CustomerLayoutViewModel(); customerViewModel = customer; Despite both Customer and CustomerLayoutViewModel being identical at the moment, there is no ...

javascript typescript error-handling tsconfig

How can I calculate the width of a character in an HTML5 canvas?

When using the .fillText function with a fixed-width font, I can easily adjust the height by setting the .font property. However, is there a way to accurately determine the width of an individual character? ...

javascript html canvas font-size

The attempt to install myapp using npx create-react-app has failed. The installation has been aborted

Attempting to create a new project using npx create-react-app my-app resulted in an error message saying Aborting installation. Initially, I had node v14.17.1 installed. Upgrading to the latest version 16.4.0 did not resolve the issue. Even running sudo ...

javascript reactjs macos npm create-react-app

Choose the offspring of an element using jQuery

Currently, I have a function set up to open a modal dialog and populate it with information from the 'dblclicked' node: $(function(){ $(".delete").live('dblclick', function () { var id = $(this).attr('id'); ...

javascript jquery html

What is the best way to showcase the information from this API on an HTML page using Vanilla JavaScript?

I am currently working on implementing an AJAX call to fetch data from a movie API online. Below is the HTML code I have written for this: <html> <head> <meta charset=utf-8> <title>Movie Database</title> ...

javascript html json ajax

Submitting Forms with Ajax and PHP

I'm currently utilizing the malsup jquery form plugin to send a form via PHP, and my form is nested within a bootstrap modal. Everything seems to be functioning properly as I receive a success message, however, the email never actually arrives. It ap ...

php ajax forms plugins bootstrap-modal

Notification system for managing recurring tasks

Situation I am currently working on an application where users are assigned daily tasks such as "wash the window, clean the floor," and so on. Each task has a specific recurrence interval and must be completed at least once within that time frame. For e ...

javascript node.js design-patterns

"Converting Text from a Streamed XML-Like File into CSV: A Step-by-Step Guide

I have log files that contain C++ namespace artifacts (indicated by the double colons ::) and XML content embedded within them. After loading and displaying the logs in a browser application, the content has been separated from the Unix timestamps like so: ...

javascript xml csv parsing

Problems with script-driven dynamic player loading

I am attempting to load a dynamic player based on the browser being used, such as an ActiveX plugin for Internet Explorer using the object tag and VLC plugin for Firefox and Google Chrome using the embed tag. In order to achieve this, I have included a scr ...

javascript jquery html

Learn the process of sending both Header and Body data in a POST request using Axios with Vue.js

I'm currently attempting to call the post API of AWS Cognito's Token endpoint. The API functions perfectly when tested in my Postman client, but I am encountering issues when implementing it in my VueJS code. Here is a snippet of my code: test. ...

javascript vue.js axios amazon-cognito quasar-framework

React Material UI Table - All switches toggled simultaneously

I recently integrated a react mat ui table into my application and included switches in one of the columns. However, I am encountering an issue where all the switches toggle together instead of independently. Any suggestions on how to resolve this? < ...

javascript reactjs material-ui

Modify various entities with a singular PUT request (or POST)

I am currently developing a website that offers clients the ability to input tabular data (merchants) into a grid. Each entry has a unique identifier. I am interested in implementing batch updates using my Web API controller, rather than processing individ ...

c#ajax entity-framework asp.net-web-api

Generating progress bar in Javascript while exporting CSV fileCan JavaScript export CSV and

Looking for a way to add a progress bar while generating and serving a CSV file via ajax? The database-heavy process is causing a delay, so I need a loader on the screen that disappears once the task is complete. It should be done with ajax or stay on th ...

javascript ajax csv progress-bar

What is the best way to display loading details during a data loading process within a useEffect hook?

Whenever a specific custom React component I've created is initially mounted, it utilizes useEffect to initiate a lengthy multistep process of loading data that will later be rendered. Since the component isn't always rendered, this costly proces ...

javascript reactjs typescript react-hooks react-lifecycle

Encountered an error while trying to create a new NestJS project using yarn: Command execution failure - yarn install --

Having trouble installing a new NestJs project using yarn. Operating system : Microsoft Windows [version 10.0.19044.3086] Node version : 18.17.1 npm version : 9.6.7 yarn version : 1.22.19 Nest cli version : 10.1.16 I attempted to install by running : npm ...

javascript node.js npm nestjs hadoop-yarn

JavaScripter Q&A