user-friendly passwords masking

csavelief · csavelief · commit dcdcecdc470e · 2025-05-15T16:06:06.000+02:00
diff --git a/app/Listeners/EndVulnsScanListener.php b/app/Listeners/EndVulnsScanListener.php
@@ -54,7 +54,7 @@ public static function sendEmailReport(YnhTrial $trial): void
                 return [
                     'email' => Str::trim(Str::before($line, "\t")),
                     'website' => Str::trim(Str::between($line, "\t", "\t")),
-                    'password' => $this->maskPassword(Str::trim(Str::afterLast($line, "\t"))),
+                    'password' => self::maskPassword(Str::trim(Str::afterLast($line, "\t"))),
                 ];
             })
             ->map(function (array $credentials) {
@@ -219,12 +219,15 @@ public static function sendEmail(string $from, string $to, string $subject, stri
         return [];
     }
 
-    private static function maskPassword(string $password): string
+    private static function maskPassword(string $password, int $size = 3): string
     {
         if (Str::length($password) <= 2) {
             return Str::repeat('*', Str::length($password));
         }
-        return Str::substr($password, 0, 1) . Str::repeat('*', Str::length($password) - 2) . Str::substr($password, -1, 1);
+        if (Str::length($password) <= 2 * $size) {
+            return self::maskPassword($password, 1);
+        }
+        return Str::substr($password, 0, $size) . Str::repeat('*', Str::length($password) - 2 * $size) . Str::substr($password, -$size, $size);
     }
 
     public function viaQueue(): string
diff --git a/app/View/Components/Timeline.php b/app/View/Components/Timeline.php
@@ -540,11 +540,14 @@ private function events(User $user): array
             ->toArray();
     }
 
-    private function maskPassword(string $password): string
+    private function maskPassword(string $password, int $size = 3): string
     {
         if (Str::length($password) <= 2) {
             return Str::repeat('*', Str::length($password));
         }
-        return Str::substr($password, 0, 1) . Str::repeat('*', Str::length($password) - 2) . Str::substr($password, -1, 1);
+        if (Str::length($password) <= 2 * $size) {
+            return $this->maskPassword($password, 1);
+        }
+        return Str::substr($password, 0, $size) . Str::repeat('*', Str::length($password) - 2 * $size) . Str::substr($password, -$size, $size);
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -54,7 +54,7 @@ public static function sendEmailReport(YnhTrial $trial): void`
`54`	`54`	`return [`
`55`	`55`	`'email' => Str::trim(Str::before($line, "\t")),`
`56`	`56`	`'website' => Str::trim(Str::between($line, "\t", "\t")),`
`57`		`- 'password' => $this->maskPassword(Str::trim(Str::afterLast($line, "\t"))),`
	`57`	`+ 'password' => self::maskPassword(Str::trim(Str::afterLast($line, "\t"))),`
`58`	`58`	`];`
`59`	`59`	`})`
`60`	`60`	`->map(function (array $credentials) {`
`@@ -219,12 +219,15 @@ public static function sendEmail(string $from, string $to, string $subject, stri`
`219`	`219`	`return [];`
`220`	`220`	`}`
`221`	`221`
`222`		`- private static function maskPassword(string $password): string`
	`222`	`+ private static function maskPassword(string $password, int $size = 3): string`
`223`	`223`	`{`
`224`	`224`	`if (Str::length($password) <= 2) {`
`225`	`225`	`return Str::repeat('*', Str::length($password));`
`226`	`226`	`}`
`227`		`- return Str::substr($password, 0, 1) . Str::repeat('*', Str::length($password) - 2) . Str::substr($password, -1, 1);`
	`227`	`+ if (Str::length($password) <= 2 * $size) {`
	`228`	`+ return self::maskPassword($password, 1);`
	`229`	`+ }`
	`230`	`+ return Str::substr($password, 0, $size) . Str::repeat('', Str::length($password) - 2 $size) . Str::substr($password, -$size, $size);`
`228`	`231`	`}`
`229`	`232`
`230`	`233`	`public function viaQueue(): string`
Original file line number	Diff line number	Diff line change
`@@ -540,11 +540,14 @@ private function events(User $user): array`
`540`	`540`	`->toArray();`
`541`	`541`	`}`
`542`	`542`
`543`		`- private function maskPassword(string $password): string`
	`543`	`+ private function maskPassword(string $password, int $size = 3): string`
`544`	`544`	`{`
`545`	`545`	`if (Str::length($password) <= 2) {`
`546`	`546`	`return Str::repeat('*', Str::length($password));`
`547`	`547`	`}`
`548`		`- return Str::substr($password, 0, 1) . Str::repeat('*', Str::length($password) - 2) . Str::substr($password, -1, 1);`
	`548`	`+ if (Str::length($password) <= 2 * $size) {`
	`549`	`+ return $this->maskPassword($password, 1);`
	`550`	`+ }`
	`551`	`+ return Str::substr($password, 0, $size) . Str::repeat('', Str::length($password) - 2 $size) . Str::substr($password, -$size, $size);`
`549`	`552`	`}`
`550`	`553`	`}`