David A. Windham
david
/
wp
1
0
Fork 0
Files Issues 0 Pull Requests 0
Tree: 3e410b1d51
Branches Tags
wp
/
tests
/
qunit
/
wp-admin
/
js
/
password-strength-meter.js

password-strength-meter.js 4.2 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101 
  1. /* global passwordStrength, wp, jQuery */
    2. 

  2. jQuery( function() {
    3. 

  3. 	module( 'password-strength-meter' );
    4. 

  4. 

  5. 	test( 'mismatched passwords should return 5', function() {
    6. 

  6. 		equal( passwordStrength( 'password1', 'username', 'password2' ), 5, 'mismatched passwords return 5' );
    7. 

  7. 	});
    8. 

  8. 

  9. 	test( 'passwords shorter than 4 characters should return 0', function() {
    10. 

  10. 		equal( passwordStrength( 'abc', 'username', 'abc' ), 0, 'short passwords return 0' );
    11. 

  11. 	});
    12. 

  12. 

  13. 	test( 'long complicated passwords should return 4', function() {
    14. 

  14. 		var password = function( length ) {
    15. 

  15. 			var i, n, retVal = '',
    16. 

  16. 				possibility = 'abcdefghijklnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789';
    17. 

  17. 			for ( i = 0, n = possibility.length; i < length; i++ ) {
    18. 

  18. 				retVal += possibility.charAt( Math.floor( Math.random() * n ) );
    19. 

  19. 			}
    20. 

  20. 			return retVal + 'aB2'; // add a lower case, uppercase and number just to make sure we always have one of each
    21. 

  21. 		},
    22. 

  22. 		twofifty = password( 250 );
    23. 

  23. 

  24. 		equal( passwordStrength( twofifty, 'username', twofifty ), 4, '250 character complicated password returns 4' );
    25. 

  25. 	});
    26. 

  26. 

  27. 	test( 'short uncomplicated passwords should return 0', function() {
    28. 

  28. 		var letters = 'aaaa',
    29. 

  29. 			numbers = '1111',
    30. 

  30. 			password = 'password',
    31. 

  31. 			uppercase = 'AAAA';
    32. 

  32. 		equal( passwordStrength( letters, 'username', letters ), 0, 'password of `' + letters + '` returns 0' );
    33. 

  33. 		equal( passwordStrength( numbers, 'username', numbers ), 0, 'password of `' + numbers + '` returns 0' );
    34. 

  34. 		equal( passwordStrength( uppercase, 'username', uppercase ), 0, 'password of `' + uppercase + '` returns 0' );
    35. 

  35. 		equal( passwordStrength( password, 'username', password ), 0, 'password of `' + password + '` returns 0' );
    36. 

  36. 	});
    37. 

  37. 

  38. 	test( 'zxcvbn password tests should return the score we expect', function() {
    39. 

  39. 		var passwords, i;
    40. 

  40. 		passwords = [
    41. 

  41. 			{ pw: 'zxcvbn', score: 0 },
    42. 

  42. 			{ pw: 'qwER43@!', score: 1 },
    43. 

  43. 			{ pw: 'Tr0ub4dour&3', score: 2 },
    44. 

  44. 			{ pw: 'correcthorsebatterystaple', score: 4 },
    45. 

  45. 			{ pw: 'coRrecth0rseba++ery9.23.2007staple$', score: 4 },
    46. 

  46. 			{ pw: 'D0g..................', score: 0 },
    47. 

  47. 			{ pw: 'abcdefghijk987654321', score: 0 },
    48. 

  48. 			{ pw: 'neverforget13/3/1997', score: 2 },
    49. 

  49. 			{ pw: '1qaz2wsx3edc', score: 0 },
    50. 

  50. 			{ pw: 'temppass22', score: 1 },
    51. 

  51. 			{ pw: 'briansmith', score: 0 },
    52. 

  52. 			{ pw: 'briansmith4mayor', score: 0 },
    53. 

  53. 			{ pw: 'password1', score: 0 },
    54. 

  54. 			{ pw: 'viking', score: 0 },
    55. 

  55. 			{ pw: 'thx1138', score: 0 },
    56. 

  56. 			{ pw: 'ScoRpi0ns', score: 0 },
    57. 

  57. 			{ pw: 'do you know', score: 0 },
    58. 

  58. 			{ pw: 'ryanhunter2000', score: 0 },
    59. 

  59. 			{ pw: 'rianhunter2000', score: 1 },
    60. 

  60. 			{ pw: 'asdfghju7654rewq', score: 2 },
    61. 

  61. 			{ pw: 'AOEUIDHG&*()LS_', score: 2 },
    62. 

  62. 			{ pw: '12345678', score: 0 },
    63. 

  63. 			{ pw: 'defghi6789', score: 0 },
    64. 

  64. 			{ pw: 'rosebud', score: 0 },
    65. 

  65. 			{ pw: 'Rosebud', score: 0 },
    66. 

  66. 			{ pw: 'ROSEBUD', score: 0 },
    67. 

  67. 			{ pw: 'rosebuD', score: 0 },
    68. 

  68. 			{ pw: 'ros3bud99', score: 0 },
    69. 

  69. 			{ pw: 'r0s3bud99', score: 0 },
    70. 

  70. 			{ pw: 'R0$38uD99', score: 1 },
    71. 

  71. 			{ pw: 'verlineVANDERMARK', score: 1 },
    72. 

  72. 			{ pw: 'eheuczkqyq', score: 4 },
    73. 

  73. 			{ pw: 'rWibMFACxAUGZmxhVncy', score: 4 },
    74. 

  74. 			{ pw: 'Ba9ZyWABu99[BK#6MBgbH88Tofv)vs$w', score: 4 }
    75. 

  75. 		];
    76. 

  76. 

  77. 		for ( i = 0; i < passwords.length; i++ ) {
    78. 

  78. 			equal( passwordStrength( passwords[i].pw, 'username', passwords[i].pw ), passwords[i].score, 'password of `' + passwords[i].pw + '` returns ' + passwords[i].score );
    79. 

  79. 		}
    80. 

  80. 	});
    81. 

  81. 

  82. 	test( 'blacklisted words in password should be penalized', function() {
    83. 

  83. 		var allowedPasswordScore, penalizedPasswordScore,
    84. 

  84. 			allowedPassword   = 'a[janedoe]4',
    85. 

  85. 			penalizedPassword = 'a[johndoe]4',
    86. 

  86. 			blacklist         = [ 'extra', 'johndoe', 'superfluous' ];
    87. 

  87. 

  88. 		allowedPasswordScore = passwordStrength( allowedPassword, blacklist, allowedPassword );
    89. 

  89. 		penalizedPasswordScore = passwordStrength( penalizedPassword, blacklist, penalizedPassword );
    90. 

  90. 

  91. 		ok( penalizedPasswordScore < allowedPasswordScore, 'Penalized password scored ' + penalizedPasswordScore + '; allowed password scored: ' + allowedPasswordScore );
    92. 

  92. 	});
    93. 

  93. 

  94. 	test( 'user input blacklist array should contain expected words', function() {
    95. 

  95. 		var blacklist = wp.passwordStrength.userInputBlacklist();
    96. 

  96. 

  97. 		ok( jQuery.isArray( blacklist ), 'blacklist is an array' );
    98. 

  98. 		ok( jQuery.inArray( 'WordPress', blacklist ) > -1, 'blacklist contains "WordPress" from page title' );
    99. 

  99. 		ok( jQuery.inArray( 'tests', blacklist ) > -1, 'blacklist contains "tests" from site URL' );
    100. 

  100. 	});
    101. 

  101. });
    102.