feat: integrate passwap for human user password hashing (#6196)

* feat: use passwap for human user passwords * fix tests * passwap config * add the event mapper * cleanup query side and api * solve linting errors * regression test * try to fix linter errors again * pass systemdefaults into externalConfigChange migration * fix: user password set in auth view * pin passwap v0.2.0 * v2: validate hashed password hash based on prefix * resolve remaining comments * add error tag and translation for unsupported hash encoding * fix unit test --------- Co-authored-by: Livio Spring <livio.a@gmail.com>
2025-08-12 01:47:33 +00:00 · 2023-07-14 09:49:57 +03:00
parent 6fcfa63f54
commit 4589ddad4a
56 changed files with 1853 additions and 775 deletions
--- a/internal/static/i18n/bg.yaml
+++ b/internal/static/i18n/bg.yaml
@@ -122,6 +122,8 @@ Errors:
      Empty: Паролата е празна
      Invalid: Паролата е невалидна
      NotSet: Потребителят не е задал парола
+      NotChanged: Паролата не е променена
+      NotSupported: Хеш кодирането на паролата не се поддържа
    PasswordComplexityPolicy:
      NotFound: Политиката за парола не е намерена
      MinLength: Паролата е твърде кратка
--- a/internal/static/i18n/de.yaml
+++ b/internal/static/i18n/de.yaml
@@ -120,6 +120,8 @@ Errors:
      Empty: Passwort ist leer
      Invalid: Passwort ungültig
      NotSet: Benutzer hat kein Passwort gesetzt
+      NotChanged: Passwort nicht geändert
+      NotSupported: Passwort-Hash-Kodierung wird nicht unterstützt
    PasswordComplexityPolicy:
      NotFound: Passwort Policy konnte nicht gefunden werden
      MinLength: Passwort ist zu kurz
--- a/internal/static/i18n/en.yaml
+++ b/internal/static/i18n/en.yaml
@@ -120,6 +120,8 @@ Errors:
      Empty: Password is empty
      Invalid: Password is invalid
      NotSet: User has not set a password
+      NotChanged: Password not changed
+      NotSupported: Password hash encoding not supported
    PasswordComplexityPolicy:
      NotFound: Password policy not found
      MinLength: Password is too short
--- a/internal/static/i18n/es.yaml
+++ b/internal/static/i18n/es.yaml
@@ -120,6 +120,8 @@ Errors:
      Empty: La contraseña está vacía
      Invalid: La contraseña no es válida
      NotSet: El usuario no ha establecido una contraseña
+      NotChanged: Contraseña no modificada
+      NotSupported: No se admite la codificación hash de contraseña
    PasswordComplexityPolicy:
      NotFound: Política de contraseñas no encontrada
      MinLength: La contraseña es demasiado corta
--- a/internal/static/i18n/fr.yaml
+++ b/internal/static/i18n/fr.yaml
@@ -120,6 +120,8 @@ Errors:
      Empty: Le mot de passe est vide
      Invalid: Le mot de passe n'est pas valide
      NotSet: L'utilisateur n'a pas défini de mot de passe
+      NotChanged: Mot de passe non modifié
+      NotSupported: Encodage de hachage de mot de passe non pris en charge
    PasswordComplexityPolicy:
      NotFound: Politique de mot de passe non trouvée
      MinLength: Le mot de passe est trop court
--- a/internal/static/i18n/it.yaml
+++ b/internal/static/i18n/it.yaml
@@ -120,6 +120,8 @@ Errors:
      Empty: La password è vuota
      Invalid: La password non è valida
      NotSet: L'utente non ha impostato una password
+      NotChanged: Password non modificata
+      NotSupported: Codifica hash password non supportata
    PasswordComplexityPolicy:
      NotFound: Impostazioni di complessità password non trovati
      MinLength: La password è troppo corta
--- a/internal/static/i18n/ja.yaml
+++ b/internal/static/i18n/ja.yaml
@@ -112,6 +112,8 @@ Errors:
      Empty: パスワードは空です
      Invalid: 無効なパスワードです
      NotSet: パスワードが未設置です
+      NotChanged: パスワードは変更されていません
+      NotSupported: パスワードハッシュエンコードはサポートされていません
    PasswordComplexityPolicy:
      NotFound: パスワードポリシーが見つかりません
      MinLength: パスワードが短すぎます
--- a/internal/static/i18n/mk.yaml
+++ b/internal/static/i18n/mk.yaml
@@ -120,6 +120,8 @@ Errors:
      Empty: Лозинката е празна
      Invalid: Невалидна лозинка
      NotSet: Корисникот нема поставено лозинка
+      NotChanged: Лозинката не е променета
+      NotSupported: Не е поддржано хаш-кодирањето на лозинката
    PasswordComplexityPolicy:
      NotFound: Политиката за комплексност на лозинката не е пронајдена
      MinLength: Лозинката е прекратка
--- a/internal/static/i18n/pl.yaml
+++ b/internal/static/i18n/pl.yaml
@@ -120,6 +120,8 @@ Errors:
      Empty: Hasło jest puste
      Invalid: Hasło jest nieprawidłowe
      NotSet: Użytkownik nie ustawił hasła
+      NotChanged: Hasło nie zostało zmienione
+      NotSupported: Kodowanie skrótu hasła nie jest obsługiwane
    PasswordComplexityPolicy:
      NotFound: Polityka hasła nie znaleziona
      MinLength: Hasło jest zbyt krótkie
--- a/internal/static/i18n/zh.yaml
+++ b/internal/static/i18n/zh.yaml
@@ -120,6 +120,8 @@ Errors:
      Empty: 密码为空
      Invalid: 密码无效
      NotSet: 用户未设置密码
+      NotChanged: 密码未更改
+      NotSupported: 不支持密码哈希编码
    PasswordComplexityPolicy:
      NotFound: 未找到密码策略
      MinLength: 密码太短