README

Develop Master

Validate that a given string is not present in the pwned passwords list at https://haveibeenpwned.com/Passwords

Installation

Install using composer from packagist

composer require acodeninja/laravel-pwned-passwords-validator

Usage

Use as you would any other validation rule

In a request

/**
 * Get the validation rules that apply to the request.
 *
 * @return array
 */
public function rules()
{
    return [
        'email' => 'required|email|unique:users,email',
        'password' => 'required|pwned_password_strict',
    ];
}

In a controller

$validator = Validator::make($request->all(), [
    'email' => 'required|email|unique:users,email',
    'password' => 'required|pwned_password_strict',
])->validate();