How are you using the password generator?

[hackzilla]

How are you using this password generator library?

Please comment below as I'm interested in finding out how I can make this better for everyone.

[egorsmkv]

For password generating :rofl:

[hackzilla]

lol. I should have asked, "where".

[juliusstoerrle]

I think you need to be a bit more specific :)

Do you mean with which frameworks?

[hackzilla]

My question is trying to get insight into how/where people are using my library. which frameworks, sites, anything really.

It's easier to keep going if you know that your software is actually being used somewhere.

[juliusstoerrle]

We use it in our company own management portal for generating user passwords (When Account is activated or on Pwd Reset)

It is an Symfony App, I'm currently evaluating on directly using the generator without your symfony bundle as i don't need the form stuff there.

[hackzilla]

I'd recommend using the library directly. As you've seen the bundle doesn't do much about from the forms.

It'll also give you a lot more control.

[rafaelbernard]

I am using mostly for safe password reset on applications that requires complex password rule, like minumum 1 special character, 1 upper case and so on.

The rule that I have to work around with more effort is the one when we need to not repeat an already used character in the password. AVOID_SIMILAR does not seems to help until now. I would like one NO_SIMILAR or NO_REPEAT_CHARACTERS.

But so far, the library is awesome! Nice work.

[hackzilla]

@rafaelbernard That's good suggestion.

AVOID_SIMILAR is only working on a very limited set of characters. e.g. l, I, 1.

[DavidGoodwin]

For me - in a bespoke web app .... that has a password-reset option.

[nyhtml]

Numerous ways. The main is to get a password to use with zip files before putting them online. This way, if the site I upload to gets compromised, even if the files are caught, the entity now has to figure out the password for each zip file.

[floriankick]

I use it primarily for password validation to check if user-inserted passwords comply to the password rules of our applications. But then also to generate passwords (eg. for new accounts) that should of course comply to the same rules. Using your library I do only have to define the rules once and can be sure to be consistent.