snipe-it/app/Http/Requests/SaveUserRequest.php

<?php

namespace App\Http\Requests;

use App\Http\Requests\Request;
use App\Models\Setting;

class SaveUserRequest extends Request
{
    /**
     * Determine if the user is authorized to make this request.
     *
     * @return bool
     */
    public function authorize()
    {
        return true;
    }

    /**
     * Get the validation rules that apply to the request.
     *
     * @return array
     */
    public function rules()
    {

        $settings = Setting::getSettings();

        $rules = [];
        $security_rules = '';

        $rules['first_name'] = 'required|string|min:1';
        $rules['username'] = 'required|string|min:1|unique_undeleted';

        // Check if they have uncommon password enforcement selected in settings
        if ($settings->pwd_secure_uncommon == 1) {
            $security_rules .= '|dumbpwd';
        }

        // Check for any secure password complexity rules that may have been selected
        if ($settings->pwd_secure_complexity!='') {
            $security_rules  .= '|'.$settings->pwd_secure_complexity;
        }


        if ((\Route::currentRouteName()=='api.users.update') || (\Route::currentRouteName()=='users.update')) {
            $rules['password'] = 'nullable|min:'.$settings->pwd_secure_min.$security_rules;
        } else {
            $rules['password'] = 'required|min:'.$settings->pwd_secure_min.$security_rules;
        }

        $rules['password_confirm'] = 'sometimes|required_with:password';

        return $rules;

    }
}
Use form request for user add/edit to handle password and password confirmation 2016-06-06 14:15:50 -07:00			`<?php`

			`namespace App\Http\Requests;`

			`use App\Http\Requests\Request;`
ADDED: Password rules for complexity, min length, rejecting common passwords 2017-08-22 20:32:39 -07:00			`use App\Models\Setting;`
Use form request for user add/edit to handle password and password confirmation 2016-06-06 14:15:50 -07:00
			`class SaveUserRequest extends Request`
			`{`
			`/**`
			`* Determine if the user is authorized to make this request.`
			`*`
			`* @return bool`
			`*/`
			`public function authorize()`
			`{`
			`return true;`
			`}`

			`/**`
			`* Get the validation rules that apply to the request.`
			`*`
			`* @return array`
			`*/`
			`public function rules()`
			`{`
ADDED: Password rules for complexity, min length, rejecting common passwords 2017-08-22 20:32:39 -07:00
			`$settings = Setting::getSettings();`

			`$rules = [];`
			`$security_rules = '';`

			`$rules['first_name'] = 'required\|string\|min:1';`
			`$rules['username'] = 'required\|string\|min:1\|unique_undeleted';`

			`// Check if they have uncommon password enforcement selected in settings`
			`if ($settings->pwd_secure_uncommon == 1) {`
			`$security_rules .= '\|dumbpwd';`
			`}`

			`// Check for any secure password complexity rules that may have been selected`
			`if ($settings->pwd_secure_complexity!='') {`
			`$security_rules .= '\|'.$settings->pwd_secure_complexity;`
			`}`


			`if ((\Route::currentRouteName()=='api.users.update') \|\| (\Route::currentRouteName()=='users.update')) {`
			`$rules['password'] = 'nullable\|min:'.$settings->pwd_secure_min.$security_rules;`
			`} else {`
			`$rules['password'] = 'required\|min:'.$settings->pwd_secure_min.$security_rules;`
			`}`

			`$rules['password_confirm'] = 'sometimes\|required_with:password';`

			`return $rules;`

Use form request for user add/edit to handle password and password confirmation 2016-06-06 14:15:50 -07:00			`}`
			`}`