2018-12-06 22:03:38 -05:00
|
|
|
{-|
|
|
|
|
|
|
|
|
Module: Password
|
|
|
|
Description: a simple password manager
|
|
|
|
Copyright: (C) 2018 Jonathan Lamothe
|
|
|
|
License: LGPLv3 (or later)
|
|
|
|
Maintainer: jlamothe1980@gmail.com
|
|
|
|
|
|
|
|
This program is free software: you can redistribute it and/or modify
|
|
|
|
it under the terms of the GNU Lesser General Public License as
|
|
|
|
published by the Free Software Foundation, either version 3 of the
|
|
|
|
License, or (at your option) any later version.
|
|
|
|
|
|
|
|
This program is distributed in the hope that it will be useful, but
|
|
|
|
WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
|
|
Lesser General Public License for more details.
|
|
|
|
|
|
|
|
You should have received a copy of the GNU Lesser General Public
|
|
|
|
License along with this program. If not, see
|
|
|
|
<https://www.gnu.org/licenses/>.
|
|
|
|
|
|
|
|
-}
|
|
|
|
|
2018-12-12 17:04:23 -05:00
|
|
|
{-# LANGUAGE TemplateHaskell #-}
|
|
|
|
|
2018-12-09 15:34:29 -05:00
|
|
|
module Password (
|
|
|
|
-- * Data Types
|
2018-12-18 14:19:19 -05:00
|
|
|
PWDatabase, PWData(..), PWPolicy (..), PWSalt,
|
2018-12-12 17:04:23 -05:00
|
|
|
-- ** Lenses
|
|
|
|
-- $lenses
|
2018-12-17 15:18:01 -05:00
|
|
|
-- *** PWData
|
|
|
|
pwPolicy, pwSalt,
|
|
|
|
-- *** PWPolicy
|
2018-12-12 17:38:10 -05:00
|
|
|
pwLength, pwUpper, pwLower, pwDigits, pwSpecial,
|
|
|
|
-- ** Default Instances
|
2018-12-18 14:41:29 -05:00
|
|
|
newPWDatabase, newPWData, newPWPolicy, newPWSalt,
|
2018-12-18 17:56:10 -05:00
|
|
|
-- ** Validations
|
2018-12-19 16:45:16 -05:00
|
|
|
validatePWDatabase, validatePWData, validatePWPolicy,
|
|
|
|
-- * Functions
|
|
|
|
-- ** Password Generator
|
|
|
|
pwGenerate,
|
|
|
|
-- ** Password Checkers
|
|
|
|
pwCountUpper, pwCountLower, pwCountDigits, pwCountSpecial
|
2018-12-09 15:34:29 -05:00
|
|
|
) where
|
|
|
|
|
2018-12-20 22:02:24 -05:00
|
|
|
import Control.Lens (makeLenses, over, set, (^.))
|
2018-12-13 13:23:56 -05:00
|
|
|
import Data.Char (isUpper, isLower, isDigit, isAlphaNum)
|
2018-12-20 22:21:36 -05:00
|
|
|
import qualified Data.ByteString.Lazy as B
|
2018-12-17 15:18:01 -05:00
|
|
|
import qualified Data.Map as M
|
2018-12-12 18:41:34 -05:00
|
|
|
import Data.Maybe (fromMaybe)
|
2018-12-17 16:09:40 -05:00
|
|
|
import System.Random (RandomGen, randoms, split)
|
2018-12-12 17:04:23 -05:00
|
|
|
|
2018-12-17 15:18:01 -05:00
|
|
|
-- | a mapping of service names to password data
|
|
|
|
type PWDatabase = M.Map String PWData
|
|
|
|
|
|
|
|
-- | data necessary to construct a password
|
|
|
|
data PWData = PWData
|
|
|
|
{ _pwPolicy :: PWPolicy
|
|
|
|
-- ^ the password policy
|
2018-12-18 17:56:10 -05:00
|
|
|
, _pwSalt :: PWSalt
|
2018-12-17 15:18:01 -05:00
|
|
|
-- ^ random data used to generate the password
|
|
|
|
} deriving (Eq, Show)
|
|
|
|
|
2018-12-09 15:34:29 -05:00
|
|
|
-- | defines a password policy
|
|
|
|
data PWPolicy = PWPolicy
|
|
|
|
{ _pwLength :: Int
|
|
|
|
-- ^ password length
|
|
|
|
, _pwUpper :: Int
|
|
|
|
-- ^ the minimum number of upper case characters
|
|
|
|
, _pwLower :: Int
|
|
|
|
-- ^ the minimum number of lower case characters
|
|
|
|
, _pwDigits :: Int
|
|
|
|
-- ^ the minimum number of digits
|
|
|
|
, _pwSpecial :: Maybe Int
|
|
|
|
-- ^ the minimum number of non-alphanumeric characters (not allowed
|
|
|
|
-- if @"Nothing"@)
|
|
|
|
} deriving (Eq, Show)
|
|
|
|
|
2018-12-18 14:19:19 -05:00
|
|
|
-- | the "salt" used to generate a password
|
|
|
|
type PWSalt = B.ByteString
|
|
|
|
|
2018-12-12 17:04:23 -05:00
|
|
|
-- $lenses The following functions are automatically generated by
|
|
|
|
-- @makeLenses@. See the
|
|
|
|
-- [lens](http://hackage.haskell.org/package/lens) package for further
|
|
|
|
-- details.
|
|
|
|
|
|
|
|
makeLenses ''PWPolicy
|
2018-12-17 15:18:01 -05:00
|
|
|
makeLenses ''PWData
|
2018-12-12 17:04:23 -05:00
|
|
|
|
2018-12-18 14:41:29 -05:00
|
|
|
-- | default (empty) password database
|
|
|
|
newPWDatabase :: PWDatabase
|
|
|
|
newPWDatabase = M.empty
|
|
|
|
|
2018-12-18 14:04:45 -05:00
|
|
|
-- | builds a new @'PWData'@
|
|
|
|
newPWData
|
|
|
|
:: RandomGen g
|
|
|
|
=> g
|
|
|
|
-- ^ the random generator to use
|
|
|
|
-> (PWData, g)
|
|
|
|
-- ^ the result and new random generator
|
|
|
|
newPWData g = (result, g') where
|
|
|
|
result = PWData newPWPolicy salt
|
2018-12-18 14:19:19 -05:00
|
|
|
(salt, g') = newPWSalt g
|
|
|
|
|
|
|
|
-- | default password policy
|
|
|
|
newPWPolicy :: PWPolicy
|
|
|
|
newPWPolicy = PWPolicy 16 0 0 0 (Just 0)
|
2018-12-18 14:04:45 -05:00
|
|
|
|
2018-12-17 16:09:40 -05:00
|
|
|
-- | builds a new salt
|
2018-12-18 14:19:19 -05:00
|
|
|
newPWSalt
|
2018-12-17 16:09:40 -05:00
|
|
|
:: RandomGen g
|
|
|
|
=> g
|
|
|
|
-- ^ the random generator to use
|
2018-12-18 14:19:19 -05:00
|
|
|
-> (PWSalt, g)
|
|
|
|
-- ^ the result and new random generator
|
|
|
|
newPWSalt g = (result, g2) where
|
2018-12-17 16:09:40 -05:00
|
|
|
result = B.pack $ take 256 $ randoms g1
|
|
|
|
(g1, g2) = split g
|
|
|
|
|
2018-12-19 10:36:28 -05:00
|
|
|
-- | validates a password database
|
|
|
|
validatePWDatabase
|
|
|
|
:: PWDatabase
|
|
|
|
-- ^ the database to be validated
|
|
|
|
-> Bool
|
|
|
|
-- ^ @"True"@ if valid; @"False"@ otherwise
|
|
|
|
validatePWDatabase = all validatePWData
|
|
|
|
|
2018-12-18 17:56:10 -05:00
|
|
|
-- | validates password data
|
|
|
|
validatePWData
|
|
|
|
:: PWData
|
|
|
|
-- ^ the data to be validated
|
|
|
|
-> Bool
|
|
|
|
-- ^ @"True"@ if valid; @"False"@ otherwise
|
|
|
|
validatePWData x =
|
|
|
|
validatePWPolicy (x^.pwPolicy) &&
|
|
|
|
B.length (x^.pwSalt) > 0
|
|
|
|
|
2018-12-12 18:41:34 -05:00
|
|
|
-- | validates a password policy
|
|
|
|
validatePWPolicy
|
|
|
|
:: PWPolicy
|
|
|
|
-- ^ the policy being validated
|
2018-12-13 11:15:26 -05:00
|
|
|
-> Bool
|
|
|
|
-- ^ indicates whether or not the policy is valid
|
2018-12-17 00:04:43 -05:00
|
|
|
validatePWPolicy x = and
|
2018-12-13 11:48:37 -05:00
|
|
|
[ needed <= x^.pwLength
|
|
|
|
, x^.pwLength >= 0
|
|
|
|
, x^.pwUpper >= 0
|
|
|
|
, x^.pwLower >= 0
|
|
|
|
, x^.pwDigits >= 0
|
|
|
|
, fromMaybe 0 (x^.pwSpecial) >= 0
|
|
|
|
] where
|
|
|
|
needed = x^.pwUpper + x^.pwLower + x^.pwDigits + special
|
|
|
|
special = fromMaybe 0 $ x^.pwSpecial
|
2018-12-12 18:41:34 -05:00
|
|
|
|
2018-12-19 16:45:16 -05:00
|
|
|
-- | generates a password
|
|
|
|
pwGenerate
|
|
|
|
:: String
|
|
|
|
-- ^ the master password
|
|
|
|
-> PWData
|
|
|
|
-- ^ the password parameters
|
|
|
|
-> Maybe String
|
|
|
|
-- ^ the resulting password, if possible; @"Nothing"@ if the data is
|
|
|
|
-- invalid
|
2018-12-19 16:47:02 -05:00
|
|
|
pwGenerate pw d = if validatePWData d
|
|
|
|
then Just $ mkPass (mkPool seed) (d^.pwPolicy)
|
|
|
|
else Nothing
|
|
|
|
where seed = mkSeed pw d
|
2018-12-19 16:45:16 -05:00
|
|
|
|
2018-12-20 22:15:43 -05:00
|
|
|
-- | counts upper case characters in a password
|
|
|
|
pwCountUpper
|
|
|
|
:: String
|
|
|
|
-- ^ the password
|
|
|
|
-> Int
|
|
|
|
-- ^ the count
|
|
|
|
pwCountUpper = length . filter isUpper
|
|
|
|
|
2018-12-19 16:45:16 -05:00
|
|
|
-- | counts lower case characters in a password
|
|
|
|
pwCountLower
|
|
|
|
:: String
|
|
|
|
-- ^ the password
|
|
|
|
-> Int
|
|
|
|
-- ^ the count
|
2018-12-20 22:15:43 -05:00
|
|
|
pwCountLower = length . filter isLower
|
2018-12-19 16:45:16 -05:00
|
|
|
|
|
|
|
-- | counts digits in a password
|
|
|
|
pwCountDigits
|
|
|
|
:: String
|
|
|
|
-- ^ the password
|
|
|
|
-> Int
|
|
|
|
-- ^ the count
|
2018-12-20 22:15:43 -05:00
|
|
|
pwCountDigits = length . filter isDigit
|
2018-12-19 16:45:16 -05:00
|
|
|
|
|
|
|
-- | counts special characters in a password
|
|
|
|
pwCountSpecial
|
|
|
|
:: String
|
|
|
|
-- ^ the password
|
|
|
|
-> Int
|
|
|
|
-- ^ the count
|
2018-12-20 22:15:43 -05:00
|
|
|
pwCountSpecial = length . filter isSpecial
|
2018-12-19 16:45:16 -05:00
|
|
|
|
2018-12-20 22:15:43 -05:00
|
|
|
isSpecial :: Char -> Bool
|
|
|
|
isSpecial x = not $ isUpper x || isLower x || isDigit x
|
2018-12-19 16:45:16 -05:00
|
|
|
|
2018-12-19 16:47:02 -05:00
|
|
|
mkPass :: String -> PWPolicy -> String
|
|
|
|
mkPass (x:xs) p = let p' = nextPolicy x p in
|
|
|
|
if p^.pwLength <= 0
|
|
|
|
then ""
|
|
|
|
else if validatePWPolicy p'
|
|
|
|
then x : mkPass xs p'
|
|
|
|
else mkPass xs p
|
|
|
|
|
|
|
|
mkPool :: B.ByteString -> String
|
2018-12-20 21:48:02 -05:00
|
|
|
mkPool = toB64 . raw where
|
|
|
|
raw x = let x' = mkHash x in
|
|
|
|
x' `B.append` raw x
|
2018-12-19 16:47:02 -05:00
|
|
|
|
|
|
|
mkSeed :: String -> PWData -> B.ByteString
|
|
|
|
mkSeed pw d = toUTF8 pw `B.append` (d^.pwSalt)
|
|
|
|
|
|
|
|
mkHash :: B.ByteString -> B.ByteString
|
|
|
|
mkHash = undefined
|
|
|
|
|
|
|
|
nextPolicy :: Char -> PWPolicy -> PWPolicy
|
|
|
|
nextPolicy x p = over pwLength pred $
|
2018-12-20 22:02:24 -05:00
|
|
|
if isUpper x
|
|
|
|
then dec pwUpper
|
|
|
|
else if isLower x
|
|
|
|
then dec pwLower
|
|
|
|
else if isDigit x
|
|
|
|
then dec pwDigits
|
|
|
|
else case p^.pwSpecial of
|
|
|
|
Nothing -> set pwSpecial (Just (-1)) p
|
2018-12-21 16:44:25 -05:00
|
|
|
Just _ -> dec $ pwSpecial . traverse
|
2018-12-20 22:02:24 -05:00
|
|
|
where
|
|
|
|
dec l = over l (max 0 . pred) p
|
2018-12-19 16:47:02 -05:00
|
|
|
|
|
|
|
toUTF8 :: String -> B.ByteString
|
|
|
|
toUTF8 = undefined
|
|
|
|
|
|
|
|
toB64 :: B.ByteString -> String
|
|
|
|
toB64 = undefined
|
|
|
|
|
2018-12-09 15:34:29 -05:00
|
|
|
--jl
|