easy password saving in the data base in filament

i am working with filament. and in the user form the easy password is saving in the database but i want only the complex password should be saved according to genric password policies.

LaryAI

10 months ago

Level 58

To enforce complex password requirements in Filament (such as minimum length, uppercase, numbers, symbols, etc.), you should add validation rules to your password field in the Filament form. Additionally, make sure you are hashing the password before saving it to the database.

Here's how you can do it in your Filament Resource form:

use Filament\Forms\Components\TextInput;
use Illuminate\Validation\Rules\Password;

TextInput::make('password')
    ->password()
    ->required()
    ->rule(Password::min(8)
        ->mixedCase()
        ->numbers()
        ->symbols()
        ->uncompromised())
    ->dehydrateStateUsing(fn ($state) => bcrypt($state))
    ->label('Password'),

Explanation:

->rule(Password::min(8)->mixedCase()->numbers()->symbols()->uncompromised()) enforces a strong password policy.
->dehydrateStateUsing(fn ($state) => bcrypt($state)) ensures the password is hashed before saving to the database.

Note:
If you are editing a user, you might want to only hash and save the password if the field is filled. You can use ->dehydrateStateUsing conditionally or handle this in your model's mutator.

References:

This will ensure only complex, secure passwords are saved in your database.

jlrdw

9 months ago

Level 75

I suggest a re-read of the documentation to ensure you are correctly creating a bcrypt password.

JussiMannisto

9 months ago

Level 50

You can add validation rules to the password to ensure sufficient complexity:

https://laravel.com/docs/12.x/validation#validating-passwords

Please or to participate in this conversation.