ADD: add password leaks check

2025-11-20 22:13:17 +01:00
parent a1fdfa0a41
commit a23222a026
5 changed files with 147 additions and 20 deletions
--- a/src/main/resources/templates/password.html
+++ b/src/main/resources/templates/password.html
@@ -14,17 +14,26 @@
    <input type="password" id="password" autocomplete="off">
 </form>

-<p id="liveMessage" aria-live="polite"></p>
-
+<div class="message-wrapper">
+<p id="liveMessage" class="message" aria-live="polite"></p>
+<p id="leakMessage" class="message" aria-live="polite"></p>
+</div>
 <script>
    const input = document.getElementById('password');
    const out = document.getElementById('liveMessage');
+    const leakOut = document.getElementById('leakMessage');

    let t;
    input.addEventListener('input', () => {
        clearTimeout(t);
        const val = input.value;
-        if (!val) { out.textContent = ''; return; }
+        if (!val) {
+            out.textContent = '';
+            leakOut.textContent = '';
+            out.className = 'message';
+            leakOut.className = 'message';
+            return;
+        }

        t = setTimeout(async () => {
            try {
@@ -33,29 +42,43 @@
                    headers: { 'Content-Type': 'application/x-www-form-urlencoded' },
                    body: new URLSearchParams({ password: val })
                });
-                if (!resp.ok) { out.textContent = 'Błąd sprawdzania'; return; }
+                if (!resp.ok) {
+                    out.textContent = 'Błąd sprawdzania';
+                    leakOut.textContent = '';
+                    return;
+                }
                const data = await resp.json();
                out.textContent = data.message || '';
-                out.className = '';
+                out.className = 'message';
                switch (data.message) {
                    case "Bardzo słabe hasło":
                        out.classList.add("bad");
                        break;
                    case "Słabe hasło":
-                        out.classList.add("warn");
-                        break;
                    case "Średnie hasło":
                        out.classList.add("warn");
                        break;
                    case "Silne hasło":
-                        out.classList.add("ok");
-                        break;
                    case "Bardzo silne hasło":
                        out.classList.add("ok");
                        break;
                }
+
+                if (data.leaked) {
+                    leakOut.textContent = data.leaked || '';
+                    leakOut.className = 'message';
+                    switch (data.leaked) {
+                        case "Hasło wyciekło!":
+                            leakOut.classList.add("bad");
+                            break;
+                        case "Hasło nie występuje w wyciekach":
+                            leakOut.classList.add("ok");
+                            break;
+                    }
+                }
            } catch {
                out.textContent = 'Błąd sieci';
+                leakOut.textContent = '';
            }
        }, 150);
    });