citadel_user 0.14.0 

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205

//! # Credential Management
//!
//! This module provides functionality for managing and validating user credentials
//! in the Citadel Protocol. It enforces consistent requirements for usernames,
//! passwords, and full names across the system.
//!
//! ## Features
//!
//! * **Credential Validation**
//!   - Username format and length checks
//!   - Password complexity requirements
//!   - Full name format validation
//!
//! * **Configurable Requirements**
//!   - Customizable length limits
//!   - Default security policies
//!   - Format restrictions
//!
//! * **Security Constraints**
//!   - No spaces in usernames (use periods)
//!   - No spaces in passwords
//!   - Length boundaries for all fields
//!
//! ## Usage Example
//!
//! ```rust
//! use citadel_user::credentials::CredentialRequirements;
//!
//! fn validate_credentials() -> Result<(), Box<dyn std::error::Error>> {
//!     // Create default requirements
//!     let requirements = CredentialRequirements::default();
//!     
//!     // Validate credentials
//!     requirements.check(
//!         "john.doe",
//!         Some("secure_pass123"),
//!         "John Doe"
//!     )?;
//!     
//!     // Create custom requirements
//!     let custom_requirements = CredentialRequirements {
//!         min_password_length: 10,
//!         max_password_length: 20,
//!         min_username_length: 5,
//!         max_username_length: 30,
//!         min_name_length: 3,
//!         max_name_length: 50,
//!     };
//!     
//!     // Validate with custom requirements
//!     custom_requirements.check(
//!         "alice.smith",
//!         Some("very_secure_pass"),
//!         "Alice Smith"
//!     )?;
//!     
//!     Ok(())
//! }
//! ```
//!
//! ## Important Notes
//!
//! * Default length requirements:
//!   - Username: 3-37 characters
//!   - Password: 7-17 characters
//!   - Full Name: 2-77 characters
//!
//! * Validation rules:
//!   - Usernames must not contain spaces (use periods)
//!   - Passwords must not contain spaces
//!   - Full names can contain spaces
//!   - All fields have minimum and maximum lengths
//!
//! * Validation only checks format, not availability
//!
//! ## Related Components
//!
//! * `AccountManager` - Uses credentials for account creation
//! * `ProposedCredentials` - Credential proposal handling
//! * `ClientNetworkAccount` - Account credential storage
//! * `AccountError` - Credential validation errors
//!

use crate::misc::AccountError;
use serde::{Deserialize, Serialize};

#[derive(Serialize, Deserialize, Clone)]
/// Represents the requirements for user credentials.
pub struct CredentialRequirements {
    /// The minimum length of a password.
    pub min_password_length: u8,
    /// The maximum length of a password.
    pub max_password_length: u8,
    /// The minimum length of a username.
    pub min_username_length: u8,
    /// The maximum length of a username.
    pub max_username_length: u8,
    /// The minimum length of a full name.
    pub min_name_length: u8,
    /// The maximum length of a full name.
    pub max_name_length: u8,
}

impl Default for CredentialRequirements {
    /// Returns the default `CredentialRequirements` instance.
    fn default() -> Self {
        Self {
            min_password_length: MIN_PASSWORD_LENGTH,
            max_password_length: MAX_PASSWORD_LENGTH,
            min_username_length: MIN_USERNAME_LENGTH,
            max_username_length: MAX_USERNAME_LENGTH,
            min_name_length: MIN_NAME_LENGTH,
            max_name_length: MAX_NAME_LENGTH,
        }
    }
}

impl CredentialRequirements {
    /// Checks if the provided credentials meet the requirements.
    ///
    /// # Arguments
    ///
    /// * `username` - The username to check.
    /// * `password` - The password to check (optional).
    /// * `full_name` - The full name to check.
    ///
    /// # Returns
    ///
    /// * `Ok(())` if the credentials are valid.
    /// * `Err(AccountError)` if the credentials are invalid.
    pub fn check<T: AsRef<str>, R: AsRef<str>, V: AsRef<str>>(
        &self,
        username: T,
        password: Option<R>,
        full_name: V,
    ) -> Result<(), AccountError> {
        let username = username.as_ref();
        let full_name = full_name.as_ref();

        if username.len() < self.min_username_length as _
            || username.len() > self.max_username_length as _
        {
            return Err(citadel_io::error!(
                citadel_io::ErrorCode::UsernameLengthOutOfRange,
                self.min_username_length,
                self.max_username_length
            ));
        }

        if username.contains(' ') {
            return Err(citadel_io::error!(
                citadel_io::ErrorCode::UsernameContainsSpaces
            ));
        }

        if let Some(password) = password.as_ref() {
            let password = password.as_ref();
            if password.len() < self.min_password_length as _
                || password.len() > self.max_password_length as _
            {
                return Err(citadel_io::error!(
                    citadel_io::ErrorCode::PasswordLengthOutOfRange,
                    self.min_password_length,
                    self.max_password_length
                ));
            }

            if password.contains(' ') {
                return Err(citadel_io::error!(
                    citadel_io::ErrorCode::PasswordContainsSpaces
                ));
            }
        }

        if full_name.len() < self.min_name_length as _
            || full_name.len() > self.max_name_length as _
        {
            return Err(citadel_io::error!(
                citadel_io::ErrorCode::FullNameLengthOutOfRange,
                self.min_name_length,
                self.max_name_length
            ));
        }

        Ok(())
    }
}

/// The minimum length of a password.
pub const MIN_PASSWORD_LENGTH: u8 = 7;

/// The maximum length of a password.
pub const MAX_PASSWORD_LENGTH: u8 = 17;

/// The minimum length of a username.
pub const MIN_USERNAME_LENGTH: u8 = 3;

/// The maximum length of a username.
pub const MAX_USERNAME_LENGTH: u8 = 37;

/// The minimum length of a full name.
pub const MIN_NAME_LENGTH: u8 = 2;

/// The maximum length of a full name.
pub const MAX_NAME_LENGTH: u8 = 77;