Warn user if he inserts a weak password

Author: replydev

src/cryptograpy.rs

@@ -91,13 +91,14 @@ fn header_vec_to_header_array(byte_vec: Vec<u8>) -> [u8;24]{
         .unwrap_or_else(|v: Vec<u8>| panic!("Expected a Vec of length {} but it was {}", 24, v.len()))
 }
 
-pub fn prompt_for_passwords(message: &str) -> String{
+pub fn prompt_for_passwords(message: &str,minimum_password_legth: usize) -> String{
     let mut password;
     loop{
         password = rpassword::prompt_password_stdout(message).unwrap();
-        if password.len() >= 8 {
+        if password.len() >= minimum_password_legth {
             break;
         }
+        println!("Please insert a password with at least {} digits.",minimum_password_legth);
     }
     password
 }

src/database_loader.rs

@@ -69,7 +69,7 @@ impl OTPElement {
 pub fn read_from_file() -> Result<Vec<OTPElement>,String>{
     let encrypted_contents = read_to_string(&get_db_path()).unwrap();
     //rust close files at the end of the function
-    let contents = cryptograpy::decrypt_string(&encrypted_contents, &cryptograpy::prompt_for_passwords("Password: "));
+    let contents = cryptograpy::decrypt_string(&encrypted_contents, &cryptograpy::prompt_for_passwords("Password: ",8));
     match contents {
         Ok(contents) => {
             let vector: Vec<OTPElement> = serde_json::from_str(&contents).unwrap();
@@ -174,7 +174,7 @@ pub fn export_database() -> Result<String, String> {
     exported_path.push_str("/exported.cotp");
     let mut file = File::create(&exported_path).expect("Cannot create file");
     let encrypted_contents = read_to_string(&get_db_path()).unwrap();
-    let contents = cryptograpy::decrypt_string(&encrypted_contents, &cryptograpy::prompt_for_passwords("Password: "));
+    let contents = cryptograpy::decrypt_string(&encrypted_contents, &cryptograpy::prompt_for_passwords("Password: ",8));
     match contents {
         Ok(contents) => {
             if contents == "[]"{
@@ -195,7 +195,7 @@ pub fn overwrite_database(elements: Vec<OTPElement>){
 }
 
 pub fn overwrite_database_json(json: &str){
-    let encrypted = cryptograpy::encrypt_string(json.to_string(), &cryptograpy::prompt_for_passwords("Insert password for database encryption: "));
+    let encrypted = cryptograpy::encrypt_string(json.to_string(), &cryptograpy::prompt_for_passwords("Insert password for database encryption: ",8));
     utils::write_to_file(&encrypted, &mut File::create(utils::get_db_path()).expect("Failed to open file"));
 }