improved the password generation function

ZakharovAndrew · ZakharovAndrew · commit b54dee7fe58d · 2025-01-02T03:07:41.000+03:00
diff --git a/src/mail/password-reset-html.php b/src/mail/password-reset-html.php
@@ -0,0 +1,15 @@
+<?php
+
+use yii\helpers\Html;
+use ZakharovAndrew\user\Module;
+
+$site_link = Yii::$app->urlManager->createAbsoluteUrl(['site/index']);
+?>
+
+<div class="password-set">
+    <h2><?= Module::t('Hello')?>, <?= Html::encode($user->getName()) ?></h2>
+    <p><?= Module::t('Your data for access to')?> <?= Html::a(Html::encode($site_link), $site_link) ?>:</p>
+    <p><?= Module::t('Login') ?>: <?= Html::encode($user->username) ?></p>
+    <p><?= Module::t('Password')?>: <?= Html::encode($password) ?></p>
+    <p><?= Module::t('We recommend changing your password') ?></p>
+</div>
diff --git a/src/models/User.php b/src/models/User.php
@@ -341,8 +341,6 @@ public function generateTelegramCode()
     {
         $this->telegram_code = md5(time().$this->username);
     }
-    
-    
 
     /**
      * Find a user by email
@@ -407,20 +405,30 @@ public static function getUsersByStatus($status_id)
     }
     
     /**
-     * Generating a new password
-     * @param int $length - new password length
-     * @return string new password
+     * Generates a random password.
+     *
+     * @param int $length The desired length of the password. Default is 10.
+     * @param bool $use_special Whether to include special characters in the password. Default is false.
+     * @return string The generated password.
      */
-    public static function genPassword($length = 10)
+    public static function genPassword($length = 10, $use_special = false)
     {
-        $chars = "qazxswedcvfrtgbnhyujmkiolp1234567890QAZXSWEDCVFRTGBNHYUJMKIOLP!@#$%&*?";
-        $length = intval($length);
-        $size = strlen($chars) - 1;
-        $password = "";
-        while($length--) {
-            $password .= $chars[rand(0, $size)];
-        }
+        $lowercase = range('a', 'z');
+        $uppercase = range('A', 'Z');
+        $digits = range(0, 9);
         
+        // If special characters are to be used, create an array of special characters
+        $special = $use_special ? ['!', '@', '#', '$', '%', '^', '&', '*'] : [];
+        
+        // Merge all character arrays into one array for password generation
+        $chars = array_merge($lowercase, $uppercase, $digits, $special);
+        $password = '';
+
+        // Loop to generate each character of the password
+        for ($i = 0; $i < intval($length); $i++) {
+            $password .= $chars[random_int(0, count($chars) - 1)];
+        }
+
         return $password;
     }
     
