Password::defaults() won't work in validator #59

lenchantin · 2022-11-15T03:48:40Z

lenchantin
Nov 15, 2022

Hello-

I wanted to make a user sign-up wizard, and when I try to use the following array for rules:

public array $rules = [
    'name' => ['required', 'string', 'max:255', 'alpha_num', 'unique:name_blacklists,word', 'unique:users,name'],
    'email' => [
        'required',
        'string',
        'email',
        'max:255',
        'unique:users,email',
    ],
    'password' => ['required', 'string', 'confirmed', Password::defaults() ],
];

I get an error in PHP storm: expression is not allowed as field default value. Also, I get the following error on the page: [Constant expression contains invalid operations]. (All these errors are pointing toward Password::defaults(). I cannot use any of the standard calls in Password, either, like min(), mixedCase(), etc...

When I remove the rules array and use validator inside the submit function (see below) - everything works as expected.

public function submit()
{
    Validator::make($this->state()->currentStep(), [
        'name' => ['required', 'string', 'max:255', 'alpha_num', 'unique:users,name'],
        'email' => ['required', 'string', 'email', 'max:255', 'unique:users,email'],
        'password' => ['required', 'string', 'confirmed', Password::defaults() ],
    ])->validate();

    $this->nextStep();
}

I pored over the documentation but didn't see anything that might point at the issue. I am also somewhat sleep deprived at the moment, so there's that too. On the other hand, if this is an error with the package, I thought I should post something.

In the meantime, is there any reason I shouldn't be using Laravel's Validator class instead of the rules array that ships with the package?

Also - is this package safe enough to use for user registration, since it seems it's not using a form to submit the fields and there's no @csrf token involved?

Answered by ju5t

Nov 15, 2022

On the use of the Password facade inside a public property; that's not possible with PHP, so this is not an issue with the package. If you want to specify the rules globally, you should create a rules() method on your Livewire class, see:
https://laravel-livewire.com/docs/2.x/input-validation

If you're worried about security, you should read https://laravel-livewire.com/docs/2.x/security. This package is just a wrapper around Livewire so you can create wizards with it.

View full answer

ju5t · 2022-11-15T07:34:07Z

ju5t
Nov 15, 2022

On the use of the Password facade inside a public property; that's not possible with PHP, so this is not an issue with the package. If you want to specify the rules globally, you should create a rules() method on your Livewire class, see:
https://laravel-livewire.com/docs/2.x/input-validation

If you're worried about security, you should read https://laravel-livewire.com/docs/2.x/security. This package is just a wrapper around Livewire so you can create wizards with it.

1 reply

lenchantin Nov 15, 2022
Author

My goodness, I glossed right over that. (This one should probably not code when tired.) -_-

Thank you so much for the reply -- it was exactly what I needed. You're a rock star!

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Password::defaults() won't work in validator #59

{{title}}

{{editor}}'s edit

{{editor}}'s edit

Replies: 1 comment 1 reply

{{title}}

{{title}}

Select a reply

Password::defaults() won't work in validator #59

lenchantin Nov 15, 2022

Replies: 1 comment · 1 reply

ju5t Nov 15, 2022

lenchantin Nov 15, 2022 Author

lenchantin
Nov 15, 2022

Replies: 1 comment 1 reply

ju5t
Nov 15, 2022

lenchantin Nov 15, 2022
Author