ic6dZddlmZddlZd dZd d Zdd ZdS)zSecurity helper utilities for Star Office backend. Production detection and validation for Flask secret and asset drawer password. ) annotationsNreturnboolctjdptjdpd}|dvS)z?Return True if STAR_OFFICE_ENV or FLASK_ENV is prod/production.STAR_OFFICE_ENV FLASK_ENV>prod production)osgetenvstriplower)envs ./root/Star-Office-UI/backend/security_utils.pyis_production_moder sJ 9& ' ' G29[+A+A GR N N P P V V X XC ( ((secretstrc|sdS|}t|dkrdShd}|tfd|D S)zcReturn True if secret is at least 24 chars and does not contain weak markers (e.g. change-me, dev).F> change-medevtestdefaultexamplec3 K|]}|vV dS)N).0mlows r z#is_strong_secret..s'2218222222r)rlenrany)r weak_markersr!s @ris_strong_secretr&sq u \\^^F 6{{RuEEEL ,,..C2222\22222 22rpwdch|sdS|}|dkrdSt|dkS)zJReturn True if password is not default 1234 and has at least 8 characters.F1234)rr#)r's ris_strong_drawer_passr+s: u ))++C f}}u s88q=r)rr)rrrr)r'rrr)__doc__ __future__rr rr&r+rrrr.sr #""""" )))) 3 3 3 3r