How to verify password

Question

Possible Duplicate:
Use regular expressions to validate passwords

I'm trying to code a php part where I have to make sure password is:

1. At least 6 characters long
2. At least one uppercase letter
3. At least one lowercase letter
4. At Least one numeric character
5. At least one non-alphanumeric character

I have to make sure that the password matches the "Re-Enter password" section. I have the validation for password and password retype, is this the best way to express that?

if ($pass != $repass)
{
  $repassErrorMsg = "Your password does not match the password entered above";
}

I am not sure how I can validate password to the cases listed above. I know how to do RegEx to verify solid formats, but I am not sure how to validate the following case if format is flexible. How can I express my password RegEx to validate any of the case scenarios (ex. at least one numeric) for the password the the user chooses. He may have any of the case scenarios entered anywhere in the password textbox.

Answer 1

To check the strength and safety of a password, you have to use a mix of Regex and PHP.

Check this post. The code provided describes all your conditions.

Answer 2

I use PHP-Password class - it does everything you have asked for.

Answer 3

I found this that might help...

Test your upper and lower case:

checking a password for upper lower numbers and symbols

Test your length:

Check String Length In PHP

Answer 4

Using regex it is very simple >>

preg_match('/^(?=.{6})(?=.*[A-Z])(?=.*[a-z])(?=.*[0-9])(?=.*[\W_])/', $password))

Test this code here.