In [1]:
import re

def password_complexity(password):
    
    '''
    Recent NIST guidelines state that strong password should be between 8 and 64 characters in length 
    and contain no repeating ('aaaa') or sequential ('1234') characters.
    
    NIST specifies complexity requirements should NOT be used, e.g. requiring special characters, 
    numbers, uppercase, etc. but for the purpose of making this project more interesting we employ them 
    '''
    
    #check password is a string, riase typerror if not
    if not isinstance(password, str):
        raise TypeError('Inappropriate type: %s for password. A string is expected' %type(password))
    
    #check password is at least 8 characters
    short_error = len(password) < 8

    #check password is at most 64 characters    
    long_error = len(password) > 64
    
    #check password contains a digit 0-9
    digit_error = re.search(r'\d', password) is None
    
    #check password contains a lower case letter a-z
    lowercase_error = re.search(r'[a-z]', password) is None
    
    #check password contains an upper case letter A-Z
    uppercase_error = re.search(r'[A-Z]', password) is None
    
    #check password contains a special character, any character not a-z, A-z, 0-9
    special_error = re.search(r'\W', password) is None
    
    #check password does not contain a consecutive block of length 3 or more, of the same character 
    consecutive_error = re.search(r'(.)\1{2,}', password) is not None
        
        
    #we now check the password contains no numeric or alphabetic sequential blocks of length 4 or more
    #e.g 1234, 87654, lmnop, zyxwvu
    num_seq = '0123456789'
    alpha_seq = 'abcdefghijklmnopqrstuvwxyz'

    num_error = False     #we use these to indicate the presence of sequential numerical and alphabetical errors                         
    alpha_error = False   #respectively, and terminate the loop if/once the respective error has been detected
    
    for k in range(4, len(password)+1): #loop through the password in blocks of size 4, 5, ... up to the entire             
        i=0                             #password and check if the block is contained in 0-9, 9-0, a-z or z-a
        while i+k <= len(password):
            if (password[i:i+k] in num_seq or password[i:i+k] in num_seq[::-1]) and not num_error:
                num_error = True
            if (password[i:i+k] in alpha_seq or password[i:i+k] in alpha_seq[::-1]) and not alpha_error:
                alpha_error = True
            i+=1
        
    return {
        #'password_ok' : password_ok,
        'short_error' : short_error,
        'long_error' : long_error,
        'digit_error' : digit_error,
        'uppercase_error' : uppercase_error,
        'lowercase_error' : lowercase_error,
        'special_error' : special_error,
        'consecutive_error' : consecutive_error,
        'num_error' : num_error,
        'alpha_error' : alpha_error
    }

password_complexity('StAndrews1234')



{'short_error': False,
 'long_error': False,
 'digit_error': False,
 'uppercase_error': False,
 'lowercase_error': False,
 'special_error': True,
 'consecutive_error': False,
 'num_error': True,
 'alpha_error': False}

In [2]:
import random
import string

def password_generator():
    #randomise length of password between 8 and 64 characters
    length = random.randint(8, 64)
    
    password = ''
    
    #randomly choose an upper or lowercase letter, digit or special character at random. The probability of choosing 
    #each type of character is in proportion to the relative frequency of that character type.
    for i in range(length):
        letters = string.ascii_letters
        digits = string.digits
        punctuation = string.punctuation

        total_characters = len(letters + digits + punctuation)

        prop_1 = len(letters) / total_characters
        prop_2 = len(letters + digits) / total_characters

        rand = random.random()

        if rand < prop_1:
            password += random.choice(letters)
        elif rand < prop_2:
            password += random.choice(digits)
        else: 
            password += random.choice(punctuation)

    return password

password_generator()

"ElJFxRSxcL6ro'*jQEC'}SJfI"