A password complexity checker library.
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Failed to load latest commit information.



Build Status Code Coverage Scrutinizer Code Quality Code Climate Latest Stable Version Latest Unstable Version License

Plexity (Password Complexity) is a password complexity library that enables you to set "rules" for a password (or any other kind of string) that you can then check against in your application.

This library supports the following kind of complexity settings:

  • Upper/lowercase character detection
  • Number containment
  • Special character containment
  • Minimum/maximum character detection
  • Password age expiry detection
  • Detection of previous use (for a configurable amount of previous uses)


This library is developed and tested for PHP 5.3+

This library is unit tested against PHP 5.3, 5.4, 5.5, 5.6, 7.0, 7.1 and HHVM!


This client library is released under the MIT license, a copy of the license is provided in this package.


To install the package into your project (assuming you are using the Composer package manager) you can simply execute the following command from your terminal in the root of your project folder:

composer require ballen/plexity

Alternatively you can manually add this library to your project using the following steps, simply edit your project's composer.json file and add the following lines (or update your existing require section with the library like so):

"require": {
        "ballen/plexity": "~1.0"

Then install the package like so:

composer update ballen/plexity --no-dev


A simple example of how you can use the methods to build up a password complexity rule-set and then validate the password.

use Ballen\Plexity\Plexity as PasswordValidator;

$password = new PasswordValidator();

$password->requireSpecialCharacters() // We want the password to contain special characters.
    ->requireUpperCase() // Requires the password to contains upper case characters.
    ->requireLowerCase() // Requires the password to contains lower case characters.
    ->requireNumericChataters(3); // We want to ensure that the password uses at least 3 numbers!

// An example of passing a password history array, if the password exists in here then we'll disallow it!

try {
    echo "Great news! The password passed validation!";
} catch (Ballen\Plexity\Exceptions\ValidationException $exception) {
    die('Password was invalid, the error was: ' . $exception->getMessage());

Tests and coverage

This library is fully unit tested using PHPUnit.

I use TravisCI for continuous integration, which triggers tests for PHP 5.3, 5.4, 5.5, 5.6, 7.0 and HHVM every time a commit is pushed.

If you wish to run the tests yourself you should run the following:

# Install the Plexity Library with the 'development' packages this then includes PHPUnit!
composer install --dev

# Now we run the unit tests (from the root of the project) like so:

Code coverage can also be ran but requires XDebug installed...

./vendor/bin/phpunit --coverage-html ./report


I am happy to provide support via. my personal email address, so if you need a hand drop me an email at: ballen@bobbyallen.me.