Allow specifying frequency lists in ZXCVBNValidator options

[ramonakira]

This PR allows specifying frequency_lists in the ZXCVBNValidator options by adding a dict in the following form:

    {
        'NAME': 'pages.validators.CustomZXCVBNValidator',
        'OPTIONS': {
            'min_score': 3,
            'frequency_lists': {
                'dutch': dutch_words,
            }
        }
    }

[pawamoy]

Thanks! Just one thing to change 🙂

Could you also add usage example documentation to the README?

[pawamoy]

Perfect! Thanks 🙂 I'll try to release a new version ASAP.

[ramonakira]

Thanks so much!

[pawamoy]

I guess we could close #2? But the validation against custom dictionaries is only done server-side, right? We still don't have a way to do that client-side? I think I'm gonna close #2 and let someone reopen an issue if they need it client-side.

[ramonakira]

In my case the only thing that we do client-side is show the password strength bar. To make sure we get the same calculation in the bar as in the django's password validation we created a view that does the same call to zxcvbn as the password validation. Then we use that score as feedback in the password strength bar.

This can be as simple as:

class PasswordStrengthIndicatorView(View):

    def get(self, request, *args, **kwargs):
        add_frequency_lists({
            'dutch': dutch_words.get_ranked(),
        })

        password_strength = 0

        if request.GET.get('password'):
            password_strength = zxcvbn(request.GET.get('password'))['score']

        return HttpResponse(password_strength)

This has the advantage that the user does not need to download the (rather large) zxcvbn client-side library.

[pawamoy]

Hmmm, interesting. I guess this should have been done this way from the beginning. I'll open a new issue.