fix: handle properly invalid fields in ForcePasswordChangeForm

alexandriagroup · Feb 1, 2024 · 21646ab · 21646ab
1 parent 0960b69
commit 21646ab
Show file tree

Hide file tree

Showing 2 changed files with 15 additions and 8 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -2,6 +2,12 @@
 
 All notable changes to this project will be documented in this file.
 
+## [0.0.6] - 2024-02-01
+
+### Bug Fixes
+
+- Handle properly invalid fields in `ForcePasswordChangeForm`
+
 ## [0.0.5] - 2024-01-31
 
 ### Features

diff --git a/password_rotate/forms.py b/password_rotate/forms.py
@@ -13,13 +13,14 @@ class ForcePasswordChangeForm(PasswordChangeForm):
     def clean(self):
         cleaned_data = super().clean()
 
-        ratio = fuzz.ratio(
-            self.cleaned_data["old_password"],
-            cleaned_data["new_password1"]
-        )
-        if ratio >= settings.PASSWORD_ROTATE_MAX_SIMILARITY_RATIO:
-            raise ValidationError(
-                {"new_password1": _("The new password is too similar to the old one.")},
-                code="password_similar"
+        if cleaned_data.get("old_password") and cleaned_data.get("new_password1"):
+            ratio = fuzz.ratio(
+                cleaned_data["old_password"],
+                cleaned_data["new_password1"]
             )
+            if ratio >= settings.PASSWORD_ROTATE_MAX_SIMILARITY_RATIO:
+                raise ValidationError(
+                    {"new_password1": _("The new password is too similar to the old one.")},
+                    code="password_similar"
+                )
         return cleaned_data