Setting a large PASSWORD_DURATION_SECONDS causes an error #42

mikemanger · 2024-10-15T14:16:14Z

Setting PASSWORD_DURATION_SECONDS to a large value gives an overflow error.

# settings.py
# 23992800719976 seconds
PASSWORD_DURATION_SECONDS = 24 * 9999**3

Traceback (most recent call last):
  File "[DIR]/site-packages/password_policies/middleware.py", line 186, in process_request
    self.check = PasswordCheck(request.user)
                 ^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "[DIR]/site-packages/password_policies/utils.py", line 16, in __init__
    self.expiry_datetime = self.get_expiry_datetime()
                           ^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "[DIR]/site-packages/password_policies/utils.py", line 49, in get_expiry_datetime
    return timezone.now() - timedelta(seconds=seconds)
           ~~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~~~~
OverflowError: date value out of range

Tested with python 3.12.

The text was updated successfully, but these errors were encountered:

mikemanger · 2024-10-15T14:21:22Z

I think worth catching and setting the value to timedelta.max.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Setting a large PASSWORD_DURATION_SECONDS causes an error #42

Setting a large PASSWORD_DURATION_SECONDS causes an error #42

mikemanger commented Oct 15, 2024

mikemanger commented Oct 15, 2024

Setting a large PASSWORD_DURATION_SECONDS causes an error #42

Setting a large PASSWORD_DURATION_SECONDS causes an error #42

Comments

mikemanger commented Oct 15, 2024

mikemanger commented Oct 15, 2024