feat: rebrand Hemmelig to paste.es for cloudhost.es

- Set Spanish as default language with ephemeral/encrypted privacy focus - Translate all user-facing strings and legal pages to Spanish - Replace Norwegian flag with Spanish flag in footer - Remove Hemmelig/terces.cloud links, add cloudhost.es sponsorship - Rewrite PrivacyPage: zero data collection, ephemeral design emphasis - Rewrite TermsPage: Spanish law, RGPD, paste.es/CloudHost.es references - Update PWA manifest, HTML meta tags, package.json branding - Rename webhook headers to X-Paste-Event / X-Paste-Signature - Update API docs title and contact to paste.es / cloudhost.es Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-02-24 09:30:19 +01:00
commit bc9f96cbd4
268 changed files with 45773 additions and 0 deletions
--- a/api/validations/password.ts
+++ b/api/validations/password.ts
@@ -0,0 +1,45 @@
+import { z } from 'zod';
+
+/**
+ * Shared password strength rules.
+ * Used by Zod schemas and the better-auth sign-up hook.
+ */
+export const PASSWORD_RULES = {
+    minLength: 8,
+    patterns: [
+        { regex: /[a-z]/, message: 'Password must contain at least one lowercase letter' },
+        { regex: /[A-Z]/, message: 'Password must contain at least one uppercase letter' },
+        { regex: /[0-9]/, message: 'Password must contain at least one number' },
+    ],
+} as const;
+
+/**
+ * Validates a password against strength rules.
+ * Returns the first error message found, or null if valid.
+ */
+export function validatePassword(password: string): string | null {
+    if (password.length < PASSWORD_RULES.minLength) {
+        return `Password must be at least ${PASSWORD_RULES.minLength} characters`;
+    }
+
+    for (const { regex, message } of PASSWORD_RULES.patterns) {
+        if (!regex.test(password)) {
+            return message;
+        }
+    }
+
+    return null;
+}
+
+/**
+ * Zod schema for validating new password strength.
+ */
+export const passwordSchema = z
+    .string()
+    .min(
+        PASSWORD_RULES.minLength,
+        `Password must be at least ${PASSWORD_RULES.minLength} characters`
+    )
+    .regex(PASSWORD_RULES.patterns[0].regex, PASSWORD_RULES.patterns[0].message)
+    .regex(PASSWORD_RULES.patterns[1].regex, PASSWORD_RULES.patterns[1].message)
+    .regex(PASSWORD_RULES.patterns[2].regex, PASSWORD_RULES.patterns[2].message);