Skip to content

Hide password during typing with a new prompt input#1962

Open
Crissal1995 wants to merge 9 commits intoprompt-toolkit:mainfrom
Crissal1995:master
Open

Hide password during typing with a new prompt input#1962
Crissal1995 wants to merge 9 commits intoprompt-toolkit:mainfrom
Crissal1995:master

Conversation

@Crissal1995
Copy link

@Crissal1995 Crissal1995 commented Jan 17, 2025

This PR resolves #1783.
The PasswordProcessor by default (current implementation, no argument given) outputs a * for each letter typed by the user in the prompt.
However, the desired behavior would be to make the typed password invisible, e.g. like getpass does.
Two tests were added, and the example was also modified and tested locally to make sure that the change works as intended.

@Crissal1995
Implemented the main functionality
12239da 
New input added to the prompt(): hide_password
False by default, if True, the characters won't be echoed back (as *) in the output
@Crissal1995
add some tests
979ea9c
@Crissal1995
modified and tested the example
c2e9da5
@Crissal1995
ruff format
78b83a1
@Crissal1995
mypy fix
47a7a57
@Crissal1995 Crissal1995 mentioned this pull request Jan 17, 2025
Open
jonathanslenders
jonathanslenders reviewed Jan 20, 2025
View reviewed changes
src/prompt_toolkit/shortcuts/prompt.py
When True (the default), automatically wrap long lines instead of
scrolling horizontally.
:param is_password: Show asterisks instead of the actual typed characters.
:param hide_password: Hide the password, rather than showing asterisks.
Copy link
Member

@jonathanslenders jonathanslenders Jan 20, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Would it make sense to accept password_character here instead of hide_password? It will be more flexible.

Copy link
Author

@Crissal1995 Crissal1995 Jan 20, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Undoubtedly, but from an user perspective hide_password is more clear.

Besides, is there any valuable use-case where the password is displayed as something else, e.g. xxxxx or 11111?

Copy link
Member

@jonathanslenders jonathanslenders Jan 21, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I can imagine that some might want to render it as Unicode bullets, because that's more beautiful.

Like password_character="•"

I mainly want to avoid having too many redundant arguments here. We have to repeat them in multiple places and the signature gets pretty long. If at some point, some users want to configure this, we'll have both hide_password and password_character.

Honestly, I'm not sure myself. If there was some prior art in other libraries, that could convince me to go one way or another.

Copy link
Author

@Crissal1995 Crissal1995 Jan 22, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

An alternative would be to use both flags, forcing password_character to be an empty string if hide_password is True.
In this way users could either use the flag hide_password if they don't care about how the password is displayed on screen, or the flag password_character if they want to customize the appearance, as youy suggested.

Crissal1995
Crissal1995 commented Jan 20, 2025
View reviewed changes
@Crissal1995
Copy link
Author

Crissal1995 commented Jan 20, 2025
edited
Loading

Apparently running the tests with pytest leads to a different result (green testsuite) than the one obtained by the command used by the CI pipeline, coverage run -m pytest (red testsuite); I am not sure why this is the case.

EDIT: Found an unrelated bug related to the Prompt - or the PlainTextOutput? - where the output is duplicated when it should not be.
The test is now handling this bad-weather case scenario.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jonathanslenders jonathanslenders Awaiting requested review from jonathanslenders

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Hide password instead of replacing it with a character

2 participants

@Crissal1995 @jonathanslenders