lindeas
/
jilo-web
1
1
Fork 0
Code Issues Pull Requests Packages Projects Releases 5 Wiki Activity

Adds back auto-blacklisting in rate limiter

main
Yasen Pramatarov 2025-02-23 19:35:38 +02:00
parent 4a18c344c8
commit ecad8e2801
1 changed files with 15 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
app/classes/ratelimiter.php
View File

@ -461,7 +461,21 @@ class RateLimiter {
$stmt->execute([':ip' => $ipAddress]); $stmt->execute([':ip' => $ipAddress]);
$rows = $stmt->fetchAll(PDO::FETCH_ASSOC); $rows = $stmt->fetchAll(PDO::FETCH_ASSOC);
return $result['attempts'] >= $this->maxAttempts; $tooMany = $result['attempts'] >= $this->maxAttempts;
// Auto-blacklist if too many attempts
if ($tooMany) {
$this->addToBlacklist(
$ipAddress,
false,
'Auto-blacklisted due to excessive login attempts',
'system',
null,
$this->autoBlacklistDuration
);
}
return $tooMany;
} }
public function clearOldAttempts() { public function clearOldAttempts() {