Inicio Explorar Ayuda
Registro Iniciar sesión
oscarleiva
/
energylink
1
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Rama: master
Ramas Etiquetas
energylink
/
pkg
/
login
/
brute_force_login_protection.go

brute_force_login_protection.go 981 B
Permalink Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748 
  1. package login
    2. 

  2. 

  3. import (
    4. 

  4. 	"time"
    5. 

  5. 

  6. 	"github.com/grafana/grafana/pkg/bus"
    7. 

  7. 	m "github.com/grafana/grafana/pkg/models"
    8. 

  8. 	"github.com/grafana/grafana/pkg/setting"
    9. 

  9. )
    10. 

  10. 

  11. var (
    12. 

  12. 	maxInvalidLoginAttempts int64 = 5
    13. 

  13. 	loginAttemptsWindow           = time.Minute * 5
    14. 

  14. )
    15. 

  15. 

  16. var validateLoginAttempts = func(username string) error {
    17. 

  17. 	if setting.DisableBruteForceLoginProtection {
    18. 

  18. 		return nil
    19. 

  19. 	}
    20. 

  20. 

  21. 	loginAttemptCountQuery := m.GetUserLoginAttemptCountQuery{
    22. 

  22. 		Username: username,
    23. 

  23. 		Since:    time.Now().Add(-loginAttemptsWindow),
    24. 

  24. 	}
    25. 

  25. 

  26. 	if err := bus.Dispatch(&loginAttemptCountQuery); err != nil {
    27. 

  27. 		return err
    28. 

  28. 	}
    29. 

  29. 

  30. 	if loginAttemptCountQuery.Result >= maxInvalidLoginAttempts {
    31. 

  31. 		return ErrTooManyLoginAttempts
    32. 

  32. 	}
    33. 

  33. 

  34. 	return nil
    35. 

  35. }
    36. 

  36. 

  37. var saveInvalidLoginAttempt = func(query *m.LoginUserQuery) {
    38. 

  38. 	if setting.DisableBruteForceLoginProtection {
    39. 

  39. 		return
    40. 

  40. 	}
    41. 

  41. 

  42. 	loginAttemptCommand := m.CreateLoginAttemptCommand{
    43. 

  43. 		Username:  query.Username,
    44. 

  44. 		IpAddress: query.IpAddress,
    45. 

  45. 	}
    46. 

  46. 

  47. 	bus.Dispatch(&loginAttemptCommand)
    48. 

  48. }
    49.