mirror of
https://github.com/grafana/grafana.git
synced 2025-02-25 18:55:37 -06:00
49 lines
997 B
Go
49 lines
997 B
Go
package login
|
|
|
|
import (
|
|
"time"
|
|
|
|
"github.com/grafana/grafana/pkg/bus"
|
|
m "github.com/grafana/grafana/pkg/models"
|
|
"github.com/grafana/grafana/pkg/setting"
|
|
)
|
|
|
|
var (
|
|
maxInvalidLoginAttempts int64 = 5
|
|
loginAttemptsWindow time.Duration = time.Minute * 5
|
|
)
|
|
|
|
var validateLoginAttempts = func(username string) error {
|
|
if setting.DisableBruteForceLoginProtection {
|
|
return nil
|
|
}
|
|
|
|
loginAttemptCountQuery := m.GetUserLoginAttemptCountQuery{
|
|
Username: username,
|
|
Since: time.Now().Add(-loginAttemptsWindow),
|
|
}
|
|
|
|
if err := bus.Dispatch(&loginAttemptCountQuery); err != nil {
|
|
return err
|
|
}
|
|
|
|
if loginAttemptCountQuery.Result >= maxInvalidLoginAttempts {
|
|
return ErrTooManyLoginAttempts
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
var saveInvalidLoginAttempt = func(query *m.LoginUserQuery) {
|
|
if setting.DisableBruteForceLoginProtection {
|
|
return
|
|
}
|
|
|
|
loginAttemptCommand := m.CreateLoginAttemptCommand{
|
|
Username: query.Username,
|
|
IpAddress: query.IpAddress,
|
|
}
|
|
|
|
bus.Dispatch(&loginAttemptCommand)
|
|
}
|