mirror/ezbookkeeping
1
0
Fork 0
mirror of https://github.com/mayswind/ezbookkeeping.git synced 2026-05-18 08:44:25 +08:00
Code Issues Packages Projects Releases Wiki Activity

limit the maximum count of password / token check failures per IP/user per minute (#33)

Browse Source
This commit is contained in:
MaysWind
2025-03-09 23:38:53 +08:00
parent a29ff0d553
commit 74844b9a99
23 changed files with 288 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files
pkg/services/users.go
+8 -4
View File
@@ -58,7 +58,7 @@ var (
)
// GetUserByUsernameOrEmailAndPassword returns the user model according to login name and password
func (s *UserService) GetUserByUsernameOrEmailAndPassword(c core.Context, loginname string, password string) (*models.User, error) {
func (s *UserService) GetUserByUsernameOrEmailAndPassword(c core.Context, loginname string, password string) (*models.User, int64, error) {
var user *models.User
var err error
@@ -71,14 +71,18 @@ func (s *UserService) GetUserByUsernameOrEmailAndPassword(c core.Context, loginn
}
if err != nil {
return nil, err
return nil, 0, err
}
if user == nil {
return nil, 0, errs.ErrUserNotFound
}
if !s.IsPasswordEqualsUserPassword(password, user) {
return nil, errs.ErrUserPasswordWrong
return nil, user.Uid, errs.ErrUserPasswordWrong
}
return user, nil
return user, user.Uid, nil
}
// GetUserById returns the user model according to user uid