From: Mikael Nordfeldth Date: Fri, 5 Jun 2015 13:34:14 +0000 (+0200) Subject: $this->client_ip was not always set in AntiBrutePlugin onEndCheckPassword X-Git-Url: https://git.mxchange.org/?a=commitdiff_plain;h=94f5247f91cc9b6ace60d632b91e329c68113c9b;p=quix0rs-gnu-social.git $this->client_ip was not always set in AntiBrutePlugin onEndCheckPassword --- diff --git a/plugins/AntiBrute/AntiBrutePlugin.php b/plugins/AntiBrute/AntiBrutePlugin.php index 365937fedf..625180d23d 100755 --- a/plugins/AntiBrute/AntiBrutePlugin.php +++ b/plugins/AntiBrute/AntiBrutePlugin.php @@ -9,6 +9,13 @@ class AntiBrutePlugin extends Plugin { const FAILED_LOGIN_IP_SECTION = 'failed_login_ip'; + public function initialize() + { + // This probably needs some work. For example with IPv6 you can easily generate new IPs... + $client_ip = common_client_ip(); + $this->client_ip = $client_ip[0] ?: $client_ip[1]; // [0] is proxy, [1] should be the real IP + } + public function onStartCheckPassword($nickname, $password, &$authenticatedUser) { if (common_is_email($nickname)) { @@ -22,9 +29,6 @@ class AntiBrutePlugin extends Plugin { return true; } - // This probably needs some work. For example with IPv6 you can easily generate new IPs... - $client_ip = common_client_ip(); - $this->client_ip = $client_ip[0] ?: $client_ip[1]; // [0] is proxy, [1] should be the real IP $this->failed_attempts = (int)$this->unauthed_user->getPref(self::FAILED_LOGIN_IP_SECTION, $this->client_ip); switch (true) { case $this->failed_attempts >= 5: