ToxicMushroom/mare.server
1
0
Fork 0
mirror of https://github.com/Caraxi/mare.server.git synced 2025-12-12 18:47:23 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

check whitelisted ip when retrieving unauthorized from cache

Browse source
This commit is contained in:
Stanley Dimant 2022-10-15 01:01:04 +02:00
parent c98e2b2dd6
commit 75a18fb0b8
1 changed files with 11 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

18
MareSynchronosServer/MareSynchronosServices/Authentication/SecretKeyAuthenticationHandler.cs
View file

@ -102,16 +102,20 @@ internal class SecretKeyAuthenticationHandler
{
metrics.IncCounter(MetricsAPI.CounterAuthenticationFailures);
logger.LogWarning("Failed authorization from {ip}", ip);
lock (failedAuthLock)
{
logger.LogWarning("Failed authorization from {ip}", ip);
if (failedAuthorizations.TryGetValue(ip, out var auth))
if (!_whitelistedIps.Any(w => ip.Contains(w)))
{
auth.IncreaseFailedAttempts();
}
else
{
failedAuthorizations[ip] = new FailedAuthorization();
if (failedAuthorizations.TryGetValue(ip, out var auth))
{
auth.IncreaseFailedAttempts();
}
else
{
failedAuthorizations[ip] = new FailedAuthorization();
}
}
}