diff options
| author | Thomas Steur <tsteur@users.noreply.github.com> | 2018-12-10 22:47:02 +0300 |
|---|---|---|
| committer | diosmosis <diosmosis@users.noreply.github.com> | 2018-12-10 22:47:02 +0300 |
| commit | 491ff0d8ecd7d2e9daeeb103a2a7fc099526dff9 (patch) | |
| tree | 9a242e11fcda26bc8cace3de4594c916acbe9f1b /plugins/Login/Controller.php | |
| parent | 43b61590e51980965c8c9731d79e0b1479e8feb6 (diff) | |
Lock down accounts by IP after N failed attemps at logging in (#13472)
* some basic work on preventing brute force attacks
* change order
* delete depending on configured value
* show log and feature to unblock ips etc
* more tweaks
* lots of fixes, improvements, and tests
* add more tests
* add more fixes
* fix typo
* make sure to check for all API requests whether allowed
* apply feedback
* block more usages
* improve usage
* fix some tests
* fix some tests
* fix memory problem
* do not whitelist ips for brute force tests
* trying to fix tests
* only delete if installed
* use query
* fix some tests
* better fix
* fix some tests
* fix ui tests
* fix more tests
Diffstat (limited to 'plugins/Login/Controller.php')
| -rw-r--r-- | plugins/Login/Controller.php | 57 |
1 files changed, 40 insertions, 17 deletions
diff --git a/plugins/Login/Controller.php b/plugins/Login/Controller.php index 2db9f15588..2d820d5e9f 100644 --- a/plugins/Login/Controller.php +++ b/plugins/Login/Controller.php @@ -16,6 +16,7 @@ use Piwik\Date; use Piwik\Log; use Piwik\Nonce; use Piwik\Piwik; +use Piwik\Plugins\Login\Security\BruteForceDetection; use Piwik\Plugins\UsersManager\Model AS UsersModel; use Piwik\QuickForm2; use Piwik\Session; @@ -26,7 +27,7 @@ use Piwik\View; * Login controller * @api */ -class Controller extends \Piwik\Plugin\Controller +class Controller extends \Piwik\Plugin\ControllerAdmin { /** * @var PasswordResetter @@ -44,6 +45,16 @@ class Controller extends \Piwik\Plugin\Controller protected $sessionInitializer; /** + * @var BruteForceDetection + */ + protected $bruteForceDetection; + + /** + * @var SystemSettings + */ + protected $systemSettings; + + /* * @var PasswordVerifier */ protected $passwordVerify; @@ -53,10 +64,12 @@ class Controller extends \Piwik\Plugin\Controller * * @param PasswordResetter $passwordResetter * @param AuthInterface $auth - * @param SessionInitializer $authenticatedSessionFactory + * @param SessionInitializer $sessionInitializer * @param PasswordVerifier $passwordVerify + * @param BruteForceDetection $bruteForceDetection + * @param SystemSettings $systemSettings */ - public function __construct($passwordResetter = null, $auth = null, $sessionInitializer = null, $passwordVerify = null) + public function __construct($passwordResetter = null, $auth = null, $sessionInitializer = null, $passwordVerify = null, $bruteForceDetection = null, $systemSettings = null) { parent::__construct(); @@ -79,6 +92,16 @@ class Controller extends \Piwik\Plugin\Controller $sessionInitializer = new \Piwik\Session\SessionInitializer(); } $this->sessionInitializer = $sessionInitializer; + + if (empty($bruteForceDetection)) { + $bruteForceDetection = StaticContainer::get('Piwik\Plugins\Login\Security\BruteForceDetection'); + } + $this->bruteForceDetection = $bruteForceDetection; + + if (empty($systemSettings)) { + $systemSettings = StaticContainer::get('Piwik\Plugins\Login\SystemSettings'); + } + $this->systemSettings = $systemSettings; } /** @@ -151,7 +174,7 @@ class Controller extends \Piwik\Plugin\Controller */ protected function configureView($view) { - $this->setBasicVariablesView($view); + $this->setBasicVariablesNoneAdminView($view); $view->linkTitle = Piwik::getRandomTitle(); @@ -174,11 +197,13 @@ class Controller extends \Piwik\Plugin\Controller $nonceKey = 'confirmPassword'; $messageNoAccess = ''; + if (!empty($_POST)) { $nonce = Common::getRequestVar('nonce', null, 'string', $_POST); + $password = Common::getRequestVar('password', null, 'string', $_POST); if (!Nonce::verifyNonce($nonceKey, $nonce)) { $messageNoAccess = $this->getMessageExceptionNoAccess(); - } elseif ($this->verifyPasswordCorrect()) { + } elseif ($this->passwordVerify->isPasswordCorrect(Piwik::getCurrentUserLogin(), $password)) { $this->passwordVerify->setPasswordVerifiedCorrectly(); return; } else { @@ -192,18 +217,6 @@ class Controller extends \Piwik\Plugin\Controller )); } - private function verifyPasswordCorrect() - { - /** @var \Piwik\Auth $authAdapter */ - $authAdapter = StaticContainer::get('Piwik\Auth'); - $authAdapter->setLogin(Piwik::getCurrentUserLogin()); - $authAdapter->setPasswordHash(null);// ensure authentication happens on password - $authAdapter->setPassword(Common::getRequestVar('password', null, 'string', $_POST)); - $authAdapter->setTokenAuth(null);// ensure authentication happens on password - $authResult = $authAdapter->authenticate(); - return $authResult->wasAuthenticationSuccessful(); - } - /** * Form-less login * @see how to use it on http://piwik.org/faq/how-to/#faq_30 @@ -231,6 +244,16 @@ class Controller extends \Piwik\Plugin\Controller $this->authenticateAndRedirect($login, $password, $urlToRedirect, $passwordHashed = true); } + public function bruteForceLog() + { + Piwik::checkUserHasSuperUserAccess(); + + return $this->renderTemplate('bruteForceLog', array( + 'blockedIps' => $this->bruteForceDetection->getCurrentlyBlockedIps(), + 'blacklistedIps' => $this->systemSettings->blacklistedBruteForceIps->getValue() + )); + } + /** * Error message shown when an AJAX request has no access * |