diff options
author | GitLab Release Tools Bot <robert+release-tools@gitlab.com> | 2019-08-26 10:41:57 +0300 |
---|---|---|
committer | GitLab Release Tools Bot <robert+release-tools@gitlab.com> | 2019-08-26 10:41:57 +0300 |
commit | ff2c6c9d107eac46726f7a929e2400be8d917c44 (patch) | |
tree | eae99b293b3dc4a2503b5b0fb70eeba873566f68 /config | |
parent | cd0dca4807f5e17151db70cbf7a0ff4304f5cbb8 (diff) | |
parent | 46e557359cff319bf936f3c011a9d21e091ae280 (diff) |
Merge branch 'security-59549-add-capcha-for-failed-logins-12-2' into '12-2-stable'
Require a captcha after unique failed logins from the same IP
See merge request gitlab/gitlabhq!3349
Diffstat (limited to 'config')
-rw-r--r-- | config/initializers/warden.rb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/config/initializers/warden.rb b/config/initializers/warden.rb index 1d2bb2bce0a..d8a4da8cdf9 100644 --- a/config/initializers/warden.rb +++ b/config/initializers/warden.rb @@ -19,6 +19,7 @@ Rails.application.configure do |config| Warden::Manager.after_authentication(scope: :user) do |user, auth, opts| ActiveSession.cleanup(user) + Gitlab::AnonymousSession.new(auth.request.remote_ip, session_id: auth.request.session.id).cleanup_session_per_ip_entries end Warden::Manager.after_set_user(scope: :user, only: :fetch) do |user, auth, opts| |