1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374 |
- <?php
- declare(strict_types=1);
- namespace OC\Security\RateLimiting;
- use OC\Security\Normalizer\IpAddress;
- use OC\Security\RateLimiting\Backend\IBackend;
- use OC\Security\RateLimiting\Exception\RateLimitExceededException;
- use OCP\IUser;
- use OCP\Security\RateLimiting\ILimiter;
- class Limiter implements ILimiter {
- public function __construct(
- private IBackend $backend,
- ) {
- }
-
- private function register(
- string $methodIdentifier,
- string $userIdentifier,
- int $period,
- int $limit,
- ): void {
- $existingAttempts = $this->backend->getAttempts($methodIdentifier, $userIdentifier);
- if ($existingAttempts >= $limit) {
- throw new RateLimitExceededException();
- }
- $this->backend->registerAttempt($methodIdentifier, $userIdentifier, $period);
- }
-
- public function registerAnonRequest(
- string $identifier,
- int $anonLimit,
- int $anonPeriod,
- string $ip,
- ): void {
- $ipSubnet = (new IpAddress($ip))->getSubnet();
- $anonHashIdentifier = hash('sha512', 'anon::' . $identifier . $ipSubnet);
- $this->register($identifier, $anonHashIdentifier, $anonPeriod, $anonLimit);
- }
-
- public function registerUserRequest(
- string $identifier,
- int $userLimit,
- int $userPeriod,
- IUser $user,
- ): void {
- $userHashIdentifier = hash('sha512', 'user::' . $identifier . $user->getUID());
- $this->register($identifier, $userHashIdentifier, $userPeriod, $userLimit);
- }
- }
|