Home Esplora Aiuto
Accedi
RISCI_ATOM
/
nextcloud-server
mirror da https://github.com/nextcloud/server.git
1
0
Forka 0
File Problemi 23 Wiki
Albero (Tree): 7f0cf9209e
Rami (Branch) Tag
nextcloud-serve...
/
core
/
Command
/
Security
/
BruteforceAttempts.php

BruteforceAttempts.php 2.3 KB
Cronologia Originale

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182 
  1. <?php
    2. 

  2. 

  3. declare(strict_types=1);
    4. 

  4. /**
    5. 

  5.  * @copyright Copyright (c) 2023 Joas Schilling <coding@schilljs.com>
    6. 

  6.  *
    7. 

  7.  * @author Joas Schilling <coding@schilljs.com>
    8. 

  8.  *
    9. 

  9.  * @license GNU AGPL version 3 or any later version
    10. 

  10.  *
    11. 

  11.  * This program is free software: you can redistribute it and/or modify
    12. 

  12.  * it under the terms of the GNU Affero General Public License as
    13. 

  13.  * published by the Free Software Foundation, either version 3 of the
    14. 

  14.  * License, or (at your option) any later version.
    15. 

  15.  *
    16. 

  16.  * This program is distributed in the hope that it will be useful,
    17. 

  17.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    18. 

  18.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
    19. 

  19.  * GNU Affero General Public License for more details.
    20. 

  20.  *
    21. 

  21.  * You should have received a copy of the GNU Affero General Public License
    22. 

  22.  * along with this program. If not, see <http://www.gnu.org/licenses/>.
    23. 

  23.  *
    24. 

  24.  */
    25. 

  25. namespace OC\Core\Command\Security;
    26. 

  26. 

  27. use OC\Core\Command\Base;
    28. 

  28. use OCP\Security\Bruteforce\IThrottler;
    29. 

  29. use Symfony\Component\Console\Input\InputArgument;
    30. 

  30. use Symfony\Component\Console\Input\InputInterface;
    31. 

  31. use Symfony\Component\Console\Output\OutputInterface;
    32. 

  32. 

  33. class BruteforceAttempts extends Base {
    34. 

  34. 	public function __construct(
    35. 

  35. 		protected IThrottler $throttler,
    36. 

  36. 	) {
    37. 

  37. 		parent::__construct();
    38. 

  38. 	}
    39. 

  39. 

  40. 	protected function configure(): void {
    41. 

  41. 		parent::configure();
    42. 

  42. 		$this
    43. 

  43. 			->setName('security:bruteforce:attempts')
    44. 

  44. 			->setDescription('Show bruteforce attempts status for a given IP address')
    45. 

  45. 			->addArgument(
    46. 

  46. 				'ipaddress',
    47. 

  47. 				InputArgument::REQUIRED,
    48. 

  48. 				'IP address for which the attempts status is to be shown',
    49. 

  49. 			)
    50. 

  50. 			->addArgument(
    51. 

  51. 				'action',
    52. 

  52. 				InputArgument::OPTIONAL,
    53. 

  53. 				'Only count attempts for the given action',
    54. 

  54. 			)
    55. 

  55. 		;
    56. 

  56. 	}
    57. 

  57. 

  58. 	protected function execute(InputInterface $input, OutputInterface $output): int {
    59. 

  59. 		$ip = $input->getArgument('ipaddress');
    60. 

  60. 

  61. 		if (!filter_var($ip, FILTER_VALIDATE_IP)) {
    62. 

  62. 			$output->writeln('<error>"' . $ip . '" is not a valid IP address</error>');
    63. 

  63. 			return 1;
    64. 

  64. 		}
    65. 

  65. 

  66. 		$data = [
    67. 

  67. 			'bypass-listed' => $this->throttler->isBypassListed($ip),
    68. 

  68. 			'attempts' => $this->throttler->getAttempts(
    69. 

  69. 				$ip,
    70. 

  70. 				(string) $input->getArgument('action'),
    71. 

  71. 			),
    72. 

  72. 			'delay' => $this->throttler->getDelay(
    73. 

  73. 				$ip,
    74. 

  74. 				(string) $input->getArgument('action'),
    75. 

  75. 			),
    76. 

  76. 		];
    77. 

  77. 

  78. 		$this->writeArrayInOutputFormat($input, $output, $data);
    79. 

  79. 

  80. 		return 0;
    81. 

  81. 	}
    82. 

  82. }
    83.