Skip to content

Commit cfe9bd3

Browse files
author
Till Brehm
committed
Changed lockout conditions.
1 parent 139bbca commit cfe9bd3

File tree

1 file changed

+5
-5
lines changed

1 file changed

+5
-5
lines changed

interface/lib/classes/remoting.inc.php

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -91,7 +91,7 @@ public function login($username, $password, $client_login = false)
9191
$sql = "SELECT * FROM `attempts_login` WHERE `ip`= ? AND `login_time` > (NOW() - INTERVAL 5 MINUTE) LIMIT 1";
9292
$alreadyfailed = $app->db->queryOneRecord($sql, $ip_md5);
9393

94-
if($alreadyfailed['times'] > 10) {
94+
if($alreadyfailed['times'] >= 10) {
9595
throw new SoapFault('login_failure_limit', 'The login failure limit has been reached.');
9696
return false;
9797
}
@@ -121,7 +121,7 @@ public function login($username, $password, $client_login = false)
121121
$app->db->query($sql, $ip_md5);
122122
} elseif($alreadyfailed['times'] >= 1) {
123123
//* update times wrong
124-
$sql = "UPDATE `attempts_login` SET `times`=`times`+1, `login_time`=NOW() WHERE `ip` = ? AND `login_time` < NOW() ORDER BY `login_time` DESC LIMIT 1";
124+
$sql = "UPDATE `attempts_login` SET `times`=`times`+1, `login_time`=NOW() WHERE `ip` = ? ORDER BY `login_time` DESC LIMIT 1";
125125
$app->db->query($sql, $ip_md5);
126126
}
127127
throw new SoapFault('client_login_failed', 'The login failed. Username or password wrong.');
@@ -233,7 +233,7 @@ public function login($username, $password, $client_login = false)
233233
$app->db->query($sql, $ip_md5);
234234
} elseif($alreadyfailed['times'] >= 1) {
235235
//* update times wrong
236-
$sql = "UPDATE `attempts_login` SET `times`=`times`+1, `login_time`=NOW() WHERE `ip` = ? AND `login_time` < NOW() ORDER BY `login_time` DESC LIMIT 1";
236+
$sql = "UPDATE `attempts_login` SET `times`=`times`+1, `login_time`=NOW() WHERE `ip` = ? ORDER BY `login_time` DESC LIMIT 1";
237237
$app->db->query($sql, $ip_md5);
238238
}
239239

@@ -575,7 +575,7 @@ protected function getSession($session_id)
575575
$sql = "SELECT * FROM `attempts_login` WHERE `ip`= ? AND `login_time` > (NOW() - INTERVAL 5 MINUTE) LIMIT 1";
576576
$alreadyfailed = $app->db->queryOneRecord($sql, $ip_md5);
577577

578-
if($alreadyfailed['times'] > 10) {
578+
if($alreadyfailed['times'] >= 10) {
579579
throw new SoapFault('session_failure_limit', 'The Session failure limit has been reached.');
580580
return false;
581581
}
@@ -591,7 +591,7 @@ protected function getSession($session_id)
591591
$app->db->query($sql, $ip_md5);
592592
} elseif($alreadyfailed['times'] >= 1) {
593593
//* update times wrong
594-
$sql = "UPDATE `attempts_login` SET `times`=`times`+1, `login_time`=NOW() WHERE `ip` = ? AND `login_time` < NOW() ORDER BY `login_time` DESC LIMIT 1";
594+
$sql = "UPDATE `attempts_login` SET `times`=`times`+1, `login_time`=NOW() WHERE `ip` = ? ORDER BY `login_time` DESC LIMIT 1";
595595
$app->db->query($sql, $ip_md5);
596596
}
597597

0 commit comments

Comments
 (0)