Merge pull request #1087 from nextcloud/get-delay-twice

dont get bruteforce delay twice
author: Lukas Reschke <lukas@statuscode.ch> 2016-08-30 18:43:01 +0200
committer: GitHub <noreply@github.com> 2016-08-30 18:43:01 +0200
commit: 57f9117843afe403b8324a9e73c83c4849b3143b (patch)
tree: 095d3ab9c9257727d4cfb7d45ea5d442ef2dc24d /lib/private/User
parent: 2a6193e7aadbf41d454f4002773191cc503696b4 (diff)
parent: 6c93fe08f53bff474921d150edabb27ca630edd7 (diff)
download: nextcloud-server-57f9117843afe403b8324a9e73c83c4849b3143b.tar.gz
nextcloud-server-57f9117843afe403b8324a9e73c83c4849b3143b.zip
1 files changed, 1 insertions, 2 deletions
diff --git a/lib/private/User/Session.php b/lib/private/User/Session.php
index 3b357b69bcf..dec959820f8 100644
--- a/lib/private/User/Session.php
+++ b/lib/private/User/Session.php
@@ -309,8 +309,7 @@ class Session implements IUserSession, Emitter {
 								$password,
 								IRequest $request,
 								OC\Security\Bruteforce\Throttler $throttler) {
-		$currentDelay = $throttler->getDelay($request->getRemoteAddress());
-		$throttler->sleepDelay($request->getRemoteAddress());
+		$currentDelay = $throttler->sleepDelay($request->getRemoteAddress());
 
 		$isTokenPassword = $this->isTokenPassword($password);
 		if (!$isTokenPassword && $this->isTokenAuthEnforced()) {
author	Lukas Reschke <lukas@statuscode.ch>	2016-08-30 18:43:01 +0200
committer	GitHub <noreply@github.com>	2016-08-30 18:43:01 +0200
commit	57f9117843afe403b8324a9e73c83c4849b3143b (patch)
tree	095d3ab9c9257727d4cfb7d45ea5d442ef2dc24d /lib/private/User
parent	2a6193e7aadbf41d454f4002773191cc503696b4 (diff)
parent	6c93fe08f53bff474921d150edabb27ca630edd7 (diff)
download	nextcloud-server-57f9117843afe403b8324a9e73c83c4849b3143b.tar.gz nextcloud-server-57f9117843afe403b8324a9e73c83c4849b3143b.zip