diff options
| author | Joas Schilling <213943+nickvergessen@users.noreply.github.com> | 2023-03-16 19:33:13 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2023-03-16 19:33:13 +0100 |
| commit | bfc37afed3000ea42bfe594afb1d763499b43a34 (patch) | |
| tree | 05f311540aa5e47ca239885f728e86b413599dd0 /lib/public | |
| parent | 4d4a223b0527b60ab9dbcd102117efade0ecabef (diff) | |
| parent | 2b4986167975355238d982ba8579e0cccf6bf5aa (diff) | |
| download | nextcloud-server-bfc37afed3000ea42bfe594afb1d763499b43a34.tar.gz nextcloud-server-bfc37afed3000ea42bfe594afb1d763499b43a34.zip | |
Merge pull request #36928 from nextcloud/techdebt/noid/bruteforce-protection-attribute
feat(middleware): Migrate BruteForceProtection annotation to PHP Attribute and allow multiple
Diffstat (limited to 'lib/public')
| -rw-r--r-- | lib/public/AppFramework/Http/Attribute/BruteForceProtection.php | 52 | ||||
| -rw-r--r-- | lib/public/AppFramework/Http/Attribute/UseSession.php | 2 |
2 files changed, 53 insertions, 1 deletions
diff --git a/lib/public/AppFramework/Http/Attribute/BruteForceProtection.php b/lib/public/AppFramework/Http/Attribute/BruteForceProtection.php new file mode 100644 index 00000000000..386889769cb --- /dev/null +++ b/lib/public/AppFramework/Http/Attribute/BruteForceProtection.php @@ -0,0 +1,52 @@ +<?php + +declare(strict_types=1); + +/** + * @copyright Copyright (c) 2023 Joas Schilling <coding@schilljs.com> + * + * @author Joas Schilling <coding@schilljs.com> + * + * @license GNU AGPL version 3 or any later version + * + * This program is free software: you can redistribute it and/or modify + * it under the terms of the GNU Affero General Public License as + * published by the Free Software Foundation, either version 3 of the + * License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU Affero General Public License for more details. + * + * You should have received a copy of the GNU Affero General Public License + * along with this program. If not, see <http://www.gnu.org/licenses/>. + */ + +namespace OCP\AppFramework\Http\Attribute; + +use Attribute; + +/** + * Attribute for controller methods that want to protect passwords, keys, tokens + * or other data against brute force + * + * @since 27.0.0 + */ +#[Attribute(Attribute::TARGET_METHOD | Attribute::IS_REPEATABLE)] +class BruteForceProtection { + /** + * @since 27.0.0 + */ + public function __construct( + protected string $action + ) { + } + + /** + * @since 27.0.0 + */ + public function getAction(): string { + return $this->action; + } +} diff --git a/lib/public/AppFramework/Http/Attribute/UseSession.php b/lib/public/AppFramework/Http/Attribute/UseSession.php index 79185919def..a6bac011d59 100644 --- a/lib/public/AppFramework/Http/Attribute/UseSession.php +++ b/lib/public/AppFramework/Http/Attribute/UseSession.php @@ -2,7 +2,7 @@ declare(strict_types=1); -/* +/** * @copyright 2023 Christoph Wurst <christoph@winzerhof-wurst.at> * * @author 2023 Christoph Wurst <christoph@winzerhof-wurst.at> |