server/lib/private/Security
Lukas Reschke a5ccb31e85
Mark IP as whitelisted if brute force protection is disabled
Currently, when disabling the brute force protection no new brute force attempts are logged. However, the ones logged within the last 24 hours will still be used for throttling.

This is quite an unexpected behaviour and caused some support issues. With this change when the brute force protection is disabled also the existing attempts within the last 24 hours will be disregarded.

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
2017-05-01 18:31:45 +02:00
..
Bruteforce Mark IP as whitelisted if brute force protection is disabled 2017-05-01 18:31:45 +02:00
CSP Safari CSPv3 support is sub-par 2016-12-14 13:17:20 +01:00
CSRF Fix missing update of session, when it was already used. 2016-11-02 20:30:36 +01:00
IdentityProof Add Identityproof tests 2016-11-24 21:50:19 +01:00
Normalizer Add support for ratelimiting via annotations 2017-04-13 12:00:16 +02:00
RateLimiting Remove expired attempts 2017-04-13 12:00:18 +02:00
Certificate.php Update with robin 2016-07-21 18:13:58 +02:00
CertificateManager.php dont write a certificate bundle if the shipped ca bundle is empty 2017-01-09 16:51:27 +01:00
CredentialsManager.php Remove unused use statements 2017-04-22 19:23:31 -05:00
Crypto.php Fix others 2016-07-21 18:13:57 +02:00
Hasher.php Fix others 2016-07-21 18:13:57 +02:00
SecureRandom.php Remove unused use statements 2017-04-22 19:23:31 -05:00
TrustedDomainHelper.php Fix others 2016-07-21 18:13:57 +02:00