mirror of
https://github.com/samsonjs/rack-attack.git
synced 2026-03-26 09:35:49 +00:00
11e9557ccb
* Initial Rubocop configuration * Fix Rubocop layout offenses for lib * Fix some spec offenses * Fix leftover layout offenses
56 lines
1.6 KiB
Ruby
56 lines
1.6 KiB
Ruby
module Rack
|
|
class Attack
|
|
class Fail2Ban
|
|
class << self
|
|
def filter(discriminator, options)
|
|
bantime = options[:bantime] or raise ArgumentError, "Must pass bantime option"
|
|
findtime = options[:findtime] or raise ArgumentError, "Must pass findtime option"
|
|
maxretry = options[:maxretry] or raise ArgumentError, "Must pass maxretry option"
|
|
|
|
if banned?(discriminator)
|
|
# Return true for blocklist
|
|
true
|
|
elsif yield
|
|
fail!(discriminator, bantime, findtime, maxretry)
|
|
end
|
|
end
|
|
|
|
def reset(discriminator, options)
|
|
findtime = options[:findtime] or raise ArgumentError, "Must pass findtime option"
|
|
cache.reset_count("#{key_prefix}:count:#{discriminator}", findtime)
|
|
# Clear ban flag just in case it's there
|
|
cache.delete("#{key_prefix}:ban:#{discriminator}")
|
|
end
|
|
|
|
def banned?(discriminator)
|
|
cache.read("#{key_prefix}:ban:#{discriminator}") ? true : false
|
|
end
|
|
|
|
protected
|
|
|
|
def key_prefix
|
|
'fail2ban'
|
|
end
|
|
|
|
def fail!(discriminator, bantime, findtime, maxretry)
|
|
count = cache.count("#{key_prefix}:count:#{discriminator}", findtime)
|
|
if count >= maxretry
|
|
ban!(discriminator, bantime)
|
|
end
|
|
|
|
true
|
|
end
|
|
|
|
private
|
|
|
|
def ban!(discriminator, bantime)
|
|
cache.write("#{key_prefix}:ban:#{discriminator}", 1, bantime)
|
|
end
|
|
|
|
def cache
|
|
Rack::Attack.cache
|
|
end
|
|
end
|
|
end
|
|
end
|
|
end
|