Hopiu/django-axes
1
0
Fork 0
mirror of https://github.com/jazzband/django-axes.git synced 2026-05-11 00:53:12 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
1300 commits 8 branches 163 tags 4.7 MiB
Commit graph

594 commits

Author SHA1 Message Date
Aleksi Häkli
1993a9c9cc Update string syntax 2021-10-11 20:59:06 +03:00
Vasyl Dizhak
8c5c43f482 #750, fix lockout failure when providing AXES_USERNAME_CALLABLE 2021-10-11 20:59:06 +03:00
Petr Dlouhý
b5bac68f90 fix duplicated AccessAttempts 2021-09-19 13:26:16 +03:00
Yuta Okamoto
46bfc54a03 acquire a lock of AccessAttempt before updating 2021-09-09 17:38:30 +03:00
sarahboyce
403076ef51 feat(helpers): update get_client_str to accept request object 
Use case: include more info about the user in the client_str.
username is already included in the arguments but that would require a separate DB call.
https://github.com/jazzband/django-axes/issues/782
 2021-09-02 17:40:05 +03:00
Yuta Okamoto
17c5d3f314 set None to failures_since_start 2021-08-31 21:24:26 +03:00
Yuta Okamoto
945754eb15 make failures_since_start accessible to the views 2021-08-31 21:24:26 +03:00
Yuta Okamoto
004a0d750c remove failures_since_start from the log 2021-08-31 21:21:28 +03:00
Yuta Okamoto
bd18a531b6 increment failures_since_start in an atomic manner 2021-08-31 21:21:28 +03:00
phil-bell
91bdb3be99 adding missing extra ending line 2021-08-19 16:02:32 +03:00
phil-bell
6858aea99a Adding ability to change http response code 2021-08-19 16:02:32 +03:00
Aleksi Häkli
ac86d4b213 Adjust commentation and log messages 2021-06-29 17:50:37 +03:00
Uli Klank
f079c48bb1 Restoring necessary general lookup of siilar attempts 
Linting
 2021-06-29 16:49:12 +03:00
Uli Klank
c72e8e4855 invert condition, warn earlier 2021-06-29 16:49:12 +03:00
Uli Klank
a88366f251 Prevent unnecessary save for created object 2021-06-29 16:49:12 +03:00
Uli Klank
8b5b921b71 Initiallize failures since start correctly 2021-06-29 16:49:12 +03:00
Uli Klank
93341a4d04 Handle race conditions for multiple workers 
The creation of several entries is possible due to race conditions between different worker processes, which can later break the usage of get in this situation.
This change should help to prevent this race condition using the database.
 2021-06-29 16:49:12 +03:00
Aleksi Häkli
11c8a837ab
Add missing Polish translation keys in English 2021-06-16 10:52:12 +03:00
Michał (Quadric) Sieradzki
111b9650b8 polish locale 2021-06-16 10:46:00 +03:00
Zakatell Kanda
876b6f3dc4 use autofield for now, otherwise we have to bump min version to 3.2 2021-06-09 19:35:29 +03:00
Zakatell Kanda
b4a71de81f use the new django bigautofield, fixes a warning 2021-06-09 19:35:29 +03:00
Nikolai Røed Kristiansen
2e074eebc5 Fix default_app_config deprecation 
Django 3.2 automatically detects AppConfig and therefore this setting is no longer required.

https://docs.djangoproject.com/en/dev/releases/3.2/#automatic-appconfig-discovery
 2021-06-05 18:44:11 +03:00
smtydn
a26c5109ed Fix formatting 2021-05-19 20:54:57 +03:00
smtydn
1a8d96e242 Add AXES_CLIENT_STR_CALLABLE setting 2021-05-19 20:54:57 +03:00
Michael O'Connor
170dacc112 Integrate AXS_SENSITIVE_PARAMETERS functionality with AXES_PASSWORD_FORM_FIELD 2021-05-03 17:10:45 +03:00
Michael O'Connor
f54c4f095b Add option to cleanse sensitive GET and POST params in database handler 2021-05-03 17:10:45 +03:00
Hasan Ramezani
6b2da1f152 Add support for Django 3.2 2021-04-06 20:11:14 +03:00
Ashok Argent-Katwala
bdffe67bd8 Add trailing period for consistency. 
The other lock-out message has whole sentences, and two of the three translations do.
 2021-02-24 19:02:40 +02:00
Christian Bundy
2241dbe011 Set AXES_VERBOSE default to AXES_ENABLED 
Problem: When `AXES_ENABLED == False` we still see log output because `AXES_VERBOSE == True`.

Solution: Change `AXES_VERBOSE` default so that if django-axes is disabled then we don't output to stdout.
 2021-02-20 15:30:59 +02:00
Nat Gordon
d4e97123f2 Add support to reset attempts on the cache handler 2021-02-15 20:20:49 +02:00
Aleksi Häkli
b6b26e492f Optimize imports as part of cleanup round 2021-01-07 18:23:33 +02:00
Aleksi Häkli
a5045f62fe Move tests outside project source folder 2021-01-07 18:23:33 +02:00
Hasan Ramezani
0eecff2e57 Use override_settings instead decorator context manager. 2021-01-06 23:46:54 +02:00
Clifton Barnes
d1cf5059e4 Fix formatting 2021-01-06 23:23:21 +02:00
Clifton Barnes
cff3a9254c Prevent cache entry for None username 2021-01-06 23:23:21 +02:00
Vladimir Knobel
64b53d55ae Black run on code to comply with py38-qa 2021-01-05 15:18:59 +02:00
Vladimir Knobel
cf51e09d75 Fix indentation 2021-01-05 15:18:59 +02:00
Vladimir Knobel
3d1e77298d Update conf.py 
adds new AXES_ALLOWED_CORS_ORIGINS setting
 2021-01-05 15:18:59 +02:00
Vladimir Knobel
55438c14bd Update helpers.py 
chnage ALLOWED_CORS_ORIGINS to AXES_ALLOWED_CORS_ORIGINS
 2021-01-05 15:18:59 +02:00
Vladimir Knobel
4a981f9972 Update helpers.py 2021-01-05 15:18:59 +02:00
Aleksi Häkli
10f6e621ce Add missing @wraps decorator 
This keeps the original function name and docstring for the decorated function
 2021-01-05 11:57:53 +02:00
Aleksi Häkli
1ba5c2bcbb
Remove unused imports 2021-01-04 19:02:04 +02:00
Hasan Ramezani
ab327f7b59 Add DEFAULT_AUTO_FIELD to test settings. 2021-01-04 18:13:43 +02:00
Aleksi Häkli
59bcbd8816 Move DRF integration into signals 
Add documentation on how to enable the integration
and remove the logic from global middleware.

Fixes #673
 2020-12-18 19:42:43 +02:00
Ashok Argent-Katwala
3a7d154f65 Adjust formatting to match the lint check. 2020-12-02 17:55:30 +02:00
Ashok Argent-Katwala
146d7a20b7 Only do the work in the middleware if axes is enabled. 2020-12-02 17:55:30 +02:00
Hasan Ramezani
22c564743d Prevent AccessAttempt creation for None username. 2020-11-05 20:06:49 +02:00
Anatoly
baf2349adb Apply Black for py36 2020-10-16 11:15:40 +03:00
Anatoly
d0a1338eb4 Update documentation of AxesMiddleware 2020-10-16 11:15:40 +03:00
Anatoly
f17971d339 Update documentation of AxesMiddleware 2020-10-16 11:15:40 +03:00