-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Sécurité] Ajout de procédures anti-force brute #2664
Conversation
@hmeneuvrier tes retours sont pris en compte. |
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
J'ai retesté tous les formulaires, c'est ok !
Et relecture OK
if (false === $limiter->consume(1)->isAccepted()) { | ||
$view = $this->renderView('_partials/_demande-lien-signalement-rate-limit.html.twig', ['form' => $form]); | ||
|
||
return new JsonResponse(['html' => $view]); |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Je n'ai pas réussi à faire fonctionner ce cas la, mais je ne comprend pas pourquoi et tout le reste est ok donc c'est peut etre un soucis chez moi ?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Je viens de retester ca marche, tout est ok
Ticket
#2643
Description
Plusieurs pages sont concernées par des Brute-force possibles. Un rate limiter a donc été mis en place sur ces pages :
Tests
CONTACT_FORM_LIMITER_LIMIT
etCONTACT_FORM_LIMITER_INTERVAL