Reset bruteforce attempt table on successful login

[MorrisJobke]

• only clear the entries that come from the same subnet, same action and same metadata
• fixes Clear bruteforce protection from user upon successful login #3156

Relaxes a lot the situation for people that went into the brute force trap (like in #3058 or #7228)

[LukasReschke]

Tests are failing now. Code looks good otherwise :)

[skjnldsv]

Hum, is this related to this pr?
inet_pton(): Unrecognized address

[nickvergessen]

yes

[codecov]

Codecov Report

Merging #7263 into master will decrease coverage by <.01%.
The diff coverage is 9.52%.

@@             Coverage Diff              @@
##             master    #7263      +/-   ##
============================================
- Coverage     50.86%   50.85%   -0.01%     
- Complexity    24550    24553       +3     
============================================
  Files          1585     1585              
  Lines         93811    93830      +19     
  Branches       1354     1354              
============================================
+ Hits          47716    47717       +1     
- Misses        46095    46113      +18

Impacted Files	Coverage Δ	Complexity Δ
lib/private/Security/Bruteforce/Throttler.php	38.13% <0%> (-5.14%)	27 <2> (+2)
lib/base.php	3.12% <28.57%> (+0.16%)	167 <7> (+1)	⬆️

Fixed

[LukasReschke]

🐘

[AussieCodeKing71]

From what I can see here it looks like this is planned for NC13. Will this change be rolled out in NC12 (and maybe other versions) too?

[MorrisJobke]

From what I can see here it looks like this is planned for NC13. Will this change be rolled out in NC12 (and maybe other versions) too?

As of now that backport to 12 is not planned, but maybe we should backport this.

@karlitschek @rullzer @blizzz @LukasReschke Opinions on that one?

[karlitschek]

Should be low risk of breaking things. So I would vote for a backport