mirrors
/
wekan
-ын хуулбар https://github.com/wekan/wekan.git


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157
							import { ReactiveCache } from '/imports/reactiveCache';

LockoutSettings = new Mongo.Collection('lockoutSettings');

LockoutSettings.attachSchema(
  new SimpleSchema({
    _id: {
      type: String,
    },
    value: {
      type: Number,
      decimal: false,
    },
    category: {
      type: String,
    },
    sort: {
      type: Number,
      decimal: true,
    },
    createdAt: {
      type: Date,
      optional: true,
      // eslint-disable-next-line consistent-return
      autoValue() {
        if (this.isInsert) {
          return new Date();
        } else if (this.isUpsert) {
          return { $setOnInsert: new Date() };
        } else {
          this.unset();
        }
      },
    },
    modifiedAt: {
      type: Date,
      denyUpdate: false,
      // eslint-disable-next-line consistent-return
      autoValue() {
        if (this.isInsert || this.isUpsert || this.isUpdate) {
          return new Date();
        } else {
          this.unset();
        }
      },
    },
  }),
);

LockoutSettings.allow({
  update(userId) {
    const user = ReactiveCache.getUser(userId);
    return user && user.isAdmin;
  },
});

if (Meteor.isServer) {
  Meteor.startup(() => {
    LockoutSettings._collection.createIndex({ modifiedAt: -1 });

    // Known users settings
    LockoutSettings.upsert(
      { _id: 'known-failuresBeforeLockout' },
      {
        $setOnInsert: {
          value: process.env.ACCOUNTS_LOCKOUT_KNOWN_USERS_FAILURES_BEFORE
            ? parseInt(process.env.ACCOUNTS_LOCKOUT_KNOWN_USERS_FAILURES_BEFORE, 10) : 3,
          category: 'known',
          sort: 0,
        },
      },
    );

    LockoutSettings.upsert(
      { _id: 'known-lockoutPeriod' },
      {
        $setOnInsert: {
          value: process.env.ACCOUNTS_LOCKOUT_KNOWN_USERS_PERIOD
            ? parseInt(process.env.ACCOUNTS_LOCKOUT_KNOWN_USERS_PERIOD, 10) : 60,
          category: 'known',
          sort: 1,
        },
      },
    );

    LockoutSettings.upsert(
      { _id: 'known-failureWindow' },
      {
        $setOnInsert: {
          value: process.env.ACCOUNTS_LOCKOUT_KNOWN_USERS_FAILURE_WINDOW
            ? parseInt(process.env.ACCOUNTS_LOCKOUT_KNOWN_USERS_FAILURE_WINDOW, 10) : 15,
          category: 'known',
          sort: 2,
        },
      },
    );

    // Unknown users settings
    const typoVar = process.env.ACCOUNTS_LOCKOUT_UNKNOWN_USERS_FAILURES_BERORE;
    const correctVar = process.env.ACCOUNTS_LOCKOUT_UNKNOWN_USERS_FAILURES_BEFORE;

    LockoutSettings.upsert(
      { _id: 'unknown-failuresBeforeLockout' },
      {
        $setOnInsert: {
          value: (correctVar || typoVar)
            ? parseInt(correctVar || typoVar, 10) : 3,
          category: 'unknown',
          sort: 0,
        },
      },
    );

    LockoutSettings.upsert(
      { _id: 'unknown-lockoutPeriod' },
      {
        $setOnInsert: {
          value: process.env.ACCOUNTS_LOCKOUT_UNKNOWN_USERS_LOCKOUT_PERIOD
            ? parseInt(process.env.ACCOUNTS_LOCKOUT_UNKNOWN_USERS_LOCKOUT_PERIOD, 10) : 60,
          category: 'unknown',
          sort: 1,
        },
      },
    );

    LockoutSettings.upsert(
      { _id: 'unknown-failureWindow' },
      {
        $setOnInsert: {
          value: process.env.ACCOUNTS_LOCKOUT_UNKNOWN_USERS_FAILURE_WINDOW
            ? parseInt(process.env.ACCOUNTS_LOCKOUT_UNKNOWN_USERS_FAILURE_WINDOW, 10) : 15,
          category: 'unknown',
          sort: 2,
        },
      },
    );
  });
}

LockoutSettings.helpers({
  getKnownConfig() {
    return {
      failuresBeforeLockout: LockoutSettings.findOne('known-failuresBeforeLockout')?.value || 3,
      lockoutPeriod: LockoutSettings.findOne('known-lockoutPeriod')?.value || 60,
      failureWindow: LockoutSettings.findOne('known-failureWindow')?.value || 15
    };
  },
  getUnknownConfig() {
    return {
      failuresBeforeLockout: LockoutSettings.findOne('unknown-failuresBeforeLockout')?.value || 3,
      lockoutPeriod: LockoutSettings.findOne('unknown-lockoutPeriod')?.value || 60,
      failureWindow: LockoutSettings.findOne('unknown-failureWindow')?.value || 15
    };
  }
});

export default LockoutSettings;