feat: log restricted login attempts

This commit is contained in:
Miguel Nogueira 2022-04-04 13:58:50 +01:00
parent 99bb13889b
commit 10748f0c7b
2 changed files with 13 additions and 0 deletions

View File

@ -76,6 +76,14 @@ class LoginController extends Controller
$isLocked = $service->isLocked($user); $isLocked = $service->isLocked($user);
if ($isBanned || $isLocked) { if ($isBanned || $isLocked) {
Log::alert('Restricted user attempting to login.', [
'ip' => $request->ip(),
'email' => $user->email,
'isBanned' => $isBanned,
'isLocked' => $isLocked
]);
return false; return false;
} else { } else {
return $this->originalAttemptLogin($request); return $this->originalAttemptLogin($request);

View File

@ -28,6 +28,7 @@ use App\Facades\Options;
use App\Facades\IP; use App\Facades\IP;
use Illuminate\Foundation\Auth\RegistersUsers; use Illuminate\Foundation\Auth\RegistersUsers;
use Illuminate\Support\Facades\Hash; use Illuminate\Support\Facades\Hash;
use Illuminate\Support\Facades\Log;
use Illuminate\Support\Facades\Validator; use Illuminate\Support\Facades\Validator;
class RegisterController extends Controller class RegisterController extends Controller
@ -68,6 +69,10 @@ class RegisterController extends Controller
foreach ($users as $user) { foreach ($users as $user) {
if ($user && $user->isBanned()) { if ($user && $user->isBanned()) {
Log::alert('Suspended user attempting to use registration form', [
'ip' => \request()->ip(),
'email' => $user->email
]);
abort(403, 'You do not have permission to access this page.'); abort(403, 'You do not have permission to access this page.');
} }
} }