2 years ago · c36a54dae2
--- a/app/Http/Controllers/Passport/AuthController.php
+++ b/app/Http/Controllers/Passport/AuthController.php
@@ -190,6 +190,12 @@ class AuthController extends Controller
 
															         $email = $request->input('email');
														
 
															         $password = $request->input('password');
														
 
															+        $passwordErrorCount = (int)Cache::get('PASSWORD_ERROR_LIMIT') || 0;
														
 
															+
														
 
															+        if ($passwordErrorCount >= 5) {
														
 
															+            abort(500, __('Incorrect email or password'));
														
 
															+        }
														
 
															+
														
 
															         $user = User::where('email', $email)->first();
														
 
															         if (!$user) {
														
 
															             abort(500, __('Incorrect email or password'));
														
@@ -200,6 +206,12 @@ class AuthController extends Controller
 
															             $password,
														
 
															             $user->password)
														
 
															         ) {
														
 
															+            $passwordErrorCount = Cache::get('PASSWORD_ERROR_LIMIT') || 0;
														
 
															+            Cache::put(
														
 
															+                CacheKey::get('PASSWORD_ERROR_LIMIT', $email),
														
 
															+                (int)$passwordErrorCount + 1,
														
 
															+                30 * 60
														
 
															+            );
														
 
															             abort(500, __('Incorrect email or password'));
														
 
															         }
														
--- a/app/Utils/CacheKey.php
+++ b/app/Utils/CacheKey.php
@@ -20,7 +20,8 @@ class CacheKey
 
															         'LAST_SEND_EMAIL_REMIND_TRAFFIC' => '最后发送流量邮件提醒',
														
 
															         'SCHEDULE_LAST_CHECK_AT' => '计划任务最后检查时间',
														
 
															         'REGISTER_IP_RATE_LIMIT' => '注册频率限制',
														
 
															-        'LAST_SEND_LOGIN_WITH_MAIL_LINK_TIMESTAMP' => '最后一次发送登入链接时间'
														
 
															+        'LAST_SEND_LOGIN_WITH_MAIL_LINK_TIMESTAMP' => '最后一次发送登入链接时间',
														
 
															+        'PASSWORD_ERROR_LIMIT' => '密码错误次数限制'
														
 
															     ];
														
 
															     public static function get(string $key, $uniqueValue)
														
--- a/resources/lang/en-US.json
+++ b/resources/lang/en-US.json
@@ -93,5 +93,6 @@
 
															     "This subscription reset package does not apply to your subscription": "This subscription reset package does not apply to your subscription",
														
 
															     "Login to :name": "Login to :name",
														
 
															     "Sending frequently, please try again later": "Sending frequently, please try again later",
														
 
															-    "Current product is sold out": "Current product is sold out"
														
 
															+    "Current product is sold out": "Current product is sold out",
														
 
															+    "There are too many password errors, please try again after 30 minutes.": "There are too many password errors, please try again after 30 minutes."
														
 
															 }
														
--- a/resources/lang/zh-CN.json
+++ b/resources/lang/zh-CN.json
@@ -93,5 +93,6 @@
 
															     "This subscription reset package does not apply to your subscription": "该订阅重置包不适用于你的订阅",
														
 
															     "Login to :name": "登入到 :name",
														
 
															     "Sending frequently, please try again later": "发送频繁，请稍后再试",
														
 
															-    "Current product is sold out": "当前商品已售罄"
														
 
															+    "Current product is sold out": "当前商品已售罄",
														
 
															+    "There are too many password errors, please try again after 30 minutes.": "密码错误次数过多，请 30 分钟后再试"
														
 
															 }