Wavyzz/dolibarr
2
0
Fork 1
mirror of https://github.com/Dolibarr/dolibarr.git synced 2026-02-07 16:41:48 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add API_COUNTER_ENABLED to track pb with api abuse.

Browse Source
This commit is contained in:
ldestailleur
2025-07-28 12:05:25 +02:00
parent d202af2593
commit 72636dde06
1 changed files with 9 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
htdocs/api/class/api_access.class.php
View File

@@ -168,7 +168,7 @@ class DolibarrApiAccess implements iAuthenticate
}
// Check if user status is enabled
if ($fuser->statut != $fuser::STATUS_ENABLED) {
if ($fuser->status != $fuser::STATUS_ENABLED) {
// Status is disabled
dol_syslog("functions_isallowed::check_user_api_key Authentication KO for '".$login."': The user has been disabled", LOG_NOTICE);
sleep(1); // Anti brut force protection. Must be same delay when user and password are not valid.
@@ -191,6 +191,14 @@ class DolibarrApiAccess implements iAuthenticate
throw new RestException(401, $genericmessageerroruser);
}
// TODO
// Increase counter of API access
if (getDolGlobalString('API_COUNTER_ENABLED')) {
include DOL_DOCUMENT_ROOT.'/core/lib/admin.lib.php';
dolibarr_set_const($this->db, 'API_COUNTER_COUNT', getDolGlobalInt('API_COUNTER_COUNT') + 1);
//var_dump('eeee');exit;
}
// User seems valid
$fuser->getrights();