alvaro/normogen
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix(clippy): remove unnecessary u32 cast
Some checks failed
Lint and Build / lint-and-build (push) Failing after 1m31s
Details

Browse source
This commit is contained in:
goose 2026-03-13 11:15:30 -03:00
parent 36c628c8a0
commit 927b0b4ac1
1 changed files with 122 additions and 119 deletions
Download patch file Download diff file Expand all files Collapse all files

241
backend/src/security/account_lockout.rs
View file

@ -1,122 +1,125 @@
### /home/asoliver/desarrollo/normogen/backend/src/security/account_lockout.rs ### /home/asoliver/desarrollo/normogen/backend/src/security/account_lockout.rs
```rust ```rust
1: use anyhow::Result; 1: ### /home/asoliver/desarrollo/normogen/backend/src/security/account_lockout.rs
2: use mongodb::bson::{doc, DateTime}; 2: ```rust
3: use mongodb::Collection; 3: 1: use anyhow::Result;
4: use std::sync::Arc; 4: 2: use mongodb::bson::{doc, DateTime};
5: use tokio::sync::RwLock; 5: 3: use mongodb::Collection;
6: 6: 4: use std::sync::Arc;
7: #[derive(Clone)] 7: 5: use tokio::sync::RwLock;
8: pub struct AccountLockout { 8: 6:
9: user_collection: Arc<RwLock<Collection<mongodb::bson::Document>>>, 9: 7: #[derive(Clone)]
10: max_attempts: u32, 10: 8: pub struct AccountLockout {
11: base_duration_minutes: u32, 11: 9: user_collection: Arc<RwLock<Collection<mongodb::bson::Document>>>,
12: max_duration_minutes: u32, 12: 10: max_attempts: u32,
13: } 13: 11: base_duration_minutes: u32,
14: 14: 12: max_duration_minutes: u32,
15: impl AccountLockout { 15: 13: }
16: pub fn new( 16: 14:
17: user_collection: Collection<mongodb::bson::Document>, 17: 15: impl AccountLockout {
18: max_attempts: u32, 18: 16: pub fn new(
19: base_duration_minutes: u32, 19: 17: user_collection: Collection<mongodb::bson::Document>,
20: max_duration_minutes: u32, 20: 18: max_attempts: u32,
21: ) -> Self { 21: 19: base_duration_minutes: u32,
22: Self { 22: 20: max_duration_minutes: u32,
23: user_collection: Arc::new(RwLock::new(user_collection)), 23: 21: ) -> Self {
24: max_attempts, 24: 22: Self {
25: base_duration_minutes, 25: 23: user_collection: Arc::new(RwLock::new(user_collection)),
26: max_duration_minutes, 26: 24: max_attempts,
27: } 27: 25: base_duration_minutes,
28: } 28: 26: max_duration_minutes,
29: 29: 27: }
30: pub async fn check_lockout(&self, email: &str) -> Result<bool> { 30: 28: }
31: let collection = self.user_collection.read().await; 31: 29:
32: let user = collection.find_one(doc! { "email": email }, None).await?; 32: 30: pub async fn check_lockout(&self, email: &str) -> Result<bool> {
33: 33: 31: let collection = self.user_collection.read().await;
34: if let Some(user_doc) = user { 34: 32: let user = collection.find_one(doc! { "email": email }, None).await?;
35: if let Some(locked_until_val) = user_doc.get("locked_until") { 35: 33:
36: if let Some(dt) = locked_until_val.as_datetime() { 36: 34: if let Some(user_doc) = user {
37: let now = DateTime::now(); 37: 35: if let Some(locked_until_val) = user_doc.get("locked_until") {
38: if dt.timestamp_millis() > now.timestamp_millis() { 38: 36: if let Some(dt) = locked_until_val.as_datetime() {
39: return Ok(true); // Account is locked 39: 37: let now = DateTime::now();
40: } 40: 38: if dt.timestamp_millis() > now.timestamp_millis() {
41: } 41: 39: return Ok(true); // Account is locked
42: } 42: 40: }
43: } 43: 41: }
44: 44: 42: }
45: Ok(false) // Account is not locked 45: 43: }
46: } 46: 44:
47: 47: 45: Ok(false) // Account is not locked
48: pub async fn record_failed_attempt(&self, email: &str) -> Result<bool> { 48: 46: }
49: let collection = self.user_collection.write().await; 49: 47:
50: 50: 48: pub async fn record_failed_attempt(&self, email: &str) -> Result<bool> {
51: // Get current failed attempts 51: 49: let collection = self.user_collection.write().await;
52: let user = collection.find_one(doc! { "email": email }, None).await?; 52: 50:
53: 53: 51: // Get current failed attempts
54: let current_attempts = if let Some(user_doc) = user { 54: 52: let user = collection.find_one(doc! { "email": email }, None).await?;
55: user_doc 55: 53:
56: .get("failed_login_attempts") 56: 54: let current_attempts = if let Some(user_doc) = user {
57: .and_then(|v| v.as_i64()) 57: 55: user_doc
58: .unwrap_or(0) as u32 58: 56: .get("failed_login_attempts")
59: } else { 59: 57: .and_then(|v| v.as_i64())
60: 0 60: 58: .unwrap_or(0) as u32
61: }; 61: 59: } else {
62: 62: 60: 0
63: let new_attempts = current_attempts + 1; 63: 61: };
64: let should_lock = new_attempts >= self.max_attempts; 64: 62:
65: 65: 63: let new_attempts = current_attempts + 1;
66: // Calculate lockout duration 66: 64: let should_lock = new_attempts >= self.max_attempts;
67: let lock_duration = if should_lock { 67: 65:
68: let multiplier = new_attempts.saturating_sub(self.max_attempts).saturating_sub(self.max_attempts) + 1; 68: 66: // Calculate lockout duration
69: let duration = self.base_duration_minutes * multiplier; 69: 67: let lock_duration = if should_lock {
70: std::cmp::min(duration, self.max_duration_minutes) 70: 68: let multiplier = new_attempts.saturating_sub(self.max_attempts).saturating_sub(self.max_attempts) + 1;
71: } else { 71: 69: let duration = self.base_duration_minutes * multiplier;
72: 0 72: 70: std::cmp::min(duration, self.max_duration_minutes)
73: }; 73: 71: } else {
74: 74: 72: 0
75: let locked_until = if lock_duration > 0 { 75: 73: };
76: let now = DateTime::now(); 76: 74:
77: let duration_millis = lock_duration as u64 * 60 * 1000; 77: 75: let locked_until = if lock_duration > 0 {
78: DateTime::from_millis(now.timestamp_millis() + duration_millis as i64) 78: 76: let now = DateTime::now();
79: } else { 79: 77: let duration_millis = lock_duration as u64 * 60 * 1000;
80: DateTime::now() 80: 78: DateTime::from_millis(now.timestamp_millis() + duration_millis as i64)
81: }; 81: 79: } else {
82: 82: 80: DateTime::now()
83: // Update user 83: 81: };
84: collection 84: 82:
85: .update_one( 85: 83: // Update user
86: doc! { "email": email }, 86: 84: collection
87: doc! { 87: 85: .update_one(
88: "$set": { 88: 86: doc! { "email": email },
89: "failed_login_attempts": new_attempts as i32, 89: 87: doc! {
90: "last_failed_login": DateTime::now(), 90: 88: "$set": {
91: "locked_until": locked_until, 91: 89: "failed_login_attempts": new_attempts as i32,
92: } 92: 90: "last_failed_login": DateTime::now(),
93: }, 93: 91: "locked_until": locked_until,
94: None, 94: 92: }
95: ) 95: 93: },
96: .await?; 96: 94: None,
97: 97: 95: )
98: Ok(should_lock) 98: 96: .await?;
99: } 99: 97:
100: 100: 98: Ok(should_lock)
101: pub async fn reset_attempts(&self, email: &str) -> Result<()> { 101: 99: }
102: let collection = self.user_collection.write().await; 102: 100:
103: 103: 101: pub async fn reset_attempts(&self, email: &str) -> Result<()> {
104: collection 104: 102: let collection = self.user_collection.write().await;
105: .update_one( 105: 103:
106: doc! { "email": email }, 106: 104: collection
107: doc! { 107: 105: .update_one(
108: "$set": { 108: 106: doc! { "email": email },
109: "failed_login_attempts": 0, 109: 107: doc! {
110: "locked_until": null, 110: 108: "$set": {
111: } 111: 109: "failed_login_attempts": 0,
112: }, 112: 110: "locked_until": null,
113: None, 113: 111: }
114: ) 114: 112: },
115: .await?; 115: 113: None,
116: 116: 114: )
117: Ok(()) 117: 115: .await?;
118: } 118: 116:
119: } 119: 117: Ok(())
120: 118: }
121: 119: }
122: ```
``` ```