Reset limiters on successful login

MatTheCat · MatTheCat · commit a8b5ba8ae6e2 · 2021-05-08T12:10:42.000+02:00
diff --git a/EventListener/LoginThrottlingListener.php b/EventListener/LoginThrottlingListener.php
@@ -18,6 +18,7 @@
 use Symfony\Component\Security\Core\Security;
 use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
 use Symfony\Component\Security\Http\Event\CheckPassportEvent;
+use Symfony\Component\Security\Http\Event\LoginSuccessEvent;
 
 /**
  * @author Wouter de Jong <wouter@wouterj.nl>
@@ -51,10 +52,16 @@ public function checkPassport(CheckPassportEvent $event): void
         }
     }
 
+    public function onSuccessfulLogin(LoginSuccessEvent $event): void
+    {
+        $this->limiter->reset($event->getRequest());
+    }
+
     public static function getSubscribedEvents(): array
     {
         return [
             CheckPassportEvent::class => ['checkPassport', 2080],
+            LoginSuccessEvent::class => 'onSuccessfulLogin',
         ];
     }
 }
diff --git a/Tests/EventListener/LoginThrottlingListenerTest.php b/Tests/EventListener/LoginThrottlingListenerTest.php
@@ -63,6 +63,12 @@ public function testPreventsLoginWhenOverLocalThreshold()
             $this->listener->checkPassport($this->createCheckPassportEvent($passport));
         }
 
+        $this->listener->onSuccessfulLogin($this->createLoginSuccessfulEvent($passport));
+
+        for ($i = 0; $i < 3; ++$i) {
+            $this->listener->checkPassport($this->createCheckPassportEvent($passport));
+        }
+
         $this->expectException(TooManyLoginAttemptsAuthenticationException::class);
         $this->listener->checkPassport($this->createCheckPassportEvent($passport));
     }
@@ -87,12 +93,9 @@ private function createPassport($username)
         return new SelfValidatingPassport(new UserBadge($username));
     }
 
-    private function createLoginSuccessfulEvent($passport, $username = 'wouter')
+    private function createLoginSuccessfulEvent($passport)
     {
-        $token = $this->createMock(TokenInterface::class);
-        $token->expects($this->any())->method('getUsername')->willReturn($username);
-
-        return new LoginSuccessEvent($this->createMock(AuthenticatorInterface::class), $passport, $token, $this->requestStack->getCurrentRequest(), null, 'main');
+        return new LoginSuccessEvent($this->createMock(AuthenticatorInterface::class), $passport, $this->createMock(TokenInterface::class), $this->requestStack->getCurrentRequest(), null, 'main');
     }
 
     private function createCheckPassportEvent($passport)

Original file line number	Diff line number	Diff line change
`@@ -18,6 +18,7 @@`
`18`	`18`	`use Symfony\Component\Security\Core\Security;`
`19`	`19`	`use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;`
`20`	`20`	`use Symfony\Component\Security\Http\Event\CheckPassportEvent;`
	`21`	`+use Symfony\Component\Security\Http\Event\LoginSuccessEvent;`
`21`	`22`
`22`	`23`	`/**`
`23`	`24`	`* @author Wouter de Jong <[email protected]>`
`@@ -51,10 +52,16 @@ public function checkPassport(CheckPassportEvent $event): void`
`51`	`52`	`}`
`52`	`53`	`}`
`53`	`54`
	`55`	`+ public function onSuccessfulLogin(LoginSuccessEvent $event): void`
	`56`	`+ {`
	`57`	`+ $this->limiter->reset($event->getRequest());`
	`58`	`+ }`
	`59`	`+`
`54`	`60`	`public static function getSubscribedEvents(): array`
`55`	`61`	`{`
`56`	`62`	`return [`
`57`	`63`	`CheckPassportEvent::class => ['checkPassport', 2080],`
	`64`	`+ LoginSuccessEvent::class => 'onSuccessfulLogin',`
`58`	`65`	`];`
`59`	`66`	`}`
`60`	`67`	`}`
Original file line number	Diff line number	Diff line change
`@@ -63,6 +63,12 @@ public function testPreventsLoginWhenOverLocalThreshold()`
`63`	`63`	`$this->listener->checkPassport($this->createCheckPassportEvent($passport));`
`64`	`64`	`}`
`65`	`65`
	`66`	`+ $this->listener->onSuccessfulLogin($this->createLoginSuccessfulEvent($passport));`
	`67`	`+`
	`68`	`+ for ($i = 0; $i < 3; ++$i) {`
	`69`	`+ $this->listener->checkPassport($this->createCheckPassportEvent($passport));`
	`70`	`+ }`
	`71`	`+`
`66`	`72`	`$this->expectException(TooManyLoginAttemptsAuthenticationException::class);`
`67`	`73`	`$this->listener->checkPassport($this->createCheckPassportEvent($passport));`
`68`	`74`	`}`
`@@ -87,12 +93,9 @@ private function createPassport($username)`
`87`	`93`	`return new SelfValidatingPassport(new UserBadge($username));`
`88`	`94`	`}`
`89`	`95`
`90`		`- private function createLoginSuccessfulEvent($passport, $username = 'wouter')`
	`96`	`+ private function createLoginSuccessfulEvent($passport)`
`91`	`97`	`{`
`92`		`- $token = $this->createMock(TokenInterface::class);`
`93`		`- $token->expects($this->any())->method('getUsername')->willReturn($username);`
`94`		`-`
`95`		`- return new LoginSuccessEvent($this->createMock(AuthenticatorInterface::class), $passport, $token, $this->requestStack->getCurrentRequest(), null, 'main');`
	`98`	`+ return new LoginSuccessEvent($this->createMock(AuthenticatorInterface::class), $passport, $this->createMock(TokenInterface::class), $this->requestStack->getCurrentRequest(), null, 'main');`
`96`	`99`	`}`
`97`	`100`
`98`	`101`	`private function createCheckPassportEvent($passport)`