admin/cmc
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Refactored Brute Force Detection Listeners (#6)

Browse Source
This commit is contained in:
Art
2021-09-08 16:49:59 +03:00
parent 4fbf0712e2
commit 65f971c326
2 changed files with 12 additions and 27 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
support-portal-backend/src/main/java/net/shyshkin/study/fullstack/supportportal/backend/listener/AuthenticationFailureListener.java
View File

@ -1,23 +0,0 @@
package net.shyshkin.study.fullstack.supportportal.backend.listener;
import lombok.RequiredArgsConstructor;
import lombok.extern.slf4j.Slf4j;
import net.shyshkin.study.fullstack.supportportal.backend.service.LoginAttemptService;
import org.springframework.context.ApplicationListener;
import org.springframework.security.authentication.event.AuthenticationFailureBadCredentialsEvent;
import org.springframework.stereotype.Component;
@Slf4j
@Component
@RequiredArgsConstructor
public class AuthenticationFailureListener implements ApplicationListener<AuthenticationFailureBadCredentialsEvent> {
private final LoginAttemptService loginAttemptService;
@Override
public void onApplicationEvent(AuthenticationFailureBadCredentialsEvent event) {
String username = event.getAuthentication().getPrincipal().toString();
log.debug("{} failed to login", username);
loginAttemptService.loginFailed(username);
}
}

16
support-portal-backend/src/main/java/net/shyshkin/study/fullstack/supportportal/backend/listener/AuthenticationSuccessListener.java → support-portal-backend/src/main/java/net/shyshkin/study/fullstack/supportportal/backend/listener/BruteForceDetectionListeners.java
View File

@ -3,7 +3,8 @@ package net.shyshkin.study.fullstack.supportportal.backend.listener;
import lombok.RequiredArgsConstructor; import lombok.RequiredArgsConstructor;
import lombok.extern.slf4j.Slf4j; import lombok.extern.slf4j.Slf4j;
import net.shyshkin.study.fullstack.supportportal.backend.service.LoginAttemptService; import net.shyshkin.study.fullstack.supportportal.backend.service.LoginAttemptService;
import org.springframework.context.ApplicationListener; import org.springframework.context.event.EventListener;
import org.springframework.security.authentication.event.AuthenticationFailureBadCredentialsEvent;
import org.springframework.security.authentication.event.AuthenticationSuccessEvent; import org.springframework.security.authentication.event.AuthenticationSuccessEvent;
import org.springframework.security.core.userdetails.UserDetails; import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.stereotype.Component; import org.springframework.stereotype.Component;
@ -11,12 +12,19 @@ import org.springframework.stereotype.Component;
@Slf4j @Slf4j
@Component @Component
@RequiredArgsConstructor @RequiredArgsConstructor
public class AuthenticationSuccessListener implements ApplicationListener<AuthenticationSuccessEvent> { public class BruteForceDetectionListeners {
private final LoginAttemptService loginAttemptService; private final LoginAttemptService loginAttemptService;
@Override @EventListener
public void onApplicationEvent(AuthenticationSuccessEvent event) { public void onLoginFailure(AuthenticationFailureBadCredentialsEvent event) {
String username = event.getAuthentication().getPrincipal().toString();
log.debug("{} failed to login", username);
loginAttemptService.loginFailed(username);
}
@EventListener
public void onLoginSuccess(AuthenticationSuccessEvent event) {
Object principal = event.getAuthentication().getPrincipal(); Object principal = event.getAuthentication().getPrincipal();
if (principal instanceof UserDetails) { if (principal instanceof UserDetails) {
String username = ((UserDetails) principal).getUsername(); String username = ((UserDetails) principal).getUsername();