github/jumpserver
1
0
Fork 0
mirror of https://github.com/jumpserver/jumpserver.git synced 2025-08-22 00:04:06 +00:00
Code Issues Projects Releases Wiki Activity

perf: MFA coce reuse

Browse Source
This commit is contained in:
feng 2025-07-22 16:06:33 +08:00
parent 38b268b104
commit 0c4efde60c
1 changed files with 7 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
apps/authentication/mfa/base.py
View File

@ -1,5 +1,6 @@
import abc
from django.conf import settings
from django.core.cache import cache
from django.utils.translation import gettext_lazy as _
@ -23,17 +24,21 @@ class BaseMFA(abc.ABC):
cache_key = f'{self.name}_{self.user.username}'
cache_code = cache.get(cache_key)
if cache_code == code:
is_match = cache_code == code
if settings.SAFE_MODE and is_match:
return False, _(
"The two-factor code you entered has either already been used or has expired. "
"Please request a new one."
)
ok, msg = self._check_code(code)
if not ok:
return False, msg
cache.set(cache_key, code, 60 * 5)
cache.set(cache_key, code, 60)
return True, msg
def is_authenticated(self):