On an auth failure the uid and the IP address should be logged to the standard log file.
This update works for a standard setup, when using a proxy for the server one can probably use the X-forwarded-for header instead of the remote address.
This commit is contained in:
parent
92f6c3bb10
commit
0cd6473909
|
@ -730,6 +730,8 @@ class OC {
|
||||||
// Someone wants to log in :
|
// Someone wants to log in :
|
||||||
} elseif (OC::tryFormLogin()) {
|
} elseif (OC::tryFormLogin()) {
|
||||||
$error[] = 'invalidpassword';
|
$error[] = 'invalidpassword';
|
||||||
|
OC_Log::write('core', 'Login failed: user \''.$_POST["user"].'\' , wrong password, IP:'.$_SERVER['REMOTE_ADDR'],
|
||||||
|
OC_Log::ERROR);
|
||||||
}
|
}
|
||||||
|
|
||||||
OC_Util::displayLoginPage(array_unique($error));
|
OC_Util::displayLoginPage(array_unique($error));
|
||||||
|
|
Loading…
Reference in New Issue