github
/
jumpserver
mirror of https://github.com/jumpserver/jumpserver
1
0
Fork 0
Code Issues Releases Wiki Activity

perf: MFA coce reuse

pull/15788/head
feng 2025-07-22 16:06:33 +08:00 committed by 老广
parent 04dca794dd
commit 1074a0df19
1 changed files with 7 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
apps/authentication/mfa/base.py
View File

@ -1,5 +1,6 @@
import abc import abc
from django.conf import settings
from django.core.cache import cache from django.core.cache import cache
from django.utils.translation import gettext_lazy as _ from django.utils.translation import gettext_lazy as _
@ -23,17 +24,21 @@ class BaseMFA(abc.ABC):
cache_key = f'{self.name}_{self.user.username}' cache_key = f'{self.name}_{self.user.username}'
cache_code = cache.get(cache_key) cache_code = cache.get(cache_key)
if cache_code == code:
is_match = cache_code == code
if settings.SAFE_MODE and is_match:
return False, _( return False, _(
"The two-factor code you entered has either already been used or has expired. " "The two-factor code you entered has either already been used or has expired. "
"Please request a new one." "Please request a new one."
) )
ok, msg = self._check_code(code) ok, msg = self._check_code(code)
if not ok: if not ok:
return False, msg return False, msg
cache.set(cache_key, code, 60 * 5) cache.set(cache_key, code, 60)
return True, msg return True, msg
def is_authenticated(self): def is_authenticated(self):