initial import from https://downloads.wordpress.org/plugin/wp-fail2ban.4.2.5.zip

2019-09-17 18:28:38 -03:00
commit 3a8e77323e
30 changed files with 3648 additions and 0 deletions
--- a/feature/user.php
+++ b/feature/user.php
@@ -0,0 +1,61 @@
+<?php
+
+/**
+ * Blocked user functionality
+ *
+ * @package wp-fail2ban
+ * @since 4.0.0
+ */
+namespace org\lecklider\charles\wordpress\wp_fail2ban;
+
+if ( !defined( 'ABSPATH' ) ) {
+    exit;
+}
+/**
+ * @since 4.0.5 Guard
+ */
+
+if ( !function_exists( __NAMESPACE__ . '\\authenticate' ) ) {
+    /**
+     * Catched blocked users
+     *
+     * @since 3.5.0 Refactored for unit testing
+     * @since 2.0.0
+     *
+     * @param mixed|null    $user
+     * @param string        $username
+     * @param string        $password
+     *
+     * @return mixed|null
+     *
+     * @wp-f2b-hard Blocked authentication attempt for .*
+     */
+    function authenticate( $user, $username, $password )
+    {
+        
+        if ( !empty($username) ) {
+            /**
+             * @since 3.5.0 Arrays allowed in PHP 7
+             */
+            $matched = ( is_array( WP_FAIL2BAN_BLOCKED_USERS ) ? in_array( $username, WP_FAIL2BAN_BLOCKED_USERS ) : preg_match( '/' . WP_FAIL2BAN_BLOCKED_USERS . '/i', $username ) );
+            
+            if ( $matched ) {
+                openlog();
+                syslog( LOG_NOTICE, "Blocked authentication attempt for {$username}" );
+                closelog();
+                // @codeCoverageIgnoreEnd
+                bail();
+            }
+        
+        }
+        
+        return $user;
+    }
+    
+    add_filter(
+        'authenticate',
+        __NAMESPACE__ . '\\authenticate',
+        1,
+        3
+    );
+}