csf123321/InsightRadar
1
0
Fork 0
mirror of https://github.com/stardrophere/InsightRadar.git synced 2026-06-06 00:00:05 +08:00
Code Issues Packages Projects Releases Wiki Activity

放爆破

Browse Source
This commit is contained in:
csf123321
2026-03-26 02:12:29 +08:00
parent ca796a5fd2
commit 210bb3b9ea
1 changed files with 9 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
backend/app/core/verification/email/verificationService.py
+9
View File
@@ -19,6 +19,10 @@ LOGIN_CODE_EXPIRE_MINUTES = os.getenv("LOGIN_CODE_EXPIRE_MINUTES",5)
# 同一邮箱发送验证码的冷却间隔(秒) # 同一邮箱发送验证码的冷却间隔(秒)
CODE_SEND_COOLDOWN_SECONDS = os.getenv("CODE_SEND_COOLDOWN_SECONDS",60) CODE_SEND_COOLDOWN_SECONDS = os.getenv("CODE_SEND_COOLDOWN_SECONDS",60)
CODE_VERIFICATE_ATTEMP_SECONDS = os.getenv("CODE_VERIFICATE_ATTEMP_SECONDS", 60)
CODE_VERIFICATE_ATTEMP_COUNT = os.getenv("CODE_VERIFICATE_ATTEMP_COUNT", 10)
class CodeExpiredError(Exception): class CodeExpiredError(Exception):
"""code has been expired""" """code has been expired"""
pass pass
@@ -62,8 +66,13 @@ class EmailVerificationService:
def verify_code(self,email: str, code: str, purpose: VerificationPurpose): def verify_code(self,email: str, code: str, purpose: VerificationPurpose):
email = email.lower() email = email.lower()
key = f"verification:attempts:{purpose.value.lower()}:{email}"
code_hash = hash_verification_code(code) code_hash = hash_verification_code(code)
attempts = self.repo.incr(key, int(CODE_VERIFICATE_ATTEMP_SECONDS))
if attempts > int(CODE_VERIFICATE_ATTEMP_COUNT):
raise TooManyCodeRequestsError("Too many attempts")
stored = self.repo.compare_and_consume(email, purpose, code_hash) stored = self.repo.compare_and_consume(email, purpose, code_hash)
if stored == False: if stored == False: